last executing test programs: 2m14.151978614s ago: executing program 2 (id=1575): r0 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000200), 0x8000, 0x0) read$auto_zero_fops_mem(r0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) pwrite64$auto(0xffffffffffffffff, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x06\x00\x06\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0x2, 0x3) openat$auto_cpu_latency_qos_fops_qos(0xffffffffffffff9c, &(0x7f00000001c0), 0x50901, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) socket(0x1c, 0x80002, 0x73) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_GET_MSRS(r1, 0xc008ae88, &(0x7f0000000080)={0x2, 0x0, [{0x3a, 0x400, 0x9}]}) socket(0x23, 0x1, 0x84) bpf$auto_BPF_TOKEN_CREATE(0x24, &(0x7f0000000240)=@bpf_attr_1={0xffffffffffffffff, 0x1, @next_key=0xa5}, 0x80) r3 = socketcall$auto_SYS_GETSOCKOPT(0xf, &(0x7f0000000040)=0xffffffff00000000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2d, 0x2, 0x0) ioctl$auto(0x3, 0x89e0, 0x91) ioctl$auto(0x3, 0x89e0, 0x91) ioctl$auto_EVIOCSKEYCODE(r3, 0x40084504, &(0x7f0000000180)=[0x8, 0x39cd]) r4 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x600, 0x0) ioctl$auto_RTC_PARAM_SET(r4, 0x40187014, &(0x7f0000000080)={0x1, @uvalue=0x6}) futex_wake$auto(0x0, 0x0, 0x3, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) 2m13.570519844s ago: executing program 2 (id=1576): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x8, 0x4000000000062a6, 0x2000000009b72, 0x2, 0x8000) socket(0xa, 0x2, 0x73) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x100) socket(0x1a, 0x2, 0x0) getsockopt$auto(0x6, 0x40000000029, 0x21, 0xfffffffffffffffe, 0x0) pipe$auto(0x0) close_range$auto(0x2, 0x8, 0xc0) r1 = socket(0xa, 0x1, 0x0) ioperm$auto(0x7, 0x9, 0x80000005) futex$auto(&(0x7f0000000000), 0x4, 0x9, &(0x7f0000000040)={0x3, 0x4}, &(0x7f0000000080)=0x6, 0x8) syz_clone3(&(0x7f00000004c0)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) inotify_add_watch$auto(0xffffffffffffffff, &(0x7f0000000280)='./file0\x00', 0x4) pread64$auto(0xffffffffffffffff, 0x0, 0x8, 0x2aa00b6e) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/soft_watchdog\x00', 0x101201, 0x0) close_range$auto(0xffffffffffffffff, 0x8, 0x6) ioctl$auto(r1, 0x124, r0) socket(0x28, 0x3, 0xddce) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x1f53, 0x2000000000002) socket$nl_generic(0x10, 0x3, 0x10) creat$auto(&(0x7f00000000c0)='./file0/file0\x00', 0x8) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) fanotify_mark$auto(0x0, 0x401, 0x4, 0x4, 0x0) r2 = socket(0x10, 0x2, 0x0) read$auto(r2, &(0x7f0000002300)='MAC802154_HWSIM\x00', 0xfdef) 2m12.541489309s ago: executing program 2 (id=1579): mmap$auto(0x0, 0x2000c, 0x4000000000df, 0xeb1, 0x401, 0x8000) getpid() r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20b40, 0x0) r1 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0) readv$auto(r1, &(0x7f0000000680)={0x0, 0x40200}, 0x7) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, 0x0) ppoll$auto(&(0x7f0000000000)={r0, 0x40}, 0x8000002, 0x0, 0x0, 0x8) modify_ldt$auto(0x1, 0x0, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/lru_gen_full\x00', 0x0, 0x0) inotify_rm_watch$auto(r1, 0x8001) mmap$auto(0x0, 0x8, 0xdf, 0x1ff, r1, 0x0) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SYNC(r2, 0x5001, 0x0) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) mmap$auto(0x0, 0x20a, 0x5, 0x9b7f, 0x5, 0x8004) socket$nl_generic(0x10, 0x3, 0x10) statx$auto(0x2, 0x0, 0x1000, 0x8, 0x0) ioctl$auto(r3, 0x40104d01, 0x7) 2m12.467012638s ago: executing program 2 (id=1580): openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000200), 0x101802, 0x0) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/ipv6/conf/geneve0/ndisc_tclass\x00', 0x0, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0xffffffffffffff7f, 0x368e, 0x2, {0xffffffff, 0x20000000010000}, 0x5, 0x6, 0xfffffffffffffffd, 0x7, 0x0, 0x9, 0x81, 0xffffffffffff628e, 0xa747, 0xdead, 0x804}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card0/oss_mixer\x00', 0x121002, 0x0) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/net/rxrpc/calls\x00', 0x40380, 0x0) pread64$auto(r2, 0x0, 0x10001, 0x830) r3 = pidfd_open$auto(0x1, 0x0) pidfd_send_signal$auto_PIDFD_SIGNAL_THREAD_GROUP(r3, 0x8, 0x0, 0x2) socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x9, 0x21e9, 0x7ff, 0x6, 0x2, 0xb, 0x2e, 0x0, 0x3}, 0x6f4) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xf) bpf$auto(0x3, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc) read$auto(0x3, 0x0, 0x80) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0xb}, 0x1, 0x0, 0x0, 0x4}, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r4 = socket(0x2000000000000021, 0x2, 0x10000000000002) setsockopt$auto(r4, 0x110, 0x1, 0x0, 0x8) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) read$auto_proc_sys_file_operations_proc_sysctl(r0, 0x0, 0x0) 2m12.243571028s ago: executing program 2 (id=1582): mmap$auto(0x0, 0x42000c, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 32) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async, rerun: 32) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) (async) io_uring_setup$auto(0x59, 0x0) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) (rerun: 64) openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/0/cpuid\x00', 0x2ea1c0, 0x0) (async) ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, 0x0) (async) ppoll$auto(&(0x7f0000000000)={r1, 0x40}, 0x2, 0x0, 0x0, 0x8) write$auto_proc_gid_map_operations_base(r2, &(0x7f00000001c0)='k', 0x1) ioctl$auto_SNDCTL_DSP_SYNC(r1, 0x5001, 0xfffffffffffffffc) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x40, 0x0) (async) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x40, 0x6, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) (async, rerun: 32) socket(0x10, 0x2, 0x0) (rerun: 32) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/timer_migration\x00', 0x20640, 0x0) read$auto_proc_sys_file_operations_proc_sysctl(r3, 0x0, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="680000004dc1f361b70f2423a12668903d", @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060007000a00000008000200", @ANYRES32=0x0, @ANYRES32=r0], 0x68}, 0x1, 0x0, 0x0, 0x18a64d47ddeca1f0}, 0x40090) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x4004) (async) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0xdd, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x48000) (async) pipe2$auto(0x0, 0x80) (async) bind$auto(r0, &(0x7f0000000280)=@tipc=@nameseq={0x1e, 0x1, 0x0, {0x0, 0x3, 0x1}}, 0x0) keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) (async) close_range$auto(0x2, 0x8, 0x0) (async) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/kernel/random/uuid\x00', 0x101000, 0x0) read$auto(r4, 0x0, 0x8) (async) sendmmsg$auto(r4, &(0x7f0000000080)={{0x0, 0x5, &(0x7f0000000000)={0x0, 0xc4}, 0x5, 0x0, 0x2, 0x7}, 0x5}, 0x7, 0x6) (async, rerun: 32) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (rerun: 32) 2m11.188442916s ago: executing program 2 (id=1586): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) move_pages$auto(0x0, 0x400000000f58, 0x0, 0x0, 0x0, 0x8000000000000000) mmap$auto(0x8, 0x3a02, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = open(0x0, 0xd02, 0xc3) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) mbind$auto(0x0, 0x800605, 0x8003, &(0x7f0000000100)=0xffff, 0x3, 0x3) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) sendmsg$auto_NL80211_CMD_START_AP(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000140)={&(0x7f0000000340)={0x668, 0x0, 0x20, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_FRAME={0x639, 0x33, "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"}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x8}, @NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST={0x6, 0xf7, {0xe, 0x9}}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x7}]}, 0x668}, 0x1, 0x0, 0x0, 0x48010}, 0x20000800) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0xa, 0x5, 0x0) getsockopt$auto(r0, 0x400002, 0x4, 0x0, &(0x7f00000001c0)=0x2) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) socket(0x1e, 0x1, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) select$auto(0x11, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd5, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x20000, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/ip6_vti0/stable_secret\x00', 0x2, 0x0) pwrite64$auto(r1, &(0x7f0000000040)='.\'*&\x04!\x00', 0x1, 0x8) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/afs/servers\x00', 0x100, 0x0) read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000040)=""/88, 0x58) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={{0x0, 0x0, 0x0, 0x9, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008) 1m55.73603569s ago: executing program 32 (id=1586): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) move_pages$auto(0x0, 0x400000000f58, 0x0, 0x0, 0x0, 0x8000000000000000) mmap$auto(0x8, 0x3a02, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = open(0x0, 0xd02, 0xc3) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) mbind$auto(0x0, 0x800605, 0x8003, &(0x7f0000000100)=0xffff, 0x3, 0x3) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) sendmsg$auto_NL80211_CMD_START_AP(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000140)={&(0x7f0000000340)={0x668, 0x0, 0x20, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_FRAME={0x639, 0x33, "afa6e0335f4a2c0c9b03ed037529ed1f8c19df0534c0c618363857d371dfe3575f074ed09281c32a0f2392027bee6d0506bdc9f52f16c9cddce2ee2bf411b5c37071c69297cbc252870e10ae089076ebd6ce5e42336573f7457224fb6e4d5cbc4b2847351ae8b9723b261b5876aa693b1f99786a8aff10d220aadda3c7f68a53903dbf2891b524fb9d9f1935f6873af22229e32a71276fac61cfbb99a0e9896735a111f46a73d9141b874444d253c3bcc98c2eddc451cb222af5ff8bdf0222e89524e44e1550d57f65061818b2e64ed23cbadd4cd35c4e675a6c76c93487649d5e120e876eef7d33bda62ec8ff4194ac957e81ef9aea0f96d44b4d7d28d0a90f3f3f1ab2302188a33eba4baeb8a36328ff04c2f77de5f5c1a202b358ced0d7ea41158c3745dc867e377ecadeccfcd5b8b519bef4dabe08dc5d923fb1a0bcfb63eb4c8e2143c4d2132e5e9c82712afab78723dc43d092eeb8a1bf619dd7d7c27b9785b953d4506d0d5207f3e8b76284b7749045ca2b5f062013c53f35be3e4489a1b8e3232314c86fbe18a58751f0b58219c53c1907daa47745badd8947431a66134913519262c65969aae0a78e040810ad130354b65c729754e9af226114904d39c5b24eaf02702067fdae7ae01c7fb58aa834b3d815caabb1761ba0d83cf8d53502a268b63fc3501fb67ded5c1b1482367ee4f5214303dc652abe046ce1abf20a3f49e1036026d77c132d332e98878ea17bd994e882becd6fc52d9fd91260ef25c204390f2c88c9e8cccd2d3f51bb9a93f0765f02dd8422bd3715b1205811f72ef91397fd5ab58f60cd10542ef3fa257e6cb0c311287b1af50dac0fb5614eaa5e67563c8efd9e89bb8fc2d7c6c4f64e95768bed149a69a345aadb64c89bb9e4bec361d74bef891543a5c8ba242c434b476bad123aece2a552ad43999907b425f4df57d3e4ca2c2b865568e619be2ef134718b47b6055a0bcc8ea64ff4ebc05339f5481e3c6fceadbd6f4126ccca4fb0e6b2303c4ec0d591cb45a076706a700ff34ad1c569fd11674bcbab1228132f1bfe192d138f25ec2520da501ed6e583492447734f69fa581e64a96f90582f9d757e391c0d33ce8250cc7c9e0d3651801cb285c9eee5bd0224d388dddf8527e49ca9030fd7955e93e3365f9602b4a4ef1aaca177e44e7f1142c8ec0015f2b505a775afe9ae820df18adaad4b3924d8033965991fe1e59acbbad440bc64b3198a4eae215fd32283be418b6ee791a89eaf386422aed1ca9a18a0220f88a7609d536ffd7db73c9654cbe7a7835668771f8f2f98d58cf1d60cff1004ee2fb4c394bf3b48d0232866d382ceeae8f340bddb3ac677edc560982312ac13bf765db179a235e47ec0747d428fe273fda500641154f168cad55351172f93a970ccf26626ec89d52f64d89f0d7456212854f35542794264126abf75567f56cf0081de22def6305d279b2aabdb91ac0813ccd0a4e87dd63b3188cc10a3eee94e7af67e2ab5070bc5e639a204af69b49aef29b61c7efd1a9f4b6bc51659aeb399b34cf21dc827259991979828515c776d86f06cf69ea710e6be91ec0ea9e46e9d08e07ad2ab67a4b43e2d0763a4673a8002df95761309b011b25a6effab4da60e599c27e263394328da81b0af4ebcd6d838c1a9ff729482681115b4964be42bb4b8d8855c71450e9c48999e195227f41eb0fde516123e1da39f0db125045c3e5dadbfba05b329cf3d02dbd9fa01c75856ee233ef96b5e61f845560c640758d3883bb7ca2da85c9c5c15dc0f4033bc8140ec0965f91a4be0692c0348a3cc38fbac8a0e6db18433aeb3f05921c5cf614be4754f76c9e3323026a646d89a7a894e1b493a999af49864886b6ed68ce635ba2eeff167e99ac5fa5696aca29f1517b47f460151ca4b9afb34cc5ffbeb037ece8de9d223d8a1124b6c0ce000928070c021dc17499c9313264903ccc5ba90f9b0eb3c1617cb53c8192a7e2d12c566c83ac35ee265bd5bafb2b3208af0cc938e8306a45b50ccd17ee5e59fbfcf30c09185c2d84db35e05190a3251c097c288d5bfd800f2fc5e60aaaaa7bb297e39e40dfc35da14b1ffa060ed3f02722f35e345e7ad453e6758b5ec8ef2ebd3a57413a1ea68df9684dc4dda5bdeaf81ec602fee0057dfa42fe9bcd7f571e906b31c4044c07070a0cdfab85594b18c54691b269a23e39fcbcb48eb4aab9b7950f145d87c750a5bd301ef6c1816aee61ac31b"}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x8}, @NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST={0x6, 0xf7, {0xe, 0x9}}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x7}]}, 0x668}, 0x1, 0x0, 0x0, 0x48010}, 0x20000800) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0xa, 0x5, 0x0) getsockopt$auto(r0, 0x400002, 0x4, 0x0, &(0x7f00000001c0)=0x2) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) socket(0x1e, 0x1, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) select$auto(0x11, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd5, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x20000, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/ip6_vti0/stable_secret\x00', 0x2, 0x0) pwrite64$auto(r1, &(0x7f0000000040)='.\'*&\x04!\x00', 0x1, 0x8) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/afs/servers\x00', 0x100, 0x0) read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000040)=""/88, 0x58) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={{0x0, 0x0, 0x0, 0x9, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008) 6.415518717s ago: executing program 4 (id=1963): openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000200), 0x101802, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0xffffffffffffff7f, 0x368e, 0x2, {0xffffffff, 0x20000000010000}, 0x5, 0x6, 0xfffffffffffffffd, 0x7, 0x0, 0x9, 0x81, 0xffffffffffff628e, 0xa747, 0xdead, 0x804}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card0/oss_mixer\x00', 0x121002, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/net/rxrpc/calls\x00', 0x40380, 0x0) pread64$auto(r1, 0x0, 0x10001, 0x830) socket$nl_generic(0x10, 0x3, 0x10) r2 = pidfd_open$auto(0x1, 0x0) pidfd_send_signal$auto_PIDFD_SIGNAL_THREAD_GROUP(r2, 0x8, 0x0, 0x2) socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x9, 0x21e9, 0x7ff, 0x6, 0x2, 0xb, 0x2e, 0x0, 0x3}, 0x6f4) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xf) bpf$auto(0x3, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc) read$auto(0x3, 0x0, 0x80) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0xb}, 0x1, 0x0, 0x0, 0x4}, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r3 = socket(0x2000000000000021, 0x2, 0x10000000000002) setsockopt$auto(r3, 0x110, 0x1, 0x0, 0x8) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) read$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffffff, 0x0, 0x0) 5.866921005s ago: executing program 3 (id=1965): r0 = syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x2000021}, 0x0, 0x0, 0x0, 0x0}, 0x58) mq_open$auto(0x0, 0x0, 0x1, &(0x7f0000000280)={0x3, 0x5, 0x100000001, 0x62}) mmap$auto(0x8001, 0xff, 0x80000001, 0x1010, 0xffffffffffffffff, 0x28004) mmap$auto(0xc1, 0x2000, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) socket(0x29, 0x5, 0x8) socket(0xa, 0x1, 0x100) r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/input/event1\x00', 0x44b683, 0x0) write$auto(r1, &(0x7f0000000040)='/dev/input/event1\x00', 0x10001) ioctl$auto_USBDEVFS_ALLOW_SUSPEND(0xffffffffffffffff, 0x5522, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) read$auto(r1, &(0x7f00000001c0)='@[\x00', 0x44b) chdir$auto(&(0x7f0000000000)='}[,&*}\x00') r2 = open(&(0x7f0000000100)='.