last executing test programs: 2m26.954911739s ago: executing program 3 (id=2454): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x501, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r1 = socket(0x1e, 0x6, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcbx\xb2\x18e\x95$\x9d\x804', 0x100000a3d9) setsockopt$auto(0xffffffffffffffff, 0x9, 0x69ce, &(0x7f0000000040)='(%}[\x00', 0x3) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0xfffffffffffffffd, 0x400108, 0xdf, 0x12, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/tty/ptyqe/power/control\x00', 0xa0b02, 0x0) r3 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/security/tomoyo/profile\x00', 0x48802, 0x0) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x3c, 0x0, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@ETHTOOL_A_PAUSE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_PAUSE_RX={0x5, 0x3, 0x4}, @ETHTOOL_A_PAUSE_AUTONEG={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x4040000) sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00002dbd7000fddb0025140000000800080002a0bdae668d95561c3051633b8a73af00000008001105000c000700000008000f000900000008000f0009000000"], 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x4) read$auto(r3, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0x70) write$auto(0x3, 0x0, 0xfdef) 2m24.359971306s ago: executing program 3 (id=2458): socket(0xa, 0x1, 0x100) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r1 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r1, 0x107, 0x12, 0x0, 0x4) r2 = socket(0x10, 0x2, 0x4) io_uring_setup$auto(0x4bf15e08, &(0x7f0000000000)={0x401, 0x8, 0xfe, 0x6fb3, 0x8a, 0x9, 0xffffffffffffffff, [0x100, 0x9, 0x7f], {0x2, 0x7, 0x3032, 0xe, 0xf, 0x5, 0x5, 0xfffffff9, 0xf08a2b3}, {0x0, 0xfc, 0x6, 0x0, 0x0, 0xf89, 0x9, 0x837, 0x8}}) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'dummy0\x00'}) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00') sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) write$auto(r2, &(0x7f0000000000)='-\x00', 0x2fb) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x10b142, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0) writev$auto(r4, &(0x7f0000000080)={&(0x7f0000000040), 0x4000001004}, 0x3) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto(0x3, 0x2287, 0xffffffffffffffff) 2m22.997507889s ago: executing program 3 (id=2461): io_cancel$auto(0x4, &(0x7f0000000040)={0x3ff, 0x2, 0x10, 0x4, 0x5, 0xffffffffffffffff, 0x7, 0xc7, 0x6, 0x0, 0x8de}, &(0x7f0000000080)={0x2, 0x7, 0x7, 0x2}) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), r1) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x4004040) sendmsg$auto_HWSIM_CMD_GET_RADIO(r0, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="32bb67fb34234af6df2506000000080004001d0008b267fb2a86b8efac2e040f249592c3008505000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/o2cb/logmask/ERROR\x00', 0x183042, 0x0) sendfile$auto(r4, r4, 0x0, 0x8000) socket(0x2, 0x2, 0x0) mmap$auto(0x4, 0x4020009, 0x6, 0xeb1, 0x401, 0x8010) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x50b880, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) socket(0xa, 0x5, 0x8) close_range$auto(0x2, 0x8, 0x0) gettid() r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/fib_trie\x00', 0x0, 0x0) pread64$auto(r5, 0x0, 0x8, 0x7fff) unshare$auto(0x40000080) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) madvise$auto(0x0, 0xfffffffffffefffd, 0x17) madvise$auto(0x0, 0x20499d, 0x9) 2m19.786755077s ago: executing program 3 (id=2465): r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) r2 = socketcall$auto(0x8000, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_CREATE_VM(r1, 0xae80, 0x0) write$auto(0xffffffffffffffff, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xc6\xe8\xfc@6=\xab\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4U\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t\x13\xf6\x8e\xcf\xabI\xb8\x16\\\x00'/129, 0x7ef) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82040, 0x0) r4 = socket(0xa, 0x1, 0x100) r5 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) pread64$auto(r5, 0x0, 0x7ff, 0x400) close_range$auto(r4, r0, 0x22) r6 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x12, 0x0, 0x0, &(0x7f0000000240)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x400000000000948f, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1]}, 0x0) write$auto(r6, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_GET_INTERFACE(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r8, @ANYBLOB="010b27bd7000fcdbdf250500000008000300", @ANYRES32=r9], 0x1c}, 0x1, 0x0, 0x0, 0x4000001}, 0x4000084) 2m18.673192417s ago: executing program 3 (id=2469): socket(0x1a, 0x1, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioctl$auto_BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, 0x0) unshare$auto(0x40000080) r1 = socket(0x2, 0x1, 0x106) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) clock_settime$auto(0x0, 0x0) setsockopt$auto(r1, 0x1, 0x9, 0x0, 0xeb66) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x3, 0x3b) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) close_range$auto(0x2, 0x8, 0x0) r2 = socket(0x2, 0x1, 0x84) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xa4e00, 0x0) sendmsg$auto_MAC802154_HWSIM_CMD_NEW_EDGE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x81) readv$auto(0x3, &(0x7f0000000040)={0x0, 0x1000}, 0x100000007) mmap$auto(0x0, 0x420005, 0xd42a, 0x9b72, 0x2, 0x8000) writev$auto(0xffffffffffffffff, 0x0, 0x1) io_uring_setup$auto(0x2, 0x0) io_uring_register$auto_IORING_REGISTER_FILES_UPDATE(r2, 0x6, &(0x7f0000000240)="04adc501000000000000005f1e9700000000dcd6a66989d861ccca7c5e0304ed909d2bc75fe953b9b8444347263ee49c1928f0d0cca2db6e3e", 0x7fffffff) madvise$auto(0x1, 0x3, 0x5) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$auto_SO_PEEK_OFF(0xffffffffffffffff, 0x8, 0x2a, 0x0, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) 2m15.850220792s ago: executing program 3 (id=2473): mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0) openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) sendfile$auto(r0, r0, 0x0, 0x3) 2m0.466402486s ago: executing program 32 (id=2473): mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0) openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) sendfile$auto(r0, r0, 0x0, 0x3) 7.222120416s ago: executing program 2 (id=2776): r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0) ioctl$auto_SG_SET_RESERVED_SIZE2(r0, 0x2275, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xa, 