last executing test programs: 9.784262625s ago: executing program 0 (id=2148): mmap$auto(0x0, 0x202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, 0x0, 0x400, 0x3f) r0 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/ieee80211/phy0/netdev:wlan0/uapsd_queues\x00', 0x20c02, 0x0) write$auto_event_trigger_fops_trace(0xffffffffffffffff, 0x0, 0x0) prctl$auto(0x6, 0x7fffffffffffafff, 0x0, 0x5, 0x3) shutdown$auto(r0, 0xffff) fanotify_init$auto(0x65, 0x2) socket(0xa, 0x806, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) sysfs$auto(0x1, 0x7, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) syz_clone(0xc5200211, 0x0, 0x9, 0x0, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x1, 0x4, 0x87) bpf$auto(0x0, &(0x7f0000000240)=@token_create={0xf, r1}, 0xa3) msgsnd$auto(0x0, &(0x7f0000000000)={0x1, 0x5}, 0x8, 0x9) io_uring_setup$auto(0x3, 0x0) r2 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000c40)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0) write$auto(r2, 0x0, 0xe) 9.047051416s ago: executing program 0 (id=2154): socket(0x18, 0x5, 0x2) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10000}, 0x6000000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x2c, r2, 0x1, 0x2070bd26, 0x25dfdbf8, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, 'HfR\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}]}, 0x2c}}, 0x80) io_uring_setup$auto(0x6, 0x0) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000080), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_DP_CMD_DEL(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x38}, 0x1, 0x0, 0x0, 0x20040011}, 0x20000000) sendmsg$auto_OVS_DP_CMD_GET(r0, 0x0, 0x4000024) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r4, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) r5 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x20081, 0x0) write$auto(r5, &(0x7f0000000000)='/dev/input/event0\x00', 0x7fe) r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r6, 0x0, 0x0) 8.683633118s ago: executing program 0 (id=2157): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/devices/platform/reg-dummy/regulator/regulator.0/suspend_standby_state\x00', 0x700, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capset$auto(&(0x7f0000000100)={0x20080522}, 0x0) mmap$auto(0x1, 0x2, 0x4a1, 0x11, r0, 0x74a) socket(0x2, 0x1, 0x0) openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x2, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000000c0)=""/4096, 0x1000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = socket(0x10, 0x5, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0xc0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, 0x0, 0x10004010) close_range$auto(r1, r1, 0x20000000) open(0x0, 0x161342, 0x100) mmap$auto(0x3, 0x401, 0xdf, 0x9b72, 0x2, 0x9) socket(0x1d, 0x3, 0x1) socket(0xa, 0x5, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0xc004) socketpair$auto(0x3, 0x5, 0x7, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mknod$auto(0x0, 0x1081, 0x9) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x8000000000000000, 0x15) madvise$auto(0x0, 0x1010001, 0x100000003) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) mmap$auto(0x3, 0x2020009, 0x3, 0xc10, 0xfffffffffffffffa, 0x8000) madvise$auto(0x9, 0x2bf40, 0x7c54) 8.340253336s ago: executing program 0 (id=2160): mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) mprotect$auto(0x7fffffffffffffff, 0xf248, 0x0) landlock_create_ruleset$auto(&(0x7f00000007c0)={0x10100}, 0x8, 0x0) 4.353303878s ago: executing program 1 (id=2187): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7) mount$auto(0x0, 0x0, 0x0, 0x3, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) sendto$auto(r0, &(0x7f0000000000)="3ad9ca6c0192462a33afe9", 0x7230, 0x8, &(0x7f0000000040)=@sco, 0x7fff) splice$auto(0x75, 0x0, 0x1, 0xfffffffffffffffe, 0x0, 0x5) r1 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f00000000c0), r0) sendmsg$auto_OVS_METER_CMD_DEL(r0, &(0x7f0000000540)={&(0x7f0000000080), 0xc, &(0x7f0000000500)={&(0x7f0000000100)={0x3cc, r1, 0x8, 0x70bd28, 0x25dfdbfc, {}, [@OVS_METER_ATTR_MAX_BANDS={0x8, 0x8, 0x4}, @OVS_METER_ATTR_MAX_METERS={0x8, 0x7, 0x7fb2}, @OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_USED={0xc}, @OVS_METER_ATTR_ID={0x8, 0x1, 0xd3}, @OVS_METER_ATTR_ID={0x8, 0x1, 0x5}, @OVS_METER_ATTR_MAX_METERS={0x8, 0x7, 0x3d}, @OVS_METER_ATTR_BANDS={0x36a, 0x4, 0x0, 0x1, [@generic="e4ea9992d55c7ef8e149ecb48887e8a12e1a3cc560d8e89f0a63564e95969c1c78b7f7a0f30fed226fbec5d1d763424c8973707b96c1375cf8ce7c62b1e47b6a307b90d789d37772ea01c40fdfcd", @typed={0x8, 0x4d, 0x0, 0x0, @uid=0xee01}, @nested={0x3c, 0xb2, 0x0, 0x1, [@generic="5eb6f6f8f80cb76570025b01ee3d4e513ee45525", @nested={0x4, 0xb4}, @generic="7e931aae2b173f39b027fdb382def8d0b00e76acb61a02d86ae8fa7f5c741dd5"]}, @generic="5a354f715d63548e302a22121d9e2d031785610d8ccd229ad997b137f14b8991994f78f94617167cf024c9c0d19bb6ad041416452aaad7f374d5a81a46b7a7cbc180e4694b4bbc5c8bc0043c7adbaed3a1159b64b5785477c500513b3ee15d7cc74b8626d6f006dc69a20d070ca6256db05a85f7937f2eb32df3ada43cc09dcd39ac3fe6ee954a0f74f75dcd6a13", @nested={0x197, 0x129, 0x0, 0x1, [@generic="dc9cd3abd4611e2c289615c8ec0a01eb2a9b0f45eb0b51a579a29459af8ee0dce794d0feb5d61bb61da6bf73a2ef9782eebb73c960ca99b89af3a730cf8b1ce3c527cefba4723c6b3c03f695f009b363cdb243797d3e021094080aa03c6590679cf9c54eb8f0e5083b552802054835cb04971543c56415cca8a49a098e6f60c909f58e14afe55737c76f2fe42a917cfbaaba999e90fd211e5622648ddcc921139667459fbb6f32a8ab0ccb6321bc668ebafcc78ac26ab193c629f0", @typed={0xba, 0x135, 0x0, 0x0, @binary="52664479562594c1e3669f845d2d4617d90b9c1507e0008fae330c6c92b3a264fa74f76cd2611f224332c368251497bef41ef7802e76cfacda52a409433c63e4d067f0b6cb82d0c8a38864ebb8966df3f389a68ef711d9be8a73133d3d5f28d0b17d61429fbc05dd757383b149b5ac770fc60bc92f3168c16ee53108fc3dd0462f79d14fa0fe4bedcdc74091ff763549c53fb476e196b4199231c181b7830f2d17585efc35d707e46eeb76c63507f88b926b2681e84e"}, @typed={0x14, 0x46, 0x0, 0x0, @ipv6=@private2}, @typed={0x8, 0x77, 0x0, 0x0, @ipv4=@multicast2}]}, @generic="1710bbc1f2c4a5def156d5720a1293074abf95d93c412d6d582750c4e7e23786", @generic="585cc2df22043fffd23cb474d04679bf6d59959d91d0e7bfdf665204e32c1e5cf0b477f3dd074860a67911ba2117a95594f7ec4d091fcddf593ed88842ccebd35b6cde8f1fe4f10f05f96bcba62e1ff996c8f4c3a3cc1613353e7aaf7d7ffdee4261977a1fe463cdd92a3674f5c1ce7033d02217c071e682e6244eadfa5e7941ddb8cbb39b1c649afd7ff38d73fc"]}, @OVS_METER_ATTR_STATS={0x14, 0x3, {0x100000000, 0x1ff}}]}, 0x3cc}, 0x1, 0x0, 0x0, 0x40004}, 0x4050) 4.329747087s ago: executing program 3 (id=2188): mknod$auto(&(0x7f0000000000)='}[,&*}\x00', 0x1, 0x4) (async) mount$auto(&(0x7f0000000080), &(0x7f00000000c0)='}[,&*}\x00', 0x0, 0x3, 0x0) 4.213594993s ago: executing program 2 (id=2189): mmap$auto(0x0, 0x202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) close_range$auto(r0, r0, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f) r1 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/ieee80211/phy0/netdev:wlan0/uapsd_queues\x00', 0x20c02, 0x0) lseek$auto(0x3, 0x7fffffffffffffff, 0xf5ea) openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/trigger\x00', 0x20280, 0x0) read$auto_event_trigger_fops_trace(r0, &(0x7f0000000080)=""/128, 0x80) write$auto_event_trigger_fops_trace(r0, &(0x7f0000000140)="153c968e6ae5d1a1007809d9ea3f366a62cf75bc776aa186ace78ab22259e05933a2256fb1def74820deba7f0aa28b9182b0606b5b177b27d44b5ceb0b9d1e860c92d85d0bcde2f9a310db5513791b8ee05e835eecc7a1fc71d1e152060f5437b134583bb83fbc16ad6034a6cc7d75c4e406074d85b8e15223bf5ddd7d665263571162a4abf7503e17db1f7ce91e9d836e569ad0553a280552b3956b69", 0x9d) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) prctl$auto(0x6, 0x7fffffffffffaffd, 0x0, 0x5, 0x5) shutdown$auto(r1, 0xffff) fanotify_init$auto(0x65, 0x2) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) r2 = socket(0x22, 0xa, 0x6) getsockname$auto(r2, &(0x7f0000000000), 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) r3 = socket(0x1e, 0x805, 0x0) connect$auto(r3, &(0x7f0000000000), 0x10) socket(0x2b, 0x6, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) sysfs$auto(0x1, 0x7, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) syz_clone(0xc5200211, 0x0, 0x9, 0x0, 0x0, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x1, 0x4, 0x87) bpf$auto(0x0, &(0x7f0000000240)=@token_create={0xf, r4}, 0xa3) 3.921175088s ago: executing program 3 (id=2190): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 64) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) (async, rerun: 64) madvise$auto(0x0, 0xffffffffffff0001, 0x15) getitimer$auto(0x0, 0x0) (async) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0x4601c0, 0x0) (async, rerun: 32) socket(0xa, 0x3, 0x73) (rerun: 32) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32) setsockopt$auto(0x400000000000003, 0x29, 0x7, 0x0, 0x401) (async, rerun: 32) mmap$auto(0x0, 0x2, 0xdb, 0x9b72, 0x6, 0x100000000) (async) ioctl$auto(0x3, 0x40045613, 0x38) 3.832825155s ago: executing program 1 (id=2191): socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mincore$auto(0x1000, 0x8001, 0x0) r0 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r0, 0x107, 0x12, 0x0, 0x4) r1 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r1, 0x107, 0x12, 0x0, 0x8) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r2, 0x5606, 0x100000000000afcb) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r3 = io_uring_setup$auto(0x1, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x7c, 0x0, 0x8) r4 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x0, 0x0) fallocate$auto(r3, 0xaf9e, 0xf9, 0x1) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x87, 0x0) poll$auto(&(0x7f0000001040)={r4, 0x9, 0xf4}, 0x5, 0x7fff) r5 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/ieee80211/phy0/wep_iv\x00', 0xe0000, 0x0) read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(r5, 0x0, 0x0) 3.623782999s ago: executing program 1 (id=2193): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) write$auto(0x4, 0x0, 0x100082) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) mmap$auto(0x1, 0x8165, 0x2, 0x12, 0x0, 0x7f) shutdown$auto(0x200000003, 0x2) socket(0x840000000002, 0x3, 0xff) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/013/001\x00', 0xa901, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input0/capabilities/abs\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000001180)=""/187, 0xbb) ioctl$auto(r0, 0xc0105500, r0) r2 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/ieee80211/phy0/wep_iv\x00', 0xe0000, 0x0) set_mempolicy$auto(0x1, &(0x7f0000000000)=0xc, 0x7) read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(r2, 0x0, 0x0) 3.336844756s ago: executing program 1 (id=2194): r0 = set_tid_address$auto(&(0x7f00000000c0)=0xfe4) r1 = syz_open_procfs$namespace(r0, &(0x7f0000000000)='ns/mnt\x00') mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) semctl$auto(0x7, 0x2, 0x13, 0x1) lsm_list_modules$auto(0x0, 0x0, 0x0) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x6c, 0x697c}, 0xed71390}, 0x9a6, 0xff00) accept4$auto(r1, &(0x7f0000000040)=@llc={0x1a, 0x324, 0x0, 0xe6, 0x20, 0x7f, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, &(0x7f0000000080)=0x4, 0x4) ioctl$auto(r1, 0x9, r1) 3.143550016s ago: executing program 2 (id=2195): openat$auto_sc_seq_fops_netdebug(0xffffffffffffff9c, 0x0, 0x2000, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) open(&(0x7f0000000000)='./file0\x00', 0xa240, 0x36) open(&(0x7f0000000000)='./file1\x00', 0x163b42, 0x102) read$auto(0x3, 0x0, 0xfffffdef) 3.107626374s ago: executing program 1 (id=2196): mmap$auto(0x0, 0x202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, 0x0, 0x400, 0x3f) r0 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/ieee80211/phy0/netdev:wlan0/uapsd_queues\x00', 0x20c02, 0x0) write$auto_event_trigger_fops_trace(0xffffffffffffffff, &(0x7f0000000140)="153c968e6ae5d1a1007809d9ea3f366a62cf75bc776aa186ace78ab22259e05933a2256fb1def74820deba7f0aa28b9182b0606b5b177b27d44b5ceb0b9d1e860c92d85d0bcde2f9a310db5513791b", 0x4f) prctl$auto(0x6, 0x7fffffffffffafff, 0x0, 0x5, 0x3) shutdown$auto(r0, 0xffff) fanotify_init$auto(0x65, 0x2) socket(0xa, 0x806, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) sysfs$auto(0x1, 0x7, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) syz_clone(0xc5200211, 0x0, 0x9, 0x0, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x1, 0x4, 0x87) bpf$auto(0x0, &(0x7f0000000240)=@token_create={0xf, r1}, 0xa3) msgsnd$auto(0x0, &(0x7f0000000000)={0x1, 0x5}, 0x8, 0x9) io_uring_setup$auto(0x3, 0x0) r2 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000c40)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0) write$auto(r2, 0x0, 0xe) 2.91384116s ago: executing program 2 (id=2197): socket(0x18, 0x5, 0x2) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10000}, 0x6000000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x2c, r2, 0x1, 0x2070bd26, 0x25dfdbf8, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, 'HfR\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}]}, 0x2c}}, 0x80) io_uring_setup$auto(0x6, 0x0) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000080), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_DP_CMD_DEL(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x38}, 0x1, 0x0, 0x0, 0x20040011}, 0x20000000) sendmsg$auto_OVS_DP_CMD_GET(r0, 0x0, 0x4000024) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r4, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) r5 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x20081, 0x0) write$auto(r5, &(0x7f0000000000)='/dev/input/event0\x00', 0x7fe) r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r6, 0x0, 0x0) 2.851830534s ago: executing program 3 (id=2198): openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r1) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ptmx\x00', 0x189000, 0x0) r5 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event0\x00', 0x80, 0x0) ioctl$auto_evdev_fops_evdev(r5, 0x80084502, 0x0) ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0) ioctl$auto(0x3, 0x80000541b, 0x38) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="fa4c0000", @ANYRES16=r2, @ANYBLOB="05060000000000ef8d5b27a9143ede03360000080803002a9b28990c26a73d6c1265e6a9df1fa1807b6f72e38ce89c395cb4c3d65161c5b8c3868ac72dad7e26ecffffffffffffff9349408cda5a039838834d7596f066db49ae0c17f37e9c46fcaa5f78fd1ad52026963422cb7b9a7520b52b0b6d19ffd7c0acb04f6436b771f9a49486c9563529f00394472fad53d5d3", @ANYRES32=r3], 0x1c}, 0x1, 0x0, 0x0, 0x4000800}, 0x4000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) madvise$auto(0x0, 0x20200, 0x15) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)={0x38, r7, 0x1b, 0x70bd28, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x8, 0x3, 0x0, 0x1, [@typed={0x4, 0xc}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) r9 = syz_genetlink_get_family_id$auto_nfc(&(0x7f00000003c0), r1) sendmsg$auto_NFC_CMD_GET_TARGET(r8, &(0x7f0000000480)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x1c, r9, 0x800, 0x70bd28, 0x25dfdbfe, {}, [@NFC_ATTR_TARGET_INDEX={0x8, 0x4, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000850}, 0x4c0c1) r10 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_GET_SERVICE(r6, &(0x7f00000015c0)={0x0, 0x0, &(0x7f0000001580)={&(0x7f00000004c0)=ANY=[@ANYBLOB="00000000f41710325ca8ef4d2c82eff3d1d1f106279a593acd964185b53de16cb41d10ed8451fe3d0a245a20ca", @ANYRES16=r10, @ANYBLOB="010327bd7000ffdbdf2504000000"], 0x14}, 0x1, 0x0, 0x0, 0x2004000d}, 0x20000800) sendmsg$auto_IPVS_CMD_SET_SERVICE(r1, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000040}, 0xc, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x4040}, 0x0) ioctl$auto(r0, 0x4, 0xfffffffffffff4e0) madvise$auto(0x10, 0x3, 0x2) r11 = socket(0xa, 0x3, 0x3a) setsockopt$auto(r11, 0x3a, 0x200401, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\xac\xc7\xaa\n\xf9\x19\xc4#<^\x91\x1d\xda\xc4m\xef\xff(i\xc6@\x91_\vBj\x0eQ\xceV\'C\x8c\x01\x80\x92\x0fu\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\x00\x00\x00\x00\xe4\xa5\xfe\x00\x00\x00\x00\x00\x00\x00\x00', 0x1000010c) 2.674031179s ago: executing program 1 (id=2199): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYRESDEC, @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030000020000060006000000000008000200", @ANYRES32, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="0800040014eb829302c9"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0xffffffff) r0 = socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) fdatasync$auto(0xffffffffffffffff) mmap$auto(0x0, 0x2000c, 0x4000000000df, 0xeb1, r0, 0x8000) open_by_handle_at$auto(0x1, &(0x7f0000000040)={0x2, 0x2, 'Ll'}, 0x2) io_submit$auto(0x6703, 0x2, &(0x7f0000000040)=&(0x7f0000000000)={0x1, 0xfffffe00, 0xc756, 0x3ff, 0x9, 0xffffffffffffffff, 0x1, 0x1000000000, 0xbb5, 0x0, 0x4}) mmap$auto(0x0, 0x1, 0x4000000000df, 0x44eb2, 0x3, 0x300000000000) truncate$auto(&(0x7f00000000c0)='./cgroup\x00', 0x100000000000001) r1 = fcntl$auto(0x8000000000000001, 0x26, 0x8) migrate_pages$auto(0x0, 0x5, &(0x7f0000000100)=0x7f, &(0x7f0000000140)=0x3) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) r2 = socket(0x1d, 0x3, 0x1) getsockopt$auto(r2, 0xfffff000, 0x8, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/slab/kmalloc-64/reclaim_account\x00', 0x2600, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) arch_prctl$auto(0x7, 0x517) madvise$auto(0x0, 0xffffffffffff0001, 0x15) ioctl$auto_UBI_IOCATT(0xffffffffffffffff, 0x40186f40, &(0x7f0000000080)={0xd, 0x0, 0xd, 0x4, 0x9}) sendmsg$auto_TIPC_NL_MON_SET(0xffffffffffffffff, 0x0, 0x20000000) acct$auto(0x0) fcntl$auto(0x0, 0x407, 0xffffffff80000000) close_range$auto(0x2, 0x8, 0x0) write$auto_ima_measure_policy_ops_ima_fs(r1, &(0x7f0000000080)="a45428e8a7e2be5c83fc30b36b4d8b615b9792fc3b0a78c99a2e1dd3ba3e74754298ace0f86145515ab03301b2093ab451fcf4870dc36cfc463c18a175f65ccf54fe4e674467328f5932b53ca4fabf0907a4e3", 0x53) 2.39239864s ago: executing program 3 (id=2200): close_range$auto(0x0, 0xfffff004, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) r2 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) keyctl$auto(0x23, 0x5, 0x100000002, 0x1000, 0xfffffffffffffffa) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'vcan0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r4, r3, 0x8, 0x1ff, r2, @relative_id=0x13, 0xe600}, 0xf) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) sysfs$auto(0x2, 0xc, 0x0) r5 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r5, 0xc0606610, &(0x7f0000000100)={0x60, 0x0, 0x100000, 0x7ffffffeefff, 0xfffffffffffffffe, 0x6106, 0x6, 0x50b301a, 0x0, 0x2, 0x0, 0x2}) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000ac0)={'veth1_to_team\x00'}) r7 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000006000), 0xffffffffffffffff) sendmsg$auto_OVS_VPORT_CMD_SET(r6, &(0x7f0000006100)={0x0, 0x0, &(0x7f00000060c0)={&(0x7f0000006040)={0x20, r7, 0x901, 0x70bd2b, 0x25dfdbfc, {}, [@OVS_VPORT_ATTR_OPTIONS={0x4}, @OVS_VPORT_ATTR_PORT_NO={0x8, 0x1, 0x10000}]}, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x80c4) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'pimreg1\x00', 0x0}) sendmsg$auto_OVS_VPORT_CMD_DEL(r3, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000740)={0x1020, r7, 0x200, 0x70bd28, 0x25dfdbfe, {}, [@OVS_VPORT_ATTR_UPCALL_PID={0x1004, 0x5, "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"}, @OVS_VPORT_ATTR_IFINDEX={0x8, 0x8, r8}]}, 0x1020}, 0x1, 0x0, 0x0, 0x4044004}, 0x20008000) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r1, 0x0, 0x3}, 0xc) ioperm$auto(0x7, 0x6, 0x2) mknod$auto(&(0x7f00000003c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5', 0x20e9, 0x103) unlink$auto(&(0x7f0000000640)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00') 2.264304264s ago: executing program 2 (id=2201): r0 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32) r1 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000040), 0xffffffffffffffff) (rerun: 32) r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async) r3 = geteuid() (async, rerun: 64) newfstatat$auto(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x4, 0x1, 0x14df, 0x2, 0xee00, 0xee00, 0x0, 0x8000, 0xe, 0x8, 0xd3, 0x6, 0x3, 0xa, 0x9, 0xffffffffffff8000, 0x4}, 0x4) (rerun: 64) sendmsg$auto_MACSEC_CMD_ADD_RXSA(r0, &(0x7f0000002980)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000002940)={&(0x7f00000001c0)={0x2750, r1, 0x1, 0x70bd28, 0x25dfdbfb, {}, [@MACSEC_ATTR_SA_CONFIG={0xc, 0x3, 0x0, 0x1, [@typed={0x8, 0xbd, 0x0, 0x0, @fd=r2}]}, @MACSEC_ATTR_RXSC_CONFIG={0xd0, 0x2, 0x0, 0x1, [@nested={0xc9, 0x14a, 0x0, 0x1, [@generic="9a187db09ea7239fcb8a3933a451443ddefa30a492cda8a01bae8181c8c95320b10685d09cd153878621be664393878b88c02e438b02a65fec309b2ed04ed41fdb3b26b0f987338bf6a09bad850f126a54cdeca446e961e2df5a5f7f7b1805a0a5eaef3fb376807356ea82d0cd5e882ae94d5c98b011bd89efe188356b5ae4457ce1e0a61014c3600e792bd7017d9605a9d7e8b861fd0811a5271331c252f988354790b36d37fd83a2e5ff2cf2487ed01bbcb4799037d23107179d2ed832728a7a34174abf"]}]}, @MACSEC_ATTR_OFFLOAD={0x22c8, 0x9, 0x0, 0x1, [@typed={0x4, 0xfa}, @typed={0xe0, 0x4d, 0x0, 