\x00', 0x9a6b18f4f67b5626, 0x408) ioctl$auto_FS_IOC_SETFLAGS2(r2, 0x40086602, &(0x7f0000000280)=0x8) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) sysfs$auto(0x0, 0x9, 0x7) prctl$auto(0x20000004, 0x1, r0, 0x8000, 0x0) r4 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0) mq_timedsend$auto(r4, &(0x7f0000000200)='\\*)A\x00', 0x3ff, 0x6, &(0x7f0000000240)={0x3, 0x4000000000000101}) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0x1d, 0x8fd6, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x555100, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0x2000e, 0x0, 0x0, &(0x7f0000000240)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x5]}, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0) readlinkat$auto(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='\\\x00', 0x80) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0) 5.648475166s ago: executing program 4 (id=1966): socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae90, &(0x7f0000000300)={0x2, 0x300, [{0x3, 0x7ff, 0x8}, {0x10002, 0xe2ab, 0x5}, {0x3, 0x0, 0x12}]}) 5.388823665s ago: executing program 4 (id=1968): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffefffffffff0005, 0xd7) mremap$auto(0x101, 0xffffffffffffffff, 0x9, 0x3, 0x7fffffffb000) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) bind$auto(0x3, 0x0, 0x66) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r0 = socket(0x0, 0x800, 0x0) mmap$auto(0x8000000000000, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000000000008000) madvise$auto(0x0, 0xffffffffffff0006, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x400053, 0x9) socket(0x2, 0x0, 0x81) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r0, 0x8, 0xfffffffd) socket$nl_generic(0x10, 0x3, 0x10) mbind$auto(0x8000, 0xfa9d, 0x2, &(0x7f0000000280)=0x20000000000000fb, 0x3, 0x1) set_mempolicy_home_node$auto(0x0, 0x2010001, 0x0, 0x0) 5.051072631s ago: executing program 0 (id=1969): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x28000) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0x4188aec6, r0) r2 = socket(0x2, 0x1, 0x0) ppoll$auto(&(0x7f0000000000)={r2, 0x4, 0x5}, 0x7, 0x0, 0x0, 0x8) setsockopt$auto(r3, 0x6, 0x13, &(0x7f0000000040)=')[\x00', 0x9) close_range$auto(0x2, 0x8, 0x0) sysfs$auto(0x2, 0x2, 0x9) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) r4 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) r5 = open(&(0x7f0000000080)='./file0\x00', 0xeee00, 0x31) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'pim6reg1\x00'}) unlink$auto(&(0x7f0000000380)='./file0\x00') mmap$auto(0x1000000, 0x1, 0x3ff, 0x15, 0xffffffffffffffff, 0x3) read$auto_ptdump_fops_(r5, &(0x7f00000005c0)=""/4096, 0x1000) read$auto_l2cap_debugfs_fops_(0xffffffffffffffff, &(0x7f0000000240)=""/177, 0xb1) timer_settime$auto(0x0, 0xd80, &(0x7f0000000040)={{0x40000000000026b, 0x4}, {0x0, 0x83}}, 0x0) syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000002c0), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) r6 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cec18\x00', 0x0, 0x0) ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r6, 0xc05c6104, &(0x7f00000000c0)={"58f99464", 0x8, 0x6, 0x1, 0x3, 0x5, "4bb69ec4b3f4c14539898e4c5682f5", "347f00", "a630df9d", "0534a90a", ["3eaba44e9f052f3cb90401a9", "2f9c30017721de33c560b95a", "d3fe6c55a78d6932211c9b69", "ea334f1f1e5e27a1320d6edb"]}) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) 4.471772549s ago: executing program 3 (id=1970): openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000200), 0x101802, 0x0) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/ipv6/conf/geneve0/ndisc_tclass\x00', 0x0, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0xffffffffffffff7f, 0x368e, 0x2, {0xffffffff, 0x20000000010000}, 0x5, 0x6, 0xfffffffffffffffd, 0x7, 0x0, 0x9, 0x81, 0xffffffffffff628e, 0xa747, 0xdead, 0x804}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card0/oss_mixer\x00', 0x121002, 0x0) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/net/rxrpc/calls\x00', 0x40380, 0x0) pread64$auto(r2, 0x0, 0x10001, 0x830) r3 = pidfd_open$auto(0x1, 0x0) pidfd_send_signal$auto_PIDFD_SIGNAL_THREAD_GROUP(r3, 0x8, 0x0, 0x2) socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x9, 0x21e9, 0x7ff, 0x6, 0x2, 0xb, 0x2e, 0x0, 0x3}, 0x6f4) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xf) bpf$auto(0x3, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc) read$auto(0x3, 0x0, 0x80) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0xb}, 0x1, 0x0, 0x0, 0x4}, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r4 = socket(0x2000000000000021, 0x2, 0x10000000000002) setsockopt$auto(r4, 0x110, 0x1, 0x0, 0x8) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) read$auto_proc_sys_file_operations_proc_sysctl(r0, 0x0, 0x0) 3.827377774s ago: executing program 3 (id=1973): r0 = socket(0x2a, 0x2, 0x1) connect$auto(r0, &(0x7f00000000c0)=@qipcrtr={0x2a, 0xffffffff, 0xfffffffe}, 0x55) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) write$auto(0x3, 0x0, 0xfdef) write$auto(0x3, 0x0, 0xffd8) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000980), r1) sendmsg$auto_TIPC_NL_MEDIA_SET(r1, &(0x7f000000a4c0)={0x0, 0x0, &(0x7f000000a480)={&(0x7f0000009800)={0x18, r2, 0x1, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000}, 0x20000048) sendmsg$auto_NET_DM_CMD_CONFIG(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000200)={&(0x7f00000009c0)={0x1044, 0x0, 0x118, 0x70bd2b, 0x25dfdbfc, {}, [@NET_DM_ATTR_QUEUE_LEN={0x8, 0xb, 0x5}, @NET_DM_ATTR_TRUNC_LEN={0x8, 0x9, 0x3}, @NET_DM_ATTR_QUEUE_LEN={0x8, 0xb, 0x8}, @NET_DM_ATTR_ALERT_MODE={0x5, 0x1, 0x10}, @NET_DM_ATTR_UNSPEC={0x1004, 0x0, "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"}, @NET_DM_ATTR_HW_DROPS={0x4}, @NET_DM_ATTR_ALERT_MODE={0x5, 0x1, 0xc}]}, 0x1044}, 0x1, 0x0, 0x0, 0x4004}, 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f0000000040), r1) sendmsg$auto_KSMBD_EVENT_LOGIN_RESPONSE_EXT(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r3, 0x100, 0x70bd2b, 0x25dfdbfe, {}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x10) rt_sigaction$auto(0x1, &(0x7f00000001c0)={&(0x7f0000000080)=0x0, 0x7fffffffffffffff, 0x0, {0x5}}, 0x0, 0x8) rt_sigaction$auto(0x4, &(0x7f0000000300)={&(0x7f0000000240)=0x0, 0x0, 0x0, {0x1}}, 0x0, 0x8) r4 = gettid() rt_sigqueueinfo$auto(r4, 0x1, 0x0) 3.698878698s ago: executing program 4 (id=1975): r0 = syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x2000021}, 0x0, 0x0, 0x0, 0x0}, 0x58) mq_open$auto(0x0, 0x0, 0x1, &(0x7f0000000280)={0x3, 0x5, 0x100000001, 0x62}) mmap$auto(0x8001, 0xff, 0x80000001, 0x1010, 0xffffffffffffffff, 0x28004) mmap$auto(0xc1, 0x2000, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) socket(0x29, 0x5, 0x8) socket(0xa, 0x1, 0x100) r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/input/event1\x00', 0x44b683, 0x0) write$auto(r1, &(0x7f0000000040)='/dev/input/event1\x00', 0x10001) ioctl$auto_USBDEVFS_ALLOW_SUSPEND(0xffffffffffffffff, 0x5522, 0x0) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000080)='nfsd\x00', 0x7, 0x0) read$auto(r1, &(0x7f00000001c0)='@[\x00', 0x44b) chdir$auto(&(0x7f0000000000)='}[,&*}\x00') r2 = open(&(0x7f0000000100)='.\x00', 0x9a6b18f4f67b5626, 0x408) ioctl$auto_FS_IOC_SETFLAGS2(r2, 0x40086602, &(0x7f0000000280)=0x8) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) sysfs$auto(0x0, 0x9, 0x7) prctl$auto(0x20000004, 0x1, r0, 0x8000, 0x0) r4 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0) mq_timedsend$auto(r4, &(0x7f0000000200)='\\*)A\x00', 0x3ff, 0x6, &(0x7f0000000240)={0x3, 0x4000000000000101}) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0x1d, 0x8fd6, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x555100, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0x2000e, 0x0, 0x0, &(0x7f0000000240)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x5]}, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0) readlinkat$auto(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='\\\x00', 0x80) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0) 3.506120461s ago: executing program 3 (id=1976): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000280), 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) close_range$auto(0x2, 0x8, 0x0) r1 = io_uring_setup$auto(0x6, 0x0) read$auto_page_owner_stack_operations_page_owner(0xffffffffffffffff, &(0x7f00000003c0)=""/177, 0xb1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r2) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) landlock_restrict_self$auto(r2, 0x7fff) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000840)=ANY=[@ANYRESDEC=r0, @ANYRES16=r1, @ANYBLOB="2f212dbd7000fcdbdf252100000008000300", @ANYRES32=r4, @ANYBLOB="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", @ANYRES16=r3], 0x24}}, 0x40400d1) sendmsg$auto_NETDEV_CMD_QSTATS_GET(r0, &(0x7f00000005c0)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000580)={&(0x7f0000000600)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES8, @ANYRES16=r4, @ANYRESHEX=r0, @ANYBLOB="0c00040007000000000000000c00040000000000000800000c00040007000000000000000c0004000000000000000000", @ANYRESDEC], 0x58}, 0x1, 0x0, 0x0, 0x24000851}, 0x20000000) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0x102, 0x0) ioctl$auto(0x3, 0x5600, 0x38) openat$auto_debug_help_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f0000000000), 0x2480, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) setuid$auto(0x1f) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x15) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004810}, 0x4008882) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1100af"], 0x1ac}, 0x1, 0x0, 0x0, 0x6044810}, 0x8841) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x9}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) 3.396939201s ago: executing program 0 (id=1977): mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x2, 0x8000) mount_setattr$auto(0x5, 0x0, 0x8000, 0x0, 0x283) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\rs\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeep\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x2, 0x4, 0x3, 0x2, 0x8, 0xc, 0xe3, 0x400000000a, 0x3}, 0x6f4) bpf$auto(0x18, &(0x7f0000000040)=@bpf_attr_4={0x7, r0, 0x5, r0}, 0x92) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x2, 0x1) openat$auto_usbfs_devices_fops_usb(0xffffffffffffff9c, &(0x7f0000000140), 0x10082, 0x0) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) sendto$auto(0x3, 0x0, 0xfdef, 0xe, &(0x7f0000000100)=@in={0x2, 0x0, @rand_addr=0xe0000700}, 0x19) 3.277646678s ago: executing program 1 (id=1978): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r0 = socketpair$auto(0x3e6, 0xe, 0x9, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) ioctl$auto_BLKDISCARD(r0, 0x1277, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0) setresgid$auto(0x800, 0xee01, 0xffffffffffffffff) setresgid$auto(0x0, 0x0, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) prctl$auto(0x21, 0x1, 0x3, 0x0, 0x0) prctl$auto(0x22, 0x0, 0x0, 0x0, 0x0) prctl$auto(0x400, 0x7fff, 0x0, 0x10000, 0x100000000000007) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_GET_MSRS(r1, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0x122, 0x400, 0x6}]}) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) 2.825890092s ago: executing program 3 (id=1979): socket$nl_generic(0x10, 0x3, 0x10) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000000c0)=""/97, 0x61) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000000200000000) getpid() ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0) unshare$auto(0x40000080) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) r1 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0) readv$auto(r1, &(0x7f0000000680)={&(0x7f0000000540), 0x40200}, 0x3) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, 0x0) ppoll$auto(&(0x7f0000000000)={r0, 0x40}, 0x2, 0x0, 0x0, 0x8) ioctl$auto_SNDCTL_DSP_SYNC(r0, 0x5001, 0xfffffffffffffffc) modify_ldt$auto(0x1, 0x0, 0x10) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) pipe$auto(0x0) fcntl$auto(0x3, 0x4, 0xa553) vmsplice$auto(r2, &(0x7f0000000080)={0x0, 0x2}, 0xfffffffffffffffd, 0x5) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) r3 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) read$auto_mISDN_fops_timerdev(r3, &(0x7f0000001a00)=""/4097, 0x1001) ioctl$auto_IMADDTIMER(r3, 0x80044940, 0x0) landlock_add_rule$auto(0xffffffffffffffff, 0x3, &(0x7f0000000040)="c604ebf2c9bc", 0x2) mmap$auto(0x0, 0x400008, 0xdf, 0xfff, 0x2, 0x8000) r4 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000000), 0x88600, 0x0) ioctl$auto_UBI_IOCATT(r4, 0x40186f40, 0x0) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) r5 = socket(0xa, 0x1, 0x84) getsockopt$auto(r5, 0x0, 0x482, 0x0, &(0x7f0000000040)=0x83) 2.784946368s ago: executing program 0 (id=1980): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) io_uring_setup$auto(0x2, 0x0) close_range$auto(0x2, 0xa, 0x0) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/ns_last_pid\x00', 0x68001, 0x0) socket$nl_generic(0x10, 0x3, 0x10) pread64$auto(0xffffffffffffffff, &(0x7f0000000080)='/dev/audio1\x00', 0x400, 0x2) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) seccomp$auto(0x0, 0x100000000, 0xfffffffffffffffc) openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_score_adj\x00', 0x4040, 0x0) r0 = socket(0x2a, 0x2, 0x1) connect$auto(r0, &(0x7f00000000c0)=@qipcrtr={0x2a, 0xffffffff, 0xfffffffe}, 0x55) r1 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) read$auto(r1, 0x0, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) unshare$auto(0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x200, 0x0) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000100), 0x40800, 0x0) openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000001b00)='/sys/kernel/debug/ieee80211/phy4/aql_enable\x00', 0x1, 0x0) 2.771302397s ago: executing program 4 (id=1981): openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x101802, 0x0) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/ipv6/conf/geneve0/ndisc_tclass\x00', 0x0, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0xffffffffffffff7f, 0x368e, 0x2, {0xffffffff, 0x20000000010000}, 0x5, 0x6, 0xfffffffffffffffd, 0x7, 0x0, 0x9, 0x81, 0xffffffffffff628e, 0xa747, 0xdead, 0x804}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card0/oss_mixer\x00', 0x121002, 0x0) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/net/rxrpc/calls\x00', 0x40380, 0x0) pread64$auto(r2, 0x0, 0x10001, 0x830) socket$nl_generic(0x10, 0x3, 0x10) r3 = pidfd_open$auto(0x1, 0x0) pidfd_send_signal$auto_PIDFD_SIGNAL_THREAD_GROUP(r3, 0x8, 0x0, 0x2) socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x9, 0x21e9, 0x7ff, 0x6, 0x2, 0xb, 0x2e, 0x0, 0x3}, 0x6f4) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xf) bpf$auto(0x3, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc) read$auto(0x3, 0x0, 0x80) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0xb}, 0x1, 0x0, 0x0, 0x4}, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r4 = socket(0x2000000000000021, 0x2, 0x10000000000002) setsockopt$auto(r4, 0x110, 0x1, 0x0, 0x8) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) read$auto_proc_sys_file_operations_proc_sysctl(r0, 0x0, 0x0) 2.182902785s ago: executing program 1 (id=1982): pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRNM\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^B\xb8\xe4j\t3\xe4\x90\xcc\x9d\xc5\x0fo\x84\xf4\x89\v\xea\x1b\x95\xafQ;CL\"\x01@\x00\x00\x00\x00\f\x00\xc0\x13\xc8\xe2\xae\xf5\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8d\x81\x81O*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,8\x93\xba\x88\x93\x9d\xb6\x1a\x7f\xc0%\xb0\x83ROJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd6eWj\xdc\xac\x88\xf0\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\xfb\xba\xb2.$\'\x1e\x82\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\xff\xff\x00'/250, 0xfdf3, 0x6) socket(0x2, 0x3, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r1], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x200440c0) syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x8001c01, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x1}, 0x7}, 0x3d55, 0x0) 2.125015167s ago: executing program 0 (id=1983): mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) madvise$auto(0x0, 0xffffffffffff0006, 0x17) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) bind$auto(0x3, 0x0, 0x7) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x65, 0x8000001f, 0x1000, 0x6d3e, 0x9, 0x800000000002, 0x8]}, 0x0) sendmsg$auto(0xffffffffffffffff, 0x0, 0xfff) msync$auto(0x2, 0x9, 0x40) select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x3, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618fcd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, &(0x7f0000000140)={0x6, 0xcb}) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0xfffffdef) close_range$auto(0x2, 0x8, 0x0) socket(0x2c, 0x3, 0xffffffff) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) 2.104570965s ago: executing program 4 (id=1984): capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) fanotify_init$auto(0x5, 0x2000000000002) ioctl$auto(0xffffffffffffffff, 0x40246f4c, 0x38) prctl$auto(0x23, 0x4, 0x7fffffffefff, 0x0, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio1\x00', 0x10dc00, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x8000003, 0x7) unshare$auto(0x40000087) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/exception_policy\x00', 0xc0080, 0x0) read$auto_tomoyo_operations_securityfs_if(r0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1d, 0x800, 0x2) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0) r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40602, 0x0) mmap$auto(0x0, 0x5, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x29, 0x2, 0x0) getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) read$auto(r1, 0x0, 0x7ff) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0x5c8) write$auto(0x3, 0x0, 0x5c8) dup3$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x101) write$auto(0x3, 0x0, 0x81) openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x94) openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) 1.763871749s ago: executing program 1 (id=1985): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) socket(0x2, 0x1, 0x0) io_uring_setup$auto(0x2, 0x0) close_range$auto(0x2, 0xa, 0x0) poll$auto(&(0x7f0000000380)={0xffffffffffffffff, 0x6, 0x7}, 0x80, 0xf) r0 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f000000e680), 0x2, 0x0) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x540b, 