last executing test programs: 5.554097536s ago: executing program 2 (id=1768): r0 = socket(0xa, 0x1, 0x84) mmap$auto(0x5, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @local}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) getsockopt$auto(r0, 0x84, 0x6c, 0x0, &(0x7f0000000000)=0x98) r1 = socket(0xa, 0x1, 0x100) modify_ldt$auto(0x1, 0x0, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0) sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=ANY=[@ANYRESOCT=r1, @ANYRESOCT, @ANYBLOB="040026bd7000fcdbdf2501000000"], 0x14}}, 0x20000000) mmap$auto(0x0, 0x2020009, 0x100000000, 0xeb1, r1, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0x2, 0x1, 0x84) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) sysfs$auto(0x2, 0x2, 0x9) r2 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xe, 0x2, 0x6, 0x5, 0x8, 0xffffffffffffffff, [], {0xd74c, 0x6, 0x2, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0xff, 0x1, 0x10001, 0x7, 0x1, 0x40, 0x76c5, 0x400008, 0x100000005}}) io_uring_enter$auto(r2, 0x9, 0x820e, 0x9, 0x0, 0x18) 5.408657945s ago: executing program 3 (id=1770): ioctl$auto_MEMISLOCKED(0xffffffffffffffff, 0x80084d17, &(0x7f0000000000)={0x1, 0x2}) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) bpf$auto(0x0, 0x0, 0x6f3) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) userfaultfd$auto(0x1) ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x8, 0x1}, 0x7f, 0x0, &(0x7f00000001c0)={0x3}, 0x8) getpgid(0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'ip6gre0\x00', 0x0}) sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={&(0x7f0000000140)={0x40, r3, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@OVS_DP_ATTR_IFINDEX={0x8, 0x9, r4}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x80}, @OVS_DP_ATTR_NAME={0x11, 0x1, 'ovs_\x12\x00\x00\x00\x00\x00\a\x00\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x2000000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/mac80211_hwsim/hwsim0/ieee80211/phy0/rfkill2/hard\x00', 0x2600, 0x0) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x40080, 0x0) openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/ieee80211/phy1/netdev:wlan1/uapsd_queues\x00', 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x1d, 0x2, 0x2) 5.259284881s ago: executing program 0 (id=1772): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x11, 0x80003, 0x300) ustat$auto(0x801, 0x0) setsockopt$auto(r0, 0x107, 0x8, 0x0, 0x6) recvmmsg$auto(0x3, 0x0, 0xb94, 0x20, 0x0) 4.769179127s ago: executing program 2 (id=1773): r0 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000440)='/proc/thread-self/mountinfo\x00', 0x800, 0x0) unshare$auto(0x40000080) write$auto(0xffffffffffffffff, &(0x7f0000000400)='/de\xef\xe7auDio1\x00\f\'\x8b\xd9\xfeN\xcd#)\x8c\x89>-o\xd7\x8f$\xac\xfc\xa2\xccm\x0e \xfb\xe5\xe9\x92\xaa\xef\x84$\x84Ia>6pV;{\'\xaa\xbeS\x14\xb6\xd2\xf6\xb7\xcd\xf6P\x05X\x1dK\x18\x99\x02\xb3\x0fY0\x80\x99\xe3\x0e\xa2D\xc0\xecE\x86\xd9J\x9c\xa8\x98\x02\xdb\xf1\x81TMpS\xc5\xab\xa1\x1bG\v>\x03\xf7\xe1\xaf\xe3\x04\xc3 ffF\x0f\xa6}\xa3\xa8\xd1\xe2\xd0QG\xa6\xa6\x8e7\x80\xd9\xd0\xdf\xad\xb1\x15\xca\xbb\xd5j\x94\xc6<\x18\x15\xcc\x8d\x14\xd8\xb8L\x03\xdd~\xe7%\xcb\xdd\xda!\xd45Z\xd0\xfc\x1b\xf0\xe1\xd6:\xd7\xe9N\xc1W\xe3\xae\xe9\xb27>k\xf8\xdf\xe1\xf9\xcc\xcb\v\x01D\xc3\xa9T\xb9UY\xaf\xa4\xe4\xfec\xa3\x9bI@\xb7w\xf8\x14\xc0\xd5\xd5\x95', 0x8) r1 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0xdf33, 0xe2, 0xeb1, 0x405, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_UPD_RXSA(r2, &(0x7f0000006200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)={0x28, r3, 0x23, 0x70bd27, 0x25dfdbfc, {}, [@MACSEC_ATTR_SA_CONFIG={0x8, 0x3, 0x0, 0x1, [@nested={0x4, 0x1}]}, @MACSEC_ATTR_RXSC_CONFIG={0x4}, @MACSEC_ATTR_IFINDEX={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x4008000}, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'bond_slave_0\x00', 0x0}) r5 = openat$auto_binder_ctl_fops_binderfs(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r6 = geteuid() fstat$auto(0xffffffffffffffff, &(0x7f0000001200)={0x1, 0x8000000000000001, 0xfffffffffffffb52, 0x3ff, r6, 0x0, 0x0, 0x2, 0x0, 0x3, 0x5, 0x0, 0x6, 0x8000000000000000, 0x5, 0x7f, 0x100000001}) unlink$auto(&(0x7f0000000500)='./file0\x00') pidfd_send_signal$auto_PIDFD_SELF_THREAD_GROUP(0xffffffffffffb1e0, 0x2, &(0x7f0000000380)={@siginfo_0_0={0x4, 0xfffffffa, 0x0, @_kill={0x0, r6}}}, 0x0) shmctl$auto_SHM_STAT(0x8, 0xd, &(0x7f0000000300)={{0x1, 0xffffffffffffffff, 0xee00, 0x1ff, 0x80000001, 0x5982, 0x2d9}, 0x9, 0x40, 0x10000, 0x80000000, @inferred, @inferred=0xffffffffffffffff, 0x3, 0x0, &(0x7f0000000180)="a137ae6af071e454520d4a2ec6d0c7b85e12c9b7e3b779178ea8525b3ec6d09db1bb2550e6eed612edf1f952085ee8911055d19be86642c6c6eded1398ff8d777a24f07b8fe6b1ef0f322321428e91b41e75e6b3b537bfc41f9f92b8fba42286416824bf3225cce86d15fc4327083244eaf75c3936023aef0b59a82763feab01d01ae8c16205a5e491ff79eb006e6646cb0dfba04a642a170e17243bcc172c995942ab6a22a4983ac7529cecf3bac22d8472190054e0cce2954916ed606fdd86065d6251cfaf22", &(0x7f00000002c0)="551b8aabd41cc1feb423b5acdfa038f9b3ea0f82c4d561d8b2f6d017b90c4329b1b89f59b62e6e7f51f724"}) sendmsg$auto_MACSEC_CMD_UPD_RXSC(r1, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000380)={&(0x7f0000001100)={0x17b0, r3, 0x108, 0x70bd27, 0x25dfdbfc, {}, [@MACSEC_ATTR_OFFLOAD={0x14, 0x9, 0x0, 0x1, [@nested={0x10, 0xd5, 0x0, 0x1, [@nested={0x4, 0x13e}, @generic, @generic="dca7ef95e2351890"]}]}, @MACSEC_ATTR_IFINDEX={0x8}, @MACSEC_ATTR_OFFLOAD={0x2e9, 0x9, 0x0, 0x1, [@generic="4ac288f32c3556e29843f920b761d9ee85f62e8023de6a080b68505e308872a5095133dc1550bdba115b0bd24233bc4d74e611fe56b7ce19db63ae7266ef0b258f6739e58081246f43fc144b", @nested={0x1d6, 0xbc, 0x0, 0x1, [@generic="a8c6e7b0eb442d5b7b6569c49ef540f44a03e35bcd8703f06ad90e4cae449fd8f23b5e825e5cb53e28ec143e83033ba651d3ecee460f0164254a4259e6744bfdb98448080bc9f681a10084b7aeadf09fcd4f5e1795aaf41c58c1018233081df85d6f884785e8738bc48e00e0413d330320a93993e9ae3e32af530db3860da1cbe704e01545737fe5fc69c284dca304da3547d41b6322e23f5af6edf0e87087657706aa8a446a6115dc62a98c13e731bbcb1f906b5e53ba43de82077b56575643423dcb723359af302874a5a3a889780ac147324e33802a14d03116a8d4", @typed={0x8, 0x144, 0x0, 0x0, @fd=r0}, @typed={0x8, 0x42, 0x0, 0x0, @u32=0xa9ef}, @typed={0x4, 0x138}, @generic="b997741b84436ef9c589ce4884d5c5d51b0d49828daccb898baf6b6cfcc3952028558e1b3fb8abe05625d612197c732376d4ce39097803a5f5492045e5fcb172141e8523ae1acf892cc45d3f65f95cdb89e8c1aec87a3da2a5c708136d99817fb0a4f0b8e919fb39bad06db655da193112acdd434528368bcf43ce09ca638071e475eb7d986a6b7229", @generic="3044742c84a01d23ec0b796c1c7f287512cdb51f0ce212e9e1f275dfe658bbf68667dec992aea30f2704280ae5519932b9f40bd66a0b2e386060a774efc6c410fb383bb3a11fe4829a61082b24e039f250c46e8f33580f72"]}, @nested={0x88, 0x71, 0x0, 0x1, [@generic="e994d966e10bf42d93d36cc58e3537a4ba8553c4e8e9962fe55d0b98", @typed={0x62, 0x1b, 0x0, 0x0, @binary="d49280e777191cc4c06919fd71c169c2b491affc8c0401812fc4d070be5ebc929aa0e26672e91a2c50aacb5766468f2146d95a39fbce7067dc764aef9588fb34a6eda6de6d448e36cb6ba87bb314b6580c7274bb0f274e149e582425cf0e"}, @nested={0x4, 0x76}]}, @generic="f52d7df7468eec0d72ae271e0521e4427ce3b8b3cde127d12d1d025c7d2fc5128e952997d1547e3a6de638fc34b96bfe73cc418cbd6636d75e"]}, @MACSEC_ATTR_IFINDEX={0x8}, @MACSEC_ATTR_SA_CONFIG={0x3ff, 0x3, 0x0, 0x1, [@nested={0x53, 0x70, 0x0, 0x1, [@generic="48a57da1622112d02263d729e596dee354dc1c2b1e62c6cbea1cb912d335f6767b3d4f1d4463127083eb29af08cc00a9d7143484ed5d8e39d76fd5", @nested={0x4, 0xa8}, @typed={0x8, 0x24, 0x0, 0x0, @uid=0xee01}, @nested={0x4, 0x68}, @nested={0x4, 0x4}]}, @typed={0x8, 0xe1, 0x0, 0x0, @fd=r0}, @generic="fa7c08b327efd13b0155f657e71f117aee2d9bca492a6606bf7faf4afbe1286d2db3f63fd237a49b56ec83a4f75682b12f8876577b502c11161819d2d0ed8d1761fc6e2b3d92802d0b83cc9936306ff6ffae76b67e4d13b1cd8d390adb9d8dd64deb7dab500f87b5f3f2061a2cfcd083c0cba467c6c8b9de18526f154d0a7ce5282c9711179927531ee9bde24a88e2ef18f736c7a8c7c44752fb11771ebd5152fb83a581d8059e7f65590396fd452978f6001a13fa390a38bca973b3219f3510aa88b7799e4a0b7d5ba24666800c1056", @typed={0x14, 0x24, 0x0, 0x0, @ipv6=@loopback}, @nested={0x10, 0x11, 0x0, 0x1, [@typed={0x8, 0x49, 0x0, 0x0, @pid}, @nested={0x4, 0x112}]}, @typed={0x4, 0x113}, @nested={0xad, 0xec, 0x0, 0x1, [@generic="b874c20d0f196828ec64f4452243eaea8678c98a89c27226ebb808876007ae5bcc21340408dbdb70ccc84b98b3ff80adec897b68736985decc62b10af2b30819cc571e57b8ef7b457362ce424fc817b8e17be6e4fac1d1e5be0e47cb25c41d3d6b0f9dca6ba97ac9cb66097bef17dae4a70511b42b86ccf1409918c58d69f8b01bf10bbdfaf771c365c304b63db8f69b1d858438e8dc65346ee5ea7e608724fec25235221c832db4e6"]}, @nested={0x81, 0xfa, 0x0, 0x1, [@generic="ec4849d67547c6094a08ea578840e562565f5c0d5b258f62b1f8996c7509d0fbb2b76d2b1ad310d395afb52d25f6d2da80ef31f21423ed48b5367ab822782b9a850f9fc82ef97d80c11246e8a72dfec285c10500d43ee3b3f9a29d1ba903f28ca890eeff8b5e4402991e7b7089799f8edec334c58d689d1cb1", @nested={0x4, 0xd2}]}, @generic="033db2af44d32231b93cafea413984d14ef8c2b3ea0fb9bac6f3bf6e3a92ab6f5b523d2211cf2460e4f8950acb83719a3897e60c49f8728d48894d0b549d04c02ae2041a04f167a5fe9744953df23ff63ba547804a1ab6f6bc57e5f36ba04650dc4fa32ded4dfe3cee75d52e7ba87b61ba2d9bc6dc390e72dda00ee1199188dfb69fd9add2abf775fdc06793c799c28cef8ac35d26c04abc59f55952859e8563cb0c93a580418da426", @generic="50e3bb5c4c29537731732d7dc755b1fe247adfe4bc6189808038568195b9fb727d30b23522240b90bb6619ba80aca7a40d40d380656ecfd77032bc9c4571eaa189dc9afffed355f0eed8087ab817c62fca4a0096148d89477fd5ace4f4f6243882847315d32b0cfd5ada9eb22028e5675e044794ebb621af17de55dbfeb0de46e6031d3531cd7828da1a5785689353612cff8879761408b3d59591258cc8363a95d0057829afc0d17cb6fb595907b110ed5c49f8e6b7ebbbe3185d06bfd40fc66f52854011ae35613b35"]}, @MACSEC_ATTR_IFINDEX={0x8, 0x1, r4}, @MACSEC_ATTR_SA_CONFIG={0x1080, 0x3, 0x0, 0x1, [@nested={0x7a, 0x14a, 0x0, 0x1, [@nested={0x4, 0x150}, @typed={0x8, 0xde, 0x0, 0x0, @fd=r5}, @generic="c0ed2c4b69511d8506d7e07add3968b993eb41208b546e0cfab715a16fed24fa259eca6b2f4339867aba207aac4c751dbc79168d08cd3370f2cc19d2e4d9a76be5730a718bbdb25c724ab42bf94bc2c959f7abaa2bea1c13ff3711cdb001731a5abc84bc251db5024586"]}, @generic="605fb820fc244a12fee932066025a1a387e5cafe3b3c8ae99c3bb0a157f2c869f91bba2d21bbfe49b0953579df4abb9f361f307468f5a10d7909b6dc5e05a59fe7b59508f1f24a712d97f1a96ad5cb9dd323fa7f434a581ac1e0924ed147316095fd1c96177ec4afb3ab7ff141415e9f72fd87d6c3d953ebeb70966a9d950bae916f1c238bae75c4c99261cce19842d72234df5b44fd181e5ab3bde35e2d4f89a7ae630179e4fa99e7c0057b41b973762c708c4f01a4e5f7ecb157ef4e42981b70225e31fff7dcfb136945e3d8d30cbfda166e70e08d6bb8d3bed8ad77651a35100bde993bdca16db9bf7308a32abff046204d5da95064fcf7bb989a4d303ac99bef76802fa34d683768aa674b8da015d8e00b5fc509651d92635801ddd0575e40cd56b49fc41924e89a0e069245cad1e3b133805deb05ffdfc522bfc15e1f67842b1654acea7914224c34c2d9b9e0435108dd7b6f50f79206194e125982b42078d2d3d8c52a4e754ff3ae0b77ab6189e6fd906ff8437e4c292abf87a416d7efc4ffc6be1059a95964151f573c1a4b0707ea77cd33780abfbdb04a4c87c5b0a0dde108ef21b34f9d5f6b62f2449a6268ada8ba1743b8fd6c81f2f5fde16f9f2875b5281105e8cf2bab5234e809952d09a04e18cfb584ca34b797ca920cf9fe8347506700e7b997422613ef18af02cfdb233c5648eb5962a845993950420be452dc8740d8b1185d5eb40d5c0887722b5f68655aa5c36829c82358e257b3c1ab5d8fee6e132df87a57eaac363dda853c3cd24b3ee27251218c6f9dc60751540e24c98f5c5f6b79ff0436f192d2c034787a2308e73b7162edbf9a7e0807fcd5d740a20929d99fb962f57c381faf37fa263c0542d00f155013eab0009505fd40155ba5a02bb12af78c2fe25fa39ed160b50e0ff5732fb3b26622621af17e5ce1b933bd9df269c07eea3757ae5ab422526284c3d7604c3a7acd107ef2ba333976faf765c93fd1950768b11800e4363e400e1226fd8cecea58d4bb9b41bdd17d1544bf79bc71a37d2a4994c71964ab2b4fd121b727ababfdffd8f2f5e4f64e46ff8c7789873ed02de5f249684a157b0ab58210c368d7427d970f490f0bfcab4a208d9b82c7975a9ca0643d32683cba2abf818673fe5f4fa199b14d16c259ada2f5bb4c47b0e57abe13bfdb4be2a569321145544416ec06afcf76f7bfcf8be003fafe14699a8816debfca252745e553949cebaf21ae69eee304d7f559d43afd808f5867095bf76fd32f74fc85bf06274bc811f80dd821889d2ff66cf4051e64fdf1c73a392649201a2cc6886f97dccb383c240b3b9b1961b9b710f051a5c0b337d773da5697b0267688f01d042cfd31df9bffe0f5f6393715135491dbd787894d1630d312edbb9c4694b238d0bb98f9ecc91d4ba9f089a51c87e906441165ec71dcefae03c016cd5e4c9d375d57d73be8a868391f449e81882b52733c5e47f6eaaadef7c5ec79dc2a4cc2ba9c43f3054078292eea9b964cde67d41bd5fcfb48b32943c8d6dbfe470839dbd86106db09b072d0de889df9d0d420bc04748533e774166421dc85ef9e1e0c2d2a041bd713522f5a6679c43f4b7f0887ed7d099c99153ff97a9e8fc297e75d5cc1a18f121483bccb2bb2483e69c1f5bce3994cc7587c59ecdb8769378c029c342d5d87d8de99766beb422161bb8207eb6107779ed8a10f7dc7156475b81a1cad8c297155f8ae5d13781d27a6c6768a73a01d9932fb72f4f7a48120a7632ea24236f17f7659e9032440c9851d6f4eacb61453c239f5dba5fcdae99c594a2406bf40b49fc6883ed360b386630c50472c5d1b29188a11b1e3a0cd035e153389f0dc6a7420958637f9bc05f451d96335ff085efb5915711a8538a2ea5c3e137627fb9c3439a82698844afbef8286fb47e02bd1bc585421093ce95a65c76d26b6c76a254f89003e9df6262789b3c86c362d563d3600c62233e0cadc2e101edcece346ba56b9c4c65896c56d78fddf633098ab7384fb3db40a3e0813db97c2fc7c81d007c63fb5f969c2ae31f1746fe75b7893f3fce967dbd9978ad585ca38407a4d2c13a7eccb32748dbe9f767e5358bdf2110661636fd58707c41cd4149779f6eb86f96023c17dc383ed047da2a94593250f373b0fe3744bb13d5e6612a6379b153526ac2f8d713200b0387502fe130235f710e67552fd5fb1aeb74a378a83d837496148274a6aacb0c496c43c962a47dd82b842fca9e29d68cdcef2b0ee1ff7e737d8199453013a38d0e29374025b9b602e3fad9a25190287334dbb064fe548e418892894933dca7176099e0349f652093ba6839780ebe87beeec140390f3b9f8e8f3812906079a5c0eb577c45dfd43c1ff1bb6510278f09c5f9c487644e79d0c710d7a5f04ed27da1c90b1d568971d3985458dfa272a0fcee38bb7e0128ef489a2980fd3fdba0b33fe049ac516b749023baa1c4385e0726e075d2e38163ab61ab3b2957378f29153327764127d586eb2cf2045277b3ed7b05f746eb52eabe2c8526dbe13ee7deab79c7f7fc8cd293f87773c9d4a082f81afc8c59deabb192fafc220813b6e005b722acbdef0fe000d4bd867fb7a22bc5ea45545b66ba0c4cd89147337b85593e5c2a996540f1f3dcbaefc8b9b52892ea73712ba7eecbe26615aa1e3de742364ec633bbab1c8569712a50041a1b3a544206a3f7968b336d2e62e73afc7181eb8e4a581e33eed67c5f2c157e44c969b218cd3fff811b6d8d4243e5d34545f789afd3b974e1fce728cc8c8dd2e65cf800e2a103482581ffb1f5e875ed5ce8e38c42135f66d3e7f4d48bc4bc6d998d6f6309bd5102c14b8a2039b8fbc9164e10ade7638db805a0d9c47d2618d37add328823199670d0e270ffada3fba9560fa20e50085e150e9de9c8a2376bb4e5626efc814758c214ab70948766c9a1e29697d7dbc404e3e44f043780b40b52383f011f607208ffee0756af5ec9445388abdf7e5404ca8d2e860b134e9dcc04f831b2ca14423200fa8fa47bb5200d5a8ba28c4bb2e587088bd7cffc05c586b8858317282169b1a85f23c4b2fce5c074968eb1d52f5e40003b6fede7eb069e7b5ab70fabb21b17373942c0c5fad2a9a70789f98d6595db5926d14117334537e0bce7a787a22318953546eb4ba70e05105c2f90c4a80a119d285a1154e28992ee16c4f7921400f210a71ce720641a43e47039edd908da98b87f172b5e5c49baa73e36659fa7ad5d523f79ff53953446f0796b2c14f5d4e2a18e377be2c335f84489087242fb3e4119931fb6c9113c60eca2253e0fafc127926e7616f524ab216b761af49f0ebc49d7d765b2bf992bef34b97fbe3a24a3997f4115eced9a7bbb58a6006fbcf959fc11687170b93fc3c497f6372981758e0a2a0d876248643ca3d73f3c358456bf61d0e7378952f6f1e78edc4c731cdf54066f976f03d597ba7c303c38ba77cf64a2ab76f57c3ab07c4dd1f6e0104e07eca47c883b36ad70ea9b535c302ce3f0d6b18337f2b3b73ced6365d7ff2de65de5deb3a1bab05c6607122f3b9673d2db5bf1a8186bc73fc7d9b49f5f98b085dc6c1f360f7d89464c798888ade9ebf6a638da29d3ec946da2421cfffd35b0157351224f4f2692bbd023072d4d717c0eb5f91d08237df961db4913553d6c84c4665a9524f187e4428dcda9fa6a118847bd00c3f8edf89650be107437a996c8dc028c644f78b13a2fd5b20f6a01ebf7e153cb147a61b2059a8186251158480ebfc5477f0aaf424a12f09b88aa0a5533bad8de402ed57e1be9af2dee866dc71401486ba3562ffb6f1a16f2542fcded5bd39ed853f476fe0e529edc0df4dc0bb70e7c89f1d1217218bac88c814613b9ba248039edaf0c3ca6fbdd8e352705e88bdfc987ef4d5b07fec97cc3a5e8f8ef174f400f9e3de7767dbd42267ba8bded7b93312b5c3d180653a23656451f466f447290e3a35878d0437418f6209002a767418c818200fb1503d7a2da32c9e794cd62488bf657963a7249c9e533634cde362408c796456234c2dbeb6e273a2a34fe98d5687b3c31e8b8486cc1a22a2457fa912255b943000956e29a68b7b27e1f3660895feea3c97814cf542ca288d53df0fdb6366c92a1dda4d8d089caae19da9b09fe0651021a661b5b5f61783adf3864e37bf060be94fc734084c08964a1525612cd82338abbd2ab0845f6270d9f8c1770773857950a63eb98de5a34a4054bc8a068789b5a42923b488e8d14778d3d3b3fa28a63fb266e751b28716564533b6ce29f3b68c674e46ae5cb544272256c0bf6a3567f259ceb4c0567be66a7e168653b07e3c6d3328431142e84384c0f66ad5c5f45602b93bf7db45ea4497cd02f8b68284e04c9f3becc30c516400ac9058b1b48174f98025686d840dc146f09b0b101700a7fbeb129749aa5affd86d2dabacaf4e49e7ab9cb3f04c1f55a5004105e90d9fc7f9d3fa466f934b758b4e82e24a9c1abaf2dda6c33f4e26b49fffa413cb6e6d34e9000ab3f7011e3def80aaeaf0164833b529a0ea89929096be24c678021f43ff95ea72b4d2150f90832fb6a3e68af31d1bc4bf5f280ca555038f9976d7b4b8bb2b9471ffe6d2f036b9cfc040b8df7e7733aac9cb53be407371edcb0e8140df2b94969424824391707c33b774cb54e328188b1e40e71e82f74105f714faadef75af6239b4ddae175b332b39876d1c4f9b4e8554b4f0990afca4bf5b98b2d864ce46c584aab4b4283cb4f555c0f54e0078b6fc1e28838f46aff38f9d054db2ad655271e8003d90ecc84c25c7553e22cdc4797c504dbaaf0eacf43e6174d5bbe984d174afd3f47fae2955cf77b51eb226bfd7aa2337c19d367714049a5907d25b80335584ca5fdea25ce86ce3065458e8d18a0c4d3772aee492e092cf9377469dfcf6d4b4247156acb23904a3708b277ad82f957fe1de78a18bb765221dac7b88dd59b2450b556ad7cde2566ea8513b1a82e5496fbe8cef6e9a17577971df99458f98da0b7f8049d5c42165731a464046eb15e45ec82dce4c27ba925818a0a4771cd4d6b5cfc44681f2d139c76f1b6d3268c555a0f341c251619b88e7c48ef4a6054078a8093dd86a527478930e93db7fa381acacd55d3bca7f82e8ac24eae9048de00542cd8539d46ed249505c6f821aa0be2025a856b876564663ab1a05bd5f3bf7a1bf618fa2f2926ceaa83739ca11ec3d0c6c8b19dfc346f658c82d37a293735f1396e74413013723a45d4c0d8846550158bef24f6d9fe94c8478f41e5500e4bd9da397e1cdadbdff0d3e7c43c68f85a79287a57190ab52b27a098d7d2aef73ab29dcef7529ee2cd93a486cbac7367bbbff76845a7b1e76cd876a3917be6f0382f0fd66c0ab2d5e1bc141698727ccfab838c4951110df94e8e8de75398940dbd5879830de3c5fcf5670363fa393c192e09336dddb699c85816ab09f23d4285efd375486c531f90b315bc8a0a30d6cdaaf0943fbc77d4cdc3f4086144e7306133a16d02f18eeab47b2395c7778ce121d18fe452aec07301674c95d4a095ff8c902f8d503576d13aa8280ea19375458aec04c56affb9a9f9652c8825b0f9d9858b1c1b7203f421c783c4c19be7c371b4a707e3b1a778bc2f5c6c1a9aafebaed98c7e958fb833b35eb0e13d9b717ec1979600dea5e46f079a2fb618113372d4a60fa57667b2420b90121292f273fa4eac71ece619e8daba0023173934f3f154769d13fcad663fcd806e3b18ebe920090fa10d0276f15a53d0df0eb55b8b02524c3cf6d"]}, @MACSEC_ATTR_SA_CONFIG={0x4}]}, 0x17b0}, 0x1, 0x0, 0x0, 0x4000000}, 0x4004080) r7 = socket(0x10, 0x2, 0x0) r8 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_GET_TUNSRC(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)={0x14, r8, 0x1, 0x70bd27, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x20000088}, 0x20000000) sendmsg$auto_SEG6_CMD_GET_TUNSRC(r1, &(0x7f00000005c0)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x8080000}, 0xc, &(0x7f0000000580)={&(0x7f0000003cc0)={0x111c, r8, 0x2, 0x70bd2c, 0x25dfdbfc, {}, [@SEG6_ATTR_HMACINFO={0xa5, 0x7, 0x0, 0x1, [@generic="4de2b3de08d70b7d11b8511e9f5398e0b79a5aaf82546cce96f2881bbf2e1cfd7de42ce765d9cfda4c1faa20461d589de43b36935a0b773a04a27cf60a6311af1e347b3492e46c6d4ed40aa9ba7756379f724a3736fcdbf1c1770b795fa4a9ac9f5200db11fb6b9b84b42e0db74ab266b79c6696f2c0194000d1d5fc3d28512ac9", @nested={0x20, 0x8a, 0x0, 0x1, [@nested={0x4, 0x89}, @typed={0x8, 0x13d, 0x0, 0x0, @u32=0x2}, @typed={0x4, 0x34}, @typed={0x8, 0x8f, 0x0, 0x0, @pid}, @nested={0x4, 0x10}]}]}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0xe7e8}, @SEG6_ATTR_SECRET={0x46, 0x4, "1d05f14c4b52c9ec3626524fc66d38dd93e48fae41ff8020dd64d4edc5d06ae3390fc10987b5097706d882210a28b1e024e1a066f87282680d24bd9b94c6af58696b"}, @SEG6_ATTR_HMACINFO={0x100d, 0x7, 0x0, 0x1, [@generic="1237d8193c2c0706b3", @generic="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"]}]}, 0x111c}, 0x1, 0x0, 0x0, 0x40800}, 0x4048845) mmap$auto(0x0, 0x400008, 0x7fb, 0x80000011, 0x2, 0x208000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) madvise$auto(0x0, 0x2003f0, 0x15) read$auto_v4l2_fops_v4l2_dev(0xffffffffffffffff, &(0x7f00000010c0)=""/22, 0x16) r9 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0) ppoll$auto(&(0x7f0000000000)={r9, 0x81, 0x9}, 0x9, &(0x7f0000000040)={0x1}, &(0x7f00000000c0), 0x8) mq_timedsend$auto(r9, 0x0, 0x2000, 0x2, 0x0) 4.59996946s ago: executing program 3 (id=1774): r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'bond0\x00', 0x0}) setgroups$auto(0x5, &(0x7f00000024c0)=0x9) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r3, r2, 0x4, 0x1ff, r1, @relative_id=0x13, 0xe600}, 0xf) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r4, 0x0, 0x3}, 0xc) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x0, 0x80000001, 0x7, 0x6d39, 0x5, 0x2, 0x1]}, 0x0) mmap$auto(0x5, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) getsockopt$auto(r1, 0x84, 0x80007e, 0x0, 0x0) close_range$auto(0x2, 0xa, 0x0) fcntl$auto(0x0, 0x407, 0x1) keyctl$auto_KEYCTL_CLEAR(0x7, 0x82, 0x9, 0x1a8a, 0x1) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x5, 0x7fffffff) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0) 4.327616004s ago: executing program 3 (id=1775): mmap$auto(0x1, 0x20009, 0x8, 0xeb1, 0x7f, 0x8000) (async) mmap$auto(0x5, 0x4, 0x803, 0x8000013, 0xffffffffffffffff, 0x4006) openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x110) io_uring_setup$auto(0x2, 0x0) (async, rerun: 64) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (rerun: 64) unshare$auto(0x40000080) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) (async) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) (async, rerun: 64) r0 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0) (rerun: 64) ioctl$auto(r0, 0xc0104d04, 0x8) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/tty53\x00', 0x200, 0x0) (async, rerun: 64) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0) (rerun: 64) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r2, 0x0, 0x1, 0x0, 0x1e) (async) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x7, 0xc45d, 0x80, 0x6, 0x3, 0x2, 0x3, 0x3, 0x62, 0x80000022, 0x7, 0x6d3e, 0x2000000004000009, 0x2, 0x7]}, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa901, 0x0) ioctl$auto(r3, 0x5523, r3) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async) io_uring_setup$auto(0x311, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) futex$auto(0x0, 0x89, 0x808, 0x0, 0x0, 0xfffffffa) (async) lseek$auto(r1, 0x4, 0x78) (async) r4 = openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000000)='/dev/etherd/discover\x00', 0x80101, 0x0) writev$auto(r4, &(0x7f0000000140)={0x0, 0xe4}, 0x4) 3.708443971s ago: executing program 0 (id=1776): socket(0x2, 0x80002, 0x73) socket(0x1, 0x4, 0xfff) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) eventfd$auto(0x3) r0 = eventfd$auto(0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sg0\x00', 0x6000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/block/nullb0/hidden\x00', 0x585e81, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/virtual/tty/tty21/power/runtime_suspended_time\x00', 0x402, 0x0) write$auto(r1, &(0x7f00000000c0)='7\x10\\\xa0\x04|\x03\x12\xfa\b\x1c\xe0k\x0f32Z0\xfbf\xe7\xe8\x97\x05~\x00', 0xa3e) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/bus/usb/040/001\x00', 0x105900, 0x0) fsconfig$auto_FSCONFIG_CMD_RECONFIGURE(r2, 0x7, &(0x7f00000001c0)='M\x007\xafw\x9b\x81vlmM(!