last executing test programs: 10.305432482s ago: executing program 2 (id=826): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x40, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) rseq$auto(0x0, 0xfffffff4, 0x0, 0x5) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$auto_VHOST_SET_BACKEND_FEATURES(r1, 0x4008af25, &(0x7f00000002c0)=0x5) mmap$auto(0x7fffffffffffffff, 0xa00006, 0x2, 0x100000000040eb1, r1, 0x300000000000) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x62040, 0x0) r2 = openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) rseq$auto(&(0x7f0000000580)={0x5, 0x85, 0x3, 0x1, 0x7, 0x6, "551e7285968d8e86bd4794a0e875ee9f7b35db28d0a7e72b7a19039c336389cb57a05ba0582cc612c6c0be4beb4cc54d8337d40c93638ba34c4a0435c32a206e808194584d8c359d418662d18943a5e3c6234e712a096205457b56f0a1e5d4d19835696295a54f38117d9d751e23b5fb61daa5a6b2c75148106dc167a20061e3fe55cc53ffadf62b0945da4b27515a0102a8d2d002a842362b4744b8972a5e11e8a6aab89c7b85947f3901d696d459641aa7e6b89b73387ec5fa2d2af6c992213d82c5774c4bcd4187585bcf652af094e988e75002e01f607abf5e25ae0f5548fd13175b681fc059c1f9160aef893bae78cf6cf62c30fa3f0c5c60cbe383a9c0cc1289519b0c7cff81cc3b4fec739fad19c662b0f98d607b61d825d10e2dd3b27b0f7a6b1adc5a452f344c39da5f086ea7c5d99674ca69c4f5635776e67c151bad72f906cd65231da3a55d6056e23b00686723714fabd752f3e2c86dafdee9d379230c0abeabfde9cf88cae099f3ccc76ea7e64a3734ced5ffe749a8012db53ad4d6a5e347bdd83bb409c1bdb762f4aba145df74833d73ccd583797d4fb4ed3e0c7c29d502aacaef02e114d9e60ca6b0bcb28f825f5d49e94ccd2f830933c39a3ba3782505453e3de872ad8da84a6a22aaa62970428bb9a95d1817dbeeded1c53c5d508dea6cc53d80153b05f954c263278bb9c8bc02f3b1805dd9299dc8b97ebff0165d615ba7bf5ce8c490f4dd273642a18267b0a61a594cb1d608f3dffb292991ea32bb647a6f9b951f283e118dc73b45843b5aa883410e402e3bec9ba889ec237462042cedaed761cca0c3b7058d3ffc276c9a75e18b79804f4e21650d911edbedb9fedd31959a8783b1e39d7d6408554bddb2a5d67703d225fe4422bf2367ca483e77fe479495be3235f4c77b3872a9e33946d2602486b83e84e7d8d1742d369e2d00b9dbb552385502c0f597b3615bed54de65af106b58d2b6bebbdd3fe625152527af965b67e9424da7be2e2574e1492aed568d4faaa9da508e0a2e687876fa291e38b7c3ef38643e2c49e0d46d0f2d53352da2f184c4ced2305865ab0ad1435644419773ea82336ffdf62dd325a6a8b2d199d96dba8a13bb5a86ff65b80818ceb37ee8a2b2a8813b33e474e5b110e1ed13dbc4f52efabbce38935a8ada53a0ed5a1a01453a254a1dc528492159591aa192ff6cfa0b372caf236c78d1a0c94dc37916746358b4cf3cc1c0132657818ce6465e58936dbf5991dfb74ff97382c066ba0ceb06ac4f0c005e4c9166e94161bc08e1c23df7ed3419b10ae229aa6bafb19e6af003c9e319956723d839dc50a7edd8d80bce971ba504e0aac811d76e65acffdc4f7e9836396ba98b824be6cc704c59f5849642b191437a5cf902fc1ac491e8c59241586c6791b282b5cfae57eb7e6792048c4769b5b3f21987ec5097e530fd001da5d2999db4ded708225e9a53a2b48d2be3401a063da3c19168769eccaef710d7c2e06818bb05c4a9aa0ce2785a5a6d2846bac9836f1905a9b042029dcc59d918450b6affb522fbf78116941c5cef4ecb82a2134ee8e67ea6091170b67bfc3abec9e2cfc8208d4ba3bb732230fe6a9470c1152ebdc31bbce93cb742b4484bc1cef4298ce897a36c7e8b3ef8bd1b0e3d4dfa46da8bf89b06d67d8a5da465e8f68f999ec38ef8d1b7972125d2d8492680f6698419313afb74b5f715c90aa5ca0a6ea5561acd89a25d0fd066234b1752d6535251be347d8e69afea162f0ae84aa08a1a5475e6860af5956babe0530b6349e918fa97f14e6a83f7e2054c85ec37424757c49c6b76a889cde8473eebc495ac1088fda54f5c70bb17ef4873bf7b524ae892cd8267adfcd1e7054ac0c8b904855f816cbab8a6c5332d2221060b97931130187e1f07b0b9fad917c06f56d3f9fbca9d0ad93c300d88a6025359eb609e86c2b604d6834cde1351ccb0ba238715d6a77953f58b23a78db05bc38cf1e47d5336226a966af0a88fa19b4d992fc82310b7fceee45a202bfdf759dedee618361082881f91f85020e5282fd6a4ff376455f09bd1ca73b165498937eb7396525f9be44e1d5455f2fb0e9b0d79a2b05104239ddb65afabac40f2568353278905243edcffa25dbe93c91fd0982c77eb13c90cde8107888e9891ed1f3fd75b91f275544db3fb132c587243bdd433ad395ec44311df726aa04c20709aa456adebeba0e42ba8be3710f9e8f307febbb8bf1971d6e02b435ec6e209f6d3e3200f51b17e97c7b8eed34b6b297b03db790c857329989e778133d2f9ca40e62aafa5a053d416a09d36a78e1b0716aa049da6fc9fedc96a02d10a13260d6f7cc86a7c681b97ec9987e16bb190e75137bc3e3ce64b51a599f1ebed0683f55240e49eeb6588a13b55c266ee997d1b237f0deefa3bd5670293249c6e79decfc6ee39a08d1ffb71231ed36b9aea01fd0804fc591b7100e6cf5cf97ddb1871afe44a534f2eeafb12d217c6684d474f19bf7d957b11429843723823da2e555a9a9f9d5af6d1ddd40a59a67c459581604f280f4412b0a4b8736bbdd1cd2d4d27cd273ad39d3d52036832e968f93ff343a92f4001c8a2c43ec1f3377c67f3b49f6297de1e2dc5a10abafbf034a029e5d1d89e627fc3741ab5fa68afc24fdf22b6ef215e0927fff8bdb671ef6314ecaa7a8397292e699b693600e49f9e428604fed71f05f2775c224eead65c378539b80ff7f475c68933366da1f76e0542991277c4147358c34ad37a5d81bd1810f39ebf7ece6a0054f4bf5f846bd95f9ba31ea606c226d267d95ad95c29b897fb1fba58f121939ff3c41535d119"}, 0x6, 0x3, 0xff) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x1, 0x40009, 0xdf, 0x13, 0xffffffffffffffff, 0x10001) msync$auto(0x1ffff000, 0x1800000fd000000, 0x44) socket(0x15, 0xa, 0x5) connect$auto(0x3, &(0x7f0000000080)=@l2={0x1f, 0x6, @none, 0x5}, 0x2) ioperm$auto(0x5, 0x8000020000008001, 0x2000000000000149) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) fcntl$auto_F_UNLCK(r2, 0x8, 0x2) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x44000) kexec_load$auto(0xff, 0x2, &(0x7f0000000080)={@kbuf=0x0, 0x2, 0x8000, 0x3000}, 0x4) select$auto(0x2, &(0x7f0000000100)={[0x3, 0x7ff, 0x1, 0x8, 0x94c1, 0x0, 0x5, 0x14, 0x9, 0x2, 0x1, 0x7, 0xd11, 0x420, 0x4, 0x27de]}, &(0x7f0000000180)={[0x7ffffffffffffffe, 0x586, 0x5, 0xfffffffffffffffb, 0x0, 0xfffffffffffffffc, 0x0, 0x401, 0x7, 0x40, 0x7fffffffffffffff, 0x0, 0x1, 0x5d, 0x8, 0x6]}, &(0x7f0000000200)={[0x96c, 0xb, 0x8000000000000001, 0x7, 0x54bf, 0xf50, 0x7, 0x1, 0x8, 0x8000, 0x2, 0x100000000, 0x6df, 0x8ad5, 0x2, 0x3]}, &(0x7f0000000040)={0x7fffffff, 0x3}) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0x3b, 0x5, 0x8) 8.500446409s ago: executing program 1 (id=833): r0 = socket(0x18, 0xa, 0x1) r1 = socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) ioctl$auto(0xc8, 0x400454ce, 0x5c8d) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(r1, r0, 0x0) socket(0x2, 0x80802, 0x0) r2 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x9, 0x0, 0x1f, 0x9}, 0x800009}, 0x7, 0x20000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x3a}}, 0x6e) sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000) io_uring_setup$auto(0x1, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_STATUS322(0xffffffffffffffff, 0x806c4120, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x3b87, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) getsockopt$auto_SO_PASSCRED(0xffffffffffffffff, 0x4, 0x10, 0x0, &(0x7f0000000400)=0x44) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001480)='/proc/self/net/rxrpc/locals\x00', 0x40, 0x0) pread64$auto(r4, 0x0, 0x200000000003, 0x2f4a3a23) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0) writev$auto(r5, &(0x7f0000000080)={0x0, 0x1000}, 0x3) close_range$auto(0x2, 0x8, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video39\x00', 0x78a81, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS_OFF(0x1, 0x0, 0x0, 0x3, 0x100) 7.448340165s ago: executing program 0 (id=837): bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x3ff, 0x180, 0x3, 0x5f, 0x0, 0x3}, 0x6f3) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x0, 0x0, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0xc7f16bff2a10ba01, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/midiC2D2\x00', 0x280, 0x0) (async) socketpair$auto(0x20004, 0x1, 0x1, 0x0) (async) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) (async) ioctl$auto_TIOCVHANGUP2(r0, 0x5437, 0x0) (async, rerun: 32) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) (rerun: 32) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/43:288/max_ratio_fine\x00', 0x10b142, 0x0) sendfile$auto(r2, r3, 0x0, 0x1000200) 7.050818071s ago: executing program 3 (id=838): mmap$auto(0x7fc, 0x400008, 0xe3, 0x20010, 0xffffffffffffffff, 0x800008000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x3000000, 0x0, 0x1, 0x0, 0xfff7ffffffffe, 0x2}, 0x5}, 0x3, 0x2) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/controlC1\x00', 0x10000, 0x0) r1 = ioctl$auto_NS_GET_TGID_IN_PIDNS(0xffffffffffffffff, 0x8004b709, &(0x7f0000000100)=0x6) r2 = clone$auto(0x7ff, 0xfffffffffffffffd, &(0x7f0000000140)=0x6, &(0x7f0000000180)=0x9, 0xd1) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, &(0x7f00000002c0)={{@inferred=r1, 0x200, 0xfffffffc, 0x1, "218f6eb5e1a1692698796f294f1644bfd0fd70e5978009dbbfabbe6b12ef5ec971cfb9a34a6086ec52d529a0", @inferred=r2}, 0x0, @bytes=@data_ptr=&(0x7f00000001c0)='\x00', "9b901e0d2776e2161e0e2441404e35c926f4d85e7b3c5fb4817b5190ccc4f9bd4fd7f0698c342e82cd8ff204dac4690b3dbdb7f5655bc2918f244dd4b9064f996132121854a3d4b93c4c7c69edadc047addc33a268f2daa0544ff5d3a2b4618681e9ed0df88034c9ef545ef1fc54062e7f6df7d2340fb9937563d60dbb5fe0ed"}) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) r3 = socket(0x2c, 0x5, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/wakeup/wakeup7/event_count\x00', 0x1c2580, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000080)=""/86, 0x56) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) getcwd$auto(0x0, 0xffffffffffffffff) setsockopt$auto(r4, 0x10000000084, 0x0, 0x0, 0xfffff08f) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x2, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000005c0)='/sys/devices/virtual/nfc/nfc1/rfkill1/soft\x00', 0xa3182, 0x0) sendfile$auto(r5, r5, 0x0, 0xffffffff) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) r6 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff) bpf$auto(0x11, &(0x7f0000000000)=@test={r6, 0x7ff, 0x5, 0x0, 0x7fff, 0xd8, 0x94b, 0x9, 0x0, 0x2, 0x3, 0x1003, 0x5, 0x8, 0x1}, 0xcf) sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) ioperm$auto(0x6, 0x18001, 0x80001) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x80000001, 0x8) ioperm$auto(0x3, 0x2db, 0x10000) mbind$auto(0xffffffffffff40d1, 0x2091d5, 0x80005, 0x0, 0x202000a, 0x1) shutdown$auto(0x200000003, 0x2) ioprio_set$auto(0x7, 0x0, 0x8000fff) unshare$auto(0x40000080) recvmmsg$auto(0x3, 0x0, 0x687bcbd, 0x8, 0x0) 7.0036403s ago: executing program 0 (id=839): r0 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="280000005b37afdc40143d72dd5a1c3cc73ee00c1d1dcb52783d6f76e8885a5d1534b2bd921e8e58f32e5a451e44948d", @ANYRES16=r0, @ANYBLOB="010025bd700002dcdf250300000004000800100001800c00108008000b00", @ANYRES32=r1, @ANYBLOB], 0x28}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800) socket(0x2, 0x1, 0x100) sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000cc0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x48804) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x15, 0x5, 0x0) socket(0x2, 0x1, 0x106) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55) close_range$auto(0x2, 0x8, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) read$auto(0xffffffffffffffff, 0x0, 0x20) r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) read$auto(r2, 0x0, 0xb4d3) mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x400, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) read$auto(r3, 0x0, 0x20) mq_open$auto(0x0, 0x83, 0x9, 0x0) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mount$auto(0x0, 0x0, &(0x7f0000000100)='nfsd\x00\xee\x1a\x8fg\x1b\x04\xad>\x96\xe9IG\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\t\xf8p\xc6\x00\x00\x00\x00\xb9\xac\xde\x0e\x90\x18\xf1\x13I\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd\x14\x81\xbe\xab\xed\xd5MI\x830_\xc2\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xees\xf0\xc2\xad\xae\x99\xeb\xc5\xf0\"\x92\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14\x94o\x1b[\xa8]\x9b\x03\x95\xc3\xad\xad\x1d#oi|\x04\x93N\xfa\x17\xf3b\xf6', 0x4, 0x0) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4) lstat$auto(&(0x7f0000000500)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0) r5 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r5, 0x7a7, 0x0) 6.93526084s ago: executing program 1 (id=840): r0 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D1c\x00', 0x40002, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_FORWARD2(r0, 0x40084149, &(0x7f0000000040)) mmap$auto(0x1, 0x3, 0x1, 0xe31, 0xffffffffffffffff, 0xe0) r1 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80082, 0x0) ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) write$auto_ppp_device_fops_ppp_generic(r2, &(0x7f0000000200)="c021", 0x2) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) io_cancel$auto(0xfff, &(0x7f00000000c0)={0xf, 0x8, 0xce, 0x0, 0x6, r0, 0x9, 0x2, 0x6, 0x0, 0x1, r1}, &(0x7f0000000100)={0x8000000000000000, 0xf7, 0x6, 0x58}) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000700)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="070986acbdecd86de29e8200000008000300", @ANYRES32=r6], 0x1c}, 0x1, 0x0, 0x0, 0x4000001}, 0x4000080) sendmsg$auto_NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r3, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000280)={0x64, r4, 0x1, 0x70bd26, 0x25dfdbff, {}, [@NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0x2}, @NL80211_ATTR_MLD_ADDR={0x46, 0x13a, "bfb4333fc601a131c5421ab6c9decd2fac949801879e6b35501c9291f6b145df565a0206c307edf82650d02b6b8c66c892600e196debbe64e9732255a7e122fa3fa3"}]}, 0x64}, 0x1, 0x0, 0x0, 0x40}, 0x0) socket(0x10, 0x2, 0x0) close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x3, 0xa00006, 0x4, 0x40eb1, 0x602, 0x300000000000) ioprio_set$auto(0x2, 0x0, 0x208) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/ptp/ptp0/n_vclocks\x00', 0x2400, 0x0) read$auto(r7, 0x0, 0x9) openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f000000e680), 0x2, 0x0) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r8 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r8, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) 6.830223846s ago: executing program 0 (id=841): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/net/bond0/queues/tx-13/xps_cpus\x00', 0x2, 0x0) write$auto(r0, &(0x7f0000000040)='\x00', 0x7) r1 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x22c02, 0x0) ioctl$auto_VHOST_VSOCK_SET_GUEST_CID(r1, 0x4008af60, &(0x7f0000000040)=0x6) r2 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0) ioctl$auto_VHOST_VSOCK_SET_GUEST_CID(r2, 0x4008af60, &(0x7f0000000100)=0x643) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x40400, 0x48) listxattrat$auto(r3, &(0x7f0000000000)='./cgroup\x00', 0x0, 0x0, 0x6) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0x0, 0x0) openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/fail_io_timeout/probability\x00', 0x20000, 0x0) read$auto(0x3, 0x0, 0x80) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/i8042/serio1/rate\x00', 0x2, 0x0) write$auto(r4, 0x0, 0xfdef) 6.529650775s ago: executing program 2 (id=842): quotactl$auto(0x2, &(0x7f0000000040)='/dev/sda1\x00', 0x62a0, 0x0) (async) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x200, 0x0) mmap$auto(0x0, 0x2000a, 0x4000000000df, 0xeb1, 0x40000000000a5, 0x7ffe) (async) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async) setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9) (async, rerun: 64) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (rerun: 64) recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async) write$auto(0x3, 0x0, 0xfdef) (async) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) (async) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async, rerun: 32) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20044850}, 0x8040) (async, rerun: 32) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x478c41, 0x0) (async, rerun: 32) connect$auto(0xffffffffffffffff, 0x0, 0x55) (rerun: 32) r0 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x40903, 0x0) (async) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) ioctl$auto(r0, 0x80004508, r1) (async) ioctl$auto_XFS_IOC_SWAPEXT(0xffffffffffffffff, 0xc0c0586d, 0x0) 6.424734881s ago: executing program 0 (id=843): mq_timedsend$auto(0xffffffffffffffff, 0x0, 0x2, 0x10000, 0xfffffffffffffffe) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) rseq$auto(0x0, 0xfffffff4, 0x0, 0x5) (async, rerun: 64) sysfs$auto(0x2, 0x10000000000002a, 0x0) (rerun: 64) r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$auto_VHOST_SET_BACKEND_FEATURES(r0, 0x4008af25, &(0x7f0000000000)=0x7) (async, rerun: 64) mmap$auto(0x0, 0x400008, 0xdf, 0x9b71, 0x2, 0x8000) (async, rerun: 64) sysfs$auto(0x2, 0x20, 0x0) (async) r1 = fsopen$auto(0x0, 0x1) fsconfig$auto(r1, 0x8, 0x0, 0x0, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) (async) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x40040, 0x0) (async) openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) rseq$auto(0x0, 0x6, 0x3, 0xff) (async) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, r2, 0x27fff) (async, rerun: 32) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x8df41, 0x0) (rerun: 32) msync$auto(0x1ffff000, 0x1800000ff010000, 0x400000004) (async) socket(0x15, 0xa, 0x5) (async, rerun: 32) ioperm$auto(0x3, 0x8001, 0x2000000000000149) (rerun: 32) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) kexec_load$auto(0xff, 0x2, &(0x7f0000000080)={@kbuf=0x0, 0x2, 0x8000, 0x3000}, 0x4) (async) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) (async) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f0000000000)=@isdn={0x22, 0x5, 0x4, 0xe, 0x4}, 0xffff) (async) sendmmsg$auto(0x3, 0x0, 0xda6, 0xe000) 6.103610526s ago: executing program 2 (id=844): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xfffffffffffefffd, 0x17) shmctl$auto_SHM_STAT_ANY(0x7ff, 0xf, 0x0) unshare$auto(0x40000080) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) select$auto(0x8, 0x0, 0x0, 0x0, 0x0) mremap$auto(0x0, 0x4000007, 0x3fd7, 0x0, 0x20000020000000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x100, 0x0) r0 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/environ\x00', 0x88f80, 0x0) readv$auto(r0, &(0x7f0000001780)={0x0, 0x400}, 0x7f) ioctl$auto(0x3, 0x400454ca, 0x38) socket$nl_generic(0x10, 0x3, 0x10) socket(0xf, 0x3, 0x2) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0x2, 0x2, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x4, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x208000001f, 0x2, 0x6d3c, 0x9, 0x2, 0x6]}, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/cmdline\x00', 0x8000, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000640)={'wlan1\x00'}) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101c00, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xfffffffffffefffd, 0x17) madvise$auto(0x0, 0xfffffffffffffffb, 0x8) write$auto_seq_oss_f_ops_seq_oss(0xffffffffffffffff, 0x0, 0x0) 6.067831703s ago: executing program 3 (id=845): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, 0x0, 0x885c0, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) (async) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) msgget$auto(0xc, 0x77d9) (async) msgget$auto(0xc, 0x77d9) msgrcv$auto(0x0, 0x0, 0xff9, 0xfffffffffffffffc, 0xb4) (async) msgrcv$auto(0x0, 0x0, 0xff9, 0xfffffffffffffffc, 0xb4) openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000100)='/dev/media11\x00', 0x0, 0x0) (async) openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000100)='/dev/media11\x00', 0x0, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x400200, 0x0) (async) r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x400200, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r1 = socket(0x15, 0x5, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x2004c0c4) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x2004c0c4) sendmmsg$auto(r1, 0x0, 0x7, 0x8) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) (async) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0xa2741, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x400008, 0x2, 0x9b72, r0, 0x8000) (async) mmap$auto(0x0, 0x400008, 0x2, 0x9b72, r0, 0x8000) r2 = socket(0x2, 0x1, 0x106) bind$auto(r2, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r3 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x8ac03, 0x0) read$auto(r3, 0x0, 0x7fff) r4 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r4, 0x107, 0x1, 0x0, 0x8004) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x38, 0x65f, 0x1ffde, 0x7, 0x3, 0x20000002, 0x9, 0x3, 0x6, 0x4, 0xb4, 0x9, 0x6, 0x2, 0x80, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x9]}, 0x1fe, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r5 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) (async) sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) close_range$auto(0x2, 0x8, 0x0) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) 5.634630192s ago: executing program 1 (id=846): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = io_uring_setup$auto(0x6, 0x0) futex_waitv$auto(&(0x7f0000000000)={0x0, 0x7e4, 0x2}, 0x1, 0x0, 0x0, 0x623d) mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/net/teql0/statistics/rx_dropped\x00', 0x80000, 0x0) read$auto(r1, 0x0, 0x9) r2 = openat$auto_ima_measurements_count_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) timerfd_settime$auto(r2, 0x8, &(0x7f0000000080)={{0x560, 0x8cfa}, {0x1, 0x1}}, &(0x7f00000000c0)={{0xfffffffffffffff4, 0x1}, {0x0, 0x5}}) close_range$auto(0x2, r0, 0x4000) 5.307547997s ago: executing program 0 (id=847): r0 = prctl$auto(0x34, 0x1, 0x0, 0x0, 0x0) socket(0xa, 0x1, 0x84) (async) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async) r1 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000080), 0x2101, 0x0) (async) r2 = socket(0x11, 0x80000, 0x300) setsockopt$auto(r2, 0x107, 0x9, 0x0, 0x20008004) (async) ioctl$auto_SNAPSHOT_PLATFORM_SUPPORT(r1, 0x330f, 0x0) r3 = fcntl$auto(0x8000000000000001, 0x5, 0x8) (async, rerun: 64) clock_nanosleep$auto(0x2, 0x1000, 0x0, 0x0) (rerun: 64) write$auto(r3, &(0x7f00000001c0)='/Eek\xe4f\xf1\xb62\x0f\x86Xv/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"T\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9c\v\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc\xc6\x7f#\x9ai\xb9\v\xf0\xd9\x12\x97:\xf9eh\x06\x0e\x86!