0x0, @binary="5b8b60768a4c60524d4a95b4060ad46333b5e771cca0fd909f6e47eb191294010d2c8b381e9e5671e887e2e274ded67445268a22bc8faeac1fd81f44c35c2bb42dd391f9d285cda768dc4d1d1f1688b01aa00acaa7686c3b14d3f09e26555d30796bd0be3d70c0e0d35d4771d85e35f0d85dec2d059c033c2a4fc87e8d6a5bdbaf2c299c519ff8f5c1dae9d30809d52a9dedfb5b15f0837de2718a6212d2e5ca8e15d4bc4bbb3d7931d1f9bf18af281c1064fb51d731087e48d2e8aa19007be9a0ba2d0ae3f97c6eee633432d75deb3802331538e654630519340814"}, @generic="b006c89116c83995162bc6754aca863f3824e3463befc9e95b572aa93eb23a8c45f01a5ff94c08823483a2edebca9c938577a75f4d676eaf6e19db6cc05c963d5d49325cfaa5940b85d918d8c38786ac1a979f8e03d08031313c346097b17a481b474e7a1e9092a1b272161761f093c0c7448e2413d297277e20a3a54a4fb773526175c52c6145cee771b348c136f9099c97129b28857aebdaf8107f81d4bb639720d157e1401b257f6d105a13fc", @nested={0x8, 0x148, 0x0, 0x1, [@nested={0x4, 0x9b}]}, @nested={0x13, 0x7e, 0x0, 0x1, [@generic="8d9990", @nested={0x4, 0x116}, @typed={0x8, 0x91, 0x0, 0x0, @ipv4=@multicast1}]}, @typed={0x8, 0xc9, 0x0, 0x0, @uid=r3}, @generic="90a0c58b20339ae336e57122755c451a76bc3cdb39abd8006b102661dc4098a1d213b827b24f58619f77b26c5881824f13e7f0daeb6f6c8293b26af0de1e832a63e7a9123ef264aeda8c2264ce8420c923cf98658232012a5352d947c71b614e66ebe58096f5", @nested={0x20a8, 0xe9, 0x0, 0x1, [@generic="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", @generic="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", @typed={0x9c, 0x2, 0x0, 0x0, @binary="d2ad1998f4508e3340bb811d53eb14ccf606e9193877e426556ff94e2d3ec5b1af2bfa2c339977f4910e046eabc3d255d8c0977a8dcb2bea63345128d526b45a79f9764e2dc8d47d01c0b160c0e9ba8cc7d2662501cc8c7841664579c095b3405d39370796852557ea4329f1ff8688830b0366ebee66e305c757d024af33cf2c95bae250a7d4a969bd413df18367696ef205ccaad88396a2"}, @typed={0x8, 0x31, 0x0, 0x0, @u32=0x80000001}]}]}, @MACSEC_ATTR_SA_CONFIG={0x1c, 0x3, 0x0, 0x1, [@typed={0x4, 0x122}, @typed={0x14, 0x76, 0x0, 0x0, @ipv6=@loopback}]}, @MACSEC_ATTR_OFFLOAD={0x2a8, 0x9, 0x0, 0x1, [@typed={0x4}, @generic="1b482001a14d425fffbdfbb674a54f78b45e6b55edd36294c69dbd4580074e811bc111fc454ca2a395437a4248b999598165fe8965a15ec55a4e459dfde6ad0688cece1bcf1391b816f629ca5bbef85e35b76d7242d12465032e5da5e305d9eff385e8cf720b8e84b99186ffdcd501bd822c2859489637f0389cf1355babe8aaf46f5d2282c87b26e757d7165444a0be5a9c87f8c81741bcec0449696ec839f5657a9777e09620a4caf95fd1b6ec07e24af26913fa7d8854418b55d6c08a9fea2731e98cc36544acf2c1f795dd38", @generic="ce0a56885617025c5658e2dda6032de4aec7d38acbebaf77e101b1e7bd69225ef0ba8a0ea427da173fbae304c1dfdabc296483e5a742b1a1be23299473af1ca64033d6610aabfd42009824af4be9d6558b036087d3082bff02035d9de56f8a803f032cf5dc36db265c0273be761905020e980f0624ef3324e77691f58922439517796541df2d515466d94fb11b0551f600abc805dd811cc682fee596166ff1", @generic="85ee6497275767ab1ef42c6334fd3dad46ad33ab03e73f860b6dd28f0fff6468ab50c18e2cd61351034aeebc944f68a0f6a48bea9794ad9cc3f739", @nested={0xdc, 0x0, 0x0, 0x1, [@typed={0xce, 0xdd, 0x0, 0x0, @binary="d3e337141c14f27bd88d16182c8e76624d581984092bf8fe2b625dbfece2f7fc550edf9a0d5fbc44d1438909f43c7feb83be9b184532c35258bb66d3df9f2eac0d750d96cc1d0b64bc87588131be0fb890210101612e48298acf5a1943de2fe11876f63f39c6a2f390ccfc2238e561d6b7f5c9d9bae0b7fddfa119a13f12c0c8f579195ad07db5b946a74f913edaa875223dcb770856dbdb4d50573d8cb5181ab3833e2d0e4f1c4ef50193baaf6155999b687247ba83c77eece5978bb2cada80d291072c6bd1aaf4d88e"}, @nested={0x4, 0xdf}, @nested={0x4, 0x63}]}, @nested={0x1c, 0xab, 0x0, 0x1, [@typed={0x8, 0xd9, 0x0, 0x0, @str='!/{\x00'}, @typed={0x8, 0x39, 0x0, 0x0, @uid=r4}, @typed={0x8, 0xed, 0x0, 0x0, @u32=0xfc}]}]}, @MACSEC_ATTR_SA_CONFIG={0xd3, 0x3, 0x0, 0x1, [@generic="1d54319a8b61ba7b26810bbba25d8e1c65ee6c362c806f4efd6cfe7ebf8c79255e80812da773cc99ded7e846b2c1dd6da493714abde165635c7017cab6f7cf5d086d2d896e44686af29388f3330bce38d73f1cedc9bed30d145f6f305734c017ed33cd0bfd4f8fc8c89443f2", @generic, @typed={0x8, 0x131, 0x0, 0x0, @str='%,/\x00'}, @generic="39815f53121e0c0ebbaf3719b721b6d0376ef03501babaf455142ce48c3bff617021fc6a7f4bff2e5f793a1ac064012d9388514c01", @generic="802b825302f800e582bd6914860d61aae664159ecc5a04749e0e2a7e982c", @typed={0x8, 0x50, 0x0, 0x0, @ipv4=@multicast2}]}]}, 0x2750}, 0x1, 0x0, 0x0, 0x800}, 0x800) (async) mknodat$auto(r0, &(0x7f00000029c0)='./file0\x00', 0x5, 0x1) (async) syz_clone3(&(0x7f0000003c00)={0x1100000, &(0x7f0000002a40), &(0x7f0000002a80), &(0x7f0000002ac0)=0x0, {}, &(0x7f0000002b00)=""/159, 0x9f, &(0x7f0000002bc0)=""/4096, &(0x7f0000003bc0)=[0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff], 0x9}, 0x58) sendmsg$auto_MACSEC_CMD_UPD_RXSA(r0, &(0x7f0000003f00)={&(0x7f0000002a00)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000003ec0)={&(0x7f0000003c80)={0x20c, r1, 0x8, 0x70bd2c, 0x25dfdbfb, {}, [@MACSEC_ATTR_OFFLOAD={0x1f8, 0x9, 0x0, 0x1, [@nested={0xaf, 0xc0, 0x0, 0x1, [@typed={0x14, 0xf8, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}, @typed={0x8, 0xa9, 0x0, 0x0, @pid=r6}, @generic="18ddf3cf2b24efced7033443988e22557591e1d15cf4ae63c58e920ffc27bf23a960ab3834b862089abca8770c31b69f602291e268dd7b7de484fd122279d1b06ce00da4ce8f77f84d4bf8d3e2edcae9ce3f0fc9d6434273de7ab4545bce159e79c27d1229a95fa3b6fc10a2feff1266d9d4686e334bf05034979177d20f87942c1c7879390ae5a07608cbf590a9c5"]}, @nested={0x24, 0xa6, 0x0, 0x1, [@typed={0x8, 0x119, 0x0, 0x0, @fd=r0}, @nested={0x4, 0xd3}, @nested={0x4, 0xe1}, @nested={0x4, 0xdf}, @typed={0x8, 0xf6, 0x0, 0x0, @ipv4=@multicast1}, @nested={0x4, 0x10e}]}, @generic="39af40e115", @typed={0x5, 0x129, 0x0, 0x0, @str='\x00'}, @generic="5eb829b4501b5270aeba9f4a327ce1d63ae3e8a847bf386ec4f7e23474829f9d81940e66847c5fc97eec5dc0de6355014c619dee44991e1898089c35ea5f51f05ba2f73ce1e5b2919b73c6d21737fe8dcf50e27af14e317a904c0250f730eaf62eebe10ecde3ee5263854cadcab01c5531e4004f2b75adce7ede4b9d2cef9eee2086226b1458357f9522f9c43f6ad962edb819d0fb98256f0d504f6f9f64bdbdf6a4b92a3b7659448f09cfaed8e3fa4a0b03c9fd789c204141804d56b2b3e47e201784948c7c2477147181dff836432af6dc18dca6231eee6e18a893b7390796815905848dcf11abea5bab7022af61a5a7c9ce", @nested={0x20, 0xbe, 0x0, 0x1, [@typed={0xc, 0x62, 0x0, 0x0, @u64=0x4}, @typed={0x5, 0xd, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x143, 0x0, 0x0, @pid}]}]}]}, 0x20c}, 0x1, 0x0, 0x0, 0x881}, 0x0) r7 = epoll_create1$auto(0x6) r8 = openat$dir(0xffffffffffffff9c, &(0x7f0000003f80)='./file0\x00', 0x200, 0x144) renameat2$auto(r7, &(0x7f0000003f40)='./file0\x00', r8, &(0x7f0000003fc0)='./file0\x00', 0x3a0663dc) ioctl$auto_USB_RAW_IOCTL_EP_READ(r7, 0xc0085508, &(0x7f0000004000)={0x5, 0x5, 0x0, "af2e9401381798a4efcab513a4a7487056f523f36aa780f9883f1e4053e6262b1a2118ca1168b92b1ef3f7869c05adfc71b07d34db7d8ee57119ae973473929d55e106608d53a8361f944f20aa8571041c1fe61a9a02c1bd149243ca400a0f67b86e4341af86460d7a45baa0d55137970374e5294a36a00dc2c26cf0c4bce2de8cb3272d84cda611cace4d0ce624172fb0bf952a2d6f19396be94b13081c5533b9152c82fcc1deb223986d72f77386"}) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) r9 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f00000040c0), 0x18000, 0x0) r10 = socket(0x3, 0x5, 0xc) rename$auto(&(0x7f0000004100)='./file0\x00', &(0x7f0000004140)='./file0\x00') (async) openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, &(0x7f0000004180)='/sys/kernel/debug/ubifs/chk_orphans\x00', 0x509181, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f00000041c0)='./file0\x00', 0x8000, 0x41) (async) r11 = openat$auto_nsim_dev_take_snapshot_fops_dev(0xffffffffffffff9c, &(0x7f0000004200)='/sys/kernel/debug/netdevsim/netdevsim5/take_snapshot\x00', 0x10001, 0x0) getdents$auto(r11, &(0x7f0000004240)={0x200, 0x2, 0x7, "4517d5d39d354eac79260ae127ffe6a413f75b13d8aa1ab88e1e90632459ef585e54fe672ae9e3987b5edd55d3c31797bdc24b378e5ac64313c232f1592b21b54a6edb2d6bc24226dcc42cb130859857741be523348132085b762276b8a9b857"}, 0x3) (async) fstat$auto(r9, &(0x7f0000004300)={0x7, 0x6, 0x400, 0x1, r4, r5, 0x0, 0xa7f5, 0x4, 0x8000000000000000, 0x8, 0x5, 0x2, 0x4, 0x7cd1, 0x4, 0x3}) lstat$auto(&(0x7f00000042c0)='./file0\x00', &(0x7f00000043c0)={0x6, 0x2, 0xc, 0x4, r4, r12, 0x0, 0x80000000, 0x0, 0x65c1, 0x55, 0x9, 0x5, 0x1b3, 0x0, 0xffff, 0x5}) (async) sendmsg$auto_NFC_CMD_ACTIVATE_TARGET(r10, &(0x7f0000004540)={&(0x7f0000004480)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000004500)={&(0x7f00000044c0)={0x2c, 0x0, 0x600, 0x70bd2b, 0x25dfdbfe, {}, [@NFC_ATTR_LLC_PARAM_LTO={0x5, 0xf, 0x2}, @NFC_ATTR_LLC_PARAM_RW={0x5, 0x10, 0x3}, @NFC_ATTR_DEVICE_POWERED={0x5, 0xc, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0xc0}, 0x2004c004) (async) r13 = openat$auto_lockdown_ops_lockdown(0xffffffffffffff9c, &(0x7f0000004580), 0xa082, 0x0) read$auto_lockdown_ops_lockdown(r13, &(0x7f00000045c0)=""/123, 0x7b) (async) r14 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000004640)='/proc/self/oom_adj\x00', 0x30200, 0x0) io_submit$auto(0x828, 0x7fffffffffffffff, &(0x7f00000046c0)=&(0x7f0000004680)={0x7ff, 0x8, 0x40, 0xa, 0x0, r14, 0x8, 0x1, 0x80000001, 0x0, 0x5, r7}) ioctl$auto_SNDCTL_DSP_SETSYNCRO(r15, 0x5015, 0x0) (async) sendmsg$auto_ETHTOOL_MSG_MODULE_GET(r7, &(0x7f0000004a80)={&(0x7f0000004700)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000004a40)={&(0x7f00000048c0)={0x144, 0x0, 0x200, 0x70bd2b, 0x25dfdbfe, {}, [@ETHTOOL_A_MODULE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_MODULE_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}]}, @ETHTOOL_A_MODULE_HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}]}, @ETHTOOL_A_MODULE_HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}]}, @ETHTOOL_A_MODULE_HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x144}, 0x1, 0x0, 0x0, 0x884}, 0x28000000) 2.091965206s ago: executing program 0 (id=2162): mmap$auto(0x0, 0x2020009, 0x3, 0xffffffffffffff5d, 0xfffffffffffffffa, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r1 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs1\x00', 0x2, 0x0) r2 = getuid() msgctl$auto(0x1, 0x5, &(0x7f0000000300)={{0x2, 0xffffffffffffffff, 0xee00, 0x6, 0x401, 0x0, 0xa}, 0x0, &(0x7f0000000040)=0x7, 0x8, 0x3, 0x80000000, 0x7fff, 0x101, 0x4, 0x7ff, 0xfeff}) setresuid$auto(r2, 0x0, r3) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/snd/controlC1\x00', 0x200000, 0x0) fchown$auto(r1, r2, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/nr0/gro_flush_timeout\x00', 0x163802, 0x0) mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) setresuid$auto(0x2, 0x7, 0x8080) write$auto(0x3, 0x0, 0xfffffdef) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'tunl0\x00', 0x0}) statx$auto(r0, &(0x7f0000000100)='./cgroup\x00', 0x4, 0x8, &(0x7f0000000140)={0x0, 0x2875675, 0x0, 0x1000, r2, r4, 0x268c, 0x2, 0x9, 0x7, 0x9, 0x7, {0x9, 0x7}, {0x2, 0x401}, {0x9, 0x6}, {0x4, 0x9}, 0x700, 0x3, 0x1, 0xb, 0x8, 0x2, 0x9, 0x81, 0x6, 0xc, 0x3, 0x7, [0xf, 0x80000000, 0xffffffffffffffff, 0x9, 0x145, 0xff, 0x7f, 0xc3da, 0x7]}) sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(r0, &(0x7f00000012c0)={&(0x7f0000000080), 0xc, &(0x7f0000001280)={&(0x7f0000005600)={0x1174, 0x0, 0x108, 0x70bd29, 0x25dfdbfe, {}, [@NCSI_ATTR_PACKAGE_LIST={0x1010, 0x2, 0x0, 0x1, [@nested={0x4, 0x1}, @typed={0x5, 0x12c, 0x0, 0x0, @binary="16"}, @generic="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"]}, @NCSI_ATTR_IFINDEX={0x8, 0x1, r5}, @NCSI_ATTR_PACKAGE_MASK={0x8, 0x7, 0x5}, @NCSI_ATTR_PACKAGE_LIST={0x13c, 0x2, 0x0, 0x1, [@nested={0x11c, 0x64, 0x0, 0x1, [@typed={0x4, 0x73}, @nested={0x4, 0xc7}, @generic="18ad779f5c20df4c945c2cb2fb666143", @nested={0x4, 0xfd}, @generic="91ce65689c6ec5c3245d7b52f6f5d7b3d5c47b5f2b6bdb7300427b9b237e85fd06db0b70bf389a2b1f70fb3911561bfc4cf97660f069feedc70e996c0f024638e3a72d0c4dc3ac0630c60d92a7d4893455cc477bef53c3e9f4f8975022443b421cc304be515e9d936c129c9558bfe0c5c5598cae1563e260538120b9b5e3048bb9c281594f4145e615958cd84960aef32b900234076dbf6ecc7de76ca196417fd3085e6611ecdfb6c5a731b633dbdd9e5aeb1786abac4ad348dadd7d7433b26e9e5b8a9dc4ee73603a0e0138ee0fcf7bde25ad757f1be40feeea36d000d95e3b5615f221d2e1b13d", @typed={0x14, 0xd9, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}]}, @typed={0xe, 0xf8, 0x0, 0x0, @str='/dev/vcs1\x00'}, @typed={0xc, 0xb3, 0x0, 0x0, @u64=0x7}]}, @NCSI_ATTR_MULTI_FLAG={0x4}]}, 0x1174}, 0x1, 0x0, 0x0, 0x48880}, 0x44814) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_LOCK(r0, 0x40405514, &(0x7f0000000280)={@raw=0x9068, 0x1, 0x3, 0x5, "f6423945dc1590f28a3dc4bb911ad3d84f447c6120770495616bc8d4b0d8cddd5552d7fba5a9f1faf0ceef0b", @raw=0x40}) r6 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x10a) open_by_handle_at$auto(r6, &(0x7f0000000040)={0x8, 0x2, "0600000000000000"}, 0x2) 1.93606135s ago: executing program 3 (id=2203): mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) mlockall$auto(0x7) (async, rerun: 32) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) (async) r0 = socket(0xa, 0x5, 0x0) (async) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) read$auto(r1, 0x0, 0x400000) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x4e20, @rand_addr=0x64010102}, 0x55) getsockopt$auto(r0, 0x84, 0x1d, 0x0, 0x0) setreuid$auto(0x3, 0x7) (async, rerun: 32) r2 = socket(0x2, 0x1, 0x0) (rerun: 32) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x2, 0xb}, 0x800009}, 0x5, 0x20000000) (async) sendmsg$auto_NLBL_MGMT_C_LISTDEF(r2, 0x0, 0x20048800) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r3) (async, rerun: 32) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) (rerun: 32) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000980)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="2f212cbd7000fc39ad872c00000008000300", @ANYRES32=r5], 0x40}}, 0x4000000) sendmsg$auto_NL80211_CMD_ABORT_SCAN(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xfffffffffffffec1, &(0x7f0000000080)={&(0x7f0000000040)={0x2c, r4, 0x400, 0x70bd2a, 0x25dfdfff, {}, [@NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x0, 0x66, 0x4e24}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x3ff}, @NL80211_ATTR_INACTIVITY_TIMEOUT={0x6, 0x96, 0x9}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000801}, 0x4) (async) io_setup$auto(0x1, 0x0) 1.856052346s ago: executing program 2 (id=2204): openat$auto_sc_seq_fops_netdebug(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) open(0x0, 0xa240, 0x36) open(&(0x7f0000000000)='./file1\x00', 0x163b42, 0x102) read$auto(0x3, 0x0, 0xfffffdef) 1.644478877s ago: executing program 2 (id=2205): sendfile$auto(0x6, 0x3, 0x0, 0x8000) mlockall$auto(0x7) mmap$auto(0x0, 0x5, 0x1, 0x40eb2, 0x3ff, 0x300000000000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/net/stat/synproxy\x00', 0x80000, 0x0) pread64$auto(r0, 0x0, 0x5, 0xe8f) read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000040)=""/192, 0xc0) writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x80011, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0) socket(0x10, 0x3, 0x6) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x1000) madvise$auto(0x0, 0xffffffffffff0005, 0x6) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x3, 0xa) lsm_list_modules$auto(0x0, &(0x7f0000000100)=0xbefc, 0x0) ioctl$auto(0x1, 0x89a1, 0xffffffffffffffff) 719.976727ms ago: executing program 0 (id=2206): mmap$auto(0x0, 0x202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, 0x0, 0x400, 0x3f) r0 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/ieee80211/phy0/netdev:wlan0/uapsd_queues\x00', 0x20c02, 0x0) write$auto_event_trigger_fops_trace(0xffffffffffffffff, &(0x7f0000000140)="153c968e6ae5d1a1007809d9ea3f366a62cf75bc776aa186ace78ab22259e05933a2256fb1def74820deba7f0aa28b9182b0606b5b177b27d44b5ceb0b9d1e860c92d85d0bcde2f9a310db5513791b", 0x4f) prctl$auto(0x6, 0x7fffffffffffafff, 0x0, 0x5, 0x3) shutdown$auto(r0, 0xffff) fanotify_init$auto(0x65, 0x2) socket(0xa, 0x806, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) sysfs$auto(0x1, 0x7, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) syz_clone(0xc5200211, 0x0, 0x9, 0x0, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x1, 0x4, 0x87) bpf$auto(0x0, &(0x7f0000000240)=@token_create={0xf, r1}, 0xa3) msgsnd$auto(0x0, &(0x7f0000000000)={0x1, 0x5}, 0x8, 0x9) io_uring_setup$auto(0x3, 0x0) r2 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000c40)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0) write$auto(r2, 0x0, 0xe) 0s ago: executing program 3 (id=2207): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio1\x00', 0x20b42, 0x0) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000) write$auto(0x3, 0x0, 0x100082) write$auto_snd_pcm_oss_f_reg_pcm_oss(r0, &(0x7f0000000280)="c2", 0x1) kernel console output (not intermixed with test programs): 414/0x580 [ 191.564338][ T7945] ? rw_verify_area+0xd0/0x700 [ 191.569149][ T7945] vfs_read+0x87f/0xbe0 [ 191.573351][ T7945] ? __pfx_vfs_read+0x10/0x10 [ 191.578104][ T7945] ksys_read+0x12b/0x250 [ 191.582399][ T7945] ? __pfx_ksys_read+0x10/0x10 [ 191.587218][ T7945] do_syscall_64+0xcd/0x250 [ 191.591769][ T7945] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 191.597701][ T7945] RIP: 0033:0x7fb984d85d29 [ 191.602145][ T7945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 191.621790][ T7945] RSP: 002b:00007fb982bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 191.630251][ T7945] RAX: ffffffffffffffda RBX: 00007fb984f75fa0 RCX: 00007fb984d85d29 [ 191.638257][ T7945] RDX: 0000000000001000 RSI: 0000000020000ec0 RDI: 0000000000000003 [ 191.646269][ T7945] RBP: 00007fb982bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 191.654289][ T7945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 191.662299][ T7945] R13: 0000000000000000 R14: 00007fb984f75fa0 R15: 00007ffd950b5068 [ 191.670327][ T7945] [ 191.691582][ T7947] netlink: 28 bytes leftover after parsing attributes in process `syz.0.570'. [ 191.999763][ T7953] HfR: entered promiscuous mode [ 192.021560][ T7953] netlink: 16 bytes leftover after parsing attributes in process `syz.2.573'. [ 192.387018][ T7958] capability: warning: `syz.0.575' uses 32-bit capabilities (legacy support in use) [ 192.514817][ T7971] netlink: 28 bytes leftover after parsing attributes in process `syz.3.580'. [ 192.653298][ T29] audit: type=1800 audit(4294967314.310:3): pid=7972 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.579" name="members" dev="configfs" ino=16400 res=0 errno=0 [ 192.879335][ T7983] openvswitch: HfR: Dropping previously announced user features [ 192.914421][ T7983] netlink: 16 bytes leftover after parsing attributes in process `syz.2.585'. [ 193.424852][ T7997] netlink: 24 bytes leftover after parsing attributes in process `syz.2.589'. [ 194.783779][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.790166][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.477905][ T8045] netlink: 28 bytes leftover after parsing attributes in process `syz.2.605'. [ 196.493287][ T8078] netlink: 8 bytes leftover after parsing attributes in process `syz.1.616'. [ 196.530063][ T8079] netlink: 326 bytes leftover after parsing attributes in process `syz.1.616'. [ 196.719900][ T8084] zram: Added device: zram9 [ 196.993375][ T8092] Invalid ELF header magic: != ELF [ 199.256263][ T8145] netlink: 28 bytes leftover after parsing attributes in process `syz.2.632'. unting resumed [ 200.377230][ T8172] HfR: entered promiscuous mode [ 200.420789][ T8175] netlink: 12 bytes leftover after parsing attributes in process `syz.1.638'. [ 200.450782][ T8175] HfR: left promiscuous mode [ 200.502168][ T8172] netlink: 16 bytes leftover after parsing attributes in process `syz.1.638'. [ 202.203935][ T8215] HfR: entered promiscuous mode [ 202.271425][ T8215] netlink: 12 bytes leftover after parsing attributes in process `syz.3.650'. [ 202.310521][ T8215] HfR: left promiscuous mode [ 202.341883][ T8219] netlink: 16 bytes leftover after parsing attributes in process `syz.3.650'. [ 203.855364][ T8247] netlink: 32 bytes leftover after parsing attributes in process `syz.0.658'. [ 203.913887][ T8247] netlink: 16 bytes leftover after parsing attributes in process `syz.0.658'. [ 205.346979][ T8274] netlink: 32 bytes leftover after parsing attributes in process `syz.3.666'. [ 205.387286][ T8274] netlink: 16 bytes leftover after parsing attributes in process `syz.3.666'. [ 208.461271][ T8320] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 208.487316][ T8320] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 208.521271][ T8320] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 208.550486][ T8320] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 209.123549][ T8350] netlink: 32 bytes leftover after parsing attributes in process `syz.0.685'. [ 209.194174][ T8350] netlink: 16 bytes leftover after parsing attributes in process `syz.0.685'. [ 209.760330][ T5837] Bluetooth: hci0: command 0x0c1a tx timeout [ 210.438333][ T8369] FAULT_INJECTION: forcing a failure. [ 210.438333][ T8369] name failslab, interval 1, probability 0, space 0, times 0 [ 210.522491][ T5837] Bluetooth: hci1: command 0x0c1a tx timeout [ 210.561008][ T8369] CPU: 1 UID: 0 PID: 8369 Comm: syz.2.691 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 210.571688][ T8369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 210.581780][ T8369] Call Trace: [ 210.585081][ T8369] [ 210.588031][ T8369] dump_stack_lvl+0x16c/0x1f0 [ 210.592753][ T8369] should_fail_ex+0x497/0x5b0 [ 210.597476][ T8369] ? fs_reclaim_acquire+0xae/0x150 [ 210.602635][ T8369] should_failslab+0xc2/0x120 [ 210.607365][ T8369] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 210.612788][ T8369] ? __kernfs_new_node+0xd3/0x890 [ 210.617854][ T8369] __kernfs_new_node+0xd3/0x890 [ 210.622721][ T8369] ? __pfx___kernfs_new_node+0x10/0x10 [ 210.628192][ T8369] ? __pfx_lock_release+0x10/0x10 [ 210.633228][ T8369] ? kernfs_add_one+0x39d/0x520 [ 210.638619][ T8369] ? up_write+0x1b2/0x520 [ 210.642966][ T8369] kernfs_new_node+0x186/0x240 [ 210.647747][ T8369] __kernfs_create_file+0x53/0x350 [ 210.652882][ T8369] sysfs_add_file_mode_ns+0x1ff/0x3b0 [ 210.658279][ T8369] internal_create_group+0x56c/0xf10 [ 210.663582][ T8369] ? __pfx_internal_create_group+0x10/0x10 [ 210.669400][ T8369] ? kernfs_create_link+0x1bd/0x240 [ 210.674615][ T8369] internal_create_groups+0x9d/0x150 [ 210.679913][ T8369] device_add+0x733/0x1a70 [ 210.684349][ T8369] ? __pfx_device_add+0x10/0x10 [ 210.689221][ T8369] add_disk_fwnode+0x47e/0x1300 [ 210.694108][ T8369] zram_add+0x486/0x6b0 [ 210.698284][ T8369] ? __pfx_zram_add+0x10/0x10 [ 210.702993][ T8369] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 210.708636][ T8369] ? rcu_is_watching+0x12/0xc0 [ 210.713415][ T8369] ? __pfx_hot_add_show+0x10/0x10 [ 210.718459][ T8369] hot_add_show+0x21/0x80 [ 210.722807][ T8369] class_attr_show+0x6f/0xa0 [ 210.727417][ T8369] ? __pfx_class_attr_show+0x10/0x10 [ 210.732715][ T8369] sysfs_kf_seq_show+0x223/0x3e0 [ 210.737670][ T8369] seq_read_iter+0x4f4/0x12b0 [ 210.742368][ T8369] kernfs_fop_read_iter+0x414/0x580 [ 210.747584][ T8369] ? rw_verify_area+0xd0/0x700 [ 210.752358][ T8369] vfs_read+0x87f/0xbe0 [ 210.756526][ T8369] ? __pfx_vfs_read+0x10/0x10 [ 210.761236][ T8369] ksys_read+0x12b/0x250 [ 210.765488][ T8369] ? __pfx_ksys_read+0x10/0x10 [ 210.770279][ T8369] do_syscall_64+0xcd/0x250 [ 210.774801][ T8369] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 210.780712][ T8369] RIP: 0033:0x7fde5f985d29 [ 210.785136][ T8369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 210.804757][ T8369] RSP: 002b:00007fde60890038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 210.813184][ T8369] RAX: ffffffffffffffda RBX: 00007fde5fb75fa0 RCX: 00007fde5f985d29 [ 210.821163][ T8369] RDX: 0000000000001000 RSI: 0000000020000ec0 RDI: 0000000000000003 [ 210.829139][ T8369] RBP: 00007fde60890090 R08: 0000000000000000 R09: 0000000000000000 [ 210.837118][ T8369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 210.845111][ T8369] R13: 0000000000000000 R14: 00007fde5fb75fa0 R15: 00007ffcb8f35928 [ 210.853119][ T8369] [ 210.903970][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout [ 210.910351][ T5837] Bluetooth: hci2: command 0x0c1a tx timeout [ 211.785258][ T8389] netlink: zone id is out of range [ 214.483521][ T8420] FAULT_INJECTION: forcing a failure. [ 214.483521][ T8420] name failslab, interval 1, probability 0, space 0, times 0 [ 214.517041][ T8420] CPU: 1 UID: 0 PID: 8420 Comm: syz.0.704 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 214.527713][ T8420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 214.537804][ T8420] Call Trace: [ 214.541105][ T8420] [ 214.544061][ T8420] dump_stack_lvl+0x16c/0x1f0 [ 214.548782][ T8420] should_fail_ex+0x497/0x5b0 [ 214.553497][ T8420] ? fs_reclaim_acquire+0xae/0x150 [ 214.558645][ T8420] should_failslab+0xc2/0x120 [ 214.563364][ T8420] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 214.568785][ T8420] ? __kernfs_new_node+0xd3/0x890 [ 214.573861][ T8420] __kernfs_new_node+0xd3/0x890 [ 214.578749][ T8420] ? __pfx___kernfs_new_node+0x10/0x10 [ 214.584241][ T8420] ? __pfx_lock_release+0x10/0x10 [ 214.589298][ T8420] ? kernfs_add_one+0x39d/0x520 [ 214.594200][ T8420] ? up_write+0x1b2/0x520 [ 214.598572][ T8420] kernfs_new_node+0x186/0x240 [ 214.603403][ T8420] __kernfs_create_file+0x53/0x350 [ 214.608566][ T8420] sysfs_add_file_mode_ns+0x1ff/0x3b0 [ 214.613992][ T8420] internal_create_group+0x56c/0xf10 [ 214.619331][ T8420] ? __pfx_internal_create_group+0x10/0x10 [ 214.625189][ T8420] ? kernfs_create_link+0x1bd/0x240 [ 214.630437][ T8420] internal_create_groups+0x9d/0x150 [ 214.635787][ T8420] device_add+0x733/0x1a70 [ 214.640236][ T8420] ? __pfx_device_add+0x10/0x10 [ 214.645126][ T8420] add_disk_fwnode+0x47e/0x1300 [ 214.650039][ T8420] zram_add+0x486/0x6b0 [ 214.654237][ T8420] ? __pfx_zram_add+0x10/0x10 [ 214.659418][ T8420] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 214.665085][ T8420] ? rcu_is_watching+0x12/0xc0 [ 214.669894][ T8420] ? __pfx_hot_add_show+0x10/0x10 [ 214.674961][ T8420] hot_add_show+0x21/0x80 [ 214.679330][ T8420] class_attr_show+0x6f/0xa0 [ 214.684066][ T8420] ? __pfx_class_attr_show+0x10/0x10 [ 214.689401][ T8420] sysfs_kf_seq_show+0x223/0x3e0 [ 214.694395][ T8420] seq_read_iter+0x4f4/0x12b0 [ 214.699121][ T8420] kernfs_fop_read_iter+0x414/0x580 [ 214.704365][ T8420] ? rw_verify_area+0xd0/0x700 [ 214.709168][ T8420] vfs_read+0x87f/0xbe0 [ 214.713368][ T8420] ? __pfx_vfs_read+0x10/0x10 [ 214.718102][ T8420] ksys_read+0x12b/0x250 [ 214.722377][ T8420] ? __pfx_ksys_read+0x10/0x10 [ 214.727183][ T8420] do_syscall_64+0xcd/0x250 [ 214.731728][ T8420] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 214.737655][ T8420] RIP: 0033:0x7fbbd1985d29 [ 214.742099][ T8420] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 214.761744][ T8420] RSP: 002b:00007fbbd2730038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 214.770201][ T8420] RAX: ffffffffffffffda RBX: 00007fbbd1b75fa0 RCX: 00007fbbd1985d29 [ 214.778220][ T8420] RDX: 0000000000001000 RSI: 0000000020000ec0 RDI: 0000000000000003 [ 214.786230][ T8420] RBP: 00007fbbd2730090 R08: 0000000000000000 R09: 0000000000000000 [ 214.794236][ T8420] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 214.802244][ T8420] R13: 0000000000000000 R14: 00007fbbd1b75fa0 R15: 00007fff6a4a8378 [ 214.810268][ T8420] [ 215.476038][ T8428] netlink: 'syz.3.709': attribute type 1 has an invalid length. [ 215.492023][ T8431] netlink: 8 bytes leftover after parsing attributes in process `syz.1.705'. [ 215.754168][ T8422] netlink: 122 bytes leftover after parsing attributes in process `syz.1.705'. [ 216.008511][ T8436] netlink: 28 bytes leftover after parsing attributes in process `syz.2.706'. [ 216.431741][ T8443] netlink: 28 bytes leftover after parsing attributes in process `syz.1.712'. [ 216.526396][ T8443] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode [ 216.555674][ T8443] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode [ 219.662052][ T8493] netlink: 28 bytes leftover after parsing attributes in process `syz.0.726'. [ 219.692678][ T8493] mac80211_hwsim hwsim4 wlan0: entered promiscuous mode [ 219.722176][ T8493] mac80211_hwsim hwsim4 wlan0: entered allmulticast mode [ 221.456971][ T8525] zram: Added device: zram10 [ 223.956352][ T8595] openvswitch: HfR: Dropping previously announced user features [ 223.975461][ T8595] netlink: 12 bytes leftover after parsing attributes in process `syz.2.758'. [ 223.986071][ T8595] HfR: left promiscuous mode [ 224.277786][ T8605] erspan0: entered allmulticast mode [ 224.546125][ T8619] HfR: entered promiscuous mode [ 224.650691][ T8619] netlink: 12 bytes leftover after parsing attributes in process `syz.3.763'. [ 224.682049][ T8619] HfR: left promiscuous mode [ 225.266842][ T8641] netlink: 28 bytes leftover after parsing attributes in process `syz.2.770'. [ 228.139297][ T8709] FAULT_INJECTION: forcing a failure. [ 228.139297][ T8709] name failslab, interval 1, probability 0, space 0, times 0 [ 228.139335][ T8709] CPU: 0 UID: 0 PID: 8709 Comm: syz.0.789 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 228.139366][ T8709] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 228.139381][ T8709] Call Trace: [ 228.139389][ T8709] [ 228.139400][ T8709] dump_stack_lvl+0x16c/0x1f0 [ 228.139435][ T8709] should_fail_ex+0x497/0x5b0 [ 228.189516][ T8709] ? fs_reclaim_acquire+0xae/0x150 [ 228.189558][ T8709] should_failslab+0xc2/0x120 [ 228.189591][ T8709] __kmalloc_noprof+0xce/0x4f0 [ 228.189618][ T8709] ? d_absolute_path+0x137/0x1b0 [ 228.189649][ T8709] ? tomoyo_encode2+0x100/0x3e0 [ 228.214018][ T8709] tomoyo_encode2+0x100/0x3e0 [ 228.214065][ T8709] tomoyo_realpath_from_path+0x1a7/0x710 [ 228.214100][ T8709] tomoyo_path_number_perm+0x248/0x5b0 [ 228.214132][ T8709] ? tomoyo_path_number_perm+0x235/0x5b0 [ 228.214168][ T8709] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 228.241759][ T8709] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 228.241846][ T8709] security_file_ioctl+0x9b/0x240 [ 228.241877][ T8709] __x64_sys_ioctl+0xb7/0x200 [ 228.241906][ T8709] do_syscall_64+0xcd/0x250 [ 228.241941][ T8709] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 228.241973][ T8709] RIP: 0033:0x7fbbd1985d29 [ 228.241995][ T8709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 228.242019][ T8709] RSP: 002b:00007fbbd2730038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 228.242054][ T8709] RAX: ffffffffffffffda RBX: 00007fbbd1b75fa0 RCX: 00007fbbd1985d29 [ 228.242073][ T8709] RDX: 0000000000000003 RSI: 000000004004510d RDI: 0000000000000000 [ 228.242090][ T8709] RBP: 00007fbbd2730090 R08: 0000000000000000 R09: 0000000000000000 [ 228.242107][ T8709] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 228.242123][ T8709] R13: 0000000000000000 R14: 00007fbbd1b75fa0 R15: 00007fff6a4a8378 [ 228.242158][ T8709] [ 228.242289][ C0] vkms_vblank_simulate: vblank timer overrun [ 228.244846][ T8709] ERROR: Out of memory at tomoyo_realpath_from_path. [ 228.717481][ T8720] netlink: 334 bytes leftover after parsing attributes in process `syz.1.792'. [ 228.976661][ T8727] zram: Added device: zram11 [ 229.156750][ T8737] FAULT_INJECTION: forcing a failure. [ 229.156750][ T8737] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 229.156913][ T8737] CPU: 0 UID: 0 PID: 8737 Comm: syz.1.798 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 229.156943][ T8737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 229.156958][ T8737] Call Trace: [ 229.156966][ T8737] [ 229.156977][ T8737] dump_stack_lvl+0x16c/0x1f0 [ 229.203900][ T8737] should_fail_ex+0x497/0x5b0 [ 229.203938][ T8737] ? fs_reclaim_acquire+0xae/0x150 [ 229.203966][ T8737] should_fail_alloc_page+0xe7/0x130 [ 229.203999][ T8737] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 229.204032][ T8737] __alloc_pages_noprof+0x190/0x25b0 [ 229.204066][ T8737] ? find_held_lock+0x2d/0x110 [ 229.236217][ T8737] ? find_held_lock+0x2d/0x110 [ 229.236258][ T8737] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 229.236294][ T8737] ? hlock_class+0x4e/0x130 [ 229.236324][ T8737] ? mark_lock+0xb5/0xc60 [ 229.236357][ T8737] ? is_bpf_text_address+0x8a/0x1a0 [ 229.236394][ T8737] ? __pfx_lock_release+0x10/0x10 [ 229.236417][ T8737] ? trace_lock_acquire+0x14e/0x1f0 [ 229.236453][ T8737] ? lock_acquire+0x2f/0xb0 [ 229.236476][ T8737] ? is_bpf_text_address+0x30/0x1a0 [ 229.236510][ T8737] ? bpf_ksym_find+0x124/0x1c0 [ 229.236540][ T8737] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 229.236576][ T8737] ? is_bpf_text_address+0x94/0x1a0 [ 229.236609][ T8737] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 229.236638][ T8737] ? policy_nodemask+0xea/0x4e0 [ 229.236673][ T8737] alloc_pages_mpol_noprof+0x2c9/0x610 [ 229.236723][ T8737] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 229.236773][ T8737] pte_alloc_one+0x20/0x390 [ 229.236801][ T8737] __pte_alloc+0x6e/0x3b0 [ 229.236827][ T8737] ? __pfx___pte_alloc+0x10/0x10 [ 229.236863][ T8737] do_pte_missing+0x2810/0x3e00 [ 229.236895][ T8737] ? mt_find+0x82d/0xa20 [ 229.236925][ T8737] ? __pfx_lock_release+0x10/0x10 [ 229.236954][ T8737] __handle_mm_fault+0x103c/0x2a40 [ 229.236995][ T8737] ? __pfx___handle_mm_fault+0x10/0x10 [ 229.237026][ T8737] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 229.237069][ T8737] ? find_vma+0xc0/0x140 [ 229.237094][ T8737] ? __pfx_find_vma+0x10/0x10 [ 229.237120][ T8737] handle_mm_fault+0x3fa/0xaa0 [ 229.237153][ T8737] do_user_addr_fault+0x7a3/0x13f0 [ 229.237186][ T8737] exc_page_fault+0x5c/0xc0 [ 229.237216][ T8737] asm_exc_page_fault+0x26/0x30 [ 229.237246][ T8737] RIP: 0010:__get_user_4+0x1a/0x30 [ 229.237271][ T8737] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 ba 00 f0 ff ff ff 7f 00 00 48 39 c2 48 19 d2 48 09 d0 0f 01 cb <8b> 10 31 c0 0f 01 ca c3 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 [ 229.237293][ T8737] RSP: 0018:ffffc90003097de0 EFLAGS: 00050206 [ 229.237314][ T8737] RAX: 0000000000000003 RBX: 0000000000000002 RCX: ffffc90003097d48 [ 229.237331][ T8737] RDX: 0000000000000000 RSI: ffffffff88c6f860 RDI: ffffffff8bb17000 [ 229.237348][ T8737] RBP: 1ffff92000612fbe R08: 0000000000000000 R09: fffffbfff2039c7a [ 229.237364][ T8737] R10: ffffffff901ce3d7 R11: 0000000000000001 R12: 0000000000000003 [ 229.237380][ T8737] R13: ffff88807b3a5000 R14: dffffc0000000000 R15: 0000000000000003 [ 229.237406][ T8737] ? snd_seq_oss_ioctl+0x5f0/0xd90 [ 229.237442][ T8737] snd_seq_oss_ioctl+0x5f8/0xd90 [ 229.237471][ T8737] ? __pfx_snd_seq_oss_ioctl+0x10/0x10 [ 229.237516][ T8737] odev_ioctl+0x94/0x120 [ 229.237540][ T8737] ? __pfx_odev_ioctl+0x10/0x10 [ 229.237566][ T8737] __x64_sys_ioctl+0x190/0x200 [ 229.237619][ T8737] do_syscall_64+0xcd/0x250 [ 229.237651][ T8737] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 229.237683][ T8737] RIP: 0033:0x7fb984d85d29 [ 229.237704][ T8737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 229.237726][ T8737] RSP: 002b:00007fb982bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 229.237751][ T8737] RAX: ffffffffffffffda RBX: 00007fb984f75fa0 RCX: 00007fb984d85d29 [ 229.237768][ T8737] RDX: 0000000000000003 RSI: 000000004004510d RDI: 0000000000000000 [ 229.237785][ T8737] RBP: 00007fb982bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 229.237801][ T8737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 229.237818][ T8737] R13: 0000000000000000 R14: 00007fb984f75fa0 R15: 00007ffd950b5068 [ 229.237852][ T8737] [ 229.237978][ C0] vkms_vblank_simulate: vblank timer overrun [ 229.309814][ T8737] zram: Added device: zram12 [ 230.134696][ T8766] HfR: entered promiscuous mode [ 230.187035][ T8766] netlink: 12 bytes leftover after parsing attributes in process `syz.3.806'. [ 230.210559][ T8766] HfR: left promiscuous mode [ 230.716845][ T8755] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 230.730059][ T8755] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 230.752582][ T8755] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 230.758701][ T8755] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 231.960565][ T5846] Bluetooth: hci0: command 0x0c1a tx timeout [ 232.663016][ T8816] FAULT_INJECTION: forcing a failure. [ 232.663016][ T8816] name failslab, interval 1, probability 0, space 0, times 0 [ 232.704514][ T8816] CPU: 1 UID: 0 PID: 8816 Comm: syz.1.817 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 232.715192][ T8816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 232.725285][ T8816] Call Trace: [ 232.728598][ T8816] [ 232.731554][ T8816] dump_stack_lvl+0x16c/0x1f0 [ 232.736278][ T8816] should_fail_ex+0x497/0x5b0 [ 232.741002][ T8816] should_failslab+0xc2/0x120 [ 232.745722][ T8816] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 232.751133][ T8816] ? skb_clone+0x190/0x3f0 [ 232.755597][ T8816] skb_clone+0x190/0x3f0 [ 232.759883][ T8816] netlink_deliver_tap+0xafd/0xca0 [ 232.761087][ T5846] Bluetooth: hci3: command 0x0c1a tx timeout [ 232.765010][ T8816] netlink_unicast+0x5e1/0x7f0 [ 232.771100][ T5837] Bluetooth: hci2: command 0x0c1a tx timeout [ 232.775734][ T8816] ? __pfx_netlink_unicast+0x10/0x10 [ 232.781784][ T5837] Bluetooth: hci1: command 0x0c1a tx timeout [ 232.786959][ T8816] ? __phys_addr_symbol+0x30/0x80 [ 232.796308][ T8817] cgroup: fork rejected by pids controller in [ 232.797932][ T8816] ? __check_object_size+0x488/0x710 [ 232.797975][ T8816] netlink_sendmsg+0x8b8/0xd70 [ 232.798374][ T8817] /syz0 [ 232.804238][ T8816] ? __pfx_netlink_sendmsg+0x10/0x10 [ 232.804279][ T8816] ____sys_sendmsg+0x9ae/0xb40 [ 232.827402][ T8816] ? copy_msghdr_from_user+0x10b/0x160 [ 232.831074][ T8817] [ 232.832890][ T8816] ? __pfx_____sys_sendmsg+0x10/0x10 [ 232.840700][ T8816] ___sys_sendmsg+0x135/0x1e0 [ 232.845420][ T8816] ? __pfx____sys_sendmsg+0x10/0x10 [ 232.850679][ T8816] ? __pfx_lock_release+0x10/0x10 [ 232.855744][ T8816] ? trace_lock_acquire+0x14e/0x1f0 [ 232.861001][ T8816] ? __fget_files+0x206/0x3a0 [ 232.865724][ T8816] __sys_sendmsg+0x16e/0x220 [ 232.870358][ T8816] ? __pfx___sys_sendmsg+0x10/0x10 [ 232.875541][ T8816] do_syscall_64+0xcd/0x250 [ 232.880102][ T8816] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 232.886042][ T8816] RIP: 0033:0x7fb984d85d29 [ 232.890506][ T8816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 232.910156][ T8816] RSP: 002b:00007fb982bf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 232.918611][ T8816] RAX: ffffffffffffffda RBX: 00007fb984f75fa0 RCX: 00007fb984d85d29 [ 232.926622][ T8816] RDX: 0000000020000000 RSI: 0000000020000300 RDI: 0000000000000003 [ 232.934630][ T8816] RBP: 00007fb982bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 232.942640][ T8816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 232.950644][ T8816] R13: 0000000000000000 R14: 00007fb984f75fa0 R15: 00007ffd950b5068 [ 232.958663][ T8816] [ 233.727461][ T8952] FAULT_INJECTION: forcing a failure. [ 233.727461][ T8952] name failslab, interval 1, probability 0, space 0, times 0 [ 233.741706][ T8952] CPU: 0 UID: 0 PID: 8952 Comm: syz.0.830 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 233.752352][ T8952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 233.762452][ T8952] Call Trace: [ 233.765759][ T8952] [ 233.768722][ T8952] dump_stack_lvl+0x16c/0x1f0 [ 233.773447][ T8952] should_fail_ex+0x497/0x5b0 [ 233.778174][ T8952] ? fs_reclaim_acquire+0xae/0x150 [ 233.780910][ T8956] netlink: 326 bytes leftover after parsing attributes in process `syz.3.831'. [ 233.783309][ T8952] should_failslab+0xc2/0x120 [ 233.796943][ T8952] __kmalloc_noprof+0xce/0x4f0 [ 233.801730][ T8952] ? __pfx___mutex_trylock_common+0x10/0x10 [ 233.807638][ T8952] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 233.814947][ T8952] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 233.822197][ T8952] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 233.827675][ T8952] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 233.833756][ T8952] ? genl_get_cmd+0x195/0x580 [ 233.838459][ T8952] ? bpf_lsm_capable+0x9/0x10 [ 233.843149][ T8952] ? security_capable+0x7e/0x260 [ 233.848115][ T8952] genl_rcv_msg+0x565/0x800 [ 233.852641][ T8952] ? __pfx_genl_rcv_msg+0x10/0x10 [ 233.857683][ T8952] ? __pfx_macsec_del_rxsa+0x10/0x10 [ 233.862997][ T8952] netlink_rcv_skb+0x165/0x410 [ 233.867780][ T8952] ? __pfx_genl_rcv_msg+0x10/0x10 [ 233.872907][ T8952] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 233.878216][ T8952] ? down_read+0xc9/0x330 [ 233.882596][ T8952] ? __pfx_down_read+0x10/0x10 [ 233.887402][ T8952] ? netlink_deliver_tap+0x1ae/0xca0 [ 233.892710][ T8952] genl_rcv+0x28/0x40 [ 233.896707][ T8952] netlink_unicast+0x53c/0x7f0 [ 233.901486][ T8952] ? __pfx_netlink_unicast+0x10/0x10 [ 233.906786][ T8952] ? __phys_addr_symbol+0x30/0x80 [ 233.911828][ T8952] ? __check_object_size+0x488/0x710 [ 233.917158][ T8952] netlink_sendmsg+0x8b8/0xd70 [ 233.921938][ T8952] ? __pfx_netlink_sendmsg+0x10/0x10 [ 233.927245][ T8952] ____sys_sendmsg+0x9ae/0xb40 [ 233.932022][ T8952] ? copy_msghdr_from_user+0x10b/0x160 [ 233.937496][ T8952] ? __pfx_____sys_sendmsg+0x10/0x10 [ 233.942805][ T8952] ___sys_sendmsg+0x135/0x1e0 [ 233.947501][ T8952] ? __pfx____sys_sendmsg+0x10/0x10 [ 233.952811][ T8952] ? __pfx_lock_release+0x10/0x10 [ 233.957847][ T8952] ? trace_lock_acquire+0x14e/0x1f0 [ 233.963073][ T8952] ? __fget_files+0x206/0x3a0 [ 233.967772][ T8952] __sys_sendmsg+0x16e/0x220 [ 233.972397][ T8952] ? __pfx___sys_sendmsg+0x10/0x10 [ 233.977544][ T8952] do_syscall_64+0xcd/0x250 [ 233.982063][ T8952] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 233.987972][ T8952] RIP: 0033:0x7fbbd1985d29 [ 233.992397][ T8952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 234.012114][ T8952] RSP: 002b:00007fbbd2730038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 234.020542][ T8952] RAX: ffffffffffffffda RBX: 00007fbbd1b75fa0 RCX: 00007fbbd1985d29 [ 234.028612][ T8952] RDX: 0000000020000000 RSI: 0000000020000300 RDI: 0000000000000003 [ 234.036592][ T8952] RBP: 00007fbbd2730090 R08: 0000000000000000 R09: 0000000000000000 [ 234.044569][ T8952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 234.052553][ T8952] R13: 0000000000000000 R14: 00007fbbd1b75fa0 R15: 00007fff6a4a8378 [ 234.060546][ T8952] [ 235.167294][ T8994] nbd: couldn't find device at index 33904 [ 235.335210][ T8997] FAULT_INJECTION: forcing a failure. [ 235.335210][ T8997] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 235.350419][ T8997] CPU: 0 UID: 0 PID: 8997 Comm: syz.0.842 