0xfffffffffffffffd) pread64$auto(r0, &(0x7f0000000080)='/dev/audio1\x00', 0x400, 0x2) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) select$auto(0xe, 0x0, 0x0, &(0x7f0000000200)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xfffffffffffffffe, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) 1.060658335s ago: executing program 0 (id=1986): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) io_uring_setup$auto(0x2, 0x0) close_range$auto(0x2, 0xa, 0x0) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/ns_last_pid\x00', 0x68001, 0x0) socket$nl_generic(0x10, 0x3, 0x10) pread64$auto(0xffffffffffffffff, &(0x7f0000000080)='/dev/audio1\x00', 0x400, 0x2) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) seccomp$auto(0x0, 0x100000000, 0xfffffffffffffffc) openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_score_adj\x00', 0x4040, 0x0) bpf$auto(0x2, &(0x7f00000000c0)=@bpf_attr_1={r0, 0x4, @next_key=0x5, 0xc9}, 0xfffffffa) connect$auto(0xffffffffffffffff, &(0x7f00000000c0)=@qipcrtr={0x2a, 0xffffffff, 0xfffffffe}, 0x55) r1 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) read$auto(r1, 0x0, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) unshare$auto(0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x200, 0x0) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000100), 0x40800, 0x0) openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000001b00)='/sys/kernel/debug/ieee80211/phy4/aql_enable\x00', 0x1, 0x0) 807.031795ms ago: executing program 1 (id=1987): openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sg0\x00', 0x6000, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/irq/2/wakeup\x00', 0x80000, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/pm_debug_messages\x00', 0xa001, 0x0) write$auto(r1, &(0x7f00000000c0)='7\x10\\\xa0\x04|\x03\x12\xfa\b\x1c\xe0k\x0f32Z0\xfbf\xe7\xe8\x97\x05~\x00', 0xa3e) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/bus/usb/005/001\x00', 0x105900, 0x0) fsconfig$auto_FSCONFIG_CMD_RECONFIGURE(r2, 0x7, 0x0, &(0x7f0000000080)="2631e47345b7c1f5be195e7c9f67cc3a02bb323107d39def760e000000000000932fba85945300e58a89d4174d21f013195cfb3151f1c346f2fe3c92193c29154408000000bb48eddae161787f566462d0646e118dea1b74c165c3beab3b200c828c0fd0d069e85be78500b571da5a1ceb3b6cccd1a2d4b354ec362a964022c924aa01bb9000c8fcdb54fa0e75276603eba06c223ad488b0c809b92ff1f25a02018124ed710f8d96fe9df6052b4099b3ecaeb267ee66655aee726a215346a7", 0x600) ioctl$auto(r2, 0x41045508, r2) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000001200)=""/116, 0x74) openat$auto_ns_file_operations_nsfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/ns/cgroup\x00', 0x14000, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000100), r3) openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000001680)='/sys/kernel/debug/tracing/uprobe_events\x00', 0x22c380, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC0\x00', 0x4000, 0x0) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0xe, 0x0, 0x20) ioctl$auto_IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0) shmctl$auto(0x0, 0xd, 0x0) getrandom$auto(0x0, 0xe06, 0x3) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa901, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0xc01) setreuid$auto(0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r4 = socket(0x15, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) sendmsg$auto(r4, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) 514.188249ms ago: executing program 3 (id=1988): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xc000000000000010, 0x401, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x82040, 0x0) socket(0xa, 0x1, 0x100) modify_ldt$auto(0x1, 0x0, 0x10) r0 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0xc0000, 0x0) pread64$auto(r0, 0x0, 0x1, 0x7) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/block/loop10/queue/add_random\x00', 0x80302, 0x0) sendfile$auto(r2, r2, 0x0, 0x3) select$auto(0x7, 0x0, 0x0, &(0x7f0000000240)={[0x1ff, 0x7, 0xd, 0x1, 0x400000000000948f, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x90000001, 0x3, 0x1, 0x5, 0x5]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) ioctl$auto(0xffffffffffffffff, 0x400454cb, 0x5) mmap$auto(0xc, 0x20009, 0x5, 0x14, 0xffffffffffffffff, 0x0) r3 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000040), 0xffffffffffffffff) r4 = socket(0x10, 0x2, 0x15) sendmsg$auto_MACSEC_CMD_ADD_TXSA(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="010028bd700029dbdf2506008000b5c1359653"], 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x40040) sendmsg$auto_NFSD_CMD_THREADS_SET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c7", @ANYRESOCT=r3, @ANYRES8=r4], 0xfdef}, 0x1, 0x0, 0x0, 0x60000004}, 0xc800) mprotect$auto(0x1ffff000, 0x8000000000000002, 0x5) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_CTRL_CMD_GETFAMILY(r5, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x20048000) unshare$auto(0x40000080) mmap$auto(0x7, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x200007, 0x19) madvise$auto(0x0, 0x2000000080000001, 0x3) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x3, 0x0) 478.798817ms ago: executing program 1 (id=1989): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0x2, 0x1, 0x84) semctl$auto(0x103, 0x100000001, 0x13, 0x5) setsockopt$auto(0x3, 0x10000000084, 0x10, 0x0, 0xc) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r0 = socket(0xa, 0x3, 0x3b) ustat$auto(0x801, 0x0) getsockopt$auto(r0, 0x29, 0x20, 0x0, 0x0) 98.332179ms ago: executing program 1 (id=1990): mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x0) clock_gettime$auto(0xfffffffffffffff0, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) close_range$auto(0x2, 0x8, 0x2) mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xc00, 0x2c, 0x2c, 0x3, 0x2}) write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000180)="f1deefed5ddf77c3086ac06f73353a35cf09d9cab432b2fc686eb8cfacf3f7e0d79f194523549539694c019cd8888a64ce8254fcad00cefceaacc388d3d6026741a73d418b2b2889bafbde9253eae9e1a923ccb8e4611a719df32b7bc8da316f997dff56244f08a89d0a3dcd65375d665dc289dc262fa628f4a4bc39e981d0133c0dda393a", 0x85) sysfs$auto(0x2, 0x0, 0x0) socket(0x18, 0x5, 0x2) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) syz_genetlink_get_family_id$auto_psample(&(0x7f0000000040), r1) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) r3 = socket(0xa, 0x1, 0x84) getsockopt$auto(r3, 0x84, 0x4, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd5/queue/iosched/front_merges\x00', 0xc0202, 0x0) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0xfdef) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/virtual/misc/userfaultfd/power/control\x00', 0x668000, 0x0) socket(0x2, 0x1, 0x106) shutdown$auto(0x200000003, 0x2) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/ram3/trace/end_lba\x00', 0x2062, 0x0) write$auto(r4, 0x0, 0x98c7) recvmmsg$auto(0x3, 0x0, 0x10000, 0x3ff, 0x0) 0s ago: executing program 0 (id=1991): mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) r0 = socket(0x2, 0x1, 0x106) prctl$auto(0x23, 0x6, 0x2009, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x1a1000, 0x0) ioctl$auto_PROCMAP_QUERY(r1, 0xc0686611, &(0x7f0000000080)={0x67, 0x0, 0x7fff, 0x5, 0x80000000007, 0x1, 0x80000001, 0xff, 0x5, 0x7f, 0xfbfffffe, 0x5, 0x7fb, 0x4, 0x9}) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) socket$nl_generic(0x10, 0x3, 0x10) msync$auto(0x2, 0x9, 0x40) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0xfffffdef) kernel console output (not intermixed with test programs): syz.0.884'. [ 322.843850][ T9717] netlink: 28 bytes leftover after parsing attributes in process `syz.3.883'. [ 324.150222][ T9740] zswap: compressor not available [ 324.284457][ T9753] netlink: 28 bytes leftover after parsing attributes in process `syz.3.889'. [ 329.685152][ T9819] netlink: 28 bytes leftover after parsing attributes in process `syz.2.906'. [ 329.910654][ T9818] netlink: 28 bytes leftover after parsing attributes in process `syz.3.905'. [ 329.967467][ T9818] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 329.978205][ T9818] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 330.028791][ T9818] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 330.136507][ T9818] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 330.869678][ T9842] FAULT_INJECTION: forcing a failure. [ 330.869678][ T9842] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 330.882960][ T9842] CPU: 1 UID: 0 PID: 9842 Comm: syz.1.910 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 330.882981][ T9842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 330.882990][ T9842] Call Trace: [ 330.882994][ T9842] [ 330.883000][ T9842] dump_stack_lvl+0x16c/0x1f0 [ 330.883024][ T9842] should_fail_ex+0x512/0x640 [ 330.883047][ T9842] _copy_from_user+0x2e/0xd0 [ 330.883068][ T9842] copy_msghdr_from_user+0x98/0x160 [ 330.883090][ T9842] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 330.883113][ T9842] ? kfree+0x24f/0x4d0 [ 330.883128][ T9842] ? __pfx__kstrtoull+0x10/0x10 [ 330.883154][ T9842] ___sys_sendmsg+0xfe/0x1d0 [ 330.883175][ T9842] ? __pfx____sys_sendmsg+0x10/0x10 [ 330.883211][ T9842] ? __pfx___might_resched+0x10/0x10 [ 330.883230][ T9842] __sys_sendmmsg+0x200/0x420 [ 330.883253][ T9842] ? __pfx___sys_sendmmsg+0x10/0x10 [ 330.883279][ T9842] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 330.883308][ T9842] ? fput+0x70/0xf0 [ 330.883322][ T9842] ? ksys_write+0x1ac/0x250 [ 330.883339][ T9842] ? __pfx_ksys_write+0x10/0x10 [ 330.883361][ T9842] __x64_sys_sendmmsg+0x9c/0x100 [ 330.883381][ T9842] ? lockdep_hardirqs_on+0x7c/0x110 [ 330.883399][ T9842] do_syscall_64+0xcd/0x490 [ 330.883413][ T9842] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 330.883428][ T9842] RIP: 0033:0x7f4103d8e929 [ 330.883440][ T9842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 330.883453][ T9842] RSP: 002b:00007f4104b2b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 330.883467][ T9842] RAX: ffffffffffffffda RBX: 00007f4103fb5fa0 RCX: 00007f4103d8e929 [ 330.883476][ T9842] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 330.883485][ T9842] RBP: 00007f4104b2b090 R08: 0000000000000000 R09: 0000000000000000 [ 330.883493][ T9842] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 330.883501][ T9842] R13: 0000000000000000 R14: 00007f4103fb5fa0 R15: 00007fff4815d978 [ 330.883518][ T9842] [ 331.974614][ T9863] netlink: 28 bytes leftover after parsing attributes in process `syz.3.915'. [ 334.184423][ T9906] netlink: 4 bytes leftover after parsing attributes in process `syz.3.927'. [ 334.551738][ T9913] ovs_ÿþ: entered promiscuous mode [ 335.997050][ T9937] netlink: 8 bytes leftover after parsing attributes in process `syz.1.933'. [ 336.072467][ T9940] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 336.072467][ T9940] The task syz.2.934 (9940) triggered the difference, watch for misbehavior. [ 337.206543][ T9955] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12 [ 338.897910][ T9968] kvm: kvm [9967]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x40000025) = 0x2 [ 340.482734][T10010] synth uevent: /bus/hid/drivers/zeroplus: unknown uevent action string [ 345.172780][T10114] netlink: 4 bytes leftover after parsing attributes in process `syz.1.982'. [ 345.385935][T10116] kstrtoul() returned -22 for lu_gp_id [ 345.386400][ T30] audit: type=1800 audit(6045506320.120:9): pid=10116 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.983" name="lu_gp_id" dev="configfs" ino=24459 res=0 errno=0 [ 347.956747][T10163] netlink: 28 bytes leftover after parsing attributes in process `syz.0.995'. [ 349.201678][ T30] audit: type=1800 audit(6045506323.940:10): pid=10173 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1000" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0 [ 349.529393][T10197] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1005'. [ 351.590064][T10228] FAULT_INJECTION: forcing a failure. [ 351.590064][T10228] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 351.621750][T10228] CPU: 1 UID: 0 PID: 10228 Comm: syz.3.1015 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 351.621783][T10228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 351.621795][T10228] Call Trace: [ 351.621802][T10228] [ 351.621810][T10228] dump_stack_lvl+0x16c/0x1f0 [ 351.621850][T10228] should_fail_ex+0x512/0x640 [ 351.621888][T10228] _copy_from_user+0x2e/0xd0 [ 351.621923][T10228] copy_msghdr_from_user+0x98/0x160 [ 351.621959][T10228] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 351.622014][T10228] ___sys_sendmsg+0xfe/0x1d0 [ 351.622052][T10228] ? __pfx____sys_sendmsg+0x10/0x10 [ 351.622086][T10228] ? __lock_acquire+0x622/0x1c90 [ 351.622161][T10228] __sys_sendmsg+0x16d/0x220 [ 351.622198][T10228] ? __pfx___sys_sendmsg+0x10/0x10 [ 351.622259][T10228] do_syscall_64+0xcd/0x490 [ 351.622294][T10228] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 351.622318][T10228] RIP: 0033:0x7f5bdf18e929 [ 351.622339][T10228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 351.622363][T10228] RSP: 002b:00007f5be00cd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 351.622387][T10228] RAX: ffffffffffffffda RBX: 00007f5bdf3b5fa0 RCX: 00007f5bdf18e929 [ 351.622404][T10228] RDX: 000000002404c810 RSI: 0000200000000240 RDI: 0000000000000003 [ 351.622421][T10228] RBP: 00007f5be00cd090 R08: 0000000000000000 R09: 0000000000000000 [ 351.622436][T10228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 351.622451][T10228] R13: 0000000000000000 R14: 00007f5bdf3b5fa0 R15: 00007ffc7a59a0b8 [ 351.622486][T10228] [ 351.831351][T10229] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1013'. [ 352.323307][T10241] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 352.360525][T10241] CIFS mount error: No usable UNC path provided in device string! [ 352.360525][T10241] [ 352.391405][T10241] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 352.745947][T10254] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1018'. [ 356.641852][T10324] netlink: 'syz.3.1036': attribute type 1 has an invalid length. [ 356.832947][T10337] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1039'. [ 363.303263][T10474] can0: slcan on pty117. [ 363.469952][T10473] can0 (unregistered): slcan off pty117. [ 364.915726][T10509] netlink: 'syz.0.1075': attribute type 11 has an invalid length. [ 365.009149][T10510] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 366.717179][T10543] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1080'. [ 368.258861][T10590] FAULT_INJECTION: forcing a failure. [ 368.258861][T10590] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 368.283655][T10590] CPU: 0 UID: 0 PID: 10590 Comm: syz.3.1090 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 368.283680][T10590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 368.283689][T10590] Call Trace: [ 368.283693][T10590] [ 368.283705][T10590] dump_stack_lvl+0x16c/0x1f0 [ 368.283731][T10590] should_fail_ex+0x512/0x640 [ 368.283753][T10590] copy_folio_from_iter_atomic+0x375/0x1aa0 [ 368.283785][T10590] ? __pfx_copy_folio_from_iter_atomic+0x10/0x10 [ 368.283807][T10590] ? shmem_write_begin+0x176/0x300 [ 368.283827][T10590] ? __pfx_shmem_write_begin+0x10/0x10 [ 368.283847][T10590] ? balance_dirty_pages_ratelimited_flags+0x92/0x1260 [ 368.283868][T10590] generic_perform_write+0x22c/0x930 [ 368.283894][T10590] ? __pfx_generic_perform_write+0x10/0x10 [ 368.283913][T10590] ? inode_needs_update_time.part.0+0x191/0x270 [ 368.283939][T10590] shmem_file_write_iter+0x10e/0x140 [ 368.283954][T10590] vfs_write+0x6c7/0x1150 [ 368.283973][T10590] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 368.283988][T10590] ? __pfx___mutex_lock+0x10/0x10 [ 368.284008][T10590] ? __pfx_vfs_write+0x10/0x10 [ 368.284039][T10590] ksys_write+0x12a/0x250 [ 368.284057][T10590] ? __pfx_ksys_write+0x10/0x10 [ 368.284081][T10590] do_syscall_64+0xcd/0x490 [ 368.284095][T10590] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 368.284109][T10590] RIP: 0033:0x7f5bdf18e929 [ 368.284121][T10590] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 368.284134][T10590] RSP: 002b:00007f5be00cd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 368.284149][T10590] RAX: ffffffffffffffda RBX: 00007f5bdf3b5fa0 RCX: 00007f5bdf18e929 [ 368.284158][T10590] RDX: 000000000000b8c5 RSI: 0000200000000280 RDI: 0000000000000005 [ 368.284167][T10590] RBP: 00007f5bdf210b39 R08: 0000000000000000 R09: 0000000000000000 [ 368.284175][T10590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 368.284183][T10590] R13: 0000000000000000 R14: 00007f5bdf3b5fa0 R15: 00007ffc7a59a0b8 [ 368.284201][T10590] [ 368.542885][T10590] FAULT_INJECTION: forcing a failure. [ 368.542885][T10590] name fail_futex, interval 1, probability 0, space 0, times 0 [ 368.556673][T10590] CPU: 1 UID: 0 PID: 10590 Comm: syz.3.1090 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 368.556706][T10590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 368.556721][T10590] Call Trace: [ 368.556727][T10590] [ 368.556735][T10590] dump_stack_lvl+0x16c/0x1f0 [ 368.556775][T10590] should_fail_ex+0x512/0x640 [ 368.556815][T10590] get_futex_key+0x1d0/0x1540 [ 368.556850][T10590] ? __pfx_get_futex_key+0x10/0x10 [ 