\xc7\x1fz\xa1\xd3L~\xf4\xd0G\x9bx\x975\x90F\xec\xe3\xf9%G\xd8\x82\xf7\xfb\xccGE\r\xcd}\x1e\x14\xb2\xfe\xd4', 0xbd) (async, rerun: 64) select$auto(0x12, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64) socket(0x2b, 0x4, 0xd) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x24000001) (async) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) (async) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, 0x54) recvmmsg$auto(0xffffffffffffffff, 0x0, 0xa, 0x0, 0x0) (async, rerun: 64) ioctl$auto_SNDCTL_SEQ_RESET(r3, 0x5100, &(0x7f0000000300)="eace33f30df9fd5a87fdac7cf5378e5edb2a929c9320b353f60190be4998f57f79686c2357459d213ca11fe782ed22cb80e599cd7f68196e72fe0bf73dcd6af03106f403b76f19d8048e64543c02346f98b20b637bf64b0b2125eb60c5486b1265dc33dae43b730ecb87c1757b47dc2b3ce5a57a3ca25fe0919b5d2783e339a007493f603063f901186302535c370dfaf06dcd6a723f159bf43be1f692ad832aa0e593a33dcc39901d23d6e4973787c1d2c45d1e20dd88fdaedea97f0d517b7b3351cf325e30ec4acd73a2ad55ae03c6907f2bac96000000000000000000") (rerun: 64) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), r0) (async, rerun: 64) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (rerun: 64) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/scsi/sg/debug\x00', 0x100, 0x0) syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x2000021}, 0x0, 0x0, 0x0, 0x0}, 0x58) (async, rerun: 32) mmap$auto(0x8001, 0xff, 0x80000001, 0x1010, 0xffffffffffffffff, 0x28004) (async, rerun: 32) unshare$auto(0x40000080) (async) socket(0x2b, 0x1, 0x7) (async) setsockopt$auto(0x3, 0x0, 0x9, 0xfffffffffffffffc, 0x3) socket(0xa, 0x1, 0x100) (async, rerun: 32) r4 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0) (rerun: 32) write$auto(r4, 0x0, 0x10001) (async) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) 4.613763645s ago: executing program 1 (id=848): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/config.gz\x00', 0x0, 0x0) (async) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/config.gz\x00', 0x0, 0x0) write$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffffff, &(0x7f0000000140)="d1807307", 0x4) r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000001c0), 0x48d0ed7ce83ab1e4, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)) unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0x4400000000df, 0xc157, 0x101000000000000, 0x7) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) setitimer$auto(0x2, 0x0, 0x0) (async) setitimer$auto(0x2, 0x0, 0x0) setitimer$auto_ITIMER_VIRTUAL(0x1, 0x0, 0x0) (async) setitimer$auto_ITIMER_VIRTUAL(0x1, 0x0, 0x0) unshare$auto(0x40000080) (async) unshare$auto(0x40000080) setitimer$auto_ITIMER_REAL(0x0, &(0x7f0000000180)={{0x34c, 0x9}, {0xfffffffffffffffd}}, 0x0) setitimer$auto(0x5, &(0x7f00000002c0)={{0xfea07d8, 0x9d}, {0xfffffffffffffffb, 0xb1}}, &(0x7f0000000280)={{0x4, 0x200}, {0x1da9, 0x6}}) (async) setitimer$auto(0x5, &(0x7f00000002c0)={{0xfea07d8, 0x9d}, {0xfffffffffffffffb, 0xb1}}, &(0x7f0000000280)={{0x4, 0x200}, {0x1da9, 0x6}}) socket(0x10, 0x2, 0xc) (async) r1 = socket(0x10, 0x2, 0xc) ioctl$auto_XFS_IOC_ERROR_CLEARALL(0xffffffffffffffff, 0x40085875, &(0x7f00000000c0)={r1, 0xf}) r2 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x100, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_CHANNEL_INFO2(r2, 0x80184132, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) prctl$auto(0x3a, 0x7fffffff, 0x0, 0x1, 0x1) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/pcmC1D0p\x00', 0x0, 0x0) (async) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/pcmC1D0p\x00', 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0xdd01, 0x0) open(0x0, 0xeee00, 0x31) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) 3.776263774s ago: executing program 2 (id=849): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x8d, 0x20009, 0x4000000000df, 0x11, 0x401, 0x7ff) prctl$auto(0x23, 0x7, 0x7fffffffefff, 0x0, 0x0) mmap$auto(0x7fff, 0x400008, 0xda, 0x9b72, 0x2, 0x480000000008001) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/kvm/mmu_pde_zapped\x00', 0x6100, 0x0) getrandom$auto(0x0, 0x6000000, 0x3) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f602, 0x0) write$auto(0x3, 0x0, 0xfffffdef) fstat$auto(r1, 0x0) semctl$auto_SETALL(0x2, 0x6, 0x11, 0xb1c) syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB], 0x50}, 0x1, 0x0, 0x0, 0x4048081}, 0x0) getsockopt$auto(0xffffffffffffffff, 0x114, 0x271f, 0xfffffffffffffffc, 0x0) writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x3) ioctl$auto_BLKRRPART(r0, 0x125f, 0x0) 3.419618227s ago: executing program 3 (id=850): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0x2, 0x0) openat$auto_ipsec_dbg_fops_ipsec(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim6/ports/0/ipsec\x00', 0x80, 0x0) unshare$auto(0x40000080) socket(0x10, 0x2, 0xc) r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dri/renderD128\x00', 0x200402, 0x0) ioctl$auto(r0, 0x64d0, 0x40) r1 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r1, 0x107, 0x5, 0x0, 0x8004) r2 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = socket(0x200000000000011, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x89b0, &(0x7f0000000140)={'bond0\x00'}) mmap$auto(0x0, 0xfff, 0xdf, 0xeb1, 0x401, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r4, 0x0, 0x20) r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x182, 0x0) writev$auto(r5, &(0x7f0000000200)={0x0, 0x7}, 0x3) ioperm$auto(0x3, 0xe, 0x2000000000000149) clock_getres$auto(0x8, 0x0) msgctl$auto_IPC_RMID(0x9, 0x0, 0x0) statx$auto(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x6, 0x7, &(0x7f0000000280)={0x8, 0x86c1, 0x120000000000, 0x5, 0x0, 0xee00, 0x40, 0x0, 0xfffffffffffff5f7, 0x4, 0x7fffffff, 0xd7a2, {0xd, 0xccb}, {0x6, 0xcd}, {0xd, 0x3}, {0x2, 0x5}, 0xfffffbff, 0x1, 0xe, 0x5, 0xe, 0xfe, 0x6, 0x8, 0xf, 0x2, 0xd, 0xb0, [0x7fffffffffffffff, 0x2, 0x3, 0x40, 0x9, 0x7f, 0x4e4c, 0x8, 0xffffffffffff6f4c]}) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000800)=ANY=[], 0x3d0}, 0x1, 0x0, 0x0, 0x4004004}, 0x800) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/stat/rt_cache\x00', 0x20000, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x4, 0x0) 2.537993684s ago: executing program 2 (id=851): socket$nl_generic(0x10, 0x3, 0x10) socket(0xf, 0x3, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0x2, 0x2, 0x0) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20c01, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x4, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x208000001f, 0x2, 0x6d3c, 0x9, 0x2, 0x6]}, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/cmdline\x00', 0x8000, 0x0) arch_prctl$auto_ARCH_MAP_VDSO_X32(0x2001, 0x40) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000640)={'wlan1\x00'}) mmap$auto(0x0, 0x8, 0xdc, 0xeb1, 0x0, 0x8002) socket(0xa, 0x5, 0x8) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04, 0x0) waitid$auto_P_ALL(0x0, 0x80000000, &(0x7f00000001c0)={@siginfo_0_0={0x7, 0x4, 0x309, @_rt={0x0, 0x0, @sival_ptr=&(0x7f00000000c0)="361da6425979f321f15c64a6f5fa0b6cba1f0e4285504a768d83e5b21be75dd346782ab711f42ffe91741f05e24e30be16bbe7ac358ec9c81c091f1f8538451b6f89c6fbc4edbf8b0a309e31b55bc7f04f5f7a39aaee1b9943cd809e753b48adfca1b8999cf49a034b6a1835aaff1eaa34c364213b7df217625611245492fc0e3344619c7f8c79e20c0c2ca448aac0028414eb84dac36cf99955c1a0157637d946cdd5f278e8899416017fc51b9bdd234f221af70a2a0fe07932883053f77b6ed448fee764"}}}, 0x3, &(0x7f0000000340)={{0x8, 0x5}, {0x7, 0xfff}, 0x7, 0x1af, 0xfffffffffffffffa, 0x2, 0xfffffffffffff5a2, 0x5, 0x402, 0x2, 0xe6, 0x8, 0x4e6033bf, 0x6, 0x101, 0x8}) r3 = gettid() ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f0000000440)={{@inferred=r2, 0x80, 0x3, 0x1, "977d648a0881449f3ce8ba5b483e904dfacb519a28d0b90b462bf9ad3e3c7e488826dc0852829cf353806ac4", @inferred=r3}, 0x0, 0x7, 0x4, @raw=0x9, @integer={0x5, 0xfffffffffffffff4, 0x4}, "b957b0168b84987d4211529b4bf24c25c2a1e7c1cbcff5c254d7954a4ffb435e9426e9c83a87cd49439334e9a0bf167595e50bfb2200e43a76fd8e68ce7be399"}) unshare$auto(0x40000080) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) madvise$auto(0x0, 0xfffffffffffefffd, 0x17) madvise$auto(0x0, 0x20499d, 0x9) socket(0xa, 0x1, 0x100) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000002b80)='/dev/snd/pcmC1D1p\x00', 0x2205, 0x0) ioctl$auto_SOUND_MIXER_READ_DEVMASK2(0xffffffffffffffff, 0x80044dfe, &(0x7f0000000040)) 1.862288399s ago: executing program 0 (id=852): openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000001d40), 0x40a40, 0x0) mmap$auto(0x0, 0x3, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r0, 0x4b4d, r1) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) readv$auto(r2, &(0x7f00000000c0)={0x0, 0x5}, 0x3) ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0x1010001, 0x100000003) read$auto(r3, 0x0, 0x20) mmap$auto(0x0, 0x9, 0x800000000df, 0x9b72, 0xea8a, 0x8000) timer_create$auto(0x9, &(0x7f0000000100)={@sival_ptr=0x0, @raw=0x2, 0x1, @_tid=0xffffffffffffffff}, 0x0) timer_settime$auto(0x0, 0x9, &(0x7f00000000c0)={{0x4, 0x8}, {0xa, 0x8953}}, 0x0) timer_gettime$auto(0x0, 0x0) mmap$auto(0xff0f200000000000, 0x400008, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_IPVS_CMD_NEW_SERVICE(r1, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f0000003d40)={0x105c, 0x0, 0x10, 0x70bd27, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_SERVICE={0x1018, 0x1, 0x0, 0x1, [@typed={0x14, 0x10d, 0x0, 0x0, @ipv6=@private1}, @generic="9836101e14c5361a735bc14cd66d0880fb3833b0978379a979ea17566f9f2271409d68f8ca03528de41196a7de6709f21585548bda3934d8477eb71990b20901b39b22c79ac73b1e3619c0653e3f1fc53ffde287ac8aab425f7021504212473000179f2e98d391b41f145cb6b459e2002c380974a34dd2fa8e0f690357ab731967dee3ce0bf6cf4102da4944f1c599ed18f33b468c20f9a2f8e055c21187d34444dd9a971794aca4be29f5006fbcd70fa36a90afae6a7954b9407ed2efd004ea05a505e04c102b9b621008df1a64ac7ccdc127405ce32183534bdf5df011522a4cbcf01debbb43c6960295cd1f0a2b6df3b4e2c7c0bff5085d21582e15c48e4e4bef198a7af7381c362e031204521eafc412252a9a7af9197a6b01ba3f2f3f892cfd34f2df924f24281fe3491e8d0fba1fabc497e8577b36cf905d1bc9e8f12736f7d967b5fcb28f8b33c13c3e97f08e33233c11fe3fc80c03ec1e6743345e2f0bea44daa6fa43f993cf00d9275ec841aad5999113765f1fb025213a2fe27e52786b79dad28d6518fc40401c6ffab629fbf034b284be6eaedb8143948b41efb6bf04f494c642cf7835af3c95ef34c1390c259e5ba5196d1df632a2743790ea7306e34f0ff554c99a8d21d2e04751e04300dd7a383f43aebe5f88a01e5ef3b6065098deb9fdf99b4fa6c0ab962e580dd5619fa9ab1fbfa67c79290e15cc07532d1b37ef89c3e6e1c7d2962a3dadae5c27ab9f004ee93684f5e6402eb304d06a8721608d065c24055ca0eb5ef15d987401672f53cfd21ed0d0e6d637406bb1bf99a24a948063e5c049ae61429e49c5027ae9626499c3d8c4121d86be77395ad388c5444251d7345a3c68c439f4d54bb55a673e9adb5e20a4bce3aa25707949cf09df12ce63956503443046cd00a138d594d8ccf754140766ac96b35ad0cf79fb69c51db7ce7ac0dca4c79ce682d4ab072fb3a18ca01e71852ee956007ea73764c251ab53372e37ce8c3252e956cd1a9117ab0f58f35dc84f57aaf624298cbb6a4722e4ac852f0f85b099a8cc92e4f7e0cef98cde6adaf79b942ffb82bc1d019d52b2fc36c03fcc6465a56f2a7ed1a316f798abe69df43d3a9b0750691a0eb29961cdb07f4d5e15d1e606ee1f4918b14d374848a1eae97da859a77f494e03b0c2c1bd574d3e8a15e566d27ca4564a961fb34e8512544059ed1e6b068f5863d7134d6a03edde91fbf4fa402199c3ca570a979aeb6fdcccd04ed5a76a7f782414d5e2579c317a6ead45cddbc7f344fe8804efb5a4aab7ba109cd3d48e6296e893600c8bb234ac51c696f1e058f09867bf082f8d022fb50e43cde090e5042ab733db1219f77b339b616b19feea3028dc70790f98eb3d66ae8e567fb2538c18384c6c098225ea2a81c2e04c98ea13932342e56537569631439dbd6132dc3d58d3d3aea0d3ed20a4ada970d1446b9172f1df3baa775157dcdaace95a9747e3620fbc171cdae8bbdcf1bdd7c7bcda31b16beef59a3e47e9bf910cd3316ea60d7e3ccfb79ed027029fe384cd4e1a521577a71085246066026cfe31915f90e191705d9ec43bea3d0fd63a2121c0b596443d07bfffbeed6b51d71415f0db3b6fd49e9434df2bf828f1cb01d22ceec1065bdc1099153c11ab6c03983e7d2ca313085ef6bd22a73a49240d9c7b5a4b34172dab5cea0d4a6eef4bf78515d9b4779fd02af23a48cd74cf5406e9687f35a4cad9d9766d8d4351b4d3d9533f1e4ec3245aaa72ab7a5822664ed2ccb2d287c57f532e510ee045d57979fe32e76f7700f2bae20d1facaa83ef2511f1204285fd185f1104da0261415f8e3f1633d8592744ea39a956a28d55ca898613a9391bac819eb07ca0d3c22c32db18a4411482bee104be6cd636187eebcd18cf16bd6cd93b38f1751d9eb12aaf91dd967f19fc4a9d0f33794562382097274238629637ceba5f631374955ce7d0da031375bd28101eb052efa121cc6f6cb9b0ece6fcf7ca5bb8ed4fe16c27749912da49a92cd46e0a555e8dd35ad2945eeaf7187da450a8476952f51670712c4d9e64678a99c651c47091836f37784d5cceddf27a101ad510629a81fcd2e3b8e3ac20d7383d279f2442feed4b4fe5e0822e4186990dfa16b7685933769b2ffccc1d09e26885a71628163bc1b11a6bf70926cac5c9d84fd0f08a22a2154f39adb2a43354be00d36a01431744dfed1c59bc9229a0814cd743586dc6a922653a78923137146a28eb6f3999d7fde9a956e8175d5dda858dad6cd2752700513c6e6e151c11b58d77ef4916940cc523bd719f4a543f8607505d68dc0f0113b4efda89787302ef22bc2e7fb11c6e1f2b917044a2adccc0eb3d790342cf1b41e53b6014582b4abdbf186b9dd8d9f4bc07803c4f7638f65f16f846278381fc6f12f7ba3997cbe828aadc35313ab7c7f1b9515baf3c23d986884a4e5c96027751822e24e39f33e3f3e3554b89aaaef6cf6028ca0caaafadf30326fe2dfb015297038861914c85c77f04c5b00d1e155f16551dd57921daba843db3babf43d47225cffb895b4301ace09f7d50eea01a7d5debe3c40801b98e9cd3f4a59d44dab984d2223ed02c96e669bfd010fb9e02df72247b87a1c765fde9e7f2ee6bc268eae5dd2e7fd06216904449fd8d9f27b48247acfcbf5d94260e32f8127508a92798e6c885fed12d8a6a735f6078a25215b857b54245a413fe87ac283e69af1d62990ff3eebea220bb510ed56dfb5b07003cf277fdba4be270fb617a2cf1a6d6c94f115bb9aaece053cf76781342e337b7fa42d24a185161d9044abee1abef909dcb3b8615382b893f374e44b05a6d0ce8f119724f9e919c4f1fcaf0da20a74197fed83b889c641f84f9571fd8950882598e26f1d51dbf7b439d4424546ef876710b7587c74a22178641441e03057e2fd557e25d4749e52a20f326f0b95360513b9c7a30ce9ca7b52291c6d9fa94c9df42c805d4b702c1fe6d1c8076b9e6c764f736550d547754bfd147666f8e081682fd299cff492689f72ddc591c99cd7e2a4a579797e6aa7201c87acd32cb7c764bc06c77d4e4debb63572aecc037a3d10f19bfdbbdf0bbd8d64a13f2d414ada349f45f82b84ad6d6007d96d69b82dacdd02f018e2ee56ccf68f42688d96976083be38f73cecc58f54020dad6c7d57c1ef238cbaf31acd490c564c82606ed605c0bffbdf6cdf65adbd856ff238bbeb39d3d2829d755d264f6bde70cdfe25b78f8803654065878d7139c16e3104f66ff19897fc8a01dab0fb48a636b48215985a9af3d62c4c6e2768646f10dc98e6d5f9b80a726da11822be8180d14d77c3c42fd0f470afda3fbdb4657631595edd8288fca32dacb8d35484f46c5ed214627c605ddc30e8b73e3cd992e7956841a294e4cebf523f99889a5698aa30d7bd76d886e99a7a8427b5befab2c90644ec2d868c15105453e9a13b50a514ac1eabdd03241d4ee8be3564592823dd434fae4c2806f0b34da3cb1381a38ec90c2e0d4292202825276ad8aee4301f676261e9a4e721f30d3ca57f8cd9d857faa943a364078cf34ab8f81f17651e78e4c10f164709d7ebfa40eb1e48b997b962a64d5918719bb9d791aa1d50f1d4767b848870bd4024fc2cf47afbf0364b8676c8c5b24924936d084c19aeb35fd718d8ead2a29cc4916467b79e9dafe0e00c57d3f527ae9db6c8472c09829af13c83737d804b19de384950e2046863f5ffaca51ba356d82e0aae85858cba1aaf5c492e40a1275b41f3d76e8389553bd06e5206fbd748820a77d2142d88040e16ecf8a7ecafd342aced9aa3622d8111703a4cebd563e4856a24804190a19f69dd4b4786eca37a3a39797390a449938ce995153853ba389ecd9026d35d0d986d7c11266c8e9df79a1a84c4cd9ea0d94356145c9714459ea16c4bee09c4b9e3cd78801ddaa975471da1287e8f3864d72ad4f2732a23ee5051113e6721e27c7fbbb619af92c0100586b54e9ea9e08488741df863b8d4021f182dc3d325142167c17f8a4d942425431a1b13c6f9c33f246c0c6c2d556b5b4188a295515047246df34d9e757c5a1cb102e871894ad4a166a8ea6d1af4416bb5f2a9563baea1479bf5e53fc10ae610a9b6d9b6a29b1f97677b05f7f27fe2c2c6cfa5dcf7bd8acfe78c9444dd72e384ce2e7bc2824471cea036cc987dd9e5547397728dd20b533c5d3ec5d5a07e352441670e66c7adee4984e3fec1b7a668f105f6aa9755a4796b87d0668c7caa90a56cdd738c4f8912e69632b414cb57344c14c011041f4f41c656883e18ed52ebf063152d816c325dae6b1f1e2da4c9e945425a41ce67674d7dc92042f8cfb679d22a886811f1a4d5bd9ff16f44e2abb0cd52a7a6ed73b614c9337ca43d6fd61acda7063a20c11fca93be41a9d784f6d7c7995a970e5e8fe1d256998a8550ee5471925b508e8f923b557d279af7012bb9b325229e92492ae4f1f2688d50d89f7cb228f62795833029ad37c2317bb689d0a859ce4a36cefea4be5ac7421ec0ed52956f9b511a44bf4c186fd87ca0acb1680b236bd53409ae5df469a173401beb5a207e41cfcbeec41fbba0532e728abc219c0c6f71bcfc5d3a9854343037f00857804c57ea81f5d92dde97584ec8836881e927675555a07d0126f4ad1facbca807179eb1adaba7817cd2e7c6b27af4b2c6c085dd39bdc2fcd3fd08385a65a4816d638f8bc3b55f1bb0e0fab2b558311370a260f8188ef54eb27e1b1c1285a16149a8677d2c7bab1256fe1c898100d4741ba96f1352183a95c9ae5136d1c7a22e7c2ee54a73159d86e4c8fd2b8bfdaf74dcb4d2b389c7b0721ebb1133413a89c13bcf39da713d3c39af7d661050e119bc919bca56ca0aca9751917eb74c8f0fdabf13b264d21120923dd92a57236f743c48a42e1220a26a8bd3ba1bbd76e21d06ce190e0bdd5e8eee4fb4ad540e8e345d57002327a80b6a900baba18582ef7d60dccb42d62614580bf492136a2c32b7e2cb1e4ff234d23f80a9155b3bad1c3b76ed50079329d7aa124bb15db1458d86920c8abf114f8fb70abdca01bd9c62f939e708379434015ba14658e0f70a120c0d82735a2a132969d88738c1513f2202d1b8dd8fe4846818082558a0df20edece5bd5e6888714bcafcd8bd864a926e53b0648ece9c94be4a983424cd7f5476819b63be792718ea7ceb04bde930244bb41947073d3ad57b7c863faeac807823e64a9e8e66e0c7e4e34102e2fa0a4dc0b7247a4891f4778b1a852b1fd3188ec185e7a2487e5973309112648462a4ec745dc8adeaff7e90b044a5e150e1b6b4780dd6b9e34bac9e268973d0421d2aa4d72db11f80064acd2b3b844d436de2f139794e1926899d1cf512fcca4f595578fd201a883aa9a11c79918ba918fdc7dc49cd938210cbdcd73385f816a552c1016178d0c27adc8edd2e43d6b65e1d3020272f1ac5e377a941306e8649aa8d213f0a1a539ddecb44bc18f297a71e910019c28a94cad034d54a24d5292f1a05b07bdd85f40d4c10163428cd37dfb07448b587211a80ea5c084a57ab2e854c6d27d50907ff0ee34a4cec78062dcbff609e98656f24cbb7ff45c9caba2ef45abacf0629952fe2f60b835c72f74a4f1f6c7b0b1234d2dde95be41cb220d4337c46a4d030fff2068792e16f10c785db61bffea29bf92a7d709e894651326351028422f14e394995e3cdbcd9da5038e136527e1bbe93bf4cd9e6c04587c29d15bbfaba6201142861db9b6bae3d8740d5f4a67cc4ed2968cea64cda5377056545c4c664b9f"]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x6}, @IPVS_CMD_ATTR_DAEMON={0x28, 