last executing test programs: 4.031162352s ago: executing program 2 (id=335): rseq$auto(&(0x7f00000002c0)={0xe, 0x400, 0x0, 0x20006, 0xffffffff, 0x2}, 0xfffffff4, 0x0, 0x7) ioperm$auto(0x3, 0xe, 0x2000000000000149) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000380), 0x101100, 0x0) r0 = socket(0x10, 0x2, 0x0) r1 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_GET_TUNSRC(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)={0x28, r1, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@SEG6_ATTR_DST={0x14, 0x1, @private0={0xfc, 0x0, '\x00', 0x1}}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000088}, 0x20000000) kcmp$auto(0x1, 0x100000001, 0x5, 0x8f0, 0x24000) unshare$auto(0x40000080) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r3, 0x936355e497c8b7e3, 0x70bd25, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x48000) 3.66993508s ago: executing program 2 (id=339): set_mempolicy$auto(0x80, &(0x7f0000000000)=0xffffffffffffff81, 0x5) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = io_uring_setup$auto(0x6, 0x0) ioctl$auto(0x3, 0x80000541b, 0x38) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000000c0)="8dc9fc604f721b4b9b6fb75391e7e39755cc3cb395bbeb92c3807417bf1ff9a25a49c991b8928467fa6892bd2134d2b370b5483301f7f22130c3ebecaa9465c0c6c5641ad82adc8f2b12ca943d4de3658dd514b1fb698e93894b0dd0b3d306c32943eadea51e79b452099c1418bfbec96103e85c850857da852c9c4412a8d0c6907db9ef3ca7895f954c47b90d47baca32a1a2be6dd5c144bd78062790ea1b7ec15c4bfd2e5ef3aea5d501aa35cfe9bff7eee7c2f4", 0xb5) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000005c0), 0x2000, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, 0x0) pselect6$auto(0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) 2.296602062s ago: executing program 0 (id=341): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x0, 0x2000000000009, 0x3, 0x7, 0xfffffffffffff715, 0x5, 0x7fff, 0x2000000000010006, 0x0, 0x7, 0x8, 0x2, 0x7, 0xaf, 0x9, 0x2, 0x3, 0x8001, 0x6, 0x0, 0x0, 0x40000002, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe9e]}, 0x200, 0xfffffffb) socket(0x2, 0x3, 0x100) r0 = socket(0x1d, 0x2, 0x7) r1 = socket(0x2, 0xa, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r2}, 0x6a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'vcan0\x00', 0x0}) connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r3}, 0x18) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 2.221015894s ago: executing program 3 (id=342): mmap$auto(0x0, 0xb, 0x6, 0xeb1, 0x3ff, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0x2, 0x1, 0x84) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) pipe$auto(0x0) r0 = socket(0x11, 0x80003, 0x200300) setsockopt$auto(r0, 0x107, 0x18, 0x0, 0x9) 2.072361035s ago: executing program 2 (id=344): socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) r0 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r0, 0x10f, 0x87, 0x0, 0x14) read$auto(0x4, 0x0, 0xfdef) r1 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f000000c180), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_NAME_TABLE_GET(r2, &(0x7f000000ca40)={0x0, 0x0, &(0x7f000000ca00)={&(0x7f000000c1c0)={0x14, r3, 0x35712d2af9a9dbe3, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x841}, 0x4) 2.01213164s ago: executing program 3 (id=346): close_range$auto(0x0, 0xfffffffffffff001, 0x2) r0 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer2\x00', 0x40000, 0x0) ioctl$auto_FS_IOC_FSGETXATTR(r0, 0x801c581f, 0xffffffffffffffff) r1 = socket(0x2, 0x1, 0x0) openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000040), 0x101800, 0x0) socket(0x22, 0x3, 0xee0) setsockopt$auto_SO_MAX_PACING_RATE(r1, 0xea, 0x2f, &(0x7f0000000100)='*\x00', 0x10000) socket(0x10, 0x2, 0x0) memfd_create$auto(&(0x7f0000000000)='\xc4--:\xdd:,./-${\x00', 0x4) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/lapb3/threaded\x00', 0x8a801, 0x0) write$auto(r2, &(0x7f0000000000)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) 1.917844922s ago: executing program 3 (id=347): msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_ETHTOOL_MSG_PHY_GET(0xffffffffffffffff, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="010326bd7000ff88d30e2d000000180001801400020069705f76"], 0x2c}, 0x1, 0x0, 0x0, 0x2404c012}, 0x80) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NFSD_CMD_THREADS_GET(r1, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000017c0)={&(0x7f0000001780)={0x14, 0x0, 0x4, 0x70bd26, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x44848}, 0x4000000) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000300), r1) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), r1) sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(r1, &(0x7f0000002280)={0x0, 0x0, &(0x7f0000002240)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="030527bd7000fbdbdf25040000000c000180080001"], 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x40) write$auto(r0, &(0x7f0000000000)='-\x00', 0xfdef) 1.852631935s ago: executing program 0 (id=349): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) bpf$auto(0xfffffffe, &(0x7f00000001c0)=@test={0xffffffffffffffff, 0xffff, 0xfffff0b6, 0xffff, 0x88, 0xac1, 0x2, 0x36242398, 0x7ff, 0x3bb, 0x8, 0xffff, 0x1, 0x81, 0x68198}, 0x6f2) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) io_uring_setup$auto(0x8, &(0x7f0000000140)={0x3ff, 0x3, 0x9, 0x10001, 0x12, 0xc05, r0, [0x7ff, 0xfff, 0x8], {0x9, 0x1, 0x5, 0x0, 0x400, 0x3, 0x3fe0, 0x26c, 0x1000000000e8}, {0x2, 0x2, 0x54f1, 0x0, 0x101, 0xff, 0x8d8, 0xa, 0x3}}) sysfs$auto(0x2, 0x23, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004814}, 0x800) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22040, 0x75) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000) r1 = socket(0x10, 0x2, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.733055821s ago: executing program 0 (id=350): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2b, 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x7) sendto$auto(0x3, 0x0, 0xfdef, 0x101, 0x0, 0x1c) 1.671592321s ago: executing program 1 (id=351): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/module/msr/parameters/allow_writes\x00', 0x80302, 0x0) dup2$auto(0x5, 0x4) sendfile$auto(r0, r0, 0x0, 0x7ffff000) bind$auto(0x3, 0x0, 0x6a) r1 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0) setrlimit$auto(0x7, &(0x7f0000001380)={0x5, 0x6}) ioctl$auto(r1, 0x64c6, 0x1e2) syz_genetlink_get_family_id$auto_smc_gen_netlink(0x0, 0xffffffffffffffff) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) write$auto(r2, 0x0, 0x81) mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) clock_adjtime$auto(0xfffffffffffffffb, 0x0) 1.653087796s ago: executing program 3 (id=352): sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) mmap$auto(0x0, 0x40000a, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x1e, 0x1, 0x0) getsockname$auto(r0, &(0x7f0000000000), &(0x7f0000000040)=0x3) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r1 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.53373303s ago: executing program 1 (id=353): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) r0 = socket(0x2, 0x80802, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) setsockopt$auto(r0, 0x11, 0x67, 0x0, 0x8) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) 1.403175523s ago: executing program 0 (id=354): socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) connect$auto(0x3, 0x0, 0x55) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x3, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4000894}, 0x4000000) bpf$auto(0x4, &(0x7f00000001c0)=@bpf_attr_11={0xa, 0x10001, 0x2, 0x8, 0x8, 0x7, 0x82, r0}, 0x6f3) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYBLOB="010027bd"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x10, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0xe) 1.360292032s ago: executing program 3 (id=355): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) r0 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) getdents64$auto(r0, 0x0, 0x400) clone$auto(0x100000020003b49, 0x80000000002, 0x0, 0x0, 0x4) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x2, 0xd, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x2, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}}) landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0) landlock_add_rule$auto(r1, 0x1, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) 1.295022503s ago: executing program 1 (id=356): close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/0000:00:03.0/resource\x00', 0xa00, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_CGROUPSTATS_CMD_GET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="13000000", @ANYRES16=0x0, @ANYBLOB="2586"], 0x1c}, 0x1, 0x0, 0x0, 0x400c9d0}, 0x4080) r1 = socket(0x10, 0x2, 0x14) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xffffffffffffff14, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r0], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x200440c0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51) sendmmsg$auto(r1, &(0x7f0000000080)={{0x0, 0x8001c01, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x1}, 0x7}, 0x3d55, 0x0) 1.157856306s ago: executing program 1 (id=357): close_range$auto(0x2, 0x8, 0x0) socket(0x11, 0x80003, 0x300) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x501, 0x0) fcntl$auto(0x3, 0x4, 0xa553) close_range$auto(0x2, 0x8, 0x0) socket(0x11, 0x3, 0x1) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) ioctl$auto(r0, 0x2, 0x9) ioctl$auto(r0, 0x400c4d07, r0) mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) 1.157712721s ago: executing program 3 (id=358): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = socket(0x2, 0x1, 0x106) getsockopt$auto_SO_NOFCS(r0, 0x5, 0x2b, 0x0, 0x0) connect$auto(0xffffffffffffffff, 0x0, 0x7) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) write$auto(r1, 0x0, 0x100000a3d9) socket(0x11, 0x80003, 0x300) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @local}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x51) 1.120471858s ago: executing program 2 (id=359): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xffffffffffffffff, 0x2) getcwd$auto(0x0, 0xffffffffffffffff) fanotify_init$auto(0xc00, 0x2000000000002) r0 = open(&(0x7f0000000000)='./file1\x00', 0x1652c2, 0xe1d2b27bdc14aa98) fanotify_mark$auto(0x400000000000, 0x105, 0xf2b, r0, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40342, 0x22) socket(0xa, 0x5, 0x0) inotify_init1$auto(0x3000000000000) inotify_add_watch$auto(0x4, 0x0, 0xe6e) open(&(0x7f0000000000)='./file0\x00', 0x4242, 0x0) 960.485613ms ago: executing program 2 (id=360): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x22, 0x3, 0x0) socketpair$auto(0xfffffffd, 0x5, 0xffffffff, 0x0) unshare$auto(0x40000080) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) write$auto(0x3, 0x0, 0xffd8) 949.254131ms ago: executing program 0 (id=361): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x149041, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ttyS0\x00', 0x1, 0x0) socket(0x11, 0x80003, 0x300) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0xc, 0x1, 0x2, 0x4, 0x15f4da0e, 0x3, 0xd08, 0xc, 0x8, 0x4, 0x6d3f, 0x9, 0x2, 0x4000000000000d]}, 0x0) syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) close_range$auto(0x2, 0x8, 0x0) write$auto(r0, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9) 713.483911ms ago: executing program 1 (id=362): mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) r0 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) getdents64$auto(r0, 0x0, 0x400) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x2a, 0x2, 0x88) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'team0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r3, r2, 0x4, 0x1, r1, @relative_id=0x13, 0xe600}, 0xf) r4 = open(0x0, 0x261c2, 0x84) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r4, 