\x11\xb7\xe3\xb6\'\x9f\x80\xa6m\xe3\x0e\xc8\fL>x%\x0ey\x1d5\x1f\xa3,aX\x80s\x98\xd7**\xa5\xea\bm\xc2?\x9bD\xd7n.\x9f\t_8&\x87\xd4b\x01eL\x9a\xf4\xbf\xac:?\xab\tK[\xd3\xf3\x0f\xd7x\xad\xff\xc0x\xa7\xee\x7f\x1b\xbc\xf76n\x84\xd5\xd7U\xc9\xba%\xd6\f\xfeV\r\xbc7\xa6\xbbsK\x89\x17\x15\xcc\xc4l\xc7@\xb8\t\x85\xed\x90=/\xf0\xc7\x9b\xf6\x82\xac.\t\xb2\x15@]\x8d\x88(T\x1b\f[~\xcf\xab\xd2\x17\xed\x8f\xc5Y\x05|\x1c91!_\xe6\x00\xc9\xe9\xbbw\x16c\x1d2', &(0x7f0000000080)="2631e47345b7c1f5be195e7c9f67cc3a02bb323107d39def760e000000000000932fba85945300e58a89d4174d21f013195cfb3151f1c346f2fe3c92193c29154408000000bb48eddae161787f566462d0646e118dea1b74c165c3beab3b200c828c0fd0d069e85be78500b571da5a1ceb3b6cccd1a2d4b354ec362a964022c924aa01bb9000c8fcdb54fa0e75276603eba06c223ad488b0c809b92ff1f25a02018124ed710f8d96fe9df6052b4099b3ecaeb267ee66655aee726a215346a7", 0x600) ioctl$auto(r2, 0x41045508, r2) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000300)=""/119, 0x77) openat$auto_ns_file_operations_nsfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/ns/cgroup\x00', 0x14000, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000100), r3) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x1, 0x0, 0x80000000) mmap$auto(0x0, 0x2000b, 0xdd, 0x40eb1, 0x401, 0x8000) openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000001680)='/sys/kernel/debug/tracing/uprobe_events\x00', 0x22c380, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x10000, 0x0) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) 3.641739223s ago: executing program 2 (id=1778): r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'bond0\x00', 0x0}) setgroups$auto(0x5, &(0x7f00000024c0)=0x9) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r3, r2, 0x4, 0x1ff, r1, @relative_id=0x13, 0xe600}, 0xf) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) madvise$auto(0x0, 0xffffffffffff0006, 0x17) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@hci={0x1f, 0x3, 0x2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) bind$auto(0x3, 0x0, 0x6a) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x65, 0x8000001f, 0x1000, 0x6d3e, 0x9, 0x800000000002, 0x8]}, 0x0) sendmsg$auto(0xffffffffffffffff, 0x0, 0xfff) msync$auto(0x2, 0x9, 0x40) select$auto(0x1, &(0x7f00000000c0)={[0xeeda, 0x7, 0x2, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10401]}, 0x0, 0x0, &(0x7f0000000280)={0x2, 0xcb}) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0xfffffdef) 3.004148034s ago: executing program 3 (id=1781): r0 = socket(0xa, 0x1, 0x84) mmap$auto(0x5, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @local}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) getsockopt$auto(r0, 0x84, 0x6c, 0x0, &(0x7f0000000000)=0x98) r1 = socket(0xa, 0x1, 0x100) modify_ldt$auto(0x1, 0x0, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0) sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=ANY=[@ANYRESOCT=r1, @ANYRESOCT, @ANYBLOB="040026bd7000fcdbdf2501000000"], 0x14}}, 0x20000000) mmap$auto(0x0, 0x2020009, 0x100000000, 0xeb1, r1, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) sysfs$auto(0x2, 0x2, 0x9) r2 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xe, 0x2, 0x6, 0x5, 0x8, 0xffffffffffffffff, [], {0xd74c, 0x6, 0x2, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0xff, 0x1, 0x10001, 0x7, 0x1, 0x40, 0x76c5, 0x400008, 0x100000005}}) io_uring_enter$auto(r2, 0x9, 0x820e, 0x9, 0x0, 0x18) 2.562917093s ago: executing program 1 (id=1782): openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) socket(0x29, 0x5, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000002340)={{0x0, 0xffff, &(0x7f00000023c0)={&(0x7f0000001240)="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", 0x3}, 0x3, 0x0, 0xffffffffffffffff, 0x7}, 0x6}, 0x101, 0x6) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x7, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x202c0, 0x155) socket(0xa, 0x3, 0x3b) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55) (fail_nth: 1) r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg1\x00', 0x0, 0x0) r1 = socket(0xa, 0x2, 0x3a) setsockopt$auto(r1, 0x29, 0x4a, 0x0, 0x0) ioctl$auto_BLKTRACETEARDOWN2(r0, 0x1276, 0x0) 2.531416335s ago: executing program 3 (id=1783): socket(0x2, 0x1, 0x106) write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000040)="3100001000000000002ca65de95b667827494d", 0x5e) mmap$auto(0x0, 0x7, 0x4000000000e0, 0x6b1, 0x401, 0x400) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa81, 0x0) rseq$auto(&(0x7f00000001c0)={0xe, 0x6, 0x0, 0x9, 0xffffffff, 0x2, "4125a04a5a947c57594bdcf48be8f6f8203586427262672331fe7a514e555423210c136544a046d30a2cf16bf4c899e9033fc264674bb55a7a268449affb6db8e65163e451dc24c7fb7fa98cf5288dc4247f5668b3a994108fc46f8ac24670df2b882ba648d71ee94e8d9f196246026261de899b"}, 0x8000, 0x0, 0x6) migrate_pages$auto(0x0, 0x2, 0x0, &(0x7f00000000c0)=0x3) mmap$auto(0x0, 0x2020009, 0x38e90acd, 0xeb1, 0xfffefffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80200, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x3, 0x40000000009f, 0x10000000040eb1, 0x401, 0x300000000000) r0 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, 0x0, 0x260582, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x1c, 0x0, 0x56b) r1 = syz_clone(0x80f400, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x4, 0x3, 0x100040eb1, r0, 0x300000000002) setsockopt$auto_SO_MAX_PACING_RATE(0xffffffffffffffff, 0x3, 0x2f, &(0x7f0000000300)='\xba\xf13\xa4o\xd3\xd2\xe0v\x95\xe6mAk\x90\xa1\xfd\xb0\xe1\xa6W\x85py\x91Q\xe7\xc9\x05\xce\x17\xe6<0e\x12\xe8/\x16\xf0\xd2\xe5\x06[\vFb\xd6\xc0sTv*\xa6\x97\xb4\xcf\xc8d^\xb1\x7f\xeeH\xd2\xa8\xeb\xad\xdfw\xad\x1e\xcf\x13\xd2\xbbh\xb7\xb1\xa2\x14\xbe=Q\xf3\xd6\x85\x8as\x04\x93\x8c3\n\x9e\xcc\xbdP\x89\xee\xa8\x82\x03\x97\xe6^\x85#\x11T\x8dE\xba\nF\xc2\xe2\x06k\xf0~\xa3\x86h\xc2\xb8\xcfk\x1f', 0x4) r2 = pidfd_open$auto(0x0, 0x0) setns(r2, 0x20000000) rt_tgsigqueueinfo$auto(0xffffffffffffffff, 0x0, 0x8, 0x0) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfs\x02\x00', 0xf, 0x0) execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000100)=&(0x7f0000000280)='\x00\x00E\xb1\xa7B\xb0\xc6\xe7Bb+q\xbd\xb4\x8f\xd9\xdb\xf6\xf2i_\x06\x93\x93\x1c\xff1\x1et\x10\xd0\xab/BDG6/', 0x0) ptrace$auto(0x4206, r1, 0x0, 0x5) mmap$auto(0x0, 0x400000000, 0x3, 0x18, 0xffffffffffffffff, 0x8005) move_pages$auto(0x1, 0x233, 0x0, 0x0, 0x0, 0x8000000000000000) symlink$auto(0x0, &(0x7f0000000000)='\'--[[\x14+\\\x00') bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) 2.415894326s ago: executing program 2 (id=1784): r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x96141, 0x0) r1 = socket(0x1b, 0x3, 0x76) madvise$auto(0x0, 0x2000040080000003, 0xe) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r2, &(0x7f0000000040)='//\xf2\x00', 0x80000000) getsockopt$auto_SO_RCVPRIORITY(r1, 0x2, 0x52, 0x0, &(0x7f0000000240)=0x7) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x121900, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) syz_clone(0x4040400, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r5 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000600), r4) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_IOAM6_CMD_DEL_NAMESPACE(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="090009bd7000fbdbdf2502003d59000100000000000b"], 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x808) r7 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000080), 0x2001, 0x0) setuid$auto(0x1f) ioctl$auto_SNAPSHOT_PLATFORM_SUPPORT(r7, 0x330f, 0x0) r8 = socket(0x2, 0x801, 0x106) write$auto(r0, &(0x7f0000000280)='.&\x00', 0x40) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$auto(r8, 0x11c, 0x2, 0x0, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), r1) pread64$auto(0xffffffffffffffff, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{o2?\x0f\x11\x90^\xdf/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x5) socket$nl_generic(0x10, 0x3, 0x10) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0) 2.291915705s ago: executing program 0 (id=1785): ioctl$auto(0x4000000000000c8, 0x400454cc, 0x3) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) socket(0x29, 0x5, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000002340)={{0x0, 0xffff, &(0x7f00000023c0)={&(0x7f0000001240)="e81e0fa45c82b01396be7ab80b2e9a91b8a2aba2c2ed9bb38aea8c0e8dcf29e32245288ba9c4957b533553160230dc03d98204d7c5809baa373162d6d5194e54653348c1afcfaa0023d8a414b9ebcfb7ca4a5604ec8a2c1439a4a7939c0c08d6e58abfc52533f1c32721900521e541783d13bbcafd2e90b088b8b5f57f95f81a9811af69b382c4abec7648d1dede8f6d2bdfe6b5ade01a89573b806701426959e9110a160d8ac1da2ed98dedf3dc750524e43b882e5b94f541ceb92ee5e8854e66cbbc5cb6f2df072db34cb5a58167329df0dcb0c2e221c14f13013413bb2981d9aa524299342eb6eb1ade75d57b26884125fe67d1a4919c18fd4f2b005306be054416f62c868d61e72186f1f2dfcd81fd8bac63a67058d91d63eac29401883e75a09048b0a9a465e509660e1e9c184fd52a3f25434cebc6ef7a62c522d016a1b4ee6e21578865c13403e826424fcf27365a63756d5ad2be92c7962d905fdc3fdc2dce44df449dcbea6e002749aaed74064926ae41d036fbfc9423a4622d723aa67460228ef55f027d95f3c6e8e5d34a00131800a6ae6fedbf5e7b39698aec3306cfde7ebb48d023f53141647f12e53e12db99cc1cecb951f1c2d7f511f05849df39da285f2d34f186c9b164468b36efad411e62062a486eabac141f24f7164b2fcb7a5faaf756c7a557daf53deba7dd5a070364d8ab66c29f682ef51953f98b9217e933a494d5cf03d235ba8756dd3fd635dd7a72c53cdbbec96b1ac139b479755956eb28e1985ef93e51ba451e3b1b1917107df703ce7ffe2e790312ef4c0281f874f46c0772a701f1b6ccf4d70f3c1882a7c28e1309c2d58ed2d6ddb162b74645ffc0f71e6d697c0d7fa15b2bf194e188d091327bf727b5767c8df7738e10b92fd4d072d64c893150ab26d53e314cbdaa4c26a2299f9734df6cc9e0373a397d49d4c8d050af93c6647234253841b67e5dd3cb09e85d0ac79cc4de7188e8cbc8d1a0be000db0e17381c7f8db5369955d9b03d756efdebcaa3bbe31fa3ea6ce005daad2e5cad635e4f37ef2feb465422b15812840c580ae0325bfdb38a64591ef641e11ef9986959c2c5522d18f581e70cda0178f3989179ebd011ba20da4440b9291946c52cd698e0b7f109b296b526a510918cd4aa3e871fa7364756e9f15c66b59aab225baba9adca44e7e39778e287f5f4598fea48ba5511db720fa9615812e78d3481b74f1e35c80c4b5aa336043f2a8a5304ff88bcd66cf13a3e369663571d0803ad6e0dc311c859b2a10c3643af854171c5e9d3b049416cdf6ebe0e53b2bcca3ae08ead49a1d06ae18af5e7094e0be4222a30e425b5c91039401771ee44da2b30fa6b34879c8c40e885ffcef14ef80e28e3609ad7697262a264d8e100abdbd91ccb5f25b529e02a716cd88a6e1195e508055b896935f2de77deae76c1109943c7010e876df448a3fed1de4576c88313afea9eb77577322671329d938574af6ff45c32a0fe14f2147a7d8fc528629f597bfb5c07816a32aa308b2749b1de4b1b410241148404cf0b0501d4cfa1dc9d0315619e85a23c8d1bea278c50aa511b204d96ecea75ddb0ba40dfe3a6c4a5fa8eb9984f733bb4f7642fd6a23a8b999ddd187c9aef1ca1e211432deff827e46efc8840856df0baa1f978a7612445caeedc11f8f069e2dbb600ba40628f868e2ee5ab7b7cac0626cf3e3607a67a4b593a0b561900d8a4fdafeed2e869658a6b4ded42e07ce69bff556bb81176fb61ee8bff2b8dbbf3afd21bdfb68589a4bba56e360bb6b4c263bbe67e2de500705f0b6e12fa130e87ffa06945320bea165c9e5d49d25ce1baf12a322fcc7d6e9ad290d463147ae8a5ff91e6cfdbb7cbf36d35b224def2480d54ba0801c864da7fcb030fbda6296eaa46c949529586df49fb09f0cf17990d2146e0028285795ae3b5f3bdbc0cbddae848678eba34efa9635d74629423d63866c655ff6aeb1b24245fedbf4143d66ee863e3a60126b69bc8df9c3b2ab1b2ab220ec3d839783d1f3c5eed7f1a2ed3ec3f1bcb0f99dd002043ac3bcf485c0c31babf04b7281053a1ba926e0b536762ca8ae1ce330a98d93dbaa975e39d105591cdaf11feea1d098eccbca773518ab0fe4ff85449180cc457baaaf7300dc505516c4ce14eeb3e7493dd57787fa9268a53fe643426d7f913dc19be6aef904d2af7243dc8b0a295497dc86b26c98e443d8169478d7b1ab5bc4c6fd9da9efd567505b00f62049934b498dc9f490edee02e17fd2734d4797ea0ef489150f817c2f1b2c7e049a7c13133fd905a944dc7d026107b159f83f16453ced1ac39075d969b75405f8a9e0fecc2732ed80cd456f05687267bc86a79e87ad05c86ef373b3cafddf042969", 0x3}, 0x3, 0x0, 0xffffffffffffffff, 0x7}, 0x6}, 0x101, 0x6) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x7, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x202c0, 0x155) socket(0xa, 0x3, 0x3b) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg1\x00', 0x0, 0x0) socket(0x18, 0x80000, 0x2) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/blkio.reset_stats\x00', 0xa801, 0x0) write$auto(r0, &(0x7f0000000140)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) mmap$auto(0x0, 0x400008, 0x200000000000db, 0x9b72, 0x2, 0x8002) r1 = socket(0x2, 0x1, 0x0) bind$auto(0x3, 0x0, 0x6a) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x80000000000000a, 0x2, 0x0) socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) memfd_secret$auto(0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram8/dev\x00', 0x488981, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f00000005c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x87\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D_#\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc^:\xd1\xe3\xf1@\xc0\x93^:Mn#Oi\xaa[X\x93)\x8f\x03K\xe6\xa4\x11?\xf1\x02+\\\xf9\x8b\xe5l5\x11\x006c\x907E\xeb\x81\fB\xe3\xf8n\x8f\x94V\xbcB\x9cm\x9f\x15\x00Q\xf8\x8fFW#?\xd5Z~\xa51\x832\xbd|\x19\xda\x8e\xff\x17\r\x96\xa3\xcc+\xf4a\xffN\xd2_\xe5\\\xf8Lzc\xd4\xa0\x1f\x04_\xf1\xc6\fO\xbe?)Q\xc7\\B\xdb\xeaI\xde\xe9m\xf5\xf9\x19\xd3@IK\xe3c\x0ek\x8drZ\xad\xdc\xbb\xfc\xd4\x1f\xdaOW\x87\xb6Fm\x12\xadw(z\\j\xcc0PY\x00\x00\x00\xd5\xf9\xe3\x85~cG\f\x85\xd6\x84ma\xfd\xdayNj\x80\xdd3^\x87,\x14\x8e\xbe$\x05\x8a\xb0 M\xf6$B TCs\xa9\x91dil[\xfc\a\xbfD\xd9\x8d(F\x1e\f\xec\xe9K|h\xf5\xcaUI\x18#\xbed\xa8C\x8a\xbb\x05\x00\xe6\xa3|\xf7\xa8\xbb\xd3\x97l.V/uc\xb5Q\x1eY\xe0\x03\xa1\xc1\xc8\xe2=RK\x7fWV;\xe4\xccTsf\xa7[\xdd\x9cR\xab\xf81s\xbc\x9c\xaaSGH\x9al\xb9%u\v\xb4\x9d\x95\x16\x01\xbbT\x99S\xf8A\xcd\bRC\xf4\xb0\x1a%\xdd+1\x81\x9d6\x90\xe8\xc6\xc1\x1e\xf0~\xaf\x10g&\xd6\x01l::V\xdbJiVW\xab4G\x97\x9cl', 0x8c4) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0) 2.131130108s ago: executing program 1 (id=1786): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count\x00', 0xc0082, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000080)='7', 0x1) 1.93592966s ago: executing program 0 (id=1787): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x8, 0x10000, 0x0) (async) socket(0x10, 0x2, 0x0) (async) mmap$auto(0x0, 0x7f, 0x1, 0xeb1, 0x401, 0x8000) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f00000017c0)='/sys/kernel/debug/lru_gen\x00', 0x1, 0x0) (async) r0 = bpf$auto(0x0, &(0x7f0000000080)=@bpf_attr_4={0x1e, 0xffffffffffffffff, 0xffffffff, 0xffffffffffffffff}, 0xd) bpf$auto(0x2, &(0x7f0000000080)=@iter_create={r0, 0x98}, 0x5) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x19) read$auto_bdi_debug_stats_fops_(r1, &(0x7f0000000140)=""/173, 0xad) r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) madvise$auto(0xeb08, 0x3ac4, 0x3) (async) ioctl$auto_PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0x0, 0x1, 0x9, 0xfffffffffffffffb, 0x0, 0x8, 0x0, 0x9}) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x110) (async) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) readlink$auto(0x0, 0x0, 0x800) (async) keyctl$auto(0x6, 0xfffffffffffffffc, 0x0, 0x0, 0x101) (async) bpf$auto_BPF_LINK_GET_FD_BY_ID(0x1e, 0x0, 0xff) r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x10b402, 0x0) pread64$auto(r3, 0x0, 0x100000001, 0x100) (async) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/thread-self/net/dev_snmp6/wlan0\x00', 0xc0000, 0x0) (async) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) mmap$auto(0x0, 0x400004, 0x8, 0x9b78, 0xffffffffffffffff, 0x8000) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x8000) (async) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0) (async) r4 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r4, 0xaf01, 0x5) 1.828142133s ago: executing program 1 (id=1788): openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) socket(0x29, 0x5, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000002340)={{0x0, 0xffff, &(0x7f00000023c0)={&(0x7f0000001240)="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", 0x3}, 0x3, 0x0, 0xffffffffffffffff, 0x7}, 0x6}, 0x101, 0x6) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x7, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x202c0, 0x155) socket(0xa, 0x3, 0x3b) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg1\x00', 0x0, 0x0) socket(0xa, 0x2, 0x3a) 1.438338632s ago: executing program 0 (id=1789): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count\x00', 0xc0082, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000080)='7', 0x1) (fail_nth: 1) 1.198626226s ago: executing program 3 (id=1790): socket(0x2, 0x1, 0x106) write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0) mmap$auto(0x0, 0x7, 0x4000000000e0, 0x6b1, 0x401, 0x400) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa81, 0x0) rseq$auto(&(0x7f00000001c0)={0xe, 0x6, 0x0, 0x9, 0xffffffff, 0x2, "4125a04a5a947c57594bdcf48be8f6f8203586427262672331fe7a514e555423210c136544a046d30a2cf16bf4c899e9033fc264674bb55a7a268449affb6db8e65163e451dc24c7fb7fa98cf5288dc4247f5668b3a994108fc46f8ac24670df2b882ba648d71ee94e8d9f196246026261de899b"}, 0x8000, 0x0, 0x6) migrate_pages$auto(0x0, 0x2, 0x0, &(0x7f00000000c0)=0x3) mmap$auto(0x0, 0x2020009, 0x38e90acd, 0xeb1, 0xfffefffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80200, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x3, 0x40000000009f, 0x10000000040eb1, 0x401, 0x300000000000) r0 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, 0x0, 0x260582, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x1c, 0x0, 0x56b) r1 = syz_clone(0x80f400, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x4, 0x3, 0x100040eb1, r0, 0x300000000002) setsockopt$auto_SO_MAX_PACING_RATE(0xffffffffffffffff, 0x3, 0x2f, &(0x7f0000000300)='\xba\xf13\xa4o\xd3\xd2\xe0v\x95\xe6mAk\x90\xa1\xfd\xb0\xe1\xa6W\x85py\x91Q\xe7\xc9\x05\xce\x17\xe6<0e\x12\xe8/\x16\xf0\xd2\xe5\x06[\vFb\xd6\xc0sTv*\xa6\x97\xb4\xcf\xc8d^\xb1\x7f\xeeH\xd2\xa8\xeb\xad\xdfw\xad\x1e\xcf\x13\xd2\xbbh\xb7\xb1\xa2\x14\xbe=Q\xf3\xd6\x85\x8as\x04\x93\x8c3\n\x9e\xcc\xbdP\x89\xee\xa8\x82\x03\x97\xe6^\x85#\x11T\x8dE\xba\nF\xc2\xe2\x06k\xf0~\xa3\x86h\xc2\xb8\xcfk\x1f', 0x4) r2 = pidfd_open$auto(0x0, 0x0) setns(r2, 0x20000000) rt_tgsigqueueinfo$auto(0xffffffffffffffff, 0x0, 0x8, 0x0) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfs\x02\x00', 0xf, 0x0) mount$auto(0x0, &(0x7f00000002c0)='}[,&*}\x00', 0x0, 0x2ee, &(0x7f0000000340)="98db5ad8") execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000100)=&(0x7f0000000280)='\x00\x00E\xb1\xa7B\xb0\xc6\xe7Bb+q\xbd\xb4\x8f\xd9\xdb\xf6\xf2i_\x06\x93\x93\x1c\xff1\x1et\x10\xd0\xab/BDG6/', 0x0) ptrace$auto(0x4206, r1, 0x0, 0x5) move_pages$auto(0x1, 0x233, 0x0, 0x0, 0x0, 0x8000000000000000) symlink$auto(0x0, &(0x7f0000000000)='\'--[[\x14+\\\x00') bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) 1.090900718s ago: executing program 1 (id=1791): r0 = socket(0xa, 0x1, 0x84) mmap$auto(0x5, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @local}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) getsockopt$auto(r0, 0x84, 0x6c, 0x0, &(0x7f0000000000)=0x98) r1 = socket(0xa, 0x1, 0x100) modify_ldt$auto(0x1, 0x0, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0) sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=ANY=[@ANYRESOCT=r1, @ANYRESOCT, @ANYBLOB="040026bd7000fcdbdf2501000000"], 0x14}}, 0x20000000) mmap$auto(0x0, 0x2020009, 0x100000000, 0xeb1, r1, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) sysfs$auto(0x2, 0x2, 0x9) r2 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xe, 0x2, 0x6, 0x5, 0x8, 0xffffffffffffffff, [], {0xd74c, 0x6, 0x2, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0xff, 0x1, 0x10001, 0x7, 0x1, 0x40, 0x76c5, 0x400008, 0x100000005}}) io_uring_enter$auto(r2, 0x9, 0x820e, 0x9, 0x0, 0x18) 780.134022ms ago: executing program 2 (id=1792): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r0, 0x0, 0x1f40) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x8, 0x5, 0x4000000000df, 0xeb3, 0x401, 0x8000) socketpair$auto(0x1e, 0x5, 0xf0ffff, 0x0) 779.940049ms ago: executing program 0 (id=1793): socket(0x2, 0x80002, 0x73) socket(0x1, 0x4, 0xfff) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) eventfd$auto(0x3) r0 = eventfd$auto(0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sg0\x00', 0x6000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/block/nullb0/hidden\x00', 0x585e81, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/virtual/tty/tty21/power/runtime_suspended_time\x00', 0x402, 0x0) write$auto(r1, &(0x7f00000000c0)='7\x10\\\xa0\x04|\x03\x12\xfa\b\x1c\xe0k\x0f32Z0\xfbf\xe7\xe8\x97\x05~\x00', 0xa3e) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/bus/usb/040/001\x00', 0x105900, 0x0) fsconfig$auto_FSCONFIG_CMD_RECONFIGURE(r2, 0x7, &(0x7f00000001c0)='M\x007\xafw\x9b\x81vlmM(!\x11\xb7\xe3\xb6\'\x9f\x80\xa6m\xe3\x0e\xc8\fL>x%\x0ey\x1d5\x1f\xa3,aX\x80s\x98\xd7**\xa5\xea\bm\xc2?\x9bD\xd7n.\x9f\t_8&\x87\xd4b\x01eL\x9a\xf4\xbf\xac:?\xab\tK[\xd3\xf3\x0f\xd7x\xad\xff\xc0x\xa7\xee\x7f\x1b\xbc\xf76n\x84\xd5\xd7U\xc9\xba%\xd6\f\xfeV\r\xbc7\xa6\xbbsK\x89\x17\x15\xcc\xc4l\xc7@\xb8\t\x85\xed\x90=/\xf0\xc7\x9b\xf6\x82\xac.