last executing test programs: 6.176899069s ago: executing program 0 (id=1103): mmap$auto(0x400000000000, 0x2000b, 0x0, 0xeb2, 0x401, 0x8000) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0) ioctl$auto_BTRFS_IOC_SNAP_CREATE(r0, 0x50009401, &(0x7f0000001000)={@inferred=r0, "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"}) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) madvise$auto(0x110c230000, 0x8031ca, 0x9) prctl$auto_PR_GET_SHADOW_STACK_STATUS(0x4a, 0x7fffffffffffffff, 0x0, 0x2, 0x8f) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xfffffffffffefffd, 0x17) r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, 0x6) ioctl$auto(0x3, 0x4b4d, 0x38) prlimit64$auto(0x0, 0x7, &(0x7f0000000cc0)={0xfff, 0xf1c6}, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) madvise$auto(0x108000, 0x800034, 0x9) r2 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f00000017c0)='/sys/kernel/debug/lru_gen\x00', 0x1, 0x0) writev$auto(r2, &(0x7f0000000100)={0x0, 0x407114}, 0x8) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nbd7\x00', 0x80100, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r3, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000001280)={0x2c, r4, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x5}, @NBD_ATTR_INDEX={0x8, 0x1, 0x7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x8880) syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000000), 0xffffffffffffffff) 6.175740685s ago: executing program 3 (id=1104): unshare$auto(0x40000080) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) socket(0x23, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0xa, 0x6, 0x0) mmap$auto(0x0, 0x202000d, 0x8000000002, 0xeb1, 0xffffffffffffffff, 0x8000) socketpair$auto(0x5, 0xe, 0xf8a, 0x0) connect$auto(0x3, 0x0, 0x55) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x101000, 0x0) write$auto(0x3, 0x0, 0xfdef) setns(0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x10, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_WOL_SET(r0, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000280)={0x2c, r1, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@ETHTOOL_A_WOL_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x40) truncate$auto(&(0x7f00000000c0)='./cgroup\x00', 0x100000000000001) unshare$auto(0x40000080) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400006, 0xb, 0x9b72, 0x2, 0x8000) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace\x00', 0x1a6b75d63882a712, 0x0) sysfs$auto(0x0, 0x10000000000048, 0x0) r2 = fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_CREATE(0xffffffffffffffff, 0xc02054a5, &(0x7f0000000100)={0x6, r2, 0x4, "f1a5d5b2d3107d0ce95bb63cef75c2b1"}) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) 4.197780666s ago: executing program 3 (id=1105): mmap$auto(0x0, 0x20009, 0x804000000000df, 0xeb1, 0x404, 0x1000000008000) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) read$auto(r0, &(0x7f00000001c0)='\\\x00', 0x8000) socket(0x10, 0x2, 0x0) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r0) r1 = fanotify_init$auto(0x5, 0x0) fanotify_mark$auto(r1, 0x205, 0xa, 0x4, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f00000003c0)={{@raw=0x9, 0x7, 0x6000, 0x800, "7c1aa8d91563c14db3db552d20f27defe9c478f3572c2b42947a16a58f2c2fe1432db058d9be2953b02b000e", @raw=0xfffffff7}, 0xe6, 0x2, 0x4, @inferred, @reserved="9c4c8d1e8504940b42baa5f3011c4ff805ad48a9bd8972cd8139475ffdb44f95a41959f2b37af8533a5ba727e8c3a32fc63075a668b63833dd9b7c53db2dccdf9e4b5564733ad183bf3ffa4516e23fceb05b38113f8813af9fa5019ad97f81afd5570eef6de9ad125dec04389d25a25291d4aea401ab06b1b37d11c3a13b1b75", "e114a3ebfeeab4bef96c32219c52cf14b0ea9713f162b059d8d975a3f7175ada359ec9e29c86ae6f0d48c5e7906b2b3a77fc204a1dd3974263888492c06abc0b"}) ioctl$auto_I2C_RDWR(0xffffffffffffffff, 0x707, &(0x7f0000000380)="67d93c266e8c") sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty22\x00', 0x800, 0x0) ioctl$auto(r2, 0x4b44, 0x1) write$auto(0x3, 0x0, 0x81) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000af"], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r3 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0x4, 0x8000000000001, 0xffff}, 0x9, 0x0) landlock_restrict_self$auto(r3, 0x0) mount$auto(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x9, 0x0) sendmmsg$auto(0x3, &(0x7f0000000180)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc5}, 0x3, 0x0, 0x0, 0x9}, 0x7}, 0xa, 0xfffffffd) r4 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x8400, 0x0) read$auto_vmwgfx_driver_fops_vmwgfx_drv(r4, &(0x7f0000000100)=""/64, 0x40) socket(0x2, 0x6, 0x0) 4.196676925s ago: executing program 1 (id=1115): statmount$auto(0x0, &(0x7f0000000180)={0x8, 0xfffffffd, 0x401bf, 0x7352, 0x3c, 0x65f, 0x1ffde, 0x4, 0x3, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb2, 0x80000000009, 0x6, 0x10003, 0xb, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84}, 0x1fe, 0xd) (async) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) (async) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf25030000000600070008000000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060006004000000006000600070000000a0010"], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) (async) socket(0x10, 0x2, 0x0) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) (async, rerun: 64) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x8000000000000000, 0x2}, 0x7}, 0x3, 0x8000) (rerun: 64) 4.19587538s ago: executing program 2 (id=1107): mmap$auto(0x0, 0x2020009, 0x3, 0x20eb1, 0xfffffffffffffffa, 0x8000) r0 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) (async) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x40, 0x0) (async) select$auto(0x4, 0x0, 0x0, 0x0, 0x0) faccessat2$auto(r0, &(0x7f0000000040)='./file0\x00', 0x6, 0x8000) write$auto(0x3, 0x0, 0x100082) (async) setregid$auto(0x0, 0x0) (async) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket(0x2a, 0x2, 0x1) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/system/machinecheck/machinecheck0/print_all\x00', 0x80302, 0x0) (async) write$auto(0x3, 0x0, 0x10001) (async) fchown$auto(r0, 0x0, 0x0) (async) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4044080}, 0x40090) (async) write$auto(0xffffffffffffffff, &(0x7f0000000180)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) socket(0xa, 0x1, 0x84) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) io_uring_setup$auto(0x1, 0x0) (async) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x20401, 0x0) (async) openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000080)='/dev/media15\x00', 0x204040, 0x0) (async) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyxf\x00', 0x800, 0x0) (async) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000001980)={0x3c, r3, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0xc, 0x3, 0x0, 0x1, [@nested={0x8, 0x4, 0x0, 0x1, [@nested={0x4, 0x12c}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f1779048590828847"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) (async) r4 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) lseek$auto(r2, 0x8, 0x80000000) (async) openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/bluetooth/hci1/rfkill6/power\x00', 0x20800, 0x0) (async) ioctl$auto(r1, 0x541c, r4) 3.214048096s ago: executing program 0 (id=1109): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/system/node/node0/hugepages/hugepages-1048576kB/nr_hugepages\x00', 0xe8202, 0x0) mmap$auto(0x0, 0x9, 0x4, 0x9b72, 0x2, 0x8000000000008000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB, @ANYBLOB='^\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004c18}, 0x810) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, 0x0, 0x20008810) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, 0x0, 0x302, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x101000, 0x0) socket(0x10, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae71, r1) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) sysfs$auto(0x2, 0x10000000000002d, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x100, 0x83, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}}) r2 = openat$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000b00), 0x40042, 0x0) read$auto(r2, 0x0, 0x4) io_uring_register$auto(0x2, 0x11, &(0x7f0000000180), 0x83) ioctl$auto_KVM_GET_MSR_FEATURE_INDEX_LIST(0xffffffffffffffff, 0xc004ae0a, 0x0) 3.21269821s ago: executing program 1 (id=1110): unshare$auto(0x200) 3.136054838s ago: executing program 2 (id=1111): openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x181881, 0x0) (async) clone$auto(0x8, 0x19, 0x0, 0x0, 0x7) (async) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x7}, 0x3, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x9, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804}) socket$nl_generic(0x10, 0x3, 0x10) (async) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x80, 0x0) read$auto_proc_reg_file_ops_compat_inode(r0, 0x0, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) (async) openat$auto_iommufd_fops_main(0xffffffffffffff9c, 0x0, 0x80001, 0x0) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002dbd7000f9dbdf250100000005000d00100000000500070010000000080009009c781e2108000a000800000014001f000000000000000000c0feffff0000000014002000ff01faffffff000000000003000000000600020001"], 0x78}, 0x1, 0x0, 0x0, 0x40000}, 0x400c004) (async) close_range$auto(0x2, 0x8, 0x0) (async) syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000040), r1) 3.112345507s ago: executing program 3 (id=1112): openat$auto_nst_seq_fops_netdebug(0xffffffffffffff9c, &(0x7f0000001640), 0x2f43, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/net\x00') syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/net\x00') socket(0xa, 0x2, 0x3a) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/sctp/eps\x00', 0x280, 0x0) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/per_cpu/cpu0/buffer_size_kb\x00', 0x280, 0x0) socket(0x10, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/user\x00') socketpair$auto(0xc6, 0x3, 0xfff, &(0x7f0000000000)=0x1) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x11, 0x3, 0x9) close_range$auto(0x2, r0, 0x0) r1 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r1, 0x107, 0x14, 0x0, 0x4) sendmmsg$auto(r0, 0x0, 0x2, 0x100) 3.046284437s ago: executing program 1 (id=1113): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = memfd_create$auto(0x0, 0xe) r2 = socket(0x2, 0x1, 0x106) setsockopt$auto(r2, 0x1, 0x21, 0x0, 0x9) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x7}, 0x6}, 0x5, 0x20000000) write$auto(0x3, 0x0, 0x2000) socket$nl_generic(0x10, 0x3, 0x10) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x0, 0x2020009, 0x80000003, 0x15, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0xffffffffffffffff, 0x0) r3 = socket(0x10, 0x3, 0x6) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) memfd_secret$auto(0x800) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="f0020000", @ANYRES16=r4, @ANYBLOB="01002dbd7000fedb"], 0x2f0}}, 0x50) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) capset$auto(0x0, 0x0) r5 = syz_genetlink_get_family_id$auto_mac802154_hwsim(&(0x7f0000000100), r2) sendmsg$auto_MAC802154_HWSIM_CMD_NEW_EDGE(r3, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000180)={&(0x7f00000019c0)={0x1308, r5, 0x10, 0x70bd2d, 0x25dfdbfc, {}, [@MAC802154_HWSIM_ATTR_RADIO_EDGE={0x123d, 0x2, 0x0, 0x1, [@nested={0x18, 0x90, 0x0, 0x1, [@typed={0x4, 0xcb}, @typed={0x8, 0x95, 0x0, 0x0, @fd=r1}, @typed={0x8, 0x31, 0x0, 0x0, @uid}]}, @nested={0x11e8, 0x5, 0x0, 0x1, [@nested={0x14, 0xce, 0x0, 0x1, [@typed={0x8, 0xf2, 0x0, 0x0, @uid}, @typed={0x8, 0x122, 0x0, 0x0, @uid}]}, @generic="f322bddba6e355643f7666c2ba5d53c9824a0d1f313b64e1770a3dbbbdc44c9d4546667fadbfdf8109bbe18dad7fcf4dbb7fb6", @generic="ea33f89e7029a9535afebe56b74604cd9f58b84d43e72cb1656fa06fef8da8f2cc8379759cc2272bb7d2dcf88146a6a17500fc33c851f1513054db37bcb510c464c4b15b264938361db6fe1c664ce3f6398ff9c52e951eeb4e9158b30ea53fe47374396d6cf135c20d41caaa4b34de3fe19b2d5f384335bac002f7bab4", @nested={0x1120, 0x2e, 0x0, 0x1, [@nested={0x4, 0xb9}, @nested={0x4, 0x13c}, @typed={0x4, 0x72, 0x0, 0x0, @binary}, @nested={0x110f, 0x42, 0x0, 0x1, [@typed={0x14, 0xa1, 0x0, 0x0, @ipv6=@loopback}, @generic="7cd29240fad5dee20bdc", @typed={0x8, 0x8d, 0x0, 0x0, @str=']@%\x00'}, @nested={0x10b7, 0x32, 0x0, 0x1, [@generic="d8928bbf8b9eb2e6b96411833a8812595fcc6180769f9a35da7a72542a70d29e793d3c7eb30837", @typed={0x8, 0x12a, 0x0, 0x0, @u32=0x5}, @typed={0x5, 0x124, 0x0, 0x0, @str='\x00'}, @nested={0x4, 0x66}, @typed={0x71, 0xa1, 0x0, 0x0, @str='cU\xd7\xbd\x89\xa9U\xc8Ou\x9b \n\v\xd2\xab>e\xf3\xfa\xa0\x9d/\xe4\xbe\x1a\xc2M\xc2\x14f\xbd\x00\x00\x00\x00\x00\x00\x00\xcf0\xff\xa0\x94\xfe\x8d\xfd\xef/\xf8%\xf7\xab\x80\x12\x81\xc9\xde\xc8\xec\xde\xab\xcd!\xb0\x8b\x86\xf3$\x9fkg\x8f\x19\xfe\x95M\x1e(\xfc\x9f\xaak\x14\x8da*>3\x94c=\x85\xa1\xac\x1e\xe9+)\x87\xa8\xd7\xda\xbfk\x18\x8cL\xb8'}, @generic="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", @nested={0x4, 0x75}]}, @typed={0x8, 0xb, 0x0, 0x0, @pid}, @generic="08de39bcd50bd2b9c9f2b3f8c21aa08748864fda3c03f6e063", @nested={0xc, 0xa7, 0x0, 0x1, [@generic, @typed={0x8, 0x2e, 0x0, 0x0, @u32}]}]}]}]}, @generic="0cb574065e65455cc5ff4e09e55ce3b636f976db91897b5a8b43bfe1318e5a6e5fe71be28da434b46a73d17a71646e883595a6e87e1de6b107"]}, @MAC802154_HWSIM_ATTR_RADIO_ID={0x8, 0x1, 0x7}, @MAC802154_HWSIM_ATTR_RADIO_ID={0x8, 0x1, 0x4}, @MAC802154_HWSIM_ATTR_RADIO_ID={0x8, 0x1, 0x1}, @MAC802154_HWSIM_ATTR_RADIO_EDGES={0x92, 0x3, 0x0, 0x1, [@typed={0x8, 0x18, 0x0, 0x0, @pid}, @typed={0xc, 0x3ffa, 0x0, 0x0, @u64=0x4}, @typed={0x8, 0x95, 0x0, 0x0, @fd=r3}, @typed={0xc, 0x4d, 0x0, 0x0, @str='ethtool\x00'}, @nested={0x45, 0x7a, 0x0, 0x1, [@generic="e3fed5db6c95e439426a7cbb2e416773898726ba14ed500ede9bbef3c235c4019ff8ad4b28", @typed={0x4, 0x67}, @typed={0xc, 0x12a, 0x0, 0x0, @str='ethtool\x00'}, @typed={0xc, 0x14a, 0x0, 0x0, @str='ethtool\x00'}]}, @generic="52c9e225787766501715", @typed={0x14, 0x5d, 0x0, 0x0, @ipv6=@loopback}]}, @MAC802154_HWSIM_ATTR_RADIO_ID={0x8, 0x1, 0x2}]}, 0x1308}, 0x1, 0x0, 0x0, 0x4011}, 0x20008880) close_range$auto(0x2, 0xa, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000340)={'vlan1\x00', 0x0}) r7 = semctl$auto_IPC_SET(0x8, 0x28, 0x1, 0xfffffffffffffffc) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r8) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001980)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="2f212cbd8966efb91b2e351f000008000300", @ANYRES32=r10], 0x28}}, 0x4000000) sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000640)={&(0x7f00000005c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="100028bd7000fcdbdf250200000000000200", @ANYRES32=0x0, @ANYBLOB, @ANYRES32=r6, @ANYBLOB="0e000100215d282a2d284c2d5d00000008000200", @ANYRES32=r7, @ANYBLOB="0c000100657468746f6f6c0008000900", @ANYRES32=r10, @ANYBLOB], 0x58}, 0x1, 0x0, 0x0, 0x20000040}, 0xad9c6e9ee96dc2a7) 2.907872327s ago: executing program 1 (id=1114): iopl$auto(0x2) iopl$auto(0x1) syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff) unshare$auto(0x40000080) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x5}, 0xb22a, 0x2000000000400a, 0xfffffffffffffffd, 0x4, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0x2, 0x804}) mount$auto(&(0x7f0000000040)='macvlan0\x00', &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfs\x00\x00X\xca\xd8\xce\xc1\xfc\x9f\x9f?o;\xf7\xdf\x9f\x11\xc5\xea\xd9', 0x8, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) iopl$auto(0x5) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) set_mempolicy$auto(0x2, 0x0, 0x8) ioctl$auto_BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000140), r1) sendmsg$auto_OVS_VPORT_CMD_SET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010028bd7000fe00f7240400000004e931800f0003006e65746465766a"], 0x28}, 0x1, 0x0, 0x0, 0x8080}, 0x40) r3 = open(&(0x7f0000000080)='./file0\x00', 0xeee00, 0x31) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0x3, 0x0, 0x100082) lseek$auto(r3, 0x7fffffffffffffff, 0x3) mprotect$auto(0x0, 0xfffffffffffffff9, 0x40) truncate$auto(&(0x7f00000000c0)='./file0\x00', 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop11/hidden\x00', 0x2000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000080)=""/177, 0xb1) r5 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) read$auto_proc_page_owner_operations_page_owner(r5, &(0x7f00000005c0)=""/4101, 0x1005) 2.87802829s ago: executing program 3 (id=1116): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40001, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000008000) sysfs$auto(0x2, 0x10000000000048, 0x0) ioctl$auto(r0, 0x0, r0) r1 = fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) keyctl$auto(0x8, 0x0, 0xffffffffffffffff, 0x5092, 0x6) io_uring_setup$auto(0xffffffff, &(0x7f0000000000)={0x8, 0xd, 0x1, 0x8, 0x6, 0x7, r1, [0x2, 0x0, 0x1], {0x6, 0x0, 0xfe, 0x7, 0x94, 0x14, 0x9, 0x0, 0x40}, {0x9, 0xfffffff1, 0x89aa, 0x200, 0x5, 0x259e, 0x0, 0x3, 0x7}}) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x3000, 0x6, 0x8, 0x7fffffff, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c47, 0x29f, 0x100, 0x7ffffffb, 0x101, 0x800, 0x3}, {0x8, 0x1, 0x1052, 0x5, 0x2, 0x40, 0x76c5, 0x8, 0x100000000}}) r2 = socket(0x1e, 0x4, 0x0) connect$auto(r2, &(0x7f0000000000)=@tipc=@nameseq={0x1e, 0x1, 0x2, {0x2, 0xfffffffc}}, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x11, 0x2, 0x8000) madvise$auto(0x0, 0x200007, 0x4) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000240), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000002c0)={'macsec0\x00', 0x0}) sendmsg$auto_MACSEC_CMD_ADD_RXSC(r4, &(0x7f0000004100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x2c, r5, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@MACSEC_ATTR_RXSC_CONFIG={0x10, 0x2, 0x0, 0x1, [@typed={0xc, 0x1, 0x0, 0x0, @u64=0x6}]}, @MACSEC_ATTR_IFINDEX={0x8, 0x1, r6}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20048001}, 0x4000040) ioctl$auto(0x3, 0xae44, r1) 2.694429801s ago: executing program 2 (id=1117): mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video2\x00', 0x10400, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x200300, 0x0) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x8002, 0x2) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x5, 0x0) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x8002, 0x2) mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0xc, 0x4000000000df, 0x44eb2, 0x10006, 0x300000000000) r0 = socket(0xa, 0x1, 0x84) getsockopt$auto(r0, 0x0, 0x53, 0x0, &(0x7f0000000040)=0x3) mprotect$auto(0x0, 0x806121, 0x6) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) (async) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video2\x00', 0x10400, 0x0) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x200300, 0x0) (async) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x8002, 0x2) (async) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x5, 0x0) (async) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x8002, 0x2) (async) mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000) (async) mmap$auto(0x0, 0xc, 0x4000000000df, 0x44eb2, 0x10006, 0x300000000000) (async) socket(0xa, 0x1, 0x84) (async) getsockopt$auto(r0, 0x0, 0x53, 0x0, &(0x7f0000000040)=0x3) (async) mprotect$auto(0x0, 0x806121, 0x6) (async) 2.017485792s ago: executing program 2 (id=1118): socket(0xa, 0x1, 0x100) r0 = fcntl$auto(0x3, 0x4, 0xa553) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) mknod$auto(&(0x7f0000000300)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x1, 0x4) lstat$auto(&(0x7f0000000200)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0x4008ae6a, 0x38) r2 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) write$auto(r2, 0x0, 0x7138) poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000340), r3) sendmsg$auto_TIPC_NL_NET_SET(r3, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000040)={0x14, r4, 0x1, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x40010}, 0x2) sendmsg$auto_TIPC_NL_MON_SET(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x5c, r4, 0x300, 0x70bd2b, 0x25dfdbfc, {}, [@TIPC_NLA_NET={0x48, 0x7, 0x0, 0x1, [@nested={0x44, 0x96, 0x0, 0x1, [@nested={0x4, 0x137}, @nested={0x4, 0x106}, @generic="0d0e8a94ac1147113424ef33bde8bddc8a65f8dea0c59d09f86239b0030547bf25281687517ff6607317761d", @nested={0x4, 0x4d}, @nested={0x4, 0x9d6}, @nested={0x4, 0x7b}]}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x1}, 0x40000) io_submit$auto(0x0, 0x400000000000007f, &(0x7f0000000040)=&(0x7f0000000080)={0x6ffffffffffffe, 