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 235.361078][ T8997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 235.371162][ T8997] Call Trace: [ 235.374461][ T8997] [ 235.377416][ T8997] dump_stack_lvl+0x16c/0x1f0 [ 235.382132][ T8997] should_fail_ex+0x497/0x5b0 [ 235.386857][ T8997] _copy_from_iter+0x29b/0x1400 [ 235.391757][ T8997] ? trace_lock_acquire+0x14e/0x1f0 [ 235.397030][ T8997] ? __pfx__copy_from_iter+0x10/0x10 [ 235.402362][ T8997] ? __virt_addr_valid+0x1a4/0x590 [ 235.407516][ T8997] ? __virt_addr_valid+0x5e/0x590 [ 235.412583][ T8997] ? __phys_addr_symbol+0x30/0x80 [ 235.417651][ T8997] ? __check_object_size+0x488/0x710 [ 235.422986][ T8997] file_tty_write.constprop.0+0x48d/0x9a0 [ 235.428780][ T8997] redirected_tty_write+0xcc/0x140 [ 235.433943][ T8997] vfs_write+0x5ae/0x1150 [ 235.438315][ T8997] ? __pfx_redirected_tty_write+0x10/0x10 [ 235.444096][ T8997] ? __pfx_vfs_write+0x10/0x10 [ 235.448905][ T8997] ? __fget_files+0x40/0x3a0 [ 235.453558][ T8997] ksys_write+0x12b/0x250 [ 235.457933][ T8997] ? __pfx_ksys_write+0x10/0x10 [ 235.462837][ T8997] do_syscall_64+0xcd/0x250 [ 235.467386][ T8997] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 235.473325][ T8997] RIP: 0033:0x7fbbd1985d29 [ 235.477778][ T8997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 235.497426][ T8997] RSP: 002b:00007fbbd270f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 235.505882][ T8997] RAX: ffffffffffffffda RBX: 00007fbbd1b76080 RCX: 00007fbbd1985d29 [ 235.513976][ T8997] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003 [ 235.521977][ T8997] RBP: 00007fbbd270f090 R08: 0000000000000000 R09: 0000000000000000 [ 235.529981][ T8997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 235.537974][ T8997] R13: 0000000000000000 R14: 00007fbbd1b76080 R15: 00007fff6a4a8378 [ 235.545992][ T8997] [ 235.562492][ T9002] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 400008000000006 [ 237.042627][ T9045] ptp ptp0: only physical clock in use now [ 237.076042][ T9042] FAULT_INJECTION: forcing a failure. [ 237.076042][ T9042] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 237.120191][ T9042] CPU: 0 UID: 0 PID: 9042 Comm: syz.3.855 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 237.130863][ T9042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 237.140955][ T9042] Call Trace: [ 237.144262][ T9042] [ 237.147220][ T9042] dump_stack_lvl+0x16c/0x1f0 [ 237.151939][ T9042] should_fail_ex+0x497/0x5b0 [ 237.156665][ T9042] _copy_from_iter+0x29b/0x1400 [ 237.161568][ T9042] ? trace_lock_acquire+0x14e/0x1f0 [ 237.166821][ T9042] ? __pfx__copy_from_iter+0x10/0x10 [ 237.172155][ T9042] ? __virt_addr_valid+0x1a4/0x590 [ 237.177320][ T9042] ? __virt_addr_valid+0x5e/0x590 [ 237.182394][ T9042] ? __phys_addr_symbol+0x30/0x80 [ 237.187466][ T9042] ? __check_object_size+0x488/0x710 [ 237.192807][ T9042] file_tty_write.constprop.0+0x48d/0x9a0 [ 237.198588][ T9042] redirected_tty_write+0xcc/0x140 [ 237.203749][ T9042] vfs_write+0x5ae/0x1150 [ 237.208130][ T9042] ? __pfx_redirected_tty_write+0x10/0x10 [ 237.213899][ T9042] ? __pfx_vfs_write+0x10/0x10 [ 237.218712][ T9042] ? __fget_files+0x40/0x3a0 [ 237.223363][ T9042] ksys_write+0x12b/0x250 [ 237.227740][ T9042] ? __pfx_ksys_write+0x10/0x10 [ 237.232644][ T9042] do_syscall_64+0xcd/0x250 [ 237.237188][ T9042] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 237.243125][ T9042] RIP: 0033:0x7fbf6e585d29 [ 237.247571][ T9042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 237.267219][ T9042] RSP: 002b:00007fbf6c3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 237.275650][ T9042] RAX: ffffffffffffffda RBX: 00007fbf6e775fa0 RCX: 00007fbf6e585d29 [ 237.283632][ T9042] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003 [ 237.291609][ T9042] RBP: 00007fbf6c3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 237.299588][ T9042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 237.307567][ T9042] R13: 0000000000000000 R14: 00007fbf6e775fa0 R15: 00007ffebc508778 [ 237.315571][ T9042] [ 237.440700][ T9060] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 237.447942][ T9060] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 237.465638][ T9060] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 237.490604][ T9060] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 238.126447][ T9081] FAULT_INJECTION: forcing a failure. [ 238.126447][ T9081] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 238.172387][ T9081] CPU: 1 UID: 0 PID: 9081 Comm: syz.3.869 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 238.183057][ T9081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 238.193144][ T9081] Call Trace: [ 238.196450][ T9081] [ 238.199410][ T9081] dump_stack_lvl+0x16c/0x1f0 [ 238.204129][ T9081] should_fail_ex+0x497/0x5b0 [ 238.208858][ T9081] _copy_from_iter+0x29b/0x1400 [ 238.213758][ T9081] ? trace_lock_acquire+0x14e/0x1f0 [ 238.219020][ T9081] ? __pfx__copy_from_iter+0x10/0x10 [ 238.224353][ T9081] ? __virt_addr_valid+0x1a4/0x590 [ 238.229512][ T9081] ? __virt_addr_valid+0x5e/0x590 [ 238.234574][ T9081] ? __phys_addr_symbol+0x30/0x80 [ 238.239621][ T9081] ? __check_object_size+0x488/0x710 [ 238.244930][ T9081] file_tty_write.constprop.0+0x48d/0x9a0 [ 238.250679][ T9081] redirected_tty_write+0xcc/0x140 [ 238.255809][ T9081] vfs_write+0x5ae/0x1150 [ 238.260152][ T9081] ? __pfx_redirected_tty_write+0x10/0x10 [ 238.265894][ T9081] ? __pfx_vfs_write+0x10/0x10 [ 238.270680][ T9081] ? __fget_files+0x40/0x3a0 [ 238.275299][ T9081] ksys_write+0x12b/0x250 [ 238.279640][ T9081] ? __pfx_ksys_write+0x10/0x10 [ 238.284513][ T9081] do_syscall_64+0xcd/0x250 [ 238.289039][ T9081] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.294959][ T9081] RIP: 0033:0x7fbf6e585d29 [ 238.299378][ T9081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 238.318998][ T9081] RSP: 002b:00007fbf6c3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 238.327422][ T9081] RAX: ffffffffffffffda RBX: 00007fbf6e775fa0 RCX: 00007fbf6e585d29 [ 238.335402][ T9081] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003 [ 238.343385][ T9081] RBP: 00007fbf6c3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 238.351366][ T9081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 238.359349][ T9081] R13: 0000000000000000 R14: 00007fbf6e775fa0 R15: 00007ffebc508778 [ 238.367343][ T9081] [ 239.155988][ T9121] Process accounting resumed [ 239.510312][ T5837] Bluetooth: hci1: command 0x0c1a tx timeout [ 239.510406][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout [ 239.524471][ T5837] Bluetooth: hci2: command 0x0c1a tx timeout [ 239.561052][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout [ 240.119465][ T9146] netlink: 28 bytes leftover after parsing attributes in process `syz.0.886'. [ 240.625845][ T9161] netlink: 'syz.2.893': attribute type 1 has an invalid length. [ 240.652885][ T9161] netlink: 53 bytes leftover after parsing attributes in process `syz.2.893'. [ 240.672254][ T9161] netlink: 'syz.2.893': attribute type 1 has an invalid length. [ 240.679960][ T9161] netlink: 53 bytes leftover after parsing attributes in process `syz.2.893'. [ 241.276930][ T9184] netlink: 8 bytes leftover after parsing attributes in process `syz.2.901'. [ 241.395748][ T9193] netlink: 'syz.3.903': attribute type 21 has an invalid length. [ 241.395775][ T9193] netlink: 326 bytes leftover after parsing attributes in process `syz.3.903'. [ 241.447114][ T9189] FAULT_INJECTION: forcing a failure. [ 241.447114][ T9189] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 241.482291][ T9189] CPU: 1 UID: 0 PID: 9189 Comm: syz.0.902 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 241.492954][ T9189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 241.503050][ T9189] Call Trace: [ 241.506353][ T9189] [ 241.509319][ T9189] dump_stack_lvl+0x16c/0x1f0 [ 241.514039][ T9189] should_fail_ex+0x497/0x5b0 [ 241.518758][ T9189] _copy_from_iter+0x29b/0x1400 [ 241.523664][ T9189] ? trace_lock_acquire+0x14e/0x1f0 [ 241.528914][ T9189] ? __pfx__copy_from_iter+0x10/0x10 [ 241.534242][ T9189] ? __virt_addr_valid+0x1a4/0x590 [ 241.539400][ T9189] ? __virt_addr_valid+0x5e/0x590 [ 241.544469][ T9189] ? __phys_addr_symbol+0x30/0x80 [ 241.549539][ T9189] ? __check_object_size+0x488/0x710 [ 241.554870][ T9189] file_tty_write.constprop.0+0x48d/0x9a0 [ 241.560623][ T9189] redirected_tty_write+0xcc/0x140 [ 241.565752][ T9189] vfs_write+0x5ae/0x1150 [ 241.570099][ T9189] ? __pfx_redirected_tty_write+0x10/0x10 [ 241.575838][ T9189] ? __pfx_vfs_write+0x10/0x10 [ 241.580619][ T9189] ? __fget_files+0x40/0x3a0 [ 241.585236][ T9189] ksys_write+0x12b/0x250 [ 241.589578][ T9189] ? __pfx_ksys_write+0x10/0x10 [ 241.594454][ T9189] do_syscall_64+0xcd/0x250 [ 241.598977][ T9189] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 241.604888][ T9189] RIP: 0033:0x7fbbd1985d29 [ 241.609319][ T9189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 241.628945][ T9189] RSP: 002b:00007fbbd2730038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 241.637373][ T9189] RAX: ffffffffffffffda RBX: 00007fbbd1b75fa0 RCX: 00007fbbd1985d29 [ 241.645357][ T9189] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003 [ 241.653338][ T9189] RBP: 00007fbbd2730090 R08: 0000000000000000 R09: 0000000000000000 [ 241.661317][ T9189] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 241.669296][ T9189] R13: 0000000000000000 R14: 00007fbbd1b75fa0 R15: 00007fff6a4a8378 [ 241.677290][ T9189] [ 242.009531][ T9180] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 242.041657][ T9180] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 242.068238][ T9180] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 242.081210][ T9180] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 242.334408][ T9221] netlink: 12 bytes leftover after parsing attributes in process `syz.2.909'. [ 242.720643][ T9228] batman_adv: Routing algorithm '' is not supported [ 242.843633][ T9246] netlink: 28 bytes leftover after parsing attributes in process `syz.2.920'. [ 243.659893][ T9244] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 243.669343][ T9244] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 243.678638][ T9244] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 243.689100][ T9244] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 244.929843][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout [ 245.655465][ T9333] FAULT_INJECTION: forcing a failure. [ 245.655465][ T9333] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 245.668932][ T9333] CPU: 1 UID: 0 PID: 9333 Comm: syz.3.943 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 245.679564][ T9333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 245.689648][ T9333] Call Trace: [ 245.692955][ T9333] [ 245.695911][ T9333] dump_stack_lvl+0x16c/0x1f0 [ 245.700662][ T9333] should_fail_ex+0x497/0x5b0 [ 245.705388][ T9333] _copy_from_iter+0x29b/0x1400 [ 245.710296][ T9333] ? trace_lock_acquire+0x14e/0x1f0 [ 245.715536][ T9333] ? __pfx__copy_from_iter+0x10/0x10 [ 245.720843][ T9333] ? __virt_addr_valid+0x1a4/0x590 [ 245.725979][ T9333] ? __virt_addr_valid+0x5e/0x590 [ 245.731019][ T9333] ? __phys_addr_symbol+0x30/0x80 [ 245.736071][ T9333] ? __check_object_size+0x488/0x710 [ 245.741382][ T9333] file_tty_write.constprop.0+0x48d/0x9a0 [ 245.747130][ T9333] redirected_tty_write+0xcc/0x140 [ 245.752273][ T9333] vfs_write+0x5ae/0x1150 [ 245.756620][ T9333] ? __pfx_redirected_tty_write+0x10/0x10 [ 245.762361][ T9333] ? __pfx_vfs_write+0x10/0x10 [ 245.767141][ T9333] ? __fget_files+0x40/0x3a0 [ 245.771755][ T9333] ksys_write+0x12b/0x250 [ 245.776102][ T9333] ? __pfx_ksys_write+0x10/0x10 [ 245.780973][ T9333] do_syscall_64+0xcd/0x250 [ 245.785498][ T9333] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 245.791407][ T9333] RIP: 0033:0x7fbf6e585d29 [ 245.795833][ T9333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 245.815543][ T9333] RSP: 002b:00007fbf6c3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 245.823972][ T9333] RAX: ffffffffffffffda RBX: 00007fbf6e775fa0 RCX: 00007fbf6e585d29 [ 245.831954][ T9333] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003 [ 245.839938][ T9333] RBP: 00007fbf6c3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 245.847940][ T9333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 245.855960][ T9333] R13: 0000000000000000 R14: 00007fbf6e775fa0 R15: 00007ffebc508778 [ 245.863972][ T9333] [ 245.876891][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout [ 245.883642][ T5840] Bluetooth: hci2: command 0x0c1a tx timeout [ 245.889695][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout [ 246.532192][ T9357] syz.3.949 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 246.927145][ T9368] Invalid ELF header magic: != ELF [ 247.162882][ T9374] FAULT_INJECTION: forcing a failure. [ 247.162882][ T9374] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 247.176691][ T9374] CPU: 0 UID: 0 PID: 9374 Comm: syz.3.954 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 247.187318][ T9374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 247.197381][ T9374] Call Trace: [ 247.200666][ T9374] [ 247.203601][ T9374] dump_stack_lvl+0x16c/0x1f0 [ 247.208289][ T9374] should_fail_ex+0x497/0x5b0 [ 247.212985][ T9374] _copy_from_iter+0x29b/0x1400 [ 247.217870][ T9374] ? trace_lock_acquire+0x14e/0x1f0 [ 247.223079][ T9374] ? __pfx__copy_from_iter+0x10/0x10 [ 247.228374][ T9374] ? __virt_addr_valid+0x1a4/0x590 [ 247.233512][ T9374] ? __virt_addr_valid+0x5e/0x590 [ 247.238570][ T9374] ? __phys_addr_symbol+0x30/0x80 [ 247.243598][ T9374] ? __check_object_size+0x488/0x710 [ 247.248891][ T9374] file_tty_write.constprop.0+0x48d/0x9a0 [ 247.254626][ T9374] redirected_tty_write+0xcc/0x140 [ 247.259758][ T9374] vfs_write+0x5ae/0x1150 [ 247.264134][ T9374] ? __pfx_redirected_tty_write+0x10/0x10 [ 247.269907][ T9374] ? __pfx_vfs_write+0x10/0x10 [ 247.274711][ T9374] ? __fget_files+0x40/0x3a0 [ 247.279356][ T9374] ksys_write+0x12b/0x250 [ 247.283718][ T9374] ? __pfx_ksys_write+0x10/0x10 [ 247.288593][ T9374] do_syscall_64+0xcd/0x250 [ 247.293117][ T9374] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 247.299025][ T9374] RIP: 0033:0x7fbf6e585d29 [ 247.303446][ T9374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 247.323066][ T9374] RSP: 002b:00007fbf6c3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 247.331487][ T9374] RAX: ffffffffffffffda RBX: 00007fbf6e775fa0 RCX: 00007fbf6e585d29 [ 247.339464][ T9374] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003 [ 247.347443][ T9374] RBP: 00007fbf6c3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 247.355442][ T9374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 247.363417][ T9374] R13: 0000000000000000 R14: 00007fbf6e775fa0 R15: 00007ffebc508778 [ 247.371409][ T9374] [ 247.760783][ T9379] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 247.777328][ T9379] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 247.786781][ T9379] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 247.804173][ T9379] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 248.087667][ T9502] netlink: 32 bytes leftover after parsing attributes in process `syz.1.961'. [ 248.147730][ T9504] zram: Added device: zram13 [ 249.076964][ T9524] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 249.086316][ T9524] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 249.118848][ T9524] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 249.124332][ T9639] netlink: 'syz.1.975': attribute type 1 has an invalid length. [ 249.135764][ T9524] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 249.178032][ T9641] netlink: 32 bytes leftover after parsing attributes in process `syz.3.974'. [ 249.566180][ T9647] netlink: 28 bytes leftover after parsing attributes in process `syz.3.978'. [ 249.846787][ T9647] bond0: (slave bond_slave_1): Releasing backup interface [ 250.396547][ T9673] netlink: 'syz.1.985': attribute type 1 has an invalid length. [ 251.026727][ T9899] netlink: 32 bytes leftover after parsing attributes in process `syz.0.993'. [ 251.161312][ T5840] Bluetooth: hci2: command 0x0c1a tx timeout [ 251.161362][ T5837] Bluetooth: hci1: command 0x0c1a tx timeout [ 251.168083][ T5846] Bluetooth: hci3: command 0x0c1a tx timeout [ 251.392030][ T9678] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 251.401907][ T9678] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 251.411180][ T9678] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 251.417524][ T9678] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 251.707653][ T9924] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1001'. [ 251.964903][ T9933] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1003'. [ 252.597344][ T9951] syz.3.1010 (9951): attempted to duplicate a private mapping with mremap. This is not supported. [ 252.904976][ T9945] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 252.930516][ T9945] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 252.936653][ T9945] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 252.990102][ T9945] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 254.403856][T10102] netlink: 'syz.1.1027': attribute type 1 has an invalid length. [ 254.945669][T10118] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1031'. [ 254.998780][T10096] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 255.005154][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout [ 255.011793][ T5846] Bluetooth: hci2: command 0x0c1a tx timeout [ 255.018937][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout [ 255.050014][T10096] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 255.057160][T10096] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 255.063608][T10096] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 255.272965][T10123] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1035'. [ 255.602152][T10133] netlink: 'syz.1.1037': attribute type 1 has an invalid length. [ 255.766419][T10139] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1039'. [ 256.023932][T10148] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1042'. [ 256.202783][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout [ 256.209407][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.215982][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.647114][T10163] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1048'. [ 257.009156][T10175] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1052'. [ 257.081410][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout [ 257.087497][ T5840] Bluetooth: hci2: command 0x0c1a tx timeout [ 257.093626][ T5837] Bluetooth: hci1: command 0x0c1a tx timeout [ 257.804946][T10406] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1062'. [ 257.816933][T10406] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 257.826871][T10406] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 257.874368][T10406] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 257.909114][T10406] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 257.965183][T10411] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1064'. [ 258.070753][T10414] netlink: 'syz.2.1065': attribute type 1 has an invalid length. [ 258.215517][T10418] zram: Added device: zram14 [ 258.491368][T10433] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1074'. [ 258.754533][T10446] netlink: 'syz.3.1077': attribute type 1 has an invalid length. [ 258.960200][T10445] cgroup: fork rejected by pids controller in /syz1 [ 259.310296][T10432] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 259.318725][T10569] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1084'. [ 259.331448][T10432] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 259.344126][T10569] mac80211_hwsim hwsim5 wlan0: entered promiscuous mode [ 259.352557][T10432] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 259.368782][T10432] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 259.381149][T10569] mac80211_hwsim hwsim5 wlan0: entered allmulticast mode [ 260.053933][T10593] netlink: 'syz.0.1089': attribute type 1 has an invalid length. [ 260.608163][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout [ 260.947414][T10610] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 260.970423][T10610] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 260.976571][T10610] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 261.031221][T10610] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 262.060883][T10855] __nla_validate_parse: 1 callbacks suppressed [ 262.060903][T10855] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1110'. [ 262.238699][T10859] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1111'. [ 262.451773][T10853] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 262.468668][T10853] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 262.480671][T10853] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 262.488415][T10853] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 263.263344][T10990] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1121'. [ 