last executing test programs: 12m54.757405928s ago: executing program 0 (id=953): r0 = openat$auto_dfs_dom_ops_debugfs(0xffffffffffffff9c, &(0x7f0000000100), 0x2000, 0x0) fsetxattr$auto(r0, &(0x7f0000000140)='-,\\\\-!\\{+],(%^(*\x00', &(0x7f0000000440)="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", 0x7fff, 0x6) sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2006c8c1}, 0x14) socketpair$auto(0x101, 0x7, 0x1ff, &(0x7f0000000080)=0x200000) mmap$auto(0x0, 0xffffffffffff9b0d, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x11, 0x3, 0x9) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x2, 0x100) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0xa, 0x2, 0x73) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socket(0x1, 0x1, 0x0) bind$auto(0x3, 0x0, 0x6b) r2 = socket(0x1, 0x1, 0x0) bind$auto(r2, 0x0, 0xe) sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x18, 0x0, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@OVS_FLOW_ATTR_PROBE={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x40010}, 0x800) close_range$auto(0x2, 0x8, 0x0) r3 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) r4 = socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r4, @ANYRES8=r4], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x80) write$auto(r3, &(0x7f0000000000)='-\x00', 0xfdef) mmap$auto(0xffff8000, 0x80009, 0xb, 0x8000000008011, 0xffffffffffffffff, 0x9) io_uring_setup$auto(0x1, 0x0) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r5, 0x5423, 0x0) close_range$auto(r1, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) 12m54.056001604s ago: executing program 0 (id=957): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/i8042/serio0/force_release\x00', 0xe2082, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r0, 0x2) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), r0) sendmsg$auto_NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x3c, r1, 0x10, 0x70bd28, 0x25dfdbfb, {}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xf}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, 0xb}, @NL80211_ATTR_WPA_VERSIONS={0x8}, @NL80211_ATTR_INACTIVITY_TIMEOUT={0x6, 0x96, 0x7fff}, @NL80211_ATTR_MGMT_SUBTYPE={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20040080}, 0x8a0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) munmap$auto(0x2, 0x1a525c0f) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x883, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/midiC2D1\x00', 0x101700, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) connect$auto(0x3, 0x0, 0x54) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0xa00040, 0x0) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/team_slave_0/rpl_seg_enabled\x00', 0x20202, 0x0) sendfile$auto(r3, r4, 0x0, 0x1) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r5 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x3b65, 0x0) lgetxattr$auto(0xfffffffffffffffd, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x8) ioctl$auto_USBDEVFS_RELEASE_PORT(0xffffffffffffffff, 0x80045519, &(0x7f00000000c0)=0x9) mmap$auto(0x0, 0x4, 0x4000000000e2, 0x40eb1, 0xffffffffffffffff, 0x10000) r6 = open(0x0, 0x0, 0x408) adjtimex$auto(&(0x7f0000000240)={0x10000, 0x0, 0x7, 0x1, 0xffffffff, 0x5, 0x4, 0x0, 0x5, 0x0, 0xfffffffffffffffe, {0x24f, 0x8}, 0x0, 0x4, 0x4, 0x2, 0x0, 0xeca, 0x3, 0x5, 0x0, 0x12e, 0x5bbda88c}) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x40, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mbind$auto(0x0, 0x800605, 0x8003, &(0x7f0000000100)=0xfffe, 0x3, 0x3) mbind$auto(0x0, 0x800605, 0x8003, &(0x7f0000000100)=0xffff, 0x3, 0x3) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r6) 12m51.728223543s ago: executing program 0 (id=962): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000) openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0xc80, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x7, 0x3, 0x2c, 0x940, 0x7ff, 0x3, 0x6, 0x2, 0x9, 0x5, 0x2, 0x4, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x1fe, 0x7) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) pipe$auto(&(0x7f0000000780)=0xffffffffffffffff) splice$auto(r0, 0x0, 0xffffffffffffffff, &(0x7f0000002100)=0x1, 0x768, 0x9) r1 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) prctl$auto(0x41555856, 0x4, 0x2008, 0x0, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) open(0x0, 0x149443, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x8000, 0x0) r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) ioctl$auto(r3, 0xc10c5541, r2) 12m51.460053968s ago: executing program 0 (id=963): sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2006c8c1}, 0x14) r0 = socketpair$auto(0x101, 0x7, 0x1ff, &(0x7f0000000080)=0x200000) mmap$auto(0x0, 0xffffffffffff9b0d, 0xdf, 0x13, r0, 0x8000) r1 = socket(0x11, 0x3, 0x9) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x2, 0x100) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0xffff8000, 0x80009, 0xb, 0x8000000008011, 0xffffffffffffffff, 0x9) io_uring_setup$auto(0x1, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptys9\x00', 0x20001, 0x0) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) close_range$auto(r1, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) statmount$auto(0x0, 0x0, 0x7ffffffff002, 0x80a) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) r3 = epoll_create$auto(0x8) epoll_ctl$auto(r3, 0x1, 0x8000000000000000, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x20) r4 = pidfd_open$auto(0x1, 0x0) setns(r4, 0x60020000) mount$auto(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x3, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0x813, 0x3ff, 0x8000) prctl$auto(0x1000000003b, 0x7, 0x4, 0x3, 0x2) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0) socket(0x3, 0x5, 0x0) connect$auto(0x3, &(0x7f0000000280), 0x55) getpeername$auto(0x3, 0x0, 0x0) umount2$auto(&(0x7f0000000100)='.\x00c\xba^\x92*\xc7\xf3{c\xff\xff\xff\xff\xff\xff\xff\x18{\xbfr-\x01\x81\x1d\xa7\xae+\xf7+m\x01\x92', 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x2, 0x2, 0x0) 12m51.017542988s ago: executing program 0 (id=966): r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000280), 0x10000, 0x0) ioctl$auto_RTC_PIE_OFF(r0, 0x7006, 0x0) mmap$auto(0x0, 0x104020009, 0xde, 0x16, 0x401, 0x8000) futex$auto(0x0, 0x10d, 0x8, 0x0, 0x0, 0x8) pselect6$auto(0x8, &(0x7f0000000040)={[0x5, 0x5, 0x2a9d, 0x7fff, 0x1, 0x7c, 0x8, 0x8001, 0x0, 0x451, 0x8000000000000000, 0x3, 0x0, 0xff, 0x2a68, 0x31]}, &(0x7f00000000c0)={[0x6e68, 0xfffffffffffffffa, 0x666e, 0x0, 0x2, 0x2, 0x8, 0x3, 0x1, 0x3, 0xa, 0x5, 0x1, 0x8, 0x0, 0x3]}, &(0x7f0000000140)={[0x8, 0x7, 0x9, 0x7, 0xa, 0x1000, 0x29a, 0xe044, 0xf95a, 0x7fffffff, 0x8, 0x7fffffff, 0x100000000, 0x5, 0x0, 0x7]}, &(0x7f00000001c0)={0xd2, 0xea}, &(0x7f0000000200)="8f25a5e4bc9c55166e6e7362a4c02064483e2ef4995d1eefd1da77d4c985f65d779777de13c48fb13f6997bcc6d70262bd2b1e4af3a806027d1c7e28f7d62691f6136e7979231acbe3") madvise$auto(0x0, 0xffffffffffff0005, 0x19) set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) 12m50.425374191s ago: executing program 0 (id=968): openat$auto_ocfs2_control_fops_stack_user(0xffffffffffffff9c, &(0x7f0000000180), 0x64a03, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/bus/pci/devices\x00', 0x10b402, 0x0) pread64$auto(r0, 0x0, 0x8100000041, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xfffffffffffff000, 0x2) bpf$auto(0x8000000000000020, 0xffffffffffffffff, 0x0) r1 = socket(0x10, 0x2, 0x4) sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)={0x24, 0x0, 0x300, 0x70bd26, 0x25dfdbfb, {}, [@HWSIM_ATTR_ADDR_TRANSMITTER={0x9, 0x2, "cacd2dff11"}, @HWSIM_ATTR_MULTI_RADIO={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0xb06af94f2e030f6) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x10, 0x2, 0x14) socket$nl_generic(0x10, 0x3, 0x10) pidfd_open$auto(0x1, 0x0) socket(0x10, 0x2, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB="2c0000001200c7"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x0) read$auto(0x3, 0x0, 0xf34) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x11c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x3d7}, 0x7}, 0x803, 0x0) open(&(0x7f0000000140)='./file0\x00', 0x220c0, 0x4) chmod$auto(&(0x7f00000000c0)='./file0\x00', 0xf4ba) execve$auto(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) r3 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000006700), 0x181c00, 0x0) ioctl$auto_RNDADDTOENTCNT2(r3, 0x40045201, 0x0) ioctl$auto(r2, 0x400454da, 0x38) unshare$auto(0x40000080) open(0x0, 0x4140, 0x0) kcmp$auto(0x0, 0x0, 0xbbe5, 0xffffffffffffffff, 0xffffffffffffffff) mount$auto(0x0, 0x0, 0x0, 0x8002, 0x0) 12m35.049072433s ago: executing program 32 (id=968): openat$auto_ocfs2_control_fops_stack_user(0xffffffffffffff9c, &(0x7f0000000180), 0x64a03, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/bus/pci/devices\x00', 0x10b402, 0x0) pread64$auto(r0, 0x0, 0x8100000041, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xfffffffffffff000, 0x2) bpf$auto(0x8000000000000020, 0xffffffffffffffff, 0x0) r1 = socket(0x10, 0x2, 0x4) sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)={0x24, 0x0, 0x300, 0x70bd26, 0x25dfdbfb, {}, [@HWSIM_ATTR_ADDR_TRANSMITTER={0x9, 0x2, "cacd2dff11"}, @HWSIM_ATTR_MULTI_RADIO={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0xb06af94f2e030f6) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x10, 0x2, 0x14) socket$nl_generic(0x10, 0x3, 0x10) pidfd_open$auto(0x1, 0x0) socket(0x10, 0x2, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB="2c0000001200c7"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x0) read$auto(0x3, 0x0, 0xf34) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x11c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x3d7}, 0x7}, 0x803, 0x0) open(&(0x7f0000000140)='./file0\x00', 0x220c0, 0x4) chmod$auto(&(0x7f00000000c0)='./file0\x00', 0xf4ba) execve$auto(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) r3 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000006700), 0x181c00, 0x0) ioctl$auto_RNDADDTOENTCNT2(r3, 0x40045201, 0x0) ioctl$auto(r2, 0x400454da, 0x38) unshare$auto(0x40000080) open(0x0, 0x4140, 0x0) kcmp$auto(0x0, 0x0, 0xbbe5, 0xffffffffffffffff, 0xffffffffffffffff) mount$auto(0x0, 0x0, 0x0, 0x8002, 0x0) 9.32609998s ago: executing program 2 (id=3158): sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2006c8c1}, 0x14) socketpair$auto(0x101, 0x7, 0x1ff, &(0x7f0000000080)=0x200000) mmap$auto(0x0, 0xffffffffffff9b0d, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x11, 0x3, 0x9) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x2, 0x100) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0xffff8000, 0x80009, 0xb, 0x8000000008011, 0xffffffffffffffff, 0x9) io_uring_setup$auto(0x1, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) close_range$auto(r0, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)={0x1c, r2, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0xa}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004891}, 0xc000) fsconfig$auto_FSCONFIG_CMD_RECONFIGURE(0xffffffffffffffff, 0x7, &(0x7f0000000100)='.\x00', &(0x7f0000000140)="db5eb4e05e3e109a223efa77bfd3d6fe1ee9070c90ad6932aede24d8ff75413d5a3584564ac23e93fc1475adbb5931e89306d56338bcef506f78bf3dedd857be70c0ff0dc698fb307b51b6bb0b398aa108cfa269cda0f9aa4fcc3ad15a64e6867d256c", 0xf4) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3ff, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0) umount2$auto(&(0x7f0000000040)='.\x00', 0x4) umount2$auto(&(0x7f0000000000)='.\x00', 0x4) 8.752615273s ago: executing program 2 (id=3162): sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000002500), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x2c, r3, 0x1, 0x2070bd26, 0x25dfdbf8, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, 'HfR\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x1f, 0x9}]}, 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x80) syz_genetlink_get_family_id$auto_ovs_datapath(0x0, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_BATADV_CMD_SET_MESH(0xffffffffffffffff, 0x0, 0x140080e4) sendmsg$auto_OVS_DP_CMD_GET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r1, 0x5, 0x70bd29, 0x25dfdbfc, {}, [@OVS_DP_ATTR_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000c000}, 0x4000024) 8.615697095s ago: executing program 2 (id=3163): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/module/msp3400/parameters/opmode\x00', 0x2dac82, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x7fffffff, 0xfffffffdffff0001, 0x7) r0 = socket(0x10, 0x3, 0x6) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r1, 0x1, 0x70bd2b, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20048810}, 0x4804) munmap$auto(0x2, 0x1a525c0f) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x883, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804}) openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/gid_map\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x13, 0xffff7ffffffffffa, 0x4000000008000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x2000000, 0x400008, 0xdf, 0x9b72, 0x100000000002, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card0/pcm0p/oss\x00', 0x480, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mkdir$auto(&(0x7f0000000180)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f0000000280)='}[,&*}\x00', &(0x7f0000000300)='nf\x04\x00.', 0x7, 0x0) ioctl$auto_TIOCSWINSZ2(0xffffffffffffffff, 0x5414, 0x0) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000003040)='/proc/self/io\x00', 0x440, 0x0) io_uring_setup$auto(0x8, &(0x7f0000000140)={0xfffffff1, 0x3, 0x6, 0x10001, 0x12, 0xc05, 0xffffffffffffffff, [0x7ff, 0xfff, 0x8], {0xc, 0x1, 0x5, 0x0, 0x400, 0x0, 0x3fe0, 0x8, 0x1000000000e8}, {0x2, 0x100, 0x54f1, 0x0, 0x100, 0x100, 0x8d6, 0x4, 0x3}}) r2 = clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x60282, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x5, 0x80000003, 0x1, 0x100, 0x0, 0x0, 0x0, 0xffffffffffffff91, 0x8000fd3, 0x2, 0xef, 0x4, 0x80040000081, 0x8, 0x2, 0xfffffffffffffff8, 0x1}) msgctl$auto_IPC_INFO(0x40044, 0x3, &(0x7f00000001c0)={{0x0, r4, r5, 0x2, 0x57e, 0xffff8005}, &(0x7f00000000c0)=0x6, &(0x7f0000000240)=0xff, 0x0, 0x9, 0x400, 0xfffffffffffffff9, 0x2, 0x18, 0x0, 0xfff8, @inferred=r2, @raw=0x8}) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, 0x0) write$auto(r3, 0x0, 0x100082) 7.562716776s ago: executing program 3 (id=3170): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="b3200000", @ANYBLOB, @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x4044}, 0x40000) recvmmsg$auto(r0, 0x0, 0xfffffff9, 0x10000, 0x0) 6.621544075s ago: executing program 2 (id=3173): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001980)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="2f212cbd8966efb91b2e351f000908000300", @ANYRES32=r2], 0x28}}, 0x4000000) 6.52121262s ago: executing program 3 (id=3174): socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r1, 0x40107447, 0x0) r2 = socket(0x2b, 0x1, 0x1) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) setsockopt$auto(0x400000000000003, 0x29, 0x6, 0x0, 0x3) getsockopt$auto(r2, 0x40000000029, 0x3b, 0xfffffffffffffffe, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x0, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) setsockopt$auto(0x400000000000003, 0x28, 0x6, 0x0, 0x56d) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0) prctl$auto_PR_SET_MM_ARG_END(0x9, 0x9, 0xffffffffffffffff, 0xd, 0x13) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capset$auto(&(0x7f0000000340)={0x19980330}, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) socket(0xa, 0x5, 0x94) io_uring_setup$auto(0x6, 0x0) mmap$auto(0xfffffffffffffff8, 0xfffffffffffffffa, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) 6.320477318s ago: executing program 1 (id=3175): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x4, 0x0, 0x8001, 0x0, 0x1c, 0xb}, 0x1}, 0x5, 0x54ff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb0, r0, 0x8000) fstat$auto(0xffffffffffffffff, 0x0) socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_PVERSION(r1, 0x80045400, &(0x7f0000000040)=0x10) unshare$auto(0x40000080) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff001, 0x2) socket(0x11, 0x80003, 0x300) socket(0x29, 0x5, 0x0) open(&(0x7f00000000c0)='./cgroup\x00', 0x699642, 0xb5d1af1605322dd2) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/workqueue/nvme-reset-wq/cpumask\x00', 0x8802, 0x0) r2 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91) read$auto(r2, 0x0, 0x1) write$auto(0x3, 0x0, 0xfdef) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x42146, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r3 = socket(0x1e, 0x4, 0x0) r4 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r4, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(r3, 0x10f, 0x87, 0x0, 0x14) 5.929223483s ago: executing program 2 (id=3176): r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000003180)=ANY=[@ANYBLOB="14000000", @ANYRES16=r0, @ANYBLOB], 0x14}, 0x1, 0x0, 0x0, 0x6000091}, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) fcntl$auto(0xffffffffffffffff, 0x400, 0x1) socket(0x1, 0x2, 0x40000008) unshare$auto(0x40000080) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ip6_mr_vif\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f00000000c0)=""/4087, 0xff7) mmap$auto(0x0, 0x20009, 0x7, 0xeb1, 0x0, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/ieee80211/phy2/power/control\x00', 0x600, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000140)=""/1, 0x1) setsockopt$auto(0x400000000000003, 0x2000002b, 0x8, 0x0, 0xd902) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd3/queue/iosched/write_expire\x00', 0x20681, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x30) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r3) mlockall$auto(0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) move_pages$auto(0x0, 0xd0, 0x0, 0x0, 0x0, 0x2) bpf$auto(0x8, &(0x7f00000001c0)=@bpf_attr_0={0x7, 0xb5, 0x10, 0x4, 0x53400000, 0xffffffffffffffff, 0x9, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x2, 0x7, 0x7, 0x6}, 0x10) r4 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/038/001\x00', 0xa821, 0x0) ioctl$auto_USBDEVFS_SUBMITURB32(r4, 0x802c550a, &(0x7f00000001c0)=ANY=[@ANYBLOB="028006000000000005"]) 5.350364432s ago: executing program 3 (id=3178): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) remap_file_pages$auto(0x2, 0x1000, 0x0, 0x3, 0x4) mmap$auto(0x0, 0x7f, 0x2, 0x9b72, 0x2, 0x7fff) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0) write$auto(0x3, 0x0, 0xfdef) ioctl$auto_TIOCVHANGUP2(r0, 0x5437, 0x0) sched_rr_get_interval$auto(0x0, 0x0) getrandom$auto(0x0, 0xe, 0x7) madvise$auto(0x81, 0x3, 0x9) madvise$auto(0x0, 0x2003f0, 0x13) mincore$auto(0x0, 0x10000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) poll$auto(&(0x7f0000003640)={r1, 0x7, 0x6}, 0x4, 0x100000) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) r2 = openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000280)='/dev/etherd/revalidate\x00', 0x541, 0x0) write$auto_aoe_fops_aoechr(r2, &(0x7f0000000040)="2be96fd1784f957cbd2e6a89efe36cc20f288653f70d043d83fd4181dbc3cb6deb", 0x21) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a001}, 0x9, 0x0, 0x0, 0xb}, 0xfff}, 0x5, 0x311) setsockopt$auto(0x3, 0x1, 0xf, 0x0, 0x8) listen$auto(0x3, 0x83) setsockopt$auto(0x3, 0x1, 0x31, 0x0, 0x9) syz_genetlink_get_family_id$auto_netdev(&(0x7f0000003900), r1) r3 = socket$nl_generic(0x10, 0x3, 0x10) timerfd_create$auto(0x8, 0x0) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r3) 5.216438184s ago: executing program 1 (id=3179): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0) sendfile$auto(r0, r0, 0x0, 0x7ffff001) (fail_nth: 8) 4.884057226s ago: executing program 3 (id=3180): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/dummy_hcd.2/usb3/authorized\x00', 0x81, 0x0) write$auto(r1, &(0x7f0000000080)='0\x81=\"\xad\xff\x8d\xf9P\x18\xa4\xb0\xb4\xd9\x82=\xe1P\x05\x00\xfb&\xe8\xbf\x901\a2\xa2X`\a\xf1y\xb3\"=', 0xd4d0) socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001080), 0xffffffffffffffff) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0xc81, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r3, 0x0, 0x40040) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffdfffffff, 0x3, 0x62, 0x84000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x1ff, 0x7, 0xd, 0x1, 0x1f, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000023, 0x7, 0x6d40, 0x9, 0x2, 0x6]}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df"], 0x1ac}, 0x1, 0x0, 0x0, 0x40000}, 0x0) setsockopt$auto_SO_ATTACH_REUSEPORT_CBPF(r0, 0x9, 0x33, &(0x7f0000000440)='/d\x81+\xc1\xab\xae;!\xcd\xb2\xbe\xe3\x16I}\xcf\xca\xeao\xcfj\xd8-#\x1c\'\xe2I\xe3\x0e\x84\\\xc1\xe1\xb9yf\xc8\v0\x1dM\xcefo[\xf9<\x91\r\x98P7\xf5\xce(_,\xa4x\'\xd1)\x89\xb1\xb1\x95w)M\x86\x15\x83\xa8\t\xc3O\xcf2.1\xae\xa9ox*u\x8a\x84\x82\xd6\xcd\x9c\x02\x05\xf5h\x9f\xbe\x9b\xa9n\xb3\xe5\x97s\xb5\xdc\xcaM0s\xf8\xbb\xb9\x84\v7\xfd\x85\x87%\x80\xda\rm\xad\xe2\xc6\f4wT\x837\xbc\xdb\xbc\xe5\xce/\b\xf3\no|7\x12/Y{S\xcc+k\xb8\xba\x0f\x85}/~\xacj\xe6krKB\x85\x82\x98\x87\xfb\xe1v\x93\xe6W\xd7Bk\xd8\xcbp\xd9\xd7lg+)\x14\xd1\xd7\x14bw{&\xd2\xd3\xb0\f\xad\x05\x88OJ\x9a\xc1\xbfz\xee\xd6\b\x93\x11\x8f\x1a:\v\xf0\x1a\x810y\xcd\xf3D\xad\xec\x90\xa3\xb7Pq\xb2R\x85I\xb6u\x9c\xf0o\xb8\x11\xb59$4fj\xc4\xb1\xe6\xd1q(\x84\x18\xbe\x1f\xf9\x91d\xdf\x8eI\xdd\x84\x80\xcf\xaff\x91\xad\x953\xdd\xe9\x83\x93\xb7\xb5\xe4\xdb\'\xdd\xab\xa5\xfb\xd7\xa457\xf1\xa24o\x8c\x80\x13j\xf1b\xbc:\xe9\x9f\x9f8\xf4\xd2\xbbK\xa7\xe5V\xf0:~E\xa93\x95\x8a\x1bE\xa1\x01\xe3\x92T`E\xd7\xe4\x06\x1f\xed\x89\x93\x829\x13\xf6\x8e\xfen)Rt\x9b\xf8*\xf8D\xf8\x0f\x94\x12\x8b\x92\xeb\xa8X?