368.556880][T10590] ? __mutex_trylock_common+0xe9/0x250 [ 368.556922][T10590] futex_wake+0xea/0x530 [ 368.556960][T10590] ? __pfx_futex_wake+0x10/0x10 [ 368.556990][T10590] ? __lock_acquire+0xb8a/0x1c90 [ 368.557038][T10590] do_futex+0x1e3/0x350 [ 368.557069][T10590] ? __pfx_do_futex+0x10/0x10 [ 368.557096][T10590] ? __might_fault+0xe3/0x190 [ 368.557146][T10590] mm_release+0x24e/0x300 [ 368.557175][T10590] do_exit+0x683/0x2bd0 [ 368.557214][T10590] ? __pfx_do_exit+0x10/0x10 [ 368.557246][T10590] ? do_raw_spin_lock+0x12c/0x2b0 [ 368.557281][T10590] ? find_held_lock+0x2b/0x80 [ 368.557312][T10590] do_group_exit+0xd3/0x2a0 [ 368.557346][T10590] get_signal+0x2673/0x26d0 [ 368.557379][T10590] ? fd_install+0x225/0x750 [ 368.557416][T10590] ? __pfx_get_signal+0x10/0x10 [ 368.557442][T10590] ? do_futex+0x122/0x350 [ 368.557473][T10590] ? __pfx_do_futex+0x10/0x10 [ 368.557505][T10590] arch_do_signal_or_restart+0x8f/0x790 [ 368.557536][T10590] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 368.557575][T10590] ? xfd_validate_state+0x61/0x180 [ 368.557613][T10590] exit_to_user_mode_loop+0x84/0x110 [ 368.557660][T10590] do_syscall_64+0x3f6/0x490 [ 368.557686][T10590] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 368.557711][T10590] RIP: 0033:0x7f5bdf18e929 [ 368.557733][T10590] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 368.557757][T10590] RSP: 002b:00007f5be00cd0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 368.557780][T10590] RAX: fffffffffffffe00 RBX: 00007f5bdf3b5fa8 RCX: 00007f5bdf18e929 [ 368.557798][T10590] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5bdf3b5fa8 [ 368.557813][T10590] RBP: 00007f5bdf3b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 368.557828][T10590] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5bdf3b5fac [ 368.557844][T10590] R13: 0000000000000000 R14: 00007ffc7a599fd0 R15: 00007ffc7a59a0b8 [ 368.557878][T10590] [ 368.944316][T10598] FAULT_INJECTION: forcing a failure. [ 368.944316][T10598] name failslab, interval 1, probability 0, space 0, times 0 [ 368.957539][T10598] CPU: 1 UID: 0 PID: 10598 Comm: syz.3.1092 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 368.957574][T10598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 368.957589][T10598] Call Trace: [ 368.957598][T10598] [ 368.957607][T10598] dump_stack_lvl+0x16c/0x1f0 [ 368.957651][T10598] should_fail_ex+0x512/0x640 [ 368.957692][T10598] should_failslab+0xc2/0x120 [ 368.957717][T10598] __kmalloc_cache_noprof+0x6a/0x3e0 [ 368.957751][T10598] ? __sctp_v6_cmp_addr+0x206/0x530 [ 368.957776][T10598] ? sctp_add_bind_addr+0xae/0x3f0 [ 368.957819][T10598] sctp_add_bind_addr+0xae/0x3f0 [ 368.957861][T10598] sctp_copy_local_addr_list+0x39d/0x5a0 [ 368.957893][T10598] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 368.957926][T10598] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 368.957962][T10598] ? sctp_bind_addr_copy+0xe0/0x530 [ 368.957998][T10598] sctp_bind_addr_copy+0xe0/0x530 [ 368.958044][T10598] sctp_connect_new_asoc+0x1d7/0x790 [ 368.958080][T10598] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 368.958115][T10598] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 368.958155][T10598] __sctp_connect+0x3f3/0xc60 [ 368.958191][T10598] ? do_raw_spin_lock+0x12c/0x2b0 [ 368.958230][T10598] ? __pfx___sctp_connect+0x10/0x10 [ 368.958264][T10598] ? __pfx_sctp_inet_connect+0x10/0x10 [ 368.958309][T10598] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 368.958350][T10598] ? __pfx_sctp_inet_connect+0x10/0x10 [ 368.958380][T10598] sctp_inet_connect+0x15f/0x200 [ 368.958414][T10598] __sys_connect_file+0x141/0x1a0 [ 368.958458][T10598] __sys_connect+0x13b/0x160 [ 368.958492][T10598] ? __pfx___sys_connect+0x10/0x10 [ 368.958539][T10598] ? __pfx_ksys_write+0x10/0x10 [ 368.958583][T10598] __x64_sys_connect+0x72/0xb0 [ 368.958614][T10598] ? lockdep_hardirqs_on+0x7c/0x110 [ 368.958652][T10598] do_syscall_64+0xcd/0x490 [ 368.958677][T10598] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 368.958703][T10598] RIP: 0033:0x7f5bdf18e929 [ 368.958723][T10598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 368.958747][T10598] RSP: 002b:00007f5be00cd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 368.958771][T10598] RAX: ffffffffffffffda RBX: 00007f5bdf3b5fa0 RCX: 00007f5bdf18e929 [ 368.958789][T10598] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 368.958805][T10598] RBP: 00007f5be00cd090 R08: 0000000000000000 R09: 0000000000000000 [ 368.958821][T10598] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 368.958836][T10598] R13: 0000000000000000 R14: 00007f5bdf3b5fa0 R15: 00007ffc7a59a0b8 [ 368.958871][T10598] [ 370.115605][T10620] openvswitch: netlink: Invalid MD length 0 for MD type 0 [ 371.594170][T10651] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1102'. [ 371.945661][T10657] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1104'. [ 372.042523][T10659] hub 8-0:1.0: USB hub found [ 372.113939][T10659] hub 8-0:1.0: 1 port detected [ 372.704806][T10636] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 374.285484][T10701] openvswitch: netlink: Key type 48 is out of range max 32 [ 374.814092][T10720] random: crng reseeded on system resumption [ 375.383821][T10732] FAULT_INJECTION: forcing a failure. [ 375.383821][T10732] name failslab, interval 1, probability 0, space 0, times 0 [ 375.447553][T10732] CPU: 0 UID: 0 PID: 10732 Comm: syz.1.1120 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 375.447577][T10732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 375.447586][T10732] Call Trace: [ 375.447592][T10732] [ 375.447597][T10732] dump_stack_lvl+0x16c/0x1f0 [ 375.447625][T10732] should_fail_ex+0x512/0x640 [ 375.447645][T10732] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 375.447668][T10732] should_failslab+0xc2/0x120 [ 375.447683][T10732] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 375.447702][T10732] ? __d_lookup+0x25c/0x4a0 [ 375.447717][T10732] ? __d_alloc+0x31/0xaa0 [ 375.447748][T10732] __d_alloc+0x31/0xaa0 [ 375.447772][T10732] d_alloc+0x4a/0x1e0 [ 375.447794][T10732] __rpc_lookup_create_exclusive+0x119/0x140 [ 375.447813][T10732] ? __pfx___rpc_lookup_create_exclusive+0x10/0x10 [ 375.447836][T10732] rpc_populate.constprop.0+0xbe/0x5d0 [ 375.447861][T10732] rpc_fill_super+0x2bc/0x840 [ 375.447879][T10732] ? sget_fc+0x808/0xc20 [ 375.447897][T10732] ? __pfx_set_anon_super_fc+0x10/0x10 [ 375.447914][T10732] ? __pfx_rpc_fill_super+0x10/0x10 [ 375.447932][T10732] get_tree_keyed+0x10b/0x1d0 [ 375.447951][T10732] vfs_get_tree+0x8b/0x340 [ 375.447967][T10732] vfs_cmd_create+0xd7/0x2a0 [ 375.447989][T10732] __do_sys_fsconfig+0x7b8/0xbe0 [ 375.448004][T10732] ? __pfx___do_sys_fsconfig+0x10/0x10 [ 375.448026][T10732] do_syscall_64+0xcd/0x490 [ 375.448040][T10732] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 375.448054][T10732] RIP: 0033:0x7f4103d8e929 [ 375.448066][T10732] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 375.448080][T10732] RSP: 002b:00007f4104b2b038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af [ 375.448094][T10732] RAX: ffffffffffffffda RBX: 00007f4103fb5fa0 RCX: 00007f4103d8e929 [ 375.448103][T10732] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000008 [ 375.448112][T10732] RBP: 00007f4103e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 375.448120][T10732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 375.448128][T10732] R13: 0000000000000000 R14: 00007f4103fb5fa0 R15: 00007fff4815d978 [ 375.448147][T10732] [ 375.450295][T10732] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory / [ 377.725894][T10786] kAFS: No cell specified [ 377.832941][ T5839] Bluetooth: hci3: unexpected event 0x3d length: 726 > 14 [ 378.744401][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.758401][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.943846][T10803] random: crng reseeded on system resumption [ 380.408431][T10827] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1139'. [ 380.443166][T10835] Invalid ELF header magic: != ELF [ 381.811102][T10863] netlink: 'syz.1.1146': attribute type 11 has an invalid length. [ 381.876196][T10866] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 383.047924][T10882] FAULT_INJECTION: forcing a failure. [ 383.047924][T10882] name failslab, interval 1, probability 0, space 0, times 0 [ 383.085679][T10882] CPU: 1 UID: 0 PID: 10882 Comm: syz.0.1151 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 383.085715][T10882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 383.085730][T10882] Call Trace: [ 383.085738][T10882] [ 383.085747][T10882] dump_stack_lvl+0x16c/0x1f0 [ 383.085789][T10882] should_fail_ex+0x512/0x640 [ 383.085819][T10882] ? fs_reclaim_acquire+0xae/0x150 [ 383.085849][T10882] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 383.085883][T10882] should_failslab+0xc2/0x120 [ 383.085907][T10882] __kmalloc_noprof+0xd2/0x510 [ 383.085951][T10882] tomoyo_realpath_from_path+0xc2/0x6e0 [ 383.085988][T10882] ? tomoyo_profile+0x47/0x60 [ 383.086030][T10882] tomoyo_path_number_perm+0x245/0x580 [ 383.086055][T10882] ? tomoyo_path_number_perm+0x237/0x580 [ 383.086084][T10882] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 383.086113][T10882] ? find_held_lock+0x2b/0x80 [ 383.086184][T10882] ? find_held_lock+0x2b/0x80 [ 383.086208][T10882] ? hook_file_ioctl_common+0x145/0x410 [ 383.086243][T10882] ? __fget_files+0x20e/0x3c0 [ 383.086283][T10882] security_file_ioctl+0x9b/0x240 [ 383.086316][T10882] __x64_sys_ioctl+0xb7/0x210 [ 383.086348][T10882] do_syscall_64+0xcd/0x490 [ 383.086374][T10882] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 383.086400][T10882] RIP: 0033:0x7fd45b98e929 [ 383.086422][T10882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 383.086445][T10882] RSP: 002b:00007fd45c74d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 383.086468][T10882] RAX: ffffffffffffffda RBX: 00007fd45bbb5fa0 RCX: 00007fd45b98e929 [ 383.086485][T10882] RDX: 00002000000005c0 RSI: 000000004018bc13 RDI: 0000000000000006 [ 383.086500][T10882] RBP: 00007fd45c74d090 R08: 0000000000000000 R09: 0000000000000000 [ 383.086516][T10882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 383.086531][T10882] R13: 0000000000000000 R14: 00007fd45bbb5fa0 R15: 00007ffe4878a218 [ 383.086567][T10882] [ 383.086577][T10882] ERROR: Out of memory at tomoyo_realpath_from_path. [ 383.392816][T10883] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 383.420316][T10883] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 385.728984][T10919] vivid-007: ================= START STATUS ================= [ 385.736778][T10919] vivid-007: Generate PTS: true [ 385.741650][T10919] vivid-007: Generate SCR: true [ 385.746728][T10919] tpg source WxH: 320x240 (Y'CbCr) [ 385.751853][T10919] tpg field: 1 [ 385.755899][T10919] tpg crop: (0,0)/320x240 [ 385.760264][T10919] tpg compose: (0,0)/320x240 [ 385.771314][T10919] tpg colorspace: 8 [ 385.785659][T10919] tpg transfer function: 0/0 [ 385.791701][T10919] tpg Y'CbCr encoding: 0/0 [ 385.801859][T10919] tpg quantization: 0/0 [ 385.832906][T10919] tpg RGB range: 0/2 [ 385.837048][T10919] vivid-007: ================== END STATUS ================== [ 387.475304][T10944] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1166'. [ 387.661239][T10958] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1169'. [ 390.227838][T10994] rnbd_client L202: map_device: Unknown parameter or missing value '(' [ 390.238312][T10994] ptrace attach of "./syz-executor exec"[10996] was attempted by "./syz-executor exec"[10994] [ 392.291384][T11038] netlink: 266 bytes leftover after parsing attributes in process `syz.2.1187'. [ 392.329339][T11038] IPv6: NLM_F_CREATE should be specified when creating new route [ 392.638407][T11048] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1188'. [ 394.781563][ T5839] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 395.042877][T11071] FAULT_INJECTION: forcing a failure. [ 395.042877][T11071] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 395.076307][T11071] CPU: 1 UID: 0 PID: 11071 Comm: syz.3.1196 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 395.076331][T11071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 395.076339][T11071] Call Trace: [ 395.076344][T11071] [ 395.076350][T11071] dump_stack_lvl+0x16c/0x1f0 [ 395.076376][T11071] should_fail_ex+0x512/0x640 [ 395.076398][T11071] _copy_to_user+0x32/0xd0 [ 395.076420][T11071] mtdchar_read+0x3ad/0x590 [ 395.076439][T11071] ? __pfx_mtdchar_read+0x10/0x10 [ 395.076454][T11071] ? iovec_from_user+0xbb/0x140 [ 395.076471][T11071] ? apparmor_file_permission+0x251/0x400 [ 395.076488][T11071] ? bpf_lsm_file_permission+0x9/0x10 [ 395.076502][T11071] ? security_file_permission+0x71/0x210 [ 395.076519][T11071] ? iov_iter_advance+0x1e3/0x6c0 [ 395.076538][T11071] ? rw_verify_area+0xcf/0x680 [ 395.076557][T11071] ? __pfx_mtdchar_read+0x10/0x10 [ 395.076571][T11071] vfs_readv+0x5c1/0x8b0 [ 395.076592][T11071] ? __pfx_vfs_readv+0x10/0x10 [ 395.076621][T11071] ? __fget_files+0x20e/0x3c0 [ 395.076637][T11071] ? __fget_files+0x150/0x3c0 [ 395.076658][T11071] ? do_readv+0x132/0x340 [ 395.076673][T11071] do_readv+0x132/0x340 [ 395.076689][T11071] ? __pfx_do_readv+0x10/0x10 [ 395.076716][T11071] do_syscall_64+0xcd/0x490 [ 395.076739][T11071] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 395.076768][T11071] RIP: 0033:0x7f5bdf18e929 [ 395.076782][T11071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 395.076796][T11071] RSP: 002b:00007f5be00cd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 395.076810][T11071] RAX: ffffffffffffffda RBX: 00007f5bdf3b5fa0 RCX: 00007f5bdf18e929 [ 395.076819][T11071] RDX: 0000000000000006 RSI: 0000200000000040 RDI: 0000000000000003 [ 395.076828][T11071] RBP: 00007f5be00cd090 R08: 0000000000000000 R09: 0000000000000000 [ 395.076836][T11071] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 395.076844][T11071] R13: 0000000000000000 R14: 00007f5bdf3b5fa0 R15: 00007ffc7a59a0b8 [ 395.076862][T11071] [ 396.087037][T11112] FAULT_INJECTION: forcing a failure. [ 396.087037][T11112] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 396.101024][T11112] CPU: 1 UID: 0 PID: 11112 Comm: syz.3.1206 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 396.101063][T11112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 396.101078][T11112] Call Trace: [ 396.101085][T11112] [ 396.101091][T11112] dump_stack_lvl+0x16c/0x1f0 [ 396.101120][T11112] should_fail_ex+0x512/0x640 [ 396.101146][T11112] should_fail_alloc_page+0xe7/0x130 [ 396.101163][T11112] prepare_alloc_pages+0x3c2/0x610 [ 396.101181][T11112] ? __lock_acquire+0x622/0x1c90 [ 396.101203][T11112] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 396.101232][T11112] ? find_held_lock+0x2b/0x80 [ 396.101248][T11112] ? mtree_load+0x309/0xa40 [ 396.101269][T11112] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 396.101293][T11112] ? mtree_load+0x325/0xa40 [ 396.101319][T11112] ? __up_read+0x1f8/0x750 [ 396.101341][T11112] ? __pfx___up_read+0x10/0x10 [ 396.101362][T11112] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 396.101386][T11112] ? policy_nodemask+0xea/0x4e0 [ 396.101411][T11112] alloc_pages_mpol+0x1fb/0x550 [ 396.101427][T11112] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 396.101442][T11112] ? do_raw_spin_lock+0x12c/0x2b0 [ 396.101464][T11112] ? __pfx___access_remote_vm+0x10/0x10 [ 396.101491][T11112] alloc_pages_noprof+0x131/0x390 [ 396.101506][T11112] get_free_pages_noprof+0x10/0xb0 [ 396.101522][T11112] proc_pid_cmdline_read+0x46d/0x900 [ 396.101544][T11112] ? __pfx_proc_pid_cmdline_read+0x10/0x10 [ 396.101564][T11112] ? rw_verify_area+0xcf/0x680 [ 396.101583][T11112] ? __pfx_proc_pid_cmdline_read+0x10/0x10 [ 396.101602][T11112] vfs_read+0x1e4/0xc60 [ 396.101625][T11112] ? __pfx___mutex_lock+0x10/0x10 [ 396.101660][T11112] ? __pfx_vfs_read+0x10/0x10 [ 396.101689][T11112] ? __fget_files+0x20e/0x3c0 [ 396.101717][T11112] ksys_read+0x12a/0x250 [ 396.101739][T11112] ? __pfx_ksys_read+0x10/0x10 [ 396.101764][T11112] do_syscall_64+0xcd/0x490 [ 396.101780][T11112] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 396.101797][T11112] RIP: 0033:0x7f5bdf18e929 [ 396.101812][T11112] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 396.101827][T11112] RSP: 002b:00007f5be00ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 396.101843][T11112] RAX: ffffffffffffffda RBX: 00007f5bdf3b6080 RCX: 00007f5bdf18e929 [ 396.101854][T11112] RDX: 000000000000009f RSI: 0000200000000040 RDI: 0000000000000007 [ 396.101864][T11112] RBP: 00007f5bdf210b39 R08: 0000000000000000 R09: 0000000000000000 [ 396.101873][T11112] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 396.101883][T11112] R13: 0000000000000000 R14: 00007f5bdf3b6080 R15: 00007ffc7a59a0b8 [ 396.101905][T11112] [ 396.436422][T11114] netlink: set zone limit has 8 unknown bytes [ 396.594589][T11113] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1209'. [ 397.477645][T11139] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1214'. [ 398.266991][T11156] netlink: 'syz.1.1218': attribute type 1 has an invalid length. [ 398.344974][T11156] usb usb28: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 398.470468][T11156] vivid-007: ================= START STATUS ================= [ 