last executing test programs: 6.958739364s ago: executing program 2 (id=809): prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0) prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x801, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51) socket(0xf, 0x3, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72) socket(0x2, 0x1, 0x0) socket(0xa, 0x2, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x8000000000000018, 0xfffffffffffffffe, 0x0) r2 = socket(0x10, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_WOL_SET(r2, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000280)={0x2c, r3, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@ETHTOOL_A_WOL_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x40) setsockopt$auto(0x400000000000003, 0x29, 0x2a, 0xffffffffffffffff, 0x3) socket(0x1e, 0x1, 0x0) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0x9) copy_file_range$auto(r1, 0x0, r1, 0x0, 0x2, 0x0) select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x3, 0xfff, 0x1, 0x948c, 0x3, 0x95f4da2d, 0xc, 0x6, 0x65, 0x7, 0x7, 0x6d3f, 0xa, 0x4, 0x5]}, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x6, 0x1, 0xfffffffffffffff7, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000021, 0x7, 0x6d3e, 0x7fff, 0x2, 0x6]}, 0x0) socket(0x1d, 0x2, 0x3) close_range$auto(0x2, 0x8, 0x0) 6.955536949s ago: executing program 3 (id=810): r0 = open(&(0x7f00000001c0)='./cgroup\x00', 0x14001, 0x6f) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x2c, r2, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@ETHTOOL_A_PAUSE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x4040000) bpf$auto(0x9, &(0x7f00000000c0)=@info={r0, 0x2b, 0x200000007fff}, 0x8) 6.677633886s ago: executing program 3 (id=811): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x1, 0x8000) socketpair$auto(0x3, 0x5, 0x7, 0x0) close_range$auto(0x2, 0x8000, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001300)={'batadv_slave_0\x00', 0x0}) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001480), r0) sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000001cc0)={0x0, 0x0, &(0x7f0000001c80)={&(0x7f0000000040)={0x28, r2, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@ETHTOOL_A_CHANNELS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x2}]}, 0x28}, 0x1, 0x100000000000000, 0x0, 0x9dfefc5e47f5c72f}, 0x0) (fail_nth: 2) io_uring_setup$auto(0x6, 0x0) socket(0x2, 0x2, 0x1) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) sendto$auto(0x3, 0x0, 0xffeb, 0xe, &(0x7f0000000100)=@in={0x2, 0x4e22, @multicast2}, 0x19) 6.402490729s ago: executing program 2 (id=812): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/mm/hugepages/hugepages-1048576kB/demote_size\x00', 0x102, 0x0) sendfile$auto(r0, r0, 0x0, 0x7) (fail_nth: 2) 5.306834742s ago: executing program 2 (id=813): socket(0xa, 0x3, 0xf2) mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0x9, 0x8000) ioctl$auto(0x3, 0x89e1, 0x91) socket(0x2c, 0x1, 0xffffffff) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) mmap$auto(0x0, 0xb, 0x10000, 0x16, 0x401, 0x8) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioperm$auto(0x3, 0x8001, 0x2000000000000149) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) kexec_load$auto(0xff, 0x2, 0x0, 0x4) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x89\x06s\x1cJ\x99\x00:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x10, 0x6) ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000840)) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) 5.294424363s ago: executing program 3 (id=814): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000600)='/proc/sys/net/ipv4/vs/est_cpulist\x00', 0x2, 0x0) r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000440)='/sys/kernel/security/tomoyo/audit\x00', 0x0, 0x0) read$auto(r1, &(0x7f0000000480)='{:\x00', 0xe4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_XFS_IOC_READLINK_BY_HANDLE(0xffffffffffffffff, 0xc038586c, &(0x7f0000000340)={r0, &(0x7f0000000180)="e1792152f263211e7b9293522f987513a2bce0", 0xffffffff, &(0x7f00000001c0)="eb5a018663d3bf014890ec6fa5b91f59685472646c1f5caefcf77556d23366e1e0c25a5e3e064c8d01bc8ec085ab233e71ad1a3f27c3cdc277ae671f5a00f732d0e6189bc1e9da844630", 0x5, &(0x7f0000000240)="e67ae121e724b54e64c603ea0d7e0aaa8afd6bcaead61d7c9f03f1c917e7373b1a4472b9751de58ccf54e70df7223c519dae42db680fb980c7f32cb2613901ce05a9726146a890a2aff3ad73bbcb12ae8c21a52c13a94c5cb5533f7ea10e92ff7684adaa29ce45a4a6dbc9d29ef5bf9d4c7773f1be2126a0bb64a0ee4f9fe1614c638286a8bd6ef302a4574144411963b69f7048b6ff3bf1b5234bb62c98c72015f40354638bc37a4e97e982f83125a8547769fd914421a1", &(0x7f0000000300)=0xfefffffb}) fsconfig$auto_XFS_DAX_ALWAYS(r2, 0xffffff25, &(0x7f0000000080)='+[*[\'*&!\x00', &(0x7f00000000c0)="541f4ce58b2ebdffa25dab", 0x1) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000380)={'wlan1\x00'}) syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000040), r0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x80000008003) mmap$auto(0x20000, 0x4000000002000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x10b842, 0x0) read$auto(0x3, 0x0, 0x18) r3 = socket(0x15, 0x5, 0x0) setsockopt$auto_SO_BUSY_POLL_BUDGET(r3, 0x1, 0x46, 0x0, 0x94) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r5, 0x0, 0x20) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x941683, 0x0) 4.457126495s ago: executing program 1 (id=815): socket(0x9, 0x5, 0x8) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000040), 0x8300, 0x0) ioctl$auto_RTC_PIE_ON(r0, 0x7005, 0x0) readv$auto(r0, &(0x7f00000004c0)={0x0, 0x4}, 0x5) r1 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/block/nbd5/sched/owned_by_driver\x00', 0x2000, 0x0) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r1, &(0x7f0000000040)=""/163, 0xa3) mmap$auto(0x0, 0x3b1e, 0xdf, 0x9b72, 0x2, 0x8000) r2 = io_uring_setup$auto(0x6, 0x0) fcntl$auto_F_SET_RW_HINT(r2, 0x40c, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x66) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x8000000000000, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000000000008000) madvise$auto(0x6, 0x40a7a9, 0x1) close_range$auto(0x2, 0x8, 0x0) 4.456501085s ago: executing program 3 (id=816): open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) rseq$auto(&(0x7f0000000080)={0x9, 0x8, 0x0, 0x7, 0xffffffff, 0x2, "24229ba6405fe4fc8b79b54d7e17"}, 0x7ffd, 0xfffffff4, 0x6) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) open(0x0, 0xeee00, 0x31) mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) open(0x0, 0x1e1401, 0xe5) r0 = gettid() rt_sigtimedwait$auto(&(0x7f0000000000)={0x86e}, 0x0, 0x0, 0x8) tkill$auto(r0, 0x7) write$auto(0x3, 0x0, 0x100082) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) mmap$auto(0x0, 0xc, 0xbc5, 0x13, 0x3, 0x8000) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) clone$auto(0x8001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) r1 = socket(0xa, 0x2, 0x73) getsockname$auto(r1, 0x0, &(0x7f0000000280)=0xaea) mlockall$auto(0x7) mmap$auto(0x0, 0x200004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) memfd_create$auto(&(0x7f0000000000)='A\x00\x00\x00\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\f\x00\x00\v\x00E\xdb\x81\xd9\xd8\xe640\xc6\xa4Sr\x82\xcc\"K\xe1IIT\x00\x00\x00', 0xe) rseq$auto(0x0, 0x8000, 0x0, 0x6) finit_module$auto(0x3, 0xfffffffffffffffe, 0x400000000004) sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x31df4f184fd6d27d}, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008) socket(0x29, 0x2, 0x0) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) 4.455634331s ago: executing program 0 (id=817): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) ioctl$auto(r0, 0x5514, 0x1) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/fail-nth\x00', 0x10000, 0x0) capget$auto(0x0, 0xfffffffffffffffe) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x3b72, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/zram0/mem_limit\x00', 0x183841, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x200000000000b, 0xdd, 0xeb1, r1, 0x30c7) sysfs$auto(0x2, 0x9, 0x0) fsopen$auto(0x0, 0x1) io_uring_setup$auto(0x1, 0x0) socket(0x11, 0x80003, 0x300) unshare$auto(0x40000080) r2 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000440), 0x20100, 0x0) ioctl$auto_LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) r3 = socket(0x11, 0x3, 0x6) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'}) sendmmsg$auto(r3, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000040), 0x10}, 0x2, &(0x7f0000000140), 0x7, 0x1000}, 0x5}, 0x2, 0x101) 3.903462936s ago: executing program 1 (id=818): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/vhci_hcd.7/power/runtime_active_time\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x8000) 3.730021199s ago: executing program 2 (id=819): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) r1 = io_uring_setup$auto(0x8, &(0x7f0000000140)={0x3ff, 0x2, 0x9, 0x10001, 0xc, 0xc05, 0xffffffffffffffff, [0x7fd, 0x1001, 0x8], {0x9, 0x4, 0x8, 0x0, 0x420, 0x1001, 0x3fdc, 0x3, 0x5}, {0xa, 0x140, 0x54ed, 0x0, 0x101, 0xff, 0x7, 0xa, 0x100000001}}) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000) r2 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r2, 0xffffffffffdffe00, &(0x7f0000000140)) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x80, 0xb}, 0x800009}, 0x5, 0x20000000) sendmsg$auto_NL80211_CMD_DISASSOCIATE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x60}, 0x1, 0x0, 0x0, 0x54}, 0x1) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) read$auto(0x3, 0x0, 0xfdef) write$auto(0x3, 0x0, 0xfffffdef) openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) statmount$auto(0x0, &(0x7f0000000400)={0x8, 0x0, 0x9, 0x3, 0x2c, 0x940, 0x1ffde, 0x3, 0x6, 0x2, 0x9, 0x5, 0x2, 0x2, 0xb0, 0xb, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9]}, 0x1fe, 0x40081) r3 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0) pread64$auto(r3, 0x0, 0x59, 0x7) read$auto_mon_fops_text_t_mon_text(r3, 0x0, 0x0) sendfile$auto(0xffffffffffffffff, r2, 0x0, 0x200000cbd8) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x9, 0x3ff57697, 0x9b72, 0x2, 0x8000000000008000) r4 = gettid() kill$auto(r4, 0x11) sendmsg$auto_TIPC_NL_LINK_SET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000ac0)=ANY=[], 0x19dc}}, 0x20000000) connect$auto(0x3, 0x0, 0x54) unshare$auto(0x40000080) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) 3.529243906s ago: executing program 1 (id=820): mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x2000040080000006, 0xc) r0 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) write$auto_proc_mem_operations_base(r0, &(0x7f0000001680)="a7", 0x80000) 3.131972043s ago: executing program 0 (id=821): mmap$auto(0x0, 0x2000d, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000640)='/dev/binderfs/binder0\x00', 0x22800, 0x0) ioctl$auto_BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000680)="5c06707a7e7e92c1fbdba0f568ff01dd43291dba650f887e1f5ab02ecee46deeba") r1 = socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast1}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) sendmsg$auto_TIPC_NL_ADDR_LEGACY_GET(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000001200)={0x14, 0x0, 0x100, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x890}, 0x0) select$auto(0x4, 0x0, &(0x7f0000000080)={[0x209c, 0xe9e, 0x7, 0x5, 0x1000, 0x100000001, 0x8, 0xf, 0x1, 0x6, 0x3, 0x8000000d59, 0x101, 0xff, 0x3, 0x8007ffff]}, 0x0, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) close_range$auto(0x0, 0xffffffffffffffff, 0x2) r2 = socket(0x2, 0x1, 0x106) getsockopt$auto(r2, 0x11c, 0x3, 0xfffffffffffffffe, 0xfffffffffffffffd) socket(0xa, 0x2, 0x3a) socket(0x18, 0x5, 0x1) io_uring_setup$auto(0x1, 0x0) io_uring_register$auto(0x2, 0x2, &(0x7f0000000040), 0x86) 3.106596756s ago: executing program 1 (id=822): r0 = epoll_create$auto(0x5) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_DEL_RADIO(r1, &(0x7f0000001a00)={0x0, 0x0, &(0x7f00000019c0)={&(0x7f0000000080)={0x1c, r2, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@HWSIM_ATTR_RADIO_ID={0x8, 0xa, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000080}, 0x4000010) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000001340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000001300)={&(0x7f0000000140)={0x11c0, r2, 0x10, 0x70bd2a, 0x25dfdbfd, {}, [@HWSIM_ATTR_FREQ={0x8, 0x13, 0x6}, @HWSIM_ATTR_COOKIE={0xc, 0x8, 0x4}, @HWSIM_ATTR_FRAME={0x762, 0x3, "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"}, @HWSIM_ATTR_PMSR_SUPPORT={0x18, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_REPORT_AP_TSF={0x4}, @NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x7}, @NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR={0x4}, @NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR={0x4}]}, @HWSIM_ATTR_PMSR_RESULT={0x924, 0x1c, 0x0, 0x1, [@NL80211_PMSR_ATTR_PEERS={0x920, 0x5, 0x0, 0x1, [{0x2a0, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xf1, 0x1, "908bb1fb49adee777bdd855ac25e02ad2c6e2472e3f0d9ce4029a6a76d613aa1f8ff6ab3cc885a7d9a628fc0ddd86833f274bb6ef9715c45d077d47a0fa8ceed5685cd260207c039bd1f63a9602633f9280ac3a73311c70f0478661a3a3ddec607599ed63318c7adbeddcda7e623e5666e2a9aa899d5cce2c299850956f06b3fb2c6a72a162a27c0b81c50586a2e8b2d68276813fccdf0b5bb080eadaeafccb2d67d3801d1a5a6fc2e48214dc7401236a3a9b6681960d2a8c9fb9f3b5bdff5a5336d636e2828a869015a0843a3e25e54f308abbc22a949caaaa05f3b92d2d04996fb197aa7366386b758c5d9cb"}, @NL80211_PMSR_PEER_ATTR_ADDR={0xfe, 0x1, "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"}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa8, 0x1, "bd0e71fe77728fa7a6dc5908c6799a78ea348baae56e01ff6b26b0fcd65c649b6730b62254b799d210e9e665b29b783d8c636858f86b375755519f9696bfe4588404f7738ce4826ce457ca40571c131d25d673d34fbcd019ce4668383592c88cb7d2cff626b85cd360dc885abcfe59d52bd479302e26dc7d28d1aa34a7cd501a51e1aef0a792fdf011b51cc54e19341c8db0dfd5ff42844d935dadabb18b52407f2479c3"}]}, {0x41c, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_RESP={0x314, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x7}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_DATA={0x2e0, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0x1}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8, 0x1, 0x6d26d557}, @NL80211_PMSR_FTM_RESP_ATTR_LCI={0x6, 0x13, '-#'}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x14, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_BW={0x5}, @HWSIM_RATE_INFO_ATTR_HE_DCM={0x5, 0x7, 0xf4}]}]}, @NL80211_PMSR_TYPE_FTM={0xb8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_TX_RATE={0xc, 0xb, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_HE_DCM={0x5, 0x7, 0xf}]}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8, 0x9, 0xfffffe01}, @NL80211_PMSR_FTM_RESP_ATTR_TX_RATE={0x24, 0xb, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_LEGACY={0x6, 0x3, 0x3ff}, @HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0xed}, @HWSIM_RATE_INFO_ATTR_LEGACY={0x6}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x45}]}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_AVG={0xc, 0x10, 0x5}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0xfffffffffffffffb}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x6}, @NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME={0x5, 0x5, 0x4}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_AVG={0xc, 0x10, 0x3c}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0x4}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x3c, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_EHT_GI={0x5, 0xa, 0x45}, @HWSIM_RATE_INFO_ATTR_HE_DCM={0x5, 0x7, 0x8}, @HWSIM_RATE_INFO_ATTR_LEGACY={0x6, 0x3, 0x3ff}, @HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0xa}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x5}, @HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH={0x5}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0xd5}]}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x8c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_TX_RATE={0x2c, 0xb, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_LEGACY={0x6, 0x3, 0x4}, @HWSIM_RATE_INFO_ATTR_EHT_GI={0x5, 0xa, 0x6}, @HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0xf4}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x7}, @HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0x72}]}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0xc, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH={0x5, 0x9, 0x33}]}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8, 0x1, 0x5}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0xc}, @NL80211_PMSR_FTM_RESP_ATTR_LCI={0x1b, 0x13, '/sys/kernel/debug/gpio\x00'}, @NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME={0x5, 0x5, 0xdb}, @NL80211_PMSR_FTM_RESP_ATTR_LCI={0x7, 0x13, '))/'}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_INDEX={0x6, 0x2, 0xf}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x5c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS={0x8, 0x3, 0x19}, @NL80211_PMSR_FTM_RESP_ATTR_LCI={0x1b, 0x13, '/sys/kernel/debug/gpio\x00'}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0xc}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x1c, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0x7f}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x10}, @HWSIM_RATE_INFO_ATTR_EHT_GI={0x5, 0xa, 0x50}]}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x74, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP={0x5, 0x6, 0x4}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_AVG={0xc, 0x10, 0xfff}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_INDEX={0x6, 0x2, 0x81}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x3c, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_HE_DCM={0x5, 0x7, 0xb4}, @HWSIM_RATE_INFO_ATTR_HE_GI={0x5}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x6a}, @HWSIM_RATE_INFO_ATTR_HE_DCM={0x5, 0x7, 0x1}, @HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC={0x5, 0x8, 0xb}, @HWSIM_RATE_INFO_ATTR_LEGACY={0x6, 0x3, 0x6}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x3}]}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0xffffffffffffffff}, @NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC={0x4}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_INDEX={0x6, 0x2, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_LCI={0xa, 0x13, '-{-\'*{'}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP={0x5, 0x6, 0x1}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_INDEX={0x6, 0x2, 0xfff}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0xc, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_EHT_GI={0x5, 0xa, 0x2}]}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0xfd}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8, 0x9, 0x8}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0x2}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0x3}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8, 0x1, 0xd}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD={0x8}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8, 0x9, 0x40}]}]}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x3}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x9}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0x101, 0x1, "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"}]}, {0x260, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_RESP={0x48, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x575}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x3}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0xffffffff}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x71}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x9}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0x83, 0x1, "1f332b8c9cc1c25f5df29359db932f8334afe8fc99f020a1773e60e784d3617bd739f595b0c43396376a4c9ffc90afd76621a9f714f845037abbcd93c7c39b4102bf396a4c7f42fd95422ce648149100b65b3ca763dc02c1de3ec4c3ca235219a4edeac7cbc755b6ada229b475735a70e5626f28085aa5a5093591ce586a86"}, @NL80211_PMSR_PEER_ATTR_RESP={0x190, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x8000}, @NL80211_PMSR_RESP_ATTR_DATA={0x168, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0x6}]}, @NL80211_PMSR_TYPE_FTM={0x58, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x784}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8, 0x1, 0x1}, @NL80211_PMSR_FTM_RESP_ATTR_TX_RATE={0x34, 0xb, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH={0x5, 0x9, 0x9}, @HWSIM_RATE_INFO_ATTR_FLAGS={0x5, 0x1, 0x5}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x4}, @HWSIM_RATE_INFO_ATTR_FLAGS={0x5, 0x1, 0xb}, @HWSIM_RATE_INFO_ATTR_EHT_GI={0x5, 0xa, 0x7}, @HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0xff}]}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0x5}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME={0x5, 0x5, 0x29}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0xf28}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8, 0x1, 0x10}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS={0x8, 0x3, 0x77ee}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x8e04}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_SUCCESSES={0x8, 0x4, 0x2}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x4}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0xfffffffffffffffb}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0x8000000000000000}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0x6}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_INDEX={0x6, 0x2, 0x5991}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0xb}, @NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME={0x5}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS={0x8, 0x3, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x5c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0x401}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_SUCCESSES={0x8, 0x4, 0xb}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x3c, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x4}, @HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH={0x5}, @HWSIM_RATE_INFO_ATTR_EHT_GI={0x5, 0xa, 0xa}, @HWSIM_RATE_INFO_ATTR_LEGACY={0x6, 0x3, 0x3}, @HWSIM_RATE_INFO_ATTR_MCS={0x5, 0x2, 0xb}, @HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC={0x5, 0x8, 0x3}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x4}]}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0x70}]}]}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0xffffffff80000000}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x5}]}]}]}]}, @HWSIM_ATTR_RADIO_ID={0x8, 0xa, 0x6}, @HWSIM_ATTR_CIPHER_SUPPORT={0xdf, 0x18, "f00fd41611f78fece2584f4e6fb2959c3e7961064b1eb94026d03dad4c6b0d6f71041ec40729229316c5b5737fe538454e27b4994f27eac8529a86d1fa6d217f38c4d25e0534e7d9a66e4c782918057503a081ab77d8372ed92c025a85fa6a3f8f8074450403fc5ce37828b0b98d7f873ac126ab8cc6667d9430aca5684173535b96674a9a6fe3be79a1b8aeaf935c57eb42440958103a881644630fba9dbda19d59294a044a6e07b723b9700f204f4ecc5c964bea11557e7d0c312b820756d81efb4b286128523ea86b886a16f54676da2d29870ddae98c5b0521"}, @HWSIM_ATTR_TX_INFO={0x6, 0x7, [{0xb, 0x2}]}, @HWSIM_ATTR_RADIO_NAME={0x8, 0x11, '$.]