last executing test programs: 29.09143992s ago: executing program 2 (id=310): r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/profile\x00', 0x400401, 0x0) r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0) ioctl$auto(r1, 0x81004517, r1) r2 = fanotify_init$auto(0x5, 0x2) fanotify_mark$auto(r2, 0x205, 0x6, r2, 0x0) ioctl$auto_VHOST_SET_VRING_CALL2(r2, 0x4008af21, &(0x7f0000000080)={0x48, r0}) close_range$auto(0x2, 0x8, 0x0) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) r3 = openat$auto_objects_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0) read$auto(r3, &(0x7f0000000000)='){}$-$\x00', 0x10000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x3, 0x17) pread64$auto(r0, 0x0, 0x3e6f, 0x5) mmap$auto(0x8, 0x420009, 0xdf, 0x10000000000eb1, 0x40000000000a5, 0x5) setuid$auto(0xe) setrlimit$auto(0x8, 0x0) mlockall$auto(0x3) socket(0xa, 0x3, 0x3c) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) 28.876459175s ago: executing program 2 (id=312): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000003b00)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x600, 0x0) readv$auto(r0, 0x0, 0x3) r1 = openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/buffer_percent\x00', 0x1, 0x0) writev$auto(r1, &(0x7f00000035c0)={0x0, 0x4}, 0x9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000016c0)='/dev/snd/controlC0\x00', 0x80, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_UNLOCK(r2, 0x40405515, &(0x7f0000001700)={@inferred, 0xc, 0x3, 0x9, "9d4724b76f4d07faf46cb94d85033d940fdf05ecff75c12163ddeab942ed73d07dadd6f419694d591eca8162"}) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) socket(0x2b, 0x1, 0x1) ioctl$auto_USBDEVFS_FORBID_SUSPEND(0xffffffffffffffff, 0x5521, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x68, 0x0, 0x0, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IF1_SEQ={0x6, 0x6, 0x81}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IF1_SEQ={0x6, 0x6, 0xe}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x40}}, @HSR_A_IF1_AGE={0x8, 0x3, 0x41}, @HSR_A_IFINDEX={0x8}, @HSR_A_IF2_AGE={0x8, 0x4, 0x80}]}, 0x68}, 0x1, 0x0, 0x0, 0x20040084}, 0x44098) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc7}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 27.722006928s ago: executing program 2 (id=319): prctl$auto_PR_RISCV_V_GET_CONTROL(0x46, 0x7fffffffffffffff, 0x2, 0x8, 0x4) socket(0x21, 0x1, 0x0) socket(0x1d, 0x80000, 0x800001) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14f602, 0x0) prctl$auto_PR_RISCV_V_GET_CONTROL(0x46, 0x6b0137, 0x8000000000000000, 0x7, 0x6) pwritev2$auto(r0, &(0x7f0000001fc0)={0x0, 0x7}, 0x1, 0xffffffffffffffff, 0x4, 0x8) setsockopt$auto(0x3, 0x0, 0x81, 0x0, 0x77) 27.511175735s ago: executing program 2 (id=321): mmap$auto(0xfffffffffffffffe, 0xda2f, 0x7, 0x14, 0xfffffffffffffffa, 0x7f) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) shutdown$auto(0x200000003, 0x2) recvmmsg$auto(0x3, 0x0, 0x10000, 0x300, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) connect$auto(0x3, 0x0, 0x55) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x4f, 0x80003, 0x202) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'geneve0\x00'}) capset$auto(0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) fsopen$auto(0x0, 0x1) openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/1/msr\x00', 0xf82, 0x0) mincore$auto(0x1000, 0x8001, 0x0) socket(0xa, 0x801, 0x84) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) unshare$auto(0x40000080) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0xfffffffe, 0xff, 0x7, 0x1f, 0x7181, 0x1ffde, 0xb099, 0x3, 0x9, 0x9, 0x3, 0x84, 0x1, 0xb5, 0x9, 0x8, 0x10003, 0x81, 0x4, 0x0, 0xa, 0x22004, 0x200, 0x1, 0x84, 0x0, 0x0, 0xfffffffe, 0x0, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x810000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x4000000000000, 0xffffffffffffffff]}, 0x1fe, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0xf7374674b920089e) close_range$auto(0x2, 0x8, 0x0) openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000100), 0x4041, 0x0) move_pages$auto(0x0, 0x0, 0x0, &(0x7f0000000200)=0x1, 0x0, 0x0) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0xffff, 0x6, 0xfffffffc, 0x2}, 0x8000, 0x0, 0x6) openat$auto_proc_pid_set_comm_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/comm\x00', 0x1, 0x0) pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x06:\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9', 0xfdef, 0x3) semget$auto(0x0, 0x13b, 0x1ff) 26.836140946s ago: executing program 2 (id=325): mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) r0 = socket(0x10, 0x2, 0xc) (async, rerun: 64) r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) (rerun: 64) sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x24, r1, 0x10, 0x70bd2c, 0x25dfdbfa, {0xa, 0x0, 0xa00}, [@CTRL_ATTR_FAMILY_NAME={0x0, 0x2, '%/\x00\xe2\xa8\\A\xe7Z\x02q[-\x00\x00\x00\x10\x00\xdf(\xff\xfee\xc3\x17py\x9f\xda\xb88\xaa\xf6q*\x82\xe6(\xc9\xe6B\x9aJ82\v-i(c\x92{\xd7D\xb4\xf7\xb4\t\xb2\x98b\xd3%vu\xd4\xfd\t\xd7J\x83\x19)\xb1\x00[\xdd(\xef?\xc5\xae(\x84\xefjx\xfe\xdb\xeb\xbceaAw\x1eW\x12Bh\xc3y2\xc9\x0e\xc9\x99#\x92j\x97\xbbDOi\x03\xa4\x11\x02F0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x955b, 0x8, 0x7, 0x5}, 0x10) (rerun: 64) bpf$auto(0x1b, &(0x7f0000000380)=@link_create={@map_fd, @target_fd=r4, 0x3, 0x7f, @uprobe_multi={0x81, 0x1ff, 0x8, 0x0, 0x1, 0x4}}, 0x81) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/radio6\x00', 0x80000, 0x0) (async, rerun: 64) r5 = epoll_create$auto(0x8) (rerun: 64) epoll_ctl$auto(r5, 0x1, 0x8000000000000000, 0x0) openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/cmdline\x00', 0x8000, 0x0) (async) splice$auto(r2, &(0x7f0000000000), r3, &(0x7f0000000040)=0x1, 0x100000000, 0xffff) 25.687724068s ago: executing program 2 (id=330): r0 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/ksm_stat\x00', 0x2, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) capset$auto(&(0x7f0000000180)={0x19980330}, 0x0) (async) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) (async, rerun: 32) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) (async, rerun: 32) ioctl$auto(0x3, 0x80000541b, 0x38) (async) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x24, r2, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r4}, @NL80211_ATTR_WIPHY_FRAG_THRESHOLD={0x8, 0x3f, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x20040810}, 0x20000084) (async) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) (async, rerun: 32) ioctl$auto(0x3, 0x400454ca, 0x38) (async, rerun: 32) mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0x401, 0x300000000000) (async) write$auto(0x3, 0x0, 0x81) ioctl$auto(r1, 0x4b6a, 0xffffffffffffffff) (async) read$auto_proc_single_file_operations_base(r0, &(0x7f0000000040)=""/228, 0xe4) (async) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/zram0/algorithm_params\x00', 0xa001, 0x0) write$auto(r5, &(0x7f0000000000)='\"\x81=\x00\xfdhhZ\xa0\x16\xda`\x00\x00\x00\x00\x00\x00\x00\xe0\x18\x98\x99\x00\x00\xbf\x04\xd7', 0x7f) 25.608073101s ago: executing program 1 (id=331): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000640)={0x0, 0x2f, &(0x7f0000000600)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="036c25bd7000fddbdf2504006a00080017000200000004001d00"], 0x20}, 0x1, 0x0, 0x0, 0x404c884}, 0x64004890) 25.388097867s ago: executing program 1 (id=332): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) bpf$auto(0x0, &(0x7f00000003c0)=@task_fd_query={0x0, r0, 0xd, 0x89, 0x2, 0x4, r0, 0x81, 0x9}, 0x6f4) read$auto(0x3, 0x0, 0x80) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x6, 0x0) r1 = fsopen$auto(0x0, 0x1) fsconfig$auto(r1, 0x6, 0x0, 0x0, 0x0) getrandom$auto(0x0, 0x6000000, 0x3) ioctl$auto_SNDCTL_DSP_GETOSPACE(0xffffffffffffffff, 0x8010500c, &(0x7f0000004040)) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x100000000002, 0x783, 0x3, 0x8000000008011, r2, 0x40) write$auto(0x3, 0x0, 0xfffffdef) write$auto(0x3, 0x0, 0xfffffdef) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2b, 0x1, 0x1) r3 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r3, &(0x7f0000000080)={{0x0, 0xc, 0x0, 0xf3, 0x0, 0x20, 0x3}, 0x5b3}, 0x200, 0x100) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40) recvmmsg$auto(r3, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 22.388627432s ago: executing program 1 (id=339): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x801, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) connect$auto(0x3, &(0x7f00000000c0)=@l2={0x1f, 0x0, @any, 0x9, 0x2}, 0x400) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) 22.14967383s ago: executing program 1 (id=340): close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) write$auto_ima_measure_policy_ops_ima_fs(r0, &(0x7f0000000000)='#', 0x1) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) r2 = fanotify_init$auto(0x5, 0x2000000000002) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) ioctl$auto(r3, 0x2, 0x9) ioctl$auto(0x3, 0x400c4d07, r3) setsockopt$auto(r1, 0x1, 0x10, &(0x7f0000000040)='\x00\x15\x8d\xca`\xbcgY\xd2w\xf6\xaedN\xfb\xc2_\xf54\xb4z\n*\xaaL\'\xab>q\x9e\xdd`\x84_\r\xc2\x17\xb1\xaf\xd2\f\xfd[Iy\xbb*$\xec\xca\x8b\xde\xdcV@\x04+\x00'/82, 0xba) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r1) r4 = socket(0x2, 0x2, 0x0) sendmmsg$auto(r4, &(0x7f00000001c0)={{&(0x7f0000000240)="163efbb8e7a07ca72cbc44b169bde344ad5274c697359b8043c54d6265a79cb19d9b25cef516ab23f70091f3e47f1abad850c9e56591efd55f1dd10b0f088b1c7a02368e2e5a8583fbff891cead404e0c3cdb6eefcd35e6d822243c340278709f8b9f219af5b020e917ec2df1c24f375cdee49f15b1ce5e47a95099e404a798c02921241df26cc9fb25b516ac2ecbb1969b35411cc88726b3ed5899a8a48780ea617431af6cef109c0ef101765aa6aed12bcd37ed29c1b72fd4d1d6271bc1c", 0x7, &(0x7f0000000180)={&(0x7f0000000000)="86b1e536929057a3fb6980f2be131ed79dd6", 0x8}, 0x0, &(0x7f0000000340)="6a4b06cf5f500fff6b3f129af4a0095e087cb5b7cdb49df840089b1449ad777550fc6f80780a505c6e79efc84c3a2d0c1e7049c73caca75e521f386360dc248b41d013ae8e50ccec482f7b8a2baebee0ad2b3c3818b1f64cb7c96e886c4602db450419235d54786a3ac13d9b63d94fa1374516a740615e20490a476d08e217a7af6a2dc8f97f84f05d49b22a39460ea94fd217ad6bd990ba86ee84b84872b68568a0dd705beadd393ab088c8f2ef3434", 0x5, 0x2}, 0x9}, 0x2, 0x3) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, r4, 0x1}, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/ifb0/phys_port_name\x00', 0x189600, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001500), r5) sendmsg$auto_NET_SHAPER_CMD_GROUP(r1, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000100)={0x1c, r6, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NET_SHAPER_A_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44080}, 0x20040014) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) getcpu$auto(0x0, &(0x7f0000000200)=0x7fff, 0x0) sendmsg$auto_NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r2, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, 0x0, 0x800, 0x70bd26, 0x25dfdbfd, {}, [@NL80211_ATTR_STA_AID={0x6, 0x10, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2}, 0x20000000) 21.167989531s ago: executing program 1 (id=344): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) write$auto(r0, 0x0, 0xfffffdef) mbind$auto(0x0, 0x800605, 0x8003, &(0x7f0000000100)=0xfffe, 0x3, 0x3) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x1) mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) r1 = socket(0x2, 0x801, 0x106) r2 = socket(0xa, 0x801, 0x84) setsockopt$auto(0x3, 0x10000000084, 0xc, 0x0, 0x4) listen$auto(0x3, 0x81) setgroups$auto(0xe32, 0x0) io_uring_setup$auto(0x6, 0x0) sendmsg$auto_NL802154_CMD_DEL_INTERFACE(r2, 0x0, 0x1) getsockopt$auto(r1, 0x11c, 0x1, 0x0, 0x0) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3) mmap$auto(0x3, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0005, 0x19) shmget$auto(0x400, 0x10563, 0x568c12f2) semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, 0x0, 0x20000, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/nr13/carrier_changes\x00', 0x101800, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000080)=""/64, 0x40) shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa) 19.857857554s ago: executing program 1 (id=348): mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x8000) r0 = socket(0x1d, 0x2, 0x7) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'vcan0\x00', 0x0}) connect$auto(0x3, &(0x7f00000000c0)=@can={0x1d, r1}, 0x18) close_range$auto(0x2, 0x8, 0x0) r2 = socket(0x10, 0x2, 0x4) r3 = socket(0x1d, 0x2, 0x7) r4 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(r3, &(0x7f0000000000)=@can={0x1d, r5}, 0x6a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'vcan0\x00', 0x0}) connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r6}, 0x18) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffcc}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0xe, 0x940, 0x1ffde, 0x3, 0x2000000000000006, 0x3, 0x8, 0x5, 0x2, 0x7, 0x1, 0x9, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x3bc}, 0x1fe, 0x5) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x1d, 0x2, 0x7) r7 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) epoll_ctl$auto(r2, 0x0, r4, &(0x7f00000003c0)={0xffb, 0x100000001}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r8}, 0x6a) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r9 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x0) openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kpagecount\x00', 0x0, 0x0) mmap$auto(0x0, 0x8, 0xffffffffffffff72, 0x10, r3, 0x7ffe) connect$auto(0x3, &(0x7f0000000000), 0x55) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) madvise$auto(0x0, 0xffffffffffff0001, 0x9) 10.559160023s ago: executing program 32 (id=330): r0 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/ksm_stat\x00', 0x2, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) capset$auto(&(0x7f0000000180)={0x19980330}, 0x0) (async) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) (async, rerun: 32) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) (async, rerun: 32) ioctl$auto(0x3, 0x80000541b, 0x38) (async) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x24, r2, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r4}, @NL80211_ATTR_WIPHY_FRAG_THRESHOLD={0x8, 0x3f, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x20040810}, 0x20000084) (async) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) (async, rerun: 32) ioctl$auto(0x3, 0x400454ca, 0x38) (async, rerun: 32) mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0x401, 0x300000000000) (async) write$auto(0x3, 0x0, 0x81) ioctl$auto(r1, 0x4b6a, 0xffffffffffffffff) (async) read$auto_proc_single_file_operations_base(r0, &(0x7f0000000040)=""/228, 0xe4) (async) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/zram0/algorithm_params\x00', 0xa001, 0x0) write$auto(r5, &(0x7f0000000000)='\"\x81=\x00\xfdhhZ\xa0\x16\xda`\x00\x00\x00\x00\x00\x00\x00\xe0\x18\x98\x99\x00\x00\xbf\x04\xd7', 0x7f) 6.687535144s ago: executing program 3 (id=382): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/netdevsim0/del_port\x00', 0x2c0001, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x19, 0xfffffffffffffffa, 0x7f) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0xa, 0x2, 0x73) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video54\x00', 0x80000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0xffffffffffffffff, 0x1, 0x10, 0x0, 0x9) sendmsg$auto_NL80211_CMD_STOP_SCHED_SCAN(r0, 0x0, 0x8d0) bind$auto(0x3, &(0x7f0000000040)=@ethernet={0x1, @multicast}, 0x6a) socket(0x2, 0x1, 0x106) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) r1 = socket(0x2b, 0x1, 0x0) r2 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) listen$auto(r1, 0x7) accept$auto(r1, 0x0, 0x0) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000180)="589d7a9f363330934939f00be745e701f417828ef80e03a02edff1fa5e48d7c5d980f639452f210724e6e779c3f1ade9d573939a847fa7ffcb95e59af089d5836dc1e20f24d89bead7e9d7b802000000cecec4f6c8bb78c2a65d2b596c997aac90485dade793394a3867fd20a2a212d7d35de59c4383dcf3f2037b67", 0x12, 0x0, 0x9, 0x0, 0x1, 0xb}, 0x7}, 0x5, 0x20000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) mmap$auto(0x0, 0x8, 0xde, 0x9b72, 0x2, 0x8002) read$auto(r3, 0x0, 0x1f40) 5.736328719s ago: executing program 3 (id=384): socket(0x2, 0x5, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x8e40, 0x0) (async) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x8e40, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) clone$auto(0x2, 0x7, 0xfffffffffffffffc, 0xfffffffffffffffd, 0x9) (async) clone$auto(0x2, 0x7, 0xfffffffffffffffc, 0xfffffffffffffffd, 0x9) r0 = socket(0x1d, 0x2, 0x7) getsockopt$auto(r0, 0x6b, 0x3, 0xfffffffffffffffe, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) (async) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) shutdown$auto(0x200000003, 0x2) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) 5.171570751s ago: executing program 3 (id=385): close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) write$auto_ima_measure_policy_ops_ima_fs(r0, &(0x7f0000000000)='#', 0x1) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) r2 = fanotify_init$auto(0x5, 0x2000000000002) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) ioctl$auto(r3, 0x2, 0x9) ioctl$auto(0x3, 0x400c4d07, r3) setsockopt$auto(r1, 0x1, 0x10, &(0x7f0000000040)='\x00\x15\x8d\xca`\xbcgY\xd2w\xf6\xaedN\xfb\xc2_\xf54\xb4z\n*\xaaL\'\xab>q\x9e\xdd`\x84_\r\xc2\x17\xb1\xaf\xd2\f\xfd[Iy\xbb*$\xec\xca\x8b\xde\xdcV@\x04+\x00'/82, 