\x01=VN\x1fN,0\xba\xc3\x98\x02\xc4\xab\xe0\x80\xb6\x05\x92\xef~\x8e\xf1\xc3\xfe\xcb?P\x9e\xf7\xf6\xb0\x97\x04\x7f\xc3\x84\'\xff\xed\xb8\xff\x1d1\xfa\x11S<\x9d\xd5\xd6\xcaz\xf9\xd7(\xa74\x1en\xe9fs\x839c\vr\x002c\x98\x91\xc8\xbbYS.\xb8\"\xffuZ\xdf\x89u\x8c|z\xf1\fN+\xaa\xc7\xa4>\tOw\xa3\ti\xf6\v\xa2\xd39\xdd@\xbd\x17\x18\xa5\x1b\xb2\x12q\xc6\xcf\x9b\xb0\x1a\x16+(\x87\x81\x88\xe2\xd7\xec\xa3\x9a#\x04\x88\x9f\xab\xf9\xbe\xf0\br\xb7\xf6\x99\xfa~x\xe2\xb7\x0e\xe7\x11\xf3W\xb2=\x8a', 0xa) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="72010000", @ANYRESOCT=r2], 0x1ac}}, 0x40000) utimes$auto(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000380)={0x7, 0x1}) r4 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0xfffffffe, &(0x7f0000000100)={&(0x7f0000000080), 0xfc5}, 0x2, &(0x7f0000000000)="12142917b86513e37481b5a306c4c9d117ef2c9d6019167acf18ac449ec8046a4a95d0901e92400febb52541daa1dc", 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 4.453102404s ago: executing program 1 (id=3181): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) shmat$auto(0x59, &(0x7f0000000580)='(\x04', 0xfffffffd) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0xc2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) socket(0x2, 0x1, 0x0) epoll_create$auto(0x4) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) fanotify_init$auto(0x65, 0x2) pipe$auto(0x0) dup2$auto(0x5, 0x4) splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9) write$auto(0x6, 0x0, 0x100000001) setsockopt$auto(0x3, 0x1, 0x10, 0x0, 0x9) setresuid$auto(0x2, 0x7, 0x8080) recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{0x0, 0xbb, 0x0, 0x8, &(0x7f0000000040), 0x81, 0x9}, 0xfffffffb}, 0x5, 0x6586, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x6, 0x0) r1 = mq_open$auto(&(0x7f0000000000)='/dev/seq\x03\x00\x00\x00er2\x00', 0x5, 0x3, &(0x7f0000000040)={0xe7a2, 0x0, 0x1, 0xa}) sendmsg$auto_NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="200028bd7000ffdbdf25060000000500190077000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000840)='/proc/sys/vm/dirty_background_ratio\x00', 0x80000, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0xd, 0x1, 0x948b, 0x3, 0x15f4da08, 0x3, 0x3, 0x62, 0x80000001, 0xfb, 0x6d3c, 0x9, 0x1, 0x1]}, 0x0) sched_get_priority_min$auto(0x40) lseek$auto(r1, 0x8000000000000001, 0x1) openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, 0x0, 0x101002, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) 4.044642725s ago: executing program 4 (id=3183): sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2006c8c1}, 0x14) socketpair$auto(0x101, 0x7, 0x1ff, &(0x7f0000000080)=0x200000) mmap$auto(0x0, 0xffffffffffff9b0d, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x11, 0x3, 0x9) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x2, 0x100) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0xffff8000, 0x80009, 0xb, 0x8000000008011, 0xffffffffffffffff, 0x9) io_uring_setup$auto(0x1, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)={0x1c, r2, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0xa}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004891}, 0xc000) fsconfig$auto_FSCONFIG_CMD_RECONFIGURE(r1, 0x7, &(0x7f0000000100)='.\x00', &(0x7f0000000140)="db5eb4e05e3e109a223efa77bfd3d6fe1ee9070c90ad6932aede24d8ff75413d5a3584564ac23e93fc1475adbb5931e89306d56338bcef506f78bf3dedd857be70c0ff0dc698fb307b51b6bb0b398aa108cfa269cda0f9aa4fcc3ad15a64e6867d256c", 0xf4) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3ff, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0) umount2$auto(&(0x7f0000000040)='.\x00', 0x4) umount2$auto(&(0x7f0000000000)='.\x00', 0x4) 3.535937211s ago: executing program 1 (id=3184): mmap$auto(0x0, 0x2020009, 0x9, 0xeb3, 0xfffefffffffffffa, 0x8000) fcntl$auto(0xffffffffffffffff, 0x409, 0x40003f) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x109042, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/swaps\x00', 0x0, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x149a81, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fe, 0x104, 0x7, 0x7, 0x1, 0x3, 0x15f4da06, 0x6, 0x3, 0x0, 0x5, 0x7, 0x6d3f, 0x1000002, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) ioctl$auto_XFS_IOC_GET_RESBLKS(r0, 0x80105873, &(0x7f0000000040)={0x7, 0x1}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) close_range$auto(0x2, 0x8, 0x0) unshare$auto(0x40000080) init_module$auto(0x0, 0xffff9, 0x0) 3.383158444s ago: executing program 3 (id=3185): mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f0, 0x15) unshare$auto(0x40000080) r1 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000040), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000f40)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_SET_MESH(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000300)=ANY=[@ANYBLOB="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", @ANYBLOB="b17798d21fd7773d105bf7686b1c", @ANYRES32=r0, @ANYRES32=r4, @ANYRESDEC=r1], 0x24}, 0x1, 0x0, 0x0, 0x4004000}, 0x140040e4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) mmap$auto_def_blk_fops_fs(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x5, 0x12, r0, 0x7) personality$auto(0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) r5 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r5, 0x40045010, &(0x7f0000000040)) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r5, 0x40045010, 0x0) ioctl$auto_TUNSETOFFLOAD2(r0, 0x400454d0, &(0x7f0000000000)=0x6) socket(0x1e, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x2000000080000001, 0x3) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mmap$auto(0x200000, 0x200006, 0x1, 0x40eb1, 0x602, 0xb00000000000) socket(0x28, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r6 = socket(0x2, 0x2, 0x1) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, r6, 0x10000}, 0x10) 2.758111442s ago: executing program 2 (id=3186): openat$auto_supply_map_fops_(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) preadv$auto(0x3, 0x0, 0x3, 0x10000, 0x10) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) read$auto_fake_panic_fops_(0xffffffffffffffff, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8ad00, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x0) r0 = socket(0xa, 0x801, 0x84) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) msgctl$auto_IPC_INFO(0x100, 0x3, &(0x7f00000012c0)={{0x632, 0xffffffffffffffff, 0xee00, 0x1, 0x5, 0x1, 0x80}, 0x0, 0x0, 0x1b, 0x7, 0x5, 0x7, 0x1, 0xdd34, 0x7, 0x8, @raw=0xffff}) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) msgctl$auto_IPC_RMID(0xffff, 0x0, &(0x7f0000000280)={{0x4, r1, r2, 0xfffffffd, 0x9, 0xd, 0xb}, &(0x7f0000000200)=0x5, &(0x7f0000000240)=0x5, 0x1, 0x1, 0x6e, 0xe811, 0x5, 0x4, 0x5, 0x10, @raw=0x5, @raw=0x7}) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x54) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop11/hidden\x00', 0x2000, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) setsockopt$auto(r0, 0x1, 0x3f, 0x0, 0xb) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto(0xc8, 0x400454d1, 0x5c8d) sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x14, 0x0, 0x1, 0x70bd27, 0x25dfdbfe}, 0x14}}, 0x4c005) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0xffffffff, 0x0, 0x106, 0x0, 0x6c, 0x697c}, 0xed71390}, 0x9a6, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x1102, 0x0) 2.558030756s ago: executing program 4 (id=3187): openat$auto_supply_map_fops_(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) preadv$auto(0x3, 0x0, 0x3, 0x10000, 0x10) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) read$auto_fake_panic_fops_(0xffffffffffffffff, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8ad00, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x0) r0 = socket(0xa, 0x801, 0x84) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) msgctl$auto_IPC_INFO(0x100, 0x3, &(0x7f00000012c0)={{0x632, 0xffffffffffffffff, 0xee00, 0x1, 0x5, 0x1, 0x80}, 0x0, 0x0, 0x1b, 0x7, 0x5, 0x7, 0x1, 0xdd34, 0x7, 0x8, @raw=0xffff}) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) msgctl$auto_IPC_RMID(0xffff, 0x0, &(0x7f0000000280)={{0x4, r1, r2, 0xfffffffd, 0x9, 0xd, 0xb}, &(0x7f0000000200)=0x5, &(0x7f0000000240)=0x5, 0x1, 0x1, 0x6e, 0xe811, 0x5, 0x4, 0x5, 0x10, @raw=0x5, @raw=0x7}) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x54) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop11/hidden\x00', 0x2000, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) setsockopt$auto(r0, 0x1, 0x3f, 0x0, 0xb) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto(0xc8, 0x400454d1, 0x5c8d) sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x14, 0x0, 0x1, 0x70bd27, 0x25dfdbfe}, 0x14}}, 0x4c005) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0xffffffff, 0x0, 0x106, 0x0, 0x6c, 0x697c}, 0xed71390}, 0x9a6, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x1102, 0x0) (fail_nth: 1) 1.556956139s ago: executing program 4 (id=3188): mmap$auto(0x3, 0xa8b, 0x3, 0x12, 0xfffffffffffffffa, 0x8001) mmap$auto(0x0, 0x4, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030000020000060007000200000008000300000400000a00050000000000000000000a00010000000000000000000a0005000000000000000000"], 0x50}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000080), r0) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r0, &(0x7f0000001140)={&(0x7f0000000040), 0xc, &(0x7f0000001100)={&(0x7f0000001340)=ANY=[@ANYBLOB="040000000ca470a5167bce23543500"/27, @ANYRES16=r1, @ANYBLOB="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"], 0x1014}, 0x1, 0x0, 0x0, 0x20040004}, 0x20000014) bpf$auto(0x1d, &(0x7f00000004c0)=@info={0xffffffffffffffff, 0x4, 0x2}, 0x3ff) r2 = openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, &(0x7f0000001180), 0x410000, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000080), r3) sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x14, r4, 0x95bda67d863ba7af, 0x70bd2d, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x20000000) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) lsm_list_modules$auto(0x0, 0x0, 0x0) r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) syz_genetlink_get_family_id$auto_batadv(0x0, r5) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x100, 0x83, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}}) io_uring_register$auto(0x2, 0x11, &(0x7f0000000180), 0x83) ioctl$auto_IOCTL_STOP_ACCEL_DEV(r2, 0x40096101, &(0x7f00000011c0)={@padding, 0x3}) r7 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000001200)={'\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_PHY_GET(r0, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f00000012c0)=ANY=[@ANYBLOB="ea762acc", @ANYRES16=r7, @ANYBLOB="010326bd7000ffdbdf252d0000000c00018008000100", @ANYRES32=r8, @ANYBLOB="1400018008000100", @ANYRES32=r8, @ANYBLOB="0800030004000000200001801400020076657468315f766c616e00000000000008000100", @ANYRES32=r8, @ANYBLOB="1400018008000100", @ANYRES32=r8, @ANYBLOB="08000100", @ANYRES32=r8, @ANYBLOB="180001801400020076657468305f746f5f68737200000000"], 0x80}, 0x1, 0x0, 0x0, 0x2404c013}, 0x80) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0) 872.205315ms ago: executing program 1 (id=3189): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) getsockopt$auto(0x3, 0x200000000001, 0x26, 0x0, 0x0) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0) sendfile$auto(r0, r0, 0x0, 0x7dfff001) 571.652615ms ago: executing program 4 (id=3190): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_UPD_RXSC(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)={0x2c, r1, 0x201, 0x70bd2a, 0x25dfdbfe, {}, [@MACSEC_ATTR_RXSC_CONFIG={0x10, 0x2, 0x0, 0x1, [@typed={0xc, 0x1, 0x0, 0x0, @u64=0xa}]}, @MACSEC_ATTR_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x60, 0x20004054}, 0x480b0) 534.279819ms ago: executing program 1 (id=3191): r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) r1 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000280), 0xffffffffffffffff) r2 = setfsuid$auto(0xee00) setresuid$auto(0xffffffffffffffff, r2, 0x8000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'nr0\x00', 0x0}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) epoll_ctl$auto(r4, 0x2, r5, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'veth0_to_bridge\x00', 0x0}) sendmsg$auto_MACSEC_CMD_GET_TXSC(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000340)={&(0x7f0000000d00)={0x11ac, r1, 0x10, 0x70bd2b, 0x25dfdbfe, {}, [@MACSEC_ATTR_SA_CONFIG={0x1134, 0x3, 0x0, 0x1, [@typed={0x8, 0x13a, 0x0, 0x0, @uid=r2}, @generic="80701b83e2ef1962b5e1d237f90384b642363fa3da48355f0721b3379d9aab0ef8f18b8c695118b1e8424a26e3f5cf7eae20ef5a0d71af33004e97a6104fee509f06be", @generic, @generic="47f5dd65c0c243c379ee960165b5dcd6a80f90cb9d1566f0e5048d514da2fa7480c1f29e177fe49a6368715d0b07e0283d9e082a78de7352b5b2be4c82e3deaf4e690b59bfe1b488e50af438d02fc0195793302b1b8e73fe4bd8b4cfd0e77612d3547d02e9826ea4a7ecb0ab3b0ac8957dea83d79a20c030ec0451ac667236c159", @typed={0x8, 0x50, 0x0, 0x0, @u32=0xe21a}, @generic="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", @nested={0x59, 0xe0, 0x0, 0x1, [@generic="fab65901cb5ddb812acf86f32635c25d0456ff93c1fa35c9616100804b8190c951b2b73ffc9697aa5e2fbe46c89c6a64af08977bb5f3d2afc4c105bc8250b9e5fbf1ddfacce1de52171fde7534f6a84928", @nested={0x4, 0x33}]}]}, @MACSEC_ATTR_OFFLOAD={0x54, 0x9, 0x0, 0x1, [@nested={0x4f, 0x5f, 0x0, 0x1, [@nested={0x4, 0xbc}, @typed={0xc, 0x5e, 0x0, 0x0, @u64}, @typed={0xc, 0x140, 0x0, 0x0, @u64=0x8}, @generic="b2da31e0effc40099b0ac30b2a5dd7fd86ad77", @typed={0x8, 0x97, 0x0, 0x0, @fd=r0}, @typed={0x11, 0x9f, 0x0, 0x0, @str='/dev/usbmon0\x00'}]}]}, @MACSEC_ATTR_IFINDEX={0x8, 0x1, r3}, @MACSEC_ATTR_IFINDEX={0x8, 0x1, r6}]}, 0x11ac}, 0x1, 0x0, 0x0, 0x4004040}, 0x4000001) r7 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000002640), 0x0, 0x0) ioctl$auto_USB_RAW_IOCTL_INIT(r7, 0x41015500, 0x0) openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$auto(0x3, 0x80000541b, 0x38) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r8 = openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, &(0x7f0000000040), 0x101002, 0x0) ioctl$auto_IOCTL_GET_NUM_DEVICES(r8, 0x40046104, &(0x7f0000000100)=0x2) r9 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x640, 0x0) ioctl$auto_MON_IOCG_STATS(0xffffffffffffffff, 0x80089203, 0x0) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) io_uring_register$auto_IORING_REGISTER_IOWQ_MAX_WORKERS(r9, 0x13, &(0x7f00000001c0)="003eacc1bb056a902b27995f8940f4e66f895e8f360358ff7d7260e113d32515ff8f38ea3398f7eb2206f3321e4657519971754dedcb26b6cef4a3d12f9c567d25cd8c4d41b0b073895716ec6d946b2e20e033eda6bba47a9e3effb0cd94b372d68ca26bcd79f68156e0856f7e8c4f365cd4887cad7eeec1208ee8889bba298d65de0e18", 0x8) ioctl$auto_RNDZAPENTCNT2(0xffffffffffffffff, 0x5204, 0x0) r10 = clone$auto(0x66, 0x8, &(0x7f00000003c0)=0x10000, &(0x7f0000000400)=0x2, 0x401f) move_pages$auto(r10, 0x3, &(0x7f0000000540)=&(0x7f0000000440)="21c081935d82ba88a7605192d14ebcb84ef50172f99b2ee1d673048fa238f10d2092fb6c41b8b2125f87b944c58a6e944cdb02483cab0691e44f7828736e3d82df1c83e2f4b18751221cc2e00d7edc045d3ff6d1db37b2ddef2d093f85584313753a258ecb83647ab485bfaf0e6a9b4a1b8f0195cc73835190d34ec58ba170531e9cd6adb087a0a1d556e733b03b32129e250cbd500369cbb3a216114b09d4640a96999816334d802cf5f2969359f190572e4d7694f6a5620f33649b153b648ad73e00cd7e189992310da00fa908618b1fb950c816ff78379d37a96e33eb35c09a3a689eaf9cf0b7d92e18fbd873", &(0x7f0000000580)=0x400, &(0x7f00000005c0), 0xe) r11 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0) write$auto_seq_oss_f_ops_seq_oss(r11, &(0x7f0000000680)="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", 0x658) ioctl$auto(r0, 0x400454ca, 0x38) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) 351.210681ms ago: executing program 4 (id=3192): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), r0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x14, r1, 0x1, 0x70bd26, 0x25dfdbfb}, 0x14}, 0x1, 0xfffd, 0x0, 0x44004811}, 0x40000c0) 39.294652ms ago: executing program 3 (id=3193): mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r0 = openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x101000, 0x0) r1 = pidfd_open$auto(0x1, 0x0) setns(r1, 0x0) pivot_root$auto(&(0x7f0000000040)='\x00', &(0x7f00000000c0)='$,-%\x01:\x00') ioctl$auto_FS_IOC_UNRESVSP64(r0, 0x4030582b, 0x8) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x100000000000033, 0x0) r2 = fsopen$auto(0x0, 0x1) r3 = openat$auto_msft_opcode_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bluetooth/hci0/msft_opcode\x00', 0x0, 0x0) read$auto(r3, &(0x7f0000006740)='^%-[)>\'\xdf\x00', 0xffff) fsconfig$auto(r2, 0x8, 0x0, 0x0, 0x0) r4 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r4, 0xc004743e, 0x0) openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x60100, 0x0) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_PPPIOCATTACH(r4, 0x4004743d, 0x0) 0s ago: executing program 4 (id=3194): r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) mmap$auto(0x400000000000000, 0xe983, 0x2df, 0x16, r0, 0xb) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/sctp/remaddr\x00', 0x101d00, 0x0) socket$nl_generic(0x10, 0x3, 0x10) memfd_create$auto(0x0, 0xa) r3 = socketpair$auto(0x1e, 0x0, 0x7, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0xa042, 0x0) unshare$auto(0x40000080) setitimer$auto(0x6, &(0x7f0000000380)={{0x10, 0x800000000000}, {0xffffffffffffbff6}}, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000640), r4) r5 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000c40), r4) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r4, &(0x7f0000001d40)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYRESOCT=r5, @ANYRES16=r5, @ANYBLOB="01002bbd7000fddbdf2503000000060009000900000006000900e92e0000120001004f1980af25430d91ee91098bd96ebc00e81f038014001900ff0100000000000000000000000000010001bc72147f80e07d8bd6e8c56980d100608040cb54d8eccb15b2534aee3f130fb07abdc983e34a2071200ea88ece40b2fe4ec20487244613cfb6e02638d613b4c2115fab68a84dc7a80b8d62c4e419a0629984a1f776fb83cef12bb4dda7f4ac5889aaec53f4", @ANYRES32=0x0, @ANYRESOCT=r5, @ANYRESHEX=r3, @ANYRESOCT=r2, @ANYRES32=0x0, @ANYRES16=r1], 0x2024}, 0x1, 0x0, 0x0, 0x8000}, 0x80000) r6 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fcntl$auto(r6, 0x400, 0x1) execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x0, 0x8000) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.12/usb33/33-0:1.0/ep_81/type\x00', 0x2600, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r7, &(0x7f0000000140)=""/12, 0xc) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/devices/virtual/block/ram10/events\x00', 0x4300, 0x0) r9 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fcntl$auto(r9, 0x400, 0x1) r10 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0xa02, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r10, 0xc1105517, &(0x7f00000001c0)={{@inferred, 0x100110d, 0x10003, 0x6, "e927783f468fa2e92fe8ec7a46cbb766439daa1ee1aa00000000e1800000000000000000040000660e070100", @raw=0x3}, 0x6, 0x0, 0x4, @raw=0x404, @reserved="b28b4117ead73afaaec6ff77dc1cb5a40433cfb9913cf8f2d9b18673656493359f8a4b1f7d84e6a12f3c756bfb8d109f9c89e495ff6da5cb757e5fd61e238b80882e1ab868bbf1155729044c29e0c63987902a3d8e91bb3819d50cc9447962fc53432b1c6d9cecf7d9f3fb6f1c7e834eaf603f22d4fdecab69b2fe82c12f3e5c", "a4699d30a05edbe0d28473c399a7dc920b153e9b1675451d7de94b4123f970bedd3460c667373fcc59b584d81592f6ab606c276852295e00af49e6de6e768034"}) execve$auto(&(0x7f0000000300)='./file0\x00', 0x0, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r8, &(0x7f00000000c0)='-7', 0x2) kernel console output (not intermixed with test programs): ew_radio_nl+0x10/0x10 [ 952.875326][T18861] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 952.875370][T18861] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 952.875418][T18861] genl_family_rcv_msg_doit+0x206/0x2f0 [ 952.875444][T18861] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 952.875499][T18861] ? genl_rcv_msg+0x670/0x800 [ 952.875525][T18861] genl_rcv_msg+0x55c/0x800 [ 952.875551][T18861] ? __pfx_genl_rcv_msg+0x10/0x10 [ 952.875573][T18861] ? __pfx___dev_queue_xmit+0x10/0x10 [ 952.875600][T18861] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 952.875633][T18861] ? __lock_acquire+0xaa4/0x1ba0 [ 952.875671][T18861] netlink_rcv_skb+0x16a/0x440 [ 952.875706][T18861] ? __pfx_genl_rcv_msg+0x10/0x10 [ 952.875730][T18861] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 952.875779][T18861] ? rcu_preempt_deferred_qs_irqrestore+0x4f5/0xbc0 [ 952.875815][T18861] ? __pfx_down_read+0x10/0x10 [ 952.875846][T18861] genl_rcv+0x28/0x40 [ 952.875882][T18861] netlink_unicast+0x53a/0x7f0 [ 952.875920][T18861] ? __pfx_netlink_unicast+0x10/0x10 [ 952.875964][T18861] netlink_sendmsg+0x8d1/0xdd0 [ 952.876003][T18861] ? __pfx_netlink_sendmsg+0x10/0x10 [ 952.876050][T18861] ____sys_sendmsg+0xa95/0xc70 [ 952.876074][T18861] ? copy_msghdr_from_user+0x10a/0x160 [ 952.876105][T18861] ? __pfx_____sys_sendmsg+0x10/0x10 [ 952.876143][T18861] ___sys_sendmsg+0x134/0x1d0 [ 