last executing test programs: 8.259279939s ago: executing program 1 (id=392): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/dummy0/mtu\x00', 0xe3102, 0x0) pselect6$auto(0xe6d8, &(0x7f0000000000)={[0x77d8, 0x7f, 0x10001, 0x7ff, 0x0, 0x6, 0x9, 0x5, 0x8001, 0xa4, 0x8, 0x8001, 0x8, 0xffffffffffffffff, 0x2, 0x200000000b5]}, 0x0, 0x0, 0x0, 0x0) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x202002, 0x0) r1 = socket(0x10, 0x2, 0xc) r2 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0) write$auto_fuse_dev_operations_fuse_i(r2, &(0x7f0000000440)="110000000500"/16, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x540b, 0xfffffffffffffffd) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) statmount$auto(&(0x7f0000000000)={0x7e, @raw, 0x80000020, 0xd95, 0x2}, 0x0, 0x7ffffffff000, 0x0) r3 = socket(0x15, 0x5, 0x0) bind$auto(r3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmsg$auto(r3, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) socket(0xf, 0x3, 0x2) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r5 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r5, 0x2, 0x0) write$auto(r4, 0x0, 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x8000001f, 0x2, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000) fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x106) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) ioctl$auto_USBDEVFS_REAPURBNDELAY(0xffffffffffffffff, 0x4008550d, &(0x7f0000000080)=&(0x7f00000001c0)="69794fa601bdabff74073059c6549fc7204cfbc0e786402686faa93309e61406220833c53ab830d288bd846e883fb1bc9cbc142cfdc15c9f1aa0f0e16f1c44ddc426bdf4d53f08cfb134c5130bdcd0be1b0cf756a0f2311942530f6f38aba1be35a4ade7f7f653e6cfb5e1e3ec25c0f0fe8ec0ef18f704567504485b17b6e12e17af767e8b480f521ed1b45cfd25e0864e495cbf6a5975f362e1654b7ca64677aa31f85deb6ce8df4d44882a40f8bae8364ebba3cf4ba46c0fe0f9923675e77e6808eda7ce6825697c3aeabb5ce4b7") sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r1, @ANYRES8=r0], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x810) 7.498006908s ago: executing program 1 (id=395): socket(0x1d, 0x2, 0x2) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/bridge/bridge-nf-pass-vlan-input-dev\x00', 0x202, 0x0) sendfile$auto(r0, r0, 0x0, 0x200) connect$auto(0x3, 0x0, 0x55) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0x5c8) socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x16, 0x940, 0x1ffe0, 0x3, 0x6, 0x2, 0x9, 0x5, 0xfff, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}, 0x1fe, 0x81) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) io_uring_setup$auto(0x6, 0x0) r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x4610, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r3, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001100)={0x28, r4, 0x301, 0x70bd26, 0x25dfdbff, {}, [@CTRL_ATTR_OP={0x8, 0xa, 0x7}, @CTRL_ATTR_FAMILY_NAME={0xb, 0x2, 'TIPCv2\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0xe0db2389416cc6ce}, 0xc040810) sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f0000000500)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="84000000", @ANYRES16=r4, @ANYBLOB="08002bbd7000fcdbdf250a000000060001000a00000008000a00080000000c0002003a5b2829282b5c00370002002f70726f632f7379732f6e65742f6372696467652f6272696467652d6e662d705a737303000000000000007075742d64657600e5090002005b7d982b4000000008000a00020000000600010004000000814891c43e0c28bc5b4363aa37838d7cb959a7fd9a70742b31fd60"], 0x84}, 0x1, 0x0, 0x0, 0x8001}, 0x4000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r5 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) r6 = socket(0x2, 0x5, 0x0) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/wakeup/wakeup7/event_count\x00', 0x1c2580, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r7, &(0x7f0000000080)=""/86, 0x56) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) setsockopt$auto(0x3, 0x10000000084, 0x2, 0x0, 0x8) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) socket$nl_generic(0x10, 0x3, 0x10) sendmmsg$auto(r6, &(0x7f0000000400)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff9}, 0x0, 0x0, 0x2, 0xb}, 0x9}, 0x5, 0x311) 6.366757063s ago: executing program 1 (id=398): r0 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f0000000180), 0xe2bf528124bb75dd, 0x0) (async) unshare$auto(0x40000080) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async) socket(0xa, 0x4, 0x84) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) socket(0x0, 0x2, 0xe4c7) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'sit0\x00'}) (async) sendto$auto(r0, 0x0, 0x13, 0xfffffff8, &(0x7f0000000440)=@qipcrtr={0x2a, 0xfffffffffffffffe}, 0x25) (async, rerun: 32) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x8, 0x0) (async, rerun: 32) chdir$auto(&(0x7f0000000200)='}[,&*}\x00') (async) r2 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a4, 0xffff) syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r2) (async) openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f00000001c0), 0x400000, 0x0) sendmsg$auto_NL80211_CMD_STOP_NAN(0xffffffffffffffff, 0x0, 0x815) (async) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async) openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, 0x0, 0x438cc0, 0x0) (async, rerun: 32) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async, rerun: 32) io_uring_setup$auto(0x6, 0x0) write$auto(r3, &(0x7f0000000340)='\xa3o\a`\f\f4\xc6\xe7\x8a\x16h\x80\xb5\xed\xe4\xec\xfe\xe50\xb9\xbb1/#\xdc\xdd\xed\xa2\x85\xa1\xd5\xf5\xfeG\xdcI\xe3c\xb8BS\x04Y\xc9N\x98\xc6I_E \xc8^T\x84Mh\xf4Y\xcc\xe4\x9al\x88\x8fX\xcb\xad\x1d*\xec\x1dG@H/N\xaa\x1b\xce\x8b\xff\xcfe\xac\xda\xb0\xbe;-y\x12\x13\x93\x1d\xb5>\x1c\x02Tv\x92\xc0\x1c\xaa\x8a8\x0e_Fv\x00\xdc\nfd\x16\xa6d\xa3z\xdf\xc7o+1\xf4Q\xf7i\xd6.\t\x10\x99\xc4\x06\xa3\xbf*\xbb\xe0H\xc9u+\x17\x93!\x1c\xc3\xcd\xc1y\xaf\xf1\xd1B\xaa[\x9d\xb6\xad\xe2\xff\x9b[{\xd1z\x18\xba\x7f\xb5\x10\xdd1\xf2\x9c\xb0=\xf09\r\xc3\x1b9\xbe\xa8\xe76[/<,\xe1\x90\xb3G}\x85E\xc6\x8ak4\xc3+\xf0\x9f\xe0F\x1b\xdb\x84\x17\xc0\x99\xf1\xb5,\x1f\x8a\xe7\x0f\xd7\xc2{>\xb9q\xc3\xa7\xaaF|\\4\x03Z\xecH\x99\xber\xab\xe6+>\x95\x86\x83\xfb\x16o\x98\xe0\xe9d\xa1z^}\xc7\x12\xe6b\xa2\xb1X\x062\x12\xec\x12.\xbb\x10\x11\xdb_Xo\xfc\xcd\x8av\x80\xf0!n\x8d\xee)\rm\xc5\xee\xd6\xde\xc7\xf8\xdf\xc1?\x82\xca\xb6X\xe3\xfc\xf8\x1a\xe7U\xd6\f\x8e\x98+\x99\x1dqtV\xb4\x05\xa4ge', 0x110000a3d9) (async) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) madvise$auto(0x0, 0x20499d, 0x9) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async, rerun: 32) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7fffffffffffffff, 0xd, 0x1, 0x948b, 0x3, 0x7, 0x3, 0x3, 0x62, 0x4, 0x7fffffff, 0x6d3f, 0x9, 0xffffffffffffffff, 0xfffffffffffffffe]}, 0x0) (async, rerun: 32) write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) 5.892725742s ago: executing program 2 (id=401): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000013c0)='/sys/devices/virtual/tty/ptyv3/power/control\x00', 0xa040, 0x0) r1 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) poll$auto(&(0x7f0000000180)={r1, 0xfff7, 0x9816}, 0x7f, 0x9) ioctl$auto_VHOST_SET_OWNER(r2, 0xaf01, 0x0) ioctl$auto_VHOST_SET_LOG_FD2(r1, 0x4004af07, &(0x7f00000003c0)) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) close_range$auto(0x2, 0x8, 0x0) mbind$auto(0x1, 0xf59, 0xb, 0x0, 0x3, 0x2) close_range$auto(r0, 0x8, 0xfffffffb) socket(0x2, 0x80002, 0x73) socket(0x2, 0x2, 0x88) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3ff, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd9/queue/atomic_write_unit_max_bytes\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f00000003c0)=""/4096, 0x1000) connect$auto(0x3, 0x0, 0x54) socket(0xa, 0x1, 0x84) r4 = openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, 0x0, 0x2000, 0x0) read$auto_proc_pid_cmdline_ops_base(r4, &(0x7f0000000040)=""/159, 0x9f) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x7, @empty}, 0x6a) sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010) madvise$auto(0x110c230000, 0x8031ca, 0x9) futex_waitv$auto(&(0x7f0000000000)={0x3, 0x100000005d94, 0x400a, 0x4}, 0x77, 0x5, 0x0, 0xb) madvise$auto(0x7ffffffd, 0x400fe, 0x1) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000) write$auto(r4, 0x0, 0x1) write$auto(0x3, 0x0, 0xfdef) select$auto(0x5, &(0x7f0000000100)={[0x20000009, 0xfffffffffffbfffc, 0x9, 0x5, 0x0, 0x5ef, 0x3, 0x1ffe000, 0x2, 0x2000200000000, 0x100000000009, 0xf, 0xa657, 0x4000202, 0x1, 0x1]}, 0x0, 0x0, 0x0) 5.650874479s ago: executing program 3 (id=404): mmap$auto(0x0, 0x2020008, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0x9, 0xe) r0 = semctl$auto(0x2b0, 0x4, 0x1, 0x800) syz_open_procfs$namespace(r0, &(0x7f0000000040)='ns/pid_for_children\x00') mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) unshare$auto(0x8000000) shmget$auto(0x0, 0x2, 0x8) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) socket(0x2, 0x1, 0x106) socket(0x2a, 0x2, 0x106) r1 = socket(0x2b, 0x807, 0x5) r2 = openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe\x00', 0x202, 0x0) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYRESHEX=r0], 0x14}, 0x1, 0x0, 0x0, 0x240400c1}, 0x4000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r3 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x80800, 0x0) read$auto(r3, 0x0, 0x39b8) madvise$auto(0x0, 0x2003f0, 0x15) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/midiC2D3\x00', 0x2001, 0x0) r5 = socket(0x1d, 0x2, 0x2) semctl$auto_GETNCNT(0x7fff, 0x2, 0xe, 0x1) connect$auto(0x3, &(0x7f0000000180), 0x54) sendmsg$auto_NL80211_CMD_DISASSOCIATE(r5, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xfffffffffffffdf5, &(0x7f0000000100)={&(0x7f0000000440)=ANY=[@ANYBLOB="6c0000007e4bdac92c92110200000000000000e1dc2271b4c423b3a67b7088d4e378", @ANYRES8=r2, @ANYBLOB="02002abd7000fbdbdf25280000003500fa009aea7b23492654c3fb73763d86a05bf478037c98e5f964298f4e214f6fe91851f6393096dbd10f454ac6616c21e3bdf5810000000400a680040073000800c900020000000800a400000000000400480104005a80"], 0x6c}, 0x1, 0x0, 0x0, 0x24040000}, 0x40084) write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000000)={[0x1ff, 0xd5b, 0xc, 0x37, 0x948a, 0x2, 0x15f4da0d, 0x1f, 0x2, 0x300000000000604, 0x40080000001, 0x7, 0x6d3c, 0xc, 0xc8c, 0xffffffffffffffff]}, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) socket(0x22, 0x2, 0x1) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) 4.974843429s ago: executing program 0 (id=405): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000d40), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_SET(r1, &(0x7f00000020c0)={0x0, 0x0, &(0x7f0000002080)={&(0x7f0000000040)=ANY=[@ANYBLOB="81000000", @ANYRES16=r2, @ANYBLOB="010028bd7000ffdbdf2506000000"], 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x4000) sendmsg$auto_NFSD_CMD_THREADS_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, r2, 0x1, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x400c801}, 0x4) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0) r4 = fspick$auto(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0xffffff00) mmap$auto(0xfffffffffffffff8, 0x9, 0x7, 0x16, r4, 0x4000000000000004) write$auto(0x3, 0x0, 0x100082) mmap$auto(0x0, 0x7, 0xdf, 0x9b72, r3, 0x4000807c) r5 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r6 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r6, 0x107, 0x5, 0x0, 0x8004) mmap$auto(0x0, 0x2, 0xffffffffffffffff, 0x40eb1, 0x602, 0x300000000000) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x82, 0x0) r8 = openat$auto_evm_key_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r9 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/sg/def_reserved_size\x00', 0x402, 0x0) setreuid$auto(0x8, 0x9d7) write$auto_proc_reg_file_ops_compat_inode(r9, 0x0, 0x0) ioctl$auto_XFS_IOC_ERROR_INJECTION(r5, 0x40085874, &(0x7f0000000100)={r6}) splice$auto(r8, &(0x7f0000000080)=0xb, r10, &(0x7f0000000140)=0x9, 0x9, 0xcd) sendfile$auto(r5, r7, 0x0, 0x5) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/system/cpu/cpuidle/current_driver\x00', 0x408440, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/pts/ptmx\x00', 0x8900, 0x0) write$auto(0x3, 0x0, 0x7ffffffa) 4.692616695s ago: executing program 0 (id=406): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x4a, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rpc/nfsd.export/channel\x00', 0x8f3b7a51b8162d21, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3) r2 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(r2, r2, 0x0) ioctl$auto(r1, 0x8, r1) r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video35\x00', 0xa200, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r4 = socket(0x2, 0x2, 0x1) io_uring_setup$auto(0x6, 0x0) sendto$auto(r4, 0x0, 0xb, 0xf0, &(0x7f0000000000)=@in={0x2, 0x4e24, @remote}, 0x1c) ioctl$auto(r3, 0xc0585611, r3) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/vhci_hcd.14/usb37/37-0:1.0/ep_81/type\x00', 0x200000, 0x0) read$auto(r5, 0x0, 0x20) mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x28000) capset$auto(&(0x7f0000000100)={0x20080522}, 0x0) mknod$auto(&(0x7f0000000140)='./file0\x00', 0x6, 0x2) openat$auto_evm_key_ops_evm_secfs(0xffffffffffffff9c, &(0x7f00000000c0), 0x40802, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r5, &(0x7f0000000200)={0x0, 0x7}, 0xffffffffffffffff) r6 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/route/flush\x00', 0x40001, 0x0) write$auto(r6, &(0x7f0000001680)='\v\x90\xd1\xda\xbc>1\x8ag\x14\x18\xbe\xdc\x00', 0x1) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x224e81, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) msgsnd$auto(0x0, &(0x7f0000000040)={0x5}, 0x1000, 0x4) 4.58750648s ago: executing program 3 (id=407): socket(0x1d, 0x2, 0x2) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/bridge/bridge-nf-pass-vlan-input-dev\x00', 0x202, 0x0) sendfile$auto(r0, r0, 0x0, 0x200) connect$auto(0x3, 0x0, 0x55) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0x5c8) socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x16, 0x940, 0x1ffe0, 0x3, 0x6, 0x2, 0x9, 0x5, 0xfff, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}, 0x1fe, 0x81) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) io_uring_setup$auto(0x6, 0x0) r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x4610, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r3, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001100)={0x28, r4, 0x301, 0x70bd26, 0x25dfdbff, {}, [@CTRL_ATTR_OP={0x8, 0xa, 0x7}, @CTRL_ATTR_FAMILY_NAME={0xb, 0x2, 'TIPCv2\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0xe0db2389416cc6ce}, 0xc040810) sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f0000000500)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="84000000", @ANYRES16=r4, @ANYBLOB="08002bbd7000fcdbdf250a000000060001000a00000008000a00080000000c0002003a5b2829282b5c00370002002f70726f632f7379732f6e65742f6372696467652f6272696467652d6e662d705a737303000000000000007075742d64657600e5090002005b7d982b4000000008000a00020000000600010004000000814891c43e0c28bc5b4363aa37838d7cb959a7fd9a70742b31fd60"], 0x84}, 0x1, 0x0, 0x0, 0x8001}, 0x4000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r5 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) r6 = socket(0x2, 0x5, 0x0) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/wakeup/wakeup7/event_count\x00', 0x1c2580, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r7, &(0x7f0000000080)=""/86, 0x56) getcwd$auto(0x0, 0xffffffffffffffff) setsockopt$auto(0x3, 0x10000000084, 0x2, 0x0, 0x8) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) socket$nl_generic(0x10, 0x3, 0x10) sendmmsg$auto(r6, &(0x7f0000000400)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff9}, 0x0, 0x0, 0x2, 0xb}, 0x9}, 0x5, 0x311) 4.527635673s ago: executing program 2 (id=408): mmap$auto(0x4, 0x2, 0x6, 0x400000000010, 0xffffffffffffffff, 0x8000) unshare$auto(0x40000080) r0 = openat$auto_dev_fops_plock(0xffffffffffffff9c, 0x0, 0x62081, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(r0, r0, 0x0) r1 = socket(0x2, 0x1, 0x106) socket(0x2, 0x1, 0x0) shutdown$auto(0x200000003, 0x2) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) listen$auto(0xffffffffffffffff, 0xfffffffa) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0xffffffffffffffff, 0x1012c3, 0x0) ioctl$auto(r1, 0xc0000, r0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/block/nullb0/queue/physical_block_size\x00', 0x0, 0x0) socket(0x10, 0x2, 0x0) socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/dummy_hcd.3/usb4/4-0:1.0/usb4-port1/quirks\x00', 0xa081, 0x0) io_uring_setup$auto(0xfffffffe, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2000, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x4, 0x2, 0x8c48, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x0, 0x76c5, 0x8, 0x100000000}}) r2 = openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/buffer_percent\x00', 0x80000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0x201, 0x0) openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/kvm/irq_exits\x00', 0x22002, 0x0) readv$auto(r2, 0x0, 0x5) socket(0xa, 0x2, 0x0) io_uring_setup$auto(0x3, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0xa2741, 0x0) 4.221393911s ago: executing program 1 (id=409): r0 = socket(0x2, 0x5, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/wakeup/wakeup7/event_count\x00', 0x1c2580, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000080)=""/86, 0x56) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) setsockopt$auto(0x3, 0x10000000084, 0x2, 0x0, 0x8) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) ioperm$auto(0x6, 0x18001, 0x80001) socketpair$auto(0x3, 0x5, 0x101, 0x0) madvise$auto(0x0, 0x80000001, 0x8) recvmmsg$auto(0x3, 0x0, 0x687bcbd, 0x8, 0x0) (fail_nth: 44) 4.219589055s ago: executing program 3 (id=410): syz_genetlink_get_family_id$auto_gtp(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x40009, 0x2, 0x9b72, 0x7, 0x28000) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x540b, 0xfffffffffffffffd) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x801, 0x2) socket(0xf, 0x3, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0xf642, 0x0) select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x3, 0xfff, 0x1, 0x948b, 0x3, 0x95f4da2a, 0xffffffffffffffff, 0x3, 0x62, 0x7, 0x7, 0x6d3f, 0x9, 0x4, 0x5]}, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000100)={[0x41ff, 0x6, 0x1a000, 0xfffffffffffffff7, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000021, 0x7, 0x6d3e, 0x7fff, 0x2, 0x6]}, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000240), 0xd2082, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x1d, 0x2, 0x3) close_range$auto(0x2, 0x8, 0x0) r1 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x156) execveat$auto(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) mmap$auto(0x0, 0x8, 0x80000000000000df, 0x10004000eb1, 0x8, 0x8000008000) close_range$auto(0x2, 0x8, 0x0) sysfs$auto(0x2, 0x100000000000027, 0x0) fsopen$auto(0x0, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0xf0, 0xffffffffffff0001, 0x15) mmap$auto(0xffff, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x800000008000) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) 3.977027935s ago: executing program 0 (id=411): mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) (async) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) (async) socket(0x2, 0x3, 0x100) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) io_uring_setup$auto(0x0, &(0x7f0000000140)={0x4, 0x2, 0x6, 0x6, 0x5, 0xef, 0xffffffffffffffff, [0x3, 0x10000, 0x101], {0x7ff, 0x3, 0xc, 0x6, 0x0, 0x0, 0xfc2, 0x6}, {0x7, 0x5, 0x6, 0x8b83, 0xc, 0x8000, 0x9, 0xc4e, 0x7}}) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='p'], 0x1ac}}, 