0xba) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r1) r4 = socket(0x2, 0x2, 0x0) sendmmsg$auto(r4, &(0x7f00000001c0)={{&(0x7f0000000240)="163efbb8e7a07ca72cbc44b169bde344ad5274c697359b8043c54d6265a79cb19d9b25cef516ab23f70091f3e47f1abad850c9e56591efd55f1dd10b0f088b1c7a02368e2e5a8583fbff891cead404e0c3cdb6eefcd35e6d822243c340278709f8b9f219af5b020e917ec2df1c24f375cdee49f15b1ce5e47a95099e404a798c02921241df26cc9fb25b516ac2ecbb1969b35411cc88726b3ed5899a8a48780ea617431af6cef109c0ef101765aa6aed12bcd37ed29c1b72fd4d1d6271bc1c", 0x7, &(0x7f0000000180)={&(0x7f0000000000)="86b1e536929057a3fb6980f2be131ed79dd6", 0x8}, 0x0, &(0x7f0000000340)="6a4b06cf5f500fff6b3f129af4a0095e087cb5b7cdb49df840089b1449ad777550fc6f80780a505c6e79efc84c3a2d0c1e7049c73caca75e521f386360dc248b41d013ae8e50ccec482f7b8a2baebee0ad2b3c3818b1f64cb7c96e886c4602db450419235d54786a3ac13d9b63d94fa1374516a740615e20490a476d08e217a7af6a2dc8f97f84f05d49b22a39460ea94fd217ad6bd990ba86ee84b84872b68568a0dd705beadd393ab088c8f2ef3434c8a614", 0x5, 0x2}, 0x9}, 0x2, 0x3) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, r4, 0x1}, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/ifb0/phys_port_name\x00', 0x189600, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001500), r5) sendmsg$auto_NET_SHAPER_CMD_GROUP(r1, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000100)={0x1c, r6, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NET_SHAPER_A_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44080}, 0x20040014) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) getcpu$auto(0x0, &(0x7f0000000200)=0x7fff, 0x0) sendmsg$auto_NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r2, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, 0x0, 0x800, 0x70bd26, 0x25dfdbfd, {}, [@NL80211_ATTR_STA_AID={0x6, 0x10, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2}, 0x20000000) 3.946994155s ago: executing program 33 (id=348): mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x8000) r0 = socket(0x1d, 0x2, 0x7) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'vcan0\x00', 0x0}) connect$auto(0x3, &(0x7f00000000c0)=@can={0x1d, r1}, 0x18) close_range$auto(0x2, 0x8, 0x0) r2 = socket(0x10, 0x2, 0x4) r3 = socket(0x1d, 0x2, 0x7) r4 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(r3, &(0x7f0000000000)=@can={0x1d, r5}, 0x6a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'vcan0\x00', 0x0}) connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r6}, 0x18) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffcc}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0xe, 0x940, 0x1ffde, 0x3, 0x2000000000000006, 0x3, 0x8, 0x5, 0x2, 0x7, 0x1, 0x9, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x3bc}, 0x1fe, 0x5) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x1d, 0x2, 0x7) r7 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) epoll_ctl$auto(r2, 0x0, r4, &(0x7f00000003c0)={0xffb, 0x100000001}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r8}, 0x6a) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r9 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x0) openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kpagecount\x00', 0x0, 0x0) mmap$auto(0x0, 0x8, 0xffffffffffffff72, 0x10, r3, 0x7ffe) connect$auto(0x3, &(0x7f0000000000), 0x55) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) madvise$auto(0x0, 0xffffffffffff0001, 0x9) 3.809849246s ago: executing program 3 (id=387): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000003b00)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x600, 0x0) readv$auto(r0, 0x0, 0x3) r1 = openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/buffer_percent\x00', 0x1, 0x0) writev$auto(r1, &(0x7f00000035c0)={0x0, 0x4}, 0x9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000016c0)='/dev/snd/controlC0\x00', 0x80, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_UNLOCK(r2, 0x40405515, &(0x7f0000001700)={@inferred, 0xc, 0x3, 0x9, "9d4724b76f4d07faf46cb94d85033d940fdf05ecff75c12163ddeab942ed73d07dadd6f419694d591eca8162"}) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) socket(0x2b, 0x1, 0x1) ioctl$auto_USBDEVFS_FORBID_SUSPEND(0xffffffffffffffff, 0x5521, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x68, 0x0, 0x0, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IF1_SEQ={0x6, 0x6, 0x81}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IF1_SEQ={0x6, 0x6, 0xe}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x40}}, @HSR_A_IF1_AGE={0x8, 0x3, 0x41}, @HSR_A_IFINDEX={0x8}, @HSR_A_IF2_AGE={0x8, 0x4, 0x80}]}, 0x68}, 0x1, 0x0, 0x0, 0x20040084}, 0x44098) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc7}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 3.593636256s ago: executing program 0 (id=388): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x27, 0x6, 0x0) (async) socket(0x27, 0x6, 0x0) setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55) (async) connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55) close_range$auto(0x2, 0x8, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x5, 0x0) shutdown$auto(0x200000003, 0x2) openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0) (async) r0 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0) write$auto(r0, 0x0, 0xe) 3.075646887s ago: executing program 0 (id=389): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000640)={0x0, 0x2f, &(0x7f0000000600)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="036c25bd7000fddbdf2504006a00080017000200000004001d00"], 0x20}, 0x1, 0x0, 0x0, 0x404c884}, 0x64004890) 2.727289098s ago: executing program 0 (id=390): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x29, 0x17000000, 0x0, 0x0, 0x0) io_uring_setup$auto(0x6, 0x0) (fail_nth: 40) 2.378347479s ago: executing program 0 (id=391): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) (async, rerun: 64) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/vivid.0/media4/model\x00', 0xa8000, 0x0) (rerun: 64) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)=""/194, 0xc2) (async) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x8002, 0x2) (async) mmap$auto(0x0, 0x9, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async, rerun: 64) adjtimex$auto(&(0x7f00000006c0)={0x7, 0x0, 0x10, 0x1, 0x5, 0x5, 0x9, 0x0, 0x1, 0x4, 0xfffffffffffff7ff, {0x7, 0x8008000000000000}, 0x1, 0x100000000, 0x5, 0x1008000, 0x0, 0x80000005, 0x83, 0xffffffffffff628e, 0x4000800000000000, 0x5, 0x2}) (rerun: 64) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x408002, 0x0) readv$auto(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040), 0x3}, 0x1) (async) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/scsi/sg/def_reserved_size\x00', 0x0, 0x0) lseek$auto(0x3, 0x8, 0x1) (async) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/amidi2\x00', 0x200081, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) msgsnd$auto(0x0, 0x0, 0x8, 0x7) (async) msgrcv$auto(0x0, 0x0, 0x4bd, 0xa1, 0xf1) ioctl$auto_UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000040)={{0x0, 0xfffe, 0x7, 0x4}, "6a034a07c7b82d90b69a39e32576f893fba86c9dbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f00", 0xfe40}) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r2 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0) mmap$auto(0xfffffffffffffffd, 0x2020009, 0xa45, 0x12, r2, 0x8000) (async) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/devices/virtual/net/ip_vti0/power/autosuspend_delay_ms\x00', 0xa2500, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f00000002c0)=""/106, 0x6a) msgsnd$auto(0x7, &(0x7f0000000140)={0x6, 0x9}, 0x8001, 0x7) (async, rerun: 32) adjtimex$auto(&(0x7f00000007c0)={0x9, 0x0, 0x7, 0xe424, 0xff000, 0x9, 0x4, 0x0, 0x1ff, 0x6, 0x4, {0x5, 0x29000}, 0x9, 0x0, 0x3, 0x5, 0x0, 0x6, 0x1, 0x7fffffff, 0x1000000080, 0x2, 0x10001}) (async, rerun: 32) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) (async) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32) close_range$auto(0x2, 0x8, 0x0) (rerun: 32) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ptyq9\x00', 0x1, 0x0) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptyx2\x00', 0x0, 0x0) (async) socketpair$auto(0x4, 0x4004, 0x8000000000000000, 0x0) 2.34478498s ago: executing program 3 (id=392): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/tty/tty62/power/runtime_suspended_time\x00', 0x1, 0x0) lgetxattr$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='/sys/devices/virtual/tty/tty62/power/runtime_suspended_time\x00', 0xffffffffffffffff, 0x10) (async) close_range$auto(r0, r0, 0x7) (async) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nbd13\x00', 0x200000, 0x0) ioctl$auto_BLKSECTGET(r1, 0x1267, 0x0) (async) msync$auto(0x0, 0x5, 0x7) ioctl$auto_USBDEVFS_GET_CAPABILITIES(0xffffffffffffffff, 0x8004551a, &(0x7f0000000100)=0x800) (async) msync$auto(0x8000000000000001, 0x4, 0x2) (async) r2 = fspick$auto(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x2) write$auto_ftrace_system_enable_fops_trace_events(r2, &(0x7f0000000180)="b6d648b9a72e09da61ca009eecc748e0b2df6be2a6450b6c4a2d995ed331e9411aa0de7bd5f3105622760ee41eb76ec43853bc5529e9df7367fc53aa95e80b0da2a29dfe920d7dadc79669cd6f3513165288bcc1a051012be6f9e418c203b8b8d03d6f2f302226021bfa3a27902d5b477c204b0450b59e6a41a8757cece6b800ee9dec38241f07717bb91eda68008cb7d77d36fd5670a9cd59596df43610854e07aafbfd593b4dd7f3fc8be0104a9eead06c8d5da104646a14f6d979774b1486d99b35b824a836147dbcb323340da6fac7c2966d1fe638b143c4a12900486d", 0xdf) (async) ioctl$auto_BTRFS_IOC_SUBVOL_SETFLAGS(r2, 0x4008941a, &(0x7f0000000280)) r3 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/tracing/trace_options\x00', 0x220700, 0x0) (async) ioctl$auto_FS_IOC_REMOVE_ENCRYPTION_KEY2(r2, 0xc0406618, &(0x7f0000000300)={{0x10001}, 0x8}) (async) msync$auto(0xe, 0x9, 0x7) (async) read$auto(r2, &(0x7f0000000340)='/dev/nbd13\x00', 0x6cbe13b6) (async) openat$auto_regulator_summary_fops_(0xffffffffffffff9c, &(0x7f0000000380), 0x620080, 0x0) openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/kernel/debug/netdevsim/netdevsim6/ports/0/pp_hold\x00', 0x22000, 0x0) (async) getsockopt$auto_SO_RCVBUF(r3, 0x7, 0x8, &(0x7f0000000400)=':\x00', &(0x7f0000000440)=0x5) (async) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000480)='/proc/thread-self/fail-nth\x00', 0x10100, 0x0) openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f00000004c0), 0x800, 0x0) (async) r4 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000500), 0x321000, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r4, 0x7, &(0x7f0000000540)="98fcfd645c43ca4109f9568060eb489f2fe5f829aa66d279534adee6889aad1b164cf20a6d9d036e4c67055c8092b41c1f783bc028ee954a5e6f7f5728696136c1ebfa851a4193fd3980fff7efd151d0738e34f27a9819d1cc4e05aa4ef1981895ba2567919612435cac214954e157c6be9754d45dbb476f2b7d72fe4590bb6297") r5 = prctl$auto_PR_TIMER_CREATE_RESTORE_IDS_OFF(0x80000000, 0x0, 0x0, 0x7, 0x100) ioctl$auto_SIOCSIFHWADDR(r5, 0x8924, &(0x7f0000000600)="9cb9ca7d830738cf2720806402c75cc36efdbf4d0730d13034c9537d1cee5a1359c027c65471731df357eb2f1bc15864de83c241ffd8a5c2a6ecd2a5f901beeada0a851233229a3cc81d483097a3ed0033da3da9ddf4fcd0dc85c530d7b02b0d71f40581f26c52d56b2d947e69cc5c04347d108d47901b5030fc7a60053dbbfcc05bd26f52ae0ab3392a2e8ca575ea0585dfc5811e6bf49dae3917989762a3b8dd748d38eeb03e6ce6f8de568f6af1360be00839703ba1df1b91947ffc84e6c3287f2299061ff230efdd8b3acc26c0195f457e6188518d812ec2f444f3f8b3f01f9bfe8dfe26d6a3402eed647d0e4b23d0") (async) r6 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), r2) (async) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000780)={'veth0_to_bond\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000007c0)={'ip6erspan0\x00', 0x0}) (async) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000800)={'bridge0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000840)={'veth1_to_batadv\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_STATS_GET(r2, &(0x7f0000000980)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000940)={&(0x7f00000008c0)={0x58, r6, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@ETHTOOL_A_STATS_HEADER={0x44, 0x2, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x400}]}]}, 0x58}}, 0x80) 2.139557695s ago: executing program 3 (id=393): unshare$auto(0x40000080) mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/bond0/bonding/primary_reselect\x00', 0x1e2142, 0x0) sendfile$auto(r0, r0, 0x0, 0x7fff) r1 = socket(0xa, 0x2, 0x0) setsockopt$auto(0x3, 0x0, 0x1a, 0xffffffffffffffff, 0x0) unshare$auto(0xfffffffffffffff8) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/loop15/queue/rotational\x00', 0xa081, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptytf\x00', 0x6a00, 0x0) ioctl$auto_TIOCSTI2(r3, 0x5412, &(0x7f0000000000)="bb31b038") write$auto(r2, &(0x7f0000000040)='7\x02\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x20b42, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) ioctl$auto_SG_GET_RESERVED_SIZE(0xffffffffffffffff, 0x4c06, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r4, 0xc0045002, 0x0) close_range$auto(r0, r1, 0x1) r5 = socket(0x10, 0x2, 0xc) unshare$auto(0x40000080) r6 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) write$auto(r6, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9) r7 = syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r5, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x10004010) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYRES16=r2, @ANYRES16=r7, @ANYBLOB="00012cbd7000fcdbdf250a00000005000200000000000600010061c5000008000a000c000000060001005d00000008000a001803000006000100b438000008000a000100010008000a000200000008000a0006000000"], 0x5c}, 0x1, 0x0, 0x0, 0x220088c0}, 0x40) ioctl$auto_SNDCTL_SEQ_GETINCOUNT(r6, 0x80045105, &(0x7f0000000300)="48c9c499a9a55fc2a836723fb70537445460c9f0892a287c9eb350e6b7502695a40747d57c6d503a9321dfb65dfcdd31e011f135fea8b10f802afe673cf64aa66c9f61a38fcb31374ce2e32ab0609681ba696929e2d96bb3682b03969701b37156ff8b4721ea5f896578a106c1f2650052e1d1590d649f180185beeb9d020a557604128a5fd3fffe") ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r4, 0xc004500a, &(0x7f00000003c0)) mmap$auto(0x6, 0x7, 0x4000000000de, 0x440eb1, 0x401, 0x300000000002) r8 = getpid() process_vm_readv$auto(0x0, &(0x7f0000000000)={0x0, 0xfff}, 0x7fffffffe, &(0x7f0000000280)={&(0x7f0000000080), 0x4}, 0x6, 0x800000000000492) move_pages$auto(r8, 0x2000f54, 0x0, 0x0, 0x0, 0x8000000000000000) 696.436125ms ago: executing program 0 (id=394): close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) write$auto_ima_measure_policy_ops_ima_fs(r0, &(0x7f0000000000)='#', 0x1) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) r2 = fanotify_init$auto(0x5, 0x2000000000002) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) ioctl$auto(r3, 0x2, 0x9) ioctl$auto(0x3, 0x400c4d07, r3) setsockopt$auto(r1, 0x1, 0x10, &(0x7f0000000040)='\x00\x15\x8d\xca`\xbcgY\xd2w\xf6\xaedN\xfb\xc2_\xf54\xb4z\n*\xaaL\'\xab>q\x9e\xdd`\x84_\r\xc2\x17\xb1\xaf\xd2\f\xfd[Iy\xbb*$\xec\xca\x8b\xde\xdcV@\x04+\x00'/82, 0xba) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r1) r4 = socket(0x2, 0x2, 0x0) sendmmsg$auto(r4, &(0x7f00000001c0)={{&(0x7f0000000240)="163efbb8e7a07ca72cbc44b169bde344ad5274c697359b8043c54d6265a79cb19d9b25cef516ab23f70091f3e47f1abad850c9e56591efd55f1dd10b0f088b1c7a02368e2e5a8583fbff891cead404e0c3cdb6eefcd35e6d822243c340278709f8b9f219af5b020e917ec2df1c24f375cdee49f15b1ce5e47a95099e404a798c02921241df26cc9fb25b516ac2ecbb1969b35411cc88726b3ed5899a8a48780ea617431af6cef109c0ef101765aa6aed12bcd37ed29c1b72fd4d1d6271bc1c", 0x7, &(0x7f0000000180)={&(0x7f0000000000)="86b1e536929057a3fb6980f2be131ed79dd6", 0x8}, 0x0, &(0x7f0000000340)="6a4b06cf5f500fff6b3f129af4a0095e087cb5b7cdb49df840089b1449ad777550fc6f80780a505c6e79efc84c3a2d0c1e7049c73caca75e521f386360dc248b41d013ae8e50ccec482f7b8a2baebee0ad2b3c3818b1f64cb7c96e886c4602db450419235d54786a3ac13d9b63d94fa1374516a740615e20490a476d08e217a7af6a2dc8f97f84f05d49b22a39460ea94fd217ad6bd990ba86ee84b84872b68568a0dd705beadd393ab088c8f2ef3434c8a61446", 0x5, 0x2}, 0x9}, 0x2, 0x3) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, r4, 0x1}, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/ifb0/phys_port_name\x00', 0x189600, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001500), r5) sendmsg$auto_NET_SHAPER_CMD_GROUP(r1, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000100)={0x1c, r6, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NET_SHAPER_A_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44080}, 0x20040014) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) getcpu$auto(0x0, &(0x7f0000000200)=0x7fff, 0x0) sendmsg$auto_NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r2, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, 0x0, 0x800, 0x70bd26, 0x25dfdbfd, {}, [@NL80211_ATTR_STA_AID={0x6, 0x10, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2}, 0x20000000) 0s ago: executing program 0 (id=395): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/audio1\x00', 0x101001, 0x0) ioctl$auto_SNDCTL_DSP_NONBLOCK(r0, 0x500e, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_NEW_KEY(r1, 0x0, 0x20000094) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_CTRL_CMD_GETFAMILY(r2, 0x0, 0x800) read$auto(r2, 0x0, 0x2005) r3 = memfd_create$auto(0x0, 0x4) statx$auto(r3, 0x0, 0x1000, 0xbdfc, 0x0) write$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(r3, &(0x7f0000000040)="8a55918d68ffb01479b137cdb6c9c573a8aff1d0f6c0671899ab514129e1a139566ae3e413cdeb306011e70a06c54d81e603772904a921e4e89b9a97c56df4bf64d6840a29b3d53252c59f8bb6b839491a69a4a7f7ed4fbb89e8d80830a218f91cec7beb5221cfe6ab5b59bc6536baabf2b55ffb3223f3", 