263.376009][T10992] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1122'. [ 264.035096][T11120] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1133'. [ 264.120413][ T5846] Bluetooth: hci0: command 0x0c1a tx timeout [ 264.520596][ T5840] Bluetooth: hci2: command 0x0c1a tx timeout [ 264.520608][ T5837] Bluetooth: hci1: command 0x0c1a tx timeout [ 264.530622][ T5846] Bluetooth: hci3: command 0x0c1a tx timeout [ 265.733902][T11263] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1150'. [ 267.101548][T11395] netlink: 'syz.0.1160': attribute type 33 has an invalid length. [ 267.132439][T11395] netlink: 322 bytes leftover after parsing attributes in process `syz.0.1160'. [ 267.170606][T11395] netlink: 'syz.0.1160': attribute type 33 has an invalid length. [ 267.204973][T11395] netlink: 322 bytes leftover after parsing attributes in process `syz.0.1160'. [ 267.300994][T11398] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1161'. [ 267.356996][T11398] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1161'. [ 267.671840][T11404] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 267.694081][T11404] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 267.722216][T11404] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 267.750556][T11404] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 267.921608][T11513] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1167'. [ 268.774406][T11635] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1176'. [ 269.184766][T11642] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1178'. [ 269.560434][ T5846] Bluetooth: hci0: command 0x0c1a tx timeout [ 269.720429][ T5846] Bluetooth: hci2: command 0x0c1a tx timeout [ 269.726522][ T5846] Bluetooth: hci1: command 0x0c1a tx timeout [ 269.800344][ T5846] Bluetooth: hci3: command 0x0c1a tx timeout [ 270.020474][T11865] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1186'. [ 270.059693][T11865] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1186'. [ 270.238360][T11895] zram: Added device: zram15 [ 270.489774][T11975] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1190'. [ 271.270005][T11986] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 271.305762][T11986] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 271.320829][T11986] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 271.326949][T11986] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 271.562542][T12201] nbd: must specify a size in bytes for the device [ 272.491090][T12217] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1203'. [ 272.525329][T12217] bridge_slave_1: left allmulticast mode [ 272.537301][T12217] bridge_slave_1: left promiscuous mode [ 272.550568][T12217] bridge0: port 2(bridge_slave_1) entered disabled state [ 272.573863][T12226] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1207'. [ 272.635288][T12217] bridge_slave_0: left allmulticast mode [ 272.643025][T12217] bridge_slave_0: left promiscuous mode [ 272.648814][T12217] bridge0: port 1(bridge_slave_0) entered disabled state [ 272.681360][T12301] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1208'. [ 273.160326][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout [ 273.253037][T12444] HfR: entered promiscuous mode [ 273.320715][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout [ 273.400509][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout [ 273.400575][ T5846] Bluetooth: hci2: command 0x0c1a tx timeout [ 273.593018][T12554] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1217'. [ 273.613529][T12554] ksmbd: Unknown IPC event: 0, ignore. [ 273.824471][T12558] zram: Added device: zram16 [ 274.168121][T12668] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1221'. [ 274.638510][T12682] openvswitch: HfR: Dropping previously announced user features [ 274.897908][T12686] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1227'. [ 275.350133][T12813] openvswitch: HfR: Dropping previously announced user features [ 276.111753][T12938] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1243'. [ 276.464898][T13045] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1245'. [ 276.718017][T13111] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1253'. [ 276.992924][T13059] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 277.003827][T13059] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 277.032601][T13059] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 277.041382][T13059] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 277.341681][T13388] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1264'. [ 277.758829][T13498] erspan0: entered allmulticast mode [ 278.445776][T13708] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 278.454222][T13708] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 278.461968][T13708] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 278.469875][T13708] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 278.640822][T13924] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1276'. [ 278.804129][T13926] Invalid ELF header magic: != ELF [ 280.150981][T14361] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1286'. [ 280.306327][T14044] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 280.316843][T14044] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 280.326940][T14044] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 280.339319][T14044] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 281.034118][T14581] HfR: entered promiscuous mode [ 281.650449][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout [ 281.874142][T14903] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 281.884021][T14903] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 281.892711][T14903] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 281.899077][T14903] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 282.131815][T15110] openvswitch: HfR: Dropping previously announced user features [ 282.375401][T15152] openvswitch: netlink: Duplicate key (type 15). [ 282.379193][T15133] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1310'. [ 282.567668][T15326] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1311'. [ 282.717747][T15328] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 282.728391][T15328] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 282.736245][T15328] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 282.744605][T15328] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 282.863953][T15440] openvswitch: HfR: Dropping previously announced user features [ 283.088862][T15546] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1319'. [ 283.164469][T15548] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1320'. [ 283.583755][T15593] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1325'. [ 283.665143][T15664] openvswitch: HfR: Dropping previously announced user features [ 283.989467][T15814] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1330'. [ 284.433986][T15894] openvswitch: HfR: Dropping previously announced user features [ 284.761198][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout [ 284.761215][ T5846] Bluetooth: hci2: command 0x0c1a tx timeout [ 284.761253][ T5846] Bluetooth: hci1: command 0x0c1a tx timeout [ 285.017387][T16013] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1340'. [ 285.059226][T16013] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 285.135313][T16013] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 285.170382][T15888] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 285.176452][T15888] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 285.214248][T15888] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 285.249462][T15888] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 285.415846][T16118] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1342'. [ 286.259537][T16551] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1356'. [ 286.298610][T16125] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 286.321082][T16125] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 286.336129][T16125] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 286.356188][T16125] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 286.583269][T16742] openvswitch: HfR: Dropping previously announced user features [ 286.881172][T16921] openvswitch: HfR: Dropping previously announced user features [ 287.059522][T17022] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1367'. [ 287.510483][T17190] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 287.528108][T17190] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 287.552757][T17190] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 287.574367][T17190] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 288.310190][T17422] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1379'. [ 289.569388][ T5846] Bluetooth: hci1: command 0x0c1a tx timeout [ 289.569698][ T5837] Bluetooth: hci0: command 0x0c1a tx timeout [ 289.640355][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout [ 289.640372][ T5846] Bluetooth: hci2: command 0x0c1a tx timeout [ 289.814590][T18037] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1391'. [ 289.938277][T18097] openvswitch: HfR: Dropping previously announced user features [ 289.985377][T18040] Process accounting resumed [ 290.407659][T18362] FAULT_INJECTION: forcing a failure. [ 290.407659][T18362] name failslab, interval 1, probability 0, space 0, times 0 [ 290.420882][T18362] CPU: 0 UID: 0 PID: 18362 Comm: syz.0.1402 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 290.431688][T18362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 290.441786][T18362] Call Trace: [ 290.445091][T18362] [ 290.448044][T18362] dump_stack_lvl+0x16c/0x1f0 [ 290.452762][T18362] should_fail_ex+0x497/0x5b0 [ 290.457484][T18362] ? fs_reclaim_acquire+0xae/0x150 [ 290.462639][T18362] should_failslab+0xc2/0x120 [ 290.467363][T18362] __kmalloc_node_noprof+0xd1/0x520 [ 290.472607][T18362] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 290.478097][T18362] ? __pfx_lock_release+0x10/0x10 [ 290.483151][T18362] __kvmalloc_node_noprof+0xad/0x1a0 [ 290.488466][T18362] seq_read_iter+0x82a/0x12b0 [ 290.493175][T18362] seq_read+0x39f/0x4e0 [ 290.497348][T18362] ? __pfx_seq_read+0x10/0x10 [ 290.502052][T18362] full_proxy_read+0xfb/0x1b0 [ 290.506746][T18362] ? __pfx_full_proxy_read+0x10/0x10 [ 290.512053][T18362] vfs_read+0x1df/0xbe0 [ 290.516223][T18362] ? __fget_files+0x1fc/0x3a0 [ 290.520917][T18362] ? __pfx___mutex_lock+0x10/0x10 [ 290.525962][T18362] ? __pfx_vfs_read+0x10/0x10 [ 290.530656][T18362] ? __fget_files+0x206/0x3a0 [ 290.535351][T18362] ksys_read+0x12b/0x250 [ 290.539610][T18362] ? __pfx_ksys_read+0x10/0x10 [ 290.544394][T18362] do_syscall_64+0xcd/0x250 [ 290.548912][T18362] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 290.554822][T18362] RIP: 0033:0x7fbbd1985d29 [ 290.559245][T18362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 290.578959][T18362] RSP: 002b:00007fbbd2730038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 290.587387][T18362] RAX: ffffffffffffffda RBX: 00007fbbd1b75fa0 RCX: 00007fbbd1985d29 [ 290.595375][T18362] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 290.603355][T18362] RBP: 00007fbbd2730090 R08: 0000000000000000 R09: 0000000000000000 [ 290.611334][T18362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 290.619315][T18362] R13: 0000000000000000 R14: 00007fbbd1b75fa0 R15: 00007fff6a4a8378 [ 290.627309][T18362] [ 290.755223][T18367] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1405'. [ 290.975805][T18371] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 290.988824][T18371] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 291.020503][T18371] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 291.050668][T18371] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 291.453147][T18588] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 291.454516][T18659] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1416'. [ 291.459367][T18588] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 291.478935][T18588] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 291.487827][T18588] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 292.144842][T18917] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1427'. [ 292.251217][T18920] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1429'. [ 292.459377][T18922] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 292.465757][T18922] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 292.472543][T18922] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 292.478727][T18922] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 293.314126][T19352] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1448'. [ 293.615002][T19463] openvswitch: HfR: Dropping previously announced user features [ 294.257319][T19579] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1450'. [ 294.360797][ T5846] Bluetooth: hci0: command 0x0c1a tx timeout [ 294.452931][T19583] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1452'. [ 294.510873][T19584] HSR: entered promiscuous mode [ 294.520741][ T5846] Bluetooth: hci2: command 0x0c1a tx timeout [ 294.527157][ T5846] Bluetooth: hci3: command 0x0c1a tx timeout [ 294.534864][ T5837] Bluetooth: hci1: command 0x0c1a tx timeout [ 294.802993][T19687] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 294.810500][T19687] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 294.822489][T19687] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 294.840437][T19687] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 295.458132][T19802] openvswitch: HfR: Dropping previously announced user features [ 295.851431][T19911] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1461'. [ 295.874543][T19914] openvswitch: HfR: Dropping previously announced user features [ 296.231733][T19803] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 296.246982][T19803] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 296.262760][T19803] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 296.300646][T19803] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 296.644561][T20126] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 296.650853][T20126] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 296.675365][T20126] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 296.688398][T20126] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 297.284374][T20544] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1474'. [ 297.711049][T20566] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 297.724489][T20566] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 297.732235][T20720] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1480'. [ 297.750559][T20566] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 297.759361][T20566] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 298.357605][T20771] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1487'. [ 298.920617][T20882] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 298.927497][T20882] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 298.943762][T20875] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1489'. [ 298.970541][T20882] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 298.976690][T20882] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 299.147332][T20996] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1498'. [ 300.533410][T21428] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1508'. [ 300.596249][T21211] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 300.603384][T21211] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 300.620330][T21211] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 300.628057][T21211] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 300.931414][T21634] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 300.948581][T21634] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 300.956751][T21634] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 300.967233][T21634] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 301.425535][T22030] HfR: entered promiscuous mode [ 301.448207][T21848] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 301.458243][T21848] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 301.470610][T21848] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 301.476784][T21848] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 301.711998][T22073] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1523'. [ 302.705927][T22579] openvswitch: HfR: Dropping previously announced user features [ 302.740066][T22165] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 302.766693][T22165] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 302.780740][T22165] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 302.800513][T22165] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 302.999365][T22590] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1532'. [ 303.092420][T22592] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1534'. [ 303.448524][T22601] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1539'. [ 304.058387][T22810] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 304.064754][T22810] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 304.071178][T22810] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 304.080425][T22810] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 304.171629][T23016] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1546'. [ 304.349916][T23024] openvswitch: HfR: Dropping previously announced user features [ 304.485679][T23032] openvswitch: HfR: Dropping previously announced user features [ 304.923369][T23261] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1557'. [ 304.949649][T23227] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 304.956469][T23227] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 304.981335][T23227] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 304.995153][T23227] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 305.130064][T23350] nbd: must specify a size in bytes for the device [ 305.199778][T23354] openvswitch: HfR: Dropping previously announced user features [ 305.772492][T23466] netlink: 'syz.1.1565': attribute type 1 has an invalid length. [ 305.846611][T23468] FAULT_INJECTION: forcing a failure. [ 305.846611][T23468] name failslab, interval 1, probability 0, space 0, times 0 [ 305.859808][T23468] CPU: 0 UID: 0 PID: 23468 Comm: syz.0.1567 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 305.870618][T23468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 305.880717][T23468] Call Trace: [ 305.884035][T23468] [ 305.886992][T23468] dump_stack_lvl+0x16c/0x1f0 [ 305.891715][T23468] should_fail_ex+0x497/0x5b0 [ 305.896446][T23468] should_failslab+0xc2/0x120 [ 305.901173][T23468] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 305.906599][T23468] ? inet_bind_bucket_create+0x2d/0x260 [ 305.912194][T23468] inet_bind_bucket_create+0x2d/0x260 [ 305.917610][T23468] inet_csk_get_port+0x128e/0x2530 [ 305.922792][T23468] ? __pfx_inet_csk_get_port+0x10/0x10 [ 305.928306][T23468] inet_csk_listen_start+0x15e/0x390 [ 305.933635][T23468] __inet_listen_sk+0x211/0x690 [ 305.938515][T23468] ? __pfx___inet_listen_sk+0x10/0x10 [ 305.943919][T23468] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 305.949341][T23468] ? mark_held_locks+0x9f/0xe0 [ 305.954160][T23468] ? __local_bh_enable_ip+0xa4/0x120 [ 305.959542][T23468] mptcp_listen+0x1fa/0x4a0 [ 305.964092][T23468] ? __pfx_mptcp_listen+0x10/0x10 [ 305.969176][T23468] __sys_listen_socket+0x114/0x160 [ 305.974343][T23468] __sys_listen+0xa3/0x110 [ 305.978812][T23468] __x64_sys_listen+0x53/0x80 [ 305.983533][T23468] do_syscall_64+0xcd/0x250 [ 305.988081][T23468] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 305.994017][T23468] RIP: 0033:0x7fbbd1985d29 [ 305.998469][T23468] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 306.018127][T23468] RSP: 002b:00007fbbd2730038 EFLAGS: 00000246 ORIG_RAX: 0000000000000032 [ 306.026586][T23468] RAX: ffffffffffffffda RBX: 00007fbbd1b75fa0 RCX: 00007fbbd1985d29 [ 306.034601][T23468] RDX: 0000000000000000 RSI: 0000000000000081 RDI: 0000000000000003 [ 306.042608][T23468] RBP: 00007fbbd2730090 R08: 0000000000000000 R09: 0000000000000000 [ 306.050616][T23468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 306.058624][T23468] R13: 0000000000000000 R14: 00007fbbd1b75fa0 R15: 00007fff6a4a8378 [ 306.066661][T23468] [ 306.313387][T23682] openvswitch: HfR: Dropping previously announced user features [ 306.896698][T23790] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1575'. [ 306.921486][ T5837] Bluetooth: hci0: command 0x0c1a tx timeout [ 307.000424][ T5846] Bluetooth: hci2: command 0x0c1a tx timeout [ 307.006552][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout [ 307.012942][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout [ 307.100473][T23794] nbd: must specify a size in bytes for the device [ 307.264389][T23900] FAULT_INJECTION: forcing a failure. [ 