0x0, 0x3}, 0xc) 552.777914ms ago: executing program 1 (id=363): sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(0xffffffffffffffff, 0x0, 0x40000) mmap$auto(0x0, 0x99, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0) read$auto(r0, 0x0, 0x7) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) close_range$auto(r0, r0, 0x4) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, 0x0, 0x2100, 0x0) fstatfs$auto(r0, 0x0) unshare$auto(0x40000080) 42.293173ms ago: executing program 0 (id=364): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x121000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0xc4) execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0xa, 0x2, 0x73) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socket(0x1, 0x1, 0x0) bind$auto(0x3, 0x0, 0x6b) r0 = socket(0x1, 0x1, 0x0) bind$auto(r0, 0x0, 0xe) 0s ago: executing program 2 (id=365): mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x0) r0 = socket(0x10, 0x2, 0x0) openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0x1b}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) write$auto_proc_mem_operations_base(0xffffffffffffffff, &(0x7f0000000000)="351ff6218163cce8505bf40fca856149f185354f86f6766b73aeb066b2a65290e689cb5a9cd45a63766508ae821ea42a555887244ce3a5676c4a8f62c1dadfd6efc8b8dd0eae0c03292f536b2b5042c923", 0x51) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="180027"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.131' (ED25519) to the list of known hosts. [ 80.315820][ T5820] cgroup: Unknown subsys name 'net' [ 80.466896][ T5820] cgroup: Unknown subsys name 'cpuset' [ 80.475826][ T5820] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 81.956152][ T5820] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 83.889901][ T5832] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 83.898339][ T5832] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 83.909140][ T5832] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 83.944753][ T5835] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 83.953301][ T5835] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 83.960883][ T5835] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 83.969258][ T5835] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 83.978382][ T5835] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 83.992164][ T5836] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 84.000317][ T5836] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 84.077669][ T5836] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 84.089732][ T5836] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 84.104090][ T5836] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 84.124836][ T5836] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 84.132683][ T5836] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 84.133725][ T5153] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 84.159476][ T5153] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 84.167024][ T5153] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 84.175139][ T5153] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 84.182835][ T5153] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 84.551798][ T5829] chnl_net:caif_netlink_parms(): no params data found [ 84.661626][ T5833] chnl_net:caif_netlink_parms(): no params data found [ 84.762561][ T5829] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.770577][ T5829] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.778831][ T5829] bridge_slave_0: entered allmulticast mode [ 84.788805][ T5829] bridge_slave_0: entered promiscuous mode [ 84.802671][ T5829] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.809964][ T5829] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.817771][ T5829] bridge_slave_1: entered allmulticast mode [ 84.825541][ T5829] bridge_slave_1: entered promiscuous mode [ 84.856721][ T5839] chnl_net:caif_netlink_parms(): no params data found [ 84.895985][ T5841] chnl_net:caif_netlink_parms(): no params data found [ 84.924996][ T5829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.936806][ T5829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 85.013068][ T5829] team0: Port device team_slave_0 added [ 85.042023][ T5829] team0: Port device team_slave_1 added [ 85.085911][ T5833] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.093087][ T5833] bridge0: port 1(bridge_slave_0) entered disabled state [ 85.100829][ T5833] bridge_slave_0: entered allmulticast mode [ 85.108755][ T5833] bridge_slave_0: entered promiscuous mode [ 85.157814][ T5833] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.166576][ T5833] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.173784][ T5833] bridge_slave_1: entered allmulticast mode [ 85.180870][ T5833] bridge_slave_1: entered promiscuous mode [ 85.226462][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.233413][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.259635][ T5829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 85.282931][ T5839] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.290177][ T5839] bridge0: port 1(bridge_slave_0) entered disabled state [ 85.297722][ T5839] bridge_slave_0: entered allmulticast mode [ 85.304759][ T5839] bridge_slave_0: entered promiscuous mode [ 85.312175][ T5841] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.320184][ T5841] bridge0: port 1(bridge_slave_0) entered disabled state [ 85.327802][ T5841] bridge_slave_0: entered allmulticast mode [ 85.335088][ T5841] bridge_slave_0: entered promiscuous mode [ 85.342989][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 85.350410][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.376647][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.398182][ T5833] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 85.407796][ T5839] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.415162][ T5839] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.422303][ T5839] bridge_slave_1: entered allmulticast mode [ 85.430411][ T5839] bridge_slave_1: entered promiscuous mode [ 85.437415][ T5841] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.445416][ T5841] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.452547][ T5841] bridge_slave_1: entered allmulticast mode [ 85.459703][ T5841] bridge_slave_1: entered promiscuous mode [ 85.493507][ T5833] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 85.545318][ T5841] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 85.586238][ T5839] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 85.597996][ T5841] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 85.609974][ T5833] team0: Port device team_slave_0 added [ 85.619891][ T5833] team0: Port device team_slave_1 added [ 85.640284][ T5839] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 85.687848][ T5829] hsr_slave_0: entered promiscuous mode [ 85.694459][ T5829] hsr_slave_1: entered promiscuous mode [ 85.724917][ T5841] team0: Port device team_slave_0 added [ 85.742396][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.749396][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.776731][ T5833] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 85.789576][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 85.796828][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.822830][ T5833] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.837137][ T5839] team0: Port device team_slave_0 added [ 85.845951][ T5841] team0: Port device team_slave_1 added [ 85.860646][ T5839] team0: Port device team_slave_1 added [ 85.957044][ T5841] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.964365][ T5841] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.990471][ T5841] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 86.014602][ T5835] Bluetooth: hci1: command tx timeout [ 86.014607][ T5153] Bluetooth: hci0: command tx timeout [ 86.030359][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 86.037359][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.063669][ T5839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 86.075809][ T5841] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 86.082854][ T5841] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.109285][ T5841] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 86.148673][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 86.155685][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.181998][ T5835] Bluetooth: hci2: command tx timeout [ 86.187572][ T5839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 86.213292][ T5833] hsr_slave_0: entered promiscuous mode [ 86.219892][ T5833] hsr_slave_1: entered promiscuous mode [ 86.226177][ T5833] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 86.233930][ T5833] Cannot create hsr debugfs directory [ 86.254133][ T5835] Bluetooth: hci3: command tx timeout [ 86.280786][ T5841] hsr_slave_0: entered promiscuous mode [ 86.287634][ T5841] hsr_slave_1: entered promiscuous mode [ 86.294016][ T5841] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 86.301580][ T5841] Cannot create hsr debugfs directory [ 86.367661][ T5839] hsr_slave_0: entered promiscuous mode [ 86.374659][ T5839] hsr_slave_1: entered promiscuous mode [ 86.380619][ T5839] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 86.388235][ T5839] Cannot create hsr debugfs directory [ 86.827176][ T5829] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 86.865078][ T5829] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 86.889150][ T5829] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 86.914507][ T5829] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 86.950631][ T5833] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 86.993436][ T5833] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 87.005508][ T5833] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 87.039723][ T5833] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 87.105148][ T5841] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 87.123353][ T5841] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 87.150916][ T5841] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 87.160757][ T5841] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 87.263388][ T5839] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 87.285023][ T5839] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 87.303437][ T5839] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 87.313510][ T5839] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 87.344901][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.409343][ T5829] 8021q: adding VLAN 0 to HW filter on device team0 [ 87.432492][ T5833] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.442434][ T178] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.449687][ T178] bridge0: port 1(bridge_slave_0) entered forwarding state [ 87.476562][ T178] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.483721][ T178] bridge0: port 2(bridge_slave_1) entered forwarding state [ 87.551231][ T5833] 8021q: adding VLAN 0 to HW filter on device team0 [ 87.583905][ T178] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.591020][ T178] bridge0: port 1(bridge_slave_0) entered forwarding state [ 87.629958][ T5841] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.640690][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.647855][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 87.666818][ T5839] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.734796][ T5841] 8021q: adding VLAN 0 to HW filter on device team0 [ 87.746261][ T5839] 8021q: adding VLAN 0 to HW filter on device team0 [ 87.766839][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.774142][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 87.828179][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.835314][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 