0x40000) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='p'], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000040), r0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfc, {}, [@OVS_PACKET_ATTR_HASH={0xc, 0xb, 0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x4008008}, 0x4004080) 3.494275451s ago: executing program 0 (id=412): r0 = socket(0x2, 0x5, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/wakeup/wakeup7/event_count\x00', 0x1c2580, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000080)=""/86, 0x56) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) getcwd$auto(0x0, 0xffffffffffffffff) setsockopt$auto(0x3, 0x10000000084, 0x2, 0x0, 0x8) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) socket$nl_generic(0x10, 0x3, 0x10) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) (fail_nth: 46) 3.226901058s ago: executing program 2 (id=413): statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x0, 0x7352, 0x41, 0x200000000065f, 0x401ffde, 0x7, 0x3, 0x2, 0x9, 0x3eb, 0x5, 0x2, 0x3000, 0x9, 0x6, 0x10003, 0x80, 0x4, 0x0, 0x7, 0x1ffb, 0x203, 0x400, 0x84, 0x0, 0x0, 0x0, 0xfffffffc}, 0x9, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) mmap$auto(0x0, 0x8001, 0x4000000000df, 0xeb1, 0x401, 0x8000) prctl$auto(0x1d, 0x8000000000000001, 0x0, 0x5, 0x1) futex$auto(&(0x7f0000000080)=0x2948, 0x0, 0x2948, &(0x7f00000000c0)={0x225c17d03}, 0x0, 0x5) futex$auto(0x0, 0x5, 0x4, 0x0, &(0x7f0000000080)=0x9, 0x4000000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x1d, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 2.943834159s ago: executing program 2 (id=414): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/dummy0/mtu\x00', 0xe3102, 0x0) pselect6$auto(0xe6d8, &(0x7f0000000000)={[0x77d8, 0x7f, 0x10001, 0x7ff, 0x0, 0x6, 0x9, 0x5, 0x8001, 0xa4, 0x8, 0x8001, 0x8, 0xffffffffffffffff, 0x2, 0x200000000b5]}, 0x0, 0x0, 0x0, 0x0) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x202002, 0x0) r1 = socket(0x10, 0x2, 0xc) r2 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0) write$auto_fuse_dev_operations_fuse_i(r2, &(0x7f0000000440)="110000000500"/16, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x540b, 0xfffffffffffffffd) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) statmount$auto(&(0x7f0000000000)={0x7e, @raw, 0x80000020, 0xd95, 0x2}, 0x0, 0x7ffffffff000, 0x0) r3 = socket(0x15, 0x5, 0x0) bind$auto(r3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmsg$auto(r3, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) socket(0xf, 0x3, 0x2) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r5 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r5, 0x2, 0x0) write$auto(r4, 0x0, 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x8000001f, 0x2, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000) fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x106) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) ioctl$auto_USBDEVFS_REAPURBNDELAY(0xffffffffffffffff, 0x4008550d, &(0x7f0000000080)=&(0x7f00000001c0)="69794fa601bdabff74073059c6549fc7204cfbc0e786402686faa93309e61406220833c53ab830d288bd846e883fb1bc9cbc142cfdc15c9f1aa0f0e16f1c44ddc426bdf4d53f08cfb134c5130bdcd0be1b0cf756a0f2311942530f6f38aba1be35a4ade7f7f653e6cfb5e1e3ec25c0f0fe8ec0ef18f704567504485b17b6e12e17af767e8b480f521ed1b45cfd25e0864e495cbf6a5975f362e1654b7ca64677aa31f85deb6ce8df4d44882a40f8bae8364ebba3cf4ba46c0fe0f9923675e77e6808eda7ce6825697c3aeabb5ce4b7") sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r1, @ANYRES8=r0], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x810) 2.63822771s ago: executing program 1 (id=415): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20b42, 0x0) (async) r0 = open(&(0x7f0000000000)='./file0\x00', 0x54f443, 0x10) r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) (async) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000001100)=""/192, 0xc0) (async, rerun: 64) write$auto(0x3, 0x0, 0x100082) (async, rerun: 64) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) setsockopt$auto(0xffffffffffffffff, 0x8, 0xc, 0x0, 0x567) (async) unshare$auto(0x40000080) setsockopt$auto_SO_RCVPRIORITY(r1, 0x7, 0x52, &(0x7f0000000200)='^-)}\x00', 0x1) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x8080) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x4008) (async, rerun: 32) acct$auto(0x0) (async, rerun: 32) close_range$auto(0x2, 0x8, 0x0) (async) io_uring_setup$auto(0x6, 0x0) (async) migrate_pages$auto(0x0, 0x8, 0x0, &(0x7f00000001c0)=0x7b) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r2, 0xc0045006, &(0x7f00000001c0)) (async) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) (async) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) (async, rerun: 32) adjtimex$auto(&(0x7f0000000000)={0x4, 0x0, 0xcbe9, 0xffff, 0xa, 0x80000000, 0xd37f, 0x0, 0x5, 0xd, 0xda8, {0x10, 0x6}, 0xfffffffffffffffc, 0x10004, 0x2, 0x4, 0x0, 0xfffffffdfffffffa, 0x1, 0x20000, 0x9, 0x7, 0x8}) (async, rerun: 32) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000) (async) r3 = gettid() process_vm_readv$auto(r3, &(0x7f0000000040)={0x0, 0xfffffffffffffff8}, 0x6, &(0x7f0000000100)={0x0, 0x100000000000002}, 0x3, 0xfffffffffffffffd) (async) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x82, 0x0) (async) rt_sigprocmask$auto(0x9, &(0x7f0000000140)={0x101}, &(0x7f0000000180)={0x2}, 0x8) (async) r5 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) ioctl$auto_TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)=0x4) (async) sendfile$auto(r4, r4, 0x0, 0x5) 2.565678461s ago: executing program 3 (id=416): mmap$auto(0x0, 0x2020008, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0x9, 0xe) r0 = semctl$auto(0x2b0, 0x4, 0x1, 0x800) r1 = syz_open_procfs$namespace(r0, &(0x7f0000000040)='ns/pid_for_children\x00') mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) unshare$auto(0x8000000) shmget$auto(0x0, 0x2, 0x8) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) socket(0x2, 0x1, 0x106) socket(0x1f, 0x2, 0x106) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001100)='/proc/bus/pci/00/03.0\x00', 0xa0581, 0x0) write$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000001140)="8cbdca", 0x3) writev$auto(r2, &(0x7f0000001d40)={0x0, 0x2}, 0x6) r3 = socket(0x2b, 0x807, 0x5) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/tracing/trace_pipe\x00', 0x0, 0x0) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYRESHEX=r0], 0x14}, 0x1, 0x0, 0x0, 0x240400c1}, 0x4000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r4 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x80800, 0x0) read$auto(r4, 0x0, 0x39b8) madvise$auto(0x0, 0x2003f0, 0x15) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/midiC2D3\x00', 0x2001, 0x0) r6 = socket(0x23, 0x2, 0x2) connect$auto(0x3, &(0x7f0000000180), 0x54) sendmsg$auto_NL80211_CMD_DISASSOCIATE(r6, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f0000000440)=ANY=[@ANYBLOB="6c0000007e4bdac92c92110200000000000000e1dc2271b4c423b3a67b7088d4e378", @ANYRES16=0x0, @ANYBLOB="02002abd7000fbdbdf25280000003500fa009aea7b23492654c3fb73763d86a05bf478037c98e5f964298f4e214f6fe91851f6393096dbd10f454ac6616c21e3bdf5810000000400a680040073000800c900020000000800a400000000000400480104005a80"], 0x6c}, 0x1, 0x0, 0x0, 0x24040000}, 0x40084) write$auto(r5, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000000)={[0x1ff, 0xd5b, 0xc, 0x37, 0x948a, 0x5, 0x2c6, 0x23, 0x2, 0x300000000000604, 0x40080000001, 0x7, 0x6d3c, 0xc, 0xc8c, 0xffffffffffffffff]}, 0x0) ioctl$auto(r1, 0x8004b707, 0xffffffffffffffff) r7 = eventfd$auto(0x0) write$auto_ecryptfs_miscdev_fops_miscdev(r7, &(0x7f0000000080)="0e7ce00aefee2b52c56b63aaaa4060ae87af5e99aca511c5705f54f2ba4894a6a6fd57733374bf0123ff3c7f08b3815ac49154dd5ccb101a97baca1b45d32de727eafda04d7acb93c44d6baa61e0f683cda5f8703832775a828b9ae005fdd77980b58f826be6ab3e1fff9053bee5e60408e11d8229e088254eafa97c5a13edd99dc57430a09238429fcabc2e63114fcef2d79f693022b6a5ae893d8c76b6643e8199880ec2ab1c94bf6cfd9ae7cd1a1d3c77052978575ea8caed813a79b1b1e6", 0xc0) 2.289464821s ago: executing program 0 (id=417): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000013c0)='/sys/devices/virtual/tty/ptyv3/power/control\x00', 0xa040, 0x0) r1 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) poll$auto(&(0x7f0000000180)={r1, 0xfff7, 0x9816}, 0x7f, 0x9) ioctl$auto_VHOST_SET_OWNER(r2, 0xaf01, 0x0) ioctl$auto_VHOST_SET_LOG_FD2(r1, 0x4004af07, &(0x7f00000003c0)) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) close_range$auto(0x2, 0x8, 0x0) mbind$auto(0x1, 0xf59, 0xb, 0x0, 0x3, 0x2) close_range$auto(r0, 0x8, 0xfffffffb) socket(0x2, 0x80002, 0x73) socket(0x2, 0x2, 0x88) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3ff, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd9/queue/atomic_write_unit_max_bytes\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f00000003c0)=""/4096, 0x1000) connect$auto(0x3, 0x0, 0x54) socket(0xa, 0x1, 0x84) r4 = openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, 0x0, 0x2000, 0x0) read$auto_proc_pid_cmdline_ops_base(r4, &(0x7f0000000040)=""/159, 0x9f) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x7, @empty}, 0x6a) sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010) madvise$auto(0x110c230000, 0x8031ca, 0x9) futex_waitv$auto(&(0x7f0000000000)={0x3, 0x100000005d94, 0x400a, 0x4}, 0x77, 0x5, 0x0, 0xb) madvise$auto(0x7ffffffd, 0x400fe, 0x1) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000) write$auto(r4, 0x0, 0x1) write$auto(0x3, 0x0, 0xfdef) select$auto(0x5, &(0x7f0000000100)={[0x20000009, 0xfffffffffffbfffc, 0x9, 0x5, 0x0, 0x5ef, 0x3, 0x1ffe000, 0x2, 0x2000200000000, 0x100000000009, 0xf, 0xa657, 0x4000202, 0x1, 0x1]}, 0x0, 0x0, 0x0) 1.647644512s ago: executing program 2 (id=418): socket(0x27, 0x2, 0x9) clone3$auto(&(0x7f0000000000)={0x4, 0x3, 0xfffffffffffffff0, 0x8, 0x8, 0xf8f8, 0xd9a, 0x3, 0xfff, 0x200, 0xf}, 0x1) mprotect$auto(0x7fffffffffffffff, 0x8000000000000002, 0x8) r0 = socket(0xa, 0x2, 0x88) setsockopt$auto(r0, 0x88, 0xb, &(0x7f0000000000)='!/*:(*\'\x00', 0xe) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) r1 = openat$auto_generic(0xffffffffffffff9c, 0x0, 0x101000, 0x0) close_range$auto(0x0, r1, 0x4) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, r1, 0x28000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0x2, 0xd4, 0x3, 0x6, 0x0, 0x10000, 0x1, 0x2, {0x2100000000, 0x10800}, 0x3, 0x6, 0xffffffffffffffdd, 0x1008000, 0x0, 0x80000004, 0x83, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x1800}) madvise$auto(0x0, 0x2003f0, 0x15) timerfd_create$auto(0x8, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB="35ad95920c6327f783dfed3c7b689bb151c29a0e78f580b2c571a196084c26b860f24c0d4b48033883db3a88ce94c17d00a1a31b36e271594b098a43e3738cd82efa168214fbf7e82b3e6bcde8f452e89ab7450bd34c0c1811e6458f88560c83619d4ec6", @ANYRES16=0x0, @ANYBLOB="000326bd7000fddbdf250200000008002700080000000a001800aaaaaaaaaabb0000"], 0x28}, 0x1, 0x0, 0x0, 0x4c894}, 0x24008000) socket(0x21, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000) shmat$auto(0x6, &(0x7f0000000040)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x9f\x9c\x83\xdb\x88g\x03\xfd\x9e~\xabI\x8e\x15\xe3I\xc2B\x12\xbe\xe0\x96\xc6UK\x0e\x97\xea9\xe2\xb76K):\\\xaf\x95r\xa9\xcaa\x15D\xd5\xa8\xa2q\xde\x8dBm\xae@\xf6\xb8\xe9^\xcaUqQh\xb8\xb0\x97j~\xf7h\x87_\x15\xda\xc5B\xbe\x94\xe5\x90\xd2EN\xffN\xf1\xdf\x00\x8a(\xe4\b\xc2\x0f\x8bSW\xbc\xca\xa7@\xa1\xf0\xf2\xdf\xc1\x9a}$!\xef\xf4\xe3\x04\x1eD\xbe\xe1\xd2\xbd\x0e\xef\x88/l\xf6(w\xc7W6\xc7|\xabM', 0xfffffffa) 1.312204382s ago: executing program 3 (id=419): socket(0x1d, 0x2, 0x2) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/bridge/bridge-nf-pass-vlan-input-dev\x00', 0x202, 0x0) sendfile$auto(r0, r0, 0x0, 0x200) connect$auto(0x3, 0x0, 0x55) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0x5c8) socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x16, 0x940, 0x1ffe0, 0x3, 0x6, 0x2, 0x9, 0x5, 0xfff, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}, 0x1fe, 0x81) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) io_uring_setup$auto(0x6, 0x0) r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x4610, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r3, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001100)={0x28, r4, 0x301, 0x70bd26, 0x25dfdbff, {}, [@CTRL_ATTR_OP={0x8, 0xa, 0x7}, @CTRL_ATTR_FAMILY_NAME={0xb, 0x2, 'TIPCv2\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0xe0db2389416cc6ce}, 0xc040810) sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f0000000500)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="84000000", @ANYRES16=r4, @ANYBLOB="08002bbd7000fcdbdf250a000000060001000a00000008000a00080000000c0002003a5b2829282b5c00370002002f70726f632f7379732f6e65742f6372696467652f6272696467652d6e662d705a737303000000000000007075742d64657600e5090002005b7d982b4000000008000a00020000000600010004000000814891c43e0c28bc5b4363aa37838d7cb959a7fd9a70742b31fd60"], 0x84}, 0x1, 0x0, 0x0, 0x8001}, 0x4000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r5 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) r6 = socket(0x2, 0x5, 0x0) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/wakeup/wakeup7/event_count\x00', 0x1c2580, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r7, &(0x7f0000000080)=""/86, 0x56) getcwd$auto(0x0, 0xffffffffffffffff) setsockopt$auto(0x3, 0x10000000084, 0x2, 0x0, 0x8) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) socket$nl_generic(0x10, 0x3, 0x10) sendmmsg$auto(r6, &(0x7f0000000400)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff9}, 0x0, 0x0, 0x2, 0xb}, 0x9}, 0x5, 0x311) 928.262115ms ago: executing program 3 (id=420): openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x140, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) keyctl$auto(0x1e, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x1) keyctl$auto(0x1e, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x1) ioperm$auto(0x7, 0x6, 0x2) fchownat$auto(0xffffffffffffffff, 0x0, 0x0, 0x0, 0xa) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/sequencer\x00', 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0xffffffffffffff7e, 0x0, 0x3, 0x8b) mknod$auto(&(0x7f0000000080)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_\x00', 0x1081, 0x8) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f0000000040)={0x7, "21466f989ed9ba402df22efecf943f0f7e4c303f940480be1d81b2dc333f197f", @inferred=r1}) sendto$auto(r2, &(0x7f0000000580)="0e75ef1f547f82b34fe02bf76cc85dcb94af7f2dee6d39b1ea7726359994345fad9132ff7de608fa70ba93ee692ff19e7b95578df0b0cb995c1cc12b9173bc9abc0d2565fa0adfb8a462e1cd8441c1ffa4f37432a354e79a8b08366f9c7614f4c380e59fbd8defbc38d136c1805fe0714ffcfcaf786e74ef928c4491d6c7da81daa5020949bc5d8bd96ee2f4cfee9080eec4a2ab080e4afc06fb7eaa4f7e265bb23549444ebb61d135f22260dd4ac66288ecf58e618ee9ecdb7b375f5303f5ac273e47fe", 0x7fff, 0x1, &(0x7f0000000340)=@hci={0x1f, 0xffffffffffffffff, 0x4}, 0x3) acct$auto(&(0x7f0000000480)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x0f\x18\xc5\x82-s\x83\xe6\xaeR\x81\r_\x0e\x19\x12\x85\bvf(e\xday)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbHL9aD\xb4\x80\xed\xba>\"\xb6\x7f\xa3f\x1d\a\xa1\x87\x84uA\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e') open(&(0x7f0000000680)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_\x00', 0x22e40, 0x11f) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x3, 0xd, 0x1, 0x948b, 0x3, 0x2, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7350, 0x3c, 0x65f, 0x1ffde, 0x7, 0x3, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb4, 0x9, 0x6, 0x10003, 0x80, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x3, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x6b8, 0x0, 0x3ff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xfffffffffffffffe]}, 0x1f8, 0xd) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="1100"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) mmap$auto(0xa08, 0x6, 0xe3, 0xeb1, 0x401, 0x3) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x3, 0xa) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r4) ioctl$auto_KVM_CREATE_VM(r3, 0x8188aea6, 0x0) 501.42753ms ago: executing program 0 (id=421): openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/audit\x00', 0x200, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x2101, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/pcmC0D0p\x00', 0xa00, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0xdd01, 0x0) ioctl$auto_BLKRRPART(r1, 0x125f, 0x0) open(0x0, 0x161342, 0x182) msync$auto(0x1ffff000, 0x1800000ff010000, 0x400000004) open(0x0, 0xeee00, 0x31) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x0) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) chdir$auto(&(0x7f0000000000)='}[,&*}\x00') r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408) fchown$auto(r2, 0x0, 0x0) msgctl$auto(0x8000, 0x6, 0x0) socket(0x21, 0x2, 0x2) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x34000, 0x948b, 0x3, 0x15f4da06, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) socket(0xa, 0x1, 0x84) socket(0xa, 0x801, 0x84) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000) 210.007201ms ago: executing program 1 (id=422): mmap$auto(0x4, 0x2, 0x6, 0x400000000010, 0xffffffffffffffff, 0x8000) unshare$auto(0x40000080) r0 = openat$auto_dev_fops_plock(0xffffffffffffff9c, 0x0, 0x62081, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(r0, r0, 0x0) r1 = socket(0x2, 0x1, 0x106) socket(0x2, 0x1, 0x0) shutdown$auto(0x200000003, 0x2) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) listen$auto(0xffffffffffffffff, 0xfffffffa) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0xffffffffffffffff, 0x1012c3, 0x0) ioctl$auto(r1, 0xc0000, r0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/block/nullb0/queue/physical_block_size\x00', 0x0, 0x0) socket(0x10, 0x2, 0x0) socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/dummy_hcd.3/usb4/4-0:1.0/usb4-port1/quirks\x00', 0xa081, 0x0) io_uring_setup$auto(0xfffffffe, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2000, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x4, 0x2, 0x8c48, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x0, 0x76c5, 0x8, 0x100000000}}) r2 = openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/buffer_percent\x00', 0x80000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0x201, 0x0) openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/kvm/irq_exits\x00', 0x22002, 0x0) readv$auto(r2, &(0x7f0000000040)={0x0, 0x2}, 0x5) socket(0xa, 0x2, 0x0) io_uring_setup$auto(0x3, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0xa2741, 0x0) 0s ago: executing program 2 (id=423): r0 = openat$auto_proc_pid_set_comm_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/comm\x00', 0x2, 0x0) prctl$auto(0x16, 0x1, 0x6, 0xfffffffffffffffe, 0x4) lseek$auto(r0, 0x5fffffffffffffff, 0x4) close_range$auto(0x0, 0xfffffffffffff000, 0x2) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) r1 = openat$auto_short_retry_limit_ops_(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy15/short_retry_limit\x00', 0x4040, 0x0) semtimedop$auto(0x8000005, &(0x7f0000000140)={0x3, 0x1, 0x5fd6}, 0x100, &(0x7f0000000180)={0x2, 0x5}) sendto$auto(r1, &(0x7f0000000080)="232e3b9ebdf123bbed4366c1192cbf927f8909a1a7d15ec81293ae81464872696a1028df69f9808582722a6e6ea91f", 0x0, 0xc, &(0x7f0000000100)=@rc={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0xd}, 0xe) r2 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, 0x0, 0x1c1041, 0x0) openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, 0x0, 0x420002, 0x0) write$auto_fuse_dev_operations_fuse_i(r2, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xf, 0x3, 0x2) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0x10, 0x3, 0x6) socket(0x15, 0x5, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, r2, 0x7ff, 0x80006, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x3) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x0) socket(0x10, 