0x8000) io_uring_setup$auto(0xb, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 6.295442264s ago: executing program 1 (id=2777): io_cancel$auto(0x4, &(0x7f0000000040)={0x3ff, 0x2, 0x10, 0x4, 0x5, 0xffffffffffffffff, 0x7, 0xc7, 0x6, 0x0, 0x8de}, &(0x7f0000000080)={0x2, 0x7, 0x7, 0x2}) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x4004040) sendmsg$auto_HWSIM_CMD_GET_RADIO(r0, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="32bb67fb34234af6df2506000000080004001d0008b267fb2a86b8efac2e040f249592c3008505000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/o2cb/logmask/ERROR\x00', 0x183042, 0x0) sendfile$auto(r4, r4, 0x0, 0x8000) socket(0x2, 0x2, 0x0) mmap$auto(0x4, 0x4020009, 0x6, 0xeb1, 0x401, 0x8010) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x50b880, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, 0x0, 0x481, 0x0) socket(0xa, 0x5, 0x8) close_range$auto(0x2, 0x8, 0x0) waitid$auto_P_ALL(0x0, 0x468e, &(0x7f00000001c0)={@siginfo_0_0={0x7, 0x4, 0x309, @_rt={0x0, 0x0, @sival_ptr=&(0x7f00000002c0)="361da6425979f321f15c64a6f5fa0b6cba1f0e4285504a768d83e5b21be75dd346782ab711f42ffe91741f05e24e30be16bbe7ac358ec9c81c091f1f8538451b6f89c6fbc4edbf8b0a309e31b55bc7f04f5f7a39aaee1b9943cd809e75"}}}, 0x8, &(0x7f0000000580)={{0x4, 0x2}, {0x3ebdf443, 0x2}, 0x0, 0x2000000000001af, 0x5, 0x2, 0xfffffffffffff5a2, 0x8, 0x402, 0x2, 0x7, 0x8, 0x4e6033bf, 0x6, 0x101, 0x8}) gettid() r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/fib_trie\x00', 0x0, 0x0) pread64$auto(r6, 0x0, 0x8, 0x7fff) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r3, 0xc1105517, &(0x7f0000000440)={{@inferred=r5, 0x80, 0x3, 0x1, "977d648a0881449f3ce8ba5b483e904dfacb519a28d0b90b462bf9ad3e3c7e488826dc0852829cf353806ac4", @inferred=r5}, 0x0, 0x7, 0x4, @raw=0x9, @integer={0x5, 0xfffffffffffffff4, 0x4}, "b957b0168b84987d4211529b4bf24c25c2a1e7c1cbcff5c254d7954a4ffb435e9426e9c83a87cd49439334e9a0bf167595e50bfb2200e43a76fd8e68ce7be399"}) unshare$auto(0x40000080) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) madvise$auto(0x0, 0xfffffffffffefffd, 0x17) madvise$auto(0x0, 0x20499d, 0x9) 6.279453957s ago: executing program 2 (id=2778): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) newfstatat$auto(r0, &(0x7f0000001140)='./file0\x00', &(0x7f0000001200)={0x9, 0x5e98, 0x4, 0x0, 0xee00, 0xffffffffffffffff, 0x0, 0x1, 0x4, 0x5, 0x4, 0x80000000, 0xdb, 0xfa, 0x6f}, 0x400) ioctl$auto_EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000001180)={0xee00, 0x0, 0xfffffffffffffff9, 0x5, 0x40889db2, 0x81}) lstat$auto(&(0x7f0000001040)='./file0\x00', &(0x7f00000012c0)={0x10, 0x0, 0x1, 0x8001, r1, r2, 0x0, 0x8, 0x6, 0x0, 0x80, 0x10000000947, 0x5, 0x7fffffffffffffff, 0x9, 0x80000001, 0x1}) r3 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000001380)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x121000, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x11, r3, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) setsockopt$auto(0xffffffffffffffff, 0x107, 0x18, 0x0, 0x9) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram6\x00', 0x4040, 0x0) preadv2$auto(0x3, 0x0, 0x5, 0xffffffffffffffff, 0x7, 0x2e) write$auto_tty_fops_tty_io(r4, &(0x7f0000000200)="352c8efa610c0bcf83a4ebdb040000000000000021cb244b19a48bb5e0d12df9735b745b9554dfb0ad77a37be296ebe6f598901d632a206d9bb056d8", 0x3c) mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) ioctl$auto(0xffffffffffffffff, 0x8912, 0x38) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x8000) ustat$auto(0x801, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x40}, 0x8) write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) madvise$auto(0x0, 0x2003f0, 0x15) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0xff1, 0x8000) bpf$auto(0x5, 0x0, 0x102) 6.212012223s ago: executing program 4 (id=2779): io_cancel$auto(0x4, &(0x7f0000000040)={0x3ff, 0x2, 0x10, 0x4, 0x5, 0xffffffffffffffff, 0x7, 0xc7, 0x6, 0x0, 0x8de}, &(0x7f0000000080)={0x2, 0x7, 0x7, 0x2}) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x4004040) sendmsg$auto_HWSIM_CMD_GET_RADIO(r0, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="32bb67fb34234af6df2506000000080004001d0008b267fb2a86b8efac2e040f249592c3008505000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/o2cb/logmask/ERROR\x00', 0x183042, 0x0) sendfile$auto(r4, r4, 0x0, 0x8000) socket(0x2, 0x2, 0x0) mmap$auto(0x4, 0x4020009, 0x6, 0xeb1, 0x401, 0x8010) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x50b880, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, 0x0, 0x481, 0x0) socket(0xa, 0x5, 0x8) close_range$auto(0x2, 0x8, 0x0) waitid$auto_P_ALL(0x0, 0x468e, &(0x7f00000001c0)={@siginfo_0_0={0x7, 0x4, 0x309, @_rt={0x0, 0x0, @sival_ptr=&(0x7f00000002c0)="361da6425979f321f15c64a6f5fa0b6cba1f0e4285504a768d83e5b21be75dd346782ab711f42ffe91741f05e24e30be16bbe7ac358ec9c81c091f1f8538451b6f89c6fbc4edbf8b0a309e31b55bc7f04f5f7a39aaee1b9943cd809e75"}}}, 0x8, &(0x7f0000000580)={{0x4, 0x2}, {0x3ebdf443, 0x2}, 0x0, 0x2000000000001af, 0x5, 0x2, 0xfffffffffffff5a2, 0x8, 0x402, 0x2, 0x7, 0x8, 0x4e6033bf, 0x6, 0x101, 0x8}) gettid() r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/fib_trie\x00', 0x0, 0x0) pread64$auto(r6, 0x0, 0x8, 0x7fff) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r3, 0xc1105517, &(0x7f0000000440)={{@inferred=r5, 0x80, 0x3, 0x1, "977d648a0881449f3ce8ba5b483e904dfacb519a28d0b90b462bf9ad3e3c7e488826dc0852829cf353806ac4", @inferred=r5}, 0x0, 0x7, 0x4, @raw=0x9, @integer={0x5, 0xfffffffffffffff4, 0x4}, "b957b0168b84987d4211529b4bf24c25c2a1e7c1cbcff5c254d7954a4ffb435e9426e9c83a87cd49439334e9a0bf167595e50bfb2200e43a76fd8e68ce7be399"}) unshare$auto(0x40000080) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) madvise$auto(0x0, 0xfffffffffffefffd, 0x17) madvise$auto(0x0, 0x20499d, 0x9) 4.633377948s ago: executing program 1 (id=2781): r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x149041, 0x0) openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000007380)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x109041, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={{0x0, 0x8000, &(0x7f0000000100)={0x0, 0xfc2}, 0x9, 0x0, 0x4000000000007, 0xa504}, 0xffffffff}, 0x4, 0x4008) mmap$auto(0xa5, 0x7, 0x68c, 0x19, r0, 0x6) r1 = socket(0xf, 0xa, 0xf) setsockopt$auto(r1, 0x1, 0xc, 0x0, 0x7fffffff) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ttyS0\x00', 0x1, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/amidi2\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x2b, 0x1, 0x0) socketpair$auto(0xa0000000, 0x1, 0x8000000000000000, 