last executing test programs: 14.754925558s ago: executing program 0 (id=1458): r0 = socket(0x1e, 0x4, 0x0) ioperm$auto(0x7, 0x6, 0x2) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HSR_C_GET_NODE_STATUS(r1, 0x0, 0x2008000) socket(0x10, 0x2, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000ac0), 0xffffffffffffffff) sendmsg$auto_TCP_METRICS_CMD_GET(r3, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000b00)={0x14, r4, 0x89c1beb01534ff9b, 0x70bd29, 0x25dfdbfb}, 0x14}}, 0x0) sendmsg$auto_TCP_METRICS_CMD_GET(r2, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r4, 0x8, 0x70bd2d, 0x25dfdbfc, {}, [@TCP_METRICS_ATTR_ADDR_IPV4={0x8, 0x1, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x4008080) getsockname$auto(r0, 0x0, &(0x7f0000000180)=0xff) mount$auto(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000)='nfsd\x00\x11\xb5\xe9]\xe09\xe6$\xb3\xfao\x9e\xf98W3\x90I/\xc5\x8cH\xab`]\x0e\xffV<\xba\n\n\xeb\xef\x7f\xcc1\xb2\x9a6\xfb]\x10\xde\xc2\xa4kN:\t\x1b]m\x94\xff\xa1\xe8q}!\xb1\x7f\xac\x99~\x81\xd1w\xde\xc6f%\'#\x9c\f\x17', 0xfffffffffffffffb, 0x0) 14.157506849s ago: executing program 0 (id=1462): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x6, 0x0, 0x9, 0x0, 0x1, 0xb}, 0x80000c}, 0x5, 0x2000fdff) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/i8042/serio1/input/input3/capabilities/sw\x00', 0x309002, 0x0) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/tracing_cpumask\x00', 0x8301, 0x0) syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x6) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/dummy_hcd.4/usb5/power/autosuspend\x00', 0x40080, 0x0) write$auto(r0, 0x0, 0x81) acct$auto(&(0x7f0000000000)='/dev/fb0\x00') recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x1, 0x84) setgroups$auto(0x9, &(0x7f0000000040)=0x1) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0x202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x2, 0x5, 0x2) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x1, 0x0) 11.405108043s ago: executing program 0 (id=1466): openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) ioprio_set$auto(0x3, 0xffffffffffffffff, 0x200) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/007/001\x00', 0xa901, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x100480, 0x0) ioctl$auto_TIOCGICOUNT2(r1, 0x545d, &(0x7f0000000440)) ioctl$auto_USBDEVFS_SUBMITURB32(r0, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYRES16=r1, @ANYRES32=r1, @ANYRES32=r1]) socket(0x1d, 0x2, 0x2) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) connect$auto(0x3, 0x0, 0x55) socket(0x29, 0x5, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) mq_open$auto(&(0x7f0000000000)='.\xf1e4\xdf\x16\x95kxE\xd9x\x15\xb0\xf6V\x93\xb4E\x06\xc5}l', 0x400056a, 0x9, 0x0) ftruncate$auto(0x3, 0x700) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0xa, 0x0) r2 = socket(0xa, 0x2, 0x0) r3 = socket(0xa, 0x3, 0xff) connect$auto(r3, &(0x7f00000018c0)=@generic={0xa}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f) madvise$auto(0x1ffff000, 0x7, 0x100000000) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) shmget$auto(0x8, 0x10563, 0x568d1af2) madvise$auto(0x0, 0xffffffffffff0004, 0x19) syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), r2) getpgid$auto(0x0) shmctl$auto(0x0, 0x0, 0xfffffffffffffffd) lsm_set_self_attr$auto(0x1, 0x0, 0x80, 0x0) 7.207827642s ago: executing program 3 (id=1477): mmap$auto(0x400000000000000, 0x2000b, 0xdf, 0xeb1, 0x40000000000a5, 0x200000008000) close_range$auto(0xffffffffffffffff, 0x8000, 0xa) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r1, 0x7f, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92) mmap$auto(0x0, 0x1ff, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x16, 0xffffffffffffffff, 0x300000000000) r3 = socket(0x2, 0x1, 0x106) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x4008) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000140), r4) sendmsg$auto_OVS_VPORT_CMD_SET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRESOCT=r2, @ANYBLOB="010028bd7000fe00f7240400000004e931800f0003006e65746465766a"], 0x28}, 0x1, 0x0, 0x0, 0x8080}, 0x40) r5 = getsockopt$auto_SO_NOFCS(r3, 0x5, 0x2b, 0x0, &(0x7f0000000080)=0x7ff) connect$auto(r5, &(0x7f0000000100)=@llc={0x1a, 0x33a, 0x3b, 0x2, 0x2, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x8}}, 0x7) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/loop8\x00', 0x10080, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) write$auto(0x3, 0x0, 0x100082) capget$auto(0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x106) socket(0xf, 0x3, 0x2) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000340)='/dev/admmidi2\x00', 0x601, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0c, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) 6.694050779s ago: executing program 0 (id=1478): r0 = fanotify_init$auto(0x5, 0x0) creat$auto(&(0x7f0000000000)='./file0\x00', 0x43ff) fanotify_mark$auto(r0, 0x205, 0xa, 0x4, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) getdents64$auto(r1, 0x0, 0x400) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000026d00)='/dev/dri/card1\x00', 0x2000, 0x0) fspick$auto(0xffffffffffffffff, 0x0, 0x3) r3 = io_uring_setup$auto(0xa, 0x0) read$auto(r3, 0x0, 0x400000006) close_range$auto(r2, r2, 0x0) r4 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r5 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f00000000c0), r4) msgctl$auto_MSG_STAT(0x10000, 0xb, &(0x7f0000000180)={{0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0x1000, 0x1, 0x2, 0x8001}, &(0x7f0000000100)=0x4, &(0x7f0000000140)=0x8, 0x9, 0xffffffff, 0x4, 0x1, 0x5a, 0x0, 0x8, 0x9, @inferred, @raw=0x6}) r7 = semctl$auto_SETALL(0x7c1c1f14, 0x5, 0x11, 0x5) r8 = getpid() r9 = gettid() rt_tgsigqueueinfo$auto(r8, r9, 0x21, &(0x7f0000000400)={@_si_pad}) r10 = semctl$auto_IPC_STAT(0xfffffffc, 0x3, 0x2, 0x5) r11 = geteuid() keyctl$auto(0x1f, r11, r11, 0x5, 0x8) syz_clone3(&(0x7f0000000480)={0x200004000, &(0x7f0000000200), &(0x7f0000000240), &(0x7f0000000280)=0x0, {0x1a}, &(0x7f00000002c0)=""/132, 0x84, &(0x7f0000000380)=""/167, &(0x7f0000000440)=[0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x5}, 0x58) sendmsg$auto_OVS_VPORT_CMD_SET(r4, &(0x7f0000000a00)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x120810}, 0xc, &(0x7f00000009c0)={&(0x7f0000000a40)={0x498, r5, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [@OVS_VPORT_ATTR_OPTIONS={0xe8, 0x4, 0x0, 0x1, [@nested={0x14, 0x36, 0x0, 0x1, [@typed={0xf, 0x137, 0x0, 0x0, @str='SMC_PNETID\x00'}]}, @generic="6c578323f9430d333680b31e0dbd050ac9f8e1e4d6da94d9bd4f3a1d6b0fca7422af78f9356f711ad50156479049b37136824f6f161cc4f7d7edaf0789affa1c89ac09fcf20b88e21f806e0a195e62d191747683e7b633b8b647b9138dfffcacdc8c0d16c92b598ee5078a4d5f45dd318f17e94b15dfc3628570bd080508d64a17c6df47c731b4c38d064633c263ca2913aacaae8ed8ebc066b848c4b09f350b4f09b1bd90b43d1471a779721e6d41532197e3da", @typed={0x8, 0x106, 0x0, 0x0, @uid=r6}, @typed={0x8, 0x10f, 0x0, 0x0, @ipv4=@empty}, @typed={0x8, 0xaf, 0x0, 0x0, @ipv4=@remote}, @nested={0x4, 0x49}]}, @OVS_VPORT_ATTR_PORT_NO={0x8, 0x1, 0x3}, @OVS_VPORT_ATTR_UPCALL_STATS={0x27b, 0xa, 0x0, 0x1, [@typed={0xb5, 0xe6, 0x0, 0x0, @binary="da252bb43d8a5d5b5fe1ef91d039137d7ee872fd374db6ceb97132038b3726e175d98c36afb6c56e497b102882a6541de9ebe3d7ab2e18fc12e848177aa8b4805f796cf48d45881a7ee6881224c2314ab8fe8aff9c0eabcae543e6afbadf69546400d2a6917c50b4aee3afef1ed87cf0689f3ec0a20e3d05fcc1f1b844c93abd534b0ddfe31260768b5f0c623ade1ba0296bfd92df428904beb05bde9d00f27a6b86feb7890d93a075661afa140534b6f1"}, @typed={0x8, 0xfb, 0x0, 0x0, @pid=r7}, @generic="c9df367b7742ef19d82f64f3c96022dcf2644b4e8d225530a0d80309f87b6dc11706e2426d2eb06cf959858ef82c4fc0385eda410054e3effef9d0960ca4a6b3af681b805c723d14124f27a40247e3ec8830bb848a2f5ab67a00f8433e3ea39dcfe03b5b0b22ae6183f48c8598d82b72433e009ccdf832c6cb96", @generic="c5fdbd9364c2ece25f920ce7722008f2d4dccacfb05465b0272d6d0fcf954cb500c4a465b5707fd56af342999fb53100094c1c8be6447edde2c45f144b09e16a9e1a8d8f691586ae015d1314c43b51cc0040b99c9d0dd56d6eceb816c21e06a80351a93fe2b71860192428b011fbc716f5565295e61d5cd684e67bbe15242e45ad0040a7c0a7bfa08df38a85df514c205641a2d878", @nested={0x10, 0x15, 0x0, 0x1, [@nested={0x4, 0xb3}, @typed={0x8, 0x67, 0x0, 0x0, @pid=r9}]}, @typed={0x8, 0x13a, 0x0, 0x0, @pid=r10}, @typed={0x8, 0x141, 0x0, 0x0, @uid=r11}, @nested={0x88, 0xb2, 0x0, 0x1, [@generic, @typed={0x8, 0xaf, 0x0, 0x0, @pid=r12}, @nested={0x7c, 0xfa, 0x0, 0x1, [@generic="13cab612be56960f8b06f92fd374feea7e2bcc6b7e628b05d47fab74fdacea1caed3690a6c310bef4968259af7e36db50bd2bac8506eaf3123578e28d0494dfb934182362646a9a637e1cf9ca67d1eeb00689bb2099b1f55d43671359aebb49a093e0f610c0e6edff7068b3efc6b02099727dfba57d85b5c"]}]}]}, @OVS_VPORT_ATTR_STATS={0x44, 0x6, {0x0, 0xf5a, 0x3, 0x5, 0x7fff, 0x0, 0xfffffffffffffff7, 0xabb6}}, @OVS_VPORT_ATTR_NAME={0x7, 0x3, '5-\x00'}, @OVS_VPORT_ATTR_PORT_NO={0x8, 0x1, 0x9}, @OVS_VPORT_ATTR_OPTIONS={0xc2, 0x4, 0x0, 0x1, [@generic="74436bc36b38b1c5f1bd203253b0d73209b1f98ce9339c338c061d8b15dfd85dd7b51a1f2d26e40a277c7e4a98b7d3c75cd603c96a9095a331052d823c6e2fb6badb7ac484c4aef3a6414db3021029fc5808f1b3295dd7f6a468f8ac8010d7b42e5eef9404945e10ed0aef3b1b5112333a79afcb0c11182f376f6ab2bbee5eac6b3c393fffdc8b1cd8e7b0cf1dbdb37554d9e22fd1cf7f752f6d6dfb9ce2e1e8864be95e04dd1d345fbc82", @typed={0x4, 0x10f}, @typed={0xc, 0x142, 0x0, 0x0, @u64=0x8e}, @generic="3c2ef9"]}]}, 0x498}, 0x1, 0x0, 0x0, 0x20001000}, 0x1010) r13 = socket$nl_generic(0x10, 0x3, 0x10) r14 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f00000049c0), 0xffffffffffffffff) sendmsg$auto_SMC_PNETID_FLUSH(r13, &(0x7f0000004a80)={0x0, 0x0, &(0x7f0000004a40)={&(0x7f0000004a00)={0x14, r14, 0x1, 0x70bd2a, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x0) kexec_load$auto(0x5, 0x2, 0x0, 0x1) mmap$auto(0x0, 0x7ff, 0xdf, 0xeb1, 0x401, 0x8000) move_mount$auto(r4, &(0x7f0000000000)='./file0\x00', r4, &(0x7f0000000040)='./file0\x00', 0x6) 6.07504153s ago: executing program 3 (id=1481): prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x40080, 0x0) adjtimex$auto(0x0) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) socketpair$auto(0x20001, 0xe, 0x8000000000000000, 0x0) io_uring_setup$auto(0x1, 0x0) connect$auto(0x3, 0x0, 0x56) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) fanotify_init$auto(0x65, 0x2) pipe$auto(0x0) futex$auto(0x0, 0x3, 0x5, &(0x7f00000000c0)={0xfffffffffffffffd, 0x8000000000000001}, &(0x7f0000000100)=0x6, 0x2000094) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0) 5.713259594s ago: executing program 3 (id=1482): openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000040)={0x4, "87fe7b014077e08701ee88c6923077b8542c55f8c30ccb575540f50c0a515ca3", @inferred=r0}) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0) semctl$auto_GETPID(0x1, 0x7ff, 0xb, 0xfe9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffd]}, 0x0) close_range$auto(0x2, 0x8, 0x0) 5.550365867s ago: executing program 2 (id=1483): prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x500, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) socket(0x2, 0x1, 0x0) epoll_create$auto(0x4) epoll_ctl$auto(0x5, 0x1, 0xffffffffffffffff, 0x0) openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, 0x0, 0x101002, 0x0) connect$auto(0x4, 0x0, 0x10) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) fcntl$auto(0x3, 0x4, 0xa553) close_range$auto(0x2, 0x8, 0x0) 5.18571372s ago: executing program 0 (id=1484): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = fanotify_init$auto(0x5, 0x2000000000002) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) read$auto_dfs_dom_ops_debugfs(r0, &(0x7f0000000080)=""/62, 0x3e) r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x40, 0x0) ioctl$auto(r2, 0x9000643f, 0xc35) ioctl$auto(r1, 0x2, 0x9) ioctl$auto(0x3, 0x400c4d01, r1) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) pwrite64$auto(0xc8, 0x0, 0x5e, 0x39) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x180a02, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(0xffffffffffffffff, 0x40383d0c, 0x0) unshare$auto(0x40000080) ioctl$auto_KVM_GET_SUPPORTED_CPUID(r0, 0xc008ae05, &(0x7f0000000140)={0x0, 0x0, [{0xfffffe01, 0x7, 0x5253, 0x6, 0x678, 0x8, 0x6}, {0x1, 0x9, 0x9, 0xfffffff9, 0xff800000, 0x4, 0x6}, {0x8001, 0x0, 0x4, 0x1493, 0x9, 0x7f, 0xe}, {0x2, 0x8, 0x7a0, 0x7, 0x2, 0x80000000, 0x7}, {0x24, 0x6, 0x80000001, 0x7fffffff, 0x2cbb, 0x2, 0x9}]}) ioctl$auto(0x4000000000000c8, 0x400454d9, 0x3) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)) fcntl$auto(r3, 0x402, 0x8000007fffffdf) r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000240)='ns/pid\x00') getdents$auto(r4, 0x0, 0x101) mmap$auto(0x0, 0x20009, 0x7, 0xeb1, 0x405, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10007) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) userfaultfd$auto(0x1) open(0x0, 0x82842, 0x85) gettid() openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x2441, 0x0) 5.114398838s ago: executing program 1 (id=1485): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x80002, 0x73) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) acct$auto(0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) write$auto_console_fops_tty_io(0xffffffffffffffff, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) setgroups$auto(0x9, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = socket(0x2c, 0x3, 0x0) bind$auto(r0, &(0x7f0000000080)=@generic={0x2c, "d673107fab139218c3a6e4e19205"}, 0x6b) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/netfilter/nfnetlink_queue\x00', 0x101000, 0x0) lseek$auto(r1, 0x7fffffffffffffff, 0x1) r2 = setfsuid$auto(0xee00) r3 = setfsuid$auto(0xee01) setresuid$auto(r2, r3, r2) ioctl$auto_XFS_IOC_ALLOCSP(0xffffffffffffffff, 0x4030580a, 0x0) setfsuid$auto(r2) r4 = openat$auto_proc_fault_inject_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/make-it-fail\x00', 0x2801, 0x0) sendmsg$auto_TIPC_NL_MON_PEER_GET(r0, &(0x7f0000001640)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000001600)={&(0x7f00000000c0)=ANY=[@ANYBLOB="0e000000", @ANYRES16=0x0, @ANYBLOB="000428bd7000fbdbdf251300000004000780fd140580c5008480040028800c001c00090000000000000008004800", @ANYRES32=r2, @ANYBLOB="740204003e800800d800", @ANYRES32, @ANYBLOB="b480b92718d3df593a3b632123a660d3dfe3e4522b9d1a0b8c1cf852502955dfb47e515a984f22aaa74474d64fd6a3d99cbaceed3bceb8a1f321310ffa1771b68f34ec977b3c6444bf4884e6d3acf6e6e73b244ac76d6ce2d2cca51d8658c333141fc1b5908aaf6403e39ef4934180896fde60d370420df93df12baf8667d2384ec27566ce5497fe260de7561aadd96303b9f0eb67d00a0400778000000008004a00", @ANYRES32, @ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="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", @ANYRES32, @ANYBLOB="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"], 0x1518}, 0x1, 0x0, 0x0, 0x20000010}, 0x20000801) 4.8478819s ago: executing program 3 (id=1486): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = fanotify_init$auto(0x5, 0x2000000000002) r1 = socket(0x10, 0x80002, 0x0) bind$auto(0x3, &(0x7f0000000000)=@generic={0x10, "a500acb75c9cedd1b5e9a0d76293"}, 0x68) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) ioctl$auto_SNDCTL_SEQ_CTRLRATE(r2, 0xc0045103, &(0x7f0000001940)="de66d023e0") r3 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bluetooth/hci6/rfkill31/uevent\x00', 0x300, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/scsi\x00', 0x80002, 0x0) write$auto_proc_reg_file_ops_compat_inode(r4, &(0x7f0000000280)="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", 0x1000) ioperm$auto(0x1, 0x6, 0x2) socket(0x26, 0x5, 0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) getpeername$auto(0x3, 0x0, 0x0) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001300), r3) sendmsg$auto_NL80211_CMD_GET_POWER_SAVE(r3, &(0x7f0000001400)={&(0x7f00000012c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000013c0)={&(0x7f0000001340)={0x5c, r5, 0x4, 0x70bd26, 0x25dfdbfe, {}, [@NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0xaa}, @NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST={0x6, 0xf7, {0xa, 0x9}}, @NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x1ff}, @NL80211_ATTR_P2P_OPPPS={0x5, 0xa3, 0x1}, @NL80211_ATTR_WIPHY_SELF_MANAGED_REG={0x4}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "88926c5568d09358b37ce5770d136f89339b2acf23344e46"}, @NL80211_ATTR_VIF_RADIO_MASK={0x8, 0x14d, 0x1000}]}, 0x5c}, 0x1, 0x0, 0x0, 0x48041}, 0x40) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r1) sendmsg$auto_NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000001280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000240)={&(0x7f0000000140)={0xd8, r6, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@NL80211_ATTR_NETNS_FD={0x8, 0xdb, r0}, @NL80211_ATTR_CNTDWN_OFFS_BEACON={0xb3, 0xba, "1f15a9f5c0734fa553e16b1cfed6f2ea79a767d959bb9ea3b39a2e182363f3dc6b0626f59793afededa40fa51442bf9062586d55c712966f6f3694ef1b8331df9b8363b24c6b4f4715a3f1eb74a25363ed8691ea68812d351160ab1581e0bcd5d397eaa84c4abc092b2d66eeda8e69070291924cb6b7ba62ae7cf4c4911e0c732cc2f8c18978e1ec51bc536fa967b7cc05c848809e732c70f6cb8f21db5452305a43e3e235911a04393cab2c7909fb"}, @NL80211_ATTR_TWT_RESPONDER={0x4}, @NL80211_ATTR_RECEIVE_MULTICAST={0x4}]}, 0xd8}, 0x1, 0x0, 0x0, 0x4000}, 0x40000) r7 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) ioctl$auto(0x3, 0xc0104d08, r7) 4.307268788s ago: executing program 2 (id=1487): mmap$auto(0x0, 0x40009, 0xe2, 0x9b74, 0x7, 0x28002) r0 = openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000580), 0x400, 0x0) ioctl$auto_BCH_IOCTL_FSCK_OFFLINE(r0, 0x4018bc13, &(0x7f0000000100)={0x0, 0x9d, 0x1, [0x0]}) close_range$auto(0x2, 0x8, 0x0) 4.085893485s ago: executing program 2 (id=1488): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x6, 0x0, 0x9, 0x0, 0x1, 0xb}, 0x80000c}, 0x5, 0x2000fdff) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/i8042/serio1/input/input3/capabilities/sw\x00', 0x309002, 0x0) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/tracing_cpumask\x00', 0x8301, 0x0) syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x6) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/dummy_hcd.4/usb5/power/autosuspend\x00', 0x40080, 0x0) write$auto(r0, 0x0, 0x81) acct$auto(&(0x7f0000000000)='/dev/fb0\x00') recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0x202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x2, 0x5, 0x2) close_range$auto(0x2, 0x8, 0x0) socket(0x28, 0x1, 0x0) 3.815956678s ago: executing program 1 (id=1489): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x1e, 0x4, 0x0) ioperm$auto(0x7, 0x6, 0x2) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, 0x0, 0x40090) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000180)='nfsd\x00', 0x8, 0x0) io_uring_setup$auto(0x3, 0x0) mprotect$auto(0x0, 0x5, 0x8) close_range$auto(0x2, 0x8, 0x0) mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x10001, 0x0) pivot_root$auto(&(0x7f0000000000)='}[,&*}\x00', &(0x7f0000000040)='.