0x3, 0x0, 0x1, [@typed={0x23, 0x99, 0x0, 0x0, @str='/sys/kernel/debug/sync/sw_sync\x00'}]}]}, 0x105c}, 0x1, 0x0, 0x0, 0x20004010}, 0x4) r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r4) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000180)={0x24, r5, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@HWSIM_ATTR_PMSR_SUPPORT={0x10, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_TYPE_CAPA={0xc, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}]}]}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x24008040}, 0x4000800) 1.755665892s ago: executing program 1 (id=853): socket(0x1d, 0x2, 0x2) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) connect$auto(0x3, 0x0, 0x55) (async) r0 = socket(0x10, 0x3, 0x6) (async) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0x5c8) (async) close_range$auto(r0, 0xfffffffffffff000, 0x4000000000002) (async) mmap$auto(0x0, 0x2020009, 0x200000002, 0x11, 0xfffffffffffffffa, 0x40007ffc) (async) socket(0xa, 0x5, 0x0) (async) io_uring_setup$auto(0x6, 0x0) (async) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0x5c8) (async) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async) mbind$auto(0x8cb8, 0xfffffffffffffffa, 0x4, &(0x7f0000000000)=0x6, 0x8, 0x100) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/tty53\x00', 0x200, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) mbind$auto(0x0, 0x764, 0x6, &(0x7f00000000c0)=0x8, 0x7, 0xc14) (async) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) select$auto(0x7, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x0, 0x1, 0x2, 0x3, 0x95f4da0a, 0xefffffffffffffff, 0x3, 0x62, 0x90f2, 0x10000000000004, 0x6d40, 0x1, 0x2, 0xfffffffffffffffe]}, 0x0) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) socket(0x2b, 0x1, 0x1) (async) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async) mmap$auto(0xf87f, 0x400108, 0xdf, 0x9b72, 0x2, 0x8000) (async) ioctl$auto_USBDEVFS_DISCSIGNAL(0xffffffffffffffff, 0x8010550e, &(0x7f0000000040)={0x6, 0x0}) (async) close_range$auto(0x2, 0x8, 0x0) (async) sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, 0x0, 0x4) (async) close_range$auto(0x2, 0x8, 0x0) 1.547858161s ago: executing program 3 (id=854): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async) openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000000), 0x9541, 0x0) (async) r0 = epoll_create$auto(0x3e) epoll_ctl$auto(r0, 0x1, 0x8000000000000000, 0x0) pipe$auto(&(0x7f00000002c0)=r0) (async) landlock_add_rule$auto_LANDLOCK_RULE_NET_PORT(r0, 0x2, &(0x7f00000020c0)="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", 0x9) (async) eventfd$auto(0x23) (async) r1 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) madvise$auto(0x0, 0x3, 0x66) read$auto_proc_pid_maps_operations_internal(r1, &(0x7f00000030c0)=""/4077, 0xfed) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) (async) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/misc/vmci/power/runtime_active_time\x00', 0x0, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket(0x10, 0x2, 0xc) (async) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) (async) ioctl$auto(0x3, 0xae41, r4) (async) ioctl$auto_KVM_GET_MSRS(r3, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0xc0000101, 0x400, 0x2}]}) read$auto_state_fops_(r0, &(0x7f00000001c0)=""/227, 0xe3) (async) read$auto(r2, 0x0, 0x20) close_range$auto(0x0, 0xfffffffffffff000, 0x2) pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5\x85\x91p\xe6\x1eRN8\x90\x86\xdde\x1cJ\x99\x00\x11:\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfdef, 0x3) (async) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x2, 0x4, 0x8201, 0x2, 0x8, 0xc, 0xe3, 0x4000000002, 0x3}, 0x6f4) bpf$auto(0x100000001, 0x0, 0x0) setsockopt$auto_SO_SNDTIMEO_NEW(r0, 0x6, 0x43, &(0x7f0000000040)=':&,:#&+!\x00', 0xe8) 1.043951807s ago: executing program 3 (id=855): mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000480), 0xffffffffffffffff) r2 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64) fchdir$auto(r2) sendmsg$auto_GTP_CMD_NEWPDP(r0, &(0x7f0000000580)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000540)={&(0x7f00000005c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000125bd7000fcdbdf2500000000080002000300000008000700", @ANYRES32=r2, @ANYBLOB="080005000a01010114000c00fe8000000000000000000000000000bb06000600ffff0000080002000600000006000600d506000008000500ffffffff14ca9e01e7085e5f59ba5afee66a47015909a676180d205379d7876f0e53eab14c41e3d72ed0fe46ac8ddd23789a761da2c1e82f32d477a9b5df31"], 0x60}, 0x1, 0x0, 0x0, 0x4004}, 0x0) madvise$auto(0x0, 0xffffffffffff0006, 0x17) r3 = socket(0xa, 0x2, 0x0) setsockopt$auto(r3, 0x29, 0x37, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x110) close_range$auto(0x2, 0x8, 0x0) openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/Virtual-1/edid_override\x00', 0xc0a82, 0x0) mmap$auto(0x8000000000000000, 0x202000c, 0x4000000000006, 0xffffffffffffffff, 0xffffffffffffffff, 0x7fff) r4 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x108002, 0x0) r5 = epoll_create$auto(0x5a5d) epoll_ctl$auto(r5, 0x1, r4, 0x0) read$auto(0x3, 0x0, 0x80) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/vm/drop_caches\x00', 0x141241, 0x0) writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000340), 0x7111}, 0x8) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_bsg_fops_bsg(0xffffffffffffff9c, &(0x7f0000000240)='/dev/bsg/0:0:0:0\x00', 0x102, 0x0) move_pages$auto(0x0, 0x7, &(0x7f0000000180)=&(0x7f0000000100)="5382bd9fac66415d844bc420e8adb786eff94dbce9b282e12eb6586d26bfd54bd420bddcb38972ca412a5c4266d7a2b643772d269656ec948410a7da08058d4d81c3f1aa6bfb049f9c39be0803b0db54b66ad6011771f61477afa26a4774bbd6310e", &(0x7f00000001c0)=0x80, &(0x7f0000000200)=0x200, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0xee8c, 0x4) openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x0, 0x0) r6 = socket(0x2, 0x1, 0x106) bind$auto(r6, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0) bind$auto(0x3, 0x0, 0x6a) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) 627.443209ms ago: executing program 1 (id=856): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/clients\x00', 0x280, 0x0) pread64$auto(r0, 0x0, 0x8, 0x8) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x5, 0x4000000000e2, 0xeb1, 0x401, 0x7ffc) r1 = openat$auto_dma_buf_debug_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f00000000c0)={{0x0, 0x2, 0x200800, 0xffffffff, 0xfffffffb}, "0dd7fd004929347eeeccdf0732f77b1f6de0d6d51768a257a97ca5e9ca6310ea"}) fdatasync$auto(r1) socketpair$auto(0x1, 0x2, 0xae4, 0x0) mmap$auto(0x100, 0x3, 0x100000001, 0x12, r1, 0xff) open(&(0x7f00000000c0)='./file0\x00', 0x40040, 0x44) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x1, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x15, 0x5, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/1:2/max_ratio_fine\x00', 0xa001, 0x0) write$auto(r4, &(0x7f0000000100)='/sys/kernel/debug/sync/sw_sync\x00', 0x6) sendmsg$auto_NL80211_CMD_SET_WOWLAN(0xffffffffffffffff, 0x0, 0x4004010) r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01002bbd7000fcdbdf25040000000400100008000cf1edfba1d1e45aea61b8f7020700000002681af944a5465101930e1f4b991ef2f10f485ddf80e07251de39066555baed365ef3"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sr0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x10000, 0xde, 0x11, r6, 0x28000) 446.214229ms ago: executing program 3 (id=857): mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000) mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa) ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0) ioperm$auto(0x7, 0x5ad2, 0x8) ioctl$auto_USBDEVFS_ALLOW_SUSPEND(0xffffffffffffffff, 0x5522, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x80800000000) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bus/usb/008/001\x00', 0x248880, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd2, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80100001, 0x3, 0x1, 0x4, 0x100000000001, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f0000000540)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100080a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = userfaultfd$auto(0x1) statx$auto(r1, 0x0, 0x1000, 0x8, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000440)={{0x0, 0x80000000, &(0x7f0000000300)={0x0, 0x7}, 0x3, &(0x7f0000000340)="f92c0bd05bc4110f9c8e988f1e573eadfc4b262ba12d02ee44d5f5f0f66f9c6b7c1232f72b43c14d0d4f76e6cf0a7c5bf86b6ebce5c46e72796de5369764b7f3f5ff08cf0887799011735092a327f8b941b68ddc454b0d04eeaf6fa246b4181a1ee99c9e2e9e2ae2f26fa8f7ba2b8ab19c0ebf606b5f5c2c87c523047cebc715f086e265c5cf8b06701082312e821f0585d2a0a71a1c319bba53590751995b81111c02ad81dddfbdfbe9c5d4274832e15fca038e591e354669d457d1e624ad945f3ffaa8b6094d", 0x4000100000000, 0x80}, 0x2}, 0x0, 0x6) keyctl$auto(0x4, 0xffffffffffffffff, 0x5, 0x800, 0xa) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) utimes$auto(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x100000000, 0xc000000000000}) bpf$auto(0x100000, 0x0, 0x6f2) mmap$auto(0x0, 0x601efba4, 0x4, 0x8000000000000019, 0xffffffffffffffff, 0x8001) bpf$auto(0x4, 0x0, 0xc) bpf$auto_BPF_ENABLE_STATS(0x20, &(0x7f0000000480)=@token_create={0x1, r0}, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/pci0000:00/0000:00:04.0/resource0\x00', 0xc0082, 0x0) socket(0x2, 0x801, 0x100) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001140)='/sys/devices/virtual/block/zram0/comp_algorithm\x00', 0x20b42, 0x0) sendfile$auto(r2, 0x3, 0x0, 0x7) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x8e40, 0x0) 0s ago: executing program 2 (id=858): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x802, 0x0) ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x18, 0x10, 0x808, 0x7fb, &(0x7f0000000340)="2e87ae255faea9bca16821e73660a43c98f81f056a20818dde63d3c3436ada5521c127417b70c848d2f0b41c9954b52c56fd29b722f89cb8e96cfabaead96bc484c33f7fb2b8e8aeaeeb962fd2017e70de4a4892c560daf3d83461a5c527c6ca6471a2d3bb0714224c0002a6ed62432b4a635d9cb072fba6cc4049f67aced3906e0af971d833a8a1d53e32a133a5b4c89ec915deff549042f4d94e13d7855e68b736ec90d98b3cc7"}) bpf$auto_BPF_PROG_ATTACH(0x8, &(0x7f0000000180)=@link_create={@map_fd, @target_ifindex, 0x37, 0x101, @netkit={@relative_id=0x8001, 0x7d}}, 0x11) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/thread-self/net/rpc/nfs4.nametoid/channel\x00', 0x8f3b7a51b8322d61, 0x0) write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000040)="5cedd9d1027e0dc0023af10e9bfa1babfa3a3753ca9aee370a", 0x19) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0) ioctl$auto_TIOCGDEV2(r2, 0x5452, &(0x7f0000000880)=0x5) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) keyctl$auto(0x2000000000000016, 0x0, 0xfffffffe, 0x400040, 0xa8) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x20540, 0x0) mmap$auto(0x2, 0x20000020009, 0x6, 0xebf, 0x40000000000a5, 0x8000) ioctl$auto(0xffffffffffffffff, 0x3, r1) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x407, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0x10001, 0x3, 0x62, 0x80000001, 0x7, 0x6d3b, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r3, 0x0, 0x100000a3d9) sendmmsg$auto(0x3, 0x0, 0xfc6a, 0x8) r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x13, r4, 0x4, 0x7ff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$auto_ILA_CMD_ADD(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYBLOB="201035a1223dac3528819353121ef0380bc5a9076c07f6a04e18cb3f48eae3964271fe7d59bc5c609be681cf6e08f3b16a130f962d92fff1f76dbde0abcc354c20eec1d4f6cd2a97dfd0bd9eace9b3886e7abd2e4d51cf4943d43ac3d51bfa7b27c8e1af43a9ed91463dcaca445f335a14f1fc10f5c124eadd1fdae568e6a5057afaec85913475d241233817339dcad47868c0cd67e7cceb4a30c98f92cd568439049e2e", @ANYRES16=r6, @ANYBLOB="010026bd7004fedbdf25010000000c0003000600000000000000"], 0x20}, 0x1, 0x0, 0x0, 0x20040880}, 0x4) socket(0xa, 0x2, 0x40000000) kernel console output (not intermixed with test programs): ndler #40!!! [ 114.662509][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 114.743873][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 114.812556][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 115.571755][ T5979] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 117.963431][ T6008] capability: warning: `syz.2.15' uses 32-bit capabilities (legacy support in use) [ 119.038141][ T6027] syz.0.19 uses obsolete (PF_INET,SOCK_PACKET) [ 120.334462][ T6047] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input5 [ 124.868101][ T6101] Invalid ELF header magic: != ELF [ 125.368052][ T6103] netlink: 4 bytes leftover after parsing attributes in process `syz.3.34'. [ 126.814991][ T6123] netlink: 28 bytes leftover after parsing attributes in process `syz.3.39'. [ 126.871229][ T6123] ipvlan0: entered allmulticast mode [ 126.884841][ T6123] veth0_vlan: entered allmulticast mode [ 126.929076][ T6123] Zero length message leads to an empty skb [ 127.311934][ T6130] FAULT_INJECTION: forcing a failure. [ 127.311934][ T6130] name failslab, interval 1, probability 0, space 0, times 1 [ 127.388108][ T6130] CPU: 1 UID: 0 PID: 6130 Comm: syz.2.40 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 127.388152][ T6130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 127.388175][ T6130] Call Trace: [ 127.388185][ T6130] [ 127.388197][ T6130] dump_stack_lvl+0x16c/0x1f0 [ 127.388242][ T6130] should_fail_ex+0x512/0x640 [ 127.388274][ T6130] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 127.388323][ T6130] should_failslab+0xc2/0x120 [ 127.388380][ T6130] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 127.388423][ T6130] ? __pfx_acct_collect+0x10/0x10 [ 127.388470][ T6130] ? taskstats_exit+0x654/0xbe0 [ 127.388523][ T6130] taskstats_exit+0x654/0xbe0 [ 127.388574][ T6130] ? __pfx_taskstats_exit+0x10/0x10 [ 127.388635][ T6130] do_exit+0x5dc/0x2bf0 [ 127.388688][ T6130] ? __pfx_do_exit+0x10/0x10 [ 127.388731][ T6130] ? do_raw_spin_lock+0x12c/0x2b0 [ 127.388781][ T6130] ? find_held_lock+0x2b/0x80 [ 127.388819][ T6130] do_group_exit+0xd3/0x2a0 [ 127.388867][ T6130] get_signal+0x2673/0x26d0 [ 127.388919][ T6130] ? __pfx_get_signal+0x10/0x10 [ 127.388955][ T6130] ? do_futex+0x122/0x350 [ 127.388997][ T6130] ? __pfx_do_futex+0x10/0x10 [ 127.389050][ T6130] arch_do_signal_or_restart+0x8f/0x790 [ 127.389094][ T6130] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 127.389149][ T6130] ? xfd_validate_state+0x61/0x180 [ 127.389194][ T6130] ? __pfx___do_sys_close_range+0x10/0x10 [ 127.389247][ T6130] exit_to_user_mode_loop+0x84/0x110 [ 127.389297][ T6130] do_syscall_64+0x3f6/0x490 [ 127.389341][ T6130] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 127.389374][ T6130] RIP: 0033:0x7f6b22f8e9a9 [ 127.389406][ T6130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 127.389442][ T6130] RSP: 002b:00007f6b23dee0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 127.389472][ T6130] RAX: fffffffffffffe00 RBX: 00007f6b231b6088 RCX: 00007f6b22f8e9a9 [ 127.389492][ T6130] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6b231b6088 [ 127.389512][ T6130] RBP: 00007f6b231b6080 R08: 0000000000000000 R09: 0000000000000000 [ 127.389532][ T6130] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6b231b608c [ 127.389551][ T6130] R13: 0000000000000000 R14: 00007ffc3c317050 R15: 00007ffc3c317138 [ 127.389592][ T6130] [ 128.544275][ T6147] process 'syz.0.44' launched ':,' with NULL argv: empty string added [ 132.260583][ T6161] random: crng reseeded on system resumption [ 133.137073][ T6194] netlink: 330 bytes leftover after parsing attributes in process `syz.2.52'. [ 135.340664][ T6208] random: crng reseeded on system resumption [ 136.620978][ T6232] netlink: 252 bytes leftover after parsing attributes in process `syz.2.59'. [ 136.906142][ T6232] can: request_module (can-proto-5) failed. [ 138.422832][ T6261] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 4294967282 out of range (51000000..2150000000) [ 138.576605][ T6269] vhci_hcd: invalid port number 16 [ 138.605864][ T6269] vhci_hcd: invalid port number 16 [ 141.464050][ T6307] openvswitch: netlink: IP tunnel dst address not specified [ 143.373535][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 143.380076][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 144.470074][ T6354] can: request_module (can-proto-0) failed. [ 144.845770][ T6365] usb usb37: usbfs: process 6365 (syz.3.85) did not claim interface 16 before use [ 148.049344][ T6407] random: crng reseeded on system resumption [ 150.439684][ T6435] netlink: 28 bytes leftover after parsing attributes in process `syz.2.98'. [ 150.520704][ T6439] FAULT_INJECTION: forcing a failure. [ 150.520704][ T6439] name fail_futex, interval 1, probability 0, space 0, times 1 [ 150.594147][ T6439] CPU: 0 UID: 0 PID: 6439 Comm: syz.1.97 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 150.594182][ T6439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 150.594196][ T6439] Call Trace: [ 150.594203][ T6439] [ 150.594211][ T6439] dump_stack_lvl+0x16c/0x1f0 [ 150.594245][ T6439] should_fail_ex+0x512/0x640 [ 150.594274][ T6439] get_futex_key+0x1d0/0x1540 [ 150.594306][ T6439] ? __pfx_get_futex_key+0x10/0x10 [ 150.594351][ T6439] futex_wake+0xea/0x530 [ 150.594388][ T6439] ? __pfx_futex_wake+0x10/0x10 [ 150.594422][ T6439] ? rcu_is_watching+0x12/0xc0 [ 150.594458][ T6439] do_futex+0x1e3/0x350 [ 150.594488][ T6439] ? __pfx_do_futex+0x10/0x10 [ 150.594520][ T6439] ? __pfx___might_resched+0x10/0x10 [ 150.594549][ T6439] __x64_sys_futex+0x1e0/0x4c0 [ 150.594580][ T6439] ? __pfx_blkcg_maybe_throttle_current+0x10/0x10 [ 150.594618][ T6439] ? __pfx___x64_sys_futex+0x10/0x10 [ 150.594649][ T6439] ? __pfx___do_sys_close_range+0x10/0x10 [ 150.594690][ T6439] do_syscall_64+0xcd/0x490 [ 150.594722][ T6439] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 150.594745][ T6439] RIP: 0033:0x7fa53238e9a9 [ 150.594764][ T6439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 150.594786][ T6439] RSP: 002b:00007fa5331140e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 150.594821][ T6439] RAX: ffffffffffffffda RBX: 00007fa5325b6088 RCX: 00007fa53238e9a9 [ 150.594837][ T6439] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa5325b608c [ 150.594851][ T6439] RBP: 00007fa5325b6080 R08: 00007fa533136000 R09: 0000000000000000 [ 150.594865][ T6439] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5325b608c [ 150.594879][ T6439] R13: 0000000000000000 R14: 00007ffef0e8f470 R15: 00007ffef0e8f558 [ 150.594908][ T6439] [ 151.144011][ T6435] ipvlan0: entered allmulticast mode [ 151.151172][ T6435] veth0_vlan: entered allmulticast mode [ 153.924586][ T6487] FAULT_INJECTION: forcing a failure. [ 153.924586][ T6487] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 153.965345][ T6487] CPU: 0 UID: 0 PID: 6487 Comm: syz.0.107 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 153.965390][ T6487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 153.965409][ T6487] Call Trace: [ 153.965420][ T6487] [ 153.965432][ T6487] dump_stack_lvl+0x16c/0x1f0 [ 153.965488][ T6487] should_fail_ex+0x512/0x640 [ 153.965529][ T6487] should_fail_alloc_page+0xe7/0x130 [ 153.965585][ T6487] prepare_alloc_pages+0x3c2/0x610 [ 153.965621][ T6487] ? rcu_is_watching+0x12/0xc0 [ 153.965660][ T6487] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 153.965709][ T6487] ? __lock_acquire+0xb8a/0x1c90 [ 153.965771][ T6487] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 153.965820][ T6487] ? do_raw_spin_lock+0x12c/0x2b0 [ 153.965869][ T6487] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 153.965918][ T6487] ? find_held_lock+0x2b/0x80 [ 153.965963][ T6487] ? __lock_acquire+0xb8a/0x1c90 [ 153.966013][ T6487] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 153.966069][ T6487] ? policy_nodemask+0xea/0x4e0 [ 153.966130][ T6487] alloc_pages_mpol+0x1fb/0x550 [ 153.966193][ T6487] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 153.966257][ T6487] folio_alloc_mpol_noprof+0x36/0x2f0 [ 153.966295][ T6487] shmem_alloc_folio+0x135/0x160 [ 153.966333][ T6487] shmem_alloc_and_add_folio+0x499/0xc20 [ 153.966386][ T6487] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 153.966435][ T6487] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 153.966499][ T6487] shmem_get_folio_gfp+0x67f/0x1600 [ 153.966554][ T6487] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 153.966604][ T6487] ? filemap_map_pages+0xf6f/0x1680 [ 153.966656][ T6487] shmem_fault+0x1fe/0xa30 [ 153.966703][ T6487] ? __pfx_shmem_fault+0x10/0x10 [ 153.966755][ T6487] ? __pfx_filemap_map_pages+0x10/0x10 [ 153.966816][ T6487] __do_fault+0x10a/0x490 [ 153.966866][ T6487] __handle_mm_fault+0x3bf8/0x5390 [ 153.966919][ T6487] ? __pfx___handle_mm_fault+0x10/0x10 [ 153.966958][ T6487] ? __pfx_mt_find+0x10/0x10 [ 153.967027][ T6487] ? find_vma+0xbf/0x140 [ 153.967056][ T6487] ? __pfx_find_vma+0x10/0x10 [ 153.967097][ T6487] handle_mm_fault+0x589/0xd10 [ 153.967140][ T6487] ? __pkru_allows_pkey+0x51/0xb0 [ 153.967194][ T6487] do_user_addr_fault+0x7a6/0x1370 [ 153.967252][ T6487] ? rcu_is_watching+0x12/0xc0 [ 153.967291][ T6487] exc_page_fault+0x5c/0xb0 [ 153.967331][ T6487] asm_exc_page_fault+0x26/0x30 [ 153.967363][ T6487] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 153.967418][ T6487] Code: 21 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 153.967451][ T6487] RSP: 0018:ffffc9001900f8a8 EFLAGS: 00050206 [ 153.967485][ T6487] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000 [ 153.967506][ T6487] RDX: 0000000000000000 RSI: 000000000005a000 RDI: ffff88804f4d4000 [ 153.967527][ T6487] RBP: 0000000000001000 R08: 0000000000000001 R09: ffffed1009e9a9ff [ 153.967548][ T6487] R10: ffff88804f4d4fff R11: 0000000000000000 R12: 000000000005a000 [ 153.967569][ T6487] R13: ffffc9001900fd80 R14: ffff88804f4d4000 R15: 000000000005a000 [ 153.967615][ T6487] _copy_from_iter+0x4eb/0x16f0 [ 153.967669][ T6487] ? __pfx__copy_from_iter+0x10/0x10 [ 153.967709][ T6487] ? __pfx___mutex_lock+0x10/0x10 [ 153.967772][ T6487] copy_page_from_iter+0xde/0x180 [ 153.967818][ T6487] anon_pipe_write+0xbe7/0x1a90 [ 153.967881][ T6487] ? __pfx_anon_pipe_write+0x10/0x10 [ 153.967930][ T6487] ? __pfx_autoremove_wake_function+0x10/0x10 [ 153.967971][ T6487] ? __lock_acquire+0x622/0x1c90 [ 153.968017][ T6487] ? copy_iovec_from_user+0x131/0x170 [ 153.968060][ T6487] do_iter_readv_writev+0x654/0x950 [ 153.968104][ T6487] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 153.968154][ T6487] ? bpf_lsm_file_permission+0x9/0x10 [ 153.968184][ T6487] ? security_file_permission+0x71/0x210 [ 153.968227][ T6487] ? rw_verify_area+0xcf/0x680 [ 153.968270][ T6487] vfs_writev+0x35f/0xde0 [ 153.968322][ T6487] ? __pfx_vfs_writev+0x10/0x10 [ 153.968395][ T6487] ? __fget_files+0x20e/0x3c0 [ 153.968448][ T6487] ? do_writev+0x28c/0x340 [ 153.968495][ T6487] do_writev+0x28c/0x340 [ 153.968536][ T6487] ? __pfx_do_writev+0x10/0x10 [ 153.968574][ T6487] ? syscall_user_dispatch+0x78/0x140 [ 153.968640][ T6487] do_syscall_64+0xcd/0x490 [ 153.968686][ T6487] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 153.968720][ T6487] RIP: 0033:0x7fd62658e9a9 [ 153.968746][ T6487] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 153.968778][ T6487] RSP: 002b:00007fd6243f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 153.968809][ T6487] RAX: ffffffffffffffda RBX: 00007fd6267b5fa0 RCX: 00007fd62658e9a9 [ 153.968830][ T6487] RDX: 0000000000000002 RSI: 0000200000000200 RDI: 0000000000000000 [ 153.968849][ T6487] RBP: 00007fd626610d69 R08: 0000000000000000 R09: 0000000000000000 [ 153.968868][ T6487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 153.968887][ T6487] R13: 0000000000000000 R14: 00007fd6267b5fa0 R15: 00007ffeee355168 [ 153.968930][ T6487] [ 158.629990][ T6566] mmap: syz.0.124 (6566) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 158.668917][ T6566] FAULT_INJECTION: forcing a failure. [ 158.668917][ T6566] name fail_futex, interval 1, probability 0, space 0, times 0 [ 158.706055][ T6566] CPU: 0 UID: 0 PID: 6566 Comm: syz.0.124 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 158.706106][ T6566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 158.706126][ T6566] Call Trace: [ 158.706137][ T6566] [ 158.706150][ T6566] dump_stack_lvl+0x16c/0x1f0 [ 158.706198][ T6566] should_fail_ex+0x512/0x640 [ 158.706240][ T6566] get_futex_key+0x1d0/0x1540 [ 158.706294][ T6566] ? irq_work_queue+0xce/0x100 [ 158.706325][ T6566] ? __pfx_get_futex_key+0x10/0x10 [ 158.706362][ T6566] ? __wake_up_klogd.part.0+0x99/0xf0 [ 158.706413][ T6566] ? vprintk_emit+0x1e6/0x6d0 [ 158.706448][ T6566] ? __pfx_vprintk_emit+0x10/0x10 [ 158.706487][ T6566] futex_wake+0xea/0x530 [ 158.706540][ T6566] ? __pfx_futex_wake+0x10/0x10 [ 158.706586][ T6566] ? __pfx__printk+0x10/0x10 [ 158.706638][ T6566] ? rcu_is_watching+0x12/0xc0 [ 158.706681][ T6566] do_futex+0x1e3/0x350 [ 158.706724][ T6566] ? __pfx_do_futex+0x10/0x10 [ 158.706765][ T6566] ? __pfx_from_kuid+0x10/0x10 [ 158.706826][ T6566] __x64_sys_futex+0x1e0/0x4c0 [ 158.706876][ T6566] ? __pfx___x64_sys_futex+0x10/0x10 [ 158.706919][ T6566] ? xfd_validate_state+0x61/0x180 [ 158.706982][ T6566] do_syscall_64+0xcd/0x490 [ 158.707025][ T6566] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 158.707059][ T6566] RIP: 0033:0x7fd62658e9a9 [ 158.707085][ T6566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 158.707117][ T6566] RSP: 002b:00007fd6243f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 158.707148][ T6566] RAX: ffffffffffffffda RBX: 00007fd6267b5fa8 RCX: 00007fd62658e9a9 [ 158.707170][ T6566] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fd6267b5fac [ 158.707191][ T6566] RBP: 00007fd6267b5fa0 R08: 00007fd6272fa000 R09: 0000000000000000 [ 158.707212][ T6566] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fd6267b5fac [ 158.707233][ T6566] R13: 0000000000000000 R14: 00007ffeee355080 R15: 00007ffeee355168 [ 158.707283][ T6566] [ 159.998877][ T5847] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 160.445764][ T6593] FAULT_INJECTION: forcing a failure. [ 160.445764][ T6593] name failslab, interval 1, probability 0, space 0, times 0 [ 160.522920][ T6593] CPU: 0 UID: 0 PID: 6593 Comm: syz.2.130 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 160.522954][ T6593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 160.522968][ T6593] Call Trace: [ 160.522976][ T6593] [ 160.522984][ T6593] dump_stack_lvl+0x16c/0x1f0 [ 160.523017][ T6593] should_fail_ex+0x512/0x640 [ 160.523040][ T6593] ? __kvmalloc_node_noprof+0x124/0x620 [ 160.523073][ T6593] should_failslab+0xc2/0x120 [ 160.523107][ T6593] __kvmalloc_node_noprof+0x137/0x620 [ 160.523136][ T6593] ? __pfx___mutex_lock+0x10/0x10 [ 160.523164][ T6593] ? traverse.part.0.constprop.0+0x392/0x640 [ 160.523196][ T6593] ? traverse.part.0.constprop.0+0x392/0x640 [ 160.523228][ T6593] traverse.part.0.constprop.0+0x392/0x640 [ 160.523264][ T6593] seq_read_iter+0x932/0x12c0 [ 160.523302][ T6593] seq_read+0x39e/0x4e0 [ 160.523327][ T6593] ? __pfx_seq_read+0x10/0x10 [ 160.523357][ T6593] ? get_pid_task+0xfc/0x250 [ 160.523398][ T6593] ? __pfx_seq_read+0x10/0x10 [ 160.523424][ T6593] proc_reg_read+0x11d/0x330 [ 160.523458][ T6593] ? __pfx_proc_reg_read+0x10/0x10 [ 160.523494][ T6593] vfs_read+0x1e1/0xc60 [ 160.523529][ T6593] ? __pfx_vfs_read+0x10/0x10 [ 160.523556][ T6593] ? find_held_lock+0x2b/0x80 [ 160.523579][ T6593] ? __fget_files+0x204/0x3c0 [ 160.523611][ T6593] ? __fget_files+0x20e/0x3c0 [ 160.523637][ T6593] ? __fget_files+0x160/0x3c0 [ 160.523672][ T6593] __x64_sys_pread64+0x1eb/0x250 [ 160.523704][ T6593] ? __pfx___x64_sys_pread64+0x10/0x10 [ 160.523744][ T6593] do_syscall_64+0xcd/0x490 [ 160.523775][ T6593] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 160.523798][ T6593] RIP: 0033:0x7f6b22f8e9a9 [ 160.523816][ T6593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 160.523838][ T6593] RSP: 002b:00007f6b23e0f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 160.523859][ T6593] RAX: ffffffffffffffda RBX: 00007f6b231b5fa0 RCX: 00007f6b22f8e9a9 [ 160.523874][ T6593] RDX: 00000000000007ff RSI: 0000200000000040 RDI: 0000000000000003 [ 160.523888][ T6593] RBP: 00007f6b23e0f090 R08: 0000000000000000 R09: 0000000000000000 [ 160.523901][ T6593] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000001 [ 160.523914][ T6593] R13: 0000000000000000 R14: 00007f6b231b5fa0 R15: 00007ffc3c317138 [ 160.523943][ T6593] [ 162.400277][ T6621] Invalid ELF header magic: != ELF [ 162.797118][ T6621] netlink: 4 bytes leftover after parsing attributes in process `syz.1.138'. [ 164.632116][ T6657] FAULT_INJECTION: forcing a failure. [ 164.632116][ T6657] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 164.706249][ T6657] CPU: 0 UID: 0 PID: 6657 Comm: syz.2.144 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 164.706294][ T6657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 164.706312][ T6657] Call Trace: [ 164.706322][ T6657] [ 164.706334][ T6657] dump_stack_lvl+0x16c/0x1f0 [ 164.706379][ T6657] should_fail_ex+0x512/0x640 [ 164.706418][ T6657] _copy_to_user+0x32/0xd0 [ 164.706460][ T6657] simple_read_from_buffer+0xcb/0x170 [ 164.706501][ T6657] proc_fail_nth_read+0x197/0x240 [ 164.706540][ T6657] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 164.706583][ T6657] ? rw_verify_area+0xcf/0x680 [ 164.706626][ T6657] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 164.706665][ T6657] vfs_read+0x1e1/0xc60 [ 164.706709][ T6657] ? __pfx___mutex_lock+0x10/0x10 [ 164.706752][ T6657] ? __pfx_vfs_read+0x10/0x10 [ 164.706803][ T6657] ? __fget_files+0x20e/0x3c0 [ 164.706855][ T6657] ksys_read+0x12a/0x250 [ 164.706895][ T6657] ? __pfx_ksys_read+0x10/0x10 [ 164.706949][ T6657] do_syscall_64+0xcd/0x490 [ 164.706993][ T6657] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 164.707026][ T6657] RIP: 0033:0x7f6b22f8d3bc [ 164.707050][ T6657] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 164.707078][ T6657] RSP: 002b:00007f6b23e0f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 164.707105][ T6657] RAX: ffffffffffffffda RBX: 00007f6b231b5fa0 RCX: 00007f6b22f8d3bc [ 164.707126][ T6657] RDX: 000000000000000f RSI: 00007f6b23e0f0a0 RDI: 0000000000000004 [ 164.707144][ T6657] RBP: 00007f6b23e0f090 R08: 0000000000000000 R09: 0000000000000000 [ 164.707163][ T6657] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000001 [ 164.707181][ T6657] R13: 0000000000000000 R14: 00007f6b231b5fa0 R15: 00007ffc3c317138 [ 164.707227][ T6657] [ 174.419494][ T6808] netlink: 'syz.3.177': attribute type 10 has an invalid length. [ 174.472045][ T6808] netlink: 230 bytes leftover after parsing attributes in process `syz.3.177'. [ 175.188577][ T6823] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9 [ 176.728099][ T6818] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(3) [ 179.266104][ T6866] sctp: [Deprecated]: syz.2.187 (pid 6866) Use of int in maxseg socket option. [ 179.266104][ T6866] Use struct sctp_assoc_value instead [ 181.926007][ T6903] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11 [ 187.009074][ T6963] futex_wake_op: syz.0.204 tries to shift op by -9; fix this program [ 187.811996][ T6987] Can't allocate a compression stream [ 187.831091][ T6987] zram: Cannot initialise lzo compressing backend [ 188.211145][ T6988] zram0: detected capacity change from 0 to 8 [ 188.229063][ T6679] syz.1.146 (6679) used greatest stack depth: 19560 bytes left [ 189.023776][ T7014] netlink: 8 bytes leftover after parsing attributes in process `syz.3.215'. [ 190.057738][ T7027] random: crng reseeded on system resumption [ 190.151367][ T7032] vhci_hcd: invalid port number 16 [ 190.232765][ T7032] vhci_hcd: invalid port number 16 [ 191.041026][ T7045] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12 [ 191.661917][ T7045] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 193.020949][ T7074] FAULT_INJECTION: forcing a failure. [ 193.020949][ T7074] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 193.071284][ T7074] CPU: 0 UID: 0 PID: 7074 Comm: syz.2.226 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 193.071331][ T7074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 193.071350][ T7074] Call Trace: [ 193.071360][ T7074] [ 193.071372][ T7074] dump_stack_lvl+0x16c/0x1f0 [ 193.071419][ T7074] should_fail_ex+0x512/0x640 [ 193.071461][ T7074] strncpy_from_user+0x3b/0x2e0 [ 193.071522][ T7074] getname_flags.part.0+0x8f/0x550 [ 193.071563][ T7074] getname_flags+0x93/0xf0 [ 193.071613][ T7074] do_sys_openat2+0xb8/0x1d0 [ 193.071646][ T7074] ? __pfx_do_sys_openat2+0x10/0x10 [ 193.071702][ T7074] __x64_sys_openat+0x174/0x210 [ 193.071737][ T7074] ? __pfx___x64_sys_openat+0x10/0x10 [ 193.071790][ T7074] do_syscall_64+0xcd/0x490 [ 193.071836][ T7074] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 193.071870][ T7074] RIP: 0033:0x7f6b22f8e9a9 [ 193.071897][ T7074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 193.071929][ T7074] RSP: 002b:00007f6b23e0f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 193.071968][ T7074] RAX: ffffffffffffffda RBX: 00007f6b231b5fa0 RCX: 00007f6b22f8e9a9 [ 193.071990][ T7074] RDX: 0000000000084000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 193.072011][ T7074] RBP: 00007f6b23010d69 R08: 0000000000000000 R09: 0000000000000000 [ 193.072032][ T7074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 193.072061][ T7074] R13: 0000000000000000 R14: 00007f6b231b5fa0 R15: 00007ffc3c317138 [ 193.072103][ T7074] [ 193.811839][ T7080] random: crng reseeded on system resumption [ 196.508988][ T7125] Invalid ELF header magic: != ELF [ 200.905777][ T7211] FAULT_INJECTION: forcing a failure. [ 200.905777][ T7211] name failslab, interval 1, probability 0, space 0, times 0 [ 200.905825][ T7211] CPU: 1 UID: 0 PID: 7211 Comm: syz.1.250 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 200.905855][ T7211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 200.905869][ T7211] Call Trace: [ 200.905876][ T7211] [ 200.905885][ T7211] dump_stack_lvl+0x16c/0x1f0 [ 200.905918][ T7211] should_fail_ex+0x512/0x640 [ 200.905943][ T7211] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 200.905976][ T7211] should_failslab+0xc2/0x120 [ 200.906013][ T7211] __kmalloc_cache_noprof+0x6a/0x3e0 [ 200.906043][ T7211] ? device_create_groups_vargs+0x8a/0x270 [ 200.906078][ T7211] device_create_groups_vargs+0x8a/0x270 [ 200.906112][ T7211] device_create+0xed/0x130 [ 200.906141][ T7211] ? __pfx_device_create+0x10/0x10 [ 200.906167][ T7211] ? do_raw_spin_lock+0x12c/0x2b0 [ 200.906207][ T7211] ? is_console_locked+0x9/0x20 [ 200.906234][ T7211] ? con_is_visible+0x65/0x150 [ 200.906265][ T7211] ? csi_J+0x54a/0xad0 [ 200.906306][ T7211] vcs_make_sysfs+0x32/0x80 [ 200.906339][ T7211] vc_allocate+0x501/0x880 [ 200.906377][ T7211] ? __pfx_vc_allocate+0x10/0x10 [ 200.906423][ T7211] con_install+0xa1/0x600 [ 200.906474][ T7211] ? __pfx_con_install+0x10/0x10 [ 200.906518][ T7211] ? __pfx_con_install+0x10/0x10 [ 200.906557][ T7211] tty_init_dev.part.0+0x99/0x500 [ 200.906585][ T7211] tty_open+0xa50/0xf90 [ 200.906614][ T7211] ? __pfx_tty_open+0x10/0x10 [ 200.906638][ T7211] ? chrdev_open+0x58c/0x6a0 [ 200.906677][ T7211] ? __pfx_tty_open+0x10/0x10 [ 200.906700][ T7211] chrdev_open+0x234/0x6a0 [ 200.906735][ T7211] ? __pfx_chrdev_open+0x10/0x10 [ 200.906772][ T7211] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 200.906809][ T7211] do_dentry_open+0x744/0x1c10 [ 200.906842][ T7211] ? __pfx_chrdev_open+0x10/0x10 [ 200.906882][ T7211] vfs_open+0x82/0x3f0 [ 200.906907][ T7211] path_openat+0x1de4/0x2cb0 [ 200.906949][ T7211] ? __pfx_path_openat+0x10/0x10 [ 200.906982][ T7211] ? __lock_acquire+0xb8a/0x1c90 [ 200.907017][ T7211] do_filp_open+0x20b/0x470 [ 200.907049][ T7211] ? __pfx_do_filp_open+0x10/0x10 [ 200.907102][ T7211] ? alloc_fd+0x471/0x7d0 [ 200.907139][ T7211] do_sys_openat2+0x11b/0x1d0 [ 200.907162][ T7211] ? __pfx_do_sys_openat2+0x10/0x10 [ 200.907197][ T7211] __x64_sys_openat+0x174/0x210 [ 200.907221][ T7211] ? __pfx___x64_sys_openat+0x10/0x10 [ 200.907257][ T7211] do_syscall_64+0xcd/0x490 [ 200.907290][ T7211] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 200.907314][ T7211] RIP: 0033:0x7fa53238e9a9 [ 200.907333][ T7211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 200.907377][ T7211] RSP: 002b:00007fa533135038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 200.907399][ T7211] RAX: ffffffffffffffda RBX: 00007fa5325b5fa0 RCX: 00007fa53238e9a9 [ 200.907415][ T7211] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 200.907430][ T7211] RBP: 00007fa532410d69 R08: 0000000000000000 R09: 0000000000000000 [ 200.907450][ T7211] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000 [ 200.907464][ T7211] R13: 0000000000000000 R14: 00007fa5325b5fa0 R15: 00007ffef0e8f558 [ 200.907495][ T7211] [ 201.087241][ T7227] netlink: 28 bytes leftover after parsing attributes in process `syz.2.252'. [ 201.087287][ T7227] geneve1: entered promiscuous mode [ 201.087311][ T7227] geneve1: entered allmulticast mode [ 201.096389][ T7228] netlink: 28 bytes leftover after parsing attributes in process `syz.2.252'. [ 201.369431][ T7231] netlink: 4 bytes leftover after parsing attributes in process `syz.0.253'. [ 201.370138][ T7231] netlink: 4 bytes leftover after parsing attributes in process `syz.0.253'. [ 202.143872][ T7211] tty tty26: ldisc open failed (-12), clearing slot 25 [ 202.162812][ T7226] pty pty207: ldisc open failed (-12), clearing slot 207 [ 202.545080][ T7259] FAULT_INJECTION: forcing a failure. [ 202.545080][ T7259] name failslab, interval 1, probability 0, space 0, times 0 [ 202.579868][ T7259] CPU: 1 UID: 0 PID: 7259 Comm: syz.2.257 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 202.579903][ T7259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 202.579917][ T7259] Call Trace: [ 202.579925][ T7259] [ 202.579934][ T7259] dump_stack_lvl+0x16c/0x1f0 [ 202.579968][ T7259] should_fail_ex+0x512/0x640 [ 202.579993][ T7259] ? __kmalloc_noprof+0xbf/0x510 [ 202.580027][ T7259] ? constrain_params_by_rules+0x175/0xca0 [ 202.580062][ T7259] should_failslab+0xc2/0x120 [ 202.580098][ T7259] __kmalloc_noprof+0xd2/0x510 [ 202.580128][ T7259] ? kasan_quarantine_put+0x10a/0x240 [ 202.580158][ T7259] ? lockdep_hardirqs_on+0x7c/0x110 [ 202.580192][ T7259] constrain_params_by_rules+0x175/0xca0 [ 202.580226][ T7259] ? constrain_params_by_rules+0xa09/0xca0 [ 202.580275][ T7259] ? constrain_params_by_rules+0xa0e/0xca0 [ 202.580315][ T7259] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 202.580359][ T7259] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 202.580393][ T7259] ? snd_pcm_hw_param_near.constprop.0+0x72f/0x8e0 [ 202.580428][ T7259] ? snd_pcm_oss_change_params_locked+0x9cd/0x3a30 [ 202.580470][ T7259] ? snd_pcm_oss_change_params_locked+0x1398/0x3a30 [ 202.580505][ T7259] ? snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 202.580545][ T7259] ? snd_interval_refine+0x2fa/0x580 [ 202.580574][ T7259] snd_pcm_hw_refine+0x7de/0xad0 [ 202.580615][ T7259] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 202.580656][ T7259] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 202.580702][ T7259] snd_pcm_hw_param_first+0x334/0x6f0 [ 202.580742][ T7259] snd_pcm_hw_param_near.constprop.0+0x702/0x8e0 [ 202.580782][ T7259] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 202.580824][ T7259] ? __asan_memset+0x23/0x50 [ 202.580850][ T7259] ? calc_src_frames.isra.0+0x187/0x1d0 [ 202.580904][ T7259] snd_pcm_oss_change_params_locked+0x1398/0x3a30 [ 202.580976][ T7259] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 202.581025][ T7259] ? snd_pcm_oss_ioctl+0x110e/0x37a0 [ 202.581082][ T7259] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 202.581123][ T7259] snd_pcm_oss_ioctl+0x21e9/0x37a0 [ 202.581160][ T7259] ? hook_file_ioctl_common+0x145/0x410 [ 202.581186][ T7259] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 202.581224][ T7259] ? __fget_files+0x20e/0x3c0 [ 202.581258][ T7259] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 202.581302][ T7259] __x64_sys_ioctl+0x18e/0x210 [ 202.581329][ T7259] do_syscall_64+0xcd/0x490 [ 202.581362][ T7259] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.581386][ T7259] RIP: 0033:0x7f6b22f8e9a9 [ 202.581405][ T7259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 202.581427][ T7259] RSP: 002b:00007f6b23dee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 202.581449][ T7259] RAX: ffffffffffffffda RBX: 00007f6b231b6080 RCX: 00007f6b22f8e9a9 [ 202.581464][ T7259] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 000000000000000a [ 202.581478][ T7259] RBP: 00007f6b23010d69 R08: 0000000000000000 R09: 0000000000000000 [ 202.581492][ T7259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 202.581505][ T7259] R13: 0000000000000000 R14: 00007f6b231b6080 R15: 00007ffc3c317138 [ 202.581536][ T7259] [ 203.287077][ T7264] FAULT_INJECTION: forcing a failure. [ 203.287077][ T7264] name failslab, interval 1, probability 0, space 0, times 0 [ 203.349319][ T7264] CPU: 1 UID: 0 PID: 7264 Comm: syz.1.259 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 203.349367][ T7264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 203.349387][ T7264] Call Trace: [ 203.349398][ T7264] [ 203.349410][ T7264] dump_stack_lvl+0x16c/0x1f0 [ 203.349457][ T7264] should_fail_ex+0x512/0x640 [ 203.349493][ T7264] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 203.349545][ T7264] should_failslab+0xc2/0x120 [ 203.349597][ T7264] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 203.349644][ T7264] ? alloc_empty_file+0x55/0x1e0 [ 203.349681][ T7264] alloc_empty_file+0x55/0x1e0 [ 203.349714][ T7264] path_openat+0xda/0x2cb0 [ 203.349764][ T7264] ? rcu_is_watching+0x12/0xc0 [ 203.349798][ T7264] ? trace_kmem_cache_alloc+0x28/0xc0 [ 203.349829][ T7264] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 203.349875][ T7264] ? __pfx_path_openat+0x10/0x10 [ 203.349922][ T7264] ? __asan_memcpy+0x3c/0x60 [ 203.349968][ T7264] do_file_open_root+0x322/0x610 [ 203.350018][ T7264] ? __pfx_do_file_open_root+0x10/0x10 [ 203.350061][ T7264] ? stack_depot_save_flags+0x3e0/0xa40 [ 203.350139][ T7264] ? vsnprintf+0x318/0x1160 [ 203.350181][ T7264] file_open_root+0x2a7/0x450 [ 203.350229][ T7264] ? __pfx_file_open_root+0x10/0x10 [ 203.350285][ T7264] ? find_held_lock+0x2b/0x80 [ 203.350321][ T7264] ? kernel_read_file_from_path_initns+0x17a/0x260 [ 203.350389][ T7264] kernel_read_file_from_path_initns+0x189/0x260 [ 203.350451][ T7264] ? __pfx_kernel_read_file_from_path_initns+0x10/0x10 [ 203.350523][ T7264] _request_firmware+0x744/0x1470 [ 203.350589][ T7264] ? __pfx__request_firmware+0x10/0x10 [ 203.350655][ T7264] request_firmware+0x35/0x50 [ 203.350706][ T7264] valid_regdb+0x184/0x590 [ 203.350745][ T7264] ? __pfx___mutex_lock+0x10/0x10 [ 203.350789][ T7264] ? __pfx_valid_regdb+0x10/0x10 [ 203.350839][ T7264] reg_reload_regdb+0x11a/0x460 [ 203.350884][ T7264] ? __pfx_reg_reload_regdb+0x10/0x10 [ 203.350930][ T7264] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 203.350961][ T7264] ? nl80211_pre_doit+0x1b0/0xb10 [ 203.351000][ T7264] genl_family_rcv_msg_doit+0x206/0x2f0 [ 203.351055][ T7264] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 203.351103][ T7264] ? rcu_is_watching+0x12/0xc0 [ 203.351151][ T7264] ? bpf_lsm_capable+0x9/0x10 [ 203.351186][ T7264] ? security_capable+0x7e/0x260 [ 203.351312][ T7264] genl_rcv_msg+0x55c/0x800 [ 203.351368][ T7264] ? __pfx_genl_rcv_msg+0x10/0x10 [ 203.351417][ T7264] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 203.351448][ T7264] ? __pfx_nl80211_reload_regdb+0x10/0x10 [ 203.351490][ T7264] ? __pfx_nl80211_post_doit+0x10/0x10 [ 203.351538][ T7264] netlink_rcv_skb+0x155/0x420 [ 203.351581][ T7264] ? __pfx_genl_rcv_msg+0x10/0x10 [ 203.351632][ T7264] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 203.351695][ T7264] ? netlink_deliver_tap+0x1ae/0xd30 [ 203.351741][ T7264] genl_rcv+0x28/0x40 [ 203.351784][ T7264] netlink_unicast+0x5aa/0x870 [ 203.351834][ T7264] ? __pfx_netlink_unicast+0x10/0x10 [ 203.351879][ T7264] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 203.351936][ T7264] netlink_sendmsg+0x8d1/0xdd0 [ 203.351988][ T7264] ? __pfx_netlink_sendmsg+0x10/0x10 [ 203.352048][ T7264] ____sys_sendmsg+0xa95/0xc70 [ 203.352102][ T7264] ? copy_msghdr_from_user+0x10a/0x160 [ 203.352143][ T7264] ? __pfx_____sys_sendmsg+0x10/0x10 [ 203.352204][ T7264] ? __pfx_futex_wake_mark+0x10/0x10 [ 203.352266][ T7264] ___sys_sendmsg+0x134/0x1d0 [ 203.352303][ T7264] ? futex_private_hash_put+0x176/0x300 [ 203.352342][ T7264] ? __pfx____sys_sendmsg+0x10/0x10 [ 203.352380][ T7264] ? __lock_acquire+0x622/0x1c90 [ 203.352477][ T7264] __sys_sendmsg+0x16d/0x220 [ 203.352516][ T7264] ? __pfx___sys_sendmsg+0x10/0x10 [ 203.352557][ T7264] ? __x64_sys_futex+0x1e0/0x4c0 [ 203.352628][ T7264] do_syscall_64+0xcd/0x490 [ 203.352675][ T7264] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.352709][ T7264] RIP: 0033:0x7fa53238e9a9 [ 203.352736][ T7264] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 203.352768][ T7264] RSP: 002b:00007fa533135038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 203.352799][ T7264] RAX: ffffffffffffffda RBX: 00007fa5325b5fa0 RCX: 00007fa53238e9a9 [ 203.352821][ T7264] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000005 [ 203.352841][ T7264] RBP: 00007fa532410d69 R08: 0000000000000000 R09: 0000000000000000 [ 203.352861][ T7264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 203.352881][ T7264] R13: 0000000000000000 R14: 00007fa5325b5fa0 R15: 00007ffef0e8f558 [ 203.352924][ T7264] [ 203.872779][ T7264] faux_driver regulatory: loading /lib/firmware/updates/6.16.0-syzkaller-06699-ge8d780dcd957/regulatory.db.p7s failed with error -12 [ 203.891408][ T7264] faux_driver regulatory: loading /lib/firmware/regulatory.db.p7s failed with error -4 [ 203.892423][ T30] audit: type=1800 audit(4294967344.730:2): pid=7264 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.259" name="regulatory.db.p7s" dev="sda1" ino=449 res=0 errno=0 [ 203.901980][ T7264] faux_driver regulatory: Direct firmware load for regulatory.db.p7s failed with error -4 [ 203.933808][ T7264] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db.p7s [ 204.797621][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 204.804574][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 207.151955][ T7332] Invalid ELF header magic: != ELF [ 207.956668][ T7340] netlink: 342 bytes leftover after parsing attributes in process `syz.0.279'. [ 208.995308][ T7375] netlink: 280 bytes leftover after parsing attributes in process `syz.2.285'. [ 211.218205][ T7414] netlink: 206 bytes leftover after parsing attributes in process `syz.1.293'. [ 211.259811][ T7422] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input14 [ 218.001076][ T7490] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 219.187576][ T7531] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 219.393525][ T7536] netlink: 342 bytes leftover after parsing attributes in process `syz.1.313'. [ 219.839407][ T7547] random: crng reseeded on system resumption [ 222.110775][ T5845] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 222.120698][ T5845] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 222.129225][ T5845] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 222.140181][ T5845] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 222.147956][ T5845] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 222.211577][ T3464] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 222.525692][ T3464] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 222.625904][ T3464] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 222.751339][ T3464] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 223.651228][ T7562] chnl_net:caif_netlink_parms(): no params data found [ 223.796067][ T3464] bridge_slave_1: left allmulticast mode [ 223.816892][ T3464] bridge_slave_1: left promiscuous mode [ 223.833962][ T3464] bridge0: port 2(bridge_slave_1) entered disabled state [ 223.906999][ T3464] bridge_slave_0: left allmulticast mode [ 223.919723][ T3464] bridge_slave_0: left promiscuous mode [ 223.938292][ T3464] bridge0: port 1(bridge_slave_0) entered disabled state [ 223.966467][ T7592] random: crng reseeded on system resumption [ 224.232554][ T5847] Bluetooth: hci3: command tx timeout                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 syzkaller syzkaller login: [ 235.523905][ T7562] veth1_vlan: entered promiscuous mode [ 235.599336][ T7562] veth0_macvtap: entered promiscuous mode [ 235.616338][ T7562] veth1_macvtap: entered promiscuous mode [ 235.693377][ T7562] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 235.957675][ T7562] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 236.045110][ T3464] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 236.047607][ T3464] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 236.057280][ T13] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 236.057449][ T7844] netlink: 4 bytes leftover after parsing attributes in process `syz.1.358'. [ 236.058930][ T13] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 236.641566][ T138] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 236.651361][ T138] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 236.908138][ T34] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 236.918348][ T34] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 239.938944][ T7923] random: crng reseeded on system resumption                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   syzkaller syzkaller login: [ 277.597772][ T8644] random: crng reseeded on system resumption [ 278.824255][ T8651] FAULT_INJECTION: forcing a failure. [ 278.824255][ T8651] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 278.824304][ T8651] CPU: 1 UID: 0 PID: 8651 Comm: syz.3.496 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 278.824346][ T8651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 278.824365][ T8651] Call Trace: [ 278.824374][ T8651] [ 278.824386][ T8651] dump_stack_lvl+0x16c/0x1f0 [ 278.824431][ T8651] should_fail_ex+0x512/0x640 [ 278.824472][ T8651] should_fail_alloc_page+0xe7/0x130 [ 278.824526][ T8651] prepare_alloc_pages+0x3c2/0x610 [ 278.824560][ T8651] ? rcu_is_watching+0x12/0xc0 [ 278.824598][ T8651] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 278.824649][ T8651] ? rcu_is_watching+0x12/0xc0 [ 278.824681][ T8651] ? trace_mm_page_alloc+0x11f/0x1a0 [ 278.824712][ T8651] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 278.824751][ T8651] ? lockdep_hardirqs_on+0x7c/0x110 [ 278.824789][ T8651] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 278.824837][ T8651] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 278.824898][ T8651] ? alloc_vmap_area+0xdc8/0x29c0 [ 278.824934][ T8651] ? __vmalloc_node_range_noprof+0x271/0x14b0 [ 278.824972][ T8651] ? __do_sys_listmount+0x1c2/0xec0 [ 278.825007][ T8651] ? do_syscall_64+0xcd/0x490 [ 278.825045][ T8651] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 278.825097][ T8651] alloc_pages_bulk_noprof+0x71c/0x1410 [ 278.825144][ T8651] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 278.825205][ T8651] ? policy_nodemask+0xea/0x4e0 [ 278.825260][ T8651] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 278.825310][ T8651] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 278.825380][ T8651] kasan_populate_vmalloc+0xf1/0x1f0 [ 278.825433][ T8651] alloc_vmap_area+0x959/0x29c0 [ 278.825483][ T8651] ? __pfx_alloc_vmap_area+0x10/0x10 [ 278.825527][ T8651] __get_vm_area_node+0x1ca/0x330 [ 278.825571][ T8651] __vmalloc_node_range_noprof+0x271/0x14b0 [ 278.825610][ T8651] ? __do_sys_listmount+0x1c2/0xec0 [ 278.825647][ T8651] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 278.825702][ T8651] ? policy_nodemask+0xea/0x4e0 [ 278.825755][ T8651] ? __do_sys_listmount+0x1c2/0xec0 [ 278.825810][ T8651] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 278.825857][ T8651] ? ___kmalloc_large_node+0xed/0x160 [ 278.825899][ T8651] __kvmalloc_node_noprof+0x30a/0x620 [ 278.825943][ T8651] ? __do_sys_listmount+0x1c2/0xec0 [ 278.825982][ T8651] ? __do_sys_listmount+0x1c2/0xec0 [ 278.826027][ T8651] ? __do_sys_listmount+0x1c2/0xec0 [ 278.826062][ T8651] __do_sys_listmount+0x1c2/0xec0 [ 278.826107][ T8651] ? __x64_sys_futex+0x1e0/0x4c0 [ 278.826148][ T8651] ? __x64_sys_futex+0x1e9/0x4c0 [ 278.826191][ T8651] ? __pfx___do_sys_listmount+0x10/0x10 [ 278.826251][ T8651] do_syscall_64+0xcd/0x490 [ 278.826296][ T8651] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 278.826330][ T8651] RIP: 0033:0x7f20fb18e9a9 [ 278.826357][ T8651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 278.826389][ T8651] RSP: 002b:00007f20fbff1038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 278.826420][ T8651] RAX: ffffffffffffffda RBX: 00007f20fb3b5fa0 RCX: 00007f20fb18e9a9 [ 278.826442][ T8651] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100 [ 278.826462][ T8651] RBP: 00007f20fb210d69 R08: 0000000000000000 R09: 0000000000000000 [ 278.826482][ T8651] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 278.826502][ T8651] R13: 0000000000000000 R14: 00007f20fb3b5fa0 R15: 00007ffd602412c8 [ 278.826545][ T8651] [ 278.872435][ T8651] syz.3.496: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 279.045744][ T8651] CPU: 0 UID: 0 PID: 8651 Comm: syz.3.496 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 279.045778][ T8651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 279.045792][ T8651] Call Trace: [ 279.045800][ T8651] [ 279.045808][ T8651] dump_stack_lvl+0x16c/0x1f0 [ 279.045842][ T8651] warn_alloc+0x248/0x3a0 [ 279.045876][ T8651] ? __pfx_warn_alloc+0x10/0x10 [ 279.045910][ T8651] ? kfree+0x2b4/0x4d0 [ 279.045943][ T8651] ? __get_vm_area_node+0x208/0x330 [ 279.045976][ T8651] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 279.046004][ T8651] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 279.046044][ T8651] ? policy_nodemask+0xea/0x4e0 [ 279.046081][ T8651] ? __do_sys_listmount+0x1c2/0xec0 [ 279.046116][ T8651] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 279.046148][ T8651] ? ___kmalloc_large_node+0xed/0x160 [ 279.046177][ T8651] __kvmalloc_node_noprof+0x30a/0x620 [ 279.046208][ T8651] ? __do_sys_listmount+0x1c2/0xec0 [ 279.046235][ T8651] ? __do_sys_listmount+0x1c2/0xec0 [ 279.046267][ T8651] ? __do_sys_listmount+0x1c2/0xec0 [ 279.046291][ T8651] __do_sys_listmount+0x1c2/0xec0 [ 279.046322][ T8651] ? __x64_sys_futex+0x1e0/0x4c0 [ 279.046351][ T8651] ? __x64_sys_futex+0x1e9/0x4c0 [ 279.046381][ T8651] ? __pfx___do_sys_listmount+0x10/0x10 [ 279.046422][ T8651] do_syscall_64+0xcd/0x490 [ 279.046454][ T8651] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 279.046478][ T8651] RIP: 0033:0x7f20fb18e9a9 [ 279.046496][ T8651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 279.046519][ T8651] RSP: 002b:00007f20fbff1038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 279.046545][ T8651] RAX: ffffffffffffffda RBX: 00007f20fb3b5fa0 RCX: 00007f20fb18e9a9 [ 279.046561][ T8651] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100 [ 279.046575][ T8651] RBP: 00007f20fb210d69 R08: 0000000000000000 R09: 0000000000000000 [ 279.046589][ T8651] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 279.046603][ T8651] R13: 0000000000000000 R14: 00007f20fb3b5fa0 R15: 00007ffd602412c8 [ 279.046640][ T8651] [ 279.046669][ T8651] Mem-Info: [ 279.117297][ T8651] active_anon:32842 inactive_anon:5 isolated_anon:0 [ 279.117297][ T8651] active_file:10001 inactive_file:49161 isolated_file:0 [ 279.117297][ T8651] unevictable:768 dirty:724 writeback:0 [ 279.117297][ T8651] slab_reclaimable:10871 slab_unreclaimable:93825 [ 279.117297][ T8651] mapped:40834 shmem:23720 pagetables:1185 [ 279.117297][ T8651] sec_pagetables:0 bounce:0 [ 279.117297][ T8651] kernel_misc_reclaimable:0 [ 279.117297][ T8651] free:1292153 free_pcp:16739 free_cma:0 [ 279.270790][ T8651] Node 0 active_anon:127924kB inactive_anon:20kB active_file:40004kB inactive_file:196432kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:163256kB dirty:2940kB writeback:0kB shmem:93368kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11396kB pagetables:4548kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 279.282891][ T8651] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:212kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:12kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:160kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 279.287608][ T8651] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 279.355246][ T8651] lowmem_reserve[]: 0 2480 2482 2482 2482 [ 279.356308][ T8651] Node 0 DMA32 free:1269728kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:128076kB inactive_anon:20kB active_file:40004kB inactive_file:195108kB unevictable:1536kB writepending:2940kB present:3129332kB managed:2540356kB mlocked:0kB bounce:0kB free_pcp:50540kB local_pcp:34912kB free_cma:0kB [ 279.361491][ T8651] lowmem_reserve[]: 0 0 1 1 1 [ 279.364909][ T8651] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1324kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB [ 279.369687][ T8651] lowmem_reserve[]: 0 0 0 0 0 [ 279.370683][ T8651] Node 1 Normal free:3883448kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:212kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:20640kB local_pcp:10432kB free_cma:0kB [ 279.421667][ T8651] lowmem_reserve[]: 0 0 0 0 0 [ 279.423122][ T8651] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 279.425360][ T8651] Node 0 DMA32: 56*4kB (UE) 32*8kB (UE) 28*16kB (E) 16*32kB (E) 7*64kB (UE) 139*128kB (UME) 167*256kB (UM) 80*512kB (UME) 43*1024kB (UM) 16*2048kB (UME) 266*4096kB (M) = 1269728kB [ 279.428384][ T8651] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 279.430479][ T8651] Node 1 Normal: 178*4kB (UME) 50*8kB (UME) 38*16kB (UME) 182*32kB (UME) 73*64kB (UME) 6*128kB (UME) 5*256kB (UME) 1*512kB (M) 2*1024kB (ME) 2*2048kB (UE) 943*4096kB (M) = 3883448kB [ 279.434162][ T8651] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 279.436000][ T8651] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 279.437648][ T8651] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 279.439349][ T8651] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 279.440868][ T8651] 83089 total pagecache pages [ 279.441621][ T8651] 5 pages in swap cache [ 279.442385][ T8651] Free swap = 124976kB [ 279.443267][ T8651] Total swap = 124996kB [ 279.443950][ T8651] 2097051 pages RAM [ 279.452564][ T8651] 0 pages HighMem/MovableOnly [ 279.453501][ T8651] 429984 pages reserved [ 279.454289][ T8651] 0 pages cma reserved [ 281.855910][ T8699] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE r҄y*"l-y– [ 282.140338][ T8709] random: crng reseeded on system resumption syzkaller syzkaller login: [ 283.156432][ T8712] 0x000200000001-0xa29656a63616329 : "" [ 283.181747][ T8712] mtd: partition "" is out of reach -- disabled [ 283.213405][ T8716] netlink: 26 bytes leftover after parsing attributes in process `syz.0.507'. [ 283.235903][ T8712] ftl_cs: FTL header not found. [ 283.292337][ T8716] openvswitch: netlink: IP tunnel dst address not specified [ 284.972491][ T8748] FAULT_INJECTION: forcing a failure. [ 284.972491][ T8748] name failslab, interval 1, probability 0, space 0, times 0 [ 285.043456][ T8748] CPU: 0 UID: 0 PID: 8748 Comm: syz.1.513 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 285.043504][ T8748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 285.043524][ T8748] Call Trace: [ 285.043535][ T8748] [ 285.043547][ T8748] dump_stack_lvl+0x16c/0x1f0 [ 285.043595][ T8748] should_fail_ex+0x512/0x640 [ 285.043629][ T8748] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 285.043674][ T8748] should_failslab+0xc2/0x120 [ 285.043725][ T8748] __kmalloc_cache_noprof+0x6a/0x3e0 [ 285.043763][ T8748] ? __asan_memset+0x23/0x50 [ 285.043802][ T8748] ? snd_pcm_oss_change_params_locked+0x6f4/0x3a30 [ 285.043860][ T8748] snd_pcm_oss_change_params_locked+0x6f4/0x3a30 [ 285.043916][ T8748] ? rcu_is_watching+0x12/0xc0 [ 285.043962][ T8748] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 285.044017][ T8748] ? __pfx___mutex_lock+0x10/0x10 [ 285.044090][ T8748] snd_pcm_oss_make_ready+0xe6/0x1b0 [ 285.044140][ T8748] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 285.044189][ T8748] snd_pcm_oss_sync+0x1de/0x840 [ 285.044242][ T8748] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 285.044298][ T8748] snd_pcm_oss_release+0x28b/0x310 [ 285.044350][ T8748] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 285.044399][ T8748] __fput+0x3ff/0xb70 [ 285.044461][ T8748] task_work_run+0x14d/0x240 [ 285.044515][ T8748] ? __pfx_task_work_run+0x10/0x10 [ 285.044566][ T8748] ? __pfx___do_sys_close_range+0x10/0x10 [ 285.044621][ T8748] exit_to_user_mode_loop+0xeb/0x110 [ 285.044672][ T8748] do_syscall_64+0x3f6/0x490 [ 285.044718][ T8748] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 285.044752][ T8748] RIP: 0033:0x7fa53238e9a9 [ 285.044778][ T8748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 285.044808][ T8748] RSP: 002b:00007fa533135038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 285.044838][ T8748] RAX: 0000000000000000 RBX: 00007fa5325b5fa0 RCX: 00007fa53238e9a9 [ 285.044858][ T8748] RDX: 0000000000000000 RSI: fffffffffffff000 RDI: 0000000000000000 [ 285.044877][ T8748] RBP: 00007fa532410d69 R08: 0000000000000000 R09: 0000000000000000 [ 285.044896][ T8748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 285.044914][ T8748] R13: 0000000000000000 R14: 00007fa5325b5fa0 R15: 00007ffef0e8f558 [ 285.044955][ T8748] [ 288.511823][ T8777] FAULT_INJECTION: forcing a failure. [ 288.511823][ T8777] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 288.511877][ T8777] CPU: 0 UID: 0 PID: 8777 Comm: syz.1.525 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 288.511920][ T8777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 288.511940][ T8777] Call Trace: [ 288.511950][ T8777] [ 288.511961][ T8777] dump_stack_lvl+0x16c/0x1f0 [ 288.512007][ T8777] should_fail_ex+0x512/0x640 [ 288.512064][ T8777] should_fail_alloc_page+0xe7/0x130 [ 288.512128][ T8777] prepare_alloc_pages+0x3c2/0x610 [ 288.512169][ T8777] ? rcu_is_watching+0x12/0xc0 [ 288.512218][ T8777] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 288.512278][ T8777] ? rcu_is_watching+0x12/0xc0 [ 288.512316][ T8777] ? trace_mm_page_alloc+0x11f/0x1a0 [ 288.512354][ T8777] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 288.512410][ T8777] ? __pfx_stack_trace_save+0x10/0x10 [ 288.512454][ T8777] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 288.512523][ T8777] ? alloc_vmap_area+0xdc8/0x29c0 [ 288.512557][ T8777] ? __vmalloc_node_range_noprof+0x271/0x14b0 [ 288.512601][ T8777] ? __do_sys_listmount+0x1c2/0xec0 [ 288.512640][ T8777] ? do_syscall_64+0xcd/0x490 [ 288.512685][ T8777] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 288.512743][ T8777] alloc_pages_bulk_noprof+0x71c/0x1410 [ 288.512794][ T8777] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 288.512855][ T8777] ? policy_nodemask+0xea/0x4e0 [ 288.512917][ T8777] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 288.512973][ T8777] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 288.513055][ T8777] kasan_populate_vmalloc+0xf1/0x1f0 [ 288.513115][ T8777] alloc_vmap_area+0x959/0x29c0 [ 288.513170][ T8777] ? __pfx_alloc_vmap_area+0x10/0x10 [ 288.513218][ T8777] __get_vm_area_node+0x1ca/0x330 [ 288.513267][ T8777] __vmalloc_node_range_noprof+0x271/0x14b0 [ 288.513312][ T8777] ? __do_sys_listmount+0x1c2/0xec0 [ 288.513352][ T8777] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 288.513412][ T8777] ? policy_nodemask+0xea/0x4e0 [ 288.513472][ T8777] ? __do_sys_listmount+0x1c2/0xec0 [ 288.513524][ T8777] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 288.513576][ T8777] ? ___kmalloc_large_node+0xed/0x160 [ 288.513622][ T8777] __kvmalloc_node_noprof+0x30a/0x620 [ 288.513673][ T8777] ? __do_sys_listmount+0x1c2/0xec0 [ 288.513716][ T8777] ? __do_sys_listmount+0x1c2/0xec0 [ 288.513767][ T8777] ? __do_sys_listmount+0x1c2/0xec0 [ 288.513804][ T8777] __do_sys_listmount+0x1c2/0xec0 [ 288.513867][ T8777] ? __x64_sys_futex+0x1e0/0x4c0 [ 288.513912][ T8777] ? __x64_sys_futex+0x1e9/0x4c0 [ 288.513961][ T8777] ? __pfx___do_sys_listmount+0x10/0x10 [ 288.514027][ T8777] do_syscall_64+0xcd/0x490 [ 288.514092][ T8777] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 288.514139][ T8777] RIP: 0033:0x7fa53238e9a9 [ 288.514177][ T8777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 288.514215][ T8777] RSP: 002b:00007fa533135038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 288.514250][ T8777] RAX: ffffffffffffffda RBX: 00007fa5325b5fa0 RCX: 00007fa53238e9a9 [ 288.514275][ T8777] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100 [ 288.514305][ T8777] RBP: 00007fa532410d69 R08: 0000000000000000 R09: 0000000000000000 [ 288.514328][ T8777] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 288.514349][ T8777] R13: 0000000000000000 R14: 00007fa5325b5fa0 R15: 00007ffef0e8f558 [ 288.514395][ T8777] [ 290.770056][ T8804] random: crng reseeded on system resumption [ 290.977880][ T8807] FAULT_INJECTION: forcing a failure. [ 290.977880][ T8807] name failslab, interval 1, probability 0, space 0, times 0 [ 291.041601][ T8807] CPU: 0 UID: 0 PID: 8807 Comm: syz.1.520 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 291.041636][ T8807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 291.041650][ T8807] Call Trace: [ 291.041658][ T8807] [ 291.041666][ T8807] dump_stack_lvl+0x16c/0x1f0 [ 291.041700][ T8807] should_fail_ex+0x512/0x640 [ 291.041724][ T8807] ? __kvmalloc_node_noprof+0x124/0x620 [ 291.041769][ T8807] should_failslab+0xc2/0x120 [ 291.041806][ T8807] __kvmalloc_node_noprof+0x137/0x620 [ 291.041839][ T8807] ? v4l2_ctrl_new+0x97d/0x2180 [ 291.041868][ T8807] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 291.041910][ T8807] ? v4l2_ctrl_new+0x97d/0x2180 [ 291.041939][ T8807] v4l2_ctrl_new+0x97d/0x2180 [ 291.041982][ T8807] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 291.042011][ T8807] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 291.042049][ T8807] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 291.042089][ T8807] v4l2_ctrl_new_std+0x1be/0x290 [ 291.042128][ T8807] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 291.042158][ T8807] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 291.042204][ T8807] ? rcu_is_watching+0x12/0xc0 [ 291.042236][ T8807] ? trace_kmalloc+0x2b/0xd0 [ 291.042261][ T8807] ? __kvmalloc_node_noprof+0x298/0x620 [ 291.042312][ T8807] ? media_request_object_init+0x100/0x180 [ 291.042350][ T8807] vicodec_open+0x1f7/0xf90 [ 291.042394][ T8807] v4l2_open+0x222/0x490 [ 291.042428][ T8807] ? __pfx_v4l2_open+0x10/0x10 [ 291.042453][ T8807] chrdev_open+0x234/0x6a0 [ 291.042488][ T8807] ? __pfx_apparmor_file_open+0x10/0x10 [ 291.042670][ T8807] ? __pfx_chrdev_open+0x10/0x10 [ 291.042708][ T8807] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 291.042750][ T8807] do_dentry_open+0x744/0x1c10 [ 291.042786][ T8807] ? __pfx_chrdev_open+0x10/0x10 [ 291.042829][ T8807] vfs_open+0x82/0x3f0 [ 291.042855][ T8807] path_openat+0x1de4/0x2cb0 [ 291.042896][ T8807] ? __pfx_path_openat+0x10/0x10 [ 291.042930][ T8807] ? __lock_acquire+0xb8a/0x1c90 [ 291.042966][ T8807] do_filp_open+0x20b/0x470 [ 291.042998][ T8807] ? __pfx_do_filp_open+0x10/0x10 [ 291.043052][ T8807] ? alloc_fd+0x471/0x7d0 [ 291.043090][ T8807] do_sys_openat2+0x11b/0x1d0 [ 291.043114][ T8807] ? __pfx_do_sys_openat2+0x10/0x10 [ 291.043150][ T8807] __x64_sys_openat+0x174/0x210 [ 291.043175][ T8807] ? __pfx___x64_sys_openat+0x10/0x10 [ 291.043212][ T8807] do_syscall_64+0xcd/0x490 [ 291.043245][ T8807] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 291.043269][ T8807] RIP: 0033:0x7fa53238e9a9 [ 291.043290][ T8807] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 291.043314][ T8807] RSP: 002b:00007fa533114038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 291.043338][ T8807] RAX: ffffffffffffffda RBX: 00007fa5325b6080 RCX: 00007fa53238e9a9 [ 291.043353][ T8807] RDX: 00000000000c0400 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 291.043368][ T8807] RBP: 00007fa532410d69 R08: 0000000000000000 R09: 0000000000000000 [ 291.043383][ T8807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 291.043396][ T8807] R13: 0000000000000000 R14: 00007fa5325b6080 R15: 00007ffef0e8f558 [ 291.043426][ T8807] [ 294.718679][ T8880] netlink: 28 bytes leftover after parsing attributes in process `syz.2.533'. [ 294.807817][ T8880] veth1_macvtap: left promiscuous mode [ 295.287582][ T8888] 0x000200000001-0xa29656a63616329 : "" [ 295.320354][ T8888] mtd: partition "" is out of reach -- disabled [ 295.380688][ T8888] ftl_cs: FTL header not found. [ 297.160827][ T8925] FAULT_INJECTION: forcing a failure. [ 297.160827][ T8925] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 297.199578][ T8925] CPU: 0 UID: 0 PID: 8925 Comm: syz.1.542 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 297.199628][ T8925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 297.199649][ T8925] Call Trace: [ 297.199660][ T8925] [ 297.199672][ T8925] dump_stack_lvl+0x16c/0x1f0 [ 297.199719][ T8925] should_fail_ex+0x512/0x640 [ 297.199762][ T8925] should_fail_alloc_page+0xe7/0x130 [ 297.199819][ T8925] prepare_alloc_pages+0x3c2/0x610 [ 297.199863][ T8925] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 297.199914][ T8925] ? const_folio_flags+0x5b/0x100 [ 297.199950][ T8925] ? folio_add_file_rmap_ptes+0x548/0x840 [ 297.199994][ T8925] ? __pte_offset_map_lock+0x174/0x310 [ 297.200049][ T8925] ? find_held_lock+0x2b/0x80 [ 297.200081][ T8925] ? find_held_lock+0x2b/0x80 [ 297.200115][ T8925] ? finish_fault+0xccc/0x1110 [ 297.200149][ T8925] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 297.200202][ T8925] ? finish_fault+0x738/0x1110 [ 297.200256][ T8925] ? folio_unlock+0x7d/0xd0 [ 297.200306][ T8925] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 297.200363][ T8925] ? policy_nodemask+0xea/0x4e0 [ 297.200420][ T8925] alloc_pages_mpol+0x1fb/0x550 [ 297.200474][ T8925] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 297.200540][ T8925] folio_alloc_mpol_noprof+0x36/0x2f0 [ 297.200578][ T8925] shmem_alloc_folio+0x135/0x160 [ 297.200617][ T8925] shmem_alloc_and_add_folio+0x499/0xc20 [ 297.200672][ T8925] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 297.200722][ T8925] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 297.200776][ T8925] shmem_get_folio_gfp+0x67f/0x1600 [ 297.200831][ T8925] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 297.200891][ T8925] shmem_write_begin+0x160/0x300 [ 297.200941][ T8925] ? __pfx_shmem_write_begin+0x10/0x10 [ 297.200990][ T8925] ? balance_dirty_pages_ratelimited_flags+0x92/0x1260 [ 297.201036][ T8925] generic_perform_write+0x3c2/0x900 [ 297.201094][ T8925] ? __pfx_generic_perform_write+0x10/0x10 [ 297.201144][ T8925] ? generic_update_time+0xcf/0xf0 [ 297.201194][ T8925] ? mnt_put_write_access_file+0x45/0xf0 [ 297.201242][ T8925] shmem_file_write_iter+0x10e/0x140 [ 297.201308][ T8925] do_iter_readv_writev+0x654/0x950 [ 297.201355][ T8925] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 297.201414][ T8925] vfs_writev+0x35f/0xde0 [ 297.201451][ T8925] ? __pfx___mutex_trylock_common+0x10/0x10 [ 297.201510][ T8925] ? __pfx_vfs_writev+0x10/0x10 [ 297.201551][ T8925] ? __mutex_lock+0x1c2/0x1070 [ 297.201605][ T8925] ? __pfx___mutex_lock+0x10/0x10 [ 297.201665][ T8925] ? __fget_files+0x20e/0x3c0 [ 297.201719][ T8925] ? do_writev+0x132/0x340 [ 297.201756][ T8925] do_writev+0x132/0x340 [ 297.201798][ T8925] ? __pfx_do_writev+0x10/0x10 [ 297.201851][ T8925] do_syscall_64+0xcd/0x490 [ 297.201897][ T8925] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 297.201932][ T8925] RIP: 0033:0x7fa53238e9a9 [ 297.201959][ T8925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 297.201992][ T8925] RSP: 002b:00007fa533135038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 297.202024][ T8925] RAX: ffffffffffffffda RBX: 00007fa5325b5fa0 RCX: 00007fa53238e9a9 [ 297.202046][ T8925] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003 [ 297.202066][ T8925] RBP: 00007fa532410d69 R08: 0000000000000000 R09: 0000000000000000 [ 297.202086][ T8925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 297.202106][ T8925] R13: 0000000000000000 R14: 00007fa5325b5fa0 R15: 00007ffef0e8f558 [ 297.202150][ T8925] [ 297.658973][ T8925] netlink: 146 bytes leftover after parsing attributes in process `syz.1.542'. [ 298.174042][ T8930] netlink: 20 bytes leftover after parsing attributes in process `syz.2.543'. [ 298.420048][ T8930] hsr_slave_0 (unregistering): left promiscuous mode [ 299.411022][ T8978] netlink: 28 bytes leftover after parsing attributes in process `syz.1.547'. [ 299.985572][ T30] audit: type=1800 audit(4294967329.270:3): pid=8997 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.553" name="dbroot" dev="configfs" ino=24056 res=0 errno=0 [ 300.340987][ T9006] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 300.643537][ T9016] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR [ 301.044586][ T9027] Invalid ELF header magic: != ELF [ 301.481536][ T9036] FAULT_INJECTION: forcing a failure. [ 301.481536][ T9036] name failslab, interval 1, probability 0, space 0, times 0 [ 301.592433][ T9036] CPU: 0 UID: 0 PID: 9036 Comm: syz.1.560 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 301.592468][ T9036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 301.592482][ T9036] Call Trace: [ 301.592489][ T9036] [ 301.592498][ T9036] dump_stack_lvl+0x16c/0x1f0 [ 301.592532][ T9036] should_fail_ex+0x512/0x640 [ 301.592557][ T9036] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 301.592604][ T9036] should_failslab+0xc2/0x120 [ 301.592641][ T9036] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 301.592672][ T9036] ? rcu_is_watching+0x12/0xc0 [ 301.592702][ T9036] ? get_random_u64+0x57c/0x7d0 [ 301.592731][ T9036] ? prepare_creds+0x2c/0x7d0 [ 301.592769][ T9036] prepare_creds+0x2c/0x7d0 [ 301.592806][ T9036] copy_creds+0xa7/0xa50 [ 301.592845][ T9036] copy_process+0xff6/0x7690 [ 301.592875][ T9036] ? __pfx___futex_wait+0x10/0x10 [ 301.592910][ T9036] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 301.592946][ T9036] ? __pfx_copy_process+0x10/0x10 [ 301.592975][ T9036] ? futex_private_hash_put+0x176/0x300 [ 301.593006][ T9036] ? futex_private_hash_put+0x18a/0x300 [ 301.593039][ T9036] kernel_clone+0xfc/0x930 [ 301.593071][ T9036] ? __pfx_kernel_clone+0x10/0x10 [ 301.593117][ T9036] __do_sys_clone+0xce/0x120 [ 301.593146][ T9036] ? __pfx___do_sys_clone+0x10/0x10 [ 301.593175][ T9036] ? find_held_lock+0x2b/0x80 [ 301.593209][ T9036] ? xfd_validate_state+0x61/0x180 [ 301.593254][ T9036] do_syscall_64+0xcd/0x490 [ 301.593285][ T9036] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 301.593309][ T9036] RIP: 0033:0x7fa53238e9a9 [ 301.593327][ T9036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 301.593350][ T9036] RSP: 002b:00007fa533134fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 301.593372][ T9036] RAX: ffffffffffffffda RBX: 00007fa5325b5fa0 RCX: 00007fa53238e9a9 [ 301.593387][ T9036] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 301.593400][ T9036] RBP: 00007fa532410d69 R08: 0000000000000000 R09: 0000000000000000 [ 301.593414][ T9036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 301.593428][ T9036] R13: 0000000000000000 R14: 00007fa5325b5fa0 R15: 00007ffef0e8f558 [ 301.593456][ T9036] [ 301.850633][ T9043] FAULT_INJECTION: forcing a failure. [ 301.850633][ T9043] name failslab, interval 1, probability 0, space 0, times 0 [ 301.864101][ T9043] CPU: 0 UID: 0 PID: 9043 Comm: syz.1.560 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 301.864147][ T9043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 