0x0) dup2$auto(0x5, 0x4) write$auto(0x6, 0x0, 0x100000001) splice$auto(0x4, 0x0, 0x2, 0x0, 0x1013, 0xf) sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r3, 0x0, 0xc000) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40) execve$auto(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000300)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\x00\xf20/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a0\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5\x94\xd0\xf5\xe7\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00') openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x40100, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x4202, 0x0) syz_clone(0x1011, 0x0, 0x0, 0x0, 0x0, 0x0) rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8) rt_sigtimedwait$auto(&(0x7f0000000040)={0xfffffffffffffbff}, 0x0, 0x0, 0x8) mmap$auto(0x1000000400000000, 0xa, 0xdb, 0x18, 0x5, 0x7ff9) 4.292587859s ago: executing program 4 (id=2782): io_cancel$auto(0x4, &(0x7f0000000040)={0x3ff, 0x2, 0x10, 0x4, 0x5, 0xffffffffffffffff, 0x7, 0xc7, 0x6, 0x0, 0x8de}, &(0x7f0000000080)={0x2, 0x7, 0x7, 0x2}) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x4004040) sendmsg$auto_HWSIM_CMD_GET_RADIO(r0, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="32bb67fb34234af6df2506000000080004001d0008b267fb2a86b8efac2e040f249592c3008505000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/o2cb/logmask/ERROR\x00', 0x183042, 0x0) sendfile$auto(r4, r4, 0x0, 0x8000) socket(0x2, 0x2, 0x0) mmap$auto(0x4, 0x4020009, 0x6, 0xeb1, 0x401, 0x8010) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x50b880, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, 0x0, 0x481, 0x0) socket(0xa, 0x5, 0x8) close_range$auto(0x2, 0x8, 0x0) waitid$auto_P_ALL(0x0, 0x468e, &(0x7f00000001c0)={@siginfo_0_0={0x7, 0x4, 0x309, @_rt={0x0, 0x0, @sival_ptr=&(0x7f00000002c0)="361da6425979f321f15c64a6f5fa0b6cba1f0e4285504a768d83e5b21be75dd346782ab711f42ffe91741f05e24e30be16bbe7ac358ec9c81c091f1f8538451b6f89c6fbc4edbf8b0a309e31b55bc7f04f5f7a39aaee1b9943cd809e75"}}}, 0x8, &(0x7f0000000580)={{0x4, 0x2}, {0x3ebdf443, 0x2}, 0x0, 0x2000000000001af, 0x5, 0x2, 0xfffffffffffff5a2, 0x8, 0x402, 0x2, 0x7, 0x8, 0x4e6033bf, 0x6, 0x101, 0x8}) gettid() r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/fib_trie\x00', 0x0, 0x0) pread64$auto(r6, 0x0, 0x8, 0x7fff) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r3, 0xc1105517, &(0x7f0000000440)={{@inferred=r5, 0x80, 0x3, 0x1, "977d648a0881449f3ce8ba5b483e904dfacb519a28d0b90b462bf9ad3e3c7e488826dc0852829cf353806ac4", @inferred=r5}, 0x0, 0x7, 0x4, @raw=0x9, @integer={0x5, 0xfffffffffffffff4, 0x4}, "b957b0168b84987d4211529b4bf24c25c2a1e7c1cbcff5c254d7954a4ffb435e9426e9c83a87cd49439334e9a0bf167595e50bfb2200e43a76fd8e68ce7be399"}) unshare$auto(0x40000080) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) madvise$auto(0x0, 0xfffffffffffefffd, 0x17) madvise$auto(0x0, 0x20499d, 0x9) 4.004013678s ago: executing program 2 (id=2783): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) syslog$auto(0x3, &(0x7f0000000180)='..\x00k\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\x00\x80\x00\x00\x00\xce\n\xd2^+\x1d{\x7f\x00\x00\x00j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\xd8\x00\x01', 0x2) close_range$auto(0x0, r0, 0x0) set_mempolicy$auto(0x1c467bfe, &(0x7f0000000080)=0x3, 0x20) mmap$auto(0x8, 0x2000b, 0x7, 0xeb1, 0x404, 0xe00) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x80802, 0x0) ioctl$auto(r2, 0x800064b9, 0x1e6) r3 = socket(0xa, 0x5, 0x84) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0xb5, 0x402, 0xdf, 0xeb1, r3, 0x7ffc) io_uring_setup$auto(0x6, 0x0) socket(0x2, 0x5, 0x0) close_range$auto(0x2, 0x8, 0xca0000) socket(0x2, 0x80002, 0x73) r4 = socket(0x2, 0x1, 0x84) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101101, 0x0) getsockopt$auto_SO_PEERPIDFD(r4, 0xb3, 0x4d, &(0x7f00000000c0)='/dev/audio1\x00', &(0x7f0000000100)=0x80) mmap$auto(0x0, 0x4000a, 0xda, 0x9b72, 0x7, 0x28000) 3.725393921s ago: executing program 1 (id=2784): mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x10, 0x2, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x800) bpf$auto(0x6, &(0x7f00000001c0)=@test={r0, 0x10004, 0x0, 0x1000, 0x106, 0x0, 0x0, 0xfff, 0x10000, 0x9, 0x0, 0x4, 0x7, 0x2, 0xfffeffff}, 0x1) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c0001800800"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) mount$auto(0x0, &(0x7f00000001c0)='}[,&*}\x00', 0x0, 0x7fff, 0x0) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 3.415018701s ago: executing program 0 (id=2785): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x7) mmap$auto(0x0, 0xfff, 0xdf, 0xeb4, 0xffffffffffffffff, 0x4) r0 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x880c0, 0x40, 0x2a}, 0x18) fremovexattr$auto(r0, &(0x7f0000000300)='systeo.posixyaJl_access\x00\x96\ff\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x28800, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sg0\x00', 0x40200, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0) mmap$auto(0xfffffffffffffff9, 0x400003, 0x7, 0x9b72, 0x2, 0x8000) setsockopt$auto(0xffffffffffffffff, 0x1, 0x1021, 0x0, 0x11) close_range$auto(0x2, 0xa, 0x0) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace\x00', 0x1a6b75d638828712, 0x0) sendfile$auto(r5, r4, 0x0, 0x1000202) 2.924272325s ago: executing program 0 (id=2787): readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 2.627726297s ago: executing program 0 (id=2788): socket(0xa, 0x1, 0x100) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r1 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r1, 0x107, 0x12, 0x0, 0x4) r2 = socket(0x10, 0x2, 0x4) io_uring_setup$auto(0x4bf15e08, &(0x7f0000000000)={0x401, 0x8, 0xfe, 0x6fb3, 0x8a, 0x9, 0xffffffffffffffff, [0x100, 0x9, 0x7f], {0x2, 0x7, 0x3032, 0xe, 0xf, 0x5, 0x5, 0xfffffff9, 0xf08a2b3}, {0x0, 0xfc, 0x6, 0x0, 0x0, 0xf89, 0x9, 0x837, 0x8}}) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'dummy0\x00'}) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00') sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) write$auto(r2, &(0x7f0000000000)='-\x00', 0x2fb) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x10b142, 0x0) write$auto(r4, &(0x7f00000001c0)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x7a) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0) writev$auto(r5, &(0x7f0000000080)={&(0x7f0000000040), 0x4000001004}, 0x3) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto(0x3, 0x2287, 0xffffffffffffffff) 2.055019928s ago: executing program 4 (id=2789): r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x149041, 0x0) openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000007380)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x109041, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={{0x0, 0x8000, &(0x7f0000000100)={0x0, 0xfc2}, 0x9, 0x0, 0x4000000000007, 0xa504}, 0xffffffff}, 0x4, 0x4008) mmap$auto(0xa5, 0x7, 0x68c, 0x19, r0, 0x6) r1 = socket(0xf, 0xa, 0xf) setsockopt$auto(r1, 0x1, 0xc, 0x0, 0x7fffffff) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ttyS0\x00', 0x1, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/amidi2\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x2b, 0x1, 0x0) socketpair$auto(0xa0000000, 0x1, 0x8000000000000000, 0x0) dup2$auto(0x5, 0x4) write$auto(0x6, 0x0, 0x100000001) splice$auto(0x4, 0x0, 0x2, 0x0, 0x1013, 0xf) sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r3, 0x0, 0xc000) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40) read$auto_severities_coverage_fops_severity(r3, &(0x7f0000000080)=""/111, 0x6f) execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000300)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\x00\xf20/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a0\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5\x94\xd0\xf5\xe7\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00') openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x40100, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x4202, 0x0) syz_clone(0x1011, 0x0, 0x0, 0x0, 0x0, 0x0) rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8) rt_sigtimedwait$auto(&(0x7f0000000040)={0xfffffffffffffbff}, 0x0, 0x0, 0x8) mmap$auto(0x1000000400000000, 0xa, 0xdb, 0x18, 0x5, 0x7ff9) 1.991548923s ago: executing program 2 (id=2790): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x0, 0xfffffffffffff000, 0x2) open(&(0x7f0000000040)='./file0\x00', 0x109442, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) r1 = socket(0x2, 0x80802, 0x0) setsockopt$auto(r1, 0x11, 0x67, 0x0, 0x8) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, 0x0, 0x55) socket(0x10, 0x2, 0x0) socket(0x10, 0x2, 0x4) sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000001180)={&(0x7f0000001000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000001140)={&(0x7f0000001040)=ANY=[@ANYBLOB='\'\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00042dbd7000ffdbdf258800000008009a0000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x24000004}, 0x4000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x4) setsockopt$auto(0xffffffffffffffff, 0x107, 0x18, 0x0, 0x9) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r2 = pidfd_getfd$auto(0x3, 0x1, 0x100000000) fanotify_init$auto(0xd, 0xfffeffff) bpf$auto(0x1, 0x0, 0xfffffffc) bpf$auto_BPF_TASK_FD_QUERY(0x14, &(0x7f0000001080)=@link_detach={r2}, 0x6) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) add_key$auto_KEY_SPEC_SESSION_KEYRING(&(0x7f0000000000)='\x8d-/*$\xef-:,\x00', &(0x7f0000000040)='/dev/kvm\x00', &(0x7f0000000080)="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", 0x0, 0xfffffffffffffffd) 1.558859013s ago: executing program 1 (id=2791): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff) socket(0x2, 0x1, 0x106) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80001, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40080, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/vivid.0/media8/power/runtime_suspended_time\x00', 0x24c602, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000001c00)=""/4111, 0x100f) symlink$auto(&(0x7f0000001500)='./file0/file0\x00', 0x0) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) io_uring_setup$auto(0x401, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = prctl$auto_PR_SET_MM_BRK(0xfffffff7, 0x7, 0x0, 0x2, 0x2) syz_genetlink_get_family_id$auto_macsec(&(0x7f00000000c0), r2) socket(0x11, 0x3, 0x2) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) madvise$auto(0x110c230000, 0x1, 0x9) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0) socket(0xa, 0x2, 0x0) 1.46310038s ago: executing program 0 (id=2792): mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x10, 0x2, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x800) bpf$auto(0x6, &(0x7f00000001c0)=@test={r0, 0x10004, 0x0, 0x1000, 0x106, 0x0, 0x0, 0xfff, 0x10000, 0x9, 0x0, 0x4, 0x7, 0x2, 0xfffeffff}, 0x1) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c00018008"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) mount$auto(0x0, &(0x7f00000001c0)='}[,&*}\x00', 0x0, 0x7fff, 0x0) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.363916758s ago: executing program 2 (id=2793): socket(0xa, 0x1, 0x100) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r1 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r1, 0x107, 0x12, 0x0, 0x4) r2 = socket(0x10, 0x2, 0x4) io_uring_setup$auto(0x4bf15e08, &(0x7f0000000000)={0x401, 0x8, 0xfe, 0x6fb3, 0x8a, 0x9, 0xffffffffffffffff, [0x100, 0x9, 0x7f], {0x2, 0x7, 0x3032, 0xe, 0xf, 0x5, 0x5, 0xfffffff9, 0xf08a2b3}, {0x0, 0xfc, 0x6, 0x0, 0x0, 0xf89, 0x9, 0x837, 0x8}}) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'dummy0\x00'}) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00') sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) write$auto(r2, &(0x7f0000000000)='-\x00', 0x2fb) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x10b142, 0x0) write$auto(r4, &(0x7f00000001c0)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x7a) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0) writev$auto(r5, &(0x7f0000000080)={&(0x7f0000000040), 0x4000001004}, 0x3) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto(0x3, 0x2287, 0xffffffffffffffff) 1.06681324s ago: executing program 4 (id=2794): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/ram14/events_poll_msecs\x00', 0x48542, 0x0) r1 = bpf$auto(0x5, &(0x7f0000000000)=@iter_create={0x20, 0x5}, 0x7) write$auto(r0, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0x847a) ioctl$auto_IOCTL_VMCI_NOTIFICATIONS_RECEIVE(r1, 0x7a6, 0x0) 874.726783ms ago: executing program 0 (id=2795): mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x10, 0x2, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x800) bpf$auto(0x6, &(0x7f00000001c0)=@test={r0, 0x10004, 0x0, 0x1000, 0x106, 0x0, 0x0, 0xfff, 0x10000, 0x9, 0x0, 0x4, 0x7, 0x2, 0xfffeffff}, 0x1) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c0001800800"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) mount$auto(0x0, &(0x7f00000001c0)='}[,&*}\x00', 0x0, 0x7fff, 0x0) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 