last executing test programs: 15.035871173s ago: executing program 3 (id=11038): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0xf000, 0x8, 0x1000000003, 0x9b72, 0x2, 0x8000) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x1, 0x5) socket$nl_generic(0x10, 0x3, 0x10) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x7, 0x0, 0x5, 0xfffffff9, 0x2000000000210006, 0x0, 0x7, 0x5, 0x2, 0x7, 0xaf, 0x9, 0x2, 0x3, 0x105, 0x7, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, [0x1b16, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x100000, 0x0, 0x77, 0x0, 0x0, 0x0, 0x4, 0x0, 0xc06f, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x7, 0x0, 0x4, 0x0, 0x9, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x107, 0x6, 0x0, 0xfffffffffffffffe, 0x4, 0x0, 0x80000000000]}, 0x1fe, 0x81) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc7}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) move_pages$auto(0x0, 0xd0, 0x0, &(0x7f0000001140), 0x0, 0x2) clone$auto(0x4, 0x400, 0xfffffffffffffffe, 0xfffffffffffffffc, 0xd1) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f00000000c0), 0x22000, 0x0) 11.175277527s ago: executing program 3 (id=11063): r0 = socket(0x10, 0x3, 0x6) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB="fc000000", @ANYRES16=r1, @ANYBLOB="01002dbd7000fedbdf2505000000e6000400110008002e00", @ANYRES16, @ANYBLOB], 0xfc}, 0x1, 0x0, 0x0, 0x400d0}, 0x50) 9.394641429s ago: executing program 3 (id=11071): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0xf000, 0x8, 0x1000000003, 0x9b72, 0x2, 0x8000) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x1, 0x5) socket$nl_generic(0x10, 0x3, 0x10) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x7, 0x0, 0x5, 0xfffffff9, 0x2000000000210006, 0x0, 0x7, 0x5, 0x2, 0x7, 0xaf, 0x9, 0x2, 0x3, 0x105, 0x7, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, [0x1b16, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x100000, 0x0, 0x77, 0x0, 0x0, 0x0, 0x4, 0x0, 0xc06f, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x7, 0x0, 0x4, 0x0, 0x9, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x107, 0x6, 0x0, 0xfffffffffffffffe, 0x4, 0x0, 0x80000000000]}, 0x1fe, 0x81) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc7}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) move_pages$auto(0x0, 0xd0, 0x0, &(0x7f0000001140), 0x0, 0x2) clone$auto(0x4, 0x400, 0xfffffffffffffffe, 0xfffffffffffffffc, 0xd1) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f00000000c0), 0x22000, 0x0) 6.399015943s ago: executing program 2 (id=11087): pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdds\x1cJ\x99\x8a>)\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x123002, 0x0) r0 = socket(0x10, 0x2, 0x0) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000300), r0) sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000640)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000600)={&(0x7f0000000340)={0x2ac, r1, 0x400, 0x70bd2b, 0x25dfdbff, {}, [@ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_HEADER={0x4}, @ETHTOOL_A_STRSET_STRINGSETS={0x266, 0x2, 0x0, 0x1, [@generic="5373a3adbad1", @typed={0x4, 0x30}, @generic="15284a78c73e05d09422ae8826d507d5c3b69f267c908e89d4dbde94d5bd8fd997f56c46370bfc95dbd9", @typed={0x64, 0x3e, 0x0, 0x0, @binary="db15258e2539f7849c5964193ff2d0b5dbd85a298d43d0f77c793d5c01b2eb63f0742e81f86654d13a484d377fd982a649f76f8edd04cf7a7d9afd18b20f000678005381b8cc449b56499acd8fa675ad1ac1008b4fc46962d496065debeddf63"}, @generic="bbaa09bd9525dd8e5456a37795f3e80a07d438f50bbbb8299c7e5761d136ba3cce9ddedffcd9035f6331cf77e0227051559527cfdfd927fb6b99e794dd475c2683ee34ddfa441a1187d631ac8be7b871a5e045f01edb006d0857fd8e4b209e4ce97f900bd02cb4f5b24d97d3e1f31a543fafcb65fb2d", @nested={0xb4, 0x108, 0x0, 0x1, [@generic="43b5c087616c7f1631a279fa0f5c4ebad4db5c0568a6ae41b8e25863a3c07c32f7a6dee746f721f4cfd70b4b457990192429e825f42af8570281afcc2b226bc5f406c9c573590d033f80d432a22717f1af553f708b0933b8c709634f3d44a4700d9299d8042cd093752f59a2710e336aca3d6d48634dd1b5b35650db5f7ea00efc6174aa003cbe8d79d7b9216dd996a62118b61f5c00b6e2f4c4eed8d107ca2ef089955a563f7d8d", @typed={0x8, 0x18, 0x0, 0x0, @u32=0x4}]}, @nested={0xa0, 0xfb, 0x0, 0x1, [@generic="733fccff98", @generic="701e0242671dd6e01f4bce9cbbce62776dc21bcbbb5411001ae38abd1755b561349103a7367cc264e3afe3d82111581ea03f567258442cb0e81c38389643b9aa340a21616c9a13d6459f9f4b633a52bd218364325c324dedd0e9acd6466d36048655e17e1c794f4271fc0d0f6b05a08d4f3e106f6df2365cd215d27ab34940cdc9c97f6599d69e92c854af1037fcd5", @typed={0x8, 0x53, 0x0, 0x0, @u32=0x5}]}]}, @ETHTOOL_A_STRSET_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xa}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x2ac}, 0x1, 0x0, 0x0, 0x4d}, 0x4000000) lstat$auto(0x0, &(0x7f0000000180)={0xfffffffdfffffff7, 0x3f, 0x3, 0x7, 0x0, 0x0, 0x0, 0x1000000001, 0x9, 0x400000000000007, 0x400, 0x7ffffffb, 0x5, 0xffffffff7ffffeff, 0x5, 0xc82, 0xff}) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="1000"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x8) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r2 = gettid() prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) process_vm_writev$auto(r2, 0x0, 0x3, 0x0, 0x4, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) unshare$auto(0x200) r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00') setns(r3, 0x0) futex$auto(0x0, 0x5, 0x0, 0x0, 0x0, 0xa0000001) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/kernel/core_pattern\x00', 0x80100, 0x0) read$auto(r4, &(0x7f0000000200)='}-[@%(-{*!!\xf5\x00', 0x5d5) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r5 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/maps\x00', 0x200, 0x0) ioctl$auto_PROCMAP_QUERY(r5, 0xc0686611, &(0x7f0000001600)={0x81, 0x3b, 0x26, 0x0, 0x714, 0x8001, 0x7d6, 0x6, 0x5, 0xbfaf, 0x2, 0x800, 0xd97, 0x2, 0x5}) unshare$auto(0x20000080) 5.355537136s ago: executing program 3 (id=11092): pkey_free$auto(0xfffffffd) 5.022712065s ago: executing program 3 (id=11093): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x2c, 0x3, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1, 0x1, 0x1) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) write$auto(0xffffffffffffffff, 0x0, 0x9) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x40100, 0x0) ioctl$auto_KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) fcntl$auto(0x3, 0x4, 0xa553) read$auto(0x3, 0x0, 0x80) close_range$auto(0x2, 0x8000, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) socket(0xa, 0x5, 0x0) r2 = openat$auto_debugfs_devm_entry_ops_file(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/debug/cec/cec27/status\x00', 0x400, 0x0) pread64$auto(r2, &(0x7f0000001b40)='/sys/kernel/debug/cec/cec27/status\x00', 0x2, 0x2) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fb1\x00', 0x2100, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) inotify_init1$auto(0x3000000000000) ioctl$auto(0x3, 0x40044900, 0x20000000000038) r4 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), r3) sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000002e00)={&(0x7f0000000040)={0x1c, r4, 0x1, 0x70bd2a, 0x25dfcbfb, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x4000080) 2.790031453s ago: executing program 2 (id=11100): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0xf000, 0x8, 0x1000000003, 0x9b72, 0x2, 0x8000) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f00000000c0), 0x22000, 0x0) close_range$auto(0x2, 0x8, 0x0) 2.479123865s ago: executing program 0 (id=11103): openat$auto_proc_timens_offsets_operations_base(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (async) r0 = openat$auto_proc_timens_offsets_operations_base(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) pread64$auto(r0, &(0x7f0000000040)='@\x00', 0x8000000000000001, 0x3) (async) pread64$auto(r0, &(0x7f0000000040)='@\x00', 0x8000000000000001, 0x3) inotify_add_watch$auto(r0, &(0x7f0000000080)='./file0\x00', 0x62e) mbind$auto(0x9, 0xc73, 0x5, &(0x7f00000000c0), 0x0, 0x1ff) getuid() mbind$auto(0x3, 0x45263990, 0x7ff, &(0x7f0000000100)=0x800, 0x9, 0x5) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000140), 0x44002, 0x0) (async) r1 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000140), 0x44002, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfc(&(0x7f00000001c0), 0xffffffffffffffff) (async) r3 = syz_genetlink_get_family_id$auto_nfc(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$auto_NFC_CMD_SE_IO(r2, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x2c, r3, 0x4, 0x70bd28, 0x25dfdbfd, {}, [@NFC_ATTR_TARGET_INDEX={0x8, 0x4, 0xe6b}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, 0x9}, @NFC_ATTR_LLC_PARAM_RW={0x5, 0x10, 0x7f}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x8000) read$auto_uinput_fops_uinput(r1, &(0x7f00000002c0)=""/116, 0x74) geteuid() syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000340), r2) mincore$auto(0x3, 0x3, &(0x7f0000000380)='@\x00') readv$auto(r2, &(0x7f00000004c0)={&(0x7f00000003c0)="655d0b9d1cdd45a4567a4ed1953e397df2fafab7b09c47635d247dca388e9c496a972e571de9538da59701bd673bd239d0178e615ab0d59cb33c4655bca5ed163692465f970d9026b34fb7b4f1cadac7d5d1b7b8b37eb7401fa85d3efdc3270fff1e2d0f0371a5da5fe6f391fc759a55baa3cc31440086e1e87413c5548b129dc4b339d481a6a73f320d83986b50e5a77f8010324fb80ef10b7a412b05c4c78077e22820d8cd42fb90431f7aa2380aff549e791a2bfb62d2ec72ebadb8e061140d37469b5755f48b51be", 0x81}, 0x0) msgrcv$auto(0xe, &(0x7f0000000500)={0x2, 0x2}, 0xbb6, 0x9f4, 0x3e) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000580), r2) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000005c0)={'rose0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000600)={'caif0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_PLCA_GET_CFG(r2, &(0x7f0000000700)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x60998991eb31d447}, 0xc, &(0x7f00000006c0)={&(0x7f0000000640)={0x80, r4, 0x2, 0x70bd29, 0x25dfdbfc, {}, [@ETHTOOL_A_PLCA_HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xc}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}]}, @ETHTOOL_A_PLCA_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x1e9b}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x10}, 0x40) (async) sendmsg$auto_ETHTOOL_MSG_PLCA_GET_CFG(r2, &(0x7f0000000700)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x60998991eb31d447}, 0xc, &(0x7f00000006c0)={&(0x7f0000000640)={0x80, r4, 0x2, 0x70bd29, 0x25dfdbfc, {}, [@ETHTOOL_A_PLCA_HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xc}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}]}, @ETHTOOL_A_PLCA_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x1e9b}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x10}, 0x40) r7 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000740), r2) sendmsg$auto_SMC_NETLINK_GET_SYS_INFO(r2, &(0x7f00000008c0)={0xfffffffffffffffc, 0x0, &(0x7f0000000880)={&(0x7f0000000780)={0xdc, r7, 0x300, 0x70bd2a, 0x25dfdbfd, {}, "052aef0846c3c696099b99a3a0eeffcd7830cbe3e2ea2b37800a8e59a44d070d4eaf7027f54407c5b72e91390863d15f6edf152ba45a5fa9f36d979192ec5a84424669f41f9fb148e95ffa6564fb4dcb1b09ddb70e24c3d53713a0b753133ed1ee5a2e36f5f96f2adade06018163a5dc47530625a7e45fa1195344542707dc22704006c62fc18465b24a5f616502cdfcc332d15fd42673213f0038d74aa2cceb241f79834378b03dfeefd122ccaf8a212fa96eeb2dfddd54f85a5e69dbc31c338259a288c6"}, 0xdc}, 0x1, 0x0, 0x0, 0x10008000}, 0x200000c0) (async) sendmsg$auto_SMC_NETLINK_GET_SYS_INFO(r2, &(0x7f00000008c0)={0xfffffffffffffffc, 0x0, &(0x7f0000000880)={&(0x7f0000000780)={0xdc, r7, 0x300, 0x70bd2a, 0x25dfdbfd, {}, "052aef0846c3c696099b99a3a0eeffcd7830cbe3e2ea2b37800a8e59a44d070d4eaf7027f54407c5b72e91390863d15f6edf152ba45a5fa9f36d979192ec5a84424669f41f9fb148e95ffa6564fb4dcb1b09ddb70e24c3d53713a0b753133ed1ee5a2e36f5f96f2adade06018163a5dc47530625a7e45fa1195344542707dc22704006c62fc18465b24a5f616502cdfcc332d15fd42673213f0038d74aa2cceb241f79834378b03dfeefd122ccaf8a212fa96eeb2dfddd54f85a5e69dbc31c338259a288c6"}, 0xdc}, 0x1, 0x0, 0x0, 0x10008000}, 0x200000c0) r8 = openat$auto_wakeup_sources_stats_fops_wakeup(0xffffffffffffff9c, &(0x7f0000000900), 0x1d1000, 0x0) bind$auto(r8, &(0x7f0000000940)=@ethernet={0x6, @random="611485377ffc"}, 0x7fff) (async) bind$auto(r8, &(0x7f0000000940)=@ethernet={0x6, @random="611485377ffc"}, 0x7fff) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000980), r2) mbind$auto(0x7, 0x4, 0x6, &(0x7f00000009c0)=0x5, 0x3, 0x80000000) r9 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000a40), r2) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r2, &(0x7f0000000bc0)={&(0x7f0000000a00), 0xc, &(0x7f0000000b80)={&(0x7f0000000a80)={0xe0, r9, 0x4, 0x70bd29, 0x25dfdbfb, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x532}, @NL80211_ATTR_COLOR_CHANGE_ELEMS={0xc4, 0x131, 0x0, 0x1, [@NL80211_ATTR_MESH_PEER_AID={0x6, 0xed, 0xff7f}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0x9d, 0xcd, "92b6f2601c1b6d6fa7ed93a06607a0b3187038f8a82f23d88e0baf2808f483a6e393ef23527c8f56be1318cddc1b36e29ce41fe2a00fdf6f11f9c8c3c11d6636af399e385bc1dbead2bd73cce98ed8f04bca110196174aa2d067158d3bdc508774dd096dc214d259d0d07d77ffb38f9c8040a21bd6ab69a9636a3ebe98aea4652c12ec2a672678859f4771a29f7a262dc1e05e54359778b0de"}, @NL80211_ATTR_BSS_SHORT_PREAMBLE={0x5, 0x1d, 0x9}, @NL80211_ATTR_MLO_LINK_DISABLED={0x4}, @NL80211_ATTR_TXQ_MEMORY_LIMIT={0x8, 0x10b, 0x4}, @NL80211_ATTR_SCHED_SCAN_MULTI={0x4}]}]}, 0xe0}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) (async) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r2, &(0x7f0000000bc0)={&(0x7f0000000a00), 0xc, &(0x7f0000000b80)={&(0x7f0000000a80)={0xe0, r9, 0x4, 0x70bd29, 0x25dfdbfb, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x532}, @NL80211_ATTR_COLOR_CHANGE_ELEMS={0xc4, 0x131, 0x0, 0x1, [@NL80211_ATTR_MESH_PEER_AID={0x6, 0xed, 0xff7f}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0x9d, 0xcd, "92b6f2601c1b6d6fa7ed93a06607a0b3187038f8a82f23d88e0baf2808f483a6e393ef23527c8f56be1318cddc1b36e29ce41fe2a00fdf6f11f9c8c3c11d6636af399e385bc1dbead2bd73cce98ed8f04bca110196174aa2d067158d3bdc508774dd096dc214d259d0d07d77ffb38f9c8040a21bd6ab69a9636a3ebe98aea4652c12ec2a672678859f4771a29f7a262dc1e05e54359778b0de"}, @NL80211_ATTR_BSS_SHORT_PREAMBLE={0x5, 0x1d, 0x9}, @NL80211_ATTR_MLO_LINK_DISABLED={0x4}, @NL80211_ATTR_TXQ_MEMORY_LIMIT={0x8, 0x10b, 0x4}, @NL80211_ATTR_SCHED_SCAN_MULTI={0x4}]}]}, 0xe0}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) read$auto_wakeup_sources_stats_fops_wakeup(r8, &(0x7f0000000c00)=""/245, 0xf5) (async) read$auto_wakeup_sources_stats_fops_wakeup(r8, &(0x7f0000000c00)=""/245, 0xf5) openat$auto_wakeup_sources_stats_fops_wakeup(0xffffffffffffff9c, &(0x7f0000000d00), 0x404000, 0x0) (async) openat$auto_wakeup_sources_stats_fops_wakeup(0xffffffffffffff9c, &(0x7f0000000d00), 0x404000, 0x0) 2.078235184s ago: executing program 0 (id=11105): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0xf000, 0x8, 0x1000000003, 0x9b72, 0x2, 0x8000) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x1, 0x5) socket$nl_generic(0x10, 0x3, 0x10) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x7, 0x0, 0x5, 0xfffffff9, 0x2000000000210006, 0x0, 0x7, 0x5, 0x2, 0x7, 0xaf, 0x9, 0x2, 0x3, 0x105, 0x7, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, [0x1b16, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x100000, 0x0, 0x77, 0x0, 0x0, 0x0, 0x4, 0x0, 0xc06f, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x7, 0x0, 0x4, 0x0, 0x9, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x107, 0x6, 0x0, 0xfffffffffffffffe, 0x4, 0x0, 0x80000000000]}, 0x1fe, 0x81) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01eb"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc7}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) move_pages$auto(0x0, 0xd0, 0x0, &(0x7f0000001140), 0x0, 0x2) clone$auto(0x4, 0x400, 0xfffffffffffffffe, 0xfffffffffffffffc, 0xd1) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f00000000c0), 0x22000, 0x0) 1.868732832s ago: executing program 2 (id=11107): r0 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, 0x0, 0x88f80, 0x0) readv$auto(r0, &(0x7f0000001780)={&(0x7f00000016c0)="f78c62c6f8ed267303841adb926ecec67f8e4a402919656855dfd5284aaab52aad950ded3f3f2778937c9a46c210386338e704b092f89534ab399ecdf790e9568f444e1c52f9da0031c683aba70b7d55656347329a79b65f8bf7835a3cda8f456b51d08cf0557324a41a9a2ac4a18e598082f9db04dcb27b5afffbb6aae1fd246af439276a", 0x400}, 0x7f) 1.793050611s ago: executing program 1 (id=11108): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000880), r0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000940)={'batadv0\x00'}) sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc811}, 0x10) 1.690122378s ago: executing program 2 (id=11110): mount_setattr$auto(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000100)={0x40, 0x0, 0x6, @raw=0x5}, 0xf09) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x109000, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity_list\x00', 0x129542, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) 1.649790395s ago: executing program 1 (id=11111): mmap$auto(0x0, 0x40009, 0xdf, 0x11, 0x7, 0x828000) r0 = openat$auto_userio_fops_userio(0xffffffffffffff9c, &(0x7f0000000980), 0x102001, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="01002dbd7002ffdbdf2502d6"], 0x24}, 0x1, 0x0, 0x0, 0x40000021}, 0x8004) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400"], 0x2c}, 0x1, 0x0, 0x0, 0x60000004}, 0xc800) r1 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kpagecount\x00', 0x0, 0x0) read$auto(0x3, 0x0, 0x80) setreuid$auto(0x42f, 0x200000000000002) sendmsg$auto_NETDEV_CMD_DEV_GET(r1, &(0x7f0000000480)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000440)={&(0x7f0000000300)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="020026bd7000fbdbdf250100000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="f054a151ac331201fb6a9f3153e5a95e540e65cb54"], 0x34}, 0x1, 0x0, 0x0, 0x8000}, 0x24004041) setregid$auto(0x81, 0x5) open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) mount$auto(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='ufs\x00', 0x9, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000002, 0x5) r2 = socket(0x29, 0x0, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000021}, 0x8004) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/sync_on_suspend\x00', 0x123902, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) sched_setaffinity$auto(0xffffffffffffffff, 0x0, &(0x7f0000000180)=0xffffffffffffff0f) acct$auto(&(0x7f00000000c0)='X\xd7[h\xcd\xaf\x06\x01\x00') r3 = socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0xb, 0x4000000200e2, 0xeb1, r1, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) bpf$auto(0x6, &(0x7f00000001c0)=@test={r3, 0x10004, 0x0, 0x1000, 0x106, 0x0, 0x0, 0xfff, 0x10000, 0x9, 0x0, 0x4, 0x7, 0x2, 0xfffeffff}, 0x1) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmsg$auto_TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000940)=ANY=[], 0x1368}, 0x1, 0x0, 0x0, 0x80000}, 0x20080) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRNM\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^B\xb8\xe4j\t3\xe4\x90\xcc\x9d\xc5\x0fo\x84\xf4\x89\v\xea\x1b\x95\xafQ;CL\"\x01@\x00\x00\x00\x00\f\x00\xc0\x13\xc8\xe2\xae\xf5\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8d\x81\x81O*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,8\x93\xba\x88\x93\x9d\xb6\x1a\x7f\xc0%\xb0\x83ROJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd6eWj\xdc\xac\x88\xf0\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\xfb\xba\xb2.