398.558088][T11156] vivid-007: Generate PTS: true [ 398.568927][T11156] vivid-007: Generate SCR: true [ 398.573956][T11156] tpg source WxH: 320x240 (Y'CbCr) [ 398.588751][T11156] tpg field: 1 [ 398.643362][T11156] tpg crop: (0,0)/320x240 [ 398.657299][T11156] tpg compose: (0,0)/320x240 [ 398.677995][T11156] tpg colorspace: 8 [ 398.690302][T11156] tpg transfer function: 0/0 [ 398.697511][T11156] tpg Y'CbCr encoding: 0/0 [ 398.707593][T11156] tpg quantization: 0/0 [ 398.722360][T11156] tpg RGB range: 0/2 [ 398.750219][T11156] vivid-007: ================== END STATUS ================== [ 401.854750][ T30] audit: type=1804 audit(6045506376.546:11): pid=11227 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1235" name="/newroot/281/file0" dev="tmpfs" ino=1506 res=1 errno=0 [ 401.960611][ T30] audit: type=1800 audit(6045506376.546:12): pid=11227 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1235" name="file0" dev="tmpfs" ino=1506 res=0 errno=0 [ 402.020313][T11229] netlink: 'syz.0.1236': attribute type 3 has an invalid length. [ 402.121570][T11233] Invalid ELF header magic: != ELF [ 403.992193][T11245] Process accounting resumed [ 404.166837][T11275] FAULT_INJECTION: forcing a failure. [ 404.166837][T11275] name fail_futex, interval 1, probability 0, space 0, times 0 [ 404.220295][T11275] CPU: 0 UID: 0 PID: 11275 Comm: syz.0.1245 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 404.220337][T11275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 404.220354][T11275] Call Trace: [ 404.220363][T11275] [ 404.220373][T11275] dump_stack_lvl+0x16c/0x1f0 [ 404.220421][T11275] should_fail_ex+0x512/0x640 [ 404.220468][T11275] get_futex_key+0x1d0/0x1540 [ 404.220505][T11275] ? __pfx_get_futex_key+0x10/0x10 [ 404.220549][T11275] futex_wake+0xea/0x530 [ 404.220586][T11275] ? rcu_is_watching+0x12/0xc0 [ 404.220616][T11275] ? __pfx_futex_wake+0x10/0x10 [ 404.220656][T11275] ? kmem_cache_free+0x2d1/0x4d0 [ 404.220692][T11275] ? fd_install+0x225/0x750 [ 404.220724][T11275] ? putname+0x154/0x1a0 [ 404.220757][T11275] do_futex+0x1e3/0x350 [ 404.220790][T11275] ? __pfx_do_futex+0x10/0x10 [ 404.220832][T11275] __x64_sys_futex+0x1e0/0x4c0 [ 404.220866][T11275] ? __x64_sys_openat+0x174/0x210 [ 404.220897][T11275] ? __pfx___x64_sys_futex+0x10/0x10 [ 404.220945][T11275] do_syscall_64+0xcd/0x490 [ 404.220972][T11275] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 404.220999][T11275] RIP: 0033:0x7fd45b98e929 [ 404.221021][T11275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 404.221048][T11275] RSP: 002b:00007fd45c74d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 404.221073][T11275] RAX: ffffffffffffffda RBX: 00007fd45bbb5fa8 RCX: 00007fd45b98e929 [ 404.221092][T11275] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fd45bbb5fac [ 404.221117][T11275] RBP: 00007fd45bbb5fa0 R08: 00007fd45c74e000 R09: 0000000000000000 [ 404.221135][T11275] R10: 0000000000000005 R11: 0000000000000246 R12: 00007fd45bbb5fac [ 404.221153][T11275] R13: 0000000000000000 R14: 00007ffe4878a130 R15: 00007ffe4878a218 [ 404.221189][T11275] [ 405.013983][T11283] zswap: compressor not available [ 405.635788][T11312] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1252'. [ 406.124771][T11321] hub 8-0:1.0: USB hub found [ 406.129824][T11321] hub 8-0:1.0: 1 port detected [ 408.863106][T11381] hub 8-0:1.0: USB hub found [ 408.882064][T11381] hub 8-0:1.0: 1 port detected [ 409.422379][T11401] random: crng reseeded on system resumption [ 411.101110][T11419] can: request_module (can-proto-0) failed. [ 411.528250][T11433] netlink: 'syz.3.1282': attribute type 2 has an invalid length. [ 413.626249][T11474] random: crng reseeded on system resumption [ 414.170552][T11473] could not allocate digest TFM handle [ 414.386738][T11473] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1291'. [ 415.528896][T11511] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1300'. [ 417.483567][T11533] random: crng reseeded on system resumption [ 419.300311][ T30] audit: type=1807 audit(6045506393.997:13): UNKNOWN=òÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿ [ 419.300503][ T30] audit: type=1802 audit(6045506393.997:14): pid=11543 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.0.1307" res=0 errno=0 [ 419.872914][T11540] ima: policy update failed [ 419.919242][ T30] audit: type=1802 audit(6045506394.587:15): pid=11540 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1307" res=0 errno=0 [ 420.036899][T11547] netlink: 19 bytes leftover after parsing attributes in process `syz.2.1309'. [ 420.273059][T11549] syz.1.1308 (11549): attempted to duplicate a private mapping with mremap. This is not supported. [ 420.506217][T11565] netlink: 206 bytes leftover after parsing attributes in process `syz.3.1313'. [ 422.726593][T11616] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„ [ 423.068001][T11625] random: crng reseeded on system resumption [ 425.828444][T11662] netlink: 202 bytes leftover after parsing attributes in process `syz.2.1333'. [ 425.847151][T11648] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1334'. [ 426.650368][T11669] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1341'. [ 427.321871][T11685] FAULT_INJECTION: forcing a failure. [ 427.321871][T11685] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 427.342958][T11685] CPU: 0 UID: 0 PID: 11685 Comm: syz.0.1344 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 427.342996][T11685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 427.343010][T11685] Call Trace: [ 427.343018][T11685] [ 427.343028][T11685] dump_stack_lvl+0x16c/0x1f0 [ 427.343067][T11685] should_fail_ex+0x512/0x640 [ 427.343108][T11685] _copy_to_user+0x32/0xd0 [ 427.343149][T11685] ctl_ioctl+0x173/0xd60 [ 427.343174][T11685] ? do_vfs_ioctl+0x523/0x1a60 [ 427.343204][T11685] ? __pfx_ctl_ioctl+0x10/0x10 [ 427.343271][T11685] dm_ctl_ioctl+0x22/0x30 [ 427.343296][T11685] ? __pfx_dm_ctl_ioctl+0x10/0x10 [ 427.343322][T11685] __x64_sys_ioctl+0x18b/0x210 [ 427.343354][T11685] do_syscall_64+0xcd/0x490 [ 427.343380][T11685] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 427.343406][T11685] RIP: 0033:0x7fd45b98e929 [ 427.343426][T11685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 427.343450][T11685] RSP: 002b:00007fd45c74d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 427.343474][T11685] RAX: ffffffffffffffda RBX: 00007fd45bbb5fa0 RCX: 00007fd45b98e929 [ 427.343492][T11685] RDX: 00002000000001c0 RSI: fffffff7effffd0e RDI: 0000000000000006 [ 427.343508][T11685] RBP: 00007fd45c74d090 R08: 0000000000000000 R09: 0000000000000000 [ 427.343523][T11685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 427.343538][T11685] R13: 0000000000000000 R14: 00007fd45bbb5fa0 R15: 00007ffe4878a218 [ 427.343571][T11685] [ 430.901723][T11750] FAULT_INJECTION: forcing a failure. [ 430.901723][T11750] name failslab, interval 1, probability 0, space 0, times 0 [ 430.941750][T11750] CPU: 1 UID: 0 PID: 11750 Comm: syz.3.1360 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 430.941785][T11750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 430.941799][T11750] Call Trace: [ 430.941807][T11750] [ 430.941816][T11750] dump_stack_lvl+0x16c/0x1f0 [ 430.941859][T11750] should_fail_ex+0x512/0x640 [ 430.941892][T11750] ? fs_reclaim_acquire+0xae/0x150 [ 430.941920][T11750] ? tomoyo_encode2+0x100/0x3e0 [ 430.941949][T11750] should_failslab+0xc2/0x120 [ 430.941972][T11750] __kmalloc_noprof+0xd2/0x510 [ 430.942004][T11750] ? d_absolute_path+0x136/0x1a0 [ 430.942034][T11750] tomoyo_encode2+0x100/0x3e0 [ 430.942072][T11750] tomoyo_encode+0x29/0x50 [ 430.942103][T11750] tomoyo_realpath_from_path+0x18f/0x6e0 [ 430.942145][T11750] tomoyo_path_number_perm+0x245/0x580 [ 430.942172][T11750] ? tomoyo_path_number_perm+0x237/0x580 [ 430.942205][T11750] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 430.942236][T11750] ? find_held_lock+0x2b/0x80 [ 430.942302][T11750] ? find_held_lock+0x2b/0x80 [ 430.942326][T11750] ? hook_file_ioctl_common+0x145/0x410 [ 430.942362][T11750] ? __fget_files+0x20e/0x3c0 [ 430.942398][T11750] security_file_ioctl+0x9b/0x240 [ 430.942427][T11750] __x64_sys_ioctl+0xb7/0x210 [ 430.942453][T11750] do_syscall_64+0xcd/0x490 [ 430.942475][T11750] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 430.942502][T11750] RIP: 0033:0x7f5bdf18e929 [ 430.942521][T11750] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 430.942542][T11750] RSP: 002b:00007f5be00cd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 430.942565][T11750] RAX: ffffffffffffffda RBX: 00007f5bdf3b5fa0 RCX: 00007f5bdf18e929 [ 430.942581][T11750] RDX: 0000200000000040 RSI: 00000000c0481273 RDI: 0000000000000003 [ 430.942595][T11750] RBP: 00007f5be00cd090 R08: 0000000000000000 R09: 0000000000000000 [ 430.942608][T11750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 430.942621][T11750] R13: 0000000000000000 R14: 00007f5bdf3b5fa0 R15: 00007ffc7a59a0b8 [ 430.942655][T11750] [ 430.942745][T11750] ERROR: Out of memory at tomoyo_realpath_from_path. [ 432.231862][T11754] CIFS: VFS: Invalid SecurityFlags:  [ 435.562376][T11843] FAULT_INJECTION: forcing a failure. [ 435.562376][T11843] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 435.581578][T11843] CPU: 0 UID: 0 PID: 11843 Comm: syz.1.1383 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 435.581616][T11843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 435.581631][T11843] Call Trace: [ 435.581639][T11843] [ 435.581649][T11843] dump_stack_lvl+0x16c/0x1f0 [ 435.581692][T11843] should_fail_ex+0x512/0x640 [ 435.581733][T11843] _copy_from_user+0x2e/0xd0 [ 435.581783][T11843] ____sys_sendmsg+0x607/0xc70 [ 435.581818][T11843] ? __pfx_____sys_sendmsg+0x10/0x10 [ 435.581854][T11843] ? __pfx__kstrtoull+0x10/0x10 [ 435.581890][T11843] ___sys_sendmsg+0x134/0x1d0 [ 435.581931][T11843] ? __pfx____sys_sendmsg+0x10/0x10 [ 435.581986][T11843] ? find_held_lock+0x2b/0x80 [ 435.582038][T11843] __sys_sendmmsg+0x200/0x420 [ 435.582081][T11843] ? __pfx___sys_sendmmsg+0x10/0x10 [ 435.582132][T11843] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 435.582187][T11843] ? fput+0x70/0xf0 [ 435.582211][T11843] ? ksys_write+0x1ac/0x250 [ 435.582244][T11843] ? __pfx_ksys_write+0x10/0x10 [ 435.582285][T11843] __x64_sys_sendmmsg+0x9c/0x100 [ 435.582322][T11843] ? lockdep_hardirqs_on+0x7c/0x110 [ 435.582359][T11843] do_syscall_64+0xcd/0x490 [ 435.582385][T11843] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 435.582411][T11843] RIP: 0033:0x7f4103d8e929 [ 435.582432][T11843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 435.582456][T11843] RSP: 002b:00007f4104b2b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 435.582481][T11843] RAX: ffffffffffffffda RBX: 00007f4103fb5fa0 RCX: 00007f4103d8e929 [ 435.582498][T11843] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 435.582514][T11843] RBP: 00007f4104b2b090 R08: 0000000000000000 R09: 0000000000000000 [ 435.582529][T11843] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000001 [ 435.582545][T11843] R13: 0000000000000000 R14: 00007f4103fb5fa0 R15: 00007fff4815d978 [ 435.582578][T11843] [ 439.284943][T11912] FAULT_INJECTION: forcing a failure. [ 439.284943][T11912] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 439.319115][T11912] CPU: 1 UID: 0 PID: 11912 Comm: syz.0.1402 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 439.319154][T11912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 439.319169][T11912] Call Trace: [ 439.319177][T11912] [ 439.319186][T11912] dump_stack_lvl+0x16c/0x1f0 [ 439.319229][T11912] should_fail_ex+0x512/0x640 [ 439.319261][T11912] strncpy_from_user+0x3b/0x2e0 [ 439.319281][T11912] getname_flags.part.0+0x8f/0x550 [ 439.319300][T11912] getname_flags+0x93/0xf0 [ 439.319317][T11912] do_sys_openat2+0xb8/0x1d0 [ 439.319332][T11912] ? __pfx_do_sys_openat2+0x10/0x10 [ 439.319349][T11912] ? __fget_files+0x20e/0x3c0 [ 439.319370][T11912] __x64_sys_openat+0x174/0x210 [ 439.319385][T11912] ? __pfx___x64_sys_openat+0x10/0x10 [ 439.319400][T11912] ? ksys_write+0x1ac/0x250 [ 439.319424][T11912] do_syscall_64+0xcd/0x490 [ 439.319438][T11912] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 439.319452][T11912] RIP: 0033:0x7fd45b98e929 [ 439.319464][T11912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 439.319478][T11912] RSP: 002b:00007fd45c74d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 439.319492][T11912] RAX: ffffffffffffffda RBX: 00007fd45bbb5fa0 RCX: 00007fd45b98e929 [ 439.319501][T11912] RDX: 0000000000080101 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 439.319510][T11912] RBP: 00007fd45c74d090 R08: 0000000000000000 R09: 0000000000000000 [ 439.319518][T11912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 439.319526][T11912] R13: 0000000000000001 R14: 00007fd45bbb5fa0 R15: 00007ffe4878a218 [ 439.319544][T11912] [ 439.495718][ C1] vkms_vblank_simulate: vblank timer overrun [ 439.750395][T11916] random: crng reseeded on system resumption [ 440.213854][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.220489][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.688609][T11934] vivid-003: ================= START STATUS ================= [ 440.696470][T11934] vivid-003: Radio HW Seek Mode: Bounded [ 440.715148][T11934] vivid-003: Radio Programmable HW Seek: false [ 440.773832][T11934] vivid-003: RDS Rx I/O Mode: Block I/O [ 440.813051][T11934] vivid-003: Generate RBDS Instead of RDS: false [ 440.848595][T11934] vivid-003: RDS Reception: true [ 440.877383][T11934] vivid-003: RDS Program Type: 0 inactive [ 440.922772][T11934] vivid-003: RDS PS Name: inactive [ 440.929892][T11934] vivid-003: RDS Radio Text: inactive [ 440.959068][T11934] vivid-003: RDS Traffic Announcement: false inactive [ 441.012581][T11934] vivid-003: RDS Traffic Program: false inactive [ 441.047004][T11934] vivid-003: RDS Music: false inactive [ 441.082557][T11934] vivid-003: ================== END STATUS ================== [ 441.423241][T11942] FAULT_INJECTION: forcing a failure. [ 441.423241][T11942] name failslab, interval 1, probability 0, space 0, times 0 [ 441.438342][T11942] CPU: 1 UID: 0 PID: 11942 Comm: syz.1.1406 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 441.438380][T11942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 441.438396][T11942] Call Trace: [ 441.438405][T11942] [ 441.438415][T11942] dump_stack_lvl+0x16c/0x1f0 [ 441.438465][T11942] should_fail_ex+0x512/0x640 [ 441.438510][T11942] should_failslab+0xc2/0x120 [ 441.438533][T11942] __kmalloc_cache_noprof+0x6a/0x3e0 [ 441.438565][T11942] ? cfmuxl_create+0x40/0x210 [ 441.438604][T11942] ? __pfx_caif_init_net+0x10/0x10 [ 441.438640][T11942] cfmuxl_create+0x40/0x210 [ 441.438675][T11942] cfcnfg_create+0x78/0x500 [ 441.438709][T11942] ? debug_mutex_init+0x37/0x70 [ 441.438732][T11942] ? __pfx_caif_init_net+0x10/0x10 [ 441.438766][T11942] caif_init_net+0x7d/0xe0 [ 441.438800][T11942] ops_init+0x1e2/0x5f0 [ 441.438829][T11942] setup_net+0x1ff/0x510 [ 441.438851][T11942] ? lockdep_init_map_type+0x5c/0x280 [ 441.438882][T11942] ? __pfx_setup_net+0x10/0x10 [ 441.438908][T11942] ? debug_mutex_init+0x37/0x70 [ 441.438935][T11942] copy_net_ns+0x2a6/0x5f0 [ 441.438967][T11942] create_new_namespaces+0x3ea/0xa90 [ 441.439001][T11942] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 441.439030][T11942] ksys_unshare+0x45b/0xa40 [ 441.439060][T11942] ? __pfx_ksys_unshare+0x10/0x10 [ 441.439092][T11942] ? xfd_validate_state+0x61/0x180 [ 441.439132][T11942] __x64_sys_unshare+0x31/0x40 [ 441.439163][T11942] do_syscall_64+0xcd/0x490 [ 441.439189][T11942] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 441.439213][T11942] RIP: 0033:0x7f4103d8e929 [ 441.439234][T11942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 441.439261][T11942] RSP: 002b:00007f4101bd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 441.439285][T11942] RAX: ffffffffffffffda RBX: 00007f4103fb6160 RCX: 00007f4103d8e929 [ 441.439303][T11942] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 441.439319][T11942] RBP: 00007f4103e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 441.439335][T11942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 441.439351][T11942] R13: 0000000000000000 R14: 00007f4103fb6160 R15: 00007fff4815d978 [ 441.439387][T11942] [ 441.664540][ C1] vkms_vblank_simulate: vblank timer overrun [ 442.593902][T11966] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1412'. [ 443.670095][T11997] random: crng reseeded on system resumption [ 443.811554][T11999] could not allocate digest TFM handle [ 445.215636][T12015] bridge0: port 3(vlan1) entered blocking state [ 445.231979][T12015] bridge0: port 3(vlan1) entered disabled state [ 445.238992][T12015] vlan1: entered allmulticast mode [ 445.248620][T12015] veth0_vlan: entered allmulticast mode [ 445.263773][T12015] vlan1: entered promiscuous mode [ 445.294909][T12015] bridge0: port 3(vlan1) entered blocking state [ 445.302486][T12015] bridge0: port 3(vlan1) entered forwarding state [ 446.331199][T12039] random: crng reseeded on system resumption [ 447.700470][T12062] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1437'. [ 449.999911][T12108] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1449'. [ 452.876782][T12159] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1462'. [ 