872.80421ms ago: executing program 4 (id=2796): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/neigh/wg0/unres_qlen\x00', 0x14401, 0x0) pwrite64$auto(r0, 0x0, 0x6bc, 0x20000005) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_REQ_SET_REG(r1, 0x0, 0x40) sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TEMP(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000127bd7000fddbdf25030000002f000d002f70726f762f7379732f6e65742f697076362f636f6e662f64656661756c742f666f7277617207000000000000000600090000000800190004000000080010000c000000c7082f51d422ba3a64d22adf8cf968f5693a8ed742845f38af93d04c6d870032a6035af0d0f8d4d8c9210c83d9b0fe3c48e1ee2f4ba79d02aa41f122b2a52cfee35a08377313"], 0x5c}, 0x1, 0x0, 0x0, 0x810}, 0x880) mmap$auto(0xffffffff, 0x803, 0x8, 0x800010, r0, 0x8000) madvise$auto(0x0, 0x1, 0xe5e) sendmsg$auto_NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x90}, 0x4004050) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0) ioctl$auto_TCSBRKP2(r2, 0x5425, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x8000, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x1d, &(0x7f00000003c0), 0x0) 345.46879ms ago: executing program 0 (id=2797): mmap$auto(0x0, 0x200004, 0x4000000000e1, 0x40eb2, 0xd, 0x300000000000) r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x8, 0x80000000000000df, 0x10004000eb1, 0x8, 0x8000008000) close_range$auto(0x2, 0x8, 0x0) sysfs$auto(0x2, 0x100000000000027, 0x0) r1 = fsopen$auto(0x0, 0x1) r2 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x8, 0x1, 0xb, 0xd, 0x1000000000000e13, 0x81, 0xe, 0x2000000000000002, 0x0, 0x9, 0x1, 0x2, 0x80000001, 0x8627, 0x9, 0x20000800001, 0x3, 0x5, 0x7, 0x6, 0x7, 0x0, 0xffffffee, 0x2a17, 0x0, 0x5bf, 0x0, 0x0, 0x0, 0x0, [0x18, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x4, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x27, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x40000000, 0x0, 0x2]}, 0x4, 0x81) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x1f3988aff2600a59}, 0xc090) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4044810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4000010}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/dev/cdrom/info\x00', 0x2000, 0x0) read$auto(r0, 0x0, 0xfd) read$auto(0x3, 0x0, 0x80) r3 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_OVS_FLOW_CMD_DEL(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYBLOB="180000005a2f441fb8f43f8f910e847a91edda83610180fbf9e3698b159bfaff3764e5e483cdbd9c7f1ab8784b643219c26da80853d9e933f19aff1b7e83023a10ff5862be4e4cbcbee8f36e7f885ff08dd028f1ceb7d60b4e742d0e7fb0a625ee8f655a01ba8e06fd0a4aa793915ee6b325a79f569aac1916f8d5d026d2186e0382434057d9f87943af3804e00f738afce316f62ff41f4ecd9de44a4692ef1282eb9a8663", @ANYRES16=r3, @ANYBLOB="01002dbd7000fddbdf250200000004000180"], 0x18}, 0x1, 0x0, 0x0, 0x40}, 0x800) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) mmap$auto(0x3, 0x402000b, 0x2000006, 0xeb1, 0x401, 0xfff) r4 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000380), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000680)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4000004}, 0x400c080) sendmsg$auto_SMC_NETLINK_DUMP_SEID(r1, &(0x7f00000004c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000480)={&(0x7f00000006c0)=ANY=[@ANYBLOB="bc000000", @ANYRES16=r4, @ANYBLOB="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"], 0xbc}, 0x1, 0x0, 0x0, 0x800}, 0x1) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) r5 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0) pread64$auto(r5, 0x0, 0x101, 0x103) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) read$auto_mon_fops_text_t_mon_text(r5, 0x0, 0x0) 169.530189ms ago: executing program 2 (id=2798): r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) r2 = socketcall$auto(0x8000, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_CREATE_VM(r1, 0xae80, 0x0) write$auto(0xffffffffffffffff, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xc6\xe8\xfc@6=\xab\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4U\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t\x13\xf6\x8e\xcf\xabI\xb8\x16\\\x00'/129, 0x7ef) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82040, 0x0) r4 = socket(0xa, 0x1, 0x100) r5 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) pread64$auto(r5, 0x0, 0x7ff, 0x400) close_range$auto(r4, r0, 0x22) r6 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x12, 0x0, 0x0, &(0x7f0000000240)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x400000000000948f, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1]}, 0x0) write$auto(r6, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_GET_INTERFACE(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r8, @ANYBLOB="010b27bd7000fcdbdf250500000008000300", @ANYRES32=r9], 0x1c}, 0x1, 0xc00, 0x0, 0x4000001}, 0x4000084) 148.432895ms ago: executing program 4 (id=2799): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x83) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x82) syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff) socket(0x2, 0x1, 0x106) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80001, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40080, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/vivid.0/media8/power/runtime_suspended_time\x00', 0x24c602, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000001c00)=""/4111, 0x100f) mmap$auto(0x0, 0x5, 0x2, 0xeb1, r1, 0x8000) sysfs$auto(0x2, 0x23, 0x0) r3 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r3, 0x0, 0x4) sysfs$auto(0x2, 0x16, 0x0) openat$auto_proc_timens_offsets_operations_base(0xffffffffffffff9c, &(0x7f00000000c0), 0x20040, 0x0) r4 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000001040), 0x880, 0x0) close_range$auto(0xffffffffffffffff, r4, 0x80000001) rseq$auto(&(0x7f0000000840)={0xa, 0x9, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) bind$auto(r1, &(0x7f0000000040)=@in={0x2, 0x7, @empty}, 0x6a) mq_notify$auto(0xffffffffffffffff, &(0x7f0000001940)={@sival_ptr=&(0x7f0000001740), @raw=0x1, 0x2, @_sigev_thread={0x0, 0x0}}) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) shutdown$auto(0x200000003, 0x2) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8842, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x20000, 0x0) read$auto(r5, 0x0, 0x22) 0s ago: executing program 1 (id=2800): openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000001d40), 0x40a40, 0x0) mmap$auto(0x0, 0x3, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) rseq$auto(&(0x7f0000000400)={0x200000e, 