307.264389][T23900] name failslab, interval 1, probability 0, space 0, times 0 [ 307.296547][T23900] CPU: 1 UID: 0 PID: 23900 Comm: syz.0.1577 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 307.307386][T23900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 307.317464][T23900] Call Trace: [ 307.320763][T23900] [ 307.323712][T23900] dump_stack_lvl+0x16c/0x1f0 [ 307.328427][T23900] should_fail_ex+0x497/0x5b0 [ 307.333133][T23900] ? fs_reclaim_acquire+0xae/0x150 [ 307.338280][T23900] should_failslab+0xc2/0x120 [ 307.342997][T23900] __kmalloc_noprof+0xce/0x4f0 [ 307.347803][T23900] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 307.353463][T23900] ? tomoyo_realpath_from_path+0xbf/0x710 [ 307.359227][T23900] tomoyo_realpath_from_path+0xbf/0x710 [ 307.364806][T23900] ? tomoyo_path_number_perm+0x235/0x5b0 [ 307.370486][T23900] tomoyo_path_number_perm+0x248/0x5b0 [ 307.375986][T23900] ? tomoyo_path_number_perm+0x235/0x5b0 [ 307.381663][T23900] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 307.387696][T23900] ? __pfx_lock_release+0x10/0x10 [ 307.392738][T23900] ? trace_lock_acquire+0x14e/0x1f0 [ 307.397982][T23900] ? lock_acquire+0x2f/0xb0 [ 307.402517][T23900] ? __fget_files+0x40/0x3a0 [ 307.407149][T23900] ? __fget_files+0x206/0x3a0 [ 307.411862][T23900] security_file_ioctl+0x9b/0x240 [ 307.416916][T23900] __x64_sys_ioctl+0xb7/0x200 [ 307.421715][T23900] do_syscall_64+0xcd/0x250 [ 307.426252][T23900] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 307.432178][T23900] RIP: 0033:0x7fbbd1985d29 [ 307.436614][T23900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 307.456253][T23900] RSP: 002b:00007fbbd2730038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 307.464700][T23900] RAX: ffffffffffffffda RBX: 00007fbbd1b75fa0 RCX: 00007fbbd1985d29 [ 307.472698][T23900] RDX: 0000000000000003 RSI: 0000000002008b0a RDI: 0000000000000003 [ 307.480695][T23900] RBP: 00007fbbd2730090 R08: 0000000000000000 R09: 0000000000000000 [ 307.488693][T23900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 307.496688][T23900] R13: 0000000000000000 R14: 00007fbbd1b75fa0 R15: 00007fff6a4a8378 [ 307.504701][T23900] [ 307.576512][T23900] ERROR: Out of memory at tomoyo_realpath_from_path. [ 307.967224][T23911] netlink: 'syz.1.1583': attribute type 1 has an invalid length. [ 308.162835][T24013] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 400008000010006 [ 308.236903][T24016] openvswitch: HfR: Dropping previously announced user features [ 308.378383][T24019] RDS: rds_bind could not find a transport for fe80::, load rds_tcp or rds_rdma? [ 308.512028][T24022] openvswitch: HfR: Dropping previously announced user features [ 309.347747][T24225] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 309.359789][T24225] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 309.376358][T24225] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 309.388167][T24225] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 309.521986][T24351] FAULT_INJECTION: forcing a failure. [ 309.521986][T24351] name failslab, interval 1, probability 0, space 0, times 0 [ 309.549764][T24351] CPU: 0 UID: 0 PID: 24351 Comm: syz.1.1599 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 309.560686][T24351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 309.570772][T24351] Call Trace: [ 309.574076][T24351] [ 309.577037][T24351] dump_stack_lvl+0x16c/0x1f0 [ 309.581760][T24351] should_fail_ex+0x497/0x5b0 [ 309.586468][T24351] ? fs_reclaim_acquire+0xae/0x150 [ 309.591604][T24351] should_failslab+0xc2/0x120 [ 309.596300][T24351] __kmalloc_noprof+0xce/0x4f0 [ 309.601078][T24351] ? tomoyo_encode2+0x100/0x3e0 [ 309.605941][T24351] tomoyo_encode2+0x100/0x3e0 [ 309.610629][T24351] tomoyo_realpath_from_path+0x1a7/0x710 [ 309.616274][T24351] ? tomoyo_path_number_perm+0x235/0x5b0 [ 309.621933][T24351] tomoyo_path_number_perm+0x248/0x5b0 [ 309.627403][T24351] ? tomoyo_path_number_perm+0x235/0x5b0 [ 309.633055][T24351] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 309.639075][T24351] ? __pfx_lock_release+0x10/0x10 [ 309.644108][T24351] ? trace_lock_acquire+0x14e/0x1f0 [ 309.649323][T24351] ? lock_acquire+0x2f/0xb0 [ 309.653831][T24351] ? __fget_files+0x40/0x3a0 [ 309.658434][T24351] ? __fget_files+0x206/0x3a0 [ 309.663122][T24351] security_file_ioctl+0x9b/0x240 [ 309.668152][T24351] __x64_sys_ioctl+0xb7/0x200 [ 309.672834][T24351] do_syscall_64+0xcd/0x250 [ 309.677350][T24351] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 309.683258][T24351] RIP: 0033:0x7fb984d85d29 [ 309.687678][T24351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 309.707293][T24351] RSP: 002b:00007fb982bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 309.715716][T24351] RAX: ffffffffffffffda RBX: 00007fb984f75fa0 RCX: 00007fb984d85d29 [ 309.723696][T24351] RDX: 0000000000000003 RSI: 0000000002008b0a RDI: 0000000000000003 [ 309.731672][T24351] RBP: 00007fb982bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 309.739650][T24351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 309.747628][T24351] R13: 0000000000000000 R14: 00007fb984f75fa0 R15: 00007ffd950b5068 [ 309.755621][T24351] [ 309.789916][T24351] ERROR: Out of memory at tomoyo_realpath_from_path. [ 310.012994][T24361] netlink: 'syz.3.1603': attribute type 1 has an invalid length. [ 310.246314][T24469] openvswitch: HfR: Dropping previously announced user features [ 310.377545][T24533] openvswitch: HfR: Dropping previously announced user features [ 311.023338][T24890] openvswitch: HfR: Dropping previously announced user features [ 311.095783][T24894] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1614'. [ 311.240964][ T5837] Bluetooth: hci0: command 0x0c1a tx timeout [ 311.251087][T24896] FAULT_INJECTION: forcing a failure. [ 311.251087][T24896] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 311.294579][T24896] CPU: 0 UID: 0 PID: 24896 Comm: syz.3.1617 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 311.305428][T24896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 311.315521][T24896] Call Trace: [ 311.318823][T24896] [ 311.321771][T24896] dump_stack_lvl+0x16c/0x1f0 [ 311.326467][T24896] should_fail_ex+0x497/0x5b0 [ 311.331159][T24896] _copy_to_user+0x32/0xd0 [ 311.335593][T24896] copy_ns_info_to_user+0x137/0x1e0 [ 311.340799][T24896] ns_ioctl+0xae3/0xd30 [ 311.344964][T24896] ? __pfx_ns_ioctl+0x10/0x10 [ 311.349649][T24896] ? __fget_files+0x206/0x3a0 [ 311.354344][T24896] ? __pfx_ns_ioctl+0x10/0x10 [ 311.359030][T24896] __x64_sys_ioctl+0x190/0x200 [ 311.363801][T24896] do_syscall_64+0xcd/0x250 [ 311.368315][T24896] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 311.374219][T24896] RIP: 0033:0x7fbf6e585d29 [ 311.378640][T24896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 311.398263][T24896] RSP: 002b:00007fbf6c3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 311.406699][T24896] RAX: ffffffffffffffda RBX: 00007fbf6e775fa0 RCX: 00007fbf6e585d29 [ 311.414682][T24896] RDX: 0000000000000003 RSI: 0000000002008b0a RDI: 0000000000000003 [ 311.422655][T24896] RBP: 00007fbf6c3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 311.430652][T24896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 311.438633][T24896] R13: 0000000000000000 R14: 00007fbf6e775fa0 R15: 00007ffebc508778 [ 311.446646][T24896] [ 311.450079][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout [ 311.452999][T24900] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1618'. [ 311.457398][ T5837] Bluetooth: hci2: command 0x0c1a tx timeout [ 311.477429][ T5846] Bluetooth: hci1: command 0x0c1a tx timeout [ 311.680113][T24907] openvswitch: HfR: Dropping previously announced user features [ 312.191726][T25124] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1627'. [ 312.607653][T25138] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1634'. [ 312.872068][T25345] openvswitch: HfR: Dropping previously announced user features [ 313.105934][T25432] FAULT_INJECTION: forcing a failure. [ 313.105934][T25432] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 313.124292][T25432] CPU: 1 UID: 0 PID: 25432 Comm: syz.1.1642 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 313.135151][T25432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 313.145252][T25432] Call Trace: [ 313.148558][T25432] [ 313.151520][T25432] dump_stack_lvl+0x16c/0x1f0 [ 313.156244][T25432] should_fail_ex+0x497/0x5b0 [ 313.160964][T25432] _copy_to_user+0x32/0xd0 [ 313.165428][T25432] copy_ns_info_to_user+0x137/0x1e0 [ 313.170665][T25432] ns_ioctl+0xae3/0xd30 [ 313.174852][T25432] ? __pfx_ns_ioctl+0x10/0x10 [ 313.179571][T25432] ? __fget_files+0x206/0x3a0 [ 313.184292][T25432] ? __pfx_ns_ioctl+0x10/0x10 [ 313.189007][T25432] __x64_sys_ioctl+0x190/0x200 [ 313.193811][T25432] do_syscall_64+0xcd/0x250 [ 313.198367][T25432] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 313.204303][T25432] RIP: 0033:0x7fb984d85d29 [ 313.208749][T25432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 313.228394][T25432] RSP: 002b:00007fb982bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 313.236849][T25432] RAX: ffffffffffffffda RBX: 00007fb984f75fa0 RCX: 00007fb984d85d29 [ 313.244859][T25432] RDX: 0000000000000003 RSI: 0000000002008b0a RDI: 0000000000000003 [ 313.252863][T25432] RBP: 00007fb982bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 313.260877][T25432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 313.268882][T25432] R13: 0000000000000000 R14: 00007fb984f75fa0 R15: 00007ffd950b5068 [ 313.276899][T25432] [ 314.224469][T25775] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1650'. [ 314.326283][T25781] FAULT_INJECTION: forcing a failure. [ 314.326283][T25781] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 314.353335][T25781] CPU: 0 UID: 0 PID: 25781 Comm: syz.1.1653 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 314.364276][T25781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 314.374363][T25781] Call Trace: [ 314.377679][T25781] [ 314.380634][T25781] dump_stack_lvl+0x16c/0x1f0 [ 314.385353][T25781] should_fail_ex+0x497/0x5b0 [ 314.390089][T25781] _copy_to_user+0x32/0xd0 [ 314.394552][T25781] simple_read_from_buffer+0xd0/0x160 [ 314.399966][T25781] proc_fail_nth_read+0x198/0x270 [ 314.405043][T25781] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 314.410640][T25781] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 314.416228][T25781] vfs_read+0x1df/0xbe0 [ 314.420421][T25781] ? __fget_files+0x1fc/0x3a0 [ 314.425132][T25781] ? __pfx___mutex_lock+0x10/0x10 [ 314.430193][T25781] ? __pfx_vfs_read+0x10/0x10 [ 314.434912][T25781] ? __fget_files+0x206/0x3a0 [ 314.439635][T25781] ksys_read+0x12b/0x250 [ 314.443921][T25781] ? __pfx_ksys_read+0x10/0x10 [ 314.448734][T25781] do_syscall_64+0xcd/0x250 [ 314.453278][T25781] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 314.459211][T25781] RIP: 0033:0x7fb984d8473c [ 314.463659][T25781] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 314.483310][T25781] RSP: 002b:00007fb982bf6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 314.491739][T25781] RAX: ffffffffffffffda RBX: 00007fb984f75fa0 RCX: 00007fb984d8473c [ 314.499718][T25781] RDX: 000000000000000f RSI: 00007fb982bf60a0 RDI: 0000000000000004 [ 314.507720][T25781] RBP: 00007fb982bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 314.515723][T25781] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 314.523711][T25781] R13: 0000000000000000 R14: 00007fb984f75fa0 R15: 00007ffd950b5068 [ 314.531707][T25781] [ 314.543744][T25788] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1656'. [ 314.963347][T25936] openvswitch: HfR: Dropping previously announced user features [ 315.021819][T25797] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 315.038570][T25797] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 315.051080][T25797] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 315.067570][T25797] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 315.171370][T26003] FAULT_INJECTION: forcing a failure. [ 315.171370][T26003] name failslab, interval 1, probability 0, space 0, times 0 [ 315.224187][T26003] CPU: 0 UID: 0 PID: 26003 Comm: syz.0.1660 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 315.235029][T26003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 315.245122][T26003] Call Trace: [ 315.248430][T26003] [ 315.251388][T26003] dump_stack_lvl+0x16c/0x1f0 [ 315.256111][T26003] should_fail_ex+0x497/0x5b0 [ 315.260826][T26003] ? fs_reclaim_acquire+0xae/0x150 [ 315.265975][T26003] should_failslab+0xc2/0x120 [ 315.270693][T26003] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 315.276102][T26003] ? ptlock_alloc+0x1f/0x70 [ 315.280645][T26003] ? __pfx_filemap_map_pages+0x10/0x10 [ 315.286136][T26003] ptlock_alloc+0x1f/0x70 [ 315.290500][T26003] pte_alloc_one+0x74/0x390 [ 315.295038][T26003] __do_fault+0x320/0x490 [ 315.299400][T26003] ? __pfx_filemap_map_pages+0x10/0x10 [ 315.304891][T26003] do_pte_missing+0x1a8/0x3e00 [ 315.309705][T26003] __handle_mm_fault+0x103c/0x2a40 [ 315.314865][T26003] ? __pfx___handle_mm_fault+0x10/0x10 [ 315.320359][T26003] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 315.326037][T26003] ? find_vma+0xc0/0x140 [ 315.330317][T26003] ? __pfx_find_vma+0x10/0x10 [ 315.335032][T26003] handle_mm_fault+0x3fa/0xaa0 [ 315.339840][T26003] do_user_addr_fault+0x7a3/0x13f0 [ 315.344989][T26003] exc_page_fault+0x5c/0xc0 [ 315.349523][T26003] asm_exc_page_fault+0x26/0x30 [ 315.354406][T26003] RIP: 0010:rep_movs_alternative+0x33/0x70 [ 315.360255][T26003] Code: 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb [ 315.379911][T26003] RSP: 0018:ffffc90005f0fdc0 EFLAGS: 00050212 [ 315.386019][T26003] RAX: 0000001500000010 RBX: 0000000000000010 RCX: 0000000000000010 [ 315.394020][T26003] RDX: fffff52000be1fd1 RSI: ffffc90005f0fe78 RDI: 0000000000000003 [ 315.402020][T26003] RBP: 0000000000000003 R08: 0000000000000000 R09: fffff52000be1fd0 [ 315.410023][T26003] R10: ffffc90005f0fe87 R11: 0000000000000000 R12: ffffc90005f0fe78 [ 315.418020][T26003] R13: 0000000000000013 R14: 00007ffffffff000 R15: 0000000000000000 [ 315.426033][T26003] _copy_to_user+0xbb/0xd0 [ 315.430501][T26003] copy_ns_info_to_user+0x137/0x1e0 [ 315.435734][T26003] ns_ioctl+0xae3/0xd30 [ 315.439916][T26003] ? __pfx_ns_ioctl+0x10/0x10 [ 315.444627][T26003] ? __fget_files+0x206/0x3a0 [ 315.449343][T26003] ? __pfx_ns_ioctl+0x10/0x10 [ 315.454050][T26003] __x64_sys_ioctl+0x190/0x200 [ 315.458842][T26003] do_syscall_64+0xcd/0x250 [ 315.463382][T26003] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 315.469314][T26003] RIP: 0033:0x7fbbd1985d29 [ 315.473755][T26003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 315.493403][T26003] RSP: 002b:00007fbbd2730038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 315.501849][T26003] RAX: ffffffffffffffda RBX: 00007fbbd1b75fa0 RCX: 00007fbbd1985d29 [ 315.509849][T26003] RDX: 0000000000000003 RSI: 0000000002008b0a RDI: 0000000000000003 [ 315.517843][T26003] RBP: 00007fbbd2730090 R08: 0000000000000000 R09: 0000000000000000 [ 315.525845][T26003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 315.533845][T26003] R13: 0000000000000000 R14: 00007fbbd1b75fa0 R15: 00007fff6a4a8378 [ 315.541866][T26003] [ 315.725126][T26009] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1662'. [ 316.419347][T26236] openvswitch: HfR: Dropping previously announced user features [ 316.636703][ T29] audit: type=1800 audit(4294967438.289:4): pid=26242 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1674" name="lu_gp_id" dev="configfs" ino=30276 res=0 errno=0 [ 316.954957][T26125] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 316.977966][T26125] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 316.985830][T26125] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 316.992070][T26125] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 317.000140][T26251] : Can't lookup blockdev [ 317.367065][T26442] FAULT_INJECTION: forcing a failure. [ 317.367065][T26442] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 317.386505][T26442] CPU: 0 UID: 0 PID: 26442 Comm: syz.1.1684 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 317.397340][T26442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 317.407420][T26442] Call Trace: [ 317.410728][T26442] [ 317.413689][T26442] dump_stack_lvl+0x16c/0x1f0 [ 317.418410][T26442] should_fail_ex+0x497/0x5b0 [ 317.423129][T26442] ? fs_reclaim_acquire+0xae/0x150 [ 317.428283][T26442] should_fail_alloc_page+0xe7/0x130 [ 317.433617][T26442] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 317.439815][T26442] __alloc_pages_noprof+0x190/0x25b0 [ 317.445148][T26442] ? __pfx_mark_lock+0x10/0x10 [ 317.449957][T26442] ? __pfx___lock_acquire+0x10/0x10 [ 317.455190][T26442] ? mark_lock+0xb5/0xc60 [ 317.459573][T26442] ? hlock_class+0x4e/0x130 [ 317.464136][T26442] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 317.469900][T26442] ? find_held_lock+0x2d/0x110 [ 317.474705][T26442] ? hlock_class+0x4e/0x130 [ 317.479247][T26442] ? __lock_acquire+0xcc5/0x3c40 [ 317.484223][T26442] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 317.490154][T26442] ? policy_nodemask+0xea/0x4e0 [ 317.495057][T26442] alloc_pages_mpol_noprof+0x2c9/0x610 [ 317.500579][T26442] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 317.506610][T26442] ? find_held_lock+0x2d/0x110 [ 317.511425][T26442] folio_alloc_mpol_noprof+0x36/0xd0 [ 317.516755][T26442] shmem_alloc_folio+0x135/0x160 [ 317.521739][T26442] shmem_alloc_and_add_folio+0x48b/0xc00 [ 317.527424][T26442] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 317.533362][T26442] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 317.539555][T26442] ? shmem_huge_global_enabled+0x176/0x250 [ 317.545496][T26442] ? shmem_allowable_huge_orders+0xcd/0x3e0 [ 317.551434][T26442] shmem_get_folio_gfp+0x689/0x1530 [ 317.556678][T26442] ? mark_lock+0xb5/0xc60 [ 317.561053][T26442] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 317.566730][T26442] ? __pfx_mark_lock+0x10/0x10 [ 317.571544][T26442] shmem_fault+0x200/0xae0 [ 317.576004][T26442] ? __pfx_shmem_fault+0x10/0x10 [ 317.580978][T26442] ? __pfx_lock_release+0x10/0x10 [ 317.586037][T26442] ? __mod_memcg_lruvec_state+0x53c/0x750 [ 317.591799][T26442] ? __pfx_filemap_map_pages+0x10/0x10 [ 317.597307][T26442] ? mark_held_locks+0x9f/0xe0 [ 317.602121][T26442] ? pte_alloc_one+0x2a3/0x390 [ 317.606932][T26442] ? __pfx_filemap_map_pages+0x10/0x10 [ 317.612440][T26442] __do_fault+0x10a/0x490 [ 317.616810][T26442] ? __pfx_filemap_map_pages+0x10/0x10 [ 317.622301][T26442] do_pte_missing+0x1a8/0x3e00 [ 317.627124][T26442] __handle_mm_fault+0x103c/0x2a40 [ 317.632287][T26442] ? __pfx___handle_mm_fault+0x10/0x10 [ 317.637785][T26442] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 317.643478][T26442] ? find_vma+0xc0/0x140 [ 317.647755][T26442] ? __pfx_find_vma+0x10/0x10 [ 317.652482][T26442] handle_mm_fault+0x3fa/0xaa0 [ 317.657311][T26442] do_user_addr_fault+0x7a3/0x13f0 [ 317.662468][T26442] exc_page_fault+0x5c/0xc0 [ 317.667016][T26442] asm_exc_page_fault+0x26/0x30 [ 317.671912][T26442] RIP: 0010:rep_movs_alternative+0x33/0x70 [ 317.677769][T26442] Code: 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb [ 317.697462][T26442] RSP: 0018:ffffc90003d27dc0 EFLAGS: 00050212 [ 317.703567][T26442] RAX: 0000001600000010 RBX: 0000000000000010 RCX: 0000000000000010 [ 317.711569][T26442] RDX: fffff520007a4fd1 RSI: ffffc90003d27e78 RDI: 0000000000000003 [ 317.719570][T26442] RBP: 0000000000000003 R08: 0000000000000000 R09: fffff520007a4fd0 [ 317.727666][T26442] R10: ffffc90003d27e87 R11: 0000000000000000 R12: ffffc90003d27e78 [ 317.735671][T26442] R13: 0000000000000013 R14: 00007ffffffff000 R15: 0000000000000000 [ 317.743695][T26442] _copy_to_user+0xbb/0xd0 [ 317.748166][T26442] copy_ns_info_to_user+0x137/0x1e0 [ 317.753408][T26442] ns_ioctl+0xae3/0xd30 [ 317.757604][T26442] ? __pfx_ns_ioctl+0x10/0x10 [ 317.762318][T26442] ? __fget_files+0x206/0x3a0 [ 317.767037][T26442] ? __pfx_ns_ioctl+0x10/0x10 [ 317.771750][T26442] __x64_sys_ioctl+0x190/0x200 [ 317.776587][T26442] do_syscall_64+0xcd/0x250 [ 317.781132][T26442] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 317.787070][T26442] RIP: 0033:0x7fb984d85d29 [ 317.791516][T26442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 317.811165][T26442] RSP: 002b:00007fb982bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 317.819617][T26442] RAX: ffffffffffffffda RBX: 00007fb984f75fa0 RCX: 00007fb984d85d29 [ 317.827609][T26442] RDX: 0000000000000003 RSI: 0000000002008b0a RDI: 0000000000000003 [ 317.835616][T26442] RBP: 00007fb982bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 317.843603][T26442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 317.851606][T26442] R13: 0000000000000000 R14: 00007fb984f75fa0 R15: 00007ffd950b5068 [ 317.859603][T26442] [ 317.872172][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.878538][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.133805][T26479] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 318.155176][T26479] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 