\t\xb2\x15@]\x8d\x88(T\x1b\f[~\xcf\xab\xd2\x17\xed\x8f\xc5Y\x05|\x1c91!_\xe6\x00\xc9\xe9\xbbw\x16c\x1d2', &(0x7f0000000080)="2631e47345b7c1f5be195e7c9f67cc3a02bb323107d39def760e000000000000932fba85945300e58a89d4174d21f013195cfb3151f1c346f2fe3c92193c29154408000000bb48eddae161787f566462d0646e118dea1b74c165c3beab3b200c828c0fd0d069e85be78500b571da5a1ceb3b6cccd1a2d4b354ec362a964022c924aa01bb9000c8fcdb54fa0e75276603eba06c223ad488b0c809b92ff1f25a02018124ed710f8d96fe9df6052b4099b3ecaeb267ee66655aee726a215346a7", 0x600) ioctl$auto(r2, 0x41045508, r2) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000300)=""/119, 0x77) openat$auto_ns_file_operations_nsfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/ns/cgroup\x00', 0x14000, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000100), r3) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x1, 0x0, 0x80000000) mmap$auto(0x0, 0x2000b, 0xdd, 0x40eb1, 0x401, 0x8000) openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000001680)='/sys/kernel/debug/tracing/uprobe_events\x00', 0x22c380, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x10000, 0x0) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) 491.070306ms ago: executing program 1 (id=1794): socket(0x21, 0x2, 0x2) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/cmdline\x00', 0x2000, 0x0) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x80100, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) socket(0x2b, 0x1, 0x1) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0x3b84, 0x0) 257.198068ms ago: executing program 2 (id=1795): r0 = socket(0xa, 0x1, 0x100) modify_ldt$auto(0x1, 0x0, 0x10) mmap$auto(0x0, 0x2020009, 0x100000000, 0xeb1, r0, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = socket(0x10, 0x2, 0xc) r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x24, r2, 0x10, 0x70bd2c, 0x25dfdbfa, {0xa, 0x0, 0xa00}, [@CTRL_ATTR_FAMILY_NAME={0x0, 0x2, '%/\x00\xe2\xa8\\A\xe7Z\x02q[-\x00\x00\x00\\\xdc\xdf(\xff\xfee\xc3\x17py\x9f\xda\xb88\xaa\xf6q*\x82\xe6(\xc9\xe6B\x9aJ82\v-i(c\x92{\xd7D\xb4\xf7\xb4\t\xb2\x98b\xd3%vu\xd4\xfd\t\xd7J\x83\x19)\xb1\x00[\xdd(\xef?\xc5\xae(\x84\xefjx\xfe\xdb\xeb\xbceaAw\x1eW\x12Bh\xc3y2\xc9\x0e\xc9\x99#\x92j\x97\xbbDOi\x03\xa4\x11\x02Ff\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x2) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000200)='/dev/mtd0ro\x00', 0x400, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x1f9, 0x100000007, 0x200000000d, 0x1, 0x2, 0x3, 0x15f4da0a, 0x3, 0x4, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x8, 0x4, 0x8, 0x9b70, 0x2, 0x8401) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/addr_prefs\x00', 0x102, 0x0) writev$auto(r4, &(0x7f0000000080)={&(0x7f0000000040), 0x6}, 0x3) r5 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) mmap$auto(0xfffffffffffffff8, 0xef3f, 0x0, 0x17, r5, 0x7) 0s ago: executing program 1 (id=1796): openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/softnet_stat\x00', 0x40142, 0x0) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async, rerun: 64) unshare$auto(0x40000080) (rerun: 64) r0 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0) readv$auto(r0, &(0x7f0000000680)={0x0, 0x40200}, 0x3) (async, rerun: 64) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) (async, rerun: 64) mmap$auto(0x0, 0x40009, 0x3, 0x38, 0xffffffffffffffff, 0x28000) (async, rerun: 64) unshare$auto(0x8) (rerun: 64) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/tty/ptyyf/power/runtime_active_time\x00', 0x430000, 0x0) read$auto(r1, 0x0, 0x1) (async) close_range$auto(0x2, 0x8, 0x0) (async) r2 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0) read$auto_proc_pid_maps_operations_internal(r2, &(0x7f00000001c0)=""/204, 0xcc) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x20040, 0x0) (async, rerun: 32) openat$auto_trace_options_core_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/options/latency-format\x00', 0x121082, 0x0) (async, rerun: 32) writev$auto(0x4, &(0x7f0000000080)={0x0, 0x8}, 0x1) mmap$auto(0x0, 0x7, 0x915, 0xb1, 0xffffffffffffffff, 0x7ffd) (async) close_range$auto(0x2, 0x8, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) (async, rerun: 32) r3 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, 0x0, 0x100, 0x0) (async, rerun: 32) mmap$auto(0x0, 0x20009, 0x2b, 0x12, r0, 0xd1a) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/ptyz4\x00', 0x0, 0x0) ioctl$auto_TIOCSTI2(r4, 0x5412, &(0x7f0000000000)) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) read$auto(0x3, 0x0, 0x80) r5 = socket(0x15, 0x4, 0x252b) getsockopt$auto_SO_ERROR(r5, 0x8b, 0x4, 0x0, 0x0) (async) openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, 0x0, 0x80800, 0x0) (async) close_range$auto(0x2, r3, 0x200) (async) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) kernel console output (not intermixed with test programs): T_INJECTION: forcing a failure. [ 416.495870][T11123] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 416.542582][T11123] CPU: 1 UID: 0 PID: 11123 Comm: syz.2.1285 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 416.542623][T11123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 416.542641][T11123] Call Trace: [ 416.542650][T11123] [ 416.542661][T11123] dump_stack_lvl+0x16c/0x1f0 [ 416.542719][T11123] should_fail_ex+0x512/0x640 [ 416.542766][T11123] _copy_from_user+0x2e/0xd0 [ 416.542814][T11123] copy_from_sockptr_offset.constprop.0+0x153/0x1a0 [ 416.542856][T11123] ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10 [ 416.542920][T11123] ? __local_bh_enable_ip+0xa4/0x120 [ 416.542956][T11123] ? lockdep_hardirqs_on+0x7c/0x110 [ 416.543010][T11123] do_ip_setsockopt+0x1df7/0x3130 [ 416.543056][T11123] ? __pfx_do_ip_setsockopt+0x10/0x10 [ 416.543108][T11123] ? aa_sk_perm+0x2f4/0xb10 [ 416.543151][T11123] ip_setsockopt+0x59/0xf0 [ 416.543194][T11123] udp_setsockopt+0x7d/0xd0 [ 416.543232][T11123] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 416.543267][T11123] do_sock_setsockopt+0x221/0x470 [ 416.543299][T11123] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 416.543363][T11123] __sys_setsockopt+0x120/0x1a0 [ 416.543412][T11123] __x64_sys_setsockopt+0xbd/0x160 [ 416.543452][T11123] ? do_syscall_64+0x91/0x490 [ 416.543495][T11123] ? lockdep_hardirqs_on+0x7c/0x110 [ 416.543537][T11123] do_syscall_64+0xcd/0x490 [ 416.543583][T11123] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 416.543632][T11123] RIP: 0033:0x7f5bd698e929 [ 416.543657][T11123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 416.543696][T11123] RSP: 002b:00007f5bd78c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 416.543725][T11123] RAX: ffffffffffffffda RBX: 00007f5bd6bb5fa0 RCX: 00007f5bd698e929 [ 416.543746][T11123] RDX: 0000000000000020 RSI: 0000000000000000 RDI: 0000000000000003 [ 416.543765][T11123] RBP: 00007f5bd78c6090 R08: 000000000020000b R09: 0000000000000000 [ 416.543786][T11123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 416.543805][T11123] R13: 0000000000000000 R14: 00007f5bd6bb5fa0 R15: 00007ffe92c6b618 [ 416.543845][T11123] [ 416.764591][ C1] vkms_vblank_simulate: vblank timer overrun [ 416.815064][T11127] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 417.132593][T11129] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1287'. [ 418.980920][T11159] netlink: 'syz.0.1294': attribute type 1 has an invalid length. [ 419.756223][T11176] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 420.985733][T11198] syz_tun: tun_chr_ioctl cmd 1074025680 [ 421.064807][T11202] FAULT_INJECTION: forcing a failure. [ 421.064807][T11202] name failslab, interval 1, probability 0, space 0, times 0 [ 421.086205][T11202] CPU: 0 UID: 0 PID: 11202 Comm: syz.1.1302 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 421.086254][T11202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 421.086275][T11202] Call Trace: [ 421.086294][T11202] [ 421.086307][T11202] dump_stack_lvl+0x16c/0x1f0 [ 421.086363][T11202] should_fail_ex+0x512/0x640 [ 421.086412][T11202] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 421.086468][T11202] should_failslab+0xc2/0x120 [ 421.086500][T11202] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 421.086562][T11202] ? __proc_create+0xc3/0x8c0 [ 421.086611][T11202] ? __proc_create+0x2ce/0x8c0 [ 421.086664][T11202] __proc_create+0x2ce/0x8c0 [ 421.086714][T11202] ? __pfx___proc_create+0x10/0x10 [ 421.086771][T11202] ? _raw_write_unlock+0x28/0x50 [ 421.086815][T11202] ? proc_register+0x314/0x5f0 [ 421.086871][T11202] proc_create_reg+0x7d/0x180 [ 421.086905][T11202] proc_create_net_data+0x8e/0x1b0 [ 421.086959][T11202] ? __pfx_proc_create_net_data+0x10/0x10 [ 421.087022][T11202] ? __pfx_ip6mr_net_init+0x10/0x10 [ 421.087064][T11202] ip6mr_net_init+0x2ce/0x4e0 [ 421.087107][T11202] ? __pfx_ip6mr_net_init+0x10/0x10 [ 421.087149][T11202] ops_init+0x1df/0x5f0 [ 421.087204][T11202] setup_net+0x1ff/0x510 [ 421.087252][T11202] ? lockdep_init_map_type+0x5c/0x280 [ 421.087309][T11202] ? __pfx_setup_net+0x10/0x10 [ 421.087362][T11202] ? debug_mutex_init+0x37/0x70 [ 421.087417][T11202] copy_net_ns+0x2a6/0x5f0 [ 421.087455][T11202] create_new_namespaces+0x3ea/0xa90 [ 421.087504][T11202] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 421.087546][T11202] ksys_unshare+0x45b/0xa40 [ 421.087591][T11202] ? __pfx_ksys_unshare+0x10/0x10 [ 421.087637][T11202] ? xfd_validate_state+0x61/0x180 [ 421.087696][T11202] __x64_sys_unshare+0x31/0x40 [ 421.087742][T11202] do_syscall_64+0xcd/0x490 [ 421.087796][T11202] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 421.087830][T11202] RIP: 0033:0x7f3de018e929 [ 421.087857][T11202] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 421.087891][T11202] RSP: 002b:00007f3de0fb8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 421.087923][T11202] RAX: ffffffffffffffda RBX: 00007f3de03b5fa0 RCX: 00007f3de018e929 [ 421.087947][T11202] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 421.087968][T11202] RBP: 00007f3de0210b39 R08: 0000000000000000 R09: 0000000000000000 [ 421.087988][T11202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 421.088009][T11202] R13: 0000000000000000 R14: 00007f3de03b5fa0 R15: 00007ffc8ac05ba8 [ 421.088053][T11202] [ 421.719281][ T30] audit: type=1326 audit(4294971708.200:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11207 comm="syz.0.1304" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8cd798e929 code=0x0 [ 422.240919][T11217] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 422.601332][T11222] netlink: 'syz.1.1307': attribute type 1 has an invalid length. [ 424.359360][T11249] bcache: register_bcache() error : failed to open device [ 425.056839][T11255] FAULT_INJECTION: forcing a failure. [ 425.056839][T11255] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 425.187487][T11255] CPU: 0 UID: 0 PID: 11255 Comm: syz.1.1316 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 425.187541][T11255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 425.187563][T11255] Call Trace: [ 425.187576][T11255] [ 425.187591][T11255] dump_stack_lvl+0x16c/0x1f0 [ 425.187652][T11255] should_fail_ex+0x512/0x640 [ 425.187711][T11255] _copy_to_user+0x32/0xd0 [ 425.187771][T11255] simple_read_from_buffer+0xcb/0x170 [ 425.187822][T11255] proc_fail_nth_read+0x197/0x270 [ 425.187866][T11255] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 425.187913][T11255] ? rw_verify_area+0xcf/0x680 [ 425.187991][T11255] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 425.188034][T11255] vfs_read+0x1e1/0xc60 [ 425.188094][T11255] ? __pfx_vfs_read+0x10/0x10 [ 425.188142][T11255] ? __pfx_br_ioctl_stub+0x10/0x10 [ 425.188209][T11255] ? br_ioctl_call+0x66/0xa0 [ 425.188253][T11255] ? sock_ioctl+0x3a9/0x6b0 [ 425.188294][T11255] ? __pfx_sock_ioctl+0x10/0x10 [ 425.188331][T11255] ? hook_file_ioctl_common+0x145/0x410 [ 425.188385][T11255] ksys_read+0x12a/0x250 [ 425.188435][T11255] ? __pfx_ksys_read+0x10/0x10 [ 425.188485][T11255] ? __pfx_sock_ioctl+0x10/0x10 [ 425.188535][T11255] do_syscall_64+0xcd/0x490 [ 425.188593][T11255] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 425.188630][T11255] RIP: 0033:0x7f3de018d33c [ 425.188663][T11255] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 425.188700][T11255] RSP: 002b:00007f3de0fb8030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 425.188734][T11255] RAX: ffffffffffffffda RBX: 00007f3de03b5fa0 RCX: 00007f3de018d33c [ 425.188757][T11255] RDX: 000000000000000f RSI: 00007f3de0fb80a0 RDI: 0000000000000002 [ 425.188779][T11255] RBP: 00007f3de0fb8090 R08: 0000000000000000 R09: 0000000000000000 [ 425.188799][T11255] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 425.188820][T11255] R13: 0000000000000000 R14: 00007f3de03b5fa0 R15: 00007ffc8ac05ba8 [ 425.188865][T11255] [ 425.450102][T11252] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 425.706686][T11259] FAULT_INJECTION: forcing a failure. [ 425.706686][T11259] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 425.741728][T11270] netlink: 'syz.1.1321': attribute type 11 has an invalid length. [ 425.802345][T11259] CPU: 0 UID: 0 PID: 11259 Comm: syz.2.1317 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 425.802391][T11259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 425.802410][T11259] Call Trace: [ 425.802420][T11259] [ 425.802432][T11259] dump_stack_lvl+0x16c/0x1f0 [ 425.802486][T11259] should_fail_ex+0x512/0x640 [ 425.802539][T11259] _copy_from_iter+0x29f/0x16f0 [ 425.802598][T11259] ? anon_pipe_write+0x6f1/0x1a70 [ 425.802648][T11259] ? __pfx__copy_from_iter+0x10/0x10 [ 425.802698][T11259] ? __pfx___mutex_lock+0x10/0x10 [ 425.802765][T11259] copy_page_from_iter+0xde/0x180 [ 425.802821][T11259] anon_pipe_write+0xbe7/0x1a70 [ 425.802886][T11259] ? __pfx_anon_pipe_write+0x10/0x10 [ 425.802937][T11259] ? __pfx_autoremove_wake_function+0x10/0x10 [ 425.802981][T11259] ? bpf_lsm_file_permission+0x9/0x10 [ 425.803014][T11259] ? security_file_permission+0x71/0x210 [ 425.803059][T11259] ? rw_verify_area+0xcf/0x680 [ 425.803103][T11259] vfs_write+0x6c4/0x1150 [ 425.803162][T11259] ? __pfx_anon_pipe_write+0x10/0x10 [ 425.803217][T11259] ? __pfx_vfs_write+0x10/0x10 [ 425.803260][T11259] ? find_held_lock+0x2b/0x80 [ 425.803319][T11259] ksys_write+0x1f8/0x250 [ 425.803367][T11259] ? __pfx_ksys_write+0x10/0x10 [ 425.803428][T11259] do_syscall_64+0xcd/0x490 [ 425.803480][T11259] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 425.803514][T11259] RIP: 0033:0x7f5bd698e929 [ 425.803539][T11259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 425.803571][T11259] RSP: 002b:00007f5bd78c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 425.803600][T11259] RAX: ffffffffffffffda RBX: 00007f5bd6bb5fa0 RCX: 00007f5bd698e929 [ 425.803623][T11259] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 425.803643][T11259] RBP: 00007f5bd78c6090 R08: 0000000000000000 R09: 0000000000000000 [ 425.803663][T11259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 425.803682][T11259] R13: 0000000000000000 R14: 00007f5bd6bb5fa0 R15: 00007ffe92c6b618 [ 425.803725][T11259] [ 426.178960][T11280] netlink: 'syz.1.1322': attribute type 1 has an invalid length. [ 426.456951][T11288] netlink: 186 bytes leftover after parsing attributes in process `syz.2.1323'. [ 426.521949][T11285] FAULT_INJECTION: forcing a failure. [ 426.521949][T11285] name failslab, interval 1, probability 0, space 0, times 0 [ 426.537598][T11285] CPU: 0 UID: 0 PID: 11285 Comm: syz.2.1323 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 426.537646][T11285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 426.537666][T11285] Call Trace: [ 426.537677][T11285] [ 426.537689][T11285] dump_stack_lvl+0x16c/0x1f0 [ 426.537743][T11285] should_fail_ex+0x512/0x640 [ 426.537791][T11285] ? __kmalloc_noprof+0xbf/0x510 [ 426.537844][T11285] ? lsm_blob_alloc+0x68/0x90 [ 426.537895][T11285] should_failslab+0xc2/0x120 [ 426.537927][T11285] __kmalloc_noprof+0xd2/0x510 [ 426.537988][T11285] lsm_blob_alloc+0x68/0x90 [ 426.538040][T11285] security_sk_alloc+0x30/0x270 [ 426.538077][T11285] sk_prot_alloc+0xfb/0x2a0 [ 426.538125][T11285] sk_alloc+0x36/0xc20 [ 426.538173][T11285] inet_create+0x3a1/0x1090 [ 426.538219][T11285] ? inet_create+0x93/0x1090 [ 426.538270][T11285] __sock_create+0x338/0x8d0 [ 426.538312][T11285] __sys_socket+0x14d/0x260 [ 426.538350][T11285] ? __pfx___sys_socket+0x10/0x10 [ 426.538388][T11285] ? xfd_validate_state+0x61/0x180 [ 426.538444][T11285] __x64_sys_socket+0x72/0xb0 [ 426.538480][T11285] ? lockdep_hardirqs_on+0x7c/0x110 [ 426.538527][T11285] do_syscall_64+0xcd/0x490 [ 426.538581][T11285] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 426.538616][T11285] RIP: 0033:0x7f5bd698e929 [ 426.538642][T11285] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 426.538676][T11285] RSP: 002b:00007f5bd78c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 426.538707][T11285] RAX: ffffffffffffffda RBX: 00007f5bd6bb5fa0 RCX: 00007f5bd698e929 [ 426.538728][T11285] RDX: 0000000000000106 RSI: 0000000000000001 RDI: 0000000000000002 [ 426.538748][T11285] RBP: 00007f5bd6a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 426.538767][T11285] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 426.538786][T11285] R13: 0000000000000000 R14: 00007f5bd6bb5fa0 R15: 00007ffe92c6b618 [ 426.538827][T11285] [ 427.358591][T11303] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 429.381834][T11341] can: request_module (can-proto-4) failed. [ 429.503192][T11341] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9 [ 430.109647][T11345] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10 [ 430.229100][T11354] netlink: 'syz.1.1336': attribute type 1 has an invalid length. [ 431.148570][T11359] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 432.505322][T11393] FAULT_INJECTION: forcing a failure. [ 432.505322][T11393] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 432.541253][T11393] CPU: 0 UID: 0 PID: 11393 Comm: syz.3.1344 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 432.541305][T11393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 432.541324][T11393] Call Trace: [ 432.541333][T11393] [ 432.541345][T11393] dump_stack_lvl+0x16c/0x1f0 [ 432.541397][T11393] should_fail_ex+0x512/0x640 [ 432.541449][T11393] _copy_from_user+0x2e/0xd0 [ 432.541498][T11393] copy_msghdr_from_user+0x98/0x160 [ 432.541545][T11393] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 432.541594][T11393] ? kfree+0x24f/0x4d0 [ 432.541631][T11393] ? __lock_acquire+0x622/0x1c90 [ 432.541679][T11393] ___sys_recvmsg+0xdb/0x1a0 [ 432.541725][T11393] ? __pfx____sys_recvmsg+0x10/0x10 [ 432.541790][T11393] ? __pfx___might_resched+0x10/0x10 [ 432.541831][T11393] do_recvmmsg+0x2fe/0x750 [ 432.541880][T11393] ? __pfx_do_recvmmsg+0x10/0x10 [ 432.541932][T11393] ? do_futex+0x122/0x350 [ 432.542009][T11393] ? __x64_sys_futex+0x1e0/0x4c0 [ 432.542054][T11393] __x64_sys_recvmmsg+0x22a/0x280 [ 432.542105][T11393] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 432.542165][T11393] do_syscall_64+0xcd/0x490 [ 432.542218][T11393] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 432.542249][T11393] RIP: 0033:0x7ff3c5f8e929 [ 432.542274][T11393] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 432.542315][T11393] RSP: 002b:00007ff3c6d25038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 432.542347][T11393] RAX: ffffffffffffffda RBX: 00007ff3c61b5fa0 RCX: 00007ff3c5f8e929 [ 432.542368][T11393] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 432.542387][T11393] RBP: 00007ff3c6010b39 R08: 0000000000000000 R09: 0000000000000000 [ 432.542407][T11393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 432.542426][T11393] R13: 0000000000000000 R14: 00007ff3c61b5fa0 R15: 00007ffc329d8a38 [ 432.542468][T11393] [ 433.130055][T11407] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 433.329394][T11414] netlink: 'syz.3.1348': attribute type 1 has an invalid length. [ 436.110612][T11455] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1355'. [ 436.586917][T11459] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 436.833929][T11466] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1358'. [ 436.897721][T11469] netlink: 'syz.3.1359': attribute type 1 has an invalid length. [ 438.004460][T11492] FAULT_INJECTION: forcing a failure. [ 438.004460][T11492] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 438.033033][T11492] CPU: 1 UID: 0 PID: 11492 Comm: syz.2.1364 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 438.033078][T11492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 438.033096][T11492] Call Trace: [ 438.033106][T11492] [ 438.033117][T11492] dump_stack_lvl+0x16c/0x1f0 [ 438.033169][T11492] should_fail_ex+0x512/0x640 [ 438.033220][T11492] _copy_from_user+0x2e/0xd0 [ 438.033271][T11492] copy_msghdr_from_user+0x98/0x160 [ 438.033318][T11492] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 438.033372][T11492] ? __pfx__kstrtoull+0x10/0x10 [ 438.033416][T11492] ___sys_sendmsg+0xfe/0x1d0 [ 438.033465][T11492] ? __pfx____sys_sendmsg+0x10/0x10 [ 438.033531][T11492] ? find_held_lock+0x2b/0x80 [ 438.033590][T11492] __sys_sendmmsg+0x200/0x420 [ 438.033641][T11492] ? __pfx___sys_sendmmsg+0x10/0x10 [ 438.033702][T11492] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 438.033768][T11492] ? fput+0x70/0xf0 [ 438.033797][T11492] ? ksys_write+0x1ac/0x250 [ 438.033841][T11492] ? __pfx_ksys_write+0x10/0x10 [ 438.033898][T11492] __x64_sys_sendmmsg+0x9c/0x100 [ 438.033945][T11492] ? lockdep_hardirqs_on+0x7c/0x110 [ 438.033989][T11492] do_syscall_64+0xcd/0x490 [ 438.034038][T11492] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 438.034070][T11492] RIP: 0033:0x7f5bd698e929 [ 438.034094][T11492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 438.034125][T11492] RSP: 002b:00007f5bd78c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 438.034155][T11492] RAX: ffffffffffffffda RBX: 00007f5bd6bb5fa0 RCX: 00007f5bd698e929 [ 438.034176][T11492] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 438.034195][T11492] RBP: 00007f5bd78c6090 R08: 0000000000000000 R09: 0000000000000000 [ 438.034215][T11492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 438.034234][T11492] R13: 0000000000000000 R14: 00007f5bd6bb5fa0 R15: 00007ffe92c6b618 [ 438.034275][T11492] [ 438.623685][T11504] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 440.109357][T11530] netlink: 'syz.0.1371': attribute type 1 has an invalid length. [ 440.681392][T11541] cifs: Unknown parameter 'T.