301.864167][ T9043] Call Trace: [ 301.864177][ T9043] [ 301.864188][ T9043] dump_stack_lvl+0x16c/0x1f0 [ 301.864236][ T9043] should_fail_ex+0x512/0x640 [ 301.864270][ T9043] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 301.864323][ T9043] should_failslab+0xc2/0x120 [ 301.864374][ T9043] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 301.864422][ T9043] ? __d_alloc+0x32/0xae0 [ 301.864474][ T9043] __d_alloc+0x32/0xae0 [ 301.864526][ T9043] d_alloc_pseudo+0x1c/0xc0 [ 301.864559][ T9043] alloc_file_pseudo+0xcf/0x230 [ 301.864592][ T9043] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 301.864637][ T9043] __shmem_file_setup+0x1a3/0x330 [ 301.864680][ T9043] shmem_zero_setup+0x93/0x1a0 [ 301.864728][ T9043] __mmap_region+0x1ece/0x25e0 [ 301.864778][ T9043] ? finish_task_switch.isra.0+0x21c/0xc10 [ 301.864815][ T9043] ? __pfx___mmap_region+0x10/0x10 [ 301.864871][ T9043] ? rcu_is_watching+0x12/0xc0 [ 301.864914][ T9043] ? rcu_is_watching+0x12/0xc0 [ 301.864948][ T9043] ? trace_sched_exit_tp+0xde/0x130 [ 301.864989][ T9043] ? __schedule+0x11a4/0x5df0 [ 301.865023][ T9043] ? __lock_acquire+0x622/0x1c90 [ 301.865089][ T9043] ? __pfx___schedule+0x10/0x10 [ 301.865176][ T9043] ? trace_cap_capable+0x18d/0x200 [ 301.865243][ T9043] mmap_region+0x1ab/0x3f0 [ 301.865290][ T9043] ? __get_unmapped_area+0x267/0x440 [ 301.865328][ T9043] do_mmap+0xa3e/0x1210 [ 301.865369][ T9043] ? __pfx_do_mmap+0x10/0x10 [ 301.865402][ T9043] ? __pfx_down_write_killable+0x10/0x10 [ 301.865458][ T9043] vm_mmap_pgoff+0x281/0x450 [ 301.865520][ T9043] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 301.865584][ T9043] ? __x64_sys_futex+0x1e0/0x4c0 [ 301.865625][ T9043] ? __x64_sys_futex+0x1e9/0x4c0 [ 301.865675][ T9043] ksys_mmap_pgoff+0x7d/0x5c0 [ 301.865706][ T9043] ? xfd_validate_state+0x61/0x180 [ 301.865754][ T9043] ? __pfx_ksys_write+0x10/0x10 [ 301.865802][ T9043] __x64_sys_mmap+0x125/0x190 [ 301.865868][ T9043] do_syscall_64+0xcd/0x490 [ 301.865915][ T9043] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 301.865948][ T9043] RIP: 0033:0x7fa53238e9a9 [ 301.865975][ T9043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 301.866007][ T9043] RSP: 002b:00007fa533114038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 301.866039][ T9043] RAX: ffffffffffffffda RBX: 00007fa5325b6080 RCX: 00007fa53238e9a9 [ 301.866061][ T9043] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000 [ 301.866081][ T9043] RBP: 00007fa532410d69 R08: fffffffffffffffa R09: 0000000000008000 [ 301.866102][ T9043] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 301.866123][ T9043] R13: 0000000000000000 R14: 00007fa5325b6080 R15: 00007ffef0e8f558 [ 301.866166][ T9043] [ 302.866131][ T9058] ubi0: attaching mtd0 [ 302.874521][ T9058] ubi0: scanning is finished [ 302.879317][ T9058] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 302.942785][ T30] audit: type=1800 audit(4294967332.230:4): pid=9059 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.565" name="features" dev="configfs" ino=23542 res=0 errno=0 [ 303.407553][ T9058] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 305.069621][ T9094] bridge0: port 3(team0) entered blocking state [ 305.112673][ T9094] bridge0: port 3(team0) entered disabled state [ 305.119265][ T9094] team0: entered allmulticast mode [ 305.124591][ T9094] team_slave_0: entered allmulticast mode [ 305.130534][ T9094] team_slave_1: entered allmulticast mode [ 305.158046][ T9094] team0: entered promiscuous mode [ 305.198712][ T9094] team_slave_0: entered promiscuous mode [ 305.248736][ T9094] team_slave_1: entered promiscuous mode [ 305.257137][ T9094] bridge0: port 3(team0) entered blocking state [ 305.263887][ T9094] bridge0: port 3(team0) entered forwarding state [ 308.519921][ T9139] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 308.527504][ T9139] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 308.537532][ T9139] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 308.568549][ T9139] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 309.304634][ T9168] random: crng reseeded on system resumption [ 309.358154][ T9158] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 309.369226][ T9158] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 309.912318][ T51] Bluetooth: hci0: command 0x0406 tx timeout [ 310.553634][ T51] Bluetooth: hci2: command 0x0406 tx timeout [ 310.553650][ T5847] Bluetooth: hci1: command 0x0406 tx timeout [ 310.594801][ T9200] netlink: 16 bytes leftover after parsing attributes in process `syz.2.591'. [ 310.633848][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 310.654224][ T9207] netlink: 206 bytes leftover after parsing attributes in process `syz.3.597'. [ 311.672427][ T9218] kAFS: Invalid Command on /proc/fs/afs/cells file [ 312.302390][ T51] Bluetooth: hci1: Unable to find connection for big 0xd2 [ 312.397064][ T9239] binder: 9238:9239 unknown command 4294967282 [ 312.484771][ T9239] binder: 9238:9239 ioctl c0306201 2000000000c0 returned -22 [ 313.446046][ T9275] FAULT_INJECTION: forcing a failure. [ 313.446046][ T9275] name failslab, interval 1, probability 0, space 0, times 0 [ 313.459489][ T9275] CPU: 0 UID: 0 PID: 9275 Comm: syz.2.605 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 313.459532][ T9275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 313.459562][ T9275] Call Trace: [ 313.459573][ T9275] [ 313.459585][ T9275] dump_stack_lvl+0x16c/0x1f0 [ 313.459633][ T9275] should_fail_ex+0x512/0x640 [ 313.459664][ T9275] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 313.459707][ T9275] should_failslab+0xc2/0x120 [ 313.459756][ T9275] __kmalloc_cache_noprof+0x6a/0x3e0 [ 313.459797][ T9275] ? loopback_open+0x145/0x13a0 [ 313.459839][ T9275] loopback_open+0x145/0x13a0 [ 313.459898][ T9275] snd_pcm_open_substream+0xa60/0x17f0 [ 313.459958][ T9275] ? __pfx_snd_pcm_open_substream+0x10/0x10 [ 313.460017][ T9275] ? rcu_is_watching+0x12/0xc0 [ 313.460057][ T9275] snd_pcm_open+0x29e/0x730 [ 313.460094][ T9275] ? __pfx_snd_pcm_open+0x10/0x10 [ 313.460153][ T9275] ? __pfx_default_wake_function+0x10/0x10 [ 313.460199][ T9275] ? __pfx_snd_pcm_capture_open+0x10/0x10 [ 313.460231][ T9275] snd_pcm_capture_open+0x89/0xe0 [ 313.460263][ T9275] snd_open+0x201/0x450 [ 313.460306][ T9275] ? __pfx_snd_open+0x10/0x10 [ 313.460348][ T9275] chrdev_open+0x234/0x6a0 [ 313.460398][ T9275] ? __pfx_chrdev_open+0x10/0x10 [ 313.460449][ T9275] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 313.460499][ T9275] do_dentry_open+0x744/0x1c10 [ 313.460545][ T9275] ? __pfx_chrdev_open+0x10/0x10 [ 313.460599][ T9275] vfs_open+0x82/0x3f0 [ 313.460635][ T9275] path_openat+0x1de4/0x2cb0 [ 313.460695][ T9275] ? __pfx_path_openat+0x10/0x10 [ 313.460742][ T9275] ? __lock_acquire+0xb8a/0x1c90 [ 313.460792][ T9275] do_filp_open+0x20b/0x470 [ 313.460836][ T9275] ? __pfx_do_filp_open+0x10/0x10 [ 313.460924][ T9275] ? alloc_fd+0x471/0x7d0 [ 313.460972][ T9275] do_sys_openat2+0x11b/0x1d0 [ 313.461006][ T9275] ? __pfx_do_sys_openat2+0x10/0x10 [ 313.461057][ T9275] __x64_sys_openat+0x174/0x210 [ 313.461092][ T9275] ? __pfx___x64_sys_openat+0x10/0x10 [ 313.461144][ T9275] do_syscall_64+0xcd/0x490 [ 313.461190][ T9275] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 313.461223][ T9275] RIP: 0033:0x7f6b22f8e9a9 [ 313.461249][ T9275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 313.461282][ T9275] RSP: 002b:00007f6b23dcd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 313.461312][ T9275] RAX: ffffffffffffffda RBX: 00007f6b231b6160 RCX: 00007f6b22f8e9a9 [ 313.461334][ T9275] RDX: 0000000000001200 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 313.461355][ T9275] RBP: 00007f6b23010d69 R08: 0000000000000000 R09: 0000000000000000 [ 313.461375][ T9275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 313.461395][ T9275] R13: 0000000000000000 R14: 00007f6b231b6160 R15: 00007ffc3c317138 [ 313.461439][ T9275] [ 313.945289][ T9278] netlink: 338 bytes leftover after parsing attributes in process `syz.0.608'. [ 314.037485][ T9278] macsec0: entered allmulticast mode [ 314.048643][ T9278] veth1_macvtap: entered allmulticast mode [ 315.151187][ T9303] bond0: option all_slaves_active: invalid value () [ 316.646625][ T9325] random: crng reseeded on system resumption [ 316.796472][ T9326] __vm_enough_memory: pid: 9326, comm: syz.3.616, bytes: 4398046511104 not enough memory for the allocation [ 317.728628][ T9348] : Can't lookup blockdev [ 318.642788][ T30] audit: type=1804 audit(4294967347.930:5): pid=9364 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.624" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 321.644908][ T9408] could not allocate digest TFM handle binfmt_misc [ 324.803933][ T9483] random: crng reseeded on system resumption [ 325.952745][ T9469] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 326.041922][ T9469] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 327.192568][ T9520] ubi0: attaching mtd0 [ 327.198193][ T9520] ubi0: scanning is finished [ 327.202919][ T9520] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 327.591377][ T9520] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 327.678578][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 327.686951][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 328.088796][ T9549] netlink: 4 bytes leftover after parsing attributes in process `syz.3.646'. [ 330.173929][ T9597] netlink: 326 bytes leftover after parsing attributes in process `syz.1.654'. [ 330.378902][ T30] audit: type=1804 audit(4294967359.660:6): pid=9601 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.655" name="/newroot/168/file0" dev="tmpfs" ino=907 res=1 errno=0 [ 330.423427][ T30] audit: type=1800 audit(4294967359.700:7): pid=9601 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.655" name="file0" dev="tmpfs" ino=907 res=0 errno=0 [ 330.986420][ T9597] Invalid ELF header magic: != ELF [ 332.049859][ T9581] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 333.716487][ T9645] netlink: 28 bytes leftover after parsing attributes in process `syz.1.663'. [ 333.756918][ T9647] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input21 [ 338.540308][ T9735] FAULT_INJECTION: forcing a failure. [ 338.540308][ T9735] name fail_futex, interval 1, probability 0, space 0, times 0 [ 338.562585][ T9735] CPU: 0 UID: 0 PID: 9735 Comm: syz.1.681 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 338.562632][ T9735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 338.562646][ T9735] Call Trace: [ 338.562654][ T9735] [ 338.562663][ T9735] dump_stack_lvl+0x16c/0x1f0 [ 338.562700][ T9735] should_fail_ex+0x512/0x640 [ 338.562729][ T9735] get_futex_key+0x1d0/0x1540 [ 338.562759][ T9735] ? commit_creds+0xb4d/0x1040 [ 338.562793][ T9735] ? __pfx_get_futex_key+0x10/0x10 [ 338.562831][ T9735] futex_wake+0xea/0x530 [ 338.562869][ T9735] ? __pfx_futex_wake+0x10/0x10 [ 338.562916][ T9735] do_futex+0x1e3/0x350 [ 338.562946][ T9735] ? __pfx_do_futex+0x10/0x10 [ 338.562978][ T9735] ? find_held_lock+0x2b/0x80 [ 338.563004][ T9735] __x64_sys_futex+0x1e0/0x4c0 [ 338.563038][ T9735] ? __pfx___x64_sys_futex+0x10/0x10 [ 338.563078][ T9735] ? safesetid_task_fix_setuid+0x64/0x1e0 [ 338.563119][ T9735] do_syscall_64+0xcd/0x490 [ 338.563151][ T9735] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 338.563175][ T9735] RIP: 0033:0x7fa53238e9a9 [ 338.563193][ T9735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 338.563217][ T9735] RSP: 002b:00007fa5331350e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 338.563239][ T9735] RAX: ffffffffffffffda RBX: 00007fa5325b5fa8 RCX: 00007fa53238e9a9 [ 338.563255][ T9735] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa5325b5fac [ 338.563269][ T9735] RBP: 00007fa5325b5fa0 R08: 00007fa533136000 R09: 0000000000000000 [ 338.563284][ T9735] R10: 000000000000ee00 R11: 0000000000000246 R12: 00007fa5325b5fac [ 338.563299][ T9735] R13: 0000000000000000 R14: 00007ffef0e8f470 R15: 00007ffef0e8f558 [ 338.563328][ T9735] [ 338.743437][ C0] vkms_vblank_simulate: vblank timer overrun [ 340.743956][ T9776] FAULT_INJECTION: forcing a failure. [ 340.743956][ T9776] name failslab, interval 1, probability 0, space 0, times 0 [ 340.757039][ T9776] CPU: 0 UID: 0 PID: 9776 Comm: syz.0.689 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 340.757089][ T9776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 340.757110][ T9776] Call Trace: [ 340.757121][ T9776] [ 340.757133][ T9776] dump_stack_lvl+0x16c/0x1f0 [ 340.757197][ T9776] should_fail_ex+0x512/0x640 [ 340.757232][ T9776] ? __kvmalloc_node_noprof+0x124/0x620 [ 340.757285][ T9776] should_failslab+0xc2/0x120 [ 340.757342][ T9776] __kvmalloc_node_noprof+0x137/0x620 [ 340.757387][ T9776] ? io_uring_setup+0x377/0x2080 [ 340.757449][ T9776] ? io_uring_setup+0x377/0x2080 [ 340.757497][ T9776] io_uring_setup+0x377/0x2080 [ 340.757556][ T9776] ? __pfx_io_uring_setup+0x10/0x10 [ 340.757606][ T9776] ? do_futex+0x122/0x350 [ 340.757649][ T9776] ? __pfx_do_futex+0x10/0x10 [ 340.757687][ T9776] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 340.757755][ T9776] ? xfd_validate_state+0x61/0x180 [ 340.757802][ T9776] ? __pfx_do_writev+0x10/0x10 [ 340.757851][ T9776] __x64_sys_io_uring_setup+0xc2/0x170 [ 340.757907][ T9776] do_syscall_64+0xcd/0x490 [ 340.757951][ T9776] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 340.757989][ T9776] RIP: 0033:0x7fd62658e9a9 [ 340.758016][ T9776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 340.758050][ T9776] RSP: 002b:00007fd6243d5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 340.758082][ T9776] RAX: ffffffffffffffda RBX: 00007fd6267b6080 RCX: 00007fd62658e9a9 [ 340.758104][ T9776] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 340.758124][ T9776] RBP: 00007fd626610d69 R08: 0000000000000000 R09: 0000000000000000 [ 340.758145][ T9776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 340.758173][ T9776] R13: 0000000000000000 R14: 00007fd6267b6080 R15: 00007ffeee355168 [ 340.758217][ T9776] [ 340.952447][ C0] vkms_vblank_simulate: vblank timer overrun [ 342.141952][ T9808] syz.3.696 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 342.274952][ T9798] zswap: compressor 000 not available [ 342.592094][ T9800] zswap: compressor not available [ 343.815278][ T9836] netlink: 330 bytes leftover after parsing attributes in process `syz.1.699'. [ 344.775633][ T9851] HfR: entered promiscuous mode [ 344.852577][ T9852] openvswitch: HfR: Dropping previously announced user features [ 344.869105][ T9849] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 345.672593][ T9868] netlink: 330 bytes leftover after parsing attributes in process `syz.3.705'. [ 345.724788][ T9868] : renamed from hsr0 (while UP) [ 346.986037][ T9898] netlink: zone id is out of range [ 346.991310][ T9898] netlink: zone id is out of range [ 347.056403][ T9898] netlink: zone id is out of range [ 347.061603][ T9898] netlink: zone id is out of range [ 347.127709][ T9898] netlink: zone id is out of range [ 347.139253][ T9898] netlink: zone id is out of range [ 347.178953][ T9898] netlink: zone id is out of range [ 347.224777][ T9898] netlink: zone id is out of range [ 347.291580][ T9898] netlink: zone id is out of range [ 347.327093][ T9898] netlink: zone id is out of range [ 347.965682][ T9922] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input22 [ 348.520759][ T9925] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input23 [ 348.860452][ T9932] FAULT_INJECTION: forcing a failure. [ 348.860452][ T9932] name failslab, interval 1, probability 0, space 0, times 0 [ 348.905473][ T9932] CPU: 1 UID: 0 PID: 9932 Comm: syz.1.719 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 348.905509][ T9932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 348.905529][ T9932] Call Trace: [ 348.905539][ T9932] [ 348.905551][ T9932] dump_stack_lvl+0x16c/0x1f0 [ 348.905591][ T9932] should_fail_ex+0x512/0x640 [ 348.905617][ T9932] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 348.905654][ T9932] should_failslab+0xc2/0x120 [ 348.905690][ T9932] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 348.905724][ T9932] ? __kernfs_new_node+0xd2/0x8e0 [ 348.905770][ T9932] __kernfs_new_node+0xd2/0x8e0 [ 348.905807][ T9932] ? __pfx___kernfs_new_node+0x10/0x10 [ 348.905849][ T9932] ? find_held_lock+0x2b/0x80 [ 348.905873][ T9932] ? kernfs_root+0xee/0x2a0 [ 348.905911][ T9932] kernfs_new_node+0x13c/0x1e0 [ 348.905955][ T9932] __kernfs_create_file+0x53/0x350 [ 348.905985][ T9932] sysfs_add_file_mode_ns+0x207/0x3c0 [ 348.906023][ T9932] internal_create_group+0x578/0xf30 [ 348.906066][ T9932] ? __pfx_internal_create_group+0x10/0x10 [ 348.906105][ T9932] ? kernfs_create_link+0x1bd/0x240 [ 348.906137][ T9932] internal_create_groups+0x9d/0x150 [ 348.906174][ T9932] device_add+0x6d1/0x1a70 [ 348.906205][ T9932] ? __pfx_device_add+0x10/0x10 [ 348.906232][ T9932] ? lockdep_init_map_type+0x5c/0x280 [ 348.906266][ T9932] ? __init_waitqueue_head+0xca/0x150 [ 348.906310][ T9932] netdev_register_kobject+0x1a9/0x3d0 [ 348.906350][ T9932] register_netdevice+0x13dc/0x2270 [ 348.906389][ T9932] ? __pfx_register_netdevice+0x10/0x10 [ 348.906431][ T9932] __ip_tunnel_create+0x540/0x6e0 [ 348.906472][ T9932] ? __pfx___ip_tunnel_create+0x10/0x10 [ 348.906515][ T9932] ip_tunnel_init_net+0x22f/0x7d0 [ 348.906554][ T9932] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 348.906594][ T9932] ? trace_kmalloc+0x2b/0xd0 [ 348.906614][ T9932] ? __kmalloc_noprof+0x242/0x510 [ 348.906644][ T9932] ? lockdep_init_map_type+0x5c/0x280 [ 348.906680][ T9932] ? __pfx_erspan_init_net+0x10/0x10 [ 348.906708][ T9932] ops_init+0x1e2/0x5f0 [ 348.906742][ T9932] setup_net+0x10f/0x380 [ 348.906775][ T9932] ? lockdep_init_map_type+0x5c/0x280 [ 348.906809][ T9932] ? __pfx_setup_net+0x10/0x10 [ 348.906842][ T9932] ? debug_mutex_init+0x37/0x70 [ 348.906868][ T9932] copy_net_ns+0x2a6/0x5f0 [ 348.906905][ T9932] create_new_namespaces+0x3ea/0xa90 [ 348.906939][ T9932] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 348.906968][ T9932] ksys_unshare+0x45b/0xa40 [ 348.907001][ T9932] ? __pfx_ksys_unshare+0x10/0x10 [ 348.907034][ T9932] ? xfd_validate_state+0x61/0x180 [ 348.907078][ T9932] __x64_sys_unshare+0x31/0x40 [ 348.907109][ T9932] do_syscall_64+0xcd/0x490 [ 348.907142][ T9932] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 348.907166][ T9932] RIP: 0033:0x7fa53238e9a9 [ 348.907184][ T9932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 348.907207][ T9932] RSP: 002b:00007fa533135038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 348.907230][ T9932] RAX: ffffffffffffffda RBX: 00007fa5325b5fa0 RCX: 00007fa53238e9a9 [ 348.907246][ T9932] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 348.907260][ T9932] RBP: 00007fa532410d69 R08: 0000000000000000 R09: 0000000000000000 [ 348.907275][ T9932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 348.907289][ T9932] R13: 0000000000000000 R14: 00007fa5325b5fa0 R15: 00007ffef0e8f558 [ 348.907319][ T9932] [ 349.248793][ C1] vkms_vblank_simulate: vblank timer overrun [ 350.223621][ T9945] netlink: 330 bytes leftover after parsing attributes in process `syz.2.721'. [ 350.317356][ T9945] : renamed from hsr0 (while UP) [ 352.654381][ T9985] FAULT_INJECTION: forcing