\x00') mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) 3.636808844s ago: executing program 3 (id=1490): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x80002, 0x73) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) acct$auto(0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) write$auto_console_fops_tty_io(0xffffffffffffffff, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) setgroups$auto(0x9, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = socket(0x2c, 0x3, 0x0) bind$auto(r0, &(0x7f0000000080)=@generic={0x2c, "d673107fab139218c3a6e4e19205"}, 0x6b) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/netfilter/nfnetlink_queue\x00', 0x101000, 0x0) lseek$auto(r1, 0x7fffffffffffffff, 0x1) r2 = setfsuid$auto(0xee00) r3 = setfsuid$auto(0xee01) setresuid$auto(r2, r3, r2) ioctl$auto_XFS_IOC_ALLOCSP(0xffffffffffffffff, 0x4030580a, &(0x7f0000000040)={0x8, 0xd, 0x9, 0x4, 0x5, 0xffffffffffffffff}) setfsuid$auto(r2) openat$auto_proc_fault_inject_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/make-it-fail\x00', 0x2801, 0x0) sendmsg$auto_TIPC_NL_MON_PEER_GET(r0, 0x0, 0x20000801) 3.259433414s ago: executing program 1 (id=1491): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/jbd2/sda1-8/info\x00', 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = open$dir(&(0x7f0000000000)='./file0\x00', 0x10000, 0x19) mount_setattr$auto(r1, &(0x7f0000000040)='./file0\x00', 0x6, &(0x7f00000000c0)={0x22d6, 0xffff, 0xe8ca, @inferred=r0}, 0x9) 3.051304184s ago: executing program 1 (id=1492): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async) syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) sysfs$auto(0x2, 0x26, 0x0) (async) fsopen$auto(0x0, 0xffffffd6) (async) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/bus/pci/resource_alignment\x00', 0x8ea182, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000000)="42bf46", 0x3) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/mm/transparent_hugepage/hugepages-512kB/enabled\x00', 0x129302, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xfffff, 0x0) (async, rerun: 64) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/pagemap\x00', 0x80001, 0x0) (async, rerun: 64) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) madvise$auto(0x8, 0x4, 0x1) madvise$auto(0x0, 0x8000000000000000, 0x15) madvise$auto(0x0, 0x2000000080000001, 0x3) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) capget$auto(0x0, 0xfffffffffffffffe) (async, rerun: 64) capset$auto(0x0, 0x0) (rerun: 64) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000) (async) shutdown$auto(0xffffffffffffffff, 0x2) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000) mmap$auto(0x200000000000000, 0x400006, 0xdf, 0x12, 0x2, 0x8001) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) (async) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x80800, 0x0) 1.622251008s ago: executing program 1 (id=1493): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x6, 0x0, 0x9, 0x0, 0x1, 0xb}, 0x80000c}, 0x5, 0x2000fdff) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/i8042/serio1/input/input3/capabilities/sw\x00', 0x309002, 0x0) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/tracing_cpumask\x00', 0x8301, 0x0) syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x6) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/dummy_hcd.4/usb5/power/autosuspend\x00', 0x40080, 0x0) write$auto(r0, 0x0, 0x81) acct$auto(&(0x7f0000000000)='/dev/fb0\x00') recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) setgroups$auto(0x9, &(0x7f0000000040)=0x1) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0x202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x2, 0x5, 0x2) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x1, 0x0) 1.431697418s ago: executing program 3 (id=1494): madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x11, 0x3, 0x6) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x80100, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x100, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r0 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/dynamic_events\x00', 0x542, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x2, 0x801, 0x106) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x8000003, 0x7) statx$auto(0x2, 0x0, 0x1000, 0xbdfa, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) setsockopt$auto(r1, 0x6, 0x1e, 0x0, 0xa1) write$auto_dynamic_events_ops_trace_dynevent(r0, &(0x7f0000000140)="653a6575b42146076c4f11b1be3e769f2059", 0x12) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x4040, 0x0) fadvise64$auto(r2, 0x8, 0x400000000000006, 0x4) 1.322330354s ago: executing program 2 (id=1495): socket(0x0, 0x1, 0x9) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x0, 0x8, 0x4) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000) ioprio_set$auto(0x2, 0x0, 0x72e2f0a) 507.467835ms ago: executing program 2 (id=1496): mmap$auto(0x0, 0x20009, 0x4000000000de, 0xeb1, 0x401, 0x8000000100000001) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r0 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x2100, 0x8009, 0x400000072, 0x8b72, r0, 0x8000) clone$auto(0x21002, 0x6, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9) madvise$auto(0x6, 0x1, 0xb) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000001100)={0x14, 0x0, 0x301, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0xc040810) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x400c810}, 0x20000041) r1 = bpf$auto(0xfffff001, &(0x7f0000000000)=@bpf_attr_3={0xa332, 0x2, 0x7, 0x3, 0xfffffbff, 0x2, 0x1, 0x4, 0x7, "0108a5172d53c2dc73bf58e1423b2178", 0x0, 0x9, 0xffffffffffffffff, 0x81, 0x8, 0x81, 0xb03, 0x0, 0x3ff, 0x7, @attach_prog_fd, 0x2, 0x630, 0x57d, 0x9, 0x8}, 0xa3) syz_genetlink_get_family_id$auto_mac802154_hwsim(0x0, r1) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) read$auto_uinput_fops_uinput(r2, &(0x7f0000001400)=""/4112, 0x1010) read$auto(r2, 0x0, 0xfdf3) fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x5, 0x9, 0x0, 0x103, 0xee01, 0x0, 0x0, 0xffffffffffffff91, 0x0, 0x2, 0xec, 0x4, 0x2, 0x1, 0x4, 0xfffffffffffffff8}) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) 429.52693ms ago: executing program 1 (id=1497): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x80900, 0x0) openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f00000054c0)='/sys/kernel/tracing/events/vmalloc/enable\x00', 0x20a01, 0x0) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) mmap$auto(0xb2, 0x14, 0xffb, 0x8000000008015, 0xffffffffffffffff, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) io_uring_setup$auto(0x3501, &(0x7f0000000080)={0x80, 0x1000, 0x8, 0x5, 0x3, 0xfffffff1, 0xffffffffffffffff, [0xbc, 0xffff, 0x40], {0x81, 0x9, 0x0, 0x80000000, 0x3, 0x101, 0xffff, 0x0, 0x6}, {0x7, 0xa, 0xf, 0x7fff, 0x3, 0x0, 0x0, 0xfffffffa, 0xc}}) ioctl$auto_BLKTRACETEARDOWN(r0, 0x1276, 0x0) madvise$auto(0x0, 0x20499d, 0x9) socket$nl_generic(0x10, 0x3, 0x10) open_tree$auto(0xffffffffffffffff, 0x0, 0x74ee) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) ioctl$auto_SNDCTL_DSP_RESET(0xffffffffffffffff, 0x5000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="000229bd0000fbdbdf35020000000800fbffffffffff0737010005"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_CGROUPSTATS_CMD_GET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x25, 0x70bd25, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x400c9d0}, 0x4080) r1 = socket(0x10, 0x2, 0x14) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='r'], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x200440c0) sendmmsg$auto(r1, &(0x7f0000000080)={{0x0, 0x8001c01, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x1}, 0x7}, 0x3d55, 0x0) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) socket(0x10, 0x2, 0x0) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) 254.573706ms ago: executing program 0 (id=1498): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x80900, 0x0) openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f00000054c0)='/sys/kernel/tracing/events/vmalloc/enable\x00', 0x20a01, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0) mmap$auto(0xb2, 0x14, 0xffb, 0x8000000008015, r0, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) io_uring_setup$auto(0x3501, &(0x7f0000000080)={0x80, 0x1000, 0x8, 0x5, 0x3, 0xfffffff1, r0, [0xbc, 0xffff, 0x40], {0x81, 0x9, 0x0, 0x80000000, 0x3, 0x101, 0xffff, 0x0, 0x6}, {0x7, 0xa, 0xf, 0x7fff, 0x3, 0x0, 0x0, 0xfffffffa, 0xc}}) ioctl$auto_BLKTRACETEARDOWN(r1, 0x1276, 0x0) madvise$auto(0x0, 0x20499d, 0x9) socket$nl_generic(0x10, 0x3, 0x10) open_tree$auto(0xffffffffffffffff, 0x0, 0x74ee) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) ioctl$auto_SNDCTL_DSP_RESET(0xffffffffffffffff, 0x5000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="000229bd0000fbdbdf35020000000800fbffffffffff0737010005"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_CGROUPSTATS_CMD_GET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x25, 0x70bd25, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x400c9d0}, 0x4080) r2 = socket(0x10, 0x2, 0x14) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000002fc0)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='r'], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x200440c0) sendmmsg$auto(r2, &(0x7f0000000080)={{0x0, 0x8001c01, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x1}, 0x7}, 0x3d55, 0x0) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) socket(0x10, 0x2, 0x0) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) 0s ago: executing program 2 (id=1499): unshare$auto(0x40000080) (async) socket(0xa, 0x1, 0x100) (async) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) io_uring_setup$auto(0x6, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/irq/8/actions\x00', 0x60000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000080)=""/58, 0x3a) (async) clock_nanosleep$auto(0xb, 0xa000001c, 0x0, 0xffffffffffffffff) (async) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x20b42, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f00000003c0)) setuid$auto(0x800000000008) landlock_restrict_self$auto(0x5, 0x1b7) (async) mmap$auto(0x6, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000002) (async) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) (async) r2 = getpgid(0x0) rt_tgsigqueueinfo$auto(0xffffffffffffffff, r2, 0x8, &(0x7f0000000100)={@siginfo_0_0={0x6, 0xe, 0x5, @_sigchld={r2, 0x0, 0x401, 0x5, 0x3}}}) (async) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40) (async) execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000100)=&(0x7f0000000080)='\xac\x00', &(0x7f0000000000)=&(0x7f0000000200)=' ') kernel console output (not intermixed with test programs): ] bond0: option all_slaves_active: invalid value () [ 123.652496][ T6114] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 125.106693][ T6134] type: 4294901760 invalid [ 127.310234][ T6172] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10 [ 127.796158][ T6174] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11 [ 130.077857][ T6198] netlink: 'syz.3.57': attribute type 7 has an invalid length. [ 130.280984][ T6200] netlink: 'syz.2.58': attribute type 7 has an invalid length. [ 130.617894][ T6209] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12 [ 131.131743][ T6221] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13 [ 132.444800][ T6229] netlink: 'syz.2.65': attribute type 7 has an invalid length. [ 136.539951][ T6319] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input14 [ 136.693837][ T6324] FAULT_INJECTION: forcing a failure. [ 136.693837][ T6324] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 136.754557][ T6324] CPU: 1 UID: 0 PID: 6324 Comm: syz.2.84 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 136.754622][ T6324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 136.754639][ T6324] Call Trace: [ 136.754648][ T6324] [ 136.754659][ T6324] dump_stack_lvl+0x16c/0x1f0 [ 136.754707][ T6324] should_fail_ex+0x512/0x640 [ 136.754748][ T6324] _copy_from_user+0x2e/0xd0 [ 136.754789][ T6324] do_sock_getsockopt+0x5f4/0x800 [ 136.754841][ T6324] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 136.754888][ T6324] ? __fget_files+0x204/0x3c0 [ 136.754951][ T6324] __sys_getsockopt+0x12f/0x260 [ 136.754998][ T6324] __x64_sys_getsockopt+0xbd/0x160 [ 136.755035][ T6324] ? do_syscall_64+0x91/0x260 [ 136.755076][ T6324] ? lockdep_hardirqs_on+0x7c/0x110 [ 136.755117][ T6324] do_syscall_64+0xcd/0x260 [ 136.755164][ T6324] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 136.755194][ T6324] RIP: 0033:0x7f49deb8d169 [ 136.755219][ T6324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 136.755246][ T6324] RSP: 002b:00007f49dfa1b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 136.755274][ T6324] RAX: ffffffffffffffda RBX: 00007f49deda5fa0 RCX: 00007f49deb8d169 [ 136.755293][ T6324] RDX: 0000000000000030 RSI: 0000000000000000 RDI: 0000000000000003 [ 136.755309][ T6324] RBP: 00007f49dfa1b090 R08: 0000000000000000 R09: 0000000000000000 [ 136.755327][ T6324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 136.755342][ T6324] R13: 0000000000000000 R14: 00007f49deda5fa0 R15: 00007ffd169c3a68 [ 136.755380][ T6324] [ 136.979505][ T6320] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15 [ 137.181704][ T6286] netlink: 4 bytes leftover after parsing attributes in process `syz.3.75'. [ 137.540502][ T6330] netlink: 'syz.1.86': attribute type 7 has an invalid length. [ 137.552303][ T6335] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16 [ 137.878286][ T6338] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17 [ 138.137110][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.143857][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 138.458474][ T6349] bond0: option all_slaves_active: invalid value () [ 138.908256][ T6363] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18 [ 139.076392][ T6358] netlink: 93 bytes leftover after parsing attributes in process `syz.0.95'. [ 139.102567][ T6365] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input19 [ 140.031700][ T6381] bond0: option all_slaves_active: invalid value () [ 140.376393][ T6387] netlink: 'syz.0.103': attribute type 7 has an invalid length. [ 140.977143][ T6399] svc: failed to register nfsdv3 RPC service (errno 111). [ 140.989439][ T6399] svc: failed to register nfsaclv3 RPC service (errno 111). [ 141.405319][ T6414] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input20 [ 141.793054][ T6416] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input21 [ 144.290432][ T6459] netlink: 'syz.2.116': attribute type 7 has an invalid length. [ 144.465973][ T6464] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 145.005601][ T6479] svc: failed to register nfsdv3 RPC service (errno 111). [ 145.023974][ T6479] svc: failed to register nfsaclv3 RPC service (errno 111). [ 145.341340][ T6473] svc: failed to register nfsdv3 RPC service (errno 111). [ 145.342554][ T6473] svc: failed to register nfsaclv3 RPC service (errno 111). [ 146.981735][ T6519] netlink: 'syz.3.128': attribute type 7 has an invalid length. [ 147.213519][ T6533] FAULT_INJECTION: forcing a failure. [ 147.213519][ T6533] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 147.253201][ T6533] CPU: 1 UID: 0 PID: 6533 Comm: syz.1.131 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 147.253243][ T6533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 147.253259][ T6533] Call Trace: [ 147.253268][ T6533] [ 147.253279][ T6533] dump_stack_lvl+0x16c/0x1f0 [ 147.253328][ T6533] should_fail_ex+0x512/0x640 [ 147.253368][ T6533] _copy_to_user+0x32/0xd0 [ 147.253410][ T6533] simple_read_from_buffer+0xcb/0x170 [ 147.253454][ T6533] proc_fail_nth_read+0x197/0x270 [ 147.253497][ T6533] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 147.253539][ T6533] ? rw_verify_area+0xcf/0x680 [ 147.253571][ T6533] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 147.253608][ T6533] vfs_read+0x1de/0xc70 [ 147.253654][ T6533] ? __pfx___mutex_lock+0x10/0x10 [ 147.253712][ T6533] ? __pfx_vfs_read+0x10/0x10 [ 147.253764][ T6533] ? __fget_files+0x20e/0x3c0 [ 147.253821][ T6533] ksys_read+0x12a/0x240 [ 147.253864][ T6533] ? __pfx_ksys_read+0x10/0x10 [ 147.253905][ T6533] ? rcu_is_watching+0x12/0xc0 [ 147.253956][ T6533] do_syscall_64+0xcd/0x260 [ 147.254005][ T6533] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 147.254036][ T6533] RIP: 0033:0x7f68b4b8bb7c [ 147.254061][ T6533] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 147.254089][ T6533] RSP: 002b:00007f68b5a69030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 147.254117][ T6533] RAX: ffffffffffffffda RBX: 00007f68b4da6160 RCX: 00007f68b4b8bb7c [ 147.254136][ T6533] RDX: 000000000000000f RSI: 00007f68b5a690a0 RDI: 000000000000000b [ 147.254153][ T6533] RBP: 00007f68b5a69090 R08: 0000000000000000 R09: 0000000000000000 [ 147.254169][ T6533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 147.254185][ T6533] R13: 0000000000000000 R14: 00007f68b4da6160 R15: 00007fff4a19f6c8 [ 147.254224][ T6533] [ 151.073099][ T6568] process 'syz.2.141' launched ':,' with NULL argv: empty string added [ 151.341016][ T6572] netlink: 'syz.1.142': attribute type 7 has an invalid length. [ 154.374618][ T6608] netlink: 'syz.2.152': attribute type 7 has an invalid length. [ 156.720243][ T6642] netlink: 16 bytes leftover after parsing attributes in process `syz.1.159'. [ 156.763000][ T6642] warning: `syz.1.159' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 157.592736][ T6654] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input24 [ 157.729698][ T6652] netlink: 'syz.0.162': attribute type 7 has an invalid length. [ 157.863673][ T6656] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input25 [ 161.628153][ T6677] Invalid ELF header magic: != ELF [ 163.014613][ T6726] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input26 [ 163.038047][ T6721] netlink: 'syz.1.178': attribute type 7 has an invalid length. [ 164.235226][ T6728] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input27 [ 167.050572][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 167.056917][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 167.395620][ T6775] bond0: option all_slaves_active: invalid value () [ 175.198554][ T6878] input: f¤ as /devices/virtual/input/input28 [ 177.960464][ T6916] FAULT_INJECTION: forcing a failure. [ 177.960464][ T6916] name failslab, interval 1, probability 0, space 0, times 0 [ 177.992390][ T6916] CPU: 1 UID: 0 PID: 6916 Comm: syz.0.226 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 177.992435][ T6916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 177.992453][ T6916] Call Trace: [ 177.992463][ T6916] [ 177.992475][ T6916] dump_stack_lvl+0x16c/0x1f0 [ 177.992524][ T6916] should_fail_ex+0x512/0x640 [ 177.992560][ T6916] ? __kvmalloc_node_noprof+0x122/0x600 [ 177.992611][ T6916] should_failslab+0xc2/0x120 [ 177.992641][ T6916] __kvmalloc_node_noprof+0x135/0x600 [ 177.992687][ T6916] ? lockdep_init_map_type+0x5c/0x280 [ 177.992718][ T6916] ? open_substream+0x30c/0x9b0 [ 177.992757][ T6916] ? open_substream+0x30c/0x9b0 [ 177.992784][ T6916] ? open_substream+0x19a/0x9b0 [ 177.992819][ T6916] open_substream+0x30c/0x9b0 [ 177.992848][ T6916] ? lockdep_hardirqs_on+0x7c/0x110 [ 177.992895][ T6916] rawmidi_open_priv+0x513/0x6e0 [ 177.992938][ T6916] snd_rawmidi_open+0x4cc/0xbf0 [ 177.992982][ T6916] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 177.993021][ T6916] ? __pfx_default_wake_function+0x10/0x10 [ 177.993065][ T6916] ? soundcore_open+0x35a/0x580 [ 177.993109][ T6916] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 177.993148][ T6916] soundcore_open+0x409/0x580 [ 177.993194][ T6916] ? __pfx_soundcore_open+0x10/0x10 [ 177.993237][ T6916] chrdev_open+0x231/0x6a0 [ 177.993289][ T6916] ? __pfx_chrdev_open+0x10/0x10 [ 177.993347][ T6916] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 177.993398][ T6916] do_dentry_open+0x741/0x1c10 [ 177.993444][ T6916] ? __pfx_chrdev_open+0x10/0x10 [ 177.993503][ T6916] vfs_open+0x82/0x3f0 [ 177.993540][ T6916] path_openat+0x1e5e/0x2d40 [ 177.993603][ T6916] ? __pfx_path_openat+0x10/0x10 [ 177.993661][ T6916] do_filp_open+0x20b/0x470 [ 177.993708][ T6916] ? __pfx_do_filp_open+0x10/0x10 [ 177.993786][ T6916] ? alloc_fd+0x471/0x7d0 [ 177.993852][ T6916] do_sys_openat2+0x11b/0x1d0 [ 177.993886][ T6916] ? __pfx_do_sys_openat2+0x10/0x10 [ 177.993937][ T6916] __x64_sys_openat+0x174/0x210 [ 177.993974][ T6916] ? __pfx___x64_sys_openat+0x10/0x10 [ 177.994013][ T6916] ? rcu_is_watching+0x12/0xc0 [ 177.994082][ T6916] do_syscall_64+0xcd/0x260 [ 177.994134][ T6916] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 177.994167][ T6916] RIP: 0033:0x7f225398d169 [ 177.994193][ T6916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 177.994223][ T6916] RSP: 002b:00007f22517f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 177.994253][ T6916] RAX: ffffffffffffffda RBX: 00007f2253ba5fa0 RCX: 00007f225398d169 [ 177.994274][ T6916] RDX: 0000000000000002 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 177.994294][ T6916] RBP: 00007f2253a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 177.994313][ T6916] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 177.994332][ T6916] R13: 0000000000000000 R14: 00007f2253ba5fa0 R15: 00007ffeea5f2b88 [ 177.994374][ T6916] [ 179.069809][ T6923] can: request_module (can-proto-3) failed. [ 180.463283][ T6947] netlink: 'syz.2.233': attribute type 7 has an invalid length. [ 181.040914][ T6956] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input29 [ 181.237249][ T6957] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input30 [ 184.502323][ T6993] netlink: 'syz.2.244': attribute type 7 has an invalid length. [ 184.815582][ T6997] zswap: compressor not available [ 184.827536][ T7006] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input31 [ 190.631277][ T7070] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input32 [ 190.802291][ T7077] bond0: option all_slaves_active: invalid value () [ 192.114387][ T7095] netlink: 'syz.2.270': attribute type 7 has an invalid length. [ 192.952127][ T7093] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 192.959144][ T7093] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 193.001541][ T7093] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 193.052849][ T7093] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 193.059598][ T7093] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 193.074562][ T7093] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 193.092549][ T7093] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 193.110516][ T7093] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 193.118007][ T7093] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 193.158263][ T7093] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 193.187590][ T7093] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 193.245731][ T7093] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 193.632251][ T7116] bond0: option all_slaves_active: invalid value () [ 194.130165][ T56] Bluetooth: hci1: command 0x0c1a tx timeout [ 195.090090][ T56] Bluetooth: hci2: command 0x0c1a tx timeout [ 195.170485][ T5851] Bluetooth: hci0: command 0x0c1a tx timeout [ 195.176697][ T56] Bluetooth: hci3: command 0x0c1a tx timeout [ 196.219845][ T56] Bluetooth: hci1: command 0x0c1a tx timeout [ 196.279373][ T7149] bond0: option all_slaves_active: invalid value () [ 197.170039][ T56] Bluetooth: hci2: command 0x0c1a tx timeout [ 197.251493][ T56] Bluetooth: hci3: command 0x0c1a tx timeout [ 197.257595][ T5851] Bluetooth: hci0: command 0x0c1a tx timeout [ 198.300234][ T56] Bluetooth: hci1: command 0x0c1a tx timeout [ 199.250088][ T56] Bluetooth: hci2: command 0x0c1a tx timeout [ 199.330127][ T56] Bluetooth: hci3: command 0x0c1a tx timeout [ 199.336332][ T56] Bluetooth: hci0: command 0x0c1a tx timeout [ 199.573807][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.580320][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 199.680579][ T7188] netlink: 'syz.3.292': attribute type 7 has an invalid length. [ 200.791195][ T56] Bluetooth: hci1: Unable to find connection for big 0xd2 [ 205.727275][ T7264] netlink: 28 bytes leftover after parsing attributes in process `syz.2.306'. [ 205.788782][ T7264] bridge0: port 2(bridge_slave_1) entered disabled state [ 206.034778][ T7264] bridge_slave_1 (unregistering): left allmulticast mode [ 206.070159][ T7264] bridge_slave_1 (unregistering): left promiscuous mode [ 206.083452][ T7264] bridge0: port 2(bridge_slave_1) entered disabled state [ 206.490932][ T7271] netlink: 246 bytes leftover after parsing attributes in process `syz.1.307'. [ 207.093476][ T7279] netlink: 'syz.3.310': attribute type 7 has an invalid length. [ 207.208802][ T7285] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input33 [ 207.458510][ T7286] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input34 [ 208.607028][ T7302] netlink: 'syz.0.315': attribute type 7 has an invalid length. [ 209.253700][ T7317] syz.0.319 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 209.337488][ T7317] netlink: 330 bytes leftover after parsing attributes in process `syz.0.319'. [ 211.646637][ T7344] netlink: 'syz.2.325': attribute type 7 has an invalid length. [ 212.295013][ T7363] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input35 [ 213.048719][ T7365] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input36 [ 218.138376][ T7427] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input37 [ 218.513663][ T7428] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input38 [ 220.306639][ T7452] netlink: 'syz.2.349': attribute type 7 has an invalid length. [ 222.338767][ T7483] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input39 [ 222.819652][ T7485] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input40 [ 224.924052][ T7514] netlink: 'syz.1.362': attribute type 7 has an invalid length. [ 230.392039][ T7584] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input41 [ 230.781943][ T7585] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input42 [ 231.821153][ T7601] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input43 [ 232.168244][ T7602] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input44 [ 232.247110][ T7607] netlink: 'syz.3.381': attribute type 7 has an invalid length. [ 232.785757][ T7627] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input45 [ 232.968692][ T7629] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input46 [ 243.492063][ T7769] netlink: 'syz.2.416': attribute type 7 has an invalid length. [ 244.140607][ T7785] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input47 [ 244.845664][ T7788] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input48 [ 249.679177][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 249.687014][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 249.821790][ T7868] bond0: option all_slaves_active: invalid value () [ 253.346723][ T7913] bond0: option all_slaves_active: invalid value () [ 254.277827][ T7927] netlink: 'syz.3.459': attribute type 7 has an invalid length. [ 256.054010][ T7952] bond0: option all_slaves_active: invalid value () [ 257.157814][ T7974] netlink: 'syz.1.471': attribute type 7 has an invalid length. [ 261.030538][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 261.036919][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 261.525864][ T8026] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input49 [ 261.875530][ T8028] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input50 [ 262.090388][ T8039] input: f¤ as /devices/virtual/input/input51 [ 263.793876][ T8054] bond0: option all_slaves_active: invalid value () [ 264.158783][ T8067] bond0: option all_slaves_active: invalid value () [ 264.203952][ T8063] netlink: 'syz.0.490': attribute type 7 has an invalid length. [ 267.350699][ T8104] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input52 [ 267.678924][ T8107] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input53 [ 268.177887][ T8112] netlink: 'syz.2.502': attribute type 7 has an invalid length. [ 269.121371][ T8138] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(1) [ 271.214329][ T8162] netlink: 'syz.1.516': attribute type 7 has an invalid length. [ 275.922364][ T8217] bond0: option all_slaves_active: invalid value () [ 279.277524][ T8254] bond0: option all_slaves_active: invalid value () [ 279.582048][ T8261] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input54 [ 279.837513][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 279.845867][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 281.658865][ T8291] bond0: option all_slaves_active: invalid value () [ 282.342151][ T8307] netlink: 'syz.1.558': attribute type 7 has an invalid length. [ 282.380476][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 282.390059][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 284.421724][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 284.428285][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 284.920741][ T8357] netlink: 28 bytes leftover after parsing attributes in process `syz.3.573'. [ 284.950335][ T8357] bridge0: port 2(bridge_slave_1) entered disabled state [ 285.035048][ T8357] bridge_slave_1 (unregistering): left allmulticast mode [ 285.055098][ T8357] bridge_slave_1 (unregistering): left promiscuous mode [ 285.075419][ T8357] bridge0: port 2(bridge_slave_1) entered disabled state [ 287.229508][ T8380] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input55 [ 288.183664][ T8390] netlink: 'syz.3.581': attribute type 7 has an invalid length. [ 289.577810][ T8412] netlink: 'syz.1.587': attribute type 7 has an invalid length. [ 289.914844][ T8417] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input56 [ 290.134468][ T8420] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input57 [ 290.256771][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 290.263279][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 290.598554][ T8430] bond0: option all_slaves_active: invalid value () [ 290.704294][ T8432] netlink: 'syz.3.592': attribute type 7 has an invalid length. [ 291.246379][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 291.253349][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 292.037453][ T8461] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input58 [ 292.205547][ T8464] bond0: option all_slaves_active: invalid value () [ 292.379034][ T8462] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input59 [ 294.744804][ T8502] bond0: option all_slaves_active: invalid value () [ 294.886183][ T8498] netlink: 'syz.1.612': attribute type 7 has an invalid length. [ 295.045165][ T8506] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input60 [ 297.349368][ T8541] bond0: option all_slaves_active: invalid value () [ 297.840747][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 297.849938][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 298.818912][ T8567] netlink: 'syz.3.630': attribute type 7 has an invalid length. [ 299.312364][ T8576] bond0: option all_slaves_active: invalid value () [ 301.231038][ T8607] netlink: 'syz.0.643': attribute type 7 has an invalid length. [ 301.259973][ T8611] bond0: option all_slaves_active: invalid value () [ 303.093753][ T8643] netlink: 'syz.2.654': attribute type 7 has an invalid length. [ 307.295780][ T8722] bond0: option all_slaves_active: invalid value () [ 312.121129][ T8777] netlink: 'syz.0.693': attribute type 7 has an invalid length. [ 312.262446][ T8784] netlink: 'syz.2.694': attribute type 7 has an invalid length. [ 312.706547][ T8795] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input61 [ 314.346168][ T8824] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input62 [ 315.817507][ T8826] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input63 [ 317.511458][ T8850] netlink: 342 bytes leftover after parsing attributes in process `syz.0.713'. [ 322.456091][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.462649][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 323.060426][ T8895] netlink: 'syz.3.724': attribute type 7 has an invalid length. [ 323.680129][ T8899] netlink: 'syz.0.726': attribute type 7 has an invalid length. [ 326.367086][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.374019][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.380696][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.387320][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.393970][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.400581][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.407164][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.413892][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.420527][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.427172][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.433886][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.440552][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.447155][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.453819][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.460462][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.467043][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.473683][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.480390][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.486979][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.493612][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.500194][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.506691][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.513242][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.519747][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.526278][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.532785][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.539300][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.545828][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.552367][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 326.845557][ T8929] netlink: 'syz.3.732': attribute type 7 has an invalid length. [ 327.308826][ C1] vcan0: j1939_tp_rxtimer: 0xffff888034b81c00: rx timeout, send abort [ 327.827930][ C1] vcan0: j1939_tp_rxtimer: 0xffff888034b81c00: abort rx timeout. Force session deactivation [ 332.008853][ T8966] netlink: 'syz.0.741': attribute type 7 has an invalid length. [ 332.496293][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 332.503113][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 332.617068][ T8979] netlink: 'syz.1.745': attribute type 7 has an invalid length. [ 333.676656][ T8995] netlink: 'syz.1.748': attribute type 7 has an invalid length. [ 336.230532][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 336.237234][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 336.482859][ T9031] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input64 [ 336.847427][ T9033] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input65 [ 337.521535][ T9046] netlink: 'syz.0.761': attribute type 7 has an invalid length. [ 338.215478][ T9053] netlink: 'syz.2.764': attribute type 7 has an invalid length. [ 339.253740][ T9065] netlink: 'syz.0.765': attribute type 7 has an invalid length. [ 340.232134][ T9082] netlink: 'syz.2.769': attribute type 7 has an invalid length. [ 341.953088][ T9102] netlink: 'syz.2.776': attribute type 7 has an invalid length. [ 343.797063][ T9123] netlink: 'syz.1.782': attribute type 7 has an invalid length. [ 345.443326][ T9149] netlink: 'syz.0.787': attribute type 7 has an invalid length. [ 346.144972][ T9164] netlink: 'syz.0.792': attribute type 7 has an invalid length. [ 348.140249][ T9182] netlink: 'syz.0.796': attribute type 7 has an invalid length. [ 351.185552][ T9204] netlink: 'syz.1.801': attribute type 7 has an invalid length. [ 351.500069][ T9211] netlink: 'syz.2.802': attribute type 7 has an invalid length. [ 352.023273][ T9219] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input66 [ 352.283828][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 352.300108][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 352.419270][ T9222] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input67 [ 353.472135][ T9234] netlink: 'syz.2.808': attribute type 7 has an invalid length. [ 354.219198][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 354.225741][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 354.256983][ T9246] netlink: 'syz.1.812': attribute type 7 has an invalid length. [ 355.159433][ T9258] netlink: 'syz.0.815': attribute type 7 has an invalid length. [ 355.307170][ T9261] netlink: 'syz.3.816': attribute type 7 has an invalid length. [ 356.077010][ T9271] netlink: 'syz.0.818': attribute type 7 has an invalid length. [ 357.686760][ T9291] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input68 [ 358.067804][ T9296] netlink: 'syz.2.823': attribute type 7 has an invalid length. [ 358.391508][ T9293] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input69 [ 358.807623][ T9306] netlink: 'syz.3.826': attribute type 7 has an invalid length. [ 359.040313][ T9311] netlink: 'syz.1.828': attribute type 7 has an invalid length. [ 360.260550][ T9334] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input70 [ 360.823588][ T9335] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input71 [ 361.518488][ T9345] netlink: 'syz.3.835': attribute type 7 has an invalid length. [ 363.965233][ T9379] netlink: 'syz.1.842': attribute type 7 has an invalid length. [ 365.080311][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 365.086760][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 366.125250][ T9401] netlink: 'syz.2.848': attribute type 7 has an invalid length. [ 366.737214][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 366.743818][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 368.875504][ T9446] netlink: 'syz.2.860': attribute type 7 has an invalid length. [ 369.682254][ T9457] netlink: 'syz.0.864': attribute type 7 has an invalid length. [ 