ŸÜÛæ¨Å¼c[ŸÐê€$âæµÈ)ü±UóÑnEó-Ê™¾l®öÚ-ºŒ -¾_€™¯Ôåáª5Z äoåé¢mžÐfwYÍhº*/ÿxDlÝ©Š×ígÕkÇAí³ùÏ7ÍØØ9’ôXöa/fê_ÿAR£ˆ™‘ÈxM ‚v¬—pÿ±$^;ôØq‡3±«£n졵-6©+e„k„¾ñÇ<°kœcÔ)n.üeMÍ÷Na¨t®ÐSMÎÆ1,' [ 441.118997][T11545] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 441.465455][T11560] FAULT_INJECTION: forcing a failure. [ 441.465455][T11560] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 441.479934][T11560] CPU: 1 UID: 0 PID: 11560 Comm: syz.0.1380 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 441.479975][T11560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 441.479993][T11560] Call Trace: [ 441.480003][T11560] [ 441.480014][T11560] dump_stack_lvl+0x16c/0x1f0 [ 441.480065][T11560] should_fail_ex+0x512/0x640 [ 441.480115][T11560] _copy_to_user+0x32/0xd0 [ 441.480167][T11560] simple_read_from_buffer+0xcb/0x170 [ 441.480210][T11560] proc_fail_nth_read+0x197/0x270 [ 441.480247][T11560] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 441.480287][T11560] ? rw_verify_area+0xcf/0x680 [ 441.480326][T11560] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 441.480362][T11560] vfs_read+0x1e1/0xc60 [ 441.480410][T11560] ? __pfx___mutex_lock+0x10/0x10 [ 441.480457][T11560] ? __pfx_vfs_read+0x10/0x10 [ 441.480519][T11560] ? __fget_files+0x20e/0x3c0 [ 441.480595][T11560] ksys_read+0x12a/0x250 [ 441.480640][T11560] ? __pfx_ksys_read+0x10/0x10 [ 441.480699][T11560] do_syscall_64+0xcd/0x490 [ 441.480752][T11560] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 441.480786][T11560] RIP: 0033:0x7f8cd798d33c [ 441.480811][T11560] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 441.480842][T11560] RSP: 002b:00007f8cd882a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 441.480873][T11560] RAX: ffffffffffffffda RBX: 00007f8cd7bb5fa0 RCX: 00007f8cd798d33c [ 441.480895][T11560] RDX: 000000000000000f RSI: 00007f8cd882a0a0 RDI: 0000000000000004 [ 441.480915][T11560] RBP: 00007f8cd882a090 R08: 0000000000000000 R09: 0000000000000000 [ 441.480935][T11560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 441.480955][T11560] R13: 0000000000000000 R14: 00007f8cd7bb5fa0 R15: 00007fffea008228 [ 441.480997][T11560] [ 442.616407][T11572] Format for linking two devices is "netnsfd_a:ifidx_a netnsfd_b:ifidx_b" (int uint int uint). [ 443.367174][T11590] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 443.460392][T11598] FAULT_INJECTION: forcing a failure. [ 443.460392][T11598] name failslab, interval 1, probability 0, space 0, times 0 [ 443.492244][T11598] CPU: 0 UID: 0 PID: 11598 Comm: syz.0.1390 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 443.492288][T11598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 443.492306][T11598] Call Trace: [ 443.492317][T11598] [ 443.492347][T11598] dump_stack_lvl+0x16c/0x1f0 [ 443.492399][T11598] should_fail_ex+0x512/0x640 [ 443.492462][T11598] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 443.492515][T11598] should_failslab+0xc2/0x120 [ 443.492545][T11598] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 443.492594][T11598] ? vma_merge_new_range+0x37f/0xa00 [ 443.492639][T11598] ? vm_area_alloc+0x1f/0x160 [ 443.492681][T11598] vm_area_alloc+0x1f/0x160 [ 443.492719][T11598] __mmap_region+0xf0a/0x25e0 [ 443.492767][T11598] ? __pfx___mmap_region+0x10/0x10 [ 443.492822][T11598] ? is_bpf_text_address+0x8a/0x1a0 [ 443.492863][T11598] ? bpf_ksym_find+0x124/0x1c0 [ 443.492895][T11598] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 443.492932][T11598] ? is_bpf_text_address+0x94/0x1a0 [ 443.492973][T11598] ? kernel_text_address+0x8d/0x100 [ 443.493031][T11598] ? __kernel_text_address+0xd/0x40 [ 443.493143][T11598] ? rcu_is_watching+0x12/0xc0 [ 443.493186][T11598] mmap_region+0x1ab/0x3f0 [ 443.493239][T11598] do_mmap+0xa3e/0x1210 [ 443.493281][T11598] ? __pfx_do_mmap+0x10/0x10 [ 443.493314][T11598] ? __pfx_down_write_killable+0x10/0x10 [ 443.493358][T11598] vm_mmap_pgoff+0x281/0x450 [ 443.493396][T11598] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 443.493433][T11598] ? __fget_files+0x20e/0x3c0 [ 443.493482][T11598] ksys_mmap_pgoff+0x32c/0x5c0 [ 443.493513][T11598] ? __pfx_ksys_write+0x10/0x10 [ 443.493572][T11598] __x64_sys_mmap+0x125/0x190 [ 443.493619][T11598] do_syscall_64+0xcd/0x490 [ 443.493665][T11598] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 443.493694][T11598] RIP: 0033:0x7f8cd798e929 [ 443.493717][T11598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 443.493744][T11598] RSP: 002b:00007f8cd882a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 443.493771][T11598] RAX: ffffffffffffffda RBX: 00007f8cd7bb5fa0 RCX: 00007f8cd798e929 [ 443.493790][T11598] RDX: 0000000000000001 RSI: 0000000000004000 RDI: 0000200000ffc000 [ 443.493809][T11598] RBP: 00007f8cd882a090 R08: 0000000000000003 R09: 0000000000000000 [ 443.493826][T11598] R10: 000000000008e051 R11: 0000000000000246 R12: 0000000000000001 [ 443.493844][T11598] R13: 0000000000000000 R14: 00007f8cd7bb5fa0 R15: 00007fffea008228 [ 443.493880][T11598] [ 445.738422][T11635] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 445.960024][T11646] netlink: 'syz.2.1401': attribute type 1 has an invalid length. [ 446.420294][T11650] netlink: 'syz.0.1402': attribute type 1 has an invalid length. [ 448.237121][T11685] FAULT_INJECTION: forcing a failure. [ 448.237121][T11685] name failslab, interval 1, probability 0, space 0, times 0 [ 448.267434][T11685] CPU: 1 UID: 0 PID: 11685 Comm: syz.2.1410 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 448.267479][T11685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 448.267497][T11685] Call Trace: [ 448.267507][T11685] [ 448.267520][T11685] dump_stack_lvl+0x16c/0x1f0 [ 448.267573][T11685] should_fail_ex+0x512/0x640 [ 448.267626][T11685] should_failslab+0xc2/0x120 [ 448.267656][T11685] __kmalloc_cache_noprof+0x6a/0x3e0 [ 448.267701][T11685] ? nfc_genl_rcv_nl_event+0xc1/0x2e0 [ 448.267742][T11685] nfc_genl_rcv_nl_event+0xc1/0x2e0 [ 448.267779][T11685] notifier_call_chain+0xb9/0x410 [ 448.267816][T11685] ? __pfx_nfc_genl_rcv_nl_event+0x10/0x10 [ 448.267861][T11685] blocking_notifier_call_chain+0x69/0xa0 [ 448.267906][T11685] netlink_release+0x186b/0x2020 [ 448.267952][T11685] ? netlink_release+0x1de/0x2020 [ 448.267988][T11685] ? __pfx_netlink_release+0x10/0x10 [ 448.268024][T11685] ? __pfx_locks_remove_file+0x10/0x10 [ 448.268066][T11685] __sock_release+0xb0/0x270 [ 448.268117][T11685] ? __pfx_sock_close+0x10/0x10 [ 448.268164][T11685] sock_close+0x1c/0x30 [ 448.268211][T11685] __fput+0x402/0xb70 [ 448.268245][T11685] ? _raw_spin_unlock_irq+0x23/0x50 [ 448.268296][T11685] task_work_run+0x14d/0x240 [ 448.268348][T11685] ? __pfx_task_work_run+0x10/0x10 [ 448.268399][T11685] ? __pfx___do_sys_close_range+0x10/0x10 [ 448.268455][T11685] exit_to_user_mode_loop+0xeb/0x110 [ 448.268508][T11685] do_syscall_64+0x3f6/0x490 [ 448.268568][T11685] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 448.268598][T11685] RIP: 0033:0x7f5bd698e929 [ 448.268621][T11685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 448.268650][T11685] RSP: 002b:00007f5bd78c6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 448.268676][T11685] RAX: 0000000000000000 RBX: 00007f5bd6bb5fa0 RCX: 00007f5bd698e929 [ 448.268695][T11685] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 448.268712][T11685] RBP: 00007f5bd78c6090 R08: 0000000000000000 R09: 0000000000000000 [ 448.268730][T11685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 448.268747][T11685] R13: 0000000000000000 R14: 00007f5bd6bb5fa0 R15: 00007ffe92c6b618 [ 448.268785][T11685] [ 448.602079][T11686] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 448.923224][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 448.929730][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 448.950894][T11693] netlink: 'syz.3.1412': attribute type 1 has an invalid length. [ 449.602185][T11707] FAULT_INJECTION: forcing a failure. [ 449.602185][T11707] name failslab, interval 1, probability 0, space 0, times 0 [ 449.680270][T11707] CPU: 1 UID: 0 PID: 11707 Comm: syz.1.1415 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 449.680315][T11707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 449.680334][T11707] Call Trace: [ 449.680345][T11707] [ 449.680357][T11707] dump_stack_lvl+0x16c/0x1f0 [ 449.680410][T11707] should_fail_ex+0x512/0x640 [ 449.680455][T11707] ? fs_reclaim_acquire+0xae/0x150 [ 449.680497][T11707] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 449.680543][T11707] should_failslab+0xc2/0x120 [ 449.680573][T11707] __kmalloc_noprof+0xd2/0x510 [ 449.680630][T11707] tomoyo_realpath_from_path+0xc2/0x6e0 [ 449.680682][T11707] ? tomoyo_profile+0x47/0x60 [ 449.680736][T11707] tomoyo_path_number_perm+0x245/0x580 [ 449.680772][T11707] ? tomoyo_path_number_perm+0x237/0x580 [ 449.680823][T11707] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 449.680865][T11707] ? find_held_lock+0x2b/0x80 [ 449.680935][T11707] ? find_held_lock+0x2b/0x80 [ 449.680967][T11707] ? hook_file_ioctl_common+0x145/0x410 [ 449.681011][T11707] ? __fget_files+0x20e/0x3c0 [ 449.681065][T11707] security_file_ioctl+0x9b/0x240 [ 449.681108][T11707] __x64_sys_ioctl+0xb7/0x210 [ 449.681150][T11707] do_syscall_64+0xcd/0x490 [ 449.681203][T11707] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 449.681237][T11707] RIP: 0033:0x7f3de018e929 [ 449.681262][T11707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 449.681294][T11707] RSP: 002b:00007f3de0fb8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 449.681325][T11707] RAX: ffffffffffffffda RBX: 00007f3de03b5fa0 RCX: 00007f3de018e929 [ 449.681347][T11707] RDX: 0000200000001680 RSI: 00000000400445a0 RDI: 0000000000000003 [ 449.681368][T11707] RBP: 00007f3de0fb8090 R08: 0000000000000000 R09: 0000000000000000 [ 449.681388][T11707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 449.681409][T11707] R13: 0000000000000000 R14: 00007f3de03b5fa0 R15: 00007ffc8ac05ba8 [ 449.681452][T11707] [ 449.681464][T11707] ERROR: Out of memory at tomoyo_realpath_from_path. [ 449.985117][T11713] FAULT_INJECTION: forcing a failure. [ 449.985117][T11713] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 450.023144][T11713] CPU: 0 UID: 0 PID: 11713 Comm: syz.2.1418 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 450.023191][T11713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 450.023210][T11713] Call Trace: [ 450.023220][T11713] [ 450.023232][T11713] dump_stack_lvl+0x16c/0x1f0 [ 450.023284][T11713] should_fail_ex+0x512/0x640 [ 450.023336][T11713] _copy_to_user+0x32/0xd0 [ 450.023388][T11713] simple_read_from_buffer+0xcb/0x170 [ 450.023431][T11713] proc_fail_nth_read+0x197/0x270 [ 450.023470][T11713] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 450.023509][T11713] ? rw_verify_area+0xcf/0x680 [ 450.023549][T11713] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 450.023585][T11713] vfs_read+0x1e1/0xc60 [ 450.023653][T11713] ? __pfx___mutex_lock+0x10/0x10 [ 450.023702][T11713] ? __pfx_vfs_read+0x10/0x10 [ 450.023757][T11713] ? __fget_files+0x20e/0x3c0 [ 450.023815][T11713] ksys_read+0x12a/0x250 [ 450.023860][T11713] ? __pfx_ksys_read+0x10/0x10 [ 450.023919][T11713] do_syscall_64+0xcd/0x490 [ 450.023970][T11713] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 450.024002][T11713] RIP: 0033:0x7f5bd698d33c [ 450.024034][T11713] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 450.024066][T11713] RSP: 002b:00007f5bd78c6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 450.024097][T11713] RAX: ffffffffffffffda RBX: 00007f5bd6bb5fa0 RCX: 00007f5bd698d33c [ 450.024118][T11713] RDX: 000000000000000f RSI: 00007f5bd78c60a0 RDI: 0000000000000004 [ 450.024137][T11713] RBP: 00007f5bd78c6090 R08: 0000000000000000 R09: 0000000000000008 [ 450.024157][T11713] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 450.024176][T11713] R13: 0000000000000000 R14: 00007f5bd6bb5fa0 R15: 00007ffe92c6b618 [ 450.024217][T11713] [ 450.282923][T11717] netlink: zone id is out of range [ 450.298105][T11717] netlink: zone id is out of range [ 450.323707][T11717] netlink: zone id is out of range [ 450.408557][T11717] netlink: zone id is out of range [ 450.413789][T11717] netlink: zone id is out of range [ 450.480665][T11717] netlink: zone id is out of range [ 450.503371][T11717] netlink: zone id is out of range [ 450.515429][T11717] netlink: zone id is out of range [ 450.533777][T11717] netlink: zone id is out of range [ 451.486754][T11743] netlink: 'syz.3.1425': attribute type 1 has an invalid length. [ 452.878414][T11763] FAULT_INJECTION: forcing a failure. [ 452.878414][T11763] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 452.938195][T11763] CPU: 1 UID: 0 PID: 11763 Comm: syz.3.1429 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 452.938241][T11763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 452.938261][T11763] Call Trace: [ 452.938271][T11763] [ 452.938283][T11763] dump_stack_lvl+0x16c/0x1f0 [ 452.938337][T11763] should_fail_ex+0x512/0x640 [ 452.938390][T11763] _copy_from_user+0x2e/0xd0 [ 452.938441][T11763] __x64_sys_timer_create+0x10d/0x1d0 [ 452.938491][T11763] ? __pfx___x64_sys_timer_create+0x10/0x10 [ 452.938546][T11763] ? fput+0x70/0xf0 [ 452.938595][T11763] do_syscall_64+0xcd/0x490 [ 452.938646][T11763] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 452.938689][T11763] RIP: 0033:0x7ff3c5f8e929 [ 452.938713][T11763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 452.938753][T11763] RSP: 002b:00007ff3c6d25038 EFLAGS: 00000246 ORIG_RAX: 00000000000000de [ 452.938781][T11763] RAX: ffffffffffffffda RBX: 00007ff3c61b5fa0 RCX: 00007ff3c5f8e929 [ 452.938801][T11763] RDX: 0000200000000040 RSI: 0000200000000000 RDI: 0000000000000008 [ 452.938820][T11763] RBP: 00007ff3c6d25090 R08: 0000000000000000 R09: 0000000000000000 [ 452.938837][T11763] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 452.938854][T11763] R13: 0000000000000001 R14: 00007ff3c61b5fa0 R15: 00007ffc329d8a38 [ 452.938891][T11763] [ 453.808474][T11786] FAULT_INJECTION: forcing a failure. [ 453.808474][T11786] name failslab, interval 1, probability 0, space 0, times 0 [ 453.870708][T11786] CPU: 0 UID: 0 PID: 11786 Comm: syz.1.1434 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 453.870755][T11786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 453.870774][T11786] Call Trace: [ 453.870784][T11786] [ 453.870796][T11786] dump_stack_lvl+0x16c/0x1f0 [ 453.870863][T11786] should_fail_ex+0x512/0x640 [ 453.870910][T11786] ? fs_reclaim_acquire+0xae/0x150 [ 453.870952][T11786] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 453.870998][T11786] should_failslab+0xc2/0x120 [ 453.871029][T11786] __kmalloc_noprof+0xd2/0x510 [ 453.871088][T11786] tomoyo_realpath_from_path+0xc2/0x6e0 [ 453.871139][T11786] ? tomoyo_profile+0x47/0x60 [ 453.871194][T11786] tomoyo_path_number_perm+0x245/0x580 [ 453.871231][T11786] ? tomoyo_path_number_perm+0x237/0x580 [ 453.871274][T11786] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 453.871316][T11786] ? find_held_lock+0x2b/0x80 [ 453.871386][T11786] ? find_held_lock+0x2b/0x80 [ 453.871419][T11786] ? hook_file_ioctl_common+0x145/0x410 [ 453.871464][T11786] ? __fget_files+0x20e/0x3c0 [ 453.871517][T11786] security_file_ioctl+0x9b/0x240 [ 453.871560][T11786] __x64_sys_ioctl+0xb7/0x210 [ 453.871603][T11786] do_syscall_64+0xcd/0x490 [ 453.871698][T11786] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 453.871731][T11786] RIP: 0033:0x7f3de018e929 [ 453.871757][T11786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 453.871788][T11786] RSP: 002b:00007f3de0fb8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 453.871819][T11786] RAX: ffffffffffffffda RBX: 00007f3de03b5fa0 RCX: 00007f3de018e929 [ 453.871841][T11786] RDX: 0000000000000008 RSI: 0000000000008903 RDI: 0000000000000003 [ 453.871861][T11786] RBP: 00007f3de0fb8090 R08: 0000000000000000 R09: 0000000000000000 [ 453.871881][T11786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 453.871901][T11786] R13: 0000000000000000 R14: 00007f3de03b5fa0 R15: 00007ffc8ac05ba8 [ 453.871944][T11786] [ 453.871956][T11786] ERROR: Out of memory at tomoyo_realpath_from_path. [ 454.199571][T11782] net_ratelimit: 164 callbacks suppressed [ 454.199595][T11782] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 454.384270][T11797] netlink: 'syz.2.1436': attribute type 1 has an invalid length. [ 455.649501][T11825] FAULT_INJECTION: forcing a failure. [ 455.649501][T11825] name failslab, interval 1, probability 0, space 0, times 0 [ 455.692754][T11825] CPU: 0 UID: 0 PID: 11825 Comm: syz.1.1444 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 455.692800][T11825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 455.692819][T11825] Call Trace: [ 455.692830][T11825] [ 455.692842][T11825] dump_stack_lvl+0x16c/0x1f0 [ 455.692894][T11825] should_fail_ex+0x512/0x640 [ 455.692940][T11825] ? __kvmalloc_node_noprof+0x124/0x620 [ 455.692991][T11825] should_failslab+0xc2/0x120 [ 455.693023][T11825] __kvmalloc_node_noprof+0x137/0x620 [ 455.693069][T11825] ? __pfx___mutex_lock+0x10/0x10 [ 455.693118][T11825] ? traverse.part.0.constprop.0+0x392/0x640 [ 455.693170][T11825] ? traverse.part.0.constprop.0+0x392/0x640 [ 455.693211][T11825] traverse.part.0.constprop.0+0x392/0x640 [ 455.693257][T11825] ? aa_file_perm+0x4c7/0xfb0 [ 455.693309][T11825] seq_read_iter+0x932/0x12c0 [ 455.693368][T11825] kernfs_fop_read_iter+0x40f/0x5a0 [ 455.693402][T11825] ? copy_iovec_from_user+0x131/0x170 [ 455.693457][T11825] do_iter_readv_writev+0x738/0x950 [ 455.693504][T11825] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 455.693568][T11825] ? rw_verify_area+0xcf/0x680 [ 455.693615][T11825] vfs_readv+0x4cb/0x8b0 [ 455.693667][T11825] ? __pfx_vfs_readv+0x10/0x10 [ 455.693713][T11825] ? find_held_lock+0x2b/0x80 [ 455.693773][T11825] ? __fget_files+0x20e/0x3c0 [ 455.693829][T11825] ? do_preadv+0x1a6/0x270 [ 455.693869][T11825] do_preadv+0x1a6/0x270 [ 455.693913][T11825] ? __pfx_do_preadv+0x10/0x10 [ 455.693968][T11825] do_syscall_64+0xcd/0x490 [ 455.694021][T11825] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 455.694054][T11825] RIP: 0033:0x7f3de018e929 [ 455.694079][T11825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 455.694110][T11825] RSP: 002b:00007f3de0fb8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 455.694140][T11825] RAX: ffffffffffffffda RBX: 00007f3de03b5fa0 RCX: 00007f3de018e929 [ 455.694161][T11825] RDX: 0000000000000006 RSI: 0000200000000080 RDI: 0040000000000003 [ 455.694181][T11825] RBP: 00007f3de0fb8090 R08: 0000000000000005 R09: 0000000000000000 [ 455.694200][T11825] R10: 000000007fffffff R11: 0000000000000246 R12: 0000000000000001 [ 455.694219][T11825] R13: 0000000000000000 R14: 00007f3de03b5fa0 R15: 00007ffc8ac05ba8 [ 455.694260][T11825] [ 456.243394][T11835] svc: failed to register nfsdv3 RPC service (errno 111). [ 456.258060][T11835] svc: failed to register nfsaclv3 RPC service (errno 111). [ 456.313558][T11841] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 456.884825][T11858] netlink: 'syz.0.1449': attribute type 1 has an invalid length. [ 457.273063][ T30] audit: type=1326 audit(4294971743.945:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11866 comm="syz.1.1454" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3de018e929 code=0x0 [ 457.332272][T11868] svc: failed to register nfsdv3 RPC service (errno 111). [ 457.348710][T11868] svc: failed to register nfsaclv3 RPC service (errno 111). [ 457.836771][T11880] FAULT_INJECTION: forcing a failure. [ 457.836771][T11880] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 457.859438][T11880] CPU: 0 UID: 0 PID: 11880 Comm: syz.0.1456 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 457.859482][T11880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 457.859500][T11880] Call Trace: [ 457.859510][T11880] [ 457.859522][T11880] dump_stack_lvl+0x16c/0x1f0 [ 457.859573][T11880] should_fail_ex+0x512/0x640 [ 457.859624][T11880] _copy_to_user+0x32/0xd0 [ 457.859677][T11880] simple_read_from_buffer+0xcb/0x170 [ 457.859719][T11880] proc_fail_nth_read+0x197/0x270 [ 457.859757][T11880] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 457.859797][T11880] ? rw_verify_area+0xcf/0x680 [ 457.859836][T11880] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 457.859874][T11880] vfs_read+0x1e1/0xc60 [ 457.859924][T11880] ? __pfx___mutex_lock+0x10/0x10 [ 457.859991][T11880] ? __pfx_vfs_read+0x10/0x10 [ 457.860048][T11880] ? __fget_files+0x20e/0x3c0 [ 457.860120][T11880] ksys_read+0x12a/0x250 [ 457.860167][T11880] ? __pfx_ksys_read+0x10/0x10 [ 457.860225][T11880] do_syscall_64+0xcd/0x490 [ 457.860277][T11880] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 457.860310][T11880] RIP: 0033:0x7f8cd798d33c [ 457.860337][T11880] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 457.860368][T11880] RSP: 002b:00007f8cd8809030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 457.860402][T11880] RAX: ffffffffffffffda RBX: 00007f8cd7bb6080 RCX: 00007f8cd798d33c [ 457.860424][T11880] RDX: 000000000000000f RSI: 00007f8cd88090a0 RDI: 0000000000000006 [ 457.860444][T11880] RBP: 00007f8cd8809090 R08: 0000000000000000 R09: 0000000000000000 [ 457.860464][T11880] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 457.860483][T11880] R13: 0000000000000000 R14: 00007f8cd7bb6080 R15: 00007fffea008228 [ 457.860527][T11880] [ 457.887271][T11879] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 458.066616][T11879] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 458.073133][T11879] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 