0x77) r4 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0) openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000000), 0x9541, 0x0) ioctl$auto(r4, 0x64c6, 0x1e2) close_range$auto(0x2, 0x8, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.158' (ED25519) to the list of known hosts. [ 90.454126][ T5828] cgroup: Unknown subsys name 'net' [ 90.610614][ T5828] cgroup: Unknown subsys name 'cpuset' [ 90.620174][ T5828] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 92.550428][ T5828] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 94.751617][ T5841] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 94.775599][ T5841] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 94.792924][ T5847] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 94.800282][ T5841] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 94.802585][ T5847] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 94.815886][ T5847] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 94.824065][ T5841] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 94.824932][ T5847] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 94.833852][ T5849] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 94.847013][ T5847] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 94.853978][ T5841] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 94.855056][ T5841] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 94.876155][ T5841] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 94.883757][ T5841] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 94.892585][ T5152] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 94.895621][ T5841] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 94.900936][ T5152] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 94.907631][ T5841] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 94.915103][ T5152] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 94.928521][ T5152] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 95.581209][ T5843] chnl_net:caif_netlink_parms(): no params data found [ 95.599141][ T5838] chnl_net:caif_netlink_parms(): no params data found [ 95.716859][ T5846] chnl_net:caif_netlink_parms(): no params data found [ 95.729282][ T5842] chnl_net:caif_netlink_parms(): no params data found [ 95.901197][ T5843] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.908751][ T5843] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.917048][ T5843] bridge_slave_0: entered allmulticast mode [ 95.924472][ T5843] bridge_slave_0: entered promiscuous mode [ 95.947365][ T5838] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.954486][ T5838] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.961831][ T5838] bridge_slave_0: entered allmulticast mode [ 95.969867][ T5838] bridge_slave_0: entered promiscuous mode [ 96.004535][ T5843] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.011874][ T5843] bridge0: port 2(bridge_slave_1) entered disabled state [ 96.019245][ T5843] bridge_slave_1: entered allmulticast mode [ 96.027365][ T5843] bridge_slave_1: entered promiscuous mode [ 96.034534][ T5838] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.041993][ T5838] bridge0: port 2(bridge_slave_1) entered disabled state [ 96.049291][ T5838] bridge_slave_1: entered allmulticast mode [ 96.057315][ T5838] bridge_slave_1: entered promiscuous mode [ 96.117245][ T5846] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.124407][ T5846] bridge0: port 1(bridge_slave_0) entered disabled state [ 96.132086][ T5846] bridge_slave_0: entered allmulticast mode [ 96.140271][ T5846] bridge_slave_0: entered promiscuous mode [ 96.180836][ T5838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 96.204843][ T5846] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.212468][ T5846] bridge0: port 2(bridge_slave_1) entered disabled state [ 96.219756][ T5846] bridge_slave_1: entered allmulticast mode [ 96.227219][ T5846] bridge_slave_1: entered promiscuous mode [ 96.237403][ T5843] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 96.250800][ T5843] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 96.263184][ T5838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 96.344261][ T5838] team0: Port device team_slave_0 added [ 96.351040][ T5842] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.358394][ T5842] bridge0: port 1(bridge_slave_0) entered disabled state [ 96.366646][ T5842] bridge_slave_0: entered allmulticast mode [ 96.373953][ T5842] bridge_slave_0: entered promiscuous mode [ 96.411447][ T5838] team0: Port device team_slave_1 added [ 96.433248][ T5842] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.440834][ T5842] bridge0: port 2(bridge_slave_1) entered disabled state [ 96.448419][ T5842] bridge_slave_1: entered allmulticast mode [ 96.456186][ T5842] bridge_slave_1: entered promiscuous mode [ 96.465513][ T5846] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 96.477858][ T5843] team0: Port device team_slave_0 added [ 96.487741][ T5846] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 96.548792][ T5843] team0: Port device team_slave_1 added [ 96.569338][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 96.576789][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.602919][ T5838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 96.617519][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 96.624501][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.651194][ T5838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 96.697097][ T5846] team0: Port device team_slave_0 added [ 96.716740][ T5842] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 96.742421][ T5846] team0: Port device team_slave_1 added [ 96.767947][ T5842] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 96.778529][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 96.785595][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.811795][ T5843] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 96.863072][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 96.870448][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.897450][ T5843] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 96.923662][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 96.926470][ T5152] Bluetooth: hci0: command tx timeout [ 96.931505][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.962594][ T5846] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 96.991387][ T5842] team0: Port device team_slave_0 added [ 97.005763][ T5152] Bluetooth: hci3: command tx timeout [ 97.006592][ T5844] Bluetooth: hci1: command tx timeout [ 97.017318][ T5849] Bluetooth: hci2: command tx timeout [ 97.019460][ T5838] hsr_slave_0: entered promiscuous mode [ 97.024843][ T24] cfg80211: failed to load regulatory.db [ 97.030323][ T5838] hsr_slave_1: entered promiscuous mode [ 97.042594][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 97.050500][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.076860][ T5846] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 97.098719][ T5842] team0: Port device team_slave_1 added [ 97.173949][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 97.181467][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.208997][ T5842] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 97.269952][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 97.277056][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.303268][ T5842] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 97.319627][ T5843] hsr_slave_0: entered promiscuous mode [ 97.326276][ T5843] hsr_slave_1: entered promiscuous mode [ 97.332521][ T5843] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 97.340559][ T5843] Cannot create hsr debugfs directory [ 97.352845][ T5846] hsr_slave_0: entered promiscuous mode [ 97.359601][ T5846] hsr_slave_1: entered promiscuous mode [ 97.366070][ T5846] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 97.373702][ T5846] Cannot create hsr debugfs directory [ 97.523857][ T5842] hsr_slave_0: entered promiscuous mode [ 97.530942][ T5842] hsr_slave_1: entered promiscuous mode [ 97.538522][ T5842] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 97.546521][ T5842] Cannot create hsr debugfs directory [ 97.960272][ T5838] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 97.981076][ T5838] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 97.992536][ T5838] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 98.015172][ T5838] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 98.074931][ T5843] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 98.087066][ T5843] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 98.099135][ T5843] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 98.112092][ T5843] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 98.216969][ T5846] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 98.230024][ T5846] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 98.241963][ T5846] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 98.276475][ T5846] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 98.353930][ T5842] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 98.370602][ T5842] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 98.382378][ T5842] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 98.395274][ T5842] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 98.533536][ T5838] 8021q: adding VLAN 0 to HW filter on device bond0 [ 98.571226][ T5843] 8021q: adding VLAN 0 to HW filter on device bond0 [ 98.588484][ T5838] 8021q: adding VLAN 0 to HW filter on device team0 [ 98.653525][ T63] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.660856][ T63] bridge0: port 1(bridge_slave_0) entered forwarding state [ 98.672216][ T63] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.679390][ T63] bridge0: port 2(bridge_slave_1) entered forwarding state [ 98.708967][ T5843] 8021q: adding VLAN 0 to HW filter on device team0 [ 98.721586][ T5846] 8021q: adding VLAN 0 to HW filter on device bond0 [ 98.769526][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.776738][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 98.795299][ T5842] 8021q: adding VLAN 0 to HW filter on device bond0 [ 98.836980][ T4057] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.844204][ T4057] bridge0: port 2(bridge_slave_1) entered forwarding state [ 98.861003][ T5842] 8021q: adding VLAN 0 to HW filter on device team0 [ 98.887581][ T5846] 8021q: adding VLAN 0 to HW filter on device team0 [ 98.904059][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.911270][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 98.943616][ T4057] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.950834][ T4057] bridge0: port 2(bridge_slave_1) entered forwarding state [ 98.965693][ T4057] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.972861][ T4057] bridge0: port 1(bridge_slave_0) entered forwarding state [ 99.004034][ T4057] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.011202][ T4057] bridge0: port 2(bridge_slave_1) entered forwarding state [ 99.018825][ T5844] Bluetooth: hci0: command tx timeout [ 99.087769][ T5844] Bluetooth: hci3: command tx timeout [ 99.093252][ T5844] Bluetooth: hci1: command tx timeout [ 99.099136][ T5849] Bluetooth: hci2: command tx timeout [ 99.389743][ T5838] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 99.522253][ T5838] veth0_vlan: entered promiscuous mode [ 99.561218][ T5838] veth1_vlan: entered promiscuous mode [ 99.708314][ T5842] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 99.733256][ T5838] veth0_macvtap: entered promiscuous mode [ 99.747095][ T5838] veth1_macvtap: entered promiscuous mode [ 99.784345][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 99.813758][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 99.830183][ T5846] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 99.841738][ T5838] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.851433][ T5838] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.860456][ T5838] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.870305][ T5838] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.892659][ T5843] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 99.994809][ T5842] veth0_vlan: entered promiscuous mode [ 100.062025][ T5842] veth1_vlan: entered promiscuous mode [ 100.099149][ T5846] veth0_vlan: entered promiscuous mode [ 100.110839][ T5843] veth0_vlan: entered promiscuous mode [ 100.137428][ T1103] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.152020][ T1103] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.163203][ T5846] veth1_vlan: entered promiscuous mode [ 100.193044][ T5843] veth1_vlan: entered promiscuous mode [ 100.253108][ T5842] veth0_macvtap: entered promiscuous mode [ 100.262753][ T1103] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.272294][ T1103] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.284294][ T5842] veth1_macvtap: entered promiscuous mode [ 100.342179][ T5846] veth0_macvtap: entered promiscuous mode [ 100.360531][ T5843] veth0_macvtap: entered promiscuous mode [ 100.374021][ T5846] veth1_macvtap: entered promiscuous mode [ 100.386054][ T5842] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 100.397006][ T5842] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.411807][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 100.424713][ T5843] veth1_macvtap: entered promiscuous mode [ 100.464368][ T5842] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 100.477198][ T5842] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.489205][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 100.510211][ T5838] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 100.523720][ T5842] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.534779][ T5842] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.546805][ T5842] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.555995][ T5842] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.573378][ T5843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 100.585112][ T5843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.597275][ T5843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 100.609151][ T5843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.622729][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 100.660118][ T5843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 100.675764][ T5843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.688583][ T5843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 100.699511][ T5843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.717670][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 100.747483][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 100.762993][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.784574][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 100.795127][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.809553][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 100.822071][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.837648][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 100.864752][ T5843] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.875879][ T5843] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.884655][ T5843] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.895089][ T5843] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.917557][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 100.934285][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.944728][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 100.959368][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 100.970028][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 100.984237][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 101.000908][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 101.056622][ T5846] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.072284][ T5846] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.081752][ T5846] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.092511][ T5844] Bluetooth: hci0: command tx timeout [ 101.092770][ T5846] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.166558][ T5844] Bluetooth: hci3: command tx timeout [ 101.172032][ T5844] Bluetooth: hci1: command tx timeout [ 101.177764][ T5849] Bluetooth: hci2: command tx timeout [ 101.221031][ T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.234091][ T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.315297][ T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.323267][ T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.400938][ T63] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.422293][ T63] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.493647][ T63] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.525622][ T63] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.579189][ T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.607283][ T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.705099][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.730482][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.576311][ T5925] nvme_fabrics: missing parameter 'transport=%s' [ 102.582847][ T5925] nvme_fabrics: missing parameter 'nqn=%s' [ 102.791897][ T5928] nvme_fabrics: missing parameter 'transport=%s' [ 102.803985][ T5928] nvme_fabrics: missing parameter 'nqn=%s' [ 103.165621][ T5844] Bluetooth: hci0: command tx timeout [ 103.245535][ T5844] Bluetooth: hci3: command tx timeout [ 103.251902][ T5849] Bluetooth: hci1: command tx timeout [ 103.251917][ T5152] Bluetooth: hci2: command tx timeout [ 103.926506][ T5935] ima: policy update failed [ 103.946076][ T30] audit: type=1802 audit(1745613929.631:2): pid=5935 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.7" res=0 errno=0 [ 104.968169][ T5964] Zero length message leads to an empty skb [ 104.970167][ T5968] netlink: 350 bytes leftover after parsing attributes in process `syz.0.15'. [ 105.818349][ T5971] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 105.956080][ T5978] netlink: 338 bytes leftover after parsing attributes in process `syz.1.17'. [ 107.042065][ T5998] netlink: 338 bytes leftover after parsing attributes in process `syz.3.23'. [ 108.178064][ T6016] syz.1.27 uses obsolete (PF_INET,SOCK_PACKET) [ 108.426680][ T6016] process 'syz.1.27' launched '/dev/fd/5' with NULL argv: empty string added [ 108.475584][ T6016] capability: warning: `syz.1.27' uses 32-bit capabilities (legacy support in use) [ 108.988169][ T6028] nvme_fabrics: missing parameter 'transport=%s' [ 108.995871][ T6028] nvme_fabrics: missing parameter 'nqn=%s' [ 109.179753][ T6030] nvme_fabrics: missing parameter 'transport=%s' [ 109.193967][ T6030] nvme_fabrics: missing parameter 'nqn=%s' [ 109.510411][ T6035] netlink: 342 bytes leftover after parsing attributes in process `syz.3.32'. [ 110.048912][ T6039] ima: policy update failed [ 110.067429][ T30] audit: type=1802 audit(6040581231.754:3): pid=6039 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.33" res=0 errno=0 [ 111.739889][ T6079] openvswitch: netlink: IP tunnel dst address not specified [ 112.025635][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 112.077715][ T0] NOHZ tick-stop error: local softirq work is pending, handler #340!!! [ 112.181171][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 112.369342][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 112.438983][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 112.573624][ T6094] ima: policy update failed [ 112.583043][ T30] audit: type=1802 audit(6040581234.264:4): pid=6094 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.47" res=0 errno=0 [ 112.631615][ T6104] FAULT_INJECTION: forcing a failure. [ 112.631615][ T6104] name failslab, interval 1, probability 0, space 0, times 0 [ 112.694292][ T6104] CPU: 1 UID: 0 PID: 6104 Comm: syz.3.49 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 112.694336][ T6104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 112.694359][ T6104] Call Trace: [ 112.694370][ T6104] [ 112.694386][ T6104] dump_stack_lvl+0x16c/0x1f0 [ 112.694436][ T6104] should_fail_ex+0x512/0x640 [ 112.694482][ T6104] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 112.694520][ T6104] should_failslab+0xc2/0x120 [ 112.694563][ T6104] __kmalloc_cache_noprof+0x6a/0x3e0 [ 112.694598][ T6104] ? percpu_ref_init+0xec/0x410 [ 112.694632][ T6104] ? __pfx_io_ring_ctx_ref_free+0x10/0x10 [ 112.694674][ T6104] percpu_ref_init+0xec/0x410 [ 112.694712][ T6104] io_uring_setup+0x453/0x1ff0 [ 112.694749][ T6104] ? __pfx_io_uring_setup+0x10/0x10 [ 112.694779][ T6104] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 112.694831][ T6104] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 112.694884][ T6104] ? __fget_files+0x20e/0x3c0 [ 112.694927][ T6104] ? ksys_write+0x1b9/0x240 [ 112.694960][ T6104] ? __pfx_ksys_write+0x10/0x10 [ 112.694992][ T6104] ? rcu_is_watching+0x12/0xc0 [ 112.695033][ T6104] __x64_sys_io_uring_setup+0xc2/0x170 [ 112.695070][ T6104] do_syscall_64+0xcd/0x230 [ 112.695128][ T6104] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.695161][ T6104] RIP: 0033:0x7f4012f8e969 [ 112.695192][ T6104] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 112.695222][ T6104] RSP: 002b:00007f4013e36038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 112.695256][ T6104] RAX: ffffffffffffffda RBX: 00007f40131b5fa0 RCX: 00007f4012f8e969 [ 112.695277][ T6104] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 112.695296][ T6104] RBP: 00007f4013e36090 R08: 0000000000000000 R09: 0000000000000000 [ 112.695315][ T6104] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 112.695333][ T6104] R13: 0000000000000000 R14: 00007f40131b5fa0 R15: 00007ffec23cc918 [ 112.695371][ T6104] [ 112.895211][ C1] vkms_vblank_simulate: vblank timer overrun [ 112.959903][ T6103] FAULT_INJECTION: forcing a failure. [ 112.959903][ T6103] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 112.982087][ T6103] CPU: 0 UID: 0 PID: 6103 Comm: syz.0.50 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 112.982133][ T6103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 112.982151][ T6103] Call Trace: [ 112.982162][ T6103] [ 112.982174][ T6103] dump_stack_lvl+0x16c/0x1f0 [ 112.982226][ T6103] should_fail_ex+0x512/0x640 [ 112.982270][ T6103] _copy_from_iter+0x2a4/0x15b0 [ 112.982316][ T6103] ? skb_set_owner_w+0x31f/0x710 [ 112.982361][ T6103] ? __pfx__copy_from_iter+0x10/0x10 [ 112.982400][ T6103] ? __pfx_skb_set_owner_w+0x10/0x10 [ 112.982437][ T6103] ? pppol2tp_sock_to_session+0x249/0x570 [ 112.982483][ T6103] ? __pfx_pppol2tp_sock_to_session+0x10/0x10 [ 112.982540][ T6103] pppol2tp_sendmsg+0x438/0x5f0 [ 112.982594][ T6103] sock_write_iter+0x4fc/0x5b0 [ 112.982626][ T6103] ? __pfx_sock_write_iter+0x10/0x10 [ 112.982671][ T6103] ? bpf_lsm_file_permission+0x9/0x10 [ 112.982702][ T6103] ? security_file_permission+0x71/0x210 [ 112.982747][ T6103] ? rw_verify_area+0xcf/0x680 [ 112.982802][ T6103] vfs_write+0x5ba/0x1180 [ 112.982836][ T6103] ? __pfx_sock_write_iter+0x10/0x10 [ 112.982871][ T6103] ? __pfx_vfs_write+0x10/0x10 [ 112.982907][ T6103] ? __pfx_do_sys_openat2+0x10/0x10 [ 112.982973][ T6103] ksys_write+0x205/0x240 [ 112.983005][ T6103] ? __pfx_ksys_write+0x10/0x10 [ 112.983036][ T6103] ? rcu_is_watching+0x12/0xc0 [ 112.983090][ T6103] do_syscall_64+0xcd/0x230 [ 112.983144][ T6103] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.983175][ T6103] RIP: 0033:0x7f16b7f8e969 [ 112.983199][ T6103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 112.983229][ T6103] RSP: 002b:00007f16b8d76038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 112.983258][ T6103] RAX: ffffffffffffffda RBX: 00007f16b81b5fa0 RCX: 00007f16b7f8e969 [ 112.983279][ T6103] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 112.983298][ T6103] RBP: 00007f16b8d76090 R08: 0000000000000000 R09: 0000000000000000 [ 112.983317][ T6103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 112.983336][ T6103] R13: 0000000000000000 R14: 00007f16b81b5fa0 R15: 00007ffd46129fa8 [ 112.983407][ T6103] [ 114.614708][ T6128] nvme_fabrics: missing parameter 'transport=%s' [ 114.645393][ T6128] nvme_fabrics: missing parameter 'nqn=%s' [ 114.780343][ T6132] nvme_fabrics: missing parameter 'transport=%s' [ 114.800276][ T6132] nvme_fabrics: missing parameter 'nqn=%s' [ 115.612735][ T6149] FAULT_INJECTION: forcing a failure. [ 115.612735][ T6149] name failslab, interval 1, probability 0, space 0, times 0 [ 115.630382][ T6149] CPU: 0 UID: 0 PID: 6149 Comm: syz.0.62 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 115.630439][ T6149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 115.630457][ T6149] Call Trace: [ 115.630466][ T6149] [ 115.630475][ T6149] dump_stack_lvl+0x16c/0x1f0 [ 115.630517][ T6149] should_fail_ex+0x512/0x640 [ 115.630547][ T6149] ? __kvmalloc_node_noprof+0x122/0x600 [ 115.630579][ T6149] should_failslab+0xc2/0x120 [ 115.630631][ T6149] __kvmalloc_node_noprof+0x135/0x600 [ 115.630663][ T6149] ? io_alloc_cache_init+0x33/0x170 [ 115.630706][ T6149] ? io_alloc_cache_init+0x33/0x170 [ 115.630742][ T6149] io_alloc_cache_init+0x33/0x170 [ 115.630782][ T6149] io_uring_setup+0x5ff/0x1ff0 [ 115.630813][ T6149] ? __pfx_io_uring_setup+0x10/0x10 [ 115.630838][ T6149] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 115.630882][ T6149] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 115.630926][ T6149] ? __fget_files+0x20e/0x3c0 [ 115.630959][ T6149] ? ksys_write+0x1b9/0x240 [ 115.630986][ T6149] ? __pfx_ksys_write+0x10/0x10 [ 115.631011][ T6149] ? rcu_is_watching+0x12/0xc0 [ 115.631044][ T6149] __x64_sys_io_uring_setup+0xc2/0x170 [ 115.631073][ T6149] do_syscall_64+0xcd/0x230 [ 115.631121][ T6149] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.631147][ T6149] RIP: 0033:0x7f16b7f8e969 [ 115.631167][ T6149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 115.631192][ T6149] RSP: 002b:00007f16b8d76038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 115.631216][ T6149] RAX: ffffffffffffffda RBX: 00007f16b81b5fa0 RCX: 00007f16b7f8e969 [ 115.631233][ T6149] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 115.631248][ T6149] RBP: 00007f16b8d76090 R08: 0000000000000000 R09: 0000000000000000 [ 115.631264][ T6149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 115.631279][ T6149] R13: 0000000000000000 R14: 00007f16b81b5fa0 R15: 00007ffd46129fa8 [ 115.631310][ T6149] [ 116.155301][ T6144] ima: policy update failed [ 116.171749][ T30] audit: type=1802 audit(6040581237.854:5): pid=6144 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.60" res=0 errno=0 [ 116.342147][ T6152] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 117.888092][ T6185] FAULT_INJECTION: forcing a failure. [ 117.888092][ T6185] name failslab, interval 1, probability 0, space 0, times 0 [ 117.922389][ T6185] CPU: 1 UID: 0 PID: 6185 Comm: syz.3.72 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 117.922434][ T6185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 117.922452][ T6185] Call Trace: [ 117.922462][ T6185] [ 117.922474][ T6185] dump_stack_lvl+0x16c/0x1f0 [ 117.922525][ T6185] should_fail_ex+0x512/0x640 [ 117.922563][ T6185] ? __kvmalloc_node_noprof+0x122/0x600 [ 117.922604][ T6185] should_failslab+0xc2/0x120 [ 117.922655][ T6185] __kvmalloc_node_noprof+0x135/0x600 [ 117.922695][ T6185] ? io_alloc_cache_init+0x33/0x170 [ 117.922749][ T6185] ? io_alloc_cache_init+0x33/0x170 [ 117.922791][ T6185] io_alloc_cache_init+0x33/0x170 [ 117.922839][ T6185] io_uring_setup+0x61d/0x1ff0 [ 117.922877][ T6185] ? __pfx_io_uring_setup+0x10/0x10 [ 117.922907][ T6185] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 117.922960][ T6185] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 117.923014][ T6185] ? __fget_files+0x20e/0x3c0 [ 117.923057][ T6185] ? ksys_write+0x1b9/0x240 [ 117.923090][ T6185] ? __pfx_ksys_write+0x10/0x10 [ 117.923121][ T6185] ? rcu_is_watching+0x12/0xc0 [ 117.923161][ T6185] __x64_sys_io_uring_setup+0xc2/0x170 [ 117.923197][ T6185] do_syscall_64+0xcd/0x230 [ 117.923247][ T6185] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.923279][ T6185] RIP: 0033:0x7f4012f8e969 [ 117.923304][ T6185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 117.923334][ T6185] RSP: 002b:00007f4013e36038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 117.923364][ T6185] RAX: ffffffffffffffda RBX: 00007f40131b5fa0 RCX: 00007f4012f8e969 [ 117.923385][ T6185] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 117.923404][ T6185] RBP: 00007f4013e36090 R08: 0000000000000000 R09: 0000000000000000 [ 117.923423][ T6185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 117.923441][ T6185] R13: 0000000000000000 R14: 00007f40131b5fa0 R15: 00007ffec23cc918 [ 117.923481][ T6185] [ 118.477069][ T6184] ima: policy update failed [ 118.507289][ T30] audit: type=1802 audit(6040581240.164:6): pid=6184 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.73" res=0 errno=0 [ 118.826015][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 118.846541][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 120.063046][ T6215] FAULT_INJECTION: forcing a failure. [ 120.063046][ T6215] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 120.172721][ T6215] CPU: 0 UID: 0 PID: 6215 Comm: syz.1.79 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 120.172767][ T6215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 120.172786][ T6215] Call Trace: [ 120.172796][ T6215] [ 120.172807][ T6215] dump_stack_lvl+0x16c/0x1f0 [ 120.172858][ T6215] should_fail_ex+0x512/0x640 [ 120.172902][ T6215] _copy_to_user+0x32/0xd0 [ 120.172948][ T6215] simple_read_from_buffer+0xcb/0x170 [ 120.173002][ T6215] proc_fail_nth_read+0x197/0x270 [ 120.173052][ T6215] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 120.173103][ T6215] ? rw_verify_area+0xcf/0x680 [ 120.173151][ T6215] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 120.173200][ T6215] vfs_read+0x1de/0xc70 [ 120.173234][ T6215] ? __pfx_sock_write_iter+0x10/0x10 [ 120.173271][ T6215] ? __pfx_vfs_read+0x10/0x10 [ 120.173307][ T6215] ? __pfx_do_sys_openat2+0x10/0x10 [ 120.173372][ T6215] ksys_read+0x12a/0x240 [ 120.173404][ T6215] ? __pfx_ksys_read+0x10/0x10 [ 120.173435][ T6215] ? rcu_is_watching+0x12/0xc0 [ 120.173480][ T6215] do_syscall_64+0xcd/0x230 [ 120.173531][ T6215] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.173563][ T6215] RIP: 0033:0x7fa6ba78d37c [ 120.173589][ T6215] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 120.173619][ T6215] RSP: 002b:00007fa6bb5f0030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 120.173648][ T6215] RAX: ffffffffffffffda RBX: 00007fa6ba9b5fa0 RCX: 00007fa6ba78d37c [ 120.173669][ T6215] RDX: 000000000000000f RSI: 00007fa6bb5f00a0 RDI: 0000000000000004 [ 120.173698][ T6215] RBP: 00007fa6bb5f0090 R08: 0000000000000000 R09: 0000000000000000 [ 120.173717][ T6215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 120.173735][ T6215] R13: 0000000000000000 R14: 00007fa6ba9b5fa0 R15: 00007fffcc544d08 [ 120.173776][ T6215] [ 120.540214][ T6227] FAULT_INJECTION: forcing a failure. [ 120.540214][ T6227] name failslab, interval 1, probability 0, space 0, times 0 [ 120.658211][ T6227] CPU: 0 UID: 0 PID: 6227 Comm: syz.3.81 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 120.658256][ T6227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 120.658282][ T6227] Call Trace: [ 120.658292][ T6227] [ 120.658304][ T6227] dump_stack_lvl+0x16c/0x1f0 [ 120.658370][ T6227] should_fail_ex+0x512/0x640 [ 120.658448][ T6227] ? __kmalloc_node_noprof+0xc5/0x500 [ 120.658495][ T6227] should_failslab+0xc2/0x120 [ 120.658538][ T6227] __kmalloc_node_noprof+0xd8/0x500 [ 120.658578][ T6227] ? alloc_slab_obj_exts+0x41/0xa0 [ 120.658617][ T6227] alloc_slab_obj_exts+0x41/0xa0 [ 120.658649][ T6227] __memcg_slab_post_alloc_hook+0x27b/0x940 [ 120.658698][ T6227] ? kasan_save_track+0x14/0x30 [ 120.658739][ T6227] kmem_cache_alloc_noprof+0x307/0x3b0 [ 120.658779][ T6227] ? alloc_empty_file+0x55/0x1e0 [ 120.658828][ T6227] alloc_empty_file+0x55/0x1e0 [ 120.658872][ T6227] path_openat+0xe0/0x2d40 [ 120.658901][ T6227] ? __x64_sys_openat+0x174/0x210 [ 120.658945][ T6227] ? do_syscall_64+0xcd/0x230 [ 120.658989][ T6227] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.659035][ T6227] ? __pfx_path_openat+0x10/0x10 [ 120.659078][ T6227] do_filp_open+0x20b/0x470 [ 120.659111][ T6227] ? __pfx_do_filp_open+0x10/0x10 [ 120.659171][ T6227] ? alloc_fd+0x471/0x7d0 [ 120.659219][ T6227] do_sys_openat2+0x11b/0x1d0 [ 120.659265][ T6227] ? __pfx_do_sys_openat2+0x10/0x10 [ 120.659327][ T6227] __x64_sys_openat+0x174/0x210 [ 120.659374][ T6227] ? __pfx___x64_sys_openat+0x10/0x10 [ 120.659428][ T6227] ? rcu_is_watching+0x12/0xc0 [ 120.659471][ T6227] do_syscall_64+0xcd/0x230 [ 120.659520][ T6227] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.659551][ T6227] RIP: 0033:0x7f4012f8d2d0 [ 120.659586][ T6227] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 120.659615][ T6227] RSP: 002b:00007f4013e14f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 120.659649][ T6227] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f4012f8d2d0 [ 120.659671][ T6227] RDX: 0000000000000002 RSI: 00007f4013e14fa0 RDI: 00000000ffffff9c [ 120.659690][ T6227] RBP: 00007f4013e14fa0 R08: 0000000000000000 R09: 00007f4013e14cd6 [ 120.659710][ T6227] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 120.659729][ T6227] R13: 0000000000000000 R14: 00007f40131b6080 R15: 00007ffec23cc918 [ 120.659769][ T6227] [ 121.125906][ T6232] ima: policy update failed [ 121.187230][ T30] audit: type=1802 audit(6040581242.874:7): pid=6232 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.84" res=0 errno=0 [ 121.712759][ T6255] FAULT_INJECTION: forcing a failure. [ 121.712759][ T6255] name failslab, interval 1, probability 0, space 0, times 0 [ 121.751358][ T6255] CPU: 0 UID: 0 PID: 6255 Comm: syz.0.88 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 121.751404][ T6255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 121.751423][ T6255] Call Trace: [ 121.751434][ T6255] [ 121.751446][ T6255] dump_stack_lvl+0x16c/0x1f0 [ 121.751503][ T6255] should_fail_ex+0x512/0x640 [ 121.751540][ T6255] ? __kvmalloc_node_noprof+0x122/0x600 [ 121.751595][ T6255] should_failslab+0xc2/0x120 [ 121.751638][ T6255] __kvmalloc_node_noprof+0x135/0x600 [ 121.751676][ T6255] ? io_alloc_cache_init+0x33/0x170 [ 121.751738][ T6255] ? io_alloc_cache_init+0x33/0x170 [ 121.751781][ T6255] io_alloc_cache_init+0x33/0x170 [ 121.751830][ T6255] io_uring_setup+0x63b/0x1ff0 [ 121.751868][ T6255] ? __pfx_io_uring_setup+0x10/0x10 [ 121.751899][ T6255] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 121.751952][ T6255] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 121.752005][ T6255] ? __fget_files+0x20e/0x3c0 [ 121.752046][ T6255] ? ksys_write+0x1b9/0x240 [ 121.752080][ T6255] ? __pfx_ksys_write+0x10/0x10 [ 121.752116][ T6255] ? rcu_is_watching+0x12/0xc0 [ 