0x7fff, 0x82, 0x3, 0x2, 0xffffffffffffffff, 0xfff7fffffffffbfe, 0x2, 0x8, 0x0, 0x6}) writev$auto(0xc8, &(0x7f00000028c0)={&(0x7f0000000000), 0x200}, 0x9) 1.911996249s ago: executing program 1 (id=1119): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/oss\x00', 0x400, 0x0) pread64$auto(r1, 0x0, 0x1ff, 0x8800000000) read$auto(r0, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) fadvise64$auto_POSIX_FADV_NOREUSE(r0, 0x4, 0x7fffffff, 0x5) (async) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) kexec_load$auto(0x5, 0x2, 0x0, 0x4) 1.650631894s ago: executing program 0 (id=1120): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000001c00), r0) (async) r1 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000001c00), r0) sendmsg$auto_IOAM6_CMD_ADD_NAMESPACE(r0, &(0x7f0000001d00)={0x0, 0x0, &(0x7f0000001cc0)={&(0x7f0000001c40)={0x28, r1, 0xa2d601c1e7b11e31, 0x70bd27, 0x25dfdbfd, {}, [@IOAM6_ATTR_NS_DATA={0x8, 0x2, 0x2}, @IOAM6_ATTR_NS_DATA_WIDE={0xc, 0x3, 0x9}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x0) (async) sendmsg$auto_IOAM6_CMD_ADD_NAMESPACE(r0, &(0x7f0000001d00)={0x0, 0x0, &(0x7f0000001cc0)={&(0x7f0000001c40)={0x28, r1, 0xa2d601c1e7b11e31, 0x70bd27, 0x25dfdbfd, {}, [@IOAM6_ATTR_NS_DATA={0x8, 0x2, 0x2}, @IOAM6_ATTR_NS_DATA_WIDE={0xc, 0x3, 0x9}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x0) write$auto(r0, &(0x7f0000000140)='})+*\x93+l({)\x04\x00', 0xca) (async) write$auto(r0, &(0x7f0000000140)='})+*\x93+l({)\x04\x00', 0xca) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0xffffffffffffffff, 0x9) unshare$auto(0x40000080) (async) unshare$auto(0x40000080) socket(0x12, 0x4, 0x440a) ioctl$auto_SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, 0x0) socket(0x8, 0x5, 0x0) openat$auto_rfkill_fops_core(0xffffffffffffff9c, 0x0, 0x400, 0x0) mmap$auto(0x2000000000000, 0xfffffffffffffffe, 0x8, 0x810, r2, 0x5d63) io_setup$auto(0x80002, 0x0) r3 = socket(0x11, 0x80003, 0x300) recvfrom$auto(r3, 0x0, 0x800000004e, 0x22, 0x0, 0xfffffffffffffffd) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x20400, 0x0) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) socket(0x11, 0x80003, 0x300) (async) r4 = socket(0x11, 0x80003, 0x300) socket(0x10, 0x2, 0xc) getpeername$auto(r4, 0x0, 0x0) (async) getpeername$auto(r4, 0x0, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x400, 0x0) socket(0x1f, 0xa, 0x3c) (async) r5 = socket(0x1f, 0xa, 0x3c) bpf$auto(0x6, &(0x7f0000000200)=@link_create={@prog_fd, @target_fd=r5, 0x80000001, 0xbca, @kprobe_multi={0x5, 0x6, 0x4, 0x8, 0xc66}}, 0x101) (async) bpf$auto(0x6, &(0x7f0000000200)=@link_create={@prog_fd, @target_fd=r5, 0x80000001, 0xbca, @kprobe_multi={0x5, 0x6, 0x4, 0x8, 0xc66}}, 0x101) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) write$auto(r5, &(0x7f0000000080)='+&\x00I\xaar\x1c\xbb\xde\ah\x15,\xeb|\x85\xe8\x97Z\xc30\xae}\xa1\x17K(\x80]]\x8d\xb5\xeb-\x9d\xc1\xceU\xbb_\xcf\xe8#U\xd0_|\x15f\x92\xaa\x9f\xa0l}7z#u\xf6\xd1\xe1\x8d\x05=w\xf1\xb9K\xf4\\\a\xdf\x87\xbb\x03d6\xe1\x14\xb1|\x98\x82$\xf3\xb2\xcf\xb7\x7f\xf8f*/\xc2\x82\x8c2\x8d^\x10\xc6\x1cs', 0x263f) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/usb/usbmon/36u\x00', 0x26040, 0x0) (async) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/usb/usbmon/36u\x00', 0x26040, 0x0) getpriority$auto(0x5, 0x7ff) (async) getpriority$auto(0x5, 0x7ff) setsockopt$auto(r4, 0xcf, 0x4, &(0x7f0000000040)='}\x00', 0x0) 1.416992716s ago: executing program 3 (id=1121): mmap$auto(0x0, 0x2020009, 0xacbf, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@l2tp={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x35}, 0x3}, 0x55) (async) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/cpu/vulnerabilities/retbleed\x00', 0x101000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x28, 0x4, 0x0) ioctl$auto(0xffffffffffffffff, 0xc02064c9, 0x1000000000000004) (async) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) (async) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000) (async) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) (async) write$auto(r1, 0x0, 0xfffffde9) shutdown$auto(0x200000003, 0x2) (async) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) (async) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000180)=""/181, 0xb5) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000) (async) r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0) write$auto(r2, 0x0, 0x0) (async) openat$auto_ctl_device_fops_user(0xffffffffffffff9c, &(0x7f0000000100), 0x20002, 0x0) pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9) (async) timerfd_create$auto_CLOCK_MONOTONIC(0x1, 0x8) (async) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x6) (async) pread64$auto(0xffffffffffffffff, 0x0, 0x100000002, 0xfffffffffffffff5) (async) write$auto(0xffffffffffffffff, 0x0, 0xfdeb) clone3$auto(0x0, 0x0) (async) unshare$auto(0x40000080) (async) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000040), 0xffffffffffffffff) (async) socket$nl_generic(0x10, 0x3, 0x10) 1.3406457s ago: executing program 2 (id=1122): r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) read$auto(r1, 0x0, 0x20) writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3) personality$auto(0xfffffffc) unshare$auto(0x200) 1.102366121s ago: executing program 0 (id=1123): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_BATADV_CMD_GET_HARDIF(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x100, 0x70bd2b, 0x25dfdbfe, {}, [@BATADV_ATTR_BLA_VID={0x6, 0x20, 0x271c}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x4800) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000004c0), r0) sendmsg$auto_ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000001a00)={0x0, 0x600, &(0x7f00000019c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="ffff26bd7000fcdbdf251500000008000600020000002000018014000200766574683000000000000000000000000800030006"], 0x3c}, 0x1, 0x0, 0x0, 0x40080}, 0x0) 1.015714587s ago: executing program 2 (id=1124): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = memfd_create$auto(0x0, 0xe) r2 = socket(0x2, 0x1, 0x106) setsockopt$auto(r2, 0x1, 0x21, 0x0, 0x9) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x7}, 0x6}, 0x5, 0x20000000) write$auto(0x3, 0x0, 0x2000) socket$nl_generic(0x10, 0x3, 0x10) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x0, 0x2020009, 0x80000003, 0x15, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0xffffffffffffffff, 0x0) r3 = socket(0x10, 0x3, 0x6) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) memfd_secret$auto(0x800) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="f0020000", @ANYRES16=r4, @ANYBLOB="01002dbd7000fedb"], 0x2f0}}, 0x50) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) capset$auto(0x0, 0x0) r5 = syz_genetlink_get_family_id$auto_mac802154_hwsim(&(0x7f0000000100), r2) sendmsg$auto_MAC802154_HWSIM_CMD_NEW_EDGE(r3, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000180)={&(0x7f00000019c0)={0x1308, r5, 0x10, 0x70bd2d, 0x25dfdbfc, {}, [@MAC802154_HWSIM_ATTR_RADIO_EDGE={0x123d, 0x2, 0x0, 0x1, [@nested={0x18, 0x90, 0x0, 0x1, [@typed={0x4, 0xcb}, @typed={0x8, 0x95, 0x0, 0x0, @fd=r1}, @typed={0x8, 0x31, 0x0, 0x0, @uid}]}, @nested={0x11e8, 0x5, 0x0, 0x1, [@nested={0x14, 0xce, 0x0, 0x1, [@typed={0x8, 0xf2, 0x0, 0x0, @uid}, @typed={0x8, 0x122, 0x0, 0x0, @uid}]}, @generic="f322bddba6e355643f7666c2ba5d53c9824a0d1f313b64e1770a3dbbbdc44c9d4546667fadbfdf8109bbe18dad7fcf4dbb7fb6", @generic="ea33f89e7029a9535afebe56b74604cd9f58b84d43e72cb1656fa06fef8da8f2cc8379759cc2272bb7d2dcf88146a6a17500fc33c851f1513054db37bcb510c464c4b15b264938361db6fe1c664ce3f6398ff9c52e951eeb4e9158b30ea53fe47374396d6cf135c20d41caaa4b34de3fe19b2d5f384335bac002f7bab4", @nested={0x1120, 0x2e, 0x0, 0x1, [@nested={0x4, 0xb9}, @nested={0x4, 0x13c}, @typed={0x4, 0x72, 0x0, 0x0, @binary}, @nested={0x110f, 0x42, 0x0, 0x1, [@typed={0x14, 0xa1, 0x0, 0x0, @ipv6=@loopback}, @generic="7cd29240fad5dee20bdc", @typed={0x8, 0x8d, 0x0, 0x0, @str=']@%\x00'}, @nested={0x10b7, 0x32, 0x0, 0x1, [@generic="d8928bbf8b9eb2e6b96411833a8812595fcc6180769f9a35da7a72542a70d29e793d3c7eb30837", @typed={0x8, 0x12a, 0x0, 0x0, @u32=0x5}, @typed={0x5, 0x124, 0x0, 0x0, @str='\x00'}, @nested={0x4, 0x66}, @typed={0x71, 0xa1, 0x0, 0x0, @str='cU\xd7\xbd\x89\xa9U\xc8Ou\x9b \n\v\xd2\xab>e\xf3\xfa\xa0\x9d/\xe4\xbe\x1a\xc2M\xc2\x14f\xbd\x00\x00\x00\x00\x00\x00\x00\xcf0\xff\xa0\x94\xfe\x8d\xfd\xef/\xf8%\xf7\xab\x80\x12\x81\xc9\xde\xc8\xec\xde\xab\xcd!\xb0\x8b\x86\xf3$\x9fkg\x8f\x19\xfe\x95M\x1e(\xfc\x9f\xaak\x14\x8da*>3\x94c=\x85\xa1\xac\x1e\xe9+)\x87\xa8\xd7\xda\xbfk\x18\x8cL\xb8'}, @generic="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", @nested={0x4, 0x75}]}, @typed={0x8, 0xb, 0x0, 0x0, @pid}, @generic="08de39bcd50bd2b9c9f2b3f8c21aa08748864fda3c03f6e063", @nested={0xc, 0xa7, 0x0, 0x1, [@generic, @typed={0x8, 0x2e, 0x0, 0x0, @u32}]}]}]}]}, @generic="0cb574065e65455cc5ff4e09e55ce3b636f976db91897b5a8b43bfe1318e5a6e5fe71be28da434b46a73d17a71646e883595a6e87e1de6b107"]}, @MAC802154_HWSIM_ATTR_RADIO_ID={0x8, 0x1, 0x7}, @MAC802154_HWSIM_ATTR_RADIO_ID={0x8, 0x1, 0x4}, @MAC802154_HWSIM_ATTR_RADIO_ID={0x8, 0x1, 0x1}, @MAC802154_HWSIM_ATTR_RADIO_EDGES={0x92, 0x3, 0x0, 0x1, [@typed={0x8, 0x18, 0x0, 0x0, @pid}, @typed={0xc, 0x3ffa, 0x0, 0x0, @u64=0x4}, @typed={0x8, 0x95, 0x0, 0x0, @fd=r3}, @typed={0xc, 0x4d, 0x0, 0x0, @str='ethtool\x00'}, @nested={0x45, 0x7a, 0x0, 0x1, [@generic="e3fed5db6c95e439426a7cbb2e416773898726ba14ed500ede9bbef3c235c4019ff8ad4b28", @typed={0x4, 0x67}, @typed={0xc, 0x12a, 0x0, 0x0, @str='ethtool\x00'}, @typed={0xc, 0x14a, 0x0, 0x0, @str='ethtool\x00'}]}, @generic="52c9e225787766501715", @typed={0x14, 0x5d, 0x0, 0x0, @ipv6=@loopback}]}, @MAC802154_HWSIM_ATTR_RADIO_ID={0x8, 0x1, 0x2}]}, 0x1308}, 0x1, 0x0, 0x0, 0x4011}, 0x20008880) close_range$auto(0x2, 0xa, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000340)={'vlan1\x00', 0x0}) r7 = semctl$auto_IPC_SET(0x8, 0x28, 0x1, 0xfffffffffffffffc) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r8) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001980)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="2f212cbd8966efb91b2e351f000008000300", @ANYRES32=r10], 0x28}}, 0x4000000) sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000640)={&(0x7f00000005c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="100028bd7000fcdbdf250200000000000200", @ANYRES32=0x0, @ANYBLOB="08000500b803", @ANYRES32=r6, @ANYBLOB="0e000100215d282a2d284c2d5d00000008000200", @ANYRES32=r7, @ANYBLOB="0c000100657468746f6f6c0008000900", @ANYRES32=r10, @ANYBLOB], 0x58}, 0x1, 0x0, 0x0, 0x20000040}, 0xad9c6e9ee96dc2a7) 908.072278ms ago: executing program 0 (id=1125): openat$auto_nst_seq_fops_netdebug(0xffffffffffffff9c, &(0x7f0000001640), 0x2f43, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/net\x00') syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/net\x00') socket(0xa, 0x2, 0x3a) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/sctp/eps\x00', 0x280, 0x0) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/per_cpu/cpu0/buffer_size_kb\x00', 0x280, 0x0) socket(0x10, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/user\x00') socketpair$auto(0xc6, 0x3, 0xfff, &(0x7f0000000000)=0x1) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x11, 0x3, 0x9) close_range$auto(0x2, r0, 0x0) r1 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r1, 0x107, 0x14, 0x0, 0x4) sendmmsg$auto(r0, 0x0, 0x2, 0x100) 586.687444ms ago: executing program 0 (id=1126): mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xffffffffffffffff, 0x8000) (async) r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(r0, r0, 0x0) (async) open(0x0, 0x22240, 0x155) (async) socket(0x4, 0x6, 0x0) getsockopt$auto_SO_SNDLOWAT(r0, 0x4, 0x13, &(0x7f0000000000)='\x00', &(0x7f0000000080)=0x9) (async) socket(0x10, 0x80002, 0x3) prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x7) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0xc76, 0x8000) (async) mmap$auto(0x0, 0x1004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) (async) ioperm$auto(0x8007fffffffffe, 0x6, 0x9) (async) r1 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/meminfo\x00', 0x0, 0x0) ppoll$auto(&(0x7f00000000c0)={r1, 0xf81, 0x27f}, 0x3, 0x0, 0x0, 0x8) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv6/conf/dummy0/regen_max_retry\x00', 0x202, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) mmap$auto(0xfffffffffffffffa, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) (async) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(0x3, 0x0, 0x7fffffff) r2 = socket(0x2b, 0x1, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x2) (async) sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r2, 0x0, 0x20000001) (async) mmap$auto(0x0, 0x400005, 0xe3, 0x11, r2, 0x7) madvise$auto(0x0, 0xffffffffffff0004, 0x19) kill$auto(0x0, 0x21) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) (async) socket(0x15, 0x5, 0x0) madvise$auto(0x0, 0x200007, 0x8) madvise$auto(0x0, 0x2003f0, 0x15) mmap$auto(0x0, 0x4020009, 0xe0, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_nfc(&(0x7f00000000c0), r2) 486.422794ms ago: executing program 3 (id=1127): mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) (async) sendmsg$auto_SEG6_CMD_DUMPHMAC(0xffffffffffffffff, 0x0, 0x0) (async) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) (async) connect$auto(0x3, 0x0, 0x55) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/kcore\x00', 0x10b402, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) (async) io_uring_setup$auto(0x488, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) (async) pipe$auto(0x0) (async) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8401, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/dummy0/ifalias\x00', 0xa001, 0x0) write$auto(r1, &(0x7f0000000080)='%[.[\x00', 0x1) 0s ago: executing program 1 (id=1128): r0 = socket(0x2c, 0x2, 0x204) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) (async) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000300), r0) sendmsg$auto_NL80211_CMD_SET_COALESCE(r0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000280)={&(0x7f0000000580)=ANY=[@ANYBLOB="b4030001", @ANYRES16=r1, @ANYBLOB="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"], 0x3b4}, 0x1, 0x0, 0x0, 0x8000}, 0x4000040) (async) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async) socket(0x23, 0x80805, 0x0) inotify_init1$auto(0x3000000000000) fcntl$auto(0x4, 0x4, 0xa553) (async) close_range$auto(0x2, 0x8000, 0x0) (async) lsm_list_modules$auto(0x0, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) syz_clone(0x84301000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socketpair$auto(0x7, 0x0, 0x8000000000000000, 0x0) (async) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffffff, 0x0, 0x0) (async) pwrite64$auto(0xffffffffffffffff, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x89\x06s\x1cJ\x99\x00:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x10, 0x6) (async) openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x5400, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) (async) ioctl$auto_TIOCSTI2(r3, 0x5412, &(0x7f0000000840)) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/bus/usb/drivers/usbtouchscreen/new_id\x00', 0xbce02, 0x0) (async) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000bc0), r2) socket$nl_generic(0x10, 0x3, 0x10) (async) ioctl$auto_SNDRV_PCM_IOCTL_SW_PARAMS(0xffffffffffffffff, 0xc0884113, &(0x7f00000001c0)={0x3, 0x74, 0x4, 0x7, 0x1, 0x8, 0x9, 0x100000000, 0x6, 0x10, 0x3, 0x80000000, "9f7bf5a24c47f4f1b544994579534800e7856635fb9aaaac891b7657e0c126770629398d68943510989de9c58d1c5e518aac04971af9d3d0"}) r4 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x40180, 0x0) close_range$auto(0x2, r4, 0x0) (async) socket(0x80000000000000a, 0x2, 0x0) (async) socket(0x2, 0x801, 0x84) kernel console output (not intermixed with test programs): t/sys/kernel/config/target/dbroot" dev="configfs" ino=14671 res=1 errno=0 [ 180.317457][ T30] audit: type=1800 audit(6039158512.611:5): pid=7242 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.257" name="dbroot" dev="configfs" ino=14671 res=0 errno=0 [ 180.353930][ T30] audit: type=1804 audit(6039158512.641:6): pid=7243 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.257" name="/newroot/sys/kernel/config/target/dbroot" dev="configfs" ino=14671 res=1 errno=0 [ 180.934407][ T5847] Bluetooth: hci0: command 0x0c1a tx timeout [ 180.958974][ T5847] Bluetooth: hci1: unexpected subevent 0x01 length: 4 < 18 [ 181.370437][ T7272] netlink: 28 bytes leftover after parsing attributes in process `syz.0.262'. [ 181.796666][ T7273] Invalid ELF header magic: != ELF [ 182.729301][ T7271] zswap: compressor Ȯ9Qz%;0*lH`Bkjwjӳ<85'.Y[`2Y$`Yvgִq"b%zN[O EiFi(Sh3Kx>ԝRS=kHɟ{?Bbޝ4)> not available [ 183.757098][ T7295] random: crng reseeded on system resumption [ 186.178369][ T5847] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 186.178408][ T5847] Bluetooth: hci1: unexpected subevent 0x05 length: 725 > 12 [ 187.297240][ T7314] kexec: Could not allocate control_code_buffer [ 187.576472][ T7391] random: crng reseeded on system resumption [ 188.217124][ T5847] Bluetooth: hci1: command 0x0c1a tx timeout [ 188.652758][ T5847] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 188.652802][ T5847] Bluetooth: hci2: unexpected subevent 0x05 length: 725 > 12 [ 189.559702][ T5847] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 189.924185][ T7445] nbd: illegal input index -65536 [ 190.456902][ T7457] netlink: 12 bytes leftover after parsing attributes in process `syz.0.299'. [ 190.687798][ T5847] Bluetooth: hci2: command 0x0c1a tx timeout [ 191.122206][ T7478] netlink: 272 bytes leftover after parsing attributes in process `syz.0.305'. [ 191.166204][ T7478] nbd: must specify a device to reconfigure [ 191.302037][ T7477] netlink: 28 bytes leftover after parsing attributes in process `syz.1.306'. [ 192.029476][ T7495] netlink: 12 bytes leftover after parsing attributes in process `syz.2.310'. [ 192.576200][ T7505] FAULT_INJECTION: forcing a failure. [ 192.576200][ T7505] name failslab, interval 1, probability 0, space 0, times 0 [ 192.762168][ T7505] CPU: 0 UID: 0 PID: 7505 Comm: syz.2.313 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 192.762215][ T7505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 192.762234][ T7505] Call Trace: [ 192.762245][ T7505] [ 192.762265][ T7505] dump_stack_lvl+0x16c/0x1f0 [ 192.762319][ T7505] should_fail_ex+0x512/0x640 [ 192.762355][ T7505] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 192.762412][ T7505] should_failslab+0xc2/0x120 [ 192.762442][ T7505] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 192.762496][ T7505] ? __lock_acquire+0x5ca/0x1ba0 [ 192.762522][ T7505] ? kstrdup_const+0x63/0x80 [ 192.762560][ T7505] kstrdup+0x53/0x100 [ 192.762592][ T7505] kstrdup_const+0x63/0x80 [ 192.762626][ T7505] kvasprintf_const+0x10f/0x1a0 [ 192.762671][ T7505] kobject_set_name_vargs+0x5a/0x140 [ 192.762749][ T7505] kobject_init_and_add+0xe7/0x190 [ 192.762783][ T7505] ? __pfx_kobject_init_and_add+0x10/0x10 [ 192.762824][ T7505] ? up_write+0x1b2/0x520 [ 192.762869][ T7505] sysfs_slab_add+0x18e/0x1e0 [ 192.762920][ T7505] do_kmem_cache_create+0x530/0x730 [ 192.762948][ T7505] ? __kmem_cache_create_args+0x205/0x390 [ 192.763005][ T7505] __kmem_cache_create_args+0x225/0x390 [ 192.763061][ T7505] mon_text_open+0x313/0x4f0 [ 192.763103][ T7505] ? __pfx_mon_text_open+0x10/0x10 [ 192.763139][ T7505] ? __debugfs_file_get+0x1fe/0x840 [ 192.763174][ T7505] ? __pfx_mon_text_ctor+0x10/0x10 [ 192.763214][ T7505] ? __pfx_apparmor_file_open+0x10/0x10 [ 192.763254][ T7505] ? lockdown_is_locked_down+0x3f/0x130 [ 192.763300][ T7505] ? bpf_lsm_locked_down+0x9/0x10 [ 192.763352][ T7505] ? __pfx_mon_text_open+0x10/0x10 [ 192.763390][ T7505] full_proxy_open_regular+0x1b6/0x360 [ 192.763433][ T7505] do_dentry_open+0x741/0x1c10 [ 192.763482][ T7505] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 192.763530][ T7505] vfs_open+0x82/0x3f0 [ 192.763569][ T7505] path_openat+0x1e5e/0x2d40 [ 192.763636][ T7505] ? __pfx_path_openat+0x10/0x10 [ 192.763695][ T7505] do_filp_open+0x20b/0x470 [ 192.763750][ T7505] ? __pfx_do_filp_open+0x10/0x10 [ 192.763829][ T7505] ? alloc_fd+0x471/0x7d0 [ 192.763900][ T7505] do_sys_openat2+0x11b/0x1d0 [ 192.763934][ T7505] ? __pfx_do_sys_openat2+0x10/0x10 [ 192.763985][ T7505] __x64_sys_openat+0x174/0x210 [ 192.764020][ T7505] ? __pfx___x64_sys_openat+0x10/0x10 [ 192.764057][ T7505] ? rcu_is_watching+0x12/0xc0 [ 192.764109][ T7505] do_syscall_64+0xcd/0x260 [ 192.764157][ T7505] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 192.764189][ T7505] RIP: 0033:0x7fb96ff8d169 [ 192.764215][ T7505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 192.764245][ T7505] RSP: 002b:00007fb970e78038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 192.764275][ T7505] RAX: ffffffffffffffda RBX: 00007fb9701a6160 RCX: 00007fb96ff8d169 [ 192.764295][ T7505] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 192.764314][ T7505] RBP: 00007fb97000e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 192.764331][ T7505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 192.764349][ T7505] R13: 0000000000000000 R14: 00007fb9701a6160 R15: 00007fff3d5c1c68 [ 192.764390][ T7505] [ 193.175219][ T7505] kobject: can not set name properly! [ 193.223982][ T7505] SLUB: Unable to add cache mon_text_ffff888030f57c00 to sysfs [ 194.435700][ T7529] netlink: 28 bytes leftover after parsing attributes in process `syz.1.318'. [ 194.830307][ T7534] netlink: 544 bytes leftover after parsing attributes in process `syz.1.319'. [ 195.141640][ T7545] netlink: 12 bytes leftover after parsing attributes in process `syz.2.321'. [ 195.962841][ T7558] FAULT_INJECTION: forcing a failure. [ 195.962841][ T7558] name failslab, interval 1, probability 0, space 0, times 0 [ 196.028295][ T7558] CPU: 1 UID: 0 PID: 7558 Comm: syz.3.328 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 196.028342][ T7558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 196.028362][ T7558] Call Trace: [ 196.028372][ T7558] [ 196.028385][ T7558] dump_stack_lvl+0x16c/0x1f0 [ 196.028449][ T7558] should_fail_ex+0x512/0x640 [ 196.028486][ T7558] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 196.028548][ T7558] should_failslab+0xc2/0x120 [ 196.028578][ T7558] __kmalloc_cache_noprof+0x6a/0x3e0 [ 196.028641][ T7558] ? lockdep_init_map_type+0x5c/0x280 [ 196.028671][ T7558] ? rfkill_fop_open+0x1b6/0x750 [ 196.028713][ T7558] ? __pfx_rfkill_fop_open+0x10/0x10 [ 196.028746][ T7558] rfkill_fop_open+0x1b6/0x750 [ 196.028789][ T7558] ? __pfx_rfkill_fop_open+0x10/0x10 [ 196.028826][ T7558] misc_open+0x35a/0x420 [ 196.028870][ T7558] ? __pfx_misc_open+0x10/0x10 [ 196.028911][ T7558] chrdev_open+0x231/0x6a0 [ 196.028962][ T7558] ? __pfx_apparmor_file_open+0x10/0x10 [ 196.029004][ T7558] ? __pfx_chrdev_open+0x10/0x10 [ 196.029059][ T7558] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 196.029115][ T7558] do_dentry_open+0x741/0x1c10 [ 196.029164][ T7558] ? __pfx_chrdev_open+0x10/0x10 [ 196.029222][ T7558] vfs_open+0x82/0x3f0 [ 196.029262][ T7558] path_openat+0x1e5e/0x2d40 [ 196.029327][ T7558] ? __pfx_path_openat+0x10/0x10 [ 196.029388][ T7558] do_filp_open+0x20b/0x470 [ 196.029453][ T7558] ? __pfx_do_filp_open+0x10/0x10 [ 196.029531][ T7558] ? alloc_fd+0x471/0x7d0 [ 196.029588][ T7558] do_sys_openat2+0x11b/0x1d0 [ 196.029622][ T7558] ? __pfx_do_sys_openat2+0x10/0x10 [ 196.029694][ T7558] __x64_sys_openat+0x174/0x210 [ 196.029730][ T7558] ? __pfx___x64_sys_openat+0x10/0x10 [ 196.029768][ T7558] ? rcu_is_watching+0x12/0xc0 [ 196.029823][ T7558] do_syscall_64+0xcd/0x260 [ 196.029874][ T7558] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.029907][ T7558] RIP: 0033:0x7f410e18d169 [ 196.029933][ T7558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 196.029965][ T7558] RSP: 002b:00007f410bff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 196.029997][ T7558] RAX: ffffffffffffffda RBX: 00007f410e3a5fa0 RCX: 00007f410e18d169 [ 196.030017][ T7558] RDX: 0000000000080d02 RSI: 0000200000000e40 RDI: ffffffffffffff9c [ 196.030037][ T7558] RBP: 00007f410e20e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 196.030055][ T7558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 196.030073][ T7558] R13: 0000000000000000 R14: 00007f410e3a5fa0 R15: 00007ffeaeac3978 [ 196.030115][ T7558] [ 196.395007][ T7571] FAULT_INJECTION: forcing a failure. [ 196.395007][ T7571] name failslab, interval 1, probability 0, space 0, times 0 [ 196.426701][ T7571] CPU: 0 UID: 0 PID: 7571 Comm: syz.3.330 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 196.426741][ T7571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 196.426758][ T7571] Call Trace: [ 196.426777][ T7571] [ 196.426787][ T7571] dump_stack_lvl+0x16c/0x1f0 [ 196.426834][ T7571] should_fail_ex+0x512/0x640 [ 196.426869][ T7571] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 196.426916][ T7571] should_failslab+0xc2/0x120 [ 196.426945][ T7571] __kmalloc_cache_noprof+0x6a/0x3e0 [ 196.426987][ T7571] ? rtnl_newlink+0x11b/0x2000 [ 196.427033][ T7571] ? __pfx_rtnl_newlink+0x10/0x10 [ 196.427071][ T7571] rtnl_newlink+0x11b/0x2000 [ 196.427124][ T7571] ? __pfx_rtnl_newlink+0x10/0x10 [ 196.427171][ T7571] ? kasan_quarantine_put+0x10a/0x240 [ 196.427215][ T7571] ? lockdep_hardirqs_on+0x7c/0x110 [ 196.427263][ T7571] ? kfree_skbmem+0x1a4/0x1f0 [ 196.427296][ T7571] ? __lock_acquire+0x5ca/0x1ba0 [ 196.427327][ T7571] ? rcu_is_watching+0x12/0xc0 [ 196.427364][ T7571] ? trace_cap_capable+0x18d/0x200 [ 196.427404][ T7571] ? find_held_lock+0x2b/0x80 [ 196.427453][ T7571] ? __pfx_rtnl_newlink+0x10/0x10 [ 196.427494][ T7571] ? __pfx_rtnl_newlink+0x10/0x10 [ 196.427533][ T7571] ? rtnetlink_rcv_msg+0x93a/0xe90 [ 196.427581][ T7571] ? __pfx_rtnl_newlink+0x10/0x10 [ 196.427623][ T7571] rtnetlink_rcv_msg+0x95b/0xe90 [ 196.427670][ T7571] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 196.427734][ T7571] netlink_rcv_skb+0x16a/0x440 [ 196.427781][ T7571] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 196.427828][ T7571] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 196.427896][ T7571] ? netlink_deliver_tap+0x1ae/0xd30 [ 196.427946][ T7571] netlink_unicast+0x53a/0x7f0 [ 196.427997][ T7571] ? __pfx_netlink_unicast+0x10/0x10 [ 196.428038][ T7571] ? __lock_acquire+0xaa4/0x1ba0 [ 196.428077][ T7571] netlink_sendmsg+0x8d1/0xdd0 [ 196.428128][ T7571] ? __pfx_netlink_sendmsg+0x10/0x10 [ 196.428188][ T7571] ____sys_sendmsg+0xa95/0xc70 [ 196.428240][ T7571] ? copy_msghdr_from_user+0x10a/0x160 [ 196.428278][ T7571] ? __pfx_____sys_sendmsg+0x10/0x10 [ 196.428331][ T7571] ? kfree+0x252/0x4d0 [ 196.428366][ T7571] ? __pfx__kstrtoull+0x10/0x10 [ 196.428421][ T7571] ___sys_sendmsg+0x134/0x1d0 [ 196.428468][ T7571] ? __pfx____sys_sendmsg+0x10/0x10 [ 196.428503][ T7571] ? pool_ctr+0x127e/0x2360 [ 196.428579][ T7571] ? __pfx___might_resched+0x10/0x10 [ 196.428631][ T7571] __sys_sendmmsg+0x200/0x420 [ 196.428676][ T7571] ? __pfx___sys_sendmmsg+0x10/0x10 [ 196.428724][ T7571] ? do_sys_openat2+0x157/0x1d0 [ 196.428766][ T7571] ? __pfx_do_sys_openat2+0x10/0x10 [ 196.428819][ T7571] ? ksys_write+0x1b9/0x240 [ 196.428861][ T7571] ? __pfx_ksys_write+0x10/0x10 [ 196.428901][ T7571] ? rcu_is_watching+0x12/0xc0 [ 196.428943][ T7571] __x64_sys_sendmmsg+0x9c/0x100 [ 196.428981][ T7571] ? lockdep_hardirqs_on+0x7c/0x110 [ 196.429022][ T7571] do_syscall_64+0xcd/0x260 [ 196.429068][ T7571] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.429099][ T7571] RIP: 0033:0x7f410e18d169 [ 196.429122][ T7571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 196.429151][ T7571] RSP: 002b:00007f410bff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 196.429178][ T7571] RAX: ffffffffffffffda RBX: 00007f410e3a5fa0 RCX: 00007f410e18d169 [ 196.429197][ T7571] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000002 [ 196.429214][ T7571] RBP: 00007f410bff6090 R08: 0000000000000000 R09: 0000000000000000 [ 196.429231][ T7571] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002 [ 196.429248][ T7571] R13: 0000000000000000 R14: 00007f410e3a5fa0 R15: 00007ffeaeac3978 [ 196.429286][ T7571] [ 196.859963][ T7574] netlink: 4 bytes leftover after parsing attributes in process `syz.0.331'. [ 197.261583][ T7586] netlink: 12 bytes leftover after parsing attributes in process `syz.1.334'. [ 197.813459][ T7588] cifs: Unknown parameter 'no+ 1`rsFn)aHāh`9kA}1\D@.ZCg^|p)As*V]ȸ厢]b]E-%E;|>1TN<ùGep$DrműT&Ot [ 197.813459][ T7588] fQJ d(;]*>W5m(-.kX^^Tt++#J4/kK#m*' [ 197.851739][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 197.859629][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 197.879085][ T7589] aoe: invalid device specification [ 198.150981][ T7612] netlink: 28 bytes leftover after parsing attributes in process `syz.1.342'. [ 198.280978][ T7612] FAULT_INJECTION: forcing a failure. [ 198.280978][ T7612] name failslab, interval 1, probability 0, space 0, times 0 [ 198.318578][ T7612] CPU: 0 UID: 0 PID: 7612 Comm: syz.1.342 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 198.318617][ T7612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 198.318633][ T7612] Call Trace: [ 198.318640][ T7612] [ 198.318650][ T7612] dump_stack_lvl+0x16c/0x1f0 [ 198.318696][ T7612] should_fail_ex+0x512/0x640 [ 198.318727][ T7612] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 198.318776][ T7612] should_failslab+0xc2/0x120 [ 198.318804][ T7612] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 198.318850][ T7612] ? __alloc_skb+0x2b2/0x380 [ 198.318892][ T7612] __alloc_skb+0x2b2/0x380 [ 198.318928][ T7612] ? __pfx___alloc_skb+0x10/0x10 [ 198.318961][ T7612] ? __pfx_rtnl_newlink+0x10/0x10 [ 198.319012][ T7612] netlink_ack+0x15d/0xb80 [ 198.319067][ T7612] netlink_rcv_skb+0x347/0x440 [ 198.319112][ T7612] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 198.319157][ T7612] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 198.319233][ T7612] ? netlink_deliver_tap+0x1ae/0xd30 [ 198.319281][ T7612] netlink_unicast+0x53a/0x7f0 [ 198.319328][ T7612] ? __pfx_netlink_unicast+0x10/0x10 [ 198.319370][ T7612] ? __lock_acquire+0xaa4/0x1ba0 [ 198.319407][ T7612] netlink_sendmsg+0x8d1/0xdd0 [ 198.319456][ T7612] ? __pfx_netlink_sendmsg+0x10/0x10 [ 198.319514][ T7612] ____sys_sendmsg+0xa95/0xc70 [ 198.319563][ T7612] ? copy_msghdr_from_user+0x10a/0x160 [ 198.319601][ T7612] ? __pfx_____sys_sendmsg+0x10/0x10 [ 198.319654][ T7612] ? kfree+0x252/0x4d0 [ 198.319688][ T7612] ? __pfx__kstrtoull+0x10/0x10 [ 198.319741][ T7612] ___sys_sendmsg+0x134/0x1d0 [ 198.319781][ T7612] ? __pfx____sys_sendmsg+0x10/0x10 [ 198.319855][ T7612] ? __pfx___might_resched+0x10/0x10 [ 198.319914][ T7612] __sys_sendmmsg+0x200/0x420 [ 198.319953][ T7612] ? __pfx___sys_sendmmsg+0x10/0x10 [ 198.319998][ T7612] ? do_sys_openat2+0x157/0x1d0 [ 198.320024][ T7612] ? __pfx_do_sys_openat2+0x10/0x10 [ 198.320066][ T7612] ? ksys_write+0x1b9/0x240 [ 198.320099][ T7612] ? __pfx_ksys_write+0x10/0x10 [ 198.320134][ T7612] ? rcu_is_watching+0x12/0xc0 [ 198.320184][ T7612] __x64_sys_sendmmsg+0x9c/0x100 [ 198.320219][ T7612] ? lockdep_hardirqs_on+0x7c/0x110 [ 198.320256][ T7612] do_syscall_64+0xcd/0x260 [ 198.320297][ T7612] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 198.320324][ T7612] RIP: 0033:0x7f9fe6f8d169 [ 198.320348][ T7612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 198.320373][ T7612] RSP: 002b:00007f9fe4df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 198.320398][ T7612] RAX: ffffffffffffffda RBX: 00007f9fe71a5fa0 RCX: 00007f9fe6f8d169 [ 198.320414][ T7612] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000002 [ 198.320430][ T7612] RBP: 00007f9fe4df6090 R08: 0000000000000000 R09: 0000000000000000 [ 198.320444][ T7612] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002 [ 198.320459][ T7612] R13: 0000000000000000 R14: 00007f9fe71a5fa0 R15: 00007ffde0f1e258 [ 198.320492][ T7612] [ 198.800873][ T7620] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 198.818789][ T7620] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 198.868003][ T7620] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 198.918171][ T7620] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 199.102801][ T7631] netlink: 12 bytes leftover after parsing attributes in process `syz.1.347'. [ 199.492161][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.498619][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 200.199596][ T7648] netlink: 'syz.3.351': attribute type 4 has an invalid length. [ 200.215145][ T7648] netlink: 314 bytes leftover after parsing attributes in process `syz.3.351'. [ 200.390495][ T7651] netlink: 28 bytes leftover after parsing attributes in process `syz.2.350'. [ 200.582967][ T7651] team0: Port device team_slave_0 removed [ 200.724777][ T7656] netlink: 28 bytes leftover after parsing attributes in process `syz.3.354'. [ 200.758343][ T7656] FAULT_INJECTION: forcing a failure. [ 200.758343][ T7656] name failslab, interval 1, probability 0, space 0, times 0 [ 200.774132][ T7656] CPU: 0 UID: 0 PID: 7656 Comm: syz.3.354 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 200.774172][ T7656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 200.774189][ T7656] Call Trace: [ 200.774198][ T7656] [ 200.774209][ T7656] dump_stack_lvl+0x16c/0x1f0 [ 200.774268][ T7656] should_fail_ex+0x512/0x640 [ 200.774302][ T7656] ? __kmalloc_node_noprof+0xc5/0x500 [ 200.774354][ T7656] should_failslab+0xc2/0x120 [ 200.774382][ T7656] __kmalloc_node_noprof+0xd8/0x500 [ 200.774428][ T7656] ? do_raw_spin_lock+0x12c/0x2b0 [ 200.774462][ T7656] ? qdisc_alloc+0xbb/0xc50 [ 200.774506][ T7656] qdisc_alloc+0xbb/0xc50 [ 200.774548][ T7656] qdisc_create_dflt+0x73/0x430 [ 200.774590][ T7656] dev_activate+0x63f/0x12d0 [ 200.774634][ T7656] ? __pfx_dev_activate+0x10/0x10 [ 200.774675][ T7656] ? __local_bh_enable_ip+0xa4/0x120 [ 200.774722][ T7656] __dev_open+0x43a/0x7d0 [ 200.774756][ T7656] ? __pfx___dev_open+0x10/0x10 [ 200.774796][ T7656] ? __local_bh_enable_ip+0xa4/0x120 [ 200.774839][ T7656] __dev_change_flags+0x55d/0x720 [ 200.774881][ T7656] ? __pfx___dev_change_flags+0x10/0x10 [ 200.774918][ T7656] ? lockdep_hardirqs_on+0x7c/0x110 [ 200.774957][ T7656] ? validate_linkmsg+0x57c/0xb60 [ 200.774994][ T7656] ? finish_task_switch.isra.0+0x221/0xc10 [ 200.775036][ T7656] ? __pfx_validate_linkmsg+0x10/0x10 [ 200.775079][ T7656] netif_change_flags+0x8d/0x160 [ 200.775123][ T7656] do_setlink.constprop.0+0xa32/0x44f0 [ 200.775172][ T7656] ? __lock_acquire+0xaa4/0x1ba0 [ 200.775203][ T7656] ? __pfx_do_setlink.constprop.0+0x10/0x10 [ 200.775252][ T7656] ? __pfx___schedule+0x10/0x10 [ 200.775297][ T7656] ? do_raw_spin_lock+0x12c/0x2b0 [ 200.775338][ T7656] ? mark_held_locks+0x49/0x80 [ 200.775384][ T7656] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 200.775423][ T7656] ? lockdep_hardirqs_on+0x7c/0x110 [ 200.775464][ T7656] ? __mutex_lock+0x1ca/0xb90 [ 200.775510][ T7656] ? rtnl_newlink+0x600/0x2000 [ 200.775553][ T7656] ? __pfx___mutex_lock+0x10/0x10 [ 200.775595][ T7656] ? apparmor_capable+0x114/0x1d0 [ 200.775638][ T7656] ? netlink_ns_capable+0xfa/0x130 [ 200.775683][ T7656] rtnl_newlink+0x1446/0x2000 [ 200.775737][ T7656] ? __pfx_rtnl_newlink+0x10/0x10 [ 200.775784][ T7656] ? kasan_quarantine_put+0x10a/0x240 [ 200.775827][ T7656] ? lockdep_hardirqs_on+0x7c/0x110 [ 200.775877][ T7656] ? kfree_skbmem+0x1a4/0x1f0 [ 200.775910][ T7656] ? __lock_acquire+0x5ca/0x1ba0 [ 200.775941][ T7656] ? rcu_is_watching+0x12/0xc0 [ 200.775980][ T7656] ? trace_cap_capable+0x18d/0x200 [ 200.776019][ T7656] ? find_held_lock+0x2b/0x80 [ 200.776054][ T7656] ? __pfx_rtnl_newlink+0x10/0x10 [ 200.776093][ T7656] ? __pfx_rtnl_newlink+0x10/0x10 [ 200.776132][ T7656] ? rtnetlink_rcv_msg+0x93a/0xe90 [ 200.776175][ T7656] ? __pfx_rtnl_newlink+0x10/0x10 [ 200.776218][ T7656] rtnetlink_rcv_msg+0x95b/0xe90 [ 200.776273][ T7656] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 200.776336][ T7656] netlink_rcv_skb+0x16a/0x440 [ 200.776379][ T7656] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 200.776421][ T7656] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 200.776488][ T7656] ? netlink_deliver_tap+0x1ae/0xd30 [ 200.776538][ T7656] netlink_unicast+0x53a/0x7f0 [ 200.776587][ T7656] ? __pfx_netlink_unicast+0x10/0x10 [ 200.776629][ T7656] ? __lock_acquire+0xaa4/0x1ba0 [ 200.776668][ T7656] netlink_sendmsg+0x8d1/0xdd0 [ 200.776719][ T7656] ? __pfx_netlink_sendmsg+0x10/0x10 [ 200.776779][ T7656] ____sys_sendmsg+0xa95/0xc70 [ 200.776829][ T7656] ? copy_msghdr_from_user+0x10a/0x160 [ 200.776902][ T7656] ? __pfx_____sys_sendmsg+0x10/0x10 [ 200.776957][ T7656] ? kfree+0x252/0x4d0 [ 200.776994][ T7656] ? __pfx__kstrtoull+0x10/0x10 [ 200.777052][ T7656] ___sys_sendmsg+0x134/0x1d0 [ 200.777095][ T7656] ? __pfx____sys_sendmsg+0x10/0x10 [ 200.777141][ T7656] ? pool_ctr+0x127e/0x2360 [ 200.777227][ T7656] ? __pfx___might_resched+0x10/0x10 [ 200.777281][ T7656] __sys_sendmmsg+0x200/0x420 [ 200.777328][ T7656] ? __pfx___sys_sendmmsg+0x10/0x10 [ 200.777381][ T7656] ? do_sys_openat2+0x157/0x1d0 [ 200.777415][ T7656] ? __pfx_do_sys_openat2+0x10/0x10 [ 200.777468][ T7656] ? ksys_write+0x1b9/0x240 [ 200.777511][ T7656] ? __pfx_ksys_write+0x10/0x10 [ 200.777552][ T7656] ? rcu_is_watching+0x12/0xc0 [ 200.777601][ T7656] __x64_sys_sendmmsg+0x9c/0x100 [ 200.777642][ T7656] ? lockdep_hardirqs_on+0x7c/0x110 [ 200.777684][ T7656] do_syscall_64+0xcd/0x260 [ 200.777733][ T7656] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 200.777764][ T7656] RIP: 0033:0x7f410e18d169 [ 200.777787][ T7656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 200.777815][ T7656] RSP: 002b:00007f410bff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 200.777843][ T7656] RAX: ffffffffffffffda RBX: 00007f410e3a5fa0 RCX: 00007f410e18d169 [ 200.777863][ T7656] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000002 [ 200.777881][ T7656] RBP: 00007f410bff6090 R08: 0000000000000000 R09: 0000000000000000 [ 200.777898][ T7656] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002 [ 200.777916][ T7656] R13: 0000000000000000 R14: 00007f410e3a5fa0 R15: 00007ffeaeac3978 [ 200.777956][ T7656] [ 201.289622][ T7656] ipvlan0: default qdisc (pfifo_fast) fail, fallback to noqueue [ 201.297411][ T5847] Bluetooth: hci1: command 0x0c1a tx timeout [ 201.304001][ T5847] Bluetooth: hci0: command 0x0c1a tx timeout [ 201.310191][ T5847] Bluetooth: hci3: command 0x0c1a tx timeout [ 201.316241][ T5847] Bluetooth: hci2: command 0x0c1a tx timeout [ 201.348311][ T7656] ipvlan0: entered allmulticast mode [ 201.353685][ T7656] veth0_vlan: entered allmulticast mode [ 201.956895][ T7673] netlink: 4 bytes leftover after parsing attributes in process `syz.1.358'. [ 202.031639][ T7674] netlink: 12 bytes leftover after parsing attributes in process `syz.3.356'. [ 205.022544][ T7724] netlink: 28 bytes leftover after parsing attributes in process `syz.1.366'. [ 205.031627][ T7724] FAULT_INJECTION: forcing a failure. [ 205.031627][ T7724] name failslab, interval 1, probability 0, space 0, times 0 [ 205.032641][ T7721] netlink: 28 bytes leftover after parsing attributes in process `syz.2.367'. [ 205.054847][ T7724] CPU: 0 UID: 0 PID: 7724 Comm: syz.1.366 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 205.054885][ T7724] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 205.054900][ T7724] Call Trace: [ 205.054910][ T7724] [ 205.054920][ T7724] dump_stack_lvl+0x16c/0x1f0 [ 205.054977][ T7724] should_fail_ex+0x512/0x640 [ 205.055049][ T7724] should_failslab+0xc2/0x120 [ 205.055089][ T7724] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 205.055131][ T7724] ? skb_clone+0x190/0x3f0 [ 205.055174][ T7724] skb_clone+0x190/0x3f0 [ 205.055213][ T7724] netlink_deliver_tap+0xabd/0xd30 [ 205.055260][ T7724] netlink_unicast+0x6b2/0x7f0 [ 205.055304][ T7724] ? __pfx_netlink_unicast+0x10/0x10 [ 205.055356][ T7724] netlink_ack+0x696/0xb80 [ 205.055409][ T7724] netlink_rcv_skb+0x347/0x440 [ 205.055449][ T7724] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 205.055490][ T7724] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 205.055562][ T7724] ? netlink_deliver_tap+0x1ae/0xd30 [ 205.055607][ T7724] netlink_unicast+0x53a/0x7f0 [ 205.055650][ T7724] ? __pfx_netlink_unicast+0x10/0x10 [ 205.055688][ T7724] ? __lock_acquire+0xaa4/0x1ba0 [ 205.055724][ T7724] netlink_sendmsg+0x8d1/0xdd0 [ 205.055770][ T7724] ? __pfx_netlink_sendmsg+0x10/0x10 [ 205.055824][ T7724] ____sys_sendmsg+0xa95/0xc70 [ 205.055867][ T7724] ? copy_msghdr_from_user+0x10a/0x160 [ 205.055901][ T7724] ? __pfx_____sys_sendmsg+0x10/0x10 [ 205.055950][ T7724] ? kfree+0x252/0x4d0 [ 205.055980][ T7724] ? __pfx__kstrtoull+0x10/0x10 [ 205.056028][ T7724] ___sys_sendmsg+0x134/0x1d0 [ 205.056065][ T7724] ? __pfx____sys_sendmsg+0x10/0x10 [ 205.056095][ T7724] ? pool_ctr+0x127e/0x2360 [ 205.056166][ T7724] ? __pfx___might_resched+0x10/0x10 [ 205.056214][ T7724] __sys_sendmmsg+0x200/0x420 [ 205.056254][ T7724] ? __pfx___sys_sendmmsg+0x10/0x10 [ 205.056297][ T7724] ? do_sys_openat2+0x157/0x1d0 [ 205.056326][ T7724] ? __pfx_do_sys_openat2+0x10/0x10 [ 205.056375][ T7724] ? ksys_write+0x1b9/0x240 [ 205.056413][ T7724] ? __pfx_ksys_write+0x10/0x10 [ 205.056448][ T7724] ? rcu_is_watching+0x12/0xc0 [ 205.056488][ T7724] __x64_sys_sendmmsg+0x9c/0x100 [ 205.056537][ T7724] ? lockdep_hardirqs_on+0x7c/0x110 [ 205.056575][ T7724] do_syscall_64+0xcd/0x260 [ 205.056636][ T7724] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 205.056666][ T7724] RIP: 0033:0x7f9fe6f8d169 [ 205.056689][ T7724] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 205.056716][ T7724] RSP: 002b:00007f9fe4df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 205.056744][ T7724] RAX: ffffffffffffffda RBX: 00007f9fe71a5fa0 RCX: 00007f9fe6f8d169 [ 205.056763][ T7724] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000002 [ 205.056780][ T7724] RBP: 00007f9fe4df6090 R08: 0000000000000000 R09: 0000000000000000 [ 205.056797][ T7724] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002 [ 205.056813][ T7724] R13: 0000000000000000 R14: 00007f9fe71a5fa0 R15: 00007ffde0f1e258 [ 205.056851][ T7724] [ 205.511169][ T7726] netlink: 12 bytes leftover after parsing attributes in process `syz.0.368'. [ 206.478427][ T7754] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 206.484764][ T7754] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 206.509132][ T7754] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 206.547335][ T7754] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 207.378001][ T7796] netlink: 28 bytes leftover after parsing attributes in process `syz.2.378'. [ 208.258946][ T7814] netlink: 28 bytes leftover after parsing attributes in process `syz.2.380'. [ 208.284256][ T7814] FAULT_INJECTION: forcing a failure. [ 208.284256][ T7814] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 208.300973][ T7814] CPU: 0 UID: 0 PID: 7814 Comm: syz.2.380 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 208.301013][ T7814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 208.301031][ T7814] Call Trace: [ 208.301040][ T7814] [ 208.301051][ T7814] dump_stack_lvl+0x16c/0x1f0 [ 208.301099][ T7814] should_fail_ex+0x512/0x640 [ 208.301140][ T7814] _copy_from_user+0x2e/0xd0 [ 208.301179][ T7814] copy_msghdr_from_user+0x98/0x160 [ 208.301219][ T7814] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 208.301266][ T7814] ? kfree+0x252/0x4d0 [ 208.301302][ T7814] ? __pfx__kstrtoull+0x10/0x10 [ 208.301356][ T7814] ___sys_sendmsg+0xfe/0x1d0 [ 208.301405][ T7814] ? __pfx____sys_sendmsg+0x10/0x10 [ 208.301442][ T7814] ? pool_ctr+0x127e/0x2360 [ 208.301517][ T7814] ? __pfx___might_resched+0x10/0x10 [ 208.301569][ T7814] __sys_sendmmsg+0x200/0x420 [ 208.301614][ T7814] ? __pfx___sys_sendmmsg+0x10/0x10 [ 208.301666][ T7814] ? do_sys_openat2+0x157/0x1d0 [ 208.301698][ T7814] ? __pfx_do_sys_openat2+0x10/0x10 [ 208.301749][ T7814] ? ksys_write+0x1b9/0x240 [ 208.301790][ T7814] ? __pfx_ksys_write+0x10/0x10 [ 208.301830][ T7814] ? rcu_is_watching+0x12/0xc0 [ 208.301873][ T7814] __x64_sys_sendmmsg+0x9c/0x100 [ 208.301910][ T7814] ? lockdep_hardirqs_on+0x7c/0x110 [ 208.301953][ T7814] do_syscall_64+0xcd/0x260 [ 208.302000][ T7814] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 208.302030][ T7814] RIP: 0033:0x7fb96ff8d169 [ 208.302054][ T7814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 208.302082][ T7814] RSP: 002b:00007fb970e99038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 208.302110][ T7814] RAX: ffffffffffffffda RBX: 00007fb9701a6080 RCX: 00007fb96ff8d169 [ 208.302128][ T7814] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000002 [ 208.302144][ T7814] RBP: 00007fb970e99090 R08: 0000000000000000 R09: 0000000000000000 [ 208.302161][ T7814] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002 [ 208.302178][ T7814] R13: 0000000000000000 R14: 00007fb9701a6080 R15: 00007fff3d5c1c68 [ 208.302215][ T7814] [ 208.527929][ T5847] Bluetooth: hci2: command 0x0c1a tx timeout [ 208.534177][ T5843] Bluetooth: hci1: command 0x0c1a tx timeout [ 208.540802][ T5843] Bluetooth: hci0: command 0x0c1a tx timeout [ 208.608957][ T5847] Bluetooth: hci3: command 0x0c1a tx timeout [ 209.075460][ T7824] netlink: 12 bytes leftover after parsing attributes in process `syz.2.383'. [ 209.163456][ T7826] netlink: 4 bytes leftover after parsing attributes in process `syz.3.384'. [ 209.696138][ T7840] Process accounting resumed [ 210.856689][ T7867] FAULT_INJECTION: forcing a failure. [ 210.856689][ T7867] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 211.005355][ T7867] CPU: 1 UID: 0 PID: 7867 Comm: syz.0.395 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 211.005401][ T7867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 211.005420][ T7867] Call Trace: [ 211.005430][ T7867] [ 211.005442][ T7867] dump_stack_lvl+0x16c/0x1f0 [ 211.005494][ T7867] should_fail_ex+0x512/0x640 [ 211.005537][ T7867] should_fail_alloc_page+0xe7/0x130 [ 211.005572][ T7867] prepare_alloc_pages+0x3c2/0x610 [ 211.005612][ T7867] ? rcu_is_watching+0x12/0xc0 [ 211.005657][ T7867] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 211.005709][ T7867] ? finish_task_switch.isra.0+0x221/0xc10 [ 211.005753][ T7867] ? rcu_is_watching+0x12/0xc0 [ 211.005791][ T7867] ? trace_sched_exit_tp+0xde/0x130 [ 211.005839][ T7867] ? __schedule+0x1186/0x5de0 [ 211.005877][ T7867] ? rcu_is_watching+0x12/0xc0 [ 211.005915][ T7867] ? trace_sched_exit_tp+0xde/0x130 [ 211.005976][ T7867] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 211.006034][ T7867] ? __pfx___schedule+0x10/0x10 [ 211.006078][ T7867] ? __lock_acquire+0xaa4/0x1ba0 [ 211.006103][ T7867] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 211.006136][ T7867] ? policy_nodemask+0xea/0x4e0 [ 211.006174][ T7867] alloc_pages_mpol+0x1fb/0x550 [ 211.006204][ T7867] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 211.006230][ T7867] ? __page_table_check_ptes_set+0x1ae/0x420 [ 211.006280][ T7867] ? find_held_lock+0x2b/0x80 [ 211.006342][ T7867] alloc_pages_noprof+0x131/0x390 [ 211.006373][ T7867] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 211.006420][ T7867] get_free_pages_noprof+0xc/0x40 [ 211.006452][ T7867] kasan_populate_vmalloc_pte+0x2d/0x160 [ 211.006497][ T7867] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 211.006542][ T7867] __apply_to_page_range+0x5f9/0xd30 [ 211.006583][ T7867] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 211.006636][ T7867] ? __pfx___apply_to_page_range+0x10/0x10 [ 211.006677][ T7867] ? alloc_vmap_area+0x872/0x2970 [ 211.006720][ T7867] alloc_vmap_area+0x919/0x2970 [ 211.006774][ T7867] ? __pfx_alloc_vmap_area+0x10/0x10 [ 211.006819][ T7867] __get_vm_area_node+0x1a7/0x300 [ 211.006866][ T7867] __vmalloc_node_range_noprof+0x277/0x1540 [ 211.006919][ T7867] ? bloom_map_alloc+0x302/0x4c0 [ 211.006964][ T7867] ? bloom_map_alloc+0x302/0x4c0 [ 211.007000][ T7867] ? aa_get_newest_label+0x375/0x680 [ 211.007032][ T7867] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 211.007073][ T7867] ? rcu_is_watching+0x12/0xc0 [ 211.007109][ T7867] ? trace_cap_capable+0x18d/0x200 [ 211.007142][ T7867] ? bloom_map_alloc+0x302/0x4c0 [ 211.007182][ T7867] __bpf_map_area_alloc+0xeb/0x190 [ 211.007218][ T7867] ? bloom_map_alloc+0x302/0x4c0 [ 211.007255][ T7867] bloom_map_alloc+0x302/0x4c0 [ 211.007291][ T7867] map_create+0x58f/0x1db0 [ 211.007334][ T7867] ? __pfx_map_create+0x10/0x10 [ 211.007361][ T7867] ? __might_fault+0xe3/0x190 [ 211.007404][ T7867] ? __might_fault+0xe3/0x190 [ 211.007445][ T7867] ? __might_fault+0x13b/0x190 [ 211.007505][ T7867] __sys_bpf+0x47cc/0x4d80 [ 211.007543][ T7867] ? __pfx___sys_bpf+0x10/0x10 [ 211.007573][ T7867] ? kmem_cache_free+0x2d4/0x4d0 [ 211.007612][ T7867] ? fd_install+0x225/0x750 [ 211.007651][ T7867] ? putname+0x154/0x1a0 [ 211.007685][ T7867] ? do_futex+0x122/0x350 [ 211.007728][ T7867] ? __pfx_do_futex+0x10/0x10 [ 211.007788][ T7867] ? xfd_validate_state+0x5d/0x180 [ 211.007824][ T7867] ? rcu_is_watching+0x12/0xc0 [ 211.007866][ T7867] __x64_sys_bpf+0x78/0xc0 [ 211.007918][ T7867] ? lockdep_hardirqs_on+0x7c/0x110 [ 211.007961][ T7867] do_syscall_64+0xcd/0x260 [ 211.008020][ T7867] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 211.008050][ T7867] RIP: 0033:0x7fb480f8d169 [ 211.008074][ T7867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 211.008103][ T7867] RSP: 002b:00007fb481e8d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 211.008130][ T7867] RAX: ffffffffffffffda RBX: 00007fb4811a5fa0 RCX: 00007fb480f8d169 [ 211.008157][ T7867] RDX: 00000000000006f4 RSI: 0000200000000100 RDI: 0000000000000000 [ 211.008174][ T7867] RBP: 00007fb48100e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 211.008192][ T7867] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 211.008209][ T7867] R13: 0000000000000000 R14: 00007fb4811a5fa0 R15: 00007ffc32711248 [ 211.008247][ T7867] [ 212.110963][ T30] audit: type=1806 audit(6039158552.409:7): xattr="" res=-22 [ 213.224793][ T7925] netlink: 28 bytes leftover after parsing attributes in process `syz.3.412'. [ 214.036427][ T7936] Invalid ELF header magic: != ELF [ 216.246777][ T7983] FAULT_INJECTION: forcing a failure. [ 216.246777][ T7983] name failslab, interval 1, probability 0, space 0, times 0 [ 216.350760][ T7983] CPU: 1 UID: 0 PID: 7983 Comm: syz.1.427 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 216.350802][ T7983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 216.350819][ T7983] Call Trace: [ 216.350828][ T7983] [ 216.350839][ T7983] dump_stack_lvl+0x16c/0x1f0 [ 216.350887][ T7983] should_fail_ex+0x512/0x640 [ 216.350921][ T7983] ? __kmalloc_noprof+0xbf/0x510 [ 216.350969][ T7983] ? kernfs_fop_write_iter+0x237/0x510 [ 216.351005][ T7983] should_failslab+0xc2/0x120 [ 216.351034][ T7983] __kmalloc_noprof+0xd2/0x510 [ 216.351089][ T7983] kernfs_fop_write_iter+0x237/0x510 [ 216.351134][ T7983] vfs_write+0x5ba/0x1180 [ 216.351176][ T7983] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 216.351214][ T7983] ? __pfx___mutex_lock+0x10/0x10 [ 216.351258][ T7983] ? __pfx_vfs_write+0x10/0x10 [ 216.351328][ T7983] ksys_write+0x12a/0x240 [ 216.351376][ T7983] ? __pfx_ksys_write+0x10/0x10 [ 216.351415][ T7983] ? rcu_is_watching+0x12/0xc0 [ 216.351463][ T7983] do_syscall_64+0xcd/0x260 [ 216.351509][ T7983] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 216.351538][ T7983] RIP: 0033:0x7f9fe6f8d169 [ 216.351560][ T7983] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 216.351588][ T7983] RSP: 002b:00007f9fe4df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 216.351615][ T7983] RAX: ffffffffffffffda RBX: 00007f9fe71a5fa0 RCX: 00007f9fe6f8d169 [ 216.351633][ T7983] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003 [ 216.351648][ T7983] RBP: 00007f9fe4df6090 R08: 0000000000000000 R09: 0000000000000000 [ 216.351664][ T7983] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 216.351680][ T7983] R13: 0000000000000000 R14: 00007f9fe71a5fa0 R15: 00007ffde0f1e258 [ 216.351718][ T7983] [ 216.818262][ T7967] FAULT_INJECTION: forcing a failure. [ 216.818262][ T7967] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 216.848011][ T7967] CPU: 1 UID: 0 PID: 7967 Comm: syz.0.423 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 216.848051][ T7967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 216.848068][ T7967] Call Trace: [ 216.848077][ T7967] [ 216.848088][ T7967] dump_stack_lvl+0x16c/0x1f0 [ 216.848135][ T7967] should_fail_ex+0x512/0x640 [ 216.848173][ T7967] _copy_to_user+0x32/0xd0 [ 216.848212][ T7967] cec_ioctl+0x663/0x2970 [ 216.848273][ T7967] ? __pfx_cec_ioctl+0x10/0x10 [ 216.848318][ T7967] ? do_raw_spin_unlock+0xb4/0x230 [ 216.848354][ T7967] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 216.848389][ T7967] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 216.848423][ T7967] ? do_vfs_ioctl+0x512/0x1990 [ 216.848459][ T7967] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 216.848518][ T7967] ? find_held_lock+0x2b/0x80 [ 216.848555][ T7967] ? hook_file_ioctl_common+0x145/0x410 [ 216.848603][ T7967] ? __pfx_cec_ioctl+0x10/0x10 [ 216.848649][ T7967] __x64_sys_ioctl+0x190/0x200 [ 216.848706][ T7967] do_syscall_64+0xcd/0x260 [ 216.848755][ T7967] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 216.848786][ T7967] RIP: 0033:0x7fb480f8d169 [ 216.848810][ T7967] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 216.848840][ T7967] RSP: 002b:00007fb481e8d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 216.848869][ T7967] RAX: ffffffffffffffda RBX: 00007fb4811a5fa0 RCX: 00007fb480f8d169 [ 216.848889][ T7967] RDX: 00002000000000c0 RSI: 00000000c05c6104 RDI: 0000000000000005 [ 216.848907][ T7967] RBP: 00007fb48100e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 216.848924][ T7967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 216.848941][ T7967] R13: 0000000000000000 R14: 00007fb4811a5fa0 R15: 00007ffc32711248 [ 216.848978][ T7967] [ 218.768784][ T8025] FAULT_INJECTION: forcing a failure. [ 218.768784][ T8025] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 218.828356][ T8025] CPU: 0 UID: 0 PID: 8025 Comm: syz.2.437 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 218.828398][ T8025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 218.828415][ T8025] Call Trace: [ 218.828425][ T8025] [ 218.828435][ T8025] dump_stack_lvl+0x16c/0x1f0 [ 218.828483][ T8025] should_fail_ex+0x512/0x640 [ 218.828523][ T8025] _copy_from_iter+0x2a4/0x15b0 [ 218.828572][ T8025] ? __pfx__copy_from_iter+0x10/0x10 [ 218.828612][ T8025] ? rcu_is_watching+0x12/0xc0 [ 218.828651][ T8025] ? trace_kmalloc+0x2b/0xd0 [ 218.828685][ T8025] ? __kmalloc_noprof+0x242/0x510 [ 218.828740][ T8025] kernfs_fop_write_iter+0x19a/0x510 [ 218.828785][ T8025] vfs_write+0x5ba/0x1180 [ 218.828829][ T8025] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 218.828869][ T8025] ? __pfx___mutex_lock+0x10/0x10 [ 218.828912][ T8025] ? __pfx_vfs_write+0x10/0x10 [ 218.828982][ T8025] ksys_write+0x12a/0x240 [ 218.829024][ T8025] ? __pfx_ksys_write+0x10/0x10 [ 218.829063][ T8025] ? rcu_is_watching+0x12/0xc0 [ 218.829112][ T8025] do_syscall_64+0xcd/0x260 [ 218.829159][ T8025] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 218.829190][ T8025] RIP: 0033:0x7fb96ff8d169 [ 218.829213][ T8025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 218.829241][ T8025] RSP: 002b:00007fb970eba038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 218.829278][ T8025] RAX: ffffffffffffffda RBX: 00007fb9701a5fa0 RCX: 00007fb96ff8d169 [ 218.829296][ T8025] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003 [ 218.829311][ T8025] RBP: 00007fb970eba090 R08: 0000000000000000 R09: 0000000000000000 [ 218.829334][ T8025] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 218.829350][ T8025] R13: 0000000000000000 R14: 00007fb9701a5fa0 R15: 00007fff3d5c1c68 [ 218.829388][ T8025] [ 219.309541][ T8030] netlink: 12 bytes leftover after parsing attributes in process `syz.0.440'. [ 220.331499][ T8058] FAULT_INJECTION: forcing a failure. [ 220.331499][ T8058] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 220.331624][ T8058] CPU: 0 UID: 0 PID: 8058 Comm: syz.0.448 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 220.331660][ T8058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 220.331674][ T8058] Call Trace: [ 220.331681][ T8058] [ 220.331690][ T8058] dump_stack_lvl+0x16c/0x1f0 [ 220.331727][ T8058] should_fail_ex+0x512/0x640 [ 220.331758][ T8058] should_fail_alloc_page+0xe7/0x130 [ 220.331782][ T8058] prepare_alloc_pages+0x3c2/0x610 [ 220.331810][ T8058] ? look_up_lock_class+0x59/0x150 [ 220.331845][ T8058] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 220.331887][ T8058] ? __lock_acquire+0xaa4/0x1ba0 [ 220.331918][ T8058] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 220.331966][ T8058] ? find_held_lock+0x2b/0x80 [ 220.331996][ T8058] ? process_measurement+0x51f/0x2360 [ 220.332034][ T8058] ? down_write+0x14d/0x200 [ 220.332069][ T8058] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 220.332095][ T8058] ? policy_nodemask+0xea/0x4e0 [ 220.332137][ T8058] alloc_pages_mpol+0x1fb/0x550 [ 220.332168][ T8058] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 220.332200][ T8058] alloc_pages_noprof+0x131/0x390 [ 220.332224][ T8058] __pmd_alloc+0x3f/0x870 [ 220.332251][ T8058] ? find_held_lock+0x2b/0x80 [ 220.332284][ T8058] __handle_mm_fault+0x948/0x2a40 [ 220.332328][ T8058] ? __pfx___handle_mm_fault+0x10/0x10 [ 220.332381][ T8058] ? find_vma+0xbf/0x140 [ 220.332406][ T8058] ? __pfx_find_vma+0x10/0x10 [ 220.332436][ T8058] handle_mm_fault+0x3fe/0xad0 [ 220.332476][ T8058] do_user_addr_fault+0x7a6/0x1370 [ 220.332509][ T8058] ? rcu_is_watching+0x12/0xc0 [ 220.332543][ T8058] exc_page_fault+0x5c/0xc0 [ 220.332577][ T8058] asm_exc_page_fault+0x26/0x30 [ 220.332600][ T8058] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 220.332627][ T8058] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 220.332651][ T8058] RSP: 0018:ffffc9000463fbb0 EFLAGS: 00050206 [ 220.332670][ T8058] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000 [ 220.332703][ T8058] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88807fa4c000 [ 220.332718][ T8058] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100ff499ff [ 220.332733][ T8058] R10: ffff88807fa4cfff R11: 0000000000000000 R12: 0000000000000000 [ 220.332748][ T8058] R13: ffffc9000463fda0 R14: 0000000000001000 R15: ffff88807fa4c000 [ 220.332781][ T8058] _copy_from_iter+0x391/0x15b0 [ 220.332824][ T8058] ? __pfx__copy_from_iter+0x10/0x10 [ 220.332857][ T8058] ? rcu_is_watching+0x12/0xc0 [ 220.332888][ T8058] ? trace_kmalloc+0x2b/0xd0 [ 220.332913][ T8058] ? __kmalloc_noprof+0x242/0x510 [ 220.332959][ T8058] kernfs_fop_write_iter+0x19a/0x510 [ 220.332997][ T8058] vfs_write+0x5ba/0x1180 [ 220.333032][ T8058] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 220.333066][ T8058] ? __pfx___mutex_lock+0x10/0x10 [ 220.333102][ T8058] ? __pfx_vfs_write+0x10/0x10 [ 220.333165][ T8058] ksys_write+0x12a/0x240 [ 220.333200][ T8058] ? __pfx_ksys_write+0x10/0x10 [ 220.333233][ T8058] ? rcu_is_watching+0x12/0xc0 [ 220.333273][ T8058] do_syscall_64+0xcd/0x260 [ 220.333312][ T8058] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.333336][ T8058] RIP: 0033:0x7fb480f8d169 [ 220.333355][ T8058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 220.333378][ T8058] RSP: 002b:00007fb481e8d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 220.333399][ T8058] RAX: ffffffffffffffda RBX: 00007fb4811a5fa0 RCX: 00007fb480f8d169 [ 220.333415][ T8058] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003 [ 220.333429][ T8058] RBP: 00007fb481e8d090 R08: 0000000000000000 R09: 0000000000000000 [ 220.333444][ T8058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 220.333458][ T8058] R13: 0000000000000000 R14: 00007fb4811a5fa0 R15: 00007ffc32711248 [ 220.333490][ T8058] [ 221.434243][ T8076] FAULT_INJECTION: forcing a failure. [ 221.434243][ T8076] name failslab, interval 1, probability 0, space 0, times 0 [ 221.563240][ T8074] FAULT_INJECTION: forcing a failure. [ 221.563240][ T8074] name failslab, interval 1, probability 0, space 0, times 0 [ 221.568000][ T8076] CPU: 0 UID: 0 PID: 8076 Comm: syz.3.451 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 221.568042][ T8076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 221.568061][ T8076] Call Trace: [ 221.568071][ T8076] [ 221.568081][ T8076] dump_stack_lvl+0x16c/0x1f0 [ 221.568131][ T8076] should_fail_ex+0x512/0x640 [ 221.568167][ T8076] ? __kmalloc_noprof+0xbf/0x510 [ 221.568215][ T8076] ? memcg_list_lru_alloc+0x4e9/0x740 [ 221.568243][ T8076] should_failslab+0xc2/0x120 [ 221.568271][ T8076] __kmalloc_noprof+0xd2/0x510 [ 221.568325][ T8076] memcg_list_lru_alloc+0x4e9/0x740 [ 221.568364][ T8076] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 221.568412][ T8076] __memcg_slab_post_alloc_hook+0x131/0x940 [ 221.568450][ T8076] ? kasan_save_track+0x14/0x30 [ 221.568500][ T8076] kmem_cache_alloc_lru_noprof+0x30f/0x3b0 [ 221.568547][ T8076] ? find_inode_fast+0x1e9/0x600 [ 221.568577][ T8076] ? __d_alloc+0x31/0xaa0 [ 221.568605][ T8076] __d_alloc+0x31/0xaa0 [ 221.568638][ T8076] d_alloc_pseudo+0x1c/0xc0 [ 221.568675][ T8076] alloc_file_pseudo_noaccount+0xcf/0x230 [ 221.568713][ T8076] ? __pfx_alloc_file_pseudo_noaccount+0x10/0x10 [ 221.568748][ T8076] ? iput+0xd3/0x880 [ 221.568788][ T8076] bdev_file_open_by_dev+0x13e/0x210 [ 221.568825][ T8076] blkdev_bszset+0x170/0x240 [ 221.568885][ T8076] ? __pfx_blkdev_bszset+0x10/0x10 [ 221.568935][ T8076] ? find_held_lock+0x2b/0x80 [ 221.568974][ T8076] ? hook_file_ioctl_common+0x145/0x410 [ 221.569012][ T8076] blkdev_ioctl+0x44e/0x6d0 [ 221.569060][ T8076] ? __pfx_blkdev_ioctl+0x10/0x10 [ 221.569112][ T8076] ? __pfx_blkdev_ioctl+0x10/0x10 [ 221.569162][ T8076] __x64_sys_ioctl+0x190/0x200 [ 221.569202][ T8076] do_syscall_64+0xcd/0x260 [ 221.569249][ T8076] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 221.569280][ T8076] RIP: 0033:0x7f410e18d169 [ 221.569303][ T8076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 221.569333][ T8076] RSP: 002b:00007f410bff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 221.569361][ T8076] RAX: ffffffffffffffda RBX: 00007f410e3a5fa0 RCX: 00007f410e18d169 [ 221.569381][ T8076] RDX: 0000200000000600 RSI: 0000000040081271 RDI: 0000000000000005 [ 221.569399][ T8076] RBP: 00007f410e20e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 221.569418][ T8076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 221.569436][ T8076] R13: 0000000000000000 R14: 00007f410e3a5fa0 R15: 00007ffeaeac3978 [ 221.569473][ T8076] [ 221.891628][ T8074] CPU: 1 UID: 0 PID: 8074 Comm: syz.0.450 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 221.891667][ T8074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 221.891685][ T8074] Call Trace: [ 221.891694][ T8074] [ 221.891705][ T8074] dump_stack_lvl+0x16c/0x1f0 [ 221.891751][ T8074] should_fail_ex+0x512/0x640 [ 221.891783][ T8074] ? __kmalloc_noprof+0xbf/0x510 [ 221.891829][ T8074] ? __register_sysctl_table+0xb3/0x1900 [ 221.891861][ T8074] should_failslab+0xc2/0x120 [ 221.891888][ T8074] __kmalloc_noprof+0xd2/0x510 [ 221.891941][ T8074] __register_sysctl_table+0xb3/0x1900 [ 221.891973][ T8074] ? is_module_address+0x5f/0xf0 [ 221.892003][ T8074] ? __pfx___register_sysctl_table+0x10/0x10 [ 221.892032][ T8074] ? is_module_address+0x69/0xf0 [ 221.892064][ T8074] ? register_net_sysctl_sz+0x228/0x3e0 [ 221.892112][ T8074] ? __asan_memcpy+0x3c/0x60 [ 221.892154][ T8074] sysctl_core_net_init+0xe3/0x280 [ 221.892187][ T8074] ? __pfx_sysctl_core_net_init+0x10/0x10 [ 221.892216][ T8074] ops_init+0x1df/0x5f0 [ 221.892260][ T8074] setup_net+0x21e/0x850 [ 221.892302][ T8074] ? __pfx_setup_net+0x10/0x10 [ 221.892340][ T8074] ? lockdep_init_map_type+0x5c/0x280 [ 221.892368][ T8074] ? __pfx_down_read_killable+0x10/0x10 [ 221.892398][ T8074] ? debug_mutex_init+0x37/0x70 [ 221.892438][ T8074] copy_net_ns+0x2a6/0x5f0 [ 221.892484][ T8074] create_new_namespaces+0x3ea/0xad0 [ 221.892535][ T8074] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 221.892580][ T8074] ksys_unshare+0x45b/0xa40 [ 221.892625][ T8074] ? __pfx_ksys_unshare+0x10/0x10 [ 221.892666][ T8074] ? xfd_validate_state+0x5d/0x180 [ 221.892719][ T8074] ? rcu_is_watching+0x12/0xc0 [ 221.892766][ T8074] __x64_sys_unshare+0x31/0x40 [ 221.892814][ T8074] do_syscall_64+0xcd/0x260 [ 221.892863][ T8074] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 221.892894][ T8074] RIP: 0033:0x7fb480f8d169 [ 221.892918][ T8074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 221.892948][ T8074] RSP: 002b:00007fb481e4b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 221.892975][ T8074] RAX: ffffffffffffffda RBX: 00007fb4811a6160 RCX: 00007fb480f8d169 [ 221.892994][ T8074] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 221.893010][ T8074] RBP: 00007fb48100e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 221.893027][ T8074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 221.893043][ T8074] R13: 0000000000000000 R14: 00007fb4811a6160 R15: 00007ffc32711248 [ 221.893093][ T8074] [ 222.529802][ T8097] capability: warning: `syz.0.456' uses 32-bit capabilities (legacy support in use) [ 222.711245][ T8106] netlink: 8 bytes leftover after parsing attributes in process `syz.3.458'. [ 223.992696][ T8128] netlink: 12 bytes leftover after parsing attributes in process `syz.2.461'. [ 225.102653][ T8149] Invalid ELF header magic: != ELF [ 227.478980][ T8205] syz.2.478 uses obsolete (PF_INET,SOCK_PACKET) [ 228.111874][ T8217] netlink: 28 bytes leftover after parsing attributes in process `syz.1.480'. [ 228.545062][ T8224] netlink: 12 bytes leftover after parsing attributes in process `syz.1.483'. [ 229.965900][ T8275] netlink: 12 bytes leftover after parsing attributes in process `syz.2.493'. [ 231.426612][ T8298] FAULT_INJECTION: forcing a failure. [ 231.426612][ T8298] name failslab, interval 1, probability 0, space 0, times 0 [ 231.447150][ T8298] CPU: 1 UID: 0 PID: 8298 Comm: syz.2.499 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 231.447190][ T8298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 231.447208][ T8298] Call Trace: [ 231.447217][ T8298] [ 231.447229][ T8298] dump_stack_lvl+0x16c/0x1f0 [ 231.447278][ T8298] should_fail_ex+0x512/0x640 [ 231.447315][ T8298] ? __kmalloc_noprof+0xbf/0x510 [ 231.447366][ T8298] ? ima_write_template_field_data+0x5d/0x1f0 [ 231.447404][ T8298] should_failslab+0xc2/0x120 [ 231.447433][ T8298] __kmalloc_noprof+0xd2/0x510 [ 231.447489][ T8298] ima_write_template_field_data+0x5d/0x1f0 [ 231.447535][ T8298] ima_eventname_init_common+0x1b8/0x260 [ 231.447583][ T8298] ? __pfx_ima_eventname_init_common+0x10/0x10 [ 231.447629][ T8298] ? trace_kmalloc+0x2b/0xd0 [ 231.447659][ T8298] ? __kmalloc_noprof+0x242/0x510 [ 231.447714][ T8298] ima_alloc_init_template+0x39d/0x720 [ 231.447747][ T8298] ? rcu_is_watching+0x12/0xc0 [ 231.447786][ T8298] ima_store_measurement+0x1eb/0x5c0 [ 231.447820][ T8298] ? __pfx_ima_store_measurement+0x10/0x10 [ 231.447854][ T8298] ? vfs_getxattr_alloc+0xec/0x340 [ 231.447912][ T8298] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 231.447974][ T8298] process_measurement+0x1bd6/0x2360 [ 231.448035][ T8298] ? __mutex_trylock_common+0xe9/0x250 [ 231.448066][ T8298] ? __pfx_process_measurement+0x10/0x10 [ 231.448117][ T8298] ? __pfx___might_resched+0x10/0x10 [ 231.448165][ T8298] ? rcu_is_watching+0x12/0xc0 [ 231.448201][ T8298] ? find_held_lock+0x2b/0x80 [ 231.448241][ T8298] ? tracing_check_open_get_tr.part.0+0xad/0x130 [ 231.448329][ T8298] ? tracing_check_open_get_tr.part.0+0xb2/0x130 [ 231.448379][ T8298] ? inode_to_bdi+0x9e/0x160 [ 231.448417][ T8298] ima_file_check+0xc5/0x110 [ 231.448464][ T8298] ? __pfx_ima_file_check+0x10/0x10 [ 231.448521][ T8298] security_file_post_open+0x8e/0x210 [ 231.448562][ T8298] path_openat+0x147d/0x2d40 [ 231.448624][ T8298] ? __pfx_path_openat+0x10/0x10 [ 231.448681][ T8298] do_filp_open+0x20b/0x470 [ 231.448728][ T8298] ? __pfx_do_filp_open+0x10/0x10 [ 231.448804][ T8298] ? alloc_fd+0x471/0x7d0 [ 231.448861][ T8298] do_sys_openat2+0x11b/0x1d0 [ 231.448894][ T8298] ? __pfx_do_sys_openat2+0x10/0x10 [ 231.448944][ T8298] __x64_sys_openat+0x174/0x210 [ 231.448990][ T8298] ? __pfx___x64_sys_openat+0x10/0x10 [ 231.449028][ T8298] ? rcu_is_watching+0x12/0xc0 [ 231.449078][ T8298] do_syscall_64+0xcd/0x260 [ 231.449128][ T8298] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 231.449159][ T8298] RIP: 0033:0x7fb96ff8d169 [ 231.449183][ T8298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 231.449213][ T8298] RSP: 002b:00007fb970e99038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 231.449241][ T8298] RAX: ffffffffffffffda RBX: 00007fb9701a6080 RCX: 00007fb96ff8d169 [ 231.449261][ T8298] RDX: 0000000000141c02 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 231.449281][ T8298] RBP: 00007fb97000e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 231.449298][ T8298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 231.449316][ T8298] R13: 0000000000000000 R14: 00007fb9701a6080 R15: 00007fff3d5c1c68 [ 231.449355][ T8298] [ 231.909287][ T30] audit: type=1804 audit(6039158572.099:8): pid=8298 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.2.499" name="/newroot/sys/kernel/debug/tracing/tracing_cpumask" dev="tracefs" ino=1249 res=0 errno=0 [ 231.972046][ T8306] netlink: 330 bytes leftover after parsing attributes in process `syz.0.501'. [ 232.103544][ T8301] ima: policy update failed [ 232.128048][ T30] audit: type=1802 audit(6039158572.409:9): pid=8301 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.500" res=0 errno=0 [ 232.256676][ T8306] netdevsim netdevsim0 : renamed from netdevsim0 (while UP) [ 232.591906][ T5847] Bluetooth: hci1: unexpected subevent 0x01 length: 4 < 18 [ 232.720041][ T30] audit: type=1800 audit(6039158597.023:10): pid=8322 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.506" name="dbroot" dev="configfs" ino=19347 res=0 errno=0 [ 234.122180][ T8335] netlink: 338 bytes leftover after parsing attributes in process `syz.2.510'. [ 234.203573][ T8336] netlink: 338 bytes leftover after parsing attributes in process `syz.2.510'. [ 234.630535][ T8358] netlink: 326 bytes leftover after parsing attributes in process `syz.1.515'. [ 234.661481][ T8358] netlink: 326 bytes leftover after parsing attributes in process `syz.1.515'. [ 234.703280][ T8360] netlink: 12 bytes leftover after parsing attributes in process `syz.0.516'. [ 235.306999][ T30] audit: type=1800 audit(6039158599.603:11): pid=8380 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.521" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0 [ 235.953274][ T8388] synth uevent: /module/dvb_usb_gp8psk: unknown uevent action string syzkaller syzkaller login: [ 237.230093][ T8410] netlink: 12 bytes leftover after parsing attributes in process `syz.0.527'. [ 240.018022][ T8439] netlink: 8 bytes leftover after parsing attributes in process `syz.2.534'. [ 240.028050][ T8439] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 240.038162][ T8439] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 240.199602][ T8441] netlink: 28 bytes leftover after parsing attributes in process `syz.2.534'. [ 240.248865][ T8441] bridge0: port 2(bridge_slave_1) entered disabled state [ 240.886370][ T8441] bridge_slave_1 (unregistering): left allmulticast mode [ 240.937630][ T8441] bridge_slave_1 (unregistering): left promiscuous mode [ 240.975347][ T8441] bridge0: port 2(bridge_slave_1) entered disabled state [ 241.695008][ T8451] FAULT_INJECTION: forcing a failure. [ 241.695008][ T8451] name failslab, interval 1, probability 0, space 0, times 0 [ 241.708435][ T8451] CPU: 1 UID: 0 PID: 8451 Comm: syz.1.536 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 241.708475][ T8451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 241.708492][ T8451] Call Trace: [ 241.708501][ T8451] [ 241.708511][ T8451] dump_stack_lvl+0x16c/0x1f0 [ 241.708557][ T8451] should_fail_ex+0x512/0x640 [ 241.708589][ T8451] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 241.708642][ T8451] should_failslab+0xc2/0x120 [ 241.708669][ T8451] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 241.708722][ T8451] ? fib_rules_register+0x30/0x500 [ 241.708767][ T8451] kmemdup_noprof+0x29/0x60 [ 241.708795][ T8451] fib_rules_register+0x30/0x500 [ 241.708839][ T8451] fib4_rules_init+0x1f/0x1c0 [ 241.708869][ T8451] fib_net_init+0x1dc/0x3f0 [ 241.708908][ T8451] ? __pfx___register_sysctl_table+0x10/0x10 [ 241.708950][ T8451] ? __pfx_fib_net_init+0x10/0x10 [ 241.708990][ T8451] ? lockdep_init_map_type+0x5c/0x280 [ 241.709020][ T8451] ? do_init_timer+0xc9/0x110 [ 241.709063][ T8451] ? devinet_init_net+0x5c2/0x910 [ 241.709108][ T8451] ? __pfx_fib_net_init+0x10/0x10 [ 241.709146][ T8451] ops_init+0x1df/0x5f0 [ 241.709190][ T8451] setup_net+0x21e/0x850 [ 241.709235][ T8451] ? __pfx_setup_net+0x10/0x10 [ 241.709273][ T8451] ? lockdep_init_map_type+0x5c/0x280 [ 241.709302][ T8451] ? __pfx_down_read_killable+0x10/0x10 [ 241.709334][ T8451] ? debug_mutex_init+0x37/0x70 [ 241.709374][ T8451] copy_net_ns+0x2a6/0x5f0 [ 241.709422][ T8451] create_new_namespaces+0x3ea/0xad0 [ 241.709477][ T8451] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 241.709522][ T8451] ksys_unshare+0x45b/0xa40 [ 241.709569][ T8451] ? __pfx_ksys_unshare+0x10/0x10 [ 241.709610][ T8451] ? xfd_validate_state+0x5d/0x180 [ 241.709645][ T8451] ? rcu_is_watching+0x12/0xc0 [ 241.709689][ T8451] __x64_sys_unshare+0x31/0x40 [ 241.709734][ T8451] do_syscall_64+0xcd/0x260 [ 241.709778][ T8451] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 241.709808][ T8451] RIP: 0033:0x7f9fe6f8d169 [ 241.709830][ T8451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 241.709858][ T8451] RSP: 002b:00007f9fe4df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 241.709885][ T8451] RAX: ffffffffffffffda RBX: 00007f9fe71a5fa0 RCX: 00007f9fe6f8d169 [ 241.709904][ T8451] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 241.709920][ T8451] RBP: 00007f9fe700e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 241.709945][ T8451] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 241.709962][ T8451] R13: 0000000000000000 R14: 00007f9fe71a5fa0 R15: 00007ffde0f1e258 [ 241.710000][ T8451] [ 242.490073][ T8462] netlink: 12 bytes leftover after parsing attributes in process `syz.1.539'. [ 242.604082][ T8429] Process accounting paused [ 242.760611][ T8467] netlink: 342 bytes leftover after parsing attributes in process `syz.0.541'. [ 242.799866][ T8467] netlink: 342 bytes leftover after parsing attributes in process `syz.0.541'. [ 242.807459][ T8470] HfR: entered promiscuous mode [ 243.162238][ T8472] zero sized request [ 243.836479][ T5847] Bluetooth: hci1: unexpected event 0x17 length: 11 > 6 [ 243.981629][ T8493] netlink: 'syz.1.547': attribute type 10 has an invalid length. [ 243.989593][ T8493] netlink: 230 bytes leftover after parsing attributes in process `syz.1.547'. [ 244.037340][ T8493] team0: Port device team_slave_1 removed [ 244.132497][ T8500] MTRR 1 not used [ 244.586625][ T5847] Bluetooth: hci2: Malformed Event: 0x02 [ 244.592615][ T5847] Bluetooth: hci2: Malformed Event: 0x02 [ 244.875090][ T8530] netlink: 28 bytes leftover after parsing attributes in process `syz.3.552'. [ 245.016070][ T8530] mac80211_hwsim hwsim5 wlan1: entered allmulticast mode [ 245.431653][ T8542] netlink: 12 bytes leftover after parsing attributes in process `syz.0.556'. [ 245.465446][ T8547] netlink: 16 bytes leftover after parsing attributes in process `syz.1.557'. [ 245.517393][ T8550] netlink: 16 bytes leftover after parsing attributes in process `syz.1.557'. [ 246.165282][ T5847] Bluetooth: hci0: unexpected subevent 0x01 length: 4 < 18 [ 249.699608][ T8600] ptrace attach of "./syz-executor exec"[5838] was attempted by "./syz-executor exec"[8600] [ 249.831937][ T8613] netlink: 4 bytes leftover after parsing attributes in process `syz.3.570'. [ 250.291657][ T8621] netlink: 12 bytes leftover after parsing attributes in process `syz.1.572'. [ 250.324466][ T8623] openvswitch: netlink: Message has 1 unknown bytes. [ 250.340291][ T8623] netlink: 28 bytes leftover after parsing attributes in process `syz.3.573'. [ 251.946384][ T5847] Bluetooth: hci0: unexpected event 0x17 length: 123 > 6 [ 252.916452][ T8659] input: f as /devices/virtual/input/input12 [ 255.529590][ T8707] FAULT_INJECTION: forcing a failure. [ 255.529590][ T8707] name failslab, interval 1, probability 0, space 0, times 0 [ 255.597703][ T8707] CPU: 0 UID: 0 PID: 8707 Comm: syz.3.590 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 255.597746][ T8707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 255.597763][ T8707] Call Trace: [ 255.597774][ T8707] [ 255.597786][ T8707] dump_stack_lvl+0x16c/0x1f0 [ 255.597842][ T8707] should_fail_ex+0x512/0x640 [ 255.597876][ T8707] ? fs_reclaim_acquire+0xae/0x150 [ 255.597915][ T8707] should_failslab+0xc2/0x120 [ 255.597944][ T8707] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 255.597992][ T8707] ? security_inode_alloc+0x3b/0x2b0 [ 255.598031][ T8707] security_inode_alloc+0x3b/0x2b0 [ 255.598064][ T8707] inode_init_always_gfp+0xce4/0x1030 [ 255.598111][ T8707] alloc_inode+0x86/0x240 [ 255.598143][ T8707] new_inode+0x22/0x1c0 [ 255.598175][ T8707] ? proc_lookup_de+0x217/0x320 [ 255.598221][ T8707] proc_get_inode+0x1d/0x780 [ 255.598255][ T8707] proc_lookup_de+0x253/0x320 [ 255.598294][ T8707] ? __pfx_proc_lookup+0x10/0x10 [ 255.598326][ T8707] proc_lookup+0xcf/0x110 [ 255.598357][ T8707] lookup_open.isra.0+0x4d7/0x1580 [ 255.598402][ T8707] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 255.598476][ T8707] ? lookup_fast+0x156/0x610 [ 255.598517][ T8707] path_openat+0x905/0x2d40 [ 255.598573][ T8707] ? __pfx_path_openat+0x10/0x10 [ 255.598626][ T8707] do_filp_open+0x20b/0x470 [ 255.598667][ T8707] ? __pfx_do_filp_open+0x10/0x10 [ 255.598724][ T8707] ? __pfx_kfree_link+0x10/0x10 [ 255.598771][ T8707] ? alloc_fd+0x471/0x7d0 [ 255.598823][ T8707] do_sys_openat2+0x11b/0x1d0 [ 255.598853][ T8707] ? __pfx_do_sys_openat2+0x10/0x10 [ 255.598900][ T8707] __x64_sys_openat+0x174/0x210 [ 255.598932][ T8707] ? __pfx___x64_sys_openat+0x10/0x10 [ 255.598964][ T8707] ? rcu_is_watching+0x12/0xc0 [ 255.599010][ T8707] do_syscall_64+0xcd/0x260 [ 255.599055][ T8707] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 255.599085][ T8707] RIP: 0033:0x7f410e18d169 [ 255.599108][ T8707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 255.599136][ T8707] RSP: 002b:00007f410bfb4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 255.599162][ T8707] RAX: ffffffffffffffda RBX: 00007f410e3a6160 RCX: 00007f410e18d169 [ 255.599181][ T8707] RDX: 00000000001c1080 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 255.599227][ T8707] RBP: 00007f410e20e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 255.599247][ T8707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 255.599265][ T8707] R13: 0000000000000000 R14: 00007f410e3a6160 R15: 00007ffeaeac3978 [ 255.599307][ T8707] [ 256.578870][ T8728] ima: policy update failed [ 256.601611][ T30] audit: type=1802 audit(6039158628.877:12): pid=8728 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.592" res=0 errno=0 [ 259.297655][ T30] audit: type=1800 audit(6039158631.557:13): pid=8765 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.597" name="members" dev="configfs" ino=21841 res=0 errno=0 [ 260.933764][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 260.940212][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 261.219445][ T8794] netlink: 342 bytes leftover after parsing attributes in process `syz.2.604'. [ 261.780691][ T8806] netlink: 12 bytes leftover after parsing attributes in process `syz.3.603'. [ 262.306491][ T8822] kAFS: Invalid Command on /proc/fs/afs/cells file [ 264.799974][ T8864] netlink: 12 bytes leftover after parsing attributes in process `syz.2.618'. [ 265.125673][ T8870] input: isc as /devices/virtual/input/input13 [ 265.132424][ T8870] FAULT_INJECTION: forcing a failure. [ 265.132424][ T8870] name failslab, interval 1, probability 0, space 0, times 0 [ 265.164568][ T8870] CPU: 0 UID: 0 PID: 8870 Comm: syz.2.619 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 265.164613][ T8870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 265.164634][ T8870] Call Trace: [ 265.164656][ T8870] [ 265.164666][ T8870] dump_stack_lvl+0x16c/0x1f0 [ 265.164714][ T8870] should_fail_ex+0x512/0x640 [ 265.164747][ T8870] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 265.164795][ T8870] should_failslab+0xc2/0x120 [ 265.164825][ T8870] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 265.164871][ T8870] ? __kernfs_new_node+0xd2/0x8a0 [ 265.164923][ T8870] __kernfs_new_node+0xd2/0x8a0 [ 265.164970][ T8870] ? wake_up_q+0xb0/0x160 [ 265.165003][ T8870] ? lockdep_hardirqs_on+0x7c/0x110 [ 265.165044][ T8870] ? __pfx___kernfs_new_node+0x10/0x10 [ 265.165098][ T8870] ? find_held_lock+0x2b/0x80 [ 265.165137][ T8870] ? kernfs_root+0xee/0x2a0 [ 265.165190][ T8870] kernfs_new_node+0x13c/0x1e0 [ 265.165230][ T8870] kernfs_create_link+0xcc/0x240 [ 265.165271][ T8870] sysfs_do_create_link_sd+0x90/0x140 [ 265.165320][ T8870] sysfs_create_link+0x61/0xc0 [ 265.165366][ T8870] device_add+0x62c/0x1a70 [ 265.165401][ T8870] ? __pfx_device_add+0x10/0x10 [ 265.165430][ T8870] ? __pfx_exact_lock+0x10/0x10 [ 265.165494][ T8870] ? kobject_get+0xbb/0x150 [ 265.165543][ T8870] cdev_device_add+0xc2/0x1e0 [ 265.165593][ T8870] evdev_connect+0x3a4/0x4c0 [ 265.165645][ T8870] input_attach_handler.isra.0+0x181/0x260 [ 265.165695][ T8870] input_register_device+0xa84/0x1130 [ 265.165746][ T8870] uinput_ioctl_handler.isra.0+0x1357/0x1df0 [ 265.165786][ T8870] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 265.165832][ T8870] ? find_held_lock+0x2b/0x80 [ 265.165889][ T8870] ? __pfx_uinput_ioctl+0x10/0x10 [ 265.165925][ T8870] __x64_sys_ioctl+0x190/0x200 [ 265.165964][ T8870] do_syscall_64+0xcd/0x260 [ 265.166010][ T8870] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 265.166040][ T8870] RIP: 0033:0x7fb96ff8d169 [ 