455.894726][T12221] ERROR: Out of memory at tomoyo_memory_ok. [ 455.914719][T12221] ERROR: Domain ' /sbin/init /etc/init.d/rcS /etc/init.d/S50sshd /sbin/start-stop-daemon /usr/sbin/sshd /usr/libexec/sshd-session /bin/sh /root/syz-executor /root/syz-executor /newroot/348/file0' not defined. [ 461.465591][T12313] ERROR: Out of memory at tomoyo_memory_ok. [ 463.160878][T12341] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(2) [ 464.212506][T12362] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1517'. [ 464.353565][T12366] FAULT_INJECTION: forcing a failure. [ 464.353565][T12366] name failslab, interval 1, probability 0, space 0, times 0 [ 464.374873][T12366] CPU: 1 UID: 0 PID: 12366 Comm: syz.3.1519 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 464.374913][T12366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 464.374927][T12366] Call Trace: [ 464.374936][T12366] [ 464.374946][T12366] dump_stack_lvl+0x16c/0x1f0 [ 464.374992][T12366] should_fail_ex+0x512/0x640 [ 464.375026][T12366] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 464.375075][T12366] should_failslab+0xc2/0x120 [ 464.375100][T12366] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 464.375143][T12366] ? __kthread_create_on_node+0x186/0x3f0 [ 464.375189][T12366] kvasprintf+0xbc/0x160 [ 464.375214][T12366] ? __pfx_kvasprintf+0x10/0x10 [ 464.375255][T12366] ? __pfx_rescuer_thread+0x10/0x10 [ 464.375293][T12366] __kthread_create_on_node+0x186/0x3f0 [ 464.375330][T12366] ? __pfx___kthread_create_on_node+0x10/0x10 [ 464.375373][T12366] ? __pfx_vsnprintf+0x10/0x10 [ 464.375418][T12366] ? __pfx_rescuer_thread+0x10/0x10 [ 464.375457][T12366] kthread_create_on_node+0xc7/0x100 [ 464.375490][T12366] ? __pfx_kthread_create_on_node+0x10/0x10 [ 464.375522][T12366] ? __pfx_scnprintf+0x10/0x10 [ 464.375578][T12366] init_rescuer+0x320/0x640 [ 464.375614][T12366] ? __pfx_init_rescuer+0x10/0x10 [ 464.375661][T12366] ? wq_adjust_max_active+0x39d/0x4a0 [ 464.375704][T12366] __alloc_workqueue+0xc37/0x1810 [ 464.375742][T12366] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 464.375784][T12366] alloc_workqueue+0xd2/0x200 [ 464.375815][T12366] ? __pfx_alloc_workqueue+0x10/0x10 [ 464.375858][T12366] ? __pfx___debug_object_init+0x10/0x10 [ 464.375897][T12366] nci_register_device+0x511/0xb80 [ 464.375936][T12366] ? __pfx_nci_register_device+0x10/0x10 [ 464.375978][T12366] ? lockdep_init_map_type+0x5c/0x280 [ 464.376020][T12366] virtual_ncidev_open+0x141/0x220 [ 464.376052][T12366] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 464.376083][T12366] misc_open+0x35d/0x420 [ 464.376116][T12366] ? __pfx_misc_open+0x10/0x10 [ 464.376147][T12366] chrdev_open+0x231/0x6a0 [ 464.376192][T12366] ? __pfx_apparmor_file_open+0x10/0x10 [ 464.376227][T12366] ? __pfx_chrdev_open+0x10/0x10 [ 464.376271][T12366] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 464.376311][T12366] do_dentry_open+0x744/0x1c10 [ 464.376351][T12366] ? __pfx_chrdev_open+0x10/0x10 [ 464.376398][T12366] vfs_open+0x82/0x3f0 [ 464.376431][T12366] path_openat+0x1de4/0x2cb0 [ 464.376481][T12366] ? __pfx_path_openat+0x10/0x10 [ 464.376520][T12366] ? __lock_acquire+0xb8a/0x1c90 [ 464.376558][T12366] do_filp_open+0x20b/0x470 [ 464.376596][T12366] ? __pfx_do_filp_open+0x10/0x10 [ 464.376662][T12366] ? alloc_fd+0x471/0x7d0 [ 464.376706][T12366] do_sys_openat2+0x11b/0x1d0 [ 464.376735][T12366] ? __pfx_do_sys_openat2+0x10/0x10 [ 464.376780][T12366] __x64_sys_openat+0x174/0x210 [ 464.376810][T12366] ? __pfx___x64_sys_openat+0x10/0x10 [ 464.376855][T12366] do_syscall_64+0xcd/0x490 [ 464.376883][T12366] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 464.376911][T12366] RIP: 0033:0x7f5bdf18e929 [ 464.376932][T12366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 464.376959][T12366] RSP: 002b:00007f5be00ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 464.376982][T12366] RAX: ffffffffffffffda RBX: 00007f5bdf3b6080 RCX: 00007f5bdf18e929 [ 464.377000][T12366] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 464.377016][T12366] RBP: 00007f5bdf210b39 R08: 0000000000000000 R09: 0000000000000000 [ 464.377124][T12366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 464.377136][T12366] R13: 0000000000000000 R14: 00007f5bdf3b6080 R15: 00007ffc7a59a0b8 [ 464.377159][T12366] [ 464.377293][T12366] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -ENOMEM [ 465.565358][T12386] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1523'. [ 465.948831][T12395] netdevsim netdevsim15 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 468.064408][T12440] ERROR: Out of memory at tomoyo_memory_ok. [ 468.787641][T12445] openvswitch: netlink: Flow get message rejected, Key attribute missing.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     [ 528.987815][T13337] CPU: 1 UID: 0 PID: 13337 Comm: syz.1.1727 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 528.987856][T13337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 528.987872][T13337] Call Trace: [ 528.987882][T13337] [ 528.987893][T13337] dump_stack_lvl+0x16c/0x1f0 [ 528.987941][T13337] should_fail_ex+0x512/0x640 [ 528.987984][T13337] get_futex_key+0x1d0/0x1540 [ 528.988020][T13337] ? __pfx_get_futex_key+0x10/0x10 [ 528.988056][T13337] ? __lock_acquire+0xb8a/0x1c90 [ 528.988095][T13337] futex_wake+0xea/0x530 [ 528.988128][T13337] ? futex_wait+0x120/0x380 [ 528.988168][T13337] ? __pfx_futex_wake+0x10/0x10 [ 528.988203][T13337] ? __pfx___mutex_trylock_common+0x10/0x10 [ 528.988243][T13337] ? __pfx___might_resched+0x10/0x10 [ 528.988272][T13337] ? rcu_is_watching+0x12/0xc0 [ 528.988301][T13337] do_futex+0x1e3/0x350 [ 528.988331][T13337] ? __pfx_do_futex+0x10/0x10 [ 528.988363][T13337] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 528.988408][T13337] __x64_sys_futex+0x1e0/0x4c0 [ 528.988442][T13337] ? __pfx___x64_sys_futex+0x10/0x10 [ 528.988486][T13337] do_syscall_64+0xcd/0x490 [ 528.988511][T13337] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 528.988537][T13337] RIP: 0033:0x7f4103d8e929 [ 528.988559][T13337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 528.988585][T13337] RSP: 002b:00007f4104b2b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 528.988611][T13337] RAX: ffffffffffffffda RBX: 00007f4103fb5fa8 RCX: 00007f4103d8e929 [ 528.988629][T13337] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f4103fb5fac [ 528.988646][T13337] RBP: 00007f4103fb5fa0 R08: 00007f4104b2c000 R09: 0000000000000000 [ 528.988662][T13337] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f4103fb5fac [ 528.988679][T13337] R13: 0000000000000000 R14: 00007fff4815d890 R15: 00007fff4815d978 [ 528.988715][T13337] syzkaller syzkaller login: [ 529.217297][T13343] ERROR: Out of memory at tomoyo_memory_ok. [ 529.311308][T13344] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1729'. [ 529.362226][T13337] FAULT_INJECTION: forcing a failure. [ 529.362226][T13337] name failslab, interval 1, probability 0, space 0, times 0 [ 529.378129][T13337] CPU: 0 UID: 0 PID: 13337 Comm: syz.1.1727 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 529.378168][T13337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 529.378184][T13337] Call Trace: [ 529.378193][T13337] [ 529.378204][T13337] dump_stack_lvl+0x16c/0x1f0 [ 529.378250][T13337] should_fail_ex+0x512/0x640 [ 529.378286][T13337] ? __kvmalloc_node_noprof+0x124/0x620 [ 529.378328][T13337] should_failslab+0xc2/0x120 [ 529.378354][T13337] __kvmalloc_node_noprof+0x137/0x620 [ 529.378394][T13337] ? io_alloc_cache_init+0x33/0x170 [ 529.378438][T13337] ? io_alloc_cache_init+0x33/0x170 [ 529.378473][T13337] io_alloc_cache_init+0x33/0x170 [ 529.378514][T13337] io_uring_setup+0x5ff/0x2080 [ 529.378560][T13337] ? __pfx_io_uring_setup+0x10/0x10 [ 529.378593][T13337] ? do_futex+0x122/0x350 [ 529.378626][T13337] ? __pfx_do_futex+0x10/0x10 [ 529.378659][T13337] ? cap_task_prctl+0x2af/0xa80 [ 529.378702][T13337] ? xfd_validate_state+0x61/0x180 [ 529.378733][T13337] ? __pfx___do_sys_prctl+0x10/0x10 [ 529.378778][T13337] __x64_sys_io_uring_setup+0xc2/0x170 [ 529.378815][T13337] do_syscall_64+0xcd/0x490 [ 529.378841][T13337] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 529.378868][T13337] RIP: 0033:0x7f4103d8e929 [ 529.378889][T13337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 529.378915][T13337] RSP: 002b:00007f4104b2b038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 529.378941][T13337] RAX: ffffffffffffffda RBX: 00007f4103fb5fa0 RCX: 00007f4103d8e929 [ 529.378960][T13337] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000059 [ 529.378976][T13337] RBP: 00007f4103e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 529.378993][T13337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 529.379009][T13337] R13: 0000000000000000 R14: 00007f4103fb5fa0 R15: 00007fff4815d978 [ 529.379043][T13337] [ 529.889694][ T7657] team0 (unregistering): Port device team_slave_1 removed [ 529.989687][ T7657] team0 (unregistering): Port device team_slave_0 removed [ 530.115587][T13350] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1730'. [ 531.989310][T13369] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16 [ 532.589671][T13383] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 532.764783][T13385] ERROR: Out of memory at tomoyo_memory_ok. [ 533.066540][ T30] audit: type=1804 audit(6045506507.722:19): pid=13393 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1738" name="/newroot/417/file0" dev="tmpfs" ino=2214 res=1 errno=0 [ 533.137058][ T30] audit: type=1800 audit(6045506507.722:20): pid=13393 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1738" name="file0" dev="tmpfs" ino=2214 res=0 errno=0 [ 533.224577][T13399] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1739'. [ 533.346195][T13400] random: crng reseeded on system resumption [ 534.270322][T13415] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1740'. [ 535.254745][T13438] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1742'. [ 537.337648][T13469] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1749'. [ 537.757183][T13472] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1748'. [ 538.127523][T13483] ima: policy update failed [ 538.223680][ T30] audit: type=1802 audit(6045506512.912:21): pid=13483 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1750" res=0 errno=0 [ 541.220805][T13532] random: crng reseeded on system resumption [ 544.719042][T13588] FAULT_INJECTION: forcing a failure. [ 544.719042][T13588] name fail_futex, interval 1, probability 0, space 0, times 0 [ 544.784334][T13591] netlink: 'syz.3.1767': attribute type 2 has an invalid length. [ 544.794606][T13588] CPU: 1 UID: 0 PID: 13588 Comm: syz.1.1763 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 544.794643][T13588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 544.794656][T13588] Call Trace: [ 544.794664][T13588] [ 544.794674][T13588] dump_stack_lvl+0x16c/0x1f0 [ 544.794713][T13588] should_fail_ex+0x512/0x640 [ 544.794756][T13588] get_futex_key+0x1d0/0x1540 [ 544.794790][T13588] ? __pfx_get_futex_key+0x10/0x10 [ 544.794821][T13588] ? __mutex_trylock_common+0xe9/0x250 [ 544.794865][T13588] futex_wake+0xea/0x530 [ 544.794903][T13588] ? __pfx_futex_wake+0x10/0x10 [ 544.794936][T13588] ? __lock_acquire+0xb8a/0x1c90 [ 544.794984][T13588] do_futex+0x1e3/0x350 [ 544.795014][T13588] ? __pfx_do_futex+0x10/0x10 [ 544.795042][T13588] ? __might_fault+0xe3/0x190 [ 544.795088][T13588] mm_release+0x24e/0x300 [ 544.795118][T13588] do_exit+0x683/0x2bd0 [ 544.795158][T13588] ? __pfx_do_exit+0x10/0x10 [ 544.795189][T13588] ? do_raw_spin_lock+0x12c/0x2b0 [ 544.795225][T13588] ? find_held_lock+0x2b/0x80 [ 544.795261][T13588] do_group_exit+0xd3/0x2a0 [ 544.795296][T13588] get_signal+0x2673/0x26d0 [ 544.795337][T13588] ? __pfx_get_signal+0x10/0x10 [ 544.795364][T13588] ? do_futex+0x122/0x350 [ 544.795394][T13588] ? __pfx_do_futex+0x10/0x10 [ 544.795428][T13588] arch_do_signal_or_restart+0x8f/0x790 [ 544.795459][T13588] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 544.795494][T13588] ? __x64_sys_signalfd+0x128/0x1a0 [ 544.795528][T13588] ? __pfx___x64_sys_signalfd+0x10/0x10 [ 544.795569][T13588] exit_to_user_mode_loop+0x84/0x110 [ 544.795607][T13588] do_syscall_64+0x3f6/0x490 [ 544.795634][T13588] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 544.795660][T13588] RIP: 0033:0x7f4103d8e929 [ 544.795680][T13588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 544.795703][T13588] RSP: 002b:00007f4101bf60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 544.795728][T13588] RAX: fffffffffffffe00 RBX: 00007f4103fb6088 RCX: 00007f4103d8e929 [ 544.795745][T13588] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f4103fb6088 [ 544.795761][T13588] RBP: 00007f4103fb6080 R08: 0000000000000000 R09: 0000000000000000 [ 544.795776][T13588] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4103fb608c [ 544.795792][T13588] R13: 0000000000000000 R14: 00007fff4815d890 R15: 00007fff4815d978 [ 544.795827][T13588] [ 552.611882][T13754] FAULT_INJECTION: forcing a failure. [ 552.611882][T13754] name failslab, interval 1, probability 0, space 0, times 0 [ 552.632325][T13754] CPU: 1 UID: 0 PID: 13754 Comm: syz.0.1789 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 552.632367][T13754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 552.632383][T13754] Call Trace: [ 552.632391][T13754] [ 552.632402][T13754] dump_stack_lvl+0x16c/0x1f0 [ 552.632450][T13754] should_fail_ex+0x512/0x640 [ 552.632489][T13754] ? __kvmalloc_node_noprof+0x124/0x620 [ 552.632541][T13754] should_failslab+0xc2/0x120 [ 552.632569][T13754] __kvmalloc_node_noprof+0x137/0x620 [ 552.632609][T13754] ? io_alloc_cache_init+0x33/0x170 [ 552.632656][T13754] ? io_alloc_cache_init+0x33/0x170 [ 552.632692][T13754] io_alloc_cache_init+0x33/0x170 [ 552.632733][T13754] io_uring_setup+0x63b/0x2080 [ 552.632770][T13754] ? __pfx_io_uring_setup+0x10/0x10 [ 552.632804][T13754] ? do_futex+0x122/0x350 [ 552.632836][T13754] ? __pfx_do_futex+0x10/0x10 [ 552.632888][T13754] ? xfd_validate_state+0x61/0x180 [ 552.632920][T13754] ? __pfx_do_writev+0x10/0x10 [ 552.632962][T13754] __x64_sys_io_uring_setup+0xc2/0x170 [ 552.632998][T13754] do_syscall_64+0xcd/0x490 [ 552.633025][T13754] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 552.633051][T13754] RIP: 0033:0x7fd45b98e929 [ 552.633073][T13754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 552.633099][T13754] RSP: 002b:00007fd45c74d038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 552.633123][T13754] RAX: ffffffffffffffda RBX: 00007fd45bbb5fa0 RCX: 00007fd45b98e929 [ 552.633142][T13754] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 552.633157][T13754] RBP: 00007fd45ba10b39 R08: 0000000000000000 R09: 0000000000000000 [ 552.633173][T13754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 552.633189][T13754] R13: 0000000000000000 R14: 00007fd45bbb5fa0 R15: 00007ffe4878a218 [ 552.633225][T13754] [ 553.320859][T13757] ubi0: attaching mtd0 [ 553.349412][T13757] ubi0: scanning is finished [ 553.354031][T13757] ubi0: empty MTD device detected [ 553.450791][T13764] FAULT_INJECTION: forcing a failure. [ 553.450791][T13764] name failslab, interval 1, probability 0, space 0, times 0 [ 553.542041][T13769] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1790'. [ 553.701701][T13764] CPU: 1 UID: 0 PID: 13764 Comm: syz.4.1792 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 553.701733][T13764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 553.701741][T13764] Call Trace: [ 553.701747][T13764] [ 553.701753][T13764] dump_stack_lvl+0x16c/0x1f0 [ 553.701779][T13764] should_fail_ex+0x512/0x640 [ 553.701798][T13764] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 553.701820][T13764] should_failslab+0xc2/0x120 [ 553.701834][T13764] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 553.701853][T13764] ? alloc_empty_file+0x55/0x1e0 [ 553.701870][T13764] alloc_empty_file+0x55/0x1e0 [ 553.701885][T13764] path_openat+0xda/0x2cb0 [ 553.701902][T13764] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 553.701923][T13764] ? __pfx_path_openat+0x10/0x10 [ 553.701942][T13764] ? __lock_acquire+0xb8a/0x1c90 [ 553.701962][T13764] do_filp_open+0x20b/0x470 [ 553.701981][T13764] ? __pfx_do_filp_open+0x10/0x10 [ 553.702013][T13764] ? alloc_fd+0x471/0x7d0 [ 553.702035][T13764] do_sys_openat2+0x11b/0x1d0 [ 553.702050][T13764] ? __pfx_do_sys_openat2+0x10/0x10 [ 553.702067][T13764] ? __fget_files+0x20e/0x3c0 [ 553.702088][T13764] __x64_sys_openat+0x174/0x210 [ 553.702103][T13764] ? __pfx___x64_sys_openat+0x10/0x10 [ 553.702123][T13764] ? ksys_write+0x1ac/0x250 [ 553.702148][T13764] do_syscall_64+0xcd/0x490 [ 553.702162][T13764] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 553.702176][T13764] RIP: 0033:0x7f397898e929 [ 553.702187][T13764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 553.702201][T13764] RSP: 002b:00007f39767f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 553.702215][T13764] RAX: ffffffffffffffda RBX: 00007f3978bb5fa0 RCX: 00007f397898e929 [ 553.702224][T13764] RDX: 0000000000080101 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 553.702233][T13764] RBP: 00007f39767f6090 R08: 0000000000000000 R09: 0000000000000000 [ 