121.752157][ T6255] __x64_sys_io_uring_setup+0xc2/0x170 [ 121.752191][ T6255] do_syscall_64+0xcd/0x230 [ 121.752241][ T6255] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.752273][ T6255] RIP: 0033:0x7f16b7f8e969 [ 121.752297][ T6255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 121.752325][ T6255] RSP: 002b:00007f16b8d76038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 121.752354][ T6255] RAX: ffffffffffffffda RBX: 00007f16b81b5fa0 RCX: 00007f16b7f8e969 [ 121.752375][ T6255] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 121.752394][ T6255] RBP: 00007f16b8d76090 R08: 0000000000000000 R09: 0000000000000000 [ 121.752413][ T6255] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 121.752431][ T6255] R13: 0000000000000000 R14: 00007f16b81b5fa0 R15: 00007ffd46129fa8 [ 121.752471][ T6255] [ 122.727590][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 123.428554][ T6274] ima: policy update failed [ 123.433382][ T30] audit: type=1802 audit(6040581245.114:8): pid=6274 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.94" res=0 errno=0 [ 123.691370][ T6289] netlink: 28 bytes leftover after parsing attributes in process `syz.2.96'. [ 123.734402][ T6288] netlink: 28 bytes leftover after parsing attributes in process `syz.2.96'. [ 124.141166][ T6304] FAULT_INJECTION: forcing a failure. [ 124.141166][ T6304] name failslab, interval 1, probability 0, space 0, times 0 [ 124.154138][ T6304] CPU: 1 UID: 0 PID: 6304 Comm: syz.2.99 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 124.154179][ T6304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 124.154198][ T6304] Call Trace: [ 124.154208][ T6304] [ 124.154219][ T6304] dump_stack_lvl+0x16c/0x1f0 [ 124.154270][ T6304] should_fail_ex+0x512/0x640 [ 124.154306][ T6304] ? __kvmalloc_node_noprof+0x122/0x600 [ 124.154347][ T6304] should_failslab+0xc2/0x120 [ 124.154390][ T6304] __kvmalloc_node_noprof+0x135/0x600 [ 124.154436][ T6304] ? io_alloc_cache_init+0x33/0x170 [ 124.154489][ T6304] ? io_alloc_cache_init+0x33/0x170 [ 124.154532][ T6304] io_alloc_cache_init+0x33/0x170 [ 124.154581][ T6304] io_uring_setup+0x675/0x1ff0 [ 124.154619][ T6304] ? __pfx_io_uring_setup+0x10/0x10 [ 124.154649][ T6304] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 124.154711][ T6304] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 124.154765][ T6304] ? __fget_files+0x20e/0x3c0 [ 124.154807][ T6304] ? ksys_write+0x1b9/0x240 [ 124.154840][ T6304] ? __pfx_ksys_write+0x10/0x10 [ 124.154871][ T6304] ? rcu_is_watching+0x12/0xc0 [ 124.154912][ T6304] __x64_sys_io_uring_setup+0xc2/0x170 [ 124.154948][ T6304] do_syscall_64+0xcd/0x230 [ 124.155013][ T6304] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 124.155045][ T6304] RIP: 0033:0x7fc884f8e969 [ 124.155070][ T6304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 124.155100][ T6304] RSP: 002b:00007fc885d43038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 124.155130][ T6304] RAX: ffffffffffffffda RBX: 00007fc8851b5fa0 RCX: 00007fc884f8e969 [ 124.155150][ T6304] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 124.155168][ T6304] RBP: 00007fc885d43090 R08: 0000000000000000 R09: 0000000000000000 [ 124.155187][ T6304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 124.155205][ T6304] R13: 0000000000000000 R14: 00007fc8851b5fa0 R15: 00007ffffa601aa8 [ 124.155243][ T6304] [ 125.071031][ T6321] FAULT_INJECTION: forcing a failure. [ 125.071031][ T6321] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 125.154275][ T6321] CPU: 1 UID: 0 PID: 6321 Comm: syz.3.102 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 125.154314][ T6321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 125.154331][ T6321] Call Trace: [ 125.154340][ T6321] [ 125.154351][ T6321] dump_stack_lvl+0x16c/0x1f0 [ 125.154401][ T6321] should_fail_ex+0x512/0x640 [ 125.154446][ T6321] should_fail_alloc_page+0xe7/0x130 [ 125.154492][ T6321] prepare_alloc_pages+0x3c2/0x610 [ 125.154550][ T6321] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 125.154606][ T6321] ? __lock_acquire+0xaa4/0x1ba0 [ 125.154652][ T6321] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 125.154717][ T6321] ? __pfx___might_resched+0x10/0x10 [ 125.154753][ T6321] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 125.154802][ T6321] ? policy_nodemask+0xea/0x4e0 [ 125.154847][ T6321] alloc_pages_mpol+0x1fb/0x550 [ 125.154908][ T6321] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 125.154961][ T6321] alloc_pages_noprof+0x131/0x390 [ 125.155004][ T6321] __pmd_alloc+0x3f/0x870 [ 125.155059][ T6321] __handle_mm_fault+0x948/0x2a40 [ 125.155113][ T6321] ? __pfx___handle_mm_fault+0x10/0x10 [ 125.155186][ T6321] handle_mm_fault+0x3fe/0xad0 [ 125.155229][ T6321] __get_user_pages+0x771/0x36f0 [ 125.155272][ T6321] ? __pfx_mt_find+0x10/0x10 [ 125.155326][ T6321] ? __pfx___get_user_pages+0x10/0x10 [ 125.155371][ T6321] populate_vma_page_range+0x278/0x3a0 [ 125.155407][ T6321] ? __pfx_populate_vma_page_range+0x10/0x10 [ 125.155438][ T6321] ? __pfx_find_vma_intersection+0x10/0x10 [ 125.155491][ T6321] ? __pfx_apply_mlockall_flags+0x10/0x10 [ 125.155537][ T6321] __mm_populate+0x1d8/0x380 [ 125.155572][ T6321] ? __pfx___mm_populate+0x10/0x10 [ 125.155608][ T6321] ? up_write+0x1b2/0x520 [ 125.155661][ T6321] __do_sys_mlockall+0x520/0x5c0 [ 125.155704][ T6321] do_syscall_64+0xcd/0x230 [ 125.155756][ T6321] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 125.155788][ T6321] RIP: 0033:0x7f4012f8e969 [ 125.155813][ T6321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 125.155844][ T6321] RSP: 002b:00007f4013df4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000097 [ 125.155873][ T6321] RAX: ffffffffffffffda RBX: 00007f40131b6160 RCX: 00007f4012f8e969 [ 125.155894][ T6321] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 125.155913][ T6321] RBP: 00007f4013df4090 R08: 0000000000000000 R09: 0000000000000000 [ 125.155932][ T6321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 125.155951][ T6321] R13: 0000000000000001 R14: 00007f40131b6160 R15: 00007ffec23cc918 [ 125.155993][ T6321] [ 126.134556][ T6331] FAULT_INJECTION: forcing a failure. [ 126.134556][ T6331] name failslab, interval 1, probability 0, space 0, times 0 [ 126.168797][ T6331] CPU: 0 UID: 0 PID: 6331 Comm: syz.0.103 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 126.168845][ T6331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 126.168865][ T6331] Call Trace: [ 126.168876][ T6331] [ 126.168889][ T6331] dump_stack_lvl+0x16c/0x1f0 [ 126.168943][ T6331] should_fail_ex+0x512/0x640 [ 126.168991][ T6331] ? __kmalloc_noprof+0xbf/0x510 [ 126.169036][ T6331] ? snd_midi_event_new+0xa1/0x210 [ 126.169085][ T6331] should_failslab+0xc2/0x120 [ 126.169129][ T6331] __kmalloc_noprof+0xd2/0x510 [ 126.169178][ T6331] snd_midi_event_new+0xa1/0x210 [ 126.169235][ T6331] snd_virmidi_output_open+0x106/0x670 [ 126.169295][ T6331] open_substream+0x478/0x9b0 [ 126.169334][ T6331] rawmidi_open_priv+0x543/0x6e0 [ 126.169381][ T6331] snd_rawmidi_open+0x4cc/0xbf0 [ 126.169429][ T6331] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 126.169471][ T6331] ? __pfx_default_wake_function+0x10/0x10 [ 126.169512][ T6331] ? do_raw_spin_lock+0x12c/0x2b0 [ 126.169547][ T6331] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 126.169586][ T6331] snd_open+0x1fe/0x450 [ 126.169636][ T6331] ? __pfx_snd_open+0x10/0x10 [ 126.169684][ T6331] chrdev_open+0x231/0x6a0 [ 126.169724][ T6331] ? __pfx_chrdev_open+0x10/0x10 [ 126.169766][ T6331] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 126.169827][ T6331] do_dentry_open+0x741/0x1c10 [ 126.169865][ T6331] ? __pfx_chrdev_open+0x10/0x10 [ 126.169913][ T6331] vfs_open+0x82/0x3f0 [ 126.169968][ T6331] path_openat+0x1e5e/0x2d40 [ 126.170019][ T6331] ? __pfx_path_openat+0x10/0x10 [ 126.170065][ T6331] do_filp_open+0x20b/0x470 [ 126.170100][ T6331] ? __pfx_do_filp_open+0x10/0x10 [ 126.170162][ T6331] ? alloc_fd+0x471/0x7d0 [ 126.170203][ T6331] do_sys_openat2+0x11b/0x1d0 [ 126.170249][ T6331] ? __pfx_do_sys_openat2+0x10/0x10 [ 126.170313][ T6331] __x64_sys_openat+0x174/0x210 [ 126.170362][ T6331] ? __pfx___x64_sys_openat+0x10/0x10 [ 126.170414][ T6331] ? rcu_is_watching+0x12/0xc0 [ 126.170460][ T6331] do_syscall_64+0xcd/0x230 [ 126.170512][ T6331] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.170544][ T6331] RIP: 0033:0x7f16b7f8e969 [ 126.170570][ T6331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 126.170601][ T6331] RSP: 002b:00007f16b8d76038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 126.170630][ T6331] RAX: ffffffffffffffda RBX: 00007f16b81b5fa0 RCX: 00007f16b7f8e969 [ 126.170652][ T6331] RDX: 0000000000000001 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 126.170673][ T6331] RBP: 00007f16b8010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 126.170693][ T6331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 126.170713][ T6331] R13: 0000000000000000 R14: 00007f16b81b5fa0 R15: 00007ffd46129fa8 [ 126.170755][ T6331] [ 128.166646][ T6342] ima: policy update failed [ 128.185624][ T30] audit: type=1802 audit(6040581249.874:9): pid=6342 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.106" res=0 errno=0 [ 128.635178][ T6359] block2mtd: device name too long [ 128.811306][ T6365] FAULT_INJECTION: forcing a failure. [ 128.811306][ T6365] name failslab, interval 1, probability 0, space 0, times 0 [ 128.825138][ T6365] CPU: 0 UID: 0 PID: 6365 Comm: syz.2.113 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 128.825181][ T6365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 128.825199][ T6365] Call Trace: [ 128.825209][ T6365] [ 128.825220][ T6365] dump_stack_lvl+0x16c/0x1f0 [ 128.825271][ T6365] should_fail_ex+0x512/0x640 [ 128.825308][ T6365] ? __kvmalloc_node_noprof+0x122/0x600 [ 128.825351][ T6365] should_failslab+0xc2/0x120 [ 128.825392][ T6365] __kvmalloc_node_noprof+0x135/0x600 [ 128.825429][ T6365] ? io_alloc_cache_init+0x33/0x170 [ 128.825481][ T6365] ? io_alloc_cache_init+0x33/0x170 [ 128.825522][ T6365] io_alloc_cache_init+0x33/0x170 [ 128.825565][ T6365] io_uring_setup+0x680/0x1ff0 [ 128.825603][ T6365] ? __pfx_io_uring_setup+0x10/0x10 [ 128.825633][ T6365] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 128.825684][ T6365] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 128.825736][ T6365] ? __fget_files+0x20e/0x3c0 [ 128.825778][ T6365] ? ksys_write+0x1b9/0x240 [ 128.825810][ T6365] ? __pfx_ksys_write+0x10/0x10 [ 128.825841][ T6365] ? rcu_is_watching+0x12/0xc0 [ 128.825881][ T6365] __x64_sys_io_uring_setup+0xc2/0x170 [ 128.825918][ T6365] do_syscall_64+0xcd/0x230 [ 128.825967][ T6365] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.826005][ T6365] RIP: 0033:0x7fc884f8e969 [ 128.826029][ T6365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 128.826057][ T6365] RSP: 002b:00007fc885d43038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 128.826081][ T6365] RAX: ffffffffffffffda RBX: 00007fc8851b5fa0 RCX: 00007fc884f8e969 [ 128.826098][ T6365] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 128.826114][ T6365] RBP: 00007fc885d43090 R08: 0000000000000000 R09: 0000000000000000 [ 128.826129][ T6365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 128.826144][ T6365] R13: 0000000000000000 R14: 00007fc8851b5fa0 R15: 00007ffffa601aa8 [ 128.826176][ T6365] [ 130.050795][ T6385] FAULT_INJECTION: forcing a failure. [ 130.050795][ T6385] name failslab, interval 1, probability 0, space 0, times 0 [ 130.123549][ T6385] CPU: 1 UID: 0 PID: 6385 Comm: syz.1.116 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 130.123593][ T6385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 130.123611][ T6385] Call Trace: [ 130.123621][ T6385] [ 130.123633][ T6385] dump_stack_lvl+0x16c/0x1f0 [ 130.123691][ T6385] should_fail_ex+0x512/0x640 [ 130.123728][ T6385] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 130.123771][ T6385] should_failslab+0xc2/0x120 [ 130.123814][ T6385] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 130.123854][ T6385] ? __pmd_alloc+0xc3/0x870 [ 130.123910][ T6385] __pmd_alloc+0xc3/0x870 [ 130.123965][ T6385] __handle_mm_fault+0x948/0x2a40 [ 130.124013][ T6385] ? __pfx___handle_mm_fault+0x10/0x10 [ 130.124085][ T6385] handle_mm_fault+0x3fe/0xad0 [ 130.124128][ T6385] __get_user_pages+0x771/0x36f0 [ 130.124170][ T6385] ? __pfx_mt_find+0x10/0x10 [ 130.124221][ T6385] ? __pfx___get_user_pages+0x10/0x10 [ 130.124267][ T6385] populate_vma_page_range+0x278/0x3a0 [ 130.124305][ T6385] ? __pfx_populate_vma_page_range+0x10/0x10 [ 130.124337][ T6385] ? __pfx_find_vma_intersection+0x10/0x10 [ 130.124390][ T6385] ? __pfx_apply_mlockall_flags+0x10/0x10 [ 130.124437][ T6385] __mm_populate+0x1d8/0x380 [ 130.124473][ T6385] ? __pfx___mm_populate+0x10/0x10 [ 130.124509][ T6385] ? up_write+0x1b2/0x520 [ 130.124563][ T6385] __do_sys_mlockall+0x520/0x5c0 [ 130.124606][ T6385] do_syscall_64+0xcd/0x230 [ 130.124657][ T6385] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 130.124694][ T6385] RIP: 0033:0x7fa6ba78e969 [ 130.124719][ T6385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 130.124749][ T6385] RSP: 002b:00007fa6bb5ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000097 [ 130.124779][ T6385] RAX: ffffffffffffffda RBX: 00007fa6ba9b6160 RCX: 00007fa6ba78e969 [ 130.124800][ T6385] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 130.124818][ T6385] RBP: 00007fa6bb5ae090 R08: 0000000000000000 R09: 0000000000000000 [ 130.124837][ T6385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 130.124855][ T6385] R13: 0000000000000001 R14: 00007fa6ba9b6160 R15: 00007fffcc544d08 [ 130.124896][ T6385] [ 131.176516][ T6388] ima: policy update failed [ 131.188798][ T30] audit: type=1802 audit(6040581252.864:10): pid=6388 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.118" res=0 errno=0 [ 132.844478][ T6425] FAULT_INJECTION: forcing a failure. [ 132.844478][ T6425] name failslab, interval 1, probability 0, space 0, times 0 [ 132.875991][ T6425] CPU: 1 UID: 0 PID: 6425 Comm: syz.1.126 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 132.876034][ T6425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 132.876053][ T6425] Call Trace: [ 132.876063][ T6425] [ 132.876074][ T6425] dump_stack_lvl+0x16c/0x1f0 [ 132.876127][ T6425] should_fail_ex+0x512/0x640 [ 132.876164][ T6425] ? __kvmalloc_node_noprof+0x122/0x600 [ 132.876205][ T6425] should_failslab+0xc2/0x120 [ 132.876246][ T6425] __kvmalloc_node_noprof+0x135/0x600 [ 132.876281][ T6425] ? trace_kmalloc+0x2b/0xd0 [ 132.876323][ T6425] ? __kvmalloc_node_noprof+0x296/0x600 [ 132.876357][ T6425] ? io_alloc_cache_init+0x33/0x170 [ 132.876411][ T6425] ? io_alloc_cache_init+0x33/0x170 [ 132.876455][ T6425] io_alloc_cache_init+0x33/0x170 [ 132.876516][ T6425] io_rsrc_cache_init+0x26/0x50 [ 132.876554][ T6425] io_uring_setup+0x68b/0x1ff0 [ 132.876589][ T6425] ? __pfx_io_uring_setup+0x10/0x10 [ 132.876618][ T6425] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 132.876673][ T6425] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 132.876721][ T6425] ? __fget_files+0x20e/0x3c0 [ 132.876762][ T6425] ? ksys_write+0x1b9/0x240 [ 132.876793][ T6425] ? __pfx_ksys_write+0x10/0x10 [ 132.876823][ T6425] ? rcu_is_watching+0x12/0xc0 [ 132.876861][ T6425] __x64_sys_io_uring_setup+0xc2/0x170 [ 132.876896][ T6425] do_syscall_64+0xcd/0x230 [ 132.876943][ T6425] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 132.876974][ T6425] RIP: 0033:0x7fa6ba78e969 [ 132.876998][ T6425] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 132.877027][ T6425] RSP: 002b:00007fa6bb5f0038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 132.877055][ T6425] RAX: ffffffffffffffda RBX: 00007fa6ba9b5fa0 RCX: 00007fa6ba78e969 [ 132.877076][ T6425] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 132.877093][ T6425] RBP: 00007fa6bb5f0090 R08: 0000000000000000 R09: 0000000000000000 [ 132.877112][ T6425] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 132.877129][ T6425] R13: 0000000000000000 R14: 00007fa6ba9b5fa0 R15: 00007fffcc544d08 [ 132.877168][ T6425] [ 134.879248][ T6444] ima: policy update failed [ 134.888210][ T30] audit: type=1802 audit(6040581256.564:11): pid=6444 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.130" res=0 errno=0 [ 135.381946][ T6465] : Can't lookup blockdev [ 136.156756][ T6476] FAULT_INJECTION: forcing a failure. [ 136.156756][ T6476] name failslab, interval 1, probability 0, space 0, times 0 [ 136.212155][ T6476] CPU: 0 UID: 0 PID: 6476 Comm: syz.1.138 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 136.212204][ T6476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 136.212223][ T6476] Call Trace: [ 136.212234][ T6476] [ 136.212246][ T6476] dump_stack_lvl+0x16c/0x1f0 [ 136.212302][ T6476] should_fail_ex+0x512/0x640 [ 136.212341][ T6476] ? __kvmalloc_node_noprof+0x122/0x600 [ 136.212382][ T6476] should_failslab+0xc2/0x120 [ 136.212425][ T6476] __kvmalloc_node_noprof+0x135/0x600 [ 136.212461][ T6476] ? trace_kmalloc+0x2b/0xd0 [ 136.212503][ T6476] ? __kvmalloc_node_noprof+0x296/0x600 [ 136.212536][ T6476] ? io_alloc_cache_init+0x33/0x170 [ 136.212589][ T6476] ? io_alloc_cache_init+0x33/0x170 [ 136.212633][ T6476] io_alloc_cache_init+0x33/0x170 [ 136.212682][ T6476] io_rsrc_cache_init+0x26/0x50 [ 136.212721][ T6476] io_uring_setup+0x68b/0x1ff0 [ 136.212758][ T6476] ? __pfx_io_uring_setup+0x10/0x10 [ 136.212787][ T6476] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 136.212839][ T6476] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 136.212892][ T6476] ? __fget_files+0x20e/0x3c0 [ 136.212934][ T6476] ? ksys_write+0x1b9/0x240 [ 136.212966][ T6476] ? __pfx_ksys_write+0x10/0x10 [ 136.212997][ T6476] ? rcu_is_watching+0x12/0xc0 [ 136.213037][ T6476] __x64_sys_io_uring_setup+0xc2/0x170 [ 136.213072][ T6476] do_syscall_64+0xcd/0x230 [ 136.213129][ T6476] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 136.213161][ T6476] RIP: 0033:0x7fa6ba78e969 [ 136.213184][ T6476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 136.213216][ T6476] RSP: 002b:00007fa6bb5f0038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 136.213245][ T6476] RAX: ffffffffffffffda RBX: 00007fa6ba9b5fa0 RCX: 00007fa6ba78e969 [ 136.213267][ T6476] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 136.213285][ T6476] RBP: 00007fa6bb5f0090 R08: 0000000000000000 R09: 0000000000000000 [ 136.213304][ T6476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 136.213322][ T6476] R13: 0000000000000000 R14: 00007fa6ba9b5fa0 R15: 00007fffcc544d08 [ 136.213362][ T6476] [ 136.953703][ T6484] sp0: Synchronizing with TNC [ 137.045163][ T6493] nvme_fabrics: missing parameter 'transport=%s' [ 137.095709][ T6493] nvme_fabrics: missing parameter 'nqn=%s' [ 137.128963][ T6496] nvme_fabrics: unknown parameter or missing value 'À' in ctrl creation request [ 137.517629][ T6489] ima: policy update failed [ 137.533164][ T30] audit: type=1802 audit(6040581259.214:12): pid=6489 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.143" res=0 errno=0 [ 137.972998][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 137.983049][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 138.457634][ T6524] FAULT_INJECTION: forcing a failure. [ 138.457634][ T6524] name failslab, interval 1, probability 0, space 0, times 0 [ 138.482645][ T6524] CPU: 1 UID: 0 PID: 6524 Comm: syz.1.151 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 138.482689][ T6524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 138.482706][ T6524] Call Trace: [ 138.482716][ T6524] [ 138.482727][ T6524] dump_stack_lvl+0x16c/0x1f0 [ 138.482777][ T6524] should_fail_ex+0x512/0x640 [ 138.482813][ T6524] ? __kvmalloc_node_noprof+0x122/0x600 [ 138.482852][ T6524] should_failslab+0xc2/0x120 [ 138.482891][ T6524] __kvmalloc_node_noprof+0x135/0x600 [ 138.482927][ T6524] ? trace_kmem_cache_alloc+0x20/0xc0 [ 138.482979][ T6524] ? io_alloc_cache_init+0x33/0x170 [ 138.483031][ T6524] ? io_alloc_cache_init+0x33/0x170 [ 138.483073][ T6524] io_alloc_cache_init+0x33/0x170 [ 138.483121][ T6524] io_rsrc_cache_init+0x40/0x50 [ 138.483159][ T6524] io_uring_setup+0x68b/0x1ff0 [ 138.483196][ T6524] ? __pfx_io_uring_setup+0x10/0x10 [ 138.483226][ T6524] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 138.483280][ T6524] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 138.483333][ T6524] ? __fget_files+0x20e/0x3c0 [ 138.483375][ T6524] ? ksys_write+0x1b9/0x240 [ 138.483407][ T6524] ? __pfx_ksys_write+0x10/0x10 [ 138.483438][ T6524] ? rcu_is_watching+0x12/0xc0 [ 138.483479][ T6524] __x64_sys_io_uring_setup+0xc2/0x170 [ 138.483514][ T6524] do_syscall_64+0xcd/0x230 [ 138.483564][ T6524] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 138.483597][ T6524] RIP: 0033:0x7fa6ba78e969 [ 138.483621][ T6524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 138.483651][ T6524] RSP: 002b:00007fa6bb5f0038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 138.483680][ T6524] RAX: ffffffffffffffda RBX: 00007fa6ba9b5fa0 RCX: 00007fa6ba78e969 [ 138.483701][ T6524] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 138.483720][ T6524] RBP: 00007fa6bb5f0090 R08: 0000000000000000 R09: 0000000000000000 [ 138.483738][ T6524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 138.483757][ T6524] R13: 0000000000000000 R14: 00007fa6ba9b5fa0 R15: 00007fffcc544d08 [ 138.483797][ T6524] [ 138.777045][ T6526] netlink: 'syz.3.152': attribute type 2 has an invalid length. [ 139.099913][ T6530] nvme_fabrics: missing parameter 'transport=%s' [ 139.107863][ T6530] nvme_fabrics: missing parameter 'nqn=%s' [ 139.190430][ T6536] nvme_fabrics: missing parameter 'transport=%s' [ 139.206252][ T6536] nvme_fabrics: missing parameter 'nqn=%s' [ 139.434705][ T6541] nvme_fabrics: missing parameter 'transport=%s' [ 139.445516][ T6541] nvme_fabrics: missing parameter 'nqn=%s' [ 140.033430][ T6535] ima: policy update failed [ 140.046480][ T30] audit: type=1802 audit(6040581261.734:13): pid=6535 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.155" res=0 errno=0 [ 141.288675][ T6572] netlink: 28 bytes leftover after parsing attributes in process `syz.2.164'. [ 141.574760][ T6577] nvme_fabrics: missing parameter 'transport=%s' [ 141.601356][ T6577] nvme_fabrics: missing parameter 'nqn=%s' [ 141.772079][ T6579] nvme_fabrics: missing parameter 'transport=%s' [ 141.798865][ T6579] nvme_fabrics: missing parameter 'nqn=%s' [ 141.825873][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 141.936110][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 142.045386][ T5152] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 142.464192][ T6592] ima: policy update failed [ 142.471075][ T30] audit: type=1802 audit(6040581264.154:14): pid=6592 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.168" res=0 errno=0 [ 143.373980][ T6619] netlink: 28 bytes leftover after parsing attributes in process `syz.1.175'. [ 143.421926][ T6619] veth1_macvtap: left promiscuous mode [ 143.758418][ T6628] nvme_fabrics: missing parameter 'transport=%s' [ 143.770218][ T6628] nvme_fabrics: missing parameter 'nqn=%s' [ 143.931392][ T6631] nvme_fabrics: missing parameter 'transport=%s' [ 143.950479][ T6631] nvme_fabrics: missing parameter 'nqn=%s' [ 144.459517][ T6637] ima: policy update failed [ 144.464341][ T30] audit: type=1802 audit(6040581266.144:15): pid=6637 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.181" res=0 errno=0 [ 145.649244][ T6675] netlink: 504 bytes leftover after parsing attributes in process `syz.1.192'. [ 145.780381][ T6671] netlink: Conntrack attr type has unexpected length (type=3, length=0, expected=8) [ 146.792251][ T6688] netlink: 8 bytes leftover after parsing attributes in process `syz.3.196'. [ 147.072834][ T6684] ima: policy update failed [ 147.117982][ T30] audit: type=1802 audit(6040581268.804:16): pid=6684 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.195" res=0 errno=0 [ 147.329134][ T6706] FAULT_INJECTION: forcing a failure. [ 147.329134][ T6706] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 147.352607][ T6706] CPU: 1 UID: 0 PID: 6706 Comm: syz.1.201 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 147.352652][ T6706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 147.352669][ T6706] Call Trace: [ 147.352679][ T6706] [ 147.352690][ T6706] dump_stack_lvl+0x16c/0x1f0 [ 147.352741][ T6706] should_fail_ex+0x512/0x640 [ 147.352784][ T6706] _copy_to_user+0x32/0xd0 [ 147.352827][ T6706] io_uring_setup+0x1450/0x1ff0 [ 147.352865][ T6706] ? __pfx_io_uring_setup+0x10/0x10 [ 147.352895][ T6706] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 147.352954][ T6706] ? __fget_files+0x20e/0x3c0 [ 147.352995][ T6706] ? ksys_write+0x1b9/0x240 [ 147.353046][ T6706] ? __pfx_ksys_write+0x10/0x10 [ 147.353095][ T6706] ? rcu_is_watching+0x12/0xc0 [ 147.353136][ T6706] __x64_sys_io_uring_setup+0xc2/0x170 [ 147.353184][ T6706] do_syscall_64+0xcd/0x230 [ 147.353234][ T6706] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 147.353267][ T6706] RIP: 0033:0x7fa6ba78e969 [ 147.353291][ T6706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 147.353321][ T6706] RSP: 002b:00007fa6bb5f0038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 147.353350][ T6706] RAX: ffffffffffffffda RBX: 00007fa6ba9b5fa0 RCX: 00007fa6ba78e969 [ 147.353372][ T6706] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 147.353389][ T6706] RBP: 00007fa6bb5f0090 R08: 0000000000000000 R09: 0000000000000000 [ 147.353409][ T6706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 147.353427][ T6706] R13: 0000000000000000 R14: 00007fa6ba9b5fa0 R15: 00007fffcc544d08 [ 147.353467][ T6706] [ 147.967600][ T6711] mmap: syz.1.202 (6711) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 149.233713][ T6740] FAULT_INJECTION: forcing a failure. [ 149.233713][ T6740] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 149.247079][ T6740] CPU: 1 UID: 0 PID: 6740 Comm: syz.2.211 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 149.247120][ T6740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 149.247138][ T6740] Call Trace: [ 149.247147][ T6740] [ 149.247159][ T6740] dump_stack_lvl+0x16c/0x1f0 [ 149.247209][ T6740] should_fail_ex+0x512/0x640 [ 149.247253][ T6740] _copy_to_user+0x32/0xd0 [ 149.247299][ T6740] io_uring_setup+0x1450/0x1ff0 [ 149.247336][ T6740] ? __pfx_io_uring_setup+0x10/0x10 [ 149.247367][ T6740] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 149.247428][ T6740] ? __fget_files+0x20e/0x3c0 [ 149.247470][ T6740] ? ksys_write+0x1b9/0x240 [ 149.247502][ T6740] ? __pfx_ksys_write+0x10/0x10 [ 149.247533][ T6740] ? rcu_is_watching+0x12/0xc0 [ 149.247574][ T6740] __x64_sys_io_uring_setup+0xc2/0x170 [ 149.247610][ T6740] do_syscall_64+0xcd/0x230 [ 149.247659][ T6740] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.247690][ T6740] RIP: 0033:0x7fc884f8e969 [ 149.247719][ T6740] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 149.247760][ T6740] RSP: 002b:00007fc885d43038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 149.247787][ T6740] RAX: ffffffffffffffda RBX: 00007fc8851b5fa0 RCX: 00007fc884f8e969 [ 149.247807][ T6740] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 149.247824][ T6740] RBP: 00007fc885d43090 R08: 0000000000000000 R09: 0000000000000000 [ 149.247842][ T6740] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 149.247859][ T6740] R13: 0000000000000000 R14: 00007fc8851b5fa0 R15: 00007ffffa601aa8 [ 149.247897][ T6740] [ 149.423575][ C1] vkms_vblank_simulate: vblank timer overrun [ 149.901702][ T6732] ima: policy update failed [ 149.906729][ T30] audit: type=1802 audit(6040581271.594:17): pid=6732 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.208" res=0 errno=0 [ 150.303994][ T6766] Console: switching to colour VGA+ 80x25 [ 150.976927][ T6781] FAULT_INJECTION: forcing a failure. [ 150.976927][ T6781] name failslab, interval 1, probability 0, space 0, times 0 [ 151.015675][ T6781] CPU: 1 UID: 0 PID: 6781 Comm: syz.1.221 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 151.015720][ T6781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 151.015738][ T6781] Call Trace: [ 151.015749][ T6781] [ 151.015760][ T6781] dump_stack_lvl+0x16c/0x1f0 [ 151.015810][ T6781] should_fail_ex+0x512/0x640 [ 151.015846][ T6781] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 151.015891][ T6781] should_failslab+0xc2/0x120 [ 151.015933][ T6781] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 151.015974][ T6781] ? alloc_inode+0xc3/0x240 [ 151.016021][ T6781] alloc_inode+0xc3/0x240 [ 151.016062][ T6781] alloc_anon_inode+0x28/0x3e0 [ 151.016096][ T6781] __anon_inode_getfile+0x1ea/0x370 [ 151.016134][ T6781] io_uring_setup+0x14cf/0x1ff0 [ 151.016179][ T6781] ? __pfx_io_uring_setup+0x10/0x10 [ 151.016208][ T6781] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 151.016267][ T6781] ? __fget_files+0x20e/0x3c0 [ 151.016310][ T6781] ? ksys_write+0x1b9/0x240 [ 151.016343][ T6781] ? __pfx_ksys_write+0x10/0x10 [ 151.016373][ T6781] ? rcu_is_watching+0x12/0xc0 [ 151.016414][ T6781] __x64_sys_io_uring_setup+0xc2/0x170 [ 151.016450][ T6781] do_syscall_64+0xcd/0x230 [ 151.016500][ T6781] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 151.016532][ T6781] RIP: 0033:0x7fa6ba78e969 [ 151.016557][ T6781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 151.016587][ T6781] RSP: 002b:00007fa6bb5f0038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 151.016616][ T6781] RAX: ffffffffffffffda RBX: 00007fa6ba9b5fa0 RCX: 00007fa6ba78e969 [ 151.016637][ T6781] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 151.016655][ T6781] RBP: 00007fa6bb5f0090 R08: 0000000000000000 R09: 0000000000000000 [ 151.016674][ T6781] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 151.016693][ T6781] R13: 0000000000000000 R14: 00007fa6ba9b5fa0 R15: 00007fffcc544d08 [ 151.016732][ T6781] [ 151.224124][ C1] vkms_vblank_simulate: vblank timer overrun [ 151.919260][ T6795] ima: policy update failed [ 151.924490][ T30] audit: type=1802 audit(6040581273.604:18): pid=6795 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.225" res=0 errno=0 [ 154.806479][ T6836] FAULT_INJECTION: forcing a failure. [ 154.806479][ T6836] name failslab, interval 1, probability 0, space 0, times 0 [ 154.855385][ T6836] CPU: 1 UID: 0 PID: 6836 Comm: syz.2.232 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 154.855429][ T6836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 154.855447][ T6836] Call Trace: [ 154.855456][ T6836] [ 154.855468][ T6836] dump_stack_lvl+0x16c/0x1f0 [ 154.855517][ T6836] should_fail_ex+0x512/0x640 [ 154.855553][ T6836] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 154.855595][ T6836] should_failslab+0xc2/0x120 [ 154.855647][ T6836] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 154.855683][ T6836] ? __d_alloc+0x31/0xaa0 [ 154.855720][ T6836] __d_alloc+0x31/0xaa0 [ 154.855750][ T6836] ? security_inode_alloc+0x3b/0x2b0 [ 154.855794][ T6836] d_alloc_pseudo+0x1c/0xc0 [ 154.855835][ T6836] alloc_file_pseudo+0xcf/0x230 [ 154.855879][ T6836] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 154.855928][ T6836] __anon_inode_getfile+0xf7/0x370 [ 154.855964][ T6836] io_uring_setup+0x14cf/0x1ff0 [ 154.855998][ T6836] ? __pfx_io_uring_setup+0x10/0x10 [ 154.856025][ T6836] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 154.856080][ T6836] ? __fget_files+0x20e/0x3c0 [ 154.856119][ T6836] ? ksys_write+0x1b9/0x240 [ 154.856148][ T6836] ? __pfx_ksys_write+0x10/0x10 [ 154.856176][ T6836] ? rcu_is_watching+0x12/0xc0 [ 154.856214][ T6836] __x64_sys_io_uring_setup+0xc2/0x170 [ 154.856247][ T6836] do_syscall_64+0xcd/0x230 [ 154.856291][ T6836] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 154.856320][ T6836] RIP: 0033:0x7fc884f8e969 [ 154.856341][ T6836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 154.856368][ T6836] RSP: 002b:00007fc885d43038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 154.856394][ T6836] RAX: ffffffffffffffda RBX: 00007fc8851b5fa0 RCX: 00007fc884f8e969 [ 154.856413][ T6836] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 154.856428][ T6836] RBP: 00007fc885d43090 R08: 0000000000000000 R09: 0000000000000000 [ 154.856445][ T6836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 154.856462][ T6836] R13: 0000000000000000 R14: 00007fc8851b5fa0 R15: 00007ffffa601aa8 [ 154.856498][ T6836] [ 156.541749][ T6860] netlink: 28 bytes leftover after parsing attributes in process `syz.3.238'. [ 156.636130][ T6861] netlink: 334 bytes leftover after parsing attributes in process `syz.3.238'. [ 156.650154][ T6852] ima: policy update failed [ 156.654880][ T30] audit: type=1802 audit(6040581278.334:19): pid=6852 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.236" res=0 errno=0 [ 156.715835][ T6860] bond0: (slave bond_slave_1): Releasing backup interface [ 157.333735][ T6877] FAULT_INJECTION: forcing a failure. [ 157.333735][ T6877] name failslab, interval 1, probability 0, space 0, times 0 [ 157.395441][ T6877] CPU: 0 UID: 0 PID: 6877 Comm: syz.1.243 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 157.395486][ T6877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 157.395505][ T6877] Call Trace: [ 157.395515][ T6877] [ 157.395526][ T6877] dump_stack_lvl+0x16c/0x1f0 [ 157.395576][ T6877] should_fail_ex+0x512/0x640 [ 157.395613][ T6877] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 157.395655][ T6877] should_failslab+0xc2/0x120 [ 157.395696][ T6877] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 157.395735][ T6877] ? __d_alloc+0x31/0xaa0 [ 157.395775][ T6877] __d_alloc+0x31/0xaa0 [ 157.395807][ T6877] ? security_inode_alloc+0x3b/0x2b0 [ 157.395848][ T6877] d_alloc_pseudo+0x1c/0xc0 [ 157.395894][ T6877] alloc_file_pseudo+0xcf/0x230 [ 157.395939][ T6877] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 157.395994][ T6877] __anon_inode_getfile+0xf7/0x370 [ 157.396033][ T6877] io_uring_setup+0x14cf/0x1ff0 [ 157.396071][ T6877] ? __pfx_io_uring_setup+0x10/0x10 [ 157.396100][ T6877] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 157.396161][ T6877] ? __fget_files+0x20e/0x3c0 [ 157.396202][ T6877] ? ksys_write+0x1b9/0x240 [ 157.396234][ T6877] ? __pfx_ksys_write+0x10/0x10 [ 157.396265][ T6877] ? rcu_is_watching+0x12/0xc0 [ 157.396305][ T6877] __x64_sys_io_uring_setup+0xc2/0x170 [ 157.396348][ T6877] do_syscall_64+0xcd/0x230 [ 157.396397][ T6877] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 157.396429][ T6877] RIP: 0033:0x7fa6ba78e969 [ 157.396452][ T6877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 157.396482][ T6877] RSP: 002b:00007fa6bb5f0038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 157.396512][ T6877] RAX: ffffffffffffffda RBX: 00007fa6ba9b5fa0 RCX: 00007fa6ba78e969 [ 157.396532][ T6877] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 157.396550][ T6877] RBP: 00007fa6bb5f0090 R08: 0000000000000000 R09: 0000000000000000 [ 157.396569][ T6877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 157.396588][ T6877] R13: 0000000000000000 R14: 00007fa6ba9b5fa0 R15: 00007fffcc544d08 [ 157.396627][ T6877] [ 158.272417][ T6894] tty tty53: ldisc open failed (-12), clearing slot 52 [ 159.412460][ T6900] ima: policy update failed [ 159.431376][ T30] audit: type=1802 audit(6040581281.114:20): pid=6900 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.249" res=0 errno=0 [ 159.521761][ T6922] FAULT_INJECTION: forcing a failure. [ 159.521761][ T6922] name failslab, interval 1, probability 0, space 0, times 0 [ 159.534856][ T6922] CPU: 1 UID: 0 PID: 6922 Comm: syz.3.254 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 159.534898][ T6922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 159.534916][ T6922] Call Trace: [ 159.534926][ T6922] [ 159.534937][ T6922] dump_stack_lvl+0x16c/0x1f0 [ 159.534987][ T6922] should_fail_ex+0x512/0x640 [ 159.535024][ T6922] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 159.535066][ T6922] should_failslab+0xc2/0x120 [ 159.535108][ T6922] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 159.535148][ T6922] ? security_file_alloc+0x34/0x2b0 [ 159.535204][ T6922] security_file_alloc+0x34/0x2b0 [ 159.535248][ T6922] init_file+0x93/0x4c0 [ 159.535288][ T6922] alloc_empty_file+0x73/0x1e0 [ 159.535338][ T6922] alloc_file_pseudo+0x13a/0x230 [ 159.535384][ T6922] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 159.535440][ T6922] __anon_inode_getfile+0xf7/0x370 [ 159.535481][ T6922] io_uring_setup+0x14cf/0x1ff0 [ 159.535519][ T6922] ? __pfx_io_uring_setup+0x10/0x10 [ 159.535548][ T6922] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 159.535606][ T6922] ? __fget_files+0x20e/0x3c0 [ 159.535648][ T6922] ? ksys_write+0x1b9/0x240 [ 159.535680][ T6922] ? __pfx_ksys_write+0x10/0x10 [ 159.535712][ T6922] ? rcu_is_watching+0x12/0xc0 [ 159.535753][ T6922] __x64_sys_io_uring_setup+0xc2/0x170 [ 159.535790][ T6922] do_syscall_64+0xcd/0x230 [ 159.535838][ T6922] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 159.535871][ T6922] RIP: 0033:0x7f4012f8e969 [ 159.535895][ T6922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 159.535925][ T6922] RSP: 002b:00007f4013e36038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 159.535954][ T6922] RAX: ffffffffffffffda RBX: 00007f40131b5fa0 RCX: 00007f4012f8e969 [ 159.535974][ T6922] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 159.535993][ T6922] RBP: 00007f4013e36090 R08: 0000000000000000 R09: 0000000000000000 [ 159.536012][ T6922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 159.536030][ T6922] R13: 0000000000000000 R14: 00007f40131b5fa0 R15: 00007ffec23cc918 [ 159.536070][ T6922] [ 161.692196][ T6968] FAULT_INJECTION: forcing a failure. [ 161.692196][ T6968] name failslab, interval 1, probability 0, space 0, times 0 [ 161.745201][ T6968] CPU: 1 UID: 0 PID: 6968 Comm: syz.1.265 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 161.745248][ T6968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 161.745266][ T6968] Call Trace: [ 161.745277][ T6968] [ 161.745288][ T6968] dump_stack_lvl+0x16c/0x1f0 [ 161.745343][ T6968] should_fail_ex+0x512/0x640 [ 161.745380][ T6968] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 161.745416][ T6968] should_failslab+0xc2/0x120 [ 161.745458][ T6968] __kmalloc_cache_noprof+0x6a/0x3e0 [ 161.745489][ T6968] ? lockdep_init_map_type+0x5c/0x280 [ 161.745534][ T6968] ? io_uring_alloc_task_context+0xa1/0x690 [ 161.745586][ T6968] io_uring_alloc_task_context+0xa1/0x690 [ 161.745631][ T6968] ? file_init_path+0x4fe/0x760 [ 161.745673][ T6968] ? __pfx_io_uring_alloc_task_context+0x10/0x10 [ 161.745722][ T6968] ? alloc_file_pseudo+0x1b3/0x230 [ 161.745767][ T6968] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 161.745816][ T6968] __io_uring_add_tctx_node+0x2dd/0x500 [ 161.745861][ T6968] ? __pfx___io_uring_add_tctx_node+0x10/0x10 [ 161.745908][ T6968] ? __anon_inode_getfile+0x18b/0x370 [ 161.745952][ T6968] io_uring_setup+0x14fb/0x1ff0 [ 161.745989][ T6968] ? __pfx_io_uring_setup+0x10/0x10 [ 161.746018][ T6968] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 161.746077][ T6968] ? __fget_files+0x20e/0x3c0 [ 161.746118][ T6968] ? ksys_write+0x1b9/0x240 [ 161.746151][ T6968] ? __pfx_ksys_write+0x10/0x10 [ 161.746182][ T6968] ? rcu_is_watching+0x12/0xc0 [ 161.746221][ T6968] __x64_sys_io_uring_setup+0xc2/0x170 [ 161.746256][ T6968] do_syscall_64+0xcd/0x230 [ 161.746305][ T6968] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 161.746337][ T6968] RIP: 0033:0x7fa6ba78e969 [ 161.746360][ T6968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 161.746389][ T6968] RSP: 002b:00007fa6bb5f0038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 161.746417][ T6968] RAX: ffffffffffffffda RBX: 00007fa6ba9b5fa0 RCX: 00007fa6ba78e969 [ 161.746437][ T6968] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 161.746455][ T6968] RBP: 00007fa6bb5f0090 R08: 0000000000000000 R09: 0000000000000000 [ 161.746474][ T6968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 161.746493][ T6968] R13: 0000000000000000 R14: 00007fa6ba9b5fa0 R15: 00007fffcc544d08 [ 161.746533][ T6968] [ 162.064482][ T6959] ima: policy update failed [ 162.100034][ T30] audit: type=1802 audit(6040581283.754:21): pid=6959 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.263" res=0 errno=0 [ 162.999206][ T6999] netlink: 346 bytes leftover after parsing attributes in process `syz.1.273'. [ 163.845212][ T7017] FAULT_INJECTION: forcing a failure. [ 163.845212][ T7017] name failslab, interval 1, probability 0, space 0, times 0 [ 163.875000][ T7017] CPU: 1 UID: 0 PID: 7017 Comm: syz.1.278 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 163.875045][ T7017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 163.875063][ T7017] Call Trace: [ 163.875072][ T7017] [ 163.875083][ T7017] dump_stack_lvl+0x16c/0x1f0 [ 163.875133][ T7017] should_fail_ex+0x512/0x640 [ 163.875169][ T7017] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 163.875206][ T7017] should_failslab+0xc2/0x120 [ 163.875249][ T7017] __kmalloc_cache_noprof+0x6a/0x3e0 [ 163.875282][ T7017] ? lockdep_init_map_type+0x5c/0x280 [ 163.875330][ T7017] ? io_uring_alloc_task_context+0xa1/0x690 [ 163.875383][ T7017] io_uring_alloc_task_context+0xa1/0x690 [ 163.875428][ T7017] ? file_init_path+0x4fe/0x760 [ 163.875469][ T7017] ? __pfx_io_uring_alloc_task_context+0x10/0x10 [ 163.875519][ T7017] ? alloc_file_pseudo+0x1b3/0x230 [ 163.875566][ T7017] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 163.875615][ T7017] __io_uring_add_tctx_node+0x2dd/0x500 [ 163.875662][ T7017] ? __pfx___io_uring_add_tctx_node+0x10/0x10 [ 163.875710][ T7017] ? __anon_inode_getfile+0x18b/0x370 [ 163.875748][ T7017] io_uring_setup+0x14fb/0x1ff0 [ 163.875794][ T7017] ? __pfx_io_uring_setup+0x10/0x10 [ 163.875825][ T7017] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 163.875886][ T7017] ? __fget_files+0x20e/0x3c0 [ 163.875929][ T7017] ? ksys_write+0x1b9/0x240 [ 163.875962][ T7017] ? __pfx_ksys_write+0x10/0x10 [ 163.875993][ T7017] ? rcu_is_watching+0x12/0xc0 [ 163.876034][ T7017] __x64_sys_io_uring_setup+0xc2/0x170 [ 163.876070][ T7017] do_syscall_64+0xcd/0x230 [ 163.876121][ T7017] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 163.876153][ T7017] RIP: 0033:0x7fa6ba78e969 [ 163.876178][ T7017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 163.876208][ T7017] RSP: 002b:00007fa6bb5f0038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 163.876237][ T7017] RAX: ffffffffffffffda RBX: 00007fa6ba9b5fa0 RCX: 00007fa6ba78e969 [ 163.876258][ T7017] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 163.876277][ T7017] RBP: 00007fa6bb5f0090 R08: 0000000000000000 R09: 0000000000000000 [ 163.876296][ T7017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 163.876314][ T7017] R13: 0000000000000000 R14: 00007fa6ba9b5fa0 R15: 00007fffcc544d08 [ 163.876355][ T7017] [ 164.658966][ T7016] ima: policy update failed [ 164.684215][ T30] audit: type=1802 audit(6040581286.364:22): pid=7016 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.277" res=0 errno=0 [ 165.280764][ T7035] FAULT_INJECTION: forcing a failure. [ 165.280764][ T7035] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 165.326752][ T7035] CPU: 0 UID: 0 PID: 7035 Comm: syz.1.283 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 165.326803][ T7035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 165.326823][ T7035] Call Trace: [ 165.326834][ T7035] [ 165.326846][ T7035] dump_stack_lvl+0x16c/0x1f0 [ 165.326910][ T7035] should_fail_ex+0x512/0x640 [ 165.326956][ T7035] _copy_from_user+0x2e/0xd0 [ 165.327000][ T7035] restore_altstack+0x93/0x170 [ 165.327051][ T7035] ? __pfx_restore_altstack+0x10/0x10 [ 165.327104][ T7035] ? _raw_spin_unlock_irq+0x23/0x50 [ 165.327146][ T7035] ? lockdep_hardirqs_on+0x7c/0x110 [ 165.327192][ T7035] ? _raw_spin_unlock_irq+0x2e/0x50 [ 165.327232][ T7035] ? set_current_blocked+0xdd/0x120 [ 165.327270][ T7035] __do_sys_rt_sigreturn+0x13c/0x230 [ 165.327322][ T7035] ? __pfx___do_sys_rt_sigreturn+0x10/0x10 [ 165.327384][ T7035] do_syscall_64+0xcd/0x230 [ 165.327436][ T7035] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.327470][ T7035] RIP: 0033:0x7fa6ba72ab39 [ 165.327496][ T7035] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25 [ 165.327528][ T7035] RSP: 002b:00007fa6bb5efa80 EFLAGS: 00000202 ORIG_RAX: 000000000000000f [ 165.327560][ T7035] RAX: ffffffffffffffda RBX: 00007fa6ba9b5fa0 RCX: 00007fa6ba72ab39 [ 165.327581][ T7035] RDX: 00007fa6bb5efa80 RSI: 00007fa6bb5efbb0 RDI: 0000000000000021 [ 165.327602][ T7035] RBP: 00007fa6ba810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 165.327622][ T7035] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000 [ 165.327641][ T7035] R13: 0000000000000000 R14: 00007fa6ba9b5fa0 R15: 00007fffcc544d08 [ 165.327683][ T7035] [ 167.040809][ T7044] ubi0: attaching mtd0 [ 167.047692][ T7044] ubi0: scanning is finished [ 167.052406][ T7044] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 167.281093][ T7044] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 168.070335][ T7057] FAULT_INJECTION: forcing a failure. [ 168.070335][ T7057] name failslab, interval 1, probability 0, space 0, times 0 [ 168.072884][ T7053] ima: policy update failed [ 168.103474][ T7057] CPU: 0 UID: 0 PID: 7057 Comm: syz.0.290 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 168.103520][ T7057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 168.103539][ T7057] Call Trace: [ 168.103548][ T7057] [ 168.103561][ T7057] dump_stack_lvl+0x16c/0x1f0 [ 168.103613][ T7057] should_fail_ex+0x512/0x640 [ 168.103650][ T7057] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 168.103688][ T7057] should_failslab+0xc2/0x120 [ 168.103731][ T7057] __kmalloc_cache_noprof+0x6a/0x3e0 [ 168.103765][ T7057] ? io_wq_create+0xcc/0xa30 [ 168.103815][ T7057] io_wq_create+0xcc/0xa30 [ 168.103850][ T7057] io_uring_alloc_task_context+0x211/0x690 [ 168.103900][ T7057] ? __pfx_io_uring_alloc_task_context+0x10/0x10 [ 168.103946][ T7057] ? __pfx_io_wq_submit_work+0x10/0x10 [ 168.103975][ T7057] ? __pfx_io_wq_free_work+0x10/0x10 [ 168.104001][ T7057] ? alloc_file_pseudo+0x1b3/0x230 [ 168.104048][ T7057] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 168.104095][ T7057] __io_uring_add_tctx_node+0x2dd/0x500 [ 168.104141][ T7057] ? __pfx___io_uring_add_tctx_node+0x10/0x10 [ 168.104187][ T7057] ? __anon_inode_getfile+0x18b/0x370 [ 168.104225][ T7057] io_uring_setup+0x14fb/0x1ff0 [ 168.104261][ T7057] ? __pfx_io_uring_setup+0x10/0x10 [ 168.104290][ T7057] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 168.104348][ T7057] ? __fget_files+0x20e/0x3c0 [ 168.104396][ T7057] ? ksys_write+0x1b9/0x240 [ 168.104428][ T7057] ? __pfx_ksys_write+0x10/0x10 [ 168.104458][ T7057] ? rcu_is_watching+0x12/0xc0 [ 168.104499][ T7057] __x64_sys_io_uring_setup+0xc2/0x170 [ 168.104534][ T7057] do_syscall_64+0xcd/0x230 [ 168.104603][ T7057] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 168.104635][ T7057] RIP: 0033:0x7f16b7f8e969 [ 168.104659][ T7057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 168.104689][ T7057] RSP: 002b:00007f16b8d76038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 168.104731][ T7057] RAX: ffffffffffffffda RBX: 00007f16b81b5fa0 RCX: 00007f16b7f8e969 [ 168.104751][ T7057] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 168.104769][ T7057] RBP: 00007f16b8d76090 R08: 0000000000000000 R09: 0000000000000000 [ 168.104788][ T7057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 168.104805][ T7057] R13: 0000000000000000 R14: 00007f16b81b5fa0 R15: 00007ffd46129fa8 [ 168.104844][ T7057] [ 168.155403][ T30] audit: type=1802 audit(6040581289.794:23): pid=7053 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.289" res=0 errno=0 [ 168.595575][ T7068] kAFS: Invalid Command on /proc/fs/afs/cells file [ 169.061933][ T5152] Bluetooth: hci2: Malformed LE Event: 0x1d [ 170.637003][ T7108] FAULT_INJECTION: forcing a failure. [ 170.637003][ T7108] name failslab, interval 1, probability 0, space 0, times 0 [ 170.686317][ T7108] CPU: 0 UID: 0 PID: 7108 Comm: syz.0.303 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 170.686363][ T7108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 170.686380][ T7108] Call Trace: [ 170.686390][ T7108] [ 170.686402][ T7108] dump_stack_lvl+0x16c/0x1f0 [ 170.686454][ T7108] should_fail_ex+0x512/0x640 [ 170.686490][ T7108] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 170.686528][ T7108] should_failslab+0xc2/0x120 [ 170.686569][ T7108] __kmalloc_cache_noprof+0x6a/0x3e0 [ 170.686604][ T7108] ? __io_uring_add_tctx_node+0x132/0x500 [ 170.686656][ T7108] __io_uring_add_tctx_node+0x132/0x500 [ 170.686703][ T7108] ? __pfx___io_uring_add_tctx_node+0x10/0x10 [ 170.686749][ T7108] ? __anon_inode_getfile+0x18b/0x370 [ 170.686788][ T7108] io_uring_setup+0x14fb/0x1ff0 [ 170.686825][ T7108] ? __pfx_io_uring_setup+0x10/0x10 [ 170.686855][ T7108] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 170.686915][ T7108] ? __fget_files+0x20e/0x3c0 [ 170.686957][ T7108] ? ksys_write+0x1b9/0x240 [ 170.686989][ T7108] ? __pfx_ksys_write+0x10/0x10 [ 170.687020][ T7108] ? rcu_is_watching+0x12/0xc0 [ 170.687062][ T7108] __x64_sys_io_uring_setup+0xc2/0x170 [ 170.687095][ T7108] do_syscall_64+0xcd/0x230 [ 170.687143][ T7108] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.687175][ T7108] RIP: 0033:0x7f16b7f8e969 [ 170.687204][ T7108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 170.687234][ T7108] RSP: 002b:00007f16b8d76038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 170.687263][ T7108] RAX: ffffffffffffffda RBX: 00007f16b81b5fa0 RCX: 00007f16b7f8e969 [ 170.687283][ T7108] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 170.687301][ T7108] RBP: 00007f16b8d76090 R08: 0000000000000000 R09: 0000000000000000 [ 170.687319][ T7108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 170.687336][ T7108] R13: 0000000000000000 R14: 00007f16b81b5fa0 R15: 00007ffd46129fa8 [ 170.687374][ T7108] [ 170.901664][ T7100] ima: policy update failed [ 170.906882][ T30] audit: type=1802 audit(6040581292.594:24): pid=7100 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.301" res=0 errno=0 [ 171.837228][ T30] audit: type=1800 audit(6040581293.524:25): pid=7129 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.308" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0 [ 173.036912][ T7142] ima: policy update failed [ 173.061582][ T30] audit: type=1802 audit(6040581294.744:26): pid=7142 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.313" res=0 errno=0 [ 175.190299][ T7201] ima: policy update failed [ 175.211447][ T30] audit: type=1802 audit(6040581296.894:27): pid=7201 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.327" res=0 errno=0 [ 179.666659][ T7262] ima: policy update failed [ 179.671527][ T30] audit: type=1802 audit(6040581301.354:28): pid=7262 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.340" res=0 errno=0 [ 180.330560][ T30] audit: type=1800 audit(6040581302.014:29): pid=7280 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.344" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0 [ 181.317727][ T7289] netlink: 28 bytes leftover after parsing attributes in process `syz.1.348'. [ 183.056798][ T7300] netlink: 8 bytes leftover after parsing attributes in process `syz.3.352'. [ 183.917351][ T7307] ima: policy update failed [ 183.922112][ T30] audit: type=1802 audit(6040581305.604:30): pid=7307 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.353" res=0 errno=0 [ 186.960794][ T7332] Invalid ELF header magic: != ELF [ 188.060876][ T7350] ima: policy update failed [ 188.085819][ T30] audit: type=1802 audit(6040581309.774:31): pid=7350 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.363" res=0 errno=0 [ 191.046206][ T7378] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 191.054355][ T7378] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 191.261536][ T7378] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 191.354232][ T7378] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 191.375489][ T7378] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 191.440417][ T7378] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 191.468804][ T7378] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 191.474902][ T7378] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 191.559317][ T7378] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 191.658883][ T7378] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 191.679096][ T7378] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 191.715567][ T7378] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 