952.876176][T18861] ? __pfx____sys_sendmsg+0x10/0x10 [ 952.876247][T18861] __sys_sendmsg+0x16d/0x220 [ 952.876285][T18861] ? __pfx___sys_sendmsg+0x10/0x10 [ 952.876317][T18861] ? __x64_sys_futex+0x1e0/0x4c0 [ 952.876353][T18861] ? rcu_is_watching+0x12/0xc0 [ 952.876386][T18861] do_syscall_64+0xcd/0x230 [ 952.876424][T18861] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 952.876448][T18861] RIP: 0033:0x7ff8ccb8e969 [ 952.876467][T18861] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 952.876491][T18861] RSP: 002b:00007ff8cd95e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 952.876513][T18861] RAX: ffffffffffffffda RBX: 00007ff8ccdb5fa0 RCX: 00007ff8ccb8e969 [ 952.876529][T18861] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000006 [ 952.876545][T18861] RBP: 00007ff8ccc10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 952.876560][T18861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 952.876574][T18861] R13: 0000000000000000 R14: 00007ff8ccdb5fa0 R15: 00007fffabeb76b8 [ 952.876605][T18861] [ 952.876635][T18861] ieee80211 phy40: Failed to select rate control algorithm [ 953.265267][T18818] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 953.272465][T18818] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 953.304555][T18818] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 953.343949][ T8356] .SR: left promiscuous mode [ 953.421954][ T8356] HfR: left promiscuous mode [ 953.552023][ T8356] ovs_: left promiscuous mode [ 953.644373][T18818] hsr_slave_0: entered promiscuous mode [ 953.670356][T18818] hsr_slave_1: entered promiscuous mode [ 953.676907][T18818] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 953.714611][T18818] Cannot create hsr debugfs directory [ 954.948865][ T5851] Bluetooth: hci3: command tx timeout [ 955.036784][ T30] audit: type=1326 audit(6040435547.480:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18894 comm="syz.3.2493" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fed0858e969 code=0x0 [ 955.149983][T18896] vhci_hcd: invalid port number 242 [ 955.172609][T18896] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 955.204561][T18902] FAULT_INJECTION: forcing a failure. [ 955.204561][T18902] name failslab, interval 1, probability 0, space 0, times 0 [ 955.268310][T18902] CPU: 1 UID: 0 PID: 18902 Comm: syz.3.2493 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 955.268353][T18902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 955.268368][T18902] Call Trace: [ 955.268376][T18902] [ 955.268386][T18902] dump_stack_lvl+0x16c/0x1f0 [ 955.268432][T18902] should_fail_ex+0x512/0x640 [ 955.268471][T18902] ? __kmalloc_noprof+0xbf/0x510 [ 955.268514][T18902] ? snd_pcm_plugin_build+0x434/0x650 [ 955.268552][T18902] should_failslab+0xc2/0x120 [ 955.268596][T18902] __kmalloc_noprof+0xd2/0x510 [ 955.268648][T18902] snd_pcm_plugin_build+0x434/0x650 [ 955.268693][T18902] snd_pcm_plugin_build_io+0x207/0x5f0 [ 955.268735][T18902] ? __pfx_snd_pcm_plugin_build_io+0x10/0x10 [ 955.268778][T18902] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 955.268852][T18902] snd_pcm_oss_change_params_locked+0x2f61/0x3b40 [ 955.268909][T18902] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 955.268981][T18902] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 955.269025][T18902] snd_pcm_oss_ioctl+0x21e9/0x37a0 [ 955.269064][T18902] ? hook_file_ioctl_common+0x145/0x410 [ 955.269106][T18902] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 955.269147][T18902] ? __fget_files+0x20e/0x3c0 [ 955.269187][T18902] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 955.269226][T18902] __x64_sys_ioctl+0x190/0x200 [ 955.269280][T18902] do_syscall_64+0xcd/0x230 [ 955.269340][T18902] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 955.269377][T18902] RIP: 0033:0x7fed0858e969 [ 955.269404][T18902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 955.269439][T18902] RSP: 002b:00007fed09339038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 955.269472][T18902] RAX: ffffffffffffffda RBX: 00007fed087b6240 RCX: 00007fed0858e969 [ 955.269495][T18902] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008 [ 955.269517][T18902] RBP: 00007fed08610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 955.269538][T18902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 955.269559][T18902] R13: 0000000000000000 R14: 00007fed087b6240 R15: 00007fff698002c8 [ 955.269602][T18902] [ 955.486935][ C1] vkms_vblank_simulate: vblank timer overrun [ 955.640465][ T8356] hsr_slave_0: left promiscuous mode [ 955.675728][T18903] Invalid ELF header magic: != ELF [ 955.683830][ T8356] hsr_slave_1: left promiscuous mode [ 955.690110][ T8356] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 955.697625][ T8356] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 955.723370][ T8356] veth1_macvtap: left promiscuous mode [ 955.730660][ T8356] veth1_vlan: left promiscuous mode [ 955.736381][ T8356] veth0_vlan: left promiscuous mode [ 955.984442][T18906] netlink: 186 bytes leftover after parsing attributes in process `syz.3.2494'. [ 956.002411][T18906] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2494'. [ 956.017046][T18906] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 956.429283][ T8356] team0 (unregistering): Port device team_slave_1 removed [ 957.035324][ T5851] Bluetooth: hci3: command tx timeout [ 958.301032][T18818] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 958.454228][T18818] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 958.475789][T18818] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 958.528607][T18818] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 958.739920][T18937] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2507'. [ 958.786628][T18818] 8021q: adding VLAN 0 to HW filter on device bond0 [ 959.097961][T18818] 8021q: adding VLAN 0 to HW filter on device team0 [ 959.175157][ T8359] bridge0: port 1(bridge_slave_0) entered blocking state [ 959.182504][ T8359] bridge0: port 1(bridge_slave_0) entered forwarding state [ 959.339416][ T8359] bridge0: port 2(bridge_slave_1) entered blocking state [ 959.346712][ T8359] bridge0: port 2(bridge_slave_1) entered forwarding state [ 960.062603][T18818] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 961.274278][T18818] veth0_vlan: entered promiscuous mode [ 961.442793][T18818] veth1_vlan: entered promiscuous mode [ 961.496082][T18982] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 961.782882][T18818] veth0_macvtap: entered promiscuous mode [ 961.834431][T18818] veth1_macvtap: entered promiscuous mode [ 962.034361][T18992] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2509'. [ 962.103768][T18990] Invalid ELF header magic: != ELF [ 962.182209][T18818] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 962.227962][T18818] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 962.282534][T18818] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 962.299136][T18818] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 962.337060][T18818] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 962.615931][T18818] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 962.671079][T18818] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 962.705209][T18818] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 962.818356][T18818] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 962.847486][T18818] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 962.858718][T18818] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 962.873426][T18818] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 963.564631][ T8359] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 963.626646][ T8359] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 963.863432][ T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 963.888730][ T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 965.807264][T19039] FAULT_INJECTION: forcing a failure. [ 965.807264][T19039] name failslab, interval 1, probability 0, space 0, times 0 [ 965.828722][T19039] CPU: 1 UID: 0 PID: 19039 Comm: syz.1.2518 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 965.828773][T19039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 965.828794][T19039] Call Trace: [ 965.828806][T19039] [ 965.828818][T19039] dump_stack_lvl+0x16c/0x1f0 [ 965.828876][T19039] should_fail_ex+0x512/0x640 [ 965.828916][T19039] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 965.828958][T19039] should_failslab+0xc2/0x120 [ 965.829004][T19039] __kmalloc_cache_noprof+0x6a/0x3e0 [ 965.829039][T19039] ? get_device_parent+0x274/0x4e0 [ 965.829073][T19039] ? get_device_parent+0x2b1/0x4e0 [ 965.829112][T19039] get_device_parent+0x2b1/0x4e0 [ 965.829154][T19039] device_add+0x1ad/0x1a70 [ 965.829197][T19039] ? __pfx_device_add+0x10/0x10 [ 965.829234][T19039] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 965.829287][T19039] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 965.829351][T19039] wiphy_register+0x1c9c/0x2850 [ 965.829388][T19039] ? netdev_run_todo+0x864/0x1320 [ 965.829439][T19039] ? __dev_printk+0x1a0/0x270 [ 965.829497][T19039] ? __pfx_wiphy_register+0x10/0x10 [ 965.829567][T19039] ieee80211_register_hw+0x2432/0x4020 [ 965.829622][T19039] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 965.829665][T19039] ? find_held_lock+0x2b/0x80 [ 965.829703][T19039] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 965.829755][T19039] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 965.829809][T19039] ? __hrtimer_setup+0x176/0x280 [ 965.829867][T19039] mac80211_hwsim_new_radio+0x3034/0x54d0 [ 965.829940][T19039] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 965.830001][T19039] hwsim_new_radio_nl+0xb51/0x12c0 [ 965.830051][T19039] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 965.830110][T19039] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 965.830172][T19039] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 965.830241][T19039] genl_family_rcv_msg_doit+0x206/0x2f0 [ 965.830278][T19039] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 965.830338][T19039] ? trace_cap_capable+0x18d/0x200 [ 965.830385][T19039] ? bpf_lsm_capable+0x9/0x10 [ 965.830423][T19039] ? security_capable+0x7e/0x260 [ 965.830459][T19039] ? ns_capable+0xd7/0x110 [ 965.830504][T19039] genl_rcv_msg+0x55c/0x800 [ 965.830552][T19039] ? __pfx_genl_rcv_msg+0x10/0x10 [ 965.830587][T19039] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 965.830634][T19039] ? irqentry_exit+0x3b/0x90 [ 965.830681][T19039] ? lockdep_hardirqs_on+0x7c/0x110 [ 965.830739][T19039] netlink_rcv_skb+0x16a/0x440 [ 965.830789][T19039] ? __pfx_genl_rcv_msg+0x10/0x10 [ 965.830826][T19039] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 965.830896][T19039] ? rcu_preempt_deferred_qs_irqrestore+0x4f5/0xbc0 [ 965.830949][T19039] ? __pfx_down_read+0x10/0x10 [ 965.830992][T19039] genl_rcv+0x28/0x40 [ 965.831039][T19039] netlink_unicast+0x53a/0x7f0 [ 965.831095][T19039] ? __pfx_netlink_unicast+0x10/0x10 [ 965.831141][T19039] ? __lock_acquire+0xaa4/0x1ba0 [ 965.831200][T19039] netlink_sendmsg+0x8d1/0xdd0 [ 965.831256][T19039] ? __pfx_netlink_sendmsg+0x10/0x10 [ 965.831324][T19039] ____sys_sendmsg+0xa95/0xc70 [ 965.831358][T19039] ? copy_msghdr_from_user+0x10a/0x160 [ 965.831402][T19039] ? __pfx_____sys_sendmsg+0x10/0x10 [ 965.831443][T19039] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 965.831512][T19039] ___sys_sendmsg+0x134/0x1d0 [ 965.831569][T19039] ? __pfx____sys_sendmsg+0x10/0x10 [ 965.831675][T19039] __sys_sendmsg+0x16d/0x220 [ 965.831723][T19039] ? __pfx___sys_sendmsg+0x10/0x10 [ 965.831769][T19039] ? __x64_sys_futex+0x1e0/0x4c0 [ 965.831838][T19039] do_syscall_64+0xcd/0x230 [ 965.831891][T19039] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 965.831923][T19039] RIP: 0033:0x7f0b0fb8e969 [ 965.831950][T19039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 965.831981][T19039] RSP: 002b:00007f0b10abd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 965.832013][T19039] RAX: ffffffffffffffda RBX: 00007f0b0fdb5fa0 RCX: 00007f0b0fb8e969 [ 965.832035][T19039] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000006 [ 965.832056][T19039] RBP: 00007f0b0fc10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 965.832075][T19039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 965.832094][T19039] R13: 0000000000000000 R14: 00007f0b0fdb5fa0 R15: 00007ffe2f8ca888 [ 965.832138][T19039] [ 970.182437][T19081] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 971.951738][T19125] Invalid ELF header magic: != ELF [ 974.279778][T19137] vhci_hcd: invalid port number 242 [ 974.285063][T19137] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 974.424326][T19157] Invalid ELF header magic: != ELF [ 975.012347][T19156] Invalid ELF header magic: != ELF [ 976.901269][T19188] vhci_hcd: invalid port number 242 [ 976.939517][T19188] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 977.240915][T19193] Invalid ELF header magic: != ELF [ 981.009433][T19237] Invalid ELF header magic: != ELF [ 983.216638][T19263] Invalid ELF header magic: != ELF [ 983.531975][T19272] vhci_hcd: invalid port number 242 [ 983.541165][T19272] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 983.656334][T19279] FAULT_INJECTION: forcing a failure. [ 983.656334][T19279] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 983.683590][T19279] CPU: 1 UID: 0 PID: 19279 Comm: syz.2.2561 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 983.683625][T19279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 983.683640][T19279] Call Trace: [ 983.683648][T19279] [ 983.683658][T19279] dump_stack_lvl+0x16c/0x1f0 [ 983.683696][T19279] should_fail_ex+0x512/0x640 [ 983.683727][T19279] _copy_to_user+0x32/0xd0 [ 983.683758][T19279] simple_read_from_buffer+0xcb/0x170 [ 983.683796][T19279] proc_fail_nth_read+0x197/0x270 [ 983.683831][T19279] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 983.683866][T19279] ? rw_verify_area+0xcf/0x680 [ 983.683900][T19279] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 983.683934][T19279] vfs_read+0x1de/0xc70 [ 983.683961][T19279] ? __pfx___mutex_lock+0x10/0x10 [ 983.683994][T19279] ? __pfx_vfs_read+0x10/0x10 [ 983.684025][T19279] ? __fget_files+0x20e/0x3c0 [ 983.684055][T19279] ksys_read+0x12a/0x240 [ 983.684077][T19279] ? __pfx_ksys_read+0x10/0x10 [ 983.684108][T19279] do_syscall_64+0xcd/0x230 [ 983.684143][T19279] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 983.684166][T19279] RIP: 0033:0x7ff8ccb8d37c [ 983.684185][T19279] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 983.684208][T19279] RSP: 002b:00007ff8cd95e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 983.684230][T19279] RAX: ffffffffffffffda RBX: 00007ff8ccdb5fa0 RCX: 00007ff8ccb8d37c [ 983.684246][T19279] RDX: 000000000000000f RSI: 00007ff8cd95e0a0 RDI: 0000000000000004 [ 983.684261][T19279] RBP: 00007ff8cd95e090 R08: 0000000000000000 R09: 0000000000000000 [ 983.684276][T19279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 983.684297][T19279] R13: 0000000000000000 R14: 00007ff8ccdb5fa0 R15: 00007fffabeb76b8 [ 983.684326][T19279] [ 984.835584][T19296] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2566'. [ 986.491860][T19324] vhci_hcd: invalid port number 242 [ 986.497161][T19324] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 986.656712][T19325] vhci_hcd: invalid port number 242 [ 986.663527][T19325] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 986.959497][T19340] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 987.790768][T19356] FAULT_INJECTION: forcing a failure. [ 987.790768][T19356] name failslab, interval 1, probability 0, space 0, times 0 [ 987.811012][T19356] CPU: 1 UID: 0 PID: 19356 Comm: syz.3.2574 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 987.811059][T19356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 987.811079][T19356] Call Trace: [ 987.811090][T19356] [ 987.811103][T19356] dump_stack_lvl+0x16c/0x1f0 [ 987.811155][T19356] should_fail_ex+0x512/0x640 [ 987.811192][T19356] ? fs_reclaim_acquire+0xae/0x150 [ 987.811246][T19356] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 987.811289][T19356] should_failslab+0xc2/0x120 [ 987.811327][T19356] __kmalloc_noprof+0xd2/0x510 [ 987.811375][T19356] tomoyo_realpath_from_path+0xc2/0x6e0 [ 987.811426][T19356] ? tomoyo_profile+0x47/0x60 [ 987.811481][T19356] tomoyo_path_number_perm+0x245/0x580 [ 987.811519][T19356] ? tomoyo_path_number_perm+0x237/0x580 [ 987.811564][T19356] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 987.811608][T19356] ? find_held_lock+0x2b/0x80 [ 987.811679][T19356] ? find_held_lock+0x2b/0x80 [ 987.811722][T19356] ? hook_file_ioctl_common+0x145/0x410 [ 987.811768][T19356] ? __fget_files+0x20e/0x3c0 [ 987.811807][T19356] security_file_ioctl+0x9b/0x240 [ 987.811851][T19356] __x64_sys_ioctl+0xb7/0x200 [ 987.811903][T19356] do_syscall_64+0xcd/0x230 [ 987.811957][T19356] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 987.811989][T19356] RIP: 0033:0x7fed0858e969 [ 987.812016][T19356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 987.812053][T19356] RSP: 002b:00007fed0937b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 987.812084][T19356] RAX: ffffffffffffffda RBX: 00007fed087b6080 RCX: 00007fed0858e969 [ 987.812106][T19356] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000008 [ 987.812126][T19356] RBP: 00007fed0937b090 R08: 0000000000000000 R09: 0000000000000000 [ 987.812147][T19356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 987.812167][T19356] R13: 0000000000000000 R14: 00007fed087b6080 R15: 00007fff698002c8 [ 987.812210][T19356] [ 987.812310][T19356] ERROR: Out of memory at tomoyo_realpath_from_path. [ 988.256234][T19374] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2576'. [ 989.221133][T19386] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2579'. [ 989.772435][T19405] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 990.822791][T19416] vhci_hcd: invalid port number 242 [ 990.832000][T19416] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 993.398713][T19466] FAULT_INJECTION: forcing a failure. [ 993.398713][T19466] name failslab, interval 1, probability 0, space 0, times 0 [ 993.494228][T19466] CPU: 0 UID: 0 PID: 19466 Comm: syz.4.2594 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 993.494277][T19466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 993.494308][T19466] Call Trace: [ 993.494325][T19466] [ 993.494337][T19466] dump_stack_lvl+0x16c/0x1f0 [ 993.494388][T19466] should_fail_ex+0x512/0x640 [ 993.494426][T19466] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 993.494470][T19466] should_failslab+0xc2/0x120 [ 993.494513][T19466] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 993.494552][T19466] ? __alloc_skb+0x2b2/0x380 [ 993.494601][T19466] __alloc_skb+0x2b2/0x380 [ 993.494640][T19466] ? __pfx___alloc_skb+0x10/0x10 [ 993.494686][T19466] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 993.494731][T19466] ? __lock_acquire+0xaa4/0x1ba0 [ 993.494781][T19466] netlink_alloc_large_skb+0x69/0x130 [ 993.494831][T19466] netlink_sendmsg+0x6a1/0xdd0 [ 993.494883][T19466] ? __pfx_netlink_sendmsg+0x10/0x10 [ 993.494973][T19466] ____sys_sendmsg+0xa95/0xc70 [ 993.495015][T19466] ? copy_msghdr_from_user+0x10a/0x160 [ 993.495075][T19466] ? __pfx_____sys_sendmsg+0x10/0x10 [ 993.495134][T19466] ___sys_sendmsg+0x134/0x1d0 [ 993.495180][T19466] ? __pfx____sys_sendmsg+0x10/0x10 [ 993.495280][T19466] __sys_sendmsg+0x16d/0x220 [ 993.495334][T19466] ? __pfx___sys_sendmsg+0x10/0x10 [ 993.495390][T19466] ? rcu_is_watching+0x12/0xc0 [ 993.495434][T19466] do_syscall_64+0xcd/0x230 [ 993.495485][T19466] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 993.495518][T19466] RIP: 0033:0x7f07b5b8e969 [ 993.495543][T19466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 993.495575][T19466] RSP: 002b:00007f07b69d4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 993.495605][T19466] RAX: ffffffffffffffda RBX: 00007f07b5db5fa0 RCX: 00007f07b5b8e969 [ 993.495627][T19466] RDX: 0000000002000000 RSI: 0000200000000080 RDI: 0000000000000005 [ 993.495648][T19466] RBP: 00007f07b69d4090 R08: 0000000000000000 R09: 0000000000000000 [ 993.495668][T19466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 993.495688][T19466] R13: 0000000000000000 R14: 00007f07b5db5fa0 R15: 00007ffd7c1b3a08 [ 993.495728][T19466] [ 993.847262][T19456] Invalid ELF header magic: != ELF [ 996.122259][T19505] vhci_hcd: invalid port number 242 [ 996.127544][T19505] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 996.680991][T19519] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2603'. [ 998.232171][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 998.244171][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 999.089895][T19534] Invalid ELF header magic: != ELF [ 999.359382][T19554] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 999.781987][T19567] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1001.110746][T19588] vhci_hcd: invalid port number 242 [ 1001.116387][T19588] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1001.610764][T19602] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2617'. [ 1001.936521][T19603] vhci_hcd: invalid port number 242 [ 1001.949842][T19603] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1006.057095][T19656] Invalid ELF header magic: != ELF [ 1006.791264][T19670] Invalid