$\'\x1e\x82\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\xff\xff\x00'/250, 0xfdf3, 0x39) acct$auto(0x0) pwrite64$auto(r0, 0x0, 0x2, 0x0) 1.499766521s ago: executing program 2 (id=11112): mount_setattr$auto(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000100)={0x40, 0x0, 0x6, @raw=0x5}, 0xf09) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x109000, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity_list\x00', 0x129542, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) (fail_nth: 1) 1.376820925s ago: executing program 1 (id=11113): socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'bond0\x00'}) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) cachestat$auto(0x0, 0x0, 0x0, 0x0) 1.0250796s ago: executing program 0 (id=11114): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x1) close_range$auto(0x0, 0xfffffffffffff000, 0x2) memfd_secret$auto(0x0) socket(0xa, 0x801, 0x106) setsockopt$auto(0x3, 0x6, 0x21, 0x0, 0x20) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x68, 0x0, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IF1_AGE={0x8, 0x3, 0x204}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IFINDEX={0x8}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x1}, @HSR_A_IFINDEX={0x8}, @HSR_A_IF2_AGE={0x8, 0x4, 0x3}]}, 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.024631822s ago: executing program 1 (id=11115): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x202000c, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_MODIFY(r0, 0x0, 0x20008800) semctl$auto(0x4, 0x0, 0x802, 0x2) syz_genetlink_get_family_id$auto_ioam6(0x0, r0) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) r2 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x0, 0x1, 0x9, 0x7, 0x3b, 0xffffffffffff8000, 0x1ffde, 0x7, 0x6, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb4, 0x9, 0x2, 0x10000, 0x80, 0x7, 0x40000, 0x7, 0x2000, 0x200, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x0, 0x0, 0x100, 0xa, 0x70624ce7, 0x0, 0x6, 0xb, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0xfffffffffffffffd, 0x7, 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x0, 0x0, 0x400000000005b8, 0xc, 0x0, 0x804, 0x0, 0x7, 0xffffffffffffffff, 0x5, 0x8000000000008, 0xfffffffffffffffc, 0x3, 0xa38, 0x4, 0x4000000000000, 0xfffffffffffffffc, 0x2, 0x3fffffffff, 0x0, 0x2, 0xffff]}, 0x202, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) mknod$auto(0x0, 0x1081, 0x3) r3 = open(0x0, 0xa240, 0x15e) close_range$auto(0x2, 0x8, 0x0) openat$auto_trace_clock_fops_trace(0xffffffffffffff9c, &(0x7f0000003fc0)='/sys/kernel/debug/tracing/trace_clock\x00', 0x28801, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/loop5/queue/discard_max_hw_bytes\x00', 0x40000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000240)=""/160, 0xa0) name_to_handle_at$auto(r3, &(0x7f0000000000)='(\x00', &(0x7f00000000c0)={0xc4, 0x7, "ee89d18736480af581f07becb0db206c6239e97856232d47be05fe7216334e373c6fb46021ffb8d5076e962b9c3007ba2de676653840ad24070c24fe7a573475d9626ce615417dabb9f35c22f0ace6dc805e3abc140b1db97f0d920698a7cc062f4b2465d1b884fd7ef6a973aa5041f969c3bc4b1707dbda5e07355a7b2eee2bc120e8ec27e67dd94f10498fe4ea7cccfd3fbf8a990a239f2c5071e806e016c4e144fb0d55bea94a3300c656a4a9e5e2d385986d908d2cbe0e3396f7fc18cfecefb0d4a5"}, &(0x7f00000001c0)="c2d36369e257b06ac2a40200f63aa3ba94d224e0607a02aec1fb41a7fd428ba72da3b6b034979b9d95b2b42d47f63839f09cad37157f059bce5ca2ba1c129fc2abd9a5", 0x3) 595.504163ms ago: executing program 2 (id=11116): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0xf000, 0x8, 0x1000000003, 0x9b72, 0x2, 0x8000) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f00000000c0), 0x22000, 0x0) close_range$auto(0x2, 0x8, 0x0) 594.902288ms ago: executing program 0 (id=11124): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x1) close_range$auto(0x0, 0xfffffffffffff000, 0x2) memfd_secret$auto(0x0) socket(0xa, 0x801, 0x106) setsockopt$auto(0x3, 0x6, 0x21, 0x0, 0x20) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x68, 0x0, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IF1_AGE={0x8, 0x3, 0x204}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IFINDEX={0x8}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x1}, @HSR_A_IFINDEX={0x8}, @HSR_A_IF2_AGE={0x8, 0x4, 0x3}]}, 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 594.646247ms ago: executing program 1 (id=11117): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0xf000, 0x8, 0x1000000003, 0x9b72, 0x2, 0x8000) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f00000000c0), 0x22000, 0x0) close_range$auto(0x2, 0x8, 0x0) 80.787678ms ago: executing program 3 (id=11118): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f00000020c0)={0x0, 0x0, &(0x7f0000002080)={&(0x7f0000000040)={0x24, r1, 0x1, 0x70bd28, 0x25dfdbff, {}, [@NFSD_A_SERVER_SOCK_ADDR={0x10, 0x1, 0x0, 0x1, [@NFSD_A_SOCK_TRANSPORT_NAME={0x6, 0x2, ']\x00'}, @NFSD_A_SOCK_ADDR={0x4}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x4000) 54.662868ms ago: executing program 0 (id=11119): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000880), r0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000940)={'batadv0\x00'}) sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc811}, 0x10) 31.550668ms ago: executing program 1 (id=11120): mount_setattr$auto(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000100)={0x40, 0x0, 0x6, @raw=0x5}, 0xf09) lsm_set_self_attr$auto(0x810001, &(0x7f0000000100)={0x6d, 0x100000bae2, 0x80}, 0x81, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x109000, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity_list\x00', 0x129542, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) lseek$auto(r1, 0x6e, 0x2) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) r2 = epoll_create$auto(0x4) r3 = socket(0xa, 0x2, 0x3a) setsockopt$auto(r3, 0x29, 0x37, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x8) read$auto(r3, &(0x7f00000001c0)='\x9b\']^[\\(/.\\!^\x00', 0xbb) r4 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_OVS_METER_CMD_SET(r2, &(0x7f0000001300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000012c0)={&(0x7f00000004c0)={0x2f8, r4, 0x8, 0x70bd2a, 0x25dfdbfb, {}, [@OVS_METER_ATTR_USED={0xc, 0x5, 0x400}, @OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_ID={0x8, 0x1, 0x8}, @OVS_METER_ATTR_ID={0x8, 0x1, 0x4}, @OVS_METER_ATTR_BANDS={0x29e, 0x4, 0x0, 0x1, [@nested={0x238, 0xa4, 0x0, 0x1, [@typed={0x8, 0x128, 0x0, 0x0, @u32=0x4}, @nested={0x4, 0x4}, @nested={0x222, 0xf5, 0x0, 0x1, [@nested={0xfc, 0x90, 0x0, 0x1, [@generic="b75138529f1221d65581dd81125fc3ed69293cb887e0981eed0c8fb9f1504249a075920a7efb6fcea4a8eca97b28a8aee6366a981878978f574760f2941bb1023dc3975a16dcca43ec33082b907ff3c0ad5c487bb3f57302c0b9d5019ecb85ee8ee6759863184ff411cc84cc4024e9dd3d32b0928e03cc9dca4ba631ad8b4582ec22f313fe953c585772b7c0fb5d697e1e49e69b33c480b84189af0c47bed6dc4d8204d64f4b547617bcf5996c7aec97558990ce982c09dd4c0e6490e57f6a0b470d1ba5ee7b2312818c6e8beae853cd08fc41b319b261800c9425a777b2ccf5d7ef04f3", @typed={0xc, 0x142, 0x0, 0x0, @u64}, @nested={0x4, 0xb3}, @nested={0x4, 0xe8}]}, @generic="fc3692098611db9801132729818c2041a2a085c0d9fbff289c5b9dc0d67f02ee7981467635ad54fb2a78d524d1d70ed5b3337c30c311f9632b520d1c6b46a9", @nested={0x56, 0x38, 0x0, 0x1, [@typed={0x8, 0xd2, 0x0, 0x0, @u32=0x8}, @typed={0x8, 0x10f, 0x0, 0x0, @fd=r2}, @generic="d49149f32d5bb064b0a96e473eebaac5db0ccd8e0c5a186fc6c41cf17e5669c020f3", @nested={0x4, 0x9c}, @nested={0x4, 0x5f}, @typed={0x8, 0x43, 0x0, 0x0, @ipv4=@multicast1}, @nested={0x4, 0x105}, @nested={0x4, 0x65}, @typed={0x8, 0x113, 0x0, 0x0, @fd=r0}]}, @generic="a3d87a17b128d6f4b955d362afb5e354656d9f96e84eb4a4d036ddce8c027acc0ad2b7876b69bf90b2fc940e36c3342b7affb2cfdcef53815261a1d8bffd55133312d209eb0056a19f75c9a08529a79185e03da75ccb38ad05b334dacc16dc4aa5d95c4001a64829c46c029aa33b4028b75a0f58f53ab676472d045b890d3a2ed5a3a26a32c5f4f8f53246"]}, @nested={0x4, 0x12a}]}, @generic="87c2ba891295cac1839332b1ecb21afe75aa0b1c0bf7ccfd30c49d8485e5d9e74028b4cda9b79b72747868fb7d88338b9c8e1554674acae9795ce7da5723b985e386cea70faa8e651bc00ca3dc05ded0b4ba8950e31a3c31d54ae7937260f2df5435"]}, @OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_USED={0xc, 0x5, 0x5}, @OVS_METER_ATTR_STATS={0x14, 0x3, {0x4, 0x1ff}}]}, 0x2f8}, 0x1, 0x0, 0x0, 0x20040004}, 0x82e4669c76f9bdfd) r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/controlC1\x00', 0x2000, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_TLV_READ(r5, 0xc008551a, &(0x7f00000000c0)={0x9, 0x9, [0xffff8001]}) lseek$auto(r5, 0x0, 0x9) 0s ago: executing program 0 (id=11121): r0 = socket(0x10, 0x3, 0x6) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB="fc000000", @ANYRES16=r1, @ANYBLOB="01002dbd7000fedbdf2505000000e6000400110008002e00", @ANYRES16, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4100f7b4a8132d759892f424887b55fbcf"], 0xfc}, 0x1, 0x0, 0x0, 0x400d0}, 0x50) kernel console output (not intermixed with test programs): 1385.825094][ T5291] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1385.874768][ T5291] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1385.906019][ T5291] bond0 (unregistering): Released all slaves [ 1386.733487][ T4508] Bluetooth: hci3: command tx timeout [ 1387.420340][ T5343] lo: entered allmulticast mode [ 1387.430855][ T5342] lo: left allmulticast mode [ 1387.693192][ T5354] netlink: 28 bytes leftover after parsing attributes in process `syz.3.9768'. [ 1387.746064][ T5357] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9769'. [ 1388.222772][ T5374] netlink: 12 bytes leftover after parsing attributes in process `syz.1.9776'. [ 1388.234643][ T5374] unsupported nlmsg_type 40 [ 1388.322334][ T5377] openvswitch: netlink: Flow key attr not present in new flow. [ 1388.332957][ T5378] FAULT_INJECTION: forcing a failure. [ 1388.332957][ T5378] name failslab, interval 1, probability 0, space 0, times 0 [ 1388.345674][ T5378] CPU: 1 UID: 0 PID: 5378 Comm: syz.1.9777 Not tainted 6.13.0-rc5-syzkaller #0 [ 1388.354665][ T5378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1388.364759][ T5378] Call Trace: [ 1388.368077][ T5378] [ 1388.371041][ T5378] dump_stack_lvl+0x16c/0x1f0 [ 1388.375861][ T5378] should_fail_ex+0x497/0x5b0 [ 1388.380595][ T5378] ? rcu_is_watching+0x12/0xc0 [ 1388.385418][ T5378] should_failslab+0xc2/0x120 [ 1388.390158][ T5378] __kmalloc_cache_noprof+0x68/0x420 [ 1388.395503][ T5378] ? lock_acquire+0x2f/0xb0 [ 1388.400057][ T5378] ? tipc_nametbl_insert_publ+0x493/0x1660 [ 1388.405930][ T5378] tipc_nametbl_insert_publ+0x6ff/0x1660 [ 1388.411641][ T5378] tipc_nametbl_publish+0x137/0x280 [ 1388.416914][ T5378] tipc_sk_publish+0x1d8/0x430 [ 1388.421753][ T5378] ? __pfx_tipc_sk_publish+0x10/0x10 [ 1388.427106][ T5378] ? tipc_group_create+0x4ba/0x650 [ 1388.432281][ T5378] tipc_setsockopt+0x9af/0xe80 [ 1388.437118][ T5378] ? __pfx_tipc_setsockopt+0x10/0x10 [ 1388.442468][ T5378] ? ksys_write+0x191/0x250 [ 1388.447035][ T5378] ? vfs_write+0x306/0x1150 [ 1388.451604][ T5378] ? __pfx_tipc_setsockopt+0x10/0x10 [ 1388.456953][ T5378] do_sock_setsockopt+0x222/0x480 [ 1388.462030][ T5378] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 1388.467630][ T5378] ? __fget_files+0x40/0x3a0 [ 1388.472278][ T5378] ? lock_acquire+0x2f/0xb0 [ 1388.476842][ T5378] __sys_setsockopt+0x1a0/0x230 [ 1388.481760][ T5378] __x64_sys_setsockopt+0xbd/0x160 [ 1388.486941][ T5378] ? trace_irq_enable.constprop.0+0xea/0x140 [ 1388.493001][ T5378] do_syscall_64+0xcd/0x250 [ 1388.497570][ T5378] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1388.503526][ T5378] RIP: 0033:0x7fdb0cb85d29 [ 1388.508010][ T5378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1388.527676][ T5378] RSP: 002b:00007fdb0da5a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 1388.536150][ T5378] RAX: ffffffffffffffda RBX: 00007fdb0cd75fa0 RCX: 00007fdb0cb85d29 [ 1388.544170][ T5378] RDX: 0000000000000087 RSI: 000000000000010f RDI: 0000000000000003 [ 1388.552276][ T5378] RBP: 00007fdb0da5a090 R08: 0000000000000014 R09: 0000000000000000 [ 1388.560294][ T5378] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1388.568315][ T5378] R13: 0000000000000000 R14: 00007fdb0cd75fa0 R15: 00007ffef8f533c8 [ 1388.576344][ T5378] [ 1388.579510][ T5378] tipc: Failed to bind to 228960672,32731,32731 [ 1388.687454][ T5387] crash hp: kexec_trylock() failed, kdump image may be inaccurate [ 1388.789947][ T5387] netlink: 'syz.0.9779': attribute type 33 has an invalid length. [ 1388.797581][ T5389] Invalid ELF header magic: != ELF [ 1388.808002][ T5387] netlink: 322 bytes leftover after parsing attributes in process `syz.0.9779'. [ 1388.817607][ T4508] Bluetooth: hci3: command tx timeout [ 1389.819522][ T5416] openvswitch: netlink: Flow key attr not present in new flow. [ 1389.873978][ T5418] FAULT_INJECTION: forcing a failure. [ 1389.873978][ T5418] name failslab, interval 1, probability 0, space 0, times 0 [ 1389.888555][ T5418] CPU: 1 UID: 0 PID: 5418 Comm: syz.2.9788 Not tainted 6.13.0-rc5-syzkaller #0 [ 1389.897574][ T5418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1389.907673][ T5418] Call Trace: [ 1389.910992][ T5418] [ 1389.913970][ T5418] dump_stack_lvl+0x16c/0x1f0 [ 1389.918711][ T5418] should_fail_ex+0x497/0x5b0 [ 1389.923471][ T5418] ? fs_reclaim_acquire+0xae/0x150 [ 1389.928639][ T5418] should_failslab+0xc2/0x120 [ 1389.933381][ T5418] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 1389.938821][ T5418] ? vma_merge_new_range+0x3f0/0xb70 [ 1389.944176][ T5418] ? vm_area_dup+0x21/0x300 [ 1389.948748][ T5418] vm_area_dup+0x21/0x300 [ 1389.953136][ T5418] copy_vma+0x4fd/0xa90 [ 1389.957363][ T5418] ? __pfx_copy_vma+0x10/0x10 [ 1389.962279][ T5418] ? rcu_is_watching+0x12/0xc0 [ 1389.967106][ T5418] ? lock_release+0x4e2/0x6f0 [ 1389.971829][ T5418] ? move_vma+0x5c7/0x1c50 [ 1389.976316][ T5418] ? up_write+0x1b2/0x520 [ 1389.980704][ T5418] move_vma+0x640/0x1c50 [ 1389.985029][ T5418] ? __pfx_arch_get_unmapped_area_topdown+0x10/0x10 [ 1389.991699][ T5418] ? __pfx_move_vma+0x10/0x10 [ 1389.996442][ T5418] ? __pfx_mtree_load+0x10/0x10 [ 1390.001424][ T5418] ? bpf_lsm_mmap_addr+0x9/0x10 [ 1390.006307][ T5418] ? security_mmap_addr+0x6c/0x1e0 [ 1390.011457][ T5418] __do_sys_mremap+0xfc7/0x15e0 [ 1390.016357][ T5418] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1390.022373][ T5418] ? __pfx___do_sys_mremap+0x10/0x10 [ 1390.027697][ T5418] ? __fget_files+0x206/0x3a0 [ 1390.032404][ T5418] ? fput+0x67/0x440 [ 1390.036334][ T5418] ? ksys_write+0x1ba/0x250 [ 1390.040948][ T5418] ? __pfx_ksys_write+0x10/0x10 [ 1390.045851][ T5418] ? rcu_is_watching+0x12/0xc0 [ 1390.050659][ T5418] ? rcu_is_watching+0x12/0xc0 [ 1390.055456][ T5418] do_syscall_64+0xcd/0x250 [ 1390.059993][ T5418] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1390.065918][ T5418] RIP: 0033:0x7fbeba185d29 [ 1390.070351][ T5418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1390.089991][ T5418] RSP: 002b:00007fbebb046038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 1390.098433][ T5418] RAX: ffffffffffffffda RBX: 00007fbeba375fa0 RCX: 00007fbeba185d29 [ 1390.106445][ T5418] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000000000000000 [ 1390.114437][ T5418] RBP: 00007fbebb046090 R08: 0000000100000000 R09: 0000000000000000 [ 1390.122439][ T5418] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000001 [ 1390.130430][ T5418] R13: 0000000000000000 R14: 00007fbeba375fa0 R15: 00007ffc6515e8e8 [ 1390.138428][ T5418] [ 1390.459325][ T5386] kexec: Could not allocate control_code_buffer [ 1390.532691][ T5429] netlink: 12 bytes leftover after parsing attributes in process `syz.0.9792'. [ 1390.600379][ T5427] Invalid ELF header magic: != ELF [ 1392.593740][ T5469] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9801'. [ 1392.784610][ T5474] netlink: 28 bytes leftover after parsing attributes in process `syz.2.9800'. [ 1392.933892][ T5480] netlink: 12 bytes leftover after parsing attributes in process `syz.2.9802'. [ 1393.084390][ T5485] Invalid ELF header magic: != ELF [ 1393.354262][ T5506] netlink: 12 bytes leftover after parsing attributes in process `syz.2.9811'. [ 1393.454098][ T5509] netlink: 28 bytes leftover after parsing attributes in process `syz.1.9813'. [ 1393.756896][ T5519] netlink: zone id is out of range [ 1393.767184][ T5519] netlink: set zone limit has 8 unknown bytes [ 1393.992851][ T5531] netlink: 12 bytes leftover after parsing attributes in process `syz.3.9819'. [ 1394.122445][ T5537] netlink: 28 bytes leftover after parsing attributes in process `syz.1.9821'. [ 1394.410989][ T5545] Invalid ELF header magic: != ELF [ 1394.467022][ T5547] mkiss: ax0: crc mode is auto. [ 1394.725394][ T5553] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9826'. [ 1395.077190][ T5568] FAULT_INJECTION: forcing a failure. [ 1395.077190][ T5568] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1395.105626][ T5568] CPU: 0 UID: 0 PID: 5568 Comm: syz.1.9832 Not tainted 6.13.0-rc5-syzkaller #0 [ 1395.114645][ T5568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1395.124834][ T5568] Call Trace: [ 1395.128163][ T5568] [ 1395.131112][ T5568] dump_stack_lvl+0x16c/0x1f0 [ 1395.135818][ T5568] should_fail_ex+0x497/0x5b0 [ 1395.140527][ T5568] _copy_from_user+0x2e/0xd0 [ 1395.145172][ T5568] copy_msghdr_from_user+0x99/0x160 [ 1395.150469][ T5568] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 1395.156317][ T5568] ? rcu_is_watching+0x12/0xc0 [ 1395.161117][ T5568] ? lock_release+0x4e2/0x6f0 [ 1395.165817][ T5568] ? get_pid_task+0xfc/0x250 [ 1395.170441][ T5568] ___sys_sendmsg+0xff/0x1e0 [ 1395.175061][ T5568] ? get_pid_task+0x35/0x250 [ 1395.179687][ T5568] ? __pfx____sys_sendmsg+0x10/0x10 [ 1395.184919][ T5568] ? lock_release+0x4e2/0x6f0 [ 1395.189639][ T5568] ? __pfx_lock_release+0x10/0x10 [ 1395.194686][ T5568] ? trace_lock_acquire+0x14e/0x1f0 [ 1395.199936][ T5568] ? __fget_files+0x206/0x3a0 [ 1395.204646][ T5568] __sys_sendmsg+0x16e/0x220 [ 1395.209272][ T5568] ? __pfx___sys_sendmsg+0x10/0x10 [ 1395.214431][ T5568] ? rcu_is_watching+0x12/0xc0 [ 1395.219227][ T5568] ? rcu_is_watching+0x12/0xc0 [ 1395.224028][ T5568] do_syscall_64+0xcd/0x250 [ 1395.228567][ T5568] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1395.234493][ T5568] RIP: 0033:0x7fdb0cb85d29 [ 1395.238929][ T5568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1395.258563][ T5568] RSP: 002b:00007fdb0da5a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1395.267002][ T5568] RAX: ffffffffffffffda RBX: 00007fdb0cd75fa0 RCX: 00007fdb0cb85d29 [ 1395.274993][ T5568] RDX: 00000000200080c0 RSI: 0000000020000180 RDI: 000000000000000b [ 1395.282983][ T5568] RBP: 00007fdb0da5a090 R08: 0000000000000000 R09: 0000000000000000 [ 1395.290974][ T5568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1395.298964][ T5568] R13: 0000000000000000 R14: 00007fdb0cd75fa0 R15: 00007ffef8f533c8 [ 1395.306966][ T5568] [ 1395.310086][ C0] vkms_vblank_simulate: vblank timer overrun [ 1395.435731][ T5571] netlink: 12 bytes leftover after parsing attributes in process `syz.3.9833'. [ 1395.617433][ T5576] Invalid ELF header magic: != ELF [ 1395.762683][ T5583] crash hp: kexec_trylock() failed, kdump image may be inaccurate [ 1395.781304][ T5582] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9838'. [ 1395.832721][ T5583] netlink: 'syz.3.9837': attribute type 33 has an invalid length. [ 1396.142019][ T5600] IPv6: NLM_F_CREATE should be specified when creating new route [ 1396.416240][ T5608] syz.1.9843: vmalloc error: size 4503599627371522, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 1396.462013][ T5608] CPU: 0 UID: 0 PID: 5608 Comm: syz.1.9843 Not tainted 6.13.0-rc5-syzkaller #0 [ 1396.471058][ T5608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1396.481211][ T5608] Call Trace: [ 1396.484530][ T5608] [ 1396.487504][ T5608] dump_stack_lvl+0x16c/0x1f0 [ 1396.492280][ T5608] warn_alloc+0x24d/0x3a0 [ 1396.496683][ T5608] ? __pfx_warn_alloc+0x10/0x10 [ 1396.501613][ T5608] __vmalloc_node_range_noprof+0x10df/0x1530 [ 1396.507664][ T5608] ? rcu_is_watching+0x12/0xc0 [ 1396.512498][ T5608] ? trace_contention_end+0xee/0x140 [ 1396.517844][ T5608] ? dvb_demux_do_ioctl+0x54d/0x1340 [ 1396.523207][ T5608] ? dvb_demux_do_ioctl+0x496/0x1340 [ 1396.528571][ T5608] ? __pfx___mutex_lock+0x10/0x10 [ 1396.533662][ T5608] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 1396.540062][ T5608] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1396.546022][ T5608] ? dvb_demux_do_ioctl+0x54d/0x1340 [ 1396.551381][ T5608] vmalloc_noprof+0x6b/0x90 [ 1396.555947][ T5608] ? dvb_demux_do_ioctl+0x54d/0x1340 [ 1396.561301][ T5608] dvb_demux_do_ioctl+0x54d/0x1340 [ 1396.566491][ T5608] dvb_usercopy+0x165/0x320 [ 1396.571060][ T5608] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 1396.576678][ T5608] ? __pfx_dvb_usercopy+0x10/0x10 [ 1396.581769][ T5608] ? __pfx_lock_release+0x10/0x10 [ 1396.586854][ T5608] ? __fget_files+0x206/0x3a0 [ 1396.591596][ T5608] dvb_demux_ioctl+0x29/0x40 [ 1396.596251][ T5608] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 1396.601602][ T5608] __x64_sys_ioctl+0x190/0x200 [ 1396.606424][ T5608] do_syscall_64+0xcd/0x250 [ 1396.610990][ T5608] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1396.616944][ T5608] RIP: 0033:0x7fdb0cb85d29 [ 1396.621407][ T5608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1396.641073][ T5608] RSP: 002b:00007fdb0da18038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1396.649555][ T5608] RAX: ffffffffffffffda RBX: 00007fdb0cd76160 RCX: 00007fdb0cb85d29 [ 1396.657578][ T5608] RDX: 0010000000000402 RSI: 0000000000006f2d RDI: 0000000000000003 [ 1396.665597][ T5608] RBP: 00007fdb0cc01b08 R08: 0000000000000000 R09: 0000000000000000 [ 1396.673623][ T5608] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1396.681650][ T5608] R13: 0000000000000000 R14: 00007fdb0cd76160 R15: 00007ffef8f533c8 [ 1396.689680][ T5608] [ 1396.692759][ C0] vkms_vblank_simulate: vblank timer overrun [ 1396.777008][ T5608] Mem-Info: [ 1396.803019][ T5608] active_anon:23802 inactive_anon:9 isolated_anon:0 [ 1396.803019][ T5608] active_file:13322 inactive_file:46330 isolated_file:0 [ 1396.803019][ T5608] unevictable:768 dirty:772 writeback:0 [ 1396.803019][ T5608] slab_reclaimable:8705 slab_unreclaimable:130160 [ 1396.803019][ T5608] mapped:26214 shmem:5951 pagetables:735 [ 1396.803019][ T5608] sec_pagetables:0 bounce:0 [ 1396.803019][ T5608] kernel_misc_reclaimable:0 [ 1396.803019][ T5608] free:1175844 free_pcp:8509 free_cma:0 [ 1396.867565][ T5608] Node 0 active_anon:96108kB inactive_anon:36kB active_file:53288kB inactive_file:185240kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:105756kB dirty:3084kB writeback:0kB shmem:23268kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB writeback_tmp:0kB kernel_stack:11888kB pagetables:3040kB sec_pagetables:0kB all_unreclaimable? no [ 1396.902613][ T5608] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:80kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 1396.937734][ T5608] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1397.019236][ T5608] lowmem_reserve[]: 0 2465 2466 0 0 [ 1397.034765][ T5608] Node 0 DMA32 free:874848kB boost:22528kB min:56728kB low:65276kB high:73824kB reserved_highatomic:0KB active_anon:98188kB inactive_anon:36kB active_file:52548kB inactive_file:185240kB unevictable:1536kB writepending:3080kB present:3129332kB managed:2551336kB mlocked:0kB bounce:0kB free_pcp:5248kB local_pcp:5104kB free_cma:0kB [ 1397.291992][ T5608] lowmem_reserve[]: 0 0 0 0 0 [ 1397.322353][ T5608] Node 0 Normal free:8kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:36kB inactive_anon:0kB active_file:832kB inactive_file:0kB unevictable:0kB writepending:4kB present:1048580kB managed:876kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1397.428452][ T5580] kexec: Could not allocate control_code_buffer [ 1397.490360][ T5608] lowmem_reserve[]: 0 0 0 0 0 [ 1397.495713][ T5608] Node 1 Normal free:3880624kB boost:0kB min:55688kB low:69608kB high:83528kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:80kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:26956kB local_pcp:10700kB free_cma:0kB [ 1397.525230][ C0] vkms_vblank_simulate: vblank timer overrun [ 1397.552054][ T5608] lowmem_reserve[]: 0 0 0 0 0 [ 1397.557465][ T5608] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (UM) = 15360kB [ 1397.622434][ T5608] Node 0 DMA32: 1*4kB (E) 121*8kB (UE) 148*16kB (UE) 321*32kB (UME) 507*64kB (UME) 178*128kB (UME) 443*256kB (UME) 259*512kB (UME) 157*1024kB (UME) 72*2048kB (UME) 141*4096kB (UM) = 1200620kB [ 1397.641806][ C0] vkms_vblank_simulate: vblank timer overrun [ 1397.694003][ T5608] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 1397.726744][ T5608] Node 1 Normal: 199*4kB (UME) 51*8kB (UME) 47*16kB (UME) 196*32kB (UME) 123*64kB (UME) 36*128kB (UME) 30*256kB (UME) 24*512kB (UME) 8*1024kB (UM) 7*2048kB (UM) 932*4096kB (UM) = 3880676kB [ 1397.776358][ T5608] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1397.800739][ T5608] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 1397.823774][ T5608] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1397.849134][ T5608] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 1397.874141][ T5608] 70419 total pagecache pages [ 1397.886963][ T5608] 34 pages in swap cache [ 1397.898167][ T5608] Free swap = 124416kB [ 1397.910701][ T5608] Total swap = 124996kB [ 1397.923041][ T5608] 2097051 pages RAM [ 1397.933568][ T5608] 0 pages HighMem/MovableOnly [ 1397.949768][ T5608] 427367 pages reserved [ 1397.970626][ T5608] 0 pages cma reserved [ 1398.242959][ T5645] __nla_validate_parse: 35 callbacks suppressed [ 1398.242985][ T5645] netlink: 28 bytes leftover after parsing attributes in process `syz.3.9854'. [ 1398.816510][ T5668] crash hp: kexec_trylock() failed, kdump image may be inaccurate [ 1398.830516][ T5666] Invalid ELF header magic: != ELF [ 1398.902702][ T5668] netlink: 'syz.1.9859': attribute type 33 has an invalid length. [ 1398.965603][ T5668] netlink: 322 bytes leftover after parsing attributes in process `syz.1.9859'. [ 1399.262366][ T5678] FAULT_INJECTION: forcing a failure. [ 1399.262366][ T5678] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1399.323780][ T5678] CPU: 0 UID: 0 PID: 5678 Comm: syz.3.9863 Not tainted 6.13.0-rc5-syzkaller #0 [ 1399.332812][ T5678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1399.342918][ T5678] Call Trace: [ 1399.346327][ T5678] [ 1399.349311][ T5678] dump_stack_lvl+0x16c/0x1f0 [ 1399.354049][ T5678] should_fail_ex+0x497/0x5b0 [ 1399.358797][ T5678] _copy_from_user+0x2e/0xd0 [ 1399.363458][ T5678] do_sys_poll+0x1d6/0xde0 [ 1399.367940][ T5678] ? kernel_text_address+0x8d/0x100 [ 1399.373201][ T5678] ? arch_stack_walk+0xa7/0x100 [ 1399.378116][ T5678] ? __pfx_do_sys_poll+0x10/0x10 [ 1399.383136][ T5678] ? kstrtouint+0xde/0x130 [ 1399.387635][ T5678] ? __pfx_timespec64_add_safe+0x10/0x10 [ 1399.393304][ T5678] ? trace_irq_enable.constprop.0+0xea/0x140 [ 1399.399322][ T5678] ? read_tsc+0x9/0x20 [ 1399.403777][ T5678] ? ktime_get_ts64+0x256/0x400 [ 1399.408671][ T5678] __x64_sys_poll+0x1a8/0x450 [ 1399.413381][ T5678] ? __pfx___x64_sys_poll+0x10/0x10 [ 1399.418641][ T5678] ? rcu_is_watching+0x12/0xc0 [ 1399.423448][ T5678] ? rcu_is_watching+0x12/0xc0 [ 1399.428259][ T5678] do_syscall_64+0xcd/0x250 [ 1399.432798][ T5678] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1399.438734][ T5678] RIP: 0033:0x7ff229185d29 [ 1399.443175][ T5678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1399.462813][ T5678] RSP: 002b:00007ff226ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000007 [ 1399.471261][ T5678] RAX: ffffffffffffffda RBX: 00007ff229375fa0 RCX: 00007ff229185d29 [ 1399.479260][ T5678] RDX: 0000000000000003 RSI: 0000000000000005 RDI: 0000000020000d40 [ 1399.487260][ T5678] RBP: 00007ff226ff6090 R08: 0000000000000000 R09: 0000000000000000 [ 1399.495255][ T5678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1399.503247][ T5678] R13: 0000000000000000 R14: 00007ff229375fa0 R15: 00007ffd4e2f8eb8 [ 1399.511273][ T5678] [ 1399.514346][ C0] vkms_vblank_simulate: vblank timer overrun [ 1400.200561][ T5663] kexec: Could not allocate control_code_buffer [ 1400.351968][ T5697] netlink: 28 bytes leftover after parsing attributes in process `syz.2.9868'. [ 1400.701206][ T5706] netlink: 28 bytes leftover after parsing attributes in process `syz.2.9871'. [ 1401.352895][ T5717] netlink: 354 bytes leftover after parsing attributes in process `syz.3.9876'. [ 1401.465146][ T5719] Invalid ELF header magic: != ELF [ 1401.568947][ T5725] FAULT_INJECTION: forcing a failure. [ 1401.568947][ T5725] name failslab, interval 1, probability 0, space 0, times 0 [ 1401.613604][ T5725] CPU: 1 UID: 0 PID: 5725 Comm: syz.3.9879 Not tainted 6.13.0-rc5-syzkaller #0 [ 1401.622628][ T5725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1401.632744][ T5725] Call Trace: [ 1401.636058][ T5725] [ 1401.639028][ T5725] dump_stack_lvl+0x16c/0x1f0 [ 1401.643772][ T5725] should_fail_ex+0x497/0x5b0 [ 1401.648514][ T5725] ? fs_reclaim_acquire+0xae/0x150 [ 1401.653679][ T5725] should_failslab+0xc2/0x120 [ 1401.658431][ T5725] __kmalloc_node_noprof+0xd1/0x520 [ 1401.663700][ T5725] ? lock_release+0x4e2/0x6f0 [ 1401.668433][ T5725] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 1401.673962][ T5725] ? __pfx_lock_release+0x10/0x10 [ 1401.679049][ T5725] __kvmalloc_node_noprof+0xad/0x1a0 [ 1401.684403][ T5725] seq_read_iter+0x82a/0x12b0 [ 1401.689142][ T5725] seq_read+0x39f/0x4e0 [ 1401.693363][ T5725] ? __pfx_seq_read+0x10/0x10 [ 1401.698103][ T5725] ? __pfx_lock_release+0x10/0x10 [ 1401.703186][ T5725] ? lock_acquire+0x2f/0xb0 [ 1401.707759][ T5725] ? apparmor_file_permission+0x251/0x400 [ 1401.713562][ T5725] full_proxy_read+0xfb/0x1b0 [ 1401.718309][ T5725] ? __pfx_full_proxy_read+0x10/0x10 [ 1401.723663][ T5725] vfs_read+0x1df/0xbe0 [ 1401.727886][ T5725] ? __fget_files+0x1fc/0x3a0 [ 1401.732630][ T5725] ? __pfx___mutex_lock+0x10/0x10 [ 1401.737722][ T5725] ? __pfx_vfs_read+0x10/0x10 [ 1401.742472][ T5725] ? __fget_files+0x206/0x3a0 [ 1401.747225][ T5725] ksys_read+0x12b/0x250 [ 1401.751529][ T5725] ? __pfx_ksys_read+0x10/0x10 [ 1401.756362][ T5725] ? rcu_is_watching+0x12/0xc0 [ 1401.761200][ T5725] ? rcu_is_watching+0x12/0xc0 [ 1401.766040][ T5725] do_syscall_64+0xcd/0x250 [ 1401.770618][ T5725] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1401.776588][ T5725] RIP: 0033:0x7ff229185d29 [ 1401.781057][ T5725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1401.800725][ T5725] RSP: 002b:00007ff226ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1401.809201][ T5725] RAX: ffffffffffffffda RBX: 00007ff229375fa0 RCX: 00007ff229185d29 [ 1401.817228][ T5725] RDX: 000000000000002c RSI: 00000000200000c0 RDI: 0000000000000003 [ 1401.825254][ T5725] RBP: 00007ff226ff6090 R08: 0000000000000000 R09: 0000000000000000 [ 1401.833278][ T5725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1401.841308][ T5725] R13: 0000000000000000 R14: 00007ff229375fa0 R15: 00007ffd4e2f8eb8 [ 1401.849343][ T5725] [ 1402.075393][ T5730] Invalid ELF header magic: != ELF [ 1402.502601][ T5743] Invalid ELF header magic: != ELF [ 1402.611985][ T5750] Invalid ELF header magic: != ELF [ 1402.690308][ T5755] netlink: 28 bytes leftover after parsing attributes in process `syz.2.9887'. [ 1402.901620][ T5757] FAULT_INJECTION: forcing a failure. [ 1402.901620][ T5757] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1402.922979][ T5757] CPU: 0 UID: 0 PID: 5757 Comm: syz.1.9889 Not tainted 6.13.0-rc5-syzkaller #0 [ 1402.932007][ T5757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1402.942117][ T5757] Call Trace: [ 1402.945559][ T5757] [ 1402.948527][ T5757] dump_stack_lvl+0x16c/0x1f0 [ 1402.953265][ T5757] should_fail_ex+0x497/0x5b0 [ 1402.958110][ T5757] _copy_from_iter+0x29b/0x1400 [ 1402.963037][ T5757] ? trace_lock_acquire+0x14e/0x1f0 [ 1402.968319][ T5757] ? __virt_addr_valid+0x1a4/0x590 [ 1402.973558][ T5757] ? __pfx__copy_from_iter+0x10/0x10 [ 1402.978940][ T5757] ? __virt_addr_valid+0x1a4/0x590 [ 1402.984128][ T5757] ? __virt_addr_valid+0x5e/0x590 [ 1402.989219][ T5757] ? __phys_addr+0xc6/0x150 [ 1402.993793][ T5757] ? __phys_addr_symbol+0x30/0x80 [ 1402.998889][ T5757] ? __check_object_size+0x488/0x710 [ 1403.004252][ T5757] mptcp_sendmsg+0x1010/0x1f20 [ 1403.009094][ T5757] ? __pfx_mptcp_sendmsg+0x10/0x10 [ 1403.014269][ T5757] ? __pfx_aa_sk_perm+0x10/0x10 [ 1403.019201][ T5757] ? __pfx_mptcp_sendmsg+0x10/0x10 [ 1403.024376][ T5757] inet_sendmsg+0x119/0x140 [ 1403.028941][ T5757] sock_write_iter+0x4ac/0x5b0 [ 1403.033772][ T5757] ? __pfx_sock_write_iter+0x10/0x10 [ 1403.039125][ T5757] ? bpf_lsm_file_permission+0x9/0x10 [ 1403.044576][ T5757] ? security_file_permission+0x71/0x210 [ 1403.050281][ T5757] vfs_write+0x5ae/0x1150 [ 1403.054674][ T5757] ? __pfx_sock_write_iter+0x10/0x10 [ 1403.060016][ T5757] ? __pfx_vfs_write+0x10/0x10 [ 1403.064842][ T5757] ? __fget_files+0x40/0x3a0 [ 1403.069504][ T5757] ksys_write+0x207/0x250 [ 1403.073887][ T5757] ? __pfx_ksys_write+0x10/0x10 [ 1403.078803][ T5757] ? rcu_is_watching+0x12/0xc0 [ 1403.083636][ T5757] ? rcu_is_watching+0x12/0xc0 [ 1403.088468][ T5757] do_syscall_64+0xcd/0x250 [ 1403.093033][ T5757] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1403.094267][ T5759] netlink: 28 bytes leftover after parsing attributes in process `syz.3.9886'. [ 1403.098961][ T5757] RIP: 0033:0x7fdb0cb85d29 [ 1403.098992][ T5757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1403.099024][ T5757] RSP: 002b:00007fdb0da5a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1403.099058][ T5757] RAX: ffffffffffffffda RBX: 00007fdb0cd75fa0 RCX: 00007fdb0cb85d29 [ 1403.099080][ T5757] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 1403.099102][ T5757] RBP: 00007fdb0da5a090 R08: 0000000000000000 R09: 0000000000000000 [ 1403.099123][ T5757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1403.099144][ T5757] R13: 0000000000000000 R14: 00007fdb0cd75fa0 R15: 00007ffef8f533c8 [ 1403.099175][ T5757] [ 1403.253794][ T5759] geneve1: entered allmulticast mode [ 1403.303354][ T5764] netlink: 'syz.0.9890': attribute type 1 has an invalid length. [ 1403.311482][ T5764] nbd: error processing sock list [ 1403.376421][ T5764] netlink: 'syz.0.9890': attribute type 1 has an invalid length. [ 1403.393307][ T5764] nbd: error processing sock list [ 1403.497375][ T5768] Invalid ELF header magic: != ELF [ 1403.943485][ T5782] Invalid ELF header magic: != ELF [ 1405.579773][ T5845] FAULT_INJECTION: forcing a failure. [ 1405.579773][ T5845] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1405.605299][ T5845] CPU: 0 UID: 0 PID: 5845 Comm: syz.1.9916 Not tainted 6.13.0-rc5-syzkaller #0 [ 1405.614320][ T5845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1405.624422][ T5845] Call Trace: [ 1405.627744][ T5845] [ 1405.630707][ T5845] dump_stack_lvl+0x16c/0x1f0 [ 1405.635436][ T5845] should_fail_ex+0x497/0x5b0 [ 1405.640167][ T5845] _copy_to_user+0x32/0xd0 [ 1405.644649][ T5845] simple_read_from_buffer+0xd0/0x160 [ 1405.650073][ T5845] proc_fail_nth_read+0x198/0x270 [ 1405.655171][ T5845] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1405.660786][ T5845] ? bpf_lsm_file_permission+0x9/0x10 [ 1405.666233][ T5845] ? security_file_permission+0x71/0x210 [ 1405.671938][ T5845] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1405.677559][ T5845] vfs_read+0x1df/0xbe0 [ 1405.681771][ T5845] ? __fget_files+0x1fc/0x3a0 [ 1405.686511][ T5845] ? __pfx___mutex_lock+0x10/0x10 [ 1405.691600][ T5845] ? __pfx_vfs_read+0x10/0x10 [ 1405.696337][ T5845] ? __fget_files+0x206/0x3a0 [ 1405.701098][ T5845] ksys_read+0x12b/0x250 [ 1405.705396][ T5845] ? __pfx_ksys_read+0x10/0x10 [ 1405.710215][ T5845] ? rcu_is_watching+0x12/0xc0 [ 1405.715049][ T5845] ? rcu_is_watching+0x12/0xc0 [ 1405.719876][ T5845] do_syscall_64+0xcd/0x250 [ 1405.724443][ T5845] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1405.730399][ T5845] RIP: 0033:0x7fdb0cb8473c [ 1405.734863][ T5845] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1405.754527][ T5845] RSP: 002b:00007fdb0da5a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1405.762999][ T5845] RAX: ffffffffffffffda RBX: 00007fdb0cd75fa0 RCX: 00007fdb0cb8473c [ 1405.771027][ T5845] RDX: 000000000000000f RSI: 00007fdb0da5a0a0 RDI: 0000000000000004 [ 1405.779048][ T5845] RBP: 00007fdb0da5a090 R08: 0000000000000000 R09: 0000000000000000 [ 1405.787076][ T5845] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1405.795102][ T5845] R13: 0000000000000000 R14: 00007fdb0cd75fa0 R15: 00007ffef8f533c8 [ 1405.803137][ T5845] [ 1405.941976][ T5861] WARNING! power/level is deprecated; use power/control instead [ 1406.018247][ T5867] netlink: 28 bytes leftover after parsing attributes in process `syz.2.9920'. [ 1406.043880][ T5867] hsr_slave_0: left promiscuous mode [ 1406.057081][ T5867] hsr_slave_1: left promiscuous mode [ 1406.418327][ T5885] netlink: 28 bytes leftover after parsing attributes in process `syz.3.9925'. [ 1407.214322][ T5918] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9935'. [ 1407.412506][ T5924] Invalid ELF header magic: != ELF [ 1407.717358][ T5938] netlink: 12 bytes leftover after parsing attributes in process `syz.1.9944'. [ 1407.746989][ T5938] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 1407.972279][ T5947] netlink: 28 bytes leftover after parsing attributes in process `syz.1.9948'. [ 1408.486743][ T5967] netlink: 12 bytes leftover after parsing attributes in process `syz.0.9956'. [ 1408.497700][ T5967] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 1408.912208][ T5979] Invalid ELF header magic: != ELF [ 1408.983164][ T5988] sysfs_service_op_show: Client not running :-5: [ 1409.070428][ T5990] FAULT_INJECTION: forcing a failure. [ 1409.070428][ T5990] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1409.090830][ T5990] CPU: 1 UID: 0 PID: 5990 Comm: syz.1.9967 Not tainted 6.13.0-rc5-syzkaller #0 [ 1409.099846][ T5990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1409.109953][ T5990] Call Trace: [ 1409.113268][ T5990] [ 1409.116232][ T5990] dump_stack_lvl+0x16c/0x1f0 [ 1409.120965][ T5990] should_fail_ex+0x497/0x5b0 [ 1409.125707][ T5990] _copy_from_user+0x2e/0xd0 [ 1409.130446][ T5990] move_addr_to_kernel+0x68/0x160 [ 1409.135529][ T5990] __sys_connect+0xb0/0x170 [ 1409.140094][ T5990] ? __pfx___sys_connect+0x10/0x10 [ 1409.145271][ T5990] ? __pfx_ksys_write+0x10/0x10 [ 1409.150174][ T5990] ? rcu_is_watching+0x12/0xc0 [ 1409.154997][ T5990] __x64_sys_connect+0x72/0xb0 [ 1409.159836][ T5990] do_syscall_64+0xcd/0x250 [ 1409.164401][ T5990] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1409.170355][ T5990] RIP: 0033:0x7fdb0cb85d29 [ 1409.174814][ T5990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1409.194489][ T5990] RSP: 002b:00007fdb0da5a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 1409.202960][ T5990] RAX: ffffffffffffffda RBX: 00007fdb0cd75fa0 RCX: 00007fdb0cb85d29 [ 1409.210981][ T5990] RDX: 0000000000000054 RSI: 0000000020000080 RDI: 0000000000000003 [ 1409.218999][ T5990] RBP: 00007fdb0da5a090 R08: 0000000000000000 R09: 0000000000000000 [ 1409.227016][ T5990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1409.235034][ T5990] R13: 0000000000000000 R14: 00007fdb0cd75fa0 R15: 00007ffef8f533c8 [ 1409.243062][ T5990] [ 1409.598390][ T5997] netlink: 12 bytes leftover after parsing attributes in process `syz.0.9971'. [ 1409.623093][ T5997] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 1409.733054][ T6006] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9974'. [ 1409.749800][ T6006] hsr_slave_0: left promiscuous mode [ 1409.757191][ T6006] hsr_slave_1: left promiscuous mode [ 1409.773785][ T6010] netlink: 28 bytes leftover after parsing attributes in process `syz.3.9972'. [ 1410.155235][ T6023] Invalid ELF header magic: != ELF [ 1410.445337][ T6035] netlink: 28 bytes leftover after parsing attributes in process `syz.1.9982'. [ 1410.579841][ T6037] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 1411.094849][ T6067] FAULT_INJECTION: forcing a failure. [ 1411.094849][ T6067] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1411.101871][ T6069] __nla_validate_parse: 2 callbacks suppressed [ 1411.101899][ T6069] netlink: 28 bytes leftover after parsing attributes in process `syz.3.9994'. [ 1411.131099][ T6067] CPU: 0 UID: 0 PID: 6067 Comm: syz.1.9993 Not tainted 6.13.0-rc5-syzkaller #0 [ 1411.140123][ T6067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1411.150221][ T6067] Call Trace: [ 1411.153540][ T6067] [ 1411.156528][ T6067] dump_stack_lvl+0x16c/0x1f0 [ 1411.161270][ T6067] should_fail_ex+0x497/0x5b0 [ 1411.166029][ T6067] _copy_from_user+0x2e/0xd0 [ 1411.170684][ T6067] copy_msghdr_from_user+0x99/0x160 [ 1411.175945][ T6067] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 1411.181797][ T6067] ? rcu_is_watching+0x12/0xc0 [ 1411.186602][ T6067] ? lock_release+0x4e2/0x6f0 [ 1411.191341][ T6067] ? get_pid_task+0xfc/0x250 [ 1411.195977][ T6067] ___sys_sendmsg+0xff/0x1e0 [ 1411.200607][ T6067] ? get_pid_task+0x35/0x250 [ 1411.205232][ T6067] ? __pfx____sys_sendmsg+0x10/0x10 [ 1411.210467][ T6067] ? lock_release+0x4e2/0x6f0 [ 1411.215179][ T6067] ? __pfx_vfs_write+0x10/0x10 [ 1411.219969][ T6067] ? do_sys_openat2+0xb1/0x1e0 [ 1411.224774][ T6067] __sys_sendmsg+0x16e/0x220 [ 1411.229407][ T6067] ? __pfx___sys_sendmsg+0x10/0x10 [ 1411.234560][ T6067] ? rcu_is_watching+0x12/0xc0 [ 1411.239357][ T6067] ? rcu_is_watching+0x12/0xc0 [ 1411.244155][ T6067] do_syscall_64+0xcd/0x250 [ 1411.248694][ T6067] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1411.254624][ T6067] RIP: 0033:0x7fdb0cb85d29 [ 1411.259062][ T6067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1411.278721][ T6067] RSP: 002b:00007fdb0da5a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1411.287162][ T6067] RAX: ffffffffffffffda RBX: 00007fdb0cd75fa0 RCX: 00007fdb0cb85d29 [ 1411.295161][ T6067] RDX: 0000000000008800 RSI: 0000000020000a40 RDI: 0000000000000002 [ 1411.303157][ T6067] RBP: 00007fdb0da5a090 R08: 0000000000000000 R09: 0000000000000000 [ 1411.311147][ T6067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1411.319139][ T6067] R13: 0000000000000000 R14: 00007fdb0cd75fa0 R15: 00007ffef8f533c8 [ 1411.327140][ T6067] [ 1411.343559][ T6073] netlink: 12 bytes leftover after parsing attributes in process `syz.0.9996'. [ 1411.361151][ T6073] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 1411.393459][ T6074] netlink: 28 bytes leftover after parsing attributes in process `syz.2.9995'. [ 1411.449682][ T29] audit: type=1800 audit(8277293050.312:28): pid=6077 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.9998" name="lu_gp_id" dev="configfs" ino=160766 res=0 errno=0 [ 1411.542553][ T6083] netlink: 12 bytes leftover after parsing attributes in process `syz.0.10007'. [ 1411.552040][ T6083] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 1412.452197][ T6113] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10006'. [ 1412.792021][ T6123] Invalid ELF header magic: != ELF [ 1413.010785][ T6131] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10012'. [ 1413.491332][ T6142] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10010'. [ 1413.518975][ T6142] geneve1: entered allmulticast mode [ 1413.586400][ T6144] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10018'. [ 1414.834083][ T6165] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10023'. [ 1415.190905][ T6182] Invalid ELF header magic: != ELF [ 1415.276664][ T6190] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10029'. [ 1415.870152][ T6213] openvswitch: netlink: Key type 29 is not supported [ 1415.981044][ T6212] FAULT_INJECTION: forcing a failure. [ 1415.981044][ T6212] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1416.027828][ T6212] CPU: 0 UID: 0 PID: 6212 Comm: syz.0.10039 Not tainted 6.13.0-rc5-syzkaller #0 [ 1416.036939][ T6212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1416.047042][ T6212] Call Trace: [ 1416.050355][ T6212] [ 1416.053320][ T6212] dump_stack_lvl+0x16c/0x1f0 [ 1416.058063][ T6212] should_fail_ex+0x497/0x5b0 [ 1416.062806][ T6212] _copy_from_user+0x2e/0xd0 [ 1416.067465][ T6212] netlink_setsockopt+0x349/0x8f0 [ 1416.072556][ T6212] ? __pfx_netlink_setsockopt+0x10/0x10 [ 1416.078156][ T6212] ? preempt_count_add+0x76/0x150 [ 1416.083261][ T6212] ? vfs_write+0x306/0x1150 [ 1416.087843][ T6212] ? __pfx_netlink_setsockopt+0x10/0x10 [ 1416.093449][ T6212] do_sock_setsockopt+0x222/0x480 [ 1416.098528][ T6212] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 1416.104124][ T6212] ? __fget_files+0x40/0x3a0 [ 1416.108783][ T6212] ? lock_acquire+0x2f/0xb0 [ 1416.113347][ T6212] __sys_setsockopt+0x1a0/0x230 [ 1416.118274][ T6212] __x64_sys_setsockopt+0xbd/0x160 [ 1416.123455][ T6212] ? trace_irq_enable.constprop.0+0xea/0x140 [ 1416.129494][ T6212] do_syscall_64+0xcd/0x250 [ 1416.134069][ T6212] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1416.140032][ T6212] RIP: 0033:0x7f26ba985d29 [ 1416.144517][ T6212] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1416.164186][ T6212] RSP: 002b:00007f26b87f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 1416.172662][ T6212] RAX: ffffffffffffffda RBX: 00007f26bab75fa0 RCX: 00007f26ba985d29 [ 1416.180684][ T6212] RDX: 0000000000000001 RSI: 104000000000010e RDI: 0000000000000005 [ 1416.188709][ T6212] RBP: 00007f26b87f6090 R08: 0000000000000016 R09: 0000000000000000 [ 1416.196731][ T6212] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1416.204748][ T6212] R13: 0000000000000000 R14: 00007f26bab75fa0 R15: 00007ffeaf43ebc8 [ 1416.212782][ T6212] [ 1416.475002][ T6233] __nla_validate_parse: 1 callbacks suppressed [ 1416.475029][ T6233] netlink: 12 bytes leftover after parsing attributes in process `syz.2.10045'. [ 1416.505275][ T6233] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 1416.749090][ T6246] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10052'. [ 1416.794033][ T6249] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10053'. [ 1417.086819][ T6264] FAULT_INJECTION: forcing a failure. [ 1417.086819][ T6264] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1417.117545][ T6264] CPU: 0 UID: 0 PID: 6264 Comm: syz.1.10056 Not tainted 6.13.0-rc5-syzkaller #0 [ 1417.126658][ T6264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1417.136749][ T6264] Call Trace: [ 1417.140057][ T6264] [ 1417.143018][ T6264] dump_stack_lvl+0x16c/0x1f0 [ 1417.147743][ T6264] should_fail_ex+0x497/0x5b0 [ 1417.152479][ T6264] _copy_from_user+0x2e/0xd0 [ 1417.157130][ T6264] move_addr_to_kernel+0x68/0x160 [ 1417.162215][ T6264] __sys_connect+0xb0/0x170 [ 1417.166777][ T6264] ? __pfx___sys_connect+0x10/0x10 [ 1417.171950][ T6264] ? __pfx_ksys_write+0x10/0x10 [ 1417.176856][ T6264] ? rcu_is_watching+0x12/0xc0 [ 1417.181678][ T6264] __x64_sys_connect+0x72/0xb0 [ 1417.186493][ T6264] do_syscall_64+0xcd/0x250 [ 1417.191043][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1417.196983][ T6264] RIP: 0033:0x7fdb0cb85d29 [ 1417.201446][ T6264] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1417.221111][ T6264] RSP: 002b:00007fdb0da5a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 1417.229587][ T6264] RAX: ffffffffffffffda RBX: 00007fdb0cd75fa0 RCX: 00007fdb0cb85d29 [ 1417.237601][ T6264] RDX: 0000000000000055 RSI: 00000000200018c0 RDI: 0000000000000003 [ 1417.245617][ T6264] RBP: 00007fdb0da5a090 R08: 0000000000000000 R09: 0000000000000000 [ 1417.253628][ T6264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1417.261640][ T6264] R13: 0000000000000000 R14: 00007fdb0cd75fa0 R15: 00007ffef8f533c8 [ 1417.269692][ T6264] [ 1417.700787][ T6283] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10064'. [ 1418.072515][ T6301] FAULT_INJECTION: forcing a failure. [ 1418.072515][ T6301] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1418.106284][ T6301] CPU: 1 UID: 0 PID: 6301 Comm: syz.2.10070 Not tainted 6.13.0-rc5-syzkaller #0 [ 1418.115394][ T6301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1418.125496][ T6301] Call Trace: [ 1418.128806][ T6301] [ 1418.131774][ T6301] dump_stack_lvl+0x16c/0x1f0 [ 1418.136555][ T6301] should_fail_ex+0x497/0x5b0 [ 1418.141271][ T6301] _copy_from_user+0x2e/0xd0 [ 1418.145897][ T6301] do_fcntl+0xd73/0x15b0 [ 1418.150178][ T6301] ? __pfx_do_fcntl+0x10/0x10 [ 1418.154895][ T6301] ? tomoyo_file_fcntl+0x6c/0xc0 [ 1418.159867][ T6301] __x64_sys_fcntl+0x170/0x200 [ 1418.164680][ T6301] do_syscall_64+0xcd/0x250 [ 1418.169217][ T6301] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1418.175143][ T6301] RIP: 0033:0x7fbeba185d29 [ 1418.179596][ T6301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1418.199251][ T6301] RSP: 002b:00007fbebb046038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048 [ 1418.207718][ T6301] RAX: ffffffffffffffda RBX: 00007fbeba375fa0 RCX: 00007fbeba185d29 [ 1418.215710][ T6301] RDX: 0000000000000005 RSI: 000000000000000f RDI: 0000000000000003 [ 1418.223704][ T6301] RBP: 00007fbebb046090 R08: 0000000000000000 R09: 0000000000000000 [ 1418.231729][ T6301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1418.239741][ T6301] R13: 0000000000000000 R14: 00007fbeba375fa0 R15: 00007ffc6515e8e8 [ 1418.247750][ T6301] [ 1418.341192][ T6311] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10072'. [ 1418.477174][ T6318] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10077'. [ 1419.205595][ T6347] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10088'. [ 1419.343179][ T6351] netlink: 342 bytes leftover after parsing attributes in process `syz.0.10090'. [ 1419.461530][ T6366] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10096'. [ 1419.924878][ T6379] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10100'. [ 1421.573799][ T29] audit: type=1800 audit(8277293060.495:29): pid=6450 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.10128" name="lu_gp_id" dev="configfs" ino=161568 res=0 errno=0 [ 1421.901885][ T6454] __nla_validate_parse: 4 callbacks suppressed [ 1421.901912][ T6454] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10129'. [ 1422.009654][ T6469] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10132'. [ 1422.049895][ T6470] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10140'. [ 1422.842851][ T6502] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10144'. [ 1423.105582][ T1292] ieee802154 phy0 wpan0: encryption failed: -22 [ 1423.112935][ T1292] ieee802154 phy1 wpan1: encryption failed: -22 [ 1423.170295][ T29] audit: type=1800 audit(8277293062.073:30): pid=6518 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.10150" name="lu_gp_id" dev="configfs" ino=162496 res=0 errno=0 [ 1423.191842][ T6512] Invalid ELF header magic: != ELF [ 1423.483550][ T6528] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10154'. [ 1423.583905][ T6539] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10156'. [ 1424.181377][ T6561] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10166'. [ 1424.239433][ T6566] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10168'. [ 1424.367990][ T6567] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10167'. [ 1424.669235][ T6582] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10174'. [ 1426.980628][ T6666] __nla_validate_parse: 5 callbacks suppressed [ 1426.980656][ T6666] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10199'. [ 1427.562860][ T6683] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10205'. [ 1428.373408][ T6711] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10213'. [ 1428.662647][ T6720] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10219'. [ 1428.740161][ T6730] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10222'. [ 1429.810712][ T6755] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10230'. [ 1429.862458][ T6756] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10232'. [ 1429.988175][ T6760] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10233'. [ 1430.472820][ T6780] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10241'. [ 1430.728814][ T6787] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10243'. [ 1430.894999][ T6797] FAULT_INJECTION: forcing a failure. [ 1430.894999][ T6797] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1430.915547][ T6797] CPU: 0 UID: 0 PID: 6797 Comm: syz.2.10245 Not tainted 6.13.0-rc5-syzkaller #0 [ 1430.924668][ T6797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1430.934772][ T6797] Call Trace: [ 1430.938083][ T6797] [ 1430.941050][ T6797] dump_stack_lvl+0x16c/0x1f0 [ 1430.945790][ T6797] should_fail_ex+0x497/0x5b0 [ 1430.950533][ T6797] ? fs_reclaim_acquire+0xae/0x150 [ 1430.955712][ T6797] should_fail_alloc_page+0xe7/0x130 [ 1430.961068][ T6797] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 1430.967297][ T6797] __alloc_pages_noprof+0x190/0x25b0 [ 1430.972619][ T6797] ? lock_release+0x4e2/0x6f0 [ 1430.977318][ T6797] ? __pfx_lock_release+0x10/0x10 [ 1430.982365][ T6797] ? trace_lock_acquire+0x14e/0x1f0 [ 1430.987601][ T6797] ? is_bpf_text_address+0x30/0x1a0 [ 1430.992841][ T6797] ? lock_acquire+0x2f/0xb0 [ 1430.997365][ T6797] ? is_bpf_text_address+0x30/0x1a0 [ 1431.002600][ T6797] ? bpf_ksym_find+0x124/0x1c0 [ 1431.007393][ T6797] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 1431.013156][ T6797] ? is_bpf_text_address+0x94/0x1a0 [ 1431.018399][ T6797] ? kernel_text_address+0x8d/0x100 [ 1431.023624][ T6797] ? __kernel_text_address+0xd/0x40 [ 1431.028849][ T6797] ? unwind_get_return_address+0x59/0xa0 [ 1431.034522][ T6797] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1431.040445][ T6797] ? policy_nodemask+0xea/0x4e0 [ 1431.045336][ T6797] alloc_pages_mpol_noprof+0x2c9/0x610 [ 1431.050839][ T6797] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 1431.056866][ T6797] ? __pfx_lock_release+0x10/0x10 [ 1431.061934][ T6797] ? rcu_is_watching+0x12/0xc0 [ 1431.066749][ T6797] ? __thp_vma_allowable_orders+0x1ca/0xb30 [ 1431.072704][ T6797] __pmd_alloc+0x3f/0x860 [ 1431.077069][ T6797] __handle_mm_fault+0x94a/0x2a40 [ 1431.082136][ T6797] ? __pfx___handle_mm_fault+0x10/0x10 [ 1431.087634][ T6797] ? find_vma+0xc0/0x140 [ 1431.091901][ T6797] ? __pfx_find_vma+0x10/0x10 [ 1431.096604][ T6797] handle_mm_fault+0x3fa/0xaa0 [ 1431.101403][ T6797] do_user_addr_fault+0x7a3/0x13f0 [ 1431.106540][ T6797] exc_page_fault+0x5c/0xc0 [ 1431.111103][ T6797] asm_exc_page_fault+0x26/0x30 [ 1431.115988][ T6797] RIP: 0010:__get_user_8+0x1a/0x30 [ 1431.121128][ T6797] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 ba 00 f0 ff ff ff 7f 00 00 48 39 c2 48 19 d2 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 [ 1431.140762][ T6797] RSP: 0018:ffffc9000349fef0 EFLAGS: 00050246 [ 1431.146858][ T6797] RAX: 0000000000000000 RBX: ffffc9000349ff58 RCX: ffffffff81764859 [ 1431.154884][ T6797] RDX: 0000000000000000 RSI: ffffffff8226a93b RDI: 0000000000000000 [ 1431.162908][ T6797] RBP: 0000000000000000 R08: 0000000000000000 R09: fffffbfff2039caa [ 1431.170904][ T6797] R10: ffffffff901ce557 R11: 0000000000000000 R12: 00000000000000ce [ 1431.178894][ T6797] R13: 0000000000000401 R14: 0000000000000000 R15: 0000000000000000 [ 1431.186889][ T6797] ? lock_release+0xa9/0x6f0 [ 1431.191505][ T6797] ? __x64_sys_io_setup+0x6b/0x210 [ 1431.196651][ T6797] __x64_sys_io_setup+0x73/0x210 [ 1431.201628][ T6797] do_syscall_64+0xcd/0x250 [ 1431.206163][ T6797] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1431.212089][ T6797] RIP: 0033:0x7fbeba185d29 [ 1431.216525][ T6797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1431.236164][ T6797] RSP: 002b:00007fbebb046038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 1431.244604][ T6797] RAX: ffffffffffffffda RBX: 00007fbeba375fa0 RCX: 00007fbeba185d29 [ 1431.252596][ T6797] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000401 [ 1431.260593][ T6797] RBP: 00007fbebb046090 R08: 0000000000000000 R09: 0000000000000000 [ 1431.268584][ T6797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1431.276576][ T6797] R13: 0000000000000000 R14: 00007fbeba375fa0 R15: 00007ffc6515e8e8 [ 1431.284577][ T6797] [ 1432.001167][ T6824] __nla_validate_parse: 2 callbacks suppressed [ 1432.001195][ T6824] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10254'. [ 1432.105717][ T6817] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10253'. [ 1432.389506][ T6837] FAULT_INJECTION: forcing a failure. [ 1432.389506][ T6837] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1432.411050][ T6837] CPU: 0 UID: 0 PID: 6837 Comm: syz.1.10257 Not tainted 6.13.0-rc5-syzkaller #0 [ 1432.420160][ T6837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1432.430259][ T6837] Call Trace: [ 1432.433580][ T6837] [ 1432.436550][ T6837] dump_stack_lvl+0x16c/0x1f0 [ 1432.441289][ T6837] should_fail_ex+0x497/0x5b0 [ 1432.446030][ T6837] _copy_from_user+0x2e/0xd0 [ 1432.450691][ T6837] move_addr_to_kernel+0x68/0x160 [ 1432.455783][ T6837] __sys_connect+0xb0/0x170 [ 1432.460351][ T6837] ? __pfx___sys_connect+0x10/0x10 [ 1432.465528][ T6837] ? __pfx_ksys_write+0x10/0x10 [ 1432.470437][ T6837] ? rcu_is_watching+0x12/0xc0 [ 1432.475266][ T6837] __x64_sys_connect+0x72/0xb0 [ 1432.480093][ T6837] do_syscall_64+0xcd/0x250 [ 1432.484660][ T6837] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1432.490619][ T6837] RIP: 0033:0x7fdb0cb85d29 [ 1432.495074][ T6837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1432.514741][ T6837] RSP: 002b:00007fdb0da5a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 1432.523215][ T6837] RAX: ffffffffffffffda RBX: 00007fdb0cd75fa0 RCX: 00007fdb0cb85d29 [ 1432.531234][ T6837] RDX: 0000000000000054 RSI: 0000000020000080 RDI: 0000000000000003 [ 1432.539254][ T6837] RBP: 00007fdb0da5a090 R08: 0000000000000000 R09: 0000000000000000 [ 1432.547300][ T6837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1432.555324][ T6837] R13: 0000000000000000 R14: 00007fdb0cd75fa0 R15: 00007ffef8f533c8 [ 1432.563354][ T6837] [ 1432.956195][ T6848] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10260'. [ 1433.020160][ T6841] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10258'. [ 1433.052350][ T6852] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10261'. [ 1433.745902][ T6875] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10269'. [ 1434.231353][ T6883] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10272'. [ 1436.073768][ T6928] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10287'. [ 1436.628110][ T6948] FAULT_INJECTION: forcing a failure. [ 1436.628110][ T6948] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1436.679818][ T6948] CPU: 0 UID: 0 PID: 6948 Comm: syz.0.10292 Not tainted 6.13.0-rc5-syzkaller #0 [ 1436.688931][ T6948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1436.699120][ T6948] Call Trace: [ 