318.161798][T26479] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 318.179569][T26479] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 318.234824][T26584] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1691'. [ 318.425608][T26692] openvswitch: HfR: Dropping previously announced user features [ 319.207419][T26691] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 319.218536][T26691] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 319.225047][T26691] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 319.234908][T26691] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 319.390026][T27021] FAULT_INJECTION: forcing a failure. [ 319.390026][T27021] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 319.393382][T27019] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1703'. [ 319.418034][T27021] CPU: 0 UID: 0 PID: 27021 Comm: syz.0.1704 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 319.428850][T27021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 319.438920][T27021] Call Trace: [ 319.442227][T27021] [ 319.445187][T27021] dump_stack_lvl+0x16c/0x1f0 [ 319.449913][T27021] should_fail_ex+0x497/0x5b0 [ 319.454646][T27021] _copy_to_user+0x32/0xd0 [ 319.459118][T27021] simple_read_from_buffer+0xd0/0x160 [ 319.464532][T27021] proc_fail_nth_read+0x198/0x270 [ 319.469612][T27021] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 319.475215][T27021] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 319.480812][T27021] vfs_read+0x1df/0xbe0 [ 319.485002][T27021] ? __fget_files+0x1fc/0x3a0 [ 319.489714][T27021] ? __pfx___mutex_lock+0x10/0x10 [ 319.494778][T27021] ? __pfx_vfs_read+0x10/0x10 [ 319.499502][T27021] ? __fget_files+0x206/0x3a0 [ 319.504228][T27021] ksys_read+0x12b/0x250 [ 319.508500][T27021] ? __pfx_ksys_read+0x10/0x10 [ 319.513327][T27021] do_syscall_64+0xcd/0x250 [ 319.517869][T27021] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 319.523796][T27021] RIP: 0033:0x7fbbd198473c [ 319.528241][T27021] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 319.547886][T27021] RSP: 002b:00007fbbd2730030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 319.556336][T27021] RAX: ffffffffffffffda RBX: 00007fbbd1b75fa0 RCX: 00007fbbd198473c [ 319.564342][T27021] RDX: 000000000000000f RSI: 00007fbbd27300a0 RDI: 0000000000000004 [ 319.572436][T27021] RBP: 00007fbbd2730090 R08: 0000000000000000 R09: 0000000000000000 [ 319.580438][T27021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 319.588433][T27021] R13: 0000000000000000 R14: 00007fbbd1b75fa0 R15: 00007fff6a4a8378 [ 319.596449][T27021] [ 319.736998][T27058] openvswitch: HfR: Dropping previously announced user features [ 319.948153][T27131] delete_channel: no stack [ 320.508166][T27428] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1718'. [ 320.523902][ T5837] Bluetooth: hci0: command 0x0c1a tx timeout [ 320.779145][T27460] openvswitch: HfR: Dropping previously announced user features [ 321.250728][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout [ 321.257022][ T5837] Bluetooth: hci2: command 0x0c1a tx timeout [ 321.260303][ T5846] Bluetooth: hci1: command 0x0c1a tx timeout [ 321.708158][T27981] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1729'. [ 321.838705][T27986] openvswitch: HfR: Dropping previously announced user features [ 322.381837][T28202] openvswitch: HfR: Dropping previously announced user features [ 323.166560][T28520] openvswitch: HfR: Dropping previously announced user features [ 323.730600][T28518] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1742'. [ 324.067618][T28745] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1753'. [ 324.210578][T28747] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1754'. [ 325.344139][ T5837] Bluetooth: hci0: ACL packet for unknown connection handle 0 [ 325.685330][T29075] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1764'. [ 326.919660][T29605] openvswitch: HfR: Dropping previously announced user features [ 327.128674][T29608] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1777'. [ 327.328192][T29610] openvswitch: HfR: Dropping previously announced user features [ 328.547796][T29930] netlink: 'syz.3.1788': attribute type 1 has an invalid length. [ 329.311838][T30254] FAULT_INJECTION: forcing a failure. [ 329.311838][T30254] name failslab, interval 1, probability 0, space 0, times 0 [ 329.422636][T30254] CPU: 0 UID: 0 PID: 30254 Comm: syz.1.1794 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 329.433478][T30254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 329.443563][T30254] Call Trace: [ 329.446865][T30254] [ 329.449813][T30254] dump_stack_lvl+0x16c/0x1f0 [ 329.454536][T30254] should_fail_ex+0x497/0x5b0 [ 329.459260][T30254] ? fs_reclaim_acquire+0xae/0x150 [ 329.464413][T30254] should_failslab+0xc2/0x120 [ 329.469126][T30254] __kmalloc_noprof+0xce/0x4f0 [ 329.473936][T30254] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 329.479621][T30254] ? tomoyo_realpath_from_path+0xbf/0x710 [ 329.485393][T30254] tomoyo_realpath_from_path+0xbf/0x710 [ 329.490980][T30254] ? tomoyo_path_number_perm+0x235/0x5b0 [ 329.496673][T30254] tomoyo_path_number_perm+0x248/0x5b0 [ 329.502177][T30254] ? tomoyo_path_number_perm+0x235/0x5b0 [ 329.507859][T30254] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 329.513919][T30254] ? __pfx_lock_release+0x10/0x10 [ 329.518978][T30254] ? trace_lock_acquire+0x14e/0x1f0 [ 329.524221][T30254] ? lock_acquire+0x2f/0xb0 [ 329.528753][T30254] ? __fget_files+0x40/0x3a0 [ 329.533387][T30254] ? __fget_files+0x206/0x3a0 [ 329.538112][T30254] security_file_ioctl+0x9b/0x240 [ 329.543177][T30254] __x64_sys_ioctl+0xb7/0x200 [ 329.547893][T30254] do_syscall_64+0xcd/0x250 [ 329.552437][T30254] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 329.558371][T30254] RIP: 0033:0x7fb984d85d29 [ 329.562816][T30254] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 329.582463][T30254] RSP: 002b:00007fb982bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 329.590923][T30254] RAX: ffffffffffffffda RBX: 00007fb984f75fa0 RCX: 00007fb984d85d29 [ 329.598927][T30254] RDX: 0000000000000003 RSI: 000000000000b704 RDI: 0000000000000003 [ 329.606932][T30254] RBP: 00007fb982bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 329.614934][T30254] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 329.622937][T30254] R13: 0000000000000000 R14: 00007fb984f75fa0 R15: 00007ffd950b5068 [ 329.630953][T30254] [ 329.642091][T30254] ERROR: Out of memory at tomoyo_realpath_from_path. [ 330.419445][T30642] openvswitch: HfR: Dropping previously announced user features [ 331.205715][T30996] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1813'. [ 331.864642][T31011] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 331.883035][T31011] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 331.899728][T31011] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 331.919019][T31011] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 332.021639][T31117] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1820'. [ 332.040325][T31117] ksmbd: Unknown IPC event: 0, ignore. [ 332.436462][T31126] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1823'. [ 332.679590][ T5837] Bluetooth: hci1: ACL packet for unknown connection handle 0 [ 333.533417][T31446] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 333.547930][T31446] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 333.558959][T31446] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 333.565392][T31446] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 334.099652][T31665] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1837'. [ 334.506300][T31770] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1839'. [ 334.538547][T31772] openvswitch: HfR: Dropping previously announced user features [ 334.967771][T31986] openvswitch: netlink: Duplicate key (type 15). [ 335.563709][ T5837] Bluetooth: hci2: command 0x0c1a tx timeout [ 335.563951][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout [ 335.569859][ T5837] Bluetooth: hci0: command 0x0c1a tx timeout [ 335.659997][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout [ 335.892620][T32206] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 335.946018][T32206] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 335.971042][T32206] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 335.985741][T32206] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 336.513919][T32422] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 336.520074][T32422] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 336.541929][T32422] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 336.551133][T32422] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 337.164554][T32733] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1863'. [ 337.210469][T32733] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 337.291790][T32765] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1866'. [ 337.312083][T32765] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1866'. [ 337.472091][T32733] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 338.211325][ T600] kAFS: Invalid Command on /proc/fs/afs/cells file [ 338.444711][ T5837] Bluetooth: hci0: command 0x0c1a tx timeout [ 338.531443][ T5837] Bluetooth: hci1: command 0x0c1a tx timeout [ 338.600326][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout [ 338.610620][ T5837] Bluetooth: hci2: command 0x0c1a tx timeout [ 339.181660][ T941] FAULT_INJECTION: forcing a failure. [ 339.181660][ T941] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 339.244159][ T941] CPU: 0 UID: 0 PID: 941 Comm: syz.1.1886 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 339.254829][ T941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 339.264929][ T941] Call Trace: [ 339.268236][ T941] [ 339.271195][ T941] dump_stack_lvl+0x16c/0x1f0 [ 339.275920][ T941] should_fail_ex+0x497/0x5b0 [ 339.280643][ T941] ? fs_reclaim_acquire+0xae/0x150 [ 339.285801][ T941] should_fail_alloc_page+0xe7/0x130 [ 339.291141][ T941] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 339.297341][ T941] ? hlock_class+0x4e/0x130 [ 339.301898][ T941] __alloc_pages_noprof+0x190/0x25b0 [ 339.307240][ T941] ? hlock_class+0x4e/0x130 [ 339.311871][ T941] ? mark_lock+0xb5/0xc60 [ 339.316277][ T941] ? __pfx_mark_lock+0x10/0x10 [ 339.321094][ T941] ? __pfx_register_lock_class+0x10/0x10 [ 339.326775][ T941] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 339.332549][ T941] ? hlock_class+0x4e/0x130 [ 339.337098][ T941] ? hlock_class+0x4e/0x130 [ 339.341647][ T941] ? mark_lock+0xb5/0xc60 [ 339.346031][ T941] ? hlock_class+0x4e/0x130 [ 339.350580][ T941] ? __pfx_mark_lock+0x10/0x10 [ 339.355397][ T941] ? hlock_class+0x4e/0x130 [ 339.359941][ T941] ? __lock_acquire+0xcc5/0x3c40 [ 339.364913][ T941] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 339.370939][ T941] ? policy_nodemask+0xea/0x4e0 [ 339.375840][ T941] alloc_pages_mpol_noprof+0x2c9/0x610 [ 339.381360][ T941] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 339.387393][ T941] ? __lock_acquire+0xcc5/0x3c40 [ 339.392393][ T941] folio_alloc_mpol_noprof+0x36/0xd0 [ 339.397732][ T941] vma_alloc_folio_noprof+0xee/0x1b0 [ 339.403062][ T941] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 339.408994][ T941] ? find_held_lock+0x2d/0x110 [ 339.413813][ T941] do_pte_missing+0x2017/0x3e00 [ 339.418772][ T941] __handle_mm_fault+0x103c/0x2a40 [ 339.423954][ T941] ? __pfx___handle_mm_fault+0x10/0x10 [ 339.429462][ T941] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 339.435190][ T941] ? find_vma+0xc0/0x140 [ 339.439477][ T941] ? __pfx_find_vma+0x10/0x10 [ 339.444222][ T941] handle_mm_fault+0x3fa/0xaa0 [ 339.449045][ T941] do_user_addr_fault+0x7a3/0x13f0 [ 339.454206][ T941] exc_page_fault+0x5c/0xc0 [ 339.458752][ T941] asm_exc_page_fault+0x26/0x30 [ 339.463642][ T941] RIP: 0010:rep_movs_alternative+0x15/0x70 [ 339.469500][ T941] Code: cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 83 f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 [ 339.489147][ T941] RSP: 0018:ffffc9000d8b7af8 EFLAGS: 00050202 [ 339.495257][ T941] RAX: 0000000000000031 RBX: 0000000020000240 RCX: 0000000000000004 [ 339.503262][ T941] RDX: ffffed10067c1c01 RSI: ffff888033e0e000 RDI: 0000000020000240 [ 339.511278][ T941] RBP: ffffc9000d8b7da0 R08: 0000000000000000 R09: ffffed10067c1c00 [ 339.519291][ T941] R10: ffff888033e0e003 R11: 0000000000000002 R12: 0000000020000244 [ 339.527298][ T941] R13: 00007ffffffff000 R14: ffff888033e0e000 R15: 0000000000000004 [ 339.535338][ T941] _copy_to_iter+0x384/0x1400 [ 339.540077][ T941] ? trace_lock_acquire+0x14e/0x1f0 [ 339.545332][ T941] ? __pfx_lock_release+0x10/0x10 [ 339.550401][ T941] ? __pfx__copy_to_iter+0x10/0x10 [ 339.555561][ T941] ? __virt_addr_valid+0x1a4/0x590 [ 339.560728][ T941] ? __virt_addr_valid+0x5e/0x590 [ 339.565802][ T941] ? __phys_addr_symbol+0x30/0x80 [ 339.570880][ T941] ? __check_object_size+0x488/0x710 [ 339.576219][ T941] seq_read_iter+0xd00/0x12b0 [ 339.580954][ T941] kernfs_fop_read_iter+0x414/0x580 [ 339.586203][ T941] ? rw_verify_area+0xd0/0x700 [ 339.591014][ T941] vfs_read+0x87f/0xbe0 [ 339.595220][ T941] ? __pfx_vfs_read+0x10/0x10 [ 339.599961][ T941] ksys_read+0x12b/0x250 [ 339.604249][ T941] ? __pfx_ksys_read+0x10/0x10 [ 339.609064][ T941] do_syscall_64+0xcd/0x250 [ 339.613616][ T941] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 339.619559][ T941] RIP: 0033:0x7fb984d85d29 [ 339.624014][ T941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 339.643660][ T941] RSP: 002b:00007fb982bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 339.652121][ T941] RAX: ffffffffffffffda RBX: 00007fb984f75fa0 RCX: 00007fb984d85d29 [ 339.660188][ T941] RDX: 00000000000000bb RSI: 0000000020000240 RDI: 0000000000000003 [ 339.668198][ T941] RBP: 00007fb982bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 339.676210][ T941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 339.684219][ T941] R13: 0000000000000000 R14: 00007fb984f75fa0 R15: 00007ffd950b5068 [ 339.692246][ T941] syzkaller syzkaller login: [ 341.051676][ T1294] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 341.095384][ T1294] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 341.116239][ T1294] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 341.131301][ T1294] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 341.536691][ T1517] openvswitch: HfR: Dropping previously announced user features [ 341.841784][ T1558] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 341.848789][ T1558] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 341.885276][ T1523] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 341.893553][ T1523] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 341.917541][ T1523] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 341.951593][ T1523] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 342.356803][ T1662] cgroup: fork rejected by pids controller in /syz2 [ 343.059493][ T1952] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 343.083713][ T1952] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 343.094925][ T1952] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 343.108328][ T1952] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 343.460535][ T2162] openvswitch: HfR: Dropping previously announced user features [ 343.613513][ T2163] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 343.630550][ T2163] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 343.673004][ T2163] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 343.679319][ T2163] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 343.953891][ T2277] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 343.963505][ T2277] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 343.978352][ T2277] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 343.985934][ T2277] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 344.753960][ T2530] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1935'. [ 344.770589][ T2530] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1935'. [ 344.884332][ T2539] openvswitch: HfR: Dropping previously announced user features [ 344.995341][ T2534] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 345.001837][ T2534] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 345.013651][ T2534] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 345.026383][ T2534] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 345.777333][ T2934] openvswitch: HfR: Dropping previously announced user features [ 346.210008][ T3054] netlink: 'syz.0.1954': attribute type 1 has an invalid length. [ 346.628670][ T2938] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 346.651315][ T2938] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 346.657441][ T2938] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 346.665740][ T2938] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 347.596841][ T3695] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1964'. [ 347.892395][ T5837] Bluetooth: hci0: command 0x0c1a tx timeout [ 348.634798][ T4124] Invalid ELF header magic: != ELF [ 348.644824][ T4125] openvswitch: HfR: Dropping previously announced user features [ 348.680354][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout [ 348.686630][ T5846] Bluetooth: hci2: command 0x0c1a tx timeout [ 348.686651][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout [ 348.724710][ T3905] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 348.771425][ T3905] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 348.791916][ T3905] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 348.798190][ T3905] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 349.074722][ T4137] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1980'. [ 349.118794][ T4132] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1978'. [ 349.178349][ T4145] openvswitch: HfR: Dropping previously announced user features [ 349.459387][ T4241] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 349.473057][ T4241] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 349.501933][ T4241] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 349.509121][ T4241] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 349.667929][ T4451] openvswitch: HfR: Dropping previously announced user features [ 349.716751][ T4451] random: crng reseeded on system resumption [ 350.830423][ T4877] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1996'. [ 350.935251][ T4877] bond0: (slave bond_slave_0): Releasing backup interface [ 351.286736][ T5107] openvswitch: HfR: Dropping previously announced user features [ 351.344840][ T5107] random: crng reseeded on system resumption [ 351.400324][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout [ 351.480523][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout [ 351.560374][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout [ 351.566479][ T5837] Bluetooth: hci2: command 0x0c1a tx timeout [ 351.964089][ T5322] netlink: 'syz.3.2010': attribute type 1 has an invalid length. [ 352.099869][ T5324] openvswitch: HfR: Dropping previously announced user features [ 352.422779][ T5440] FAULT_INJECTION: forcing a failure. [ 352.422779][ T5440] name failslab, interval 1, probability 0, space 0, times 0 [ 352.470081][ T5440] CPU: 1 UID: 0 PID: 5440 Comm: syz.0.2014 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 352.480835][ T5440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 352.490919][ T5440] Call Trace: [ 352.494227][ T5440] [ 352.497184][ T5440] dump_stack_lvl+0x16c/0x1f0 [ 352.501904][ T5440] should_fail_ex+0x497/0x5b0 [ 352.503651][ T5443] openvswitch: HfR: Dropping previously announced user features [ 352.506616][ T5440] ? fs_reclaim_acquire+0xae/0x150 [ 352.506654][ T5440] should_failslab+0xc2/0x120 [ 352.524086][ T5440] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 352.529939][ T5440] ? __alloc_skb+0x2b3/0x380 [ 352.534579][ T5440] __alloc_skb+0x2b3/0x380 [ 352.539033][ T5440] ? __pfx___alloc_skb+0x10/0x10 [ 352.544017][ T5440] ? lock_acquire+0x2f/0xb0 [ 352.548569][ T5440] netlink_alloc_large_skb+0x69/0x130 [ 352.553978][ T5440] netlink_sendmsg+0x689/0xd70 [ 352.558785][ T5440] ? __pfx_netlink_sendmsg+0x10/0x10 [ 352.564121][ T5440] ____sys_sendmsg+0x9ae/0xb40 [ 352.568923][ T5440] ? copy_msghdr_from_user+0x10b/0x160 [ 352.574427][ T5440] ? __pfx_____sys_sendmsg+0x10/0x10 [ 352.579752][ T5440] ___sys_sendmsg+0x135/0x1e0 [ 352.584456][ T5440] ? __pfx____sys_sendmsg+0x10/0x10 [ 352.589687][ T5440] ? __pfx_lock_release+0x10/0x10 [ 352.594724][ T5440] ? trace_lock_acquire+0x14e/0x1f0 [ 352.599942][ T5440] ? __fget_files+0x206/0x3a0 [ 352.604631][ T5440] __sys_sendmsg+0x16e/0x220 [ 352.609235][ T5440] ? __pfx___sys_sendmsg+0x10/0x10 [ 352.614376][ T5440] do_syscall_64+0xcd/0x250 [ 352.618893][ T5440] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 352.624796][ T5440] RIP: 0033:0x7fbbd1985d29 [ 352.629216][ T5440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 352.648838][ T5440] RSP: 