0x2, 0x0) memfd_create$auto(&(0x7f00000000c0)='\xc4--:\xdd:,./-${\x00', 0x4) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x100) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.71' (ED25519) to the list of known hosts. [ 87.769465][ T5819] cgroup: Unknown subsys name 'net' [ 87.907040][ T5819] cgroup: Unknown subsys name 'cpuset' [ 87.916457][ T5819] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 89.528381][ T5819] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 91.537786][ T5832] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 91.545640][ T5832] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 91.554209][ T5832] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 91.562399][ T5845] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 91.570606][ T5845] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 91.578211][ T5845] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 91.585748][ T5845] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 91.594092][ T5845] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 91.601429][ T5845] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 91.607623][ T5844] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 91.611561][ T5845] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 91.624078][ T5845] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 91.634595][ T5844] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 91.635426][ T55] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 91.650302][ T55] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 91.667759][ T5846] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 91.670157][ T55] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 91.694727][ T55] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 91.703643][ T5144] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 91.715924][ T5144] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 92.336384][ T5829] chnl_net:caif_netlink_parms(): no params data found [ 92.389456][ T5830] chnl_net:caif_netlink_parms(): no params data found [ 92.411877][ T5828] chnl_net:caif_netlink_parms(): no params data found [ 92.535183][ T5835] chnl_net:caif_netlink_parms(): no params data found [ 92.604610][ T5829] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.611816][ T5829] bridge0: port 1(bridge_slave_0) entered disabled state [ 92.619650][ T5829] bridge_slave_0: entered allmulticast mode [ 92.627751][ T5829] bridge_slave_0: entered promiscuous mode [ 92.666398][ T5829] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.673731][ T5829] bridge0: port 2(bridge_slave_1) entered disabled state [ 92.680903][ T5829] bridge_slave_1: entered allmulticast mode [ 92.688361][ T5829] bridge_slave_1: entered promiscuous mode [ 92.777921][ T5829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 92.787189][ T5830] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.797874][ T5830] bridge0: port 1(bridge_slave_0) entered disabled state [ 92.805168][ T5830] bridge_slave_0: entered allmulticast mode [ 92.812362][ T5830] bridge_slave_0: entered promiscuous mode [ 92.820928][ T5830] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.828091][ T5830] bridge0: port 2(bridge_slave_1) entered disabled state [ 92.835553][ T5830] bridge_slave_1: entered allmulticast mode [ 92.842718][ T5830] bridge_slave_1: entered promiscuous mode [ 92.849303][ T5828] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.856548][ T5828] bridge0: port 1(bridge_slave_0) entered disabled state [ 92.863823][ T5828] bridge_slave_0: entered allmulticast mode [ 92.870899][ T5828] bridge_slave_0: entered promiscuous mode [ 92.900731][ T5829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 92.947575][ T5828] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.956679][ T5828] bridge0: port 2(bridge_slave_1) entered disabled state [ 92.964189][ T5828] bridge_slave_1: entered allmulticast mode [ 92.971359][ T5828] bridge_slave_1: entered promiscuous mode [ 93.018260][ T5830] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 93.043681][ T5828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 93.055583][ T5835] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.062675][ T5835] bridge0: port 1(bridge_slave_0) entered disabled state [ 93.069981][ T5835] bridge_slave_0: entered allmulticast mode [ 93.077901][ T5835] bridge_slave_0: entered promiscuous mode [ 93.087515][ T5829] team0: Port device team_slave_0 added [ 93.096229][ T5829] team0: Port device team_slave_1 added [ 93.104563][ T5830] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 93.130590][ T5828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 93.142120][ T5835] bridge0: port 2(bridge_slave_1) entered blocking state [ 93.149455][ T5835] bridge0: port 2(bridge_slave_1) entered disabled state [ 93.157438][ T5835] bridge_slave_1: entered allmulticast mode [ 93.164959][ T5835] bridge_slave_1: entered promiscuous mode [ 93.199055][ T5830] team0: Port device team_slave_0 added [ 93.247608][ T5830] team0: Port device team_slave_1 added [ 93.291571][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 93.298651][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 93.325012][ T5829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 93.350101][ T5828] team0: Port device team_slave_0 added [ 93.358927][ T5828] team0: Port device team_slave_1 added [ 93.367204][ T5835] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 93.377050][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 93.384243][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 93.410464][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 93.422739][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 93.429839][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 93.456205][ T5830] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 93.481463][ T5835] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 93.506873][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 93.513954][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 93.540821][ T5830] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 93.569648][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 93.576708][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 93.602701][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 93.629559][ T5835] team0: Port device team_slave_0 added [ 93.638763][ T5835] team0: Port device team_slave_1 added [ 93.646229][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 93.653555][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 93.679737][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 93.691567][ T5837] Bluetooth: hci1: command tx timeout [ 93.767744][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 93.773165][ T5837] Bluetooth: hci3: command tx timeout [ 93.775000][ T5144] Bluetooth: hci0: command tx timeout [ 93.780150][ T55] Bluetooth: hci2: command tx timeout [ 93.788686][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 93.818189][ T5835] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 93.845765][ T5829] hsr_slave_0: entered promiscuous mode [ 93.852173][ T5829] hsr_slave_1: entered promiscuous mode [ 93.877159][ T5830] hsr_slave_0: entered promiscuous mode [ 93.883777][ T5830] hsr_slave_1: entered promiscuous mode [ 93.889820][ T5830] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 93.897791][ T5830] Cannot create hsr debugfs directory [ 93.904124][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 93.911085][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 93.937584][ T5835] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 93.973049][ T5828] hsr_slave_0: entered promiscuous mode [ 93.979746][ T5828] hsr_slave_1: entered promiscuous mode [ 93.985980][ T5828] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 93.993598][ T5828] Cannot create hsr debugfs directory [ 94.117437][ T5835] hsr_slave_0: entered promiscuous mode [ 94.125491][ T5835] hsr_slave_1: entered promiscuous mode [ 94.131472][ T5835] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 94.139072][ T5835] Cannot create hsr debugfs directory [ 94.515636][ T5829] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 94.534755][ T5829] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 94.546652][ T5829] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 94.558819][ T5829] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 94.624574][ T5830] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 94.644459][ T5830] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 94.657250][ T5830] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 94.689193][ T5830] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 94.734810][ T5835] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 94.760333][ T5835] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 94.786653][ T5835] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 94.811910][ T5835] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 94.891905][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0 [ 94.905130][ T5828] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 94.919198][ T5828] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 94.929199][ T5828] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 94.942747][ T5828] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 94.967890][ T5829] 8021q: adding VLAN 0 to HW filter on device team0 [ 95.002547][ T2983] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.009821][ T2983] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.036653][ T1112] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.043880][ T1112] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.129306][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0 [ 95.197824][ T5830] 8021q: adding VLAN 0 to HW filter on device team0 [ 95.226204][ T5835] 8021q: adding VLAN 0 to HW filter on device bond0 [ 95.239695][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.246864][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.282413][ T5835] 8021q: adding VLAN 0 to HW filter on device team0 [ 95.345710][ T1112] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.352882][ T1112] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.365361][ T1112] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.372535][ T1112] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.422768][ T1112] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.429917][ T1112] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.480920][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0 [ 95.506242][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 95.550332][ T5828] 8021q: adding VLAN 0 to HW filter on device team0 [ 95.595791][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.603010][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.647719][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.654891][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.713991][ T5829] veth0_vlan: entered promiscuous mode [ 95.749139][ T5829] veth1_vlan: entered promiscuous mode [ 95.766328][ T55] Bluetooth: hci1: command tx timeout [ 95.843147][ T5837] Bluetooth: hci3: command tx timeout [ 95.844334][ T5144] Bluetooth: hci0: command tx timeout [ 95.848634][ T55] Bluetooth: hci2: command tx timeout [ 95.919002][ T5829] veth0_macvtap: entered promiscuous mode [ 95.930732][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 95.945677][ T5829] veth1_macvtap: entered promiscuous mode [ 95.964336][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 96.018576][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 96.078950][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 96.118585][ T5829] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.128699][ T5829] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.139319][ T5829] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.148593][ T5829] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.162076][ T5830] veth0_vlan: entered promiscuous mode [ 96.181011][ T5835] veth0_vlan: entered promiscuous mode [ 96.204179][ T5830] veth1_vlan: entered promiscuous mode [ 96.218084][ T5835] veth1_vlan: entered promiscuous mode [ 96.262564][ T5830] veth0_macvtap: entered promiscuous mode [ 96.286251][ T5830] veth1_macvtap: entered promiscuous mode [ 96.351479][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 96.363492][ T5835] veth0_macvtap: entered promiscuous mode [ 96.372397][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 96.383341][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 96.394849][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 96.416527][ T5835] veth1_macvtap: entered promiscuous mode [ 96.437974][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 96.449050][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 96.460821][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 96.472100][ T5830] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.481667][ T5830] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.490890][ T5830] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.499852][ T5830] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.516899][ T2983] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.528214][ T2983] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.574849][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 96.585630][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 96.596278][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 96.606980][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 96.618395][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 96.655842][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 96.666393][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 96.676889][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 96.687586][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 96.699282][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 96.714030][ T2983] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.723431][ T2983] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.725336][ T5835] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.739605][ T5835] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.751242][ T5835] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.760261][ T5835] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.821727][ T5828] veth0_vlan: entered promiscuous mode [ 96.896848][ T125] cfg80211: failed to load regulatory.db [ 96.927092][ T5828] veth1_vlan: entered promiscuous mode [ 96.928594][ T5829] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 96.951560][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.974907][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.034627][ T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.042504][ T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.091425][ T5828] veth0_macvtap: entered promiscuous mode [ 97.125171][ T5828] veth1_macvtap: entered promiscuous mode [ 97.125257][ T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.144420][ T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.179849][ T2983] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.193290][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 97.207605][ T2983] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.216540][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 97.227331][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 97.238068][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 97.248282][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 97.260245][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 97.285765][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 97.296536][ T5894] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3'. [ 97.321451][ T5894] Zero length message leads to an empty skb [ 97.322169][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 97.357239][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 97.367903][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 97.378449][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 97.388282][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 97.398774][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 97.410244][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 97.435756][ T5828] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.452368][ T5828] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.461864][ T5828] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.472515][ T5828] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.844376][ T55] Bluetooth: hci1: command tx timeout [ 97.923719][ T5144] Bluetooth: hci3: command tx timeout [ 97.929496][ T5837] Bluetooth: hci0: command tx timeout [ 97.935324][ T55] Bluetooth: hci2: command tx timeout [ 98.299938][ T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.327507][ T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.507698][ T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.523225][ T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.267497][ T5919] can: request_module (can-proto-3) failed. [ 99.783427][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 99.791798][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 99.800579][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 99.809251][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 99.817961][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 99.923866][ T55] Bluetooth: hci1: command tx timeout [ 100.003810][ T55] Bluetooth: hci2: command tx timeout [ 100.009242][ T55] Bluetooth: hci0: command tx timeout [ 100.014957][ T5837] Bluetooth: hci3: command tx timeout [ 100.193201][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 100.206903][ T5934] process 'syz.3.8' launched '/dev/fd/2' with NULL argv: empty string added [ 100.263854][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 100.272618][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 100.281149][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 100.284223][ T5935] can: request_module (can-proto-3) failed. [ 100.290072][ T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!! [ 102.241623][ T5962] can: request_module (can-proto-3) failed. [ 102.344431][ T5955] FAULT_INJECTION: forcing a failure. [ 102.344431][ T5955] name failslab, interval 1, probability 0, space 0, times 1 [ 102.423171][ T5955] CPU: 1 UID: 0 PID: 5955 Comm: syz.1.12 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 102.423217][ T5955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 102.423240][ T5955] Call Trace: [ 102.423252][ T5955] [ 102.423269][ T5955] dump_stack_lvl+0x16c/0x1f0 [ 102.423316][ T5955] should_fail_ex+0x512/0x640 [ 102.423358][ T5955] ? __kmalloc_noprof+0xbf/0x510 [ 102.423397][ T5955] ? acpi_ns_internalize_name+0x144/0x220 [ 102.423447][ T5955] should_failslab+0xc2/0x120 [ 102.423487][ T5955] __kmalloc_noprof+0xd2/0x510 [ 102.423519][ T5955] ? check_path.constprop.0+0x24/0x50 [ 102.423558][ T5955] ? acpi_ns_get_internal_name_length+0x272/0x400 [ 102.423626][ T5955] acpi_ns_internalize_name+0x144/0x220 [ 102.423671][ T5955] ? __pfx_acpi_ns_internalize_name+0x10/0x10 [ 102.423715][ T5955] ? lockdep_unlock+0x64/0xe0 [ 102.423749][ T5955] ? seq_read_iter+0x506/0x12c0 [ 102.423791][ T5955] acpi_ns_get_node_unlocked+0x163/0x310 [ 102.423836][ T5955] ? __pfx_acpi_ns_get_node_unlocked+0x10/0x10 [ 102.423880][ T5955] ? find_held_lock+0x2b/0x80 [ 102.423912][ T5955] ? down_timeout+0x6b/0x90 [ 102.423939][ T5955] ? acpi_os_wait_semaphore+0xcb/0xf0 [ 102.423969][ T5955] ? acpi_ns_get_node+0x4c/0x70 [ 102.423999][ T5955] acpi_ns_get_node+0x4c/0x70 [ 102.424031][ T5955] acpi_ns_evaluate+0x6ef/0xca0 [ 102.424057][ T5955] ? kasan_save_track+0x14/0x30 [ 102.424080][ T5955] acpi_evaluate_object+0x1fa/0xa90 [ 102.424101][ T5955] ? do_syscall_64+0xcd/0x230 [ 102.424123][ T5955] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 102.424145][ T5955] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 102.424167][ T5955] ? __mutex_trylock_common+0xe9/0x250 [ 102.424197][ T5955] acpi_evaluate_integer+0xdd/0x200 [ 102.424228][ T5955] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 102.424272][ T5955] ? __pfx_status_show+0x10/0x10 [ 102.424293][ T5955] status_show+0xa0/0x120 [ 102.424314][ T5955] ? __pfx_status_show+0x10/0x10 [ 102.424343][ T5955] dev_attr_show+0x53/0xe0 [ 102.424369][ T5955] ? __pfx_dev_attr_show+0x10/0x10 [ 102.424392][ T5955] sysfs_kf_seq_show+0x213/0x3e0 [ 102.424426][ T5955] seq_read_iter+0x506/0x12c0 [ 102.424466][ T5955] kernfs_fop_read_iter+0x40f/0x5a0 [ 102.424490][ T5955] ? rw_verify_area+0xcf/0x680 [ 102.424522][ T5955] vfs_read+0x8c8/0xc70 [ 102.424543][ T5955] ? __pfx___mutex_lock+0x10/0x10 [ 102.424568][ T5955] ? __pfx_vfs_read+0x10/0x10 [ 102.424603][ T5955] ksys_read+0x12a/0x240 [ 102.424620][ T5955] ? __pfx_ksys_read+0x10/0x10 [ 102.424636][ T5955] ? rcu_is_watching+0x12/0xc0 [ 102.424661][ T5955] do_syscall_64+0xcd/0x230 [ 102.424688][ T5955] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 102.424707][ T5955] RIP: 0033:0x7f240278e969 [ 102.424728][ T5955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 102.424747][ T5955] RSP: 002b:00007f24036ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 102.424765][ T5955] RAX: ffffffffffffffda RBX: 00007f24029b5fa0 RCX: 00007f240278e969 [ 102.424778][ T5955] RDX: 0000000000000070 RSI: 0000200000000000 RDI: 0000000000000004 [ 102.424789][ T5955] RBP: 00007f2402810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 102.424800][ T5955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 102.424811][ T5955] R13: 0000000000000000 R14: 00007f24029b5fa0 R15: 00007ffe0f5776d8 [ 102.424837][ T5955] [ 103.658530][ T5974] netlink: 8 bytes leftover after parsing attributes in process `syz.1.15'. [ 103.667728][ T5983] netlink: 'syz.2.17': attribute type 1 has an invalid length. [ 104.028588][ T5991] can: request_module (can-proto-3) failed. [ 104.708554][ T6008] can: request_module (can-proto-3) failed. [ 105.284316][ T6025] can: request_module (can-proto-3) failed. [ 105.908982][ T6034] netlink: 20 bytes leftover after parsing attributes in process `syz.3.21'. [ 107.341538][ T6068] netlink: 8 bytes leftover after parsing attributes in process `syz.2.26'. [ 107.365533][ T6070] can: request_module (can-proto-3) failed. [ 108.518348][ T6091] netlink: 28 bytes leftover after parsing attributes in process `syz.3.31'. [ 108.830553][ T6091] bond0: (slave bond_slave_1): Releasing backup interface [ 109.763543][ T6110] netlink: 8 bytes leftover after parsing attributes in process `syz.3.34'. [ 109.793483][ T6113] can: request_module (can-proto-3) failed. [ 110.736894][ T6128] netlink: 8 bytes leftover after parsing attributes in process `syz.3.36'. [ 111.394023][ T6141] input: f as /devices/virtual/input/input5 [ 112.518081][ T6162] can: request_module (can-proto-0) failed. [ 112.954651][ T6172] can: request_module (can-proto-3) failed. [ 114.607422][ T6193] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 115.280093][ T6224] netlink: 198 bytes leftover after parsing attributes in process `syz.1.56'. [ 115.648983][ T6237] can: request_module (can-proto-3) failed. [ 115.829725][ T6229] netlink: 198 bytes leftover after parsing attributes in process `syz.1.56'. [ 115.848153][ T6236] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 117.130525][ T6264] netlink: 28 bytes leftover after parsing attributes in process `syz.3.64'. [ 117.150942][ T6261] netlink: 8 bytes leftover after parsing attributes in process `syz.0.63'. [ 118.071453][ T6289] netlink: 342 bytes leftover after parsing attributes in process `syz.2.67'. [ 119.647504][ T6336] netlink: 28 bytes leftover after parsing attributes in process `syz.2.73'. [ 119.874095][ T6336] veth1_macvtap: entered allmulticast mode [ 119.882700][ T6338] netlink: 28 bytes leftover after parsing attributes in process `syz.0.74'. [ 120.337028][ T6348] netlink: 28 bytes leftover after parsing attributes in process `syz.2.77'. [ 120.348305][ T6348] veth0_macvtap: left promiscuous mode [ 120.358433][ T30] audit: type=1326 audit(6040874752.711:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6343 comm="syz.0.76" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff2cd78e969 code=0x0 [ 120.807714][ T6355] mmap: syz.2.79 (6355) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 121.053245][ T6355] i2c i2c-0: new_device: Missing parameters [ 121.407482][ T6361] netlink: 28 bytes leftover after parsing attributes in process `syz.0.80'. [ 121.941971][ T6365] can: request_module (can-proto-3) failed. [ 122.201528][ T6373] netlink: 8 bytes leftover after parsing attributes in process `syz.0.83'. [ 123.064068][ T6382] netlink: 8 bytes leftover after parsing attributes in process `syz.2.84'. [ 123.642049][ T6404] syz.2.90 uses obsolete (PF_INET,SOCK_PACKET) [ 124.113616][ T6411] can: request_module (can-proto-3) failed. [ 127.035956][ T6455] netlink: 28 bytes leftover after parsing attributes in process `syz.3.100'. [ 127.318579][ T55] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 127.476923][ T6471] netlink: 28 bytes leftover after parsing attributes in process `syz.3.105'. [ 127.662218][ T6473] FAULT_INJECTION: forcing a failure. [ 127.662218][ T6473] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 127.683271][ T6473] CPU: 1 UID: 0 PID: 6473 Comm: syz.1.106 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 127.683311][ T6473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 127.683329][ T6473] Call Trace: [ 127.683339][ T6473] [ 127.683350][ T6473] dump_stack_lvl+0x16c/0x1f0 [ 127.683397][ T6473] should_fail_ex+0x512/0x640 [ 127.683446][ T6473] _copy_from_user+0x2e/0xd0 [ 127.683494][ T6473] copy_msghdr_from_user+0x98/0x160 [ 127.683524][ T6473] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 127.683581][ T6473] ? kfree+0x252/0x4d0 [ 127.683624][ T6473] ? __lock_acquire+0x5ca/0x1ba0 [ 127.683677][ T6473] ___sys_recvmsg+0xdb/0x1a0 [ 127.683702][ T6473] ? __pfx____sys_recvmsg+0x10/0x10 [ 127.683745][ T6473] ? __pfx___might_resched+0x10/0x10 [ 127.683780][ T6473] do_recvmmsg+0x2fe/0x740 [ 127.683809][ T6473] ? __pfx_do_recvmmsg+0x10/0x10 [ 127.683841][ T6473] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 127.683884][ T6473] ? __fget_files+0x20e/0x3c0 [ 127.683934][ T6473] __x64_sys_recvmmsg+0x22a/0x280 [ 127.683962][ T6473] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 127.683987][ T6473] ? rcu_is_watching+0x12/0xc0 [ 127.684025][ T6473] do_syscall_64+0xcd/0x230 [ 127.684059][ T6473] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 127.684086][ T6473] RIP: 0033:0x7f240278e969 [ 127.684106][ T6473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 127.684134][ T6473] RSP: 002b:00007f24036ad038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 127.684158][ T6473] RAX: ffffffffffffffda RBX: 00007f24029b5fa0 RCX: 00007f240278e969 [ 127.684175][ T6473] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003 [ 127.684190][ T6473] RBP: 00007f24036ad090 R08: 0000000000000000 R09: 0000000000000000 [ 127.684206][ T6473] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002 [ 127.684221][ T6473] R13: 0000000000000000 R14: 00007f24029b5fa0 R15: 00007ffe0f5776d8 [ 127.684255][ T6473] [ 128.706564][ T6493] netlink: 8 bytes leftover after parsing attributes in process `syz.0.110'. [ 129.089295][ T6501] netlink: 28 bytes leftover after parsing attributes in process `syz.0.113'. [ 129.435548][ T6503] FAULT_INJECTION: forcing a failure. [ 129.435548][ T6503] name failslab, interval 1, probability 0, space 0, times 0 [ 129.531029][ T6503] CPU: 1 UID: 0 PID: 6503 Comm: syz.2.112 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 129.531068][ T6503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 129.531084][ T6503] Call Trace: [ 129.531093][ T6503] [ 129.531104][ T6503] dump_stack_lvl+0x16c/0x1f0 [ 129.531142][ T6503] should_fail_ex+0x512/0x640 [ 129.531179][ T6503] ? fs_reclaim_acquire+0xae/0x150 [ 129.531221][ T6503] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 129.531258][ T6503] should_failslab+0xc2/0x120 [ 129.531289][ T6503] __kmalloc_noprof+0xd2/0x510 [ 129.531326][ T6503] tomoyo_realpath_from_path+0xc2/0x6e0 [ 129.531368][ T6503] ? tomoyo_profile+0x47/0x60 [ 129.531412][ T6503] tomoyo_path_number_perm+0x245/0x580 [ 129.531442][ T6503] ? tomoyo_path_number_perm+0x237/0x580 [ 129.531477][ T6503] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 129.531541][ T6503] ? _raw_spin_unlock+0x28/0x50 [ 129.531568][ T6503] ? d_add+0x47a/0x780 [ 129.531599][ T6503] ? current_check_access_path+0x33c/0x460 [ 129.531634][ T6503] ? __pfx_current_check_access_path+0x10/0x10 [ 129.531665][ T6503] ? simple_lookup+0x12c/0x180 [ 129.531703][ T6503] ? lookup_one_qstr_excl_raw.part.0+0xf9/0x160 [ 129.531735][ T6503] ? lookup_dcache+0x66/0x170 [ 129.531775][ T6503] tomoyo_path_mknod+0x10c/0x190 [ 129.531818][ T6503] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 129.531873][ T6503] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 129.531917][ T6503] security_path_mknod+0x161/0x310 [ 129.531952][ T6503] do_mknodat+0x239/0x5d0 [ 129.531999][ T6503] ? __pfx_do_mknodat+0x10/0x10 [ 129.532040][ T6503] ? getname_flags.part.0+0x1c5/0x550 [ 129.532073][ T6503] ? rcu_is_watching+0x12/0xc0 [ 129.532105][ T6503] __x64_sys_mknod+0x87/0xb0 [ 129.532131][ T6503] do_syscall_64+0xcd/0x230 [ 129.532167][ T6503] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 129.532194][ T6503] RIP: 0033:0x7f22b978e969 [ 129.532215][ T6503] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 129.532242][ T6503] RSP: 002b:00007f22ba672038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 129.532269][ T6503] RAX: ffffffffffffffda RBX: 00007f22b99b5fa0 RCX: 00007f22b978e969 [ 129.532287][ T6503] RDX: 0000000000000008 RSI: 0000000000001081 RDI: 0000200000000080 [ 129.532303][ T6503] RBP: 00007f22b9810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 129.532319][ T6503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 129.532335][ T6503] R13: 0000000000000000 R14: 00007f22b99b5fa0 R15: 00007ffe32a2c7b8 [ 129.532370][ T6503] [ 130.063773][ T6503] ERROR: Out of memory at tomoyo_realpath_from_path. [ 130.380433][ T6521] FAULT_INJECTION: forcing a failure. [ 130.380433][ T6521] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 130.436484][ T6521] CPU: 0 UID: 0 PID: 6521 Comm: syz.0.116 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 130.436519][ T6521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 130.436541][ T6521] Call Trace: [ 130.436549][ T6521] [ 130.436559][ T6521] dump_stack_lvl+0x16c/0x1f0 [ 130.436595][ T6521] should_fail_ex+0x512/0x640 [ 130.436637][ T6521] _copy_from_user+0x2e/0xd0 [ 130.436676][ T6521] copy_msghdr_from_user+0x98/0x160 [ 130.436702][ T6521] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 130.436752][ T6521] ? kfree+0x252/0x4d0 [ 130.436791][ T6521] ? __lock_acquire+0x5ca/0x1ba0 [ 130.436830][ T6521] ___sys_recvmsg+0xdb/0x1a0 [ 130.436856][ T6521] ? __pfx____sys_recvmsg+0x10/0x10 [ 130.436900][ T6521] ? __pfx___might_resched+0x10/0x10 [ 130.436936][ T6521] do_recvmmsg+0x2fe/0x740 [ 130.436966][ T6521] ? __pfx_do_recvmmsg+0x10/0x10 [ 130.436998][ T6521] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 130.437042][ T6521] ? __fget_files+0x20e/0x3c0 [ 130.437092][ T6521] __x64_sys_recvmmsg+0x22a/0x280 [ 130.437121][ T6521] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 130.437147][ T6521] ? rcu_is_watching+0x12/0xc0 [ 130.437180][ T6521] do_syscall_64+0xcd/0x230 [ 130.437214][ T6521] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 130.437239][ T6521] RIP: 0033:0x7ff2cd78e969 [ 130.437259][ T6521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 130.437284][ T6521] RSP: 002b:00007ff2ce608038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 130.437308][ T6521] RAX: ffffffffffffffda RBX: 00007ff2cd9b6080 RCX: 00007ff2cd78e969 [ 130.437325][ T6521] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003 [ 130.437341][ T6521] RBP: 00007ff2ce608090 R08: 0000000000000000 R09: 0000000000000000 [ 130.437356][ T6521] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002 [ 130.437371][ T6521] R13: 0000000000000000 R14: 00007ff2cd9b6080 R15: 00007fffef5886f8 [ 130.437405][ T6521] [ 130.734014][ T6527] netlink: 28 bytes leftover after parsing attributes in process `syz.1.117'. [ 131.430254][ T6520] Invalid ELF header magic: != ELF [ 132.498537][ T6558] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 133.337488][ T6554] random: crng reseeded on system resumption [ 133.819211][ T6573] futex_wake_op: syz.1.127 tries to shift op by 64; fix this program [ 134.046833][ T6578] FAULT_INJECTION: forcing a failure. [ 134.046833][ T6578] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 134.060078][ T6578] CPU: 0 UID: 0 PID: 6578 Comm: syz.1.128 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 134.060112][ T6578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 134.060126][ T6578] Call Trace: [ 134.060135][ T6578] [ 134.060144][ T6578] dump_stack_lvl+0x16c/0x1f0 [ 134.060180][ T6578] should_fail_ex+0x512/0x640 [ 134.060222][ T6578] _copy_from_user+0x2e/0xd0 [ 134.060261][ T6578] copy_msghdr_from_user+0x98/0x160 [ 134.060286][ T6578] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 134.060335][ T6578] ? kfree+0x252/0x4d0 [ 134.060372][ T6578] ? __lock_acquire+0x5ca/0x1ba0 [ 134.060410][ T6578] ___sys_recvmsg+0xdb/0x1a0 [ 134.060435][ T6578] ? __pfx____sys_recvmsg+0x10/0x10 [ 134.060485][ T6578] ? __pfx___might_resched+0x10/0x10 [ 134.060521][ T6578] do_recvmmsg+0x2fe/0x740 [ 134.060551][ T6578] ? __pfx_do_recvmmsg+0x10/0x10 [ 134.060583][ T6578] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 134.060625][ T6578] ? __fget_files+0x20e/0x3c0 [ 134.060674][ T6578] __x64_sys_recvmmsg+0x22a/0x280 [ 134.060702][ T6578] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 134.060744][ T6578] ? rcu_is_watching+0x12/0xc0 [ 134.060780][ T6578] do_syscall_64+0xcd/0x230 [ 134.060815][ T6578] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 134.060843][ T6578] RIP: 0033:0x7f240278e969 [ 134.060865][ T6578] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 134.060891][ T6578] RSP: 002b:00007f24036ad038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 134.060917][ T6578] RAX: ffffffffffffffda RBX: 00007f24029b5fa0 RCX: 00007f240278e969 [ 134.060935][ T6578] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003 [ 134.060952][ T6578] RBP: 00007f24036ad090 R08: 0000000000000000 R09: 0000000000000000 [ 134.060979][ T6578] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002 [ 134.060994][ T6578] R13: 0000000000000000 R14: 00007f24029b5fa0 R15: 00007ffe0f5776d8 [ 134.061028][ T6578] [ 134.607054][ T6586] bcache: register_bcache() error : Not a bcache superblock (bad offset) [ 135.380942][ T6602] netlink: 8 bytes leftover after parsing attributes in process `syz.3.134'. [ 136.699652][ T6623] netlink: 28 bytes leftover after parsing attributes in process `syz.3.137'. [ 137.112848][ T6635] netlink: 28 bytes leftover after parsing attributes in process `syz.2.143'. [ 137.859484][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 137.866687][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 139.786788][ T6685] netlink: 28 bytes leftover after parsing attributes in process `syz.2.154'. [ 140.070012][ T6690] can: request_module (can-proto-3) failed. [ 141.645266][ T6723] FAULT_INJECTION: forcing a failure. [ 141.645266][ T6723] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 141.708150][ T6726] netlink: 330 bytes leftover after parsing attributes in process `syz.2.164'. [ 141.717362][ T6723] CPU: 1 UID: 0 PID: 6723 Comm: syz.1.161 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 141.717402][ T6723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 141.717418][ T6723] Call Trace: [ 141.717428][ T6723] [ 141.717439][ T6723] dump_stack_lvl+0x16c/0x1f0 [ 141.717478][ T6723] should_fail_ex+0x512/0x640 [ 141.717524][ T6723] _copy_from_user+0x2e/0xd0 [ 141.717569][ T6723] copy_msghdr_from_user+0x98/0x160 [ 141.717599][ T6723] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 141.717661][ T6723] ? kfree+0x252/0x4d0 [ 141.717716][ T6723] ? __lock_acquire+0x5ca/0x1ba0 [ 141.717764][ T6723] ___sys_recvmsg+0xdb/0x1a0 [ 141.717795][ T6723] ? __pfx____sys_recvmsg+0x10/0x10 [ 141.717856][ T6723] ? __pfx___might_resched+0x10/0x10 [ 141.717900][ T6723] do_recvmmsg+0x2fe/0x740 [ 141.717936][ T6723] ? __pfx_do_recvmmsg+0x10/0x10 [ 141.717974][ T6723] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 141.718027][ T6723] ? __fget_files+0x20e/0x3c0 [ 141.718087][ T6723] __x64_sys_recvmmsg+0x22a/0x280 [ 141.718121][ T6723] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 141.718152][ T6723] ? rcu_is_watching+0x12/0xc0 [ 141.718192][ T6723] do_syscall_64+0xcd/0x230 [ 141.718235][ T6723] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 141.718267][ T6723] RIP: 0033:0x7f240278e969 [ 141.718292][ T6723] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 141.718322][ T6723] RSP: 002b:00007f240368c038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 141.718351][ T6723] RAX: ffffffffffffffda RBX: 00007f24029b6080 RCX: 00007f240278e969 [ 141.718371][ T6723] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003 [ 141.718391][ T6723] RBP: 00007f240368c090 R08: 0000000000000000 R09: 0000000000000000 [ 141.718409][ T6723] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002 [ 141.718428][ T6723] R13: 0000000000000000 R14: 00007f24029b6080 R15: 00007ffe0f5776d8 [ 141.718467][ T6723] [ 141.973489][ T6726] netlink: 330 bytes leftover after parsing attributes in process `syz.2.164'. [ 141.993925][ T6726] netlink: 330 bytes leftover after parsing attributes in process `syz.2.164'. [ 142.014284][ T6737] netlink: 28 bytes leftover after parsing attributes in process `syz.1.165'. [ 142.113405][ T6726] netlink: 330 bytes leftover after parsing attributes in process `syz.2.164'. [ 142.229045][ T6726] netlink: 330 bytes leftover after parsing attributes in process `syz.2.164'. [ 142.273187][ T6726] netlink: 330 bytes leftover after parsing attributes in process `syz.2.164'. [ 142.291712][ T6726] netlink: 330 bytes leftover after parsing attributes in process `syz.2.164'. [ 142.443433][ T6726] netlink: 330 bytes leftover after parsing attributes in process `syz.2.164'. [ 142.500477][ T6726] netlink: 330 bytes leftover after parsing attributes in process `syz.2.164'. [ 143.641302][ T6762] random: crng reseeded on system resumption [ 146.450342][ T6860] can: request_module (can-proto-3) failed. [ 146.845319][ T6868] __nla_validate_parse: 2 callbacks suppressed [ 146.845333][ T6868] netlink: 28 bytes leftover after parsing attributes in process `syz.2.186'. [ 147.300455][ T6875] FAULT_INJECTION: forcing a failure. [ 147.300455][ T6875] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 147.323657][ T6875] CPU: 0 UID: 0 PID: 6875 Comm: syz.0.188 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 147.323705][ T6875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 147.323721][ T6875] Call Trace: [ 147.323729][ T6875] [ 147.323739][ T6875] dump_stack_lvl+0x16c/0x1f0 [ 147.323775][ T6875] should_fail_ex+0x512/0x640 [ 147.323816][ T6875] _copy_from_user+0x2e/0xd0 [ 147.323858][ T6875] copy_msghdr_from_user+0x98/0x160 [ 147.323884][ T6875] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 147.323932][ T6875] ? kfree+0x252/0x4d0 [ 147.323970][ T6875] ? __lock_acquire+0x5ca/0x1ba0 [ 147.324009][ T6875] ___sys_recvmsg+0xdb/0x1a0 [ 147.324033][ T6875] ? __pfx____sys_recvmsg+0x10/0x10 [ 147.324077][ T6875] ? __pfx___might_resched+0x10/0x10 [ 147.324120][ T6875] do_recvmmsg+0x2fe/0x740 [ 147.324151][ T6875] ? __pfx_do_recvmmsg+0x10/0x10 [ 147.324183][ T6875] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 147.324228][ T6875] ? __fget_files+0x20e/0x3c0 [ 147.324277][ T6875] __x64_sys_recvmmsg+0x22a/0x280 [ 147.324306][ T6875] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 147.324330][ T6875] ? rcu_is_watching+0x12/0xc0 [ 147.324363][ T6875] do_syscall_64+0xcd/0x230 [ 147.324398][ T6875] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 147.324424][ T6875] RIP: 0033:0x7ff2cd78e969 [ 147.324444][ T6875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 147.324468][ T6875] RSP: 002b:00007ff2ce629038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 147.324493][ T6875] RAX: ffffffffffffffda RBX: 00007ff2cd9b5fa0 RCX: 00007ff2cd78e969 [ 147.324510][ T6875] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003 [ 147.324526][ T6875] RBP: 00007ff2ce629090 R08: 0000000000000000 R09: 0000000000000000 [ 147.324541][ T6875] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002 [ 147.324557][ T6875] R13: 0000000000000000 R14: 00007ff2cd9b5fa0 R15: 00007fffef5886f8 [ 147.324590][ T6875] [ 148.235321][ T6873] ubi0: attaching mtd0 [ 148.241861][ T6873] ubi0: scanning is finished [ 148.254142][ T6873] ubi0: empty MTD device detected [ 148.499039][ T6898] netlink: 29 bytes leftover after parsing attributes in process `syz.0.192'. [ 148.511045][ T6899] zero sized request [ 148.566101][ T6873] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 148.573876][ T6873] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 148.591913][ T6873] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 148.607908][ T6873] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 148.640243][ T6873] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 148.684579][ T6873] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 148.730206][ T6873] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 1393249660 [ 148.790382][ T6873] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 148.818574][ T6902] ubi0: background thread "ubi_bgt0d" started, PID 6902 [ 149.687260][ T6925] FAULT_INJECTION: forcing a failure. [ 149.687260][ T6925] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 149.733785][ T6925] CPU: 1 UID: 0 PID: 6925 Comm: syz.0.198 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 149.733825][ T6925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 149.733841][ T6925] Call Trace: [ 149.733851][ T6925] [ 149.733861][ T6925] dump_stack_lvl+0x16c/0x1f0 [ 149.733900][ T6925] should_fail_ex+0x512/0x640 [ 149.733947][ T6925] _copy_from_user+0x2e/0xd0 [ 149.733993][ T6925] copy_msghdr_from_user+0x98/0x160 [ 149.734021][ T6925] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 149.734077][ T6925] ? kfree+0x252/0x4d0 [ 149.734121][ T6925] ? __lock_acquire+0x5ca/0x1ba0 [ 149.734167][ T6925] ___sys_recvmsg+0xdb/0x1a0 [ 149.734207][ T6925] ? __pfx____sys_recvmsg+0x10/0x10 [ 149.734257][ T6925] ? __pfx___might_resched+0x10/0x10 [ 149.734307][ T6925] do_recvmmsg+0x2fe/0x740 [ 149.734339][ T6925] ? __pfx_do_recvmmsg+0x10/0x10 [ 149.734392][ T6925] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 149.734456][ T6925] ? __fget_files+0x20e/0x3c0 [ 149.734542][ T6925] __x64_sys_recvmmsg+0x22a/0x280 [ 149.734571][ T6925] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 149.734598][ T6925] ? rcu_is_watching+0x12/0xc0 [ 149.734634][ T6925] do_syscall_64+0xcd/0x230 [ 149.734670][ T6925] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.734698][ T6925] RIP: 0033:0x7ff2cd78e969 [ 149.734720][ T6925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 149.734746][ T6925] RSP: 002b:00007ff2ce5e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 149.734771][ T6925] RAX: ffffffffffffffda RBX: 00007ff2cd9b6160 RCX: 00007ff2cd78e969 [ 149.734789][ T6925] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003 [ 149.734806][ T6925] RBP: 00007ff2ce5e7090 R08: 0000000000000000 R09: 0000000000000000 [ 149.734823][ T6925] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002 [ 149.734839][ T6925] R13: 0000000000000000 R14: 00007ff2cd9b6160 R15: 00007fffef5886f8 [ 149.734874][ T6925] [ 150.201956][ T6917] can: request_module (can-proto-3) failed. [ 151.451433][ T6952] FAULT_INJECTION: forcing a failure. [ 151.451433][ T6952] name failslab, interval 1, probability 0, space 0, times 0 [ 151.494144][ T6952] CPU: 1 UID: 0 PID: 6952 Comm: syz.1.206 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 151.494187][ T6952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 151.494205][ T6952] Call Trace: [ 151.494214][ T6952] [ 151.494225][ T6952] dump_stack_lvl+0x16c/0x1f0 [ 151.494264][ T6952] should_fail_ex+0x512/0x640 [ 151.494305][ T6952] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 151.494355][ T6952] should_failslab+0xc2/0x120 [ 151.494391][ T6952] __kmalloc_cache_noprof+0x6a/0x3e0 [ 151.494439][ T6952] ? nat_init_net+0x56/0x270 [ 151.494469][ T6952] ? __pfx_nat_init_net+0x10/0x10 [ 151.494497][ T6952] nat_init_net+0x56/0x270 [ 151.494536][ T6952] ops_init+0x1df/0x5f0 [ 151.494568][ T6952] setup_net+0x21e/0x850 [ 151.494600][ T6952] ? __pfx_setup_net+0x10/0x10 [ 151.494628][ T6952] ? lockdep_init_map_type+0x5c/0x280 [ 151.494682][ T6952] ? __pfx_down_read_killable+0x10/0x10 [ 151.494727][ T6952] ? debug_mutex_init+0x37/0x70 [ 151.494779][ T6952] copy_net_ns+0x2a6/0x5f0 [ 151.494816][ T6952] create_new_namespaces+0x3ea/0xad0 [ 151.494858][ T6952] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 151.494894][ T6952] ksys_unshare+0x45b/0xa40 [ 151.494935][ T6952] ? __pfx_ksys_unshare+0x10/0x10 [ 151.494972][ T6952] ? xfd_validate_state+0x5d/0x180 [ 151.495029][ T6952] ? rcu_is_watching+0x12/0xc0 [ 151.495066][ T6952] __x64_sys_unshare+0x31/0x40 [ 151.495105][ T6952] do_syscall_64+0xcd/0x230 [ 151.495144][ T6952] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 151.495172][ T6952] RIP: 0033:0x7f240278e969 [ 151.495195][ T6952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 151.495224][ T6952] RSP: 002b:00007f24036ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 151.495251][ T6952] RAX: ffffffffffffffda RBX: 00007f24029b5fa0 RCX: 00007f240278e969 [ 151.495270][ T6952] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 151.495287][ T6952] RBP: 00007f2402810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 151.495304][ T6952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 151.495322][ T6952] R13: 0000000000000000 R14: 00007f24029b5fa0 R15: 00007ffe0f5776d8 [ 151.495360][ T6952] [ 152.052639][ T6963] netlink: 8 bytes leftover after parsing attributes in process `syz.0.210'. [ 152.723076][ T6981] can: request_module (can-proto-3) failed. [ 152.756002][ T6983] can: request_module (can-proto-3) failed. [ 153.179094][ T7001] FAULT_INJECTION: forcing a failure. [ 153.179094][ T7001] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 153.208146][ T7001] CPU: 1 UID: 0 PID: 7001 Comm: syz.2.215 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 153.208181][ T7001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 153.208197][ T7001] Call Trace: [ 153.208205][ T7001] [ 153.208215][ T7001] dump_stack_lvl+0x16c/0x1f0 [ 153.208252][ T7001] should_fail_ex+0x512/0x640 [ 153.208292][ T7001] _copy_from_user+0x2e/0xd0 [ 153.208333][ T7001] copy_msghdr_from_user+0x98/0x160 [ 153.208359][ T7001] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 153.208408][ T7001] ? kfree+0x252/0x4d0 [ 153.208445][ T7001] ? __lock_acquire+0x5ca/0x1ba0 [ 153.208486][ T7001] ___sys_recvmsg+0xdb/0x1a0 [ 153.208510][ T7001] ? __pfx____sys_recvmsg+0x10/0x10 [ 153.208554][ T7001] ? __pfx___might_resched+0x10/0x10 [ 153.208590][ T7001] do_recvmmsg+0x2fe/0x740 [ 153.208620][ T7001] ? __pfx_do_recvmmsg+0x10/0x10 [ 153.208652][ T7001] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 153.208703][ T7001] ? __fget_files+0x20e/0x3c0 [ 153.208751][ T7001] __x64_sys_recvmmsg+0x22a/0x280 [ 153.208780][ T7001] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 153.208805][ T7001] ? rcu_is_watching+0x12/0xc0 [ 153.208839][ T7001] do_syscall_64+0xcd/0x230 [ 153.208874][ T7001] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 153.208901][ T7001] RIP: 0033:0x7f22b978e969 [ 153.208921][ T7001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 153.208946][ T7001] RSP: 002b:00007f22ba651038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 153.208970][ T7001] RAX: ffffffffffffffda RBX: 00007f22b99b6080 RCX: 00007f22b978e969 [ 153.208987][ T7001] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003 [ 153.209002][ T7001] RBP: 00007f22ba651090 R08: 0000000000000000 R09: 0000000000000000 [ 153.209018][ T7001] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002 [ 153.209033][ T7001] R13: 0000000000000000 R14: 00007f22b99b6080 R15: 00007ffe32a2c7b8 [ 153.209066][ T7001] [ 153.685397][ T7006] netlink: 186 bytes leftover after parsing attributes in process `syz.3.214'. [ 153.720066][ T7005] FAULT_INJECTION: forcing a failure. [ 153.720066][ T7005] name fail_futex, interval 1, probability 0, space 0, times 1 [ 153.772432][ T7005] CPU: 0 UID: 0 PID: 7005 Comm: syz.1.216 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 153.772488][ T7005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 153.772507][ T7005] Call Trace: [ 153.772517][ T7005] [ 153.772529][ T7005] dump_stack_lvl+0x16c/0x1f0 [ 153.772585][ T7005] should_fail_ex+0x512/0x640 [ 153.772630][ T7005] ? putname+0x154/0x1a0 [ 153.772669][ T7005] get_futex_key+0x49e/0x1000 [ 153.772706][ T7005] ? __pfx_get_futex_key+0x10/0x10 [ 153.772754][ T7005] futex_wake+0xe7/0x4e0 [ 153.772797][ T7005] ? __pfx_futex_wake+0x10/0x10 [ 153.772845][ T7005] ? rcu_is_watching+0x12/0xc0 [ 153.772877][ T7005] ? kasan_quarantine_put+0x10a/0x240 [ 153.772908][ T7005] ? lockdep_hardirqs_on+0x7c/0x110 [ 153.772950][ T7005] do_futex+0x1e3/0x350 [ 153.772984][ T7005] ? __pfx_do_futex+0x10/0x10 [ 153.773028][ T7005] __x64_sys_futex+0x1e0/0x4c0 [ 153.773068][ T7005] ? __pfx___x64_sys_futex+0x10/0x10 [ 153.773104][ T7005] ? getname_flags.part.0+0x1c5/0x550 [ 153.773142][ T7005] ? rcu_is_watching+0x12/0xc0 [ 153.773181][ T7005] do_syscall_64+0xcd/0x230 [ 153.773223][ T7005] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 153.773254][ T7005] RIP: 0033:0x7f240278e969 [ 153.773279][ T7005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 153.773309][ T7005] RSP: 002b:00007f24036ad0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 153.773338][ T7005] RAX: ffffffffffffffda RBX: 00007f24029b5fa8 RCX: 00007f240278e969 [ 153.773359][ T7005] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f24029b5fac [ 153.773379][ T7005] RBP: 00007f24029b5fa0 R08: 00007f24036ae000 R09: 0000000000000000 [ 153.773397][ T7005] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f24029b5fac [ 153.773416][ T7005] R13: 0000000000000000 R14: 00007ffe0f5775f0 R15: 00007ffe0f5776d8 [ 153.773456][ T7005] [ 154.780418][ T7018] netlink: 28 bytes leftover after parsing attributes in process `syz.1.220'. [ 154.812689][ T7018] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 154.949865][ T7018] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 155.230226][ T7027] netlink: 8 bytes leftover after parsing attributes in process `syz.3.222'. [ 155.791672][ T7044] can: request_module (can-proto-3) failed. [ 156.011492][ T7047] can: request_module (can-proto-3) failed. [ 156.236281][ T7060] FAULT_INJECTION: forcing a failure. [ 156.236281][ T7060] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 156.280556][ T7060] CPU: 0 UID: 0 PID: 7060 Comm: syz.0.227 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 156.280591][ T7060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 156.280606][ T7060] Call Trace: [ 156.280614][ T7060] [ 156.280623][ T7060] dump_stack_lvl+0x16c/0x1f0 [ 156.280657][ T7060] should_fail_ex+0x512/0x640 [ 156.280699][ T7060] _copy_from_user+0x2e/0xd0 [ 156.280739][ T7060] copy_msghdr_from_user+0x98/0x160 [ 156.280764][ T7060] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 156.280812][ T7060] ? kfree+0x252/0x4d0 [ 156.280857][ T7060] ? __lock_acquire+0x5ca/0x1ba0 [ 156.280897][ T7060] ___sys_recvmsg+0xdb/0x1a0 [ 156.280922][ T7060] ? __pfx____sys_recvmsg+0x10/0x10 [ 156.280967][ T7060] ? __pfx___might_resched+0x10/0x10 [ 156.281003][ T7060] do_recvmmsg+0x2fe/0x740 [ 156.281031][ T7060] ? __pfx_do_recvmmsg+0x10/0x10 [ 156.281063][ T7060] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 156.281106][ T7060] ? __fget_files+0x20e/0x3c0 [ 156.281154][ T7060] __x64_sys_recvmmsg+0x22a/0x280 [ 156.281183][ T7060] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 156.281207][ T7060] ? rcu_is_watching+0x12/0xc0 [ 156.281239][ T7060] do_syscall_64+0xcd/0x230 [ 156.281275][ T7060] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 156.281300][ T7060] RIP: 0033:0x7ff2cd78e969 [ 156.281321][ T7060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 156.281361][ T7060] RSP: 002b:00007ff2ce608038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 156.281386][ T7060] RAX: ffffffffffffffda RBX: 00007ff2cd9b6080 RCX: 00007ff2cd78e969 [ 156.281402][ T7060] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003 [ 156.281417][ T7060] RBP: 00007ff2ce608090 R08: 0000000000000000 R09: 0000000000000000 [ 156.281433][ T7060] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002 [ 156.281451][ T7060] R13: 0000000000000000 R14: 00007ff2cd9b6080 R15: 00007fffef5886f8 [ 156.281484][ T7060] [ 157.854508][ T7085] netlink: 8 bytes leftover after parsing attributes in process `syz.2.234'. [ 158.417654][ T7103] FAULT_INJECTION: forcing a failure. [ 158.417654][ T7103] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 158.473144][ T7103] CPU: 1 UID: 0 PID: 7103 Comm: syz.2.237 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 158.473186][ T7103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 158.473204][ T7103] Call Trace: [ 158.473214][ T7103] [ 158.473225][ T7103] dump_stack_lvl+0x16c/0x1f0 [ 158.473268][ T7103] should_fail_ex+0x512/0x640 [ 158.473318][ T7103] _copy_from_user+0x2e/0xd0 [ 158.473367][ T7103] copy_msghdr_from_user+0x98/0x160 [ 158.473404][ T7103] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 158.473463][ T7103] ? kfree+0x252/0x4d0 [ 158.473509][ T7103] ? __lock_acquire+0x5ca/0x1ba0 [ 158.473557][ T7103] ___sys_recvmsg+0xdb/0x1a0 [ 158.473587][ T7103] ? __pfx____sys_recvmsg+0x10/0x10 [ 158.473652][ T7103] ? __pfx___might_resched+0x10/0x10 [ 158.473706][ T7103] do_recvmmsg+0x2fe/0x740 [ 158.473736][ T7103] ? __pfx_do_recvmmsg+0x10/0x10 [ 158.473769][ T7103] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 158.473814][ T7103] ? __fget_files+0x20e/0x3c0 [ 158.473863][ T7103] __x64_sys_recvmmsg+0x22a/0x280 [ 158.473892][ T7103] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 158.473918][ T7103] ? rcu_is_watching+0x12/0xc0 [ 158.473951][ T7103] do_syscall_64+0xcd/0x230 [ 158.474004][ T7103] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 158.474032][ T7103] RIP: 0033:0x7f22b978e969 [ 158.474054][ T7103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 158.474080][ T7103] RSP: 002b:00007f22ba672038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 158.474107][ T7103] RAX: ffffffffffffffda RBX: 00007f22b99b5fa0 RCX: 00007f22b978e969 [ 158.474124][ T7103] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003 [ 158.474141][ T7103] RBP: 00007f22ba672090 R08: 0000000000000000 R09: 0000000000000000 [ 158.474157][ T7103] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002 [ 158.474173][ T7103] R13: 0000000000000000 R14: 00007f22b99b5fa0 R15: 00007ffe32a2c7b8 [ 158.474209][ T7103] [ 158.680631][ C1] vkms_vblank_simulate: vblank timer overrun [ 159.292260][ T7124] can: request_module (can-proto-3) failed. [ 159.608451][ T7128] can: request_module (can-proto-3) failed. [ 160.224459][ T7145] busy [ 160.326905][ T7144] netlink: 28 bytes leftover after parsing attributes in process `syz.1.245'. [ 160.935100][ T7154] program syz.2.246 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 160.949243][ T7154] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 161.238345][ T7160] netlink: 28 bytes leftover after parsing attributes in process `syz.1.247'. [ 162.648659][ T7181] netlink: 8 bytes leftover after parsing attributes in process `syz.2.253'. [ 162.663178][ T7183] FAULT_INJECTION: forcing a failure. [ 162.663178][ T7183] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 162.682954][ T7183] CPU: 0 UID: 0 PID: 7183 Comm: syz.0.254 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 162.683017][ T7183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 162.683043][ T7183] Call Trace: [ 162.683053][ T7183] [ 162.683065][ T7183] dump_stack_lvl+0x16c/0x1f0 [ 162.683107][ T7183] should_fail_ex+0x512/0x640 [ 162.683155][ T7183] _copy_from_user+0x2e/0xd0 [ 162.683203][ T7183] copy_msghdr_from_user+0x98/0x160 [ 162.683234][ T7183] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 162.683292][ T7183] ? kfree+0x252/0x4d0 [ 162.683338][ T7183] ? __lock_acquire+0x5ca/0x1ba0 [ 162.683386][ T7183] ___sys_recvmsg+0xdb/0x1a0 [ 162.683415][ T7183] ? __pfx____sys_recvmsg+0x10/0x10 [ 162.683468][ T7183] ? __pfx___might_resched+0x10/0x10 [ 162.683511][ T7183] do_recvmmsg+0x2fe/0x740 [ 162.683545][ T7183] ? __pfx_do_recvmmsg+0x10/0x10 [ 162.683582][ T7183] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 162.683633][ T7183] ? __fget_files+0x20e/0x3c0 [ 162.683709][ T7183] __x64_sys_recvmmsg+0x22a/0x280 [ 162.683737][ T7183] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 162.683763][ T7183] ? rcu_is_watching+0x12/0xc0 [ 162.683803][ T7183] do_syscall_64+0xcd/0x230 [ 162.683838][ T7183] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 162.683864][ T7183] RIP: 0033:0x7ff2cd78e969 [ 162.683884][ T7183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 162.683909][ T7183] RSP: 002b:00007ff2ce629038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 162.683933][ T7183] RAX: ffffffffffffffda RBX: 00007ff2cd9b5fa0 RCX: 00007ff2cd78e969 [ 162.683950][ T7183] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003 [ 162.683965][ T7183] RBP: 00007ff2ce629090 R08: 0000000000000000 R09: 0000000000000000 [ 162.683981][ T7183] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002 [ 162.683996][ T7183] R13: 0000000000000000 R14: 00007ff2cd9b5fa0 R15: 00007fffef5886f8 [ 162.684030][ T7183] [ 163.744945][ T7203] can: request_module (can-proto-3) failed. [ 164.311991][ T7216] netlink: 28 bytes leftover after parsing attributes in process `syz.2.262'. [ 164.327252][ T7222] netlink: 28 bytes leftover after parsing attributes in process `syz.1.260'. [ 164.347984][ T7218] can: request_module (can-proto-3) failed. [ 165.029039][ T7240] FAULT_INJECTION: forcing a failure. [ 165.029039][ T7240] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 165.092325][ T7240] CPU: 1 UID: 0 PID: 7240 Comm: syz.1.266 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 165.092366][ T7240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 165.092383][ T7240] Call Trace: [ 165.092392][ T7240] [ 165.092403][ T7240] dump_stack_lvl+0x16c/0x1f0 [ 165.092444][ T7240] should_fail_ex+0x512/0x640 [ 165.092509][ T7240] _copy_from_user+0x2e/0xd0 [ 165.092557][ T7240] copy_msghdr_from_user+0x98/0x160 [ 165.092587][ T7240] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 165.092654][ T7240] ? kfree+0x252/0x4d0 [ 165.092700][ T7240] ? __lock_acquire+0x5ca/0x1ba0 [ 165.092747][ T7240] ___sys_recvmsg+0xdb/0x1a0 [ 165.092776][ T7240] ? __pfx____sys_recvmsg+0x10/0x10 [ 165.092829][ T7240] ? __pfx___might_resched+0x10/0x10 [ 165.092875][ T7240] do_recvmmsg+0x2fe/0x740 [ 165.092911][ T7240] ? __pfx_do_recvmmsg+0x10/0x10 [ 165.092950][ T7240] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 165.093003][ T7240] ? __fget_files+0x20e/0x3c0 [ 165.093061][ T7240] __x64_sys_recvmmsg+0x22a/0x280 [ 165.093095][ T7240] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 165.093125][ T7240] ? rcu_is_watching+0x12/0xc0 [ 165.093165][ T7240] do_syscall_64+0xcd/0x230 [ 165.093207][ T7240] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.093239][ T7240] RIP: 0033:0x7f240278e969 [ 165.093262][ T7240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 165.093290][ T7240] RSP: 002b:00007f240368c038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 165.093319][ T7240] RAX: ffffffffffffffda RBX: 00007f24029b6080 RCX: 00007f240278e969 [ 165.093339][ T7240] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003 [ 165.093357][ T7240] RBP: 00007f240368c090 R08: 0000000000000000 R09: 0000000000000000 [ 165.093376][ T7240] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002 [ 165.093394][ T7240] R13: 0000000000000000 R14: 00007f24029b6080 R15: 00007ffe0f5776d8 [ 165.093434][ T7240] [ 165.341840][ T6815] syz.3.180 (6815) used greatest stack depth: 18728 bytes left [ 166.819624][ T7260] netlink: 8 bytes leftover after parsing attributes in process `syz.2.270'. [ 167.183255][ T7272] can: request_module (can-proto-3) failed. [ 167.329242][ T7278] netlink: 28 bytes leftover after parsing attributes in process `syz.1.274'. [ 167.449534][ T7284] netlink: 28 bytes leftover after parsing attributes in process `syz.2.273'. [ 168.012650][ T7296] FAULT_INJECTION: forcing a failure. [ 168.012650][ T7296] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 168.121779][ T7296] CPU: 0 UID: 0 PID: 7296 Comm: syz.3.278 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 168.121818][ T7296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 168.121834][ T7296] Call Trace: [ 168.121843][ T7296] [ 168.121853][ T7296] dump_stack_lvl+0x16c/0x1f0 [ 168.121892][ T7296] should_fail_ex+0x512/0x640 [ 168.121936][ T7296] _copy_from_user+0x2e/0xd0 [ 168.121980][ T7296] copy_msghdr_from_user+0x98/0x160 [ 168.122017][ T7296] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 168.122084][ T7296] ? kfree+0x252/0x4d0 [ 168.122124][ T7296] ? __lock_acquire+0x5ca/0x1ba0 [ 168.122168][ T7296] ___sys_recvmsg+0xdb/0x1a0 [ 168.122195][ T7296] ? __pfx____sys_recvmsg+0x10/0x10 [ 168.122241][ T7296] ? __pfx___might_resched+0x10/0x10 [ 168.122279][ T7296] do_recvmmsg+0x2fe/0x740 [ 168.122310][ T7296] ? __pfx_do_recvmmsg+0x10/0x10 [ 168.122352][ T7296] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 168.122400][ T7296] ? __fget_files+0x20e/0x3c0 [ 168.122458][ T7296] __x64_sys_recvmmsg+0x22a/0x280 [ 168.122509][ T7296] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 168.122539][ T7296] ? rcu_is_watching+0x12/0xc0 [ 168.122578][ T7296] do_syscall_64+0xcd/0x230 [ 168.122620][ T7296] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 168.122651][ T7296] RIP: 0033:0x7f2dae58e969 [ 168.122674][ T7296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 168.122703][ T7296] RSP: 002b:00007f2dac3d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 168.122732][ T7296] RAX: ffffffffffffffda RBX: 00007f2dae7b6080 RCX: 00007f2dae58e969 [ 168.122751][ T7296] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003 [ 168.122770][ T7296] RBP: 00007f2dac3d5090 R08: 0000000000000000 R09: 0000000000000000 [ 168.122789][ T7296] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002 [ 168.122807][ T7296] R13: 0000000000000000 R14: 00007f2dae7b6080 R15: 00007fff5551a308 [ 168.122847][ T7296] [ 168.957449][ T7305] can: request_module (can-proto-3) failed. [ 169.303055][ T7321] netlink: 8 bytes leftover after parsing attributes in process `syz.0.283'. [ 170.313584][ T7342] netlink: 28 bytes leftover after parsing attributes in process `syz.2.286'. [ 170.389106][ T7345] netlink: 4 bytes leftover after parsing attributes in process `syz.3.287'. [ 170.784979][ T7356] netlink: 28 bytes leftover after parsing attributes in process `syz.0.289'. [ 171.001506][ T7357] can: request_module (can-proto-3) failed. [ 171.242336][ T7367] FAULT_INJECTION: forcing a failure. [ 171.242336][ T7367] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 171.265624][ T7367] CPU: 1 UID: 0 PID: 7367 Comm: syz.2.292 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 171.265659][ T7367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 171.265674][ T7367] Call Trace: [ 171.265682][ T7367] [ 171.265691][ T7367] dump_stack_lvl+0x16c/0x1f0 [ 171.265727][ T7367] should_fail_ex+0x512/0x640 [ 171.265770][ T7367] _copy_from_user+0x2e/0xd0 [ 171.265808][ T7367] copy_msghdr_from_user+0x98/0x160 [ 171.265834][ T7367] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 171.265882][ T7367] ? kfree+0x252/0x4d0 [ 171.265921][ T7367] ? __lock_acquire+0x5ca/0x1ba0 [ 171.265961][ T7367] ___sys_recvmsg+0xdb/0x1a0 [ 171.265986][ T7367] ? __pfx____sys_recvmsg+0x10/0x10 [ 171.266030][ T7367] ? __pfx___might_resched+0x10/0x10 [ 171.266065][ T7367] do_recvmmsg+0x2fe/0x740 [ 171.266094][ T7367] ? __pfx_do_recvmmsg+0x10/0x10 [ 171.266126][ T7367] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 171.266169][ T7367] ? __fget_files+0x20e/0x3c0 [ 171.266218][ T7367] __x64_sys_recvmmsg+0x22a/0x280 [ 171.266247][ T7367] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 171.266272][ T7367] ? rcu_is_watching+0x12/0xc0 [ 171.266305][ T7367] do_syscall_64+0xcd/0x230 [ 171.266346][ T7367] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 171.266373][ T7367] RIP: 0033:0x7f22b978e969 [ 171.266393][ T7367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 171.266417][ T7367] RSP: 002b:00007f22ba651038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 171.266441][ T7367] RAX: ffffffffffffffda RBX: 00007f22b99b6080 RCX: 00007f22b978e969 [ 171.266458][ T7367] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003 [ 171.266473][ T7367] RBP: 00007f22ba651090 R08: 0000000000000000 R09: 0000000000000000 [ 171.266489][ T7367] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002 [ 171.266504][ T7367] R13: 0000000000000000 R14: 00007f22b99b6080 R15: 00007ffe32a2c7b8 [ 171.266538][ T7367] [ 172.294254][ T7382] netlink: 8 bytes leftover after parsing attributes in process `syz.2.296'. [ 172.566266][ T7389] can: request_module (can-proto-3) failed. [ 173.046751][ T7402] netlink: 28 bytes leftover after parsing attributes in process `syz.1.299'. [ 173.152014][ T7408] netlink: 28 bytes leftover after parsing attributes in process `syz.3.300'. [ 173.235859][ T30] audit: type=1326 audit(6040874805.581:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7410 comm="syz.1.301" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f240278e969 code=0x0 [ 173.501836][ T7416] FAULT_INJECTION: forcing a failure. [ 173.501836][ T7416] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 173.529882][ T7416] CPU: 0 UID: 0 PID: 7416 Comm: syz.2.303 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 173.529920][ T7416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 173.529933][ T7416] Call Trace: [ 173.529941][ T7416] [ 173.529950][ T7416] dump_stack_lvl+0x16c/0x1f0 [ 173.529985][ T7416] should_fail_ex+0x512/0x640 [ 173.530024][ T7416] _copy_from_user+0x2e/0xd0 [ 173.530063][ T7416] copy_msghdr_from_user+0x98/0x160 [ 173.530085][ T7416] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 173.530128][ T7416] ? kfree+0x252/0x4d0 [ 173.530163][ T7416] ? __lock_acquire+0x5ca/0x1ba0 [ 173.530201][ T7416] ___sys_recvmsg+0xdb/0x1a0 [ 173.530224][ T7416] ? __pfx____sys_recvmsg+0x10/0x10 [ 173.530262][ T7416] ? __pfx___might_resched+0x10/0x10 [ 173.530294][ T7416] do_recvmmsg+0x2fe/0x740 [ 173.530321][ T7416] ? __pfx_do_recvmmsg+0x10/0x10 [ 173.530351][ T7416] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 173.530392][ T7416] ? __fget_files+0x20e/0x3c0 [ 173.530441][ T7416] __x64_sys_recvmmsg+0x22a/0x280 [ 173.530472][ T7416] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 173.530498][ T7416] ? rcu_is_watching+0x12/0xc0 [ 173.530534][ T7416] do_syscall_64+0xcd/0x230 [ 173.530580][ T7416] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 173.530608][ T7416] RIP: 0033:0x7f22b978e969 [ 173.530629][ T7416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 173.530655][ T7416] RSP: 002b:00007f22ba672038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 173.530681][ T7416] RAX: ffffffffffffffda RBX: 00007f22b99b5fa0 RCX: 00007f22b978e969 [ 173.530700][ T7416] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003 [ 173.530716][ T7416] RBP: 00007f22ba672090 R08: 0000000000000000 R09: 0000000000000000 [ 173.530732][ T7416] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002 [ 173.530749][ T7416] R13: 0000000000000000 R14: 00007f22b99b5fa0 R15: 00007ffe32a2c7b8 [ 173.530785][ T7416] [ 174.745906][ T7439] can: request_module (can-proto-3) failed. [ 174.956866][ T7447] netlink: 28 bytes leftover after parsing attributes in process `syz.2.310'. [ 175.023400][ T7454] netlink: 28 bytes leftover after parsing attributes in process `syz.3.311'. [ 175.552650][ T7466] FAULT_INJECTION: forcing a failure. [ 175.552650][ T7466] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 175.597153][ T7466] CPU: 0 UID: 0 PID: 7466 Comm: syz.2.316 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 175.597189][ T7466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 175.597204][ T7466] Call Trace: [ 175.597212][ T7466] [ 175.597221][ T7466] dump_stack_lvl+0x16c/0x1f0 [ 175.597257][ T7466] should_fail_ex+0x512/0x640 [ 175.597299][ T7466] _copy_from_user+0x2e/0xd0 [ 175.597337][ T7466] copy_msghdr_from_user+0x98/0x160 [ 175.597363][ T7466] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 175.597416][ T7466] ? kfree+0x252/0x4d0 [ 175.597455][ T7466] ? __lock_acquire+0x5ca/0x1ba0 [ 175.597496][ T7466] ___sys_recvmsg+0xdb/0x1a0 [ 175.597521][ T7466] ? __pfx____sys_recvmsg+0x10/0x10 [ 175.597565][ T7466] ? __pfx___might_resched+0x10/0x10 [ 175.597602][ T7466] do_recvmmsg+0x2fe/0x740 [ 175.597632][ T7466] ? __pfx_do_recvmmsg+0x10/0x10 [ 175.597664][ T7466] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 175.597708][ T7466] ? __fget_files+0x20e/0x3c0 [ 175.597757][ T7466] __x64_sys_recvmmsg+0x22a/0x280 [ 175.597785][ T7466] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 175.597811][ T7466] ? rcu_is_watching+0x12/0xc0 [ 175.597844][ T7466] do_syscall_64+0xcd/0x230 [ 175.597880][ T7466] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 175.597906][ T7466] RIP: 0033:0x7f22b978e969 [ 175.597926][ T7466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 175.597951][ T7466] RSP: 002b:00007f22ba672038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 175.597981][ T7466] RAX: ffffffffffffffda RBX: 00007f22b99b5fa0 RCX: 00007f22b978e969 [ 175.597997][ T7466] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003 [ 175.598013][ T7466] RBP: 00007f22ba672090 R08: 0000000000000000 R09: 0000000000000000 [ 175.598029][ T7466] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002 [ 175.598044][ T7466] R13: 0000000000000000 R14: 00007f22b99b5fa0 R15: 00007ffe32a2c7b8 [ 175.598077][ T7466] [ 177.420222][ T7495] netlink: 28 bytes leftover after parsing attributes in process `syz.2.323'. [ 177.476753][ T7505] netlink: 28 bytes leftover after parsing attributes in process `syz.0.324'. [ 177.686735][ T7511] netlink: 16 bytes leftover after parsing attributes in process `syz.3.326'. [ 179.666237][ T7542] FAULT_INJECTION: forcing a failure. [ 179.666237][ T7542] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 179.694876][ T7542] CPU: 0 UID: 0 PID: 7542 Comm: syz.1.332 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 179.694921][ T7542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 179.694936][ T7542] Call Trace: [ 179.694945][ T7542] [ 179.694954][ T7542] dump_stack_lvl+0x16c/0x1f0 [ 179.695000][ T7542] should_fail_ex+0x512/0x640 [ 179.695044][ T7542] _copy_from_user+0x2e/0xd0 [ 179.695087][ T7542] copy_msghdr_from_user+0x98/0x160 [ 179.695114][ T7542] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 179.695164][ T7542] ? kfree+0x252/0x4d0 [ 179.695207][ T7542] ? __lock_acquire+0x5ca/0x1ba0 [ 179.695248][ T7542] ___sys_recvmsg+0xdb/0x1a0 [ 179.695275][ T7542] ? __pfx____sys_recvmsg+0x10/0x10 [ 179.695322][ T7542] ? __pfx___might_resched+0x10/0x10 [ 179.695360][ T7542] do_recvmmsg+0x2fe/0x740 [ 179.695391][ T7542] ? __pfx_do_recvmmsg+0x10/0x10 [ 179.695425][ T7542] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 179.695470][ T7542] ? __fget_files+0x20e/0x3c0 [ 179.695520][ T7542] __x64_sys_recvmmsg+0x22a/0x280 [ 179.695550][ T7542] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 179.695577][ T7542] ? rcu_is_watching+0x12/0xc0 [ 179.695620][ T7542] do_syscall_64+0xcd/0x230 [ 179.695658][ T7542] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.695687][ T7542] RIP: 0033:0x7f240278e969 [ 179.695707][ T7542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 179.695734][ T7542] RSP: 002b:00007f240368c038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 179.695760][ T7542] RAX: ffffffffffffffda RBX: 00007f24029b6080 RCX: 00007f240278e969 [ 179.695778][ T7542] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003 [ 179.695794][ T7542] RBP: 00007f240368c090 R08: 0000000000000000 R09: 0000000000000000 [ 179.695812][ T7542] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002 [ 179.695828][ T7542] R13: 0000000000000000 R14: 00007f24029b6080 R15: 00007ffe0f5776d8 [ 179.695864][ T7542] [ 179.900496][ C0] vkms_vblank_simulate: vblank timer overrun [ 180.084213][ T7548] netlink: 28 bytes leftover after parsing attributes in process `syz.0.334'. [ 180.096770][ T7548] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 180.129993][ T7544] netlink: 28 bytes leftover after parsing attributes in process `syz.3.333'. [ 180.160949][ T7548] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 180.507532][ T7566] netlink: 28 bytes leftover after parsing attributes in process `syz.1.336'. [ 180.526001][ T7558] can: request_module (can-proto-3) failed. [ 181.464837][ T7583] FAULT_INJECTION: forcing a failure. [ 181.464837][ T7583] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 181.523008][ T7583] CPU: 0 UID: 0 PID: 7583 Comm: syz.1.343 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 181.523050][ T7583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 181.523068][ T7583] Call Trace: [ 181.523078][ T7583] [ 181.523090][ T7583] dump_stack_lvl+0x16c/0x1f0 [ 181.523132][ T7583] should_fail_ex+0x512/0x640 [ 181.523181][ T7583] _copy_from_user+0x2e/0xd0 [ 181.523230][ T7583] copy_msghdr_from_user+0x98/0x160 [ 181.523261][ T7583] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 181.523318][ T7583] ? kfree+0x252/0x4d0 [ 181.523364][ T7583] ? __lock_acquire+0x5ca/0x1ba0 [ 181.523410][ T7583] ___sys_recvmsg+0xdb/0x1a0 [ 181.523439][ T7583] ? __pfx____sys_recvmsg+0x10/0x10 [ 181.523498][ T7583] ? __pfx___might_resched+0x10/0x10 [ 181.523540][ T7583] do_recvmmsg+0x2fe/0x740 [ 181.523575][ T7583] ? __pfx_do_recvmmsg+0x10/0x10 [ 181.523624][ T7583] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 181.523691][ T7583] ? __fget_files+0x20e/0x3c0 [ 181.523756][ T7583] __x64_sys_recvmmsg+0x22a/0x280 [ 181.523785][ T7583] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 181.523810][ T7583] ? rcu_is_watching+0x12/0xc0 [ 181.523844][ T7583] do_syscall_64+0xcd/0x230 [ 181.523879][ T7583] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.523905][ T7583] RIP: 0033:0x7f240278e969 [ 181.523925][ T7583] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 181.523950][ T7583] RSP: 002b:00007f24036ad038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 181.523974][ T7583] RAX: ffffffffffffffda RBX: 00007f24029b5fa0 RCX: 00007f240278e969 [ 181.523992][ T7583] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003 [ 181.524024][ T7583] RBP: 00007f24036ad090 R08: 0000000000000000 R09: 0000000000000000 [ 181.524041][ T7583] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002 [ 181.524057][ T7583] R13: 0000000000000000 R14: 00007f24029b5fa0 R15: 00007ffe0f5776d8 [ 181.524093][ T7583] [ 181.730654][ C0] vkms_vblank_simulate: vblank timer overrun [ 181.853419][ T7592] input: fJL'$d)K4Lo1oNtø"n$cawR=X as /devices/virtual/input/input6 [ 182.477197][ T7611] netlink: 28 bytes leftover after parsing attributes in process `syz.0.348'. [ 182.528239][ T7610] netlink: 28 bytes leftover after parsing attributes in process `syz.3.349'. [ 183.643918][ T55] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 183.643945][ T55] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 183.659004][ T55] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 183.659059][ T55] Bluetooth: hci2: adv larger than maximum supported [ 183.666435][ T55] Bluetooth: hci2: Malformed LE Event: 0x0d [ 184.304435][ T7635] can: request_module (can-proto-3) failed. [ 185.061647][ T7654] FAULT_INJECTION: forcing a failure. [ 185.061647][ T7654] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 185.082189][ T7654] CPU: 1 UID: 0 PID: 7654 Comm: syz.1.358 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 185.082226][ T7654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 185.082246][ T7654] Call Trace: [ 185.082254][ T7654] [ 185.082268][ T7654] dump_stack_lvl+0x16c/0x1f0 [ 185.082305][ T7654] should_fail_ex+0x512/0x640 [ 185.082348][ T7654] _copy_from_user+0x2e/0xd0 [ 185.082390][ T7654] copy_msghdr_from_user+0x98/0x160 [ 185.082418][ T7654] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 185.082487][ T7654] ? kfree+0x252/0x4d0 [ 185.082533][ T7654] ? __lock_acquire+0x5ca/0x1ba0 [ 185.082582][ T7654] ___sys_recvmsg+0xdb/0x1a0 [ 185.082611][ T7654] ? __pfx____sys_recvmsg+0x10/0x10 [ 185.082662][ T7654] ? __pfx___might_resched+0x10/0x10 [ 185.082704][ T7654] do_recvmmsg+0x2fe/0x740 [ 185.082738][ T7654] ? __pfx_do_recvmmsg+0x10/0x10 [ 185.082777][ T7654] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 185.082830][ T7654] ? __fget_files+0x20e/0x3c0 [ 185.082891][ T7654] __x64_sys_recvmmsg+0x22a/0x280 [ 185.082924][ T7654] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 185.082952][ T7654] ? rcu_is_watching+0x12/0xc0 [ 185.082992][ T7654] do_syscall_64+0xcd/0x230 [ 185.083031][ T7654] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.083062][ T7654] RIP: 0033:0x7f240278e969 [ 185.083087][ T7654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 185.083116][ T7654] RSP: 002b:00007f24036ad038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 185.083152][ T7654] RAX: ffffffffffffffda RBX: 00007f24029b5fa0 RCX: 00007f240278e969 [ 185.083179][ T7654] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003 [ 185.083197][ T7654] RBP: 00007f24036ad090 R08: 0000000000000000 R09: 0000000000000000 [ 185.083216][ T7654] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002 [ 185.083234][ T7654] R13: 0000000000000000 R14: 00007f24029b5fa0 R15: 00007ffe0f5776d8 [ 185.083273][ T7654] [ 185.456560][ T7666] netlink: 28 bytes leftover after parsing attributes in process `syz.2.360'. [ 185.472414][ T55] Bluetooth: hci3: unexpected event 0x04 length: 442 > 10 [ 185.472451][ T55] Bluetooth: unknown link type 178 [ 185.491374][ T55] Bluetooth: hci3: connection err: -111 [ 185.551854][ T55] Bluetooth: hci3: unexpected event 0x04 length: 442 > 10 [ 185.551886][ T55] Bluetooth: unknown link type 178 [ 185.561848][ T7669] netlink: 28 bytes leftover after parsing attributes in process `syz.3.362'. [ 185.568414][ T55] Bluetooth: hci3: connection err: -111 [ 186.672577][ T7691] can: request_module (can-proto-3) failed. [ 187.027299][ T7706] FAULT_INJECTION: forcing a failure. [ 187.027299][ T7706] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 187.052769][ T7706] CPU: 1 UID: 0 PID: 7706 Comm: syz.0.370 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 187.052810][ T7706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 187.052827][ T7706] Call Trace: [ 187.052836][ T7706] [ 187.052850][ T7706] dump_stack_lvl+0x16c/0x1f0 [ 187.052892][ T7706] should_fail_ex+0x512/0x640 [ 187.052941][ T7706] _copy_from_user+0x2e/0xd0 [ 187.052988][ T7706] copy_msghdr_from_user+0x98/0x160 [ 187.053018][ T7706] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 187.053085][ T7706] ? kfree+0x252/0x4d0 [ 187.053130][ T7706] ? __lock_acquire+0x5ca/0x1ba0 [ 187.053177][ T7706] ___sys_recvmsg+0xdb/0x1a0 [ 187.053207][ T7706] ? __pfx____sys_recvmsg+0x10/0x10 [ 187.053257][ T7706] ? __pfx___might_resched+0x10/0x10 [ 187.053300][ T7706] do_recvmmsg+0x2fe/0x740 [ 187.053334][ T7706] ? __pfx_do_recvmmsg+0x10/0x10 [ 187.053372][ T7706] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 187.053423][ T7706] ? __fget_files+0x20e/0x3c0 [ 187.053479][ T7706] __x64_sys_recvmmsg+0x22a/0x280 [ 187.053512][ T7706] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 187.053540][ T7706] ? rcu_is_watching+0x12/0xc0 [ 187.053577][ T7706] do_syscall_64+0xcd/0x230 [ 187.053618][ T7706] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.053647][ T7706] RIP: 0033:0x7ff2cd78e969 [ 187.053671][ T7706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 187.053700][ T7706] RSP: 002b:00007ff2ce629038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 187.053729][ T7706] RAX: ffffffffffffffda RBX: 00007ff2cd9b5fa0 RCX: 00007ff2cd78e969 [ 187.053761][ T7706] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003 [ 187.053778][ T7706] RBP: 00007ff2ce629090 R08: 0000000000000000 R09: 0000000000000000 [ 187.053796][ T7706] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002 [ 187.053814][ T7706] R13: 0000000000000000 R14: 00007ff2cd9b5fa0 R15: 00007fffef5886f8 [ 187.053853][ T7706] [ 187.639677][ T7719] netlink: 28 bytes leftover after parsing attributes in process `syz.3.372'. [ 187.742281][ T7718] netlink: 28 bytes leftover after parsing attributes in process `syz.1.373'. [ 189.045076][ T7749] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(537396514.0.0), cmd(0) [ 190.086175][ T7766] netlink: 28 bytes leftover after parsing attributes in process `syz.2.384'. [ 190.606235][ T7770] can: request_module (can-proto-3) failed. [ 190.794800][ T7777] FAULT_INJECTION: forcing a failure. [ 190.794800][ T7777] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 190.896865][ T7777] CPU: 0 UID: 0 PID: 7777 Comm: syz.3.385 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 190.896900][ T7777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 190.896911][ T7777] Call Trace: [ 190.896917][ T7777] [ 190.896924][ T7777] dump_stack_lvl+0x16c/0x1f0 [ 190.896950][ T7777] should_fail_ex+0x512/0x640 [ 190.896981][ T7777] _copy_from_user+0x2e/0xd0 [ 190.897010][ T7777] copy_msghdr_from_user+0x98/0x160 [ 190.897029][ T7777] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 190.897064][ T7777] ? kfree+0x252/0x4d0 [ 190.897092][ T7777] ? __lock_acquire+0x5ca/0x1ba0 [ 190.897121][ T7777] ___sys_recvmsg+0xdb/0x1a0 [ 190.897138][ T7777] ? __pfx____sys_recvmsg+0x10/0x10 [ 190.897169][ T7777] ? __pfx___might_resched+0x10/0x10 [ 190.897194][ T7777] do_recvmmsg+0x2fe/0x740 [ 190.897215][ T7777] ? __pfx_do_recvmmsg+0x10/0x10 [ 190.897237][ T7777] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 190.897269][ T7777] ? __fget_files+0x20e/0x3c0 [ 190.897304][ T7777] __x64_sys_recvmmsg+0x22a/0x280 [ 190.897324][ T7777] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 190.897343][ T7777] ? rcu_is_watching+0x12/0xc0 [ 190.897368][ T7777] do_syscall_64+0xcd/0x230 [ 190.897393][ T7777] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 190.897412][ T7777] RIP: 0033:0x7f2dae58e969 [ 190.897427][ T7777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 190.897445][ T7777] RSP: 002b:00007f2dac3f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 190.897463][ T7777] RAX: ffffffffffffffda RBX: 00007f2dae7b5fa0 RCX: 00007f2dae58e969 [ 190.897475][ T7777] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003 [ 190.897486][ T7777] RBP: 00007f2dac3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 190.897498][ T7777] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002 [ 190.897509][ T7777] R13: 0000000000000000 R14: 00007f2dae7b5fa0 R15: 00007fff5551a308 [ 190.897531][ T7777] [ 191.687901][ T7788] netlink: 28 bytes leftover after parsing attributes in process `syz.3.388'. [ 192.771915][ T7810] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 192.786713][ T7816] netlink: 4 bytes leftover after parsing attributes in process `syz.2.394'. [ 193.428492][ T7818] netlink: 28 bytes leftover after parsing attributes in process `syz.1.395'. [ 193.816766][ T7828] FAULT_INJECTION: forcing a failure. [ 193.816766][ T7828] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 193.862314][ T7825] can: request_module (can-proto-3) failed. [ 193.866383][ T7828] CPU: 1 UID: 0 PID: 7828 Comm: syz.3.397 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 193.866423][ T7828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 193.866439][ T7828] Call Trace: [ 193.866448][ T7828] [ 193.866458][ T7828] dump_stack_lvl+0x16c/0x1f0 [ 193.866496][ T7828] should_fail_ex+0x512/0x640 [ 193.866541][ T7828] _copy_from_user+0x2e/0xd0 [ 193.866585][ T7828] copy_msghdr_from_user+0x98/0x160 [ 193.866614][ T7828] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 193.866667][ T7828] ? kfree+0x252/0x4d0 [ 193.866708][ T7828] ? __lock_acquire+0x5ca/0x1ba0 [ 193.866750][ T7828] ___sys_recvmsg+0xdb/0x1a0 [ 193.866776][ T7828] ? __pfx____sys_recvmsg+0x10/0x10 [ 193.866822][ T7828] ? __pfx___might_resched+0x10/0x10 [ 193.866859][ T7828] do_recvmmsg+0x2fe/0x740 [ 193.866889][ T7828] ? __pfx_do_recvmmsg+0x10/0x10 [ 193.866923][ T7828] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 193.866968][ T7828] ? __fget_files+0x20e/0x3c0 [ 193.867020][ T7828] __x64_sys_recvmmsg+0x22a/0x280 [ 193.867049][ T7828] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 193.867076][ T7828] ? rcu_is_watching+0x12/0xc0 [ 193.867111][ T7828] do_syscall_64+0xcd/0x230 [ 193.867147][ T7828] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 193.867182][ T7828] RIP: 0033:0x7f2dae58e969 [ 193.867204][ T7828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 193.867230][ T7828] RSP: 002b:00007f2dac3d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 193.867256][ T7828] RAX: ffffffffffffffda RBX: 00007f2dae7b6080 RCX: 00007f2dae58e969 [ 193.867273][ T7828] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003 [ 193.867289][ T7828] RBP: 00007f2dac3d5090 R08: 0000000000000000 R09: 0000000000000000 [ 193.867305][ T7828] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002 [ 193.867322][ T7828] R13: 0000000000000000 R14: 00007f2dae7b6080 R15: 00007fff5551a308 [ 193.867356][ T7828] [ 194.431117][ T7840] netlink: 28 bytes leftover after parsing attributes in process `syz.3.400'. [ 195.827268][ T7868] netlink: 28 bytes leftover after parsing attributes in process `syz.3.407'. [ 196.399517][ T7877] FAULT_INJECTION: forcing a failure. [ 196.399517][ T7877] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 196.425510][ T7881] netlink: 4 bytes leftover after parsing attributes in process `syz.0.411'. [ 196.659122][ T7884] can: request_module (can-proto-3) failed. [ 196.722014][ T7877] CPU: 1 UID: 0 PID: 7877 Comm: syz.1.409 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 196.722048][ T7877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 196.722061][ T7877] Call Trace: [ 196.722069][ T7877] [ 196.722079][ T7877] dump_stack_lvl+0x16c/0x1f0 [ 196.722115][ T7877] should_fail_ex+0x512/0x640 [ 196.722153][ T7877] _copy_from_user+0x2e/0xd0 [ 196.722202][ T7877] copy_msghdr_from_user+0x98/0x160 [ 196.722227][ T7877] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 196.722275][ T7877] ? kfree+0x252/0x4d0 [ 196.722314][ T7877] ? __lock_acquire+0x5ca/0x1ba0 [ 196.722353][ T7877] ___sys_recvmsg+0xdb/0x1a0 [ 196.722379][ T7877] ? __pfx____sys_recvmsg+0x10/0x10 [ 196.722422][ T7877] ? __pfx___might_resched+0x10/0x10 [ 196.722459][ T7877] do_recvmmsg+0x2fe/0x740 [ 196.722509][ T7877] ? __pfx_do_recvmmsg+0x10/0x10 [ 196.722548][ T7877] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 196.722599][ T7877] ? __fget_files+0x20e/0x3c0 [ 196.722657][ T7877] __x64_sys_recvmmsg+0x22a/0x280 [ 196.722689][ T7877] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 196.722721][ T7877] ? rcu_is_watching+0x12/0xc0 [ 196.722759][ T7877] do_syscall_64+0xcd/0x230 [ 196.722801][ T7877] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.722832][ T7877] RIP: 0033:0x7f240278e969 [ 196.722859][ T7877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 196.722889][ T7877] RSP: 002b:00007f240368c038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 196.722916][ T7877] RAX: ffffffffffffffda RBX: 00007f24029b6080 RCX: 00007f240278e969 [ 196.722936][ T7877] RDX: 000000000687bcbd RSI: 0000000000000000 RDI: 0000000000000003 [ 196.722954][ T7877] RBP: 00007f240368c090 R08: 0000000000000000 R09: 0000000000000000 [ 196.722972][ T7877] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002 [ 196.722987][ T7877] R13: 0000000000000000 R14: 00007f24029b6080 R15: 00007ffe0f5776d8 [ 196.723019][ T7877] [ 197.222811][ T7889] FAULT_INJECTION: forcing a failure. [ 197.222811][ T7889] name failslab, interval 1, probability 0, space 0, times 0 [ 197.286674][ T7889] CPU: 0 UID: 0 PID: 7889 Comm: syz.0.412 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 197.286701][ T7889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 197.286712][ T7889] Call Trace: [ 197.286718][ T7889] [ 197.286725][ T7889] dump_stack_lvl+0x16c/0x1f0 [ 197.286752][ T7889] should_fail_ex+0x512/0x640 [ 197.286781][ T7889] should_failslab+0xc2/0x120 [ 197.286805][ T7889] __kmalloc_cache_noprof+0x6a/0x3e0 [ 197.286838][ T7889] ? sctp_add_bind_addr+0xae/0x3f0 [ 197.286862][ T7889] sctp_add_bind_addr+0xae/0x3f0 [ 197.286893][ T7889] sctp_copy_local_addr_list+0x39d/0x5a0 [ 197.286922][ T7889] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 197.286952][ T7889] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 197.286985][ T7889] ? sctp_bind_addr_copy+0xe0/0x530 [ 197.287006][ T7889] sctp_bind_addr_copy+0xe0/0x530 [ 197.287051][ T7889] sctp_connect_new_asoc+0x1d7/0x790 [ 197.287084][ T7889] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 197.287121][ T7889] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 197.287154][ T7889] sctp_sendmsg+0x15f9/0x1ee0 [ 197.287185][ T7889] ? __lock_acquire+0x5ca/0x1ba0 [ 197.287228][ T7889] ? __pfx_sctp_sendmsg+0x10/0x10 [ 197.287265][ T7889] ? __pfx___might_resched+0x10/0x10 [ 197.287296][ T7889] ? __pfx_aa_sk_perm+0x10/0x10 [ 197.287322][ T7889] ? __pfx_sctp_sendmsg+0x10/0x10 [ 197.287353][ T7889] inet_sendmsg+0x119/0x140 [ 197.287378][ T7889] ____sys_sendmsg+0x973/0xc70 [ 197.287406][ T7889] ? __pfx_____sys_sendmsg+0x10/0x10 [ 197.287434][ T7889] ? __pfx__kstrtoull+0x10/0x10 [ 197.287460][ T7889] ___sys_sendmsg+0x134/0x1d0 [ 197.287480][ T7889] ? __pfx____sys_sendmsg+0x10/0x10 [ 197.287509][ T7889] ? find_held_lock+0x2b/0x80 [ 197.287541][ T7889] __sys_sendmmsg+0x200/0x420 [ 197.287561][ T7889] ? __pfx___sys_sendmmsg+0x10/0x10 [ 197.287587][ T7889] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 197.287622][ T7889] ? fput+0x70/0xf0 [ 197.287643][ T7889] ? ksys_write+0x1b9/0x240 [ 197.287659][ T7889] ? __pfx_ksys_write+0x10/0x10 [ 197.287674][ T7889] ? rcu_is_watching+0x12/0xc0 [ 197.287699][ T7889] __x64_sys_sendmmsg+0x9c/0x100 [ 197.287717][ T7889] ? lockdep_hardirqs_on+0x7c/0x110 [ 197.287738][ T7889] do_syscall_64+0xcd/0x230 [ 197.287773][ T7889] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 197.287792][ T7889] RIP: 0033:0x7ff2cd78e969 [ 197.287807][ T7889] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 197.287825][ T7889] RSP: 002b:00007ff2ce629038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 197.287842][ T7889] RAX: ffffffffffffffda RBX: 00007ff2cd9b5fa0 RCX: 00007ff2cd78e969 [ 197.287856][ T7889] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000004 [ 197.287867][ T7889] RBP: 00007ff2ce629090 R08: 0000000000000000 R09: 0000000000000000 [ 197.287891][ T7889] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000002 [ 197.287902][ T7889] R13: 0000000000000000 R14: 00007ff2cd9b5fa0 R15: 00007fffef5886f8 [ 197.287927][ T7889] [ 199.078453][ T7922] netlink: 28 bytes leftover after parsing attributes in process `syz.3.419'. [ 199.288953][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.301311][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 216.727954][ T5832] Bluetooth: hci3: command 0x0406 tx timeout [ 216.729598][ T5841] Bluetooth: hci1: command 0x0406 tx timeout [ 216.740177][ T5847] Bluetooth: hci2: command 0x0406 tx timeout [ 216.740236][ T5832] Bluetooth: hci0: command 0x0406 tx timeout [ 260.726513][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 260.732974][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 322.167490][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.176797][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 353.524301][ T31] INFO: task jbd2/sda1-8:5166 blocked for more than 143 seconds. [ 353.532196][ T31] Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 [ 353.541970][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 353.550742][ T31] task:jbd2/sda1-8 state:D stack:26008 pid:5166 tgid:5166 ppid:2 task_flags:0x240040 flags:0x00004000 [ 353.562922][ T31] Call Trace: [ 353.566230][ T31] [ 353.569172][ T31] __schedule+0x116f/0x5de0 [ 353.573753][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 353.578746][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 353.583784][ T31] ? __pfx___schedule+0x10/0x10 [ 353.588671][ T31] ? find_held_lock+0x2b/0x80 [ 353.593462][ T31] ? schedule+0x2d7/0x3a0 [ 353.597824][ T31] schedule+0xe7/0x3a0 [ 353.601891][ T31] io_schedule+0xbf/0x130 [ 353.606379][ T31] bit_wait_io+0x15/0xe0 [ 353.610645][ T31] __wait_on_bit+0x62/0x180 [ 353.615199][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 353.621601][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 353.627075][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 353.633260][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 353.638736][ T31] ? __pfx___might_resched+0x10/0x10 [ 353.644148][ T31] __wait_on_buffer+0x64/0x70 [ 353.648861][ T31] jbd2_journal_commit_transaction+0x382e/0x6830 [ 353.655307][ T31] ? __pfx_jbd2_journal_commit_transaction+0x10/0x10 [ 353.662031][ T31] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 353.667922][ T31] ? debug_object_deactivate+0x1ec/0x3a0 [ 353.673622][ T31] ? __pfx_debug_object_deactivate+0x10/0x10 [ 353.679659][ T31] ? find_held_lock+0x2b/0x80 [ 353.684424][ T31] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 353.690264][ T31] ? rcu_is_watching+0x12/0xc0 [ 353.695088][ T31] kjournald2+0x1f4/0x760 [ 353.699470][ T31] ? __pfx_kjournald2+0x10/0x10 [ 353.704393][ T31] ? find_held_lock+0x2b/0x80 [ 353.709091][ T31] ? __pfx_autoremove_wake_function+0x10/0x10 [ 353.715227][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 353.720458][ T31] ? __kthread_parkme+0x19e/0x250 [ 353.726820][ T31] ? __pfx_kjournald2+0x10/0x10 [ 353.731718][ T31] kthread+0x3c2/0x780 [ 353.735836][ T31] ? __pfx_kthread+0x10/0x10 [ 353.740454][ T31] ? __pfx_kthread+0x10/0x10 [ 353.745238][ T31] ? __pfx_kthread+0x10/0x10 [ 353.749859][ T31] ? __pfx_kthread+0x10/0x10 [ 353.754546][ T31] ? rcu_is_watching+0x12/0xc0 [ 353.759336][ T31] ? __pfx_kthread+0x10/0x10 [ 353.764115][ T31] ret_from_fork+0x45/0x80 [ 353.768570][ T31] ? __pfx_kthread+0x10/0x10 [ 353.773260][ T31] ret_from_fork_asm+0x1a/0x30 [ 353.778088][ T31] [ 353.781445][ T31] INFO: task syz.3.420:7926 blocked for more than 143 seconds. [ 353.789065][ T31] Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 [ 353.796828][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 353.805571][ T31] task:syz.3.420 state:D stack:26488 pid:7926 tgid:7926 ppid:5830 task_flags:0x440040 flags:0x00000004 [ 353.817593][ T31] Call Trace: [ 353.820891][ T31] [ 353.823949][ T31] __schedule+0x116f/0x5de0 [ 353.829884][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 353.834940][ T31] ? __pfx___schedule+0x10/0x10 [ 353.839827][ T31] ? find_held_lock+0x2b/0x80 [ 353.844554][ T31] ? schedule+0x2d7/0x3a0 [ 353.848906][ T31] schedule+0xe7/0x3a0 [ 353.853209][ T31] io_schedule+0xbf/0x130 [ 353.857577][ T31] bit_wait_io+0x15/0xe0 [ 353.861847][ T31] __wait_on_bit+0x62/0x180 [ 353.866406][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 353.871369][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 353.876790][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 353.882871][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 353.888373][ T31] do_get_write_access+0x93d/0x12a0 [ 353.893649][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 353.899683][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 353.905825][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 353.911408][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 353.916935][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 353.922335][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 353.929683][ T31] ? rcu_is_watching+0x12/0xc0 [ 353.934523][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 353.940246][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 353.945555][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 353.951237][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 353.956989][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 353.961960][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 353.967534][ T31] ext4_dirty_inode+0xd9/0x130 [ 353.972320][ T31] ? rcu_is_watching+0x12/0xc0 [ 353.977127][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 353.982177][ T31] generic_update_time+0xcf/0xf0 [ 353.987169][ T31] file_update_time+0x17d/0x1c0 [ 353.992044][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 353.997113][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 354.002606][ T31] do_page_mkwrite+0x171/0x380 [ 354.007580][ T31] do_pte_missing+0x29c/0x3fb0 [ 354.012374][ T31] ? __handle_mm_fault+0x1010/0x2a40 [ 354.017713][ T31] __handle_mm_fault+0x103d/0x2a40 [ 354.022912][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 354.028397][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 354.035101][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 354.040354][ T31] handle_mm_fault+0x3fe/0xad0 [ 354.045171][ T31] do_user_addr_fault+0x60c/0x1370 [ 354.050306][ T31] exc_page_fault+0x5c/0xc0 [ 354.054877][ T31] asm_exc_page_fault+0x26/0x30 [ 354.059748][ T31] RIP: 0033:0x7f2dae46eada [ 354.064217][ T31] RSP: 002b:00007fff5551a390 EFLAGS: 00010202 [ 354.070303][ T31] RAX: 0000001b302f1000 RBX: 00007f2daf2e5720 RCX: 0000001b302f0ff8 [ 354.078486][ T31] RDX: 0000001b2ff20220 RSI: 0000000000000008 RDI: 00007f2daf2e5720 [ 354.086668][ T31] RBP: ffffffff8181f846 R08: 00007f2dae7b6118 R09: 00007f2dae7a2000 [ 354.094772][ T31] R10: 00007f2dad7fd008 R11: 0000000000000010 R12: 0000000000000010 [ 354.103021][ T31] R13: 00000000000001e3 R14: ffffffff8181f520 R15: 00000000000001fd [ 354.111036][ T31] ? kick_pool+0x50/0x7a0 [ 354.115436][ T31] ? kick_pool+0x376/0x7a0 [ 354.119889][ T31] [ 354.123037][ T31] INFO: task syz.0.421:7931 blocked for more