1436.702440][ T6948] [ 1436.705405][ T6948] dump_stack_lvl+0x16c/0x1f0 [ 1436.710144][ T6948] should_fail_ex+0x497/0x5b0 [ 1436.714883][ T6948] _copy_to_user+0x32/0xd0 [ 1436.719363][ T6948] simple_read_from_buffer+0xd0/0x160 [ 1436.724782][ T6948] proc_fail_nth_read+0x198/0x270 [ 1436.729869][ T6948] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1436.735483][ T6948] ? bpf_lsm_file_permission+0x9/0x10 [ 1436.740922][ T6948] ? security_file_permission+0x71/0x210 [ 1436.746606][ T6948] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1436.752219][ T6948] vfs_read+0x1df/0xbe0 [ 1436.756457][ T6948] ? __fget_files+0x1fc/0x3a0 [ 1436.761279][ T6948] ? __pfx___mutex_lock+0x10/0x10 [ 1436.766369][ T6948] ? __pfx_vfs_read+0x10/0x10 [ 1436.771105][ T6948] ? __fget_files+0x206/0x3a0 [ 1436.775850][ T6948] ksys_read+0x12b/0x250 [ 1436.780142][ T6948] ? __pfx_ksys_read+0x10/0x10 [ 1436.784938][ T6948] ? rcu_is_watching+0x12/0xc0 [ 1436.789734][ T6948] ? rcu_is_watching+0x12/0xc0 [ 1436.794531][ T6948] do_syscall_64+0xcd/0x250 [ 1436.799069][ T6948] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1436.804993][ T6948] RIP: 0033:0x7f26ba98473c [ 1436.809431][ T6948] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1436.829072][ T6948] RSP: 002b:00007f26b87d5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1436.837512][ T6948] RAX: ffffffffffffffda RBX: 00007f26bab76080 RCX: 00007f26ba98473c [ 1436.845501][ T6948] RDX: 000000000000000f RSI: 00007f26b87d50a0 RDI: 0000000000000003 [ 1436.853488][ T6948] RBP: 00007f26b87d5090 R08: 0000000000000000 R09: 0000000000000000 [ 1436.861481][ T6948] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1436.869482][ T6948] R13: 0000000000000001 R14: 00007f26bab76080 R15: 00007ffeaf43ebc8 [ 1436.877481][ T6948] [ 1436.930030][ T6924] netlink: 'syz.1.10286': attribute type 33 has an invalid length. [ 1436.938016][ T6924] netlink: 322 bytes leftover after parsing attributes in process `syz.1.10286'. [ 1437.495132][ T6962] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10298'. [ 1437.851142][ T6977] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10301'. [ 1438.806380][ T6988] netlink: 334 bytes leftover after parsing attributes in process `syz.2.10306'. [ 1440.054843][ T7014] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10313'. [ 1440.689311][ T7024] netlink: 12 bytes leftover after parsing attributes in process `syz.1.10316'. [ 1441.907729][ T7030] netlink: 'syz.2.10319': attribute type 33 has an invalid length. [ 1441.937807][ T7030] netlink: 322 bytes leftover after parsing attributes in process `syz.2.10319'. [ 1442.771859][ T7065] FAULT_INJECTION: forcing a failure. [ 1442.771859][ T7065] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1442.802885][ T7065] CPU: 1 UID: 0 PID: 7065 Comm: syz.1.10333 Not tainted 6.13.0-rc5-syzkaller #0 [ 1442.812088][ T7065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1442.822190][ T7065] Call Trace: [ 1442.825508][ T7065] [ 1442.828479][ T7065] dump_stack_lvl+0x16c/0x1f0 [ 1442.833217][ T7065] should_fail_ex+0x497/0x5b0 [ 1442.837956][ T7065] _copy_to_user+0x32/0xd0 [ 1442.842441][ T7065] put_itimerspec64+0xbe/0x1d0 [ 1442.847271][ T7065] ? __pfx_put_itimerspec64+0x10/0x10 [ 1442.852713][ T7065] ? __pfx_do_timer_gettime+0x10/0x10 [ 1442.858145][ T7065] __x64_sys_timer_gettime+0x141/0x170 [ 1442.863671][ T7065] ? __pfx___x64_sys_timer_gettime+0x10/0x10 [ 1442.869708][ T7065] ? ksys_write+0x1ba/0x250 [ 1442.874274][ T7065] ? rcu_is_watching+0x12/0xc0 [ 1442.879106][ T7065] ? rcu_is_watching+0x12/0xc0 [ 1442.883933][ T7065] do_syscall_64+0xcd/0x250 [ 1442.888498][ T7065] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1442.894454][ T7065] RIP: 0033:0x7fdb0cb85d29 [ 1442.898916][ T7065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1442.918585][ T7065] RSP: 002b:00007fdb0da5a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e0 [ 1442.927066][ T7065] RAX: ffffffffffffffda RBX: 00007fdb0cd75fa0 RCX: 00007fdb0cb85d29 [ 1442.935085][ T7065] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1442.943122][ T7065] RBP: 00007fdb0da5a090 R08: 0000000000000000 R09: 0000000000000000 [ 1442.951141][ T7065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1442.959162][ T7065] R13: 0000000000000000 R14: 00007fdb0cd75fa0 R15: 00007ffef8f533c8 [ 1442.967198][ T7065] [ 1443.453688][ T7069] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10335'. [ 1444.187331][ T7082] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10339'. [ 1444.542131][ T7091] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10342'. [ 1445.045056][ T7095] FAULT_INJECTION: forcing a failure. [ 1445.045056][ T7095] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1445.058674][ T7095] CPU: 1 UID: 0 PID: 7095 Comm: syz.3.10344 Not tainted 6.13.0-rc5-syzkaller #0 [ 1445.067759][ T7095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1445.077861][ T7095] Call Trace: [ 1445.081179][ T7095] [ 1445.084153][ T7095] dump_stack_lvl+0x16c/0x1f0 [ 1445.088902][ T7095] should_fail_ex+0x497/0x5b0 [ 1445.093638][ T7095] ? page_copy_sane+0xcd/0x2d0 [ 1445.098464][ T7095] copy_page_from_iter_atomic+0x399/0x1810 [ 1445.104349][ T7095] ? mntput_no_expire+0x158/0xaf0 [ 1445.109428][ T7095] ? __pfx_lock_release+0x10/0x10 [ 1445.114499][ T7095] ? do_raw_spin_lock+0x12d/0x2c0 [ 1445.119579][ T7095] ? __pfx_copy_page_from_iter_atomic+0x10/0x10 [ 1445.125887][ T7095] ? fault_in_readable+0x1a7/0x200 [ 1445.131082][ T7095] ? __pfx_fault_in_readable+0x10/0x10 [ 1445.136588][ T7095] ? I_BDEV+0xd/0x20 [ 1445.140544][ T7095] ? inode_to_bdi+0x9e/0x160 [ 1445.145236][ T7095] iomap_file_buffered_write+0x633/0xc70 [ 1445.150942][ T7095] ? __pfx_iomap_file_buffered_write+0x10/0x10 [ 1445.157162][ T7095] ? __pfx_inode_set_ctime_current+0x10/0x10 [ 1445.163220][ T7095] ? rcu_is_watching+0x12/0xc0 [ 1445.168055][ T7095] ? preempt_count_add+0x76/0x150 [ 1445.173147][ T7095] ? mnt_put_write_access_file+0xc1/0xf0 [ 1445.178844][ T7095] blkdev_write_iter+0x574/0xd40 [ 1445.183823][ T7095] vfs_write+0x5ae/0x1150 [ 1445.188182][ T7095] ? __pfx_blkdev_write_iter+0x10/0x10 [ 1445.193671][ T7095] ? __pfx_vfs_write+0x10/0x10 [ 1445.198464][ T7095] ? __fget_files+0x40/0x3a0 [ 1445.203094][ T7095] ksys_write+0x12b/0x250 [ 1445.207449][ T7095] ? __pfx_ksys_write+0x10/0x10 [ 1445.212332][ T7095] ? rcu_is_watching+0x12/0xc0 [ 1445.217139][ T7095] ? rcu_is_watching+0x12/0xc0 [ 1445.221942][ T7095] do_syscall_64+0xcd/0x250 [ 1445.226485][ T7095] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1445.232417][ T7095] RIP: 0033:0x7ff229185d29 [ 1445.236851][ T7095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1445.256483][ T7095] RSP: 002b:00007ff226ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1445.264921][ T7095] RAX: ffffffffffffffda RBX: 00007ff229375fa0 RCX: 00007ff229185d29 [ 1445.272910][ T7095] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003 [ 1445.280901][ T7095] RBP: 00007ff226ff6090 R08: 0000000000000000 R09: 0000000000000000 [ 1445.288892][ T7095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1445.296879][ T7095] R13: 0000000000000000 R14: 00007ff229375fa0 R15: 00007ffd4e2f8eb8 [ 1445.304876][ T7095] [ 1445.749674][ T7118] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10347'. [ 1446.213484][ T7128] vivid-003: ================= START STATUS ================= [ 1446.274579][ T7128] vivid-003: Interlaced VBI Format: false [ 1446.319491][ T7128] vivid-003: ================== END STATUS ================== [ 1447.108718][ T7138] netlink: 'syz.0.10350': attribute type 33 has an invalid length. [ 1447.165206][ T7138] netlink: 322 bytes leftover after parsing attributes in process `syz.0.10350'. [ 1447.703429][ T7161] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10358'. [ 1450.157486][ T7181] netlink: 12 bytes leftover after parsing attributes in process `syz.3.10363'. [ 1452.069775][ T7208] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10371'. [ 1452.679430][ T7216] netlink: 12 bytes leftover after parsing attributes in process `syz.2.10373'. [ 1453.095389][ T7220] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10375'. [ 1453.412157][ T7232] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10386'. [ 1453.548731][ T7234] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10378'. [ 1453.573279][ T7212] netlink: 'syz.3.10372': attribute type 33 has an invalid length. [ 1453.679499][ T7212] netlink: 322 bytes leftover after parsing attributes in process `syz.3.10372'. [ 1454.866205][ T7249] vivid-003: ================= START STATUS ================= [ 1454.925248][ T7249] vivid-003: Interlaced VBI Format: false [ 1454.931094][ T7249] vivid-003: ================== END STATUS ================== [ 1456.034153][ T7266] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10388'. [ 1456.281167][ T7279] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10391'. [ 1456.291127][ T7278] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10389'. [ 1456.303757][ T7277] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10390'. [ 1457.717412][ T7309] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10399'. [ 1457.963894][ T7313] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10401'. [ 1457.970348][ T7316] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10402'. [ 1458.554467][ T7332] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10404'. [ 1459.111761][ T7329] netlink: 'syz.1.10403': attribute type 33 has an invalid length. [ 1459.143972][ T7329] netlink: 322 bytes leftover after parsing attributes in process `syz.1.10403'. [ 1459.960099][ T7344] netlink: 'syz.0.10409': attribute type 33 has an invalid length. [ 1460.008590][ T7344] netlink: 322 bytes leftover after parsing attributes in process `syz.0.10409'. [ 1460.157862][ T7357] netlink: 'syz.1.10413': attribute type 33 has an invalid length. [ 1461.709246][ T7374] __nla_validate_parse: 2 callbacks suppressed [ 1461.709273][ T7374] netlink: 12 bytes leftover after parsing attributes in process `syz.1.10416'. [ 1462.168375][ T7382] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10418'. [ 1462.486857][ T7392] netlink: 'syz.2.10423': attribute type 20 has an invalid length. [ 1462.494835][ T7392] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10423'. [ 1463.788604][ T7419] netlink: 'syz.3.10432': attribute type 20 has an invalid length. [ 1463.828818][ T7419] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10432'. [ 1464.105915][ T7422] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10441'. [ 1464.604686][ T7424] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10433'. [ 1465.768696][ T7457] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10442'. [ 1466.010867][ T7459] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10453'. [ 1466.371805][ T7478] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10448'. [ 1466.675490][ T7482] FAULT_INJECTION: forcing a failure. [ 1466.675490][ T7482] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1466.800494][ T7482] CPU: 1 UID: 0 PID: 7482 Comm: syz.0.10449 Not tainted 6.13.0-rc5-syzkaller #0 [ 1466.809616][ T7482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1466.819717][ T7482] Call Trace: [ 1466.823035][ T7482] [ 1466.826010][ T7482] dump_stack_lvl+0x16c/0x1f0 [ 1466.830752][ T7482] should_fail_ex+0x497/0x5b0 [ 1466.835488][ T7482] _copy_from_user+0x2e/0xd0 [ 1466.840143][ T7482] copy_msghdr_from_user+0x99/0x160 [ 1466.845398][ T7482] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 1466.851243][ T7482] ? _kstrtoull+0x146/0x200 [ 1466.855770][ T7482] ? __pfx__kstrtoull+0x10/0x10 [ 1466.860728][ T7482] ? lock_release+0x4e2/0x6f0 [ 1466.865434][ T7482] ___sys_sendmsg+0xff/0x1e0 [ 1466.870063][ T7482] ? __pfx____sys_sendmsg+0x10/0x10 [ 1466.875303][ T7482] ? __pfx_kstrtouint+0x10/0x10 [ 1466.880222][ T7482] ? trace_lock_acquire+0x14e/0x1f0 [ 1466.885465][ T7482] __sys_sendmmsg+0x201/0x420 [ 1466.890186][ T7482] ? __pfx___sys_sendmmsg+0x10/0x10 [ 1466.895517][ T7482] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1466.901543][ T7482] ? fput+0x67/0x440 [ 1466.905473][ T7482] ? ksys_write+0x1ba/0x250 [ 1466.910002][ T7482] ? __pfx_ksys_write+0x10/0x10 [ 1466.914907][ T7482] __x64_sys_sendmmsg+0x9c/0x100 [ 1466.919889][ T7482] do_syscall_64+0xcd/0x250 [ 1466.924426][ T7482] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1466.930348][ T7482] RIP: 0033:0x7f26ba985d29 [ 1466.934792][ T7482] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1466.954424][ T7482] RSP: 002b:00007f26b87d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1466.962872][ T7482] RAX: ffffffffffffffda RBX: 00007f26bab76080 RCX: 00007f26ba985d29 [ 1466.970877][ T7482] RDX: 0000000000000002 RSI: 00000000200006c0 RDI: 0000000000000004 [ 1466.979065][ T7482] RBP: 00007f26b87d5090 R08: 0000000000000000 R09: 0000000000000000 [ 1466.987064][ T7482] R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000001 [ 1466.995060][ T7482] R13: 0000000000000000 R14: 00007f26bab76080 R15: 00007ffeaf43ebc8 [ 1467.003059][ T7482] [ 1467.769294][ T7504] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10456'. [ 1468.092750][ T7517] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10460'. [ 1468.273710][ T7523] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10462'. [ 1468.557878][ T29] audit: type=1807 audit(8277293107.719:31): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0 [ 1468.576859][ T7528] ima: policy update failed [ 1468.586217][ T29] audit: type=1802 audit(8277293107.739:32): pid=7528 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.3.10463" res=0 errno=0 [ 1468.637935][ T29] audit: type=1802 audit(8277293107.769:33): pid=7528 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.10463" res=0 errno=0 [ 1470.187680][ T7557] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10472'. [ 1470.705282][ T7574] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10475'. [ 1471.545021][ T7599] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10484'. [ 1472.636418][ T7629] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10494'. [ 1472.906689][ T7633] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10496'. [ 1473.976855][ T7661] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10506'. [ 1474.101719][ T7656] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10504'. [ 1474.404429][ T7673] FAULT_INJECTION: forcing a failure. [ 1474.404429][ T7673] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1474.453174][ T7673] CPU: 1 UID: 0 PID: 7673 Comm: syz.0.10509 Not tainted 6.13.0-rc5-syzkaller #0 [ 1474.462281][ T7673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1474.472461][ T7673] Call Trace: [ 1474.475761][ T7673] [ 1474.478712][ T7673] dump_stack_lvl+0x16c/0x1f0 [ 1474.483437][ T7673] should_fail_ex+0x497/0x5b0 [ 1474.488146][ T7673] _copy_from_user+0x2e/0xd0 [ 1474.492772][ T7673] memdup_user+0x71/0xd0 [ 1474.497056][ T7673] proc_pid_attr_write+0x22e/0x790 [ 1474.502194][ T7673] ? __pfx_proc_pid_attr_write+0x10/0x10 [ 1474.507858][ T7673] vfs_write+0x24c/0x1150 [ 1474.512215][ T7673] ? __fget_files+0x1fc/0x3a0 [ 1474.516923][ T7673] ? __pfx___mutex_lock+0x10/0x10 [ 1474.521980][ T7673] ? __pfx_vfs_write+0x10/0x10 [ 1474.526779][ T7673] ? __fget_files+0x206/0x3a0 [ 1474.531488][ T7673] ksys_write+0x12b/0x250 [ 1474.535847][ T7673] ? __pfx_ksys_write+0x10/0x10 [ 1474.540726][ T7673] ? rcu_is_watching+0x12/0xc0 [ 1474.545530][ T7673] ? rcu_is_watching+0x12/0xc0 [ 1474.550327][ T7673] do_syscall_64+0xcd/0x250 [ 1474.554873][ T7673] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1474.560827][ T7673] RIP: 0033:0x7f26ba985d29 [ 1474.565273][ T7673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1474.584904][ T7673] RSP: 002b:00007f26b87f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1474.593344][ T7673] RAX: ffffffffffffffda RBX: 00007f26bab75fa0 RCX: 00007f26ba985d29 [ 1474.601335][ T7673] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 1474.609329][ T7673] RBP: 00007f26b87f6090 R08: 0000000000000000 R09: 0000000000000000 [ 1474.617319][ T7673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1474.625309][ T7673] R13: 0000000000000000 R14: 00007f26bab75fa0 R15: 00007ffeaf43ebc8 [ 1474.633310][ T7673] [ 1474.813099][ T7678] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10510'. [ 1475.654230][ T7696] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10517'. [ 1475.797945][ T7685] netlink: 'syz.1.10514': attribute type 33 has an invalid length. [ 1475.858379][ T7685] netlink: 322 bytes leftover after parsing attributes in process `syz.1.10514'. [ 1476.016012][ T7704] openvswitch: netlink: Missing valid actions attribute. [ 1476.113590][ T4930] Bluetooth: hci0: command 0x0406 tx timeout [ 1477.319829][ T7731] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10527'. [ 1477.372065][ T7710] netlink: 'syz.3.10520': attribute type 33 has an invalid length. [ 1477.427793][ T7710] netlink: 322 bytes leftover after parsing attributes in process `syz.3.10520'. [ 1478.427629][ T7741] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10529'. [ 1478.528405][ T7749] netlink: 'syz.0.10530': attribute type 33 has an invalid length. [ 1478.628033][ T7749] netlink: 322 bytes leftover after parsing attributes in process `syz.0.10530'. [ 1480.323649][ T7767] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10546'. [ 1480.901171][ T7788] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10540'. [ 1481.023134][ T29] audit: type=1807 audit(8277293120.254:34): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0 [ 1481.048078][ T7791] ima: policy update failed [ 1481.078869][ T29] audit: type=1802 audit(8277293120.254:35): pid=7791 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.0.10541" res=0 errno=0 [ 1481.174023][ T29] audit: type=1802 audit(8277293120.284:36): pid=7791 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.10541" res=0 errno=0 [ 1482.263019][ T7800] netlink: 'syz.2.10547': attribute type 33 has an invalid length. [ 1482.292331][ T7800] netlink: 322 bytes leftover after parsing attributes in process `syz.2.10547'. [ 1482.391334][ T7810] FAULT_INJECTION: forcing a failure. [ 1482.391334][ T7810] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1482.488626][ T7796] netlink: 'syz.3.10544': attribute type 33 has an invalid length. [ 1482.552223][ T7796] netlink: 322 bytes leftover after parsing attributes in process `syz.3.10544'. [ 1482.569736][ T7810] CPU: 1 UID: 0 PID: 7810 Comm: syz.1.10548 Not tainted 6.13.0-rc5-syzkaller #0 [ 1482.578939][ T7810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1482.589081][ T7810] Call Trace: [ 1482.592398][ T7810] [ 1482.595368][ T7810] dump_stack_lvl+0x16c/0x1f0 [ 1482.600107][ T7810] should_fail_ex+0x497/0x5b0 [ 1482.604853][ T7810] _copy_to_user+0x32/0xd0 [ 1482.609332][ T7810] simple_read_from_buffer+0xd0/0x160 [ 1482.614762][ T7810] proc_fail_nth_read+0x198/0x270 [ 1482.619877][ T7810] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1482.625496][ T7810] ? bpf_lsm_file_permission+0x9/0x10 [ 1482.630939][ T7810] ? security_file_permission+0x71/0x210 [ 1482.636636][ T7810] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1482.642247][ T7810] vfs_read+0x1df/0xbe0 [ 1482.646453][ T7810] ? __fget_files+0x1fc/0x3a0 [ 1482.651190][ T7810] ? __pfx___mutex_lock+0x10/0x10 [ 1482.656279][ T7810] ? __pfx_vfs_read+0x10/0x10 [ 1482.661053][ T7810] ? __fget_files+0x206/0x3a0 [ 1482.665804][ T7810] ksys_read+0x12b/0x250 [ 1482.670140][ T7810] ? __pfx_ksys_read+0x10/0x10 [ 1482.674967][ T7810] ? rcu_is_watching+0x12/0xc0 [ 1482.679799][ T7810] ? rcu_is_watching+0x12/0xc0 [ 1482.684637][ T7810] do_syscall_64+0xcd/0x250 [ 1482.689202][ T7810] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1482.695329][ T7810] RIP: 0033:0x7fdb0cb8473c [ 1482.699788][ T7810] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1482.719458][ T7810] RSP: 002b:00007fdb0da5a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1482.727929][ T7810] RAX: ffffffffffffffda RBX: 00007fdb0cd75fa0 RCX: 00007fdb0cb8473c [ 1482.735953][ T7810] RDX: 000000000000000f RSI: 00007fdb0da5a0a0 RDI: 0000000000000003 [ 1482.743976][ T7810] RBP: 00007fdb0da5a090 R08: 0000000000000000 R09: 0000000000000000 [ 1482.751999][ T7810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1482.760020][ T7810] R13: 0000000000000001 R14: 00007fdb0cd75fa0 R15: 00007ffef8f533c8 [ 1482.768054][ T7810] [ 1483.715826][ T7828] netlink: 330 bytes leftover after parsing attributes in process `syz.2.10551'. [ 1484.226595][ T1292] ieee802154 phy0 wpan0: encryption failed: -22 [ 1484.252221][ T1292] ieee802154 phy1 wpan1: encryption failed: -22 [ 1484.371624][ T29] audit: type=1807 audit(8277293123.611:37): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0 [ 1484.391355][ T7837] ima: policy update failed [ 1484.412857][ T29] audit: type=1802 audit(8277293123.611:38): pid=7837 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.2.10554" res=0 errno=0 [ 1484.478370][ T29] audit: type=1802 audit(8277293123.722:39): pid=7837 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.10554" res=0 errno=0 [ 1484.571104][ T7843] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10555'. [ 1487.913348][ T7855] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10556'. [ 1490.548775][ T7873] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10560'. [ 1491.388645][ T4508] Bluetooth: hci1: command 0x0406 tx timeout [ 1491.776541][ T7889] FAULT_INJECTION: forcing a failure. [ 1491.776541][ T7889] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1491.825329][ T7889] CPU: 0 UID: 0 PID: 7889 Comm: syz.3.10567 Not tainted 6.13.0-rc5-syzkaller #0 [ 1491.834442][ T7889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1491.844549][ T7889] Call Trace: [ 1491.847862][ T7889] [ 1491.850824][ T7889] dump_stack_lvl+0x16c/0x1f0 [ 1491.855559][ T7889] should_fail_ex+0x497/0x5b0 [ 1491.860295][ T7889] _copy_from_user+0x2e/0xd0 [ 1491.864945][ T7889] copy_msghdr_from_user+0x99/0x160 [ 1491.870207][ T7889] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 1491.876089][ T7889] ? rcu_is_watching+0x12/0xc0 [ 1491.880916][ T7889] ? lock_release+0x4e2/0x6f0 [ 1491.885643][ T7889] ? get_pid_task+0xfc/0x250 [ 1491.890307][ T7889] ___sys_sendmsg+0xff/0x1e0 [ 1491.895053][ T7889] ? get_pid_task+0x35/0x250 [ 1491.899734][ T7889] ? __pfx____sys_sendmsg+0x10/0x10 [ 1491.905003][ T7889] ? lock_release+0x4e2/0x6f0 [ 1491.909741][ T7889] ? __pfx_lock_release+0x10/0x10 [ 1491.914807][ T7889] ? trace_lock_acquire+0x14e/0x1f0 [ 1491.920083][ T7889] ? __fget_files+0x206/0x3a0 [ 1491.924824][ T7889] __sys_sendmsg+0x16e/0x220 [ 1491.929481][ T7889] ? __pfx___sys_sendmsg+0x10/0x10 [ 1491.934668][ T7889] ? rcu_is_watching+0x12/0xc0 [ 1491.939492][ T7889] ? rcu_is_watching+0x12/0xc0 [ 1491.944314][ T7889] do_syscall_64+0xcd/0x250 [ 1491.948874][ T7889] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1491.954853][ T7889] RIP: 0033:0x7ff229185d29 [ 1491.959310][ T7889] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1491.978968][ T7889] RSP: 002b:00007ff226ff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1491.987441][ T7889] RAX: ffffffffffffffda RBX: 00007ff229375fa0 RCX: 00007ff229185d29 [ 1491.995465][ T7889] RDX: 0000000010004010 RSI: 0000000020000100 RDI: 0000000000000003 [ 1492.003486][ T7889] RBP: 00007ff226ff6090 R08: 0000000000000000 R09: 0000000000000000 [ 1492.011504][ T7889] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1492.019525][ T7889] R13: 0000000000000000 R14: 00007ff229375fa0 R15: 00007ffd4e2f8eb8 [ 1492.027553][ T7889] [ 1492.625256][ T7899] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10570'. [ 1492.836752][ T7908] netlink: 330 bytes leftover after parsing attributes in process `syz.3.10572'. [ 1492.857362][ T7910] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10571'. [ 1494.005841][ T7882] netlink: 'syz.1.10563': attribute type 33 has an invalid length. [ 1494.081294][ T7882] netlink: 322 bytes leftover after parsing attributes in process `syz.1.10563'. [ 1494.447884][ T7927] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10576'. [ 1495.079544][ T7933] FAULT_INJECTION: forcing a failure. [ 1495.079544][ T7933] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1495.102055][ T7933] CPU: 0 UID: 0 PID: 7933 Comm: syz.3.10578 Not tainted 6.13.0-rc5-syzkaller #0 [ 1495.111154][ T7933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1495.121228][ T7933] Call Trace: [ 1495.124523][ T7933] [ 1495.127471][ T7933] dump_stack_lvl+0x16c/0x1f0 [ 1495.132184][ T7933] should_fail_ex+0x497/0x5b0 [ 1495.136900][ T7933] _copy_from_user+0x2e/0xd0 [ 1495.141535][ T7933] get_timespec64+0x8c/0x240 [ 1495.146161][ T7933] ? __pfx_get_timespec64+0x10/0x10 [ 1495.151401][ T7933] get_itimerspec64+0x1e/0x60 [ 1495.156114][ T7933] __x64_sys_timer_settime+0x17e/0x2c0 [ 1495.161601][ T7933] ? __pfx___x64_sys_timer_settime+0x10/0x10 [ 1495.167608][ T7933] ? ksys_write+0x1ba/0x250 [ 1495.172140][ T7933] ? rcu_is_watching+0x12/0xc0 [ 1495.176935][ T7933] ? rcu_is_watching+0x12/0xc0 [ 1495.181730][ T7933] do_syscall_64+0xcd/0x250 [ 1495.186265][ T7933] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1495.192188][ T7933] RIP: 0033:0x7ff229185d29 [ 1495.196622][ T7933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1495.216256][ T7933] RSP: 002b:00007ff226fd5038 EFLAGS: 00000246 ORIG_RAX: 00000000000000df [ 1495.224692][ T7933] RAX: ffffffffffffffda RBX: 00007ff229376080 RCX: 00007ff229185d29 [ 1495.232682][ T7933] RDX: 00000000200000c0 RSI: 00000000ffff8000 RDI: 0000000000000000 [ 1495.240676][ T7933] RBP: 00007ff226fd5090 R08: 0000000000000000 R09: 0000000000000000 [ 1495.248668][ T7933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1495.256657][ T7933] R13: 0000000000000000 R14: 00007ff229376080 R15: 00007ffd4e2f8eb8 [ 1495.264654][ T7933] [ 1496.478853][ T4508] Bluetooth: hci2: command 0x0406 tx timeout [ 1496.878182][ T7958] netlink: 'syz.2.10593': attribute type 33 has an invalid length. [ 1496.902551][ T7958] netlink: 322 bytes leftover after parsing attributes in process `syz.2.10593'. [ 1497.381668][ T7963] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10586'. [ 1498.395328][ T7985] FAULT_INJECTION: forcing a failure. [ 1498.395328][ T7985] name failslab, interval 1, probability 0, space 0, times 0 [ 1498.444997][ T7985] CPU: 0 UID: 0 PID: 7985 Comm: syz.2.10594 Not tainted 6.13.0-rc5-syzkaller #0 [ 1498.454121][ T7985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1498.464227][ T7985] Call Trace: [ 1498.467538][ T7985] [ 1498.470506][ T7985] dump_stack_lvl+0x16c/0x1f0 [ 1498.475237][ T7985] should_fail_ex+0x497/0x5b0 [ 1498.479977][ T7985] ? fs_reclaim_acquire+0xae/0x150 [ 1498.485147][ T7985] should_failslab+0xc2/0x120 [ 1498.489896][ T7985] __kmalloc_node_noprof+0xd1/0x520 [ 1498.495161][ T7985] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 1498.500682][ T7985] __kvmalloc_node_noprof+0xad/0x1a0 [ 1498.506028][ T7985] seq_read_iter+0x82a/0x12b0 [ 1498.510758][ T7985] ? __mutex_trylock_common+0xea/0x250 [ 1498.516269][ T7985] kernfs_fop_read_iter+0x414/0x580 [ 1498.521535][ T7985] ? rw_verify_area+0xd0/0x700 [ 1498.526352][ T7985] vfs_read+0x87f/0xbe0 [ 1498.530564][ T7985] ? __pfx_vfs_read+0x10/0x10 [ 1498.535299][ T7985] ksys_read+0x12b/0x250 [ 1498.539604][ T7985] ? __pfx_ksys_read+0x10/0x10 [ 1498.544415][ T7985] ? rcu_is_watching+0x12/0xc0 [ 1498.549237][ T7985] ? rcu_is_watching+0x12/0xc0 [ 1498.554066][ T7985] do_syscall_64+0xcd/0x250 [ 1498.558620][ T7985] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1498.564546][ T7985] RIP: 0033:0x7fbeba185d29 [ 1498.568983][ T7985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1498.588617][ T7985] RSP: 002b:00007fbebb046038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1498.597065][ T7985] RAX: ffffffffffffffda RBX: 00007fbeba375fa0 RCX: 00007fbeba185d29 [ 1498.605065][ T7985] RDX: 000000000000002a RSI: 0000000020000040 RDI: 0000000000000003 [ 1498.613059][ T7985] RBP: 00007fbebb046090 R08: 0000000000000000 R09: 0000000000000000 [ 1498.621055][ T7985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1498.629044][ T7985] R13: 0000000000000000 R14: 00007fbeba375fa0 R15: 00007ffc6515e8e8 [ 1498.637044][ T7985] [ 1498.642387][ T7986] netlink: 32 bytes leftover after parsing attributes in process `syz.3.10595'. [ 1499.131995][ T7988] netlink: 'syz.1.10591': attribute type 33 has an invalid length. [ 1499.180692][ T7988] netlink: 322 bytes leftover after parsing attributes in process `syz.1.10591'. [ 1499.268853][ T7997] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10597'. [ 1499.801553][ T7992] netlink: 'syz.3.10596': attribute type 33 has an invalid length. [ 1499.809549][ T7992] netlink: 322 bytes leftover after parsing attributes in process `syz.3.10596'. [ 1500.518147][ T7644] syz.1.10499 (7644) used greatest stack depth: 20264 bytes left [ 1501.548863][ T8016] openvswitch: netlink: Message has 70 unknown bytes. [ 1501.568327][ T8014] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10601'. [ 1501.578214][ T8016] misc userio: Invalid payload size [ 1501.616789][ T8016] misc userio: Invalid payload size [ 1501.679333][ T8015] ima: policy update failed [ 1501.755702][ T29] audit: type=1802 audit(8277293141.092:40): pid=8015 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.10603" res=0 errno=0 [ 1502.051851][ T8011] netlink: 'syz.2.10602': attribute type 33 has an invalid length. [ 1502.121776][ T8011] netlink: 322 bytes leftover after parsing attributes in process `syz.2.10602'. [ 1503.350358][ T8034] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10608'. [ 1503.697666][ T8033] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10607'. [ 1504.269324][ T8048] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10611'. [ 1504.425505][ T8041] ima: policy update failed [ 1504.477438][ T29] audit: type=1802 audit(8277293143.816:41): pid=8041 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.10609" res=0 errno=0 [ 1505.155027][ T8056] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10615'. [ 1505.541230][ T7734] syz.1.10526 (7734) used greatest stack depth: 20184 bytes left [ 1505.732377][ T8070] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10620'. [ 1506.011680][ T7708] syz.1.10514 (7708) used greatest stack depth: 19968 bytes left [ 1506.289397][ T8079] HfR: entered promiscuous mode [ 1506.632453][ T8083] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 1506.666156][T29553] Bluetooth: hci3: command 0x0406 tx timeout [ 1506.691205][ T8083] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 1507.238667][ T8098] netlink: 'syz.3.10629': attribute type 11 has an invalid length. [ 1509.312159][ T8119] netlink: 'syz.2.10635': attribute type 33 has an invalid length. [ 1509.411035][ T8119] netlink: 322 bytes leftover after parsing attributes in process `syz.2.10635'. [ 1510.359636][ T8136] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10640'. [ 1510.865483][ T8146] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10643'. [ 1511.043600][ T8153] netlink: 330 bytes leftover after parsing attributes in process `syz.1.10645'. [ 1511.081991][ T8155] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10647'. [ 1511.576096][ T8168] FAULT_INJECTION: forcing a failure. [ 1511.576096][ T8168] name failslab, interval 1, probability 0, space 0, times 0 [ 1511.611330][ T8168] CPU: 0 UID: 0 PID: 8168 Comm: syz.3.10652 Not tainted 6.13.0-rc5-syzkaller #0 [ 1511.620465][ T8168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1511.630568][ T8168] Call Trace: [ 1511.633884][ T8168] [ 1511.636853][ T8168] dump_stack_lvl+0x16c/0x1f0 [ 1511.641599][ T8168] should_fail_ex+0x497/0x5b0 [ 1511.646339][ T8168] ? fs_reclaim_acquire+0xae/0x150 [ 1511.651511][ T8168] should_failslab+0xc2/0x120 [ 1511.656282][ T8168] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 1511.661720][ T8168] ? getname_flags.part.0+0x4c/0x550 [ 1511.667084][ T8168] ? vfs_write+0x306/0x1150 [ 1511.671655][ T8168] getname_flags.part.0+0x4c/0x550 [ 1511.676848][ T8168] getname+0x8d/0xe0 [ 1511.680800][ T8168] do_sys_openat2+0x104/0x1e0 [ 1511.685543][ T8168] ? __pfx_do_sys_openat2+0x10/0x10 [ 1511.690813][ T8168] ? __fget_files+0x206/0x3a0 [ 1511.695550][ T8168] __x64_sys_openat+0x175/0x210 [ 1511.700469][ T8168] ? __pfx___x64_sys_openat+0x10/0x10 [ 1511.705909][ T8168] ? ksys_write+0x1ba/0x250 [ 1511.710469][ T8168] ? rcu_is_watching+0x12/0xc0 [ 1511.715292][ T8168] ? rcu_is_watching+0x12/0xc0 [ 1511.720115][ T8168] do_syscall_64+0xcd/0x250 [ 1511.724675][ T8168] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1511.730631][ T8168] RIP: 0033:0x7ff229184690 [ 1511.735089][ T8168] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 1511.754758][ T8168] RSP: 002b:00007ff226ff5f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1511.763269][ T8168] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007ff229184690 [ 1511.771293][ T8168] RDX: 0000000000000002 RSI: 00007ff226ff5fa0 RDI: 00000000ffffff9c [ 1511.779313][ T8168] RBP: 00007ff226ff5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1511.787336][ T8168] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 1511.795357][ T8168] R13: 0000000000000000 R14: 00007ff229375fa0 R15: 00007ffd4e2f8eb8 [ 1511.803388][ T8168] [ 1511.908657][ T7782] syz.1.10537 (7782) used greatest stack depth: 19936 bytes left [ 1511.966167][ T8160] netlink: 'syz.1.10649': attribute type 33 has an invalid length. [ 1511.974882][ T8160] netlink: 322 bytes leftover after parsing attributes in process `syz.1.10649'. [ 1512.404825][ T8183] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10657'. [ 1512.663513][ T8188] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10656'. [ 1513.572381][ T8197] netlink: 'syz.3.10661': attribute type 33 has an invalid length. [ 1513.601539][ T8197] netlink: 322 bytes leftover after parsing attributes in process `syz.3.10661'. [ 1514.546498][ T8218] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10669'. [ 1514.634845][ T8222] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10666'. [ 1514.927058][ T8207] netlink: 'syz.1.10665': attribute type 33 has an invalid length. [ 1514.958828][ T8207] netlink: 322 bytes leftover after parsing attributes in process `syz.1.10665'. [ 1517.315556][ T8240] netlink: 'syz.2.10677': attribute type 33 has an invalid length. [ 1517.387015][ T8240] netlink: 322 bytes leftover after parsing attributes in process `syz.2.10677'. [ 1517.549034][ T8249] netlink: 4 bytes leftover after parsing attributes in process `syz.0.10671'. [ 1517.917819][ T8249] ima: policy update failed [ 1517.922529][ T29] audit: type=1802 audit(8277293157.336:42): pid=8249 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.10671" res=0 errno=0 [ 1517.981635][ T8256] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10680'. [ 1519.027893][ T8267] netlink: 330 bytes leftover after parsing attributes in process `syz.3.10684'. [ 1520.308995][ T8284] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10691'. [ 1520.425494][ T8284] ima: policy update failed [ 1520.451099][ T29] audit: type=1802 audit(8277293159.879:43): pid=8284 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.10691" res=0 errno=0 [ 1520.612640][ T8290] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10692'. [ 1521.708856][ T8295] netlink: 'syz.3.10695': attribute type 33 has an invalid length. [ 1521.738101][ T8302] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10696'. [ 1521.747397][ T8295] netlink: 322 bytes leftover after parsing attributes in process `syz.3.10695'. [ 1523.084822][ T8325] netlink: 4 bytes leftover after parsing attributes in process `syz.2.10701'. [ 1523.169786][ T8325] ima: policy update failed [ 1523.174476][ T29] audit: type=1802 audit(8277293162.623:44): pid=8325 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.10701" res=0 errno=0 [ 1523.221428][ T8319] netlink: 'syz.1.10700': attribute type 33 has an invalid length. [ 1523.289501][ T8319] netlink: 322 bytes leftover after parsing attributes in process `syz.1.10700'. [ 1523.428728][ T8329] netlink: 244 bytes leftover after parsing attributes in process `syz.3.10706'. [ 1523.625260][ T8329] UHID_CREATE from different security context by process 669 (syz.3.10706), this is not allowed. [ 1524.026984][ T8343] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10707'. [ 1525.038800][ T8363] ovs_: entered promiscuous mode [ 1525.817421][ T8369] FAULT_INJECTION: forcing a failure. [ 1525.817421][ T8369] name failslab, interval 1, probability 0, space 0, times 0 [ 1525.859016][ T8371] nbd: must specify a device to reconfigure [ 1525.877546][ T8369] CPU: 1 UID: 0 PID: 8369 Comm: syz.3.10718 Not tainted 6.13.0-rc5-syzkaller #0 [ 1525.886659][ T8369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1525.896845][ T8369] Call Trace: [ 1525.900180][ T8369] [ 1525.903151][ T8369] dump_stack_lvl+0x16c/0x1f0 [ 1525.907888][ T8369] should_fail_ex+0x497/0x5b0 [ 1525.912632][ T8369] ? fs_reclaim_acquire+0xae/0x150 [ 1525.917796][ T8369] should_failslab+0xc2/0x120 [ 1525.922542][ T8369] __kmalloc_noprof+0xce/0x4f0 [ 1525.927371][ T8369] ? tomoyo_realpath_from_path+0xbf/0x710 [ 1525.933148][ T8369] tomoyo_realpath_from_path+0xbf/0x710 [ 1525.938749][ T8369] ? tomoyo_path_number_perm+0x235/0x5b0 [ 1525.939220][ T8374] netlink: 146 bytes leftover after parsing attributes in process `syz.2.10717'. [ 1525.944467][ T8369] tomoyo_path_number_perm+0x248/0x5b0 [ 1525.959097][ T8369] ? tomoyo_path_number_perm+0x235/0x5b0 [ 1525.964808][ T8369] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1525.970870][ T8369] ? rcu_is_watching+0x12/0xc0 [ 1525.975712][ T8369] ? preempt_count_add+0x76/0x150 [ 1525.980815][ T8369] ? __pfx_lock_release+0x10/0x10 [ 1525.985895][ T8369] ? trace_lock_acquire+0x14e/0x1f0 [ 1525.991165][ T8369] ? __fget_files+0x40/0x3a0 [ 1525.995819][ T8369] ? lock_acquire+0x2f/0xb0 [ 1526.000373][ T8369] ? __fget_files+0x40/0x3a0 [ 1526.005022][ T8369] ? __fget_files+0x206/0x3a0 [ 1526.009765][ T8369] security_file_ioctl+0x9b/0x240 [ 1526.014848][ T8369] __x64_sys_ioctl+0xb7/0x200 [ 1526.019575][ T8369] do_syscall_64+0xcd/0x250 [ 1526.024138][ T8369] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1526.030093][ T8369] RIP: 0033:0x7ff229185d29 [ 1526.034557][ T8369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1526.054222][ T8369] RSP: 002b:00007ff226ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1526.062692][ T8369] RAX: ffffffffffffffda RBX: 00007ff229375fa0 RCX: 00007ff229185d29 [ 1526.070714][ T8369] RDX: 0000000000000000 RSI: 000000008004b706 RDI: 0000000000000003 [ 1526.078731][ T8369] RBP: 00007ff226ff6090 R08: 0000000000000000 R09: 0000000000000000 [ 1526.086781][ T8369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1526.094797][ T8369] R13: 0000000000000000 R14: 00007ff229375fa0 R15: 00007ffd4e2f8eb8 [ 1526.102828][ T8369] [ 1526.230711][ T8369] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1526.401707][ T8373] ima: policy update failed [ 1526.425230][ T29] audit: type=1802 audit(8277293165.890:45): pid=8373 