002b:00007fbbd2730038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 352.657282][ T5440] RAX: ffffffffffffffda RBX: 00007fbbd1b75fa0 RCX: 00007fbbd1985d29 [ 352.665267][ T5440] RDX: 0000000000000000 RSI: 00000000200048c0 RDI: 0000000000000004 [ 352.673251][ T5440] RBP: 00007fbbd2730090 R08: 0000000000000000 R09: 0000000000000000 [ 352.681301][ T5440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 352.689278][ T5440] R13: 0000000000000000 R14: 00007fbbd1b75fa0 R15: 00007fff6a4a8378 [ 352.697272][ T5440] [ 353.215995][ T5672] netlink: 'syz.2.2023': attribute type 1 has an invalid length. [ 353.325018][ T5676] openvswitch: HfR: Dropping previously announced user features [ 353.816002][ T5792] openvswitch: HfR: Dropping previously announced user features [ 353.990715][ T5801] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2034'. [ 354.045378][ T5803] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2037'. [ 354.071848][ T5803] veth1_macvtap: left promiscuous mode [ 354.078003][ T5803] macsec0: entered allmulticast mode [ 354.200861][ T6022] Invalid ELF header magic: != ELF [ 354.303866][ T6079] Invalid ELF header magic: != ELF [ 354.434192][ T6084] FAULT_INJECTION: forcing a failure. [ 354.434192][ T6084] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 354.447908][ T6084] CPU: 0 UID: 0 PID: 6084 Comm: syz.3.2043 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 354.458637][ T6084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 354.468726][ T6084] Call Trace: [ 354.472028][ T6084] [ 354.474987][ T6084] dump_stack_lvl+0x16c/0x1f0 [ 354.479710][ T6084] should_fail_ex+0x497/0x5b0 [ 354.484430][ T6084] _copy_from_iter+0x29b/0x1400 [ 354.489330][ T6084] ? trace_lock_acquire+0x14e/0x1f0 [ 354.494572][ T6084] ? __alloc_skb+0x200/0x380 [ 354.499201][ T6084] ? __pfx__copy_from_iter+0x10/0x10 [ 354.504527][ T6084] ? __virt_addr_valid+0x1a4/0x590 [ 354.509684][ T6084] ? __virt_addr_valid+0x5e/0x590 [ 354.514745][ T6084] ? __phys_addr_symbol+0x30/0x80 [ 354.519814][ T6084] ? __check_object_size+0x488/0x710 [ 354.525152][ T6084] netlink_sendmsg+0x813/0xd70 [ 354.529958][ T6084] ? __pfx_netlink_sendmsg+0x10/0x10 [ 354.535298][ T6084] ____sys_sendmsg+0x9ae/0xb40 [ 354.540112][ T6084] ? copy_msghdr_from_user+0x10b/0x160 [ 354.545614][ T6084] ? __pfx_____sys_sendmsg+0x10/0x10 [ 354.550955][ T6084] ___sys_sendmsg+0x135/0x1e0 [ 354.555685][ T6084] ? __pfx____sys_sendmsg+0x10/0x10 [ 354.560943][ T6084] ? __pfx_lock_release+0x10/0x10 [ 354.566003][ T6084] ? trace_lock_acquire+0x14e/0x1f0 [ 354.571251][ T6084] ? __fget_files+0x206/0x3a0 [ 354.575951][ T6084] __sys_sendmsg+0x16e/0x220 [ 354.580558][ T6084] ? __pfx___sys_sendmsg+0x10/0x10 [ 354.585694][ T6084] do_syscall_64+0xcd/0x250 [ 354.590214][ T6084] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 354.596129][ T6084] RIP: 0033:0x7fbf6e585d29 [ 354.600547][ T6084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 354.620167][ T6084] RSP: 002b:00007fbf6c3f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 354.628596][ T6084] RAX: ffffffffffffffda RBX: 00007fbf6e775fa0 RCX: 00007fbf6e585d29 [ 354.636571][ T6084] RDX: 0000000000000000 RSI: 00000000200048c0 RDI: 0000000000000004 [ 354.644546][ T6084] RBP: 00007fbf6c3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 354.652519][ T6084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 354.660494][ T6084] R13: 0000000000000000 R14: 00007fbf6e775fa0 R15: 00007ffebc508778 [ 354.668491][ T6084] [ 355.669773][ T6092] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 355.679009][ T6092] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 355.695824][ T6092] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 355.715519][ T6092] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 355.804769][ T6672] netlink: 'syz.0.2054': attribute type 1 has an invalid length. [ 356.930718][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout [ 357.348319][ T7150] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 357.360785][ T7150] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 357.368248][ T7150] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 357.383155][ T7150] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 357.702324][ T7370] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 357.713388][ T7370] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 357.721975][ T7370] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 357.728696][ T7370] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 358.121722][ T7691] ceph: Failed to parse sending metrics switch value 'J' [ 359.514941][ T8028] openvswitch: HfR: Dropping previously announced user features [ 359.724184][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout [ 359.730516][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout [ 359.806983][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout [ 359.807005][ T5840] Bluetooth: hci2: command 0x0c1a tx timeout [ 364.828220][ T9247] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2129'. [ 366.406236][ T9493] ubi0: attaching mtd0 [ 366.418782][ T9493] ubi0: scanning is finished [ 366.425461][ T9493] ubi0: empty MTD device detected [ 366.431275][ T9493] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 366.606212][ T9493] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 367.148175][ T9809] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2147'. [ 367.690575][T10029] openvswitch: HfR: Dropping previously announced user features [ 368.626473][T10459] openvswitch: HfR: Dropping previously announced user features [ 369.416431][ T5837] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 369.426270][ T5837] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 369.435168][ T5837] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 369.444244][ T5837] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 369.453460][ T5837] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 369.460870][ T5837] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 369.577258][T10569] openvswitch: HfR: Dropping previously announced user features [ 369.739218][T10566] chnl_net:caif_netlink_parms(): no params data found [ 370.135910][T10566] bridge0: port 1(bridge_slave_0) entered blocking state [ 370.152902][T10566] bridge0: port 1(bridge_slave_0) entered disabled state [ 370.172069][T10566] bridge_slave_0: entered allmulticast mode [ 370.194514][T10566] bridge_slave_0: entered promiscuous mode [ 370.218690][T10566] bridge0: port 2(bridge_slave_1) entered blocking state [ 370.227122][T10592] openvswitch: HfR: Dropping previously announced user features [ 370.235627][T10566] bridge0: port 2(bridge_slave_1) entered disabled state [ 370.255412][T10566] bridge_slave_1: entered allmulticast mode [ 370.271390][T10566] bridge_slave_1: entered promiscuous mode [ 370.425448][T10566] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 370.464797][T10566] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 370.547321][T10706] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2176'. [ 370.705775][T10566] team0: Port device team_slave_0 added [ 370.740059][T10809] openvswitch: HfR: Dropping previously announced user features [ 370.741495][T10566] team0: Port device team_slave_1 added [ 370.827235][T10566] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 370.841434][T10566] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 370.929793][T10566] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 370.962797][T10566] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 370.969803][T10566] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 370.998554][T10566] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 371.102638][T10566] hsr_slave_0: entered promiscuous mode [ 371.119926][T10566] hsr_slave_1: entered promiscuous mode [ 371.136493][T10566] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 371.150412][T10566] Cannot create hsr debugfs directory [ 371.560479][ T5837] Bluetooth: hci4: command tx timeout [ 371.804864][T10566] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 371.843042][T10926] openvswitch: HfR: Dropping previously announced user features [ 372.003483][T10566] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 372.119436][T10566] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 372.283169][T10566] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 372.568204][T10566] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 372.594233][T10566] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 372.618717][T10566] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 372.686168][T10566] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 372.905325][T10566] 8021q: adding VLAN 0 to HW filter on device bond0 [ 372.983579][T10566] 8021q: adding VLAN 0 to HW filter on device team0 [ 373.029775][ T7540] bridge0: port 1(bridge_slave_0) entered blocking state [ 373.036962][ T7540] bridge0: port 1(bridge_slave_0) entered forwarding state [ 373.082892][ T7540] bridge0: port 2(bridge_slave_1) entered blocking state [ 373.090040][ T7540] bridge0: port 2(bridge_slave_1) entered forwarding state [ 373.546299][T10566] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 373.640955][ T5837] Bluetooth: hci4: command tx timeout [ 373.719736][T10566] veth0_vlan: entered promiscuous mode [ 373.734540][T10566] veth1_vlan: entered promiscuous mode [ 373.827181][T10566] veth0_macvtap: entered promiscuous mode [ 373.863010][T10566] veth1_macvtap: entered promiscuous mode [ 373.897961][T10566] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 373.919366][T10566] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 373.929342][T10566] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 373.939921][T10566] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 373.950287][T10566] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 373.961675][T10566] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 373.974056][T10566] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 373.983709][T10566] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 373.994256][T10566] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 374.005086][T10566] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 374.082673][T10566] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 374.091839][T10566] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 374.100884][T11477] openvswitch: HfR: Dropping previously announced user features [ 374.128835][T10566] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 374.155680][T10566] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 374.365703][ T7528] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 374.385518][ T7528] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 374.444977][ T1083] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 374.459678][ T1083] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 375.388889][ T5840] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 375.405323][ T5840] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 375.414168][ T5840] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 375.613101][ T5840] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 375.621200][ T5840] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 375.628580][ T5840] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 375.730571][ T5837] Bluetooth: hci4: command tx timeout [ 376.272404][T11603] chnl_net:caif_netlink_parms(): no params data found [ 376.570463][T11612] ================================================================== [ 376.578586][T11612] BUG: KASAN: slab-use-after-free in force_devcd_write+0x31f/0x350 [ 376.586518][T11612] Read of size 8 at addr ffff888028afa800 by task syz.0.2206/11612 [ 376.594445][T11612] [ 376.596777][T11612] CPU: 0 UID: 0 PID: 11612 Comm: syz.0.2206 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 376.607564][T11612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 376.617645][T11612] Call Trace: [ 376.620928][T11612] [ 376.623861][T11612] dump_stack_lvl+0x116/0x1f0 [ 376.628557][T11612] print_report+0xc3/0x620 [ 376.633017][T11612] ? __virt_addr_valid+0x5e/0x590 [ 376.638054][T11612] ? __phys_addr+0xc6/0x150 [ 376.642567][T11612] kasan_report+0xd9/0x110 [ 376.646999][T11612] ? force_devcd_write+0x31f/0x350 [ 376.652134][T11612] ? force_devcd_write+0x31f/0x350 [ 376.657279][T11612] force_devcd_write+0x31f/0x350 [ 376.662236][T11612] ? __pfx_force_devcd_write+0x10/0x10 [ 376.667700][T11612] ? debugfs_file_get+0x21c/0x5c0 [ 376.672740][T11612] ? __pfx_debugfs_file_get+0x10/0x10 [ 376.678120][T11612] ? rcu_is_watching+0x12/0xc0 [ 376.682898][T11612] ? trace_lock_acquire+0x14e/0x1f0 [ 376.688116][T11612] full_proxy_write+0xfb/0x1b0 [ 376.692893][T11612] ? __pfx_full_proxy_write+0x10/0x10 [ 376.698273][T11612] vfs_write+0x24c/0x1150 [ 376.702612][T11612] ? __fget_files+0x1fc/0x3a0 [ 376.707299][T11612] ? __pfx___mutex_lock+0x10/0x10 [ 376.712346][T11612] ? __pfx_vfs_write+0x10/0x10 [ 376.717126][T11612] ? __fget_files+0x206/0x3a0 [ 376.721816][T11612] ksys_write+0x12b/0x250 [ 376.726158][T11612] ? __pfx_ksys_write+0x10/0x10 [ 376.731020][T11612] do_syscall_64+0xcd/0x250 [ 376.735537][T11612] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 376.741444][T11612] RIP: 0033:0x7fdb03985d29 [ 376.745862][T11612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 376.765480][T11612] RSP: 002b:00007fdb0480f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 376.773920][T11612] RAX: ffffffffffffffda RBX: 00007fdb03b75fa0 RCX: 00007fdb03985d29 [ 376.781903][T11612] RDX: 000000000000000e RSI: 0000000000000000 RDI: 0000000000000008 [ 376.789876][T11612] RBP: 00007fdb03a01aa8 R08: 0000000000000000 R09: 0000000000000000 [ 376.797852][T11612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 376.805850][T11612] R13: 0000000000000000 R14: 00007fdb03b75fa0 R15: 00007ffdca2c2e08 [ 376.813836][T11612] [ 376.816853][T11612] [ 376.819169][T11612] Allocated by task 5832: [ 376.823492][T11612] kasan_save_stack+0x33/0x60 [ 376.828178][T11612] kasan_save_track+0x14/0x30 [ 376.832864][T11612] __kasan_kmalloc+0xaa/0xb0 [ 376.837456][T11612] vhci_open+0x4c/0x430 [ 376.841613][T11612] misc_open+0x35a/0x420 [ 376.845857][T11612] chrdev_open+0x237/0x6a0 [ 376.850277][T11612] do_dentry_open+0xf59/0x1ea0 [ 376.855044][T11612] vfs_open+0x82/0x3f0 [ 376.859121][T11612] path_openat+0x1e6a/0x2d60 [ 376.863713][T11612] do_filp_open+0x20c/0x470 [ 376.868225][T11612] do_sys_openat2+0x17a/0x1e0 [ 376.872914][T11612] __x64_sys_openat+0x175/0x210 [ 376.877769][T11612] do_syscall_64+0xcd/0x250 [ 376.882281][T11612] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 376.888178][T11612] [ 376.890496][T11612] Freed by task 8183: [ 376.894466][T11612] kasan_save_stack+0x33/0x60 [ 376.899150][T11612] kasan_save_track+0x14/0x30 [ 376.903850][T11612] kasan_save_free_info+0x3b/0x60 [ 376.908890][T11612] __kasan_slab_free+0x51/0x70 [ 376.913673][T11612] kfree+0x14f/0x4b0 [ 376.917601][T11612] vhci_release+0xbb/0xf0 [ 376.921937][T11612] __fput+0x3f8/0xb60 [ 376.925929][T11612] task_work_run+0x14e/0x250 [ 376.930529][T11612] do_exit+0xad8/0x2d70 [ 376.934694][T11612] do_group_exit+0xd3/0x2a0 [ 376.939222][T11612] get_signal+0x2576/0x2610 [ 376.943729][T11612] arch_do_signal_or_restart+0x90/0x7e0 [ 376.949281][T11612] syscall_exit_to_user_mode+0x150/0x2a0 [ 376.954921][T11612] do_syscall_64+0xda/0x250 [ 376.959427][T11612] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 376.965326][T11612] [ 376.967644][T11612] The buggy address belongs to the object at ffff888028afa800 [ 376.967644][T11612] which belongs to the cache kmalloc-1k of size 1024 [ 376.981694][T11612] The buggy address is located 0 bytes inside of [ 376.981694][T11612] freed 1024-byte region [ffff888028afa800, ffff888028afac00) [ 376.995409][T11612] [ 376.997728][T11612] The buggy address belongs to the physical page: [ 377.004144][T11612] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x28af8 [ 377.012905][T11612] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 377.021404][T11612] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 377.028949][T11612] page_type: f5(slab) [ 377.032935][T11612] raw: 00fff00000000040 ffff88801ac41dc0 ffffea000114b800 dead000000000002 [ 377.041520][T11612] raw: 0000000000000000 0000000000100010 00000001f5000000 0000000000000000 [ 377.050106][T11612] head: 00fff00000000040 ffff88801ac41dc0 ffffea000114b800 dead000000000002 [ 377.058775][T11612] head: 0000000000000000 0000000000100010 00000001f5000000 0000000000000000 [ 377.067448][T11612] head: 00fff00000000003 ffffea0000a2be01 ffffffffffffffff 0000000000000000 [ 377.076120][T11612] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000 [ 377.084787][T11612] page dumped because: kasan: bad access detected [ 377.091203][T11612] page_owner tracks the page as allocated [ 377.096911][T11612] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x252800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP|__GFP_THISNODE), pid 35, tgid 35 (kworker/u8:2), ts 10462369859, free_ts 0 [ 377.115236][T11612] post_alloc_hook+0x2d1/0x350 [ 377.120012][T11612] get_page_from_freelist+0xfce/0x2f80 [ 377.125486][T11612] __alloc_pages_noprof+0x223/0x25b0 [ 377.130779][T11612] new_slab+0xca/0x410 [ 377.134855][T11612] ___slab_alloc+0xce2/0x1650 [ 377.139533][T11612] __slab_alloc.constprop.0+0x56/0xb0 [ 377.144905][T11612] __kmalloc_cache_node_noprof+0xfb/0x3f0 [ 377.150628][T11612] blk_mq_alloc_and_init_hctx+0x639/0x11b0 [ 377.156438][T11612] blk_mq_realloc_hw_ctxs+0x8e0/0xbe0 [ 377.161818][T11612] blk_mq_init_allocated_queue+0x39e/0x11f0 [ 377.167720][T11612] blk_mq_alloc_queue+0x1ef/0x2e0 [ 377.172744][T11612] scsi_alloc_sdev+0x890/0xd80 [ 377.177509][T11612] scsi_probe_and_add_lun+0x789/0xda0 [ 377.182883][T11612] __scsi_scan_target+0x1ea/0x580 [ 377.187907][T11612] scsi_scan_channel+0x149/0x1e0 [ 377.192851][T11612] scsi_scan_host_selected+0x302/0x400 [ 377.198317][T11612] page_owner free stack trace missing [ 377.203677][T11612] [ 377.205995][T11612] Memory state around the buggy address: [ 377.211621][T11612] ffff888028afa700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 377.219681][T11612] ffff888028afa780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 377.227751][T11612] >ffff888028afa800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 377.235812][T11612] ^ [ 377.239881][T11612] ffff888028afa880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 377.248466][T11612] ffff888028afa900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 377.256524][T11612] ================================================================== [ 377.332546][T11612] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 377.339804][T11612] CPU: 1 UID: 0 PID: 11612 Comm: syz.0.2206 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 [ 377.350596][T11612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 377.360683][T11612] Call Trace: [ 377.363975][T11612] [ 377.366924][T11612] dump_stack_lvl+0x3d/0x1f0 [ 377.371540][T11612] panic+0x71d/0x800 [ 377.375453][T11612] ? __pfx_panic+0x10/0x10 [ 377.379898][T11612] ? preempt_schedule_thunk+0x1a/0x30 [ 377.385291][T11612] ? preempt_schedule_common+0x44/0xc0 [ 377.390780][T11612] check_panic_on_warn+0xab/0xb0 [ 377.395757][T11612] end_report+0x117/0x180 [ 377.400115][T11612] kasan_report+0xe9/0x110 [ 377.404551][T11612] ? force_devcd_write+0x31f/0x350 [ 377.409669][T11612] ? force_devcd_write+0x31f/0x350 [ 377.414785][T11612] force_devcd_write+0x31f/0x350 [ 377.419728][T11612] ? __pfx_force_devcd_write+0x10/0x10 [ 377.425193][T11612] ? debugfs_file_get+0x21c/0x5c0 [ 377.430229][T11612] ? __pfx_debugfs_file_get+0x10/0x10 [ 377.435628][T11612] ? rcu_is_watching+0x12/0xc0 [ 377.440402][T11612] ? trace_lock_acquire+0x14e/0x1f0 [ 377.445615][T11612] full_proxy_write+0xfb/0x1b0 [ 377.450387][T11612] ? __pfx_full_proxy_write+0x10/0x10 [ 377.455766][T11612] vfs_write+0x24c/0x1150 [ 377.460103][T11612] ? __fget_files+0x1fc/0x3a0 [ 377.464789][T11612] ? __pfx___mutex_lock+0x10/0x10 [ 377.469825][T11612] ? __pfx_vfs_write+0x10/0x10 [ 377.474596][T11612] ? __fget_files+0x206/0x3a0 [ 377.479280][T11612] ksys_write+0x12b/0x250 [ 377.483614][T11612] ? __pfx_ksys_write+0x10/0x10 [ 377.488475][T11612] do_syscall_64+0xcd/0x250 [ 377.492989][T11612] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 377.498894][T11612] RIP: 0033:0x7fdb03985d29 [ 377.503308][T11612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 377.522923][T11612] RSP: 002b:00007fdb0480f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 377.531341][T11612] RAX: ffffffffffffffda RBX: 00007fdb03b75fa0 RCX: 00007fdb03985d29 [ 377.539314][T11612] RDX: 000000000000000e RSI: 0000000000000000 RDI: 0000000000000008 [ 377.547286][T11612] RBP: 00007fdb03a01aa8 R08: 0000000000000000 R09: 0000000000000000 [ 377.555255][T11612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 377.563225][T11612] R13: 0000000000000000 R14: 00007fdb03b75fa0 R15: 00007ffdca2c2e08 [ 377.571203][T11612] [ 377.574479][T11612] Kernel Offset: disabled [ 377.578804][T11612] Rebooting in 86400 seconds..