370.661540][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.668418][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.675136][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.681731][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.688246][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.694781][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.701323][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.707831][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.714380][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.720926][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.727453][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.733976][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.740520][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.747021][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.753575][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.760101][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.766600][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.773126][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.779631][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.786161][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.792709][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.799228][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.806629][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.813163][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.819677][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.826234][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.832823][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.839355][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.845883][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.852424][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.858990][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.865520][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.872051][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.878612][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.885159][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.891721][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.898233][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.904756][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.911318][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.917826][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.924379][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.930928][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.937442][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.943989][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.950513][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.957025][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.963574][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.970102][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.976612][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.983169][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.989707][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 370.996563][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.003092][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.009622][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.016160][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.022677][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.029163][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.035709][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.042221][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.048708][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.055234][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.061752][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.068276][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.074794][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.081316][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.087807][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.094325][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.100835][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.107328][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.113856][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.120373][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.126874][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.133394][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.139943][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.146467][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.152993][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.159495][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.166008][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.172539][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.179042][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.185576][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.192098][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.198591][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.205102][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.211653][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.218145][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.224816][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.231340][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.237833][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.244357][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.250883][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.257389][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.263902][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.270421][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.276909][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.283425][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.289990][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.296496][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.303039][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.309529][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.316056][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.322595][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.329107][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.335635][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.342159][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.348650][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.355175][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.361772][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.368265][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.374784][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.381322][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.387824][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.394352][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.400933][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.407425][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 371.904294][ T9454] netlink: 4 bytes leftover after parsing attributes in process `syz.3.862'. [ 372.665392][ C0] vcan0: j1939_tp_rxtimer: 0xffff888033191800: rx timeout, send abort [ 373.173847][ C0] vcan0: j1939_tp_rxtimer: 0xffff888033191800: abort rx timeout. Force session deactivation [ 376.014397][ T9526] netlink: 'syz.1.880': attribute type 7 has an invalid length. [ 377.580495][ T9548] netlink: 'syz.0.887': attribute type 7 has an invalid length. [ 379.102399][ T9575] synth uevent: /devices/virtual/tty/ttyxa: unknown uevent action string [ 379.145228][ T9575] tty ttyxa: uevent: failed to send synthetic uevent: -22 [ 380.585567][ T9600] netlink: 'syz.3.898': attribute type 7 has an invalid length. [ 383.905615][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 383.912487][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 385.869038][ T9658] FAULT_INJECTION: forcing a failure. [ 385.869038][ T9658] name failslab, interval 1, probability 0, space 0, times 0 [ 385.940026][ T9658] CPU: 1 UID: 0 PID: 9658 Comm: syz.3.908 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 385.940072][ T9658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 385.940088][ T9658] Call Trace: [ 385.940097][ T9658] [ 385.940112][ T9658] dump_stack_lvl+0x16c/0x1f0 [ 385.940162][ T9658] should_fail_ex+0x512/0x640 [ 385.940197][ T9658] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 385.940246][ T9658] should_failslab+0xc2/0x120 [ 385.940275][ T9658] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 385.940321][ T9658] ? alloc_empty_file+0x55/0x1e0 [ 385.940359][ T9658] alloc_empty_file+0x55/0x1e0 [ 385.940391][ T9658] path_openat+0xe0/0x2d40 [ 385.940430][ T9658] ? __x64_sys_openat+0x174/0x210 [ 385.940462][ T9658] ? do_syscall_64+0xcd/0x260 [ 385.940504][ T9658] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 385.940549][ T9658] ? __pfx_path_openat+0x10/0x10 [ 385.940604][ T9658] do_filp_open+0x20b/0x470 [ 385.940648][ T9658] ? __pfx_do_filp_open+0x10/0x10 [ 385.940722][ T9658] ? alloc_fd+0x471/0x7d0 [ 385.940775][ T9658] do_sys_openat2+0x11b/0x1d0 [ 385.940824][ T9658] ? __pfx_do_sys_openat2+0x10/0x10 [ 385.940862][ T9658] ? __fget_files+0x20e/0x3c0 [ 385.940915][ T9658] __x64_sys_openat+0x174/0x210 [ 385.940949][ T9658] ? __pfx___x64_sys_openat+0x10/0x10 [ 385.940982][ T9658] ? ksys_write+0x1b9/0x240 [ 385.941025][ T9658] ? rcu_is_watching+0x12/0xc0 [ 385.941082][ T9658] do_syscall_64+0xcd/0x260 [ 385.941130][ T9658] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 385.941161][ T9658] RIP: 0033:0x7f0d51b8d169 [ 385.941185][ T9658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 385.941213][ T9658] RSP: 002b:00007f0d52a85038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 385.941238][ T9658] RAX: ffffffffffffffda RBX: 00007f0d51da6160 RCX: 00007f0d51b8d169 [ 385.941257][ T9658] RDX: 0000000000000400 RSI: 0000200000000200 RDI: ffffffffffffff9c [ 385.941275][ T9658] RBP: 00007f0d52a85090 R08: 0000000000000000 R09: 0000000000000000 [ 385.941292][ T9658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 385.941308][ T9658] R13: 0000000000000000 R14: 00007f0d51da6160 R15: 00007fff5a9ba998 [ 385.941346][ T9658] [ 386.304190][ T9660] netlink: 'syz.2.909': attribute type 7 has an invalid length. [ 389.562328][ T9681] netlink: 'syz.3.914': attribute type 7 has an invalid length. [ 393.374613][ T9713] netlink: 'syz.2.921': attribute type 7 has an invalid length. [ 395.145168][ T9722] netlink: 'syz.2.924': attribute type 7 has an invalid length. [ 395.598284][ T9739] FAULT_INJECTION: forcing a failure. [ 395.598284][ T9739] name failslab, interval 1, probability 0, space 0, times 0 [ 395.611386][ T9739] CPU: 0 UID: 0 PID: 9739 Comm: syz.2.930 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 395.611425][ T9739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 395.611442][ T9739] Call Trace: [ 395.611452][ T9739] [ 395.611462][ T9739] dump_stack_lvl+0x16c/0x1f0 [ 395.611508][ T9739] should_fail_ex+0x512/0x640 [ 395.611542][ T9739] ? fs_reclaim_acquire+0xae/0x150 [ 395.611582][ T9739] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 395.611640][ T9739] should_failslab+0xc2/0x120 [ 395.611669][ T9739] __kmalloc_noprof+0xd2/0x510 [ 395.611724][ T9739] tomoyo_realpath_from_path+0xc2/0x6e0 [ 395.611768][ T9739] ? tomoyo_profile+0x47/0x60 [ 395.611819][ T9739] tomoyo_path_number_perm+0x245/0x580 [ 395.611864][ T9739] ? tomoyo_path_number_perm+0x237/0x580 [ 395.611900][ T9739] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 395.611933][ T9739] ? find_held_lock+0x2b/0x80 [ 395.612006][ T9739] ? find_held_lock+0x2b/0x80 [ 395.612044][ T9739] ? hook_file_ioctl_common+0x145/0x410 [ 395.612084][ T9739] ? __fget_files+0x20e/0x3c0 [ 395.612136][ T9739] security_file_ioctl+0x9b/0x240 [ 395.612177][ T9739] __x64_sys_ioctl+0xb7/0x200 [ 395.612219][ T9739] do_syscall_64+0xcd/0x260 [ 395.612275][ T9739] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 395.612304][ T9739] RIP: 0033:0x7f49deb8d169 [ 395.612329][ T9739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 395.612357][ T9739] RSP: 002b:00007f49dfa1b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 395.612381][ T9739] RAX: ffffffffffffffda RBX: 00007f49deda5fa0 RCX: 00007f49deb8d169 [ 395.612399][ T9739] RDX: 0000000000000000 RSI: 0000000000008924 RDI: 0000000000000003 [ 395.612415][ T9739] RBP: 00007f49dfa1b090 R08: 0000000000000000 R09: 0000000000000000 [ 395.612430][ T9739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 395.612446][ T9739] R13: 0000000000000000 R14: 00007f49deda5fa0 R15: 00007ffd169c3a68 [ 395.612485][ T9739] [ 395.612497][ T9739] ERROR: Out of memory at tomoyo_realpath_from_path. [ 395.615816][ T9740] ceph: Failed to parse sending metrics switch value 'P^' [ 396.371046][ T9752] FAULT_INJECTION: forcing a failure. [ 396.371046][ T9752] name failslab, interval 1, probability 0, space 0, times 0 [ 396.412439][ T9752] CPU: 1 UID: 0 PID: 9752 Comm: syz.3.933 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 396.412485][ T9752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 396.412505][ T9752] Call Trace: [ 396.412516][ T9752] [ 396.412527][ T9752] dump_stack_lvl+0x16c/0x1f0 [ 396.412579][ T9752] should_fail_ex+0x512/0x640 [ 396.412613][ T9752] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 396.412653][ T9752] should_failslab+0xc2/0x120 [ 396.412675][ T9752] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 396.412712][ T9752] ? alloc_empty_file+0x55/0x1e0 [ 396.412741][ T9752] alloc_empty_file+0x55/0x1e0 [ 396.412767][ T9752] path_openat+0xe0/0x2d40 [ 396.412800][ T9752] ? __x64_sys_openat+0x174/0x210 [ 396.412825][ T9752] ? do_syscall_64+0xcd/0x260 [ 396.412859][ T9752] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 396.412892][ T9752] ? __pfx_path_openat+0x10/0x10 [ 396.412934][ T9752] do_filp_open+0x20b/0x470 [ 396.412970][ T9752] ? __pfx_do_filp_open+0x10/0x10 [ 396.413025][ T9752] ? alloc_fd+0x471/0x7d0 [ 396.413074][ T9752] do_sys_openat2+0x11b/0x1d0 [ 396.413099][ T9752] ? __pfx_do_sys_openat2+0x10/0x10 [ 396.413136][ T9752] __x64_sys_openat+0x174/0x210 [ 396.413171][ T9752] ? __pfx___x64_sys_openat+0x10/0x10 [ 396.413209][ T9752] ? rcu_is_watching+0x12/0xc0 [ 396.413261][ T9752] do_syscall_64+0xcd/0x260 [ 396.413298][ T9752] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 396.413321][ T9752] RIP: 0033:0x7f0d51b8d169 [ 396.413339][ T9752] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 396.413362][ T9752] RSP: 002b:00007f0d52aa6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 396.413383][ T9752] RAX: ffffffffffffffda RBX: 00007f0d51da6080 RCX: 00007f0d51b8d169 [ 396.413401][ T9752] RDX: 0000000000028082 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 396.413416][ T9752] RBP: 00007f0d51c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 396.413430][ T9752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 396.413444][ T9752] R13: 0000000000000000 R14: 00007f0d51da6080 R15: 00007fff5a9ba998 [ 396.413472][ T9752] [ 397.608811][ T9772] netlink: 'syz.3.936': attribute type 7 has an invalid length. [ 398.998392][ T9794] FAULT_INJECTION: forcing a failure. [ 398.998392][ T9794] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 399.230061][ T9794] CPU: 1 UID: 0 PID: 9794 Comm: syz.3.941 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 399.230101][ T9794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 399.230119][ T9794] Call Trace: [ 399.230128][ T9794] [ 399.230139][ T9794] dump_stack_lvl+0x16c/0x1f0 [ 399.230189][ T9794] should_fail_ex+0x512/0x640 [ 399.230231][ T9794] strncpy_from_user+0x3b/0x2e0 [ 399.230269][ T9794] getname_flags.part.0+0x8b/0x540 [ 399.230310][ T9794] getname_flags+0x93/0xf0 [ 399.230354][ T9794] user_path_at+0x24/0x60 [ 399.230400][ T9794] __x64_sys_chmod+0xe7/0x1c0 [ 399.230432][ T9794] ? __pfx___x64_sys_chmod+0x10/0x10 [ 399.230475][ T9794] do_syscall_64+0xcd/0x260 [ 399.230524][ T9794] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 399.230554][ T9794] RIP: 0033:0x7f0d51b8d169 [ 399.230577][ T9794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 399.230606][ T9794] RSP: 002b:00007f0d52aa6038 EFLAGS: 00000246 ORIG_RAX: 000000000000005a [ 399.230634][ T9794] RAX: ffffffffffffffda RBX: 00007f0d51da6080 RCX: 00007f0d51b8d169 [ 399.230654][ T9794] RDX: 0000000000000000 RSI: 000000000000f4ba RDI: 00002000000000c0 [ 399.230673][ T9794] RBP: 00007f0d52aa6090 R08: 0000000000000000 R09: 0000000000000000 [ 399.230690][ T9794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 399.230707][ T9794] R13: 0000000000000001 R14: 00007f0d51da6080 R15: 00007fff5a9ba998 [ 399.230746][ T9794] [ 401.457029][ T9799] netlink: 'syz.0.943': attribute type 7 has an invalid length. [ 402.846203][ T9824] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78400 [ 402.918985][ T9824] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 402.950011][ T9824] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 402.977617][ T9824] page_type: f5(slab) [ 402.998975][ T9824] raw: 00fff00000000040 ffff88801feb8b40 dead000000000122 0000000000000000 [ 403.012842][ T9824] raw: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000 [ 403.021855][ T9824] head: 00fff00000000040 ffff88801feb8b40 dead000000000122 0000000000000000 [ 403.034919][ T9824] head: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000 [ 403.102436][ T9828] netlink: 'syz.1.950': attribute type 7 has an invalid length. [ 403.110603][ T9824] head: 00fff00000000002 ffffea0001e10001 00000000ffffffff 00000000ffffffff [ 403.119387][ T9824] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004 [ 403.179950][ T9824] page dumped because: unmovable page [ 403.259884][ T9824] page_owner tracks the page as allocated [ 403.265933][ T9824] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5176, tgid 5176 (kworker/1:2), ts 389445187350, free_ts 388301357755 [ 403.380346][ T9830] could not allocate digest TFM handle [ 403.393407][ T9824] post_alloc_hook+0x181/0x1b0 [ 403.398578][ T9824] get_page_from_freelist+0x1193/0x39b0 [ 403.460014][ T9824] __alloc_frozen_pages_noprof+0x263/0x23a0 [ 403.486026][ T9824] alloc_pages_mpol+0x1fb/0x550 [ 403.505400][ T9824] new_slab+0x23c/0x330 [ 403.509937][ T9824] ___slab_alloc+0xd9c/0x1940 [ 403.516208][ T9824] __slab_alloc.constprop.0+0x56/0xb0 [ 403.525541][ T9824] kmem_cache_alloc_node_noprof+0xf5/0x3b0 [ 403.531896][ T9824] kmalloc_reserve+0x18b/0x2c0 [ 403.536872][ T9824] __alloc_skb+0x166/0x380 [ 403.554813][ T9824] j1939_tp_tx_dat_new+0x3b/0x540 [ 403.563299][ T9824] j1939_tp_txtimer+0xa2e/0x2960 [ 403.568533][ T9824] __hrtimer_run_queues+0x1ff/0xad0 [ 403.574389][ T9824] hrtimer_run_softirq+0x17d/0x350 [ 403.579723][ T9824] handle_softirqs+0x216/0x8e0 [ 403.587718][ T9824] do_softirq+0xb2/0xf0 [ 403.627219][ T9824] page last free pid 9679 tgid 9661 stack trace: [ 403.634124][ T9824] __free_frozen_pages+0x69d/0xff0 [ 403.650063][ T9824] __put_partials+0x16d/0x1c0 [ 403.654884][ T9824] qlist_free_all+0x4e/0x120 [ 403.689955][ T9824] kasan_quarantine_reduce+0x195/0x1e0 [ 403.695538][ T9824] __kasan_slab_alloc+0x69/0x90 [ 403.700870][ T9824] kmem_cache_alloc_node_noprof+0x1d5/0x3b0 [ 403.706860][ T9824] __alloc_skb+0x2b2/0x380 [ 403.759878][ T9824] alloc_skb_with_frags+0xe0/0x860 [ 403.789636][ T9824] sock_alloc_send_pskb+0x7fb/0x990 [ 403.814673][ T9824] j1939_sk_sendmsg+0x6bc/0x13d0 [ 403.819769][ T9824] ____sys_sendmsg+0xa95/0xc70 [ 403.852682][ T9824] ___sys_sendmsg+0x134/0x1d0 [ 403.860974][ T9824] __sys_sendmmsg+0x200/0x420 [ 403.865995][ T9824] __x64_sys_sendmmsg+0x9c/0x100 [ 403.872448][ T9824] do_syscall_64+0xcd/0x260 [ 403.877170][ T9824] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 404.337630][ T30] audit: type=1326 audit(6038804539.459:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9850 comm="syz.1.954" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f68b4b8d169 code=0x0 [ 405.781505][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 405.800030][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 406.022587][ T9883] capability: warning: `syz.3.961' uses 32-bit capabilities (legacy support in use) [ 407.351509][ T9897] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 407.429915][ T9897] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 407.888904][ T9915] netlink: 338 bytes leftover after parsing attributes in process `syz.0.969'. [ 408.589615][ T9923] FAULT_INJECTION: forcing a failure. [ 408.589615][ T9923] name failslab, interval 1, probability 0, space 0, times 0 [ 408.639770][ T9923] CPU: 1 UID: 0 PID: 9923 Comm: syz.2.972 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 408.639819][ T9923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 408.639838][ T9923] Call Trace: [ 408.639849][ T9923] [ 408.639861][ T9923] dump_stack_lvl+0x16c/0x1f0 [ 408.639913][ T9923] should_fail_ex+0x512/0x640 [ 408.639949][ T9923] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 408.639998][ T9923] should_failslab+0xc2/0x120 [ 408.640029][ T9923] __kmalloc_cache_noprof+0x6a/0x3e0 [ 408.640075][ T9923] ? kernfs_fop_open+0x244/0xda0 [ 408.640122][ T9923] kernfs_fop_open+0x244/0xda0 [ 408.640166][ T9923] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 408.640221][ T9923] do_dentry_open+0x741/0x1c10 [ 408.640270][ T9923] ? __pfx_kernfs_fop_open+0x10/0x10 [ 408.640320][ T9923] vfs_open+0x82/0x3f0 [ 408.640359][ T9923] path_openat+0x1e5e/0x2d40 [ 408.640425][ T9923] ? __pfx_path_openat+0x10/0x10 [ 408.640486][ T9923] do_filp_open+0x20b/0x470 [ 408.640536][ T9923] ? __pfx_do_filp_open+0x10/0x10 [ 408.640614][ T9923] ? _raw_spin_unlock+0x28/0x50 [ 408.640654][ T9923] ? alloc_fd+0x471/0x7d0 [ 408.640747][ T9923] do_sys_openat2+0x11b/0x1d0 [ 408.640783][ T9923] ? __pfx_do_sys_openat2+0x10/0x10 [ 408.640836][ T9923] __x64_sys_open+0x153/0x1e0 [ 408.640872][ T9923] ? __pfx___x64_sys_open+0x10/0x10 [ 408.640918][ T9923] ? rcu_is_watching+0x12/0xc0 [ 408.640963][ T9923] do_syscall_64+0xcd/0x260 [ 408.641013][ T9923] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 408.641046][ T9923] RIP: 0033:0x7f49deb8d169 [ 408.641072][ T9923] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 408.641102][ T9923] RSP: 002b:00007f49dfa1b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 408.641130][ T9923] RAX: ffffffffffffffda RBX: 00007f49deda5fa0 RCX: 00007f49deb8d169 [ 408.641150][ T9923] RDX: 0000000002000000 RSI: 0000000000080842 RDI: 0000200000000480 [ 408.641169][ T9923] RBP: 00007f49dec0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 408.641187][ T9923] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 408.641205][ T9923] R13: 0000000000000000 R14: 00007f49deda5fa0 R15: 00007ffd169c3a68 [ 408.641247][ T9923] [ 408.863562][ C1] vkms_vblank_simulate: vblank timer overrun [ 409.500084][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 409.506559][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 412.627972][ T9965] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 412.652487][ T9965] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 412.676689][ T9965] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 412.761963][ T9965] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 413.653452][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 413.661176][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 414.306621][ T56] Bluetooth: hci1: command 0x0c1a tx timeout [ 414.711584][ T56] Bluetooth: hci0: command 0x0c1a tx timeout [ 414.712015][ T5851] Bluetooth: hci2: command 0x0c1a tx timeout [ 414.770144][ T5851] Bluetooth: hci3: command 0x0c1a tx timeout [ 414.911648][T10005] netlink: 342 bytes leftover after parsing attributes in process `syz.3.992'. [ 415.313527][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 415.330361][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 416.048726][T10022] zero sized request [ 416.484303][T10036] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1004'. [ 416.616696][T10036] hsr_slave_0: left promiscuous mode [ 416.656027][T10036] hsr_slave_1: left promiscuous mode [ 420.285786][T10083] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1016'. [ 420.448573][ T30] audit: type=1800 audit(6038804555.569:3): pid=10087 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1018" name="lu_gp_id" dev="configfs" ino=26986 res=0 errno=0 [ 421.031495][T10099] FAULT_INJECTION: forcing a failure. [ 421.031495][T10099] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 421.100542][T10099] CPU: 0 UID: 0 PID: 10099 Comm: syz.3.1021 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 421.100598][T10099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 421.100616][T10099] Call Trace: [ 421.100625][T10099] [ 421.100636][T10099] dump_stack_lvl+0x16c/0x1f0 [ 421.100684][T10099] should_fail_ex+0x512/0x640 [ 421.100727][T10099] _copy_from_user+0x2e/0xd0 [ 421.100767][T10099] copy_from_sockptr_offset.constprop.0+0x153/0x1a0 [ 421.100821][T10099] ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10 [ 421.100878][T10099] ? mt_find+0x757/0xa30 [ 421.100928][T10099] do_ip_getsockopt+0x27f/0x2220 [ 421.100962][T10099] ? __pfx_do_ip_getsockopt+0x10/0x10 [ 421.100994][T10099] ? search_extable+0x82/0xb0 [ 421.101033][T10099] ? __pfx_search_extable+0x10/0x10 [ 421.101073][T10099] ? rep_movs_alternative+0xf/0x90 [ 421.101111][T10099] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 421.101143][T10099] ? ex_handler_uaccess+0xfa/0x230 [ 421.101183][T10099] ? fixup_exception+0x10c/0xaf0 [ 421.101224][T10099] ? kernelmode_fixup_or_oops.constprop.0+0x77/0xe0 [ 421.101261][T10099] ? __bad_area_nosemaphore+0x399/0x6a0 [ 421.101297][T10099] ? lock_mm_and_find_vma+0xa6/0x6e0 [ 421.101337][T10099] ? do_user_addr_fault+0x927/0x1370 [ 421.101383][T10099] ip_getsockopt+0x9b/0x1e0 [ 421.101415][T10099] ? __pfx_ip_getsockopt+0x10/0x10 [ 421.101456][T10099] raw_getsockopt+0x4d/0x1f0 [ 421.101482][T10099] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 421.101532][T10099] do_sock_getsockopt+0x3fc/0x800 [ 421.101601][T10099] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 421.101647][T10099] ? __fget_files+0x204/0x3c0 [ 421.101710][T10099] __sys_getsockopt+0x12f/0x260 [ 421.101757][T10099] __x64_sys_getsockopt+0xbd/0x160 [ 421.101794][T10099] ? do_syscall_64+0x91/0x260 [ 421.101837][T10099] ? lockdep_hardirqs_on+0x7c/0x110 [ 421.101879][T10099] do_syscall_64+0xcd/0x260 [ 421.101925][T10099] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 421.101954][T10099] RIP: 0033:0x7f0d51b8d169 [ 421.101978][T10099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 421.102004][T10099] RSP: 002b:00007f0d52ac7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 421.102030][T10099] RAX: ffffffffffffffda RBX: 00007f0d51da5fa0 RCX: 00007f0d51b8d169 [ 421.102049][T10099] RDX: 0000000000000030 RSI: 0000000000000000 RDI: 0000000000000003 [ 421.102065][T10099] RBP: 00007f0d52ac7090 R08: 0000000000000000 R09: 0000000000000000 [ 421.102082][T10099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 421.102098][T10099] R13: 0000000000000000 R14: 00007f0d51da5fa0 R15: 00007fff5a9ba998 [ 421.102135][T10099] [ 423.987471][T10143] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1032'. [ 425.820942][T10176] FAULT_INJECTION: forcing a failure. [ 425.820942][T10176] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 425.872664][T10176] CPU: 1 UID: 0 PID: 10176 Comm: syz.1.1041 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 425.872705][T10176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 425.872734][T10176] Call Trace: [ 425.872743][T10176] [ 425.872754][T10176] dump_stack_lvl+0x16c/0x1f0 [ 425.872801][T10176] should_fail_ex+0x512/0x640 [ 425.872841][T10176] _copy_from_user+0x2e/0xd0 [ 425.872881][T10176] ____sys_sendmsg+0x607/0xc70 [ 425.872914][T10176] ? __pfx_____sys_sendmsg+0x10/0x10 [ 425.872967][T10176] ? __pfx__kstrtoull+0x10/0x10 [ 425.873024][T10176] ___sys_sendmsg+0x134/0x1d0 [ 425.873067][T10176] ? __pfx____sys_sendmsg+0x10/0x10 [ 425.873128][T10176] ? find_held_lock+0x2b/0x80 [ 425.873202][T10176] __sys_sendmmsg+0x200/0x420 [ 425.873249][T10176] ? __pfx___sys_sendmmsg+0x10/0x10 [ 425.873305][T10176] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 425.873368][T10176] ? fput+0x70/0xf0 [ 425.873398][T10176] ? ksys_write+0x1b9/0x240 [ 425.873441][T10176] ? __pfx_ksys_write+0x10/0x10 [ 425.873481][T10176] ? rcu_is_watching+0x12/0xc0 [ 425.873526][T10176] __x64_sys_sendmmsg+0x9c/0x100 [ 425.873567][T10176] ? lockdep_hardirqs_on+0x7c/0x110 [ 425.873610][T10176] do_syscall_64+0xcd/0x260 [ 425.873658][T10176] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 425.873689][T10176] RIP: 0033:0x7f68b4b8d169 [ 425.873713][T10176] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 425.873742][T10176] RSP: 002b:00007f68b5aab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 425.873771][T10176] RAX: ffffffffffffffda RBX: 00007f68b4da5fa0 RCX: 00007f68b4b8d169 [ 425.873790][T10176] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000004 [ 425.873807][T10176] RBP: 00007f68b5aab090 R08: 0000000000000000 R09: 0000000000000000 [ 425.873825][T10176] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 425.873841][T10176] R13: 0000000000000000 R14: 00007f68b4da5fa0 R15: 00007fff4a19f6c8 [ 425.873880][T10176] [ 426.450691][T10183] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1043'. [ 426.706286][T10187] usb usb36: usbfs: process 10187 (syz.2.1044) did not claim interface 0 before use [ 429.520346][T10234] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1055'. [ 431.485050][T10270] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1064'. [ 434.127508][T10322] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1075'. [ 434.341869][T10318] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1074'. [ 434.347805][T10322] Invalid ELF header magic: != ELF [ 435.404286][T10338] FAULT_INJECTION: forcing a failure. [ 435.404286][T10338] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 435.418033][T10338] CPU: 1 UID: 0 PID: 10338 Comm: syz.1.1081 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 435.418076][T10338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 435.418095][T10338] Call Trace: [ 435.418106][T10338] [ 435.418118][T10338] dump_stack_lvl+0x16c/0x1f0 [ 435.418173][T10338] should_fail_ex+0x512/0x640 [ 435.418218][T10338] _copy_to_user+0x32/0xd0 [ 435.418263][T10338] snd_pcm_oss_read2+0x294/0x410 [ 435.418301][T10338] ? __pfx_snd_pcm_oss_read2+0x10/0x10 [ 435.418332][T10338] ? snd_pcm_kernel_ioctl+0x267/0x2e0 [ 435.418372][T10338] ? snd_pcm_oss_prepare+0x11e/0x220 [ 435.418443][T10338] snd_pcm_oss_read+0x5d3/0x760 [ 435.418482][T10338] ? __pfx_snd_pcm_oss_read+0x10/0x10 [ 435.418517][T10338] vfs_read+0x1de/0xc70 [ 435.418571][T10338] ? __pfx_vfs_read+0x10/0x10 [ 435.418621][T10338] ? find_held_lock+0x2b/0x80 [ 435.418665][T10338] ? __fget_files+0x204/0x3c0 [ 435.418716][T10338] ? __fget_files+0x20e/0x3c0 [ 435.418773][T10338] ksys_read+0x12a/0x240 [ 435.418815][T10338] ? __pfx_ksys_read+0x10/0x10 [ 435.418855][T10338] ? rcu_is_watching+0x12/0xc0 [ 435.418906][T10338] do_syscall_64+0xcd/0x260 [ 435.418956][T10338] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 435.418991][T10338] RIP: 0033:0x7f68b4b8d169 [ 435.419016][T10338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 435.419046][T10338] RSP: 002b:00007f68b5aab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 435.419075][T10338] RAX: ffffffffffffffda RBX: 00007f68b4da5fa0 RCX: 00007f68b4b8d169 [ 435.419095][T10338] RDX: 000000000cefbce6 RSI: 0000000000000000 RDI: 0000000000000006 [ 435.419113][T10338] RBP: 00007f68b4c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 435.419132][T10338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 435.419149][T10338] R13: 0000000000000000 R14: 00007f68b4da5fa0 R15: 00007fff4a19f6c8 [ 435.419188][T10338] [ 435.615164][ C1] vkms_vblank_simulate: vblank timer overrun [ 436.593946][T10366] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1086'. [ 436.680052][T10366] bridge_slave_0: left allmulticast mode [ 436.685746][T10366] bridge_slave_0: left promiscuous mode [ 436.834126][T10366] bridge0: port 1(bridge_slave_0) entered disabled state [ 437.773644][T10382] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1091'. [ 438.850969][T10407] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 438.862458][T10407] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 438.964698][T10413] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1100'. [ 445.334043][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.365003][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 446.141031][T10535] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88807840c000 pfn:0x7840c [ 446.170088][T10535] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 446.195820][T10535] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 446.234178][T10535] raw: ffff88807840c000 0000000000000000 00000001ffffffff 0000000000000000 [ 446.260199][T10535] page dumped because: unmovable page [ 446.267036][T10535] page_owner tracks the page as allocated [ 446.275412][T10535] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x92cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_NOMEMALLOC), pid 10036, tgid 10035 (syz.3.1004), ts 416472278997, free_ts 416234965289 [ 446.329890][T10535] register_dummy_stack+0x89/0xd0 [ 446.365915][T10535] init_page_owner+0x48/0xc30 [ 446.371152][T10535] page_ext_init+0x6b8/0xab0 [ 446.380207][T10536] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1127'. [ 446.389381][T10535] mm_core_init+0x13c/0x220 [ 446.400627][T10535] page last free pid 9890 tgid 9890 stack trace: [ 446.426935][T10535] __free_frozen_pages+0x69d/0xff0 [ 446.439939][T10535] __put_partials+0x16d/0x1c0 [ 446.460283][T10535] qlist_free_all+0x4e/0x120 [ 446.475656][T10535] kasan_quarantine_reduce+0x195/0x1e0 [ 446.490062][T10535] __kasan_slab_alloc+0x69/0x90 [ 446.498070][T10542] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 446.507803][T10542] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 446.523546][T10535] kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 446.532927][T10535] ptlock_alloc+0x1f/0x70 [ 446.537604][T10535] pte_alloc_one+0x6d/0x380 [ 446.559825][T10535] do_pte_missing+0x1c0b/0x3fb0 [ 446.566840][T10535] __handle_mm_fault+0x103d/0x2a40 [ 446.579904][T10535] handle_mm_fault+0x3fe/0xad0 [ 446.590509][T10535] __get_user_pages+0x771/0x36f0 [ 446.595645][T10535] get_dump_page+0x257/0x3d0 [ 446.617344][T10535] dump_user_range+0x1c3/0xb30 [ 446.626242][T10535] elf_core_dump+0x288a/0x3a90 [ 446.662319][T10535] do_coredump+0x3183/0x4480 [ 447.007913][T10556] FAULT_INJECTION: forcing a failure. [ 447.007913][T10556] name failslab, interval 1, probability 0, space 0, times 0 [ 447.107163][T10556] CPU: 1 UID: 0 PID: 10556 Comm: syz.1.1129 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 447.107212][T10556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 447.107229][T10556] Call Trace: [ 447.107238][T10556] [ 447.107250][T10556] dump_stack_lvl+0x16c/0x1f0 [ 447.107294][T10556] should_fail_ex+0x512/0x640 [ 447.107327][T10556] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 447.107378][T10556] should_failslab+0xc2/0x120 [ 447.107408][T10556] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 447.107457][T10556] ? find_held_lock+0x2b/0x80 [ 447.107495][T10556] ? getname_flags.part.0+0x48/0x540 [ 447.107536][T10556] getname_flags.part.0+0x48/0x540 [ 447.107575][T10556] getname_flags+0x93/0xf0 [ 447.107617][T10556] do_sys_openat2+0xb8/0x1d0 [ 447.107649][T10556] ? __pfx_do_sys_openat2+0x10/0x10 [ 447.107685][T10556] ? __fget_files+0x20e/0x3c0 [ 447.107734][T10556] __x64_sys_open+0x153/0x1e0 [ 447.107765][T10556] ? __pfx___x64_sys_open+0x10/0x10 [ 447.107806][T10556] ? rcu_is_watching+0x12/0xc0 [ 447.107848][T10556] do_syscall_64+0xcd/0x260 [ 447.107897][T10556] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 447.107928][T10556] RIP: 0033:0x7f68b4b8d169 [ 447.107952][T10556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 447.107979][T10556] RSP: 002b:00007f68b5a8a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 447.108005][T10556] RAX: ffffffffffffffda RBX: 00007f68b4da6080 RCX: 00007f68b4b8d169 [ 447.108023][T10556] RDX: 0000000000000008 RSI: 0000000000040841 RDI: 0000200000000040 [ 447.108040][T10556] RBP: 00007f68b5a8a090 R08: 0000000000000000 R09: 0000000000000000 [ 447.108056][T10556] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 447.108071][T10556] R13: 0000000000000001 R14: 00007f68b4da6080 R15: 00007fff4a19f6c8 [ 447.108108][T10556] [ 452.902037][T10652] input: f¬ as /devices/virtual/input/input72 [ 457.528902][T10719] : Can't lookup blockdev [ 457.570423][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 457.580076][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 457.801312][T10724] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1167'. [ 458.861300][ C1] vcan0: j1939_xtp_rx_dpo: no connection found [ 458.867601][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 458.874207][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 458.880733][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 458.887246][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 458.893757][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 458.900266][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 458.906781][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 458.913384][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 458.920202][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 458.926827][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 458.933491][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 458.940139][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 458.946748][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 458.953376][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 458.960007][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 458.966615][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 458.973237][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 458.979850][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 458.986474][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 458.993141][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 