553.702242][T13764] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 553.702250][T13764] R13: 0000000000000001 R14: 00007f3978bb5fa0 R15: 00007ffc29b2cae8 [ 553.702268][T13764] [ 554.100797][T13767] random: crng reseeded on system resumption [ 554.387814][T13757] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 554.494557][T13757] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 554.521662][T13757] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 554.724690][T13757] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 554.732109][T13757] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 554.820637][T13757] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 554.834499][T13757] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 4238926454 [ 554.854808][T13757] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 554.934020][T13784] ubi0: background thread "ubi_bgt0d" started, PID 13784 [ 557.978135][T13858] random: crng reseeded on system resumption [ 557.990309][T13859] FAULT_INJECTION: forcing a failure. [ 557.990309][T13859] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 558.096356][T13859] CPU: 0 UID: 0 PID: 13859 Comm: syz.1.1804 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 558.096393][T13859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 558.096408][T13859] Call Trace: [ 558.096416][T13859] [ 558.096426][T13859] dump_stack_lvl+0x16c/0x1f0 [ 558.096470][T13859] should_fail_ex+0x512/0x640 [ 558.096512][T13859] _copy_to_user+0x32/0xd0 [ 558.096555][T13859] simple_read_from_buffer+0xcb/0x170 [ 558.096591][T13859] proc_fail_nth_read+0x197/0x270 [ 558.096623][T13859] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 558.096664][T13859] ? rw_verify_area+0xcf/0x680 [ 558.096696][T13859] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 558.096727][T13859] vfs_read+0x1e4/0xc60 [ 558.096766][T13859] ? __pfx___mutex_lock+0x10/0x10 [ 558.096806][T13859] ? __pfx_vfs_read+0x10/0x10 [ 558.096850][T13859] ? __fget_files+0x20e/0x3c0 [ 558.096895][T13859] ksys_read+0x12a/0x250 [ 558.096928][T13859] ? __pfx_ksys_read+0x10/0x10 [ 558.096974][T13859] do_syscall_64+0xcd/0x490 [ 558.097001][T13859] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 558.097028][T13859] RIP: 0033:0x7f4103d8d33c [ 558.097049][T13859] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 558.097073][T13859] RSP: 002b:00007f4104b2b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 558.097097][T13859] RAX: ffffffffffffffda RBX: 00007f4103fb5fa0 RCX: 00007f4103d8d33c [ 558.097114][T13859] RDX: 000000000000000f RSI: 00007f4104b2b0a0 RDI: 0000000000000004 [ 558.097130][T13859] RBP: 00007f4104b2b090 R08: 0000000000000000 R09: 0000000000000000 [ 558.097146][T13859] R10: 00000000000000ef R11: 0000000000000246 R12: 0000000000000001 [ 558.097162][T13859] R13: 0000000000000000 R14: 00007f4103fb5fa0 R15: 00007fff4815d978 [ 558.097197][T13859] [ 558.921970][T13868] FAULT_INJECTION: forcing a failure. [ 558.921970][T13868] name failslab, interval 1, probability 0, space 0, times 0 [ 558.970563][T13868] CPU: 1 UID: 0 PID: 13868 Comm: syz.4.1806 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 558.970614][T13868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 558.970630][T13868] Call Trace: [ 558.970639][T13868] [ 558.970650][T13868] dump_stack_lvl+0x16c/0x1f0 [ 558.970697][T13868] should_fail_ex+0x512/0x640 [ 558.970734][T13868] ? __kvmalloc_node_noprof+0x124/0x620 [ 558.970776][T13868] should_failslab+0xc2/0x120 [ 558.970802][T13868] __kvmalloc_node_noprof+0x137/0x620 [ 558.970840][T13868] ? io_alloc_cache_init+0x33/0x170 [ 558.970884][T13868] ? io_alloc_cache_init+0x33/0x170 [ 558.970922][T13868] io_alloc_cache_init+0x33/0x170 [ 558.970963][T13868] io_uring_setup+0x63b/0x2080 [ 558.971003][T13868] ? __pfx_io_uring_setup+0x10/0x10 [ 558.971036][T13868] ? do_futex+0x122/0x350 [ 558.971069][T13868] ? __pfx_do_futex+0x10/0x10 [ 558.971121][T13868] ? xfd_validate_state+0x61/0x180 [ 558.971153][T13868] ? __pfx_do_writev+0x10/0x10 [ 558.971192][T13868] __x64_sys_io_uring_setup+0xc2/0x170 [ 558.971226][T13868] do_syscall_64+0xcd/0x490 [ 558.971251][T13868] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 558.971276][T13868] RIP: 0033:0x7f397898e929 [ 558.971296][T13868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 558.971323][T13868] RSP: 002b:00007f39767f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 558.971349][T13868] RAX: ffffffffffffffda RBX: 00007f3978bb5fa0 RCX: 00007f397898e929 [ 558.971368][T13868] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 558.971384][T13868] RBP: 00007f3978a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 558.971401][T13868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 558.971418][T13868] R13: 0000000000000000 R14: 00007f3978bb5fa0 R15: 00007ffc29b2cae8 [ 558.971454][T13868] [ 559.310288][T13870] FAULT_INJECTION: forcing a failure. [ 559.310288][T13870] name failslab, interval 1, probability 0, space 0, times 0 [ 559.464622][T13870] CPU: 1 UID: 0 PID: 13870 Comm: syz.3.1807 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 559.464658][T13870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 559.464671][T13870] Call Trace: [ 559.464680][T13870] [ 559.464690][T13870] dump_stack_lvl+0x16c/0x1f0 [ 559.464732][T13870] should_fail_ex+0x512/0x640 [ 559.464764][T13870] ? fs_reclaim_acquire+0xae/0x150 [ 559.464794][T13870] should_failslab+0xc2/0x120 [ 559.464824][T13870] __kmalloc_cache_noprof+0x6a/0x3e0 [ 559.464855][T13870] ? tomoyo_init_log+0x197/0x2140 [ 559.464892][T13870] tomoyo_init_log+0x197/0x2140 [ 559.464921][T13870] ? format_decode+0x1ad/0xd40 [ 559.464954][T13870] ? __pfx_format_decode+0x10/0x10 [ 559.464994][T13870] ? __pfx_tomoyo_init_log+0x10/0x10 [ 559.465039][T13870] tomoyo_write_log2+0x2f7/0xc10 [ 559.465079][T13870] tomoyo_supervisor+0x15e/0x13b0 [ 559.465128][T13870] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 559.465183][T13870] ? lockdep_hardirqs_on+0x7c/0x110 [ 559.465225][T13870] ? tomoyo_check_path_acl+0xad/0x210 [ 559.465256][T13870] ? tomoyo_check_acl+0x1f7/0x410 [ 559.465288][T13870] tomoyo_path_permission+0x270/0x3b0 [ 559.465322][T13870] tomoyo_check_open_permission+0x37b/0x3c0 [ 559.465355][T13870] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 559.465424][T13870] ? do_raw_spin_lock+0x12c/0x2b0 [ 559.465474][T13870] tomoyo_file_open+0x6b/0x90 [ 559.465513][T13870] security_file_open+0x84/0x1e0 [ 559.465548][T13870] do_dentry_open+0x596/0x1c10 [ 559.465595][T13870] vfs_open+0x82/0x3f0 [ 559.465627][T13870] path_openat+0x1de4/0x2cb0 [ 559.465675][T13870] ? __pfx_path_openat+0x10/0x10 [ 559.465713][T13870] ? __lock_acquire+0xb8a/0x1c90 [ 559.465750][T13870] do_filp_open+0x20b/0x470 [ 559.465786][T13870] ? __pfx_do_filp_open+0x10/0x10 [ 559.465854][T13870] ? alloc_fd+0x471/0x7d0 [ 559.465899][T13870] do_sys_openat2+0x11b/0x1d0 [ 559.465926][T13870] ? __pfx_do_sys_openat2+0x10/0x10 [ 559.465969][T13870] __x64_sys_openat+0x174/0x210 [ 559.465998][T13870] ? __pfx___x64_sys_openat+0x10/0x10 [ 559.466042][T13870] do_syscall_64+0xcd/0x490 [ 559.466068][T13870] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 559.466094][T13870] RIP: 0033:0x7f5bdf18e929 [ 559.466115][T13870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 559.466140][T13870] RSP: 002b:00007f5be00cd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 559.466164][T13870] RAX: ffffffffffffffda RBX: 00007f5bdf3b5fa0 RCX: 00007f5bdf18e929 [ 559.466182][T13870] RDX: 0000000000000000 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 559.466198][T13870] RBP: 00007f5bdf210b39 R08: 0000000000000000 R09: 0000000000000000 [ 559.466214][T13870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 559.466230][T13870] R13: 0000000000000000 R14: 00007f5bdf3b5fa0 R15: 00007ffc7a59a0b8 [ 559.466264][T13870] [ 560.647309][T13903] kAFS: Invalid Command on /proc/fs/afs/cells file [ 562.402192][T13926] netlink: 338 bytes leftover after parsing attributes in process `syz.4.1818'. [ 563.087632][T13946] FAULT_INJECTION: forcing a failure. [ 563.087632][T13946] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 563.110730][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.124652][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 563.243497][T13946] CPU: 0 UID: 0 PID: 13946 Comm: syz.0.1820 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 563.243533][T13946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 563.243548][T13946] Call Trace: [ 563.243556][T13946] [ 563.243566][T13946] dump_stack_lvl+0x16c/0x1f0 [ 563.243609][T13946] should_fail_ex+0x512/0x640 [ 563.243650][T13946] should_fail_alloc_page+0xe7/0x130 [ 563.243677][T13946] prepare_alloc_pages+0x3c2/0x610 [ 563.243714][T13946] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 563.243753][T13946] ? copy_splice_read+0x1a8/0xba0 [ 563.243786][T13946] ? stack_trace_save+0x8e/0xc0 [ 563.243813][T13946] ? __pfx_stack_trace_save+0x10/0x10 [ 563.243839][T13946] ? stack_depot_save_flags+0x28/0xa40 [ 563.243874][T13946] ? bpf_ksym_find+0x124/0x1c0 [ 563.243905][T13946] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 563.243941][T13946] ? kasan_save_stack+0x33/0x60 [ 563.243976][T13946] ? __kasan_kmalloc+0xaa/0xb0 [ 563.244009][T13946] ? copy_splice_read+0x1a8/0xba0 [ 563.244037][T13946] ? do_splice_read+0x282/0x370 [ 563.244064][T13946] ? splice_direct_to_actor+0x2a1/0xa30 [ 563.244093][T13946] ? do_splice_direct+0x174/0x240 [ 563.244122][T13946] ? do_sendfile+0xb06/0xe50 [ 563.244152][T13946] ? __x64_sys_sendfile64+0x1d8/0x220 [ 563.244174][T13946] ? do_syscall_64+0xcd/0x490 [ 563.244221][T13946] alloc_pages_bulk_noprof+0x71c/0x1410 [ 563.244271][T13946] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 563.244318][T13946] ? trace_kmalloc+0x2b/0xd0 [ 563.244341][T13946] ? __kmalloc_noprof+0x242/0x510 [ 563.244386][T13946] copy_splice_read+0x1e1/0xba0 [ 563.244426][T13946] ? __pfx_copy_splice_read+0x10/0x10 [ 563.244459][T13946] ? look_up_lock_class+0x59/0x150 [ 563.244502][T13946] ? lockdep_init_map_type+0x5c/0x280 [ 563.244538][T13946] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 563.244570][T13946] ? __pfx_copy_splice_read+0x10/0x10 [ 563.244600][T13946] do_splice_read+0x282/0x370 [ 563.244634][T13946] splice_direct_to_actor+0x2a1/0xa30 [ 563.244664][T13946] ? __pfx_direct_splice_actor+0x10/0x10 [ 563.244700][T13946] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 563.244726][T13946] ? get_pid_task+0xfc/0x250 [ 563.244766][T13946] do_splice_direct+0x174/0x240 [ 563.244797][T13946] ? __pfx_do_splice_direct+0x10/0x10 [ 563.244827][T13946] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 563.244858][T13946] ? bpf_lsm_file_permission+0x9/0x10 [ 563.244882][T13946] ? security_file_permission+0x71/0x210 [ 563.244913][T13946] ? rw_verify_area+0xcf/0x680 [ 563.244945][T13946] do_sendfile+0xb06/0xe50 [ 563.244981][T13946] ? __pfx_do_sendfile+0x10/0x10 [ 563.245012][T13946] ? __fget_files+0x20e/0x3c0 [ 563.245050][T13946] __x64_sys_sendfile64+0x1d8/0x220 [ 563.245071][T13946] ? ksys_write+0x1ac/0x250 [ 563.245101][T13946] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 563.245133][T13946] do_syscall_64+0xcd/0x490 [ 563.245157][T13946] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 563.245181][T13946] RIP: 0033:0x7fd45b98e929 [ 563.245201][T13946] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 563.245223][T13946] RSP: 002b:00007fd45c72c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 563.245246][T13946] RAX: ffffffffffffffda RBX: 00007fd45bbb6080 RCX: 00007fd45b98e929 [ 563.245263][T13946] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006 [ 563.245277][T13946] RBP: 00007fd45c72c090 R08: 0000000000000000 R09: 0000000000000000 [ 563.245292][T13946] R10: 0010000800000003 R11: 0000000000000246 R12: 0000000000000001 [ 563.245307][T13946] R13: 0000000000000000 R14: 00007fd45bbb6080 R15: 00007ffe4878a218 [ 563.245336][T13946] [ 563.737807][T13949] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR [ 564.714335][T13956] ima: policy update failed [ 564.804806][ T30] audit: type=1802 audit(6045506539.432:22): pid=13956 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1822" res=0 errno=0 [ 566.006168][T13987] random: crng reseeded on system resumption [ 566.181308][T13995] FAULT_INJECTION: forcing a failure. [ 566.181308][T13995] name failslab, interval 1, probability 0, space 0, times 0 [ 566.246792][T13995] CPU: 1 UID: 0 PID: 13995 Comm: syz.0.1829 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 566.246833][T13995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 566.246850][T13995] Call Trace: [ 566.246860][T13995] [ 566.246875][T13995] dump_stack_lvl+0x16c/0x1f0 [ 566.246921][T13995] should_fail_ex+0x512/0x640 [ 566.246957][T13995] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 566.246997][T13995] should_failslab+0xc2/0x120 [ 566.247021][T13995] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 566.247057][T13995] ? d_instantiate+0x77/0x90 [ 566.247092][T13995] ? alloc_empty_file+0x55/0x1e0 [ 566.247124][T13995] alloc_empty_file+0x55/0x1e0 [ 566.247159][T13995] alloc_file_pseudo+0x13a/0x230 [ 566.247190][T13995] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 566.247220][T13995] ? alloc_fd+0x471/0x7d0 [ 566.247259][T13995] sock_alloc_file+0x50/0x210 [ 566.247289][T13995] __sys_socket+0x1c0/0x260 [ 566.247321][T13995] ? __pfx___sys_socket+0x10/0x10 [ 566.247353][T13995] ? xfd_validate_state+0x61/0x180 [ 566.247385][T13995] ? __pfx_do_writev+0x10/0x10 [ 566.247426][T13995] __x64_sys_socket+0x72/0xb0 [ 566.247457][T13995] ? lockdep_hardirqs_on+0x7c/0x110 [ 566.247495][T13995] do_syscall_64+0xcd/0x490 [ 566.247523][T13995] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 566.247549][T13995] RIP: 0033:0x7fd45b98e929 [ 566.247571][T13995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 566.247596][T13995] RSP: 002b:00007fd45c74d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 566.247621][T13995] RAX: ffffffffffffffda RBX: 00007fd45bbb5fa0 RCX: 00007fd45b98e929 [ 566.247638][T13995] RDX: 0000000000000106 RSI: 0000000000000801 RDI: 0000000000000002 [ 566.247653][T13995] RBP: 00007fd45ba10b39 R08: 0000000000000000 R09: 0000000000000000 [ 566.247666][T13995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 566.247680][T13995] R13: 0000000000000000 R14: 00007fd45bbb5fa0 R15: 00007ffe4878a218 [ 566.247713][T13995] [ 566.803217][T14013] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1832'. [ 570.114053][T14086] FAULT_INJECTION: forcing a failure. [ 570.114053][T14086] name failslab, interval 1, probability 0, space 0, times 0 [ 570.134945][T14086] CPU: 0 UID: 0 PID: 14086 Comm: syz.1.1841 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 570.134975][T14086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 570.134986][T14086] Call Trace: [ 570.134992][T14086] [ 570.134999][T14086] dump_stack_lvl+0x16c/0x1f0 [ 570.135034][T14086] should_fail_ex+0x512/0x640 [ 570.135059][T14086] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 570.135088][T14086] should_failslab+0xc2/0x120 [ 570.135107][T14086] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 570.135133][T14086] ? alloc_empty_file+0x55/0x1e0 [ 570.135156][T14086] alloc_empty_file+0x55/0x1e0 [ 570.135177][T14086] path_openat+0xda/0x2cb0 [ 570.135202][T14086] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 570.135232][T14086] ? __pfx_path_openat+0x10/0x10 [ 570.135260][T14086] ? __lock_acquire+0xb8a/0x1c90 [ 570.135288][T14086] do_filp_open+0x20b/0x470 [ 570.135317][T14086] ? __pfx_do_filp_open+0x10/0x10 [ 570.135360][T14086] ? alloc_fd+0x471/0x7d0 [ 570.135393][T14086] do_sys_openat2+0x11b/0x1d0 [ 570.135416][T14086] ? __pfx_do_sys_openat2+0x10/0x10 [ 570.135441][T14086] ? __fget_files+0x20e/0x3c0 [ 570.135473][T14086] __x64_sys_openat+0x174/0x210 [ 570.135496][T14086] ? __pfx___x64_sys_openat+0x10/0x10 [ 570.135514][T14086] ? ksys_write+0x1ac/0x250 [ 570.135546][T14086] do_syscall_64+0xcd/0x490 [ 570.135566][T14086] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 570.135585][T14086] RIP: 0033:0x7f4103d8e929 [ 570.135603][T14086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 570.135622][T14086] RSP: 002b:00007f4104b2b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 570.135642][T14086] RAX: ffffffffffffffda RBX: 00007f4103fb5fa0 RCX: 00007f4103d8e929 [ 570.135654][T14086] RDX: 0000000000002002 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 570.135666][T14086] RBP: 00007f4104b2b090 R08: 0000000000000000 R09: 0000000000000000 [ 570.135678][T14086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 570.135689][T14086] R13: 0000000000000000 R14: 00007f4103fb5fa0 R15: 00007fff4815d978 [ 570.135755][T14086] [ 571.987396][T14114] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1846'. [ 572.035296][T14132] program syz.1.1848 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 572.046603][T14132] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 572.062066][T14118] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1846'. [ 572.104891][T14115] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1846'. [ 574.229714][T14177] warning: `syz.3.1853' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 575.149664][T14181] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1854'. [ 