ELF header magic: != ELF [ 1007.495045][T19673] Invalid ELF header magic: != ELF [ 1009.404490][T19714] vhci_hcd: invalid port number 242 [ 1009.409872][T19714] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1011.535894][T19753] ovs_: entered promiscuous mode [ 1012.104523][T19738] Invalid ELF header magic: != ELF [ 1012.589095][T19761] Invalid ELF header magic: != ELF [ 1013.842425][T19784] Invalid ELF header magic: != ELF [ 1014.361598][T19786] Invalid ELF header magic: != ELF [ 1014.453527][T19804] vhci_hcd: invalid port number 242 [ 1014.508452][T19804] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1015.808331][T19825] syz.2.2652 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 1015.963613][T19829] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1016.041592][T19815] vhci_hcd: invalid port number 242 [ 1016.046846][T19815] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1016.561217][T19846] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1016.829111][T19839] usb usb38: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1016.837432][T19839] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 1016.937186][T19856] vhci_hcd: invalid port number 242 [ 1016.967125][T19856] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1017.197160][T19868] FAULT_INJECTION: forcing a failure. [ 1017.197160][T19868] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1017.232298][T19868] CPU: 0 UID: 0 PID: 19868 Comm: syz.3.2661 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1017.232346][T19868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1017.232366][T19868] Call Trace: [ 1017.232377][T19868] [ 1017.232390][T19868] dump_stack_lvl+0x16c/0x1f0 [ 1017.232444][T19868] should_fail_ex+0x512/0x640 [ 1017.232488][T19868] _copy_to_user+0x32/0xd0 [ 1017.232534][T19868] simple_read_from_buffer+0xcb/0x170 [ 1017.232590][T19868] proc_fail_nth_read+0x197/0x270 [ 1017.232641][T19868] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1017.232693][T19868] ? rw_verify_area+0xcf/0x680 [ 1017.232742][T19868] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1017.232792][T19868] vfs_read+0x1de/0xc70 [ 1017.232831][T19868] ? __pfx___mutex_lock+0x10/0x10 [ 1017.232887][T19868] ? __pfx_vfs_read+0x10/0x10 [ 1017.232928][T19868] ? __fget_files+0x20e/0x3c0 [ 1017.232969][T19868] ksys_read+0x12a/0x240 [ 1017.233001][T19868] ? __pfx_ksys_read+0x10/0x10 [ 1017.233032][T19868] ? syscall_user_dispatch+0x78/0x140 [ 1017.233099][T19868] do_syscall_64+0xcd/0x230 [ 1017.233150][T19868] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1017.233183][T19868] RIP: 0033:0x7fed0858d37c [ 1017.233209][T19868] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1017.233242][T19868] RSP: 002b:00007fed0939c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1017.233273][T19868] RAX: ffffffffffffffda RBX: 00007fed087b5fa0 RCX: 00007fed0858d37c [ 1017.233298][T19868] RDX: 000000000000000f RSI: 00007fed0939c0a0 RDI: 0000000000000003 [ 1017.233319][T19868] RBP: 00007fed0939c090 R08: 0000000000000000 R09: 0000000000000000 [ 1017.233340][T19868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1017.233360][T19868] R13: 0000000000000000 R14: 00007fed087b5fa0 R15: 00007fff698002c8 [ 1017.233402][T19868] [ 1017.935502][T19876] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2664'. [ 1018.680507][T19860] Invalid ELF header magic: != ELF [ 1019.027863][T19889] usb usb38: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1019.035820][T19889] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 1019.232172][T19891] usb usb38: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1019.250637][T19891] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 1019.594937][T19902] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1019.818842][T19906] FAULT_INJECTION: forcing a failure. [ 1019.818842][T19906] name failslab, interval 1, probability 0, space 0, times 0 [ 1019.832284][T19906] CPU: 0 UID: 0 PID: 19906 Comm: syz.2.2668 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1019.832328][T19906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1019.832348][T19906] Call Trace: [ 1019.832359][T19906] [ 1019.832371][T19906] dump_stack_lvl+0x16c/0x1f0 [ 1019.832422][T19906] should_fail_ex+0x512/0x640 [ 1019.832457][T19906] ? __kmalloc_noprof+0xbf/0x510 [ 1019.832498][T19906] ? copy_splice_read+0x1a8/0xba0 [ 1019.832544][T19906] should_failslab+0xc2/0x120 [ 1019.832594][T19906] __kmalloc_noprof+0xd2/0x510 [ 1019.832660][T19906] copy_splice_read+0x1a8/0xba0 [ 1019.832719][T19906] ? __pfx_copy_splice_read+0x10/0x10 [ 1019.832774][T19906] ? look_up_lock_class+0x6b/0x150 [ 1019.832827][T19906] ? lockdep_init_map_type+0x5c/0x280 [ 1019.832877][T19906] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 1019.832915][T19906] ? __pfx_copy_splice_read+0x10/0x10 [ 1019.832966][T19906] do_splice_read+0x282/0x370 [ 1019.833021][T19906] splice_direct_to_actor+0x2a1/0xa30 [ 1019.833077][T19906] ? __pfx_direct_splice_actor+0x10/0x10 [ 1019.833137][T19906] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 1019.833187][T19906] ? get_pid_task+0xfc/0x250 [ 1019.833247][T19906] do_splice_direct+0x174/0x240 [ 1019.833299][T19906] ? __pfx_do_splice_direct+0x10/0x10 [ 1019.833352][T19906] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 1019.833410][T19906] ? rw_verify_area+0xcf/0x680 [ 1019.833467][T19906] do_sendfile+0xafd/0xe50 [ 1019.833507][T19906] ? __pfx_do_sendfile+0x10/0x10 [ 1019.833540][T19906] ? __fget_files+0x20e/0x3c0 [ 1019.833590][T19906] __x64_sys_sendfile64+0x1d8/0x220 [ 1019.833630][T19906] ? ksys_write+0x1b9/0x240 [ 1019.833663][T19906] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 1019.833706][T19906] ? rcu_is_watching+0x12/0xc0 [ 1019.833752][T19906] do_syscall_64+0xcd/0x230 [ 1019.833805][T19906] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1019.833838][T19906] RIP: 0033:0x7ff8ccb8e969 [ 1019.833863][T19906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1019.833895][T19906] RSP: 002b:00007ff8cd95e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1019.833926][T19906] RAX: ffffffffffffffda RBX: 00007ff8ccdb5fa0 RCX: 00007ff8ccb8e969 [ 1019.833948][T19906] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 1019.833968][T19906] RBP: 00007ff8cd95e090 R08: 0000000000000000 R09: 0000000000000000 [ 1019.833987][T19906] R10: 000000007ffff001 R11: 0000000000000246 R12: 0000000000000001 [ 1019.834008][T19906] R13: 0000000000000000 R14: 00007ff8ccdb5fa0 R15: 00007fffabeb76b8 [ 1019.834049][T19906] [ 1020.747028][T19924] ubi0: attaching mtd0 [ 1020.762489][T19926] program syz.3.2673 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1020.789035][T19924] ubi0: scanning is finished [ 1020.798639][T19924] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 1021.042044][T19932] Invalid ELF header magic: != ELF [ 1021.176798][T19909] Invalid ELF header magic: != ELF [ 1021.302510][T19929] .SR: entered promiscuous mode [ 1021.368477][T19924] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1022.693042][T19958] FAULT_INJECTION: forcing a failure. [ 1022.693042][T19958] name failslab, interval 1, probability 0, space 0, times 0 [ 1022.707463][T19959] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2678'. [ 1022.751298][T19958] CPU: 0 UID: 0 PID: 19958 Comm: syz.3.2679 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1022.751365][T19958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1022.751385][T19958] Call Trace: [ 1022.751404][T19958] [ 1022.751419][T19958] dump_stack_lvl+0x16c/0x1f0 [ 1022.751474][T19958] should_fail_ex+0x512/0x640 [ 1022.751513][T19958] ? __kmalloc_noprof+0xbf/0x510 [ 1022.751557][T19958] ? ieee80211_register_hw+0x1548/0x4020 [ 1022.751591][T19958] should_failslab+0xc2/0x120 [ 1022.751635][T19958] __kmalloc_noprof+0xd2/0x510 [ 1022.751675][T19958] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1022.751732][T19958] ieee80211_register_hw+0x1548/0x4020 [ 1022.751772][T19958] ? __pfx__raw_spin_unlock_bh+0x1/0x10 [ 1022.751816][T19958] ? __debug_object_init+0x231/0x3d0 [ 1022.751872][T19958] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 1022.751913][T19958] ? find_held_lock+0x2b/0x80 [ 1022.751950][T19958] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1022.751999][T19958] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 1022.752055][T19958] ? __hrtimer_setup+0x176/0x280 [ 1022.752112][T19958] mac80211_hwsim_new_radio+0x3034/0x54d0 [ 1022.752175][T19958] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 1022.752233][T19958] hwsim_new_radio_nl+0xb51/0x12c0 [ 1022.752280][T19958] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1022.752335][T19958] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 1022.752402][T19958] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 1022.752471][T19958] genl_family_rcv_msg_doit+0x206/0x2f0 [ 1022.752509][T19958] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 1022.752565][T19958] ? trace_cap_capable+0x18d/0x200 [ 1022.752611][T19958] ? bpf_lsm_capable+0x9/0x10 [ 1022.752649][T19958] ? security_capable+0x7e/0x260 [ 1022.752686][T19958] ? ns_capable+0xd7/0x110 [ 1022.752730][T19958] genl_rcv_msg+0x55c/0x800 [ 1022.752769][T19958] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1022.752800][T19958] ? __pfx___dev_queue_xmit+0x10/0x10 [ 1022.752840][T19958] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1022.752887][T19958] ? __lock_acquire+0xaa4/0x1ba0 [ 1022.752948][T19958] netlink_rcv_skb+0x16a/0x440 [ 1022.752999][T19958] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1022.753035][T19958] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1022.753111][T19958] ? __pfx_down_read+0x10/0x10 [ 1022.753144][T19958] ? netlink_deliver_tap+0x1ae/0xd30 [ 1022.753199][T19958] genl_rcv+0x28/0x40 [ 1022.753251][T19958] netlink_unicast+0x53a/0x7f0 [ 1022.753305][T19958] ? __pfx_netlink_unicast+0x10/0x10 [ 1022.753353][T19958] ? __lock_acquire+0xaa4/0x1ba0 [ 1022.753416][T19958] netlink_sendmsg+0x8d1/0xdd0 [ 1022.753475][T19958] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1022.753541][T19958] ____sys_sendmsg+0xa95/0xc70 [ 1022.753577][T19958] ? copy_msghdr_from_user+0x10a/0x160 [ 1022.753624][T19958] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1022.753665][T19958] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1022.753722][T19958] ___sys_sendmsg+0x134/0x1d0 [ 1022.753772][T19958] ? __pfx____sys_sendmsg+0x10/0x10 [ 1022.753872][T19958] __sys_sendmsg+0x16d/0x220 [ 1022.753920][T19958] ? __pfx___sys_sendmsg+0x10/0x10 [ 1022.753966][T19958] ? __x64_sys_futex+0x1e0/0x4c0 [ 1022.754018][T19958] ? rcu_is_watching+0x12/0xc0 [ 1022.754066][T19958] do_syscall_64+0xcd/0x230 [ 1022.754120][T19958] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1022.754155][T19958] RIP: 0033:0x7fed0858e969 [ 1022.754183][T19958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1022.754218][T19958] RSP: 002b:00007fed0939c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1022.754251][T19958] RAX: ffffffffffffffda RBX: 00007fed087b5fa0 RCX: 00007fed0858e969 [ 1022.754275][T19958] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000006 [ 1022.754297][T19958] RBP: 00007fed08610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1022.754318][T19958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1022.754338][T19958] R13: 0000000000000000 R14: 00007fed087b5fa0 R15: 00007fff698002c8 [ 1022.754383][T19958] [ 1024.749233][T19975] zswap: compressor not available [ 1025.226652][T19989] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input19 [ 1027.990740][T20014] Invalid ELF header magic: != ELF [ 1028.376608][T20001] vhci_hcd: invalid port number 242 [ 1028.439189][T20001] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1028.587703][T20028] netlink: 860 bytes leftover after parsing attributes in process `syz.1.2692'. [ 1030.548198][T20063] vhci_hcd: invalid port number 242 [ 1030.557604][T20063] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1031.028541][ T5851] Bluetooth: hci1: command 0x0406 tx timeout [ 1032.593123][T20077] Invalid ELF header magic: != ELF [ 1033.379029][T20097] vhci_hcd: invalid port number 242 [ 1033.384324][T20097] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1034.049583][T20115] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1035.329791][T20127] openvswitch: ovs_: Dropping previously announced user features [ 1035.822868][T20137] openvswitch: ovs_: Dropping previously announced user features [ 1036.373355][T20137] FAULT_INJECTION: forcing a failure. [ 1036.373355][T20137] name failslab, interval 1, probability 0, space 0, times 0 [ 1036.386780][T20137] CPU: 1 UID: 0 PID: 20137 Comm: syz.4.2717 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1036.386822][T20137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1036.386842][T20137] Call Trace: [ 1036.386856][T20137] [ 1036.386869][T20137] dump_stack_lvl+0x116/0x1f0 [ 1036.386920][T20137] should_fail_ex+0x512/0x640 [ 1036.386967][T20137] should_failslab+0xc2/0x120 [ 1036.387026][T20137] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1036.387067][T20137] ? __send_signal_locked+0x159/0x12c0 [ 1036.387101][T20137] ? sig_get_ucounts+0x1c0/0x5b0 [ 1036.387160][T20137] __send_signal_locked+0x159/0x12c0 [ 1036.387203][T20137] do_notify_parent+0xd84/0xfa0 [ 1036.387239][T20137] ? __pfx_do_notify_parent+0x10/0x10 [ 1036.387272][T20137] ? __wake_up+0x3f/0x60 [ 1036.387325][T20137] ? release_task+0xd31/0x1c70 [ 1036.387371][T20137] ? do_exit+0x1506/0x2c30 [ 1036.387424][T20137] release_task+0x1717/0x1c70 [ 1036.387506][T20137] ? __pfx_release_task+0x10/0x10 [ 1036.387556][T20137] ? find_held_lock+0x2b/0x80 [ 1036.387592][T20137] ? __wake_up+0x3f/0x60 [ 1036.387638][T20137] ? rcu_is_watching+0x12/0xc0 [ 1036.387678][T20137] do_exit+0x1506/0x2c30 [ 1036.387730][T20137] ? __pfx_do_exit+0x10/0x10 [ 1036.387790][T20137] ? find_held_lock+0x2b/0x80 [ 1036.387829][T20137] do_group_exit+0xd3/0x2a0 [ 1036.387879][T20137] get_signal+0x2673/0x26d0 [ 1036.387934][T20137] ? __pfx_get_signal+0x10/0x10 [ 1036.387973][T20137] ? do_futex+0x122/0x350 [ 1036.388010][T20137] ? __pfx_do_futex+0x10/0x10 [ 1036.388050][T20137] arch_do_signal_or_restart+0x8f/0x7a0 [ 1036.388100][T20137] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1036.388175][T20137] ? rcu_is_watching+0x12/0xc0 [ 1036.388215][T20137] syscall_exit_to_user_mode+0x150/0x2a0 [ 1036.388261][T20137] do_syscall_64+0xda/0x230 [ 1036.388312][T20137] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1036.388344][T20137] RIP: 0033:0x7f07b5b8e969 [ 1036.388369][T20137] Code: Unable to access opcode bytes at 0x7f07b5b8e93f. [ 1036.388384][T20137] RSP: 002b:00007f07b69d40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1036.388413][T20137] RAX: fffffffffffffe00 RBX: 00007f07b5db5fa8 RCX: 00007f07b5b8e969 [ 1036.388433][T20137] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f07b5db5fa8 [ 1036.388470][T20137] RBP: 00007f07b5db5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1036.388490][T20137] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f07b5db5fac [ 1036.388510][T20137] R13: 0000000000000000 R14: 00007ffd7c1b3920 R15: 00007ffd7c1b3a08 [ 1036.388552][T20137] [ 1036.774086][T20139] vhci_hcd: invalid port number 242 [ 1036.843618][T20139] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1037.157240][T20159] vhci_hcd: invalid port number 242 [ 1037.173369][T20159] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1037.859437][T20163] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 1038.913651][T20185] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1039.874084][T20190] ptrace attach of "./syz-executor exec"[10893] was attempted by "./syz-executor exec"[20190] [ 1040.194951][T20196] Invalid ELF header magic: != ELF [ 1041.649795][T20224] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 1042.471747][T20248] vhci_hcd: invalid port number 242 [ 1042.489933][T20248] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1042.803286][T20247] vhci_hcd: invalid port number 242 [ 1042.855913][T20247] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1043.384004][T20258] FAULT_INJECTION: forcing a failure. [ 1043.384004][T20258] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1043.400634][T20258] CPU: 0 UID: 0 PID: 20258 Comm: syz.3.2739 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1043.400681][T20258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1043.400701][T20258] Call Trace: [ 1043.400710][T20258] [ 1043.400719][T20258] dump_stack_lvl+0x16c/0x1f0 [ 1043.400758][T20258] should_fail_ex+0x512/0x640 [ 1043.400789][T20258] core_sys_select+0x4b2/0xbe0 [ 1043.400818][T20258] ? __pfx_core_sys_select+0x10/0x10 [ 1043.400845][T20258] ? proc_fail_nth_write+0x9f/0x250 [ 1043.400902][T20258] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1043.400950][T20258] kern_select+0x15d/0x1e0 [ 1043.400972][T20258] ? __pfx_kern_select+0x10/0x10 [ 1043.400998][T20258] ? __pfx_ksys_write+0x10/0x10 [ 1043.401027][T20258] __x64_sys_select+0xbd/0x160 [ 1043.401047][T20258] ? do_syscall_64+0x91/0x230 [ 1043.401081][T20258] ? lockdep_hardirqs_on+0x7c/0x110 [ 1043.401112][T20258] do_syscall_64+0xcd/0x230 [ 1043.401148][T20258] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1043.401172][T20258] RIP: 0033:0x7fed0858e969 [ 1043.401191][T20258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1043.401214][T20258] RSP: 002b:00007fed0937b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 1043.401236][T20258] RAX: ffffffffffffffda RBX: 00007fed087b6080 RCX: 00007fed0858e969 [ 1043.401252][T20258] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 1043.401266][T20258] RBP: 00007fed0937b090 R08: 0000000000000000 R09: 0000000000000000 [ 1043.401280][T20258] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000001 [ 1043.401295][T20258] R13: 0000000000000001 R14: 00007fed087b6080 R15: 00007fff698002c8 [ 1043.401323][T20258] [ 1044.161525][ T5851] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 1044.178978][ T5851] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 1044.196356][ T5851] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 1044.222241][ T5851] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 1044.237447][ T5851] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 1044.569781][T20267] FAULT_INJECTION: forcing a failure. [ 1044.569781][T20267] name failslab, interval 1, probability 0, space 0, times 0 [ 1044.574046][T20261] chnl_net:caif_netlink_parms(): no params data found [ 1044.638851][T20267] CPU: 1 UID: 0 PID: 20267 Comm: syz.4.2741 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1044.638899][T20267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1044.638919][T20267] Call Trace: [ 1044.638930][T20267] [ 1044.638942][T20267] dump_stack_lvl+0x16c/0x1f0 [ 1044.638995][T20267] should_fail_ex+0x512/0x640 [ 1044.639033][T20267] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 1044.639082][T20267] should_failslab+0xc2/0x120 [ 1044.639126][T20267] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 1044.639172][T20267] ? __kthread_create_on_node+0x186/0x3f0 [ 1044.639226][T20267] kvasprintf+0xbc/0x160 [ 1044.639270][T20267] ? __pfx_kvasprintf+0x10/0x10 [ 1044.639331][T20267] ? __pfx_rescuer_thread+0x10/0x10 [ 1044.639361][T20267] __kthread_create_on_node+0x186/0x3f0 [ 1044.639411][T20267] ? __pfx___kthread_create_on_node+0x10/0x10 [ 1044.639470][T20267] ? __pfx_vsnprintf+0x10/0x10 [ 1044.639521][T20267] ? __pfx_rescuer_thread+0x10/0x10 [ 1044.639555][T20267] kthread_create_on_node+0xc7/0x100 [ 1044.639601][T20267] ? __pfx_kthread_create_on_node+0x10/0x10 [ 1044.639647][T20267] ? __pfx_scnprintf+0x10/0x10 [ 1044.639713][T20267] init_rescuer+0x320/0x640 [ 1044.639768][T20267] ? __pfx_init_rescuer+0x10/0x10 [ 1044.639837][T20267] ? wq_adjust_max_active+0x39d/0x4a0 [ 1044.639897][T20267] __alloc_workqueue+0xc37/0x1810 [ 1044.639952][T20267] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1044.640002][T20267] alloc_workqueue+0xd2/0x200 [ 1044.640047][T20267] ? __pfx_alloc_workqueue+0x10/0x10 [ 1044.640103][T20267] ? __pfx___debug_object_init+0x10/0x10 [ 1044.640165][T20267] nci_register_device+0x394/0xb80 [ 1044.640208][T20267] ? __pfx_nci_register_device+0x10/0x10 [ 1044.640256][T20267] ? lockdep_init_map_type+0x5c/0x280 [ 1044.640312][T20267] virtual_ncidev_open+0x141/0x220 [ 1044.640354][T20267] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 1044.640393][T20267] misc_open+0x35a/0x420 [ 1044.640436][T20267] ? __pfx_misc_open+0x10/0x10 [ 1044.640476][T20267] chrdev_open+0x231/0x6a0 [ 1044.640513][T20267] ? __pfx_apparmor_file_open+0x10/0x10 [ 1044.640557][T20267] ? __pfx_chrdev_open+0x10/0x10 [ 1044.640599][T20267] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 1044.640660][T20267] do_dentry_open+0x741/0x1c10 [ 1044.640697][T20267] ? __pfx_chrdev_open+0x10/0x10 [ 1044.640743][T20267] vfs_open+0x82/0x3f0 [ 1044.640794][T20267] path_openat+0x1e5e/0x2d40 [ 1044.640853][T20267] ? __pfx_path_openat+0x10/0x10 [ 1044.640900][T20267] do_filp_open+0x20b/0x470 [ 1044.640936][T20267] ? __pfx_do_filp_open+0x10/0x10 [ 1044.641002][T20267] ? alloc_fd+0x471/0x7d0 [ 1044.641046][T20267] do_sys_openat2+0x11b/0x1d0 [ 1044.641092][T20267] ? __pfx_do_sys_openat2+0x10/0x10 [ 1044.641157][T20267] __x64_sys_openat+0x174/0x210 [ 