}'}]}, 0x11c0}, 0x1, 0x0, 0x0, 0x4015}, 0x4000004) r3 = openat$auto_gpiolib_fops_(0xffffffffffffff9c, &(0x7f0000001380), 0x20000, 0x0) preadv$auto(r3, &(0x7f0000002fc0)={0x0, 0x8}, 0x2, 0x5, 0x19) preadv$auto(r3, &(0x7f00000000c0)={&(0x7f0000000000)="2e97f14f7a14414f17fbebb30d94c7cd19a4185d98e7529aa771d27199f9cfc85f0f5740f9865114469ffb39b50c90e908e2da696e806034f340b7ea5e502670403dd9e38f4c106cc5cc24abfcfc8e46daf5121d281dcce20dd02a88347945c5c9af054cf434e8339f8b9fad492e9e57b18f7159efcda2f9492f16c7dcbe61ae3d807776430cb12251ba5c2af82bb31ed45ae28384f0d383a46b919a42f9a4a6d6c4af578297ac325428135e201d939d3a2047a0aec7a94791", 0x1}, 0x1, 0xd, 0x34b) 2.85539858s ago: executing program 3 (id=823): openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x28641, 0x0) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) socket(0x1e, 0x1, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/mac80211_hwsim/hwsim1/ieee80211/phy1/rfkill3/name\x00', 0x8d40, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000040)=""/203, 0xcb) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x2, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, 0x0, 0x28082, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1cb842, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) dup2$auto(0x5, 0x4) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="100026bd7000fedbdf2503000000080004000800000006000700008000000a0001001b1d059ad4c700800a000500000000000000000008000400ff000000110004001000000008000300faffffff08000400b7000000"], 0x5c}, 0x1, 0x0, 0x0, 0x40080}, 0x40091) r2 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0xa, 0xb5, 0x10, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051a940806ec05be276cfc83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0xe5, 0x3}, 0x10) bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex=r3, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) 2.694536977s ago: executing program 0 (id=824): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000600)='/proc/sys/net/ipv4/vs/est_cpulist\x00', 0x2, 0x0) r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000440)='/sys/kernel/security/tomoyo/audit\x00', 0x0, 0x0) read$auto(r1, &(0x7f0000000480)='{:\x00', 0xe4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_XFS_IOC_READLINK_BY_HANDLE(0xffffffffffffffff, 0xc038586c, &(0x7f0000000340)={r0, &(0x7f0000000180)="e1792152f263211e7b9293522f987513a2bce0", 0xffffffff, &(0x7f00000001c0)="eb5a018663d3bf014890ec6fa5b91f59685472646c1f5caefcf77556d23366e1e0c25a5e3e064c8d01bc8ec085ab233e71ad1a3f27c3cdc277ae671f5a00f732d0e6189bc1e9da844630", 0x5, &(0x7f0000000240)="e67ae121e724b54e64c603ea0d7e0aaa8afd6bcaead61d7c9f03f1c917e7373b1a4472b9751de58ccf54e70df7223c519dae42db680fb980c7f32cb2613901ce05a9726146a890a2aff3ad73bbcb12ae8c21a52c13a94c5cb5533f7ea10e92ff7684adaa29ce45a4a6dbc9d29ef5bf9d4c7773f1be2126a0bb64a0ee4f9fe1614c638286a8bd6ef302a4574144411963b69f7048b6ff3bf1b5234bb62c98c72015f40354638bc37a4e97e982f83125a8547769fd914421a1", &(0x7f0000000300)=0xfefffffb}) fsconfig$auto_XFS_DAX_ALWAYS(r2, 0xffffff25, &(0x7f0000000080)='+[*[\'*&!\x00', &(0x7f00000000c0)="541f4ce58b2ebdffa25dab", 0x1) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000380)={'wlan1\x00'}) syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000040), r0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x80000008003) mmap$auto(0x20000, 0x4000000002000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x10b842, 0x0) read$auto(0x3, 0x0, 0x18) r3 = socket(0x15, 0x5, 0x0) setsockopt$auto_SO_BUSY_POLL_BUDGET(r3, 0x1, 0x46, 0x0, 0x94) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r5, 0x0, 0x20) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x941683, 0x0) 2.419694007s ago: executing program 0 (id=825): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) socket(0x1a, 0x1, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000) close_range$auto(0x2, 0x8000, 0x0) r1 = io_uring_setup$auto(0x6, 0x0) socket(0x10, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) userfaultfd$auto(0x1) socketpair$auto(0x1, 0x1, 0x4, 0x0) socket(0xa, 0x1, 0x87) socket(0xa, 0x3, 0x73) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socket(0x2, 0x801, 0x106) io_uring_setup$auto(0x6, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket(0xa, 0x2, 0x3a) io_uring_setup$auto(0x6, 0x0) r2 = socket(0xa, 0x2, 0x88) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r2, @new_prog_fd=0x4, 0x4, @old_map_fd=r1}, 0xa3) bpf$auto(0x3, &(0x7f0000000040)=@query={@target_ifindex, 0x4, 0x7, 0x9, 0x7f, @prog_cnt=0x4, 0x0, 0x80000000, 0xc, 0xb, 0x5}, 0x7) mmap$auto(0x5, 0x5, 0xde, 0x16, r0, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) sendmsg$auto_NL80211_CMD_ADD_TX_TS(0xffffffffffffffff, 0x0, 0x0) clone$auto(0x81000005, 0x6, 0xfffffffffffffffd, 0xffffffffffffffff, 0x80000001) move_pages$auto(0x0, 0xd0, 0x0, 0x0, 0x0, 0x2) 2.108407629s ago: executing program 1 (id=826): openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy0/reset\x00', 0x82, 0x0) setreuid$auto(0x81, 0xadaa) mmap$auto(0x0, 0x2020009, 0x3, 0x15, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x73, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socketpair$auto(0x1, 0x1, 0xf, 0x0) socket(0x2, 0x1, 0x0) openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, 0x0, 0x237, 0x0) mmap$auto(0x0, 0x6, 0x4000000000df, 0xeb1, 0x400, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(0x3, 0x0, 0x80000080000005) write$auto(0x1, 0x0, 0x80000000) bpf$auto(0x0, &(0x7f00000003c0)=@task_fd_query={0x0, r0, 0xd, 0x89, 0x2, 0x4, r0, 0x81, 0x9}, 0x6f4) read$auto(0x3, 0x0, 0x80) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) readv$auto(r0, 0x0, 0x401) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) ioctl$auto_SNDCTL_DSP_GETOSPACE(0xffffffffffffffff, 0x8010500c, &(0x7f0000004040)) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x100000000002, 0x783, 0x3, 0x8000000008011, r1, 0x40) write$auto(0x3, 0x0, 0xfffffdef) write$auto(0x3, 0x0, 0xfffffdef) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2b, 0x1, 0x1) r2 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r2, &(0x7f0000000080)={{0x0, 0xf, 0x0, 0x5, 0x0, 0x1a3, 0x3}, 0x5b3}, 0x8, 0x81) 1.981465974s ago: executing program 2 (id=827): socket(0xa, 0x3, 0xf2) mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0x9, 0x8000) ioctl$auto(0x3, 0x89e1, 0x91) socket(0x2c, 0x1, 0xffffffff) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) mmap$auto(0x0, 0xb, 0x10000, 0x16, 0x401, 0x8) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioperm$auto(0x3, 0x8001, 0x2000000000000149) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) kexec_load$auto(0xff, 0x2, 0x0, 0x4) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x89\x06s\x1cJ\x99\x00:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x10, 0x6) ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000840)) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) 1.789417753s ago: executing program 1 (id=828): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 32) sysfs$auto(0x2, 0x10, 0x0) (async, rerun: 32) r0 = socket(0xa, 0x2, 0x0) (async) r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f00000000c0)={{0x0, 0x2, 0x200800, 0xffffffff, 0xfffffffb}, "0dd7fd004929347eeeccdf0732f77b1f6de0d6d51768a257a97ca5e9ca6310ea"}) ioctl$auto_SNDRV_TIMER_IOCTL_STATUS32(r1, 0x80585414, &(0x7f0000000000)={0x43, 0x7, 0x9, 0xabe, 0x4, 0xc, "0924ca419dc4d8e4e1226f5fb4d8c264fe2de51f1c10b355c2333c335b0c767b2f4fcc6608d94bdba4a45745e84fbc35d2758e98981cb0abe163c77fa96bb62a"}) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/pipe-max-size\x00', 0x382, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='^\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x8841}, 0x40000) (async) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x17, 0x2, 0x8000) r3 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) (async) sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1c, 0xb}, 0x800009}, 0x3, 0x20000000) (async, rerun: 64) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) (async, rerun: 64) write$auto(r3, 0x0, 0xfffffde9) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000340), 0x108800, 0x0) (async, rerun: 32) r5 = socket(0x10, 0x2, 0x0) (rerun: 32) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='^\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) (async) sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) (async, rerun: 32) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) (async, rerun: 32) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x100, 0x0) io_uring_setup$auto(0xa, 0x0) (async, rerun: 64) read$auto(r2, 0x0, 0x10001) (async, rerun: 64) setsockopt$auto(r0, 0x29, 0x30, 0x0, 0xd393) (async) r6 = fsopen$auto(0x0, 0x1) fsconfig$auto(r6, 0x8, 0x0, 0x0, 0x0) 477.928745ms ago: executing program 0 (id=829): ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'syz_tun\x00'}) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) mmap$auto(0x0, 0x2020409, 0xa, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/vidtv.0/i2c-0/new_device\x00', 0x2001, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card1/pcm0p/sub7/info\x00', 0x40000, 0x0) r2 = socket(0x23, 0x80805, 0x0) getsockopt$auto(r2, 0x40000000113, 0x3, 0xfffffffffffffffc, 0x0) read$auto(r1, 0x0, 0x100000000) rseq$auto(&(0x7f0000000300)={0x3, 0x401, 0xfffffffffffffffc, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) unshare$auto(0x8000000) semtimedop$auto(0x7, &(0x7f0000000200)={0x3, 0x6, 0x1000}, 0x3, 0x0) unshare$auto(0x8000000) 339.524782ms ago: executing program 2 (id=830): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kvm_amd/parameters/pause_filter_thresh\x00', 0x200, 0x0) write$auto_ocfs2_control_fops_stack_user(0xffffffffffffffff, 0x0, 0x0) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/input/event2\x00', 0x40880, 0x0) ioctl$auto_EVIOCSKEYCODE(r0, 0x40084504, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r1, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r1, 0x0, 0x98c7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) socket(0x10, 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r3, 0xc0045516, &(0x7f0000000040)=0x5) r4 = socket(0xa, 0x5, 0x84) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00'}) read$auto(0x3, 0x0, 0x80) r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r5, 0xc1105517, 0x0) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x20000, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xd, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) r7 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) newfstatat$auto(r7, 0x0, 0x0, 0x1000) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) setsockopt$auto(0x3, 0x6d, 0x7, 0xffffffffffffffff, 0x3) mmap$auto(0xffffffffffffffff, 0x6, 0xe3, 0x18, r6, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) 339.361975ms ago: executing program 3 (id=831): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) ioctl$auto(r0, 0x5514, 0x1) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/fail-nth\x00', 0x10000, 0x0) r1 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x3b72, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/zram0/mem_limit\x00', 0x183841, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x200000000000b, 0xdd, 0xeb1, r2, 0x30c7) sysfs$auto(0x2, 0x9, 0x0) fsopen$auto(0x0, 0x1) io_uring_setup$auto(0x1, 0x0) socket(0x11, 0x80003, 0x300) unshare$auto(0x40000080) r3 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000440), 0x20100, 0x0) ioctl$auto_LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) r4 = socket(0x11, 0x3, 0x6) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'}) sendmmsg$auto(r4, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000040), 0x10}, 0x2, &(0x7f0000000140), 0x7, 0x1000}, 0x5}, 0x2, 0x101) 0s ago: executing program 0 (id=832): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_minstrel_ht_stat_csv_fops_rc80211_minstrel_ht_debugfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy4/netdev:wlan1/stations/08:02:11:00:00:00/rc_stats_csv\x00', 0x101000, 0x0) r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)) getdents64$auto(r1, &(0x7f0000000000)={0x1e, 0x459b, 0x0, 0xf8}, 0x18) bpf$auto_BPF_OBJ_GET_INFO_BY_FD(0xf, &(0x7f0000000140)=@enable_stats={0xfa2}, 0x7fffffff) splice$auto(r0, &(0x7f00000000c0)=0x81, r1, &(0x7f0000000100)=0x1, 0x8, 0x1) r2 = socket$nl_generic(0x10, 0x3, 0x10) fcntl$auto(r2, 0x8, 0x1) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/addr_prefs\x00', 0x102, 0x0) writev$auto(r3, &(0x7f0000000080)={&(0x7f0000000040), 0x6}, 0x3) r4 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) mmap$auto(0xfffffffffffffff8, 0xef3f, 0x0, 0x17, r4, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r5, 0x4b47, 0x1) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/usbmon8\x00', 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r6 = socket(0x2, 0x5, 0x0) connect$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x0, @rand_addr=0xfffffffe}, 0x55) sendto$auto(0x3, 0x0, 0x2000f, 0x13f, &(0x7f0000000000)=@in={0x2, 0x4e22, @loopback}, 0x1c) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000700), 0xffffffffffffffff) sendmsg$auto_WG_CMD_SET_DEVICE(r7, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000c40)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="0000000000000006df2501000000240003007729ecac5e9239d0c4058eac0405576c2cd59ffc84b3098afa677190f34d1790"], 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'veth1_macvtap\x00'}) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000280)={'dvmrp0\x00'}) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x0, 0x21eb, 0x7ff, 0x3, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3) fcntl$auto(r2, 0x10, 0x2) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) kernel console output (not intermixed with test programs): 322][ T6987] name failslab, interval 1, probability 0, space 0, times 0 [ 180.091201][ T6987] CPU: 0 UID: 0 PID: 6987 Comm: syz.0.224 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 180.091243][ T6987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 180.091270][ T6987] Call Trace: [ 180.091279][ T6987] [ 180.091291][ T6987] dump_stack_lvl+0x16c/0x1f0 [ 180.091342][ T6987] should_fail_ex+0x512/0x640 [ 180.091385][ T6987] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 180.091425][ T6987] should_failslab+0xc2/0x120 [ 180.091463][ T6987] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 180.091499][ T6987] ? __pmd_alloc+0xc3/0x870 [ 180.091551][ T6987] __pmd_alloc+0xc3/0x870 [ 180.091593][ T6987] ? find_held_lock+0x2b/0x80 [ 180.091626][ T6987] __handle_mm_fault+0x948/0x2a40 [ 180.091669][ T6987] ? __pfx___handle_mm_fault+0x10/0x10 [ 180.091725][ T6987] ? find_vma+0xbf/0x140 [ 180.091765][ T6987] ? __pfx_find_vma+0x10/0x10 [ 180.091813][ T6987] handle_mm_fault+0x3fe/0xad0 [ 180.091852][ T6987] do_user_addr_fault+0x7a6/0x1370 [ 180.091888][ T6987] ? rcu_is_watching+0x12/0xc0 [ 180.091922][ T6987] exc_page_fault+0x5c/0xc0 [ 180.091964][ T6987] asm_exc_page_fault+0x26/0x30 [ 180.091994][ T6987] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 180.092029][ T6987] Code: c4 10 c3 cc cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 [ 180.092059][ T6987] RSP: 0018:ffffc90018d6f9d0 EFLAGS: 00050202 [ 180.092084][ T6987] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000007 [ 180.092102][ T6987] RDX: fffff520031adf4c RSI: 0000000000000000 RDI: ffffc90018d6fa58 [ 180.092121][ T6987] RBP: 0000000000000007 R08: 0000000000000001 R09: fffff520031adf4b [ 180.092140][ T6987] R10: ffffc90018d6fa5e R11: 0000000000000000 R12: 0000000000000000 [ 180.092159][ T6987] R13: ffffc90018d6fa58 R14: 1ffff920031adf45 R15: ffffc90018d6fd8c [ 180.092201][ T6987] _copy_from_user+0x98/0xd0 [ 180.092257][ T6987] ____sys_sendmsg+0x607/0xc70 [ 180.092304][ T6987] ? __pfx_____sys_sendmsg+0x10/0x10 [ 180.092352][ T6987] ? __pfx__kstrtoull+0x10/0x10 [ 180.092396][ T6987] ___sys_sendmsg+0x134/0x1d0 [ 180.092430][ T6987] ? __pfx____sys_sendmsg+0x10/0x10 [ 180.092484][ T6987] ? find_held_lock+0x2b/0x80 [ 180.092540][ T6987] __sys_sendmmsg+0x200/0x420 [ 180.092579][ T6987] ? __pfx___sys_sendmmsg+0x10/0x10 [ 180.092627][ T6987] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 180.092688][ T6987] ? fput+0x70/0xf0 [ 180.092723][ T6987] ? ksys_write+0x1b9/0x240 [ 180.092751][ T6987] ? __pfx_ksys_write+0x10/0x10 [ 180.092777][ T6987] ? rcu_is_watching+0x12/0xc0 [ 180.092810][ T6987] __x64_sys_sendmmsg+0x9c/0x100 [ 180.092843][ T6987] ? lockdep_hardirqs_on+0x7c/0x110 [ 180.092882][ T6987] do_syscall_64+0xcd/0x230 [ 180.092928][ T6987] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.092957][ T6987] RIP: 0033:0x7fa036f8e969 [ 180.092980][ T6987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 180.093008][ T6987] RSP: 002b:00007fa037dbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 180.093036][ T6987] RAX: ffffffffffffffda RBX: 00007fa0371b5fa0 RCX: 00007fa036f8e969 [ 180.093055][ T6987] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 180.093072][ T6987] RBP: 00007fa037dbc090 R08: 0000000000000000 R09: 0000000000000000 [ 180.093089][ T6987] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 180.093106][ T6987] R13: 0000000000000000 R14: 00007fa0371b5fa0 R15: 00007ffc194a1608 [ 180.093144][ T6987] [ 181.490856][ T7009] FAULT_INJECTION: forcing a failure. [ 181.490856][ T7009] name failslab, interval 1, probability 0, space 0, times 0 [ 181.521269][ T7009] CPU: 0 UID: 0 PID: 7009 Comm: syz.0.233 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 181.521312][ T7009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 181.521334][ T7009] Call Trace: [ 181.521345][ T7009] [ 181.521356][ T7009] dump_stack_lvl+0x16c/0x1f0 [ 181.521473][ T7009] should_fail_ex+0x512/0x640 [ 181.521516][ T7009] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 181.521555][ T7009] should_failslab+0xc2/0x120 [ 181.521592][ T7009] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 181.521625][ T7009] ? __proc_create+0xc3/0x8c0 [ 181.521659][ T7009] ? __proc_create+0x2ce/0x8c0 [ 181.521697][ T7009] __proc_create+0x2ce/0x8c0 [ 181.521732][ T7009] ? __pfx___proc_create+0x10/0x10 [ 181.521764][ T7009] ? _raw_write_unlock+0x28/0x50 [ 181.521804][ T7009] ? proc_register+0x314/0x5f0 [ 181.521849][ T7009] _proc_mkdir+0xb9/0x200 [ 181.521884][ T7009] ? __pfx__proc_mkdir+0x10/0x10 [ 181.521930][ T7009] ? __pfx_netfilter_net_init+0x10/0x10 [ 181.521960][ T7009] netfilter_net_init+0x37b/0x4b0 [ 181.521988][ T7009] ? sysctl_net_init+0x27/0x30 [ 181.522047][ T7009] ops_init+0x1df/0x5f0 [ 181.522094][ T7009] setup_net+0x21e/0x850 [ 181.522136][ T7009] ? __pfx_setup_net+0x10/0x10 [ 181.522182][ T7009] ? lockdep_init_map_type+0x5c/0x280 [ 181.522227][ T7009] ? __pfx_down_read_killable+0x10/0x10 [ 181.522282][ T7009] ? debug_mutex_init+0x37/0x70 [ 181.522317][ T7009] copy_net_ns+0x2a6/0x5f0 [ 181.522363][ T7009] create_new_namespaces+0x3ea/0xad0 [ 181.522409][ T7009] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 181.522450][ T7009] ksys_unshare+0x45b/0xa40 [ 181.522495][ T7009] ? __pfx_ksys_unshare+0x10/0x10 [ 181.522538][ T7009] ? ksys_write+0x1b9/0x240 [ 181.522568][ T7009] ? rcu_is_watching+0x12/0xc0 [ 181.522608][ T7009] __x64_sys_unshare+0x31/0x40 [ 181.522651][ T7009] do_syscall_64+0xcd/0x230 [ 181.522701][ T7009] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.522734][ T7009] RIP: 0033:0x7fa036f8e969 [ 181.522760][ T7009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 181.522789][ T7009] RSP: 002b:00007fa037dbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 181.522829][ T7009] RAX: ffffffffffffffda RBX: 00007fa0371b5fa0 RCX: 00007fa036f8e969 [ 181.522850][ T7009] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 181.522869][ T7009] RBP: 00007fa037dbc090 R08: 0000000000000000 R09: 0000000000000000 [ 181.522887][ T7009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 181.522905][ T7009] R13: 0000000000000000 R14: 00007fa0371b5fa0 R15: 00007ffc194a1608 [ 181.522946][ T7009] [ 181.522958][ T7009] cannot create netfilter proc entry [ 185.122657][ T7073] FAULT_INJECTION: forcing a failure. [ 185.122657][ T7073] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 185.156016][ T7073] CPU: 1 UID: 0 PID: 7073 Comm: syz.2.249 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 185.156056][ T7073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 185.156072][ T7073] Call Trace: [ 185.156081][ T7073] [ 185.156091][ T7073] dump_stack_lvl+0x16c/0x1f0 [ 185.156143][ T7073] should_fail_ex+0x512/0x640 [ 185.156184][ T7073] _copy_to_iter+0x2a4/0x15a0 [ 185.156225][ T7073] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 185.156266][ T7073] ? __pfx__copy_to_iter+0x10/0x10 [ 185.156306][ T7073] ? kernfs_seq_stop+0xcd/0x120 [ 185.156344][ T7073] ? kernfs_put_active+0x86/0xe0 [ 185.156374][ T7073] seq_read_iter+0xcf8/0x12c0 [ 185.156427][ T7073] kernfs_fop_read_iter+0x40f/0x5a0 [ 185.156458][ T7073] ? rw_verify_area+0xcf/0x680 [ 185.156499][ T7073] vfs_read+0x8c8/0xc70 [ 185.156527][ T7073] ? __pfx___mutex_lock+0x10/0x10 [ 185.156562][ T7073] ? __pfx_vfs_read+0x10/0x10 [ 185.156608][ T7073] ksys_read+0x12a/0x240 [ 185.156631][ T7073] ? __pfx_ksys_read+0x10/0x10 [ 185.156652][ T7073] ? rcu_is_watching+0x12/0xc0 [ 185.156685][ T7073] do_syscall_64+0xcd/0x230 [ 185.156724][ T7073] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.156750][ T7073] RIP: 0033:0x7ff3f858e969 [ 185.156771][ T7073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 185.156794][ T7073] RSP: 002b:00007ff3f93f4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 185.156818][ T7073] RAX: ffffffffffffffda RBX: 00007ff3f87b5fa0 RCX: 00007ff3f858e969 [ 185.156834][ T7073] RDX: 0000000000000010 RSI: 0000200000000100 RDI: 0000000000000003 [ 185.156849][ T7073] RBP: 00007ff3f93f4090 R08: 0000000000000000 R09: 0000000000000000 [ 185.156864][ T7073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 185.156879][ T7073] R13: 0000000000000000 R14: 00007ff3f87b5fa0 R15: 00007ffe7cfa8e78 [ 185.156919][ T7073] [ 185.686307][ T7075] syz.2.250 uses obsolete (PF_INET,SOCK_PACKET) [ 185.992790][ T7078] FAULT_INJECTION: forcing a failure. [ 185.992790][ T7078] name failslab, interval 1, probability 0, space 0, times 0 [ 186.057430][ T7078] CPU: 0 UID: 0 PID: 7078 Comm: syz.1.251 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 186.057478][ T7078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 186.057497][ T7078] Call Trace: [ 186.057508][ T7078] [ 186.057520][ T7078] dump_stack_lvl+0x16c/0x1f0 [ 186.057572][ T7078] should_fail_ex+0x512/0x640 [ 186.057624][ T7078] ? __kmalloc_noprof+0xbf/0x510 [ 186.057665][ T7078] ? lsm_blob_alloc+0x68/0x90 [ 186.057712][ T7078] should_failslab+0xc2/0x120 [ 186.057752][ T7078] __kmalloc_noprof+0xd2/0x510 [ 186.057799][ T7078] lsm_blob_alloc+0x68/0x90 [ 186.057861][ T7078] security_sk_alloc+0x30/0x270 [ 186.057898][ T7078] sk_prot_alloc+0xfb/0x2a0 [ 186.057944][ T7078] sk_alloc+0x36/0xc20 [ 186.057978][ T7078] inet6_create+0x381/0x1300 [ 186.058014][ T7078] ? inet6_create+0x7f/0x1300 [ 186.058053][ T7078] __sock_create+0x335/0x8d0 [ 186.058109][ T7078] inet_ctl_sock_create+0x94/0x230 [ 186.058155][ T7078] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 186.058197][ T7078] ? lockdep_init_map_type+0x5c/0x280 [ 186.058241][ T7078] ? do_init_timer+0xc9/0x110 [ 186.058279][ T7078] ? __pfx_sctp_ctrlsock_init+0x10/0x10 [ 186.058325][ T7078] sctp_ctrlsock_init+0x40/0xf0 [ 186.058371][ T7078] ops_init+0x1df/0x5f0 [ 186.058416][ T7078] setup_net+0x21e/0x850 [ 186.058459][ T7078] ? __pfx_setup_net+0x10/0x10 [ 186.058494][ T7078] ? lockdep_init_map_type+0x5c/0x280 [ 186.058536][ T7078] ? __pfx_down_read_killable+0x10/0x10 [ 186.058593][ T7078] ? debug_mutex_init+0x37/0x70 [ 186.058629][ T7078] copy_net_ns+0x2a6/0x5f0 [ 186.058677][ T7078] create_new_namespaces+0x3ea/0xad0 [ 186.058722][ T7078] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 186.058764][ T7078] ksys_unshare+0x45b/0xa40 [ 186.058817][ T7078] ? __pfx_ksys_unshare+0x10/0x10 [ 186.058861][ T7078] ? xfd_validate_state+0x5d/0x180 [ 186.058917][ T7078] ? rcu_is_watching+0x12/0xc0 [ 186.058958][ T7078] __x64_sys_unshare+0x31/0x40 [ 186.059001][ T7078] do_syscall_64+0xcd/0x230 [ 186.059052][ T7078] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 186.059085][ T7078] RIP: 0033:0x7fc68d18e969 [ 186.059111][ T7078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 186.059142][ T7078] RSP: 002b:00007fc68e04a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 186.059173][ T7078] RAX: ffffffffffffffda RBX: 00007fc68d3b5fa0 RCX: 00007fc68d18e969 [ 186.059194][ T7078] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 186.059213][ T7078] RBP: 00007fc68d210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 186.059232][ T7078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 186.059251][ T7078] R13: 0000000000000000 R14: 00007fc68d3b5fa0 R15: 00007ffdf71b9638 [ 186.059305][ T7078] [ 186.063690][ T7075] capability: warning: `syz.2.250' uses 32-bit capabilities (legacy support in use) [ 187.673855][ T7099] FAULT_INJECTION: forcing a failure. [ 187.673855][ T7099] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 187.754695][ T7099] CPU: 0 UID: 0 PID: 7099 Comm: syz.1.256 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 187.754738][ T7099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 187.754755][ T7099] Call Trace: [ 187.754765][ T7099] [ 187.754776][ T7099] dump_stack_lvl+0x16c/0x1f0 [ 187.754824][ T7099] should_fail_ex+0x512/0x640 [ 187.754873][ T7099] _copy_from_iter+0x477/0x15b0 [ 187.754927][ T7099] ? __pfx__copy_from_iter+0x10/0x10 [ 187.754977][ T7099] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 187.755030][ T7099] netlink_sendmsg+0x829/0xdd0 [ 187.755074][ T7099] ? __pfx_netlink_sendmsg+0x10/0x10 [ 187.755129][ T7099] ____sys_sendmsg+0xa95/0xc70 [ 187.755175][ T7099] ? copy_msghdr_from_user+0x10a/0x160 [ 187.755208][ T7099] ? __pfx_____sys_sendmsg+0x10/0x10 [ 187.755270][ T7099] ___sys_sendmsg+0x134/0x1d0 [ 187.755308][ T7099] ? __pfx____sys_sendmsg+0x10/0x10 [ 187.755394][ T7099] __sys_sendmsg+0x16d/0x220 [ 187.755431][ T7099] ? __pfx___sys_sendmsg+0x10/0x10 [ 187.755479][ T7099] ? rcu_is_watching+0x12/0xc0 [ 187.755518][ T7099] do_syscall_64+0xcd/0x230 [ 187.755564][ T7099] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.755595][ T7099] RIP: 0033:0x7fc68d18e969 [ 187.755619][ T7099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 187.755648][ T7099] RSP: 002b:00007fc68e04a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 187.755683][ T7099] RAX: ffffffffffffffda RBX: 00007fc68d3b5fa0 RCX: 00007fc68d18e969 [ 187.755703][ T7099] RDX: 0000000004040010 RSI: 0000200000001b40 RDI: 0000000000000004 [ 187.755721][ T7099] RBP: 00007fc68e04a090 R08: 0000000000000000 R09: 0000000000000000 [ 187.755739][ T7099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 187.755757][ T7099] R13: 0000000000000000 R14: 00007fc68d3b5fa0 R15: 00007ffdf71b9638 [ 187.755797][ T7099] [ 189.309292][ T7125] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 189.315799][ T7125] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 189.722190][ T7129] FAULT_INJECTION: forcing a failure. [ 189.722190][ T7129] name failslab, interval 1, probability 0, space 0, times 0 [ 189.781927][ T7106] kexec: Could not allocate control_code_buffer [ 189.797367][ T7129] CPU: 0 UID: 0 PID: 7129 Comm: syz.2.263 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 189.797410][ T7129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 189.797428][ T7129] Call Trace: [ 189.797438][ T7129] [ 189.797449][ T7129] dump_stack_lvl+0x16c/0x1f0 [ 189.797498][ T7129] should_fail_ex+0x512/0x640 [ 189.797542][ T7129] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 189.797582][ T7129] should_failslab+0xc2/0x120 [ 189.797621][ T7129] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 189.797654][ T7129] ? vma_merge_new_range+0x3f8/0xc10 [ 189.797688][ T7129] ? vm_area_alloc+0x1f/0x160 [ 189.797730][ T7129] vm_area_alloc+0x1f/0x160 [ 189.797773][ T7129] __mmap_region+0xfd0/0x27c0 [ 189.797812][ T7129] ? __pfx___mmap_region+0x10/0x10 [ 189.797844][ T7129] ? bpf_ksym_find+0x124/0x1c0 [ 189.797903][ T7129] ? __kernel_text_address+0xd/0x40 [ 189.797952][ T7129] ? unwind_get_return_address+0x59/0xa0 [ 189.798053][ T7129] ? trace_cap_capable+0x18d/0x200 [ 189.798088][ T7129] ? cap_capable+0xb3/0x250 [ 189.798125][ T7129] mmap_region+0x32b/0x3f0 [ 189.798169][ T7129] do_mmap+0xd8e/0x11b0 [ 189.798222][ T7129] ? __pfx_do_mmap+0x10/0x10 [ 189.798269][ T7129] ? __pfx_down_write_killable+0x10/0x10 [ 189.798327][ T7129] vm_mmap_pgoff+0x281/0x450 [ 189.798381][ T7129] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 189.798433][ T7129] ? __fget_files+0x20e/0x3c0 [ 189.798489][ T7129] ksys_mmap_pgoff+0x32c/0x5c0 [ 189.798534][ T7129] ? __pfx_ksys_write+0x10/0x10 [ 189.798561][ T7129] ? rcu_is_watching+0x12/0xc0 [ 189.798593][ T7129] __x64_sys_mmap+0x125/0x190 [ 189.798628][ T7129] do_syscall_64+0xcd/0x230 [ 189.798676][ T7129] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 189.798708][ T7129] RIP: 0033:0x7ff3f858e969 [ 189.798732][ T7129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 189.798767][ T7129] RSP: 002b:00007ff3f93f4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 189.798796][ T7129] RAX: ffffffffffffffda RBX: 00007ff3f87b5fa0 RCX: 00007ff3f858e969 [ 189.798817][ T7129] RDX: 0000000000000ffb RSI: 0000000000000009 RDI: 0000000000000000 [ 189.798834][ T7129] RBP: 00007ff3f93f4090 R08: 0000000000000003 R09: 0000000000000000 [ 189.798852][ T7129] R10: 0008000000008011 R11: 0000000000000246 R12: 0000000000000001 [ 189.798871][ T7129] R13: 0000000000000000 R14: 00007ff3f87b5fa0 R15: 00007ffe7cfa8e78 [ 189.798911][ T7129] [ 190.062036][ T7131] FAULT_INJECTION: forcing a failure. [ 190.062036][ T7131] name fail_futex, interval 1, probability 0, space 0, times 1 [ 190.075083][ T7131] CPU: 1 UID: 0 PID: 7131 Comm: syz.3.265 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 190.075129][ T7131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 190.075149][ T7131] Call Trace: [ 190.075159][ T7131] [ 190.075171][ T7131] dump_stack_lvl+0x16c/0x1f0 [ 190.075224][ T7131] should_fail_ex+0x512/0x640 [ 190.075278][ T7131] get_futex_key+0x49e/0x1000 [ 190.075316][ T7131] ? __pfx_get_futex_key+0x10/0x10 [ 190.075365][ T7131] futex_wake+0xe7/0x4e0 [ 190.075419][ T7131] ? __pfx_futex_wake+0x10/0x10 [ 190.075468][ T7131] ? kmem_cache_free+0x2d4/0x4d0 [ 190.075500][ T7131] ? fd_install+0x225/0x750 [ 190.075559][ T7131] ? putname+0x154/0x1a0 [ 190.075602][ T7131] do_futex+0x1e3/0x350 [ 190.075637][ T7131] ? __pfx_do_futex+0x10/0x10 [ 190.075671][ T7131] ? __pfx_do_sys_openat2+0x10/0x10 [ 190.075723][ T7131] __x64_sys_futex+0x1e0/0x4c0 [ 190.075764][ T7131] ? __pfx___x64_sys_futex+0x10/0x10 [ 190.075798][ T7131] ? __pfx___x64_sys_open+0x10/0x10 [ 190.075855][ T7131] do_syscall_64+0xcd/0x230 [ 190.075905][ T7131] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 190.075949][ T7131] RIP: 0033:0x7f2596d8e969 [ 190.075974][ T7131] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 190.076005][ T7131] RSP: 002b:00007f2597c4e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 190.076035][ T7131] RAX: ffffffffffffffda RBX: 00007f2596fb5fa8 RCX: 00007f2596d8e969 [ 190.076057][ T7131] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f2596fb5fac [ 190.076077][ T7131] RBP: 00007f2596fb5fa0 R08: 00007f2597c4f000 R09: 0000000000000000 [ 190.076097][ T7131] R10: 0000000000000005 R11: 0000000000000246 R12: 00007f2596fb5fac [ 190.076117][ T7131] R13: 0000000000000000 R14: 00007ffd12317b40 R15: 00007ffd12317c28 [ 190.076158][ T7131] [ 190.704538][ T7144] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 190.711097][ T7144] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 191.040488][ T7154] netlink: 4 bytes leftover after parsing attributes in process `syz.0.271'. [ 191.077868][ T7154] netlink: 354 bytes leftover after parsing attributes in process `syz.0.271'. [ 191.081824][ T7127] snd_virmidi snd_virmidi.0: control 5:9:1:IAªƒ>/Æ[k<÷ÎÇmgx­Ž¬<Ú5ºœ+-Cî°ÜYÈÝ5:0 is already present [ 193.041192][ T7184] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 193.047731][ T7184] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 193.623012][ T7171] kexec: Could not allocate control_code_buffer [ 194.008280][ T7192] lo: entered allmulticast mode [ 194.148539][ T7194] snd_virmidi snd_virmidi.0: control 5:9:1:IAªƒ>/Æ[k<÷ÎÇmgx­Ž¬<Ú5ºœ+-Cî°ÜYÈÝ5:0 is already present [ 194.713422][ T7191] lo: left allmulticast mode [ 195.240805][ T7215] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 195.247374][ T7215] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 195.581135][ T7225] netlink: 28 bytes leftover after parsing attributes in process `syz.1.290'. [ 195.597870][ T7224] netlink: 28 bytes leftover after parsing attributes in process `syz.2.288'. [ 197.728188][ T7254] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 197.734712][ T7254] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 197.952923][ T7256] lo: entered allmulticast mode [ 198.188800][ T7265] FAULT_INJECTION: forcing a failure. [ 198.188800][ T7265] name failslab, interval 1, probability 0, space 0, times 0 [ 198.227192][ T7265] CPU: 0 UID: 0 PID: 7265 Comm: syz.3.300 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 198.227243][ T7265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 198.227263][ T7265] Call Trace: [ 198.227275][ T7265] [ 198.227288][ T7265] dump_stack_lvl+0x16c/0x1f0 [ 198.227341][ T7265] should_fail_ex+0x512/0x640 [ 198.227388][ T7265] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 198.227430][ T7265] should_failslab+0xc2/0x120 [ 198.227471][ T7265] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 198.227507][ T7265] ? __proc_create+0xc3/0x8c0 [ 198.227540][ T7265] ? __proc_create+0x2ce/0x8c0 [ 198.227580][ T7265] __proc_create+0x2ce/0x8c0 [ 198.227617][ T7265] ? __pfx___proc_create+0x10/0x10 [ 198.227659][ T7265] ? _raw_write_unlock+0x28/0x50 [ 198.227698][ T7265] ? proc_register+0x314/0x5f0 [ 198.227738][ T7265] proc_create_reg+0x7d/0x180 [ 198.227785][ T7265] ? __pfx_rt_acct_proc_show+0x10/0x10 [ 198.227829][ T7265] proc_create_single_data+0x86/0x190 [ 198.227868][ T7265] ? __pfx_proc_create_single_data+0x10/0x10 [ 198.227909][ T7265] ? __pfx_nl_fib_input+0x10/0x10 [ 198.227952][ T7265] ? __pfx_ip_rt_do_proc_init+0x10/0x10 [ 198.227990][ T7265] ip_rt_do_proc_init+0xf4/0x1b0 [ 198.228027][ T7265] ops_init+0x1df/0x5f0 [ 198.228069][ T7265] setup_net+0x21e/0x850 [ 198.228112][ T7265] ? __pfx_setup_net+0x10/0x10 [ 198.228148][ T7265] ? lockdep_init_map_type+0x5c/0x280 [ 198.228191][ T7265] ? __pfx_down_read_killable+0x10/0x10 [ 198.228249][ T7265] ? debug_mutex_init+0x37/0x70 [ 198.228282][ T7265] copy_net_ns+0x2a6/0x5f0 [ 198.228328][ T7265] create_new_namespaces+0x3ea/0xad0 [ 198.228373][ T7265] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 198.228412][ T7265] ksys_unshare+0x45b/0xa40 [ 198.228456][ T7265] ? __pfx_ksys_unshare+0x10/0x10 [ 198.228495][ T7265] ? xfd_validate_state+0x5d/0x180 [ 198.228548][ T7265] ? rcu_is_watching+0x12/0xc0 [ 198.228587][ T7265] __x64_sys_unshare+0x31/0x40 [ 198.228630][ T7265] do_syscall_64+0xcd/0x230 [ 198.228680][ T7265] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 198.228712][ T7265] RIP: 0033:0x7f2596d8e969 [ 198.228737][ T7265] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 198.228776][ T7265] RSP: 002b:00007f2597c4e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 198.228805][ T7265] RAX: ffffffffffffffda RBX: 00007f2596fb5fa0 RCX: 00007f2596d8e969 [ 198.228824][ T7265] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 198.228842][ T7265] RBP: 00007f2596e10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 198.228861][ T7265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 198.228879][ T7265] R13: 0000000000000000 R14: 00007f2596fb5fa0 R15: 00007ffd12317c28 [ 198.228919][ T7265] [ 198.788719][ T7255] lo: left allmulticast mode [ 199.441413][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.467306][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 199.833997][ T7289] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 199.840597][ T7289] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 200.522303][ T7302] lo: entered allmulticast mode [ 200.916397][ T7309] FAULT_INJECTION: forcing a failure. [ 200.916397][ T7309] name failslab, interval 1, probability 0, space 0, times 0 [ 200.947288][ T7309] CPU: 1 UID: 0 PID: 7309 Comm: syz.0.311 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 200.947330][ T7309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 200.947347][ T7309] Call Trace: [ 200.947357][ T7309] [ 200.947368][ T7309] dump_stack_lvl+0x16c/0x1f0 [ 200.947418][ T7309] should_fail_ex+0x512/0x640 [ 200.947461][ T7309] ? __kmalloc_noprof+0xbf/0x510 [ 200.947506][ T7309] ? __register_sysctl_table+0xb3/0x1900 [ 200.947542][ T7309] should_failslab+0xc2/0x120 [ 200.947580][ T7309] __kmalloc_noprof+0xd2/0x510 [ 200.947623][ T7309] __register_sysctl_table+0xb3/0x1900 [ 200.947659][ T7309] ? is_module_address+0x5f/0xf0 [ 200.947707][ T7309] ? __pfx___register_sysctl_table+0x10/0x10 [ 200.947742][ T7309] ? is_module_address+0x69/0xf0 [ 200.947782][ T7309] ? register_net_sysctl_sz+0x228/0x3e0 [ 200.947833][ T7309] ? __asan_memcpy+0x3c/0x60 [ 200.947862][ T7309] ? __pfx_nf_lwtunnel_net_init+0x10/0x10 [ 200.947900][ T7309] nf_lwtunnel_net_init+0x60/0xf0 [ 200.947939][ T7309] ops_init+0x1df/0x5f0 [ 200.947981][ T7309] setup_net+0x21e/0x850 [ 200.948023][ T7309] ? __pfx_setup_net+0x10/0x10 [ 200.948058][ T7309] ? lockdep_init_map_type+0x5c/0x280 [ 200.948099][ T7309] ? __pfx_down_read_killable+0x10/0x10 [ 200.948153][ T7309] ? debug_mutex_init+0x37/0x70 [ 200.948187][ T7309] copy_net_ns+0x2a6/0x5f0 [ 200.948238][ T7309] create_new_namespaces+0x3ea/0xad0 [ 200.948282][ T7309] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 200.948321][ T7309] ksys_unshare+0x45b/0xa40 [ 200.948365][ T7309] ? __pfx_ksys_unshare+0x10/0x10 [ 200.948404][ T7309] ? ksys_write+0x1b9/0x240 [ 200.948434][ T7309] ? rcu_is_watching+0x12/0xc0 [ 200.948473][ T7309] __x64_sys_unshare+0x31/0x40 [ 200.948524][ T7309] do_syscall_64+0xcd/0x230 [ 200.948573][ T7309] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 200.948604][ T7309] RIP: 0033:0x7fa036f8e969 [ 200.948629][ T7309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 200.948657][ T7309] RSP: 002b:00007fa037dbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 200.948686][ T7309] RAX: ffffffffffffffda RBX: 00007fa0371b5fa0 RCX: 00007fa036f8e969 [ 200.948706][ T7309] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 200.948724][ T7309] RBP: 00007fa037dbc090 R08: 0000000000000000 R09: 0000000000000000 [ 200.948742][ T7309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 200.948760][ T7309] R13: 0000000000000000 R14: 00007fa0371b5fa0 R15: 00007ffc194a1608 [ 200.948800][ T7309] [ 201.409269][ T7301] lo: left allmulticast mode [ 201.513566][ T7316] FAULT_INJECTION: forcing a failure. [ 201.513566][ T7316] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 201.622029][ T7316] CPU: 0 UID: 0 PID: 7316 Comm: syz.0.313 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 201.622068][ T7316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 201.622083][ T7316] Call Trace: [ 201.622091][ T7316] [ 201.622100][ T7316] dump_stack_lvl+0x16c/0x1f0 [ 201.622142][ T7316] should_fail_ex+0x512/0x640 [ 201.622182][ T7316] _copy_to_user+0x32/0xd0 [ 201.622224][ T7316] simple_read_from_buffer+0xcb/0x170 [ 201.622267][ T7316] proc_fail_nth_read+0x197/0x270 [ 201.622313][ T7316] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 201.622360][ T7316] ? rw_verify_area+0xcf/0x680 [ 201.622405][ T7316] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 201.622449][ T7316] vfs_read+0x1de/0xc70 [ 201.622488][ T7316] ? __pfx___mutex_lock+0x10/0x10 [ 201.622524][ T7316] ? __pfx_vfs_read+0x10/0x10 [ 201.622557][ T7316] ? __fget_files+0x20e/0x3c0 [ 201.622605][ T7316] ksys_read+0x12a/0x240 [ 201.622628][ T7316] ? __pfx_ksys_read+0x10/0x10 [ 201.622661][ T7316] do_syscall_64+0xcd/0x230 [ 201.622700][ T7316] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 201.622729][ T7316] RIP: 0033:0x7fa036f8d37c [ 201.622753][ T7316] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 201.622783][ T7316] RSP: 002b:00007fa037dbc030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 201.622812][ T7316] RAX: ffffffffffffffda RBX: 00007fa0371b5fa0 RCX: 00007fa036f8d37c [ 201.622832][ T7316] RDX: 000000000000000f RSI: 00007fa037dbc0a0 RDI: 0000000000000007 [ 201.622850][ T7316] RBP: 00007fa037dbc090 R08: 0000000000000000 R09: 0000000000000000 [ 201.622868][ T7316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 201.622886][ T7316] R13: 0000000000000000 R14: 00007fa0371b5fa0 R15: 00007ffc194a1608 [ 201.622926][ T7316] [ 202.041633][ T7329] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 202.048200][ T7329] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 202.922543][ T7347] FAULT_INJECTION: forcing a failure. [ 202.922543][ T7347] name failslab, interval 1, probability 0, space 0, times 0 [ 202.957484][ T7347] CPU: 1 UID: 0 PID: 7347 Comm: syz.0.322 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 202.957525][ T7347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 202.957543][ T7347] Call Trace: [ 202.957553][ T7347] [ 202.957564][ T7347] dump_stack_lvl+0x16c/0x1f0 [ 202.957614][ T7347] should_fail_ex+0x512/0x640 [ 202.957658][ T7347] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 202.957699][ T7347] should_failslab+0xc2/0x120 [ 202.957735][ T7347] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 202.957771][ T7347] ? __alloc_skb+0x2b2/0x380 [ 202.957810][ T7347] __alloc_skb+0x2b2/0x380 [ 202.957843][ T7347] ? __pfx___alloc_skb+0x10/0x10 [ 202.957880][ T7347] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 202.957917][ T7347] ? __lock_acquire+0xaa4/0x1ba0 [ 202.957962][ T7347] netlink_alloc_large_skb+0x69/0x130 [ 202.958004][ T7347] netlink_sendmsg+0x6a1/0xdd0 [ 202.958050][ T7347] ? __pfx_netlink_sendmsg+0x10/0x10 [ 202.958105][ T7347] ____sys_sendmsg+0xa95/0xc70 [ 202.958150][ T7347] ? copy_msghdr_from_user+0x10a/0x160 [ 202.958185][ T7347] ? __pfx_____sys_sendmsg+0x10/0x10 [ 202.958237][ T7347] ? __pfx__kstrtoull+0x10/0x10 [ 202.958281][ T7347] ___sys_sendmsg+0x134/0x1d0 [ 202.958329][ T7347] ? __pfx____sys_sendmsg+0x10/0x10 [ 202.958385][ T7347] ? find_held_lock+0x2b/0x80 [ 202.958440][ T7347] __sys_sendmmsg+0x200/0x420 [ 202.958480][ T7347] ? __pfx___sys_sendmmsg+0x10/0x10 [ 202.958529][ T7347] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 202.958594][ T7347] ? fput+0x70/0xf0 [ 202.958629][ T7347] ? ksys_write+0x1b9/0x240 [ 202.958658][ T7347] ? __pfx_ksys_write+0x10/0x10 [ 202.958685][ T7347] ? rcu_is_watching+0x12/0xc0 [ 202.958720][ T7347] __x64_sys_sendmmsg+0x9c/0x100 [ 202.958755][ T7347] ? lockdep_hardirqs_on+0x7c/0x110 [ 202.958796][ T7347] do_syscall_64+0xcd/0x230 [ 202.958843][ T7347] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.958874][ T7347] RIP: 0033:0x7fa036f8e969 [ 202.958898][ T7347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 202.958927][ T7347] RSP: 002b:00007fa037dbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 202.958956][ T7347] RAX: ffffffffffffffda RBX: 00007fa0371b5fa0 RCX: 00007fa036f8e969 [ 202.958977][ T7347] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 202.958995][ T7347] RBP: 00007fa037dbc090 R08: 0000000000000000 R09: 0000000000000000 [ 202.959013][ T7347] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 202.959031][ T7347] R13: 0000000000000000 R14: 00007fa0371b5fa0 R15: 00007ffc194a1608 [ 202.959071][ T7347] [ 203.741682][ T7359] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 203.748615][ T7359] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 204.179087][ T7368] lo: entered allmulticast mode [ 204.377406][ T7367] lo: left allmulticast mode [ 204.400810][ T7377] netlink: 4 bytes leftover after parsing attributes in process `syz.0.330'. [ 204.428402][ T7377] netlink: 4 bytes leftover after parsing attributes in process `syz.0.330'. [ 204.759863][ T7386] FAULT_INJECTION: forcing a failure. [ 204.759863][ T7386] name failslab, interval 1, probability 0, space 0, times 0 [ 204.894420][ T7386] CPU: 1 UID: 0 PID: 7386 Comm: syz.1.331 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 204.894453][ T7386] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 204.894471][ T7386] Call Trace: [ 204.894478][ T7386] [ 204.894486][ T7386] dump_stack_lvl+0x16c/0x1f0 [ 204.894523][ T7386] should_fail_ex+0x512/0x640 [ 204.894553][ T7386] ? fs_reclaim_acquire+0xae/0x150 [ 204.894588][ T7386] ? tomoyo_encode2+0x100/0x3e0 [ 204.894617][ T7386] should_failslab+0xc2/0x120 [ 204.894644][ T7386] __kmalloc_noprof+0xd2/0x510 [ 204.894668][ T7386] ? d_absolute_path+0x136/0x1a0 [ 204.894699][ T7386] tomoyo_encode2+0x100/0x3e0 [ 204.894733][ T7386] tomoyo_encode+0x29/0x50 [ 204.894762][ T7386] tomoyo_realpath_from_path+0x18f/0x6e0 [ 204.894801][ T7386] tomoyo_path_number_perm+0x245/0x580 [ 204.894826][ T7386] ? tomoyo_path_number_perm+0x237/0x580 [ 204.894854][ T7386] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 204.894882][ T7386] ? find_held_lock+0x2b/0x80 [ 204.894927][ T7386] ? find_held_lock+0x2b/0x80 [ 204.894947][ T7386] ? hook_file_ioctl_common+0x145/0x410 [ 204.894977][ T7386] ? __fget_files+0x20e/0x3c0 [ 204.895016][ T7386] security_file_ioctl+0x9b/0x240 [ 204.895045][ T7386] __x64_sys_ioctl+0xb7/0x200 [ 204.895077][ T7386] do_syscall_64+0xcd/0x230 [ 204.895111][ T7386] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 204.895133][ T7386] RIP: 0033:0x7fc68d18e969 [ 204.895151][ T7386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 204.895172][ T7386] RSP: 002b:00007fc68e04a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 204.895193][ T7386] RAX: ffffffffffffffda RBX: 00007fc68d3b5fa0 RCX: 00007fc68d18e969 [ 204.895208][ T7386] RDX: 0000000000000000 RSI: 0000000000005437 RDI: 0000000000000003 [ 204.895221][ T7386] RBP: 00007fc68e04a090 R08: 0000000000000000 R09: 0000000000000000 [ 204.895234][ T7386] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 204.895247][ T7386] R13: 0000000000000000 R14: 00007fc68d3b5fa0 R15: 00007ffdf71b9638 [ 204.895275][ T7386] [ 204.895296][ T7386] ERROR: Out of memory at tomoyo_realpath_from_path. [ 205.341238][ T7389] snd_virmidi snd_virmidi.0: control 5:9:1:IAªƒ>/Æ[k<÷ÎÇmgx­Ž¬<Ú5ºœ+-Cî°ÜYÈÝ5:0 is already present [ 205.586364][ T7396] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 205.592991][ T7396] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 207.659080][ T7418] lo: entered allmulticast mode syzkaller syzkaller login: [ 207.819407][ T7416] lo: left allmulticast mode [ 208.105254][ T7447] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 208.111855][ T7447] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 209.180236][ T7468] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 209.186736][ T7468] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 209.999021][ T7476] lo: entered allmulticast mode [ 210.009437][ T7474] lo: left allmulticast mode [ 210.010567][ T7479] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 210.020626][ T7479] hsr_slave_1: hsr_addr_subst_dest: Unknown node syzkaller syzkaller login: [ 210.380991][ T7484] FAULT_INJECTION: forcing a failure. [ 210.380991][ T7484] name failslab, interval 1, probability 0, space 0, times 0 [ 210.400218][ T7484] CPU: 0 UID: 0 PID: 7484 Comm: syz.3.357 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 210.400264][ T7484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 210.400282][ T7484] Call Trace: [ 210.400293][ T7484] [ 210.400305][ T7484] dump_stack_lvl+0x16c/0x1f0 [ 210.400359][ T7484] should_fail_ex+0x512/0x640 [ 210.400406][ T7484] ? __kmalloc_noprof+0xbf/0x510 [ 210.400445][ T7484] ? __register_sysctl_table+0xb3/0x1900 [ 210.400483][ T7484] should_failslab+0xc2/0x120 [ 210.400524][ T7484] __kmalloc_noprof+0xd2/0x510 [ 210.400569][ T7484] __register_sysctl_table+0xb3/0x1900 [ 210.400608][ T7484] ? is_module_address+0x5f/0xf0 [ 210.400659][ T7484] ? __pfx___register_sysctl_table+0x10/0x10 [ 210.400697][ T7484] ? is_module_address+0x69/0xf0 [ 210.400740][ T7484] ? register_net_sysctl_sz+0x228/0x3e0 [ 210.400795][ T7484] ? __asan_memcpy+0x3c/0x60 [ 210.400828][ T7484] sysctl_route_net_init+0x15e/0x2c0 [ 210.400874][ T7484] ? __pfx_sysctl_route_net_init+0x10/0x10 [ 210.400929][ T7484] ops_init+0x1df/0x5f0 [ 210.400974][ T7484] setup_net+0x21e/0x850 [ 210.401017][ T7484] ? __pfx_setup_net+0x10/0x10 [ 210.401054][ T7484] ? lockdep_init_map_type+0x5c/0x280 [ 210.401097][ T7484] ? __pfx_down_read_killable+0x10/0x10 [ 210.401154][ T7484] ? debug_mutex_init+0x37/0x70 [ 210.401189][ T7484] copy_net_ns+0x2a6/0x5f0 [ 210.401238][ T7484] create_new_namespaces+0x3ea/0xad0 [ 210.401285][ T7484] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 210.401325][ T7484] ksys_unshare+0x45b/0xa40 [ 210.401371][ T7484] ? __pfx_ksys_unshare+0x10/0x10 [ 210.401413][ T7484] ? xfd_validate_state+0x5d/0x180 [ 210.401469][ T7484] ? rcu_is_watching+0x12/0xc0 [ 210.401510][ T7484] __x64_sys_unshare+0x31/0x40 [ 210.401554][ T7484] do_syscall_64+0xcd/0x230 [ 210.401604][ T7484] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 210.401637][ T7484] RIP: 0033:0x7f2596d8e969 [ 210.401664][ T7484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 210.401695][ T7484] RSP: 002b:00007f2597c4e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 210.401726][ T7484] RAX: ffffffffffffffda RBX: 00007f2596fb5fa0 RCX: 00007f2596d8e969 [ 210.401747][ T7484] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 210.401766][ T7484] RBP: 00007f2596e10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 210.401786][ T7484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 210.401805][ T7484] R13: 0000000000000000 R14: 00007f2596fb5fa0 R15: 00007ffd12317c28 [ 210.401848][ T7484] [ 211.073555][ T7495] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 211.080308][ T7495] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 211.165112][ T7498] bridge0: port 3(hsr0) entered blocking state [ 211.197461][ T7498] bridge0: port 3(hsr0) entered disabled state [ 211.203910][ T7498] hsr0: entered allmulticast mode [ 211.261376][ T7498] hsr_slave_0: entered allmulticast mode [ 211.267147][ T7498] hsr_slave_1: entered allmulticast mode [ 211.311542][ T7498] hsr0: entered promiscuous mode [ 211.341148][ T7498] bridge0: port 3(hsr0) entered blocking state [ 211.348450][ T7498] bridge0: port 3(hsr0) entered forwarding state [ 212.166333][ T7515] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 212.172871][ T7515] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 212.256088][ T7517] netlink: 'syz.3.367': attribute type 2 has an invalid length. [ 212.297375][ T7518] netlink: 'syz.3.367': attribute type 2 has an invalid length. [ 213.040313][ T7537] svc: failed to register nfsdv3 RPC service (errno 111). [ 213.066234][ T7537] svc: failed to register nfsaclv3 RPC service (errno 111). [ 213.390668][ T7549] net_ratelimit: 2 callbacks suppressed [ 213.390693][ T7549] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 213.402847][ T7549] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 214.665727][ T7556] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 217.872993][ T7622] netlink: 342 bytes leftover after parsing attributes in process `syz.0.393'. [ 220.559260][ T7678] FAULT_INJECTION: forcing a failure. [ 220.559260][ T7678] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 220.587405][ T7678] CPU: 1 UID: 0 PID: 7678 Comm: syz.0.407 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 220.587448][ T7678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 220.587466][ T7678] Call Trace: [ 220.587475][ T7678] [ 220.587487][ T7678] dump_stack_lvl+0x16c/0x1f0 [ 220.587534][ T7678] should_fail_ex+0x512/0x640 [ 220.587586][ T7678] _copy_to_user+0x32/0xd0 [ 220.587638][ T7678] simple_read_from_buffer+0xcb/0x170 [ 220.587686][ T7678] proc_fail_nth_read+0x197/0x270 [ 220.587731][ T7678] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 220.587779][ T7678] ? rw_verify_area+0xcf/0x680 [ 220.587824][ T7678] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 220.587880][ T7678] vfs_read+0x1de/0xc70 [ 220.587916][ T7678] ? __pfx___mutex_lock+0x10/0x10 [ 220.587961][ T7678] ? __pfx_vfs_read+0x10/0x10 [ 220.588002][ T7678] ? __fget_files+0x20e/0x3c0 [ 220.588064][ T7678] ksys_read+0x12a/0x240 [ 220.588092][ T7678] ? __pfx_ksys_read+0x10/0x10 [ 220.588118][ T7678] ? rcu_is_watching+0x12/0xc0 [ 220.588160][ T7678] do_syscall_64+0xcd/0x230 [ 220.588209][ T7678] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.588239][ T7678] RIP: 0033:0x7fa036f8d37c [ 220.588264][ T7678] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 220.588293][ T7678] RSP: 002b:00007fa037dbc030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 220.588321][ T7678] RAX: ffffffffffffffda RBX: 00007fa0371b5fa0 RCX: 00007fa036f8d37c [ 220.588341][ T7678] RDX: 000000000000000f RSI: 00007fa037dbc0a0 RDI: 0000000000000004 [ 220.588360][ T7678] RBP: 00007fa037dbc090 R08: 0000000000000000 R09: 0000000000000000 [ 220.588378][ T7678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 220.588396][ T7678] R13: 0000000000000000 R14: 00007fa0371b5fa0 R15: 00007ffc194a1608 [ 220.588437][ T7678] [ 220.784187][ C1] vkms_vblank_simulate: vblank timer overrun [ 222.007951][ T7708] FAULT_INJECTION: forcing a failure. [ 222.007951][ T7708] name failslab, interval 1, probability 0, space 0, times 0 [ 222.046025][ T7708] CPU: 1 UID: 0 PID: 7708 Comm: syz.2.414 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 222.046068][ T7708] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 222.046085][ T7708] Call Trace: [ 222.046095][ T7708] [ 222.046106][ T7708] dump_stack_lvl+0x16c/0x1f0 [ 222.046157][ T7708] should_fail_ex+0x512/0x640 [ 222.046201][ T7708] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 222.046240][ T7708] should_failslab+0xc2/0x120 [ 222.046280][ T7708] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 222.046317][ T7708] ? vm_area_dup+0x25/0x760 [ 222.046359][ T7708] vm_area_dup+0x25/0x760 [ 222.046397][ T7708] __split_vma+0x17f/0x1030 [ 222.046433][ T7708] ? mas_next_slot+0x12d3/0x21b0 [ 222.046480][ T7708] ? __pfx___split_vma+0x10/0x10 [ 222.046531][ T7708] vms_gather_munmap_vmas+0x392/0x1310 [ 222.046575][ T7708] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 222.046611][ T7708] ? kmem_cache_free+0x173/0x4d0 [ 222.046642][ T7708] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 222.046693][ T7708] ? percpu_counter_add_batch+0xb8/0x1f0 [ 222.046734][ T7708] ? __mt_destroy+0xa8/0x3e0 [ 222.046778][ T7708] ? vms_complete_munmap_vmas+0x667/0x970 [ 222.046821][ T7708] do_vmi_align_munmap+0x27c/0x7d0 [ 222.046863][ T7708] ? __pfx_do_vmi_align_munmap+0x10/0x10 [ 222.046955][ T7708] do_vmi_munmap+0x208/0x3e0 [ 222.046998][ T7708] shrink_vma+0x1cc/0x380 [ 222.047035][ T7708] ? __pfx_shrink_vma+0x10/0x10 [ 222.047066][ T7708] ? __pfx_do_munmap+0x10/0x10 [ 222.047122][ T7708] ? __pfx_down_write_killable+0x10/0x10 [ 222.047184][ T7708] __do_sys_mremap+0x106a/0x15d0 [ 222.047229][ T7708] ? __pfx___do_sys_mremap+0x10/0x10 [ 222.047278][ T7708] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 222.047328][ T7708] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 222.047376][ T7708] ? __fget_files+0x20e/0x3c0 [ 222.047454][ T7708] do_syscall_64+0xcd/0x230 [ 222.047502][ T7708] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 222.047533][ T7708] RIP: 0033:0x7ff3f858e969 [ 222.047556][ T7708] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 222.047603][ T7708] RSP: 002b:00007ff3f93f4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 222.047632][ T7708] RAX: ffffffffffffffda RBX: 00007ff3f87b5fa0 RCX: 00007ff3f858e969 [ 222.047652][ T7708] RDX: 0000000000003fd6 RSI: 000000000000fee0 RDI: 0000000000004000 [ 222.047670][ T7708] RBP: 00007ff3f93f4090 R08: 0000000000018000 R09: 0000000000000000 [ 222.047697][ T7708] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 222.047714][ T7708] R13: 0000000000000000 R14: 00007ff3f87b5fa0 R15: 00007ffe7cfa8e78 [ 222.047755][ T7708] [ 222.875380][ T7727] syz.0.420 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 224.519851][ T7763] FAULT_INJECTION: forcing a failure. [ 224.519851][ T7763] name failslab, interval 1, probability 0, space 0, times 0 [ 224.550619][ T7763] CPU: 0 UID: 0 PID: 7763 Comm: syz.3.423 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 224.550660][ T7763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 224.550680][ T7763] Call Trace: [ 224.550688][ T7763] [ 224.550696][ T7763] dump_stack_lvl+0x16c/0x1f0 [ 224.550733][ T7763] should_fail_ex+0x512/0x640 [ 224.550766][ T7763] ? __kmalloc_noprof+0xbf/0x510 [ 224.550792][ T7763] ? iter_file_splice_write+0x1cc/0x1150 [ 224.550827][ T7763] should_failslab+0xc2/0x120 [ 224.550855][ T7763] __kmalloc_noprof+0xd2/0x510 [ 224.550886][ T7763] iter_file_splice_write+0x1cc/0x1150 [ 224.550926][ T7763] ? kfree+0x2b6/0x4d0 [ 224.550945][ T7763] ? copy_splice_read+0x897/0xba0 [ 224.550984][ T7763] ? __pfx_iter_file_splice_write+0x10/0x10 [ 224.551019][ T7763] ? __lock_acquire+0xaa4/0x1ba0 [ 224.551052][ T7763] ? __pfx_copy_splice_read+0x10/0x10 [ 224.551100][ T7763] ? __pfx_iter_file_splice_write+0x10/0x10 [ 224.551138][ T7763] direct_splice_actor+0x18f/0x6c0 [ 224.551175][ T7763] splice_direct_to_actor+0x342/0xa30 [ 224.551211][ T7763] ? __pfx_direct_splice_actor+0x10/0x10 [ 224.551251][ T7763] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 224.551284][ T7763] ? get_pid_task+0xfc/0x250 [ 224.551322][ T7763] do_splice_direct+0x174/0x240 [ 224.551356][ T7763] ? __pfx_do_splice_direct+0x10/0x10 [ 224.551391][ T7763] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 224.551429][ T7763] ? rw_verify_area+0xcf/0x680 [ 224.551465][ T7763] do_sendfile+0xafd/0xe50 [ 224.551506][ T7763] ? __pfx_do_sendfile+0x10/0x10 [ 224.551542][ T7763] ? __fget_files+0x20e/0x3c0 [ 224.551586][ T7763] __x64_sys_sendfile64+0x1d8/0x220 [ 224.551611][ T7763] ? ksys_write+0x1b9/0x240 [ 224.551632][ T7763] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 224.551657][ T7763] ? rcu_is_watching+0x12/0xc0 [ 224.551694][ T7763] do_syscall_64+0xcd/0x230 [ 224.551729][ T7763] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 224.551752][ T7763] RIP: 0033:0x7f2596d8e969 [ 224.551769][ T7763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 224.551791][ T7763] RSP: 002b:00007f2597c4e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 224.551812][ T7763] RAX: ffffffffffffffda RBX: 00007f2596fb5fa0 RCX: 00007f2596d8e969 [ 224.551826][ T7763] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 224.551839][ T7763] RBP: 00007f2597c4e090 R08: 0000000000000000 R09: 0000000000000000 [ 224.551852][ T7763] R10: 000000000000000d R11: 0000000000000246 R12: 0000000000000001 [ 224.551865][ T7763] R13: 0000000000000000 R14: 00007f2596fb5fa0 R15: 00007ffd12317c28 [ 224.551894][ T7763] [ 225.853318][ T7761] kexec: Could not allocate control_code_buffer [ 228.081218][ T7826] netlink: 306 bytes leftover after parsing attributes in process `syz.3.449'. [ 228.141755][ T7826] netlink: 306 bytes leftover after parsing attributes in process `syz.3.449'. [ 228.450590][ T7838] FAULT_INJECTION: forcing a failure. [ 228.450590][ T7838] name failslab, interval 