0x3ff, 0x1000, 0x2, 0xfffeffff, 0x2}, 0x7, 0x4, 0x100) r0 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000003640)='/proc/self/numa_maps\x00', 0x40080, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xebd, 0xfffffffffffffffa, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/icmp\x00', 0xc0880, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/oom_adj\x00', 0x142, 0x0) read$auto(r1, 0x0, 0x4) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) lseek$auto(r0, 0x7ff, 0x1) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/events/vmalloc/enable\x00', 0x80, 0x0) readv$auto(r3, &(0x7f0000000140)={&(0x7f0000000040), 0x2}, 0x5) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mincore$auto(0x1000, 0x8001, 0x0) fcntl$auto(0x8000000000000001, 0x26, 0x8) mmap$auto(0x0, 0x2020009, 0x10000000000000a, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) fcntl$auto(0x8000000000000001, 0x26, 0x8) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) prctl$auto(0x1000000003b, 0xffffffffffffffff, 0x4, 0x3, 0x7) fcntl$auto(0x8000000000000001, 0x25, 0x8) io_uring_setup$auto(0x6, 0x0) kernel console output (not intermixed with test programs): 37.095044][T16985] RBP: 00007f88a5a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 837.095062][T16985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 837.095080][T16985] R13: 00007f88a5bd6038 R14: 00007f88a5bd5fa0 R15: 00007ffe8f4a8608 [ 837.095127][T16985] [ 837.737376][T16997] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input340 [ 838.415330][T17000] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input341 [ 839.009931][T17002] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input342 [ 839.592167][T17010] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input343 [ 840.922683][T17031] FAULT_INJECTION: forcing a failure. [ 840.922683][T17031] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 840.959914][T17031] CPU: 0 UID: 0 PID: 17031 Comm: syz.1.2283 Not tainted syzkaller #0 PREEMPT(full) [ 840.959956][T17031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 840.959984][T17031] Call Trace: [ 840.959992][T17031] [ 840.959999][T17031] dump_stack_lvl+0x16c/0x1f0 [ 840.960033][T17031] should_fail_ex+0x512/0x640 [ 840.960055][T17031] _copy_from_user+0x2e/0xd0 [ 840.960076][T17031] copy_msghdr_from_user+0x98/0x160 [ 840.960106][T17031] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 840.960144][T17031] ? kfree+0x24f/0x4d0 [ 840.960161][T17031] ? __pfx__kstrtoull+0x10/0x10 [ 840.960191][T17031] ___sys_sendmsg+0xfe/0x1d0 [ 840.960221][T17031] ? __pfx____sys_sendmsg+0x10/0x10 [ 840.960276][T17031] ? __pfx___might_resched+0x10/0x10 [ 840.960302][T17031] __sys_sendmmsg+0x200/0x420 [ 840.960340][T17031] ? __pfx___sys_sendmmsg+0x10/0x10 [ 840.960376][T17031] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 840.960415][T17031] ? fput+0x9b/0xd0 [ 840.960440][T17031] ? ksys_write+0x1ac/0x250 [ 840.960461][T17031] ? __pfx_ksys_write+0x10/0x10 [ 840.960494][T17031] __x64_sys_sendmmsg+0x9c/0x100 [ 840.960522][T17031] ? lockdep_hardirqs_on+0x7c/0x110 [ 840.960550][T17031] do_syscall_64+0xcd/0x4c0 [ 840.960568][T17031] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 840.960588][T17031] RIP: 0033:0x7f88a598eba9 [ 840.960603][T17031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 840.960622][T17031] RSP: 002b:00007f88a6896038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 840.960641][T17031] RAX: ffffffffffffffda RBX: 00007f88a5bd5fa0 RCX: 00007f88a598eba9 [ 840.960653][T17031] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 840.960664][T17031] RBP: 00007f88a6896090 R08: 0000000000000000 R09: 0000000000000000 [ 840.960675][T17031] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000002 [ 840.960686][T17031] R13: 00007f88a5bd6038 R14: 00007f88a5bd5fa0 R15: 00007ffe8f4a8608 [ 840.960709][T17031] [ 841.005971][T17032] FAULT_INJECTION: forcing a failure. [ 841.005971][T17032] name failslab, interval 1, probability 0, space 0, times 0 [ 841.185793][T17032] CPU: 0 UID: 0 PID: 17032 Comm: syz.2.2282 Not tainted syzkaller #0 PREEMPT(full) [ 841.185838][T17032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 841.185857][T17032] Call Trace: [ 841.185869][T17032] [ 841.185882][T17032] dump_stack_lvl+0x16c/0x1f0 [ 841.185944][T17032] should_fail_ex+0x512/0x640 [ 841.185981][T17032] ? __kvmalloc_node_noprof+0x124/0x620 [ 841.186022][T17032] should_failslab+0xc2/0x120 [ 841.186064][T17032] __kvmalloc_node_noprof+0x137/0x620 [ 841.186103][T17032] ? io_alloc_cache_init+0x33/0x170 [ 841.186144][T17032] ? io_alloc_cache_init+0x33/0x170 [ 841.186177][T17032] io_alloc_cache_init+0x33/0x170 [ 841.186211][T17032] io_uring_setup+0x5e1/0x2080 [ 841.186262][T17032] ? __pfx_io_uring_setup+0x10/0x10 [ 841.186304][T17032] ? do_futex+0x122/0x350 [ 841.186345][T17032] ? __pfx_do_futex+0x10/0x10 [ 841.186385][T17032] ? do_linkat+0x340/0x5a0 [ 841.186439][T17032] ? xfd_validate_state+0x61/0x180 [ 841.186490][T17032] __x64_sys_io_uring_setup+0xc2/0x170 [ 841.186535][T17032] do_syscall_64+0xcd/0x4c0 [ 841.186566][T17032] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 841.186599][T17032] RIP: 0033:0x7ff49a78eba9 [ 841.186625][T17032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 841.186654][T17032] RSP: 002b:00007ff49b6ea038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 841.186685][T17032] RAX: ffffffffffffffda RBX: 00007ff49a9d5fa0 RCX: 00007ff49a78eba9 [ 841.186706][T17032] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 841.186723][T17032] RBP: 00007ff49a811e19 R08: 0000000000000000 R09: 0000000000000000 [ 841.186742][T17032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 841.186760][T17032] R13: 00007ff49a9d6038 R14: 00007ff49a9d5fa0 R15: 00007fff749de6a8 [ 841.186800][T17032] [ 843.485529][T15081] Bluetooth: hci3: ACL packet for unknown connection handle 0 [ 845.982412][T17113] nfs: Unknown parameter 'w`_I+; HY Lu>>uh*C<+ ' [ 846.126013][T17116] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input344 [ 851.982185][T17191] FAULT_INJECTION: forcing a failure. [ 851.982185][T17191] name failslab, interval 1, probability 0, space 0, times 0 [ 851.995325][T17191] CPU: 0 UID: 0 PID: 17191 Comm: syz.1.2317 Not tainted syzkaller #0 PREEMPT(full) [ 851.995354][T17191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 851.995366][T17191] Call Trace: [ 851.995373][T17191] [ 851.995380][T17191] dump_stack_lvl+0x16c/0x1f0 [ 851.995415][T17191] should_fail_ex+0x512/0x640 [ 851.995432][T17191] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 