1044.641205][T20267] ? __pfx___x64_sys_openat+0x10/0x10 [ 1044.641256][T20267] ? rcu_is_watching+0x12/0xc0 [ 1044.641302][T20267] do_syscall_64+0xcd/0x230 [ 1044.641353][T20267] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1044.641388][T20267] RIP: 0033:0x7f07b5b8e969 [ 1044.641415][T20267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1044.641447][T20267] RSP: 002b:00007f07b69d4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1044.641478][T20267] RAX: ffffffffffffffda RBX: 00007f07b5db5fa0 RCX: 00007f07b5b8e969 [ 1044.641500][T20267] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 1044.641522][T20267] RBP: 00007f07b5c10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1044.641543][T20267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1044.641563][T20267] R13: 0000000000000000 R14: 00007f07b5db5fa0 R15: 00007ffd7c1b3a08 [ 1044.641606][T20267] [ 1044.641643][T20267] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -ENOMEM [ 1045.267667][T20261] bridge0: port 1(bridge_slave_0) entered blocking state [ 1045.310576][T20261] bridge0: port 1(bridge_slave_0) entered disabled state [ 1045.324825][T20261] bridge_slave_0: entered allmulticast mode [ 1045.341509][T20261] bridge_slave_0: entered promiscuous mode [ 1045.446113][T20261] bridge0: port 2(bridge_slave_1) entered blocking state [ 1045.469160][T20261] bridge0: port 2(bridge_slave_1) entered disabled state [ 1045.476417][T20261] bridge_slave_1: entered allmulticast mode [ 1045.615156][T20261] bridge_slave_1: entered promiscuous mode [ 1045.762353][T20291] vhci_hcd: invalid port number 242 [ 1045.787862][T20291] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1045.845710][T20261] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1046.029538][T20261] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1046.313345][ T5851] Bluetooth: hci2: command tx timeout [ 1046.365939][T20261] team0: Port device team_slave_0 added [ 1046.451827][T20261] team0: Port device team_slave_1 added [ 1046.745754][T20261] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1046.781183][T20261] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1046.810491][T20261] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1046.843654][T20261] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1046.851412][T20261] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1046.896231][T20261] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1047.007870][T20261] hsr_slave_0: entered promiscuous mode [ 1047.039711][T20261] hsr_slave_1: entered promiscuous mode [ 1047.079215][T20261] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1047.086856][T20261] Cannot create hsr debugfs directory [ 1047.633652][T20261] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1047.798899][T20261] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1047.931267][T20261] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1047.994332][T20324] FAULT_INJECTION: forcing a failure. [ 1047.994332][T20324] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1048.026737][T20324] CPU: 1 UID: 0 PID: 20324 Comm: syz.2.2749 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1048.026783][T20324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1048.026802][T20324] Call Trace: [ 1048.026812][T20324] [ 1048.026825][T20324] dump_stack_lvl+0x16c/0x1f0 [ 1048.026863][T20324] should_fail_ex+0x512/0x640 [ 1048.026896][T20324] _copy_from_user+0x2e/0xd0 [ 1048.026927][T20324] core_sys_select+0x35a/0xbe0 [ 1048.026956][T20324] ? __pfx_core_sys_select+0x10/0x10 [ 1048.026984][T20324] ? proc_fail_nth_write+0x9f/0x250 [ 1048.027043][T20324] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1048.027085][T20324] kern_select+0x15d/0x1e0 [ 1048.027107][T20324] ? __pfx_kern_select+0x10/0x10 [ 1048.027133][T20324] ? __pfx_ksys_write+0x10/0x10 [ 1048.027162][T20324] __x64_sys_select+0xbd/0x160 [ 1048.027183][T20324] ? do_syscall_64+0x91/0x230 [ 1048.027216][T20324] ? lockdep_hardirqs_on+0x7c/0x110 [ 1048.027247][T20324] do_syscall_64+0xcd/0x230 [ 1048.027283][T20324] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1048.027306][T20324] RIP: 0033:0x7ff8ccb8e969 [ 1048.027325][T20324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1048.027357][T20324] RSP: 002b:00007ff8cd91c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 1048.027378][T20324] RAX: ffffffffffffffda RBX: 00007ff8ccdb6160 RCX: 00007ff8ccb8e969 [ 1048.027394][T20324] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 1048.027409][T20324] RBP: 00007ff8cd91c090 R08: 0000000000000000 R09: 0000000000000000 [ 1048.027423][T20324] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001 [ 1048.027438][T20324] R13: 0000000000000001 R14: 00007ff8ccdb6160 R15: 00007fffabeb76b8 [ 1048.027466][T20324] [ 1048.224088][T20261] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1048.388561][ T5851] Bluetooth: hci2: command tx timeout [ 1048.951269][T20261] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 1049.055195][T20261] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 1049.324350][T20261] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 1049.343606][T20261] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 1050.178980][T20356] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2755'. [ 1050.250174][T20261] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1050.287692][T20261] 8021q: adding VLAN 0 to HW filter on device team0 [ 1050.308181][T14136] bridge0: port 1(bridge_slave_0) entered blocking state [ 1050.318584][T14136] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1050.388117][ T8356] bridge0: port 2(bridge_slave_1) entered blocking state [ 1050.388234][ T8356] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1050.468644][ T5851] Bluetooth: hci2: command tx timeout [ 1050.618736][T20361] vhci_hcd: invalid port number 242 [ 1050.624489][T20361] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1051.321417][T20376] ubi0: attaching mtd0 [ 1051.326953][T20376] ubi0: scanning is finished [ 1051.393908][T20376] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 1051.419798][T20380] openvswitch: .SR: Dropping previously announced user features [ 1051.681710][T20380] Invalid ELF header magic: != ELF [ 1051.713945][T20261] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1051.904876][T20261] veth0_vlan: entered promiscuous mode [ 1051.916161][T20376] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1051.943659][T20261] veth1_vlan: entered promiscuous mode [ 1052.478943][T20261] veth0_macvtap: entered promiscuous mode [ 1052.504169][T20261] veth1_macvtap: entered promiscuous mode [ 1052.548771][ T5851] Bluetooth: hci2: command tx timeout [ 1052.572299][T20261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1052.588581][T20261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1052.598608][T20261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1052.609209][T20261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1052.619236][T20261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1052.645304][T20261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1052.668634][T20396] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2762'. [ 1052.679893][T20261] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1052.704248][T20261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1052.717268][T20398] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2762'. [ 1052.717423][T20261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1052.750464][T20261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1052.770293][T20261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1052.787755][T20261] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1052.807845][T20392] ovs_: entered promiscuous mode [ 1052.824449][T20261] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1052.848564][T20261] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1052.857343][T20261] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1052.866387][T20261] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1053.819028][ T8356] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1053.844250][ T8356] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1053.932788][T14136] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1053.968755][T14136] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1054.291935][T20418] vhci_hcd: invalid port number 242 [ 1054.316587][T20418] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1054.565721][T20430] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1054.770353][T20426] ptrace attach of "./syz-executor exec"[20261] was attempted by "./syz-executor exec"[20426] [ 1055.835971][T20452] FAULT_INJECTION: forcing a failure. [ 1055.835971][T20452] name failslab, interval 1, probability 0, space 0, times 0 [ 1055.898604][T20452] CPU: 0 UID: 0 PID: 20452 Comm: syz.4.2771 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1055.898652][T20452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1055.898673][T20452] Call Trace: [ 1055.898683][T20452] [ 1055.898695][T20452] dump_stack_lvl+0x16c/0x1f0 [ 1055.898757][T20452] should_fail_ex+0x512/0x640 [ 1055.898796][T20452] ? fs_reclaim_acquire+0xae/0x150 [ 1055.898855][T20452] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1055.898902][T20452] should_failslab+0xc2/0x120 [ 1055.898945][T20452] __kmalloc_noprof+0xd2/0x510 [ 1055.898995][T20452] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1055.899048][T20452] ? tomoyo_profile+0x47/0x60 [ 1055.899104][T20452] tomoyo_path_number_perm+0x245/0x580 [ 1055.899143][T20452] ? tomoyo_path_number_perm+0x237/0x580 [ 1055.899189][T20452] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1055.899232][T20452] ? find_held_lock+0x2b/0x80 [ 1055.899304][T20452] ? find_held_lock+0x2b/0x80 [ 1055.899338][T20452] ? hook_file_ioctl_common+0x145/0x410 [ 1055.899386][T20452] ? __fget_files+0x20e/0x3c0 [ 1055.899423][T20452] security_file_ioctl+0x9b/0x240 [ 1055.899468][T20452] __x64_sys_ioctl+0xb7/0x200 [ 1055.899520][T20452] do_syscall_64+0xcd/0x230 [ 1055.899571][T20452] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1055.899603][T20452] RIP: 0033:0x7f07b5b8e969 [ 1055.899629][T20452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1055.899662][T20452] RSP: 002b:00007f07b69d4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1055.899693][T20452] RAX: ffffffffffffffda RBX: 00007f07b5db5fa0 RCX: 00007f07b5b8e969 [ 1055.899726][T20452] RDX: 0000000000000000 RSI: 0000000080045400 RDI: 0000000000000003 [ 1055.899747][T20452] RBP: 00007f07b69d4090 R08: 0000000000000000 R09: 0000000000000000 [ 1055.899768][T20452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1055.899789][T20452] R13: 0000000000000000 R14: 00007f07b5db5fa0 R15: 00007ffd7c1b3a08 [ 1055.899832][T20452] [ 1055.899885][T20452] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1056.067132][T20453] usb usb38: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1056.136058][T20453] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 1056.752687][T20469] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1059.673906][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 1059.686175][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 1060.581923][T20517] [U]  [ 1060.584818][T20517] [U] [ 1060.587584][T20517] [U] [ 1060.590390][T20517] [U] [ 1060.596402][T20517] [U] [ 1060.599180][T20517] [U] [ 1060.601940][T20517] [U] [ 1060.604700][T20517] [U] [ 1060.608911][T20517] [U] [ 1060.611693][T20517] [U] [ 1060.614444][T20517] [U] [ 1060.617284][T20517] [U] [ 1060.662156][T20521] [U] [ 1062.108307][T20532] input input20: cannot allocate more than FF_MAX_EFFECTS effects [ 1062.263169][T20546] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1064.416908][T20552] Invalid ELF header magic: != ELF [ 1064.972472][T20582] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1066.050099][T20605] vhci_hcd: invalid port number 242 [ 1066.055387][T20605] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1066.060381][T20588] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 1066.384684][T20608] vhci_hcd: invalid port number 242 [ 1066.398575][T20608] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1066.965698][T20625] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1067.629496][T20633] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1067.659048][T20633] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1068.872777][T20655] svc: failed to register nfsdv3 RPC service (errno 111). [ 1068.956608][T20641] Invalid ELF header magic: != ELF [ 1069.089503][T20655] svc: failed to register nfsaclv3 RPC service (errno 111). [ 1069.926161][T20677] openvswitch: ovs_: Dropping previously announced user features [ 1070.341573][T20675] vhci_hcd: invalid port number 242 [ 1070.346991][T20675] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1070.472558][T20690] vhci_hcd: invalid port number 242 [ 1070.477835][T20690] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1070.827878][T20678] usbip-vudc usbip-vudc.0: gadget not bound [ 1070.885944][T20697] vhci_hcd: invalid port number 242 [ 1070.891670][T20697] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1071.185187][T20702] FAULT_INJECTION: forcing a failure. [ 1071.185187][T20702] name failslab, interval 1, probability 0, space 0, times 0 [ 1071.198695][T20702] CPU: 0 UID: 0 PID: 20702 Comm: syz.2.2819 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1071.198738][T20702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1071.198758][T20702] Call Trace: [ 1071.198770][T20702] [ 1071.198782][T20702] dump_stack_lvl+0x16c/0x1f0 [ 1071.198839][T20702] should_fail_ex+0x512/0x640 [ 1071.198880][T20702] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1071.198927][T20702] should_failslab+0xc2/0x120 [ 1071.198972][T20702] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1071.199015][T20702] ? __kernfs_new_node+0xd2/0x8a0 [ 1071.199055][T20702] __kernfs_new_node+0xd2/0x8a0 [ 1071.199094][T20702] ? __pfx___kernfs_new_node+0x10/0x10 [ 1071.199141][T20702] ? find_held_lock+0x2b/0x80 [ 1071.199178][T20702] ? kernfs_root+0xee/0x2a0 [ 1071.199219][T20702] kernfs_new_node+0x13c/0x1e0 [ 1071.199266][T20702] __kernfs_create_file+0x53/0x350 [ 1071.199317][T20702] sysfs_add_file_mode_ns+0x207/0x3c0 [ 1071.199383][T20702] internal_create_group+0x578/0xf30 [ 1071.199431][T20702] ? __pfx_internal_create_group+0x10/0x10 [ 1071.199475][T20702] ? kernfs_create_link+0x1bd/0x240 [ 1071.199530][T20702] internal_create_groups+0x9d/0x150 [ 1071.199571][T20702] device_add+0x77f/0x1a70 [ 1071.199614][T20702] ? __pfx_device_add+0x10/0x10 [ 1071.199667][T20702] ? do_raw_spin_lock+0x12c/0x2b0 [ 1071.199706][T20702] add_disk_fwnode+0x468/0x13a0 [ 1071.199757][T20702] zram_add+0x494/0x6c0 [ 1071.199794][T20702] ? __pfx_zram_add+0x10/0x10 [ 1071.199860][T20702] ? find_held_lock+0x2b/0x80 [ 1071.199903][T20702] ? __pfx_hot_add_show+0x10/0x10 [ 1071.199939][T20702] ? __pfx_class_attr_show+0x10/0x10 [ 1071.199975][T20702] hot_add_show+0x21/0x80 [ 1071.200013][T20702] class_attr_show+0x6f/0xa0 [ 1071.200050][T20702] sysfs_kf_seq_show+0x213/0x3e0 [ 1071.200110][T20702] seq_read_iter+0x506/0x12c0 [ 1071.200181][T20702] kernfs_fop_read_iter+0x40f/0x5a0 [ 1071.200226][T20702] ? rw_verify_area+0xcf/0x680 [ 1071.200283][T20702] vfs_read+0x8c8/0xc70 [ 1071.200324][T20702] ? __pfx___mutex_lock+0x10/0x10 [ 1071.200374][T20702] ? __pfx_vfs_read+0x10/0x10 [ 1071.200439][T20702] ksys_read+0x12a/0x240 [ 1071.200472][T20702] ? __pfx_ksys_read+0x10/0x10 [ 1071.200504][T20702] ? rcu_is_watching+0x12/0xc0 [ 1071.200552][T20702] do_syscall_64+0xcd/0x230 [ 1071.200605][T20702] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1071.200646][T20702] RIP: 0033:0x7ff8ccb8e969 [ 1071.200674][T20702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1071.200709][T20702] RSP: 002b:00007ff8cd95e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1071.200741][T20702] RAX: ffffffffffffffda RBX: 00007ff8ccdb5fa0 RCX: 00007ff8ccb8e969 [ 1071.200764][T20702] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 0000000000000006 [ 1071.200786][T20702] RBP: 00007ff8ccc10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1071.200807][T20702] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1071.200828][T20702] R13: 0000000000000000 R14: 00007ff8ccdb5fa0 R15: 00007fffabeb76b8 [ 1071.200874][T20702] [ 1071.944346][T20712] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1071.991125][T18820] Bluetooth: hci3: command 0x0406 tx timeout [ 1072.986069][T20724] [U]  [ 1072.988964][T20724] [U] [ 1072.991756][T20724] [U] [ 1072.994524][T20724] [U] [ 1073.019436][T20724] [U] [ 1073.022243][T20724] [U] [ 1073.025008][T20724] [U] [ 1073.027770][T20724] [U] [ 1073.032292][T20724] [U] [ 1073.035066][T20724] [U] [ 1073.037827][T20724] [U] [ 1073.040590][T20724] [U] [ 1073.044480][T20724] [U] [ 1073.047260][T20724] [U] [ 1073.050020][T20724] [U] [ 1073.052789][T20724] [U] [ 1073.084892][T20724] [U] [ 1073.087704][T20724] [U] [ 1073.090474][T20724] [U] [ 1073.093229][T20724] [U] [ 1073.114315][T20724] [U] [ 1073.117119][T20724] [U] [ 1073.119886][T20724] [U] [ 1073.122642][T20724] [U] [ 1073.131245][T20724] [U] [ 1073.134046][T20724] [U] [ 1073.136812][T20724] [U] [ 1073.139574][T20724] [U] [ 1073.145471][T20724] [U] [ 1073.148258][T20724] [U] [ 1073.151023][T20724] [U] [ 1073.153774][T20724] [U] [ 1073.163366][T20724] [U] [ 1073.166153][T20724] [U] [ 1073.168914][T20724] [U] [ 1073.171665][T20724] [U] [ 1073.178063][T20724] [U] [ 1073.180857][T20724] [U] [ 1073.183617][T20724] [U] [ 1073.186344][T20724] [U] [ 1073.202467][T20724] [U] [ 1073.205265][T20724] [U] [ 1073.208029][T20724] [U] [ 1073.210797][T20724] [U] [ 1073.231661][T20726] openvswitch: ovs_: Dropping previously announced user features [ 1073.253967][T20724] [U] [ 1073.256766][T20724] [U] [ 1073.259508][T20724] [U] [ 1073.262231][T20724] [U] [ 1073.272196][T20724] [U] [ 1073.274939][T20724] [U] [ 1073.277653][T20724] [U] [ 1073.280364][T20724] [U] [ 1073.371855][T20724] [U] [ 1073.374645][T20724] [U] [ 1073.377394][T20724] [U] [ 1073.380112][T20724] [U] [ 1073.470388][T20724] [U] [ 1073.473190][T20724] [U] [ 1073.475949][T20724] [U] [ 1073.478709][T20724] [U] [ 1073.509091][T20724] [U] [ 1073.511872][T20724] [U] [ 1073.514636][T20724] [U] [ 1073.517402][T20724] [U] [ 1073.655128][T20724] [U] [ 1073.657934][T20724] [U] [ 1073.660693][T20724] [U] [ 1073.663451][T20724] [U] [ 1073.857764][T20724] [U] [ 1074.672715][T20729] Invalid ELF header magic: != ELF [ 1076.492650][T20769] svc: failed to register nfsdv3 RPC service (errno 111). [ 1076.516409][T20769] svc: failed to register nfsaclv3 RPC service (errno 111). [ 1077.851235][T20792] block2mtd: parameter too long [ 1083.136046][T20870] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2853'. [ 1084.406137][T20883] vhci_hcd: invalid port number 242 [ 1084.415366][T20883] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1084.470449][T20894] vhci_hcd: invalid port number 242 [ 1084.475842][T20894] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1084.511364][T20891] vhci_hcd: invalid port number 242 [ 1084.517691][T20891] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1086.525630][T20917] vhci_hcd: invalid port number 242 [ 1086.531987][T20917] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1087.634355][T20939] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2865'. [ 1087.680311][T20933] Invalid ELF header magic: != ELF [ 1088.585751][T20948] vhci_hcd: invalid port number 242 [ 1088.605840][T20948] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 syzkaller syzkaller login: [ 1090.037555][T20962] vhci_hcd: invalid port number 242 [ 1090.084775][T20962] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1091.177149][T20981] vhci_hcd: invalid port number 242 [ 1091.183141][T20981] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1093.453946][T21000] Invalid ELF header magic: != ELF [ 1094.426730][T21030] [U]  [ 1094.429607][T21030] [U] [ 1094.432345][T21030] [U] [ 1094.435091][T21030] [U] [ 1094.476681][T21030] [U] [ 1094.479495][T21030] [U] [ 1094.482241][T21030] [U] [ 1094.484975][T21030] [U] [ 1094.513772][T21030] [U] [ 1094.516556][T21030] [U] [ 1094.519319][T21030] [U] [ 1094.522082][T21030] [U] [ 1094.559971][T21031] [U] [ 1094.879553][T21037] [U]  [ 1094.882545][T21037] [U] [ 1094.885321][T21037] [U] [ 1094.888083][T21037] [U] [ 1094.939708][T21038] [U] [ 1098.344257][T21082] svc: failed to register nfsdv3 RPC service (errno 111). [ 1098.397154][T21082] svc: failed to register nfsaclv3 RPC service (errno 111). [ 1099.275515][T21110] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2895'. [ 1099.511849][T21117] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1101.048827][T21146] [U]  [ 1101.051720][T21146] [U] [ 1101.054504][T21146] [U] [ 1101.057263][T21146] [U] [ 1101.070988][T21146] [U] [ 1101.073790][T21146] [U] [ 1101.076547][T21146] [U] [ 1101.079312][T21146] [U] [ 1101.088916][T21146] [U] [ 1101.091714][T21146] [U] [ 1101.094478][T21146] [U] [ 1101.097248][T21146] [U] [ 1101.109212][T21146] [U] [ 1101.112026][T21146] [U] [ 1101.114797][T21146] [U] [ 1101.117562][T21146] [U] [ 1101.136357][T21152] [U] [ 1102.955481][T21174] svc: failed to register nfsdv3 RPC service (errno 111). [ 1103.015920][T21174] svc: failed to register nfsaclv3 RPC service (errno 111). [ 1103.544271][T21181] Invalid ELF header magic: != ELF [ 1104.214975][T21205] vhci_hcd: invalid port number 242 [ 1104.239676][T21205] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1106.876466][T21253] [U]  [ 1106.879367][T21253] [U] [ 1106.882138][T21253] [U] [ 1106.884894][T21253] [U] [ 1106.889700][T21253] [U] [ 1106.892486][T21253] [U] [ 1106.895247][T21253] [U] [ 1106.898011][T21253] [U] [ 1106.967192][T21253] [U] [ 1106.970011][T21253] [U] [ 1106.972778][T21253] [U] [ 1106.975549][T21253] [U] [ 1107.006781][T21253] [U] [ 1107.009599][T21253] [U] [ 1107.012455][T21253] [U] [ 1107.015266][T21253] [U] [ 1107.056918][T21258] [U] [ 1107.215359][T21262] [U]  [ 1107.218211][T21262] [U] [ 1107.220927][T21262] [U] [ 1107.223642][T21262] [U] [ 1107.226811][T21262] [U] [ 1107.229539][T21262] [U] [ 1107.232278][T21262] [U] [ 1107.234996][T21262] [U] [ 1107.326263][T21262] [U] [ 1107.329079][T21262] [U] [ 1107.331841][T21262] [U] [ 1107.334604][T21262] [U] [ 1107.345345][T21262] [U] [ 1107.348096][T21262] [U] [ 1107.350812][T21262] [U] [ 1107.353544][T21262] [U] [ 1107.399880][T21265] [U] [ 1107.494835][T21255] Invalid ELF header magic: != ELF [ 1108.167324][T21274] vhci_hcd: invalid port number 242 [ 1108.173402][T21274] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1108.781795][T21284] [U]  [ 1108.784692][T21284] [U] [ 1108.787442][T21284] [U] [ 1108.790177][T21284] [U] [ 1108.800388][T21284] [U] [ 1108.803216][T21284] [U] [ 1108.805990][T21284] [U] [ 1108.808762][T21284] [U] [ 1108.816740][T21284] [U] [ 1108.819518][T21284] [U] [ 1108.822291][T21284] [U] [ 1108.825021][T21284] [U] [ 1108.834304][T21284] [U] [ 1108.837535][T21284] [U] [ 1108.840298][T21284] [U] [ 1108.843039][T21284] [U] [ 1108.847150][T21285] [U] [ 1109.377233][T21292] FAULT_INJECTION: forcing a failure. [ 1109.377233][T21292] name failslab, interval 1, probability 0, space 0, times 0 [ 1109.431968][T21292] CPU: 0 UID: 0 PID: 21292 Comm: syz.1.2920 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1109.432020][T21292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1109.432042][T21292] Call Trace: [ 1109.432054][T21292] [ 1109.432068][T21292] dump_stack_lvl+0x16c/0x1f0 [ 1109.432129][T21292] should_fail_ex+0x512/0x640 [ 1109.432170][T21292] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1109.432218][T21292] should_failslab+0xc2/0x120 [ 1109.432265][T21292] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1109.432308][T21292] ? __kernfs_new_node+0xd2/0x8a0 [ 1109.432349][T21292] __kernfs_new_node+0xd2/0x8a0 [ 1109.432389][T21292] ? __pfx___kernfs_new_node+0x10/0x10 [ 1109.432435][T21292] ? find_held_lock+0x2b/0x80 [ 1109.432472][T21292] ? kernfs_root+0xee/0x2a0 [ 1109.432514][T21292] kernfs_new_node+0x13c/0x1e0 [ 1109.432563][T21292] __kernfs_create_file+0x53/0x350 [ 1109.432616][T21292] sysfs_add_file_mode_ns+0x207/0x3c0 [ 1109.432684][T21292] sysfs_merge_group+0x1aa/0x340 [ 1109.432723][T21292] ? __pfx_sysfs_merge_group+0x10/0x10 [ 1109.432765][T21292] ? __pfx_dev_add_physical_location+0x10/0x10 [ 1109.432822][T21292] ? bus_to_subsys+0x12d/0x160 [ 1109.432872][T21292] dpm_sysfs_add+0x237/0x280 [ 1109.432908][T21292] device_add+0x9a6/0x1a70 [ 1109.432950][T21292] ? __pfx_device_add+0x10/0x10 [ 1109.432988][T21292] ? lockdep_init_map_type+0x5c/0x280 [ 1109.433038][T21292] ? __init_waitqueue_head+0xca/0x150 [ 1109.433083][T21292] rfkill_register+0x1ad/0xb40 [ 1109.433137][T21292] nfc_register_device+0x11f/0x3c0 [ 1109.433195][T21292] nci_register_device+0x7f1/0xb80 [ 1109.433242][T21292] ? __pfx_nci_register_device+0x10/0x10 [ 1109.433292][T21292] ? lockdep_init_map_type+0x5c/0x280 [ 1109.433351][T21292] virtual_ncidev_open+0x141/0x220 [ 1109.433394][T21292] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 1109.433435][T21292] misc_open+0x35a/0x420 [ 1109.433481][T21292] ? __pfx_misc_open+0x10/0x10 [ 1109.433526][T21292] chrdev_open+0x231/0x6a0 [ 1109.433564][T21292] ? __pfx_apparmor_file_open+0x10/0x10 [ 1109.433610][T21292] ? __pfx_chrdev_open+0x10/0x10 [ 1109.433653][T21292] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 1109.433718][T21292] do_dentry_open+0x741/0x1c10 [ 1109.433758][T21292] ? __pfx_chrdev_open+0x10/0x10 [ 1109.433807][T21292] vfs_open+0x82/0x3f0 [ 1109.433860][T21292] path_openat+0x1e5e/0x2d40 [ 1109.433913][T21292] ? __pfx_path_openat+0x10/0x10 [ 1109.433963][T21292] do_filp_open+0x20b/0x470 [ 1109.434000][T21292] ? __pfx_do_filp_open+0x10/0x10 [ 1109.434070][T21292] ? alloc_fd+0x471/0x7d0 [ 1109.434121][T21292] do_sys_openat2+0x11b/0x1d0 [ 1109.434171][T21292] ? __pfx_do_sys_openat2+0x10/0x10 [ 1109.434239][T21292] __x64_sys_openat+0x174/0x210 [ 1109.434291][T21292] ? __pfx___x64_sys_openat+0x10/0x10 [ 1109.434343][T21292] ? rcu_is_watching+0x12/0xc0 [ 1109.434393][T21292] do_syscall_64+0xcd/0x230 [ 1109.434447][T21292] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1109.434482][T21292] RIP: 0033:0x7f0b0fb8e969 [ 1109.434510][T21292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1109.434544][T21292] RSP: 002b:00007f0b10a5a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1109.434577][T21292] RAX: ffffffffffffffda RBX: 00007f0b0fdb6240 RCX: 00007f0b0fb8e969 [ 1109.434600][T21292] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 1109.434623][T21292] RBP: 00007f0b0fc10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1109.434645][T21292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1109.434666][T21292] R13: 0000000000000000 R14: 00007f0b0fdb6240 R15: 00007ffe2f8ca888 [ 1109.434712][T21292] [ 1110.121500][T21320] Invalid ELF header magic: != ELF [ 1110.935548][T21327] svc: failed to register nfsdv3 RPC service (errno 111). [ 1110.971917][T21327] svc: failed to register nfsaclv3 RPC service (errno 111). [ 1111.043591][T21309] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 1112.509976][T21363] FAULT_INJECTION: forcing a failure. [ 1112.509976][T21363] name failslab, interval 1, probability 0, space 0, times 0 [ 1112.539650][T21363] CPU: 1 UID: 0 PID: 21363 Comm: syz.1.2941 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1112.539699][T21363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1112.539719][T21363] Call Trace: [ 1112.539732][T21363] [ 1112.539745][T21363] dump_stack_lvl+0x16c/0x1f0 [ 1112.539806][T21363] should_fail_ex+0x512/0x640 [ 1112.539853][T21363] should_failslab+0xc2/0x120 [ 1112.539898][T21363] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1112.539941][T21363] ? skb_clone+0x190/0x3f0 [ 1112.539993][T21363] skb_clone+0x190/0x3f0 [ 1112.540041][T21363] netlink_deliver_tap+0xabd/0xd30 [ 1112.540097][T21363] netlink_unicast+0x5df/0x7f0 [ 1112.540152][T21363] ? __pfx_netlink_unicast+0x10/0x10 [ 1112.540198][T21363] ? __lock_acquire+0xaa4/0x1ba0 [ 1112.540254][T21363] netlink_sendmsg+0x8d1/0xdd0 [ 1112.540307][T21363] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1112.540370][T21363] ____sys_sendmsg+0xa95/0xc70 [ 1112.540403][T21363] ? copy_msghdr_from_user+0x10a/0x160 [ 1112.540446][T21363] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1112.540497][T21363] ___sys_sendmsg+0x134/0x1d0 [ 1112.540542][T21363] ? __pfx____sys_sendmsg+0x10/0x10 [ 1112.540639][T21363] __sys_sendmsg+0x16d/0x220 [ 1112.540686][T21363] ? __pfx___sys_sendmsg+0x10/0x10 [ 1112.540744][T21363] ? rcu_is_watching+0x12/0xc0 [ 1112.540791][T21363] do_syscall_64+0xcd/0x230 [ 1112.540849][T21363] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1112.540883][T21363] RIP: 0033:0x7f0b0fb8e969 [ 1112.540908][T21363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1112.540940][T21363] RSP: 002b:00007f0b10abd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1112.540972][T21363] RAX: ffffffffffffffda RBX: 00007f0b0fdb5fa0 RCX: 00007f0b0fb8e969 [ 1112.540994][T21363] RDX: 0000000002000000 RSI: 0000200000000080 RDI: 0000000000000005 [ 1112.541016][T21363] RBP: 00007f0b10abd090 R08: 0000000000000000 R09: 0000000000000000 [ 1112.541037][T21363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1112.541056][T21363] R13: 0000000000000000 R14: 00007f0b0fdb5fa0 R15: 00007ffe2f8ca888 [ 1112.541099][T21363] [ 1112.627468][T21363] openvswitch: ovs_: Dropping previously announced user features [ 1113.650205][T21379] Invalid ELF header magic: != ELF [ 1114.257803][T21412] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1114.402620][T21417] [U]  [ 1114.405542][T21417] [U] [ 1114.408307][T21417] [U] [ 1114.411074][T21417] [U] [ 1114.427135][T21417] [U] [ 1114.429933][T21417] [U] [ 1114.432690][T21417] [U] [ 1114.435449][T21417] [U] [ 1114.444727][T21417] [U] [ 1114.447535][T21417] [U] [ 1114.450296][T21417] [U] [ 1114.453059][T21417] [U] [ 1114.460943][T21417] [U] [ 1114.463733][T21417] [U] [ 1114.466518][T21417] [U] [ 1114.469271][T21417] [U] [ 1114.484332][T21417] [U] [ 1114.487134][T21417] [U] [ 1114.489902][T21417] [U] [ 1114.492683][T21417] [U] [ 1114.500315][T21418] [U] [ 1115.407718][T21432] FAULT_INJECTION: forcing a failure. [ 1115.407718][T21432] name failslab, interval 1, probability 0, space 0, times 0 [ 1115.441754][T21432] CPU: 1 UID: 0 PID: 21432 Comm: syz.2.2944 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1115.441803][T21432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1115.441823][T21432] Call Trace: [ 1115.441833][T21432] [ 1115.441846][T21432] dump_stack_lvl+0x16c/0x1f0 [ 1115.441897][T21432] should_fail_ex+0x512/0x640 [ 1115.441960][T21432] should_failslab+0xc2/0x120 [ 1115.442004][T21432] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1115.442045][T21432] ? skb_clone+0x190/0x3f0 [ 1115.442095][T21432] skb_clone+0x190/0x3f0 [ 1115.442141][T21432] netlink_deliver_tap+0xabd/0xd30 [ 1115.442195][T21432] netlink_unicast+0x5df/0x7f0 [ 1115.442247][T21432] ? __pfx_netlink_unicast+0x10/0x10 [ 1115.442293][T21432] ? __lock_acquire+0xaa4/0x1ba0 [ 1115.442358][T21432] netlink_sendmsg+0x8d1/0xdd0 [ 1115.442414][T21432] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1115.442478][T21432] ____sys_sendmsg+0xa95/0xc70 [ 1115.442516][T21432] ? copy_msghdr_from_user+0x10a/0x160 [ 1115.442559][T21432] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1115.442612][T21432] ___sys_sendmsg+0x134/0x1d0 [ 1115.442658][T21432] ? __pfx____sys_sendmsg+0x10/0x10 [ 1115.442755][T21432] __sys_sendmsg+0x16d/0x220 [ 1115.442799][T21432] ? __pfx___sys_sendmsg+0x10/0x10 [ 1115.442856][T21432] ? rcu_is_watching+0x12/0xc0 [ 1115.442901][T21432] do_syscall_64+0xcd/0x230 [ 1115.442953][T21432] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1115.442986][T21432] RIP: 0033:0x7ff8ccb8e969 [ 1115.443012][T21432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1115.443044][T21432] RSP: 002b:00007ff8cd95e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1115.443075][T21432] RAX: ffffffffffffffda RBX: 00007ff8ccdb5fa0 RCX: 00007ff8ccb8e969 [ 1115.443098][T21432] RDX: 0000000002000000 RSI: 0000200000000080 RDI: 0000000000000005 [ 1115.443118][T21432] RBP: 00007ff8cd95e090 R08: 0000000000000000 R09: 0000000000000000 [ 1115.443137][T21432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1115.443157][T21432] R13: 0000000000000000 R14: 00007ff8ccdb5fa0 R15: 00007fffabeb76b8 [ 1115.443200][T21432] [ 1115.662759][T21432] openvswitch: ovs_: Dropping previously announced user features [ 1116.033434][T21436] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2945'. [ 1116.559987][T21452] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1116.988663][T21462] FAULT_INJECTION: forcing a failure. [ 1116.988663][T21462] name failslab, interval 1, probability 0, space 0, times 0 [ 1117.061319][T21462] CPU: 0 UID: 0 PID: 21462 Comm: syz.3.2949 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1117.061368][T21462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1117.061389][T21462] Call Trace: [ 1117.061401][T21462] [ 1117.061415][T21462] dump_stack_lvl+0x16c/0x1f0 [ 1117.061469][T21462] should_fail_ex+0x512/0x640 [ 1117.061515][T21462] should_failslab+0xc2/0x120 [ 1117.061560][T21462] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1117.061603][T21462] ? skb_clone+0x190/0x3f0 [ 1117.061655][T21462] skb_clone+0x190/0x3f0 [ 1117.061703][T21462] netlink_deliver_tap+0xabd/0xd30 [ 1117.061760][T21462] netlink_unicast+0x5df/0x7f0 [ 1117.061814][T21462] ? __pfx_netlink_unicast+0x10/0x10 [ 1117.061860][T21462] ? __lock_acquire+0xaa4/0x1ba0 [ 1117.061917][T21462] netlink_sendmsg+0x8d1/0xdd0 [ 1117.061972][T21462] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1117.062026][T21462] ? ____sys_sendmsg+0x871/0xc70 [ 1117.062065][T21462] ____sys_sendmsg+0xa95/0xc70 [ 1117.062099][T21462] ? copy_msghdr_from_user+0x10a/0x160 [ 1117.062143][T21462] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1117.062195][T21462] ___sys_sendmsg+0x134/0x1d0 [ 1117.062244][T21462] ? __pfx____sys_sendmsg+0x10/0x10 [ 1117.062353][T21462] __sys_sendmsg+0x16d/0x220 [ 1117.062399][T21462] ? __pfx___sys_sendmsg+0x10/0x10 [ 1117.062456][T21462] ? rcu_is_watching+0x12/0xc0 [ 1117.062503][T21462] do_syscall_64+0xcd/0x230 [ 1117.062556][T21462] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1117.062590][T21462] RIP: 0033:0x7f12ab38e969 [ 1117.062616][T21462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1117.062649][T21462] RSP: 002b:00007f12ac1d0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1117.062679][T21462] RAX: ffffffffffffffda RBX: 00007f12ab5b5fa0 RCX: 00007f12ab38e969 [ 1117.062703][T21462] RDX: 0000000028044004 RSI: 0000200000001840 RDI: 0000000000000003 [ 1117.062724][T21462] RBP: 00007f12ac1d0090 R08: 0000000000000000 R09: 0000000000000000 [ 1117.062745][T21462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1117.062765][T21462] R13: 0000000000000000 R14: 00007f12ab5b5fa0 R15: 00007ffd775c1328 [ 1117.062808][T21462] [ 1118.006154][T21479] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1118.289264][T21485] svc: failed to register nfsdv3 RPC service (errno 111). [ 1118.339775][T21485] svc: failed to register nfsaclv3 RPC service (errno 111). [ 1118.452700][T21495] FAULT_INJECTION: forcing a failure. [ 1118.452700][T21495] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1118.491309][T21495] CPU: 1 UID: 0 PID: 21495 Comm: syz.2.2955 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1118.491355][T21495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1118.491373][T21495] Call Trace: [ 1118.491383][T21495] [ 1118.491394][T21495] dump_stack_lvl+0x16c/0x1f0 [ 1118.491439][T21495] should_fail_ex+0x512/0x640 [ 1118.491477][T21495] _copy_from_user+0x2e/0xd0 [ 1118.491515][T21495] kstrtouint_from_user+0xd6/0x1d0 [ 1118.491542][T21495] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 1118.491567][T21495] ? __lock_acquire+0xaa4/0x1ba0 [ 1118.491622][T21495] proc_fail_nth_write+0x83/0x250 [ 1118.491668][T21495] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 1118.491720][T21495] vfs_write+0x25c/0x1180 [ 1118.491748][T21495] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 1118.491794][T21495] ? __pfx___mutex_lock+0x10/0x10 [ 1118.491835][T21495] ? __pfx_vfs_write+0x10/0x10 [ 1118.491873][T21495] ? __fget_files+0x20e/0x3c0 [ 1118.491909][T21495] ksys_write+0x12a/0x240 [ 1118.491937][T21495] ? __pfx_ksys_write+0x10/0x10 [ 1118.491964][T21495] ? rcu_is_watching+0x12/0xc0 [ 1118.492002][T21495] do_syscall_64+0xcd/0x230 [ 1118.492045][T21495] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1118.492073][T21495] RIP: 0033:0x7ff8ccb8d41f [ 1118.492095][T21495] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 1118.492133][T21495] RSP: 002b:00007ff8cd95e030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 1118.492159][T21495] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff8ccb8d41f [ 1118.492177][T21495] RDX: 0000000000000001 RSI: 00007ff8cd95e0a0 RDI: 0000000000000004 [ 1118.492195][T21495] RBP: 00007ff8cd95e090 R08: 0000000000000000 R09: 0000000000000000 [ 1118.492212][T21495] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 1118.492228][T21495] R13: 0000000000000000 R14: 00007ff8ccdb5fa0 R15: 00007fffabeb76b8 [ 1118.492264][T21495] [ 1119.216413][T21500] vhci_hcd: invalid port number 242 [ 1119.234893][T21500] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1120.729302][T21514] openvswitch: ovs_: Dropping previously announced user features [ 1121.065286][T21517] svc: failed to register nfsdv3 RPC service (errno 111). [ 1121.128964][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 1121.152397][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 1121.199471][T21518] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2959'. [ 1121.442057][T21517] svc: failed to register nfsaclv3 RPC service (errno 111). [ 1122.323306][T21532] vhci_hcd: invalid port number 242 [ 1122.328901][T21532] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1123.729919][T21558] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1124.234909][T21562] svc: failed to register nfsdv3 RPC service (errno 111). [ 1124.251532][T21562] svc: failed to register nfsaclv3 RPC service (errno 111). [ 1124.593840][T21564] svc: failed to register nfsdv3 RPC service (errno 111). [ 1124.603959][T21564] svc: failed to register nfsaclv3 RPC service (errno 111). [ 1126.804160][T21631] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2979'. [ 1126.838016][T21631] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2979'. [ 1127.102309][T21635] [U]  [ 1127.105199][T21635] [U] [ 1127.107962][T21635] [U] [ 1127.110724][T21635] [U] [ 1127.186703][T21639] [U] [ 1127.198650][T21637] FAULT_INJECTION: forcing a failure. [ 1127.198650][T21637] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1127.211769][T21637] CPU: 0 UID: 0 PID: 21637 Comm: syz.3.2982 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1127.211819][T21637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1127.211842][T21637] Call Trace: [ 1127.211854][T21637] [ 1127.211868][T21637] dump_stack_lvl+0x16c/0x1f0 [ 1127.211923][T21637] should_fail_ex+0x512/0x640 [ 1127.211969][T21637] get_futex_key+0x49e/0x1000 [ 1127.212012][T21637] ? __pfx_get_futex_key+0x10/0x10 [ 1127.212049][T21637] ? bpf_obj_get_next_id+0x182/0x1b0 [ 1127.212083][T21637] ? __local_bh_enable_ip+0xa4/0x120 [ 1127.212127][T21637] ? bpf_obj_get_next_id+0x13a/0x1b0 [ 1127.212162][T21637] ? __pfx_bpf_obj_get_next_id+0x10/0x10 [ 1127.212204][T21637] futex_wake+0xe7/0x4e0 [ 1127.212252][T21637] ? __pfx_futex_wake+0x10/0x10 [ 1127.212304][T21637] ? __lock_acquire+0x5ca/0x1ba0 [ 1127.212361][T21637] do_futex+0x1e3/0x350 [ 1127.212400][T21637] ? __pfx_do_futex+0x10/0x10 [ 1127.212451][T21637] __x64_sys_futex+0x1e0/0x4c0 [ 1127.212497][T21637] ? __pfx___x64_sys_futex+0x10/0x10 [ 1127.212551][T21637] ? rcu_is_watching+0x12/0xc0 [ 1127.212598][T21637] do_syscall_64+0xcd/0x230 [ 1127.212652][T21637] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1127.212686][T21637] RIP: 0033:0x7f12ab38e969 [ 1127.212714][T21637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1127.212748][T21637] RSP: 002b:00007f12ac1d00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1127.212781][T21637] RAX: ffffffffffffffda RBX: 00007f12ab5b5fa8 RCX: 00007f12ab38e969 [ 1127.212804][T21637] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f12ab5b5fac [ 1127.212827][T21637] RBP: 00007f12ab5b5fa0 R08: 00007f12ac1d1000 R09: 0000000000000000 [ 1127.212849][T21637] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f12ab5b5fac [ 1127.212871][T21637] R13: 0000000000000000 R14: 00007ffd775c1240 R15: 00007ffd775c1328 [ 1127.212914][T21637] [ 1127.441306][T21637] ovs_: entered promiscuous mode [ 1128.055352][T21646] FAULT_INJECTION: forcing a failure. [ 1128.055352][T21646] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1128.137173][T21646] CPU: 0 UID: 0 PID: 21646 Comm: syz.1.2983 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1128.137220][T21646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1128.137236][T21646] Call Trace: [ 1128.137244][T21646] [ 1128.137254][T21646] dump_stack_lvl+0x16c/0x1f0 [ 1128.137292][T21646] should_fail_ex+0x512/0x640 [ 1128.137324][T21646] core_sys_select+0x4b2/0xbe0 [ 1128.137354][T21646] ? __pfx_core_sys_select+0x10/0x10 [ 1128.137382][T21646] ? proc_fail_nth_write+0x9f/0x250 [ 1128.137447][T21646] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1128.137490][T21646] kern_select+0x15d/0x1e0 [ 1128.137512][T21646] ? __pfx_kern_select+0x10/0x10 [ 1128.137537][T21646] ? __pfx_ksys_write+0x10/0x10 [ 1128.137566][T21646] __x64_sys_select+0xbd/0x160 [ 1128.137587][T21646] ? do_syscall_64+0x91/0x230 [ 1128.137620][T21646] ? lockdep_hardirqs_on+0x7c/0x110 [ 1128.137652][T21646] do_syscall_64+0xcd/0x230 [ 1128.137690][T21646] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1128.137714][T21646] RIP: 0033:0x7f0b0fb8e969 [ 1128.137734][T21646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1128.137757][T21646] RSP: 002b:00007f0b10a5a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 1128.137779][T21646] RAX: ffffffffffffffda RBX: 00007f0b0fdb6240 RCX: 00007f0b0fb8e969 [ 1128.137795][T21646] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 1128.137809][T21646] RBP: 00007f0b10a5a090 R08: 0000000000000000 R09: 0000000000000000 [ 1128.137823][T21646] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001 [ 1128.137838][T21646] R13: 0000000000000001 R14: 00007f0b0fdb6240 R15: 00007ffe2f8ca888 [ 1128.137867][T21646] [ 