a failure. [ 352.654381][ T9985] name failslab, interval 1, probability 0, space 0, times 0 [ 352.672336][ T9985] CPU: 1 UID: 0 PID: 9985 Comm: syz.3.729 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 352.672390][ T9985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 352.672418][ T9985] Call Trace: [ 352.672430][ T9985] [ 352.672443][ T9985] dump_stack_lvl+0x16c/0x1f0 [ 352.672494][ T9985] should_fail_ex+0x512/0x640 [ 352.672531][ T9985] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 352.672583][ T9985] should_failslab+0xc2/0x120 [ 352.672634][ T9985] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 352.672682][ T9985] ? __d_alloc+0x32/0xae0 [ 352.672732][ T9985] __d_alloc+0x32/0xae0 [ 352.672784][ T9985] d_alloc_pseudo+0x1c/0xc0 [ 352.672816][ T9985] alloc_file_pseudo+0xcf/0x230 [ 352.672852][ T9985] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 352.672897][ T9985] __shmem_file_setup+0x1a3/0x330 [ 352.672941][ T9985] __do_sys_memfd_create+0x267/0x8a0 [ 352.672981][ T9985] do_syscall_64+0xcd/0x490 [ 352.673026][ T9985] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 352.673060][ T9985] RIP: 0033:0x7f20fb18e9a9 [ 352.673087][ T9985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 352.673122][ T9985] RSP: 002b:00007f20fbfd0038 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 352.673154][ T9985] RAX: ffffffffffffffda RBX: 00007f20fb3b6080 RCX: 00007f20fb18e9a9 [ 352.673176][ T9985] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 352.673196][ T9985] RBP: 00007f20fb210d69 R08: 0000000000000000 R09: 0000000000000000 [ 352.673216][ T9985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 352.673236][ T9985] R13: 0000000000000000 R14: 00007f20fb3b6080 R15: 00007ffd602412c8 [ 352.673276][ T9985] [ 352.856143][ C1] vkms_vblank_simulate: vblank timer overrun syzkaller syzkaller login: [ 354.179768][T10015] net_ratelimit: 96 callbacks suppressed [ 354.179789][T10015] netlink: zone id is out of range [ 354.306604][T10019] vhci_hcd: invalid port number 16 [ 354.328495][T10019] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 355.197229][T10031] Console: switching to colour VGA+ 80x25 [ 356.727085][T10062] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input24 [ 356.741723][T10063] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input25 [ 357.065958][T10064] Console: switching to colour frame buffer device 128x48 [ 357.392063][T10065] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input26 [ 360.279676][T10093] ima: policy update failed [ 360.301702][ T30] audit: type=1802 audit(4294967389.580:8): pid=10093 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.751" res=0 errno=0 [ 360.989044][T10136] FAULT_INJECTION: forcing a failure. [ 360.989044][T10136] name fail_futex, interval 1, probability 0, space 0, times 0 [ 361.040297][T10136] CPU: 0 UID: 0 PID: 10136 Comm: syz.2.761 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 361.040348][T10136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 361.040368][T10136] Call Trace: [ 361.040378][T10136] [ 361.040391][T10136] dump_stack_lvl+0x16c/0x1f0 [ 361.040440][T10136] should_fail_ex+0x512/0x640 [ 361.040497][T10136] get_futex_key+0x1d0/0x1540 [ 361.040545][T10136] ? __pfx_get_futex_key+0x10/0x10 [ 361.040580][T10136] ? rcu_is_watching+0x12/0xc0 [ 361.040614][T10136] ? kfree+0x24f/0x4d0 [ 361.040665][T10136] futex_wake+0xea/0x530 [ 361.040717][T10136] ? __pfx_futex_wake+0x10/0x10 [ 361.040767][T10136] ? __pfx_vfs_writev+0x10/0x10 [ 361.040812][T10136] ? do_writev+0x218/0x340 [ 361.040859][T10136] do_futex+0x1e3/0x350 [ 361.040903][T10136] ? __pfx_do_futex+0x10/0x10 [ 361.040943][T10136] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 361.041001][T10136] __x64_sys_futex+0x1e0/0x4c0 [ 361.041047][T10136] ? fput+0x70/0xf0 [ 361.041097][T10136] ? __pfx___x64_sys_futex+0x10/0x10 [ 361.041142][T10136] ? __pfx_do_writev+0x10/0x10 [ 361.041196][T10136] do_syscall_64+0xcd/0x490 [ 361.041242][T10136] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 361.041276][T10136] RIP: 0033:0x7f6b22f8e9a9 [ 361.041303][T10136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 361.041337][T10136] RSP: 002b:00007f6b23e0f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 361.041369][T10136] RAX: ffffffffffffffda RBX: 00007f6b231b5fa8 RCX: 00007f6b22f8e9a9 [ 361.041392][T10136] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6b231b5fac [ 361.041413][T10136] RBP: 00007f6b231b5fa0 R08: 00007f6b23e10000 R09: 0000000000000000 [ 361.041435][T10136] R10: 0000000000000007 R11: 0000000000000246 R12: 00007f6b231b5fac [ 361.041457][T10136] R13: 0000000000000000 R14: 00007ffc3c317050 R15: 00007ffc3c317138 [ 361.041509][T10136] [ 365.870406][T10218] openvswitch: netlink: Message has 4 unknown bytes. [ 366.550760][T10229] netlink: 338 bytes leftover after parsing attributes in process `syz.0.775'. [ 367.856259][T10230] kexec: Could not allocate control_code_buffer [ 368.007066][T10243] ima: policy update failed [ 368.014333][ T30] audit: type=1802 audit(4294967397.300:9): pid=10243 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.779" res=0 errno=0 [ 368.085581][T10244] FAULT_INJECTION: forcing a failure. [ 368.085581][T10244] name failslab, interval 1, probability 0, space 0, times 0 [ 368.151594][T10244] CPU: 1 UID: 0 PID: 10244 Comm: syz.0.778 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 368.151652][T10244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 368.151672][T10244] Call Trace: [ 368.151683][T10244] [ 368.151695][T10244] dump_stack_lvl+0x16c/0x1f0 [ 368.151739][T10244] should_fail_ex+0x512/0x640 [ 368.151770][T10244] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 368.151821][T10244] should_failslab+0xc2/0x120 [ 368.151871][T10244] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 368.151918][T10244] ? shmem_alloc_inode+0x25/0x50 [ 368.151973][T10244] ? __pfx_shmem_alloc_inode+0x10/0x10 [ 368.152032][T10244] shmem_alloc_inode+0x25/0x50 [ 368.152084][T10244] alloc_inode+0x64/0x240 [ 368.152142][T10244] new_inode+0x22/0x1c0 [ 368.152189][T10244] ? alloc_fd+0x471/0x7d0 [ 368.152229][T10244] shmem_get_inode+0x19a/0xfb0 [ 368.152270][T10244] __shmem_file_setup+0x107/0x330 [ 368.152309][T10244] __do_sys_memfd_create+0x267/0x8a0 [ 368.152347][T10244] do_syscall_64+0xcd/0x490 [ 368.152392][T10244] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 368.152428][T10244] RIP: 0033:0x7fd62658e9a9 [ 368.152457][T10244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 368.152491][T10244] RSP: 002b:00007fd6243d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 368.152523][T10244] RAX: ffffffffffffffda RBX: 00007fd6267b6080 RCX: 00007fd62658e9a9 [ 368.152545][T10244] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 368.152565][T10244] RBP: 00007fd626610d69 R08: 0000000000000000 R09: 0000000000000000 [ 368.152585][T10244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 368.152604][T10244] R13: 0000000000000000 R14: 00007fd6267b6080 R15: 00007ffeee355168 [ 368.152646][T10244] [ 369.834884][T10279] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input27 [ 373.705975][T10343] random: crng reseeded on system resumption [ 373.798868][T10346] netlink: 8 bytes leftover after parsing attributes in process `syz.1.794'. [ 374.446819][T10329] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 374.640524][T10329] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 375.506339][T10371] FAULT_INJECTION: forcing a failure. [ 375.506339][T10371] name fail_futex, interval 1, probability 0, space 0, times 0 [ 375.520658][T10371] CPU: 1 UID: 0 PID: 10371 Comm: syz.1.799 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 375.520708][T10371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 375.520730][T10371] Call Trace: [ 375.520741][T10371] [ 375.520753][T10371] dump_stack_lvl+0x16c/0x1f0 [ 375.520801][T10371] should_fail_ex+0x512/0x640 [ 375.520842][T10371] get_futex_key+0x1d0/0x1540 [ 375.520889][T10371] ? __pfx_get_futex_key+0x10/0x10 [ 375.520943][T10371] futex_wake+0xea/0x530 [ 375.520993][T10371] ? rcu_is_watching+0x12/0xc0 [ 375.521025][T10371] ? __pfx_futex_wake+0x10/0x10 [ 375.521075][T10371] ? kmem_cache_free+0x2d1/0x4d0 [ 375.521116][T10371] ? fd_install+0x225/0x750 [ 375.521154][T10371] ? putname+0x154/0x1a0 [ 375.521213][T10371] do_futex+0x1e3/0x350 [ 375.521256][T10371] ? __pfx_do_futex+0x10/0x10 [ 375.521311][T10371] __x64_sys_futex+0x1e0/0x4c0 [ 375.521357][T10371] ? __x64_sys_openat+0x174/0x210 [ 375.521393][T10371] ? __pfx___x64_sys_futex+0x10/0x10 [ 375.521464][T10371] do_syscall_64+0xcd/0x490 [ 375.521510][T10371] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 375.521546][T10371] RIP: 0033:0x7fa53238e9a9 [ 375.521574][T10371] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 375.521607][T10371] RSP: 002b:00007fa5331350e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 375.521639][T10371] RAX: ffffffffffffffda RBX: 00007fa5325b5fa8 RCX: 00007fa53238e9a9 [ 375.521663][T10371] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa5325b5fac [ 375.521684][T10371] RBP: 00007fa5325b5fa0 R08: 00007fa533136000 R09: 0000000000000000 [ 375.521705][T10371] R10: 0000000000000005 R11: 0000000000000246 R12: 00007fa5325b5fac [ 375.521726][T10371] R13: 0000000000000000 R14: 00007ffef0e8f470 R15: 00007ffef0e8f558 [ 375.521774][T10371] [ 376.108551][T10375] netlink: 4 bytes leftover after parsing attributes in process `syz.0.800'. [ 376.742301][ T30] audit: type=1800 audit(4294967406.020:10): pid=10392 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.801" name="file0" dev="tmpfs" ino=1051 res=0 errno=0 [ 377.303724][T10396] FAULT_INJECTION: forcing a failure. [ 377.303724][T10396] name failslab, interval 1, probability 0, space 0, times 0 [ 377.372442][T10396] CPU: 0 UID: 0 PID: 10396 Comm: syz.1.804 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 377.372487][T10396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 377.372506][T10396] Call Trace: [ 377.372517][T10396] [ 377.372528][T10396] dump_stack_lvl+0x16c/0x1f0 [ 377.372573][T10396] should_fail_ex+0x512/0x640 [ 377.372606][T10396] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 377.372657][T10396] should_failslab+0xc2/0x120 [ 377.372707][T10396] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 377.372754][T10396] ? alloc_inode+0x64/0x240 [ 377.372811][T10396] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 377.372840][T10396] alloc_inode+0x64/0x240 [ 377.372892][T10396] new_inode+0x22/0x1c0 [ 377.372947][T10396] __debugfs_create_file+0x11c/0x6b0 [ 377.372987][T10396] debugfs_create_file_full+0x41/0x60 [ 377.373027][T10396] ref_tracker_dir_debugfs+0x19d/0x290 [ 377.373066][T10396] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 377.373143][T10396] ? lockdep_init_map_type+0x5c/0x280 [ 377.373196][T10396] preinit_net+0x47f/0x8f0 [ 377.373240][T10396] copy_net_ns+0x1da/0x5f0 [ 377.373297][T10396] create_new_namespaces+0x3ea/0xa90 [ 377.373343][T10396] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 377.373382][T10396] ksys_unshare+0x45b/0xa40 [ 377.373428][T10396] ? __pfx_ksys_unshare+0x10/0x10 [ 377.373473][T10396] ? xfd_validate_state+0x61/0x180 [ 377.373534][T10396] __x64_sys_unshare+0x31/0x40 [ 377.373576][T10396] do_syscall_64+0xcd/0x490 [ 377.373621][T10396] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 377.373654][T10396] RIP: 0033:0x7fa53238e9a9 [ 377.373680][T10396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 377.373712][T10396] RSP: 002b:00007fa533135038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 377.373742][T10396] RAX: ffffffffffffffda RBX: 00007fa5325b5fa0 RCX: 00007fa53238e9a9 [ 377.373763][T10396] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 377.373782][T10396] RBP: 00007fa532410d69 R08: 0000000000000000 R09: 0000000000000000 [ 377.373803][T10396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 377.373822][T10396] R13: 0000000000000000 R14: 00007fa5325b5fa0 R15: 00007ffef0e8f558 [ 377.373864][T10396] [ 377.373876][T10396] debugfs: out of free dentries, can not create file 'net_notrefcnt@ffff888068d6a628' [ 379.806215][T10432] random: crng reseeded on system resumption [ 381.646971][T10459] netlink: 338 bytes leftover after parsing attributes in process `syz.2.815'. [ 382.843487][T10482] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 382.902491][T10482] netlink: 62 bytes leftover after parsing attributes in process `syz.1.821'. [ 382.982616][T10484] netlink: 62 bytes leftover after parsing attributes in process `syz.1.821'. [ 383.002536][T10484] netlink: 62 bytes leftover after parsing attributes in process `syz.1.821'. [ 383.011925][T10484] netlink: 62 bytes leftover after parsing attributes in process `syz.1.821'. [ 383.062594][T10484] netlink: 62 bytes leftover after parsing attributes in process `syz.1.821'. [ 383.182216][T10484] netlink: 62 bytes leftover after parsing attributes in process `syz.1.821'. [ 383.191561][T10484] netlink: 62 bytes leftover after parsing attributes in process `syz.1.821'. [ 383.236848][T10484] netlink: 62 bytes leftover after parsing attributes in process `syz.1.821'. [ 383.270385][T10484] netlink: 62 bytes leftover after parsing attributes in process `syz.1.821'. [ 385.100992][ T51] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 386.377504][T10545] sysfs_service_op_show: Client not running :-5: [ 387.193433][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 388.623539][T10596] random: crng reseeded on system resumption [ 389.116318][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 389.152520][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 389.323129][T10611] __nla_validate_parse: 17 callbacks suppressed [ 389.323155][T10611] netlink: 28 bytes leftover after parsing attributes in process `syz.3.845'. [ 389.353918][T10603] netlink: 28 bytes leftover after parsing attributes in process `syz.3.845'. syzkaller syzkaller login: [ 394.187900][T10669] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI [ 394.199869][T10669] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 394.208365][T10669] CPU: 1 UID: 0 PID: 10669 Comm: syz.3.857 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 394.220418][T10669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 394.230722][T10669] RIP: 0010:strcmp+0x39/0xb0 [ 394.235615][T10669] Code: df 41 54 55 53 48 89 fb 48 83 ec 08 eb 08 40 84 ed 74 61 4c 89 e6 48 89 df 48 83 c3 01 48 89 f8 48 89 fa 48 c1 e8 03 83 e2 07 <42> 0f b6 04 28 38 d0 7f 04 84 c0 75 58 48 89 f0 48 89 f2 0f b6 6b [ 394.255368][T10669] RSP: 0018:ffffc90002f477c0 EFLAGS: 00010246 [ 394.261562][T10669] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffc9000e822000 [ 394.269593][T10669] RDX: 0000000000000000 RSI: ffffffff8c43e580 RDI: 0000000000000000 [ 394.277582][T10669] RBP: ffffffff8c43d520 R08: 0000000000000001 R09: ffffed1004c45209 [ 394.285587][T10669] R10: ffff88802622904f R11: 0000000000000001 R12: ffff888032d3a000 [ 394.293591][T10669] R13: dffffc0000000000 R14: dffffc0000000000 R15: 0000000000000000 [ 394.301703][T10669] FS: 00007f20fbfaf6c0(0000) GS:ffff88812482c000(0000) knlGS:0000000000000000 [ 394.310877][T10669] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 394.317493][T10669] CR2: 0000001b2c900ff8 CR3: 0000000059abe000 CR4: 00000000003526f0 [ 394.325501][T10669] Call Trace: [ 394.328819][T10669] [ 394.331776][T10669] zcomp_available_show+0x73/0x130 [ 394.336946][T10669] ? __pfx_comp_algorithm_show+0x10/0x10 [ 394.343066][T10669] comp_algorithm_show+0x98/0xd0 [ 394.348091][T10669] dev_attr_show+0x53/0xe0 [ 394.352539][T10669] ? __pfx_dev_attr_show+0x10/0x10 [ 394.357794][T10669] sysfs_kf_seq_show+0x213/0x3e0 [ 394.362891][T10669] seq_read_iter+0x506/0x12c0 [ 394.367599][T10669] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 394.373629][T10669] kernfs_fop_read_iter+0x40f/0x5a0 [ 394.379206][T10669] copy_splice_read+0x615/0xba0 [ 394.384283][T10669] ? __pfx_copy_splice_read+0x10/0x10 [ 394.389824][T10669] ? look_up_lock_class+0x6b/0x150 [ 394.395079][T10669] ? lockdep_init_map_type+0x5c/0x280 [ 394.400617][T10669] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 394.406063][T10669] ? __pfx_copy_splice_read+0x10/0x10 [ 394.411490][T10669] do_splice_read+0x285/0x370 [ 394.416217][T10669] splice_direct_to_actor+0x2a1/0xa30 [ 394.421633][T10669] ? __pfx_direct_splice_actor+0x10/0x10 [ 394.427328][T10669] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 394.433271][T10669] do_splice_direct+0x174/0x240 [ 394.438177][T10669] ? __pfx_do_splice_direct+0x10/0x10 [ 394.443598][T10669] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 394.449631][T10669] ? rw_verify_area+0xcf/0x680 [ 394.454438][T10669] do_sendfile+0xb06/0xe50 [ 394.458894][T10669] ? __pfx_do_sendfile+0x10/0x10 [ 394.463862][T10669] ? __pfx___might_resched+0x10/0x10 [ 394.469319][T10669] ? __x64_sys_futex+0x1e0/0x4c0 [ 394.474308][T10669] ? __x64_sys_futex+0x1e9/0x4c0 [ 394.479309][T10669] __x64_sys_sendfile64+0x1d8/0x220 [ 394.484598][T10669] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 394.490488][T10669] do_syscall_64+0xcd/0x490 [ 394.495149][T10669] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 394.501082][T10669] RIP: 0033:0x7f20fb18e9a9 [ 394.505615][T10669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 394.536474][T10669] RSP: 002b:00007f20fbfaf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 394.545031][T10669] RAX: ffffffffffffffda RBX: 00007f20fb3b6160 RCX: 00007f20fb18e9a9 [ 394.553026][T10669] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 394.561191][T10669] RBP: 00007f20fb210d69 R08: 0000000000000000 R09: 0000000000000000 [ 394.569291][T10669] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000 [ 394.577311][T10669] R13: 0000000000000000 R14: 00007f20fb3b6160 R15: 00007ffd602412c8 [ 394.585318][T10669] [ 394.588352][T10669] Modules linked in: [ 394.593692][T10669] ---[ end trace 0000000000000000 ]--- [ 394.697091][T10674] vhci_hcd: invalid port number 16 [ 394.742195][T10674] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 394.749680][T10669] RIP: 0010:strcmp+0x39/0xb0 [ 394.882288][T10669] Code: df 41 54 55 53 48 89 fb 48 83 ec 08 eb 08 40 84 ed 74 61 4c 89 e6 48 89 df 48 83 c3 01 48 89 f8 48 89 fa 48 c1 e8 03 83 e2 07 <42> 0f b6 04 28 38 d0 7f 04 84 c0 75 58 48 89 f0 48 89 f2 0f b6 6b [ 394.903036][T10669] RSP: 0018:ffffc90002f477c0 EFLAGS: 00010246 [ 394.913152][T10669] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffc9000e822000 [ 394.934543][T10669] RDX: 0000000000000000 RSI: ffffffff8c43e580 RDI: 0000000000000000 [ 394.954624][T10669] RBP: ffffffff8c43d520 R08: 0000000000000001 R09: ffffed1004c45209 [ 394.989561][T10669] R10: ffff88802622904f R11: 0000000000000001 R12: ffff888032d3a000 [ 395.039872][T10669] R13: dffffc0000000000 R14: dffffc0000000000 R15: 0000000000000000 [ 395.063009][T10669] FS: 00007f20fbfaf6c0(0000) GS:ffff88812482c000(0000) knlGS:0000000000000000 [ 395.093766][T10669] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 395.100435][T10669] CR2: 0000200000692000 CR3: 0000000059abe000 CR4: 00000000003526f0 [ 395.182260][T10669] Kernel panic - not syncing: Fatal exception [ 395.188782][T10669] Kernel Offset: disabled [ 395.193151][T10669] Rebooting in 86400 seconds..