851.995458][T17191] should_failslab+0xc2/0x120 [ 851.995483][T17191] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 851.995506][T17191] ? css_rstat_updated+0x1c2/0x510 [ 851.995526][T17191] ? sock_alloc_inode+0x25/0x1c0 [ 851.995550][T17191] ? __pfx_sock_alloc_inode+0x10/0x10 [ 851.995570][T17191] sock_alloc_inode+0x25/0x1c0 [ 851.995588][T17191] alloc_inode+0x64/0x240 [ 851.995616][T17191] sock_alloc+0x40/0x280 [ 851.995634][T17191] __sock_create+0xc1/0x8d0 [ 851.995660][T17191] __sys_socket+0x14d/0x260 [ 851.995682][T17191] ? __pfx___sys_socket+0x10/0x10 [ 851.995706][T17191] ? do_user_addr_fault+0x843/0x1370 [ 851.995739][T17191] __x64_sys_socket+0x72/0xb0 [ 851.995760][T17191] ? lockdep_hardirqs_on+0x7c/0x110 [ 851.995787][T17191] do_syscall_64+0xcd/0x4c0 [ 851.995805][T17191] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 851.995825][T17191] RIP: 0033:0x7f88a5990ac7 [ 851.995841][T17191] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 851.995859][T17191] RSP: 002b:00007f88a6894fa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 851.995878][T17191] RAX: ffffffffffffffda RBX: 00007f88a5bd5fa0 RCX: 00007f88a5990ac7 [ 851.995890][T17191] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 851.995902][T17191] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 851.995915][T17191] R10: 0000200000003fc0 R11: 0000000000000286 R12: 0000000000000000 [ 851.995929][T17191] R13: 00007f88a5bd6038 R14: 00007f88a5bd5fa0 R15: 00007ffe8f4a8608 [ 851.995951][T17191] [ 851.995961][T17191] socket: no more sockets [ 855.584257][T17245] FAULT_INJECTION: forcing a failure. [ 855.584257][T17245] name failslab, interval 1, probability 0, space 0, times 0 [ 855.694517][T17245] CPU: 0 UID: 0 PID: 17245 Comm: syz.2.2328 Not tainted syzkaller #0 PREEMPT(full) [ 855.694558][T17245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 855.694575][T17245] Call Trace: [ 855.694585][T17245] [ 855.694596][T17245] dump_stack_lvl+0x16c/0x1f0 [ 855.694645][T17245] should_fail_ex+0x512/0x640 [ 855.694671][T17245] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 855.694711][T17245] should_failslab+0xc2/0x120 [ 855.694750][T17245] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 855.694785][T17245] ? getname_flags.part.0+0x4c/0x550 [ 855.694834][T17245] getname_flags.part.0+0x4c/0x550 [ 855.694879][T17245] getname_flags+0x93/0xf0 [ 855.694909][T17245] __x64_sys_execve+0x74/0xb0 [ 855.694943][T17245] do_syscall_64+0xcd/0x4c0 [ 855.694972][T17245] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 855.695000][T17245] RIP: 0033:0x7ff49a78eba9 [ 855.695023][T17245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 855.695050][T17245] RSP: 002b:00007ff49b6c9038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 855.695078][T17245] RAX: ffffffffffffffda RBX: 00007ff49a9d6090 RCX: 00007ff49a78eba9 [ 855.695096][T17245] RDX: 0000200000000100 RSI: 0000000000000000 RDI: 0000200000000000 [ 855.695124][T17245] RBP: 00007ff49b6c9090 R08: 0000000000000000 R09: 0000000000000000 [ 855.695142][T17245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 855.695160][T17245] R13: 00007ff49a9d6128 R14: 00007ff49a9d6090 R15: 00007fff749de6a8 [ 855.695201][T17245] [ 858.830142][T17279] sd 0:0:1:0: PR command failed: 1026 [ 858.849188][T17279] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 858.877975][T17279] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 859.305584][T17292] FAULT_INJECTION: forcing a failure. [ 859.305584][T17292] name failslab, interval 1, probability 0, space 0, times 0 [ 859.394208][T17292] CPU: 1 UID: 0 PID: 17292 Comm: syz.3.2339 Not tainted syzkaller #0 PREEMPT(full) [ 859.394252][T17292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 859.394270][T17292] Call Trace: [ 859.394281][T17292] [ 859.394292][T17292] dump_stack_lvl+0x16c/0x1f0 [ 859.394330][T17292] should_fail_ex+0x512/0x640 [ 859.394348][T17292] ? __kmalloc_noprof+0xbf/0x510 [ 859.394372][T17292] ? sk_prot_alloc+0x1a8/0x2a0 [ 859.394391][T17292] should_failslab+0xc2/0x120 [ 859.394416][T17292] __kmalloc_noprof+0xd2/0x510 [ 859.394443][T17292] sk_prot_alloc+0x1a8/0x2a0 [ 859.394465][T17292] sk_alloc+0x36/0xc20 [ 859.394492][T17292] __netlink_create+0x5e/0x2c0 [ 859.394517][T17292] ? __wake_up+0x3f/0x60 [ 859.394539][T17292] netlink_create+0x39e/0x620 [ 859.394564][T17292] ? __pfx_genl_bind+0x10/0x10 [ 859.394581][T17292] ? __pfx_genl_unbind+0x10/0x10 [ 859.394598][T17292] ? __pfx_genl_release+0x10/0x10 [ 859.394619][T17292] __sock_create+0x338/0x8d0 [ 859.394646][T17292] __sys_socket+0x14d/0x260 [ 859.394669][T17292] ? __pfx___sys_socket+0x10/0x10 [ 859.394693][T17292] ? do_user_addr_fault+0x843/0x1370 [ 859.394727][T17292] __x64_sys_socket+0x72/0xb0 [ 859.394749][T17292] ? lockdep_hardirqs_on+0x7c/0x110 [ 859.394777][T17292] do_syscall_64+0xcd/0x4c0 [ 859.394796][T17292] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 859.394815][T17292] RIP: 0033:0x7f9ba9990ac7 [ 859.394841][T17292] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 859.394860][T17292] RSP: 002b:00007f9baa763fa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 859.394879][T17292] RAX: ffffffffffffffda RBX: 00007f9ba9bd5fa0 RCX: 00007f9ba9990ac7 [ 859.394891][T17292] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 859.394903][T17292] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 859.394914][T17292] R10: 0000200000003fc0 R11: 0000000000000286 R12: 0000000000000000 [ 859.394925][T17292] R13: 00007f9ba9bd6038 R14: 00007f9ba9bd5fa0 R15: 00007ffcfd196628 [ 859.394949][T17292] [ 860.082164][T15081] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 860.338880][T17301] openvswitch: netlink: Multiple metadata blocks provided [ 861.227181][T17323] FAULT_INJECTION: forcing a failure. [ 861.227181][T17323] name failslab, interval 1, probability 0, space 0, times 0 [ 861.247432][T17323] CPU: 1 UID: 0 PID: 17323 Comm: syz.1.2347 Not tainted syzkaller #0 PREEMPT(full) [ 861.247479][T17323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 861.247498][T17323] Call Trace: [ 861.247509][T17323] [ 861.247522][T17323] dump_stack_lvl+0x16c/0x1f0 [ 861.247577][T17323] should_fail_ex+0x512/0x640 [ 861.247606][T17323] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 861.247650][T17323] should_failslab+0xc2/0x120 [ 861.247694][T17323] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 861.247734][T17323] ? do_epoll_ctl+0x1170/0x3790 [ 861.247776][T17323] do_epoll_ctl+0x1170/0x3790 [ 861.247838][T17323] ? __pfx_do_epoll_ctl+0x10/0x10 [ 