1128.795836][T21661] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2988'. [ 1130.154979][ T5851] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 1130.527336][T21692] FAULT_INJECTION: forcing a failure. [ 1130.527336][T21692] name failslab, interval 1, probability 0, space 0, times 0 [ 1130.599460][T21692] CPU: 1 UID: 0 PID: 21692 Comm: syz.2.2993 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1130.599518][T21692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1130.599539][T21692] Call Trace: [ 1130.599550][T21692] [ 1130.599563][T21692] dump_stack_lvl+0x16c/0x1f0 [ 1130.599616][T21692] should_fail_ex+0x512/0x640 [ 1130.599655][T21692] ? __kmalloc_noprof+0xbf/0x510 [ 1130.599697][T21692] ? dump_cpumask+0xe2/0x340 [ 1130.599730][T21692] should_failslab+0xc2/0x120 [ 1130.599774][T21692] __kmalloc_noprof+0xd2/0x510 [ 1130.599824][T21692] dump_cpumask+0xe2/0x340 [ 1130.599864][T21692] rps_default_mask_sysctl+0xa6/0x230 [ 1130.599906][T21692] proc_sys_call_handler+0x3bf/0x5c0 [ 1130.599949][T21692] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 1130.599991][T21692] ? trace_kmalloc+0x2b/0xd0 [ 1130.600050][T21692] copy_splice_read+0x615/0xba0 [ 1130.600112][T21692] ? __pfx_copy_splice_read+0x10/0x10 [ 1130.600167][T21692] ? look_up_lock_class+0x6b/0x150 [ 1130.600220][T21692] ? lockdep_init_map_type+0x5c/0x280 [ 1130.600271][T21692] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 1130.600308][T21692] ? __pfx_copy_splice_read+0x10/0x10 [ 1130.600359][T21692] do_splice_read+0x282/0x370 [ 1130.600415][T21692] splice_direct_to_actor+0x2a1/0xa30 [ 1130.600476][T21692] ? __pfx_direct_splice_actor+0x10/0x10 [ 1130.600538][T21692] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 1130.600588][T21692] ? get_pid_task+0xfc/0x250 [ 1130.600648][T21692] do_splice_direct+0x174/0x240 [ 1130.600702][T21692] ? __pfx_do_splice_direct+0x10/0x10 [ 1130.600755][T21692] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 1130.600814][T21692] ? rw_verify_area+0xcf/0x680 [ 1130.600870][T21692] do_sendfile+0xafd/0xe50 [ 1130.600910][T21692] ? __pfx_do_sendfile+0x10/0x10 [ 1130.600948][T21692] ? __fget_files+0x20e/0x3c0 [ 1130.600992][T21692] __x64_sys_sendfile64+0x1d8/0x220 [ 1130.601033][T21692] ? ksys_write+0x1b9/0x240 [ 1130.601068][T21692] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 1130.601123][T21692] do_syscall_64+0xcd/0x230 [ 1130.601176][T21692] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1130.601210][T21692] RIP: 0033:0x7ff8ccb8e969 [ 1130.601236][T21692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1130.601269][T21692] RSP: 002b:00007ff8cd95e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1130.601300][T21692] RAX: ffffffffffffffda RBX: 00007ff8ccdb5fa0 RCX: 00007ff8ccb8e969 [ 1130.601323][T21692] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 1130.601343][T21692] RBP: 00007ff8cd95e090 R08: 0000000000000000 R09: 0000000000000000 [ 1130.601363][T21692] R10: 000000007ffff001 R11: 0000000000000246 R12: 0000000000000001 [ 1130.601384][T21692] R13: 0000000000000000 R14: 00007ff8ccdb5fa0 R15: 00007fffabeb76b8 [ 1130.601427][T21692] [ 1132.154565][T21712] Invalid ELF header magic: != ELF [ 1133.528794][T21736] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3001'. [ 1133.573717][T21731] svc: failed to register nfsdv3 RPC service (errno 111). [ 1133.610753][T21731] svc: failed to register nfsaclv3 RPC service (errno 111). [ 1135.634568][T21753] Invalid ELF header magic: != ELF [ 1137.547944][T21783] vhci_hcd: invalid port number 242 [ 1137.553314][T21783] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1138.606826][T21797] [U]  [ 1138.609742][T21797] [U] [ 1138.612503][T21797] [U] [ 1138.615265][T21797] [U] [ 1138.623627][T21797] [U] [ 1138.626432][T21797] [U] [ 1138.629283][T21797] [U] [ 1138.632036][T21797] [U] [ 1138.642890][T21797] [U] [ 1138.645782][T21797] [U] [ 1138.648543][T21797] [U] [ 1138.651304][T21797] [U] [ 1138.655244][T21797] [U] [ 1138.658024][T21797] [U] [ 1138.660781][T21797] [U] [ 1138.663535][T21797] [U] [ 1138.667213][T21797] [U] [ 1138.669992][T21797] [U] [ 1138.672760][T21797] [U] [ 1138.675518][T21797] [U] [ 1138.682552][T21800] [U] [ 1139.177154][T21807] netlink: 'syz.2.3021': attribute type 11 has an invalid length. [ 1139.725076][T21806] Invalid ELF header magic: != ELF [ 1139.857903][T21815] [U]  [ 1139.860752][T21815] [U] [ 1139.863462][T21815] [U] [ 1139.866216][T21815] [U] [ 1139.917858][T21815] [U] [ 1139.920642][T21815] [U] [ 1139.923354][T21815] [U] [ 1139.926060][T21815] [U] [ 1140.013659][T21818] [U] [ 1140.302969][T21821] svc: failed to register nfsdv3 RPC service (errno 111). [ 1140.343492][T21821] svc: failed to register nfsaclv3 RPC service (errno 111). [ 1141.326742][T21850] Invalid ELF header magic: != ELF [ 1144.254475][T21900] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1146.041716][T21909] Invalid ELF header magic: != ELF [ 1146.117504][T21928] svc: failed to register nfsdv3 RPC service (errno 111). [ 1146.223483][T21928] svc: failed to register nfsaclv3 RPC service (errno 111). [ 1147.311766][T21950] openvswitch: ovs_: Dropping previously announced user features [ 1147.582802][T21921] Invalid ELF header magic: != ELF [ 1148.791401][T21953] vhci_hcd: invalid port number 242 [ 1148.807026][T21953] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1151.150719][T22012] [U]  [ 1151.153617][T22012] [U] [ 1151.156406][T22012] [U] [ 1151.159169][T22012] [U] [ 1151.187060][T22012] [U] [ 1151.189863][T22012] [U] [ 1151.192646][T22012] [U] [ 1151.195398][T22012] [U] [ 1151.233763][T22012] [U] [ 1151.236559][T22012] [U] [ 1151.239333][T22012] [U] [ 1151.242063][T22012] [U] [ 1151.246314][T22012] [U] [ 1151.249099][T22012] [U] [ 1151.251861][T22012] [U] [ 1151.254620][T22012] [U] [ 1151.301735][T22017] FAULT_INJECTION: forcing a failure. [ 1151.301735][T22017] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1151.338737][T22018] [U] [ 1151.434484][T22017] CPU: 1 UID: 0 PID: 22017 Comm: syz.4.3042 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1151.434532][T22017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1151.434553][T22017] Call Trace: [ 1151.434565][T22017] [ 1151.434577][T22017] dump_stack_lvl+0x16c/0x1f0 [ 1151.434629][T22017] should_fail_ex+0x512/0x640 [ 1151.434676][T22017] _copy_from_iter+0x2a4/0x15b0 [ 1151.434723][T22017] ? __alloc_skb+0x200/0x380 [ 1151.434774][T22017] ? __pfx__copy_from_iter+0x10/0x10 [ 1151.434821][T22017] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 1151.434869][T22017] ? __lock_acquire+0xaa4/0x1ba0 [ 1151.434927][T22017] netlink_sendmsg+0x829/0xdd0 [ 1151.434982][T22017] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1151.435047][T22017] ____sys_sendmsg+0xa95/0xc70 [ 1151.435079][T22017] ? copy_msghdr_from_user+0x10a/0x160 [ 1151.435123][T22017] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1151.435174][T22017] ___sys_sendmsg+0x134/0x1d0 [ 1151.435220][T22017] ? __pfx____sys_sendmsg+0x10/0x10 [ 1151.435314][T22017] __sys_sendmsg+0x16d/0x220 [ 1151.435359][T22017] ? __pfx___sys_sendmsg+0x10/0x10 [ 1151.435416][T22017] ? rcu_is_watching+0x12/0xc0 [ 1151.435461][T22017] do_syscall_64+0xcd/0x230 [ 1151.435512][T22017] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1151.435545][T22017] RIP: 0033:0x7f07b5b8e969 [ 1151.435569][T22017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1151.435602][T22017] RSP: 002b:00007f07b69d4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1151.435633][T22017] RAX: ffffffffffffffda RBX: 00007f07b5db5fa0 RCX: 00007f07b5b8e969 [ 1151.435655][T22017] RDX: 0000000000000010 RSI: 00002000000003c0 RDI: 0000000000000003 [ 1151.435676][T22017] RBP: 00007f07b69d4090 R08: 0000000000000000 R09: 0000000000000000 [ 1151.435696][T22017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1151.435716][T22017] R13: 0000000000000000 R14: 00007f07b5db5fa0 R15: 00007ffd7c1b3a08 [ 1151.435769][T22017] [ 1152.224359][ T30] audit: type=1804 audit(6040435744.670:43): pid=22026 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.3043" name="/newroot/sys/kernel/tracing/events/vmalloc/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1152.629700][T22041] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1152.917700][T22048] svc: failed to register nfsdv3 RPC service (errno 111). [ 1152.992316][T22048] svc: failed to register nfsaclv3 RPC service (errno 111). [ 1153.114681][T22052] openvswitch: ovs_: Dropping previously announced user features [ 1153.942037][T22081] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1155.491111][T22091] [U]  [ 1155.494014][T22091] [U] [ 1155.496781][T22091] [U] [ 1155.499541][T22091] [U] [ 1155.564565][T22091] [U] [ 1155.567467][T22091] [U] [ 1155.570236][T22091] [U] [ 1155.574474][T22091] [U] [ 1155.605742][T22091] [U] [ 1155.608555][T22091] [U] [ 1155.611316][T22091] [U] [ 1155.614103][T22091] [U] [ 1155.629645][T22091] [U] [ 1155.632434][T22091] [U] [ 1155.635178][T22091] [U] [ 1155.637906][T22091] [U] [ 1155.665041][T22091] [U] [ 1155.667858][T22091] [U] [ 1155.670700][T22091] [U] [ 1155.673441][T22091] [U] [ 1155.757843][T22091] [U] [ 1155.760604][T22091] [U] [ 1155.763318][T22091] [U] [ 1155.766062][T22091] [U] [ 1155.859951][T22091] [U] [ 1157.850631][T22111] Invalid ELF header magic: != ELF [ 1157.938968][T22129] svc: failed to register nfsdv3 RPC service (errno 111). [ 1157.981396][T22129] svc: failed to register nfsaclv3 RPC service (errno 111). [ 1159.013530][T22136] Invalid ELF header magic: != ELF [ 1159.156860][T22155] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1159.356029][T22156] svc: failed to register nfsdv3 RPC service (errno 111). [ 1159.421896][T22156] svc: failed to register nfsaclv3 RPC service (errno 111). [ 1160.311670][T22170] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1160.734810][T22175] [U]  [ 1160.737677][T22175] [U] [ 1160.740571][T22175] [U] [ 1160.743310][T22175] [U] [ 1160.789228][T22175] [U] [ 1160.792017][T22175] [U] [ 1160.794739][T22175] [U] [ 1160.797453][T22175] [U] [ 1160.828883][T22177] [U] [ 1161.431332][T22188] vhci_hcd: invalid port number 242 [ 1161.451579][T22188] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1161.896623][T22172] Invalid ELF header magic: != ELF [ 1162.515194][T22203] svc: failed to register nfsdv3 RPC service (errno 111). [ 1162.575873][T22203] svc: failed to register nfsaclv3 RPC service (errno 111). [ 1162.921246][T22206] svc: failed to register nfsdv3 RPC service (errno 111). [ 1162.949362][T22206] svc: failed to register nfsaclv3 RPC service (errno 111). [ 1163.640349][T22224] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3070'. [ 1164.279666][T22243] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1166.857209][T22293] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3078'. [ 1167.096104][T22298] [U]  [ 1167.098954][T22298] [U] [ 1167.101676][T22298] [U] [ 1167.104392][T22298] [U] [ 1167.107973][T22298] [U] [ 1167.110716][T22298] [U] [ 1167.113457][T22298] [U] [ 1167.116175][T22298] [U] [ 1167.136031][T22284] Invalid ELF header magic: != ELF [ 1167.216339][T22298] [U] [ 1167.219145][T22298] [U] [ 1167.221902][T22298] [U] [ 1167.224665][T22298] [U] [ 1167.321481][T22300] [U] [ 1169.273501][T18820] Bluetooth: hci2: command 0x0406 tx timeout [ 1169.338897][T22323] Invalid ELF header magic: != ELF [ 1171.001308][T22351] FAULT_INJECTION: forcing a failure. [ 1171.001308][T22351] name failslab, interval 1, probability 0, space 0, times 0 [ 1171.049760][T22351] CPU: 0 UID: 0 PID: 22351 Comm: syz.4.3090 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1171.049808][T22351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1171.049827][T22351] Call Trace: [ 1171.049837][T22351] [ 1171.049848][T22351] dump_stack_lvl+0x16c/0x1f0 [ 1171.049912][T22351] should_fail_ex+0x512/0x640 [ 1171.049949][T22351] ? __kmalloc_noprof+0xbf/0x510 [ 1171.049989][T22351] ? iter_file_splice_write+0x1cc/0x1150 [ 1171.050018][T22351] should_failslab+0xc2/0x120 [ 1171.050060][T22351] __kmalloc_noprof+0xd2/0x510 [ 1171.050107][T22351] iter_file_splice_write+0x1cc/0x1150 [ 1171.050147][T22351] ? kfree+0x2b6/0x4d0 [ 1171.050176][T22351] ? copy_splice_read+0x897/0xba0 [ 1171.050236][T22351] ? __pfx_iter_file_splice_write+0x10/0x10 [ 1171.050267][T22351] ? __lock_acquire+0xaa4/0x1ba0 [ 1171.050317][T22351] ? __pfx_copy_splice_read+0x10/0x10 [ 1171.050388][T22351] ? __pfx_iter_file_splice_write+0x10/0x10 [ 1171.050423][T22351] direct_splice_actor+0x18f/0x6c0 [ 1171.050481][T22351] splice_direct_to_actor+0x342/0xa30 [ 1171.050536][T22351] ? __pfx_direct_splice_actor+0x10/0x10 [ 1171.050602][T22351] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 1171.050653][T22351] ? get_pid_task+0xfc/0x250 [ 1171.050711][T22351] do_splice_direct+0x174/0x240 [ 1171.050766][T22351] ? __pfx_do_splice_direct+0x10/0x10 [ 1171.050815][T22351] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 1171.050872][T22351] ? rw_verify_area+0xcf/0x680 [ 1171.050927][T22351] do_sendfile+0xafd/0xe50 [ 1171.050968][T22351] ? __pfx_do_sendfile+0x10/0x10 [ 1171.051002][T22351] ? __fget_files+0x20e/0x3c0 [ 1171.051044][T22351] __x64_sys_sendfile64+0x1d8/0x220 [ 1171.051084][T22351] ? ksys_write+0x1b9/0x240 [ 1171.051117][T22351] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 1171.051158][T22351] ? rcu_is_watching+0x12/0xc0 [ 1171.051204][T22351] do_syscall_64+0xcd/0x230 [ 1171.051255][T22351] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1171.051289][T22351] RIP: 0033:0x7f07b5b8e969 [ 1171.051327][T22351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1171.051364][T22351] RSP: 002b:00007f07b69d4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1171.051397][T22351] RAX: ffffffffffffffda RBX: 00007f07b5db5fa0 RCX: 00007f07b5b8e969 [ 1171.051418][T22351] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 1171.051439][T22351] RBP: 00007f07b69d4090 R08: 0000000000000000 R09: 0000000000000000 [ 1171.051459][T22351] R10: 000000007ffff001 R11: 0000000000000246 R12: 0000000000000001 [ 1171.051480][T22351] R13: 0000000000000000 R14: 00007f07b5db5fa0 R15: 00007ffd7c1b3a08 [ 1171.051524][T22351] [ 1171.069528][T22346] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3087'. [ 1171.397953][T22341] vhci_hcd: invalid port number 242 [ 1171.405885][T22341] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1172.474879][T22382] [U]  [ 1172.477784][T22382] [U] [ 1172.480551][T22382] [U] [ 1172.483344][T22382] [U] [ 1172.503901][T22382] [U] [ 1172.506708][T22382] [U] [ 1172.509479][T22382] [U] [ 1172.512238][T22382] [U] [ 1172.519827][T22382] [U] [ 1172.522636][T22382] [U] [ 1172.525408][T22382] [U] [ 1172.528173][T22382] [U] [ 1172.534925][T22382] [U] [ 1172.537727][T22382] [U] [ 1172.540505][T22382] [U] [ 1172.543267][T22382] [U] [ 1172.629386][T22385] [U] [ 1173.051865][T22395] ubi0: attaching mtd0 [ 1173.098073][T22395] ubi0: scanning is finished [ 1173.129885][T22395] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 1173.668905][T22395] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1173.851073][T22398] Invalid ELF header magic: != ELF [ 1174.333988][T22415] openvswitch: netlink: Message has 1 unknown bytes. [ 1174.353238][T22415] netlink: 'syz.2.3105': attribute type 1 has an invalid length. [ 1174.810278][T22423] FAULT_INJECTION: forcing a failure. [ 1174.810278][T22423] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1174.859768][T22423] CPU: 0 UID: 0 PID: 22423 Comm: syz.2.3106 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1174.859812][T22423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1174.859832][T22423] Call Trace: [ 1174.859844][T22423] [ 1174.859856][T22423] dump_stack_lvl+0x16c/0x1f0 [ 1174.859904][T22423] should_fail_ex+0x512/0x640 [ 1174.859948][T22423] should_fail_alloc_page+0xe7/0x130 [ 1174.859993][T22423] prepare_alloc_pages+0x3c2/0x610 [ 1174.860059][T22423] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 1174.860100][T22423] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 1174.860144][T22423] ? __lock_acquire+0x5ca/0x1ba0 [ 1174.860198][T22423] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1174.860251][T22423] ? __lock_acquire+0xaa4/0x1ba0 [ 1174.860299][T22423] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1174.860347][T22423] ? policy_nodemask+0xea/0x4e0 [ 1174.860391][T22423] alloc_pages_mpol+0x1fb/0x550 [ 1174.860432][T22423] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1174.860470][T22423] ? find_held_lock+0x2b/0x80 [ 1174.860508][T22423] ? __pfx___pollwait+0x10/0x10 [ 1174.860555][T22423] alloc_pages_noprof+0x131/0x390 [ 1174.860599][T22423] get_free_pages_noprof+0xc/0x40 [ 1174.860644][T22423] __pollwait+0x295/0x490 [ 1174.860696][T22423] ? __pfx___pollwait+0x10/0x10 [ 1174.860740][T22423] unix_dgram_poll+0x7f/0x770 [ 1174.860770][T22423] ? __pfx_unix_dgram_poll+0x10/0x10 [ 1174.860797][T22423] sock_poll+0x15d/0x510 [ 1174.860827][T22423] ? __pfx_sock_poll+0x10/0x10 [ 1174.860854][T22423] do_select+0xd67/0x17d0 [ 1174.860927][T22423] ? __pfx_do_select+0x10/0x10 [ 1174.860983][T22423] ? __pfx___pollwait+0x10/0x10 [ 1174.861037][T22423] ? __pfx_pollwake+0x10/0x10 [ 1174.861099][T22423] ? __pfx_pollwake+0x10/0x10 [ 1174.861154][T22423] ? __pfx_pollwake+0x10/0x10 [ 1174.861209][T22423] ? __pfx_pollwake+0x10/0x10 [ 1174.861266][T22423] ? __pfx_pollwake+0x10/0x10 [ 1174.861320][T22423] ? __pfx_pollwake+0x10/0x10 [ 1174.861375][T22423] ? __pfx_pollwake+0x10/0x10 [ 1174.861442][T22423] ? __pfx_pollwake+0x10/0x10 [ 1174.861495][T22423] ? __pfx_pollwake+0x10/0x10 [ 1174.861547][T22423] ? find_held_lock+0x2b/0x80 [ 1174.861578][T22423] ? __might_fault+0xe3/0x190 [ 1174.861636][T22423] ? __might_fault+0xe3/0x190 [ 1174.861674][T22423] ? __might_fault+0x13b/0x190 [ 1174.861728][T22423] ? core_sys_select+0x440/0xbe0 [ 1174.861758][T22423] core_sys_select+0x440/0xbe0 [ 1174.861798][T22423] ? __pfx_core_sys_select+0x10/0x10 [ 1174.861839][T22423] ? proc_fail_nth_write+0x9f/0x250 [ 1174.861924][T22423] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1174.861983][T22423] kern_select+0x15d/0x1e0 [ 1174.862014][T22423] ? __pfx_kern_select+0x10/0x10 [ 1174.862059][T22423] ? __pfx_ksys_write+0x10/0x10 [ 1174.862101][T22423] __x64_sys_select+0xbd/0x160 [ 1174.862130][T22423] ? do_syscall_64+0x91/0x230 [ 1174.862178][T22423] ? lockdep_hardirqs_on+0x7c/0x110 [ 1174.862223][T22423] do_syscall_64+0xcd/0x230 [ 1174.862276][T22423] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1174.862310][T22423] RIP: 0033:0x7ff8ccb8e969 [ 1174.862335][T22423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1174.862367][T22423] RSP: 002b:00007ff8cd91c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 1174.862399][T22423] RAX: ffffffffffffffda RBX: 00007ff8ccdb6160 RCX: 00007ff8ccb8e969 [ 1174.862421][T22423] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 1174.862442][T22423] RBP: 00007ff8cd91c090 R08: 0000000000000000 R09: 0000000000000000 [ 1174.862463][T22423] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001 [ 1174.862483][T22423] R13: 0000000000000001 R14: 00007ff8ccdb6160 R15: 00007fffabeb76b8 [ 1174.862526][T22423] [ 1175.832831][T22424] can: request_module (can-proto-3) failed. [ 1176.128683][T22443] bond0: no command found in slaves file - use +ifname or -ifname [ 1176.552529][T22446] [U]  [ 1176.555421][T22446] [U] [ 1176.558272][T22446] [U] [ 1176.561035][T22446] [U] [ 1176.564397][T22446] [U] [ 1176.567198][T22446] [U] [ 1176.569960][T22446] [U] [ 1176.572750][T22446] [U] [ 1176.576833][T22446] [U] [ 1176.579612][T22446] [U] [ 1176.582370][T22446] [U] [ 1176.585130][T22446] [U] [ 1176.588487][T22446] [U] [ 1176.591258][T22446] [U] [ 1176.594015][T22446] [U] [ 1176.596774][T22446] [U] [ 1176.600131][T22446] [U] [ 1176.602906][T22446] [U] [ 1176.605800][T22446] [U] [ 1176.608562][T22446] [U] [ 1176.613756][T22446] [U] [ 1176.616540][T22446] [U] [ 1176.619312][T22446] [U] [ 1176.622050][T22446] [U] [ 1176.626570][T22447] [U] [ 1177.521131][T22477] openvswitch: ovs_: Dropping previously announced user features [ 1177.583611][T22455] Ignoring unsupported numa_zonelist_order value: [ 1177.583611][T22455] [ 1178.043333][T22486] FAULT_INJECTION: forcing a failure. [ 1178.043333][T22486] name failslab, interval 1, probability 0, space 0, times 0 [ 1178.128828][T22486] CPU: 1 UID: 0 PID: 22486 Comm: syz.4.3121 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1178.128866][T22486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1178.128880][T22486] Call Trace: [ 1178.128888][T22486] [ 1178.128897][T22486] dump_stack_lvl+0x16c/0x1f0 [ 1178.128935][T22486] should_fail_ex+0x512/0x640 [ 1178.128963][T22486] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 1178.128996][T22486] should_failslab+0xc2/0x120 [ 1178.129027][T22486] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 1178.129055][T22486] ? __alloc_skb+0x2b2/0x380 [ 1178.129097][T22486] __alloc_skb+0x2b2/0x380 [ 1178.129126][T22486] ? __pfx___alloc_skb+0x10/0x10 [ 1178.129156][T22486] ? __nla_validate_parse+0x600/0x2880 [ 1178.129198][T22486] ovs_dp_cmd_new+0x167/0xe60 [ 1178.129235][T22486] ? rcu_is_watching+0x12/0xc0 [ 1178.129261][T22486] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 1178.129298][T22486] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 1178.129358][T22486] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 