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.10716" res=0 errno=0 [ 1526.975387][ T8387] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10721'. [ 1527.392399][ T8389] netlink: 'syz.2.10722': attribute type 33 has an invalid length. [ 1527.437466][ T8389] netlink: 322 bytes leftover after parsing attributes in process `syz.2.10722'. [ 1527.966397][ T8411] FAULT_INJECTION: forcing a failure. [ 1527.966397][ T8411] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1528.042679][ T8411] CPU: 1 UID: 0 PID: 8411 Comm: syz.1.10729 Not tainted 6.13.0-rc5-syzkaller #0 [ 1528.051794][ T8411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1528.061896][ T8411] Call Trace: [ 1528.065210][ T8411] [ 1528.068170][ T8411] dump_stack_lvl+0x16c/0x1f0 [ 1528.072899][ T8411] should_fail_ex+0x497/0x5b0 [ 1528.077634][ T8411] _copy_from_user+0x2e/0xd0 [ 1528.082286][ T8411] __sys_bpf+0x215/0x57a0 [ 1528.086662][ T8411] ? lock_acquire+0x2f/0xb0 [ 1528.091298][ T8411] ? ksys_write+0x12b/0x250 [ 1528.095859][ T8411] ? __pfx___sys_bpf+0x10/0x10 [ 1528.100669][ T8411] ? vfs_write+0x306/0x1150 [ 1528.105221][ T8411] ? __pfx_vfs_write+0x10/0x10 [ 1528.110027][ T8411] ? do_sys_openat2+0xb1/0x1e0 [ 1528.114836][ T8411] ? ksys_write+0x1ba/0x250 [ 1528.119366][ T8411] ? __pfx_ksys_write+0x10/0x10 [ 1528.124247][ T8411] __x64_sys_bpf+0x78/0xc0 [ 1528.128692][ T8411] do_syscall_64+0xcd/0x250 [ 1528.133230][ T8411] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1528.139223][ T8411] RIP: 0033:0x7fdb0cb85d29 [ 1528.143661][ T8411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1528.163301][ T8411] RSP: 002b:00007fdb0da5a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 1528.171745][ T8411] RAX: ffffffffffffffda RBX: 00007fdb0cd75fa0 RCX: 00007fdb0cb85d29 [ 1528.179734][ T8411] RDX: 000000000000000c RSI: 0000000000000000 RDI: 0000000000000004 [ 1528.187724][ T8411] RBP: 00007fdb0da5a090 R08: 0000000000000000 R09: 0000000000000000 [ 1528.195712][ T8411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1528.203703][ T8411] R13: 0000000000000000 R14: 00007fdb0cd75fa0 R15: 00007ffef8f533c8 [ 1528.211722][ T8411] [ 1528.262442][ T8412] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10728'. [ 1528.507257][ T8410] netlink: 'syz.3.10727': attribute type 33 has an invalid length. [ 1528.534627][ T8415] netlink: 4 bytes leftover after parsing attributes in process `syz.2.10730'. [ 1528.611488][ T8410] netlink: 322 bytes leftover after parsing attributes in process `syz.3.10727'. [ 1529.239237][ T8424] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10732'. [ 1530.581805][ T8435] netlink: 'syz.1.10734': attribute type 33 has an invalid length. [ 1530.589803][ T8435] netlink: 322 bytes leftover after parsing attributes in process `syz.1.10734'. [ 1532.033892][ T7732] syz.0.10525 (7732) used greatest stack depth: 19264 bytes left [ 1532.194161][ T8450] netlink: 'syz.2.10739': attribute type 33 has an invalid length. [ 1532.242579][ T8450] netlink: 322 bytes leftover after parsing attributes in process `syz.2.10739'. [ 1533.537022][ T8478] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10748'. [ 1533.934967][ T8485] FAULT_INJECTION: forcing a failure. [ 1533.934967][ T8485] name failslab, interval 1, probability 0, space 0, times 0 [ 1534.142794][ T8485] CPU: 0 UID: 0 PID: 8485 Comm: syz.0.10750 Not tainted 6.13.0-rc5-syzkaller #0 [ 1534.151919][ T8485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1534.162028][ T8485] Call Trace: [ 1534.165359][ T8485] [ 1534.168327][ T8485] dump_stack_lvl+0x16c/0x1f0 [ 1534.173092][ T8485] should_fail_ex+0x497/0x5b0 [ 1534.177881][ T8485] ? fs_reclaim_acquire+0xae/0x150 [ 1534.183058][ T8485] should_failslab+0xc2/0x120 [ 1534.187802][ T8485] __kmalloc_node_noprof+0xd1/0x520 [ 1534.193072][ T8485] ? __pfx_lock_release+0x10/0x10 [ 1534.198147][ T8485] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 1534.203680][ T8485] __kvmalloc_node_noprof+0xad/0x1a0 [ 1534.209034][ T8485] seq_read_iter+0x82a/0x12b0 [ 1534.213761][ T8485] ? __mutex_trylock_common+0xea/0x250 [ 1534.219279][ T8485] ? apparmor_file_permission+0x251/0x400 [ 1534.225076][ T8485] proc_reg_read_iter+0x21d/0x310 [ 1534.230160][ T8485] vfs_read+0x87f/0xbe0 [ 1534.234376][ T8485] ? __pfx_vfs_read+0x10/0x10 [ 1534.239119][ T8485] ksys_read+0x12b/0x250 [ 1534.243419][ T8485] ? __pfx_ksys_read+0x10/0x10 [ 1534.248243][ T8485] ? rcu_is_watching+0x12/0xc0 [ 1534.253069][ T8485] ? rcu_is_watching+0x12/0xc0 [ 1534.257894][ T8485] do_syscall_64+0xcd/0x250 [ 1534.262460][ T8485] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1534.268414][ T8485] RIP: 0033:0x7f26ba985d29 [ 1534.272874][ T8485] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1534.292538][ T8485] RSP: 002b:00007f26b87f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1534.301011][ T8485] RAX: ffffffffffffffda RBX: 00007f26bab75fa0 RCX: 00007f26ba985d29 [ 1534.309033][ T8485] RDX: 0000000000000053 RSI: 0000000020001fc0 RDI: 0000000000000003 [ 1534.317053][ T8485] RBP: 00007f26b87f6090 R08: 0000000000000000 R09: 0000000000000000 [ 1534.325073][ T8485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1534.333090][ T8485] R13: 0000000000000000 R14: 00007f26bab75fa0 R15: 00007ffeaf43ebc8 [ 1534.341120][ T8485] [ 1536.708017][ T8521] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10761'. [ 1537.308766][ T8528] netlink: 'syz.3.10764': attribute type 33 has an invalid length. [ 1537.386050][ T8528] netlink: 322 bytes leftover after parsing attributes in process `syz.3.10764'. [ 1538.245389][ T8541] netlink: 4 bytes leftover after parsing attributes in process `syz.0.10771'. [ 1539.056601][ T8549] netlink: 'syz.3.10773': attribute type 33 has an invalid length. [ 1539.094076][ T8564] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10777'. [ 1539.106337][ T8549] netlink: 322 bytes leftover after parsing attributes in process `syz.3.10773'. [ 1540.171632][ T8586] FAULT_INJECTION: forcing a failure. [ 1540.171632][ T8586] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1540.233227][ T8586] CPU: 0 UID: 0 PID: 8586 Comm: syz.1.10786 Not tainted 6.13.0-rc5-syzkaller #0 [ 1540.242338][ T8586] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1540.252438][ T8586] Call Trace: [ 1540.255746][ T8586] [ 1540.258711][ T8586] dump_stack_lvl+0x16c/0x1f0 [ 1540.263449][ T8586] should_fail_ex+0x497/0x5b0 [ 1540.268184][ T8586] _copy_to_user+0x32/0xd0 [ 1540.272659][ T8586] simple_read_from_buffer+0xd0/0x160 [ 1540.278086][ T8586] proc_fail_nth_read+0x198/0x270 [ 1540.283178][ T8586] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1540.288813][ T8586] ? bpf_lsm_file_permission+0x9/0x10 [ 1540.294259][ T8586] ? security_file_permission+0x71/0x210 [ 1540.299943][ T8586] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1540.305559][ T8586] vfs_read+0x1df/0xbe0 [ 1540.309770][ T8586] ? __fget_files+0x1fc/0x3a0 [ 1540.314498][ T8586] ? __pfx___mutex_lock+0x10/0x10 [ 1540.319577][ T8586] ? __pfx_vfs_read+0x10/0x10 [ 1540.324318][ T8586] ? __fget_files+0x206/0x3a0 [ 1540.329051][ T8586] ksys_read+0x12b/0x250 [ 1540.333349][ T8586] ? __pfx_ksys_read+0x10/0x10 [ 1540.338164][ T8586] ? rcu_is_watching+0x12/0xc0 [ 1540.342987][ T8586] ? rcu_is_watching+0x12/0xc0 [ 1540.347799][ T8586] do_syscall_64+0xcd/0x250 [ 1540.352340][ T8586] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1540.358266][ T8586] RIP: 0033:0x7fdb0cb8473c [ 1540.362703][ T8586] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1540.382364][ T8586] RSP: 002b:00007fdb0da5a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1540.390823][ T8586] RAX: ffffffffffffffda RBX: 00007fdb0cd75fa0 RCX: 00007fdb0cb8473c [ 1540.398811][ T8586] RDX: 000000000000000f RSI: 00007fdb0da5a0a0 RDI: 0000000000000004 [ 1540.406799][ T8586] RBP: 00007fdb0da5a090 R08: 0000000000000000 R09: 0000000000000000 [ 1540.414791][ T8586] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1540.422784][ T8586] R13: 0000000000000000 R14: 00007fdb0cd75fa0 R15: 00007ffef8f533c8 [ 1540.430785][ T8586] [ 1541.308753][ T8610] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10791'. [ 1541.756044][ T8605] netlink: 'syz.0.10790': attribute type 33 has an invalid length. [ 1541.781089][ T8605] netlink: 322 bytes leftover after parsing attributes in process `syz.0.10790'. [ 1543.462955][ T8644] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10802'. [ 1543.612724][ T8649] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10803'. [ 1543.642853][ T8638] netlink: 'syz.2.10800': attribute type 33 has an invalid length. [ 1543.662583][ T8638] netlink: 322 bytes leftover after parsing attributes in process `syz.2.10800'. [ 1544.901471][ T8679] netlink: 338 bytes leftover after parsing attributes in process `syz.0.10813'. [ 1545.074428][ T8687] netlink: 4 bytes leftover after parsing attributes in process `syz.1.10814'. [ 1545.106913][ T8679] netlink: 338 bytes leftover after parsing attributes in process `syz.0.10813'. [ 1545.257682][ T8694] netlink: 'syz.2.10818': attribute type 33 has an invalid length. [ 1545.285892][ T8694] netlink: 322 bytes leftover after parsing attributes in process `syz.2.10818'. [ 1545.346701][ T1292] ieee802154 phy0 wpan0: encryption failed: -22 [ 1545.355068][ T1292] ieee802154 phy1 wpan1: encryption failed: -22 [ 1545.471387][ T8703] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10817'. [ 1545.797094][ T29] audit: type=1800 audit(8277293185.361:46): pid=8712 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.10823" name="trace_pipe" dev="tracefs" ino=204 res=0 errno=0 [ 1546.558354][ T8734] netlink: 4 bytes leftover after parsing attributes in process `syz.2.10828'. [ 1546.865659][ T8739] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10830'. [ 1546.906343][ T8739] gretap0: entered promiscuous mode [ 1548.867735][ T8793] netlink: 'syz.3.10848': attribute type 33 has an invalid length. [ 1548.884226][ T8793] __nla_validate_parse: 4 callbacks suppressed [ 1548.884253][ T8793] netlink: 322 bytes leftover after parsing attributes in process `syz.3.10848'. [ 1548.973235][ T8800] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10850'. [ 1549.262225][ T8798] netlink: 'syz.2.10849': attribute type 33 has an invalid length. [ 1549.348723][ T8798] netlink: 322 bytes leftover after parsing attributes in process `syz.2.10849'. [ 1549.455713][ T8812] netlink: 330 bytes leftover after parsing attributes in process `syz.1.10855'. [ 1549.742673][ T8822] netlink: 338 bytes leftover after parsing attributes in process `syz.3.10857'. [ 1549.759880][ T8821] synth uevent: /devices/platform/dummy_hcd.4/usb5/5-0:1.0/usb5-port1: unknown uevent action string [ 1549.783303][ T8822] netlink: 338 bytes leftover after parsing attributes in process `syz.3.10857'. [ 1549.799623][ T8821] usb usb5-port1: uevent: failed to send synthetic uevent: -22 [ 1549.867518][ T8821] synth uevent: /devices/platform/dummy_hcd.4/usb5/5-0:1.0/usb5-port1: unknown uevent action string [ 1549.948008][ T8821] usb usb5-port1: uevent: failed to send synthetic uevent: -22 [ 1550.396766][ T8834] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10862'. [ 1550.503883][ T8840] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10863'. [ 1550.737237][ T8845] FAULT_INJECTION: forcing a failure. [ 1550.737237][ T8845] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1550.806515][ T8845] CPU: 1 UID: 0 PID: 8845 Comm: syz.0.10865 Not tainted 6.13.0-rc5-syzkaller #0 [ 1550.815630][ T8845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1550.825799][ T8845] Call Trace: [ 1550.829118][ T8845] [ 1550.832089][ T8845] dump_stack_lvl+0x16c/0x1f0 [ 1550.836826][ T8845] should_fail_ex+0x497/0x5b0 [ 1550.841576][ T8845] _copy_from_user+0x2e/0xd0 [ 1550.846237][ T8845] copy_clone_args_from_user+0x156/0x780 [ 1550.851927][ T8845] ? rcu_is_watching+0x12/0xc0 [ 1550.856804][ T8845] ? lock_release+0x4e2/0x6f0 [ 1550.861541][ T8845] ? ksys_write+0x12b/0x250 [ 1550.866112][ T8845] ? __pfx_copy_clone_args_from_user+0x10/0x10 [ 1550.872332][ T8845] ? preempt_count_add+0x76/0x150 [ 1550.877434][ T8845] ? vfs_write+0x306/0x1150 [ 1550.882009][ T8845] __do_sys_clone3+0xac/0x270 [ 1550.886751][ T8845] ? __pfx___do_sys_clone3+0x10/0x10 [ 1550.892122][ T8845] ? rcu_is_watching+0x12/0xc0 [ 1550.896954][ T8845] ? rcu_is_watching+0x12/0xc0 [ 1550.901785][ T8845] do_syscall_64+0xcd/0x250 [ 1550.906350][ T8845] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1550.912315][ T8845] RIP: 0033:0x7f26ba985d29 [ 1550.916781][ T8845] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1550.936592][ T8845] RSP: 002b:00007f26b87f5f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1550.945075][ T8845] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f26ba985d29 [ 1550.953197][ T8845] RDX: 00007f26b87f5f20 RSI: 0000000000000058 RDI: 00007f26b87f5f20 [ 1550.961227][ T8845] RBP: 00007f26b87f6090 R08: 0000000000000000 R09: 0000000000000058 [ 1550.969260][ T8845] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1550.977384][ T8845] R13: 0000000000000000 R14: 00007f26bab75fa0 R15: 00007ffeaf43ebc8 [ 1550.985429][ T8845] [ 1551.342573][ T8854] netlink: 330 bytes leftover after parsing attributes in process `syz.0.10868'. [ 1551.670683][ T8861] nbd: must specify a device to reconfigure [ 1552.384612][ T8866] netlink: 'syz.1.10872': attribute type 33 has an invalid length. [ 1552.433065][ T8866] netlink: 322 bytes leftover after parsing attributes in process `syz.1.10872'. [ 1554.092136][ T8911] FAULT_INJECTION: forcing a failure. [ 1554.092136][ T8911] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1554.172922][ T8911] CPU: 0 UID: 0 PID: 8911 Comm: syz.3.10887 Not tainted 6.13.0-rc5-syzkaller #0 [ 1554.182071][ T8911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1554.192186][ T8911] Call Trace: [ 1554.195507][ T8911] [ 1554.198479][ T8911] dump_stack_lvl+0x16c/0x1f0 [ 1554.203226][ T8911] should_fail_ex+0x497/0x5b0 [ 1554.207975][ T8911] _copy_from_user+0x2e/0xd0 [ 1554.212642][ T8911] io_register_pbuf_ring+0x107/0x8e0 [ 1554.218006][ T8911] ? __pfx_io_register_pbuf_ring+0x10/0x10 [ 1554.223908][ T8911] ? __pfx_lock_release+0x10/0x10 [ 1554.229001][ T8911] ? __mutex_trylock_common+0xea/0x250 [ 1554.234518][ T8911] ? __pfx___mutex_trylock_common+0x10/0x10 [ 1554.240479][ T8911] __io_uring_register+0xf42/0x2290 [ 1554.245760][ T8911] ? trace_contention_end+0xee/0x140 [ 1554.251108][ T8911] ? __pfx___io_uring_register+0x10/0x10 [ 1554.256820][ T8911] ? __mutex_lock+0x1cc/0xa60 [ 1554.261577][ T8911] ? lock_release+0x4e2/0x6f0 [ 1554.266502][ T8911] ? __fget_files+0x1fc/0x3a0 [ 1554.271248][ T8911] ? __x64_sys_io_uring_register+0x168/0x2b0 [ 1554.277295][ T8911] ? __pfx_lock_release+0x10/0x10 [ 1554.282385][ T8911] ? __pfx___mutex_lock+0x10/0x10 [ 1554.287512][ T8911] ? __fget_files+0x40/0x3a0 [ 1554.292171][ T8911] ? __fget_files+0x40/0x3a0 [ 1554.296821][ T8911] ? __fget_files+0x206/0x3a0 [ 1554.301570][ T8911] __x64_sys_io_uring_register+0x17a/0x2b0 [ 1554.307476][ T8911] do_syscall_64+0xcd/0x250 [ 1554.312051][ T8911] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1554.318015][ T8911] RIP: 0033:0x7ff229185d29 [ 1554.322478][ T8911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1554.342156][ T8911] RSP: 002b:00007ff226fd5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab [ 1554.350640][ T8911] RAX: ffffffffffffffda RBX: 00007ff229376080 RCX: 00007ff229185d29 [ 1554.358677][ T8911] RDX: 0000000020000040 RSI: 0000000000000016 RDI: 0000000000000002 [ 1554.366708][ T8911] RBP: 00007ff226fd5090 R08: 0000000000000000 R09: 0000000000000000 [ 1554.374736][ T8911] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001 [ 1554.382768][ T8911] R13: 0000000000000000 R14: 00007ff229376080 R15: 00007ffd4e2f8eb8 [ 1554.390803][ T8911] [ 1554.419879][ T8915] __nla_validate_parse: 4 callbacks suppressed [ 1554.419908][ T8915] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10888'. [ 1554.670690][ T8921] netlink: 330 bytes leftover after parsing attributes in process `syz.3.10891'. [ 1554.771380][ T8924] netlink: 4 bytes leftover after parsing attributes in process `syz.0.10892'. [ 1555.092144][ T8937] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10893'. [ 1555.143781][ T8926] netlink: 338 bytes leftover after parsing attributes in process `syz.2.10890'. [ 1555.244858][ T8926] netlink: 338 bytes leftover after parsing attributes in process `syz.2.10890'. [ 1555.376085][ T8944] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10899'. [ 1555.720162][ T8961] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10900'. [ 1555.808959][ T8963] netlink: 4 bytes leftover after parsing attributes in process `syz.1.10903'. [ 1556.044265][ T8971] netlink: 330 bytes leftover after parsing attributes in process `syz.2.10904'. [ 1556.305660][ T8970] netlink: 'syz.3.10905': attribute type 33 has an invalid length. [ 1556.765543][ T8994] nbd: must specify a device to reconfigure [ 1558.077036][ T9040] FAULT_INJECTION: forcing a failure. [ 1558.077036][ T9040] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1558.176495][ T9040] CPU: 0 UID: 0 PID: 9040 Comm: syz.2.10930 Not tainted 6.13.0-rc5-syzkaller #0 [ 1558.185605][ T9040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1558.195708][ T9040] Call Trace: [ 1558.199022][ T9040] [ 1558.201990][ T9040] dump_stack_lvl+0x16c/0x1f0 [ 1558.206728][ T9040] should_fail_ex+0x497/0x5b0 [ 1558.211472][ T9040] _copy_to_user+0x32/0xd0 [ 1558.215957][ T9040] simple_read_from_buffer+0xd0/0x160 [ 1558.221385][ T9040] proc_fail_nth_read+0x198/0x270 [ 1558.226477][ T9040] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1558.232091][ T9040] ? bpf_lsm_file_permission+0x9/0x10 [ 1558.237542][ T9040] ? security_file_permission+0x71/0x210 [ 1558.243243][ T9040] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1558.248860][ T9040] vfs_read+0x1df/0xbe0 [ 1558.253078][ T9040] ? __fget_files+0x1fc/0x3a0 [ 1558.257818][ T9040] ? __pfx___mutex_lock+0x10/0x10 [ 1558.262906][ T9040] ? __pfx_vfs_read+0x10/0x10 [ 1558.267644][ T9040] ? __fget_files+0x206/0x3a0 [ 1558.272385][ T9040] ksys_read+0x12b/0x250 [ 1558.276683][ T9040] ? __pfx_ksys_read+0x10/0x10 [ 1558.281506][ T9040] ? rcu_is_watching+0x12/0xc0 [ 1558.286362][ T9040] ? rcu_is_watching+0x12/0xc0 [ 1558.291194][ T9040] do_syscall_64+0xcd/0x250 [ 1558.295771][ T9040] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1558.301730][ T9040] RIP: 0033:0x7fbeba18473c [ 1558.306188][ T9040] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1558.325858][ T9040] RSP: 002b:00007fbebb046030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1558.334331][ T9040] RAX: ffffffffffffffda RBX: 00007fbeba375fa0 RCX: 00007fbeba18473c [ 1558.342359][ T9040] RDX: 000000000000000f RSI: 00007fbebb0460a0 RDI: 0000000000000003 [ 1558.350467][ T9040] RBP: 00007fbebb046090 R08: 0000000000000000 R09: 0000000000000000 [ 1558.358491][ T9040] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1558.366518][ T9040] R13: 0000000000000000 R14: 00007fbeba375fa0 R15: 00007ffc6515e8e8 [ 1558.374547][ T9040] [ 1559.433263][ T9069] __nla_validate_parse: 9 callbacks suppressed [ 1559.433291][ T9069] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10940'. [ 1559.564713][ T9052] netlink: 'syz.3.10934': attribute type 33 has an invalid length. [ 1559.582745][ T9052] netlink: 322 bytes leftover after parsing attributes in process `syz.3.10934'. [ 1560.113598][ T9075] netlink: 4 bytes leftover after parsing attributes in process `syz.1.10942'. [ 1560.525983][ T9087] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10946'. [ 