87.845144][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.852253][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 87.863269][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.870401][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.094973][ T5835] Bluetooth: hci1: command tx timeout [ 88.100428][ T5835] Bluetooth: hci0: command tx timeout [ 88.196565][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 88.257423][ T5153] Bluetooth: hci2: command tx timeout [ 88.334377][ T5153] Bluetooth: hci3: command tx timeout [ 88.348861][ T5829] veth0_vlan: entered promiscuous mode [ 88.382300][ T5829] veth1_vlan: entered promiscuous mode [ 88.481402][ T5833] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 88.500743][ T5829] veth0_macvtap: entered promiscuous mode [ 88.532283][ T5829] veth1_macvtap: entered promiscuous mode [ 88.557943][ T5841] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 88.576375][ T5839] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 88.598839][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 88.621063][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 88.645709][ T5829] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.656772][ T5829] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.666170][ T5829] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.675017][ T5829] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.729917][ T5839] veth0_vlan: entered promiscuous mode [ 88.756150][ T5833] veth0_vlan: entered promiscuous mode [ 88.773520][ T5841] veth0_vlan: entered promiscuous mode [ 88.797273][ T5839] veth1_vlan: entered promiscuous mode [ 88.809233][ T5833] veth1_vlan: entered promiscuous mode [ 88.841023][ T5841] veth1_vlan: entered promiscuous mode [ 88.905619][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 88.920635][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 88.945037][ T5839] veth0_macvtap: entered promiscuous mode [ 88.978549][ T5839] veth1_macvtap: entered promiscuous mode [ 89.001993][ T5841] veth0_macvtap: entered promiscuous mode [ 89.010315][ T5833] veth0_macvtap: entered promiscuous mode [ 89.021046][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.021424][ T5833] veth1_macvtap: entered promiscuous mode [ 89.035197][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.043210][ T5841] veth1_macvtap: entered promiscuous mode [ 89.072776][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 89.093454][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 89.114914][ T5841] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 89.139798][ T5839] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.149556][ T5839] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.159165][ T5839] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.168195][ T5839] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.190626][ T5841] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 89.209787][ T5829] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 89.241469][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 89.264183][ T5841] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.272921][ T5841] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.281988][ T5841] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.291452][ T5841] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.321212][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 89.378933][ T5833] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.389626][ T5833] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.399163][ T5833] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.409104][ T5833] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.504798][ T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.523144][ T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.547755][ T5922] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 89.619283][ T3474] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.629062][ T3474] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.685271][ T3571] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.693124][ T3571] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.742536][ T5924] ima: policy update failed [ 89.750222][ T30] audit: type=1802 audit(1750627742.528:2): pid=5924 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.6" res=0 errno=0 [ 89.762268][ T5924] netlink: 25 bytes leftover after parsing attributes in process `syz.0.6'. [ 89.782884][ T3571] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.801710][ T3571] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.897663][ T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.917146][ T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.985486][ T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.004760][ T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.173944][ T5153] Bluetooth: hci0: command tx timeout [ 90.174368][ T5835] Bluetooth: hci1: command tx timeout [ 90.335530][ T5835] Bluetooth: hci2: command tx timeout [ 90.413801][ T5835] Bluetooth: hci3: command tx timeout [ 90.471888][ T30] audit: type=1800 audit(1750627743.248:3): pid=5926 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.4" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0 [ 90.550332][ T5933] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 90.997689][ T5951] netlink: 16 bytes leftover after parsing attributes in process `syz.0.13'. [ 91.747490][ T5961] Zero length message leads to an empty skb [ 92.059395][ T9] cfg80211: failed to load regulatory.db [ 92.102710][ T0] NOHZ tick-stop error: local softirq work is pending, handler #20a!!! [ 92.258896][ T5835] Bluetooth: hci0: command tx timeout [ 92.265985][ T5835] Bluetooth: hci1: command tx timeout [ 92.414675][ T5153] Bluetooth: hci2: command tx timeout [ 92.501291][ T5153] Bluetooth: hci3: command tx timeout [ 93.119588][ T5980] netlink: 350 bytes leftover after parsing attributes in process `syz.1.24'. [ 93.297295][ T5985] netlink: 342 bytes leftover after parsing attributes in process `syz.1.26'. [ 93.297557][ T5982] FAULT_INJECTION: forcing a failure. [ 93.297557][ T5982] name failslab, interval 1, probability 0, space 0, times 1 [ 93.314690][ T5985] netlink: 274 bytes leftover after parsing attributes in process `syz.1.26'. [ 93.362075][ T5982] CPU: 1 UID: 0 PID: 5982 Comm: syz.2.25 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) [ 93.362112][ T5982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 93.362130][ T5982] Call Trace: [ 93.362139][ T5982] [ 93.362152][ T5982] dump_stack_lvl+0x16c/0x1f0 [ 93.362197][ T5982] should_fail_ex+0x512/0x640 [ 93.362233][ T5982] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 93.362275][ T5982] should_failslab+0xc2/0x120 [ 93.362300][ T5982] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 93.362333][ T5982] ? check_path.constprop.0+0x24/0x50 [ 93.362360][ T5982] ? __kernfs_new_node+0xd2/0x8e0 [ 93.362398][ T5982] __kernfs_new_node+0xd2/0x8e0 [ 93.362436][ T5982] ? __pfx___kernfs_new_node+0x10/0x10 [ 93.362477][ T5982] ? find_held_lock+0x2b/0x80 [ 93.362502][ T5982] ? kernfs_root+0xee/0x2a0 [ 93.362539][ T5982] kernfs_new_node+0x13c/0x1e0 [ 93.362576][ T5982] __kernfs_create_file+0x53/0x350 [ 93.362607][ T5982] sysfs_add_file_mode_ns+0x207/0x3c0 [ 93.362646][ T5982] sysfs_merge_group+0x1aa/0x340 [ 93.362679][ T5982] ? __pfx_sysfs_merge_group+0x10/0x10 [ 93.362716][ T5982] ? __pfx_dev_add_physical_location+0x10/0x10 [ 93.362752][ T5982] ? bus_to_subsys+0x131/0x160 [ 93.362792][ T5982] dpm_sysfs_add+0x237/0x280 [ 93.362818][ T5982] device_add+0x9a6/0x1a70 [ 93.362845][ T5982] ? __pfx_device_add+0x10/0x10 [ 93.362868][ T5982] ? __pfx___mutex_lock+0x10/0x10 [ 93.362907][ T5982] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 93.362948][ T5982] input_register_device+0x7e8/0x1130 [ 93.362984][ T5982] uinput_ioctl_handler.isra.0+0x1357/0x1df0 [ 93.363014][ T5982] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 93.363049][ T5982] ? find_held_lock+0x2b/0x80 [ 93.363093][ T5982] ? __pfx_uinput_ioctl+0x10/0x10 [ 93.363120][ T5982] __x64_sys_ioctl+0x18e/0x210 [ 93.363153][ T5982] do_syscall_64+0xcd/0x490 [ 93.363193][ T5982] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 93.363218][ T5982] RIP: 0033:0x7f01e938e929 [ 93.363249][ T5982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 93.363278][ T5982] RSP: 002b:00007f01ea2bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 93.363304][ T5982] RAX: ffffffffffffffda RBX: 00007f01e95b5fa0 RCX: 00007f01e938e929 [ 93.363322][ T5982] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000006 [ 93.363337][ T5982] RBP: 00007f01e9410b39 R08: 0000000000000000 R09: 0000000000000000 [ 93.363352][ T5982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 93.363366][ T5982] R13: 0000000000000000 R14: 00007f01e95b5fa0 R15: 00007fff40c6a0f8 [ 93.363400][ T5982] [ 96.253852][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 97.207100][ T6042] netlink: 98 bytes leftover after parsing attributes in process `syz.2.45'. [ 97.223354][ T6042] netlink: 50 bytes leftover after parsing attributes in process `syz.2.45'. [ 99.340566][ T6064] syz.0.54 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 99.364642][ T6077] netlink: 98 bytes leftover after parsing attributes in process `syz.3.57'. [ 99.424562][ T6077] netlink: 2 bytes leftover after parsing attributes in process `syz.3.57'. [ 100.329621][ T6106] netlink: 'syz.2.68': attribute type 4 has an invalid length. [ 100.529538][ T6109] netlink: 62 bytes leftover after parsing attributes in process `syz.2.69'. [ 100.964032][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 102.264335][ T6144] sp0: Synchronizing with TNC [ 102.320431][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 102.883141][ T6151] FAULT_INJECTION: forcing a failure. [ 102.883141][ T6151] name failslab, interval 1, probability 0, space 0, times 0 [ 102.956975][ T6151] CPU: 0 UID: 0 PID: 6151 Comm: syz.2.79 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) [ 102.957013][ T6151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 102.957029][ T6151] Call Trace: [ 102.957044][ T6151] [ 102.957054][ T6151] dump_stack_lvl+0x16c/0x1f0 [ 102.957100][ T6151] should_fail_ex+0x512/0x640 [ 102.957133][ T6151] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 102.957171][ T6151] should_failslab+0xc2/0x120 [ 102.957196][ T6151] __kmalloc_cache_noprof+0x6a/0x3e0 [ 102.957230][ T6151] ? input_allocate_device+0xc5/0x350 [ 102.957268][ T6151] input_allocate_device+0xc5/0x350 [ 102.957301][ T6151] uinput_ioctl_handler.isra.0+0x8bb/0x1df0 [ 102.957331][ T6151] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 102.957366][ T6151] ? find_held_lock+0x2b/0x80 [ 102.957409][ T6151] ? __pfx_uinput_ioctl+0x10/0x10 [ 102.957435][ T6151] __x64_sys_ioctl+0x18e/0x210 [ 102.957467][ T6151] do_syscall_64+0xcd/0x490 [ 102.957507][ T6151] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 102.957533][ T6151] RIP: 0033:0x7f01e938e929 [ 102.957554][ T6151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 102.957577][ T6151] RSP: 002b:00007f01ea29e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 102.957602][ T6151] RAX: ffffffffffffffda RBX: 00007f01e95b6080 RCX: 00007f01e938e929 [ 102.957620][ T6151] RDX: 0000000000000000 RSI: 00000000405c5503 RDI: 0000000000000005 [ 102.957635][ T6151] RBP: 00007f01e9410b39 R08: 0000000000000000 R09: 0000000000000000 [ 102.957650][ T6151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 102.957665][ T6151] R13: 0000000000000000 R14: 00007f01e95b6080 R15: 00007fff40c6a0f8 [ 102.957700][ T6151] [ 103.193757][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 104.368862][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 104.470845][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 104.480063][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 