1178.129425][T22486] genl_family_rcv_msg_doit+0x206/0x2f0 [ 1178.129450][T22486] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 1178.129489][T22486] ? trace_cap_capable+0x18d/0x200 [ 1178.129520][T22486] ? bpf_lsm_capable+0x9/0x10 [ 1178.129546][T22486] ? security_capable+0x7e/0x260 [ 1178.129570][T22486] ? ns_capable+0xd7/0x110 [ 1178.129599][T22486] genl_rcv_msg+0x55c/0x800 [ 1178.129625][T22486] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1178.129646][T22486] ? __pfx___dev_queue_xmit+0x10/0x10 [ 1178.129672][T22486] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 1178.129705][T22486] ? __lock_acquire+0xaa4/0x1ba0 [ 1178.129743][T22486] netlink_rcv_skb+0x16a/0x440 [ 1178.129777][T22486] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1178.129801][T22486] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1178.129850][T22486] ? __pfx_down_read+0x10/0x10 [ 1178.129872][T22486] ? netlink_deliver_tap+0x1ae/0xd30 [ 1178.129909][T22486] genl_rcv+0x28/0x40 [ 1178.129942][T22486] netlink_unicast+0x53a/0x7f0 [ 1178.129980][T22486] ? __pfx_netlink_unicast+0x10/0x10 [ 1178.130012][T22486] ? __lock_acquire+0xaa4/0x1ba0 [ 1178.130051][T22486] netlink_sendmsg+0x8d1/0xdd0 [ 1178.130097][T22486] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1178.130143][T22486] ____sys_sendmsg+0xa95/0xc70 [ 1178.130167][T22486] ? copy_msghdr_from_user+0x10a/0x160 [ 1178.130198][T22486] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1178.130234][T22486] ___sys_sendmsg+0x134/0x1d0 [ 1178.130267][T22486] ? __pfx____sys_sendmsg+0x10/0x10 [ 1178.130334][T22486] __sys_sendmsg+0x16d/0x220 [ 1178.130366][T22486] ? __pfx___sys_sendmsg+0x10/0x10 [ 1178.130406][T22486] ? rcu_is_watching+0x12/0xc0 [ 1178.130440][T22486] do_syscall_64+0xcd/0x230 [ 1178.130495][T22486] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1178.130531][T22486] RIP: 0033:0x7f07b5b8e969 [ 1178.130550][T22486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1178.130573][T22486] RSP: 002b:00007f07b69d4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1178.130594][T22486] RAX: ffffffffffffffda RBX: 00007f07b5db5fa0 RCX: 00007f07b5b8e969 [ 1178.130610][T22486] RDX: 0000000002000000 RSI: 0000200000000080 RDI: 0000000000000005 [ 1178.130625][T22486] RBP: 00007f07b69d4090 R08: 0000000000000000 R09: 0000000000000000 [ 1178.130639][T22486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1178.130653][T22486] R13: 0000000000000000 R14: 00007f07b5db5fa0 R15: 00007ffd7c1b3a08 [ 1178.130683][T22486] [ 1178.486965][T22465] Invalid ELF header magic: != ELF [ 1179.022441][T22494] [U]  [ 1179.025339][T22494] [U] [ 1179.028106][T22494] [U] [ 1179.030867][T22494] [U] [ 1179.129578][T22501] [U] [ 1179.255453][T22503] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3126'. [ 1179.988964][T22514] mtrr: base(0x1010101000) is not aligned on a size(0x101000) boundary [ 1180.173795][T22525] openvswitch: ovs_: Dropping previously announced user features [ 1180.647380][T22527] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC:0 is already present [ 1181.221165][T22546] netlink: 346 bytes leftover after parsing attributes in process `syz.1.3135'. [ 1181.574860][T22552] [U]  [ 1181.577786][T22552] [U] [ 1181.580643][T22552] [U] [ 1181.583413][T22552] [U] [ 1181.608665][T22552] [U] [ 1181.611472][T22552] [U] [ 1181.614226][T22552] [U] [ 1181.616984][T22552] [U] [ 1181.653132][T22553] [U] [ 1182.564697][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 1182.598423][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 1183.676739][T22576] Invalid ELF header magic: != ELF [ 1184.514844][T22604] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1186.246761][T22620] openvswitch: ovs_: Dropping previously announced user features [ 1186.870714][T22639] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3154'. [ 1186.914111][T22640] HfR: entered promiscuous mode [ 1186.947424][T22641] openvswitch: HfR: Dropping previously announced user features [ 1186.984030][T22640] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(5) [ 1187.002317][T22639] HfR: left promiscuous mode [ 1187.213286][T22646] [U]  [ 1187.216189][T22646] [U] [ 1187.218953][T22646] [U] [ 1187.221714][T22646] [U] [ 1187.229617][T22646] [U] [ 1187.232406][T22646] [U] [ 1187.235164][T22646] [U] [ 1187.237945][T22646] [U] [ 1187.262899][T22646] [U] [ 1187.265677][T22646] [U] [ 1187.268421][T22646] [U] [ 1187.271182][T22646] [U] [ 1187.290252][T22647] [U] [ 1187.682066][T22656] vhci_hcd: invalid port number 242 [ 1187.687972][T22656] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1187.738200][T22663] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3159'. [ 1188.196159][T22673] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3162'. [ 1189.026791][T22685] [U]  [ 1189.029693][T22685] [U] [ 1189.032460][T22685] [U] [ 1189.035228][T22685] [U] [ 1189.058833][T22685] [U] [ 1189.061636][T22685] [U] [ 1189.064400][T22685] [U] [ 1189.067144][T22685] [U] [ 1189.119821][T22685] [U] [ 1189.122739][T22685] [U] [ 1189.125518][T22685] [U] [ 1189.128286][T22685] [U] [ 1189.147474][T22687] [U] [ 1190.025846][T22703] Invalid ELF header magic: != ELF [ 1190.591557][T22724] snd_aloop snd_aloop.0: control 16781581:65539:6:'x?F/zF˷fC:3 is already present [ 1190.645824][T22728] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3173'. [ 1191.470746][T22740] vhci_hcd: invalid port number 242 [ 1191.476086][T22740] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535 [ 1191.692869][T22744] [U]  [ 1191.695763][T22744] [U] [ 1191.698557][T22744] [U] [ 1191.701319][T22744] [U] [ 1191.798765][T22744] [U] [ 1191.801590][T22744] [U] [ 1191.804356][T22744] [U] [ 1191.807124][T22744] [U] [ 1191.859757][T22749] [U] [ 1191.982168][T22747] FAULT_INJECTION: forcing a failure. [ 1191.982168][T22747] name failslab, interval 1, probability 0, space 0, times 0 [ 1192.023993][T22747] CPU: 1 UID: 0 PID: 22747 Comm: syz.1.3179 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1192.024048][T22747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1192.024068][T22747] Call Trace: [ 1192.024079][T22747] [ 1192.024091][T22747] dump_stack_lvl+0x16c/0x1f0 [ 1192.024141][T22747] should_fail_ex+0x512/0x640 [ 1192.024179][T22747] ? __kvmalloc_node_noprof+0x122/0x600 [ 1192.024220][T22747] should_failslab+0xc2/0x120 [ 1192.024264][T22747] __kvmalloc_node_noprof+0x135/0x600 [ 1192.024317][T22747] ? __pfx_net_ctl_permissions+0x10/0x10 [ 1192.024368][T22747] ? proc_sys_call_handler+0x2a6/0x5c0 [ 1192.024414][T22747] ? proc_sys_call_handler+0x2a6/0x5c0 [ 1192.024450][T22747] proc_sys_call_handler+0x2a6/0x5c0 [ 1192.024493][T22747] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 1192.024531][T22747] ? rcu_is_watching+0x12/0xc0 [ 1192.024567][T22747] ? splice_from_pipe_next+0x1f8/0x5d0 [ 1192.024629][T22747] iter_file_splice_write+0x91c/0x1150 [ 1192.024687][T22747] ? __pfx_iter_file_splice_write+0x10/0x10 [ 1192.024727][T22747] ? __pfx_copy_splice_read+0x10/0x10 [ 1192.024797][T22747] ? __pfx_iter_file_splice_write+0x10/0x10 [ 1192.024836][T22747] direct_splice_actor+0x18f/0x6c0 [ 1192.024893][T22747] splice_direct_to_actor+0x342/0xa30 [ 1192.024947][T22747] ? __pfx_direct_splice_actor+0x10/0x10 [ 1192.025008][T22747] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 1192.025064][T22747] ? get_pid_task+0xfc/0x250 [ 1192.025123][T22747] do_splice_direct+0x174/0x240 [ 1192.025172][T22747] ? __pfx_do_splice_direct+0x10/0x10 [ 1192.025222][T22747] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 1192.025276][T22747] ? rw_verify_area+0xcf/0x680 [ 1192.025328][T22747] do_sendfile+0xafd/0xe50 [ 1192.025367][T22747] ? __pfx_do_sendfile+0x10/0x10 [ 1192.025397][T22747] ? __fget_files+0x20e/0x3c0 [ 1192.025437][T22747] __x64_sys_sendfile64+0x1d8/0x220 [ 1192.025476][T22747] ? ksys_write+0x1b9/0x240 [ 1192.025508][T22747] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 1192.025546][T22747] ? rcu_is_watching+0x12/0xc0 [ 1192.025590][T22747] do_syscall_64+0xcd/0x230 [ 1192.025640][T22747] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1192.025673][T22747] RIP: 0033:0x7f0b0fb8e969 [ 1192.025698][T22747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1192.025731][T22747] RSP: 002b:00007f0b10abd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1192.025779][T22747] RAX: ffffffffffffffda RBX: 00007f0b0fdb5fa0 RCX: 00007f0b0fb8e969 [ 1192.025802][T22747] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 1192.025820][T22747] RBP: 00007f0b10abd090 R08: 0000000000000000 R09: 0000000000000000 [ 1192.025841][T22747] R10: 000000007ffff001 R11: 0000000000000246 R12: 0000000000000001 [ 1192.025861][T22747] R13: 0000000000000000 R14: 00007f0b0fdb5fa0 R15: 00007ffe2f8ca888 [ 1192.025902][T22747] [ 1193.264232][T22763] svc: failed to register nfsdv3 RPC service (errno 111). [ 1193.307497][T22763] svc: failed to register nfsaclv3 RPC service (errno 111). [ 1194.492863][T22775] Invalid ELF header magic: != ELF [ 1194.743345][T22795] FAULT_INJECTION: forcing a failure. [ 1194.743345][T22795] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1194.788465][T22795] CPU: 0 UID: 0 PID: 22795 Comm: syz.4.3187 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1194.788513][T22795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1194.788532][T22795] Call Trace: [ 1194.788543][T22795] [ 1194.788556][T22795] dump_stack_lvl+0x16c/0x1f0 [ 1194.788607][T22795] should_fail_ex+0x512/0x640 [ 1194.788652][T22795] _copy_from_user+0x2e/0xd0 [ 1194.788697][T22795] copy_msghdr_from_user+0x98/0x160 [ 1194.788747][T22795] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 1194.788800][T22795] ? __lock_acquire+0x5ca/0x1ba0 [ 1194.788861][T22795] ___sys_recvmsg+0xdb/0x1a0 [ 1194.788906][T22795] ? __pfx____sys_recvmsg+0x10/0x10 [ 1194.788954][T22795] ? find_held_lock+0x2b/0x80 [ 1194.789015][T22795] do_recvmmsg+0x2fe/0x740 [ 1194.789065][T22795] ? __pfx_do_recvmmsg+0x10/0x10 [ 1194.789117][T22795] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 1194.789178][T22795] ? __fget_files+0x20e/0x3c0 [ 1194.789220][T22795] __x64_sys_recvmmsg+0x22a/0x280 [ 1194.789269][T22795] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 1194.789314][T22795] ? rcu_is_watching+0x12/0xc0 [ 1194.789359][T22795] do_syscall_64+0xcd/0x230 [ 1194.789415][T22795] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1194.789448][T22795] RIP: 0033:0x7f07b5b8e969 [ 1194.789473][T22795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1194.789506][T22795] RSP: 002b:00007f07b69b3038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1194.789537][T22795] RAX: ffffffffffffffda RBX: 00007f07b5db6080 RCX: 00007f07b5b8e969 [ 1194.789560][T22795] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 1194.789580][T22795] RBP: 00007f07b69b3090 R08: 0000000000000000 R09: 0000000000000000 [ 1194.789601][T22795] R10: 0000000000001102 R11: 0000000000000246 R12: 0000000000000001 [ 1194.789621][T22795] R13: 0000000000000000 R14: 00007f07b5db6080 R15: 00007ffd7c1b3a08 [ 1194.789663][T22795] [ 1197.030096][T22843] ================================================================== [ 1197.038236][T22843] BUG: KASAN: slab-use-after-free in msft_opcode_get+0x6d/0x80 [ 1197.045848][T22843] Read of size 2 at addr ffff88807edd8232 by task syz.3.3193/22843 [ 1197.053782][T22843] [ 1197.056147][T22843] CPU: 0 UID: 0 PID: 22843 Comm: syz.3.3193 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1197.056193][T22843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1197.056214][T22843] Call Trace: [ 1197.056226][T22843] [ 1197.056240][T22843] dump_stack_lvl+0x116/0x1f0 [ 1197.056295][T22843] print_report+0xc3/0x670 [ 1197.056339][T22843] ? __virt_addr_valid+0x5e/0x590 [ 1197.056385][T22843] ? __phys_addr+0xc6/0x150 [ 1197.056434][T22843] ? msft_opcode_get+0x6d/0x80 [ 1197.056463][T22843] kasan_report+0xe0/0x110 [ 1197.056507][T22843] ? msft_opcode_get+0x6d/0x80 [ 1197.056542][T22843] msft_opcode_get+0x6d/0x80 [ 1197.056571][T22843] ? __pfx_msft_opcode_get+0x10/0x10 [ 1197.056625][T22843] simple_attr_read+0x168/0x370 [ 1197.056682][T22843] ? __debugfs_file_get+0x1fe/0x840 [ 1197.056722][T22843] ? __pfx_simple_attr_read+0x10/0x10 [ 1197.056773][T22843] ? __debugfs_file_get+0x1fe/0x840 [ 1197.056812][T22843] ? __pfx___debugfs_file_get+0x10/0x10 [ 1197.056855][T22843] debugfs_attr_read+0x76/0xa0 [ 1197.056897][T22843] full_proxy_read+0x13c/0x200 [ 1197.056936][T22843] ? __pfx_full_proxy_read+0x10/0x10 [ 1197.056977][T22843] vfs_read+0x1de/0xc70 [ 1197.057014][T22843] ? __pfx___mutex_lock+0x10/0x10 [ 1197.057064][T22843] ? __pfx_vfs_read+0x10/0x10 [ 1197.057102][T22843] ? __fget_files+0x20e/0x3c0 [ 1197.057140][T22843] ksys_read+0x12a/0x240 [ 1197.057174][T22843] ? __pfx_ksys_read+0x10/0x10 [ 1197.057207][T22843] ? rcu_is_watching+0x12/0xc0 [ 1197.057247][T22843] do_syscall_64+0xcd/0x230 [ 1197.057298][T22843] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1197.057333][T22843] RIP: 0033:0x7f12ab38e969 [ 1197.057359][T22843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1197.057394][T22843] RSP: 002b:00007f12ac1d0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1197.057427][T22843] RAX: ffffffffffffffda RBX: 00007f12ab5b5fa0 RCX: 00007f12ab38e969 [ 1197.057451][T22843] RDX: 000000000000ffff RSI: 0000200000006740 RDI: 0000000000000006 [ 1197.057473][T22843] RBP: 00007f12ab410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1197.057495][T22843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1197.057516][T22843] R13: 0000000000000000 R14: 00007f12ab5b5fa0 R15: 00007ffd775c1328 [ 1197.057549][T22843] [ 1197.057561][T22843] [ 1197.290078][T22843] Allocated by task 22581: [ 1197.294509][T22843] kasan_save_stack+0x33/0x60 [ 1197.299221][T22843] kasan_save_track+0x14/0x30 [ 1197.304104][T22843] __kasan_kmalloc+0xaa/0xb0 [ 1197.308723][T22843] smc_stats_init+0x4e/0x160 [ 1197.313344][T22843] ops_init+0x1df/0x5f0 [ 1197.317564][T22843] setup_net+0x21e/0x850 [ 1197.321841][T22843] copy_net_ns+0x2a6/0x5f0 [ 1197.326291][T22843] create_new_namespaces+0x3ea/0xad0 [ 1197.331613][T22843] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1197.337279][T22843] ksys_unshare+0x45b/0xa40 [ 1197.341814][T22843] __x64_sys_unshare+0x31/0x40 [ 1197.346696][T22843] do_syscall_64+0xcd/0x230 [ 1197.351261][T22843] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1197.357176][T22843] [ 1197.359685][T22843] Freed by task 8356: [ 1197.363695][T22843] kasan_save_stack+0x33/0x60 [ 1197.368413][T22843] kasan_save_track+0x14/0x30 [ 1197.373335][T22843] kasan_save_free_info+0x3b/0x60 [ 1197.378407][T22843] __kasan_slab_free+0x51/0x70 [ 1197.383224][T22843] kfree+0x2b6/0x4d0 [ 1197.387146][T22843] smc_stats_exit+0x37/0x90 [ 1197.391865][T22843] ops_exit_list+0xb0/0x180 [ 1197.396410][T22843] cleanup_net+0x5c1/0xb30 [ 1197.400970][T22843] process_one_work+0x9cc/0x1b70 [ 1197.405928][T22843] worker_thread+0x6c8/0xf10 [ 1197.410537][T22843] kthread+0x3c2/0x780 [ 1197.414728][T22843] ret_from_fork+0x45/0x80 [ 1197.419166][T22843] ret_from_fork_asm+0x1a/0x30 [ 1197.424052][T22843] [ 1197.426388][T22843] The buggy address belongs to the object at ffff88807edd8000 [ 1197.426388][T22843] which belongs to the cache kmalloc-1k of size 1024 [ 1197.440496][T22843] The buggy address is located 562 bytes inside of [ 1197.440496][T22843] freed 1024-byte region [ffff88807edd8000, ffff88807edd8400) [ 1197.454685][T22843] [ 1197.457147][T22843] The buggy address belongs to the physical page: [ 1197.463758][T22843] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88807eddd800 pfn:0x7edd8 [ 1197.473935][T22843] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 1197.482544][T22843] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff) [ 1197.491114][T22843] page_type: f5(slab) [ 1197.495223][T22843] raw: 00fff00000000240 ffff88801b441dc0 ffffea000188f810 ffffea0001f9d810 [ 1197.503833][T22843] raw: ffff88807eddd800 000000000010000e 00000000f5000000 0000000000000000 [ 1197.512443][T22843] head: 00fff00000000240 ffff88801b441dc0 ffffea000188f810 ffffea0001f9d810 [ 1197.521148][T22843] head: ffff88807eddd800 000000000010000e 00000000f5000000 0000000000000000 [ 1197.529847][T22843] head: 00fff00000000003 ffffea0001fb7601 00000000ffffffff 00000000ffffffff [ 1197.538909][T22843] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 1197.547618][T22843] page dumped because: kasan: bad access detected [ 1197.554079][T22843] page_owner tracks the page as allocated [ 1197.559827][T22843] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5214, tgid 5214 (S10udev), ts 40315495657, free_ts 35962282064 [ 1197.580011][T22843] post_alloc_hook+0x181/0x1b0 [ 1197.584805][T22843] get_page_from_freelist+0x135c/0x3920 [ 1197.590376][T22843] __alloc_frozen_pages_noprof+0x263/0x23a0 [ 1197.596312][T22843] alloc_pages_mpol+0x1fb/0x550 [ 1197.601195][T22843] new_slab+0x244/0x340 [ 1197.605369][T22843] ___slab_alloc+0xd9c/0x1940 [ 1197.610068][T22843] __slab_alloc.constprop.0+0x56/0xb0 [ 1197.615462][T22843] __kmalloc_noprof+0x2f2/0x510 [ 1197.620336][T22843] tomoyo_init_log+0x1385/0x2140 [ 1197.625309][T22843] tomoyo_supervisor+0x302/0x13b0 [ 1197.630366][T22843] tomoyo_env_perm+0x191/0x200 [ 1197.635177][T22843] tomoyo_find_next_domain+0xec2/0x20b0 [ 1197.640745][T22843] tomoyo_bprm_check_security+0x12e/0x1d0 [ 1197.646483][T22843] security_bprm_check+0x1b9/0x1e0 [ 1197.651619][T22843] bprm_execve+0x810/0x1650 [ 1197.656145][T22843] do_execveat_common.isra.0+0x4a5/0x610 [ 1197.661801][T22843] page last free pid 1 tgid 1 stack trace: [ 1197.667622][T22843] __free_frozen_pages+0x69d/0xff0 [ 1197.672780][T22843] free_contig_range+0x135/0x3f0 [ 1197.677760][T22843] destroy_args+0x66f/0x830 [ 1197.682293][T22843] debug_vm_pgtable+0x130e/0x2d50 [ 1197.687435][T22843] do_one_initcall+0x120/0x6e0 [ 1197.692239][T22843] kernel_init_freeable+0x5c2/0x900 [ 1197.697473][T22843] kernel_init+0x1c/0x2b0 [ 1197.701823][T22843] ret_from_fork+0x45/0x80 [ 1197.706260][T22843] ret_from_fork_asm+0x1a/0x30 [ 1197.711060][T22843] [ 1197.713393][T22843] Memory state around the buggy address: [ 1197.719034][T22843] ffff88807edd8100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 1197.727109][T22843] ffff88807edd8180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 1197.735190][T22843] >ffff88807edd8200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 1197.743290][T22843] ^ [ 1197.748933][T22843] ffff88807edd8280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 1197.757007][T22843] ffff88807edd8300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 1197.765079][T22843] ================================================================== [ 1197.824899][T22843] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 1197.832180][T22843] CPU: 1 UID: 0 PID: 22843 Comm: syz.3.3193 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 1197.844297][T22843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1197.854397][T22843] Call Trace: [ 1197.857713][T22843] [ 1197.860681][T22843] dump_stack_lvl+0x3d/0x1f0 [ 1197.865357][T22843] panic+0x71c/0x800 [ 1197.869325][T22843] ? __pfx_panic+0x10/0x10 [ 1197.873813][T22843] ? mark_held_locks+0x49/0x80 [ 1197.878639][T22843] ? preempt_schedule_thunk+0x16/0x30 [ 1197.884060][T22843] ? msft_opcode_get+0x6d/0x80 [ 1197.888867][T22843] ? preempt_schedule_common+0x44/0xc0 [ 1197.894406][T22843] ? msft_opcode_get+0x6d/0x80 [ 1197.899214][T22843] check_panic_on_warn+0xab/0xb0 [ 1197.904222][T22843] end_report+0x107/0x170 [ 1197.908606][T22843] kasan_report+0xee/0x110 [ 1197.913084][T22843] ? msft_opcode_get+0x6d/0x80 [ 1197.917904][T22843] msft_opcode_get+0x6d/0x80 [ 1197.922539][T22843] ? __pfx_msft_opcode_get+0x10/0x10 [ 1197.927893][T22843] simple_attr_read+0x168/0x370 [ 1197.932819][T22843] ? __debugfs_file_get+0x1fe/0x840 [ 1197.938083][T22843] ? __pfx_simple_attr_read+0x10/0x10 [ 1197.943531][T22843] ? __debugfs_file_get+0x1fe/0x840 [ 1197.948857][T22843] ? __pfx___debugfs_file_get+0x10/0x10 [ 1197.954442][T22843] debugfs_attr_read+0x76/0xa0 [ 1197.959248][T22843] full_proxy_read+0x13c/0x200 [ 1197.964043][T22843] ? __pfx_full_proxy_read+0x10/0x10 [ 1197.969357][T22843] vfs_read+0x1de/0xc70 [ 1197.973541][T22843] ? __pfx___mutex_lock+0x10/0x10 [ 1197.978609][T22843] ? __pfx_vfs_read+0x10/0x10 [ 1197.983327][T22843] ? __fget_files+0x20e/0x3c0 [ 1197.988036][T22843] ksys_read+0x12a/0x240 [ 1197.992305][T22843] ? __pfx_ksys_read+0x10/0x10 [ 1197.997092][T22843] ? rcu_is_watching+0x12/0xc0 [ 1198.001900][T22843] do_syscall_64+0xcd/0x230 [ 1198.006463][T22843] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1198.012399][T22843] RIP: 0033:0x7f12ab38e969 [ 1198.016854][T22843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1198.036580][T22843] RSP: 002b:00007f12ac1d0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1198.045046][T22843] RAX: ffffffffffffffda RBX: 00007f12ab5b5fa0 RCX: 00007f12ab38e969 [ 1198.053063][T22843] RDX: 000000000000ffff RSI: 0000200000006740 RDI: 0000000000000006 [ 1198.061052][T22843] RBP: 00007f12ab410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1198.069043][T22843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1198.077035][T22843] R13: 0000000000000000 R14: 00007f12ab5b5fa0 R15: 00007ffd775c1328 [ 1198.085069][T22843] [ 1198.088367][T22843] Kernel Offset: disabled [ 1198.092707][T22843] Rebooting in 86400 seconds..