1, probability 0, space 0, times 0 [ 228.485979][ T7838] CPU: 0 UID: 0 PID: 7838 Comm: syz.3.452 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 228.486047][ T7838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 228.486076][ T7838] Call Trace: [ 228.486091][ T7838] [ 228.486110][ T7838] dump_stack_lvl+0x16c/0x1f0 [ 228.486182][ T7838] should_fail_ex+0x512/0x640 [ 228.486225][ T7838] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 228.486265][ T7838] should_failslab+0xc2/0x120 [ 228.486302][ T7838] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 228.486338][ T7838] ? alloc_empty_file+0x55/0x1e0 [ 228.486382][ T7838] alloc_empty_file+0x55/0x1e0 [ 228.486422][ T7838] path_openat+0xe0/0x2d40 [ 228.486461][ T7838] ? __x64_sys_openat+0x174/0x210 [ 228.486509][ T7838] ? do_syscall_64+0xcd/0x230 [ 228.486551][ T7838] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 228.486596][ T7838] ? __pfx_path_openat+0x10/0x10 [ 228.486636][ T7838] do_filp_open+0x20b/0x470 [ 228.486667][ T7838] ? __pfx_do_filp_open+0x10/0x10 [ 228.486725][ T7838] ? alloc_fd+0x471/0x7d0 [ 228.486783][ T7838] do_sys_openat2+0x11b/0x1d0 [ 228.486823][ T7838] ? __pfx_do_sys_openat2+0x10/0x10 [ 228.486869][ T7838] ? __fget_files+0x20e/0x3c0 [ 228.486923][ T7838] __x64_sys_openat+0x174/0x210 [ 228.486965][ T7838] ? __pfx___x64_sys_openat+0x10/0x10 [ 228.487005][ T7838] ? ksys_write+0x1b9/0x240 [ 228.487034][ T7838] ? rcu_is_watching+0x12/0xc0 [ 228.487074][ T7838] do_syscall_64+0xcd/0x230 [ 228.487121][ T7838] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 228.487152][ T7838] RIP: 0033:0x7f2596d8e969 [ 228.487176][ T7838] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 228.487211][ T7838] RSP: 002b:00007f2597c4e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 228.487237][ T7838] RAX: ffffffffffffffda RBX: 00007f2596fb5fa0 RCX: 00007f2596d8e969 [ 228.487257][ T7838] RDX: 0000000000000000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 228.487277][ T7838] RBP: 00007f2597c4e090 R08: 0000000000000000 R09: 0000000000000000 [ 228.487295][ T7838] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 228.487312][ T7838] R13: 0000000000000000 R14: 00007f2596fb5fa0 R15: 00007ffd12317c28 [ 228.487350][ T7838] [ 228.709245][ C0] vkms_vblank_simulate: vblank timer overrun [ 228.822675][ T7840] FAULT_INJECTION: forcing a failure. [ 228.822675][ T7840] name failslab, interval 1, probability 0, space 0, times 0 [ 228.843638][ T7840] CPU: 0 UID: 0 PID: 7840 Comm: syz.0.453 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 228.843686][ T7840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 228.843705][ T7840] Call Trace: [ 228.843716][ T7840] [ 228.843727][ T7840] dump_stack_lvl+0x16c/0x1f0 [ 228.843780][ T7840] should_fail_ex+0x512/0x640 [ 228.843826][ T7840] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 228.843886][ T7840] should_failslab+0xc2/0x120 [ 228.843927][ T7840] __kmalloc_cache_noprof+0x6a/0x3e0 [ 228.843981][ T7840] ? trace_kmalloc+0x2b/0xd0 [ 228.844022][ T7840] ? snd_virmidi_input_open+0xc8/0x4a0 [ 228.844074][ T7840] snd_virmidi_input_open+0xc8/0x4a0 [ 228.844126][ T7840] open_substream+0x478/0x9b0 [ 228.844181][ T7840] rawmidi_open_priv+0x4db/0x6e0 [ 228.844219][ T7840] snd_rawmidi_open+0x4cc/0xbf0 [ 228.844257][ T7840] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 228.844291][ T7840] ? __pfx_default_wake_function+0x10/0x10 [ 228.844327][ T7840] ? do_raw_spin_lock+0x12c/0x2b0 [ 228.844382][ T7840] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 228.844424][ T7840] snd_open+0x1fe/0x450 [ 228.844467][ T7840] ? __pfx_snd_open+0x10/0x10 [ 228.844509][ T7840] chrdev_open+0x231/0x6a0 [ 228.844546][ T7840] ? __pfx_chrdev_open+0x10/0x10 [ 228.844585][ T7840] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 228.844649][ T7840] do_dentry_open+0x741/0x1c10 [ 228.844683][ T7840] ? __pfx_chrdev_open+0x10/0x10 [ 228.844726][ T7840] vfs_open+0x82/0x3f0 [ 228.844775][ T7840] path_openat+0x1e5e/0x2d40 [ 228.844824][ T7840] ? __pfx_path_openat+0x10/0x10 [ 228.844867][ T7840] do_filp_open+0x20b/0x470 [ 228.844899][ T7840] ? __pfx_do_filp_open+0x10/0x10 [ 228.844962][ T7840] ? alloc_fd+0x471/0x7d0 [ 228.845024][ T7840] do_sys_openat2+0x11b/0x1d0 [ 228.845067][ T7840] ? __pfx_do_sys_openat2+0x10/0x10 [ 228.845115][ T7840] ? __pfx___might_resched+0x10/0x10 [ 228.845164][ T7840] __x64_sys_openat+0x174/0x210 [ 228.845209][ T7840] ? __pfx___x64_sys_openat+0x10/0x10 [ 228.845257][ T7840] ? rcu_is_watching+0x12/0xc0 [ 228.845300][ T7840] do_syscall_64+0xcd/0x230 [ 228.845354][ T7840] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 228.845390][ T7840] RIP: 0033:0x7fa036f8e969 [ 228.845426][ T7840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 228.845457][ T7840] RSP: 002b:00007fa037dbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 228.845488][ T7840] RAX: ffffffffffffffda RBX: 00007fa0371b5fa0 RCX: 00007fa036f8e969 [ 228.845510][ T7840] RDX: 0000000000000000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 228.845531][ T7840] RBP: 00007fa037010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 228.845551][ T7840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 228.845571][ T7840] R13: 0000000000000000 R14: 00007fa0371b5fa0 R15: 00007ffc194a1608 [ 228.845613][ T7840] [ 229.130229][ C0] vkms_vblank_simulate: vblank timer overrun [ 231.674519][ T7901] ptp ptp0: new virtual clock ptp1 [ 231.698310][ T7901] ptp ptp0: guarantee physical clock free running [ 232.050603][ T5829] Bluetooth: hci0: unexpected event 0x3d length: 726 > 14 [ 233.283250][ T7944] netlink: 4 bytes leftover after parsing attributes in process `syz.3.476'. [ 233.389029][ T7954] netlink: 354 bytes leftover after parsing attributes in process `syz.3.476'. [ 235.649956][ T7973] kexec: Could not allocate control_code_buffer [ 236.144970][ T8009] random: crng reseeded on system resumption [ 236.821351][ T8021] loop6: detected capacity change from 0 to 8192 [ 238.370687][ T8052] FAULT_INJECTION: forcing a failure. [ 238.370687][ T8052] name failslab, interval 1, probability 0, space 0, times 0 [ 238.383763][ T8052] CPU: 1 UID: 0 PID: 8052 Comm: syz.0.506 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 238.383794][ T8052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 238.383808][ T8052] Call Trace: [ 238.383816][ T8052] [ 238.383825][ T8052] dump_stack_lvl+0x16c/0x1f0 [ 238.383863][ T8052] should_fail_ex+0x512/0x640 [ 238.383903][ T8052] should_failslab+0xc2/0x120 [ 238.383932][ T8052] __kmalloc_cache_noprof+0x6a/0x3e0 [ 238.383972][ T8052] ? nfc_genl_rcv_nl_event+0xc1/0x2e0 [ 238.384001][ T8052] nfc_genl_rcv_nl_event+0xc1/0x2e0 [ 238.384026][ T8052] notifier_call_chain+0xb9/0x410 [ 238.384054][ T8052] ? __pfx_nfc_genl_rcv_nl_event+0x10/0x10 [ 238.384085][ T8052] blocking_notifier_call_chain+0x69/0xa0 [ 238.384117][ T8052] netlink_release+0x186b/0x2020 [ 238.384152][ T8052] ? netlink_release+0x1de/0x2020 [ 238.384182][ T8052] ? __pfx_netlink_release+0x10/0x10 [ 238.384214][ T8052] ? __pfx_locks_remove_file+0x10/0x10 [ 238.384250][ T8052] __sock_release+0xb0/0x270 [ 238.384280][ T8052] ? __pfx_sock_close+0x10/0x10 [ 238.384306][ T8052] sock_close+0x1c/0x30 [ 238.384338][ T8052] __fput+0x3ff/0xb70 [ 238.384369][ T8052] ? _raw_spin_unlock_irq+0x23/0x50 [ 238.384402][ T8052] task_work_run+0x14d/0x240 [ 238.384440][ T8052] ? __pfx_task_work_run+0x10/0x10 [ 238.384477][ T8052] ? __pfx___do_sys_close_range+0x10/0x10 [ 238.384500][ T8052] ? rcu_is_watching+0x12/0xc0 [ 238.384527][ T8052] syscall_exit_to_user_mode+0x27b/0x2a0 [ 238.384564][ T8052] do_syscall_64+0xda/0x230 [ 238.384601][ T8052] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.384625][ T8052] RIP: 0033:0x7fa036f8e969 [ 238.384643][ T8052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 238.384664][ T8052] RSP: 002b:00007fa037dbc038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 238.384685][ T8052] RAX: 0000000000000000 RBX: 00007fa0371b5fa0 RCX: 00007fa036f8e969 [ 238.384700][ T8052] RDX: 0004000000000002 RSI: fffffffffffff000 RDI: 0000000000000000 [ 238.384714][ T8052] RBP: 00007fa037010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 238.384727][ T8052] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 238.384741][ T8052] R13: 0000000000000000 R14: 00007fa0371b5fa0 R15: 00007ffc194a1608 [ 238.384770][ T8052] [ 238.894818][ T8041] kexec: Could not allocate control_code_buffer [ 239.120290][ T8059] netlink: 338 bytes leftover after parsing attributes in process `syz.2.508'. [ 239.138561][ T8060] netlink: 338 bytes leftover after parsing attributes in process `syz.2.508'. [ 239.338003][ T8062] FAULT_INJECTION: forcing a failure. [ 239.338003][ T8062] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 239.381258][ T8062] CPU: 1 UID: 0 PID: 8062 Comm: syz.1.509 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 239.381302][ T8062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 239.381320][ T8062] Call Trace: [ 239.381330][ T8062] [ 239.381341][ T8062] dump_stack_lvl+0x16c/0x1f0 [ 239.381389][ T8062] should_fail_ex+0x512/0x640 [ 239.381439][ T8062] _copy_to_user+0x32/0xd0 [ 239.381498][ T8062] simple_read_from_buffer+0xcb/0x170 [ 239.381549][ T8062] proc_fail_nth_read+0x197/0x270 [ 239.381594][ T8062] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 239.381641][ T8062] ? rw_verify_area+0xcf/0x680 [ 239.381685][ T8062] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 239.381730][ T8062] vfs_read+0x1de/0xc70 [ 239.381764][ T8062] ? __pfx___mutex_lock+0x10/0x10 [ 239.381808][ T8062] ? __pfx_vfs_read+0x10/0x10 [ 239.381848][ T8062] ? __fget_files+0x20e/0x3c0 [ 239.381915][ T8062] ksys_read+0x12a/0x240 [ 239.381943][ T8062] ? __pfx_ksys_read+0x10/0x10 [ 239.381969][ T8062] ? madvise_unlock+0xf6/0x190 [ 239.382021][ T8062] do_syscall_64+0xcd/0x230 [ 239.382067][ T8062] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.382099][ T8062] RIP: 0033:0x7fc68d18d37c [ 239.382123][ T8062] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 239.382152][ T8062] RSP: 002b:00007fc68e04a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 239.382180][ T8062] RAX: ffffffffffffffda RBX: 00007fc68d3b5fa0 RCX: 00007fc68d18d37c [ 239.382201][ T8062] RDX: 000000000000000f RSI: 00007fc68e04a0a0 RDI: 0000000000000007 [ 239.382219][ T8062] RBP: 00007fc68e04a090 R08: 0000000000000000 R09: 0000000000000000 [ 239.382237][ T8062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 239.382253][ T8062] R13: 0000000000000000 R14: 00007fc68d3b5fa0 R15: 00007ffdf71b9638 [ 239.382294][ T8062] [ 241.768591][ T8105] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 241.775119][ T8105] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 241.905132][ T8107] FAULT_INJECTION: forcing a failure. [ 241.905132][ T8107] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 241.967551][ T8107] CPU: 1 UID: 0 PID: 8107 Comm: syz.1.523 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 241.967588][ T8107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 241.967601][ T8107] Call Trace: [ 241.967608][ T8107] [ 241.967617][ T8107] dump_stack_lvl+0x16c/0x1f0 [ 241.967653][ T8107] should_fail_ex+0x512/0x640 [ 241.967719][ T8107] _copy_from_user+0x2e/0xd0 [ 241.967756][ T8107] kstrtouint_from_user+0xd6/0x1d0 [ 241.967783][ T8107] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 241.967809][ T8107] ? __lock_acquire+0xaa4/0x1ba0 [ 241.967852][ T8107] proc_fail_nth_write+0x83/0x250 [ 241.967888][ T8107] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 241.967931][ T8107] vfs_write+0x25c/0x1180 [ 241.967957][ T8107] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 241.967994][ T8107] ? __pfx___mutex_lock+0x10/0x10 [ 241.968026][ T8107] ? __pfx_vfs_write+0x10/0x10 [ 241.968056][ T8107] ? __fget_files+0x20e/0x3c0 [ 241.968099][ T8107] ksys_write+0x12a/0x240 [ 241.968120][ T8107] ? __pfx_ksys_write+0x10/0x10 [ 241.968140][ T8107] ? rcu_is_watching+0x12/0xc0 [ 241.968169][ T8107] do_syscall_64+0xcd/0x230 [ 241.968204][ T8107] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 241.968227][ T8107] RIP: 0033:0x7fc68d18d41f [ 241.968245][ T8107] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 241.968266][ T8107] RSP: 002b:00007fc68e04a030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 241.968287][ T8107] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fc68d18d41f [ 241.968301][ T8107] RDX: 0000000000000001 RSI: 00007fc68e04a0a0 RDI: 0000000000000004 [ 241.968314][ T8107] RBP: 00007fc68e04a090 R08: 0000000000000000 R09: 0000000000000000 [ 241.968328][ T8107] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 241.968340][ T8107] R13: 0000000000000000 R14: 00007fc68d3b5fa0 R15: 00007ffdf71b9638 [ 241.968369][ T8107] [ 243.331449][ T8093] kexec: Could not allocate control_code_buffer [ 243.579588][ T8137] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 243.586091][ T8137] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 244.730760][ T8172] FAULT_INJECTION: forcing a failure. [ 244.730760][ T8172] name failslab, interval 1, probability 0, space 0, times 0 [ 244.756077][ T8167] ovs_: entered promiscuous mode [ 244.796012][ T8172] CPU: 1 UID: 0 PID: 8172 Comm: syz.2.541 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 244.796056][ T8172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 244.796074][ T8172] Call Trace: [ 244.796084][ T8172] [ 244.796101][ T8172] dump_stack_lvl+0x16c/0x1f0 [ 244.796152][ T8172] should_fail_ex+0x512/0x640 [ 244.796197][ T8172] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 244.796238][ T8172] should_failslab+0xc2/0x120 [ 244.796278][ T8172] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 244.796314][ T8172] ? __alloc_skb+0x2b2/0x380 [ 244.796355][ T8172] __alloc_skb+0x2b2/0x380 [ 244.796388][ T8172] ? __pfx___alloc_skb+0x10/0x10 [ 244.796425][ T8172] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 244.796461][ T8172] ? __lock_acquire+0xaa4/0x1ba0 [ 244.796509][ T8172] netlink_alloc_large_skb+0x69/0x130 [ 244.796564][ T8172] netlink_sendmsg+0x6a1/0xdd0 [ 244.796611][ T8172] ? __pfx_netlink_sendmsg+0x10/0x10 [ 244.796667][ T8172] ____sys_sendmsg+0xa95/0xc70 [ 244.796725][ T8172] ? copy_msghdr_from_user+0x10a/0x160 [ 244.796761][ T8172] ? __pfx_____sys_sendmsg+0x10/0x10 [ 244.796826][ T8172] ___sys_sendmsg+0x134/0x1d0 [ 244.796864][ T8172] ? __pfx____sys_sendmsg+0x10/0x10 [ 244.796951][ T8172] __sys_sendmsg+0x16d/0x220 [ 244.796990][ T8172] ? __pfx___sys_sendmsg+0x10/0x10 [ 244.797038][ T8172] ? rcu_is_watching+0x12/0xc0 [ 244.797080][ T8172] do_syscall_64+0xcd/0x230 [ 244.797128][ T8172] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.797160][ T8172] RIP: 0033:0x7ff3f858e969 [ 244.797184][ T8172] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 244.797218][ T8172] RSP: 002b:00007ff3f93f4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 244.797246][ T8172] RAX: ffffffffffffffda RBX: 00007ff3f87b5fa0 RCX: 00007ff3f858e969 [ 244.797266][ T8172] RDX: 0000000000000810 RSI: 0000200000000180 RDI: 0000000000000002 [ 244.797283][ T8172] RBP: 00007ff3f93f4090 R08: 0000000000000000 R09: 0000000000000000 [ 244.797301][ T8172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 244.797318][ T8172] R13: 0000000000000000 R14: 00007ff3f87b5fa0 R15: 00007ffe7cfa8e78 [ 244.797359][ T8172] [ 245.930037][ T8183] FAULT_INJECTION: forcing a failure. [ 245.930037][ T8183] name failslab, interval 1, probability 0, space 0, times 0 [ 245.977026][ T8183] CPU: 1 UID: 0 PID: 8183 Comm: syz.0.545 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 245.977077][ T8183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 245.977095][ T8183] Call Trace: [ 245.977106][ T8183] [ 245.977118][ T8183] dump_stack_lvl+0x16c/0x1f0 [ 245.977170][ T8183] should_fail_ex+0x512/0x640 [ 245.977215][ T8183] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 245.977255][ T8183] should_failslab+0xc2/0x120 [ 245.977294][ T8183] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 245.977331][ T8183] ? __kernfs_new_node+0xd2/0x8a0 [ 245.977388][ T8183] __kernfs_new_node+0xd2/0x8a0 [ 245.977444][ T8183] ? __pfx___kernfs_new_node+0x10/0x10 [ 245.977509][ T8183] ? find_held_lock+0x2b/0x80 [ 245.977542][ T8183] ? kernfs_root+0xee/0x2a0 [ 245.977581][ T8183] kernfs_new_node+0x13c/0x1e0 [ 245.977636][ T8183] __kernfs_create_file+0x53/0x350 [ 245.977688][ T8183] sysfs_add_file_mode_ns+0x207/0x3c0 [ 245.977750][ T8183] internal_create_group+0x578/0xf30 [ 245.977793][ T8183] ? __pfx_internal_create_group+0x10/0x10 [ 245.977832][ T8183] ? kernfs_create_link+0x1bd/0x240 [ 245.977884][ T8183] internal_create_groups+0x9d/0x150 [ 245.977920][ T8183] device_add+0x77f/0x1a70 [ 245.977969][ T8183] ? __pfx_device_add+0x10/0x10 [ 245.978020][ T8183] ? do_raw_spin_lock+0x12c/0x2b0 [ 245.978078][ T8183] add_disk_fwnode+0x468/0x13a0 [ 245.978136][ T8183] zram_add+0x494/0x6c0 [ 245.978178][ T8183] ? __pfx_zram_add+0x10/0x10 [ 245.978252][ T8183] ? find_held_lock+0x2b/0x80 [ 245.978291][ T8183] ? __pfx_hot_add_show+0x10/0x10 [ 245.978334][ T8183] ? __pfx_class_attr_show+0x10/0x10 [ 245.978374][ T8183] hot_add_show+0x21/0x80 [ 245.978418][ T8183] class_attr_show+0x6f/0xa0 [ 245.978461][ T8183] sysfs_kf_seq_show+0x213/0x3e0 [ 245.978518][ T8183] seq_read_iter+0x506/0x12c0 [ 245.978583][ T8183] kernfs_fop_read_iter+0x40f/0x5a0 [ 245.978632][ T8183] ? rw_verify_area+0xcf/0x680 [ 245.978686][ T8183] vfs_read+0x8c8/0xc70 [ 245.978722][ T8183] ? __pfx___mutex_lock+0x10/0x10 [ 245.978771][ T8183] ? __pfx_vfs_read+0x10/0x10 [ 245.978831][ T8183] ksys_read+0x12a/0x240 [ 245.978862][ T8183] ? __pfx_ksys_read+0x10/0x10 [ 245.978889][ T8183] ? rcu_is_watching+0x12/0xc0 [ 245.978932][ T8183] do_syscall_64+0xcd/0x230 [ 245.978981][ T8183] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 245.979014][ T8183] RIP: 0033:0x7fa036f8e969 [ 245.979040][ T8183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 245.979071][ T8183] RSP: 002b:00007fa037dbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 245.979102][ T8183] RAX: ffffffffffffffda RBX: 00007fa0371b5fa0 RCX: 00007fa036f8e969 [ 245.979123][ T8183] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 0000000000000006 [ 245.979143][ T8183] RBP: 00007fa037010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 245.979162][ T8183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 245.979182][ T8183] R13: 0000000000000000 R14: 00007fa0371b5fa0 R15: 00007ffc194a1608 [ 245.979226][ T8183] [ 246.056861][ T8185] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 246.287325][ T8185] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 246.897075][ T8176] kexec: Could not allocate control_code_buffer [ 247.766448][ T8230] program syz.3.555 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 247.931007][ T8233] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 247.937646][ T8233] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 248.055300][ T8235] netlink: 206 bytes leftover after parsing attributes in process `syz.3.557'. [ 249.540714][ T8268] Invalid input. Must be >= 4608 [ 250.349305][ T8298] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 250.356022][ T8298] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 250.764643][ T8311] input: jJǸí¸ü;9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input9 [ 251.137725][ T8326] FAULT_INJECTION: forcing a failure. [ 251.137725][ T8326] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 251.173623][ T8326] CPU: 0 UID: 0 PID: 8326 Comm: syz.3.578 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 251.173667][ T8326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 251.173684][ T8326] Call Trace: [ 251.173694][ T8326] [ 251.173706][ T8326] dump_stack_lvl+0x16c/0x1f0 [ 251.173755][ T8326] should_fail_ex+0x512/0x640 [ 251.173806][ T8326] _copy_to_iter+0x477/0x15a0 [ 251.173864][ T8326] ? __pfx__copy_to_iter+0x10/0x10 [ 251.173910][ T8326] ? proc_cgroup_show+0x7a3/0x9c0 [ 251.173975][ T8326] seq_read_iter+0xcf8/0x12c0 [ 251.174039][ T8326] seq_read+0x39e/0x4e0 [ 251.174084][ T8326] ? __pfx_seq_read+0x10/0x10 [ 251.174129][ T8326] ? get_pid_task+0xfc/0x250 [ 251.174175][ T8326] ? __mutex_trylock_common+0xe9/0x250 [ 251.174232][ T8326] ? rw_verify_area+0xcf/0x680 [ 251.174278][ T8326] ? __pfx_seq_read+0x10/0x10 [ 251.174325][ T8326] vfs_read+0x1de/0xc70 [ 251.174361][ T8326] ? __pfx___mutex_lock+0x10/0x10 [ 251.174413][ T8326] ? __pfx_vfs_read+0x10/0x10 [ 251.174453][ T8326] ? __fget_files+0x20e/0x3c0 [ 251.174515][ T8326] ksys_read+0x12a/0x240 [ 251.174544][ T8326] ? __pfx_ksys_read+0x10/0x10 [ 251.174570][ T8326] ? rcu_is_watching+0x12/0xc0 [ 251.174616][ T8326] do_syscall_64+0xcd/0x230 [ 251.174664][ T8326] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 