458.080204][T11879] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 459.262051][T11891] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 459.268398][T11891] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 459.280291][T11891] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 459.334168][T11891] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 459.554074][T11915] FAULT_INJECTION: forcing a failure. [ 459.554074][T11915] name failslab, interval 1, probability 0, space 0, times 0 [ 459.578576][T11915] CPU: 1 UID: 0 PID: 11915 Comm: syz.3.1466 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 459.578622][T11915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 459.578640][T11915] Call Trace: [ 459.578650][T11915] [ 459.578662][T11915] dump_stack_lvl+0x16c/0x1f0 [ 459.578715][T11915] should_fail_ex+0x512/0x640 [ 459.578760][T11915] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 459.578814][T11915] should_failslab+0xc2/0x120 [ 459.578841][T11915] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 459.578891][T11915] ? proc_alloc_inode+0x25/0x200 [ 459.578952][T11915] ? __pfx_proc_alloc_inode+0x10/0x10 [ 459.578994][T11915] proc_alloc_inode+0x25/0x200 [ 459.579037][T11915] alloc_inode+0x61/0x240 [ 459.579072][T11915] new_inode+0x22/0x1c0 [ 459.579109][T11915] proc_sys_make_inode+0x47/0x5c0 [ 459.579160][T11915] proc_sys_lookup+0x282/0x410 [ 459.579209][T11915] ? __pfx_proc_sys_lookup+0x10/0x10 [ 459.579262][T11915] ? lockdep_init_map_type+0x5c/0x280 [ 459.579311][T11915] ? lockdep_init_map_type+0x5c/0x280 [ 459.579361][T11915] __lookup_slow+0x24e/0x460 [ 459.579396][T11915] ? __pfx___lookup_slow+0x10/0x10 [ 459.579459][T11915] ? lookup_fast+0x156/0x610 [ 459.579498][T11915] ? _raw_spin_unlock+0x28/0x50 [ 459.579545][T11915] walk_component+0x353/0x5b0 [ 459.579591][T11915] link_path_walk+0x627/0xe20 [ 459.579649][T11915] path_openat+0x1b0/0x2cb0 [ 459.579693][T11915] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 459.579739][T11915] ? __pfx_path_openat+0x10/0x10 [ 459.579790][T11915] ? __lock_acquire+0xb8a/0x1c90 [ 459.579840][T11915] do_filp_open+0x20b/0x470 [ 459.579889][T11915] ? __pfx_do_filp_open+0x10/0x10 [ 459.579976][T11915] ? alloc_fd+0x471/0x7d0 [ 459.580029][T11915] do_sys_openat2+0x11b/0x1d0 [ 459.580066][T11915] ? __pfx_do_sys_openat2+0x10/0x10 [ 459.580117][T11915] __x64_sys_openat+0x174/0x210 [ 459.580153][T11915] ? __pfx___x64_sys_openat+0x10/0x10 [ 459.580208][T11915] do_syscall_64+0xcd/0x490 [ 459.580259][T11915] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 459.580291][T11915] RIP: 0033:0x7ff3c5f8e929 [ 459.580316][T11915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 459.580347][T11915] RSP: 002b:00007ff3c6d25038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 459.580378][T11915] RAX: ffffffffffffffda RBX: 00007ff3c61b5fa0 RCX: 00007ff3c5f8e929 [ 459.580399][T11915] RDX: 0000000000000800 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 459.580420][T11915] RBP: 00007ff3c6010b39 R08: 0000000000000000 R09: 0000000000000000 [ 459.580440][T11915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 459.580459][T11915] R13: 0000000000000000 R14: 00007ff3c61b5fa0 R15: 00007ffc329d8a38 [ 459.580501][T11915] [ 459.583064][T11916] netlink: 'syz.0.1464': attribute type 1 has an invalid length. [ 460.533482][ T5859] Bluetooth: hci1: command 0x0c1a tx timeout [ 461.329957][ T5859] Bluetooth: hci3: command 0x0c1a tx timeout [ 461.336080][ T5859] Bluetooth: hci2: command 0x0c1a tx timeout [ 461.342410][ T5850] Bluetooth: hci0: command 0x0c1a tx timeout [ 463.581529][T11991] netlink: 'syz.3.1478': attribute type 1 has an invalid length. [ 463.844285][T11998] FAULT_INJECTION: forcing a failure. [ 463.844285][T11998] name failslab, interval 1, probability 0, space 0, times 0 [ 463.876965][T11998] CPU: 0 UID: 0 PID: 11998 Comm: syz.2.1481 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 463.877011][T11998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 463.877031][T11998] Call Trace: [ 463.877041][T11998] [ 463.877053][T11998] dump_stack_lvl+0x16c/0x1f0 [ 463.877108][T11998] should_fail_ex+0x512/0x640 [ 463.877155][T11998] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 463.877209][T11998] should_failslab+0xc2/0x120 [ 463.877239][T11998] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 463.877288][T11998] ? __proc_create+0xc3/0x8c0 [ 463.877338][T11998] ? __proc_create+0x2ce/0x8c0 [ 463.877393][T11998] __proc_create+0x2ce/0x8c0 [ 463.877445][T11998] ? __pfx___proc_create+0x10/0x10 [ 463.877502][T11998] ? proc_register+0x314/0x5f0 [ 463.877562][T11998] proc_create_reg+0x7d/0x180 [ 463.877605][T11998] proc_create_net_data+0x8e/0x1b0 [ 463.877658][T11998] ? __pfx_proc_create_net_data+0x10/0x10 [ 463.877712][T11998] ? __pfx_ndisc_net_init+0x10/0x10 [ 463.877756][T11998] ? __pfx_raw6_init_net+0x10/0x10 [ 463.877785][T11998] raw6_init_net+0x57/0x80 [ 463.877813][T11998] ops_init+0x1df/0x5f0 [ 463.877871][T11998] setup_net+0x1ff/0x510 [ 463.877918][T11998] ? lockdep_init_map_type+0x5c/0x280 [ 463.877966][T11998] ? __pfx_setup_net+0x10/0x10 [ 463.878019][T11998] ? debug_mutex_init+0x37/0x70 [ 463.878056][T11998] copy_net_ns+0x2a6/0x5f0 [ 463.878093][T11998] create_new_namespaces+0x3ea/0xa90 [ 463.878149][T11998] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 463.878185][T11998] ksys_unshare+0x45b/0xa40 [ 463.878225][T11998] ? __pfx_ksys_unshare+0x10/0x10 [ 463.878268][T11998] ? xfd_validate_state+0x61/0x180 [ 463.878323][T11998] __x64_sys_unshare+0x31/0x40 [ 463.878367][T11998] do_syscall_64+0xcd/0x490 [ 463.878418][T11998] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 463.878449][T11998] RIP: 0033:0x7f5bd698e929 [ 463.878473][T11998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 463.878505][T11998] RSP: 002b:00007f5bd78c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 463.878534][T11998] RAX: ffffffffffffffda RBX: 00007f5bd6bb5fa0 RCX: 00007f5bd698e929 [ 463.878555][T11998] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 463.878582][T11998] RBP: 00007f5bd6a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 463.878601][T11998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 463.878620][T11998] R13: 0000000000000000 R14: 00007f5bd6bb5fa0 R15: 00007ffe92c6b618 [ 463.878659][T11998] [ 464.470474][T12009] FAULT_INJECTION: forcing a failure. [ 464.470474][T12009] name failslab, interval 1, probability 0, space 0, times 0 [ 464.496136][T12009] CPU: 1 UID: 0 PID: 12009 Comm: syz.0.1484 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 464.496179][T12009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 464.496197][T12009] Call Trace: [ 464.496206][T12009] [ 464.496217][T12009] dump_stack_lvl+0x16c/0x1f0 [ 464.496268][T12009] should_fail_ex+0x512/0x640 [ 464.496310][T12009] ? __kmalloc_noprof+0xbf/0x510 [ 464.496356][T12009] ? iovec_from_user+0x108/0x140 [ 464.496406][T12009] should_failslab+0xc2/0x120 [ 464.496435][T12009] __kmalloc_noprof+0xd2/0x510 [ 464.496503][T12009] ? __lock_acquire+0x622/0x1c90 [ 464.496553][T12009] iovec_from_user+0x108/0x140 [ 464.496614][T12009] __import_iovec+0x88/0x650 [ 464.496646][T12009] ? find_held_lock+0x2b/0x80 [ 464.496682][T12009] import_iovec+0x86/0xb0 [ 464.496714][T12009] vfs_writev+0x19b/0xde0 [ 464.496768][T12009] ? __pfx_vfs_writev+0x10/0x10 [ 464.496839][T12009] ? __fget_files+0x20e/0x3c0 [ 464.496880][T12009] ? __fget_files+0x1e0/0x3c0 [ 464.496931][T12009] ? do_writev+0x28c/0x340 [ 464.496969][T12009] do_writev+0x28c/0x340 [ 464.497010][T12009] ? __pfx_do_writev+0x10/0x10 [ 464.497065][T12009] do_syscall_64+0xcd/0x490 [ 464.497115][T12009] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 464.497146][T12009] RIP: 0033:0x7f8cd798e929 [ 464.497171][T12009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 464.497202][T12009] RSP: 002b:00007f8cd882a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 464.497231][T12009] RAX: ffffffffffffffda RBX: 00007f8cd7bb5fa0 RCX: 00007f8cd798e929 [ 464.497252][T12009] RDX: 000000000000000a RSI: 0000200000000100 RDI: 0000000000000004 [ 464.497272][T12009] RBP: 00007f8cd882a090 R08: 0000000000000000 R09: 0000000000000000 [ 464.497291][T12009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 464.497310][T12009] R13: 0000000000000000 R14: 00007f8cd7bb5fa0 R15: 00007fffea008228 [ 464.497350][T12009] [ 465.772790][T12017] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 466.464680][T12041] FAULT_INJECTION: forcing a failure. [ 466.464680][T12041] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 466.515523][T12041] CPU: 0 UID: 0 PID: 12041 Comm: syz.0.1492 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 466.515594][T12041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 466.515613][T12041] Call Trace: [ 466.515623][T12041] [ 466.515635][T12041] dump_stack_lvl+0x16c/0x1f0 [ 466.515689][T12041] should_fail_ex+0x512/0x640 [ 466.515742][T12041] _copy_from_user+0x2e/0xd0 [ 466.515795][T12041] move_addr_to_kernel+0x65/0x170 [ 466.515835][T12041] __sys_connect+0xb1/0x160 [ 466.515875][T12041] ? __pfx___sys_connect+0x10/0x10 [ 466.515932][T12041] ? __pfx_ksys_write+0x10/0x10 [ 466.515986][T12041] __x64_sys_connect+0x72/0xb0 [ 466.516025][T12041] ? lockdep_hardirqs_on+0x7c/0x110 [ 466.516071][T12041] do_syscall_64+0xcd/0x490 [ 466.516121][T12041] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 466.516152][T12041] RIP: 0033:0x7f8cd798e929 [ 466.516177][T12041] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 466.516208][T12041] RSP: 002b:00007f8cd882a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 466.516238][T12041] RAX: ffffffffffffffda RBX: 00007f8cd7bb5fa0 RCX: 00007f8cd798e929 [ 466.516260][T12041] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 466.516280][T12041] RBP: 00007f8cd882a090 R08: 0000000000000000 R09: 0000000000000000 [ 466.516300][T12041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 466.516341][T12041] R13: 0000000000000000 R14: 00007f8cd7bb5fa0 R15: 00007fffea008228 [ 466.516383][T12041] [ 467.025312][T12049] syz.1.1494(12049): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 467.251922][T12059] random: crng reseeded on system resumption [ 467.313698][T12064] netlink: 'syz.2.1496': attribute type 1 has an invalid length. [ 467.604232][T12062] zswap: compressor 000 not available [ 469.578021][T12103] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1505'. [ 470.110205][T12123] netlink: 'syz.0.1510': attribute type 1 has an invalid length. [ 471.601003][T12142] ptrace attach of "./syz-executor exec"[5855] was attempted by ""[12142] [ 472.636692][T12146] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 473.357122][T12162] zswap: compressor not available [ 473.662832][T12180] netlink: 'syz.1.1521': attribute type 1 has an invalid length. [ 474.501701][ T30] audit: type=1804 audit(4294971761.235:4): pid=12195 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1523" name="/newroot/411/file0" dev="tmpfs" ino=2296 res=1 errno=0 [ 474.605356][ T30] audit: type=1800 audit(4294971761.245:5): pid=12195 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1523" name="file0" dev="tmpfs" ino=2296 res=0 errno=0 [ 474.957121][T12201] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 475.870048][T12232] netlink: 'syz.1.1532': attribute type 1 has an invalid length. [ 476.944938][T12249] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 479.039146][T12307] FAULT_INJECTION: forcing a failure. [ 479.039146][T12307] name failslab, interval 1, probability 0, space 0, times 0 [ 479.127052][T12307] CPU: 0 UID: 0 PID: 12307 Comm: syz.3.1547 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 479.127098][T12307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 479.127117][T12307] Call Trace: [ 479.127127][T12307] [ 479.127139][T12307] dump_stack_lvl+0x16c/0x1f0 [ 479.127192][T12307] should_fail_ex+0x512/0x640 [ 479.127246][T12307] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 479.127300][T12307] should_failslab+0xc2/0x120 [ 479.127332][T12307] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 479.127381][T12307] ? __alloc_skb+0x2b2/0x380 [ 479.127433][T12307] __alloc_skb+0x2b2/0x380 [ 479.127476][T12307] ? __pfx___alloc_skb+0x10/0x10 [ 479.127517][T12307] ? __pfx___mutex_trylock_common+0x10/0x10 [ 479.127571][T12307] ? rcu_is_watching+0x12/0xc0 [ 479.127612][T12307] netlink_dump+0x678/0xce0 [ 479.127664][T12307] ? __rhashtable_lookup.constprop.0+0x3a5/0x760 [ 479.127695][T12307] ? __netlink_dump_start+0x150/0x990 [ 479.127727][T12307] ? __pfx_netlink_dump+0x10/0x10 [ 479.127776][T12307] ? __pfx___mutex_lock+0x10/0x10 [ 479.127852][T12307] __netlink_dump_start+0x6d6/0x990 [ 479.127888][T12307] ? __pfx_tc_dump_qdisc+0x10/0x10 [ 479.127925][T12307] rtnetlink_rcv_msg+0xb3e/0xe90 [ 479.127976][T12307] ? __pfx_tc_dump_qdisc+0x10/0x10 [ 479.128015][T12307] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 479.128066][T12307] ? __pfx_rtnl_dumpit+0x10/0x10 [ 479.128108][T12307] ? __pfx_tc_dump_qdisc+0x10/0x10 [ 479.128151][T12307] ? ref_tracker_free+0x37c/0x830 [ 479.128204][T12307] netlink_rcv_skb+0x155/0x420 [ 479.128237][T12307] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 479.128333][T12307] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 479.128381][T12307] ? netlink_deliver_tap+0x1ae/0xd30 [ 479.128443][T12307] netlink_unicast+0x53a/0x7f0 [ 479.128481][T12307] ? __pfx_netlink_unicast+0x10/0x10 [ 479.128509][T12307] ? __build_skb_around+0x278/0x3b0 [ 479.128548][T12307] ? is_vmalloc_addr+0x86/0xa0 [ 479.128601][T12307] netlink_sendmsg+0x8d1/0xdd0 [ 479.128641][T12307] ? __pfx_netlink_sendmsg+0x10/0x10 [ 479.128691][T12307] ____sys_sendmsg+0xa98/0xc70 [ 479.128730][T12307] ? __pfx_____sys_sendmsg+0x10/0x10 [ 479.128773][T12307] ? __pfx__kstrtoull+0x10/0x10 [ 479.128819][T12307] ___sys_sendmsg+0x134/0x1d0 [ 479.128870][T12307] ? __pfx____sys_sendmsg+0x10/0x10 [ 479.128938][T12307] ? find_held_lock+0x2b/0x80 [ 479.128999][T12307] __sys_sendmmsg+0x200/0x420 [ 479.129052][T12307] ? __pfx___sys_sendmmsg+0x10/0x10 [ 479.129114][T12307] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 479.129181][T12307] ? fput+0x70/0xf0 [ 479.129211][T12307] ? ksys_write+0x1ac/0x250 [ 479.129264][T12307] ? __pfx_ksys_write+0x10/0x10 [ 479.129317][T12307] __x64_sys_sendmmsg+0x9c/0x100 [ 479.129364][T12307] ? lockdep_hardirqs_on+0x7c/0x110 [ 479.129409][T12307] do_syscall_64+0xcd/0x490 [ 479.129460][T12307] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 479.129493][T12307] RIP: 0033:0x7ff3c5f8e929 [ 479.129518][T12307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 479.129549][T12307] RSP: 002b:00007ff3c6d25038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 479.129579][T12307] RAX: ffffffffffffffda RBX: 00007ff3c61b5fa0 RCX: 00007ff3c5f8e929 [ 479.129600][T12307] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 479.129618][T12307] RBP: 00007ff3c6d25090 R08: 0000000000000000 R09: 0000000000000000 [ 479.129637][T12307] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001 [ 479.129656][T12307] R13: 0000000000000000 R14: 00007ff3c61b5fa0 R15: 00007ffc329d8a38 [ 479.129697][T12307] [ 479.491267][ C0] vkms_vblank_simulate: vblank timer overrun [ 479.587456][T12303] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 480.871128][T12351] FAULT_INJECTION: forcing a failure. [ 480.871128][T12351] name failslab, interval 1, probability 0, space 0, times 0 [ 480.907515][T12351] CPU: 0 UID: 0 PID: 12351 Comm: syz.1.1556 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 480.907558][T12351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 480.907576][T12351] Call Trace: [ 480.907585][T12351] [ 480.907596][T12351] dump_stack_lvl+0x16c/0x1f0 [ 480.907645][T12351] should_fail_ex+0x512/0x640 [ 480.907694][T12351] should_failslab+0xc2/0x120 [ 480.907722][T12351] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 480.907768][T12351] ? skb_clone+0x190/0x3f0 [ 480.907816][T12351] skb_clone+0x190/0x3f0 [ 480.907861][T12351] netlink_deliver_tap+0xabd/0xd30 [ 480.907917][T12351] netlink_unicast+0x5df/0x7f0 [ 480.907950][T12351] ? __pfx_netlink_unicast+0x10/0x10 [ 480.907979][T12351] ? __build_skb_around+0x278/0x3b0 [ 480.908017][T12351] ? is_vmalloc_addr+0x86/0xa0 [ 480.908068][T12351] netlink_sendmsg+0x8d1/0xdd0 [ 480.908116][T12351] ? __pfx_netlink_sendmsg+0x10/0x10 [ 480.908165][T12351] ____sys_sendmsg+0xa98/0xc70 [ 480.908204][T12351] ? __pfx_____sys_sendmsg+0x10/0x10 [ 480.908245][T12351] ? __pfx__kstrtoull+0x10/0x10 [ 480.908288][T12351] ___sys_sendmsg+0x134/0x1d0 [ 480.908337][T12351] ? __pfx____sys_sendmsg+0x10/0x10 [ 480.908405][T12351] ? find_held_lock+0x2b/0x80 [ 480.908472][T12351] __sys_sendmmsg+0x200/0x420 [ 480.908518][T12351] ? __pfx___sys_sendmmsg+0x10/0x10 [ 480.908574][T12351] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 480.908636][T12351] ? fput+0x70/0xf0 [ 480.908664][T12351] ? ksys_write+0x1ac/0x250 [ 480.908704][T12351] ? __pfx_ksys_write+0x10/0x10 [ 480.908752][T12351] __x64_sys_sendmmsg+0x9c/0x100 [ 480.908795][T12351] ? lockdep_hardirqs_on+0x7c/0x110 [ 480.908836][T12351] do_syscall_64+0xcd/0x490 [ 480.908882][T12351] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 480.908911][T12351] RIP: 0033:0x7f3de018e929 [ 480.908934][T12351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 480.908963][T12351] RSP: 002b:00007f3de0f97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 480.908990][T12351] RAX: ffffffffffffffda RBX: 00007f3de03b6080 RCX: 00007f3de018e929 [ 480.909027][T12351] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 480.909045][T12351] RBP: 00007f3de0f97090 R08: 0000000000000000 R09: 0000000000000000 [ 480.909063][T12351] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002 [ 480.909081][T12351] R13: 0000000000000000 R14: 00007f3de03b6080 R15: 00007ffc8ac05ba8 [ 480.909129][T12351] [ 481.163157][ C0] vkms_vblank_simulate: vblank timer overrun [ 482.047258][T12366] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 482.091276][T12378] FAULT_INJECTION: forcing a failure. [ 482.091276][T12378] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 482.144672][T12378] CPU: 1 UID: 0 PID: 12378 Comm: syz.2.1561 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 482.144718][T12378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 482.144736][T12378] Call Trace: [ 482.144745][T12378] [ 482.144757][T12378] dump_stack_lvl+0x16c/0x1f0 [ 482.144808][T12378] should_fail_ex+0x512/0x640 [ 482.144865][T12378] _copy_to_iter+0x29f/0x16f0 [ 482.144918][T12378] ? __pfx___skb_try_recv_datagram+0x10/0x10 [ 482.144967][T12378] ? __pfx__copy_to_iter+0x10/0x10 [ 482.145023][T12378] ? __skb_recv_datagram+0x1b2/0x220 [ 482.145068][T12378] ? __pfx___skb_recv_datagram+0x10/0x10 [ 482.145115][T12378] simple_copy_to_iter+0x46/0x90 [ 482.145153][T12378] __skb_datagram_iter+0x129/0x900 [ 482.145189][T12378] ? __pfx_simple_copy_to_iter+0x10/0x10 [ 482.145229][T12378] ? skb_recv_datagram+0x88/0xc0 [ 482.145287][T12378] skb_copy_datagram_iter+0x40/0x50 [ 482.145330][T12378] ping_recvmsg+0x1cc/0x1350 [ 482.145371][T12378] ? trace_raw_output_sched_kthread_work_queue_work+0x52/0x110 [ 482.145430][T12378] ? __pfx_ping_recvmsg+0x10/0x10 [ 482.145472][T12378] ? aa_sk_perm+0x2f4/0xb10 [ 482.145512][T12378] ? __pfx_ping_recvmsg+0x10/0x10 [ 482.145550][T12378] inet_recvmsg+0x46f/0x6a0 [ 482.145595][T12378] ? __pfx_inet_recvmsg+0x10/0x10 [ 482.145650][T12378] sock_recvmsg+0x1b2/0x250 [ 482.145699][T12378] sock_read_iter+0x2b9/0x3b0 [ 482.145732][T12378] ? __pfx_sock_read_iter+0x10/0x10 [ 482.145780][T12378] ? bpf_lsm_file_permission+0x9/0x10 [ 482.145813][T12378] ? security_file_permission+0x71/0x210 [ 482.145856][T12378] ? rw_verify_area+0xcf/0x680 [ 482.145899][T12378] vfs_read+0xa98/0xc60 [ 482.145950][T12378] ? __pfx_vfs_read+0x10/0x10 [ 482.145990][T12378] ? find_held_lock+0x2b/0x80 [ 482.146066][T12378] ksys_read+0x1f8/0x250 [ 482.146110][T12378] ? __pfx_ksys_read+0x10/0x10 [ 482.146167][T12378] do_syscall_64+0xcd/0x490 [ 482.146218][T12378] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 482.146258][T12378] RIP: 0033:0x7f5bd698e929 [ 482.146284][T12378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 482.146316][T12378] RSP: 002b:00007f5bd78c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 482.146348][T12378] RAX: ffffffffffffffda RBX: 00007f5bd6bb5fa0 RCX: 00007f5bd698e929 [ 482.146369][T12378] RDX: 000000000000007c RSI: 0000000000000000 RDI: 0000000000000003 [ 482.146389][T12378] RBP: 00007f5bd78c6090 R08: 0000000000000000 R09: 0000000000000000 [ 482.146410][T12378] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 482.146429][T12378] R13: 0000000000000000 R14: 00007f5bd6bb5fa0 R15: 00007ffe92c6b618 [ 482.146472][T12378] [ 482.605971][T12384] netlink: 146 bytes leftover after parsing attributes in process `syz.3.1563'. [ 482.849582][T12383] ptrace attach of "./syz-executor exec"[12388] was attempted by "./syz-executor exec"[12383] [ 484.605696][ T5936] Process accounting resumed [ 485.308864][T12438] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 486.593275][T12477] KVM: debugfs: duplicate directory 12477-3 [ 487.151631][T12484] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 487.219366][T12489] netlink: 'syz.3.1583': attribute type 1 has an invalid length. [ 487.578893][T12496] FAULT_INJECTION: forcing a failure. [ 487.578893][T12496] name failslab, interval 1, probability 0, space 0, times 0 [ 487.602434][T12496] CPU: 1 UID: 0 PID: 12496 Comm: syz.0.1587 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 487.602477][T12496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 487.602495][T12496] Call Trace: [ 487.602505][T12496] [ 487.602516][T12496] dump_stack_lvl+0x16c/0x1f0 [ 487.602573][T12496] should_fail_ex+0x512/0x640 [ 487.602619][T12496] ? fs_reclaim_acquire+0xae/0x150 [ 487.602662][T12496] should_failslab+0xc2/0x120 [ 487.602694][T12496] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 487.602751][T12496] ? security_inode_alloc+0x3b/0x2b0 [ 487.602794][T12496] security_inode_alloc+0x3b/0x2b0 [ 487.602830][T12496] inode_init_always_gfp+0xce4/0x1030 [ 487.602882][T12496] alloc_inode+0x86/0x240 [ 487.602915][T12496] sock_alloc+0x40/0x280 [ 487.602945][T12496] __sock_create+0xc1/0x8d0 [ 487.602988][T12496] mptcp_subflow_create_socket+0xf5/0xed0 [ 487.603031][T12496] ? __pfx_mptcp_subflow_create_socket+0x10/0x10 [ 487.603079][T12496] __mptcp_nmpc_sk+0x182/0x7d0 [ 487.603117][T12496] ? __pfx___mptcp_nmpc_sk+0x10/0x10 [ 487.603160][T12496] ? __local_bh_enable_ip+0xa4/0x120 [ 487.603204][T12496] mptcp_bind+0xa3/0x1e0 [ 487.603244][T12496] __sys_bind+0x1a7/0x260 [ 487.603284][T12496] ? __pfx___sys_bind+0x10/0x10 [ 487.603319][T12496] ? __fget_files+0x20e/0x3c0 [ 487.603379][T12496] ? __pfx_ksys_write+0x10/0x10 [ 487.603433][T12496] __x64_sys_bind+0x72/0xb0 [ 487.603470][T12496] ? lockdep_hardirqs_on+0x7c/0x110 [ 487.603516][T12496] do_syscall_64+0xcd/0x490 [ 487.603568][T12496] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 487.603600][T12496] RIP: 0033:0x7f8cd798e929 [ 487.603626][T12496] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 487.603658][T12496] RSP: 002b:00007f8cd882a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 487.603688][T12496] RAX: ffffffffffffffda RBX: 00007f8cd7bb5fa0 RCX: 00007f8cd798e929 [ 487.603709][T12496] RDX: 000000000000006a RSI: 0000200000000040 RDI: 0000000000000003 [ 487.603729][T12496] RBP: 00007f8cd882a090 R08: 0000000000000000 R09: 0000000000000000 [ 487.603755][T12496] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 487.603774][T12496] R13: 0000000000000000 R14: 00007f8cd7bb5fa0 R15: 00007fffea008228 [ 487.603815][T12496] [ 487.866296][T12496] socket: no more sockets [ 488.528129][T12513] ptrace attach of ""[12514] was attempted by "./syz-executor exec"[12513] [ 488.658749][T12522] FAULT_INJECTION: forcing a failure. [ 488.658749][T12522] name failslab, interval 1, probability 0, space 0, times 0 [ 488.683811][T12522] CPU: 0 UID: 0 PID: 12522 Comm: syz.2.1591 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 488.683854][T12522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 488.683872][T12522] Call Trace: [ 488.683882][T12522] [ 488.683894][T12522] dump_stack_lvl+0x16c/0x1f0 [ 488.683944][T12522] should_fail_ex+0x512/0x640 [ 488.683990][T12522] ? __kvmalloc_node_noprof+0x124/0x620 [ 488.684041][T12522] should_failslab+0xc2/0x120 [ 488.684072][T12522] __kvmalloc_node_noprof+0x137/0x620 [ 488.684134][T12522] ? __pfx___mutex_lock+0x10/0x10 [ 488.684182][T12522] ? traverse.part.0.constprop.0+0x392/0x640 [ 488.684234][T12522] ? traverse.part.0.constprop.0+0x392/0x640 [ 488.684274][T12522] traverse.part.0.constprop.0+0x392/0x640 [ 488.684328][T12522] seq_read_iter+0x932/0x12c0 [ 488.684371][T12522] ? aa_file_perm+0x4d6/0xfb0 [ 488.684450][T12522] seq_read+0x39e/0x4e0 [ 488.684491][T12522] ? __pfx_seq_read+0x10/0x10 [ 488.684541][T12522] ? get_pid_task+0xfc/0x250 [ 488.684602][T12522] ? __pfx_seq_read+0x10/0x10 [ 488.684642][T12522] proc_reg_read+0x23d/0x330 [ 488.684689][T12522] ? __pfx_proc_reg_read+0x10/0x10 [ 488.684739][T12522] vfs_read+0x1e1/0xc60 [ 488.684793][T12522] ? __pfx_vfs_read+0x10/0x10 [ 488.684835][T12522] ? find_held_lock+0x2b/0x80 [ 488.684870][T12522] ? __fget_files+0x204/0x3c0 [ 488.684919][T12522] ? __fget_files+0x20e/0x3c0 [ 488.684960][T12522] ? __fget_files+0x1e0/0x3c0 [ 488.685015][T12522] __x64_sys_pread64+0x1eb/0x250 [ 488.685063][T12522] ? __pfx___x64_sys_pread64+0x10/0x10 [ 488.685125][T12522] do_syscall_64+0xcd/0x490 [ 488.685179][T12522] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 488.685211][T12522] RIP: 0033:0x7f5bd698e929 [ 488.685248][T12522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 488.685279][T12522] RSP: 002b:00007f5bd78c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 488.685308][T12522] RAX: ffffffffffffffda RBX: 00007f5bd6bb5fa0 RCX: 00007f5bd698e929 [ 488.685340][T12522] RDX: 0000000000000400 RSI: 0000200000000180 RDI: 0000000000000003 [ 488.685359][T12522] RBP: 00007f5bd78c6090 R08: 0000000000000000 R09: 0000000000000000 [ 488.685375][T12522] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001 [ 488.685419][T12522] R13: 0000000000000000 R14: 00007f5bd6bb5fa0 R15: 00007ffe92c6b618 [ 488.685457][T12522] [ 489.642568][T12534] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 491.677281][T12574] netlink: 'syz.0.1602': attribute type 1 has an invalid length. [ 493.832797][T12617] snd_virmidi snd_virmidi.0: control 61678:1025:3:yªƒ>oÆ[k<÷:1 is already present [ 493.987493][T12613] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 494.115261][T12623] FAULT_INJECTION: forcing a failure. [ 494.115261][T12623] name failslab, interval 1, probability 0, space 0, times 0 [ 494.150407][T12623] CPU: 1 UID: 0 PID: 12623 Comm: syz.1.1607 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 494.150456][T12623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 494.150476][T12623] Call Trace: [ 494.150487][T12623] [ 494.150500][T12623] dump_stack_lvl+0x16c/0x1f0 [ 494.150554][T12623] should_fail_ex+0x512/0x640 [ 494.150602][T12623] ? fs_reclaim_acquire+0xae/0x150 [ 494.150645][T12623] should_failslab+0xc2/0x120 [ 494.150676][T12623] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 494.150727][T12623] ? security_inode_alloc+0x3b/0x2b0 [ 494.150770][T12623] security_inode_alloc+0x3b/0x2b0 [ 494.150807][T12623] inode_init_always_gfp+0xce4/0x1030 [ 494.150862][T12623] alloc_inode+0x86/0x240 [ 494.150896][T12623] sock_alloc+0x40/0x280 [ 494.150926][T12623] __sock_create+0xc1/0x8d0 [ 494.150970][T12623] __sys_socket+0x14d/0x260 [ 494.151009][T12623] ? __pfx___sys_socket+0x10/0x10 [ 494.151045][T12623] ? xfd_validate_state+0x61/0x180 [ 494.151087][T12623] ? __pfx___do_sys_close_range+0x10/0x10 [ 494.151144][T12623] __x64_sys_socket+0x72/0xb0 [ 494.151189][T12623] ? lockdep_hardirqs_on+0x7c/0x110 [ 494.151235][T12623] do_syscall_64+0xcd/0x490 [ 494.151286][T12623] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 494.151320][T12623] RIP: 0033:0x7f3de018e929 [ 494.151345][T12623] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 494.151378][T12623] RSP: 002b:00007f3de0fb8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 494.151411][T12623] RAX: ffffffffffffffda RBX: 00007f3de03b5fa0 RCX: 00007f3de018e929 [ 494.151432][T12623] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 494.151452][T12623] RBP: 00007f3de0210b39 R08: 0000000000000000 R09: 0000000000000000 [ 494.151472][T12623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 494.151492][T12623] R13: 0000000000000000 R14: 00007f3de03b5fa0 R15: 00007ffc8ac05ba8 [ 494.151533][T12623] [ 494.357910][T12623] socket: no more sockets [ 494.637921][T12629] FAULT_INJECTION: forcing a failure. [ 494.637921][T12629] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 494.715911][T12629] CPU: 0 UID: 0 PID: 12629 Comm: syz.0.1608 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 494.715945][T12629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 494.715965][T12629] Call Trace: [ 494.715972][T12629] [ 494.715981][T12629] dump_stack_lvl+0x16c/0x1f0 [ 494.716017][T12629] should_fail_ex+0x512/0x640 [ 494.716054][T12629] _copy_to_user+0x32/0xd0 [ 494.716090][T12629] simple_read_from_buffer+0xcb/0x170 [ 494.716121][T12629] proc_fail_nth_read+0x197/0x270 [ 494.716148][T12629] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 494.716176][T12629] ? rw_verify_area+0xcf/0x680 [ 494.716203][T12629] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 494.716229][T12629] vfs_read+0x1e1/0xc60 [ 494.716263][T12629] ? __pfx___mutex_lock+0x10/0x10 [ 494.716296][T12629] ? __pfx_vfs_read+0x10/0x10 [ 494.716334][T12629] ? __fget_files+0x20e/0x3c0 [ 494.716372][T12629] ksys_read+0x12a/0x250 [ 494.716402][T12629] ? __pfx_ksys_read+0x10/0x10 [ 494.716460][T12629] do_syscall_64+0xcd/0x490 [ 494.716496][T12629] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 494.716532][T12629] RIP: 0033:0x7f8cd798d33c [ 494.716549][T12629] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 494.716571][T12629] RSP: 002b:00007f8cd882a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 494.716592][T12629] RAX: ffffffffffffffda RBX: 00007f8cd7bb5fa0 RCX: 00007f8cd798d33c [ 494.716608][T12629] RDX: 000000000000000f RSI: 00007f8cd882a0a0 RDI: 0000000000000004 [ 494.716621][T12629] RBP: 00007f8cd882a090 R08: 0000000000000000 R09: 0000000000000000 [ 494.716635][T12629] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 494.716649][T12629] R13: 0000000000000000 R14: 00007f8cd7bb5fa0 R15: 00007fffea008228 [ 494.716677][T12629] [ 495.476607][T12641] netlink: 'syz.1.1611': attribute type 1 has an invalid length. [ 496.810157][T12656] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1614'. [ 496.830055][T12658] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1614'. [ 497.760265][ T30] audit: type=1800 audit(4294971784.636:6): pid=12665 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1612" name="features" dev="configfs" ino=35069 res=0 errno=0 [ 498.209773][T12668] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 499.133898][T12703] netlink: 'syz.3.1623': attribute type 1 has an invalid length. [ 501.634408][T12734] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 502.364569][T12740] ptrace attach of ""[12753] was attempted by "./syz-executor exec"[12740] [ 502.604730][T12766] netlink: 'syz.3.1636': attribute type 1 has an invalid length. [ 502.940142][T12767] ptrace attach of ""[12769] was attempted by "./syz-executor exec"[12767] [ 504.184049][T12787] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 505.628355][T12828] netlink: 'syz.3.1648': attribute type 1 has an invalid length. [ 505.687013][T12813] sp0: Synchronizing with TNC [ 506.437611][T12845] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 506.593461][T12844] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1650'. [ 506.641737][T12851] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78018 [ 506.657622][T12851] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 506.666757][T12851] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 506.683060][T12851] page_type: f5(slab) [ 506.687509][T12851] raw: 00fff00000000040 ffff88801b842000 0000000000000000 dead000000000001 [ 506.704432][T12844] veth0_macvtap: entered allmulticast mode [ 506.724976][T12851] raw: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000 [ 506.741843][T12851] head: 00fff00000000040 ffff88801b842000 0000000000000000 dead000000000001 [ 506.768185][T12851] head: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000 [ 506.788773][T12851] head: 00fff00000000003 ffffea0001e00601 00000000ffffffff 00000000ffffffff [ 506.797803][T12851] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 506.808678][T12851] page dumped because: unmovable page [ 506.814171][T12851] page_owner tracks the page as allocated [ 506.821290][T12851] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 11550, tgid 11549 (syz.3.1378), ts 441645110205, free_ts 441386195073 [ 506.843221][T12851] post_alloc_hook+0x1c0/0x230 [ 506.848102][T12851] get_page_from_freelist+0x1321/0x3890 [ 506.854266][T12851] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 506.860255][T12851] alloc_pages_mpol+0x1fb/0x550 [ 506.865476][T12851] new_slab+0x23b/0x330 [ 506.869711][T12851] ___slab_alloc+0xd9c/0x1940 [ 506.874534][T12851] __slab_alloc.constprop.0+0x56/0xb0 [ 506.880180][T12851] __kmalloc_noprof+0x2f2/0x510 [ 506.885166][T12851] ops_init+0x77/0x5f0 [ 506.889323][T12851] setup_net+0x1ff/0x510 [ 506.894064][T12851] copy_net_ns+0x2a6/0x5f0 [ 506.898552][T12851] create_new_namespaces+0x3ea/0xa90 [ 506.907180][T12851] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 506.912963][T12851] ksys_unshare+0x45b/0xa40 [ 506.917747][T12851] __x64_sys_unshare+0x31/0x40 [ 506.989136][T12851] do_syscall_64+0xcd/0x490 [ 507.014053][T12851] page last free pid 978 tgid 978 stack trace: [ 507.045515][T12851] __free_frozen_pages+0x7fe/0x1180 [ 507.066189][T12851] __put_partials+0x16d/0x1c0 [ 507.070985][T12851] qlist_free_all+0x4d/0x120 [ 507.085987][T12851] kasan_quarantine_reduce+0x195/0x1e0 [ 507.098666][T12851] __kasan_slab_alloc+0x69/0x90 [ 507.106642][T12851] __kvmalloc_node_noprof+0x230/0x620 [ 507.115849][T12851] bucket_table_alloc.isra.0+0x83/0x460 [ 507.153372][T12851] rhashtable_rehash_alloc+0x68/0x110 [ 507.158873][T12851] rht_deferred_worker+0x1836/0x1fa0 [ 507.184365][T12851] process_one_work+0x9cc/0x1b70 [ 507.189422][T12851] worker_thread+0x6c8/0xf10 [ 507.204488][T12851] kthread+0x3c5/0x780 [ 507.210975][T12851] ret_from_fork+0x5d4/0x6f0 [ 507.224073][T12851] ret_from_fork_asm+0x1a/0x30 [ 507.590780][ T30] audit: type=1804 audit(4294971794.527:7): pid=12842 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1650" name="/newroot/400/file0" dev="tmpfs" ino=2216 res=1 errno=0 [ 508.975814][T12871] openvswitch: netlink: Key 2 has unexpected len 0 expected 4 [ 509.475802][T12891] netlink: 'syz.1.1660': attribute type 1 has an invalid length. [ 509.890630][T12897] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 510.041322][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 510.047875][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 510.212845][T12904] FAULT_INJECTION: forcing a failure. [ 510.212845][T12904] name failslab, interval 1, probability 0, space 0, times 0 [ 510.229217][T12904] CPU: 1 UID: 0 PID: 12904 Comm: syz.3.1664 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 510.229262][T12904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 510.229282][T12904] Call Trace: [ 510.229292][T12904] [ 510.229305][T12904] dump_stack_lvl+0x16c/0x1f0 [ 510.229357][T12904] should_fail_ex+0x512/0x640 [ 510.229403][T12904] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 510.229450][T12904] should_failslab+0xc2/0x120 [ 510.229481][T12904] __kmalloc_cache_noprof+0x6a/0x3e0 [ 510.229527][T12904] ? devlink_fmsg_nest_common.part.0+0x48/0x1e0 [ 510.229580][T12904] devlink_fmsg_nest_common.part.0+0x48/0x1e0 [ 510.229620][T12904] devlink_health_do_dump+0x4ab/0x620 [ 510.229666][T12904] devlink_health_report+0x3c9/0x9c0 [ 510.229713][T12904] ? __pfx_devlink_health_report+0x10/0x10 [ 510.229754][T12904] ? _copy_from_user+0x59/0xd0 [ 510.229811][T12904] nsim_dev_health_break_write+0x166/0x210 [ 510.229850][T12904] ? __pfx_nsim_dev_health_break_write+0x10/0x10 [ 510.229900][T12904] full_proxy_write+0x13f/0x200 [ 510.229936][T12904] ? __pfx_full_proxy_write+0x10/0x10 [ 510.229965][T12904] vfs_write+0x2a0/0x1150 [ 510.230019][T12904] ? __pfx___mutex_lock+0x10/0x10 [ 510.230067][T12904] ? __pfx_vfs_write+0x10/0x10 [ 510.230126][T12904] ? __fget_files+0x20e/0x3c0 [ 510.230183][T12904] ksys_write+0x12a/0x250 [ 510.230229][T12904] ? __pfx_ksys_write+0x10/0x10 [ 510.230288][T12904] do_syscall_64+0xcd/0x490 [ 510.230339][T12904] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 510.230367][T12904] RIP: 0033:0x7ff3c5f8e929 [ 510.230391][T12904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 510.230423][T12904] RSP: 002b:00007ff3c6d25038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 510.230453][T12904] RAX: ffffffffffffffda RBX: 00007ff3c61b5fa0 RCX: 00007ff3c5f8e929 [ 510.230475][T12904] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000003 [ 510.230495][T12904] RBP: 00007ff3c6d25090 R08: 0000000000000000 R09: 0000000000000000 [ 510.230514][T12904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 510.230533][T12904] R13: 0000000000000000 R14: 00007ff3c61b5fa0 R15: 00007ffc329d8a38 [ 510.230583][T12904] [ 510.625301][T12913] FAULT_INJECTION: forcing a failure. [ 510.625301][T12913] name failslab, interval 1, probability 0, space 0, times 0 [ 510.638106][T12913] CPU: 1 UID: 0 PID: 12913 Comm: syz.3.1667 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 510.638149][T12913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 510.638168][T12913] Call Trace: [ 510.638177][T12913] [ 510.638189][T12913] dump_stack_lvl+0x16c/0x1f0 [ 510.638243][T12913] should_fail_ex+0x512/0x640 [ 510.638289][T12913] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 510.638342][T12913] should_failslab+0xc2/0x120 [ 510.638372][T12913] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 510.638423][T12913] ? __alloc_skb+0x2b2/0x380 [ 510.638474][T12913] __alloc_skb+0x2b2/0x380 [ 510.638516][T12913] ? __pfx___alloc_skb+0x10/0x10 [ 510.638565][T12913] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 510.638607][T12913] netlink_alloc_large_skb+0x69/0x130 [ 510.638644][T12913] netlink_sendmsg+0x6a1/0xdd0 [ 510.638684][T12913] ? __pfx_netlink_sendmsg+0x10/0x10 [ 510.638743][T12913] sock_write_iter+0x4fc/0x5b0 [ 510.638781][T12913] ? __pfx_sock_write_iter+0x10/0x10 [ 510.638832][T12913] ? bpf_lsm_file_permission+0x9/0x10 [ 510.638868][T12913] ? security_file_permission+0x71/0x210 [ 510.638912][T12913] ? rw_verify_area+0xcf/0x680 [ 510.638959][T12913] vfs_write+0x6c4/0x1150 [ 510.639007][T12913] ? __pfx_sock_write_iter+0x10/0x10 [ 510.639047][T12913] ? __pfx_vfs_write+0x10/0x10 [ 510.639090][T12913] ? find_held_lock+0x2b/0x80 [ 510.639149][T12913] ksys_write+0x1f8/0x250 [ 510.639195][T12913] ? __pfx_ksys_write+0x10/0x10 [ 510.639254][T12913] do_syscall_64+0xcd/0x490 [ 510.639307][T12913] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 510.639340][T12913] RIP: 0033:0x7ff3c5f8e929 [ 510.639366][T12913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 510.639398][T12913] RSP: 002b:00007ff3c6d25038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 510.639429][T12913] RAX: ffffffffffffffda RBX: 00007ff3c61b5fa0 RCX: 00007ff3c5f8e929 [ 510.639451][T12913] RDX: 00000000000002fb RSI: 0000200000000000 RDI: 0000000000000003 [ 510.639471][T12913] RBP: 00007ff3c6d25090 R08: 0000000000000000 R09: 0000000000000000 [ 510.639492][T12913] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 510.639512][T12913] R13: 0000000000000000 R14: 00007ff3c61b5fa0 R15: 00007ffc329d8a38 [ 510.639554][T12913] [ 512.102833][T12951] netlink: 'syz.0.1674': attribute type 1 has an invalid length. [ 512.235468][T12941] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 512.736511][T12970] FAULT_INJECTION: forcing a failure. [ 512.736511][T12970] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 512.754912][T12970] CPU: 1 UID: 0 PID: 12970 Comm: syz.1.1679 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 512.754955][T12970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 512.754974][T12970] Call Trace: [ 512.754983][T12970] [ 512.754994][T12970] dump_stack_lvl+0x16c/0x1f0 [ 512.755046][T12970] should_fail_ex+0x512/0x640 [ 512.755097][T12970] _copy_from_iter+0x29f/0x16f0 [ 512.755152][T12970] ? __alloc_skb+0x200/0x380 [ 512.755196][T12970] ? __pfx__copy_from_iter+0x10/0x10 [ 512.755247][T12970] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 512.755292][T12970] netlink_sendmsg+0x829/0xdd0 [ 512.755332][T12970] ? __pfx_netlink_sendmsg+0x10/0x10 [ 512.755381][T12970] ____sys_sendmsg+0xa98/0xc70 [ 512.755416][T12970] ? copy_msghdr_from_user+0x10a/0x160 [ 512.755464][T12970] ? __pfx_____sys_sendmsg+0x10/0x10 [ 512.755517][T12970] ___sys_sendmsg+0x134/0x1d0 [ 512.755592][T12970] ? __pfx____sys_sendmsg+0x10/0x10 [ 512.755644][T12970] ? __lock_acquire+0x622/0x1c90 [ 512.755743][T12970] __sys_sendmsg+0x16d/0x220 [ 512.755792][T12970] ? __pfx___sys_sendmsg+0x10/0x10 [ 512.755866][T12970] do_syscall_64+0xcd/0x490 [ 512.755920][T12970] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 512.755953][T12970] RIP: 0033:0x7f3de018e929 [ 512.755979][T12970] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 512.756011][T12970] RSP: 002b:00007f3de0fb8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 512.756041][T12970] RAX: ffffffffffffffda RBX: 00007f3de03b5fa0 RCX: 00007f3de018e929 [ 512.756062][T12970] RDX: 0000000000064810 RSI: 0000200000000180 RDI: 0000000000000003 [ 512.756082][T12970] RBP: 00007f3de0fb8090 R08: 0000000000000000 R09: 0000000000000000 [ 512.756102][T12970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 512.756121][T12970] R13: 0000000000000000 R14: 00007f3de03b5fa0 R15: 00007ffc8ac05ba8 [ 512.756163][T12970] [ 513.003064][T12973] bond0: option packets_per_slave: invalid value ( Xµn‘pæ) [ 513.010667][T12973] bond0: option packets_per_slave: allowed values 0 - 65535 [ 513.268015][T12978] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78028 [ 513.431897][T12978] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 513.483887][T12978] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 513.497814][T12978] page_type: f5(slab) [ 513.530701][T12978] raw: 00fff00000000040 ffff88801ce95640 0000000000000000 0000000000000001 [ 513.568135][T12978] raw: 0000000000000000 0000000000070007 00000000f5000000 0000000000000000 [ 513.576815][T12978] head: 00fff00000000040 ffff88801ce95640 0000000000000000 0000000000000001 [ 513.683536][T12978] head: 0000000000000000 0000000000070007 00000000f5000000 0000000000000000 [ 513.706335][T12978] head: 00fff00000000003 ffffea0001e00a01 00000000ffffffff 00000000ffffffff [ 513.732134][T12978] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 513.856727][T12978] page dumped because: unmovable page [ 513.931972][T12978] page_owner tracks the page as allocated [ 513.950700][T12978] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 12418, tgid 12416 (syz.3.1568), ts 484529863320, free_ts 484342837076 [ 514.003060][T12978] post_alloc_hook+0x1c0/0x230 [ 514.016259][T12978] get_page_from_freelist+0x1321/0x3890 [ 514.022055][T12978] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 514.042166][T12978] alloc_pages_mpol+0x1fb/0x550 [ 514.048322][T12978] new_slab+0x23b/0x330 [ 514.095331][T12978] ___slab_alloc+0xd9c/0x1940 [ 514.194186][T12978] __slab_alloc.constprop.0+0x56/0xb0 [ 514.212607][T12978] kmem_cache_alloc_noprof+0xef/0x3b0 [ 514.234084][T12978] getname_flags.part.0+0x4c/0x550 [ 514.250845][T12978] getname_flags+0x93/0xf0 [ 514.278079][T12978] do_sys_openat2+0xb8/0x1d0 [ 514.293427][T12978] __x64_sys_openat+0x174/0x210 [ 514.304654][T12984] FAULT_INJECTION: forcing