458.999736][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.006377][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.013011][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.019604][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.026267][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.032904][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.039496][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.046160][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.052785][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.059369][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.066011][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.072692][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.079378][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.086017][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.092933][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.099532][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.106218][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.112848][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.119453][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.126157][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.132791][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.139394][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.146036][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.152665][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.159254][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.165881][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.172547][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.179151][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.185829][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.192463][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.199146][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.205812][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.212501][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.219124][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.225799][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.232443][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.239049][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.245721][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.252350][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.258959][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.265621][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.272295][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.278908][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.287145][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.293780][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.300368][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.306869][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.313400][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.319951][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.326457][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.332978][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.339476][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.346001][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.352533][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.359041][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.365566][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.372085][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.378589][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.385110][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.391655][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.398156][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.404669][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.411203][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.417702][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.424259][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.430778][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.437275][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.443795][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.450353][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.456875][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.463400][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.469928][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.476429][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.482993][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.489494][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.496039][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.502556][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.509052][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.515577][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.522133][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.528630][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.535167][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.541677][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.548196][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.554724][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.561248][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.567832][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.574384][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.580932][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.587435][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.593990][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.600510][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.607025][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.613571][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.620113][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.626619][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.633153][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.639669][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.646246][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.652785][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.659288][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.665821][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.672343][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.678922][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.685444][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.691991][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.698488][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.708689][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.715243][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.721756][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.728298][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.734811][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.741317][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.747799][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.754319][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.760864][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.767350][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.773863][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.780378][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.786865][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.793395][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.799918][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.806453][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.812970][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.819461][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.825988][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.832498][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.838989][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.845507][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.852015][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.858514][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.865052][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.871620][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.878140][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.884687][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.891224][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.897717][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.904247][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.910771][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.917263][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.923779][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.930303][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.936816][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.943334][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.949867][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.956361][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.962962][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.969492][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.976031][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.982566][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.989068][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 459.995590][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.002110][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.008599][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.015126][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.021634][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.028131][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.034651][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.041188][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.047682][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.054222][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.060755][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.067257][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.073783][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.080304][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.086824][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.093345][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.099906][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.106404][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.112918][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.119463][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.126580][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.133120][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.139621][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.146196][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.152749][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.159264][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.165784][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.172308][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.178805][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.185317][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.191845][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.198339][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.204859][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.211370][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.217859][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.224412][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.230984][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.237509][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.244038][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.250577][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.257094][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.263612][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.270183][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.276693][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.283210][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.289697][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.296210][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.302771][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.309277][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.315789][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.322299][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.328784][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.335293][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.341804][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.348287][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.354789][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.361283][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.367780][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.374302][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.380848][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.387333][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.393896][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.400402][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.406885][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.413391][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.419910][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.426396][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.432901][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.439411][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.445912][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.452409][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.458897][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.465410][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.471947][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.478446][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.484968][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.491477][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.497961][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.504472][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.510976][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.517462][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.523975][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.530487][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 460.536974][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 461.794127][ C1] vcan0: j1939_tp_rxtimer: 0xffff888032a21c00: rx timeout, send abort [ 462.302477][ C1] vcan0: j1939_tp_rxtimer: 0xffff888032a21c00: abort rx timeout. Force session deactivation [ 462.675240][T10775] FAULT_INJECTION: forcing a failure. [ 462.675240][T10775] name failslab, interval 1, probability 0, space 0, times 0 [ 462.694790][T10772] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1178'. [ 462.704155][T10775] CPU: 1 UID: 0 PID: 10775 Comm: syz.1.1179 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 462.704194][T10775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 462.704211][T10775] Call Trace: [ 462.704220][T10775] [ 462.704231][T10775] dump_stack_lvl+0x16c/0x1f0 [ 462.704278][T10775] should_fail_ex+0x512/0x640 [ 462.704313][T10775] ? __kmalloc_noprof+0xbf/0x510 [ 462.704363][T10775] ? read_page_owner+0xe08/0x1dc0 [ 462.704405][T10775] should_failslab+0xc2/0x120 [ 462.704433][T10775] __kmalloc_noprof+0xd2/0x510 [ 462.704475][T10775] ? page_ext_put+0x3e/0xd0 [ 462.704528][T10775] read_page_owner+0xe08/0x1dc0 [ 462.704580][T10775] ? __pfx_read_page_owner+0x10/0x10 [ 462.704640][T10775] ? get_pid_task+0xfc/0x250 [ 462.704671][T10775] ? __debugfs_file_get+0x1fe/0x840 [ 462.704703][T10775] ? __pfx___debugfs_file_get+0x10/0x10 [ 462.704749][T10775] full_proxy_read+0x13c/0x200 [ 462.704792][T10775] ? __pfx_full_proxy_read+0x10/0x10 [ 462.704827][T10775] vfs_read+0x1de/0xc70 [ 462.704874][T10775] ? __pfx___mutex_lock+0x10/0x10 [ 462.704920][T10775] ? __pfx_vfs_read+0x10/0x10 [ 462.704974][T10775] ? __fget_files+0x20e/0x3c0 [ 462.705033][T10775] ksys_read+0x12a/0x240 [ 462.705075][T10775] ? __pfx_ksys_read+0x10/0x10 [ 462.705113][T10775] ? rcu_is_watching+0x12/0xc0 [ 462.705164][T10775] do_syscall_64+0xcd/0x260 [ 462.705213][T10775] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 462.705244][T10775] RIP: 0033:0x7f68b4b8d169 [ 462.705268][T10775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 462.705296][T10775] RSP: 002b:00007f68b5aab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 462.705324][T10775] RAX: ffffffffffffffda RBX: 00007f68b4da5fa0 RCX: 00007f68b4b8d169 [ 462.705342][T10775] RDX: 0000000000001000 RSI: 0000200000002080 RDI: 0000000000000003 [ 462.705358][T10775] RBP: 00007f68b5aab090 R08: 0000000000000000 R09: 0000000000000000 [ 462.705374][T10775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 462.705389][T10775] R13: 0000000000000000 R14: 00007f68b4da5fa0 R15: 00007fff4a19f6c8 [ 462.705428][T10775] [ 465.276218][T10818] FAULT_INJECTION: forcing a failure. [ 465.276218][T10818] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 465.292772][T10818] CPU: 0 UID: 0 PID: 10818 Comm: syz.2.1189 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 465.292804][T10818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 465.292819][T10818] Call Trace: [ 465.292826][T10818] [ 465.292834][T10818] dump_stack_lvl+0x16c/0x1f0 [ 465.292871][T10818] should_fail_ex+0x512/0x640 [ 465.292903][T10818] _copy_from_user+0x2e/0xd0 [ 465.292933][T10818] ____sys_sendmsg+0x607/0xc70 [ 465.292958][T10818] ? __pfx_____sys_sendmsg+0x10/0x10 [ 465.292983][T10818] ? __pfx__kstrtoull+0x10/0x10 [ 465.293025][T10818] ___sys_sendmsg+0x134/0x1d0 [ 465.293057][T10818] ? __pfx____sys_sendmsg+0x10/0x10 [ 465.293100][T10818] ? find_held_lock+0x2b/0x80 [ 465.293147][T10818] __sys_sendmmsg+0x200/0x420 [ 465.293181][T10818] ? __pfx___sys_sendmmsg+0x10/0x10 [ 465.293220][T10818] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 465.293267][T10818] ? fput+0x70/0xf0 [ 465.293288][T10818] ? ksys_write+0x1b9/0x240 [ 465.293320][T10818] ? __pfx_ksys_write+0x10/0x10 [ 465.293350][T10818] ? rcu_is_watching+0x12/0xc0 [ 465.293383][T10818] __x64_sys_sendmmsg+0x9c/0x100 [ 465.293413][T10818] ? lockdep_hardirqs_on+0x7c/0x110 [ 465.293444][T10818] do_syscall_64+0xcd/0x260 [ 465.293480][T10818] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 465.293504][T10818] RIP: 0033:0x7f49deb8d169 [ 465.293521][T10818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 465.293543][T10818] RSP: 002b:00007f49dfa1b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 465.293570][T10818] RAX: ffffffffffffffda RBX: 00007f49deda5fa0 RCX: 00007f49deb8d169 [ 465.293585][T10818] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000004 [ 465.293598][T10818] RBP: 00007f49dfa1b090 R08: 0000000000000000 R09: 0000000000000000 [ 465.293612][T10818] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 465.293625][T10818] R13: 0000000000000000 R14: 00007f49deda5fa0 R15: 00007ffd169c3a68 [ 465.293653][T10818] [ 465.610756][T10816] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 465.620414][T10816] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 466.701600][T10843] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1197'. [ 466.711846][T10843] bridge_slave_1: left allmulticast mode [ 466.717909][T10843] bridge_slave_1: left promiscuous mode [ 466.726444][T10843] bridge0: port 2(bridge_slave_1) entered disabled state [ 466.771723][T10843] bridge_slave_0: left allmulticast mode [ 466.786294][T10843] bridge_slave_0: left promiscuous mode [ 466.866414][T10843] bridge0: port 