than 143 seconds. [ 354.130602][ T31] Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 [ 354.139527][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 354.148259][ T31] task:syz.0.421 state:D stack:26488 pid:7931 tgid:7931 ppid:5828 task_flags:0x440040 flags:0x00000004 [ 354.160249][ T31] Call Trace: [ 354.163579][ T31] [ 354.166535][ T31] __schedule+0x116f/0x5de0 [ 354.171051][ T31] ? __pfx___schedule+0x10/0x10 [ 354.175990][ T31] ? find_held_lock+0x2b/0x80 [ 354.180688][ T31] ? schedule+0x2d7/0x3a0 [ 354.185219][ T31] schedule+0xe7/0x3a0 [ 354.189328][ T31] io_schedule+0xbf/0x130 [ 354.193759][ T31] bit_wait_io+0x15/0xe0 [ 354.198027][ T31] __wait_on_bit+0x62/0x180 [ 354.202537][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 354.207550][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 354.212995][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 354.219016][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 354.224561][ T31] do_get_write_access+0x93d/0x12a0 [ 354.229810][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 354.237360][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 354.243561][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 354.249160][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 354.254707][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 354.260116][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 354.266167][ T31] ? rcu_is_watching+0x12/0xc0 [ 354.270947][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 354.276623][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 354.281851][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 354.287556][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 354.293469][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 354.298439][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 354.303928][ T31] ext4_dirty_inode+0xd9/0x130 [ 354.308711][ T31] ? rcu_is_watching+0x12/0xc0 [ 354.313551][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 354.318615][ T31] generic_update_time+0xcf/0xf0 [ 354.323635][ T31] file_update_time+0x17d/0x1c0 [ 354.328537][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 354.333834][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 354.340614][ T31] do_page_mkwrite+0x171/0x380 [ 354.345480][ T31] do_pte_missing+0x29c/0x3fb0 [ 354.350266][ T31] ? __handle_mm_fault+0x1010/0x2a40 [ 354.355668][ T31] __handle_mm_fault+0x103d/0x2a40 [ 354.360831][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 354.366384][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 354.371630][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 354.376911][ T31] handle_mm_fault+0x3fe/0xad0 [ 354.381698][ T31] do_user_addr_fault+0x60c/0x1370 [ 354.386871][ T31] exc_page_fault+0x5c/0xc0 [ 354.391400][ T31] asm_exc_page_fault+0x26/0x30 [ 354.396312][ T31] RIP: 0033:0x7ff2cd66eada [ 354.400756][ T31] RSP: 002b:00007fffef588730 EFLAGS: 00010202 [ 354.407057][ T31] RAX: 0000001b2fffd000 RBX: 00007ff2ce4e5720 RCX: 0000001b2fffcff8 [ 354.415102][ T31] RDX: 0000001b2fc20220 RSI: 0000000000000008 RDI: 00007ff2ce4e5720 [ 354.423157][ T31] RBP: ffffffff820fe4c7 R08: 00007ff2cd9b61f8 R09: 00007ff2cd9a2000 [ 354.431165][ T31] R10: 00007ff2cc5fb008 R11: 0000000000000011 R12: 0000000000000011 [ 354.440862][ T31] R13: 0000000000000143 R14: ffffffff820fe85b R15: 00000000000001dc [ 354.448944][ T31] ? vms_gather_munmap_vmas+0xd5b/0x1310 [ 354.454666][ T31] ? vms_gather_munmap_vmas+0x9c7/0x1310 [ 354.460346][ T31] [ 354.463516][ T31] INFO: task syz.0.421:7933 blocked for more than 144 seconds. [ 354.471088][ T31] Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 [ 354.478764][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 354.488036][ T31] task:syz.0.421 state:D stack:27224 pid:7933 tgid:7931 ppid:5828 task_flags:0x400140 flags:0x00004004 [ 354.500135][ T31] Call Trace: [ 354.503509][ T31] [ 354.506477][ T31] __schedule+0x116f/0x5de0 [ 354.511013][ T31] ? __pfx___schedule+0x10/0x10 [ 354.516191][ T31] ? find_held_lock+0x2b/0x80 [ 354.520911][ T31] ? schedule+0x2d7/0x3a0 [ 354.525333][ T31] schedule+0xe7/0x3a0 [ 354.529433][ T31] jbd2_log_wait_commit+0x2ee/0x4a0 [ 354.534707][ T31] ? __pfx_jbd2_log_wait_commit+0x10/0x10 [ 354.540460][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 354.547329][ T31] ? __pfx_autoremove_wake_function+0x10/0x10 [ 354.553506][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 354.558946][ T31] jbd2_complete_transaction+0x18f/0x200 [ 354.564648][ T31] ext4_fc_commit+0x8f3/0x1a30 [ 354.569449][ T31] ? __pfx___filemap_fdatawait_range+0x10/0x10 [ 354.575709][ T31] ? __pfx_ext4_fc_commit+0x10/0x10 [ 354.580967][ T31] ? lock_acquire+0x179/0x350 [ 354.585727][ T31] ? find_held_lock+0x2b/0x80 [ 354.590423][ T31] ? jbd2_trans_will_send_data_barrier+0x2ae/0x3c0 [ 354.596985][ T31] ? do_raw_read_unlock+0x44/0xe0 [ 354.602047][ T31] ? _raw_read_unlock+0x28/0x50 [ 354.607026][ T31] ext4_sync_file+0x817/0xf10 [ 354.611761][ T31] ? __pfx___up_read+0x10/0x10 [ 354.616622][ T31] ? __pfx_ext4_sync_file+0x10/0x10 [ 354.621860][ T31] vfs_fsync_range+0x136/0x220 [ 354.626845][ T31] __do_sys_msync+0x3cb/0x5c0 [ 354.631545][ T31] do_syscall_64+0xcd/0x230 [ 354.636115][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 354.642033][ T31] RIP: 0033:0x7ff2cd78e969 [ 354.647922][ T31] RSP: 002b:00007ff2ce608038 EFLAGS: 00000246 ORIG_RAX: 000000000000001a [ 354.656422][ T31] RAX: ffffffffffffffda RBX: 00007ff2cd9b6080 RCX: 00007ff2cd78e969 [ 354.664489][ T31] RDX: 0000000400000004 RSI: 01800000ff010000 RDI: 000000001ffff000 [ 354.672474][ T31] RBP: 00007ff2cd810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 354.680483][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 354.688513][ T31] R13: 0000000000000000 R14: 00007ff2cd9b6080 R15: 00007fffef5886f8 [ 354.696615][ T31] [ 354.699697][ T31] INFO: task syz.1.422:7935 blocked for more than 144 seconds. [ 354.707316][ T31] Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 [ 354.714998][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 354.723805][ T31] task:syz.1.422 state:D stack:28312 pid:7935 tgid:7935 ppid:5835 task_flags:0x440040 flags:0x00000004 [ 354.735967][ T31] Call Trace: [ 354.739290][ T31] [ 354.742250][ T31] __schedule+0x116f/0x5de0 [ 354.748253][ T31] ? __pfx___schedule+0x10/0x10 [ 354.753216][ T31] ? find_held_lock+0x2b/0x80 [ 354.757928][ T31] ? schedule+0x2d7/0x3a0 [ 354.762274][ T31] schedule+0xe7/0x3a0 [ 354.766416][ T31] io_schedule+0xbf/0x130 [ 354.770770][ T31] bit_wait_io+0x15/0xe0 [ 354.775082][ T31] __wait_on_bit+0x62/0x180 [ 354.779619][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 354.784644][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 354.790045][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 354.796069][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 354.801569][ T31] do_get_write_access+0x93d/0x12a0 [ 354.807238][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 354.813605][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 354.819743][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 354.825369][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 354.830869][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 354.836310][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 354.842344][ T31] ? rcu_is_watching+0x12/0xc0 [ 354.847384][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 354.854727][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 354.859971][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 354.865685][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 354.871353][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 354.876334][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 354.881734][ T31] ext4_dirty_inode+0xd9/0x130 [ 354.886556][ T31] ? rcu_is_watching+0x12/0xc0 [ 354.891341][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 354.896422][ T31] generic_update_time+0xcf/0xf0 [ 354.901384][ T31] file_update_time+0x17d/0x1c0 [ 354.906307][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 354.911366][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 354.916890][ T31] ? __pfx_filemap_map_pages+0x10/0x10 [ 354.922380][ T31] ? pte_alloc_one+0x2b1/0x380 [ 354.927226][ T31] do_page_mkwrite+0x171/0x380 [ 354.932146][ T31] do_pte_missing+0x29c/0x3fb0 [ 354.936971][ T31] ? do_raw_spin_unlock+0x172/0x230 [ 354.942220][ T31] ? __pmd_alloc+0x3c2/0x870 [ 354.946882][ T31] __handle_mm_fault+0x103d/0x2a40 [ 354.953601][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 354.959121][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 354.964449][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 354.969723][ T31] handle_mm_fault+0x3fe/0xad0 [ 354.974573][ T31] do_user_addr_fault+0x60c/0x1370 [ 354.979740][ T31] exc_page_fault+0x5c/0xc0 [ 354.984344][ T31] asm_exc_page_fault+0x26/0x30 [ 354.989221][ T31] RIP: 0033:0x7f240266547b [ 354.993681][ T31] RSP: 002b:00007ffe0f577840 EFLAGS: 00010246 [ 354.999806][ T31] RAX: 0000000000dffde8 RBX: 0000000000000000 RCX: 0000000000000000 [ 355.007871][ T31] RDX: 0000001b2fd20000 RSI: 0000000000e00000 RDI: 00007f2402898d50 [ 355.015903][ T31] RBP: 0000000000000000 R08: 0000000000000004 R09: 0000000000040000 [ 355.023957][ T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 355.031951][ T31] R13: 00000000000927c0 R14: 0000000000030bda R15: 00007ffe0f577af0 [ 355.039979][ T31] [ 355.043142][ T31] INFO: task syz.2.423:7936 blocked for more than 144 seconds. [ 355.050704][ T31] Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 [ 355.059807][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 355.068694][ T31] task:syz.2.423 state:D stack:28632 pid:7936 tgid:7936 ppid:5829 task_flags:0x440040 flags:0x00000004 [ 355.080697][ T31] Call Trace: [ 355.084046][ T31] [ 355.086997][ T31] __schedule+0x116f/0x5de0 [ 355.091538][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 355.096541][ T31] ? __pfx___schedule+0x10/0x10 [ 355.101438][ T31] ? find_held_lock+0x2b/0x80 [ 355.106201][ T31] ? schedule+0x2d7/0x3a0 [ 355.110566][ T31] schedule+0xe7/0x3a0 [ 355.114709][ T31] io_schedule+0xbf/0x130 [ 355.119084][ T31] bit_wait_io+0x15/0xe0 [ 355.123552][ T31] __wait_on_bit+0x62/0x180 [ 355.128097][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 355.133265][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 355.138721][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 355.144910][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 355.150386][ T31] do_get_write_access+0x93d/0x12a0 [ 355.157434][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 355.163548][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 355.169669][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 355.175589][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 355.181107][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 355.186556][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 355.192586][ T31] ? rcu_is_watching+0x12/0xc0 [ 355.197412][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 355.203112][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 355.208328][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 355.214028][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 355.219703][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 355.224696][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 355.230090][ T31] ext4_dirty_inode+0xd9/0x130 [ 355.234916][ T31] ? rcu_is_watching+0x12/0xc0 [ 355.239714][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 355.244854][ T31] generic_update_time+0xcf/0xf0 [ 355.249830][ T31] file_update_time+0x17d/0x1c0 [ 355.254767][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 355.261091][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 355.266630][ T31] ? __pfx_filemap_map_pages+0x10/0x10 [ 355.272118][ T31] ? pte_alloc_one+0x2b1/0x380 [ 355.276944][ T31] do_page_mkwrite+0x171/0x380 [ 355.281741][ T31] do_pte_missing+0x29c/0x3fb0 [ 355.286710][ T31] ? do_raw_spin_unlock+0x172/0x230 [ 355.291958][ T31] ? __pmd_alloc+0x3c2/0x870 [ 355.296638][ T31] __handle_mm_fault+0x103d/0x2a40 [ 355.301781][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 355.307300][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 355.312540][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 355.317843][ T31] handle_mm_fault+0x3fe/0xad0 [ 355.322651][ T31] do_user_addr_fault+0x60c/0x1370 [ 355.327853][ T31] exc_page_fault+0x5c/0xc0 [ 355.332389][ T31] asm_exc_page_fault+0x26/0x30 [ 355.337306][ T31] RIP: 0033:0x7f22b966547b [ 355.341751][ T31] RSP: 002b:00007ffe32a2c920 EFLAGS: 00010246 [ 355.347899][ T31] RAX: 00000000003ffde8 RBX: 0000000000000000 RCX: 0000000000000000 [ 355.355921][ T31] RDX: 0000001b2fe20000 RSI: 0000000000400000 RDI: 00007f22b9898d50 [ 355.365448][ T31] RBP: 0000000000000000 R08: 0000000000000004 R09: 0000000000040000 [ 355.373552][ T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 355.381549][ T31] R13: 00000000000927c0 R14: 0000000000030b43 R15: 00007ffe32a2cbd0 [ 355.389606][ T31] [ 355.392672][ T31] [ 355.392672][ T31] Showing all locks held in the system: [ 355.400617][ T31] 1 lock held by khungtaskd/31: [ 355.405581][ T31] #0: ffffffff8e3bf440 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0 [ 355.415603][ T31] 2 locks held by getty/5586: [ 355.420306][ T31] #0: ffff888031ec70a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 355.430114][ T31] #1: ffffc9000333b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0 [ 355.440301][ T31] 3 locks held by syz-executor/5819: [ 355.445894][ T31] #0: ffff88803289f088 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 355.455635][ T31] #1: ffff888035922518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 355.466581][ T31] #2: ffff888035926950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 355.476309][ T31] 3 locks held by syz.3.420/7926: [ 355.481353][ T31] #0: ffff88802811b1c8 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 355.490770][ T31] #1: ffff888035922518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 355.500455][ T31] #2: ffff888035926950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 355.510311][ T31] 3 locks held by syz.0.421/7931: [ 355.515419][ T31] #0: ffff888028120bc8 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 355.524836][ T31] #1: ffff888035922518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 355.534410][ T31] #2: ffff888035926950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 355.544113][ T31] 3 locks held by syz.1.422/7935: [ 355.549152][ T31] #0: ffff88802825b088 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 355.558582][ T31] #1: ffff888035922518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 355.569417][ T31] #2: ffff888035926950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 355.579109][ T31] 3 locks held by syz.2.423/7936: [ 355.584177][ T31] #0: ffff88803440b448 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 355.593574][ T31] #1: ffff888035922518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 355.603211][ T31] #2: ffff888035926950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 355.613102][ T31] [ 355.615460][ T31] ============================================= [ 355.615460][ T31] [ 355.623962][ T31] NMI backtrace for cpu 0 [ 355.623980][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 355.624010][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 355.624024][ T31] Call Trace: [ 355.624032][ T31] [ 355.624042][ T31] dump_stack_lvl+0x116/0x1f0 [ 355.624076][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 355.624119][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 355.624159][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 355.624205][ T31] watchdog+0xf70/0x12c0 [ 355.624247][ T31] ? __pfx_watchdog+0x10/0x10 [ 355.624277][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 355.624305][ T31] ? __kthread_parkme+0x19e/0x250 [ 355.624335][ T31] ? __pfx_watchdog+0x10/0x10 [ 355.624368][ T31] kthread+0x3c2/0x780 [ 355.624406][ T31] ? __pfx_kthread+0x10/0x10 [ 355.624440][ T31] ? __pfx_kthread+0x10/0x10 [ 355.624498][ T31] ? __pfx_kthread+0x10/0x10 [ 355.624531][ T31] ? __pfx_kthread+0x10/0x10 [ 355.624565][ T31] ? rcu_is_watching+0x12/0xc0 [ 355.624588][ T31] ? __pfx_kthread+0x10/0x10 [ 355.624625][ T31] ret_from_fork+0x45/0x80 [ 355.624663][ T31] ? __pfx_kthread+0x10/0x10 [ 355.624700][ T31] ret_from_fork_asm+0x1a/0x30 [ 355.624752][ T31] [ 355.624761][ T31] Sending NMI from CPU 0 to CPUs 1: [ 355.758107][ C1] NMI backtrace for cpu 1 [ 355.758122][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 355.758149][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 355.758160][ C1] RIP: 0010:pv_native_safe_halt+0xf/0x20 [ 355.758188][ C1] Code: 86 65 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 43 29 21 00 fb f4 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 [ 355.758208][ C1] RSP: 0018:ffffc90000197df8 EFLAGS: 000002c2 [ 355.758225][ C1] RAX: 0000000000189ea7 RBX: 0000000000000001 RCX: ffffffff8b68c3e9 [ 355.758239][ C1] RDX: 0000000000000000 RSI: ffffffff8dbd9cfb RDI: ffffffff8bf467a0 [ 355.758252][ C1] RBP: ffffed1003b59b40 R08: 0000000000000001 R09: ffffed10170a65bd [ 355.758265][ C1] R10: ffff8880b8532deb R11: 0000000000000000 R12: 0000000000000001 [ 355.758277][ C1] R13: ffff88801dacda00 R14: ffffffff90850e10 R15: 0000000000000000 [ 355.758291][ C1] FS: 0000000000000000(0000) GS:ffff888124aef000(0000) knlGS:0000000000000000 [ 355.758310][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 355.758323][ C1] CR2: 000055c996082d18 CR3: 000000000e180000 CR4: 00000000003526f0 [ 355.758336][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 355.758348][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 355.758360][ C1] Call Trace: [ 355.758367][ C1] [ 355.758373][ C1] default_idle+0x13/0x20 [ 355.758400][ C1] default_idle_call+0x6d/0xb0 [ 355.758427][ C1] do_idle+0x391/0x510 [ 355.758448][ C1] ? __pfx_do_idle+0x10/0x10 [ 355.758467][ C1] ? trace_sched_exit_tp+0x31/0x130 [ 355.758495][ C1] cpu_startup_entry+0x4f/0x60 [ 355.758516][ C1] start_secondary+0x21d/0x2b0 [ 355.758546][ C1] ? __pfx_start_secondary+0x10/0x10 [ 355.758579][ C1] common_startup_64+0x13e/0x148 [ 355.758610][ C1] [ 355.759143][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 355.954161][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 355.965978][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 355.976052][ T31] Call Trace: [ 355.979334][ T31] [ 355.982275][ T31] dump_stack_lvl+0x3d/0x1f0 [ 355.986892][ T31] panic+0x71c/0x800 [ 355.990814][ T31] ? __pfx_panic+0x10/0x10 [ 355.995262][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 356.000661][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 356.006672][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 356.012074][ T31] ? watchdog+0xdda/0x12c0 [ 356.016507][ T31] ? watchdog+0xdcd/0x12c0 [ 356.020944][ T31] watchdog+0xdeb/0x12c0 [ 356.025208][ T31] ? __pfx_watchdog+0x10/0x10 [ 356.029901][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 356.035118][ T31] ? __kthread_parkme+0x19e/0x250 [ 356.040177][ T31] ? __pfx_watchdog+0x10/0x10 [ 356.044872][ T31] kthread+0x3c2/0x780 [ 356.048961][ T31] ? __pfx_kthread+0x10/0x10 [ 356.053587][ T31] ? __pfx_kthread+0x10/0x10 [ 356.058209][ T31] ? __pfx_kthread+0x10/0x10 [ 356.062827][ T31] ? __pfx_kthread+0x10/0x10 [ 356.067459][ T31] ? rcu_is_watching+0x12/0xc0 [ 356.072227][ T31] ? __pfx_kthread+0x10/0x10 [ 356.076833][ T31] ret_from_fork+0x45/0x80 [ 356.081275][ T31] ? __pfx_kthread+0x10/0x10 [ 356.085886][ T31] ret_from_fork_asm+0x1a/0x30 [ 356.090681][ T31] [ 356.094075][ T31] Kernel Offset: disabled [ 356.098405][ T31] Rebooting in 86400 seconds..