191.791549][ T7378] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 191.888141][ T5152] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 191.897990][ T5152] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 191.907303][ T5152] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 191.935723][ T5152] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 191.945892][ T5152] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 192.125685][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout [ 192.934724][ T7394] chnl_net:caif_netlink_parms(): no params data found [ 193.086917][ T7406] ima: policy update failed [ 193.100476][ T30] audit: type=1802 audit(6040581314.784:32): pid=7406 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.375" res=0 errno=0 [ 193.421250][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 193.493312][ T5849] Bluetooth: hci2: command 0x0c1a tx timeout [ 193.725760][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 193.741611][ T7394] bridge0: port 1(bridge_slave_0) entered blocking state [ 193.784823][ T7394] bridge0: port 1(bridge_slave_0) entered disabled state [ 193.805654][ T7394] bridge_slave_0: entered allmulticast mode [ 193.813707][ T7394] bridge_slave_0: entered promiscuous mode [ 193.849634][ T7394] bridge0: port 2(bridge_slave_1) entered blocking state [ 193.865536][ T7394] bridge0: port 2(bridge_slave_1) entered disabled state [ 193.872786][ T7394] bridge_slave_1: entered allmulticast mode [ 193.930605][ T7394] bridge_slave_1: entered promiscuous mode [ 194.059604][ T5849] Bluetooth: hci4: command tx timeout [ 194.106133][ T7394] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 194.121665][ T7394] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 194.190163][ T7394] team0: Port device team_slave_0 added [ 194.208927][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout [ 194.216001][ T7394] team0: Port device team_slave_1 added [ 194.316418][ T7394] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 194.323421][ T7394] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 194.380109][ T7394] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 194.393932][ T7394] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 194.414343][ T7394] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 194.441007][ T7394] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 194.552615][ T7394] hsr_slave_0: entered promiscuous mode [ 194.570767][ T7394] hsr_slave_1: entered promiscuous mode [ 194.591689][ T7394] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 194.605690][ T7394] Cannot create hsr debugfs directory [ 194.836986][ T7437] could not allocate digest TFM handle [ 195.212665][ T7394] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 195.314128][ T7394] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 195.337134][ T7394] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 195.426662][ T7394] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 195.442901][ T7437] netlink: 28 bytes leftover after parsing attributes in process `syz.0.383'. [ 195.485494][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 195.565474][ T5849] Bluetooth: hci2: command 0x0c1a tx timeout [ 195.815498][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 195.891314][ T7394] 8021q: adding VLAN 0 to HW filter on device bond0 [ 196.107489][ T7394] 8021q: adding VLAN 0 to HW filter on device team0 [ 196.125431][ T5849] Bluetooth: hci4: command tx timeout [ 196.127773][ T63] bridge0: port 1(bridge_slave_0) entered blocking state [ 196.138082][ T63] bridge0: port 1(bridge_slave_0) entered forwarding state [ 196.285456][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout [ 196.342469][ T63] bridge0: port 2(bridge_slave_1) entered blocking state [ 196.349740][ T63] bridge0: port 2(bridge_slave_1) entered forwarding state [ 196.567460][ T7394] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 197.032035][ T7452] ima: policy update failed [ 197.083188][ T30] audit: type=1802 audit(6040581318.764:33): pid=7452 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.385" res=0 errno=0 [ 197.280862][ T7394] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 197.565605][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout [ 197.645576][ T5849] Bluetooth: hci2: command 0x0c1a tx timeout [ 197.885954][ T5152] Bluetooth: hci3: command 0x0c1a tx timeout [ 197.921047][ T5152] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 197.931604][ T5152] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 197.944641][ T5152] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 197.957408][ T5152] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 197.968920][ T5152] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 198.205628][ T5849] Bluetooth: hci4: command tx timeout [ 198.539005][ T7394] veth0_vlan: entered promiscuous mode [ 198.800400][ T7394] veth1_vlan: entered promiscuous mode [ 198.981303][ T7394] veth0_macvtap: entered promiscuous mode [ 199.031524][ T7394] veth1_macvtap: entered promiscuous mode [ 199.058629][ T7472] chnl_net:caif_netlink_parms(): no params data found [ 199.411840][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.418397][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 199.517078][ T7498] kernel read not supported for file /\*)A (pid: 7498 comm: syz.0.391) [ 199.572776][ T30] audit: type=1800 audit(6040581321.254:34): pid=7498 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.391" name="\*)A" dev="mqueue" ino=15233 res=0 errno=0 [ 199.742569][ T7472] bridge0: port 1(bridge_slave_0) entered blocking state [ 199.751754][ T7472] bridge0: port 1(bridge_slave_0) entered disabled state [ 199.775604][ T7472] bridge_slave_0: entered allmulticast mode [ 199.799463][ T7472] bridge_slave_0: entered promiscuous mode [ 199.824075][ T7472] bridge0: port 2(bridge_slave_1) entered blocking state [ 199.839124][ T7472] bridge0: port 2(bridge_slave_1) entered disabled state [ 199.869943][ T7472] bridge_slave_1: entered allmulticast mode [ 199.886556][ T7472] bridge_slave_1: entered promiscuous mode [ 199.917369][ T7394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 199.948302][ T7394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 199.966416][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout [ 199.995651][ T7394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 200.035137][ T7394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.055631][ T5849] Bluetooth: hci5: command tx timeout [ 200.081157][ T7394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 200.186837][ T7394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.206972][ T7394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 200.225372][ T7394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.237122][ T7394] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 200.287573][ T5849] Bluetooth: hci4: command tx timeout [ 200.428520][ T7394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 200.439668][ T7394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.468698][ T7394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 200.490632][ T7394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.524922][ T7394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 200.540708][ T7394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.572358][ T7394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 200.603640][ T7394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.642080][ T7394] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 200.671262][ T7394] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 200.703699][ T7394] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 200.737784][ T7394] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 200.768947][ T7394] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 200.800104][ T7507] ima: policy update failed [ 200.808396][ T30] audit: type=1802 audit(6040581322.484:35): pid=7507 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.394" res=0 errno=0 [ 200.815076][ T7472] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 200.898243][ T7472] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 201.291990][ T7220] ------------[ cut here ]------------ [ 201.297649][ T7220] ODEBUG: free active (active state 0) object: ffff888034665248 object type: timer_list hint: hci_devcd_timeout+0x0/0x2e0 [ 201.328011][ T7220] WARNING: CPU: 0 PID: 7220 at lib/debugobjects.c:612 debug_print_object+0x1a2/0x2b0 [ 201.338068][ T7220] Modules linked in: [ 201.342351][ T7220] CPU: 0 UID: 0 PID: 7220 Comm: syz.2.330 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 201.354688][ T7220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 201.365421][ T7220] RIP: 0010:debug_print_object+0x1a2/0x2b0 [ 201.372440][ T7220] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd 20 60 f4 8b 4c 89 e6 48 c7 c7 a0 54 f4 8b e8 9f b0 a8 fc 90 <0f> 0b 90 90 58 83 05 56 bb b4 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 201.392090][ C0] vkms_vblank_simulate: vblank timer overrun [ 201.399247][ T7220] RSP: 0018:ffffc90003e57768 EFLAGS: 00010286 [ 201.406390][ T7220] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817a8f78 [ 201.414430][ T7220] RDX: ffff88807e923c00 RSI: ffffffff817a8f85 RDI: 0000000000000001 [ 201.422518][ T7220] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 201.430602][ T7220] R10: 0000000000000001 R11: 0000000000000001 R12: ffffffff8bf45b40 [ 201.438829][ T7220] R13: ffffffff8b8fc540 R14: ffffffff8a771660 R15: ffffc90003e57868 [ 201.446899][ T7220] FS: 0000000000000000(0000) GS:ffff8881249bf000(0000) knlGS:0000000000000000 [ 201.455953][ T7220] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 201.462582][ T7220] CR2: 00007f16b8d769a0 CR3: 000000007e036000 CR4: 00000000003526f0 [ 201.470649][ T7220] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 201.479732][ T7220] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 201.488658][ T7220] Call Trace: [ 201.493228][ T7220] [ 201.496438][ T7220] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 201.501973][ T7220] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 201.507937][ T7220] debug_check_no_obj_freed+0x4b7/0x600 [ 201.513566][ T7220] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 201.519752][ T7220] ? rcu_is_watching+0x12/0xc0 [ 201.524611][ T7220] ? kmem_cache_free+0x2d4/0x4d0 [ 201.529746][ T7220] kfree+0x291/0x4d0 [ 201.533689][ T7220] ? hci_release_dev+0x4d8/0x600 [ 201.538765][ T7220] hci_release_dev+0x4d8/0x600 [ 201.543600][ T7220] ? __pfx_hci_release_dev+0x10/0x10 [ 201.549013][ T7220] ? rcu_is_watching+0x12/0xc0 [ 201.553829][ T7220] ? kfree+0x252/0x4d0 [ 201.557994][ T7220] bt_host_release+0x6a/0xb0 [ 201.562626][ T7220] ? __pfx_bt_host_release+0x10/0x10 [ 201.569325][ T7220] device_release+0xa1/0x240 [ 201.574010][ T7220] kobject_put+0x1e4/0x5a0 [ 201.579526][ T7220] ? __pfx_vhci_release+0x10/0x10 [ 201.584614][ T7220] put_device+0x1f/0x30 [ 201.589755][ T7220] vhci_release+0x81/0xf0 [ 201.594140][ T7220] __fput+0x3ff/0xb70 [ 201.598274][ T7220] task_work_run+0x14d/0x240 [ 201.602912][ T7220] ? __pfx_task_work_run+0x10/0x10 [ 201.608165][ T7220] do_exit+0xafb/0x2c30 [ 201.612382][ T7220] ? __pfx___might_resched+0x10/0x10 [ 201.617766][ T7220] ? __pfx_do_exit+0x10/0x10 [ 201.622421][ T7220] ? do_raw_spin_lock+0x12c/0x2b0 [ 201.627604][ T7220] ? find_held_lock+0x2b/0x80 [ 201.632336][ T7220] do_group_exit+0xd3/0x2a0 [ 201.636915][ T7220] get_signal+0x2673/0x26d0 [ 201.641495][ T7220] ? __mmput+0x36c/0x410 [ 201.646177][ T7220] ? mmput+0x62/0x70 [ 201.650126][ T7220] ? __pfx_get_signal+0x10/0x10 [ 201.655032][ T7220] ? __pfx_do_futex+0x10/0x10 [ 201.659997][ T7220] arch_do_signal_or_restart+0x8f/0x7a0 [ 201.665689][ T7220] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 201.671928][ T7220] ? rcu_is_watching+0x12/0xc0 [ 201.677572][ T7220] syscall_exit_to_user_mode+0x150/0x2a0 [ 201.683282][ T7220] do_syscall_64+0xda/0x230 [ 201.688817][ T7220] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 201.694982][ T7220] RIP: 0033:0x7fc884f8e969 [ 201.699512][ T7220] Code: Unable to access opcode bytes at 0x7fc884f8e93f. [ 201.706614][ T7220] RSP: 002b:00007fc882df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117 [ 201.715076][ T7220] RAX: fffffffffffffff2 RBX: 00007fc8851b6160 RCX: 00007fc884f8e969 [ 201.723179][ T7220] RDX: 0000000000000000 RSI: 0002000000000003 RDI: 0000000000000001 [ 201.731237][ T7220] RBP: 00007fc885010ab1 R08: 0000000000000000 R09: 8000400000000000 [ 201.739381][ T7220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 201.747498][ T7220] R13: 0000000000000000 R14: 00007fc8851b6160 R15: 00007ffffa601aa8 [ 201.755748][ T7220] [ 201.758825][ T7220] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 201.766132][ T7220] CPU: 0 UID: 0 PID: 7220 Comm: syz.2.330 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) [ 201.778058][ T7220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 201.788132][ T7220] Call Trace: [ 201.791465][ T7220] [ 201.794409][ T7220] dump_stack_lvl+0x3d/0x1f0 [ 201.799039][ T7220] panic+0x71c/0x800 [ 201.802978][ T7220] ? __pfx_panic+0x10/0x10 [ 201.807435][ T7220] ? show_trace_log_lvl+0x29b/0x3e0 [ 201.812667][ T7220] ? check_panic_on_warn+0x1f/0xb0 [ 201.817818][ T7220] ? debug_print_object+0x1a2/0x2b0 [ 201.823047][ T7220] check_panic_on_warn+0xab/0xb0 [ 201.828025][ T7220] __warn+0xf6/0x3c0 [ 201.831940][ T7220] ? debug_print_object+0x1a2/0x2b0 [ 201.837169][ T7220] report_bug+0x3c3/0x580 [ 201.841526][ T7220] ? debug_print_object+0x1a2/0x2b0 [ 201.846769][ T7220] handle_bug+0x184/0x210 [ 201.851138][ T7220] exc_invalid_op+0x17/0x50 [ 201.855666][ T7220] asm_exc_invalid_op+0x1a/0x20 [ 201.860628][ T7220] RIP: 0010:debug_print_object+0x1a2/0x2b0 [ 201.866468][ T7220] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd 20 60 f4 8b 4c 89 e6 48 c7 c7 a0 54 f4 8b e8 9f b0 a8 fc 90 <0f> 0b 90 90 58 83 05 56 bb b4 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d [ 201.886115][ T7220] RSP: 0018:ffffc90003e57768 EFLAGS: 00010286 [ 201.892214][ T7220] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817a8f78 [ 201.900202][ T7220] RDX: ffff88807e923c00 RSI: ffffffff817a8f85 RDI: 0000000000000001 [ 201.908191][ T7220] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 201.916177][ T7220] R10: 0000000000000001 R11: 0000000000000001 R12: ffffffff8bf45b40 [ 201.924159][ T7220] R13: ffffffff8b8fc540 R14: ffffffff8a771660 R15: ffffc90003e57868 [ 201.932145][ T7220] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 201.937648][ T7220] ? __warn_printk+0x198/0x350 [ 201.942460][ T7220] ? __warn_printk+0x1a5/0x350 [ 201.947263][ T7220] ? debug_print_object+0x1a1/0x2b0 [ 201.952490][ T7220] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 201.958000][ T7220] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 201.963837][ T7220] debug_check_no_obj_freed+0x4b7/0x600 [ 201.969426][ T7220] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 201.975528][ T7220] ? rcu_is_watching+0x12/0xc0 [ 201.980326][ T7220] ? kmem_cache_free+0x2d4/0x4d0 [ 201.985302][ T7220] kfree+0x291/0x4d0 [ 201.989233][ T7220] ? hci_release_dev+0x4d8/0x600 [ 201.994203][ T7220] hci_release_dev+0x4d8/0x600 [ 201.998990][ T7220] ? __pfx_hci_release_dev+0x10/0x10 [ 202.004314][ T7220] ? rcu_is_watching+0x12/0xc0 [ 202.009100][ T7220] ? kfree+0x252/0x4d0 [ 202.013188][ T7220] bt_host_release+0x6a/0xb0 [ 202.017818][ T7220] ? __pfx_bt_host_release+0x10/0x10 [ 202.023125][ T7220] device_release+0xa1/0x240 [ 202.027743][ T7220] kobject_put+0x1e4/0x5a0 [ 202.032194][ T7220] ? __pfx_vhci_release+0x10/0x10 [ 202.037251][ T7220] put_device+0x1f/0x30 [ 202.041431][ T7220] vhci_release+0x81/0xf0 [ 202.045784][ T7220] __fput+0x3ff/0xb70 [ 202.049817][ T7220] task_work_run+0x14d/0x240 [ 202.054465][ T7220] ? __pfx_task_work_run+0x10/0x10 [ 202.059609][ T7220] do_exit+0xafb/0x2c30 [ 202.063804][ T7220] ? __pfx___might_resched+0x10/0x10 [ 202.069126][ T7220] ? __pfx_do_exit+0x10/0x10 [ 202.073758][ T7220] ? do_raw_spin_lock+0x12c/0x2b0 [ 202.078805][ T7220] ? find_held_lock+0x2b/0x80 [ 202.083511][ T7220] do_group_exit+0xd3/0x2a0 [ 202.088061][ T7220] get_signal+0x2673/0x26d0 [ 202.092597][ T7220] ? __mmput+0x36c/0x410 [ 202.096876][ T7220] ? mmput+0x62/0x70 [ 202.100798][ T7220] ? __pfx_get_signal+0x10/0x10 [ 202.105684][ T7220] ? __pfx_do_futex+0x10/0x10 [ 202.110391][ T7220] arch_do_signal_or_restart+0x8f/0x7a0 [ 202.115978][ T7220] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 202.122188][ T7220] ? rcu_is_watching+0x12/0xc0 [ 202.126983][ T7220] syscall_exit_to_user_mode+0x150/0x2a0 [ 202.132653][ T7220] do_syscall_64+0xda/0x230 [ 202.137193][ T7220] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.143100][ T7220] RIP: 0033:0x7fc884f8e969 [ 202.147530][ T7220] Code: Unable to access opcode bytes at 0x7fc884f8e93f. [ 202.154565][ T7220] RSP: 002b:00007fc882df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117 [ 202.162998][ T7220] RAX: fffffffffffffff2 RBX: 00007fc8851b6160 RCX: 00007fc884f8e969 [ 202.170981][ T7220] RDX: 0000000000000000 RSI: 0002000000000003 RDI: 0000000000000001 [ 202.178961][ T7220] RBP: 00007fc885010ab1 R08: 0000000000000000 R09: 8000400000000000 [ 202.186959][ T7220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 202.194958][ T7220] R13: 0000000000000000 R14: 00007fc8851b6160 R15: 00007ffffa601aa8 [ 202.202958][ T7220] [ 202.206296][ T7220] Kernel Offset: disabled [ 202.210640][ T7220] Rebooting in 86400 seconds..