265.166064][ T8870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 265.166093][ T8870] RSP: 002b:00007fb970eba038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 265.166123][ T8870] RAX: ffffffffffffffda RBX: 00007fb9701a5fa0 RCX: 00007fb96ff8d169 [ 265.166142][ T8870] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000005 [ 265.166158][ T8870] RBP: 00007fb97000e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 265.166175][ T8870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 265.166208][ T8870] R13: 0000000000000000 R14: 00007fb9701a5fa0 R15: 00007fff3d5c1c68 [ 265.166246][ T8870] [ 265.502077][ T8870] input: failed to attach handler evdev to device input13, error: -12 [ 266.519258][ T8889] netlink: 'syz.3.622': attribute type 1 has an invalid length. [ 267.697101][ T8919] netlink: zone id is out of range [ 267.702475][ T8919] netlink: zone id is out of range [ 267.713185][ T8919] netlink: zone id is out of range [ 267.743177][ T8919] netlink: zone id is out of range [ 267.760115][ T8919] netlink: zone id is out of range [ 267.777818][ T8919] netlink: zone id is out of range [ 267.791042][ T8919] netlink: zone id is out of range [ 267.796216][ T8919] netlink: zone id is out of range [ 267.866713][ T8919] netlink: zone id is out of range [ 267.886040][ T8919] netlink: zone id is out of range [ 267.976798][ T8927] netlink: 36 bytes leftover after parsing attributes in process `syz.3.629'. [ 268.136517][ T8936] netlink: 'syz.3.629': attribute type 16 has an invalid length. [ 268.146742][ T8936] netlink: 326 bytes leftover after parsing attributes in process `syz.3.629'. [ 268.205570][ T8936] veth1_macvtap: left promiscuous mode [ 268.689866][ T8950] netlink: 12 bytes leftover after parsing attributes in process `syz.3.631'. [ 268.752911][ T8951] netlink: 146 bytes leftover after parsing attributes in process `syz.2.632'. [ 268.813646][ T8954] ubi0: attaching mtd0 [ 268.820196][ T8954] ubi0: scanning is finished [ 268.824815][ T8954] ubi0: empty MTD device detected [ 268.997383][ T8954] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 269.007496][ T8954] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 269.016326][ T8954] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 269.025228][ T8954] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 269.034870][ T8954] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 269.048708][ T8954] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 269.060675][ T8954] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2917836887 [ 269.073086][ T8954] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 269.090562][ T8957] ubi0: background thread "ubi_bgt0d" started, PID 8957 [ 269.843859][ T8970] netlink: 62 bytes leftover after parsing attributes in process `syz.0.637'. [ 269.911914][ T8973] netlink: 4 bytes leftover after parsing attributes in process `syz.0.637'. [ 270.742391][ T9001] netlink: 12 bytes leftover after parsing attributes in process `syz.2.641'. [ 271.139515][ T9018] netlink: 330 bytes leftover after parsing attributes in process `syz.0.646'. [ 271.164969][ T9019] netlink: 4 bytes leftover after parsing attributes in process `syz.2.645'. [ 271.821464][ T9038] FAULT_INJECTION: forcing a failure. [ 271.821464][ T9038] name failslab, interval 1, probability 0, space 0, times 0 [ 271.834353][ T9038] CPU: 1 UID: 0 PID: 9038 Comm: syz.2.649 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 271.834393][ T9038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 271.834413][ T9038] Call Trace: [ 271.834423][ T9038] [ 271.834434][ T9038] dump_stack_lvl+0x16c/0x1f0 [ 271.834484][ T9038] should_fail_ex+0x512/0x640 [ 271.834519][ T9038] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 271.834580][ T9038] should_failslab+0xc2/0x120 [ 271.834608][ T9038] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 271.834655][ T9038] ? __pfx_do_futex+0x10/0x10 [ 271.834697][ T9038] ? copy_fs_struct+0x49/0x340 [ 271.834736][ T9038] copy_fs_struct+0x49/0x340 [ 271.834774][ T9038] ksys_unshare+0x356/0xa40 [ 271.834822][ T9038] ? __pfx_ksys_unshare+0x10/0x10 [ 271.834869][ T9038] ? xfd_validate_state+0x5d/0x180 [ 271.834906][ T9038] ? rcu_is_watching+0x12/0xc0 [ 271.834955][ T9038] __x64_sys_unshare+0x31/0x40 [ 271.835003][ T9038] do_syscall_64+0xcd/0x260 [ 271.835051][ T9038] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 271.835083][ T9038] RIP: 0033:0x7fb96ff8d169 [ 271.835108][ T9038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 271.835139][ T9038] RSP: 002b:00007fb970eba038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 271.835168][ T9038] RAX: ffffffffffffffda RBX: 00007fb9701a5fa0 RCX: 00007fb96ff8d169 [ 271.835188][ T9038] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000200 [ 271.835207][ T9038] RBP: 00007fb97000e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 271.835225][ T9038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 271.835242][ T9038] R13: 0000000000000000 R14: 00007fb9701a5fa0 R15: 00007fff3d5c1c68 [ 271.835280][ T9038] [ 272.476931][ T9051] netlink: 12 bytes leftover after parsing attributes in process `syz.1.654'. [ 272.531628][ T9053] netlink: 'syz.2.655': attribute type 11 has an invalid length. [ 273.814897][ T9073] nbd: nbd7 already in use [ 274.978119][ T9105] netlink: 12 bytes leftover after parsing attributes in process `syz.1.667'. [ 275.432750][ T9113] device-mapper: ioctl: Unable to rename non-existent device, to uuid [ 275.700787][ T9123] netlink: 4 bytes leftover after parsing attributes in process `syz.1.672'. [ 275.725759][ T9123] netlink: 25 bytes leftover after parsing attributes in process `syz.1.672'. [ 275.874917][ T9131] netlink: 342 bytes leftover after parsing attributes in process `syz.2.676'. [ 278.550148][ T9178] FAULT_INJECTION: forcing a failure. [ 278.550148][ T9178] name failslab, interval 1, probability 0, space 0, times 0 [ 278.563106][ T9178] CPU: 0 UID: 0 PID: 9178 Comm: syz.1.687 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 278.563151][ T9178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 278.563171][ T9178] Call Trace: [ 278.563183][ T9178] [ 278.563195][ T9178] dump_stack_lvl+0x16c/0x1f0 [ 278.563249][ T9178] should_fail_ex+0x512/0x640 [ 278.563291][ T9178] ? fs_reclaim_acquire+0xae/0x150 [ 278.563335][ T9178] should_failslab+0xc2/0x120 [ 278.563364][ T9178] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 278.563417][ T9178] ? security_inode_alloc+0x3b/0x2b0 [ 278.563459][ T9178] security_inode_alloc+0x3b/0x2b0 [ 278.563498][ T9178] inode_init_always_gfp+0xce4/0x1030 [ 278.563554][ T9178] alloc_inode+0x86/0x240 [ 278.563591][ T9178] new_inode+0x22/0x1c0 [ 278.563623][ T9178] ? proc_lookup_de+0x217/0x320 [ 278.563661][ T9178] proc_get_inode+0x1d/0x780 [ 278.563696][ T9178] proc_lookup_de+0x253/0x320 [ 278.563737][ T9178] proc_tgid_net_lookup+0x75/0x120 [ 278.563778][ T9178] __lookup_slow+0x24e/0x460 [ 278.563814][ T9178] ? __pfx___lookup_slow+0x10/0x10 [ 278.563877][ T9178] ? lookup_fast+0x156/0x610 [ 278.563935][ T9178] walk_component+0x353/0x5b0 [ 278.563980][ T9178] link_path_walk.part.0.constprop.0+0x682/0xd60 [ 278.564040][ T9178] path_openat+0x227/0x2d40 [ 278.564086][ T9178] ? __x64_sys_openat+0x174/0x210 [ 278.564136][ T9178] ? __pfx_path_openat+0x10/0x10 [ 278.564194][ T9178] do_filp_open+0x20b/0x470 [ 278.564242][ T9178] ? __pfx_do_filp_open+0x10/0x10 [ 278.564303][ T9178] ? __pfx_kfree_link+0x10/0x10 [ 278.564354][ T9178] ? alloc_fd+0x471/0x7d0 [ 278.564410][ T9178] do_sys_openat2+0x11b/0x1d0 [ 278.564443][ T9178] ? __pfx_do_sys_openat2+0x10/0x10 [ 278.564493][ T9178] __x64_sys_openat+0x174/0x210 [ 278.564527][ T9178] ? __pfx___x64_sys_openat+0x10/0x10 [ 278.564564][ T9178] ? rcu_is_watching+0x12/0xc0 [ 278.564615][ T9178] do_syscall_64+0xcd/0x260 [ 278.564665][ T9178] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 278.564697][ T9178] RIP: 0033:0x7f9fe6f8d169 [ 278.564722][ T9178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 278.564753][ T9178] RSP: 002b:00007f9fe4df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 278.564782][ T9178] RAX: ffffffffffffffda RBX: 00007f9fe71a5fa0 RCX: 00007f9fe6f8d169 [ 278.564803][ T9178] RDX: 0000000000048041 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 278.564823][ T9178] RBP: 00007f9fe700e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 278.564841][ T9178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 278.564859][ T9178] R13: 0000000000000000 R14: 00007f9fe71a5fa0 R15: 00007ffde0f1e258 [ 278.564899][ T9178] [ 278.566663][ T9178] FAULT_INJECTION: forcing a failure. [ 278.566663][ T9178] name fail_futex, interval 1, probability 0, space 0, times 1 [ 279.029248][ T9178] CPU: 1 UID: 0 PID: 9178 Comm: syz.1.687 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 279.029296][ T9178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 279.029315][ T9178] Call Trace: [ 279.029326][ T9178] [ 279.029339][ T9178] dump_stack_lvl+0x16c/0x1f0 [ 279.029390][ T9178] should_fail_ex+0x512/0x640 [ 279.029433][ T9178] get_futex_key+0x49e/0x1000 [ 279.029482][ T9178] ? __pfx_get_futex_key+0x10/0x10 [ 279.029525][ T9178] ? kfree+0x252/0x4d0 [ 279.029576][ T9178] futex_wake+0xe7/0x4e0 [ 279.029608][ T9178] ? __pfx_futex_wake+0x10/0x10 [ 279.029638][ T9178] ? __pfx_vfs_writev+0x10/0x10 [ 279.029682][ T9178] ? do_writev+0x218/0x330 [ 279.029727][ T9178] do_futex+0x1e3/0x350 [ 279.029783][ T9178] ? __pfx_do_futex+0x10/0x10 [ 279.029825][ T9178] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 279.029884][ T9178] __x64_sys_futex+0x1e0/0x4c0 [ 279.029932][ T9178] ? fput+0x70/0xf0 [ 279.029961][ T9178] ? __pfx___x64_sys_futex+0x10/0x10 [ 279.030007][ T9178] ? __pfx_do_writev+0x10/0x10 [ 279.030045][ T9178] ? rcu_is_watching+0x12/0xc0 [ 279.030093][ T9178] do_syscall_64+0xcd/0x260 [ 279.030141][ T9178] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 279.030173][ T9178] RIP: 0033:0x7f9fe6f8d169 [ 279.030199][ T9178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 279.030229][ T9178] RSP: 002b:00007f9fe4df60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 279.030258][ T9178] RAX: ffffffffffffffda RBX: 00007f9fe71a5fa8 RCX: 00007f9fe6f8d169 [ 279.030278][ T9178] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f9fe71a5fac [ 279.030296][ T9178] RBP: 00007f9fe71a5fa0 R08: 00007f9fe7cfa000 R09: 0000000000000000 [ 279.030314][ T9178] R10: 0000000000000007 R11: 0000000000000246 R12: 00007f9fe71a5fac [ 279.030332][ T9178] R13: 0000000000000000 R14: 00007ffde0f1e170 R15: 00007ffde0f1e258 [ 279.030370][ T9178] [ 279.804279][ T9173] FAULT_INJECTION: forcing a failure. [ 279.804279][ T9173] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 279.859994][ T9173] CPU: 0 UID: 0 PID: 9173 Comm: syz.2.685 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 279.860041][ T9173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 279.860060][ T9173] Call Trace: [ 279.860070][ T9173] [ 279.860082][ T9173] dump_stack_lvl+0x16c/0x1f0 [ 279.860133][ T9173] should_fail_ex+0x512/0x640 [ 279.860174][ T9173] strncpy_from_user+0x3b/0x2e0 [ 279.860212][ T9173] getname_flags.part.0+0x8b/0x540 [ 279.860252][ T9173] getname_flags+0x93/0xf0 [ 279.860296][ T9173] do_sys_openat2+0xb8/0x1d0 [ 279.860330][ T9173] ? __pfx_do_sys_openat2+0x10/0x10 [ 279.860380][ T9173] __x64_sys_openat+0x174/0x210 [ 279.860414][ T9173] ? __pfx___x64_sys_openat+0x10/0x10 [ 279.860451][ T9173] ? rcu_is_watching+0x12/0xc0 [ 279.860501][ T9173] do_syscall_64+0xcd/0x260 [ 279.860551][ T9173] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 279.860582][ T9173] RIP: 0033:0x7fb96ff8d169 [ 279.860608][ T9173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 279.860639][ T9173] RSP: 002b:00007fb970e99038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 279.860669][ T9173] RAX: ffffffffffffffda RBX: 00007fb9701a6080 RCX: 00007fb96ff8d169 [ 279.860689][ T9173] RDX: 0000000000000200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 279.860715][ T9173] RBP: 00007fb97000e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 279.860735][ T9173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 279.860754][ T9173] R13: 0000000000000000 R14: 00007fb9701a6080 R15: 00007fff3d5c1c68 [ 279.860793][ T9173] [ 280.141728][ T9194] ima: policy update failed [ 280.162286][ T30] audit: type=1802 audit(6039158652.437:14): pid=9194 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.691" res=0 errno=0 [ 282.100873][ T9232] netlink: 32 bytes leftover after parsing attributes in process `syz.0.697'. [ 282.657372][ T9229] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 282.756028][ T9235] Invalid ELF header magic: != ELF [ 283.169533][ T9256] netlink: 12 bytes leftover after parsing attributes in process `syz.1.702'. [ 283.525788][ T9262] netlink: 12 bytes leftover after parsing attributes in process `syz.0.701'. [ 284.401412][ T9271] net_ratelimit: 164 callbacks suppressed [ 284.401430][ T9271] netlink: zone id is out of range [ 284.437817][ T9271] netlink: zone id is out of range [ 284.463483][ T9271] netlink: zone id is out of range [ 284.483771][ T9271] netlink: zone id is out of range [ 284.512084][ T9271] netlink: zone id is out of range [ 284.537796][ T9271] netlink: zone id is out of range [ 284.543215][ T9271] netlink: zone id is out of range [ 284.567802][ T9271] netlink: zone id is out of range [ 284.578097][ T9271] netlink: zone id is out of range [ 284.617746][ T9271] netlink: zone id is out of range [ 286.120311][ T9302] netlink: 12 bytes leftover after parsing attributes in process `syz.1.713'. [ 286.472084][ T9310] [ 286.481438][ T9308] sg_write: data in/out 3292/1 bytes for SCSI command 0xa3-- guessing data in; [ 286.481438][ T9308] program syz.3.712 not setting count and/or reply_len properly [ 289.301775][ T9373] netlink: 12 bytes leftover after parsing attributes in process `syz.3.725'. [ 292.663702][ T9445] netlink: 326 bytes leftover after parsing attributes in process `syz.1.746'. [ 294.311822][ T9485] usbcore.quirks: string doesn't fit in 127 chars. [ 294.629739][ T9490] Invalid ELF header magic: != ELF [ 296.609331][ T9528] net_ratelimit: 4 callbacks suppressed [ 296.609355][ T9528] do_dccp_getsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app [ 300.369886][ T9592] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 300.376256][ T9592] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 300.397966][ T9592] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 300.417763][ T9592] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 300.741084][ T9598] FAULT_INJECTION: forcing a failure. [ 300.741084][ T9598] name failslab, interval 1, probability 0, space 0, times 0 [ 300.741199][ T9598] CPU: 0 UID: 0 PID: 9598 Comm: syz.1.779 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 300.741250][ T9598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 300.741268][ T9598] Call Trace: [ 300.741277][ T9598] [ 300.741288][ T9598] dump_stack_lvl+0x16c/0x1f0 [ 300.741340][ T9598] should_fail_ex+0x512/0x640 [ 300.741374][ T9598] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 300.741423][ T9598] should_failslab+0xc2/0x120 [ 300.741454][ T9598] __kmalloc_cache_noprof+0x6a/0x3e0 [ 300.741499][ T9598] ? crtc_or_fake_commit.part.0+0x7f/0x110 [ 300.741561][ T9598] crtc_or_fake_commit.part.0+0x7f/0x110 [ 300.741607][ T9598] drm_atomic_helper_setup_commit+0x1066/0x15d0 [ 300.741677][ T9598] drm_atomic_helper_commit+0xa9/0x380 [ 300.741748][ T9598] ? __pfx_drm_atomic_helper_commit+0x10/0x10 [ 300.741801][ T9598] drm_atomic_commit+0x231/0x300 [ 300.741838][ T9598] ? __pfx_drm_atomic_commit+0x10/0x10 [ 300.741873][ T9598] ? __pfx___drm_printfn_info+0x10/0x10 [ 300.741919][ T9598] ? drm_client_rotation+0x4d9/0x6a0 [ 300.741955][ T9598] drm_client_modeset_commit_atomic+0x69d/0x7e0 [ 300.742003][ T9598] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 300.742099][ T9598] drm_client_modeset_commit_locked+0x14d/0x580 [ 300.742138][ T9598] drm_client_modeset_commit+0x4f/0x80 [ 300.742171][ T9598] __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200 [ 300.742247][ T9598] drm_fb_helper_set_par+0xd8/0x120 [ 300.742292][ T9598] ? __pfx_drm_fb_helper_set_par+0x10/0x10 [ 300.742341][ T9598] fb_set_var+0x838/0x11f0 [ 300.742400][ T9598] ? __pfx_fb_set_var+0x10/0x10 [ 300.742452][ T9598] ? find_held_lock+0x2b/0x80 [ 300.742515][ T9598] ? is_bpf_text_address+0x94/0x1a0 [ 300.742546][ T9598] ? kernel_text_address+0x8d/0x100 [ 300.742592][ T9598] ? __mutex_trylock_common+0xe9/0x250 [ 300.742627][ T9598] ? __pfx___mutex_trylock_common+0x10/0x10 [ 300.742663][ T9598] ? __pfx___might_resched+0x10/0x10 [ 300.742718][ T9598] ? rcu_is_watching+0x12/0xc0 [ 300.742758][ T9598] ? trace_contention_end+0xdd/0x130 [ 300.742792][ T9598] ? __mutex_lock+0x1ca/0xb90 [ 300.742872][ T9598] ? mark_held_locks+0x49/0x80 [ 300.742934][ T9598] activate+0x67/0x100 [ 300.742979][ T9598] store_bpp+0x114/0x1a0 [ 300.743022][ T9598] ? __pfx_store_bpp+0x10/0x10 [ 300.743061][ T9598] ? __lock_acquire+0x5ca/0x1ba0 [ 300.743119][ T9598] ? find_held_lock+0x2b/0x80 [ 300.743160][ T9598] ? sysfs_file_kobj+0xe4/0x290 [ 300.743210][ T9598] ? __pfx_store_bpp+0x10/0x10 [ 300.743250][ T9598] dev_attr_store+0x55/0x80 [ 300.743280][ T9598] ? __pfx_dev_attr_store+0x10/0x10 [ 300.743312][ T9598] sysfs_kf_write+0xef/0x150 [ 300.743362][ T9598] kernfs_fop_write_iter+0x351/0x510 [ 300.743401][ T9598] ? __pfx_sysfs_kf_write+0x10/0x10 [ 300.743452][ T9598] iter_file_splice_write+0x91c/0x1150 [ 300.743539][ T9598] ? __pfx_iter_file_splice_write+0x10/0x10 [ 300.743598][ T9598] ? __pfx_copy_splice_read+0x10/0x10 [ 300.743671][ T9598] ? __pfx_iter_file_splice_write+0x10/0x10 [ 300.743724][ T9598] direct_splice_actor+0x18f/0x6c0 [ 300.743778][ T9598] splice_direct_to_actor+0x342/0xa30 [ 300.743826][ T9598] ? __pfx_direct_splice_actor+0x10/0x10 [ 300.743881][ T9598] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 300.743954][ T9598] do_splice_direct+0x174/0x240 [ 300.744000][ T9598] ? __pfx_do_splice_direct+0x10/0x10 [ 300.744046][ T9598] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 300.744098][ T9598] ? rw_verify_area+0xcf/0x680 [ 300.744143][ T9598] do_sendfile+0xafd/0xe50 [ 300.744194][ T9598] ? __pfx_do_sendfile+0x10/0x10 [ 300.744255][ T9598] ? __x64_sys_futex+0x1e0/0x4c0 [ 300.744296][ T9598] ? __x64_sys_futex+0x1e9/0x4c0 [ 300.744344][ T9598] __x64_sys_sendfile64+0x1d8/0x220 [ 300.744374][ T9598] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 300.744401][ T9598] ? rcu_is_watching+0x12/0xc0 [ 300.744450][ T9598] do_syscall_64+0xcd/0x260 [ 300.744497][ T9598] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 300.744531][ T9598] RIP: 0033:0x7f9fe6f8d169 [ 300.744557][ T9598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 300.744587][ T9598] RSP: 002b:00007f9fe4db4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 300.744615][ T9598] RAX: ffffffffffffffda RBX: 00007f9fe71a6160 RCX: 00007f9fe6f8d169 [ 300.744634][ T9598] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004 [ 300.744651][ T9598] RBP: 00007f9fe700e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 300.744667][ T9598] R10: 0000000000000200 R11: 0000000000000246 R12: 0000000000000000 [ 300.744684][ T9598] R13: 0000000000000000 R14: 00007f9fe71a6160 R15: 00007ffde0f1e258 [ 300.744726][ T9598] [ 302.448783][ T5847] Bluetooth: hci3: command 0x0c1a tx timeout [ 302.448842][ T5847] Bluetooth: hci1: command 0x0c1a tx timeout [ 302.448888][ T5847] Bluetooth: hci2: command 0x0c1a tx timeout [ 302.448934][ T5847] Bluetooth: hci0: command 0x0c1a tx timeout [ 303.239379][ T9614] tty tty17: ldisc open failed (-12), clearing slot 16 [ 303.287127][ T9617] ttyS ttyS2: ldisc open failed (-12), clearing slot 2 [ 303.576495][ T9632] Invalid ELF header magic: != ELF [ 304.063054][ T9647] netlink: 'syz.1.789': attribute type 11 has an invalid length. [ 305.072568][ T9668] netlink: 12 bytes leftover after parsing attributes in process `syz.1.792'. [ 308.381620][ T9737] netlink: 12 bytes leftover after parsing attributes in process `syz.3.803'. [ 308.760426][ T9725] Invalid ELF header magic: != ELF [ 310.751787][ T9776] netlink: 12 bytes leftover after parsing attributes in process `syz.2.814'. [ 311.080531][ T9782] Invalid ELF header magic: != ELF [ 311.406592][ T9792] batman_adv: Routing algorithm '' is not supported [ 312.135917][ T9807] Invalid ELF header magic: != ELF [ 315.279906][ T9847] netlink: ct family unspecified [ 315.386355][ T9851] netlink: 12 bytes leftover after parsing attributes in process `syz.3.825'. [ 316.188971][ T5845] Bluetooth: hci1: unexpected event 0x1d length: 6 > 5 [ 316.288231][ T30] audit: type=1806 audit(6039158696.579:15): xattr=B392F75C760827F7AA395E7FA40FD317360FC8FEA73F776AEFAB7BD965FAC159EE0B6DE3341E3108BB70DA3046701D1EA0F4094F30AC925F99520717E529D92E9C2878ABEEFB951AC1C11584F51CA7 res=-22 [ 316.326106][ T9874] FAULT_INJECTION: forcing a failure. [ 316.326106][ T9874] name failslab, interval 1, probability 0, space 0, times 0 [ 316.417508][ T9874] CPU: 0 UID: 0 PID: 9874 Comm: syz.0.837 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 316.417555][ T9874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 316.417573][ T9874] Call Trace: [ 316.417582][ T9874] [ 316.417594][ T9874] dump_stack_lvl+0x16c/0x1f0 [ 316.417642][ T9874] should_fail_ex+0x512/0x640 [ 316.417676][ T9874] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 316.417729][ T9874] should_failslab+0xc2/0x120 [ 316.417757][ T9874] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 316.417806][ T9874] ? __d_alloc+0x31/0xaa0 [ 316.417839][ T9874] __d_alloc+0x31/0xaa0 [ 316.417872][ T9874] d_alloc+0x4a/0x1e0 [ 316.417916][ T9874] d_alloc_parallel+0xe3/0x12e0 [ 316.417955][ T9874] ? kasan_save_stack+0x42/0x60 [ 316.417996][ T9874] ? kasan_save_track+0x14/0x30 [ 316.418037][ T9874] ? kasan_save_free_info+0x3b/0x60 [ 316.418073][ T9874] ? kfree+0x2b6/0x4d0 [ 316.418107][ T9874] ? walk_component+0x1a2/0x5b0 [ 316.418144][ T9874] ? link_path_walk.part.0.constprop.0+0x550/0xd60 [ 316.418193][ T9874] ? __lock_acquire+0xaa4/0x1ba0 [ 316.418221][ T9874] ? __pfx_d_alloc_parallel+0x10/0x10 [ 316.418263][ T9874] ? lockdep_init_map_type+0x5c/0x280 [ 316.418293][ T9874] ? lockdep_init_map_type+0x5c/0x280 [ 316.418330][ T9874] __lookup_slow+0x193/0x460 [ 316.418367][ T9874] ? __pfx___lookup_slow+0x10/0x10 [ 316.418425][ T9874] ? lookup_fast+0x156/0x610 [ 316.418467][ T9874] walk_component+0x353/0x5b0 [ 316.418510][ T9874] link_path_walk.part.0.constprop.0+0x682/0xd60 [ 316.418568][ T9874] path_openat+0x227/0x2d40 [ 316.418609][ T9874] ? __x64_sys_openat+0x174/0x210 [ 316.418657][ T9874] ? __pfx_path_openat+0x10/0x10 [ 316.418713][ T9874] do_filp_open+0x20b/0x470 [ 316.418758][ T9874] ? __pfx_do_filp_open+0x10/0x10 [ 316.418816][ T9874] ? __pfx_kfree_link+0x10/0x10 [ 316.418863][ T9874] ? alloc_fd+0x471/0x7d0 [ 316.418924][ T9874] do_sys_openat2+0x11b/0x1d0 [ 316.418954][ T9874] ? __pfx_do_sys_openat2+0x10/0x10 [ 316.419003][ T9874] __x64_sys_openat+0x174/0x210 [ 316.419037][ T9874] ? __pfx___x64_sys_openat+0x10/0x10 [ 316.419074][ T9874] ? rcu_is_watching+0x12/0xc0 [ 316.419123][ T9874] do_syscall_64+0xcd/0x260 [ 316.419169][ T9874] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 316.419201][ T9874] RIP: 0033:0x7fb480f8bad0 [ 316.419224][ T9874] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 316.419254][ T9874] RSP: 002b:00007fb481e8cf10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 316.419283][ T9874] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fb480f8bad0 [ 316.419302][ T9874] RDX: 0000000000000002 RSI: 00007fb481e8cfa0 RDI: 00000000ffffff9c [ 316.419321][ T9874] RBP: 00007fb481e8cfa0 R08: 0000000000000000 R09: 0000000000000000 [ 316.419340][ T9874] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 316.419358][ T9874] R13: 0000000000000000 R14: 00007fb4811a5fa0 R15: 00007ffc32711248 [ 316.419397][ T9874] [ 318.200203][ T9907] Invalid ELF header magic: != ELF [ 318.330878][ T9916] netlink: 12 bytes leftover after parsing attributes in process `syz.3.843'. [ 318.350157][ T9917] input: jJǸ-9%vlQ J"1 as /devices/virtual/input/input14 [ 319.450973][ T5845] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 319.548059][ T9933] netlink: 85 bytes leftover after parsing attributes in process `syz.0.850'. [ 319.928280][ T30] audit: type=1400 audit(6039158700.219:16): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=9937 comm="syz.3.852" [ 321.365127][ T9960] netlink: 'syz.1.856': attribute type 19 has an invalid length. [ 321.707909][ T9960] netlink: 334 bytes leftover after parsing attributes in process `syz.1.856'. [ 322.384025][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.390667][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 322.608052][ T9980] netlink: 12 bytes leftover after parsing attributes in process `syz.3.858'. [ 325.082425][T10027] FAULT_INJECTION: forcing a failure. [ 325.082425][T10027] name failslab, interval 1, probability 0, space 0, times 0 [ 325.095490][T10027] CPU: 0 UID: 0 PID: 10027 Comm: syz.0.870 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 325.095532][T10027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 325.095548][T10027] Call Trace: [ 325.095558][T10027] [ 325.095569][T10027] dump_stack_lvl+0x16c/0x1f0 [ 325.095614][T10027] should_fail_ex+0x512/0x640 [ 325.095647][T10027] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 325.095691][T10027] should_failslab+0xc2/0x120 [ 325.095719][T10027] __kmalloc_cache_noprof+0x6a/0x3e0 [ 325.095759][T10027] ? device_add+0xccc/0x1a70 [ 325.095795][T10027] device_add+0xccc/0x1a70 [ 325.095824][T10027] ? dev_set_name+0xc7/0x100 [ 325.095858][T10027] ? __pfx_dev_set_name+0x10/0x10 [ 325.095901][T10027] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 325.095939][T10027] ? __pfx_device_add+0x10/0x10 [ 325.095970][T10027] ? sprintf+0xcc/0x100 [ 325.096022][T10027] ? __pfx_sprintf+0x10/0x10 [ 325.096066][T10027] add_disk_fwnode+0x468/0x13a0 [ 325.096109][T10027] loop_add+0x909/0xb70 [ 325.096138][T10027] ? do_vfs_ioctl+0x512/0x1990 [ 325.096191][T10027] ? __pfx_loop_add+0x10/0x10 [ 325.096228][T10027] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 325.096293][T10027] ? find_held_lock+0x2b/0x80 [ 325.096337][T10027] ? 0xffffffff81000000 [ 325.096361][T10027] loop_control_ioctl+0x13c/0x630 [ 325.096398][T10027] ? __pfx_loop_control_ioctl+0x10/0x10 [ 325.096437][T10027] ? 0xffffffff81000000 [ 325.096459][T10027] ? __pfx_loop_control_ioctl+0x10/0x10 [ 325.096494][T10027] ? 0xffffffff81000000 [ 325.096516][T10027] __x64_sys_ioctl+0x190/0x200 [ 325.096557][T10027] do_syscall_64+0xcd/0x260 [ 325.096606][T10027] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 325.096636][T10027] RIP: 0033:0x7fb480f8d169 [ 325.096660][T10027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 325.096691][T10027] RSP: 002b:00007fb481e6c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 325.096721][T10027] RAX: ffffffffffffffda RBX: 00007fb4811a6080 RCX: 00007fb480f8d169 [ 325.096740][T10027] RDX: ffffffff81000000 RSI: 0000000000004c80 RDI: 0000000000000009 [ 325.096759][T10027] RBP: 00007fb48100e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 325.096777][T10027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 325.096795][T10027] R13: 0000000000000000 R14: 00007fb4811a6080 R15: 00007ffc32711248 [ 325.096825][T10027] ? 0xffffffff81000000 [ 325.096852][T10027] [ 325.961341][T10042] netlink: 12 bytes leftover after parsing attributes in process `syz.3.871'. [ 326.377848][T10053] netlink: 272 bytes leftover after parsing attributes in process `syz.2.875'. [ 326.427876][T10053] nbd: must specify a device to reconfigure [ 328.394250][T10085] FAULT_INJECTION: forcing a failure. [ 328.394250][T10085] name failslab, interval 1, probability 0, space 0, times 0 [ 328.408190][T10085] CPU: 0 UID: 0 PID: 10085 Comm: syz.2.884 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 328.408234][T10085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 328.408253][T10085] Call Trace: [ 328.408264][T10085] [ 328.408275][T10085] dump_stack_lvl+0x16c/0x1f0 [ 328.408328][T10085] should_fail_ex+0x512/0x640 [ 328.408364][T10085] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 328.408411][T10085] should_failslab+0xc2/0x120 [ 328.408442][T10085] __kmalloc_cache_noprof+0x6a/0x3e0 [ 328.408485][T10085] ? lockdep_init_map_type+0x5c/0x280 [ 328.408515][T10085] ? rfkill_fop_open+0x1b6/0x750 [ 328.408555][T10085] ? __pfx_rfkill_fop_open+0x10/0x10 [ 328.408586][T10085] rfkill_fop_open+0x1b6/0x750 [ 328.408626][T10085] ? __pfx_rfkill_fop_open+0x10/0x10 [ 328.408663][T10085] misc_open+0x35a/0x420 [ 328.408703][T10085] ? __pfx_misc_open+0x10/0x10 [ 328.408742][T10085] chrdev_open+0x231/0x6a0 [ 328.408787][T10085] ? __pfx_apparmor_file_open+0x10/0x10 [ 328.408828][T10085] ? __pfx_chrdev_open+0x10/0x10 [ 328.408879][T10085] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 328.408939][T10085] do_dentry_open+0x741/0x1c10 [ 328.408985][T10085] ? __pfx_chrdev_open+0x10/0x10 [ 328.409044][T10085] vfs_open+0x82/0x3f0 [ 328.409083][T10085] path_openat+0x1e5e/0x2d40 [ 328.409146][T10085] ? __pfx_path_openat+0x10/0x10 [ 328.409214][T10085] do_filp_open+0x20b/0x470 [ 328.409258][T10085] ? __pfx_do_filp_open+0x10/0x10 [ 328.409331][T10085] ? alloc_fd+0x471/0x7d0 [ 328.409385][T10085] do_sys_openat2+0x11b/0x1d0 [ 328.409417][T10085] ? __pfx_do_sys_openat2+0x10/0x10 [ 328.409464][T10085] __x64_sys_openat+0x174/0x210 [ 328.409496][T10085] ? __pfx___x64_sys_openat+0x10/0x10 [ 328.409531][T10085] ? rcu_is_watching+0x12/0xc0 [ 328.409578][T10085] do_syscall_64+0xcd/0x260 [ 328.409624][T10085] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 328.409655][T10085] RIP: 0033:0x7fb96ff8d169 [ 328.409678][T10085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 328.409707][T10085] RSP: 002b:00007fb970eba038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 328.409735][T10085] RAX: ffffffffffffffda RBX: 00007fb9701a5fa0 RCX: 00007fb96ff8d169 [ 328.409773][T10085] RDX: 0000000000080d02 RSI: 0000200000000e40 RDI: ffffffffffffff9c [ 328.409793][T10085] RBP: 00007fb97000e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 328.409811][T10085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 328.409828][T10085] R13: 0000000000000000 R14: 00007fb9701a5fa0 R15: 00007fff3d5c1c68 [ 328.409880][T10085] [ 328.982760][T10094] netlink: 28 bytes leftover after parsing attributes in process `syz.2.886'. [ 329.833405][T10101] netlink: 12 bytes leftover after parsing attributes in process `syz.2.888'. [ 330.006967][T10108] netlink: 272 bytes leftover after parsing attributes in process `syz.3.887'. [ 330.043268][T10108] nbd: must specify a device to reconfigure [ 330.855782][T10121] usb usb7: usbfs: process 10121 (syz.3.892) did not claim interface 0 before use [ 331.071479][T10130] netlink: 330 bytes leftover after parsing attributes in process `syz.2.893'. [ 331.193764][T10135] netlink: 28 bytes leftover after parsing attributes in process `syz.0.896'. [ 331.444966][T10135] team0: Port device team_slave_0 removed [ 331.819167][T10143] netlink: 12 bytes leftover after parsing attributes in process `syz.2.899'. [ 331.869128][T10145] FAULT_INJECTION: forcing a failure. [ 331.869128][T10145] name failslab, interval 1, probability 0, space 0, times 0 [ 331.917738][T10145] CPU: 0 UID: 0 PID: 10145 Comm: syz.0.898 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 331.917782][T10145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 331.917799][T10145] Call Trace: [ 331.917808][T10145] [ 331.917819][T10145] dump_stack_lvl+0x16c/0x1f0 [ 331.917864][T10145] should_fail_ex+0x512/0x640 [ 331.917895][T10145] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 331.917936][T10145] should_failslab+0xc2/0x120 [ 331.917961][T10145] __kmalloc_cache_noprof+0x6a/0x3e0 [ 331.917999][T10145] ? rfkill_fop_open+0x56/0x750 [ 331.918034][T10145] ? __pfx_rfkill_fop_open+0x10/0x10 [ 331.918063][T10145] rfkill_fop_open+0x56/0x750 [ 331.918090][T10145] ? kobject_get_unless_zero+0x156/0x1e0 [ 331.918135][T10145] ? __pfx_rfkill_fop_open+0x10/0x10 [ 331.918165][T10145] misc_open+0x35a/0x420 [ 331.918199][T10145] ? __pfx_misc_open+0x10/0x10 [ 331.918232][T10145] chrdev_open+0x231/0x6a0 [ 331.918271][T10145] ? __pfx_apparmor_file_open+0x10/0x10 [ 331.918313][T10145] ? __pfx_chrdev_open+0x10/0x10 [ 331.918358][T10145] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 331.918403][T10145] do_dentry_open+0x741/0x1c10 [ 331.918443][T10145] ? __pfx_chrdev_open+0x10/0x10 [ 331.918491][T10145] vfs_open+0x82/0x3f0 [ 331.918521][T10145] path_openat+0x1e5e/0x2d40 [ 331.918574][T10145] ? __pfx_path_openat+0x10/0x10 [ 331.918621][T10145] do_filp_open+0x20b/0x470 [ 331.918661][T10145] ? __pfx_do_filp_open+0x10/0x10 [ 331.918723][T10145] ? alloc_fd+0x471/0x7d0 [ 331.918770][T10145] do_sys_openat2+0x11b/0x1d0 [ 331.918797][T10145] ? __pfx_do_sys_openat2+0x10/0x10 [ 331.918837][T10145] __x64_sys_openat+0x174/0x210 [ 331.918866][T10145] ? __pfx___x64_sys_openat+0x10/0x10 [ 331.918897][T10145] ? rcu_is_watching+0x12/0xc0 [ 331.918939][T10145] do_syscall_64+0xcd/0x260 [ 331.918980][T10145] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 331.919007][T10145] RIP: 0033:0x7fb480f8d169 [ 331.919028][T10145] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 331.919055][T10145] RSP: 002b:00007fb481e8d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 331.919082][T10145] RAX: ffffffffffffffda RBX: 00007fb4811a5fa0 RCX: 00007fb480f8d169 [ 331.919099][T10145] RDX: 0000000000080d02 RSI: 0000200000000e40 RDI: ffffffffffffff9c [ 331.919116][T10145] RBP: 00007fb48100e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 331.919132][T10145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 331.919148][T10145] R13: 0000000000000000 R14: 00007fb4811a5fa0 R15: 00007ffc32711248 [ 331.919181][T10145] [ 332.550839][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 332.557375][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 334.600086][T10175] netlink: 326 bytes leftover after parsing attributes in process `syz.2.906'. [ 335.320283][T10184] netlink: 272 bytes leftover after parsing attributes in process `syz.1.905'. [ 335.329703][T10184] nbd: must specify a device to reconfigure [ 336.008043][T10205] netlink: 12 bytes leftover after parsing attributes in process `syz.0.910'. [ 337.291606][T10196] FAULT_INJECTION: forcing a failure. [ 337.291606][T10196] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 337.377279][T10196] CPU: 1 UID: 0 PID: 10196 Comm: syz.3.911 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 337.377327][T10196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 337.377345][T10196] Call Trace: [ 337.377355][T10196] [ 337.377368][T10196] dump_stack_lvl+0x16c/0x1f0 [ 337.377419][T10196] should_fail_ex+0x512/0x640 [ 337.377463][T10196] should_fail_alloc_page+0xe7/0x130 [ 337.377497][T10196] prepare_alloc_pages+0x3c2/0x610 [ 337.377541][T10196] ? rcu_is_watching+0x12/0xc0 [ 337.377584][T10196] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 337.377652][T10196] ? __lock_acquire+0x5ca/0x1ba0 [ 337.377684][T10196] ? xas_create+0x1d7/0x1460 [ 337.377739][T10196] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 337.377809][T10196] ? __lock_acquire+0x5ca/0x1ba0 [ 337.377835][T10196] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 337.377868][T10196] ? policy_nodemask+0xea/0x4e0 [ 337.377899][T10196] alloc_pages_mpol+0x1fb/0x550 [ 337.377928][T10196] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 337.377958][T10196] ? filemap_get_entry+0x1a7/0x3b0 [ 337.378015][T10196] folio_alloc_noprof+0x20/0x2d0 [ 337.378050][T10196] filemap_alloc_folio_noprof+0x3a1/0x470 [ 337.378101][T10196] ? __pfx_filemap_alloc_folio_noprof+0x10/0x10 [ 337.378148][T10196] ? rcu_is_watching+0x12/0xc0 [ 337.378194][T10196] __filemap_get_folio+0x5e9/0xc10 [ 337.378239][T10196] ioctx_alloc+0x761/0x2060 [ 337.378328][T10196] ? __pfx_ioctx_alloc+0x10/0x10 [ 337.378369][T10196] ? __might_fault+0x13b/0x190 [ 337.378437][T10196] __x64_sys_io_setup+0xc9/0x210 [ 337.378481][T10196] do_syscall_64+0xcd/0x260 [ 337.378525][T10196] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 337.378555][T10196] RIP: 0033:0x7f410e18d169 [ 337.378579][T10196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 337.378608][T10196] RSP: 002b:00007f410bff6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 337.378636][T10196] RAX: ffffffffffffffda RBX: 00007f410e3a5fa0 RCX: 00007f410e18d169 [ 337.378674][T10196] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff [ 337.378692][T10196] RBP: 00007f410e20e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 337.378722][T10196] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 337.378741][T10196] R13: 0000000000000000 R14: 00007f410e3a5fa0 R15: 00007ffeaeac3978 [ 337.378782][T10196] [ 337.886031][T10206] FAULT_INJECTION: forcing a failure. [ 337.886031][T10206] name fail_futex, interval 1, probability 0, space 0, times 0 [ 338.048890][T10206] CPU: 1 UID: 0 PID: 10206 Comm: syz.3.911 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 338.048934][T10206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 338.048952][T10206] Call Trace: [ 338.048962][T10206] [ 338.048972][T10206] dump_stack_lvl+0x16c/0x1f0 [ 338.049018][T10206] should_fail_ex+0x512/0x640 [ 338.049056][T10206] get_futex_key+0x49e/0x1000 [ 338.049100][T10206] ? __pfx_get_futex_key+0x10/0x10 [ 338.049154][T10206] futex_wake+0xe7/0x4e0 [ 338.049184][T10206] ? __pfx_futex_wake+0x10/0x10 [ 338.049217][T10206] ? kmem_cache_free+0x2d4/0x4d0 [ 338.049257][T10206] ? fd_install+0x225/0x750 [ 338.049297][T10206] ? putname+0x154/0x1a0 [ 338.049329][T10206] do_futex+0x1e3/0x350 [ 338.049372][T10206] ? __pfx_do_futex+0x10/0x10 [ 338.049412][T10206] ? __pfx_do_sys_openat2+0x10/0x10 [ 338.049452][T10206] __x64_sys_futex+0x1e0/0x4c0 [ 338.049498][T10206] ? __pfx___x64_sys_futex+0x10/0x10 [ 338.049536][T10206] ? __pfx___x64_sys_open+0x10/0x10 [ 338.049581][T10206] do_syscall_64+0xcd/0x260 [ 338.049627][T10206] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 338.049657][T10206] RIP: 0033:0x7f410e18d169 [ 338.049679][T10206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 338.049709][T10206] RSP: 002b:00007f410bfd50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 338.049734][T10206] RAX: ffffffffffffffda RBX: 00007f410e3a6088 RCX: 00007f410e18d169 [ 338.049752][T10206] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f410e3a608c [ 338.049769][T10206] RBP: 00007f410e3a6080 R08: 00007f410eee6000 R09: 0000000000000000 [ 338.049787][T10206] R10: 0000000000000008 R11: 0000000000000246 R12: 00007f410e3a608c [ 338.049804][T10206] R13: 0000000000000000 R14: 00007ffeaeac3890 R15: 00007ffeaeac3978 [ 338.049839][T10206] [ 338.650048][ T5845] Bluetooth: hci0: unexpected subevent 0x01 length: 125 > 18 [ 338.657790][ T5845] Bluetooth: hci0: Invalid handle: 0x1e1a > 0x0eff [ 339.057792][T10239] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 339.375806][T10250] netlink: 12 bytes leftover after parsing attributes in process `syz.2.923'. [ 340.833645][T10277] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 340.996165][T10277] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 341.115081][T10277] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 341.177979][T10277] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 341.548950][T10288] random: crng reseeded on system resumption [ 342.287695][ T5847] Bluetooth: hci0: command 0x0c1a tx timeout [ 342.380243][T10325] netlink: 12 bytes leftover after parsing attributes in process `syz.0.935'. [ 342.506843][T10319] netlink: 28 bytes leftover after parsing attributes in process `syz.3.934'. [ 343.007753][ T5847] Bluetooth: hci1: command 0x0c1a tx timeout [ 343.167895][ T5847] Bluetooth: hci2: command 0x0c1a tx timeout [ 343.248789][ T5847] Bluetooth: hci3: command 0x0c1a tx timeout [ 344.540491][T10370] netlink: 28 bytes leftover after parsing attributes in process `syz.1.942'. [ 346.070823][T10403] netlink: 12 bytes leftover after parsing attributes in process `syz.1.947'. [ 346.901879][T10429] netlink: 4 bytes leftover after parsing attributes in process `syz.2.954'. [ 347.580789][T10451] netlink: 28 bytes leftover after parsing attributes in process `syz.0.965'. [ 348.373538][T10467] netlink: 12 bytes leftover after parsing attributes in process `syz.1.960'. [ 348.530404][T10474] netlink: 12 bytes leftover after parsing attributes in process `syz.3.959'. [ 351.044056][T10516] netlink: 'syz.2.969': attribute type 11 has an invalid length. [ 351.678020][T10531] netlink: 12 bytes leftover after parsing attributes in process `syz.2.973'. [ 353.421797][T10579] netlink: 12 bytes leftover after parsing attributes in process `syz.0.980'. [ 354.892323][T10601] netlink: 4 bytes leftover after parsing attributes in process `syz.1.986'. [ 355.056217][T10603] netlink: 12 bytes leftover after parsing attributes in process `syz.0.987'. [ 355.699062][T10617] netlink: 28 bytes leftover after parsing attributes in process `syz.1.992'. [ 355.781482][T10619] FAULT_INJECTION: forcing a failure. [ 355.781482][T10619] name failslab, interval 1, probability 0, space 0, times 0 [ 355.816752][T10619] CPU: 1 UID: 0 PID: 10619 Comm: syz.3.991 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 355.816801][T10619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 355.816842][T10619] Call Trace: [ 355.816852][T10619] [ 355.816864][T10619] dump_stack_lvl+0x16c/0x1f0 [ 355.816917][T10619] should_fail_ex+0x512/0x640 [ 355.816951][T10619] ? __kmalloc_noprof+0xbf/0x510 [ 355.817003][T10619] ? memcg_list_lru_alloc+0x4e9/0x740 [ 355.817032][T10619] should_failslab+0xc2/0x120 [ 355.817061][T10619] __kmalloc_noprof+0xd2/0x510 [ 355.817116][T10619] memcg_list_lru_alloc+0x4e9/0x740 [ 355.817155][T10619] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 355.817208][T10619] __memcg_slab_post_alloc_hook+0x131/0x940 [ 355.817248][T10619] ? kasan_save_track+0x14/0x30 [ 355.817297][T10619] kmem_cache_alloc_lru_noprof+0x30f/0x3b0 [ 355.817350][T10619] ? bdev_alloc_inode+0x26/0x90 [ 355.817399][T10619] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 355.817441][T10619] ? __pfx_bdev_alloc_inode+0x10/0x10 [ 355.817488][T10619] bdev_alloc_inode+0x26/0x90 [ 355.817538][T10619] ? __pfx_bdev_alloc_inode+0x10/0x10 [ 355.817584][T10619] alloc_inode+0x61/0x240 [ 355.817619][T10619] new_inode+0x22/0x1c0 [ 355.817655][T10619] bdev_alloc+0x2b/0x420 [ 355.817690][T10619] __alloc_disk_node+0x116/0x610 [ 355.817734][T10619] __blk_mq_alloc_disk+0x89/0x120 [ 355.817772][T10619] loop_add+0x496/0xb70 [ 355.817805][T10619] ? 