a failure. [ 514.304654][T12984] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 514.312059][T12978] do_syscall_64+0xcd/0x490 [ 514.364136][T12984] CPU: 1 UID: 0 PID: 12984 Comm: syz.0.1680 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 514.364181][T12984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 514.364199][T12984] Call Trace: [ 514.364209][T12984] [ 514.364220][T12984] dump_stack_lvl+0x16c/0x1f0 [ 514.364273][T12984] should_fail_ex+0x512/0x640 [ 514.364326][T12984] _copy_from_user+0x2e/0xd0 [ 514.364379][T12984] generic_map_update_batch+0x380/0x610 [ 514.364443][T12984] ? __pfx_generic_map_update_batch+0x10/0x10 [ 514.364512][T12984] ? __pfx_generic_map_update_batch+0x10/0x10 [ 514.364566][T12984] bpf_map_do_batch+0x5b1/0x680 [ 514.364612][T12984] __sys_bpf+0x15f3/0x4d80 [ 514.364644][T12984] ? __pfx___sys_bpf+0x10/0x10 [ 514.364674][T12984] ? ksys_write+0x190/0x250 [ 514.364726][T12984] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 514.364800][T12984] ? fput+0x70/0xf0 [ 514.364828][T12984] ? ksys_write+0x1ac/0x250 [ 514.364870][T12984] ? __pfx_ksys_write+0x10/0x10 [ 514.364924][T12984] __x64_sys_bpf+0x78/0xc0 [ 514.364953][T12984] ? lockdep_hardirqs_on+0x7c/0x110 [ 514.364998][T12984] do_syscall_64+0xcd/0x490 [ 514.365050][T12984] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 514.365081][T12984] RIP: 0033:0x7f8cd798e929 [ 514.365106][T12984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 514.365137][T12984] RSP: 002b:00007f8cd87c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 514.365172][T12984] RAX: ffffffffffffffda RBX: 00007f8cd7bb6240 RCX: 00007f8cd798e929 [ 514.365193][T12984] RDX: 0000000000000081 RSI: 0000200000000380 RDI: 000000000000001a [ 514.365213][T12984] RBP: 00007f8cd87c7090 R08: 0000000000000000 R09: 0000000000000000 [ 514.365233][T12984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 514.365252][T12984] R13: 0000000000000000 R14: 00007f8cd7bb6240 R15: 00007fffea008228 [ 514.365295][T12984] [ 514.399865][T12978] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 514.596122][T12978] page last free pid 12380 tgid 12380 stack trace: [ 514.606172][T12978] __free_frozen_pages+0x7fe/0x1180 [ 514.611474][T12978] __put_partials+0x16d/0x1c0 [ 514.635457][T12978] qlist_free_all+0x4d/0x120 [ 514.641935][T12978] kasan_quarantine_reduce+0x195/0x1e0 [ 514.655532][T13007] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 514.658208][T12978] __kasan_slab_alloc+0x69/0x90 [ 514.669102][T12978] kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 514.675381][T12978] getname_flags.part.0+0x4c/0x550 [ 514.680829][T12978] getname_flags+0x93/0xf0 [ 514.686777][T12978] do_sys_openat2+0xb8/0x1d0 [ 514.691773][T12978] __x64_sys_openat+0x174/0x210 [ 514.696910][T12978] do_syscall_64+0xcd/0x490 [ 514.701944][T12978] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 515.508406][T13028] netlink: 'syz.3.1689': attribute type 1 has an invalid length. [ 517.380748][T13061] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 517.432599][T13049] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 518.332159][T13091] netlink: 'syz.2.1702': attribute type 1 has an invalid length. [ 518.768534][T13093] sd 0:0:1:0: PR command failed: 1026 [ 518.774258][T13093] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 518.782015][T13093] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 519.841371][T13109] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 519.945724][T13118] zswap: compressor 000 not available [ 520.021554][T13125] can: request_module (can-proto-0) failed. [ 520.579685][T13148] netlink: 'syz.1.1714': attribute type 1 has an invalid length. [ 521.081526][T13158] FAULT_INJECTION: forcing a failure. [ 521.081526][T13158] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 521.130529][T13158] CPU: 1 UID: 0 PID: 13158 Comm: syz.0.1715 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 521.130574][T13158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 521.130601][T13158] Call Trace: [ 521.130611][T13158] [ 521.130622][T13158] dump_stack_lvl+0x16c/0x1f0 [ 521.130674][T13158] should_fail_ex+0x512/0x640 [ 521.130725][T13158] _copy_from_user+0x2e/0xd0 [ 521.130780][T13158] io_ringfd_unregister+0x209/0x320 [ 521.130815][T13158] ? __pfx_io_ringfd_unregister+0x10/0x10 [ 521.130852][T13158] ? __pfx___mutex_trylock_common+0x10/0x10 [ 521.130904][T13158] __io_uring_register+0x7e5/0x23c0 [ 521.130952][T13158] ? trace_contention_end+0xdd/0x130 [ 521.130997][T13158] ? __pfx___io_uring_register+0x10/0x10 [ 521.131039][T13158] ? __mutex_lock+0x1ca/0xb90 [ 521.131088][T13158] ? __x64_sys_io_uring_register+0x159/0x280 [ 521.131171][T13158] ? __pfx___mutex_lock+0x10/0x10 [ 521.131229][T13158] ? __fget_files+0x20e/0x3c0 [ 521.131285][T13158] __x64_sys_io_uring_register+0x169/0x280 [ 521.131337][T13158] do_syscall_64+0xcd/0x490 [ 521.131387][T13158] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 521.131418][T13158] RIP: 0033:0x7f8cd798e929 [ 521.131443][T13158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 521.131474][T13158] RSP: 002b:00007f8cd882a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab [ 521.131503][T13158] RAX: ffffffffffffffda RBX: 00007f8cd7bb5fa0 RCX: 00007f8cd798e929 [ 521.131524][T13158] RDX: 0000200000000240 RSI: 0000000000000015 RDI: 0000000000000002 [ 521.131562][T13158] RBP: 00007f8cd882a090 R08: 0000000000000000 R09: 0000000000000000 [ 521.131608][T13158] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001 [ 521.131628][T13158] R13: 0000000000000000 R14: 00007f8cd7bb5fa0 R15: 00007fffea008228 [ 521.131670][T13158] [ 522.138924][T13173] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 523.104772][T13207] netlink: 'syz.1.1726': attribute type 1 has an invalid length. [ 524.014592][T13221] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 524.399672][T13227] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15 [ 524.606183][T13246] FAULT_INJECTION: forcing a failure. [ 524.606183][T13246] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 524.669980][T13246] CPU: 1 UID: 0 PID: 13246 Comm: syz.3.1734 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 524.670024][T13246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 524.670044][T13246] Call Trace: [ 524.670056][T13246] [ 524.670068][T13246] dump_stack_lvl+0x16c/0x1f0 [ 524.670120][T13246] should_fail_ex+0x512/0x640 [ 524.670175][T13246] _copy_from_user+0x2e/0xd0 [ 524.670226][T13246] copy_msghdr_from_user+0x98/0x160 [ 524.670284][T13246] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 524.670341][T13246] ? __pfx__kstrtoull+0x10/0x10 [ 524.670389][T13246] ___sys_sendmsg+0xfe/0x1d0 [ 524.670439][T13246] ? __pfx____sys_sendmsg+0x10/0x10 [ 524.670508][T13246] ? find_held_lock+0x2b/0x80 [ 524.670570][T13246] __sys_sendmmsg+0x200/0x420 [ 524.670624][T13246] ? __pfx___sys_sendmmsg+0x10/0x10 [ 524.670686][T13246] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 524.670755][T13246] ? fput+0x70/0xf0 [ 524.670791][T13246] ? ksys_write+0x1ac/0x250 [ 524.670836][T13246] ? __pfx_ksys_write+0x10/0x10 [ 524.670890][T13246] __x64_sys_sendmmsg+0x9c/0x100 [ 524.670938][T13246] ? lockdep_hardirqs_on+0x7c/0x110 [ 524.670984][T13246] do_syscall_64+0xcd/0x490 [ 524.671036][T13246] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 524.671069][T13246] RIP: 0033:0x7ff3c5f8e929 [ 524.671095][T13246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 524.671126][T13246] RSP: 002b:00007ff3c3df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 524.671157][T13246] RAX: ffffffffffffffda RBX: 00007ff3c61b6080 RCX: 00007ff3c5f8e929 [ 524.671179][T13246] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 524.671199][T13246] RBP: 00007ff3c3df6090 R08: 0000000000000000 R09: 0000000000000000 [ 524.671219][T13246] R10: 0000000004000000 R11: 0000000000000246 R12: 0000000000000001 [ 524.671261][T13246] R13: 0000000000000000 R14: 00007ff3c61b6080 R15: 00007ffc329d8a38 [ 524.671303][T13246] [ 525.369480][T13250] MTRR 1 not used [ 525.378008][T13245] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16 [ 527.094111][T13277] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 527.585615][T13291] FAULT_INJECTION: forcing a failure. [ 527.585615][T13291] name failslab, interval 1, probability 0, space 0, times 0 [ 527.611044][T13291] CPU: 1 UID: 0 PID: 13291 Comm: syz.0.1744 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 527.611095][T13291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 527.611118][T13291] Call Trace: [ 527.611130][T13291] [ 527.611143][T13291] dump_stack_lvl+0x16c/0x1f0 [ 527.611201][T13291] should_fail_ex+0x512/0x640 [ 527.611250][T13291] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 527.611308][T13291] should_failslab+0xc2/0x120 [ 527.611340][T13291] __kmalloc_cache_noprof+0x6a/0x3e0 [ 527.611386][T13291] ? sample_init_net+0x56/0x270 [ 527.611419][T13291] ? __pfx_sample_init_net+0x10/0x10 [ 527.611451][T13291] sample_init_net+0x56/0x270 [ 527.611482][T13291] ops_init+0x1df/0x5f0 [ 527.611539][T13291] setup_net+0x1ff/0x510 [ 527.611589][T13291] ? lockdep_init_map_type+0x5c/0x280 [ 527.611635][T13291] ? __pfx_setup_net+0x10/0x10 [ 527.611687][T13291] ? debug_mutex_init+0x37/0x70 [ 527.611722][T13291] copy_net_ns+0x2a6/0x5f0 [ 527.611759][T13291] create_new_namespaces+0x3ea/0xa90 [ 527.611805][T13291] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 527.611845][T13291] ksys_unshare+0x45b/0xa40 [ 527.611892][T13291] ? __pfx_ksys_unshare+0x10/0x10 [ 527.611939][T13291] ? xfd_validate_state+0x61/0x180 [ 527.611997][T13291] __x64_sys_unshare+0x31/0x40 [ 527.612043][T13291] do_syscall_64+0xcd/0x490 [ 527.612098][T13291] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 527.612132][T13291] RIP: 0033:0x7f8cd798e929 [ 527.612157][T13291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 527.612189][T13291] RSP: 002b:00007f8cd882a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 527.612222][T13291] RAX: ffffffffffffffda RBX: 00007f8cd7bb5fa0 RCX: 00007f8cd798e929 [ 527.612245][T13291] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 527.612265][T13291] RBP: 00007f8cd7a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 527.612292][T13291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 527.612312][T13291] R13: 0000000000000000 R14: 00007f8cd7bb5fa0 R15: 00007fffea008228 [ 527.612356][T13291] [ 530.252166][T13335] binder: BINDER_SET_CONTEXT_MGR already set [ 530.258478][T13335] binder: 13329:13335 ioctl 40046207 0 returned -16 [ 531.093622][T13345] FAULT_INJECTION: forcing a failure. [ 531.093622][T13345] name failslab, interval 1, probability 0, space 0, times 0 [ 531.109913][T13347] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1755'. [ 531.131959][T13346] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 531.182220][T13342] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 531.187742][T13345] CPU: 0 UID: 0 PID: 13345 Comm: syz.2.1754 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 531.187798][T13345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 531.187826][T13345] Call Trace: [ 531.187840][T13345] [ 531.187853][T13345] dump_stack_lvl+0x16c/0x1f0 [ 531.187919][T13345] should_fail_ex+0x512/0x640 [ 531.187984][T13345] ? __kmalloc_noprof+0xbf/0x510 [ 531.188048][T13345] ? snd_midi_event_new+0xa1/0x210 [ 531.188105][T13345] should_failslab+0xc2/0x120 [ 531.188143][T13345] __kmalloc_noprof+0xd2/0x510 [ 531.188208][T13345] snd_midi_event_new+0xa1/0x210 [ 531.188269][T13345] snd_virmidi_output_open+0x106/0x670 [ 531.188312][T13345] open_substream+0x47b/0x9b0 [ 531.188359][T13345] rawmidi_open_priv+0x543/0x6e0 [ 531.188413][T13345] snd_rawmidi_open+0x4cc/0xbf0 [ 531.188471][T13345] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 531.188522][T13345] ? __pfx_default_wake_function+0x10/0x10 [ 531.188574][T13345] ? kobject_get_unless_zero+0x156/0x1e0 [ 531.188641][T13345] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 531.188687][T13345] snd_open+0x1fe/0x450 [ 531.188750][T13345] ? __pfx_snd_open+0x10/0x10 [ 531.188809][T13345] chrdev_open+0x234/0x6a0 [ 531.188867][T13345] ? __pfx_apparmor_file_open+0x10/0x10 [ 531.188917][T13345] ? __pfx_chrdev_open+0x10/0x10 [ 531.189006][T13345] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 531.189068][T13345] do_dentry_open+0x741/0x1c10 [ 531.189127][T13345] ? __pfx_chrdev_open+0x10/0x10 [ 531.189196][T13345] vfs_open+0x82/0x3f0 [ 531.189242][T13345] path_openat+0x1de4/0x2cb0 [ 531.189317][T13345] ? __pfx_path_openat+0x10/0x10 [ 531.189376][T13345] ? __lock_acquire+0xb8a/0x1c90 [ 531.189434][T13345] do_filp_open+0x20b/0x470 [ 531.189490][T13345] ? __pfx_do_filp_open+0x10/0x10 [ 531.189580][T13345] ? alloc_fd+0x471/0x7d0 [ 531.189645][T13345] do_sys_openat2+0x11b/0x1d0 [ 531.189685][T13345] ? __pfx_do_sys_openat2+0x10/0x10 [ 531.189747][T13345] __x64_sys_openat+0x174/0x210 [ 531.189792][T13345] ? __pfx___x64_sys_openat+0x10/0x10 [ 531.189856][T13345] do_syscall_64+0xcd/0x490 [ 531.189917][T13345] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 531.189955][T13345] RIP: 0033:0x7f5bd698e929 [ 531.189990][T13345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 531.190023][T13345] RSP: 002b:00007f5bd78c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 531.190054][T13345] RAX: ffffffffffffffda RBX: 00007f5bd6bb5fa0 RCX: 00007f5bd698e929 [ 531.190076][T13345] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 531.190097][T13345] RBP: 00007f5bd6a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 531.190117][T13345] R10: 000000000000003f R11: 0000000000000246 R12: 0000000000000000 [ 531.190138][T13345] R13: 0000000000000000 R14: 00007f5bd6bb5fa0 R15: 00007ffe92c6b618 [ 531.190188][T13345] [ 531.386412][T13352] FAULT_INJECTION: forcing a failure. [ 531.386412][T13352] name failslab, interval 1, probability 0, space 0, times 0 [ 531.623660][T13352] CPU: 0 UID: 0 PID: 13352 Comm: syz.3.1756 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 531.623708][T13352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 531.623726][T13352] Call Trace: [ 531.623736][T13352] [ 531.623748][T13352] dump_stack_lvl+0x16c/0x1f0 [ 531.623801][T13352] should_fail_ex+0x512/0x640 [ 531.623847][T13352] ? __kmalloc_noprof+0xbf/0x510 [ 531.623898][T13352] ? kernfs_fop_write_iter+0x237/0x510 [ 531.623931][T13352] should_failslab+0xc2/0x120 [ 531.623961][T13352] __kmalloc_noprof+0xd2/0x510 [ 531.624020][T13352] kernfs_fop_write_iter+0x237/0x510 [ 531.624062][T13352] vfs_write+0x6c4/0x1150 [ 531.624109][T13352] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 531.624147][T13352] ? __pfx___mutex_lock+0x10/0x10 [ 531.624195][T13352] ? __pfx_vfs_write+0x10/0x10 [ 531.624272][T13352] ksys_write+0x12a/0x250 [ 531.624318][T13352] ? __pfx_ksys_write+0x10/0x10 [ 531.624378][T13352] do_syscall_64+0xcd/0x490 [ 531.624430][T13352] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 531.624463][T13352] RIP: 0033:0x7ff3c5f8e929 [ 531.624489][T13352] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 531.624520][T13352] RSP: 002b:00007ff3c6d25038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 531.624550][T13352] RAX: ffffffffffffffda RBX: 00007ff3c61b5fa0 RCX: 00007ff3c5f8e929 [ 531.624571][T13352] RDX: 0000000000000001 RSI: 0000200000000540 RDI: 0000000000000003 [ 531.624590][T13352] RBP: 00007ff3c6d25090 R08: 0000000000000000 R09: 0000000000000000 [ 531.624609][T13352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 531.624628][T13352] R13: 0000000000000000 R14: 00007ff3c61b5fa0 R15: 00007ffc329d8a38 [ 531.624677][T13352] [ 532.203502][T13362] FAULT_INJECTION: forcing a failure. [ 532.203502][T13362] name failslab, interval 1, probability 0, space 0, times 0 [ 532.234800][T13362] CPU: 0 UID: 0 PID: 13362 Comm: syz.3.1761 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 532.234846][T13362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 532.234870][T13362] Call Trace: [ 532.234881][T13362] [ 532.234894][T13362] dump_stack_lvl+0x16c/0x1f0 [ 532.234947][T13362] should_fail_ex+0x512/0x640 [ 532.234994][T13362] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 532.235048][T13362] should_failslab+0xc2/0x120 [ 532.235080][T13362] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 532.235127][T13362] ? do_raw_read_unlock+0x44/0xe0 [ 532.235158][T13362] ? ima_d_path+0xbd/0x2a0 [ 532.235195][T13362] ima_d_path+0xbd/0x2a0 [ 532.235226][T13362] ? __pfx_ima_d_path+0x10/0x10 [ 532.235264][T13362] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 532.235320][T13362] process_measurement+0x1d86/0x23e0 [ 532.235394][T13362] ? __pfx_process_measurement+0x10/0x10 [ 532.235473][T13362] ? kasan_quarantine_put+0x10a/0x240 [ 532.235559][T13362] ima_bprm_check+0xe7/0x210 [ 532.235605][T13362] ? __pfx_ima_bprm_check+0x10/0x10 [ 532.235680][T13362] security_bprm_check+0xa5/0x1e0 [ 532.235730][T13362] bprm_execve+0x810/0x1650 [ 532.235784][T13362] ? __pfx_bprm_execve+0x10/0x10 [ 532.235825][T13362] ? copy_string_kernel+0x444/0x510 [ 532.235886][T13362] do_execveat_common.isra.0+0x4a5/0x610 [ 532.235941][T13362] __x64_sys_execve+0x8e/0xb0 [ 532.235989][T13362] do_syscall_64+0xcd/0x490 [ 532.236042][T13362] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 532.236075][T13362] RIP: 0033:0x7ff3c5f8e929 [ 532.236101][T13362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 532.236132][T13362] RSP: 002b:00007ff3c6d25038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 532.236162][T13362] RAX: ffffffffffffffda RBX: 00007ff3c61b5fa0 RCX: 00007ff3c5f8e929 [ 532.236184][T13362] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000 [ 532.236203][T13362] RBP: 00007ff3c6d25090 R08: 0000000000000000 R09: 0000000000000000 [ 532.236223][T13362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 532.236242][T13362] R13: 0000000000000000 R14: 00007ff3c61b5fa0 R15: 00007ffc329d8a38 [ 532.236285][T13362] [ 532.480144][T13362] FAULT_INJECTION: forcing a failure. [ 532.480144][T13362] name failslab, interval 1, probability 0, space 0, times 0 [ 532.493273][T13362] CPU: 0 UID: 0 PID: 13362 Comm: syz.3.1761 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 532.493322][T13362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 532.493343][T13362] Call Trace: [ 532.493355][T13362] [ 532.493368][T13362] dump_stack_lvl+0x16c/0x1f0 [ 532.493428][T13362] should_fail_ex+0x512/0x640 [ 532.493480][T13362] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 532.493535][T13362] should_failslab+0xc2/0x120 [ 532.493570][T13362] __kmalloc_cache_noprof+0x6a/0x3e0 [ 532.493619][T13362] ? __asan_memset+0x23/0x50 [ 532.493664][T13362] ? alloc_netdev_mqs+0xece/0x1570 [ 532.493720][T13362] ? __xdp_rxq_info_reg+0x14e/0x2d0 [ 532.493761][T13362] alloc_netdev_mqs+0xece/0x1570 [ 532.493860][T13362] internal_dev_create+0x8a/0x520 [ 532.493899][T13362] ovs_vport_add+0x144/0x4d0 [ 532.493958][T13362] new_vport+0x16/0x1d0 [ 532.494004][T13362] ovs_dp_cmd_new+0x6ba/0xe60 [ 532.494066][T13362] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 532.494126][T13362] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 532.494192][T13362] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 532.494249][T13362] genl_family_rcv_msg_doit+0x206/0x2f0 [ 532.494297][T13362] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 532.494344][T13362] ? trace_cap_capable+0x18d/0x200 [ 532.494392][T13362] ? bpf_lsm_capable+0x9/0x10 [ 532.494436][T13362] ? security_capable+0x7e/0x260 [ 532.494472][T13362] ? ns_capable+0xd7/0x110 [ 532.494516][T13362] genl_rcv_msg+0x55c/0x800 [ 532.494566][T13362] ? __pfx_genl_rcv_msg+0x10/0x10 [ 532.494610][T13362] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 532.494679][T13362] netlink_rcv_skb+0x155/0x420 [ 532.494717][T13362] ? __pfx_genl_rcv_msg+0x10/0x10 [ 532.494764][T13362] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 532.494829][T13362] ? netlink_deliver_tap+0x1ae/0xd30 [ 532.494898][T13362] genl_rcv+0x28/0x40 [ 532.494936][T13362] netlink_unicast+0x53a/0x7f0 [ 532.494980][T13362] ? __pfx_netlink_unicast+0x10/0x10 [ 532.495032][T13362] netlink_sendmsg+0x8d1/0xdd0 [ 532.495079][T13362] ? __pfx_netlink_sendmsg+0x10/0x10 [ 532.495136][T13362] ____sys_sendmsg+0xa98/0xc70 [ 532.495178][T13362] ? copy_msghdr_from_user+0x10a/0x160 [ 532.495232][T13362] ? __pfx_____sys_sendmsg+0x10/0x10 [ 532.495282][T13362] ? try_to_wake_up+0xa2f/0x1680 [ 532.495329][T13362] ___sys_sendmsg+0x134/0x1d0 [ 532.495386][T13362] ? __pfx____sys_sendmsg+0x10/0x10 [ 532.495435][T13362] ? __lock_acquire+0x622/0x1c90 [ 532.495546][T13362] __sys_sendmsg+0x16d/0x220 [ 532.495603][T13362] ? __pfx___sys_sendmsg+0x10/0x10 [ 532.495657][T13362] ? __x64_sys_futex+0x1e0/0x4c0 [ 532.495735][T13362] do_syscall_64+0xcd/0x490 [ 532.495795][T13362] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 532.495850][T13362] RIP: 0033:0x7ff3c5f8e929 [ 532.495878][T13362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 532.495911][T13362] RSP: 002b:00007ff3c6d25038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 532.495943][T13362] RAX: ffffffffffffffda RBX: 00007ff3c61b5fa0 RCX: 00007ff3c5f8e929 [ 532.495967][T13362] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000006 [ 532.495988][T13362] RBP: 00007ff3c6010b39 R08: 0000000000000000 R09: 0000000000000000 [ 532.496009][T13362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 532.496035][T13362] R13: 0000000000000000 R14: 00007ff3c61b5fa0 R15: 00007ffc329d8a38 [ 532.496083][T13362] [ 532.545413][T13368] netlink: 'syz.1.1760': attribute type 1 has an invalid length. [ 532.962420][T13373] bcachefs: bch2_ioctl_fsck_offline() ret ENOMEM [ 534.395280][T13386] FAULT_INJECTION: forcing a failure. [ 534.395280][T13386] name failslab, interval 1, probability 0, space 0, times 0 [ 534.448334][T13386] CPU: 0 UID: 0 PID: 13386 Comm: syz.1.1765 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 534.448381][T13386] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 534.448400][T13386] Call Trace: [ 534.448411][T13386] [ 534.448422][T13386] dump_stack_lvl+0x16c/0x1f0 [ 534.448476][T13386] should_fail_ex+0x512/0x640 [ 534.448521][T13386] ? __kvmalloc_node_noprof+0x124/0x620 [ 534.448572][T13386] should_failslab+0xc2/0x120 [ 534.448603][T13386] __kvmalloc_node_noprof+0x137/0x620 [ 534.448659][T13386] ? seq_read_iter+0x826/0x12c0 [ 534.448697][T13386] ? __lock_acquire+0xb8a/0x1c90 [ 534.448748][T13386] ? seq_read_iter+0x826/0x12c0 [ 534.448784][T13386] seq_read_iter+0x826/0x12c0 [ 534.448826][T13386] ? __mutex_trylock_common+0xe9/0x250 [ 534.448888][T13386] kernfs_fop_read_iter+0x40f/0x5a0 [ 534.448922][T13386] ? rw_verify_area+0xcf/0x680 [ 534.448966][T13386] vfs_read+0x8bc/0xc60 [ 534.449018][T13386] ? __pfx___mutex_lock+0x10/0x10 [ 534.449066][T13386] ? __pfx_vfs_read+0x10/0x10 [ 534.449138][T13386] ksys_read+0x12a/0x250 [ 534.449182][T13386] ? __pfx_ksys_read+0x10/0x10 [ 534.449238][T13386] do_syscall_64+0xcd/0x490 [ 534.449289][T13386] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 534.449323][T13386] RIP: 0033:0x7f3de018e929 [ 534.449348][T13386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 534.449379][T13386] RSP: 002b:00007f3de0fb8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 534.449410][T13386] RAX: ffffffffffffffda RBX: 00007f3de03b5fa0 RCX: 00007f3de018e929 [ 534.449432][T13386] RDX: 0000000000000011 RSI: 00002000000000c0 RDI: 0000000000000003 [ 534.449452][T13386] RBP: 00007f3de0fb8090 R08: 0000000000000000 R09: 0000000000000000 [ 534.449472][T13386] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 534.449491][T13386] R13: 0000000000000000 R14: 00007f3de03b5fa0 R15: 00007ffc8ac05ba8 [ 534.449535][T13386] [ 534.463831][T13388] device-mapper: ioctl: Unable to rename non-existent device, to uuid „ [ 534.872652][T13399] FAULT_INJECTION: forcing a failure. [ 534.872652][T13399] name failslab, interval 1, probability 0, space 0, times 0 [ 534.887210][T13399] CPU: 0 UID: 0 PID: 13399 Comm: syz.3.1770 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 534.887259][T13399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 534.887280][T13399] Call Trace: [ 534.887291][T13399] [ 534.887304][T13399] dump_stack_lvl+0x16c/0x1f0 [ 534.887369][T13399] should_fail_ex+0x512/0x640 [ 534.887418][T13399] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 534.887475][T13399] should_failslab+0xc2/0x120 [ 534.887508][T13399] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 534.887560][T13399] ? __kernfs_new_node+0xd2/0x8e0 [ 534.887610][T13399] __kernfs_new_node+0xd2/0x8e0 [ 534.887660][T13399] ? __pfx___kernfs_new_node+0x10/0x10 [ 534.887716][T13399] ? find_held_lock+0x2b/0x80 [ 534.887753][T13399] ? kernfs_root+0xee/0x2a0 [ 534.887807][T13399] kernfs_new_node+0x13c/0x1e0 [ 534.887868][T13399] __kernfs_create_file+0x53/0x350 [ 534.887912][T13399] sysfs_add_file_mode_ns+0x207/0x3c0 [ 534.887967][T13399] internal_create_group+0x578/0xf30 [ 534.888024][T13399] ? __pfx_internal_create_group+0x10/0x10 [ 534.888080][T13399] ? kernfs_create_link+0x1bd/0x240 [ 534.888126][T13399] internal_create_groups+0x9d/0x150 [ 534.888178][T13399] device_add+0xf30/0x1a70 [ 534.888219][T13399] ? __pfx_device_add+0x10/0x10 [ 534.888254][T13399] ? lockdep_init_map_type+0x5c/0x280 [ 534.888303][T13399] ? __init_waitqueue_head+0xca/0x150 [ 534.888345][T13399] netdev_register_kobject+0x182/0x3a0 [ 534.888397][T13399] register_netdevice+0x13dc/0x2270 [ 534.888462][T13399] ? __pfx_register_netdevice+0x10/0x10 [ 534.888531][T13399] internal_dev_create+0x2d3/0x520 [ 534.888568][T13399] ovs_vport_add+0x144/0x4d0 [ 534.888624][T13399] new_vport+0x16/0x1d0 [ 534.888667][T13399] ovs_dp_cmd_new+0x6ba/0xe60 [ 534.888725][T13399] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 534.888781][T13399] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 534.888824][T13399] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 534.888876][T13399] genl_family_rcv_msg_doit+0x206/0x2f0 [ 534.888920][T13399] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 534.888960][T13399] ? trace_cap_capable+0x18d/0x200 [ 534.889003][T13399] ? bpf_lsm_capable+0x9/0x10 [ 534.889042][T13399] ? security_capable+0x7e/0x260 [ 534.889075][T13399] ? ns_capable+0xd7/0x110 [ 534.889115][T13399] genl_rcv_msg+0x55c/0x800 [ 534.889159][T13399] ? __pfx_genl_rcv_msg+0x10/0x10 [ 534.889200][T13399] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 534.889262][T13399] netlink_rcv_skb+0x155/0x420 [ 534.889296][T13399] ? __pfx_genl_rcv_msg+0x10/0x10 [ 534.889338][T13399] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 534.889400][T13399] ? netlink_deliver_tap+0x1ae/0xd30 [ 534.889463][T13399] genl_rcv+0x28/0x40 [ 534.889497][T13399] netlink_unicast+0x53a/0x7f0 [ 534.889538][T13399] ? __pfx_netlink_unicast+0x10/0x10 [ 534.889585][T13399] netlink_sendmsg+0x8d1/0xdd0 [ 534.889627][T13399] ? __pfx_netlink_sendmsg+0x10/0x10 [ 534.889678][T13399] ____sys_sendmsg+0xa98/0xc70 [ 534.889717][T13399] ? copy_msghdr_from_user+0x10a/0x160 [ 534.889766][T13399] ? __pfx_____sys_sendmsg+0x10/0x10 [ 534.889812][T13399] ? __pfx_futex_wake_mark+0x10/0x10 [ 534.889866][T13399] ___sys_sendmsg+0x134/0x1d0 [ 534.889918][T13399] ? __pfx____sys_sendmsg+0x10/0x10 [ 534.889964][T13399] ? __lock_acquire+0x622/0x1c90 [ 534.890061][T13399] __sys_sendmsg+0x16d/0x220 [ 534.890112][T13399] ? __pfx___sys_sendmsg+0x10/0x10 [ 534.890160][T13399] ? __x64_sys_futex+0x1e0/0x4c0 [ 534.890227][T13399] do_syscall_64+0xcd/0x490 [ 534.890280][T13399] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 534.890312][T13399] RIP: 0033:0x7ff3c5f8e929 [ 534.890340][T13399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 534.890394][T13399] RSP: 002b:00007ff3c6d25038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 534.890428][T13399] RAX: ffffffffffffffda RBX: 00007ff3c61b5fa0 RCX: 00007ff3c5f8e929 [ 534.890450][T13399] RDX: 0000000002000000 RSI: 0000200000000080 RDI: 0000000000000006 [ 534.890473][T13399] RBP: 00007ff3c6010b39 R08: 0000000000000000 R09: 0000000000000000 [ 534.890494][T13399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 534.890514][T13399] R13: 0000000000000000 R14: 00007ff3c61b5fa0 R15: 00007ffc329d8a38 [ 534.890559][T13399] [ 536.562870][T13427] FAULT_INJECTION: forcing a failure. [ 536.562870][T13427] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 536.576250][T13427] CPU: 0 UID: 0 PID: 13427 Comm: syz.1.1777 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 536.576292][T13427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 536.576310][T13427] Call Trace: [ 536.576321][T13427] [ 536.576332][T13427] dump_stack_lvl+0x16c/0x1f0 [ 536.576385][T13427] should_fail_ex+0x512/0x640 [ 536.576436][T13427] _copy_from_user+0x2e/0xd0 [ 536.576498][T13427] core_sys_select+0x35b/0xc10 [ 536.576553][T13427] ? __pfx_core_sys_select+0x10/0x10 [ 536.576606][T13427] ? proc_fail_nth_write+0x9f/0x250 [ 536.576679][T13427] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 536.576740][T13427] kern_select+0x15d/0x1e0 [ 536.576784][T13427] ? __pfx_kern_select+0x10/0x10 [ 536.576832][T13427] ? __pfx_ksys_write+0x10/0x10 [ 536.576882][T13427] __x64_sys_select+0xbd/0x160 [ 536.576922][T13427] ? do_syscall_64+0x91/0x490 [ 536.576968][T13427] ? lockdep_hardirqs_on+0x7c/0x110 [ 536.577015][T13427] do_syscall_64+0xcd/0x490 [ 536.577065][T13427] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 536.577097][T13427] RIP: 0033:0x7f3de018e929 [ 536.577122][T13427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 536.577153][T13427] RSP: 002b:00007f3de0fb8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 536.577184][T13427] RAX: ffffffffffffffda RBX: 00007f3de03b5fa0 RCX: 00007f3de018e929 [ 536.577205][T13427] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 536.577224][T13427] RBP: 00007f3de0fb8090 R08: 0000000000000000 R09: 0000000000000000 [ 536.577243][T13427] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001 [ 536.577263][T13427] R13: 0000000000000000 R14: 00007f3de03b5fa0 R15: 00007ffc8ac05ba8 [ 536.577304][T13427] [ 536.864019][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 536.870632][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 536.884308][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 536.890856][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 536.901500][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 536.907934][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 536.948683][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 536.975989][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 537.633807][T13449] FAULT_INJECTION: forcing a failure. [ 537.633807][T13449] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 537.658402][T13449] CPU: 0 UID: 0 PID: 13449 Comm: syz.1.1782 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 537.658445][T13449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 537.658462][T13449] Call Trace: [ 537.658471][T13449] [ 537.658482][T13449] dump_stack_lvl+0x16c/0x1f0 [ 537.658532][T13449] should_fail_ex+0x512/0x640 [ 537.658583][T13449] _copy_from_user+0x2e/0xd0 [ 537.658631][T13449] move_addr_to_kernel+0x65/0x170 [ 537.658669][T13449] __sys_connect+0xb1/0x160 [ 537.658708][T13449] ? __pfx___sys_connect+0x10/0x10 [ 537.658762][T13449] ? __pfx_ksys_write+0x10/0x10 [ 537.658815][T13449] __x64_sys_connect+0x72/0xb0 [ 537.658851][T13449] ? lockdep_hardirqs_on+0x7c/0x110 [ 537.658894][T13449] do_syscall_64+0xcd/0x490 [ 537.658941][T13449] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 537.658971][T13449] RIP: 0033:0x7f3de018e929 [ 537.658994][T13449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 537.659025][T13449] RSP: 002b:00007f3de0fb8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 537.659052][T13449] RAX: ffffffffffffffda RBX: 00007f3de03b5fa0 RCX: 00007f3de018e929 [ 537.659072][T13449] RDX: 0000000000000055 RSI: 00002000000018c0 RDI: 0000000000000003 [ 537.659091][T13449] RBP: 00007f3de0fb8090 R08: 0000000000000000 R09: 0000000000000000 [ 537.659110][T13449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 537.659129][T13449] R13: 0000000000000000 R14: 00007f3de03b5fa0 R15: 00007ffc8ac05ba8 [ 537.659176][T13449] [ 537.907608][T13456] syz_tun: tun_chr_ioctl cmd 1074025676 [ 537.923947][T13456] syz_tun: owner set to 3 [ 538.040500][T13456] blkio.reset_stats is deprecated [ 538.605974][T13457] random: crng reseeded on system resumption [ 539.056612][T13480] FAULT_INJECTION: forcing a failure. [ 539.056612][T13480] name failslab, interval 1, probability 0, space 0, times 0 [ 539.093575][T13480] CPU: 1 UID: 0 PID: 13480 Comm: syz.0.1789 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 539.093622][T13480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 539.093641][T13480] Call Trace: [ 539.093652][T13480] [ 539.093663][T13480] dump_stack_lvl+0x16c/0x1f0 [ 539.093718][T13480] should_fail_ex+0x512/0x640 [ 539.093765][T13480] ? __kmalloc_noprof+0xbf/0x510 [ 539.093815][T13480] ? kernfs_fop_write_iter+0x237/0x510 [ 539.093847][T13480] should_failslab+0xc2/0x120 [ 539.093878][T13480] __kmalloc_noprof+0xd2/0x510 [ 539.093938][T13480] kernfs_fop_write_iter+0x237/0x510 [ 539.093980][T13480] vfs_write+0x6c4/0x1150 [ 539.094028][T13480] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 539.094066][T13480] ? __pfx___mutex_lock+0x10/0x10 [ 539.094115][T13480] ? __pfx_vfs_write+0x10/0x10 [ 539.094192][T13480] ksys_write+0x12a/0x250 [ 539.094238][T13480] ? __pfx_ksys_write+0x10/0x10 [ 539.094306][T13480] do_syscall_64+0xcd/0x490 [ 539.094359][T13480] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 539.094392][T13480] RIP: 0033:0x7f8cd798e929 [ 539.094417][T13480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 539.094449][T13480] RSP: 002b:00007f8cd882a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 539.094479][T13480] RAX: ffffffffffffffda RBX: 00007f8cd7bb5fa0 RCX: 00007f8cd798e929 [ 539.094502][T13480] RDX: 0000000000000001 RSI: 0000200000000080 RDI: 0000000000000003 [ 539.094522][T13480] RBP: 00007f8cd882a090 R08: 0000000000000000 R09: 0000000000000000 [ 539.094542][T13480] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 539.094562][T13480] R13: 0000000000000000 R14: 00007f8cd7bb5fa0 R15: 00007fffea008228 [ 539.094605][T13480] [ 540.044460][T13500] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1795'. [ 540.215623][T13506] ================================================================== [ 540.223740][T13506] BUG: KASAN: slab-out-of-bounds in afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 540.232472][T13506] Read of size 1 at addr ffff88805b2c54a7 by task syz.2.1795/13506 [ 540.240412][T13506] [ 540.242773][T13506] CPU: 1 UID: 0 PID: 13506 Comm: syz.2.1795 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 540.242818][T13506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 540.242838][T13506] Call Trace: [ 540.242849][T13506] [ 540.242861][T13506] dump_stack_lvl+0x116/0x1f0 [ 540.242922][T13506] print_report+0xcd/0x680 [ 540.242954][T13506] ? __virt_addr_valid+0x81/0x610 [ 540.242990][T13506] ? __phys_addr+0xe8/0x180 [ 540.243026][T13506] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 540.243063][T13506] kasan_report+0xe0/0x110 [ 540.243093][T13506] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 540.243135][T13506] afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 540.243171][T13506] ? __lock_acquire+0xb8a/0x1c90 [ 540.243233][T13506] ? __pfx_afs_proc_addr_prefs_write+0x10/0x10 [ 540.243276][T13506] ? find_held_lock+0x2b/0x80 [ 540.243305][T13506] ? __might_fault+0xe3/0x190 [ 540.243348][T13506] ? __might_fault+0xe3/0x190 [ 540.243391][T13506] ? __might_fault+0x13b/0x190 [ 540.243445][T13506] ? proc_simple_write+0x114/0x1b0 [ 540.243475][T13506] proc_simple_write+0x114/0x1b0 [ 540.243506][T13506] ? __pfx_proc_simple_write+0x10/0x10 [ 540.243537][T13506] proc_reg_write+0x23d/0x330 [ 540.243583][T13506] ? __pfx_proc_reg_write+0x10/0x10 [ 540.243627][T13506] vfs_writev+0x5df/0xde0 [ 540.243666][T13506] ? __pfx___mutex_trylock_common+0x10/0x10 [ 540.243717][T13506] ? __pfx_vfs_writev+0x10/0x10 [ 540.243758][T13506] ? __mutex_lock+0x1ca/0xb90 [ 540.243803][T13506] ? kmem_cache_free+0x2d1/0x4d0 [ 540.243850][T13506] ? __pfx___mutex_lock+0x10/0x10 [ 540.243931][T13506] ? __fget_files+0x20e/0x3c0 [ 540.243981][T13506] ? do_writev+0x132/0x340 [ 540.244023][T13506] do_writev+0x132/0x340 [ 540.244066][T13506] ? __pfx_do_writev+0x10/0x10 [ 540.244116][T13506] do_syscall_64+0xcd/0x490 [ 540.244185][T13506] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 540.244221][T13506] RIP: 0033:0x7f5bd698e929 [ 540.244246][T13506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 540.244281][T13506] RSP: 002b:00007f5bd7884038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 540.244313][T13506] RAX: ffffffffffffffda RBX: 00007f5bd6bb6160 RCX: 00007f5bd698e929 [ 540.244337][T13506] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 000000000000000a [ 540.244359][T13506] RBP: 00007f5bd6a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 540.244382][T13506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 540.244403][T13506] R13: 0000000000000000 R14: 00007f5bd6bb6160 R15: 00007ffe92c6b618 [ 540.244439][T13506] [ 540.244450][T13506] [ 540.505320][T13506] Allocated by task 13506: [ 540.509762][T13506] kasan_save_stack+0x33/0x60 [ 540.514488][T13506] kasan_save_track+0x14/0x30 [ 540.519221][T13506] __kasan_kmalloc+0xaa/0xb0 [ 540.523860][T13506] __kmalloc_node_track_caller_noprof+0x221/0x510 [ 540.530340][T13506] memdup_user_nul+0x2b/0x120 [ 540.535068][T13506] proc_simple_write+0xc7/0x1b0 [ 540.539950][T13506] proc_reg_write+0x23d/0x330 [ 540.544670][T13506] vfs_writev+0x5df/0xde0 [ 540.549040][T13506] do_writev+0x132/0x340 [ 540.553322][T13506] do_syscall_64+0xcd/0x490 [ 540.557880][T13506] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 540.563815][T13506] [ 540.566161][T13506] The buggy address belongs to the object at ffff88805b2c54a0 [ 540.566161][T13506] which belongs to the cache kmalloc-8 of size 8 [ 540.579910][T13506] The buggy address is located 0 bytes to the right of [ 540.579910][T13506] allocated 7-byte region [ffff88805b2c54a0, ffff88805b2c54a7) [ 540.594289][T13506] [ 540.596635][T13506] The buggy address belongs to the physical page: [ 540.603108][T13506] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5b2c5 [ 540.611903][T13506] anon flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 540.619479][T13506] page_type: f5(slab) [ 540.623495][T13506] raw: 00fff00000000000 ffff88801b841500 0000000000000000 dead000000000001 [ 540.632109][T13506] raw: 0000000000000000 0000000080800080 00000000f5000000 0000000000000000 [ 540.640730][T13506] page dumped because: kasan: bad access detected [ 540.647172][T13506] page_owner tracks the page as allocated [ 540.652908][T13506] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 10563, tgid 10560 (syz.3.1164), ts 380131217103, free_ts 380126633215 [ 540.672416][T13506] post_alloc_hook+0x1c0/0x230 [ 540.677263][T13506] get_page_from_freelist+0x1321/0x3890 [ 540.683056][T13506] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 540.689139][T13506] alloc_pages_mpol+0x1fb/0x550 [ 540.694028][T13506] new_slab+0x23b/0x330 [ 540.698224][T13506] ___slab_alloc+0xd9c/0x1940 [ 540.702942][T13506] __slab_alloc.constprop.0+0x56/0xb0 [ 540.708358][T13506] __kmalloc_node_track_caller_noprof+0x2ee/0x510 [ 540.714824][T13506] kstrndup+0x6d/0x160 [ 540.718939][T13506] bonding_sysfs_store_option+0x67/0x120 [ 540.724605][T13506] dev_attr_store+0x58/0x80 [ 540.729144][T13506] sysfs_kf_write+0xef/0x150 [ 540.733767][T13506] kernfs_fop_write_iter+0x351/0x510 [ 540.739087][T13506] vfs_write+0x6c4/0x1150 [ 540.743461][T13506] ksys_write+0x12a/0x250 [ 540.747827][T13506] do_syscall_64+0xcd/0x490 [ 540.752377][T13506] page last free pid 10563 tgid 10560 stack trace: [ 540.758895][T13506] __free_frozen_pages+0x7fe/0x1180 [ 540.764151][T13506] qlist_free_all+0x4d/0x120 [ 540.768791][T13506] kasan_quarantine_reduce+0x195/0x1e0 [ 540.774299][T13506] __kasan_slab_alloc+0x69/0x90 [ 540.779200][T13506] __kmalloc_noprof+0x1d4/0x510 [ 540.784101][T13506] kernfs_fop_write_iter+0x237/0x510 [ 540.789426][T13506] vfs_write+0x6c4/0x1150 [ 540.793801][T13506] ksys_write+0x12a/0x250 [ 540.798202][T13506] do_syscall_64+0xcd/0x490 [ 540.802752][T13506] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 540.808676][T13506] [ 540.811020][T13506] Memory state around the buggy address: [ 540.816675][T13506] ffff88805b2c5380: fa fc fc fc fa fc fc fc fa fc fc fc 07 fc fc fc [ 540.824763][T13506] ffff88805b2c5400: 00 fc fc fc 05 fc fc fc fa fc fc fc fa fc fc fc [ 540.832872][T13506] >ffff88805b2c5480: fa fc fc fc 07 fc fc fc 00 fc fc fc fa fc fc fc [ 540.840954][T13506] ^ [ 540.846080][T13506] ffff88805b2c5500: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc [ 540.854165][T13506] ffff88805b2c5580: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc [ 540.862331][T13506] ================================================================== [ 540.932194][T13506] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 540.939485][T13506] CPU: 0 UID: 0 PID: 13506 Comm: syz.2.1795 Not tainted 6.16.0-rc4-syzkaller-00348-g772b78c2abd8 #0 PREEMPT(full) [ 540.951605][T13506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 540.961680][T13506] Call Trace: [ 540.964970][T13506] [ 540.967911][T13506] dump_stack_lvl+0x3d/0x1f0 [ 540.972528][T13506] panic+0x71c/0x800 [ 540.976448][T13506] ? __pfx_panic+0x10/0x10 [ 540.980890][T13506] ? mark_held_locks+0x49/0x80 [ 540.985686][T13506] ? preempt_schedule_thunk+0x16/0x30 [ 540.991088][T13506] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 540.997095][T13506] ? preempt_schedule_common+0x44/0xc0 [ 541.002589][T13506] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 541.008591][T13506] check_panic_on_warn+0xab/0xb0 [ 541.013572][T13506] end_report+0x107/0x170 [ 541.017929][T13506] kasan_report+0xee/0x110 [ 541.022379][T13506] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 541.028415][T13506] afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 541.034242][T13506] ? __lock_acquire+0xb8a/0x1c90 [ 541.039216][T13506] ? __pfx_afs_proc_addr_prefs_write+0x10/0x10 [ 541.045394][T13506] ? find_held_lock+0x2b/0x80 [ 541.050095][T13506] ? __might_fault+0xe3/0x190 [ 541.054802][T13506] ? __might_fault+0xe3/0x190 [ 541.059510][T13506] ? __might_fault+0x13b/0x190 [ 541.064309][T13506] ? proc_simple_write+0x114/0x1b0 [ 541.069434][T13506] proc_simple_write+0x114/0x1b0 [ 541.074401][T13506] ? __pfx_proc_simple_write+0x10/0x10 [ 541.079891][T13506] proc_reg_write+0x23d/0x330 [ 541.084598][T13506] ? __pfx_proc_reg_write+0x10/0x10 [ 541.089839][T13506] vfs_writev+0x5df/0xde0 [ 541.094200][T13506] ? __pfx___mutex_trylock_common+0x10/0x10 [ 541.100128][T13506] ? __pfx_vfs_writev+0x10/0x10 [ 541.105004][T13506] ? __mutex_lock+0x1ca/0xb90 [ 541.109709][T13506] ? kmem_cache_free+0x2d1/0x4d0 [ 541.114776][T13506] ? __pfx___mutex_lock+0x10/0x10 [ 541.119834][T13506] ? __fget_files+0x20e/0x3c0 [ 541.124561][T13506] ? do_writev+0x132/0x340 [ 541.129031][T13506] do_writev+0x132/0x340 [ 541.133348][T13506] ? __pfx_do_writev+0x10/0x10 [ 541.138150][T13506] do_syscall_64+0xcd/0x490 [ 541.142682][T13506] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 541.148592][T13506] RIP: 0033:0x7f5bd698e929 [ 541.153015][T13506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 541.172641][T13506] RSP: 002b:00007f5bd7884038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 541.181073][T13506] RAX: ffffffffffffffda RBX: 00007f5bd6bb6160 RCX: 00007f5bd698e929 [ 541.189058][T13506] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 000000000000000a [ 541.197052][T13506] RBP: 00007f5bd6a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 541.205038][T13506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 541.213021][T13506] R13: 0000000000000000 R14: 00007f5bd6bb6160 R15: 00007ffe92c6b618 [ 541.221013][T13506] [ 541.224410][T13506] Kernel Offset: disabled [ 541.228752][T13506] Rebooting in 86400 seconds..