1560.891938][ T9097] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10953'. [ 1561.078896][ T9102] snd_aloop snd_aloop.0: control 1:6:0:ª¸è^ [ 1561.078896][ T9102] :0 is already present [ 1561.157193][ T9103] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10954'. [ 1561.197125][ T9105] netlink: 5 bytes leftover after parsing attributes in process `syz.3.10956'. [ 1562.337149][ T9127] netlink: 4 bytes leftover after parsing attributes in process `syz.2.10965'. [ 1562.367464][ T9118] netlink: 'syz.1.10962': attribute type 33 has an invalid length. [ 1562.375614][ T9118] netlink: 322 bytes leftover after parsing attributes in process `syz.1.10962'. [ 1562.585023][ T9135] netlink: 338 bytes leftover after parsing attributes in process `syz.0.10966'. [ 1564.818971][ T9173] netlink: 'syz.0.10976': attribute type 33 has an invalid length. [ 1564.830639][ T9173] __nla_validate_parse: 3 callbacks suppressed [ 1564.830664][ T9173] netlink: 322 bytes leftover after parsing attributes in process `syz.0.10976'. [ 1566.323906][ T9195] snd_aloop snd_aloop.0: control 1:6:0:ª¸è^ [ 1566.323906][ T9195] :0 is already present [ 1567.493256][ T9223] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10986'. [ 1567.596685][ T9229] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10988'. [ 1568.767901][ T9260] snd_aloop snd_aloop.0: control 1:6:0:ª¸è^ [ 1568.767901][ T9260] :0 is already present [ 1569.218886][ T9268] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10997'. [ 1570.020023][ T9280] netlink: 'syz.1.11000': attribute type 33 has an invalid length. [ 1570.036783][ T9280] netlink: 322 bytes leftover after parsing attributes in process `syz.1.11000'. [ 1572.049355][ T9309] netlink: 28 bytes leftover after parsing attributes in process `syz.0.11012'. [ 1572.077130][ T9311] netlink: 28 bytes leftover after parsing attributes in process `syz.2.11013'. [ 1573.116712][ T9319] netlink: 5 bytes leftover after parsing attributes in process `syz.0.11024'. [ 1573.366474][ T9324] netlink: 338 bytes leftover after parsing attributes in process `syz.0.11018'. [ 1574.347497][ T9341] netlink: 28 bytes leftover after parsing attributes in process `syz.3.11023'. [ 1574.441399][ T9342] netlink: 28 bytes leftover after parsing attributes in process `syz.2.11025'. [ 1575.263440][ T9352] netlink: 28 bytes leftover after parsing attributes in process `syz.1.11034'. [ 1575.592137][ T9361] netlink: 28 bytes leftover after parsing attributes in process `syz.1.11028'. [ 1575.765937][ T9367] openvswitch: netlink: Key type 29 is not supported [ 1575.891786][ T9355] netlink: 'syz.2.11026': attribute type 33 has an invalid length. [ 1575.910013][ T9355] netlink: 322 bytes leftover after parsing attributes in process `syz.2.11026'. [ 1576.637214][ T9384] netlink: 28 bytes leftover after parsing attributes in process `syz.1.11037'. [ 1577.491069][ T9392] netlink: 4 bytes leftover after parsing attributes in process `syz.0.11040'. [ 1578.084965][ T9406] netlink: 28 bytes leftover after parsing attributes in process `syz.1.11046'. [ 1578.220450][ T9409] netlink: 4 bytes leftover after parsing attributes in process `syz.0.11047'. [ 1579.189605][ T9422] netlink: 28 bytes leftover after parsing attributes in process `syz.0.11058'. [ 1579.277627][ T9427] netlink: 4 bytes leftover after parsing attributes in process `syz.2.11051'. [ 1579.844244][ T9437] netlink: 28 bytes leftover after parsing attributes in process `syz.0.11055'. [ 1580.658772][ T9454] __nla_validate_parse: 2 callbacks suppressed [ 1580.658802][ T9454] netlink: 28 bytes leftover after parsing attributes in process `syz.0.11062'. [ 1582.339118][ T9471] netlink: 4 bytes leftover after parsing attributes in process `syz.3.11063'. [ 1582.428831][ T9473] netlink: 4 bytes leftover after parsing attributes in process `syz.2.11068'. [ 1583.047858][ T9486] netlink: 28 bytes leftover after parsing attributes in process `syz.2.11074'. [ 1583.895585][ T9508] netlink: 330 bytes leftover after parsing attributes in process `syz.2.11079'. [ 1583.913952][ T9514] netlink: 28 bytes leftover after parsing attributes in process `syz.0.11085'. [ 1584.625255][ T9523] FAULT_INJECTION: forcing a failure. [ 1584.625255][ T9523] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1584.669903][ T9523] CPU: 0 UID: 0 PID: 9523 Comm: syz.2.11083 Not tainted 6.13.0-rc5-syzkaller #0 [ 1584.679010][ T9523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1584.689117][ T9523] Call Trace: [ 1584.692438][ T9523] [ 1584.695402][ T9523] dump_stack_lvl+0x16c/0x1f0 [ 1584.700143][ T9523] should_fail_ex+0x497/0x5b0 [ 1584.704890][ T9523] _copy_from_user+0x2e/0xd0 [ 1584.709551][ T9523] copy_msghdr_from_user+0x99/0x160 [ 1584.714822][ T9523] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 1584.720709][ T9523] ? rcu_is_watching+0x12/0xc0 [ 1584.725537][ T9523] ? lock_release+0x4e2/0x6f0 [ 1584.730268][ T9523] ? get_pid_task+0xfc/0x250 [ 1584.734928][ T9523] ___sys_sendmsg+0xff/0x1e0 [ 1584.739585][ T9523] ? get_pid_task+0x35/0x250 [ 1584.744253][ T9523] ? __pfx____sys_sendmsg+0x10/0x10 [ 1584.749531][ T9523] ? lock_release+0x4e2/0x6f0 [ 1584.754268][ T9523] ? __pfx_lock_release+0x10/0x10 [ 1584.759345][ T9523] ? trace_lock_acquire+0x14e/0x1f0 [ 1584.764623][ T9523] ? __fget_files+0x206/0x3a0 [ 1584.769373][ T9523] __sys_sendmsg+0x16e/0x220 [ 1584.774037][ T9523] ? __pfx___sys_sendmsg+0x10/0x10 [ 1584.779223][ T9523] ? rcu_is_watching+0x12/0xc0 [ 1584.784045][ T9523] ? rcu_is_watching+0x12/0xc0 [ 1584.788865][ T9523] do_syscall_64+0xcd/0x250 [ 1584.793436][ T9523] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1584.799387][ T9523] RIP: 0033:0x7fbeba185d29 [ 1584.803845][ T9523] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1584.823511][ T9523] RSP: 002b:00007fbebb046038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1584.831986][ T9523] RAX: ffffffffffffffda RBX: 00007fbeba375fa0 RCX: 00007fbeba185d29 [ 1584.840008][ T9523] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1584.848029][ T9523] RBP: 00007fbebb046090 R08: 0000000000000000 R09: 0000000000000000 [ 1584.856053][ T9523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1584.864081][ T9523] R13: 0000000000000000 R14: 00007fbeba375fa0 R15: 00007ffc6515e8e8 [ 1584.872110][ T9523] [ 1585.345847][ T9526] netlink: 28 bytes leftover after parsing attributes in process `syz.2.11084'. [ 1585.988081][ T9531] netlink: 28 bytes leftover after parsing attributes in process `syz.2.11087'. [ 1586.294927][ T9541] netlink: 28 bytes leftover after parsing attributes in process `syz.1.11090'. [ 1586.696804][ T9544] netlink: 28 bytes leftover after parsing attributes in process `syz.0.11091'. [ 1587.075680][ T9554] netlink: 4 bytes leftover after parsing attributes in process `syz.0.11101'. [ 1590.620558][ T9612] FAULT_INJECTION: forcing a failure. [ 1590.620558][ T9612] name failslab, interval 1, probability 0, space 0, times 0 [ 1590.678731][ T9612] CPU: 0 UID: 0 PID: 9612 Comm: syz.2.11112 Not tainted 6.13.0-rc5-syzkaller #0 [ 1590.687838][ T9612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1590.697938][ T9612] Call Trace: [ 1590.701252][ T9612] [ 1590.704220][ T9612] dump_stack_lvl+0x16c/0x1f0 [ 1590.708959][ T9612] should_fail_ex+0x497/0x5b0 [ 1590.713691][ T9612] ? fs_reclaim_acquire+0xae/0x150 [ 1590.718860][ T9612] should_failslab+0xc2/0x120 [ 1590.723600][ T9612] __kmalloc_node_track_caller_noprof+0xcf/0x520 [ 1590.729996][ T9612] ? bitmap_parselist_user+0x24/0x90 [ 1590.735353][ T9612] memdup_user_nul+0x2b/0x110 [ 1590.740087][ T9612] bitmap_parselist_user+0x24/0x90 [ 1590.745274][ T9612] irq_affinity_list_proc_write+0x148/0x260 [ 1590.751241][ T9612] ? __pfx_irq_affinity_list_proc_write+0x10/0x10 [ 1590.757733][ T9612] ? rcu_is_watching+0x12/0xc0 [ 1590.762555][ T9612] ? trace_lock_acquire+0x14e/0x1f0 [ 1590.767809][ T9612] ? apparmor_file_permission+0x251/0x400 [ 1590.773595][ T9612] ? __pfx_irq_affinity_list_proc_write+0x10/0x10 [ 1590.780064][ T9612] proc_reg_write+0x23d/0x330 [ 1590.784779][ T9612] ? __pfx_proc_reg_write+0x10/0x10 [ 1590.790021][ T9612] vfs_writev+0x6da/0xdd0 [ 1590.794384][ T9612] ? fdget_pos+0x267/0x390 [ 1590.798834][ T9612] ? __pfx_vfs_writev+0x10/0x10 [ 1590.803713][ T9612] ? __mutex_lock+0x1cc/0xa60 [ 1590.808423][ T9612] ? rcu_is_watching+0x12/0xc0 [ 1590.813220][ T9612] ? __pfx___mutex_lock+0x10/0x10 [ 1590.818282][ T9612] ? trace_lock_acquire+0x14e/0x1f0 [ 1590.823516][ T9612] ? __fget_files+0x206/0x3a0 [ 1590.828226][ T9612] ? do_writev+0x133/0x340 [ 1590.832670][ T9612] do_writev+0x133/0x340 [ 1590.836941][ T9612] ? __pfx_do_writev+0x10/0x10 [ 1590.841727][ T9612] ? rcu_is_watching+0x12/0xc0 [ 1590.846522][ T9612] ? rcu_is_watching+0x12/0xc0 [ 1590.851321][ T9612] do_syscall_64+0xcd/0x250 [ 1590.855857][ T9612] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1590.861786][ T9612] RIP: 0033:0x7fbeba185d29 [ 1590.866220][ T9612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1590.885853][ T9612] RSP: 002b:00007fbebb046038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 1590.894301][ T9612] RAX: ffffffffffffffda RBX: 00007fbeba375fa0 RCX: 00007fbeba185d29 [ 1590.902301][ T9612] RDX: 0000000000000008 RSI: 0000000020000100 RDI: 0000000000000003 [ 1590.910296][ T9612] RBP: 00007fbebb046090 R08: 0000000000000000 R09: 0000000000000000 [ 1590.918402][ T9612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1590.926407][ T9612] R13: 0000000000000000 R14: 00007fbeba375fa0 R15: 00007ffc6515e8e8 [ 1590.934413][ T9612] [ 1591.127267][ T9619] netlink: 330 bytes leftover after parsing attributes in process `syz.0.11114'. [ 1591.888508][ T9631] netlink: 330 bytes leftover after parsing attributes in process `syz.0.11124'. [ 1592.062734][ T9638] ------------[ cut here ]------------ [ 1592.068517][ T9638] WARNING: CPU: 0 PID: 9638 at mm/page_alloc.c:4729 __alloc_pages_noprof+0xeff/0x25b0 [ 1592.078413][ T9638] Modules linked in: [ 1592.082506][ T9638] CPU: 0 UID: 0 PID: 9638 Comm: syz.1.11120 Not tainted 6.13.0-rc5-syzkaller #0 [ 1592.091644][ T9638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1592.101819][ T9638] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0 [ 1592.107968][ T9638] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 de b2 fe ff e9 69 f9 ff ff c6 05 14 6d 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 6f a4 0c 00 8b 14 24 e9 [ 1592.128630][ T9638] RSP: 0018:ffffc90004547868 EFLAGS: 00010246 [ 1592.135627][ T9638] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 1592.143905][ T9638] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0 [ 1592.151993][ T9638] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 1592.160029][ T9638] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000013 [ 1592.168259][ T9638] R13: 0000000000040cc0 R14: 1ffff920008a8f21 R15: 00000000ffffffff [ 1592.176466][ T9638] FS: 00007fdb0da5a6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 1592.185557][ T9638] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1592.192260][ T9638] CR2: 0000000020000108 CR3: 0000000069b6c000 CR4: 00000000003526f0 [ 1592.200286][ T9638] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1592.208521][ T9638] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1592.213341][ T9637] netlink: 4 bytes leftover after parsing attributes in process `syz.0.11121'. [ 1592.217414][ T9638] Call Trace: [ 1592.229840][ T9638] [ 1592.232863][ T9638] ? __warn+0xea/0x3c0 [ 1592.237008][ T9638] ? __alloc_pages_noprof+0xeff/0x25b0 [ 1592.242585][ T9638] ? report_bug+0x3c0/0x580 [ 1592.247141][ T9638] ? handle_bug+0x54/0xa0 [ 1592.251637][ T9638] ? exc_invalid_op+0x17/0x50 [ 1592.256388][ T9638] ? asm_exc_invalid_op+0x1a/0x20 [ 1592.261546][ T9638] ? __alloc_pages_noprof+0xeff/0x25b0 [ 1592.267100][ T9638] ? rcu_is_watching+0x12/0xc0 [ 1592.272224][ T9638] ? trace_irq_enable.constprop.0+0xea/0x140 [ 1592.278276][ T9638] ? finish_task_switch.isra.0+0x217/0xcc0 [ 1592.284352][ T9638] ? __switch_to+0x749/0x1190 [ 1592.289106][ T9638] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 1592.294969][ T9638] ? trace_lock_acquire+0x14e/0x1f0 [ 1592.300430][ T9638] ? mtree_load+0x30a/0xa40 [ 1592.305004][ T9638] ? __pfx_lock_release+0x10/0x10 [ 1592.310176][ T9638] ? trace_lock_acquire+0x14e/0x1f0 [ 1592.316265][ T9638] ? __pfx_lock_release+0x10/0x10 [ 1592.322198][ T9638] ? mtree_load+0xf4/0xa40 [ 1592.326691][ T9638] ? lock_acquire+0x2f/0xb0 [ 1592.331312][ T9638] ? mtree_load+0xf4/0xa40 [ 1592.335797][ T9638] ___kmalloc_large_node+0x84/0x1b0 [ 1592.341196][ T9638] __kmalloc_large_node_noprof+0x1c/0x70 [ 1592.346891][ T9638] __kmalloc_node_track_caller_noprof.cold+0x5/0x5f [ 1592.353629][ T9638] ? bitmap_parselist_user+0x24/0x90 [ 1592.358990][ T9638] ? futex_unqueue+0xba/0x140 [ 1592.363844][ T9638] memdup_user_nul+0x2b/0x110 [ 1592.368594][ T9638] bitmap_parselist_user+0x24/0x90 [ 1592.374118][ T9638] irq_affinity_list_proc_write+0x148/0x260 [ 1592.380300][ T9638] ? __pfx_irq_affinity_list_proc_write+0x10/0x10 [ 1592.386785][ T9638] ? rcu_is_watching+0x12/0xc0 [ 1592.391731][ T9638] ? trace_lock_acquire+0x14e/0x1f0 [ 1592.397003][ T9638] ? apparmor_file_permission+0x251/0x400 [ 1592.402906][ T9638] ? __pfx_irq_affinity_list_proc_write+0x10/0x10 [ 1592.409390][ T9638] proc_reg_write+0x23d/0x330 [ 1592.414235][ T9638] ? __pfx_proc_reg_write+0x10/0x10 [ 1592.420378][ T9638] vfs_writev+0x6da/0xdd0 [ 1592.424779][ T9638] ? fdget_pos+0x267/0x390 [ 1592.429266][ T9638] ? __pfx_vfs_writev+0x10/0x10 [ 1592.435016][ T9638] ? __mutex_lock+0x1cc/0xa60 [ 1592.439836][ T9638] ? rcu_is_watching+0x12/0xc0 [ 1592.444754][ T9638] ? __pfx___mutex_lock+0x10/0x10 [ 1592.449907][ T9638] ? trace_lock_acquire+0x14e/0x1f0 [ 1592.455187][ T9638] ? __fget_files+0x206/0x3a0 [ 1592.460093][ T9638] ? do_writev+0x133/0x340 [ 1592.464578][ T9638] do_writev+0x133/0x340 [ 1592.468885][ T9638] ? __pfx_do_writev+0x10/0x10 [ 1592.474007][ T9638] ? rcu_is_watching+0x12/0xc0 [ 1592.478842][ T9638] ? rcu_is_watching+0x12/0xc0 [ 1592.483928][ T9638] do_syscall_64+0xcd/0x250 [ 1592.488512][ T9638] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1592.494528][ T9638] RIP: 0033:0x7fdb0cb85d29 [ 1592.498997][ T9638] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1592.519609][ T9638] RSP: 002b:00007fdb0da5a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 1592.528093][ T9638] RAX: ffffffffffffffda RBX: 00007fdb0cd75fa0 RCX: 00007fdb0cb85d29 [ 1592.536987][ T9638] RDX: 0000000000000008 RSI: 0000000020000100 RDI: 0000000000000003 [ 1592.545199][ T9638] RBP: 00007fdb0cc01b08 R08: 0000000000000000 R09: 0000000000000000 [ 1592.553305][ T9638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1592.561438][ T9638] R13: 0000000000000000 R14: 00007fdb0cd75fa0 R15: 00007ffef8f533c8 [ 1592.569522][ T9638] [ 1592.572592][ T9638] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1592.579910][ T9638] CPU: 0 UID: 0 PID: 9638 Comm: syz.1.11120 Not tainted 6.13.0-rc5-syzkaller #0 [ 1592.589005][ T9638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1592.599102][ T9638] Call Trace: [ 1592.602411][ T9638] [ 1592.605360][ T9638] dump_stack_lvl+0x3d/0x1f0 [ 1592.609988][ T9638] panic+0x71d/0x800 [ 1592.613921][ T9638] ? __pfx_panic+0x10/0x10 [ 1592.618373][ T9638] ? show_trace_log_lvl+0x29d/0x3d0 [ 1592.623605][ T9638] ? __alloc_pages_noprof+0xeff/0x25b0 [ 1592.629113][ T9638] check_panic_on_warn+0xab/0xb0 [ 1592.634116][ T9638] __warn+0xf6/0x3c0 [ 1592.638057][ T9638] ? __alloc_pages_noprof+0xeff/0x25b0 [ 1592.643581][ T9638] report_bug+0x3c0/0x580 [ 1592.647974][ T9638] handle_bug+0x54/0xa0 [ 1592.652175][ T9638] exc_invalid_op+0x17/0x50 [ 1592.656715][ T9638] asm_exc_invalid_op+0x1a/0x20 [ 1592.661605][ T9638] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0 [ 1592.667716][ T9638] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 de b2 fe ff e9 69 f9 ff ff c6 05 14 6d 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 6f a4 0c 00 8b 14 24 e9 [ 1592.687384][ T9638] RSP: 0018:ffffc90004547868 EFLAGS: 00010246 [ 1592.693486][ T9638] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 1592.701479][ T9638] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0 [ 1592.709506][ T9638] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 1592.717498][ T9638] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000013 [ 1592.725580][ T9638] R13: 0000000000040cc0 R14: 1ffff920008a8f21 R15: 00000000ffffffff [ 1592.733595][ T9638] ? rcu_is_watching+0x12/0xc0 [ 1592.738400][ T9638] ? trace_irq_enable.constprop.0+0xea/0x140 [ 1592.744413][ T9638] ? finish_task_switch.isra.0+0x217/0xcc0 [ 1592.750249][ T9638] ? __switch_to+0x749/0x1190 [ 1592.754979][ T9638] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 1592.760736][ T9638] ? trace_lock_acquire+0x14e/0x1f0 [ 1592.765990][ T9638] ? mtree_load+0x30a/0xa40 [ 1592.770524][ T9638] ? __pfx_lock_release+0x10/0x10 [ 1592.775572][ T9638] ? trace_lock_acquire+0x14e/0x1f0 [ 1592.780812][ T9638] ? __pfx_lock_release+0x10/0x10 [ 1592.785861][ T9638] ? mtree_load+0xf4/0xa40 [ 1592.790311][ T9638] ? lock_acquire+0x2f/0xb0 [ 1592.794837][ T9638] ? mtree_load+0xf4/0xa40 [ 1592.799290][ T9638] ___kmalloc_large_node+0x84/0x1b0 [ 1592.804519][ T9638] __kmalloc_large_node_noprof+0x1c/0x70 [ 1592.810182][ T9638] __kmalloc_node_track_caller_noprof.cold+0x5/0x5f [ 1592.816810][ T9638] ? bitmap_parselist_user+0x24/0x90 [ 1592.822137][ T9638] ? futex_unqueue+0xba/0x140 [ 1592.826862][ T9638] memdup_user_nul+0x2b/0x110 [ 1592.831584][ T9638] bitmap_parselist_user+0x24/0x90 [ 1592.836745][ T9638] irq_affinity_list_proc_write+0x148/0x260 [ 1592.842668][ T9638] ? __pfx_irq_affinity_list_proc_write+0x10/0x10 [ 1592.849113][ T9638] ? rcu_is_watching+0x12/0xc0 [ 1592.853915][ T9638] ? trace_lock_acquire+0x14e/0x1f0 [ 1592.859152][ T9638] ? apparmor_file_permission+0x251/0x400 [ 1592.864916][ T9638] ? __pfx_irq_affinity_list_proc_write+0x10/0x10 [ 1592.871362][ T9638] proc_reg_write+0x23d/0x330 [ 1592.876068][ T9638] ? __pfx_proc_reg_write+0x10/0x10 [ 1592.881298][ T9638] vfs_writev+0x6da/0xdd0 [ 1592.885657][ T9638] ? fdget_pos+0x267/0x390 [ 1592.890115][ T9638] ? __pfx_vfs_writev+0x10/0x10 [ 1592.895001][ T9638] ? __mutex_lock+0x1cc/0xa60 [ 1592.899713][ T9638] ? rcu_is_watching+0x12/0xc0 [ 1592.904527][ T9638] ? __pfx___mutex_lock+0x10/0x10 [ 1592.909606][ T9638] ? trace_lock_acquire+0x14e/0x1f0 [ 1592.914859][ T9638] ? __fget_files+0x206/0x3a0 [ 1592.919578][ T9638] ? do_writev+0x133/0x340 [ 1592.924022][ T9638] do_writev+0x133/0x340 [ 1592.928302][ T9638] ? __pfx_do_writev+0x10/0x10 [ 1592.933100][ T9638] ? rcu_is_watching+0x12/0xc0 [ 1592.937902][ T9638] ? rcu_is_watching+0x12/0xc0 [ 1592.942704][ T9638] do_syscall_64+0xcd/0x250 [ 1592.947249][ T9638] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1592.953179][ T9638] RIP: 0033:0x7fdb0cb85d29 [ 1592.957624][ T9638] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1592.977267][ T9638] RSP: 002b:00007fdb0da5a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 1592.985822][ T9638] RAX: ffffffffffffffda RBX: 00007fdb0cd75fa0 RCX: 00007fdb0cb85d29 [ 1592.993824][ T9638] RDX: 0000000000000008 RSI: 0000000020000100 RDI: 0000000000000003 [ 1593.001820][ T9638] RBP: 00007fdb0cc01b08 R08: 0000000000000000 R09: 0000000000000000 [ 1593.009831][ T9638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1593.017827][ T9638] R13: 0000000000000000 R14: 00007fdb0cd75fa0 R15: 00007ffef8f533c8 [ 1593.025829][ T9638] [ 1593.029507][ T9638] Kernel Offset: disabled [ 1593.033847][ T9638] Rebooting in 86400 seconds..