0xffffffff81000000 [ 355.817840][T10619] ? do_vfs_ioctl+0x512/0x1990 [ 355.817879][T10619] ? __pfx_loop_add+0x10/0x10 [ 355.817910][T10619] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 355.817974][T10619] ? find_held_lock+0x2b/0x80 [ 355.818018][T10619] ? 0xffffffff81000000 [ 355.818042][T10619] loop_control_ioctl+0x13c/0x630 [ 355.818079][T10619] ? __pfx_loop_control_ioctl+0x10/0x10 [ 355.818118][T10619] ? 0xffffffff81000000 [ 355.818139][T10619] ? __pfx_loop_control_ioctl+0x10/0x10 [ 355.818175][T10619] ? 0xffffffff81000000 [ 355.818197][T10619] __x64_sys_ioctl+0x190/0x200 [ 355.818248][T10619] do_syscall_64+0xcd/0x260 [ 355.818312][T10619] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 355.818344][T10619] RIP: 0033:0x7f410e18d169 [ 355.818368][T10619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 355.818399][T10619] RSP: 002b:00007f410bff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 355.818429][T10619] RAX: ffffffffffffffda RBX: 00007f410e3a5fa0 RCX: 00007f410e18d169 [ 355.818449][T10619] RDX: ffffffff81000000 RSI: 0000000000004c80 RDI: 000000000000000a [ 355.818468][T10619] RBP: 00007f410e20e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 355.818486][T10619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 355.818504][T10619] R13: 0000000000000000 R14: 00007f410e3a5fa0 R15: 00007ffeaeac3978 [ 355.818536][T10619] ? 0xffffffff81000000 [ 355.818565][T10619] [ 356.684524][T10628] netlink: 'syz.1.993': attribute type 11 has an invalid length. [ 357.692489][T10662] netlink: 12 bytes leftover after parsing attributes in process `syz.3.998'. [ 360.305652][T10700] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1004'. [ 360.755770][T10707] random: crng reseeded on system resumption [ 361.561054][T10726] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1010'. [ 361.685153][T10729] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1011'. [ 363.749032][T10748] FAULT_INJECTION: forcing a failure. [ 363.749032][T10748] name failslab, interval 1, probability 0, space 0, times 0 [ 363.766340][T10748] CPU: 0 UID: 0 PID: 10748 Comm: syz.3.1013 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 363.766415][T10748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 363.766448][T10748] Call Trace: [ 363.766465][T10748] [ 363.766485][T10748] dump_stack_lvl+0x16c/0x1f0 [ 363.766537][T10748] should_fail_ex+0x512/0x640 [ 363.766571][T10748] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 363.766619][T10748] should_failslab+0xc2/0x120 [ 363.766648][T10748] __kmalloc_cache_noprof+0x6a/0x3e0 [ 363.766692][T10748] ? resv_map_alloc+0x46/0x400 [ 363.766728][T10748] resv_map_alloc+0x46/0x400 [ 363.766762][T10748] hugetlbfs_get_inode+0x33f/0x730 [ 363.766805][T10748] hugetlb_file_setup+0x15b/0x620 [ 363.766849][T10748] ksys_mmap_pgoff+0x189/0x5c0 [ 363.766887][T10748] ? rcu_is_watching+0x12/0xc0 [ 363.766929][T10748] __x64_sys_mmap+0x125/0x190 [ 363.766979][T10748] do_syscall_64+0xcd/0x260 [ 363.767028][T10748] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 363.767060][T10748] RIP: 0033:0x7f410e18d169 [ 363.767085][T10748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 363.767116][T10748] RSP: 002b:00007f410bfd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 363.767144][T10748] RAX: ffffffffffffffda RBX: 00007f410e3a6080 RCX: 00007f410e18d169 [ 363.767164][T10748] RDX: 0000000000000002 RSI: 0000000000a00006 RDI: 0000000000000000 [ 363.767182][T10748] RBP: 00007f410e20e2a0 R08: 0000000000000602 R09: 0000300000000000 [ 363.767202][T10748] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 363.767221][T10748] R13: 0000000000000000 R14: 00007f410e3a6080 R15: 00007ffeaeac3978 [ 363.767260][T10748] [ 364.887487][T10774] blktrace: Concurrent blktraces are not allowed on ram12 [ 365.273372][T10790] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1023'. [ 365.500213][T10792] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1021'. [ 366.057289][T10787] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 366.502758][T10809] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1028'. [ 367.020377][T10817] FAULT_INJECTION: forcing a failure. [ 367.020377][T10817] name failslab, interval 1, probability 0, space 0, times 0 [ 367.045063][T10817] CPU: 1 UID: 0 PID: 10817 Comm: syz.3.1030 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 367.045103][T10817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 367.045120][T10817] Call Trace: [ 367.045128][T10817] [ 367.045138][T10817] dump_stack_lvl+0x16c/0x1f0 [ 367.045172][T10817] should_fail_ex+0x512/0x640 [ 367.045196][T10817] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 367.045231][T10817] should_failslab+0xc2/0x120 [ 367.045251][T10817] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 367.045282][T10817] ? __pfx_do_futex+0x10/0x10 [ 367.045311][T10817] ? copy_fs_struct+0x49/0x340 [ 367.045338][T10817] copy_fs_struct+0x49/0x340 [ 367.045363][T10817] ksys_unshare+0x356/0xa40 [ 367.045396][T10817] ? __pfx_ksys_unshare+0x10/0x10 [ 367.045427][T10817] ? xfd_validate_state+0x5d/0x180 [ 367.045451][T10817] ? rcu_is_watching+0x12/0xc0 [ 367.045483][T10817] __x64_sys_unshare+0x31/0x40 [ 367.045514][T10817] do_syscall_64+0xcd/0x260 [ 367.045564][T10817] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 367.045586][T10817] RIP: 0033:0x7f410e18d169 [ 367.045603][T10817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 367.045625][T10817] RSP: 002b:00007f410bff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 367.045653][T10817] RAX: ffffffffffffffda RBX: 00007f410e3a5fa0 RCX: 00007f410e18d169 [ 367.045668][T10817] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000200 [ 367.045682][T10817] RBP: 00007f410e20e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 367.045695][T10817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 367.045709][T10817] R13: 0000000000000000 R14: 00007f410e3a5fa0 R15: 00007ffeaeac3978 [ 367.045736][T10817] [ 367.774878][T10832] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1034'. [ 367.884592][T10837] ubi: mtd0 is already attached to ubi0 [ 367.902468][T10839] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1033'. [ 369.387951][T10848] nbd: nbd7 already in use [ 369.962460][T10855] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1038'. [ 370.026831][T10855] netlink: 'syz.1.1038': attribute type 16 has an invalid length. [ 370.036272][T10855] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1038'. [ 370.081876][T10855] veth1_macvtap: left promiscuous mode [ 370.297312][T10867] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1046'. [ 373.111861][T10911] input: isc as /devices/virtual/input/input17 [ 375.257288][T10946] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1054'. [ 375.563604][T10930] FAULT_INJECTION: forcing a failure. [ 375.563604][T10930] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 375.581981][T10930] CPU: 0 UID: 0 PID: 10930 Comm: syz.1.1053 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 375.582014][T10930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 375.582026][T10930] Call Trace: [ 375.582033][T10930] [ 375.582040][T10930] dump_stack_lvl+0x16c/0x1f0 [ 375.582075][T10930] should_fail_ex+0x512/0x640 [ 375.582103][T10930] _copy_from_user+0x2e/0xd0 [ 375.582131][T10930] cec_ioctl+0x2da/0x2970 [ 375.582169][T10930] ? __pfx_cec_ioctl+0x10/0x10 [ 375.582214][T10930] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 375.582238][T10930] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 375.582261][T10930] ? do_vfs_ioctl+0x512/0x1990 [ 375.582286][T10930] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 375.582309][T10930] ? __pfx___schedule+0x10/0x10 [ 375.582345][T10930] ? rcu_is_watching+0x12/0xc0 [ 375.582368][T10930] ? irqentry_exit+0x3b/0x90 [ 375.582394][T10930] ? lockdep_hardirqs_on+0x7c/0x110 [ 375.582432][T10930] ? __pfx_cec_ioctl+0x10/0x10 [ 375.582463][T10930] __x64_sys_ioctl+0x190/0x200 [ 375.582488][T10930] do_syscall_64+0xcd/0x260 [ 375.582517][T10930] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 375.582537][T10930] RIP: 0033:0x7f9fe6f8d169 [ 375.582552][T10930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 375.582571][T10930] RSP: 002b:00007f9fe4991038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 375.582605][T10930] RAX: ffffffffffffffda RBX: 00007f9fe71a6240 RCX: 00007f9fe6f8d169 [ 375.582636][T10930] RDX: 00002000000000c0 RSI: 00000000c05c6104 RDI: 0000000000000005 [ 375.582648][T10930] RBP: 00007f9fe700e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 375.582661][T10930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 375.582673][T10930] R13: 0000000000000000 R14: 00007f9fe71a6240 R15: 00007ffde0f1e258 [ 375.582699][T10930] [ 376.525173][T10951] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 377.055324][T10962] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1066'. [ 377.493702][T10965] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1058'. [ 378.577707][T10990] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1064'. [ 379.105618][T11002] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1069'. [ 379.223647][T11002] netdevsim netdevsim3 : renamed from netdevsim0 (while UP) [ 380.026445][T11015] zero sized request [ 380.026455][T11022] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1072'. [ 381.224958][T11053] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1084'. [ 381.311778][T11052] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1077'. [ 382.064703][ T30] audit: type=1800 audit(4294968378.973:17): pid=11062 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1079" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0 [ 382.629071][T11068] openvswitch: netlink: Message has 1 unknown bytes. [ 382.678219][T11070] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1080'. [ 382.711925][T11070] netdevsim netdevsim1 : renamed from netdevsim0 (while UP) [ 382.732036][T11068] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1090'. [ 382.836863][T11068] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode [ 383.230125][T11076] MTRR 1 not used [ 383.246403][T11078] Invalid ELF header magic: != ELF [ 383.539210][T11085] zero sized request [ 383.812323][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 383.818938][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 387.469083][T11146] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1095'. [ 388.028214][T11156] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 389.344883][T11166] Invalid ELF header magic: != ELF [ 389.461818][T11173] netlink: 146 bytes leftover after parsing attributes in process `syz.3.1100'. [ 389.556301][T11172] ubi: mtd0 is already attached to ubi0 [ 392.322656][T11194] nbd: nbd7 already in use [ 393.684567][T11223] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1113'. [ 396.321159][T11293] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1124'. [ 396.511930][T11258] kexec: Could not allocate control_code_buffer [ 396.796428][T11294] ------------[ cut here ]------------ [ 396.802726][T11294] WARNING: CPU: 1 PID: 11294 at ./include/net/netdev_lock.h:54 ipv6_add_dev+0xcf0/0x15f0 [ 396.812853][T11294] Modules linked in: [ 396.816978][T11294] CPU: 1 UID: 0 PID: 11294 Comm: syz.3.1127 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 396.829189][T11294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 396.839367][T11294] RIP: 0010:ipv6_add_dev+0xcf0/0x15f0 [ 396.844782][T11294] Code: 8d bc 24 30 0d 00 00 be ff ff ff ff e8 b9 25 58 01 31 ff 89 c3 89 c6 e8 7e 78 a3 f7 85 db 0f 85 12 f4 ff ff e8 31 7d a3 f7 90 <0f> 0b 90 e9 04 f4 ff ff e8 23 7d a3 f7 49 8d 7c 24 08 48 b8 00 00 [ 396.864729][T11294] RSP: 0018:ffffc9000b6279e0 EFLAGS: 00010293 [ 396.870848][T11294] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff8a17bfa2 [ 396.878887][T11294] RDX: ffff8880366e8000 RSI: ffffffff8a17bfaf RDI: 0000000000000005 [ 396.887421][T11294] RBP: ffffc9000b627a28 R08: 0000000000000005 R09: 0000000000000000 [ 396.895885][T11294] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88814436a000 [ 396.904020][T11294] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001 [ 396.912051][T11294] FS: 00007f410bfd56c0(0000) GS:ffff888124ab9000(0000) knlGS:0000000000000000 [ 396.921047][T11294] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 396.927984][T11294] CR2: 00007fb481e08f98 CR3: 000000007a0de000 CR4: 00000000003526f0 [ 396.935974][T11294] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 396.944028][T11294] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 396.952065][T11294] Call Trace: [ 396.955356][T11294] [ 396.958337][T11294] ipv6_find_idev+0x192/0x220 [ 396.963042][T11294] addrconf_add_dev+0x31/0x1c0 [ 396.967877][T11294] addrconf_init_auto_addrs+0x380/0x820 [ 396.973470][T11294] addrconf_notify+0x6e2/0x19e0 [ 396.978508][T11294] ? ip6mr_device_event+0x1bc/0x230 [ 396.983771][T11294] notifier_call_chain+0xb9/0x410 [ 396.989474][T11294] ? __pfx_addrconf_notify+0x10/0x10 [ 396.994867][T11294] call_netdevice_notifiers_info+0xbe/0x140 [ 397.001132][T11294] netdev_state_change+0x113/0x150 [ 397.006320][T11294] ? __pfx_netdev_state_change+0x10/0x10 [ 397.012028][T11294] ? dev_set_alias+0x140/0x250 [ 397.016848][T11294] ifalias_store+0x17c/0x1c0 [ 397.021535][T11294] ? sysfs_file_kobj+0x35/0x290 [ 397.026455][T11294] ? __pfx_ifalias_store+0x10/0x10 [ 397.031625][T11294] dev_attr_store+0x55/0x80 [ 397.036142][T11294] ? __pfx_dev_attr_store+0x10/0x10 [ 397.041409][T11294] sysfs_kf_write+0xef/0x150 [ 397.046027][T11294] kernfs_fop_write_iter+0x351/0x510 [ 397.051410][T11294] ? __pfx_sysfs_kf_write+0x10/0x10 [ 397.056644][T11294] vfs_write+0x5ba/0x1180 [ 397.061047][T11294] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 397.066878][T11294] ? __pfx___mutex_lock+0x10/0x10 [ 397.071979][T11294] ? __pfx_vfs_write+0x10/0x10 [ 397.076789][T11294] ksys_write+0x12a/0x240 [ 397.081183][T11294] ? __pfx_ksys_write+0x10/0x10 [ 397.086079][T11294] ? rcu_is_watching+0x12/0xc0 [ 397.091429][T11294] do_syscall_64+0xcd/0x260 [ 397.095965][T11294] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 397.102256][T11294] RIP: 0033:0x7f410e18d169 [ 397.106686][T11294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 397.126385][T11294] RSP: 002b:00007f410bfd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 397.134846][T11294] RAX: ffffffffffffffda RBX: 00007f410e3a6080 RCX: 00007f410e18d169 [ 397.142890][T11294] RDX: 0000000000000001 RSI: 0000200000000080 RDI: 0000000000000007 [ 397.150898][T11294] RBP: 00007f410e20e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 397.158920][T11294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 397.166900][T11294] R13: 0000000000000000 R14: 00007f410e3a6080 R15: 00007ffeaeac3978 [ 397.174995][T11294] [ 397.178069][T11294] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 397.185371][T11294] CPU: 1 UID: 0 PID: 11294 Comm: syz.3.1127 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 397.197530][T11294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 397.207601][T11294] Call Trace: [ 397.210880][T11294] [ 397.213818][T11294] dump_stack_lvl+0x3d/0x1f0 [ 397.218433][T11294] panic+0x71c/0x800 [ 397.222340][T11294] ? __pfx_panic+0x10/0x10 [ 397.226795][T11294] ? show_trace_log_lvl+0x29b/0x3e0 [ 397.232020][T11294] ? check_panic_on_warn+0x1f/0xb0 [ 397.237147][T11294] ? ipv6_add_dev+0xcf0/0x15f0 [ 397.241943][T11294] check_panic_on_warn+0xab/0xb0 [ 397.246926][T11294] __warn+0xf6/0x3c0 [ 397.250837][T11294] ? ipv6_add_dev+0xcf0/0x15f0 [ 397.255622][T11294] report_bug+0x3c3/0x580 [ 397.259976][T11294] ? ipv6_add_dev+0xcf0/0x15f0 [ 397.264758][T11294] handle_bug+0x184/0x210 [ 397.269207][T11294] exc_invalid_op+0x17/0x50 [ 397.273725][T11294] asm_exc_invalid_op+0x1a/0x20 [ 397.278590][T11294] RIP: 0010:ipv6_add_dev+0xcf0/0x15f0 [ 397.284027][T11294] Code: 8d bc 24 30 0d 00 00 be ff ff ff ff e8 b9 25 58 01 31 ff 89 c3 89 c6 e8 7e 78 a3 f7 85 db 0f 85 12 f4 ff ff e8 31 7d a3 f7 90 <0f> 0b 90 e9 04 f4 ff ff e8 23 7d a3 f7 49 8d 7c 24 08 48 b8 00 00 [ 397.303659][T11294] RSP: 0018:ffffc9000b6279e0 EFLAGS: 00010293 [ 397.309765][T11294] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff8a17bfa2 [ 397.317771][T11294] RDX: ffff8880366e8000 RSI: ffffffff8a17bfaf RDI: 0000000000000005 [ 397.325756][T11294] RBP: ffffc9000b627a28 R08: 0000000000000005 R09: 0000000000000000 [ 397.333741][T11294] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88814436a000 [ 397.341726][T11294] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001 [ 397.349741][T11294] ? ipv6_add_dev+0xce2/0x15f0 [ 397.354528][T11294] ? ipv6_add_dev+0xcef/0x15f0 [ 397.359329][T11294] ipv6_find_idev+0x192/0x220 [ 397.364027][T11294] addrconf_add_dev+0x31/0x1c0 [ 397.368815][T11294] addrconf_init_auto_addrs+0x380/0x820 [ 397.374383][T11294] addrconf_notify+0x6e2/0x19e0 [ 397.379272][T11294] ? ip6mr_device_event+0x1bc/0x230 [ 397.384512][T11294] notifier_call_chain+0xb9/0x410 [ 397.389559][T11294] ? __pfx_addrconf_notify+0x10/0x10 [ 397.394926][T11294] call_netdevice_notifiers_info+0xbe/0x140 [ 397.400853][T11294] netdev_state_change+0x113/0x150 [ 397.405991][T11294] ? __pfx_netdev_state_change+0x10/0x10 [ 397.411678][T11294] ? dev_set_alias+0x140/0x250 [ 397.416486][T11294] ifalias_store+0x17c/0x1c0 [ 397.421091][T11294] ? sysfs_file_kobj+0x35/0x290 [ 397.425961][T11294] ? __pfx_ifalias_store+0x10/0x10 [ 397.431090][T11294] dev_attr_store+0x55/0x80 [ 397.435614][T11294] ? __pfx_dev_attr_store+0x10/0x10 [ 397.440832][T11294] sysfs_kf_write+0xef/0x150 [ 397.445463][T11294] kernfs_fop_write_iter+0x351/0x510 [ 397.450778][T11294] ? __pfx_sysfs_kf_write+0x10/0x10 [ 397.456001][T11294] vfs_write+0x5ba/0x1180 [ 397.460447][T11294] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 397.466274][T11294] ? __pfx___mutex_lock+0x10/0x10 [ 397.471355][T11294] ? __pfx_vfs_write+0x10/0x10 [ 397.476160][T11294] ksys_write+0x12a/0x240 [ 397.480510][T11294] ? __pfx_ksys_write+0x10/0x10 [ 397.485398][T11294] ? rcu_is_watching+0x12/0xc0 [ 397.490190][T11294] do_syscall_64+0xcd/0x260 [ 397.494723][T11294] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 397.500666][T11294] RIP: 0033:0x7f410e18d169 [ 397.505104][T11294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 397.524745][T11294] RSP: 002b:00007f410bfd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 397.533181][T11294] RAX: ffffffffffffffda RBX: 00007f410e3a6080 RCX: 00007f410e18d169 [ 397.541162][T11294] RDX: 0000000000000001 RSI: 0000200000000080 RDI: 0000000000000007 [ 397.549228][T11294] RBP: 00007f410e20e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 397.557235][T11294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 397.565239][T11294] R13: 0000000000000000 R14: 00007f410e3a6080 R15: 00007ffeaeac3978 [ 397.573238][T11294] [ 397.576651][T11294] Kernel Offset: disabled [ 397.580997][T11294] Rebooting in 86400 seconds..