575.779154][T14209] FAULT_INJECTION: forcing a failure. [ 575.779154][T14209] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 575.863041][T14209] CPU: 0 UID: 0 PID: 14209 Comm: syz.3.1858 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 575.863078][T14209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 575.863092][T14209] Call Trace: [ 575.863100][T14209] [ 575.863108][T14209] dump_stack_lvl+0x16c/0x1f0 [ 575.863147][T14209] should_fail_ex+0x512/0x640 [ 575.863184][T14209] _copy_to_user+0x32/0xd0 [ 575.863233][T14209] simple_read_from_buffer+0xcb/0x170 [ 575.863266][T14209] proc_fail_nth_read+0x197/0x270 [ 575.863297][T14209] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 575.863330][T14209] ? rw_verify_area+0xcf/0x680 [ 575.863362][T14209] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 575.863391][T14209] vfs_read+0x1e4/0xc60 [ 575.863430][T14209] ? __pfx___mutex_lock+0x10/0x10 [ 575.863465][T14209] ? __pfx_vfs_read+0x10/0x10 [ 575.863507][T14209] ? __fget_files+0x20e/0x3c0 [ 575.863549][T14209] ksys_read+0x12a/0x250 [ 575.863579][T14209] ? __pfx_ksys_read+0x10/0x10 [ 575.863614][T14209] do_syscall_64+0xcd/0x490 [ 575.863636][T14209] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 575.863662][T14209] RIP: 0033:0x7f5bdf18d33c [ 575.863682][T14209] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 575.863706][T14209] RSP: 002b:00007f5be00ac030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 575.863730][T14209] RAX: ffffffffffffffda RBX: 00007f5bdf3b6080 RCX: 00007f5bdf18d33c [ 575.863747][T14209] RDX: 000000000000000f RSI: 00007f5be00ac0a0 RDI: 0000000000000004 [ 575.863763][T14209] RBP: 00007f5be00ac090 R08: 0000000000000000 R09: 0000000000000000 [ 575.863777][T14209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 575.863792][T14209] R13: 0000000000000000 R14: 00007f5bdf3b6080 R15: 00007ffc7a59a0b8 [ 575.863827][T14209] [ 576.856428][T14207] tty tty45: ldisc open failed (-12), clearing slot 44 [ 582.796649][T14328] netlink: zone id is out of range [ 582.801939][T14328] netlink: zone id is out of range [ 582.834992][T14328] netlink: zone id is out of range [ 582.847972][T14328] netlink: zone id is out of range [ 582.853486][T14328] netlink: zone id is out of range [ 582.864105][T14328] netlink: zone id is out of range [ 582.895859][T14328] netlink: zone id is out of range [ 582.901145][T14328] netlink: zone id is out of range [ 582.906419][T14328] netlink: zone id is out of range [ 582.911673][T14328] netlink: zone id is out of range [ 584.117258][T14364] program syz.3.1895 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 584.127634][T14364] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 584.741816][T14375] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1897'. [ 587.308249][T14415] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1908'. [ 589.444420][T14450] FAULT_INJECTION: forcing a failure. [ 589.444420][T14450] name failslab, interval 1, probability 0, space 0, times 0 [ 589.464674][T14450] CPU: 0 UID: 0 PID: 14450 Comm: syz.3.1916 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 589.464699][T14450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 589.464707][T14450] Call Trace: [ 589.464714][T14450] [ 589.464720][T14450] dump_stack_lvl+0x16c/0x1f0 [ 589.464747][T14450] should_fail_ex+0x512/0x640 [ 589.464767][T14450] ? __kmalloc_noprof+0xbf/0x510 [ 589.464787][T14450] ? lsm_blob_alloc+0x68/0x90 [ 589.464806][T14450] should_failslab+0xc2/0x120 [ 589.464819][T14450] __kmalloc_noprof+0xd2/0x510 [ 589.464842][T14450] lsm_blob_alloc+0x68/0x90 [ 589.464862][T14450] security_sk_alloc+0x30/0x270 [ 589.464878][T14450] sk_prot_alloc+0x1c7/0x2a0 [ 589.464905][T14450] sk_alloc+0x36/0xc20 [ 589.464936][T14450] xsk_create+0x11b/0x730 [ 589.464956][T14450] __sock_create+0x338/0x8d0 [ 589.464977][T14450] __sys_socket+0x14d/0x260 [ 589.464994][T14450] ? __pfx___sys_socket+0x10/0x10 [ 589.465013][T14450] ? xfd_validate_state+0x61/0x180 [ 589.465030][T14450] ? __task_pid_nr_ns+0x17c/0x500 [ 589.465051][T14450] __x64_sys_socket+0x72/0xb0 [ 589.465067][T14450] ? lockdep_hardirqs_on+0x7c/0x110 [ 589.465086][T14450] do_syscall_64+0xcd/0x490 [ 589.465100][T14450] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 589.465114][T14450] RIP: 0033:0x7f5bdf18e929 [ 589.465126][T14450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 589.465141][T14450] RSP: 002b:00007f5be00cd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 589.465154][T14450] RAX: ffffffffffffffda RBX: 00007f5bdf3b5fa0 RCX: 00007f5bdf18e929 [ 589.465164][T14450] RDX: 0000000000000000 RSI: 0000000000080003 RDI: 000000000000002c [ 589.465172][T14450] RBP: 00007f5bdf210b39 R08: 0000000000000000 R09: 0000000000000000 [ 589.465180][T14450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 589.465188][T14450] R13: 0000000000000000 R14: 00007f5bdf3b5fa0 R15: 00007ffc7a59a0b8 [ 589.465207][T14450] [ 590.383503][T14462] random: crng reseeded on system resumption [ 590.549843][T14466] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1919'. [ 590.667295][T14470] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1920'. [ 594.048178][T14536] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1933'. [ 595.563201][T14572] FAULT_INJECTION: forcing a failure. [ 595.563201][T14572] name failslab, interval 1, probability 0, space 0, times 0 [ 595.606969][T14572] CPU: 0 UID: 0 PID: 14572 Comm: syz.3.1941 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 595.607009][T14572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 595.607025][T14572] Call Trace: [ 595.607034][T14572] [ 595.607044][T14572] dump_stack_lvl+0x16c/0x1f0 [ 595.607078][T14572] should_fail_ex+0x512/0x640 [ 595.607097][T14572] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 595.607120][T14572] should_failslab+0xc2/0x120 [ 595.607134][T14572] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 595.607153][T14572] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 595.607175][T14572] ? __d_alloc+0x31/0xaa0 [ 595.607203][T14572] __d_alloc+0x31/0xaa0 [ 595.607224][T14572] d_alloc_pseudo+0x1c/0xc0 [ 595.607240][T14572] alloc_file_pseudo+0xcf/0x230 [ 595.607256][T14572] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 595.607271][T14572] ? alloc_fd+0x471/0x7d0 [ 595.607291][T14572] sock_alloc_file+0x50/0x210 [ 595.607306][T14572] __sys_socket+0x1c0/0x260 [ 595.607321][T14572] ? fput+0x70/0xf0 [ 595.607333][T14572] ? __pfx___sys_socket+0x10/0x10 [ 595.607349][T14572] ? xfd_validate_state+0x61/0x180 [ 595.607365][T14572] ? __pfx_ksys_write+0x10/0x10 [ 595.607391][T14572] __x64_sys_socket+0x72/0xb0 [ 595.607406][T14572] ? lockdep_hardirqs_on+0x7c/0x110 [ 595.607425][T14572] do_syscall_64+0xcd/0x490 [ 595.607439][T14572] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 595.607453][T14572] RIP: 0033:0x7f5bdf18e929 [ 595.607465][T14572] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 595.607478][T14572] RSP: 002b:00007f5be00cd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 595.607492][T14572] RAX: ffffffffffffffda RBX: 00007f5bdf3b5fa0 RCX: 00007f5bdf18e929 [ 595.607501][T14572] RDX: 0000000000000000 RSI: 0000000000080003 RDI: 000000000000002c [ 595.607509][T14572] RBP: 00007f5bdf210b39 R08: 0000000000000000 R09: 0000000000000000 [ 595.607518][T14572] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 595.607526][T14572] R13: 0000000000000000 R14: 00007f5bdf3b5fa0 R15: 00007ffc7a59a0b8 [ 595.607544][T14572] [ 598.004307][T14599] netlink: 'syz.4.1944': attribute type 2 has an invalid length. [ 598.270044][T14600] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1946'. [ 598.656589][T14611] FAULT_INJECTION: forcing a failure. [ 598.656589][T14611] name failslab, interval 1, probability 0, space 0, times 0 [ 598.695339][T14611] CPU: 0 UID: 0 PID: 14611 Comm: syz.0.1950 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 598.695381][T14611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 598.695397][T14611] Call Trace: [ 598.695406][T14611] [ 598.695416][T14611] dump_stack_lvl+0x16c/0x1f0 [ 598.695463][T14611] should_fail_ex+0x512/0x640 [ 598.695501][T14611] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 598.695543][T14611] should_failslab+0xc2/0x120 [ 598.695567][T14611] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 598.695601][T14611] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 598.695641][T14611] ? __d_alloc+0x31/0xaa0 [ 598.695712][T14611] __d_alloc+0x31/0xaa0 [ 598.695757][T14611] d_alloc_pseudo+0x1c/0xc0 [ 598.695787][T14611] alloc_file_pseudo+0xcf/0x230 [ 598.695819][T14611] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 598.695848][T14611] ? alloc_fd+0x471/0x7d0 [ 598.695889][T14611] sock_alloc_file+0x50/0x210 [ 598.695917][T14611] __sys_socket+0x1c0/0x260 [ 598.695948][T14611] ? fput+0x70/0xf0 [ 598.695972][T14611] ? __pfx___sys_socket+0x10/0x10 [ 598.696005][T14611] ? xfd_validate_state+0x61/0x180 [ 598.696039][T14611] ? __pfx_ksys_write+0x10/0x10 [ 598.696082][T14611] __x64_sys_socket+0x72/0xb0 [ 598.696113][T14611] ? lockdep_hardirqs_on+0x7c/0x110 [ 598.696150][T14611] do_syscall_64+0xcd/0x490 [ 598.696177][T14611] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 598.696203][T14611] RIP: 0033:0x7fd45b98e929 [ 598.696225][T14611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 598.696251][T14611] RSP: 002b:00007fd45c74d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 598.696276][T14611] RAX: ffffffffffffffda RBX: 00007fd45bbb5fa0 RCX: 00007fd45b98e929 [ 598.696294][T14611] RDX: 0000000000000000 RSI: 0000000000080003 RDI: 000000000000002c [ 598.696311][T14611] RBP: 00007fd45ba10b39 R08: 0000000000000000 R09: 0000000000000000 [ 598.696327][T14611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 598.696342][T14611] R13: 0000000000000000 R14: 00007fd45bbb5fa0 R15: 00007ffe4878a218 [ 598.696375][T14611] [ 599.964211][T14635] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1955'. [ 601.750243][T14660] FAULT_INJECTION: forcing a failure. [ 601.750243][T14660] name failslab, interval 1, probability 0, space 0, times 0 [ 601.774752][T14660] CPU: 0 UID: 0 PID: 14660 Comm: syz.1.1959 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 601.774791][T14660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 601.774805][T14660] Call Trace: [ 601.774814][T14660] [ 601.774825][T14660] dump_stack_lvl+0x16c/0x1f0 [ 601.774871][T14660] should_fail_ex+0x512/0x640 [ 601.774909][T14660] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 601.774952][T14660] should_failslab+0xc2/0x120 [ 601.774978][T14660] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 601.775015][T14660] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 601.775056][T14660] ? __d_alloc+0x31/0xaa0 [ 601.775099][T14660] __d_alloc+0x31/0xaa0 [ 601.775143][T14660] d_alloc_pseudo+0x1c/0xc0 [ 601.775170][T14660] alloc_file_pseudo+0xcf/0x230 [ 601.775198][T14660] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 601.775226][T14660] ? alloc_fd+0x471/0x7d0 [ 601.775266][T14660] sock_alloc_file+0x50/0x210 [ 601.775294][T14660] __sys_socket+0x1c0/0x260 [ 601.775324][T14660] ? fput+0x70/0xf0 [ 601.775368][T14660] ? __pfx___sys_socket+0x10/0x10 [ 601.775400][T14660] ? xfd_validate_state+0x61/0x180 [ 601.775434][T14660] ? __pfx_ksys_write+0x10/0x10 [ 601.775479][T14660] __x64_sys_socket+0x72/0xb0 [ 601.775509][T14660] ? lockdep_hardirqs_on+0x7c/0x110 [ 601.775547][T14660] do_syscall_64+0xcd/0x490 [ 601.775574][T14660] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 601.775600][T14660] RIP: 0033:0x7f4103d8e929 [ 601.775620][T14660] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 601.775645][T14660] RSP: 002b:00007f4104b2b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 601.775671][T14660] RAX: ffffffffffffffda RBX: 00007f4103fb5fa0 RCX: 00007f4103d8e929 [ 601.775689][T14660] RDX: 0000000000000000 RSI: 0000000000080003 RDI: 000000000000002c [ 601.775706][T14660] RBP: 00007f4103e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 601.775723][T14660] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 601.775739][T14660] R13: 0000000000000000 R14: 00007f4103fb5fa0 R15: 00007fff4815d978 [ 601.775776][T14660] [ 603.217867][T14686] random: crng reseeded on system resumption [ 605.259034][T14726] random: crng reseeded on system resumption [ 605.791093][T14725] netlink: 146 bytes leftover after parsing attributes in process `syz.3.1976'. [ 606.737942][T14757] IPVS: length: 131 != 8 [ 608.485348][T14779] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1988'. [ 608.814029][T14784] BUG: kernel NULL pointer dereference, address: 0000000000000000 [ 608.821890][T14784] #PF: supervisor instruction fetch in kernel mode [ 608.828406][T14784] #PF: error_code(0x0010) - not-present page [ 608.834368][T14784] PGD 8000000063478067 P4D 8000000063478067 PUD 0 [ 608.840869][T14784] Oops: Oops: 0010 [#1] SMP KASAN PTI [ 608.846241][T14784] CPU: 1 UID: 0 PID: 14784 Comm: syz.0.1991 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) [ 608.858316][T14784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 608.868362][T14784] RIP: 0010:0x0 [ 608.871818][T14784] Code: Unable to access opcode bytes at 0xffffffffffffffd6. [ 608.880489][T14784] RSP: 0018:ffffc900035c79c8 EFLAGS: 00010287 [ 608.886582][T14784] RAX: 0000000000001cfa RBX: 0000000000000000 RCX: ffffc90004a49000 [ 608.894579][T14784] RDX: 0000000000080000 RSI: ffffea000113c880 RDI: ffff888034b436c0 [ 608.902572][T14784] RBP: ffffea000113c880 R08: 0000000000000007 R09: 0000000000000000 [ 608.910553][T14784] R10: 0000000000000000 R11: 0000000000000001 R12: 1ffff920006b8f3a [ 608.918558][T14784] R13: ffff888034b436c0 R14: 0000000000000000 R15: dffffc0000000000 [ 608.926655][T14784] FS: 00007fd45c74d6c0(0000) GS:ffff88812485f000(0000) knlGS:0000000000000000 [ 608.935650][T14784] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 608.942276][T14784] CR2: ffffffffffffffd6 CR3: 000000007813c000 CR4: 00000000003526f0 [ 608.950280][T14784] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 608.958271][T14784] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 608.966248][T14784] Call Trace: [ 608.969541][T14784] [ 608.972487][T14784] filemap_read_folio+0xc8/0x2a0 [ 608.977467][T14784] ? __pfx_filemap_read_folio+0x10/0x10 [ 608.983054][T14784] ? __filemap_get_folio+0x32b/0xc30 [ 608.988366][T14784] ? down_read+0x13d/0x480 [ 608.992815][T14784] do_read_cache_folio+0x263/0x5c0 [ 608.997971][T14784] freader_get_folio+0x337/0x930 [ 609.002954][T14784] freader_fetch+0xc2/0x5e0 [ 609.007577][T14784] ? mt_find+0x3ef/0xa30 [ 609.011812][T14784] __build_id_parse.isra.0+0xec/0x7a0 [ 609.017196][T14784] ? __pfx___build_id_parse.isra.0+0x10/0x10 [ 609.023234][T14784] ? __pfx_find_vma+0x10/0x10 [ 609.027949][T14784] do_procmap_query+0xd96/0x1090 [ 609.032938][T14784] ? do_vfs_ioctl+0x523/0x1a60 [ 609.037748][T14784] ? __pfx_do_procmap_query+0x10/0x10 [ 609.043168][T14784] ? __fget_files+0x20e/0x3c0 [ 609.047879][T14784] procfs_procmap_ioctl+0x7d/0xb0 [ 609.052948][T14784] ? __pfx_procfs_procmap_ioctl+0x10/0x10 [ 609.058705][T14784] __x64_sys_ioctl+0x18b/0x210 [ 609.063501][T14784] do_syscall_64+0xcd/0x490 [ 609.068011][T14784] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 609.073899][T14784] RIP: 0033:0x7fd45b98e929 [ 609.078300][T14784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 609.097901][T14784] RSP: 002b:00007fd45c74d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 609.106302][T14784] RAX: ffffffffffffffda RBX: 00007fd45bbb5fa0 RCX: 00007fd45b98e929 [ 609.114263][T14784] RDX: 0000200000000080 RSI: 00000000c0686611 RDI: 0000000000000004 [ 609.122308][T14784] RBP: 00007fd45ba10b39 R08: 0000000000000000 R09: 0000000000000000 [ 609.130263][T14784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 609.138221][T14784] R13: 0000000000000000 R14: 00007fd45bbb5fa0 R15: 00007ffe4878a218 [ 609.146187][T14784] [ 609.149190][T14784] Modules linked in: [ 609.153088][T14784] CR2: 0000000000000000 [ 609.157245][T14784] ---[ end trace 0000000000000000 ]--- [ 609.162680][T14784] RIP: 0010:0x0 [ 609.166128][T14784] Code: Unable to access opcode bytes at 0xffffffffffffffd6. [ 609.173473][T14784] RSP: 0018:ffffc900035c79c8 EFLAGS: 00010287 [ 609.179615][T14784] RAX: 0000000000001cfa RBX: 0000000000000000 RCX: ffffc90004a49000 [ 609.187573][T14784] RDX: 0000000000080000 RSI: ffffea000113c880 RDI: ffff888034b436c0 [ 609.195635][T14784] RBP: ffffea000113c880 R08: 0000000000000007 R09: 0000000000000000 [ 609.203712][T14784] R10: 0000000000000000 R11: 0000000000000001 R12: 1ffff920006b8f3a [ 609.211684][T14784] R13: ffff888034b436c0 R14: 0000000000000000 R15: dffffc0000000000 [ 609.219650][T14784] FS: 00007fd45c74d6c0(0000) GS:ffff88812485f000(0000) knlGS:0000000000000000 [ 609.228576][T14784] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 609.235148][T14784] CR2: ffffffffffffffd6 CR3: 000000007813c000 CR4: 00000000003526f0 [ 609.243107][T14784] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 609.251067][T14784] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 609.259040][T14784] Kernel panic - not syncing: Fatal exception [ 609.265345][T14784] Kernel Offset: disabled [ 609.269664][T14784] Rebooting in 86400 seconds..