251.174695][ T8326] RIP: 0033:0x7f2596d8e969 [ 251.174720][ T8326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 251.174749][ T8326] RSP: 002b:00007f2597c4e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 251.174778][ T8326] RAX: ffffffffffffffda RBX: 00007f2596fb5fa0 RCX: 00007f2596d8e969 [ 251.174799][ T8326] RDX: 00000000000000e4 RSI: 0000200000000040 RDI: 0000000000000003 [ 251.174818][ T8326] RBP: 00007f2597c4e090 R08: 0000000000000000 R09: 0000000000000000 [ 251.174837][ T8326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 251.174854][ T8326] R13: 0000000000000000 R14: 00007f2596fb5fa0 R15: 00007ffd12317c28 [ 251.174896][ T8326] [ 251.644902][ T8335] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 251.652186][ T8335] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 251.839585][ T8341] FAULT_INJECTION: forcing a failure. [ 251.839585][ T8341] name failslab, interval 1, probability 0, space 0, times 0 [ 251.917371][ T8341] CPU: 0 UID: 0 PID: 8341 Comm: syz.2.583 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 251.917415][ T8341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 251.917432][ T8341] Call Trace: [ 251.917442][ T8341] [ 251.917454][ T8341] dump_stack_lvl+0x16c/0x1f0 [ 251.917502][ T8341] should_fail_ex+0x512/0x640 [ 251.917543][ T8341] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 251.917582][ T8341] should_failslab+0xc2/0x120 [ 251.917620][ T8341] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 251.917654][ T8341] ? sk_prot_alloc+0x60/0x2a0 [ 251.917701][ T8341] sk_prot_alloc+0x60/0x2a0 [ 251.917745][ T8341] sk_alloc+0x36/0xc20 [ 251.917778][ T8341] inet_create+0x3a1/0x1090 [ 251.917821][ T8341] ? inet_create+0x93/0x1090 [ 251.917870][ T8341] __sock_create+0x335/0x8d0 [ 251.917923][ T8341] mptcp_subflow_create_socket+0xf5/0xed0 [ 251.917962][ T8341] ? __pfx_mptcp_subflow_create_socket+0x10/0x10 [ 251.918017][ T8341] __mptcp_nmpc_sk+0x182/0x7d0 [ 251.918052][ T8341] ? __pfx___mptcp_nmpc_sk+0x10/0x10 [ 251.918090][ T8341] ? __local_bh_enable_ip+0xa4/0x120 [ 251.918130][ T8341] mptcp_setsockopt+0x4ef/0x30e0 [ 251.918168][ T8341] ? __pfx_mptcp_setsockopt+0x10/0x10 [ 251.918199][ T8341] ? __lock_acquire+0x5ca/0x1ba0 [ 251.918239][ T8341] ? __pfx_aa_sk_perm+0x10/0x10 [ 251.918274][ T8341] ? find_held_lock+0x2b/0x80 [ 251.918306][ T8341] ? sock_common_setsockopt+0x2e/0xf0 [ 251.918357][ T8341] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 251.918401][ T8341] do_sock_setsockopt+0x221/0x470 [ 251.918442][ T8341] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 251.918510][ T8341] __sys_setsockopt+0x120/0x1a0 [ 251.918550][ T8341] __x64_sys_setsockopt+0xbd/0x160 [ 251.918582][ T8341] ? do_syscall_64+0x91/0x230 [ 251.918625][ T8341] ? lockdep_hardirqs_on+0x7c/0x110 [ 251.918667][ T8341] do_syscall_64+0xcd/0x230 [ 251.918716][ T8341] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 251.918748][ T8341] RIP: 0033:0x7ff3f858e969 [ 251.918772][ T8341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 251.918801][ T8341] RSP: 002b:00007ff3f93f4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 251.918831][ T8341] RAX: ffffffffffffffda RBX: 00007ff3f87b5fa0 RCX: 00007ff3f858e969 [ 251.918851][ T8341] RDX: 0000000000000017 RSI: 0000000000000006 RDI: 0000000000000003 [ 251.918869][ T8341] RBP: 00007ff3f93f4090 R08: 000000000000009e R09: 0000000000000000 [ 251.918887][ T8341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 251.918905][ T8341] R13: 0000000000000000 R14: 00007ff3f87b5fa0 R15: 00007ffe7cfa8e78 [ 251.918946][ T8341] [ 253.698530][ T8377] FAULT_INJECTION: forcing a failure. [ 253.698530][ T8377] name failslab, interval 1, probability 0, space 0, times 0 [ 253.711693][ T8377] CPU: 1 UID: 0 PID: 8377 Comm: syz.1.591 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 253.711732][ T8377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 253.711750][ T8377] Call Trace: [ 253.711760][ T8377] [ 253.711772][ T8377] dump_stack_lvl+0x16c/0x1f0 [ 253.711822][ T8377] should_fail_ex+0x512/0x640 [ 253.711871][ T8377] should_failslab+0xc2/0x120 [ 253.711910][ T8377] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 253.711947][ T8377] ? skb_clone+0x190/0x3f0 [ 253.711988][ T8377] skb_clone+0x190/0x3f0 [ 253.712036][ T8377] dev_queue_xmit_nit+0x3e7/0xca0 [ 253.712086][ T8377] dev_hard_start_xmit+0x5b6/0x740 [ 253.712134][ T8377] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 253.712175][ T8377] __dev_queue_xmit+0x7eb/0x43e0 [ 253.712244][ T8377] ? __pfx___dev_queue_xmit+0x10/0x10 [ 253.712329][ T8377] ? __asan_memcpy+0x3c/0x60 [ 253.712359][ T8377] ? __asan_memcpy+0x3c/0x60 [ 253.712388][ T8377] ? __skb_clone+0x570/0x760 [ 253.712427][ T8377] netlink_deliver_tap+0xa87/0xd30 [ 253.712473][ T8377] netlink_unicast+0x5df/0x7f0 [ 253.712517][ T8377] ? __pfx_netlink_unicast+0x10/0x10 [ 253.712568][ T8377] netlink_sendmsg+0x8d1/0xdd0 [ 253.712613][ T8377] ? __pfx_netlink_sendmsg+0x10/0x10 [ 253.712669][ T8377] sock_write_iter+0x4fc/0x5b0 [ 253.712716][ T8377] ? __pfx_sock_write_iter+0x10/0x10 [ 253.712776][ T8377] ? bpf_lsm_file_permission+0x9/0x10 [ 253.712824][ T8377] ? security_file_permission+0x71/0x210 [ 253.712866][ T8377] ? rw_verify_area+0xcf/0x680 [ 253.712916][ T8377] vfs_write+0x5ba/0x1180 [ 253.712947][ T8377] ? __pfx_sock_write_iter+0x10/0x10 [ 253.712996][ T8377] ? __pfx_vfs_write+0x10/0x10 [ 253.713027][ T8377] ? find_held_lock+0x2b/0x80 [ 253.713084][ T8377] ksys_write+0x205/0x240 [ 253.713114][ T8377] ? __pfx_ksys_write+0x10/0x10 [ 253.713141][ T8377] ? rcu_is_watching+0x12/0xc0 [ 253.713183][ T8377] do_syscall_64+0xcd/0x230 [ 253.713231][ T8377] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 253.713262][ T8377] RIP: 0033:0x7fc68d18e969 [ 253.713287][ T8377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 253.713316][ T8377] RSP: 002b:00007fc68e04a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 253.713345][ T8377] RAX: ffffffffffffffda RBX: 00007fc68d3b5fa0 RCX: 00007fc68d18e969 [ 253.713365][ T8377] RDX: 00000000000002fb RSI: 0000200000000000 RDI: 0000000000000004 [ 253.713384][ T8377] RBP: 00007fc68e04a090 R08: 0000000000000000 R09: 0000000000000000 [ 253.713403][ T8377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 253.713421][ T8377] R13: 0000000000000000 R14: 00007fc68d3b5fa0 R15: 00007ffdf71b9638 [ 253.713462][ T8377] [ 253.985765][ C1] vkms_vblank_simulate: vblank timer overrun [ 254.604203][ T8381] random: crng reseeded on system resumption [ 258.263741][ T5829] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 258.342556][ T8463] FAULT_INJECTION: forcing a failure. [ 258.342556][ T8463] name failslab, interval 1, probability 0, space 0, times 0 [ 258.359110][ T8463] CPU: 1 UID: 0 PID: 8463 Comm: syz.1.606 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 258.359155][ T8463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 258.359174][ T8463] Call Trace: [ 258.359184][ T8463] [ 258.359196][ T8463] dump_stack_lvl+0x16c/0x1f0 [ 258.359248][ T8463] should_fail_ex+0x512/0x640 [ 258.359296][ T8463] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 258.359342][ T8463] should_failslab+0xc2/0x120 [ 258.359371][ T8463] __kmalloc_cache_noprof+0x6a/0x3e0 [ 258.359410][ T8463] ? sctp_endpoint_new+0x7c/0xcd0 [ 258.359450][ T8463] sctp_endpoint_new+0x7c/0xcd0 [ 258.359491][ T8463] sctp_init_sock+0xe2d/0x1330 [ 258.359525][ T8463] ? __pfx_sctp_v6_init_sock+0x10/0x10 [ 258.359560][ T8463] sctp_v6_init_sock+0x16/0x70 [ 258.359593][ T8463] ? __pfx_sctp_v6_init_sock+0x10/0x10 [ 258.359629][ T8463] inet6_create+0xb2d/0x1300 [ 258.359655][ T8463] ? inet6_create+0x7f/0x1300 [ 258.359682][ T8463] __sock_create+0x335/0x8d0 [ 258.359723][ T8463] inet_ctl_sock_create+0x94/0x230 [ 258.359755][ T8463] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 258.359785][ T8463] ? lockdep_init_map_type+0x5c/0x280 [ 258.359819][ T8463] ? do_init_timer+0xc9/0x110 [ 258.359845][ T8463] ? __pfx_sctp_ctrlsock_init+0x10/0x10 [ 258.359885][ T8463] sctp_ctrlsock_init+0x40/0xf0 [ 258.359917][ T8463] ops_init+0x1df/0x5f0 [ 258.359949][ T8463] setup_net+0x21e/0x850 [ 258.359980][ T8463] ? __pfx_setup_net+0x10/0x10 [ 258.360007][ T8463] ? lockdep_init_map_type+0x5c/0x280 [ 258.360038][ T8463] ? __pfx_down_read_killable+0x10/0x10 [ 258.360079][ T8463] ? debug_mutex_init+0x37/0x70 [ 258.360106][ T8463] copy_net_ns+0x2a6/0x5f0 [ 258.360141][ T8463] create_new_namespaces+0x3ea/0xad0 [ 258.360173][ T8463] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 258.360202][ T8463] ksys_unshare+0x45b/0xa40 [ 258.360234][ T8463] ? __pfx_ksys_unshare+0x10/0x10 [ 258.360264][ T8463] ? xfd_validate_state+0x5d/0x180 [ 258.360303][ T8463] ? rcu_is_watching+0x12/0xc0 [ 258.360341][ T8463] __x64_sys_unshare+0x31/0x40 [ 258.360386][ T8463] do_syscall_64+0xcd/0x230 [ 258.360422][ T8463] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 258.360446][ T8463] RIP: 0033:0x7fc68d18e969 [ 258.360465][ T8463] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 258.360487][ T8463] RSP: 002b:00007fc68e008038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 258.360516][ T8463] RAX: ffffffffffffffda RBX: 00007fc68d3b6160 RCX: 00007fc68d18e969 [ 258.360532][ T8463] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 258.360546][ T8463] RBP: 00007fc68d210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 258.360559][ T8463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 258.360576][ T8463] R13: 0000000000000000 R14: 00007fc68d3b6160 R15: 00007ffdf71b9638 [ 258.360613][ T8463] [ 259.531748][ T8471] FAULT_INJECTION: forcing a failure. [ 259.531748][ T8471] name failslab, interval 1, probability 0, space 0, times 0 [ 259.567352][ T8471] CPU: 1 UID: 0 PID: 8471 Comm: syz.3.610 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 259.567396][ T8471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 259.567413][ T8471] Call Trace: [ 259.567423][ T8471] [ 259.567434][ T8471] dump_stack_lvl+0x16c/0x1f0 [ 259.567484][ T8471] should_fail_ex+0x512/0x640 [ 259.567526][ T8471] ? __kmalloc_noprof+0xbf/0x510 [ 259.567563][ T8471] ? __register_sysctl_table+0xb3/0x1900 [ 259.567596][ T8471] should_failslab+0xc2/0x120 [ 259.567635][ T8471] __kmalloc_noprof+0xd2/0x510 [ 259.567678][ T8471] __register_sysctl_table+0xb3/0x1900 [ 259.567715][ T8471] ? is_module_address+0x5f/0xf0 [ 259.567772][ T8471] ? __pfx___register_sysctl_table+0x10/0x10 [ 259.567806][ T8471] ? is_module_address+0x69/0xf0 [ 259.567845][ T8471] ? register_net_sysctl_sz+0x228/0x3e0 [ 259.567893][ T8471] ? __asan_memcpy+0x3c/0x60 [ 259.567922][ T8471] ? __pfx_nf_lwtunnel_net_init+0x10/0x10 [ 259.567961][ T8471] nf_lwtunnel_net_init+0x60/0xf0 [ 259.567999][ T8471] ops_init+0x1df/0x5f0 [ 259.568042][ T8471] setup_net+0x21e/0x850 [ 259.568085][ T8471] ? __pfx_setup_net+0x10/0x10 [ 259.568121][ T8471] ? lockdep_init_map_type+0x5c/0x280 [ 259.568161][ T8471] ? __pfx_down_read_killable+0x10/0x10 [ 259.568214][ T8471] ? debug_mutex_init+0x37/0x70 [ 259.568249][ T8471] copy_net_ns+0x2a6/0x5f0 [ 259.568294][ T8471] create_new_namespaces+0x3ea/0xad0 [ 259.568340][ T8471] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 259.568380][ T8471] ksys_unshare+0x45b/0xa40 [ 259.568436][ T8471] ? __pfx_ksys_unshare+0x10/0x10 [ 259.568480][ T8471] ? ksys_write+0x1b9/0x240 [ 259.568510][ T8471] ? rcu_is_watching+0x12/0xc0 [ 259.568550][ T8471] __x64_sys_unshare+0x31/0x40 [ 259.568592][ T8471] do_syscall_64+0xcd/0x230 [ 259.568640][ T8471] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 259.568673][ T8471] RIP: 0033:0x7f2596d8e969 [ 259.568698][ T8471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 259.568733][ T8471] RSP: 002b:00007f2597c4e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 259.568769][ T8471] RAX: ffffffffffffffda RBX: 00007f2596fb5fa0 RCX: 00007f2596d8e969 [ 259.568790][ T8471] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 259.568809][ T8471] RBP: 00007f2597c4e090 R08: 0000000000000000 R09: 0000000000000000 [ 259.568828][ T8471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 259.568846][ T8471] R13: 0000000000000000 R14: 00007f2596fb5fa0 R15: 00007ffd12317c28 [ 259.568888][ T8471] [ 259.983526][ T8474] netlink: 338 bytes leftover after parsing attributes in process `syz.0.611'. [ 260.885094][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 260.894906][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 262.782251][ T8520] netlink: 8 bytes leftover after parsing attributes in process `syz.1.621'. [ 262.910132][ T8524] netlink: 12 bytes leftover after parsing attributes in process `syz.1.621'. [ 263.052801][ T8507] warning: `syz.3.617' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 265.364387][ T8552] ima: policy update failed [ 265.407442][ T30] audit: type=1802 audit(6041875516.960:4): pid=8552 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.626" res=0 errno=0 [ 268.586212][ T8616] netlink: 326 bytes leftover after parsing attributes in process `syz.2.643'. [ 269.439441][ T8625] netlink: 4 bytes leftover after parsing attributes in process `syz.1.644'. [ 269.551143][ T8610] kexec: Could not allocate control_code_buffer [ 269.614847][ T8629] netlink: 4 bytes leftover after parsing attributes in process `syz.1.646'. [ 269.638267][ T8629] netlink: 25 bytes leftover after parsing attributes in process `syz.1.646'. [ 269.751105][ T8631] FAULT_INJECTION: forcing a failure. [ 269.751105][ T8631] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 269.804014][ T8631] CPU: 1 UID: 0 PID: 8631 Comm: syz.3.647 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 269.804058][ T8631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 269.804077][ T8631] Call Trace: [ 269.804087][ T8631] [ 269.804099][ T8631] dump_stack_lvl+0x16c/0x1f0 [ 269.804147][ T8631] should_fail_ex+0x512/0x640 [ 269.804197][ T8631] _copy_to_user+0x32/0xd0 [ 269.804249][ T8631] simple_read_from_buffer+0xcb/0x170 [ 269.804299][ T8631] proc_fail_nth_read+0x197/0x270 [ 269.804344][ T8631] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 269.804392][ T8631] ? rw_verify_area+0xcf/0x680 [ 269.804437][ T8631] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 269.804483][ T8631] vfs_read+0x1de/0xc70 [ 269.804516][ T8631] ? __pfx___mutex_lock+0x10/0x10 [ 269.804561][ T8631] ? __pfx_vfs_read+0x10/0x10 [ 269.804602][ T8631] ? __fget_files+0x20e/0x3c0 [ 269.804673][ T8631] ksys_read+0x12a/0x240 [ 269.804702][ T8631] ? __pfx_ksys_read+0x10/0x10 [ 269.804729][ T8631] ? rcu_is_watching+0x12/0xc0 [ 269.804771][ T8631] do_syscall_64+0xcd/0x230 [ 269.804821][ T8631] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 269.804853][ T8631] RIP: 0033:0x7f2596d8d37c [ 269.804878][ T8631] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 269.804910][ T8631] RSP: 002b:00007f2597c4e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 269.804939][ T8631] RAX: ffffffffffffffda RBX: 00007f2596fb5fa0 RCX: 00007f2596d8d37c [ 269.804960][ T8631] RDX: 000000000000000f RSI: 00007f2597c4e0a0 RDI: 0000000000000004 [ 269.804978][ T8631] RBP: 00007f2597c4e090 R08: 0000000000000000 R09: 0000000000000000 [ 269.804997][ T8631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 269.805015][ T8631] R13: 0000000000000000 R14: 00007f2596fb5fa0 R15: 00007ffd12317c28 [ 269.805056][ T8631] [ 270.098076][ T8640] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 270.970784][ T8661] netlink: 16 bytes leftover after parsing attributes in process `syz.3.655'. [ 271.138744][ T8667] FAULT_INJECTION: forcing a failure. [ 271.138744][ T8667] name failslab, interval 1, probability 0, space 0, times 0 [ 271.167587][ T8667] CPU: 1 UID: 0 PID: 8667 Comm: syz.1.656 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 271.167633][ T8667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 271.167651][ T8667] Call Trace: [ 271.167661][ T8667] [ 271.167673][ T8667] dump_stack_lvl+0x16c/0x1f0 [ 271.167720][ T8667] should_fail_ex+0x512/0x640 [ 271.167782][ T8667] should_failslab+0xc2/0x120 [ 271.167821][ T8667] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 271.167858][ T8667] ? skb_clone+0x190/0x3f0 [ 271.167900][ T8667] skb_clone+0x190/0x3f0 [ 271.167938][ T8667] netlink_deliver_tap+0xabd/0xd30 [ 271.167984][ T8667] netlink_unicast+0x5df/0x7f0 [ 271.168028][ T8667] ? __pfx_netlink_unicast+0x10/0x10 [ 271.168066][ T8667] ? __lock_acquire+0xaa4/0x1ba0 [ 271.168115][ T8667] netlink_sendmsg+0x8d1/0xdd0 [ 271.168162][ T8667] ? __pfx_netlink_sendmsg+0x10/0x10 [ 271.168218][ T8667] ____sys_sendmsg+0xa95/0xc70 [ 271.168264][ T8667] ? copy_msghdr_from_user+0x10a/0x160 [ 271.168300][ T8667] ? __pfx_____sys_sendmsg+0x10/0x10 [ 271.168365][ T8667] ___sys_sendmsg+0x134/0x1d0 [ 271.168403][ T8667] ? __pfx____sys_sendmsg+0x10/0x10 [ 271.168492][ T8667] __sys_sendmsg+0x16d/0x220 [ 271.168530][ T8667] ? __pfx___sys_sendmsg+0x10/0x10 [ 271.168579][ T8667] ? rcu_is_watching+0x12/0xc0 [ 271.168621][ T8667] do_syscall_64+0xcd/0x230 [ 271.168670][ T8667] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 271.168702][ T8667] RIP: 0033:0x7fc68d18e969 [ 271.168727][ T8667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 271.168764][ T8667] RSP: 002b:00007fc68e04a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 271.168793][ T8667] RAX: ffffffffffffffda RBX: 00007fc68d3b5fa0 RCX: 00007fc68d18e969 [ 271.168814][ T8667] RDX: 0000000010004010 RSI: 0000200000000100 RDI: 0000000000000004 [ 271.168834][ T8667] RBP: 00007fc68e04a090 R08: 0000000000000000 R09: 0000000000000000 [ 271.168853][ T8667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 271.168872][ T8667] R13: 0000000000000000 R14: 00007fc68d3b5fa0 R15: 00007ffdf71b9638 [ 271.168913][ T8667] [ 271.168935][ T8667] netlink: 16 bytes leftover after parsing attributes in process `syz.1.656'. [ 272.453331][ T8697] FAULT_INJECTION: forcing a failure. [ 272.453331][ T8697] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 272.500248][ T8697] CPU: 1 UID: 0 PID: 8697 Comm: syz.0.666 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 272.500316][ T8697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 272.500345][ T8697] Call Trace: [ 272.500361][ T8697] [ 272.500379][ T8697] dump_stack_lvl+0x16c/0x1f0 [ 272.500431][ T8697] should_fail_ex+0x512/0x640 [ 272.500482][ T8697] _copy_from_user+0x2e/0xd0 [ 272.500532][ T8697] __sys_bpf+0x21d/0x4d80 [ 272.500581][ T8697] ? __pfx___sys_bpf+0x10/0x10 [ 272.500624][ T8697] ? ksys_write+0x190/0x240 [ 272.500668][ T8697] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 272.500724][ T8697] ? fput+0x70/0xf0 [ 272.500754][ T8697] ? ksys_write+0x1b9/0x240 [ 272.500777][ T8697] ? __pfx_ksys_write+0x10/0x10 [ 272.500799][ T8697] ? rcu_is_watching+0x12/0xc0 [ 272.500828][ T8697] __x64_sys_bpf+0x78/0xc0 [ 272.500864][ T8697] ? lockdep_hardirqs_on+0x7c/0x110 [ 272.500900][ T8697] do_syscall_64+0xcd/0x230 [ 272.500939][ T8697] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 272.500965][ T8697] RIP: 0033:0x7fa036f8e969 [ 272.500986][ T8697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 272.501012][ T8697] RSP: 002b:00007fa037dbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 272.501036][ T8697] RAX: ffffffffffffffda RBX: 00007fa0371b5fa0 RCX: 00007fa036f8e969 [ 272.501053][ T8697] RDX: 000000000000000c RSI: 00002000000001c0 RDI: 0000000000000001 [ 272.501068][ T8697] RBP: 00007fa037dbc090 R08: 0000000000000000 R09: 0000000000000000 [ 272.501084][ T8697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 272.501098][ T8697] R13: 0000000000000000 R14: 00007fa0371b5fa0 R15: 00007ffc194a1608 [ 272.501129][ T8697] [ 274.450896][ T8741] FAULT_INJECTION: forcing a failure. [ 274.450896][ T8741] name failslab, interval 1, probability 0, space 0, times 0 [ 274.490024][ T8741] CPU: 1 UID: 0 PID: 8741 Comm: syz.2.676 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 274.490068][ T8741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 274.490086][ T8741] Call Trace: [ 274.490095][ T8741] [ 274.490107][ T8741] dump_stack_lvl+0x16c/0x1f0 [ 274.490155][ T8741] should_fail_ex+0x512/0x640 [ 274.490196][ T8741] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 274.490236][ T8741] should_failslab+0xc2/0x120 [ 274.490273][ T8741] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 274.490307][ T8741] ? __alloc_skb+0x2b2/0x380 [ 274.490345][ T8741] __alloc_skb+0x2b2/0x380 [ 274.490375][ T8741] ? __pfx___alloc_skb+0x10/0x10 [ 274.490413][ T8741] ? __lock_acquire+0xaa4/0x1ba0 [ 274.490467][ T8741] netlink_alloc_large_skb+0x69/0x130 [ 274.490509][ T8741] netlink_sendmsg+0x6a1/0xdd0 [ 274.490555][ T8741] ? __pfx_netlink_sendmsg+0x10/0x10 [ 274.490609][ T8741] ____sys_sendmsg+0xa95/0xc70 [ 274.490655][ T8741] ? copy_msghdr_from_user+0x10a/0x160 [ 274.490690][ T8741] ? __pfx_____sys_sendmsg+0x10/0x10 [ 274.490740][ T8741] ? kfree+0x252/0x4d0 [ 274.490763][ T8741] ? __pfx__kstrtoull+0x10/0x10 [ 274.490807][ T8741] ___sys_sendmsg+0x134/0x1d0 [ 274.490845][ T8741] ? __pfx____sys_sendmsg+0x10/0x10 [ 274.490916][ T8741] ? __pfx___might_resched+0x10/0x10 [ 274.490960][ T8741] __sys_sendmmsg+0x200/0x420 [ 274.491001][ T8741] ? __pfx___sys_sendmmsg+0x10/0x10 [ 274.491051][ T8741] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 274.491115][ T8741] ? fput+0x70/0xf0 [ 274.491151][ T8741] ? ksys_write+0x1b9/0x240 [ 274.491178][ T8741] ? __pfx_ksys_write+0x10/0x10 [ 274.491206][ T8741] ? rcu_is_watching+0x12/0xc0 [ 274.491242][ T8741] __x64_sys_sendmmsg+0x9c/0x100 [ 274.491278][ T8741] ? lockdep_hardirqs_on+0x7c/0x110 [ 274.491320][ T8741] do_syscall_64+0xcd/0x230 [ 274.491368][ T8741] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 274.491401][ T8741] RIP: 0033:0x7ff3f858e969 [ 274.491425][ T8741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 274.491463][ T8741] RSP: 002b:00007ff3f93f4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 274.491492][ T8741] RAX: ffffffffffffffda RBX: 00007ff3f87b5fa0 RCX: 00007ff3f858e969 [ 274.491513][ T8741] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000004 [ 274.491532][ T8741] RBP: 00007ff3f93f4090 R08: 0000000000000000 R09: 0000000000000000 [ 274.491551][ T8741] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 274.491570][ T8741] R13: 0000000000000000 R14: 00007ff3f87b5fa0 R15: 00007ffe7cfa8e78 [ 274.491610][ T8741] [ 275.884281][ T8752] kexec: Could not allocate control_code_buffer [ 275.958539][ T8758] FAULT_INJECTION: forcing a failure. [ 275.958539][ T8758] name failslab, interval 1, probability 0, space 0, times 0 [ 276.027271][ T8758] CPU: 1 UID: 0 PID: 8758 Comm: syz.3.681 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 276.027317][ T8758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 276.027335][ T8758] Call Trace: [ 276.027346][ T8758] [ 276.027357][ T8758] dump_stack_lvl+0x16c/0x1f0 [ 276.027405][ T8758] should_fail_ex+0x512/0x640 [ 276.027447][ T8758] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 276.027485][ T8758] should_failslab+0xc2/0x120 [ 276.027520][ T8758] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 276.027550][ T8758] ? __proc_create+0xc3/0x8c0 [ 276.027579][ T8758] ? __proc_create+0x2ce/0x8c0 [ 276.027615][ T8758] __proc_create+0x2ce/0x8c0 [ 276.027647][ T8758] ? __pfx___proc_create+0x10/0x10 [ 276.027677][ T8758] ? pcpu_chunk_relocate+0x126/0x190 [ 276.027709][ T8758] ? find_held_lock+0x2b/0x80 [ 276.027743][ T8758] proc_create_reg+0x7d/0x180 [ 276.027776][ T8758] ? __pfx_xfrm_statistics_seq_show+0x10/0x10 [ 276.027810][ T8758] proc_create_net_single+0x86/0x170 [ 276.027843][ T8758] ? __pfx_proc_create_net_single+0x10/0x10 [ 276.027886][ T8758] ? __pfx_xfrm_net_init+0x10/0x10 [ 276.027928][ T8758] xfrm_proc_init+0x4d/0x70 [ 276.027957][ T8758] xfrm_net_init+0x1f0/0xcc0 [ 276.028006][ T8758] ? __pfx_xfrm_net_init+0x10/0x10 [ 276.028048][ T8758] ops_init+0x1df/0x5f0 [ 276.028094][ T8758] setup_net+0x21e/0x850 [ 276.028136][ T8758] ? __pfx_setup_net+0x10/0x10 [ 276.028171][ T8758] ? lockdep_init_map_type+0x5c/0x280 [ 276.028213][ T8758] ? __pfx_down_read_killable+0x10/0x10 [ 276.028268][ T8758] ? debug_mutex_init+0x37/0x70 [ 276.028300][ T8758] copy_net_ns+0x2a6/0x5f0 [ 276.028345][ T8758] create_new_namespaces+0x3ea/0xad0 [ 276.028387][ T8758] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 276.028423][ T8758] ksys_unshare+0x45b/0xa40 [ 276.028462][ T8758] ? __pfx_ksys_unshare+0x10/0x10 [ 276.028499][ T8758] ? xfd_validate_state+0x5d/0x180 [ 276.028546][ T8758] ? rcu_is_watching+0x12/0xc0 [ 276.028582][ T8758] __x64_sys_unshare+0x31/0x40 [ 276.028620][ T8758] do_syscall_64+0xcd/0x230 [ 276.028664][ T8758] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 276.028694][ T8758] RIP: 0033:0x7f2596d8e969 [ 276.028716][ T8758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 276.028744][ T8758] RSP: 002b:00007f2597c4e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 276.028771][ T8758] RAX: ffffffffffffffda RBX: 00007f2596fb5fa0 RCX: 00007f2596d8e969 [ 276.028790][ T8758] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 276.028807][ T8758] RBP: 00007f2596e10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 276.028824][ T8758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 276.028841][ T8758] R13: 0000000000000000 R14: 00007f2596fb5fa0 R15: 00007ffd12317c28 [ 276.028878][ T8758] [ 276.452778][ T8773] device-mapper: ioctl: Invalid data size in the ioctl structure: 4294967295 [ 276.542628][ T8771] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 277.095715][ T8790] netlink: 28 bytes leftover after parsing attributes in process `syz.0.688'. [ 278.119027][ T8788] kexec: Could not allocate control_code_buffer [ 278.898959][ T8826] netlink: 28 bytes leftover after parsing attributes in process `syz.0.697'. [ 278.925077][ T8826] ipvlan1: entered allmulticast mode [ 278.944796][ T8826] veth0_vlan: entered allmulticast mode [ 279.332064][ T8837] FAULT_INJECTION: forcing a failure. [ 279.332064][ T8837] name failslab, interval 1, probability 0, space 0, times 0 [ 279.367683][ T8837] CPU: 1 UID: 0 PID: 8837 Comm: syz.0.700 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 279.367730][ T8837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 279.367749][ T8837] Call Trace: [ 279.367760][ T8837] [ 279.367772][ T8837] dump_stack_lvl+0x16c/0x1f0 [ 279.367831][ T8837] should_fail_ex+0x512/0x640 [ 279.367876][ T8837] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 279.367916][ T8837] should_failslab+0xc2/0x120 [ 279.367956][ T8837] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 279.367990][ T8837] ? __pfx___schedule+0x10/0x10 [ 279.368030][ T8837] ? alloc_empty_file+0x55/0x1e0 [ 279.368075][ T8837] alloc_empty_file+0x55/0x1e0 [ 279.368119][ T8837] path_openat+0xe0/0x2d40 [ 279.368147][ T8837] ? __x64_sys_openat+0x174/0x210 [ 279.368189][ T8837] ? do_syscall_64+0xcd/0x230 [ 279.368234][ T8837] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 279.368283][ T8837] ? __pfx_path_openat+0x10/0x10 [ 279.368326][ T8837] do_filp_open+0x20b/0x470 [ 279.368357][ T8837] ? __pfx_do_filp_open+0x10/0x10 [ 279.368418][ T8837] ? alloc_fd+0x471/0x7d0 [ 279.368479][ T8837] do_sys_openat2+0x11b/0x1d0 [ 279.368522][ T8837] ? __pfx_do_sys_openat2+0x10/0x10 [ 279.368562][ T8837] ? __sock_release+0x20b/0x270 [ 279.368616][ T8837] __x64_sys_openat+0x174/0x210 [ 279.368662][ T8837] ? __pfx___x64_sys_openat+0x10/0x10 [ 279.368711][ T8837] ? rcu_is_watching+0x12/0xc0 [ 279.368754][ T8837] do_syscall_64+0xcd/0x230 [ 279.368810][ T8837] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 279.368842][ T8837] RIP: 0033:0x7fa036f8e969 [ 279.368869][ T8837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 279.368902][ T8837] RSP: 002b:00007fa037dbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 279.368933][ T8837] RAX: ffffffffffffffda RBX: 00007fa0371b5fa0 RCX: 00007fa036f8e969 [ 279.368955][ T8837] RDX: 00000000000c8841 RSI: 0000200000000200 RDI: ffffffffffffff9c [ 279.368975][ T8837] RBP: 00007fa037010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 279.368995][ T8837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 279.369014][ T8837] R13: 0000000000000000 R14: 00007fa0371b5fa0 R15: 00007ffc194a1608 [ 279.369055][ T8837] [ 279.997057][ T8851] netlink: 'syz.0.704': attribute type 2 has an invalid length. [ 281.008841][ T30] audit: type=1800 audit(6041875532.573:5): pid=8869 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.711" name="members" dev="configfs" ino=18235 res=0 errno=0 [ 281.220734][ T8845] kexec: Could not allocate control_code_buffer [ 281.388819][ T8879] FAULT_INJECTION: forcing a failure. [ 281.388819][ T8879] name failslab, interval 1, probability 0, space 0, times 0 [ 281.446993][ T8879] CPU: 1 UID: 0 PID: 8879 Comm: syz.0.713 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 281.447039][ T8879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 281.447057][ T8879] Call Trace: [ 281.447066][ T8879] [ 281.447078][ T8879] dump_stack_lvl+0x16c/0x1f0 [ 281.447128][ T8879] should_fail_ex+0x512/0x640 [ 281.447172][ T8879] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 281.447218][ T8879] should_failslab+0xc2/0x120 [ 281.447254][ T8879] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 281.447291][ T8879] ? __alloc_skb+0x2b2/0x380 [ 281.447331][ T8879] __alloc_skb+0x2b2/0x380 [ 281.447363][ T8879] ? __pfx___alloc_skb+0x10/0x10 [ 281.447401][ T8879] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 281.447439][ T8879] ? __lock_acquire+0xaa4/0x1ba0 [ 281.447485][ T8879] netlink_alloc_large_skb+0x69/0x130 [ 281.447527][ T8879] netlink_sendmsg+0x6a1/0xdd0 [ 281.447572][ T8879] ? __pfx_netlink_sendmsg+0x10/0x10 [ 281.447638][ T8879] ____sys_sendmsg+0xa95/0xc70 [ 281.447686][ T8879] ? copy_msghdr_from_user+0x10a/0x160 [ 281.447721][ T8879] ? __pfx_____sys_sendmsg+0x10/0x10 [ 281.447774][ T8879] ? __pfx__kstrtoull+0x10/0x10 [ 281.447818][ T8879] ___sys_sendmsg+0x134/0x1d0 [ 281.447854][ T8879] ? __pfx____sys_sendmsg+0x10/0x10 [ 281.447909][ T8879] ? find_held_lock+0x2b/0x80 [ 281.447964][ T8879] __sys_sendmmsg+0x200/0x420 [ 281.448005][ T8879] ? __pfx___sys_sendmmsg+0x10/0x10 [ 281.448055][ T8879] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 281.448116][ T8879] ? fput+0x70/0xf0 [ 281.448153][ T8879] ? ksys_write+0x1b9/0x240 [ 281.448182][ T8879] ? __pfx_ksys_write+0x10/0x10 [ 281.448210][ T8879] ? rcu_is_watching+0x12/0xc0 [ 281.448245][ T8879] __x64_sys_sendmmsg+0x9c/0x100 [ 281.448279][ T8879] ? lockdep_hardirqs_on+0x7c/0x110 [ 281.448320][ T8879] do_syscall_64+0xcd/0x230 [ 281.448367][ T8879] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 281.448399][ T8879] RIP: 0033:0x7fa036f8e969 [ 281.448424][ T8879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 281.448455][ T8879] RSP: 002b:00007fa037dbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 281.448483][ T8879] RAX: ffffffffffffffda RBX: 00007fa0371b5fa0 RCX: 00007fa036f8e969 [ 281.448504][ T8879] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 281.448523][ T8879] RBP: 00007fa037dbc090 R08: 0000000000000000 R09: 0000000000000000 [ 281.448542][ T8879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 281.448561][ T8879] R13: 0000000000000000 R14: 00007fa0371b5fa0 R15: 00007ffc194a1608 [ 281.448601][ T8879] [ 284.384021][ T8910] tipc: Started in network mode [ 284.413713][ T8910] tipc: Node identity ee00, cluster identity 4711 [ 284.431718][ T8910] tipc: Node number set to 60928 [ 284.470098][ T8913] FAULT_INJECTION: forcing a failure. [ 284.470098][ T8913] name failslab, interval 1, probability 0, space 0, times 0 [ 284.483102][ T8913] CPU: 1 UID: 0 PID: 8913 Comm: syz.1.720 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 284.483146][ T8913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 284.483163][ T8913] Call Trace: [ 284.483172][ T8913] [ 284.483183][ T8913] dump_stack_lvl+0x16c/0x1f0 [ 284.483233][ T8913] should_fail_ex+0x512/0x640 [ 284.483275][ T8913] ? __kmalloc_noprof+0xbf/0x510 [ 284.483312][ T8913] ? alloc_pipe_info+0x1ec/0x590 [ 284.483342][ T8913] should_failslab+0xc2/0x120 [ 284.483391][ T8913] __kmalloc_noprof+0xd2/0x510 [ 284.483435][ T8913] alloc_pipe_info+0x1ec/0x590 [ 284.483473][ T8913] splice_direct_to_actor+0x77d/0xa30 [ 284.483524][ T8913] ? __pfx_direct_splice_actor+0x10/0x10 [ 284.483576][ T8913] ? __pfx_aa_file_perm+0x10/0x10 [ 284.483618][ T8913] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 284.483664][ T8913] ? get_pid_task+0xfc/0x250 [ 284.483719][ T8913] do_splice_direct+0x174/0x240 [ 284.483767][ T8913] ? __pfx_do_splice_direct+0x10/0x10 [ 284.483815][ T8913] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 284.483865][ T8913] ? rw_verify_area+0xcf/0x680 [ 284.483916][ T8913] do_sendfile+0xafd/0xe50 [ 284.483972][ T8913] ? __pfx_do_sendfile+0x10/0x10 [ 284.484022][ T8913] ? __fget_files+0x20e/0x3c0 [ 284.484080][ T8913] __x64_sys_sendfile64+0x1d8/0x220 [ 284.484114][ T8913] ? ksys_write+0x1b9/0x240 [ 284.484142][ T8913] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 284.484177][ T8913] ? rcu_is_watching+0x12/0xc0 [ 284.484217][ T8913] do_syscall_64+0xcd/0x230 [ 284.484266][ T8913] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 284.484299][ T8913] RIP: 0033:0x7fc68d18e969 [ 284.484323][ T8913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 284.484362][ T8913] RSP: 002b:00007fc68e04a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 284.484391][ T8913] RAX: ffffffffffffffda RBX: 00007fc68d3b5fa0 RCX: 00007fc68d18e969 [ 284.484412][ T8913] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 284.484431][ T8913] RBP: 00007fc68e04a090 R08: 0000000000000000 R09: 0000000000000000 [ 284.484450][ T8913] R10: 0000000001000200 R11: 0000000000000246 R12: 0000000000000001 [ 284.484469][ T8913] R13: 0000000000000000 R14: 00007fc68d3b5fa0 R15: 00007ffdf71b9638 [ 284.484510][ T8913] [ 286.456095][ T8952] FAULT_INJECTION: forcing a failure. [ 286.456095][ T8952] name failslab, interval 1, probability 0, space 0, times 0 [ 286.495606][ T8952] CPU: 0 UID: 0 PID: 8952 Comm: syz.2.726 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 286.495659][ T8952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 286.495679][ T8952] Call Trace: [ 286.495689][ T8952] [ 286.495702][ T8952] dump_stack_lvl+0x16c/0x1f0 [ 286.495759][ T8952] should_fail_ex+0x512/0x640 [ 286.495807][ T8952] ? fs_reclaim_acquire+0xae/0x150 [ 286.495862][ T8952] should_failslab+0xc2/0x120 [ 286.495906][ T8952] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 286.495946][ T8952] ? security_inode_alloc+0x3b/0x2b0 [ 286.495994][ T8952] security_inode_alloc+0x3b/0x2b0 [ 286.496033][ T8952] inode_init_always_gfp+0xce4/0x1030 [ 286.496095][ T8952] alloc_inode+0x86/0x240 [ 286.496149][ T8952] path_from_stashed+0x2be/0xb00 [ 286.496191][ T8952] ? do_raw_spin_lock+0x12c/0x2b0 [ 286.496245][ T8952] ? __pfx_path_from_stashed+0x10/0x10 [ 286.496281][ T8952] ? do_raw_spin_unlock+0x172/0x230 [ 286.496337][ T8952] ns_get_path+0x5f/0x80 [ 286.496388][ T8952] proc_ns_get_link+0x121/0x260 [ 286.496438][ T8952] ? __pfx_proc_ns_get_link+0x10/0x10 [ 286.496494][ T8952] ? __pfx___might_resched+0x10/0x10 [ 286.496535][ T8952] ? __pfx_proc_ns_get_link+0x10/0x10 [ 286.496590][ T8952] step_into+0x1b22/0x2270 [ 286.496650][ T8952] ? __pfx_step_into+0x10/0x10 [ 286.496700][ T8952] ? find_held_lock+0x2b/0x80 [ 286.496749][ T8952] path_openat+0x749/0x2d40 [ 286.496796][ T8952] ? __pfx_path_openat+0x10/0x10 [ 286.496842][ T8952] do_filp_open+0x20b/0x470 [ 286.496877][ T8952] ? __pfx_do_filp_open+0x10/0x10 [ 286.496942][ T8952] ? alloc_fd+0x471/0x7d0 [ 286.497007][ T8952] do_sys_openat2+0x11b/0x1d0 [ 286.497054][ T8952] ? __pfx_do_sys_openat2+0x10/0x10 [ 286.497118][ T8952] __x64_sys_openat+0x174/0x210 [ 286.497165][ T8952] ? __pfx___x64_sys_openat+0x10/0x10 [ 286.497231][ T8952] ? rcu_is_watching+0x12/0xc0 [ 286.497275][ T8952] do_syscall_64+0xcd/0x230 [ 286.497329][ T8952] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.497366][ T8952] RIP: 0033:0x7ff3f858d2d0 [ 286.497394][ T8952] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 286.497428][ T8952] RSP: 002b:00007ff3f93f3f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 286.497460][ T8952] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007ff3f858d2d0 [ 286.497484][ T8952] RDX: 0000000000000002 RSI: 00007ff3f93f3fa0 RDI: 00000000ffffff9c [ 286.497506][ T8952] RBP: 00007ff3f93f3fa0 R08: 0000000000000000 R09: 0000000000000000 [ 286.497527][ T8952] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 286.497547][ T8952] R13: 0000000000000000 R14: 00007ff3f87b5fa0 R15: 00007ffe7cfa8e78 [ 286.497589][ T8952] [ 286.879501][ T8931] kexec: Could not allocate control_code_buffer [ 287.233969][ T8970] FAULT_INJECTION: forcing a failure. [ 287.233969][ T8970] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 287.262106][ T8970] CPU: 0 UID: 0 PID: 8970 Comm: syz.2.731 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 287.262160][ T8970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 287.262178][ T8970] Call Trace: [ 287.262188][ T8970] [ 287.262199][ T8970] dump_stack_lvl+0x16c/0x1f0 [ 287.262249][ T8970] should_fail_ex+0x512/0x640 [ 287.262300][ T8970] _copy_to_iter+0x477/0x15a0 [ 287.262358][ T8970] ? __pfx__copy_to_iter+0x10/0x10 [ 287.262407][ T8970] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 287.262452][ T8970] ? rhashtable_walk_stop+0x1cd/0x320 [ 287.262493][ T8970] ? find_held_lock+0x2b/0x80 [ 287.262523][ T8970] ? seq_read_iter+0xc7d/0x12c0 [ 287.262576][ T8970] seq_read_iter+0xcf8/0x12c0 [ 287.262640][ T8970] seq_read+0x39e/0x4e0 [ 287.262685][ T8970] ? __pfx_seq_read+0x10/0x10 [ 287.262734][ T8970] ? get_pid_task+0xfc/0x250 [ 287.262792][ T8970] ? __pfx_seq_read+0x10/0x10 [ 287.262836][ T8970] proc_reg_read+0x23d/0x330 [ 287.262864][ T8970] ? __pfx_proc_reg_read+0x10/0x10 [ 287.262898][ T8970] vfs_read+0x1de/0xc70 [ 287.262931][ T8970] ? __pfx___mutex_lock+0x10/0x10 [ 287.262975][ T8970] ? __pfx_vfs_read+0x10/0x10 [ 287.263014][ T8970] ? __fget_files+0x20e/0x3c0 [ 287.263075][ T8970] ksys_read+0x12a/0x240 [ 287.263103][ T8970] ? __pfx_ksys_read+0x10/0x10 [ 287.263140][ T8970] ? rcu_is_watching+0x12/0xc0 [ 287.263181][ T8970] do_syscall_64+0xcd/0x230 [ 287.263227][ T8970] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.263258][ T8970] RIP: 0033:0x7ff3f858e969 [ 287.263282][ T8970] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 287.263311][ T8970] RSP: 002b:00007ff3f93d3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 287.263339][ T8970] RAX: ffffffffffffffda RBX: 00007ff3f87b6080 RCX: 00007ff3f858e969 [ 287.263361][ T8970] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003 [ 287.263379][ T8970] RBP: 00007ff3f93d3090 R08: 0000000000000000 R09: 0000000000000000 [ 287.263399][ T8970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 287.263417][ T8970] R13: 0000000000000000 R14: 00007ff3f87b6080 R15: 00007ffe7cfa8e78 [ 287.263459][ T8970] [ 287.315058][ T8974] FAULT_INJECTION: forcing a failure. [ 287.315058][ T8974] name failslab, interval 1, probability 0, space 0, times 0 [ 287.558686][ T8974] CPU: 1 UID: 0 PID: 8974 Comm: syz.1.734 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 287.558719][ T8974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 287.558732][ T8974] Call Trace: [ 287.558739][ T8974] [ 287.558748][ T8974] dump_stack_lvl+0x16c/0x1f0 [ 287.558786][ T8974] should_fail_ex+0x512/0x640 [ 287.558818][ T8974] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 287.558848][ T8974] should_failslab+0xc2/0x120 [ 287.558877][ T8974] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 287.558903][ T8974] ? mas_alloc_nodes+0x18b/0x8b0 [ 287.558945][ T8974] mas_alloc_nodes+0x18b/0x8b0 [ 287.558992][ T8974] mas_node_count_gfp+0x105/0x130 [ 287.559042][ T8974] mas_preallocate+0x53e/0xcd0 [ 287.559100][ T8974] ? __pfx_mas_preallocate+0x10/0x10 [ 287.559148][ T8974] ? vm_area_alloc+0x1f/0x160 [ 287.559176][ T8974] ? lockdep_init_map_type+0x5c/0x280 [ 287.559211][ T8974] __mmap_region+0x139b/0x27c0 [ 287.559241][ T8974] ? __pfx___mmap_region+0x10/0x10 [ 287.559265][ T8974] ? bpf_ksym_find+0x124/0x1c0 [ 287.559309][ T8974] ? __kernel_text_address+0xd/0x40 [ 287.559345][ T8974] ? unwind_get_return_address+0x59/0xa0 [ 287.559427][ T8974] ? trace_cap_capable+0x18d/0x200 [ 287.559453][ T8974] ? cap_capable+0xb3/0x250 [ 287.559480][ T8974] mmap_region+0x32b/0x3f0 [ 287.559511][ T8974] do_mmap+0xd8e/0x11b0 [ 287.559550][ T8974] ? __pfx_do_mmap+0x10/0x10 [ 287.559583][ T8974] ? __pfx_down_write_killable+0x10/0x10 [ 287.559626][ T8974] vm_mmap_pgoff+0x281/0x450 [ 287.559665][ T8974] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 287.559703][ T8974] ? __fget_files+0x20e/0x3c0 [ 287.559744][ T8974] ksys_mmap_pgoff+0x32c/0x5c0 [ 287.559776][ T8974] ? __pfx_ksys_write+0x10/0x10 [ 287.559797][ T8974] ? rcu_is_watching+0x12/0xc0 [ 287.559821][ T8974] __x64_sys_mmap+0x125/0x190 [ 287.559846][ T8974] do_syscall_64+0xcd/0x230 [ 287.559881][ T8974] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.559905][ T8974] RIP: 0033:0x7fc68d18e969 [ 287.559923][ T8974] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 287.559946][ T8974] RSP: 002b:00007fc68e04a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 287.559967][ T8974] RAX: ffffffffffffffda RBX: 00007fc68d3b5fa0 RCX: 00007fc68d18e969 [ 287.559982][ T8974] RDX: 0000000000000ffb RSI: 0000000000810004 RDI: 0000000000000000 [ 287.559996][ T8974] RBP: 00007fc68e04a090 R08: 0000000000000003 R09: 0000000000008000 [ 287.560010][ T8974] R10: 0008000000008011 R11: 0000000000000246 R12: 0000000000000001 [ 287.560024][ T8974] R13: 0000000000000000 R14: 00007fc68d3b5fa0 R15: 00007ffdf71b9638 [ 287.560066][ T8974] [ 289.298114][ T9015] kvm: kvm [9014]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x40000014) = 0x2 [ 289.318449][ T8982] kexec: Could not allocate control_code_buffer [ 289.583423][ T9024] FAULT_INJECTION: forcing a failure. [ 289.583423][ T9024] name failslab, interval 1, probability 0, space 0, times 0 [ 289.619212][ T9024] CPU: 0 UID: 0 PID: 9024 Comm: syz.1.750 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 289.619259][ T9024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 289.619278][ T9024] Call Trace: [ 289.619289][ T9024] [ 289.619301][ T9024] dump_stack_lvl+0x16c/0x1f0 [ 289.619350][ T9024] should_fail_ex+0x512/0x640 [ 289.619395][ T9024] ? fs_reclaim_acquire+0xae/0x150 [ 289.619444][ T9024] ? tomoyo_encode2+0x100/0x3e0 [ 289.619485][ T9024] should_failslab+0xc2/0x120 [ 289.619523][ T9024] __kmalloc_noprof+0xd2/0x510 [ 289.619568][ T9024] tomoyo_encode2+0x100/0x3e0 [ 289.619616][ T9024] tomoyo_encode+0x29/0x50 [ 289.619658][ T9024] tomoyo_realpath_from_path+0x18f/0x6e0 [ 289.619707][ T9024] ? tomoyo_profile+0x47/0x60 [ 289.619759][ T9024] tomoyo_path_number_perm+0x245/0x580 [ 289.619795][ T9024] ? tomoyo_path_number_perm+0x237/0x580 [ 289.619843][ T9024] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 289.619884][ T9024] ? find_held_lock+0x2b/0x80 [ 289.619952][ T9024] ? find_held_lock+0x2b/0x80 [ 289.619981][ T9024] ? hook_file_ioctl_common+0x145/0x410 [ 289.620025][ T9024] ? __fget_files+0x20e/0x3c0 [ 289.620082][ T9024] security_file_ioctl+0x9b/0x240 [ 289.620124][ T9024] __x64_sys_ioctl+0xb7/0x200 [ 289.620178][ T9024] do_syscall_64+0xcd/0x230 [ 289.620225][ T9024] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 289.620257][ T9024] RIP: 0033:0x7fc68d18e969 [ 289.620282][ T9024] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 289.620313][ T9024] RSP: 002b:00007fc68e04a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 289.620343][ T9024] RAX: ffffffffffffffda RBX: 00007fc68d3b5fa0 RCX: 00007fc68d18e969 [ 289.620363][ T9024] RDX: 0000200000000040 RSI: 000000004008ae89 RDI: 0000000000000004 [ 289.620383][ T9024] RBP: 00007fc68e04a090 R08: 0000000000000000 R09: 0000000000000000 [ 289.620402][ T9024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 289.620420][ T9024] R13: 0000000000000000 R14: 00007fc68d3b5fa0 R15: 00007ffdf71b9638 [ 289.620461][ T9024] [ 289.620488][ T9024] ERROR: Out of memory at tomoyo_realpath_from_path. [ 289.851992][ T9027] FAULT_INJECTION: forcing a failure. [ 289.851992][ T9027] name failslab, interval 1, probability 0, space 0, times 0 [ 289.870929][ T9024] kvm: kvm [9023]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x40000014) = 0x2 [ 289.927750][ T9027] CPU: 1 UID: 0 PID: 9027 Comm: syz.2.749 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 289.927798][ T9027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 289.927817][ T9027] Call Trace: [ 289.927826][ T9027] [ 289.927837][ T9027] dump_stack_lvl+0x16c/0x1f0 [ 289.927903][ T9027] should_fail_ex+0x512/0x640 [ 289.927949][ T9027] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 289.927991][ T9027] should_failslab+0xc2/0x120 [ 289.928032][ T9027] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 289.928069][ T9027] ? d_instantiate+0x77/0x90 [ 289.928104][ T9027] ? alloc_empty_file+0x55/0x1e0 [ 289.928152][ T9027] alloc_empty_file+0x55/0x1e0 [ 289.928196][ T9027] alloc_file_pseudo+0x13a/0x230 [ 289.928239][ T9027] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 289.928295][ T9027] __shmem_file_setup+0x210/0x300 [ 289.928334][ T9027] shmem_zero_setup+0x93/0x1a0 [ 289.928377][ T9027] __mmap_region+0x2036/0x27c0 [ 289.928421][ T9027] ? __pfx___mmap_region+0x10/0x10 [ 289.928457][ T9027] ? trace_sched_exit_tp+0xde/0x130 [ 289.928527][ T9027] ? __pfx___schedule+0x10/0x10 [ 289.928617][ T9027] ? trace_cap_capable+0x18d/0x200 [ 289.928654][ T9027] ? cap_capable+0xb3/0x250 [ 289.928693][ T9027] mmap_region+0x1ab/0x3f0 [ 289.928739][ T9027] do_mmap+0xd8e/0x11b0 [ 289.928794][ T9027] ? __pfx_do_mmap+0x10/0x10 [ 289.928843][ T9027] ? __pfx_down_write_killable+0x10/0x10 [ 289.928915][ T9027] vm_mmap_pgoff+0x281/0x450 [ 289.928971][ T9027] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 289.929029][ T9027] ? __x64_sys_futex+0x1e0/0x4c0 [ 289.929063][ T9027] ? __x64_sys_futex+0x1e9/0x4c0 [ 289.929105][ T9027] ksys_mmap_pgoff+0x7d/0x5c0 [ 289.929154][ T9027] ? rcu_is_watching+0x12/0xc0 [ 289.929189][ T9027] __x64_sys_mmap+0x125/0x190 [ 289.929228][ T9027] do_syscall_64+0xcd/0x230 [ 289.929278][ T9027] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 289.929311][ T9027] RIP: 0033:0x7ff3f858e969 [ 289.929338][ T9027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 289.929371][ T9027] RSP: 002b:00007ff3f93b2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 289.929403][ T9027] RAX: ffffffffffffffda RBX: 00007ff3f87b6160 RCX: 00007ff3f858e969 [ 289.929425][ T9027] RDX: ffffffffffffffff RSI: 0000000002020007 RDI: 0000000000000000 [ 289.929447][ T9027] RBP: 00007ff3f8610ab1 R08: ffffffffffffffff R09: 0000000000008000 [ 289.929468][ T9027] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 289.929488][ T9027] R13: 0000000000000000 R14: 00007ff3f87b6160 R15: 00007ffe7cfa8e78 [ 289.929531][ T9027] [ 292.060882][ T9048] kexec: Could not allocate control_code_buffer [ 294.221840][ T9095] FAULT_INJECTION: forcing a failure. [ 294.221840][ T9095] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 294.285051][ T9095] CPU: 1 UID: 0 PID: 9095 Comm: syz.3.769 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 294.285096][ T9095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 294.285114][ T9095] Call Trace: [ 294.285124][ T9095] [ 294.285148][ T9095] dump_stack_lvl+0x16c/0x1f0 [ 294.285200][ T9095] should_fail_ex+0x512/0x640 [ 294.285251][ T9095] _copy_from_user+0x2e/0xd0 [ 294.285304][ T9095] generic_map_delete_batch+0x439/0x700 [ 294.285358][ T9095] ? __pfx_generic_map_delete_batch+0x10/0x10 [ 294.285414][ T9095] ? __pfx_generic_map_delete_batch+0x10/0x10 [ 294.285463][ T9095] bpf_map_do_batch+0x4af/0x670 [ 294.285505][ T9095] __sys_bpf+0x5fc/0x4d80 [ 294.285569][ T9095] ? __pfx___sys_bpf+0x10/0x10 [ 294.285616][ T9095] ? ksys_write+0x190/0x240 [ 294.285654][ T9095] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 294.285728][ T9095] ? fput+0x70/0xf0 [ 294.285766][ T9095] ? ksys_write+0x1b9/0x240 [ 294.285796][ T9095] ? __pfx_ksys_write+0x10/0x10 [ 294.285825][ T9095] ? rcu_is_watching+0x12/0xc0 [ 294.285861][ T9095] __x64_sys_bpf+0x78/0xc0 [ 294.285910][ T9095] ? lockdep_hardirqs_on+0x7c/0x110 [ 294.285952][ T9095] do_syscall_64+0xcd/0x230 [ 294.286000][ T9095] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 294.286034][ T9095] RIP: 0033:0x7f2596d8e969 [ 294.286060][ T9095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 294.286093][ T9095] RSP: 002b:00007f2597c4e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 294.286124][ T9095] RAX: ffffffffffffffda RBX: 00007f2596fb5fa0 RCX: 00007f2596d8e969 [ 294.286145][ T9095] RDX: 0000000000000092 RSI: 0000200000000380 RDI: 000000000000001b [ 294.286166][ T9095] RBP: 00007f2597c4e090 R08: 0000000000000000 R09: 0000000000000000 [ 294.286185][ T9095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 294.286205][ T9095] R13: 0000000000000000 R14: 00007f2596fb5fa0 R15: 00007ffd12317c28 [ 294.286246][ T9095] [ 295.820627][ T9107] kexec: Could not allocate control_code_buffer [ 297.037567][ T9152] netlink: 28 bytes leftover after parsing attributes in process `syz.1.785'. [ 297.064237][ T9152] bridge_slave_1: left allmulticast mode [ 297.117452][ T9152] bridge_slave_1: left promiscuous mode [ 297.154091][ T9152] bridge0: port 2(bridge_slave_1) entered disabled state [ 297.239012][ T9152] bridge_slave_0: left allmulticast mode [ 297.302432][ T9152] bridge_slave_0: left promiscuous mode [ 297.344906][ T9152] bridge0: port 1(bridge_slave_0) entered disabled state [ 299.165283][ T9168] kexec: Could not allocate control_code_buffer [ 303.406605][ T9243] can: request_module (can-proto-3) failed. [ 303.632514][ T9254] FAULT_INJECTION: forcing a failure. [ 303.632514][ T9254] name failslab, interval 1, probability 0, space 0, times 0 [ 303.723619][ T9254] CPU: 0 UID: 0 PID: 9254 Comm: syz.3.811 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 303.723652][ T9254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 303.723666][ T9254] Call Trace: [ 303.723673][ T9254] [ 303.723682][ T9254] dump_stack_lvl+0x16c/0x1f0 [ 303.723728][ T9254] should_fail_ex+0x512/0x640 [ 303.723761][ T9254] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 303.723791][ T9254] should_failslab+0xc2/0x120 [ 303.723819][ T9254] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 303.723844][ T9254] ? __alloc_skb+0x2b2/0x380 [ 303.723873][ T9254] __alloc_skb+0x2b2/0x380 [ 303.723896][ T9254] ? __pfx___alloc_skb+0x10/0x10 [ 303.723924][ T9254] ? __lock_acquire+0xaa4/0x1ba0 [ 303.723960][ T9254] netlink_alloc_large_skb+0x69/0x130 [ 303.723991][ T9254] netlink_sendmsg+0x6a1/0xdd0 [ 303.724024][ T9254] ? __pfx_netlink_sendmsg+0x10/0x10 [ 303.724063][ T9254] ____sys_sendmsg+0xa95/0xc70 [ 303.724097][ T9254] ? copy_msghdr_from_user+0x10a/0x160 [ 303.724130][ T9254] ? __pfx_____sys_sendmsg+0x10/0x10 [ 303.724194][ T9254] ___sys_sendmsg+0x134/0x1d0 [ 303.724223][ T9254] ? __pfx____sys_sendmsg+0x10/0x10 [ 303.724282][ T9254] __sys_sendmsg+0x16d/0x220 [ 303.724308][ T9254] ? __pfx___sys_sendmsg+0x10/0x10 [ 303.724343][ T9254] ? rcu_is_watching+0x12/0xc0 [ 303.724371][ T9254] do_syscall_64+0xcd/0x230 [ 303.724406][ T9254] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 303.724432][ T9254] RIP: 0033:0x7f2596d8e969 [ 303.724451][ T9254] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 303.724474][ T9254] RSP: 002b:00007f2597c4e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 303.724496][ T9254] RAX: ffffffffffffffda RBX: 00007f2596fb5fa0 RCX: 00007f2596d8e969 [ 303.724511][ T9254] RDX: 0000000000000000 RSI: 0000200000001cc0 RDI: 0000000000000002 [ 303.724525][ T9254] RBP: 00007f2597c4e090 R08: 0000000000000000 R09: 0000000000000000 [ 303.724539][ T9254] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 303.724552][ T9254] R13: 0000000000000000 R14: 00007f2596fb5fa0 R15: 00007ffd12317c28 [ 303.724580][ T9254] [ 305.847399][ T30] audit: type=1800 audit(6041875557.403:6): pid=9272 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.816" name="file0" dev="tmpfs" ino=1143 res=0 errno=0 [ 305.998693][ T9259] kexec: Could not allocate control_code_buffer [ 309.382948][ T9302] kexec: Could not allocate control_code_buffer [ 309.708603][ T9319] i2c i2c-0: new_device: Instantiated device card: at 0x01 [ 310.217793][ T9334] ================================================================== [ 310.226011][ T9334] BUG: KASAN: slab-out-of-bounds in afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 310.234736][ T9334] Read of size 1 at addr ffff88807e800fc7 by task syz.0.832/9334 [ 310.242475][ T9334] [ 310.244824][ T9334] CPU: 1 UID: 0 PID: 9334 Comm: syz.0.832 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 310.244862][ T9334] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 310.244887][ T9334] Call Trace: [ 310.244898][ T9334] [ 310.244909][ T9334] dump_stack_lvl+0x116/0x1f0 [ 310.244952][ T9334] print_report+0xc3/0x670 [ 310.244984][ T9334] ? __virt_addr_valid+0x5e/0x590 [ 310.245020][ T9334] ? __phys_addr+0xc6/0x150 [ 310.245055][ T9334] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 310.245089][ T9334] kasan_report+0xe0/0x110 [ 310.245120][ T9334] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 310.245159][ T9334] afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 310.245199][ T9334] ? __pfx_afs_proc_addr_prefs_write+0x10/0x10 [ 310.245235][ T9334] ? find_held_lock+0x2b/0x80 [ 310.245259][ T9334] ? __might_fault+0xe3/0x190 [ 310.245288][ T9334] ? __might_fault+0xe3/0x190 [ 310.245316][ T9334] ? __might_fault+0x13b/0x190 [ 310.245353][ T9334] ? proc_simple_write+0x114/0x1b0 [ 310.245390][ T9334] proc_simple_write+0x114/0x1b0 [ 310.245424][ T9334] ? __pfx_proc_simple_write+0x10/0x10 [ 310.245457][ T9334] proc_reg_write+0x23d/0x330 [ 310.245485][ T9334] ? __pfx_proc_reg_write+0x10/0x10 [ 310.245511][ T9334] vfs_writev+0x6c4/0xdc0 [ 310.245552][ T9334] ? __pfx___mutex_trylock_common+0x10/0x10 [ 310.245593][ T9334] ? __pfx_vfs_writev+0x10/0x10 [ 310.245634][ T9334] ? __mutex_lock+0x1ca/0xb90 [ 310.245670][ T9334] ? kmem_cache_free+0x2d4/0x4d0 [ 310.245700][ T9334] ? __pfx___mutex_lock+0x10/0x10 [ 310.245744][ T9334] ? __fget_files+0x20e/0x3c0 [ 310.245789][ T9334] ? do_writev+0x132/0x330 [ 310.245827][ T9334] do_writev+0x132/0x330 [ 310.245867][ T9334] ? __pfx_do_writev+0x10/0x10 [ 310.245906][ T9334] ? rcu_is_watching+0x12/0xc0 [ 310.245935][ T9334] do_syscall_64+0xcd/0x230 [ 310.245980][ T9334] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 310.246007][ T9334] RIP: 0033:0x7fa036f8e969 [ 310.246029][ T9334] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 310.246056][ T9334] RSP: 002b:00007fa037dbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 310.246082][ T9334] RAX: ffffffffffffffda RBX: 00007fa0371b5fa0 RCX: 00007fa036f8e969 [ 310.246100][ T9334] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000005 [ 310.246117][ T9334] RBP: 00007fa037010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 310.246134][ T9334] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 310.246151][ T9334] R13: 0000000000000000 R14: 00007fa0371b5fa0 R15: 00007ffc194a1608 [ 310.246177][ T9334] [ 310.246185][ T9334] [ 310.507218][ T9334] Allocated by task 9334: [ 310.511574][ T9334] kasan_save_stack+0x33/0x60 [ 310.516292][ T9334] kasan_save_track+0x14/0x30 [ 310.521021][ T9334] __kasan_kmalloc+0xaa/0xb0 [ 310.525646][ T9334] __kmalloc_node_track_caller_noprof+0x221/0x510 [ 310.532109][ T9334] memdup_user_nul+0x2b/0x120 [ 310.536822][ T9334] proc_simple_write+0xc7/0x1b0 [ 310.541699][ T9334] proc_reg_write+0x23d/0x330 [ 310.546398][ T9334] vfs_writev+0x6c4/0xdc0 [ 310.550776][ T9334] do_writev+0x132/0x330 [ 310.555065][ T9334] do_syscall_64+0xcd/0x230 [ 310.559606][ T9334] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 310.565550][ T9334] [ 310.567894][ T9334] The buggy address belongs to the object at ffff88807e800fc0 [ 310.567894][ T9334] which belongs to the cache kmalloc-8 of size 8 [ 310.581732][ T9334] The buggy address is located 0 bytes to the right of [ 310.581732][ T9334] allocated 7-byte region [ffff88807e800fc0, ffff88807e800fc7) [ 310.596743][ T9334] [ 310.599353][ T9334] The buggy address belongs to the physical page: [ 310.606423][ T9334] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88807e800c20 pfn:0x7e800 [ 310.616632][ T9334] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 310.623784][ T9334] page_type: f5(slab) [ 310.627825][ T9334] raw: 00fff00000000000 ffff88801b441500 ffffea0000ccc800 dead000000000002 [ 310.636470][ T9334] raw: ffff88807e800c20 0000000080800071 00000000f5000000 0000000000000000 [ 310.645098][ T9334] page dumped because: kasan: bad access detected [ 310.651554][ T9334] page_owner tracks the page as allocated [ 310.657295][ T9334] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5827, tgid 5827 (syz-executor), ts 108524099271, free_ts 108523987799 [ 310.677076][ T9334] post_alloc_hook+0x181/0x1b0 [ 310.681896][ T9334] get_page_from_freelist+0x135c/0x3920 [ 310.687579][ T9334] __alloc_frozen_pages_noprof+0x263/0x23a0 [ 310.693502][ T9334] alloc_pages_mpol+0x1fb/0x550 [ 310.698915][ T9334] new_slab+0x244/0x340 [ 310.703121][ T9334] ___slab_alloc+0xd9c/0x1940 [ 310.707864][ T9334] __slab_alloc.constprop.0+0x56/0xb0 [ 310.713276][ T9334] __kmalloc_node_noprof+0x2ed/0x500 [ 310.718590][ T9334] __vmalloc_node_range_noprof+0x3eb/0x1540 [ 310.724545][ T9334] vzalloc_noprof+0x6b/0x90 [ 310.729118][ T9334] do_ip6t_get_ctl+0x63f/0xa50 [ 310.733951][ T9334] nf_getsockopt+0x79/0xe0 [ 310.738419][ T9334] ipv6_getsockopt+0x1f7/0x280 [ 310.743216][ T9334] tcp_getsockopt+0x9e/0x100 [ 310.747825][ T9334] do_sock_getsockopt+0x3fc/0x800 [ 310.752880][ T9334] __sys_getsockopt+0x123/0x1a0 [ 310.757953][ T9334] page last free pid 5827 tgid 5827 stack trace: [ 310.764292][ T9334] __free_frozen_pages+0x69d/0xff0 [ 310.769476][ T9334] vfree+0x176/0x960 [ 310.773494][ T9334] do_ip6t_get_ctl+0x869/0xa50 [ 310.778290][ T9334] nf_getsockopt+0x79/0xe0 [ 310.782734][ T9334] ipv6_getsockopt+0x1f7/0x280 [ 310.787526][ T9334] tcp_getsockopt+0x9e/0x100 [ 310.792133][ T9334] do_sock_getsockopt+0x3fc/0x800 [ 310.797193][ T9334] __sys_getsockopt+0x123/0x1a0 [ 310.802068][ T9334] __x64_sys_getsockopt+0xbd/0x160 [ 310.807208][ T9334] do_syscall_64+0xcd/0x230 [ 310.811747][ T9334] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 310.817663][ T9334] [ 310.820004][ T9334] Memory state around the buggy address: [ 310.825653][ T9334] ffff88807e800e80: 07 fc fc fc fa fc fc fc fa fc fc fc 06 fc fc fc [ 310.833743][ T9334] ffff88807e800f00: fa fc fc fc 06 fc fc fc fa fc fc fc fa fc fc fc [ 310.841832][ T9334] >ffff88807e800f80: fa fc fc fc fa fc fc fc 07 fc fc fc fa fc fc fc [ 310.849913][ T9334] ^ [ 310.856082][ T9334] ffff88807e801000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 310.864345][ T9334] ffff88807e801080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 310.872422][ T9334] ================================================================== [ 310.943309][ T9334] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 310.950587][ T9334] CPU: 1 UID: 0 PID: 9334 Comm: syz.0.832 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 310.962599][ T9334] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 310.972680][ T9334] Call Trace: [ 310.975979][ T9334] [ 310.978939][ T9334] dump_stack_lvl+0x3d/0x1f0 [ 310.983571][ T9334] panic+0x71c/0x800 [ 310.987503][ T9334] ? __pfx_panic+0x10/0x10 [ 310.991954][ T9334] ? mark_held_locks+0x49/0x80 [ 310.996754][ T9334] ? preempt_schedule_thunk+0x16/0x30 [ 311.002172][ T9334] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 311.008187][ T9334] ? preempt_schedule_common+0x44/0xc0 [ 311.013686][ T9334] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 311.019728][ T9334] check_panic_on_warn+0xab/0xb0 [ 311.024706][ T9334] end_report+0x107/0x170 [ 311.029074][ T9334] kasan_report+0xee/0x110 [ 311.033525][ T9334] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 311.039544][ T9334] afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 311.045457][ T9334] ? __pfx_afs_proc_addr_prefs_write+0x10/0x10 [ 311.051653][ T9334] ? find_held_lock+0x2b/0x80 [ 311.056358][ T9334] ? __might_fault+0xe3/0x190 [ 311.061092][ T9334] ? __might_fault+0xe3/0x190 [ 311.065899][ T9334] ? __might_fault+0x13b/0x190 [ 311.070813][ T9334] ? proc_simple_write+0x114/0x1b0 [ 311.075976][ T9334] proc_simple_write+0x114/0x1b0 [ 311.080946][ T9334] ? __pfx_proc_simple_write+0x10/0x10 [ 311.086452][ T9334] proc_reg_write+0x23d/0x330 [ 311.091176][ T9334] ? __pfx_proc_reg_write+0x10/0x10 [ 311.096503][ T9334] vfs_writev+0x6c4/0xdc0 [ 311.100874][ T9334] ? __pfx___mutex_trylock_common+0x10/0x10 [ 311.106831][ T9334] ? __pfx_vfs_writev+0x10/0x10 [ 311.111747][ T9334] ? __mutex_lock+0x1ca/0xb90 [ 311.116495][ T9334] ? kmem_cache_free+0x2d4/0x4d0 [ 311.121482][ T9334] ? __pfx___mutex_lock+0x10/0x10 [ 311.126643][ T9334] ? __fget_files+0x20e/0x3c0 [ 311.131393][ T9334] ? do_writev+0x132/0x330 [ 311.135864][ T9334] do_writev+0x132/0x330 [ 311.140150][ T9334] ? __pfx_do_writev+0x10/0x10 [ 311.144961][ T9334] ? rcu_is_watching+0x12/0xc0 [ 311.149758][ T9334] do_syscall_64+0xcd/0x230 [ 311.154441][ T9334] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 311.160462][ T9334] RIP: 0033:0x7fa036f8e969 [ 311.164933][ T9334] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 311.184749][ T9334] RSP: 002b:00007fa037dbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 311.193200][ T9334] RAX: ffffffffffffffda RBX: 00007fa0371b5fa0 RCX: 00007fa036f8e969 [ 311.201205][ T9334] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000005 [ 311.209196][ T9334] RBP: 00007fa037010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 311.217231][ T9334] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 311.225684][ T9334] R13: 0000000000000000 R14: 00007fa0371b5fa0 R15: 00007ffc194a1608 [ 311.233801][ T9334] [ 311.237166][ T9334] Kernel Offset: disabled [ 311.241518][ T9334] Rebooting in 86400 seconds..