104.573762][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 104.585901][ T0] NOHZ tick-stop error: local softirq work is pending, handler #48!!! [ 105.142744][ T6187] netlink: 28 bytes leftover after parsing attributes in process `syz.2.91'. [ 105.192507][ T6187] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 105.265247][ T6187] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 105.304513][ T6187] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 105.376982][ T6187] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 105.741228][ T6200] sp0: Synchronizing with TNC [ 106.919039][ T6225] netlink: 342 bytes leftover after parsing attributes in process `syz.1.104'. [ 106.960076][ T6225] netlink: 'syz.1.104': attribute type 1 has an invalid length. [ 106.993313][ T6225] netlink: 'syz.1.104': attribute type 2 has an invalid length. [ 107.013651][ T6225] netlink: 'syz.1.104': attribute type 7 has an invalid length. [ 107.050590][ T6225] netlink: 274 bytes leftover after parsing attributes in process `syz.1.104'. [ 107.058065][ T6203] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 107.384503][ T6234] sctp: [Deprecated]: syz.1.107 (pid 6234) Use of int in maxseg socket option. [ 107.384503][ T6234] Use struct sctp_assoc_value instead [ 107.394680][ T6228] zswap: compressor not available [ 108.178732][ T6217] kexec: Could not allocate control_code_buffer [ 108.263929][ C1] sd 0:0:1:0: [sda] tag#2904 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 108.274476][ C1] sd 0:0:1:0: [sda] tag#2904 CDB: Write(6) 0a 00 00 00 0b 00 00 00 00 00 00 00 [ 108.820430][ T6266] netlink: 330 bytes leftover after parsing attributes in process `syz.1.116'. [ 109.469643][ T6274] netlink: 4 bytes leftover after parsing attributes in process `syz.3.120'. [ 109.497594][ T6274] netlink: 5 bytes leftover after parsing attributes in process `syz.3.120'. [ 110.344196][ T5153] Bluetooth: hci0: unexpected event 0x04 length: 442 > 10 [ 110.344231][ T5153] Bluetooth: unknown link type 178 [ 110.356922][ T5153] Bluetooth: hci0: connection err: -111 [ 111.046963][ T6303] netlink: 306 bytes leftover after parsing attributes in process `syz.1.133'. [ 111.098335][ T6313] syz.0.135 uses obsolete (PF_INET,SOCK_PACKET) [ 113.262779][ T6334] FAULT_INJECTION: forcing a failure. [ 113.262779][ T6334] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 113.355548][ T6334] CPU: 0 UID: 0 PID: 6334 Comm: syz.2.144 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) [ 113.355584][ T6334] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 113.355599][ T6334] Call Trace: [ 113.355607][ T6334] [ 113.355617][ T6334] dump_stack_lvl+0x16c/0x1f0 [ 113.355659][ T6334] should_fail_ex+0x512/0x640 [ 113.355697][ T6334] should_fail_alloc_page+0xe7/0x130 [ 113.355724][ T6334] prepare_alloc_pages+0x3c2/0x610 [ 113.355758][ T6334] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 113.355794][ T6334] ? find_held_lock+0x2b/0x80 [ 113.355819][ T6334] ? page_table_check_set+0x627/0x750 [ 113.355864][ T6334] ? page_table_check_set+0x631/0x750 [ 113.355901][ T6334] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 113.355937][ T6334] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 113.355968][ T6334] ? const_folio_flags+0x5b/0x100 [ 113.355994][ T6334] ? const_folio_flags+0x5b/0x100 [ 113.356023][ T6334] ? folio_remove_rmap_pmd+0x2eb/0x7d0 [ 113.356058][ T6334] ? split_huge_pmd_locked+0x731/0x3b20 [ 113.356088][ T6334] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 113.356125][ T6334] ? policy_nodemask+0xea/0x4e0 [ 113.356153][ T6334] alloc_pages_mpol+0x1fb/0x550 [ 113.356183][ T6334] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 113.356214][ T6334] ? __split_huge_pmd+0x203/0x350 [ 113.356252][ T6334] folio_alloc_mpol_noprof+0x36/0x2f0 [ 113.356283][ T6334] vma_alloc_folio_noprof+0xed/0x1e0 [ 113.356312][ T6334] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 113.356342][ T6334] ? rcu_read_unlock+0x2d/0xb0 [ 113.356382][ T6334] do_wp_page+0x1e5b/0x4f20 [ 113.356419][ T6334] ? __pfx_do_wp_page+0x10/0x10 [ 113.356451][ T6334] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 113.356497][ T6334] __handle_mm_fault+0x2223/0x5490 [ 113.356539][ T6334] ? __pfx___handle_mm_fault+0x10/0x10 [ 113.356569][ T6334] ? kernel_text_address+0x8d/0x100 [ 113.356611][ T6334] ? __lock_acquire+0xb8a/0x1c90 [ 113.356664][ T6334] handle_mm_fault+0x589/0xd10 [ 113.356704][ T6334] __get_user_pages+0x589/0x3b80 [ 113.356747][ T6334] ? __pfx___get_user_pages+0x10/0x10 [ 113.356775][ T6334] ? __pfx_down_read_killable+0x10/0x10 [ 113.356814][ T6334] __gup_longterm_locked+0x20d/0x1850 [ 113.356855][ T6334] ? __pfx___gup_longterm_locked+0x10/0x10 [ 113.356888][ T6334] ? find_held_lock+0x2b/0x80 [ 113.356922][ T6334] gup_fast_fallback+0x1ab3/0x29e0 [ 113.356977][ T6334] ? __pfx_gup_fast_fallback+0x10/0x10 [ 113.357003][ T6334] ? __kasan_kmalloc+0xaa/0xb0 [ 113.357035][ T6334] ? refill_pi_state_cache+0x89/0x250 [ 113.357065][ T6334] ? futex_lock_pi+0x175/0x7c0 [ 113.357096][ T6334] ? __x64_sys_futex+0x1e0/0x4c0 [ 113.357124][ T6334] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.357167][ T6334] get_user_pages_fast+0xa7/0xf0 [ 113.357196][ T6334] ? __pfx_get_user_pages_fast+0x10/0x10 [ 113.357239][ T6334] get_futex_key+0x2c6/0x1540 [ 113.357272][ T6334] ? __pfx_get_futex_key+0x10/0x10 [ 113.357306][ T6334] ? kasan_save_track+0x14/0x30 [ 113.357339][ T6334] ? __kasan_kmalloc+0xaa/0xb0 [ 113.357376][ T6334] futex_lock_pi+0x1cc/0x7c0 [ 113.357415][ T6334] ? __pfx_futex_lock_pi+0x10/0x10 [ 113.357464][ T6334] ? __pfx_do_wp_page+0x10/0x10 [ 113.357509][ T6334] ? __pfx_futex_wake_mark+0x10/0x10 [ 113.357549][ T6334] ? __lock_acquire+0x622/0x1c90 [ 113.357590][ T6334] do_futex+0x11a/0x350 [ 113.357620][ T6334] ? __pfx_do_futex+0x10/0x10 [ 113.357645][ T6334] ? find_held_lock+0x2b/0x80 [ 113.357668][ T6334] ? handle_mm_fault+0x2ab/0xd10 [ 113.357703][ T6334] __x64_sys_futex+0x1e0/0x4c0 [ 113.357733][ T6334] ? exc_page_fault+0x5c/0xb0 [ 113.357767][ T6334] ? __pfx___x64_sys_futex+0x10/0x10 [ 113.357812][ T6334] do_syscall_64+0xcd/0x490 [ 113.357853][ T6334] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.357879][ T6334] RIP: 0033:0x7f01e938e929 [ 113.357899][ T6334] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 113.357922][ T6334] RSP: 002b:00007f01ea2bf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 113.357946][ T6334] RAX: ffffffffffffffda RBX: 00007f01e95b5fa0 RCX: 00007f01e938e929 [ 113.357963][ T6334] RDX: 0000000000000009 RSI: 0000000000000006 RDI: 0000000000000000 [ 113.357978][ T6334] RBP: 00007f01e9410b39 R08: 0000000000000000 R09: 0000000000000006 [ 113.357993][ T6334] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 113.358007][ T6334] R13: 0000000000000000 R14: 00007f01e95b5fa0 R15: 00007fff40c6a0f8 [ 113.358042][ T6334] [ 113.858335][ T6353] Console: switching to colour VGA+ 80x25 [ 114.192555][ T6354] Console: switching to colour frame buffer device 128x48 [ 114.700087][ T6370] bridge0: port 3(team0) entered blocking state [ 114.753837][ T6370] bridge0: port 3(team0) entered disabled state [ 114.779184][ T6370] team0: entered allmulticast mode [ 114.785688][ T6370] team_slave_0: entered allmulticast mode [ 114.828883][ T6370] team_slave_1: entered allmulticast mode [ 114.869842][ T6370] team0: entered promiscuous mode [ 114.982990][ T6370] team_slave_0: entered promiscuous mode [ 115.009242][ T6370] team_slave_1: entered promiscuous mode [ 115.032021][ T6370] bridge0: port 3(team0) entered blocking state [ 115.039208][ T6370] bridge0: port 3(team0) entered forwarding state [ 115.790002][ T6377] GUP no longer grows the stack in syz.2.157 (6377): 14000-401000 (4000) [ 115.799326][ T6377] CPU: 1 UID: 0 PID: 6377 Comm: syz.2.157 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) [ 115.799362][ T6377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 115.799374][ T6377] Call Trace: [ 115.799382][ T6377] [ 115.799391][ T6377] dump_stack_lvl+0x16c/0x1f0 [ 115.799432][ T6377] gup_vma_lookup+0x1d2/0x220 [ 115.799459][ T6377] __get_user_pages+0x271/0x3b80 [ 115.799497][ T6377] ? process_vm_rw_core.constprop.0+0x1d8/0x9a0 [ 115.799533][ T6377] ? kasan_save_stack+0x42/0x60 [ 115.799564][ T6377] ? __pfx___get_user_pages+0x10/0x10 [ 115.799590][ T6377] ? register_lock_class+0x41/0x4c0 [ 115.799619][ T6377] ? __x64_sys_process_vm_readv+0xe2/0x1c0 [ 115.799652][ T6377] ? do_syscall_64+0xcd/0x490 [ 115.799694][ T6377] __gup_longterm_locked+0x20d/0x1850 [ 115.799722][ T6377] ? __lock_acquire+0xb8a/0x1c90 [ 115.799784][ T6377] ? __pfx___gup_longterm_locked+0x10/0x10 [ 115.799829][ T6377] pin_user_pages_remote+0xed/0x140 [ 115.799861][ T6377] ? __pfx_pin_user_pages_remote+0x10/0x10 [ 115.799888][ T6377] ? mm_access+0x22d/0x2e0 [ 115.799929][ T6377] process_vm_rw_core.constprop.0+0x41b/0x9a0 [ 115.799983][ T6377] ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10 [ 115.800027][ T6377] ? iovec_from_user+0xbb/0x140 [ 115.800080][ T6377] ? iovec_from_user+0xbb/0x140 [ 115.800119][ T6377] process_vm_rw+0x216/0x2c0 [ 115.800158][ T6377] ? __pfx_process_vm_rw+0x10/0x10 [ 115.800243][ T6377] ? xfd_validate_state+0x61/0x180 [ 115.800280][ T6377] __x64_sys_process_vm_readv+0xe2/0x1c0 [ 115.800319][ T6377] ? do_syscall_64+0x91/0x490 [ 115.800353][ T6377] ? lockdep_hardirqs_on+0x7c/0x110 [ 115.800387][ T6377] do_syscall_64+0xcd/0x490 [ 115.800426][ T6377] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.800451][ T6377] RIP: 0033:0x7f01e938e929 [ 115.800472][ T6377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 115.800495][ T6377] RSP: 002b:00007f01ea2bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136 [ 115.800518][ T6377] RAX: ffffffffffffffda RBX: 00007f01e95b5fa0 RCX: 00007f01e938e929 [ 115.800534][ T6377] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 0000000000000079 [ 115.800549][ T6377] RBP: 00007f01e9410b39 R08: 0000000000000003 R09: 0000000000000000 [ 115.800564][ T6377] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000 [ 115.800579][ T6377] R13: 0000000000000000 R14: 00007f01e95b5fa0 R15: 00007fff40c6a0f8 [ 115.800614][ T6377] [ 116.047985][ C1] vkms_vblank_simulate: vblank timer overrun [ 117.457899][ T6425] sp0: Synchronizing with TNC [ 117.694469][ T6434] FAULT_INJECTION: forcing a failure. [ 117.694469][ T6434] name failslab, interval 1, probability 0, space 0, times 0 [ 117.722481][ T6434] CPU: 1 UID: 0 PID: 6434 Comm: syz.2.177 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) [ 117.722518][ T6434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 117.722536][ T6434] Call Trace: [ 117.722544][ T6434] [ 117.722554][ T6434] dump_stack_lvl+0x16c/0x1f0 [ 117.722610][ T6434] should_fail_ex+0x512/0x640 [ 117.722645][ T6434] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 117.722682][ T6434] should_failslab+0xc2/0x120 [ 117.722708][ T6434] __kmalloc_cache_noprof+0x6a/0x3e0 [ 117.722741][ T6434] ? madvise_collapse+0x1cb/0xb20 [ 117.722773][ T6434] madvise_collapse+0x1cb/0xb20 [ 117.722800][ T6434] ? __schedule+0x1181/0x5de0 [ 117.722837][ T6434] ? __pfx_madvise_collapse+0x10/0x10 [ 117.722875][ T6434] ? mtree_range_walk+0x718/0xc00 [ 117.722907][ T6434] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 117.722950][ T6434] madvise_vma_behavior+0x118d/0x2420 [ 117.722978][ T6434] ? mas_prev_setup.constprop.0+0x81/0x830 [ 117.723016][ T6434] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 117.723043][ T6434] ? __pfx_mas_prev+0x10/0x10 [ 117.723088][ T6434] ? find_vma_prev+0xda/0x160 [ 117.723116][ T6434] ? __pfx_find_vma_prev+0x10/0x10 [ 117.723163][ T6434] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 117.723188][ T6434] madvise_walk_vmas+0x1d1/0x2c0 [ 117.723216][ T6434] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 117.723251][ T6434] madvise_do_behavior+0x15d/0x3f0 [ 117.723282][ T6434] ? __pfx_madvise_do_behavior+0x10/0x10 [ 117.723331][ T6434] do_madvise+0x161/0x230 [ 117.723358][ T6434] ? __pfx_do_madvise+0x10/0x10 [ 117.723401][ T6434] ? xfd_validate_state+0x61/0x180 [ 117.723440][ T6434] __x64_sys_madvise+0xa9/0x110 [ 117.723469][ T6434] ? lockdep_hardirqs_on+0x7c/0x110 [ 117.723503][ T6434] do_syscall_64+0xcd/0x490 [ 117.723543][ T6434] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.723566][ T6434] RIP: 0033:0x7f01e938e929 [ 117.723597][ T6434] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 117.723621][ T6434] RSP: 002b:00007f01ea2bf038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 117.723649][ T6434] RAX: ffffffffffffffda RBX: 00007f01e95b5fa0 RCX: 00007f01e938e929 [ 117.723666][ T6434] RDX: 0000000000000019 RSI: 0000000000200007 RDI: 0000000000000000 [ 117.723682][ T6434] RBP: 00007f01e9410b39 R08: 0000000000000000 R09: 0000000000000000 [ 117.723697][ T6434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 117.723713][ T6434] R13: 0000000000000000 R14: 00007f01e95b5fa0 R15: 00007fff40c6a0f8 [ 117.723747][ T6434] [ 117.975164][ C1] vkms_vblank_simulate: vblank timer overrun [ 118.408367][ T6449] could not allocate digest TFM handle [ 118.627236][ T6457] FAULT_INJECTION: forcing a failure. [ 118.627236][ T6457] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 118.640667][ T6457] CPU: 0 UID: 0 PID: 6457 Comm: syz.2.183 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) [ 118.640701][ T6457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 118.640715][ T6457] Call Trace: [ 118.640723][ T6457] [ 118.640733][ T6457] dump_stack_lvl+0x16c/0x1f0 [ 118.640775][ T6457] should_fail_ex+0x512/0x640 [ 118.640814][ T6457] should_fail_alloc_page+0xe7/0x130 [ 118.640841][ T6457] prepare_alloc_pages+0x3c2/0x610 [ 118.640868][ T6457] ? rcu_is_watching+0x12/0xc0 [ 118.640897][ T6457] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 118.640938][ T6457] ? rcu_is_watching+0x12/0xc0 [ 118.640962][ T6457] ? trace_mm_page_alloc+0x11f/0x1a0 [ 118.640989][ T6457] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 118.641025][ T6457] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 118.641057][ T6457] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 118.641103][ T6457] ? kmem_cache_alloc_node_noprof+0x1d5/0x3b0 [ 118.641136][ T6457] ? __get_vm_area_node+0x1ca/0x330 [ 118.641162][ T6457] ? vmap+0x135/0x320 [ 118.641186][ T6457] ? ringbuf_map_alloc+0x3da/0x7f0 [ 118.641214][ T6457] ? map_create+0x592/0x1db0 [ 118.641244][ T6457] ? __sys_bpf+0x47cc/0x4d80 [ 118.641276][ T6457] ? __x64_sys_bpf+0x78/0xc0 [ 118.641297][ T6457] ? do_syscall_64+0xcd/0x490 [ 118.641330][ T6457] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.641369][ T6457] alloc_pages_bulk_noprof+0x71c/0x1410 [ 118.641402][ T6457] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 118.641438][ T6457] ? policy_nodemask+0xea/0x4e0 [ 118.641465][ T6457] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 118.641501][ T6457] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 118.641539][ T6457] kasan_populate_vmalloc+0xf1/0x1f0 [ 118.641589][ T6457] alloc_vmap_area+0x959/0x29c0 [ 118.641629][ T6457] ? __pfx_alloc_vmap_area+0x10/0x10 [ 118.641665][ T6457] __get_vm_area_node+0x1ca/0x330 [ 118.641697][ T6457] ? ringbuf_map_alloc+0x3da/0x7f0 [ 118.641725][ T6457] get_vm_area_caller+0x71/0xa0 [ 118.641752][ T6457] ? ringbuf_map_alloc+0x3da/0x7f0 [ 118.641782][ T6457] vmap+0x135/0x320 [ 118.641808][ T6457] ? __pfx_vmap+0x10/0x10 [ 118.641844][ T6457] ringbuf_map_alloc+0x3da/0x7f0 [ 118.641881][ T6457] map_create+0x592/0x1db0 [ 118.641925][ T6457] ? __pfx_map_create+0x10/0x10 [ 118.641955][ T6457] ? __might_fault+0xe3/0x190 [ 118.641986][ T6457] ? __might_fault+0xe3/0x190 [ 118.642016][ T6457] ? __might_fault+0x13b/0x190 [ 118.642061][ T6457] __sys_bpf+0x47cc/0x4d80 [ 118.642100][ T6457] ? __pfx___sys_bpf+0x10/0x10 [ 118.642133][ T6457] ? errseq_sample+0x53/0x70 [ 118.642166][ T6457] ? file_init_path+0x4fe/0x760 [ 118.642196][ T6457] ? do_futex+0x122/0x350 [ 118.642224][ T6457] ? __pfx_do_futex+0x10/0x10 [ 118.642265][ T6457] ? __sys_socket+0xac/0x260 [ 118.642297][ T6457] ? xfd_validate_state+0x61/0x180 [ 118.642325][ T6457] ? __pfx___do_sys_close_range+0x10/0x10 [ 118.642365][ T6457] __x64_sys_bpf+0x78/0xc0 [ 118.642387][ T6457] ? lockdep_hardirqs_on+0x7c/0x110 [ 118.642420][ T6457] do_syscall_64+0xcd/0x490 [ 118.642457][ T6457] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.642481][ T6457] RIP: 0033:0x7f01e938e929 [ 118.642501][ T6457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 118.642524][ T6457] RSP: 002b:00007f01ea2bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 118.642554][ T6457] RAX: ffffffffffffffda RBX: 00007f01e95b5fa0 RCX: 00007f01e938e929 [ 118.642571][ T6457] RDX: 0000000000000010 RSI: 00002000000000c0 RDI: 0000000000000000 [ 118.642588][ T6457] RBP: 00007f01e9410b39 R08: 0000000000000000 R09: 0000000000000000 [ 118.642603][ T6457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 118.642618][ T6457] R13: 0000000000000000 R14: 00007f01e95b5fa0 R15: 00007fff40c6a0f8 [ 118.642651][ T6457] [ 119.829895][ T5153] Bluetooth: hci2: Received unexpected HCI Event 0x00 [ 119.840355][ T5153] Bluetooth: hci2: ACL packet for unknown connection handle 0 [ 119.912974][ T6483] FAULT_INJECTION: forcing a failure. [ 119.912974][ T6483] name failslab, interval 1, probability 0, space 0, times 0 [ 119.926119][ T6483] CPU: 1 UID: 0 PID: 6483 Comm: syz.2.190 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) [ 119.926156][ T6483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 119.926172][ T6483] Call Trace: [ 119.926181][ T6483] [ 119.926190][ T6483] dump_stack_lvl+0x16c/0x1f0 [ 119.926233][ T6483] should_fail_ex+0x512/0x640 [ 119.926266][ T6483] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 119.926304][ T6483] should_failslab+0xc2/0x120 [ 119.926329][ T6483] __kmalloc_cache_noprof+0x6a/0x3e0 [ 119.926360][ T6483] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 119.926392][ T6483] ? watch_queue_init+0x45/0x170 [ 119.926423][ T6483] watch_queue_init+0x45/0x170 [ 119.926449][ T6483] create_pipe_files+0x615/0x930 [ 119.926488][ T6483] do_pipe2+0xaf/0x1c0 [ 119.926522][ T6483] ? __pfx_do_pipe2+0x10/0x10 [ 119.926558][ T6483] ? xfd_validate_state+0x61/0x180 [ 119.926598][ T6483] __x64_sys_pipe2+0x54/0x80 [ 119.926634][ T6483] do_syscall_64+0xcd/0x490 [ 119.926672][ T6483] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 119.926697][ T6483] RIP: 0033:0x7f01e938e929 [ 119.926725][ T6483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 119.926749][ T6483] RSP: 002b:00007f01ea2bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000125 [ 119.926773][ T6483] RAX: ffffffffffffffda RBX: 00007f01e95b5fa0 RCX: 00007f01e938e929 [ 119.926791][ T6483] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 0000000000000000 [ 119.926806][ T6483] RBP: 00007f01e9410b39 R08: 0000000000000000 R09: 0000000000000000 [ 119.926821][ T6483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 119.926836][ T6483] R13: 0000000000000000 R14: 00007f01e95b5fa0 R15: 00007fff40c6a0f8 [ 119.926869][ T6483] [ 120.515587][ T6493] netlink: 25 bytes leftover after parsing attributes in process `syz.1.193'. [ 120.651906][ T6485] syz.0.192 (6485): /proc/6484/oom_adj is deprecated, please use /proc/6484/oom_score_adj instead. [ 121.190923][ T6511] FAULT_INJECTION: forcing a failure. [ 121.190923][ T6511] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 121.227631][ T6511] CPU: 1 UID: 0 PID: 6511 Comm: syz.0.199 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) [ 121.227670][ T6511] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 121.227685][ T6511] Call Trace: [ 121.227694][ T6511] [ 121.227704][ T6511] dump_stack_lvl+0x16c/0x1f0 [ 121.227747][ T6511] should_fail_ex+0x512/0x640 [ 121.227786][ T6511] _copy_from_user+0x2e/0xd0 [ 121.227822][ T6511] copy_msghdr_from_user+0x98/0x160 [ 121.227859][ T6511] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 121.227901][ T6511] ? kfree+0x24f/0x4d0 [ 121.227930][ T6511] ? futex_unqueue+0x133/0x2c0 [ 121.227963][ T6511] ___sys_sendmsg+0xfe/0x1d0 [ 121.228000][ T6511] ? __pfx____sys_sendmsg+0x10/0x10 [ 121.228069][ T6511] ? __pfx___might_resched+0x10/0x10 [ 121.228103][ T6511] __sys_sendmmsg+0x200/0x420 [ 121.228143][ T6511] ? __pfx___sys_sendmmsg+0x10/0x10 [ 121.228189][ T6511] ? __pfx_do_futex+0x10/0x10 [ 121.228230][ T6511] ? fput+0x70/0xf0 [ 121.228272][ T6511] ? xfd_validate_state+0x61/0x180 [ 121.228312][ T6511] __x64_sys_sendmmsg+0x9c/0x100 [ 121.228347][ T6511] ? lockdep_hardirqs_on+0x7c/0x110 [ 121.228381][ T6511] do_syscall_64+0xcd/0x490 [ 121.228419][ T6511] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.228444][ T6511] RIP: 0033:0x7efd4458e929 [ 121.228464][ T6511] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 121.228487][ T6511] RSP: 002b:00007efd45320038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 121.228510][ T6511] RAX: ffffffffffffffda RBX: 00007efd447b5fa0 RCX: 00007efd4458e929 [ 121.228527][ T6511] RDX: 00000000000009a5 RSI: 0000000000000000 RDI: 0000000000000003 [ 121.228542][ T6511] RBP: 00007efd44610b39 R08: 0000000000000000 R09: 0000000000000000 [ 121.228557][ T6511] R10: 0000000007fffffe R11: 0000000000000246 R12: 0000000000000000 [ 121.228573][ T6511] R13: 0000000000000000 R14: 00007efd447b5fa0 R15: 00007ffdb79c6988 [ 121.228613][ T6511] [ 121.501430][ T6513] netlink: 342 bytes leftover after parsing attributes in process `syz.3.202'. [ 123.212691][ T6543] netlink: 346 bytes leftover after parsing attributes in process `syz.0.210'. [ 123.501076][ T6553] netlink: 252 bytes leftover after parsing attributes in process `syz.2.214'. [ 123.513995][ T6553] netlink: 252 bytes leftover after parsing attributes in process `syz.2.214'. [ 123.708264][ T5153] Bluetooth: hci0: unexpected event 0x35 length: 13 > 6 [ 124.116318][ T6564] netlink: 186 bytes leftover after parsing attributes in process `syz.2.217'. [ 124.850113][ T6578] netlink: 28 bytes leftover after parsing attributes in process `syz.3.223'. [ 124.878764][ T6578] bridge_slave_1: left allmulticast mode [ 124.885245][ T6578] bridge_slave_1: left promiscuous mode [ 124.891958][ T6578] bridge0: port 2(bridge_slave_1) entered disabled state [ 124.940286][ T6578] bridge_slave_0: left allmulticast mode [ 124.949960][ T6578] bridge_slave_0: left promiscuous mode [ 125.020437][ T6578] bridge0: port 1(bridge_slave_0) entered disabled state [ 126.310383][ T6601] netlink: 'syz.3.230': attribute type 1 has an invalid length. [ 126.335736][ T6601] netlink: 54 bytes leftover after parsing attributes in process `syz.3.230'. [ 126.366107][ T6600] ima: policy update failed [ 126.370900][ T30] audit: type=1802 audit(1750627779.148:4): pid=6600 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.230" res=0 errno=0 [ 126.528827][ T6605] FAULT_INJECTION: forcing a failure. [ 126.528827][ T6605] name failslab, interval 1, probability 0, space 0, times 0 [ 126.542334][ T6605] CPU: 0 UID: 0 PID: 6605 Comm: syz.3.232 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) [ 126.542372][ T6605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 126.542387][ T6605] Call Trace: [ 126.542396][ T6605] [ 126.542407][ T6605] dump_stack_lvl+0x16c/0x1f0 [ 126.542449][ T6605] should_fail_ex+0x512/0x640 [ 126.542483][ T6605] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 126.542519][ T6605] should_failslab+0xc2/0x120 [ 126.542544][ T6605] __kmalloc_cache_noprof+0x6a/0x3e0 [ 126.542577][ T6605] ? mark_held_locks+0x49/0x80 [ 126.542605][ T6605] ? rfkill_fop_open+0x1b6/0x750 [ 126.542643][ T6605] rfkill_fop_open+0x1b6/0x750 [ 126.542675][ T6605] ? __pfx_rfkill_fop_open+0x10/0x10 [ 126.542704][ T6605] misc_open+0x35d/0x420 [ 126.542734][ T6605] ? __pfx_misc_open+0x10/0x10 [ 126.542763][ T6605] chrdev_open+0x234/0x6a0 [ 126.542799][ T6605] ? __pfx_apparmor_file_open+0x10/0x10 [ 126.542829][ T6605] ? __pfx_chrdev_open+0x10/0x10 [ 126.542868][ T6605] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 126.542907][ T6605] do_dentry_open+0x741/0x1c10 [ 126.542950][ T6605] ? __pfx_chrdev_open+0x10/0x10 [ 126.542995][ T6605] vfs_open+0x82/0x3f0 [ 126.543026][ T6605] path_openat+0x1de4/0x2cb0 [ 126.543072][ T6605] ? __pfx_path_openat+0x10/0x10 [ 126.543108][ T6605] ? __lock_acquire+0xb8a/0x1c90 [ 126.543143][ T6605] do_filp_open+0x20b/0x470 [ 126.543179][ T6605] ? __pfx_do_filp_open+0x10/0x10 [ 126.543239][ T6605] ? alloc_fd+0x471/0x7d0 [ 126.543286][ T6605] do_sys_openat2+0x11b/0x1d0 [ 126.543314][ T6605] ? __pfx_do_sys_openat2+0x10/0x10 [ 126.543356][ T6605] __x64_sys_openat+0x174/0x210 [ 126.543385][ T6605] ? __pfx___x64_sys_openat+0x10/0x10 [ 126.543429][ T6605] do_syscall_64+0xcd/0x490 [ 126.543468][ T6605] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.543494][ T6605] RIP: 0033:0x7fd8cb18e929 [ 126.543514][ T6605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 126.543538][ T6605] RSP: 002b:00007fd8cbf10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 126.543560][ T6605] RAX: ffffffffffffffda RBX: 00007fd8cb3b5fa0 RCX: 00007fd8cb18e929 [ 126.543575][ T6605] RDX: 0000000000080480 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 126.543590][ T6605] RBP: 00007fd8cb210b39 R08: 0000000000000000 R09: 0000000000000000 [ 126.543604][ T6605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 126.543618][ T6605] R13: 0000000000000000 R14: 00007fd8cb3b5fa0 R15: 00007fff34cda118 [ 126.543651][ T6605] [ 126.571085][ T6606] binder: 6602:6606 ioctl 540a ffffffffffffffff returned -22 [ 127.743937][ T6625] FAULT_INJECTION: forcing a failure. [ 127.743937][ T6625] name failslab, interval 1, probability 0, space 0, times 0 [ 127.783863][ T6630] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7 [ 127.785701][ T6625] CPU: 0 UID: 0 PID: 6625 Comm: syz.2.237 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) [ 127.785735][ T6625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 127.785751][ T6625] Call Trace: [ 127.785760][ T6625] [ 127.785769][ T6625] dump_stack_lvl+0x16c/0x1f0 [ 127.785820][ T6625] should_fail_ex+0x512/0x640 [ 127.785855][ T6625] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 127.785894][ T6625] should_failslab+0xc2/0x120 [ 127.785918][ T6625] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 127.785953][ T6625] ? __proc_create+0xc3/0x8c0 [ 127.785986][ T6625] ? __proc_create+0x2ce/0x8c0 [ 127.786025][ T6625] __proc_create+0x2ce/0x8c0 [ 127.786061][ T6625] ? __pfx___proc_create+0x10/0x10 [ 127.786109][ T6625] _proc_mkdir+0xb9/0x200 [ 127.786132][ T6625] ? __pfx__proc_mkdir+0x10/0x10 [ 127.786153][ T6625] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 127.786195][ T6625] proc_net_ns_init+0x265/0x410 [ 127.786219][ T6625] ? __pfx_proc_net_ns_init+0x10/0x10 [ 127.786239][ T6625] ops_init+0x1e2/0x5f0 [ 127.786267][ T6625] setup_net+0x1ff/0x510 [ 127.786289][ T6625] ? lockdep_init_map_type+0x5c/0x280 [ 127.786321][ T6625] ? __pfx_setup_net+0x10/0x10 [ 127.786346][ T6625] ? debug_mutex_init+0x37/0x70 [ 127.786372][ T6625] copy_net_ns+0x2a6/0x5f0 [ 127.786402][ T6625] create_new_namespaces+0x3ea/0xa90 [ 127.786436][ T6625] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 127.786465][ T6625] ksys_unshare+0x45b/0xa40 [ 127.786495][ T6625] ? __pfx_ksys_unshare+0x10/0x10 [ 127.786526][ T6625] ? xfd_validate_state+0x61/0x180 [ 127.786566][ T6625] __x64_sys_unshare+0x31/0x40 [ 127.786595][ T6625] do_syscall_64+0xcd/0x490 [ 127.786633][ T6625] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 127.786657][ T6625] RIP: 0033:0x7f01e938e929 [ 127.786677][ T6625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 127.786698][ T6625] RSP: 002b:00007f01ea2bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 127.786721][ T6625] RAX: ffffffffffffffda RBX: 00007f01e95b5fa0 RCX: 00007f01e938e929 [ 127.786737][ T6625] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 127.786751][ T6625] RBP: 00007f01e9410b39 R08: 0000000000000000 R09: 0000000000000000 [ 127.786766][ T6625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 127.786779][ T6625] R13: 0000000000000000 R14: 00007f01e95b5fa0 R15: 00007fff40c6a0f8 [ 127.786820][ T6625] [ 128.098176][ T6634] netlink: 13 bytes leftover after parsing attributes in process `syz.3.239'. [ 129.522863][ T6667] netlink: 8 bytes leftover after parsing attributes in process `syz.3.252'. [ 131.232891][ T6697] netlink: 4 bytes leftover after parsing attributes in process `syz.3.261'. [ 131.815152][ C0] vcan0: j1939_tp_rxtimer: 0xffff8880625b5c00: rx timeout, send abort [ 131.824550][ C0] vcan0: j1939_tp_rxtimer: 0xffff8880625b7000: rx timeout, send abort [ 131.832963][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff8880625b5c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 131.847539][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff8880625b7000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 131.919971][ T6704] netlink: 326 bytes leftover after parsing attributes in process `syz.3.264'. [ 131.965575][ T6704] veth1_macvtap: left promiscuous mode [ 132.110987][ T6709] netlink: 28 bytes leftover after parsing attributes in process `syz.2.266'. [ 132.284184][ T6709] veth0_macvtap: left promiscuous mode [ 132.744941][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.745095][ T6722] netlink: 338 bytes leftover after parsing attributes in process `syz.1.270'. [ 132.751420][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.813880][ T6722] netlink: 338 bytes leftover after parsing attributes in process `syz.1.270'. [ 132.990649][ T6727] netlink: 'syz.1.272': attribute type 29 has an invalid length. [ 133.031376][ T6727] netlink: 'syz.1.272': attribute type 30 has an invalid length. [ 133.068492][ T6727] netlink: 'syz.1.272': attribute type 31 has an invalid length. [ 133.113822][ T6727] netlink: 'syz.1.272': attribute type 32 has an invalid length. [ 133.165662][ T6727] netlink: 'syz.1.272': attribute type 33 has an invalid length. [ 133.181267][ T6727] netlink: 'syz.1.272': attribute type 35 has an invalid length. [ 133.196862][ T6727] netlink: 'syz.1.272': attribute type 37 has an invalid length. [ 133.212253][ T6727] netlink: 18 bytes leftover after parsing attributes in process `syz.1.272'. [ 134.015574][ T6744] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 134.569532][ T6751] FAULT_INJECTION: forcing a failure. [ 134.569532][ T6751] name failslab, interval 1, probability 0, space 0, times 0 [ 134.646746][ T6751] CPU: 1 UID: 0 PID: 6751 Comm: syz.0.281 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) [ 134.646783][ T6751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 134.646799][ T6751] Call Trace: [ 134.646809][ T6751] [ 134.646819][ T6751] dump_stack_lvl+0x16c/0x1f0 [ 134.646863][ T6751] should_fail_ex+0x512/0x640 [ 134.646895][ T6751] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 134.646934][ T6751] should_failslab+0xc2/0x120 [ 134.646958][ T6751] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 134.646993][ T6751] ? alloc_inode+0x61/0x240 [ 134.647016][ T6751] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 134.647054][ T6751] ? __pfx_rpc_alloc_inode+0x10/0x10 [ 134.647082][ T6751] alloc_inode+0x61/0x240 [ 134.647106][ T6751] new_inode+0x22/0x1c0 [ 134.647134][ T6751] __rpc_create_common+0x57/0x2f0 [ 134.647188][ T6751] rpc_populate.constprop.0+0x153/0x5d0 [ 134.647231][ T6751] rpc_fill_super+0x2bc/0x840 [ 134.647261][ T6751] ? sget_fc+0x808/0xc20 [ 134.647299][ T6751] ? __pfx_set_anon_super_fc+0x10/0x10 [ 134.647330][ T6751] ? __pfx_rpc_fill_super+0x10/0x10 [ 134.647364][ T6751] get_tree_keyed+0x10e/0x1d0 [ 134.647405][ T6751] vfs_get_tree+0x8b/0x340 [ 134.647434][ T6751] vfs_cmd_create+0xd7/0x2a0 [ 134.647458][ T6751] __do_sys_fsconfig+0x7b8/0xbe0 [ 134.647484][ T6751] ? __pfx___do_sys_fsconfig+0x10/0x10 [ 134.647526][ T6751] do_syscall_64+0xcd/0x490 [ 134.647566][ T6751] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 134.647592][ T6751] RIP: 0033:0x7efd4458e929 [ 134.647613][ T6751] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 134.647636][ T6751] RSP: 002b:00007efd45320038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af [ 134.647660][ T6751] RAX: ffffffffffffffda RBX: 00007efd447b5fa0 RCX: 00007efd4458e929 [ 134.647676][ T6751] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000005 [ 134.647690][ T6751] RBP: 00007efd44610b39 R08: 0000000000000000 R09: 0000000000000000 [ 134.647705][ T6751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 134.647719][ T6751] R13: 0000000000000000 R14: 00007efd447b5fa0 R15: 00007ffdb79c6988 [ 134.647751][ T6751] [ 134.647762][ T6751] net/sunrpc/rpc_pipe.c: __rpc_create_common failed to allocate inode for dentry gssd [ 134.925039][ T6751] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory / [ 135.492733][ T6763] netlink: 28 bytes leftover after parsing attributes in process `syz.3.285'. [ 135.990161][ T6767] netlink: 218 bytes leftover after parsing attributes in process `syz.2.286'. [ 136.027132][ T6767] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check. [ 136.667456][ T6778] netlink: 28 bytes leftover after parsing attributes in process `syz.2.290'. [ 136.716737][ T6778] bond_slave_1: entered allmulticast mode [ 137.534403][ T6780] delete_channel: no stack [ 137.625339][ T6787] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 137.819929][ T6791] netlink: 28 bytes leftover after parsing attributes in process `syz.0.295'. [ 137.974596][ T6791] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode [ 138.188561][ T6799] netlink: 'syz.0.298': attribute type 16 has an invalid length. [ 138.206257][ T6799] netlink: 326 bytes leftover after parsing attributes in process `syz.0.298'. [ 138.296843][ T6799] veth1_macvtap: left promiscuous mode [ 139.165220][ T6823] capability: warning: `syz.3.302' uses 32-bit capabilities (legacy support in use) [ 139.181469][ T6821] FAULT_INJECTION: forcing a failure. [ 139.181469][ T6821] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 139.254958][ T6821] CPU: 0 UID: 0 PID: 6821 Comm: syz.2.303 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) [ 139.254996][ T6821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 139.255011][ T6821] Call Trace: [ 139.255019][ T6821] [ 139.255028][ T6821] dump_stack_lvl+0x16c/0x1f0 [ 139.255071][ T6821] should_fail_ex+0x512/0x640 [ 139.255128][ T6821] should_fail_alloc_page+0xe7/0x130 [ 139.255155][ T6821] prepare_alloc_pages+0x3c2/0x610 [ 139.255184][ T6821] ? rcu_is_watching+0x12/0xc0 [ 139.255220][ T6821] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 139.255261][ T6821] ? rcu_is_watching+0x12/0xc0 [ 139.255285][ T6821] ? trace_mm_page_alloc+0x11f/0x1a0 [ 139.255312][ T6821] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 139.255343][ T6821] ? lockdep_hardirqs_on+0x7c/0x110 [ 139.255375][ T6821] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 139.255410][ T6821] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 139.255457][ T6821] ? alloc_vmap_area+0xdc8/0x29c0 [ 139.255480][ T6821] ? __vmalloc_node_range_noprof+0x271/0x14b0 [ 139.255507][ T6821] ? __do_sys_listmount+0x1c2/0xec0 [ 139.255533][ T6821] ? do_syscall_64+0xcd/0x490 [ 139.255567][ T6821] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 139.255609][ T6821] alloc_pages_bulk_noprof+0x71c/0x1410 [ 139.255644][ T6821] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 139.255683][ T6821] ? policy_nodemask+0xea/0x4e0 [ 139.255710][ T6821] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 139.255745][ T6821] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 139.255782][ T6821] kasan_populate_vmalloc+0xf1/0x1f0 [ 139.255822][ T6821] alloc_vmap_area+0x959/0x29c0 [ 139.255865][ T6821] ? __pfx_alloc_vmap_area+0x10/0x10 [ 139.255902][ T6821] __get_vm_area_node+0x1ca/0x330 [ 139.255937][ T6821] __vmalloc_node_range_noprof+0x271/0x14b0 [ 139.255967][ T6821] ? __do_sys_listmount+0x1c2/0xec0 [ 139.256006][ T6821] ? __lock_acquire+0xb8a/0x1c90 [ 139.256036][ T6821] ? __do_sys_listmount+0x1c2/0xec0 [ 139.256075][ T6821] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 139.256105][ T6821] ? __alloc_pages_noprof+0xb/0x1b0 [ 139.256137][ T6821] ? ___kmalloc_large_node+0x84/0x1e0 [ 139.256161][ T6821] ? find_held_lock+0x2b/0x80 [ 139.256200][ T6821] __kvmalloc_node_noprof+0x30a/0x620 [ 139.256234][ T6821] ? __do_sys_listmount+0x1c2/0xec0 [ 139.256263][ T6821] ? __do_sys_listmount+0x1c2/0xec0 [ 139.256301][ T6821] ? __do_sys_listmount+0x1c2/0xec0 [ 139.256326][ T6821] __do_sys_listmount+0x1c2/0xec0 [ 139.256360][ T6821] ? __x64_sys_futex+0x1e0/0x4c0 [ 139.256388][ T6821] ? __x64_sys_futex+0x1e9/0x4c0 [ 139.256416][ T6821] ? __pfx___do_sys_listmount+0x10/0x10 [ 139.256461][ T6821] do_syscall_64+0xcd/0x490 [ 139.256501][ T6821] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 139.256526][ T6821] RIP: 0033:0x7f01e938e929 [ 139.256547][ T6821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 139.256572][ T6821] RSP: 002b:00007f01ea29e038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 139.256596][ T6821] RAX: ffffffffffffffda RBX: 00007f01e95b6080 RCX: 00007f01e938e929 [ 139.256614][ T6821] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100 [ 139.256629][ T6821] RBP: 00007f01e9410b39 R08: 0000000000000000 R09: 0000000000000000 [ 139.256645][ T6821] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 139.256660][ T6821] R13: 0000000000000000 R14: 00007f01e95b6080 R15: 00007fff40c6a0f8 [ 139.256695][ T6821] [ 139.324704][ T6821] syz.2.303: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 139.683680][ T6821] CPU: 0 UID: 0 PID: 6821 Comm: syz.2.303 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) [ 139.683713][ T6821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 139.683727][ T6821] Call Trace: [ 139.683736][ T6821] [ 139.683745][ T6821] dump_stack_lvl+0x16c/0x1f0 [ 139.683786][ T6821] warn_alloc+0x248/0x3a0 [ 139.683822][ T6821] ? __pfx_warn_alloc+0x10/0x10 [ 139.683857][ T6821] ? kfree+0x2b4/0x4d0 [ 139.683893][ T6821] ? __get_vm_area_node+0x208/0x330 [ 139.683937][ T6821] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 139.683976][ T6821] ? __lock_acquire+0xb8a/0x1c90 [ 139.684006][ T6821] ? __do_sys_listmount+0x1c2/0xec0 [ 139.684044][ T6821] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 139.684074][ T6821] ? __alloc_pages_noprof+0xb/0x1b0 [ 139.684106][ T6821] ? ___kmalloc_large_node+0x84/0x1e0 [ 139.684130][ T6821] ? find_held_lock+0x2b/0x80 [ 139.684159][ T6821] __kvmalloc_node_noprof+0x30a/0x620 [ 139.684191][ T6821] ? __do_sys_listmount+0x1c2/0xec0 [ 139.684220][ T6821] ? __do_sys_listmount+0x1c2/0xec0 [ 139.684254][ T6821] ? __do_sys_listmount+0x1c2/0xec0 [ 139.684280][ T6821] __do_sys_listmount+0x1c2/0xec0 [ 139.684314][ T6821] ? __x64_sys_futex+0x1e0/0x4c0 [ 139.684340][ T6821] ? __x64_sys_futex+0x1e9/0x4c0 [ 139.684369][ T6821] ? __pfx___do_sys_listmount+0x10/0x10 [ 139.684415][ T6821] do_syscall_64+0xcd/0x490 [ 139.684451][ T6821] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 139.684476][ T6821] RIP: 0033:0x7f01e938e929 [ 139.684495][ T6821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 139.684517][ T6821] RSP: 002b:00007f01ea29e038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 139.684539][ T6821] RAX: ffffffffffffffda RBX: 00007f01e95b6080 RCX: 00007f01e938e929 [ 139.684555][ T6821] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100 [ 139.684569][ T6821] RBP: 00007f01e9410b39 R08: 0000000000000000 R09: 0000000000000000 [ 139.684582][ T6821] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 139.684596][ T6821] R13: 0000000000000000 R14: 00007f01e95b6080 R15: 00007fff40c6a0f8 [ 139.684630][ T6821] [ 139.684639][ T6821] Mem-Info: [ 139.916763][ T6821] active_anon:10637 inactive_anon:0 isolated_anon:0 [ 139.916763][ T6821] active_file:19973 inactive_file:40197 isolated_file:0 [ 139.916763][ T6821] unevictable:768 dirty:351 writeback:0 [ 139.916763][ T6821] slab_reclaimable:10221 slab_unreclaimable:94225 [ 139.916763][ T6821] mapped:25530 shmem:1364 pagetables:1099 [ 139.916763][ T6821] sec_pagetables:0 bounce:0 [ 139.916763][ T6821] kernel_misc_reclaimable:0 [ 139.916763][ T6821] free:1301447 free_pcp:33561 free_cma:0 [ 140.039868][ T6821] Node 0 active_anon:42548kB inactive_anon:0kB active_file:79892kB inactive_file:160584kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:102120kB dirty:1504kB writeback:0kB shmem:3920kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11420kB pagetables:4240kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 140.084069][ T6821] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:156kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 140.089323][ T6831] netlink: 25 bytes leftover after parsing attributes in process `syz.0.306'. [ 140.204719][ T6821] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 140.263707][ T6821] lowmem_reserve[]: 0 2481 2482 2482 2482 [ 140.279757][ T6821] Node 0 DMA32 free:1295760kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:43196kB inactive_anon:0kB active_file:79892kB inactive_file:159256kB unevictable:1536kB writepending:1504kB present:3129332kB managed:2540892kB mlocked:0kB bounce:0kB free_pcp:106900kB local_pcp:61820kB free_cma:0kB [ 140.328077][ T6821] lowmem_reserve[]: 0 0 1 1 1 [ 140.375881][ T6821] Node 0 Normal free:0kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:52kB inactive_anon:0kB active_file:0kB inactive_file:1328kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB [ 140.452181][ T6821] lowmem_reserve[]: 0 0 0 0 0 [ 140.457436][ T6821] Node 1 Normal free:3894796kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:26460kB local_pcp:18140kB free_cma:0kB [ 140.493677][ T6821] lowmem_reserve[]: 0 0 0 0 0 [ 140.498707][ T6821] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 140.527334][ T6821] Node 0 DMA32: 1698*4kB (UME) 1853*8kB (UME) 1116*16kB (UME) 1042*32kB (UME) 405*64kB (UME) 169*128kB (UME) 100*256kB (UM) 48*512kB (UM) 29*1024kB (UM) 3*2048kB (UM) 266*4096kB (M) = 1295920kB [ 140.547209][ T6821] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 140.559587][ T6821] Node 1 Normal: 200*4kB (UM) 64*8kB (UME) 54*16kB (UME) 86*32kB (UME) 20*64kB (UME) 8*128kB (UME) 6*256kB (UME) 4*512kB (UME) 3*1024kB (ME) 1*2048kB (E) 947*4096kB (M) = 3894848kB [ 140.579472][ T6821] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 140.605559][ T6843] FAULT_INJECTION: forcing a failure. [ 140.605559][ T6843] name failslab, interval 1, probability 0, space 0, times 0 [ 140.619537][ T6821] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 140.633957][ T6843] CPU: 0 UID: 0 PID: 6843 Comm: syz.3.310 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) [ 140.633991][ T6843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 140.634006][ T6843] Call Trace: [ 140.634013][ T6843] [ 140.634022][ T6843] dump_stack_lvl+0x16c/0x1f0 [ 140.634065][ T6843] should_fail_ex+0x512/0x640 [ 140.634098][ T6843] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 140.634133][ T6843] should_failslab+0xc2/0x120 [ 140.634157][ T6843] __kmalloc_cache_noprof+0x6a/0x3e0 [ 140.634189][ T6843] ? fuse_dev_alloc+0x8e/0x280 [ 140.634222][ T6843] ? kasan_save_track+0x14/0x30 [ 140.634259][ T6843] fuse_dev_alloc+0x8e/0x280 [ 140.634292][ T6843] fuse_dev_alloc_install+0x13/0x40 [ 140.634325][ T6843] cuse_channel_open+0x100/0x7f0 [ 140.634356][ T6843] ? __pfx_cuse_channel_open+0x10/0x10 [ 140.634387][ T6843] misc_open+0x35d/0x420 [ 140.634416][ T6843] ? __pfx_misc_open+0x10/0x10 [ 140.634446][ T6843] chrdev_open+0x234/0x6a0 [ 140.634481][ T6843] ? __pfx_apparmor_file_open+0x10/0x10 [ 140.634511][ T6843] ? __pfx_chrdev_open+0x10/0x10 [ 140.634549][ T6843] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 140.634588][ T6843] do_dentry_open+0x741/0x1c10 [ 140.634623][ T6843] ? __pfx_chrdev_open+0x10/0x10 [ 140.634665][ T6843] vfs_open+0x82/0x3f0 [ 140.634695][ T6843] path_openat+0x1de4/0x2cb0 [ 140.634736][ T6843] ? __pfx_path_openat+0x10/0x10 [ 140.634769][ T6843] ? __lock_acquire+0xb8a/0x1c90 [ 140.634804][ T6843] do_filp_open+0x20b/0x470 [ 140.634854][ T6843] ? __pfx_do_filp_open+0x10/0x10 [ 140.634908][ T6843] ? alloc_fd+0x471/0x7d0 [ 140.634945][ T6843] do_sys_openat2+0x11b/0x1d0 [ 140.634969][ T6843] ? __pfx_do_sys_openat2+0x10/0x10 [ 140.635006][ T6843] __x64_sys_openat+0x174/0x210 [ 140.635030][ T6843] ? __pfx___x64_sys_openat+0x10/0x10 [ 140.635066][ T6843] do_syscall_64+0xcd/0x490 [ 140.635102][ T6843] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 140.635125][ T6843] RIP: 0033:0x7fd8cb18e929 [ 140.635143][ T6843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 140.635163][ T6843] RSP: 002b:00007fd8c8ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 140.635183][ T6843] RAX: ffffffffffffffda RBX: 00007fd8cb3b6080 RCX: 00007fd8cb18e929 [ 140.635198][ T6843] RDX: 00000000001c5041 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 140.635212][ T6843] RBP: 00007fd8cb210b39 R08: 0000000000000000 R09: 0000000000000000 [ 140.635224][ T6843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 140.635237][ T6843] R13: 0000000000000000 R14: 00007fd8cb3b6080 R15: 00007fff34cda118 [ 140.635267][ T6843] [ 140.910181][ T6821] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 140.919820][ T6821] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 140.929893][ T6821] 61562 total pagecache pages [ 140.934627][ T6821] 0 pages in swap cache [ 140.938796][ T6821] Free swap = 124996kB [ 140.942961][ T6821] Total swap = 124996kB [ 140.947180][ T6821] 2097051 pages RAM [ 140.950987][ T6821] 0 pages HighMem/MovableOnly [ 140.957114][ T6821] 429850 pages reserved [ 140.961440][ T6821] 0 pages cma reserved [ 142.059210][ T6878] netlink: 4 bytes leftover after parsing attributes in process `syz.3.324'. [ 142.074577][ T6878] netlink: 13 bytes leftover after parsing attributes in process `syz.3.324'. [ 142.811701][ T6901] FAULT_INJECTION: forcing a failure. [ 142.811701][ T6901] name failslab, interval 1, probability 0, space 0, times 0 [ 142.828981][ T6901] CPU: 1 UID: 0 PID: 6901 Comm: syz.0.332 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) [ 142.829018][ T6901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 142.829033][ T6901] Call Trace: [ 142.829042][ T6901] [ 142.829051][ T6901] dump_stack_lvl+0x16c/0x1f0 [ 142.829094][ T6901] should_fail_ex+0x512/0x640 [ 142.829133][ T6901] should_failslab+0xc2/0x120 [ 142.829158][ T6901] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 142.829195][ T6901] ? skb_clone+0x190/0x3f0 [ 142.829235][ T6901] skb_clone+0x190/0x3f0 [ 142.829272][ T6901] netlink_deliver_tap+0xabd/0xd30 [ 142.829307][ T6901] netlink_unicast+0x5df/0x7f0 [ 142.829338][ T6901] ? __pfx_netlink_unicast+0x10/0x10 [ 142.829376][ T6901] netlink_sendmsg+0x8d1/0xdd0 [ 142.829410][ T6901] ? __pfx_netlink_sendmsg+0x10/0x10 [ 142.829453][ T6901] ____sys_sendmsg+0xa95/0xc70 [ 142.829482][ T6901] ? copy_msghdr_from_user+0x10a/0x160 [ 142.829518][ T6901] ? __pfx_____sys_sendmsg+0x10/0x10 [ 142.829556][ T6901] ? __pfx_futex_wake_mark+0x10/0x10 [ 142.829593][ T6901] ___sys_sendmsg+0x134/0x1d0 [ 142.829634][ T6901] ? __pfx____sys_sendmsg+0x10/0x10 [ 142.829714][ T6901] ? do_futex+0x122/0x350 [ 142.829753][ T6901] __sys_sendmsg+0x16d/0x220 [ 142.829790][ T6901] ? __pfx___sys_sendmsg+0x10/0x10 [ 142.829826][ T6901] ? __x64_sys_futex+0x1e0/0x4c0 [ 142.829877][ T6901] do_syscall_64+0xcd/0x490 [ 142.829915][ T6901] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 142.829940][ T6901] RIP: 