1(bridge_slave_0) entered disabled state [ 467.061157][T10852] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1198'. [ 467.209967][T10852] bridge_slave_0: left allmulticast mode [ 467.239550][T10852] bridge_slave_0: left promiscuous mode [ 467.280168][T10852] bridge0: port 1(bridge_slave_0) entered disabled state [ 467.638985][T10864] FAULT_INJECTION: forcing a failure. [ 467.638985][T10864] name failslab, interval 1, probability 0, space 0, times 0 [ 467.738517][T10864] CPU: 0 UID: 0 PID: 10864 Comm: syz.1.1202 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 467.738560][T10864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 467.738578][T10864] Call Trace: [ 467.738588][T10864] [ 467.738600][T10864] dump_stack_lvl+0x16c/0x1f0 [ 467.738649][T10864] should_fail_ex+0x512/0x640 [ 467.738683][T10864] ? fs_reclaim_acquire+0xae/0x150 [ 467.738722][T10864] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 467.738755][T10864] should_failslab+0xc2/0x120 [ 467.738777][T10864] __kmalloc_noprof+0xd2/0x510 [ 467.738819][T10864] tomoyo_realpath_from_path+0xc2/0x6e0 [ 467.738867][T10864] ? tomoyo_profile+0x47/0x60 [ 467.738918][T10864] tomoyo_path_number_perm+0x245/0x580 [ 467.738951][T10864] ? tomoyo_path_number_perm+0x237/0x580 [ 467.738981][T10864] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 467.739010][T10864] ? find_held_lock+0x2b/0x80 [ 467.739065][T10864] ? find_held_lock+0x2b/0x80 [ 467.739093][T10864] ? hook_file_ioctl_common+0x145/0x410 [ 467.739124][T10864] ? __fget_files+0x20e/0x3c0 [ 467.739163][T10864] security_file_ioctl+0x9b/0x240 [ 467.739193][T10864] __x64_sys_ioctl+0xb7/0x200 [ 467.739223][T10864] do_syscall_64+0xcd/0x260 [ 467.739259][T10864] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 467.739283][T10864] RIP: 0033:0x7f68b4b8d169 [ 467.739300][T10864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 467.739321][T10864] RSP: 002b:00007f68b5aab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 467.739342][T10864] RAX: ffffffffffffffda RBX: 00007f68b4da5fa0 RCX: 00007f68b4b8d169 [ 467.739357][T10864] RDX: 0000000000000038 RSI: 000000000000aea3 RDI: 0000000000000003 [ 467.739376][T10864] RBP: 00007f68b5aab090 R08: 0000000000000000 R09: 0000000000000000 [ 467.739389][T10864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 467.739402][T10864] R13: 0000000000000000 R14: 00007f68b4da5fa0 R15: 00007fff4a19f6c8 [ 467.739430][T10864] [ 467.939849][T10864] ERROR: Out of memory at tomoyo_realpath_from_path. [ 468.533648][T10873] netlink: 'syz.3.1205': attribute type 7 has an invalid length. [ 469.146516][T10885] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1209'. [ 469.508201][T10895] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78400 [ 469.520100][T10887] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 469.529601][T10887] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 469.545248][T10895] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 469.595943][T10895] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 469.739468][T10895] page_type: f5(slab) [ 469.759094][T10895] raw: 00fff00000000040 ffff88801b442140 dead000000000122 0000000000000000 [ 469.798582][T10895] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 469.810476][T10895] head: 00fff00000000040 ffff88801b442140 dead000000000122 0000000000000000 [ 469.820127][T10895] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 469.829640][T10895] head: 00fff00000000003 ffffea0001e10001 00000000ffffffff 00000000ffffffff [ 469.839505][T10895] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 469.848805][T10895] page dumped because: unmovable page [ 469.854694][T10895] page_owner tracks the page as allocated [ 469.861457][T10895] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 10859, tgid 10858 (syz.1.1200), ts 467406120027, free_ts 467271062945 [ 469.883322][T10895] post_alloc_hook+0x181/0x1b0 [ 469.889351][T10895] get_page_from_freelist+0x1193/0x39b0 [ 469.898656][T10895] __alloc_frozen_pages_noprof+0x263/0x23a0 [ 469.905858][T10895] alloc_pages_mpol+0x1fb/0x550 [ 469.912694][T10895] new_slab+0x23c/0x330 [ 469.918475][T10895] ___slab_alloc+0xd9c/0x1940 [ 469.975698][T10895] __slab_alloc.constprop.0+0x56/0xb0 [ 470.183602][T10895] __kmalloc_noprof+0x2f2/0x510 [ 470.188670][T10895] tomoyo_realpath_from_path+0xc2/0x6e0 [ 470.194445][T10895] tomoyo_path_number_perm+0x245/0x580 [ 470.200146][T10895] security_file_ioctl+0x9b/0x240 [ 470.207259][T10895] __x64_sys_ioctl+0xb7/0x200 [ 470.219872][T10895] do_syscall_64+0xcd/0x260 [ 470.224576][T10895] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 470.239580][T10895] page last free pid 5840 tgid 5840 stack trace: [ 470.260170][T10895] __free_frozen_pages+0x69d/0xff0 [ 470.282358][T10895] __put_partials+0x16d/0x1c0 [ 470.297458][T10895] qlist_free_all+0x4e/0x120 [ 470.311055][T10895] kasan_quarantine_reduce+0x195/0x1e0 [ 470.319660][T10895] __kasan_slab_alloc+0x69/0x90 [ 470.335506][T10895] kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 470.342502][T10895] ptlock_alloc+0x1f/0x70 [ 470.347093][T10895] pte_alloc_one+0x6d/0x380 [ 470.353960][T10895] __pte_alloc+0x6d/0x3c0 [ 470.358422][T10895] copy_page_range+0x39a7/0x5ec0 [ 470.376996][T10895] copy_process+0x862b/0x91a0 [ 470.388321][T10895] kernel_clone+0xfc/0x960 [ 470.403050][T10895] __do_sys_clone+0xce/0x120 [ 470.413157][T10895] do_syscall_64+0xcd/0x260 [ 470.425556][T10895] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 475.381842][T10991] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1233'. [ 478.417023][T11050] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1243'. [ 479.340761][T11057] netlink: 'syz.3.1245': attribute type 7 has an invalid length. [ 479.569296][T11073] FAULT_INJECTION: forcing a failure. [ 479.569296][T11073] name failslab, interval 1, probability 0, space 0, times 0 [ 479.612795][T11073] CPU: 0 UID: 0 PID: 11073 Comm: syz.3.1249 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 479.612828][T11073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 479.612842][T11073] Call Trace: [ 479.612850][T11073] [ 479.612858][T11073] dump_stack_lvl+0x16c/0x1f0 [ 479.612897][T11073] should_fail_ex+0x512/0x640 [ 479.612924][T11073] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 479.612963][T11073] should_failslab+0xc2/0x120 [ 479.612985][T11073] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 479.613021][T11073] ? getname_flags.part.0+0x48/0x540 [ 479.613060][T11073] getname_flags.part.0+0x48/0x540 [ 479.613099][T11073] getname_flags+0x93/0xf0 [ 479.613135][T11073] do_sys_openat2+0xb8/0x1d0 [ 479.613160][T11073] ? __pfx_do_sys_openat2+0x10/0x10 [ 479.613213][T11073] ? __fget_files+0x20e/0x3c0 [ 479.613252][T11073] __x64_sys_openat+0x174/0x210 [ 479.613278][T11073] ? __pfx___x64_sys_openat+0x10/0x10 [ 479.613302][T11073] ? ksys_write+0x1b9/0x240 [ 479.613335][T11073] ? rcu_is_watching+0x12/0xc0 [ 479.613371][T11073] do_syscall_64+0xcd/0x260 [ 479.613408][T11073] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 479.613431][T11073] RIP: 0033:0x7f0d51b8d169 [ 479.613449][T11073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 479.613472][T11073] RSP: 002b:00007f0d52ac7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 479.613493][T11073] RAX: ffffffffffffffda RBX: 00007f0d51da5fa0 RCX: 00007f0d51b8d169 [ 479.613508][T11073] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 479.613523][T11073] RBP: 00007f0d52ac7090 R08: 0000000000000000 R09: 0000000000000000 [ 479.613537][T11073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 479.613551][T11073] R13: 0000000000000001 R14: 00007f0d51da5fa0 R15: 00007fff5a9ba998 [ 479.613579][T11073] [ 480.175954][T11076] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1250'. [ 481.187643][T11089] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 481.233432][T11089] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 481.571398][T11096] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1254'. [ 482.302516][T11112] WARNING! power/level is deprecated; use power/control instead [ 484.727434][T11140] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1260'. [ 486.473851][T11175] ptrace attach of "./syz-executor exec"[5839] was attempted by ""[11175] [ 487.470008][T11179] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1268'. [ 488.443287][T11202] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 488.459817][T11202] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 490.758545][T11224] syz.0.1278 (11224) used obsolete PPPIOCDETACH ioctl [ 491.848787][T11243] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1281'. [ 491.915699][T11254] FAULT_INJECTION: forcing a failure. [ 491.915699][T11254] name failslab, interval 1, probability 0, space 0, times 0 [ 491.989201][T11254] CPU: 0 UID: 0 PID: 11254 Comm: syz.0.1283 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 491.989234][T11254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 491.989248][T11254] Call Trace: [ 491.989255][T11254] [ 491.989264][T11254] dump_stack_lvl+0x16c/0x1f0 [ 491.989303][T11254] should_fail_ex+0x512/0x640 [ 491.989333][T11254] ? __kmalloc_noprof+0xbf/0x510 [ 491.989370][T11254] ? kernfs_fop_write_iter+0x237/0x510 [ 491.989398][T11254] should_failslab+0xc2/0x120 [ 491.989420][T11254] __kmalloc_noprof+0xd2/0x510 [ 491.989462][T11254] kernfs_fop_write_iter+0x237/0x510 [ 491.989495][T11254] do_iter_readv_writev+0x654/0x950 [ 491.989528][T11254] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 491.989572][T11254] vfs_writev+0x353/0xdc0 [ 491.989600][T11254] ? get_pid_task+0x106/0x250 [ 491.989629][T11254] ? __pfx_vfs_writev+0x10/0x10 [ 491.989661][T11254] ? find_held_lock+0x2b/0x80 [ 491.989707][T11254] ? __fget_files+0x20e/0x3c0 [ 491.989747][T11254] ? do_pwritev+0x1af/0x270 [ 491.989785][T11254] do_pwritev+0x1af/0x270 [ 491.989824][T11254] ? __pfx_do_pwritev+0x10/0x10 [ 491.989862][T11254] ? rcu_is_watching+0x12/0xc0 [ 491.989912][T11254] do_syscall_64+0xcd/0x260 [ 491.989959][T11254] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 491.989991][T11254] RIP: 0033:0x7f225398d169 [ 491.990015][T11254] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 491.990043][T11254] RSP: 002b:00007f22517f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000128 [ 491.990079][T11254] RAX: ffffffffffffffda RBX: 00007f2253ba5fa0 RCX: 00007f225398d169 [ 491.990100][T11254] RDX: 0000000000000005 RSI: 0000200000001000 RDI: 0000000000000003 [ 491.990119][T11254] RBP: 00007f22517f6090 R08: 0000000000000009 R09: 0000000000000000 [ 491.990138][T11254] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 491.990156][T11254] R13: 0000000000000000 R14: 00007f2253ba5fa0 R15: 00007ffeea5f2b88 [ 491.990196][T11254] [ 492.844148][T11265] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1285'. [ 492.856483][T11265] ipvlan1: entered allmulticast mode [ 492.873484][T11265] veth0_vlan: entered allmulticast mode [ 493.293003][T11273] FAULT_INJECTION: forcing a failure. [ 493.293003][T11273] name failslab, interval 1, probability 0, space 0, times 0 [ 493.360404][T11273] CPU: 1 UID: 0 PID: 11273 Comm: syz.2.1288 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 493.360446][T11273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 493.360465][T11273] Call Trace: [ 493.360474][T11273] [ 493.360485][T11273] dump_stack_lvl+0x16c/0x1f0 [ 493.360534][T11273] should_fail_ex+0x512/0x640 [ 493.360569][T11273] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 493.360621][T11273] should_failslab+0xc2/0x120 [ 493.360650][T11273] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 493.360698][T11273] ? getname_flags.part.0+0x48/0x540 [ 493.360740][T11273] getname_flags.part.0+0x48/0x540 [ 493.360778][T11273] getname_flags+0x93/0xf0 [ 493.360819][T11273] do_sys_openat2+0xb8/0x1d0 [ 493.360851][T11273] ? __pfx_do_sys_openat2+0x10/0x10 [ 493.360889][T11273] ? __fget_files+0x20e/0x3c0 [ 493.360940][T11273] __x64_sys_openat+0x174/0x210 [ 493.360973][T11273] ? __pfx___x64_sys_openat+0x10/0x10 [ 493.361005][T11273] ? ksys_write+0x1b9/0x240 [ 493.361047][T11273] ? rcu_is_watching+0x12/0xc0 [ 493.361094][T11273] do_syscall_64+0xcd/0x260 [ 493.361140][T11273] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 493.361170][T11273] RIP: 0033:0x7f49deb8d169 [ 493.361190][T11273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 493.361223][T11273] RSP: 002b:00007f49df9d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 493.361247][T11273] RAX: ffffffffffffffda RBX: 00007f49deda6160 RCX: 00007f49deb8d169 [ 493.361263][T11273] RDX: 0000000000080900 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 493.361279][T11273] RBP: 00007f49df9d9090 R08: 0000000000000000 R09: 0000000000000000 [ 493.361293][T11273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 493.361308][T11273] R13: 0000000000000000 R14: 00007f49deda6160 R15: 00007ffd169c3a68 [ 493.361339][T11273] [ 494.972541][T11288] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input73 [ 495.230737][T11289] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input74 [ 496.181188][T11308] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1295'. [ 496.453562][T11308] bridge_slave_1: left allmulticast mode [ 496.459286][T11308] bridge_slave_1: left promiscuous mode [ 496.530859][T11308] bridge0: port 2(bridge_slave_1) entered disabled state [ 496.825409][T11308] bridge_slave_0: left allmulticast mode [ 496.861905][T11308] bridge_slave_0: left promiscuous mode [ 496.918950][T11308] bridge0: port 1(bridge_slave_0) entered disabled state [ 498.502907][T11348] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1300'. [ 499.789073][T11373] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1306'. [ 503.275400][T11424] FAULT_INJECTION: forcing a failure. [ 503.275400][T11424] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 503.343305][T11424] CPU: 0 UID: 0 PID: 11424 Comm: syz.1.1319 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 503.343348][T11424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 503.343366][T11424] Call Trace: [ 503.343375][T11424] [ 503.343387][T11424] dump_stack_lvl+0x16c/0x1f0 [ 503.343435][T11424] should_fail_ex+0x512/0x640 [ 503.343477][T11424] core_sys_select+0x4b2/0xbe0 [ 503.343530][T11424] ? __pfx_core_sys_select+0x10/0x10 [ 503.343582][T11424] ? proc_fail_nth_write+0x9f/0x250 [ 503.343657][T11424] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 503.343715][T11424] kern_select+0x15d/0x1e0 [ 503.343760][T11424] ? __pfx_kern_select+0x10/0x10 [ 503.343807][T11424] ? __pfx_ksys_write+0x10/0x10 [ 503.343849][T11424] ? rcu_is_watching+0x12/0xc0 [ 503.343893][T11424] __x64_sys_select+0xbd/0x160 [ 503.343935][T11424] ? do_syscall_64+0x91/0x260 [ 503.343980][T11424] ? lockdep_hardirqs_on+0x7c/0x110 [ 503.344022][T11424] do_syscall_64+0xcd/0x260 [ 503.344072][T11424] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 503.344103][T11424] RIP: 0033:0x7f68b4b8d169 [ 503.344127][T11424] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 503.344154][T11424] RSP: 002b:00007f68b5aab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 503.344180][T11424] RAX: ffffffffffffffda RBX: 00007f68b4da5fa0 RCX: 00007f68b4b8d169 [ 503.344199][T11424] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 503.344216][T11424] RBP: 00007f68b5aab090 R08: 0000000000000000 R09: 0000000000000000 [ 503.344232][T11424] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001 [ 503.344249][T11424] R13: 0000000000000000 R14: 00007f68b4da5fa0 R15: 00007fff4a19f6c8 [ 503.344286][T11424] [ 504.338981][T11459] FAULT_INJECTION: forcing a failure. [ 504.338981][T11459] name failslab, interval 1, probability 0, space 0, times 0 [ 504.413130][T11459] CPU: 1 UID: 0 PID: 11459 Comm: syz.2.1323 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 504.413181][T11459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 504.413200][T11459] Call Trace: [ 504.413209][T11459] [ 504.413220][T11459] dump_stack_lvl+0x16c/0x1f0 [ 504.413269][T11459] should_fail_ex+0x512/0x640 [ 504.413303][T11459] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 504.413353][T11459] should_failslab+0xc2/0x120 [ 504.413381][T11459] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 504.413428][T11459] ? security_file_alloc+0x34/0x2b0 [ 504.413474][T11459] security_file_alloc+0x34/0x2b0 [ 504.413529][T11459] init_file+0x93/0x4c0 [ 504.413560][T11459] alloc_empty_file+0x73/0x1e0 [ 504.413595][T11459] path_openat+0xe0/0x2d40 [ 504.413638][T11459] ? __x64_sys_openat+0x174/0x210 [ 504.413670][T11459] ? do_syscall_64+0xcd/0x260 [ 504.413714][T11459] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 504.413761][T11459] ? __pfx_path_openat+0x10/0x10 [ 504.413818][T11459] do_filp_open+0x20b/0x470 [ 504.413865][T11459] ? __pfx_do_filp_open+0x10/0x10 [ 504.413944][T11459] ? alloc_fd+0x471/0x7d0 [ 504.414000][T11459] do_sys_openat2+0x11b/0x1d0 [ 504.414033][T11459] ? __pfx_do_sys_openat2+0x10/0x10 [ 504.414071][T11459] ? __fget_files+0x20e/0x3c0 [ 504.414124][T11459] __x64_sys_openat+0x174/0x210 [ 504.414165][T11459] ? __pfx___x64_sys_openat+0x10/0x10 [ 504.414198][T11459] ? ksys_write+0x1b9/0x240 [ 504.414242][T11459] ? rcu_is_watching+0x12/0xc0 [ 504.414293][T11459] do_syscall_64+0xcd/0x260 [ 504.414341][T11459] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 504.414372][T11459] RIP: 0033:0x7f49deb8d169 [ 504.414395][T11459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 504.414425][T11459] RSP: 002b:00007f49df9d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 504.414454][T11459] RAX: ffffffffffffffda RBX: 00007f49deda6160 RCX: 00007f49deb8d169 [ 504.414474][T11459] RDX: 0000000000000400 RSI: 0000200000000200 RDI: ffffffffffffff9c [ 504.414493][T11459] RBP: 00007f49df9d9090 R08: 0000000000000000 R09: 0000000000000000 [ 504.414511][T11459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 504.414528][T11459] R13: 0000000000000000 R14: 00007f49deda6160 R15: 00007ffd169c3a68 [ 504.414566][T11459] [ 504.865527][T11462] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1326'. [ 506.501084][ C1] vcan0: j1939_tp_rxtimer: 0xffff88802d439400: rx timeout, send abort [ 506.509570][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88802d439400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 506.649473][T11494] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 506.679906][T11494] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 506.780721][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.787114][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 515.264915][T11648] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input75 [ 515.331695][T11651] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1364'. [ 515.503753][T11647] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1362'. [ 515.912525][T11661] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR [ 516.166297][T11673] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1370'. [ 516.575384][ C1] vcan0: j1939_tp_rxtimer: 0xffff888029205000: rx timeout, send abort [ 516.581580][T11685] QAT: Invalid ioctl 7 [ 516.584035][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888029205000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 