0033:0x7efd4458e929 [ 142.829960][ T6901] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 142.829983][ T6901] RSP: 002b:00007efd45320038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 142.830006][ T6901] RAX: ffffffffffffffda RBX: 00007efd447b5fa0 RCX: 00007efd4458e929 [ 142.830023][ T6901] RDX: 0000000004048000 RSI: 0000200000004240 RDI: 0000000000000000 [ 142.830039][ T6901] RBP: 00007efd44610b39 R08: 0000000000000000 R09: 0000000000000000 [ 142.830054][ T6901] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 142.830068][ T6901] R13: 0000000000000000 R14: 00007efd447b5fa0 R15: 00007ffdb79c6988 [ 142.830102][ T6901] [ 143.279013][ T6908] netlink: 16 bytes leftover after parsing attributes in process `syz.2.335'. [ 143.865898][ T6919] netlink: 28 bytes leftover after parsing attributes in process `syz.0.338'. [ 144.036722][ T6919] team_slave_0 (unregistering): left promiscuous mode [ 144.062805][ T6919] team_slave_0 (unregistering): left allmulticast mode [ 144.130545][ T6919] team0: Port device team_slave_0 removed [ 144.311105][ T30] audit: type=1800 audit(1750627797.088:5): pid=6916 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.336" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0 [ 144.697354][ T6925] netlink: 'syz.0.340': attribute type 10 has an invalid length. [ 144.736897][ T6925] netlink: 230 bytes leftover after parsing attributes in process `syz.0.340'. [ 144.797896][ T6925] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check. [ 145.494797][ T6945] netlink: 13 bytes leftover after parsing attributes in process `syz.3.347'. [ 146.016135][ T6962] netlink: 4 bytes leftover after parsing attributes in process `syz.1.356'. [ 146.890675][ T6987] FAULT_INJECTION: forcing a failure. [ 146.890675][ T6987] name failslab, interval 1, probability 0, space 0, times 0 [ 146.917076][ T6987] CPU: 1 UID: 0 PID: 6987 Comm: syz.1.363 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) [ 146.917115][ T6987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 146.917131][ T6987] Call Trace: [ 146.917140][ T6987] [ 146.917150][ T6987] dump_stack_lvl+0x16c/0x1f0 [ 146.917193][ T6987] should_fail_ex+0x512/0x640 [ 146.917227][ T6987] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 146.917269][ T6987] should_failslab+0xc2/0x120 [ 146.917294][ T6987] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 146.917329][ T6987] ? __proc_create+0xc3/0x8c0 [ 146.917363][ T6987] ? __proc_create+0x2ce/0x8c0 [ 146.917409][ T6987] __proc_create+0x2ce/0x8c0 [ 146.917446][ T6987] ? __pfx___proc_create+0x10/0x10 [ 146.917490][ T6987] ? _raw_write_unlock+0x28/0x50 [ 146.917524][ T6987] ? proc_register+0x314/0x5f0 [ 146.917564][ T6987] proc_create_reg+0x7d/0x180 [ 146.917598][ T6987] proc_create_net_data+0x8e/0x1b0 [ 146.917637][ T6987] ? __pfx_proc_create_net_data+0x10/0x10 [ 146.917689][ T6987] nfs_fs_proc_net_init+0xf3/0x1e0 [ 146.917724][ T6987] nfs_net_init+0x130/0x300 [ 146.917755][ T6987] ? __pfx_nfs_net_init+0x10/0x10 [ 146.917783][ T6987] ops_init+0x1e2/0x5f0 [ 146.917812][ T6987] setup_net+0x1ff/0x510 [ 146.917834][ T6987] ? lockdep_init_map_type+0x5c/0x280 [ 146.917867][ T6987] ? __pfx_setup_net+0x10/0x10 [ 146.917894][ T6987] ? debug_mutex_init+0x37/0x70 [ 146.917926][ T6987] copy_net_ns+0x2a6/0x5f0 [ 146.917957][ T6987] create_new_namespaces+0x3ea/0xa90 [ 146.917994][ T6987] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 146.918025][ T6987] ksys_unshare+0x45b/0xa40 [ 146.918057][ T6987] ? __pfx_ksys_unshare+0x10/0x10 [ 146.918090][ T6987] ? xfd_validate_state+0x61/0x180 [ 146.918132][ T6987] __x64_sys_unshare+0x31/0x40 [ 146.918163][ T6987] do_syscall_64+0xcd/0x490 [ 146.918202][ T6987] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 146.918227][ T6987] RIP: 0033:0x7fc15398e929 [ 146.918249][ T6987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 146.918275][ T6987] RSP: 002b:00007fc15486c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 146.918298][ T6987] RAX: ffffffffffffffda RBX: 00007fc153bb5fa0 RCX: 00007fc15398e929 [ 146.918314][ T6987] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 146.918327][ T6987] RBP: 00007fc153a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 146.918343][ T6987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 146.918358][ T6987] R13: 0000000000000000 R14: 00007fc153bb5fa0 R15: 00007ffea2cd1e08 [ 146.918394][ T6987] [ 146.923271][ T6987] ------------[ cut here ]------------ [ 147.189666][ T6987] remove_proc_entry: removing non-empty directory 'net/rpc', leaking at least 'nfs' [ 147.243999][ T6987] WARNING: CPU: 0 PID: 6987 at fs/proc/generic.c:727 remove_proc_entry+0x45e/0x530 [ 147.256162][ T6987] Modules linked in: [ 147.260317][ T6987] CPU: 0 UID: 0 PID: 6987 Comm: syz.1.363 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) [ 147.272308][ T6987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 147.283019][ T6987] RIP: 0010:remove_proc_entry+0x45e/0x530 [ 147.289344][ T6987] Code: 3c 02 00 0f 85 85 00 00 00 48 8b 93 d8 00 00 00 4d 89 f0 4c 89 e9 48 c7 c6 00 bc c2 8b 48 c7 c7 20 bb c2 8b e8 c3 77 1d ff 90 <0f> 0b 90 90 e9 5f fe ff ff e8 a4 61 5e ff 90 48 b8 00 00 00 00 00 [ 147.309182][ T6987] RSP: 0018:ffffc90003e4fb08 EFLAGS: 00010282 [ 147.315566][ T6987] RAX: 0000000000000000 RBX: ffff88802cba0a00 RCX: ffffc900052d9000 [ 147.323661][ T6987] RDX: 0000000000080000 RSI: ffffffff817aa1b5 RDI: 0000000000000001 [ 147.331660][ T6987] RBP: ffff88804eee2840 R08: 0000000000000001 R09: 0000000000000000 [ 147.340274][ T6987] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88804eee2780 [ 147.348718][ T6987] R13: ffff88804eee2864 R14: ffff8880773b94a4 R15: dffffc0000000000 [ 147.357208][ T6987] FS: 00007fc15486c6c0(0000) GS:ffff88812475f000(0000) knlGS:0000000000000000 [ 147.368112][ T6987] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 147.375505][ T6987] CR2: 0000001b304d5ff8 CR3: 0000000077060000 CR4: 00000000003526f0 [ 147.384720][ T6987] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 147.392719][ T6987] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 147.401643][ T6987] Call Trace: [ 147.404949][ T6992] netlink: 342 bytes leftover after parsing attributes in process `syz.2.365'. [ 147.406934][ T6991] ima: policy update failed [ 147.414873][ T6987] [ 147.422329][ T6987] ? __pfx_remove_proc_entry+0x10/0x10 [ 147.428307][ T6987] ? cache_destroy_net+0x31/0x50 [ 147.433296][ T6987] ? sunrpc_exit_net+0x37/0x90 [ 147.438431][ T6987] sunrpc_exit_net+0x46/0x90 [ 147.443063][ T6987] ? __pfx_sunrpc_exit_net+0x10/0x10 [ 147.448465][ T6987] ops_undo_list+0x2ee/0xab0 [ 147.453112][ T6987] ? __pfx_ops_undo_list+0x10/0x10 [ 147.459132][ T6987] ? ops_init+0x2fa/0x5f0 [ 147.463505][ T6987] setup_net+0x2e1/0x510 [ 147.467865][ T6987] ? __pfx_setup_net+0x10/0x10 [ 147.472664][ T6987] ? debug_mutex_init+0x37/0x70 [ 147.477597][ T6987] copy_net_ns+0x2a6/0x5f0 [ 147.482570][ T6987] create_new_namespaces+0x3ea/0xa90 [ 147.488337][ T6987] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 147.494051][ T6987] ksys_unshare+0x45b/0xa40 [ 147.494126][ T30] audit: type=1802 audit(1750627800.238:6): pid=6991 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.365" res=0 errno=0 [ 147.498571][ T6987] ? __pfx_ksys_unshare+0x10/0x10 [ 147.498607][ T6987] ? xfd_validate_state+0x61/0x180 [ 147.525628][ T6987] __x64_sys_unshare+0x31/0x40 [ 147.530427][ T6987] do_syscall_64+0xcd/0x490 [ 147.535062][ T6987] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 147.540985][ T6987] RIP: 0033:0x7fc15398e929 [ 147.545510][ T6987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 147.559871][ T6990] process 'syz.0.364' launched './file0' with NULL argv: empty string added [ 147.565202][ T6987] RSP: 002b:00007fc15486c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 147.582909][ T6987] RAX: ffffffffffffffda RBX: 00007fc153bb5fa0 RCX: 00007fc15398e929 [ 147.591342][ T6987] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 147.599447][ T6987] RBP: 00007fc153a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 147.607536][ T6987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 147.615586][ T6987] R13: 0000000000000000 R14: 00007fc153bb5fa0 R15: 00007ffea2cd1e08 [ 147.623662][ T6987] [ 147.626702][ T6987] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 147.634000][ T6987] CPU: 0 UID: 0 PID: 6987 Comm: syz.1.363 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) [ 147.645912][ T6987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 147.655983][ T6987] Call Trace: [ 147.659285][ T6987] [ 147.662235][ T6987] dump_stack_lvl+0x3d/0x1f0 [ 147.666875][ T6987] panic+0x71c/0x800 [ 147.670813][ T6987] ? __pfx_panic+0x10/0x10 [ 147.675267][ T6987] ? show_trace_log_lvl+0x29b/0x3e0 [ 147.680511][ T6987] ? remove_proc_entry+0x45e/0x530 [ 147.685651][ T6987] check_panic_on_warn+0xab/0xb0 [ 147.690618][ T6987] __warn+0xf6/0x3c0 [ 147.694527][ T6987] ? remove_proc_entry+0x45e/0x530 [ 147.699643][ T6987] report_bug+0x3c3/0x580 [ 147.703988][ T6987] ? remove_proc_entry+0x45e/0x530 [ 147.709104][ T6987] handle_bug+0x184/0x210 [ 147.713445][ T6987] exc_invalid_op+0x17/0x50 [ 147.717957][ T6987] asm_exc_invalid_op+0x1a/0x20 [ 147.722824][ T6987] RIP: 0010:remove_proc_entry+0x45e/0x530 [ 147.728552][ T6987] Code: 3c 02 00 0f 85 85 00 00 00 48 8b 93 d8 00 00 00 4d 89 f0 4c 89 e9 48 c7 c6 00 bc c2 8b 48 c7 c7 20 bb c2 8b e8 c3 77 1d ff 90 <0f> 0b 90 90 e9 5f fe ff ff e8 a4 61 5e ff 90 48 b8 00 00 00 00 00 [ 147.748166][ T6987] RSP: 0018:ffffc90003e4fb08 EFLAGS: 00010282 [ 147.754242][ T6987] RAX: 0000000000000000 RBX: ffff88802cba0a00 RCX: ffffc900052d9000 [ 147.762221][ T6987] RDX: 0000000000080000 RSI: ffffffff817aa1b5 RDI: 0000000000000001 [ 147.770194][ T6987] RBP: ffff88804eee2840 R08: 0000000000000001 R09: 0000000000000000 [ 147.778165][ T6987] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88804eee2780 [ 147.786147][ T6987] R13: ffff88804eee2864 R14: ffff8880773b94a4 R15: dffffc0000000000 [ 147.794132][ T6987] ? __warn_printk+0x1a5/0x350 [ 147.798915][ T6987] ? remove_proc_entry+0x45d/0x530 [ 147.804033][ T6987] ? __pfx_remove_proc_entry+0x10/0x10 [ 147.809496][ T6987] ? cache_destroy_net+0x31/0x50 [ 147.814445][ T6987] ? sunrpc_exit_net+0x37/0x90 [ 147.819222][ T6987] sunrpc_exit_net+0x46/0x90 [ 147.823825][ T6987] ? __pfx_sunrpc_exit_net+0x10/0x10 [ 147.829117][ T6987] ops_undo_list+0x2ee/0xab0 [ 147.833716][ T6987] ? __pfx_ops_undo_list+0x10/0x10 [ 147.838830][ T6987] ? ops_init+0x2fa/0x5f0 [ 147.843161][ T6987] setup_net+0x2e1/0x510 [ 147.847405][ T6987] ? __pfx_setup_net+0x10/0x10 [ 147.852172][ T6987] ? debug_mutex_init+0x37/0x70 [ 147.857027][ T6987] copy_net_ns+0x2a6/0x5f0 [ 147.861449][ T6987] create_new_namespaces+0x3ea/0xa90 [ 147.866744][ T6987] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 147.872383][ T6987] ksys_unshare+0x45b/0xa40 [ 147.876981][ T6987] ? __pfx_ksys_unshare+0x10/0x10 [ 147.882014][ T6987] ? xfd_validate_state+0x61/0x180 [ 147.887141][ T6987] __x64_sys_unshare+0x31/0x40 [ 147.891916][ T6987] do_syscall_64+0xcd/0x490 [ 147.896436][ T6987] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 147.902333][ T6987] RIP: 0033:0x7fc15398e929 [ 147.906749][ T6987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 147.926359][ T6987] RSP: 002b:00007fc15486c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 147.934778][ T6987] RAX: ffffffffffffffda RBX: 00007fc153bb5fa0 RCX: 00007fc15398e929 [ 147.942746][ T6987] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 147.950716][ T6987] RBP: 00007fc153a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 147.958684][ T6987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 147.966652][ T6987] R13: 0000000000000000 R14: 00007fc153bb5fa0 R15: 00007ffea2cd1e08 [ 147.974640][ T6987] [ 147.977879][ T6987] Kernel Offset: disabled [ 147.982198][ T6987] Rebooting in 86400 seconds..