516.600573][T11685] QAT: Invalid ioctl 7 [ 518.476170][T11703] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1377'. [ 520.222872][T11740] ubi0: attaching mtd0 [ 520.239484][T11740] ubi0: scanning is finished [ 520.256538][T11740] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 520.293822][T11741] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1386'. [ 520.415671][T11741] Invalid ELF header magic: != ELF [ 520.492962][T11740] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 522.032561][T11769] FAULT_INJECTION: forcing a failure. [ 522.032561][T11769] name failslab, interval 1, probability 0, space 0, times 0 [ 522.074524][T11769] CPU: 1 UID: 0 PID: 11769 Comm: syz.3.1392 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 522.074574][T11769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 522.074592][T11769] Call Trace: [ 522.074602][T11769] [ 522.074613][T11769] dump_stack_lvl+0x16c/0x1f0 [ 522.074661][T11769] should_fail_ex+0x512/0x640 [ 522.074694][T11769] ? fs_reclaim_acquire+0xae/0x150 [ 522.074731][T11769] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 522.074774][T11769] should_failslab+0xc2/0x120 [ 522.074805][T11769] __kmalloc_noprof+0xd2/0x510 [ 522.074864][T11769] tomoyo_realpath_from_path+0xc2/0x6e0 [ 522.074915][T11769] ? tomoyo_profile+0x47/0x60 [ 522.074968][T11769] tomoyo_path_number_perm+0x245/0x580 [ 522.075003][T11769] ? tomoyo_path_number_perm+0x237/0x580 [ 522.075044][T11769] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 522.075085][T11769] ? rcu_is_watching+0x12/0xc0 [ 522.075166][T11769] ? __pfx___might_resched+0x10/0x10 [ 522.075221][T11769] ? down_write+0x14d/0x200 [ 522.075270][T11769] ? __pfx_down_write+0x10/0x10 [ 522.075316][T11769] ? mnt_get_write_access+0x20c/0x300 [ 522.075357][T11769] security_path_chmod+0x121/0x2c0 [ 522.075394][T11769] chmod_common+0x16c/0x460 [ 522.075425][T11769] ? rcu_is_watching+0x12/0xc0 [ 522.075465][T11769] ? __pfx_chmod_common+0x10/0x10 [ 522.075513][T11769] ? putname+0x154/0x1a0 [ 522.075561][T11769] __x64_sys_chmod+0x107/0x1c0 [ 522.075593][T11769] ? __pfx___x64_sys_chmod+0x10/0x10 [ 522.075638][T11769] do_syscall_64+0xcd/0x260 [ 522.075687][T11769] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 522.075719][T11769] RIP: 0033:0x7f0d51b8d169 [ 522.075744][T11769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 522.075775][T11769] RSP: 002b:00007f0d52aa6038 EFLAGS: 00000246 ORIG_RAX: 000000000000005a [ 522.075803][T11769] RAX: ffffffffffffffda RBX: 00007f0d51da6080 RCX: 00007f0d51b8d169 [ 522.075822][T11769] RDX: 0000000000000000 RSI: 000000000000f4ba RDI: 00002000000000c0 [ 522.075840][T11769] RBP: 00007f0d52aa6090 R08: 0000000000000000 R09: 0000000000000000 [ 522.075858][T11769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 522.075875][T11769] R13: 0000000000000001 R14: 00007f0d51da6080 R15: 00007fff5a9ba998 [ 522.075916][T11769] [ 522.076019][T11769] ERROR: Out of memory at tomoyo_realpath_from_path. [ 523.004427][T11778] tc_dump_action: action bad kind [ 523.336995][T11787] FAULT_INJECTION: forcing a failure. [ 523.336995][T11787] name failslab, interval 1, probability 0, space 0, times 0 [ 523.379837][T11787] CPU: 1 UID: 0 PID: 11787 Comm: syz.1.1394 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 523.379887][T11787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 523.379907][T11787] Call Trace: [ 523.379920][T11787] [ 523.379934][T11787] dump_stack_lvl+0x16c/0x1f0 [ 523.379991][T11787] should_fail_ex+0x512/0x640 [ 523.380037][T11787] should_failslab+0xc2/0x120 [ 523.380070][T11787] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 523.380125][T11787] ? skb_clone+0x190/0x3f0 [ 523.380177][T11787] skb_clone+0x190/0x3f0 [ 523.380226][T11787] netlink_deliver_tap+0xabd/0xd30 [ 523.380282][T11787] netlink_unicast+0x5df/0x7f0 [ 523.380337][T11787] ? __pfx_netlink_unicast+0x10/0x10 [ 523.380383][T11787] ? __lock_acquire+0xaa4/0x1ba0 [ 523.380427][T11787] netlink_sendmsg+0x8d1/0xdd0 [ 523.380492][T11787] ? __pfx_netlink_sendmsg+0x10/0x10 [ 523.380560][T11787] ____sys_sendmsg+0xa95/0xc70 [ 523.380594][T11787] ? copy_msghdr_from_user+0x10a/0x160 [ 523.380636][T11787] ? __pfx_____sys_sendmsg+0x10/0x10 [ 523.380675][T11787] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 523.380730][T11787] ___sys_sendmsg+0x134/0x1d0 [ 523.380779][T11787] ? __pfx____sys_sendmsg+0x10/0x10 [ 523.380879][T11787] __sys_sendmsg+0x16d/0x220 [ 523.380926][T11787] ? __pfx___sys_sendmsg+0x10/0x10 [ 523.380971][T11787] ? __x64_sys_futex+0x1e0/0x4c0 [ 523.381047][T11787] do_syscall_64+0xcd/0x260 [ 523.381102][T11787] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 523.381138][T11787] RIP: 0033:0x7f68b4b8d169 [ 523.381165][T11787] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 523.381199][T11787] RSP: 002b:00007f68b5aab038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 523.381231][T11787] RAX: ffffffffffffffda RBX: 00007f68b4da5fa0 RCX: 00007f68b4b8d169 [ 523.381252][T11787] RDX: 0000000000040000 RSI: 0000200000000240 RDI: 0000000000000006 [ 523.381271][T11787] RBP: 00007f68b4c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 523.381291][T11787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 523.381309][T11787] R13: 0000000000000000 R14: 00007f68b4da5fa0 R15: 00007fff4a19f6c8 [ 523.381350][T11787] [ 523.608097][ C1] vkms_vblank_simulate: vblank timer overrun [ 524.137299][T11795] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1397'. [ 526.297933][T11821] FAULT_INJECTION: forcing a failure. [ 526.297933][T11821] name fail_futex, interval 1, probability 0, space 0, times 1 [ 526.362748][T11821] CPU: 1 UID: 0 PID: 11821 Comm: syz.0.1404 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 526.362792][T11821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 526.362811][T11821] Call Trace: [ 526.362822][T11821] [ 526.362834][T11821] dump_stack_lvl+0x16c/0x1f0 [ 526.362884][T11821] should_fail_ex+0x512/0x640 [ 526.362926][T11821] get_futex_key+0x1c2/0x1000 [ 526.362974][T11821] ? __pfx_get_futex_key+0x10/0x10 [ 526.363032][T11821] futex_wake+0xe7/0x4e0 [ 526.363058][T11821] ? rcu_is_watching+0x12/0xc0 [ 526.363101][T11821] ? __pfx_futex_wake+0x10/0x10 [ 526.363149][T11821] do_futex+0x1e3/0x350 [ 526.363202][T11821] ? __pfx_do_futex+0x10/0x10 [ 526.363244][T11821] ? __might_fault+0xe3/0x190 [ 526.363305][T11821] mm_release+0x24e/0x300 [ 526.363347][T11821] do_exit+0x898/0x2c30 [ 526.363370][T11821] ? __pfx___might_resched+0x10/0x10 [ 526.363424][T11821] ? __pfx_do_exit+0x10/0x10 [ 526.363450][T11821] ? do_raw_spin_lock+0x12c/0x2b0 [ 526.363483][T11821] ? find_held_lock+0x2b/0x80 [ 526.363529][T11821] do_group_exit+0xd3/0x2a0 [ 526.363559][T11821] get_signal+0x2673/0x26d0 [ 526.363605][T11821] ? __pfx_do_recvmmsg+0x10/0x10 [ 526.363655][T11821] ? __pfx_get_signal+0x10/0x10 [ 526.363694][T11821] ? do_futex+0x122/0x350 [ 526.363747][T11821] arch_do_signal_or_restart+0x8f/0x7d0 [ 526.363797][T11821] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 526.363858][T11821] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 526.363900][T11821] ? rcu_is_watching+0x12/0xc0 [ 526.363946][T11821] syscall_exit_to_user_mode+0x150/0x2a0 [ 526.363993][T11821] do_syscall_64+0xda/0x260 [ 526.364040][T11821] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 526.364072][T11821] RIP: 0033:0x7f225398d169 [ 526.364096][T11821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 526.364126][T11821] RSP: 002b:00007f22517f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 526.364154][T11821] RAX: fffffffffffffe00 RBX: 00007f2253ba5fa0 RCX: 00007f225398d169 [ 526.364174][T11821] RDX: 00000000fffffff9 RSI: 0000200000000040 RDI: 0000000000000005 [ 526.364200][T11821] RBP: 00007f2253a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 526.364218][T11821] R10: 0000000000000010 R11: 0000000000000246 R12: 0000000000000000 [ 526.364235][T11821] R13: 0000000000000000 R14: 00007f2253ba5fa0 R15: 00007ffeea5f2b88 [ 526.364273][T11821] [ 526.608678][ C1] vkms_vblank_simulate: vblank timer overrun [ 528.379493][T11854] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26) [ 528.380212][T11854] ima: policy update failed [ 528.419917][ T30] audit: type=1802 audit(6038804663.539:4): pid=11854 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1410" res=0 errno=0 [ 528.441010][T11854] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1410'. [ 528.452734][T11854] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1410'. [ 529.566659][T11871] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1414'. [ 530.637680][T11880] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1416'. [ 531.379562][T11887] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1417'. [ 535.473753][T11960] FAULT_INJECTION: forcing a failure. [ 535.473753][T11960] name fail_futex, interval 1, probability 0, space 0, times 0 [ 535.510052][T11960] CPU: 1 UID: 0 PID: 11960 Comm: syz.1.1435 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 535.510110][T11960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 535.510137][T11960] Call Trace: [ 535.510147][T11960] [ 535.510159][T11960] dump_stack_lvl+0x16c/0x1f0 [ 535.510210][T11960] should_fail_ex+0x512/0x640 [ 535.510254][T11960] get_futex_key+0x49e/0x1000 [ 535.510308][T11960] ? __pfx_get_futex_key+0x10/0x10 [ 535.510368][T11960] futex_wake+0xe7/0x4e0 [ 535.510403][T11960] ? __pfx_futex_wake+0x10/0x10 [ 535.510440][T11960] ? kmem_cache_free+0x2d4/0x4d0 [ 535.510484][T11960] ? fd_install+0x225/0x750 [ 535.510529][T11960] ? putname+0x154/0x1a0 [ 535.510584][T11960] do_futex+0x1e3/0x350 [ 535.510631][T11960] ? __pfx_do_futex+0x10/0x10 [ 535.510678][T11960] ? __pfx_do_sys_openat2+0x10/0x10 [ 535.510723][T11960] __x64_sys_futex+0x1e0/0x4c0 [ 535.510777][T11960] ? __pfx___x64_sys_futex+0x10/0x10 [ 535.510822][T11960] ? __pfx___x64_sys_open+0x10/0x10 [ 535.510874][T11960] do_syscall_64+0xcd/0x260 [ 535.510926][T11960] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 535.510960][T11960] RIP: 0033:0x7f68b4b8d169 [ 535.510986][T11960] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 535.511019][T11960] RSP: 002b:00007f68b5aab0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 535.511050][T11960] RAX: ffffffffffffffda RBX: 00007f68b4da5fa8 RCX: 00007f68b4b8d169 [ 535.511072][T11960] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f68b4da5fac [ 535.511093][T11960] RBP: 00007f68b4da5fa0 R08: 00007f68b5aac000 R09: 0000000000000000 [ 535.511115][T11960] R10: 0000000000000005 R11: 0000000000000246 R12: 00007f68b4da5fac [ 535.511143][T11960] R13: 0000000000000000 R14: 00007fff4a19f5e0 R15: 00007fff4a19f6c8 [ 535.511186][T11960] [ 536.343727][T11970] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1437'. [ 539.562316][T12006] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1447'. [ 541.009453][T12027] random: crng reseeded on system resumption [ 544.129955][ T5851] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 544.976438][T12087] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 545.018421][T12087] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 545.969968][T10000] Bluetooth: hci5: Opcode 0x0c03 failed: -110 [ 549.948511][T12128] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 550.100179][T12128] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 550.148462][T12128] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 550.210414][T12128] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 550.930330][T10000] Bluetooth: hci1: command 0x0c1a tx timeout [ 552.130019][T10000] Bluetooth: hci0: command 0x0c1a tx timeout [ 552.137015][ T5851] Bluetooth: hci2: command 0x0c1a tx timeout [ 552.292062][T10000] Bluetooth: hci3: command 0x0c1a tx timeout [ 553.106536][T12209] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 554.480604][T12233] Invalid ELF header magic: != ELF [ 554.982850][T12233] Invalid ELF header magic: != ELF [ 555.047405][T12233] Invalid ELF header magic: != ELF [ 555.072862][T12233] Invalid ELF header magic: != ELF [ 555.200559][T12233] Invalid ELF header magic: != ELF [ 555.278740][T12233] Invalid ELF header magic: != ELF [ 555.421289][T12233] Invalid ELF header magic: != ELF [ 555.473671][T12233] Invalid ELF header magic: != ELF [ 557.560894][T12289] [ 557.563277][T12289] ====================================================== [ 557.570323][T12289] WARNING: possible circular locking dependency detected [ 557.577366][T12289] 6.14.0-syzkaller-13408-g9f867ba24d36 #0 Not tainted [ 557.584157][T12289] ------------------------------------------------------ [ 557.591198][T12289] syz.2.1499/12289 is trying to acquire lock: [ 557.597291][T12289] ffffffff9012d9a8 (rtnl_mutex){+.+.}-{4:4}, at: do_ipv6_setsockopt+0x2042/0x4420 [ 557.606601][T12289] [ 557.606601][T12289] but task is already holding lock: [ 557.613992][T12289] ffff88807f3e46a0 (&smc->clcsock_release_lock){+.+.}-{4:4}, at: smc_setsockopt+0x100/0xa00 [ 557.624168][T12289] [ 557.624168][T12289] which lock already depends on the new lock. [ 557.624168][T12289] [ 557.634604][T12289] [ 557.634604][T12289] the existing dependency chain (in reverse order) is: [ 557.643648][T12289] [ 557.643648][T12289] -> #2 (&smc->clcsock_release_lock){+.+.}-{4:4}: [ 557.652318][T12289] __mutex_lock+0x199/0xb90 [ 557.657389][T12289] smc_switch_to_fallback+0x2d/0x9f0 [ 557.663219][T12289] smc_sendmsg+0x13d/0x520 [ 557.668171][T12289] ____sys_sendmsg+0xa95/0xc70 [ 557.673470][T12289] ___sys_sendmsg+0x134/0x1d0 [ 557.678686][T12289] __sys_sendmsg+0x16d/0x220 [ 557.683818][T12289] do_syscall_64+0xcd/0x260 [ 557.688868][T12289] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 557.695297][T12289] [ 557.695297][T12289] -> #1 (sk_lock-AF_INET6){+.+.}-{0:0}: [ 557.703057][T12289] lock_sock_nested+0x41/0xf0 [ 557.708279][T12289] sockopt_lock_sock+0x54/0x70 [ 557.713600][T12289] do_ipv6_setsockopt+0x204a/0x4420 [ 557.719344][T12289] ipv6_setsockopt+0xcb/0x170 [ 557.724566][T12289] sctp_setsockopt+0x169/0xb870 [ 557.729955][T12289] do_sock_setsockopt+0x221/0x470 [ 557.735528][T12289] __sys_setsockopt+0x1a0/0x230 [ 557.740921][T12289] __x64_sys_setsockopt+0xbd/0x160 [ 557.746572][T12289] do_syscall_64+0xcd/0x260 [ 557.751620][T12289] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 557.758052][T12289] [ 557.758052][T12289] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 557.765295][T12289] __lock_acquire+0x1173/0x1ba0 [ 557.770686][T12289] lock_acquire+0x179/0x350 [ 557.775720][T12289] __mutex_lock+0x199/0xb90 [ 557.780768][T12289] do_ipv6_setsockopt+0x2042/0x4420 [ 557.786513][T12289] ipv6_setsockopt+0xcb/0x170 [ 557.791740][T12289] tcp_setsockopt+0xa4/0x100 [ 557.796870][T12289] smc_setsockopt+0x1b3/0xa00 [ 557.802088][T12289] do_sock_setsockopt+0x221/0x470 [ 557.807669][T12289] __sys_setsockopt+0x1a0/0x230 [ 557.813062][T12289] __x64_sys_setsockopt+0xbd/0x160 [ 557.818723][T12289] do_syscall_64+0xcd/0x260 [ 557.823778][T12289] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 557.830209][T12289] [ 557.830209][T12289] other info that might help us debug this: [ 557.830209][T12289] [ 557.840442][T12289] Chain exists of: [ 557.840442][T12289] rtnl_mutex --> sk_lock-AF_INET6 --> &smc->clcsock_release_lock [ 557.840442][T12289] [ 557.854116][T12289] Possible unsafe locking scenario: [ 557.854116][T12289] [ 557.861579][T12289] CPU0 CPU1 [ 557.866950][T12289] ---- ---- [ 557.872323][T12289] lock(&smc->clcsock_release_lock); [ 557.877713][T12289] lock(sk_lock-AF_INET6); [ 557.884753][T12289] lock(&smc->clcsock_release_lock); [ 557.892671][T12289] lock(rtnl_mutex); [ 557.896690][T12289] [ 557.896690][T12289] *** DEADLOCK *** [ 557.896690][T12289] [ 557.904838][T12289] 1 lock held by syz.2.1499/12289: [ 557.909958][T12289] #0: ffff88807f3e46a0 (&smc->clcsock_release_lock){+.+.}-{4:4}, at: smc_setsockopt+0x100/0xa00 [ 557.920533][T12289] [ 557.920533][T12289] stack backtrace: [ 557.926427][T12289] CPU: 1 UID: 0 PID: 12289 Comm: syz.2.1499 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) [ 557.926460][T12289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 557.926475][T12289] Call Trace: [ 557.926484][T12289] [ 557.926494][T12289] dump_stack_lvl+0x116/0x1f0 [ 557.926532][T12289] print_circular_bug+0x275/0x350 [ 557.926573][T12289] check_noncircular+0x14c/0x170 [ 557.926616][T12289] __lock_acquire+0x1173/0x1ba0 [ 557.926644][T12289] lock_acquire+0x179/0x350 [ 557.926665][T12289] ? do_ipv6_setsockopt+0x2042/0x4420 [ 557.926703][T12289] ? __pfx___might_resched+0x10/0x10 [ 557.926742][T12289] __mutex_lock+0x199/0xb90 [ 557.926778][T12289] ? do_ipv6_setsockopt+0x2042/0x4420 [ 557.926815][T12289] ? trace_mm_page_alloc+0x11f/0x1a0 [ 557.926844][T12289] ? do_ipv6_setsockopt+0x2042/0x4420 [ 557.926880][T12289] ? __pfx___mutex_lock+0x10/0x10 [ 557.926921][T12289] ? rcu_is_watching+0x12/0xc0 [ 557.926956][T12289] ? do_ipv6_setsockopt+0x2042/0x4420 [ 557.926990][T12289] ? rtnl_lock+0x9/0x20 [ 557.927012][T12289] do_ipv6_setsockopt+0x2042/0x4420 [ 557.927050][T12289] ? __lock_acquire+0x5c1/0x1ba0 [ 557.927071][T12289] ? __pfx_do_ipv6_setsockopt+0x10/0x10 [ 557.927108][T12289] ? __lock_acquire+0xaa4/0x1ba0 [ 557.927137][T12289] ? lock_acquire+0x179/0x350 [ 557.927161][T12289] ? __mutex_trylock_common+0xe9/0x250 [ 557.927185][T12289] ? __pfx___mutex_trylock_common+0x10/0x10 [ 557.927211][T12289] ? __pfx___might_resched+0x10/0x10 [ 557.927246][T12289] ? rcu_is_watching+0x12/0xc0 [ 557.927276][T12289] ? trace_contention_end+0xdd/0x130 [ 557.927300][T12289] ? __mutex_lock+0x1ca/0xb90 [ 557.927336][T12289] ? find_held_lock+0x2b/0x80 [ 557.927366][T12289] ? smc_setsockopt+0x100/0xa00 [ 557.927393][T12289] ? __pfx___mutex_lock+0x10/0x10 [ 557.927432][T12289] ? ipv6_setsockopt+0xcb/0x170 [ 557.927466][T12289] ipv6_setsockopt+0xcb/0x170 [ 557.927502][T12289] tcp_setsockopt+0xa4/0x100 [ 557.927533][T12289] smc_setsockopt+0x1b3/0xa00 [ 557.927557][T12289] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 557.927600][T12289] ? __pfx_smc_setsockopt+0x10/0x10 [ 557.927626][T12289] ? lock_vma_under_rcu+0x47d/0x970 [ 557.927659][T12289] ? __pfx_smc_setsockopt+0x10/0x10 [ 557.927685][T12289] do_sock_setsockopt+0x221/0x470 [ 557.927724][T12289] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 557.927771][T12289] __sys_setsockopt+0x1a0/0x230 [ 557.927804][T12289] __x64_sys_setsockopt+0xbd/0x160 [ 557.927834][T12289] ? do_syscall_64+0x91/0x260 [ 557.927870][T12289] ? lockdep_hardirqs_on+0x7c/0x110 [ 557.927904][T12289] do_syscall_64+0xcd/0x260 [ 557.927940][T12289] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 557.927966][T12289] RIP: 0033:0x7f49deb8d169 [ 557.927987][T12289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 557.928012][T12289] RSP: 002b:00007f49df9d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 557.928036][T12289] RAX: ffffffffffffffda RBX: 00007f49deda6160 RCX: 00007f49deb8d169 [ 557.928052][T12289] RDX: 000000000000001b RSI: 0000000000000029 RDI: 0400000000000003 [ 557.928068][T12289] RBP: 00007f49dec0e2a0 R08: 000000000000056b R09: 0000000000000000 [ 557.928084][T12289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 557.928099][T12289] R13: 0000000000000001 R14: 00007f49deda6160 R15: 00007ffd169c3a68 [ 557.928128][T12289]