861.247871][T17323] ? find_held_lock+0x2b/0x80 [ 861.247903][T17323] ? __might_fault+0xe3/0x190 [ 861.247940][T17323] ? __might_fault+0xe3/0x190 [ 861.247999][T17323] ? __x64_sys_epoll_ctl+0x15c/0x1e0 [ 861.248032][T17323] __x64_sys_epoll_ctl+0x15c/0x1e0 [ 861.248071][T17323] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 861.248129][T17323] do_syscall_64+0xcd/0x4c0 [ 861.248162][T17323] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 861.248195][T17323] RIP: 0033:0x7f88a598eba9 [ 861.248222][T17323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 861.248258][T17323] RSP: 002b:00007f88a6896038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 861.248289][T17323] RAX: ffffffffffffffda RBX: 00007f88a5bd5fa0 RCX: 00007f88a598eba9 [ 861.248311][T17323] RDX: 8000000000000000 RSI: 0000000000000001 RDI: 0000000000000006 [ 861.248332][T17323] RBP: 00007f88a5a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 861.248352][T17323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 861.248371][T17323] R13: 00007f88a5bd6038 R14: 00007f88a5bd5fa0 R15: 00007ffe8f4a8608 [ 861.248414][T17323] [ 861.452045][T17323] netlink: 326 bytes leftover after parsing attributes in process `syz.1.2347'. [ 861.769043][ T30] audit: type=1800 audit(4294986157.547:51): pid=17329 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2346" name="members" dev="configfs" ino=60680 res=0 errno=0 [ 862.759633][T17336] Console: switching to colour VGA+ 80x25 [ 863.387677][T17342] FAULT_INJECTION: forcing a failure. [ 863.387677][T17342] name failslab, interval 1, probability 0, space 0, times 0 [ 863.413455][T17342] CPU: 0 UID: 0 PID: 17342 Comm: syz.3.2352 Not tainted syzkaller #0 PREEMPT(full) [ 863.413503][T17342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 863.413520][T17342] Call Trace: [ 863.413529][T17342] [ 863.413540][T17342] dump_stack_lvl+0x16c/0x1f0 [ 863.413589][T17342] should_fail_ex+0x512/0x640 [ 863.413611][T17342] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 863.413640][T17342] should_failslab+0xc2/0x120 [ 863.413665][T17342] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 863.413686][T17342] ? is_bpf_text_address+0x94/0x1a0 [ 863.413710][T17342] ? alloc_empty_file+0x55/0x1e0 [ 863.413741][T17342] alloc_empty_file+0x55/0x1e0 [ 863.413769][T17342] path_openat+0xda/0x2cb0 [ 863.413796][T17342] ? stack_trace_save+0x8e/0xc0 [ 863.413817][T17342] ? __pfx_path_openat+0x10/0x10 [ 863.413847][T17342] ? stack_depot_save_flags+0x29/0x9c0 [ 863.413869][T17342] do_filp_open+0x20b/0x470 [ 863.413890][T17342] ? kasan_save_track+0x14/0x30 [ 863.413912][T17342] ? __pfx_do_filp_open+0x10/0x10 [ 863.413932][T17342] ? __x64_sys_execve+0x74/0xb0 [ 863.413952][T17342] ? do_syscall_64+0xcd/0x4c0 [ 863.413967][T17342] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 863.414011][T17342] do_open_execat+0xf9/0x3a0 [ 863.414031][T17342] ? __pfx_do_open_execat+0x10/0x10 [ 863.414059][T17342] alloc_bprm+0x2d/0x710 [ 863.414085][T17342] do_execveat_common.isra.0+0x1ce/0x610 [ 863.414111][T17342] __x64_sys_execve+0x8e/0xb0 [ 863.414133][T17342] do_syscall_64+0xcd/0x4c0 [ 863.414151][T17342] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 863.414169][T17342] RIP: 0033:0x7f9ba998eba9 [ 863.414185][T17342] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 863.414204][T17342] RSP: 002b:00007f9baa765038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 863.414222][T17342] RAX: ffffffffffffffda RBX: 00007f9ba9bd5fa0 RCX: 00007f9ba998eba9 [ 863.414234][T17342] RDX: 0000200000000100 RSI: 0000000000000000 RDI: 0000200000000000 [ 863.414246][T17342] RBP: 00007f9baa765090 R08: 0000000000000000 R09: 0000000000000000 [ 863.414257][T17342] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 863.414267][T17342] R13: 00007f9ba9bd6038 R14: 00007f9ba9bd5fa0 R15: 00007ffcfd196628 [ 863.414290][T17342] [ 863.662150][T17349] FAULT_INJECTION: forcing a failure. [ 863.662150][T17349] name failslab, interval 1, probability 0, space 0, times 0 [ 863.675156][T17349] CPU: 0 UID: 0 PID: 17349 Comm: syz.2.2353 Not tainted syzkaller #0 PREEMPT(full) [ 863.675182][T17349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 863.675193][T17349] Call Trace: [ 863.675199][T17349] [ 863.675206][T17349] dump_stack_lvl+0x16c/0x1f0 [ 863.675240][T17349] should_fail_ex+0x512/0x640 [ 863.675257][T17349] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 863.675279][T17349] should_failslab+0xc2/0x120 [ 863.675304][T17349] __kmalloc_cache_noprof+0x6a/0x3e0 [ 863.675324][T17349] ? netdev_create_hash+0x3c/0xc0 [ 863.675345][T17349] ? __pfx_netdev_init+0x10/0x10 [ 863.675365][T17349] netdev_create_hash+0x3c/0xc0 [ 863.675384][T17349] ? __pfx_netdev_init+0x10/0x10 [ 863.675401][T17349] netdev_init+0xa5/0x230 [ 863.675420][T17349] ops_init+0x1e2/0x5f0 [ 863.675439][T17349] setup_net+0x10f/0x380 [ 863.675454][T17349] ? lockdep_init_map_type+0x5c/0x280 [ 863.675482][T17349] ? __pfx_setup_net+0x10/0x10 [ 863.675500][T17349] ? debug_mutex_init+0x37/0x70 [ 863.675521][T17349] copy_net_ns+0x2a6/0x5f0 [ 863.675543][T17349] create_new_namespaces+0x3ea/0xa90 [ 863.675570][T17349] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 863.675594][T17349] ksys_unshare+0x45b/0xa40 [ 863.675620][T17349] ? __pfx_ksys_unshare+0x10/0x10 [ 863.675647][T17349] ? xfd_validate_state+0x61/0x180 [ 863.675681][T17349] __x64_sys_unshare+0x31/0x40 [ 863.675706][T17349] do_syscall_64+0xcd/0x4c0 [ 863.675725][T17349] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 863.675744][T17349] RIP: 0033:0x7ff49a78eba9 [ 863.675760][T17349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 863.675779][T17349] RSP: 002b:00007ff49b6c9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 863.675797][T17349] RAX: ffffffffffffffda RBX: 00007ff49a9d6090 RCX: 00007ff49a78eba9 [ 863.675809][T17349] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 863.675820][T17349] RBP: 00007ff49a811e19 R08: 0000000000000000 R09: 0000000000000000 [ 863.675831][T17349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 863.675849][T17349] R13: 00007ff49a9d6128 R14: 00007ff49a9d6090 R15: 00007fff749de6a8 [ 863.675872][T17349] [ 865.729916][T17384] FAULT_INJECTION: forcing a failure. [ 865.729916][T17384] name failslab, interval 1, probability 0, space 0, times 0 [ 865.774455][T17384] CPU: 0 UID: 0 PID: 17384 Comm: syz.1.2360 Not tainted syzkaller #0 PREEMPT(full) [ 865.774500][T17384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 865.774519][T17384] Call Trace: [ 865.774530][T17384] [ 865.774542][T17384] dump_stack_lvl+0x16c/0x1f0 [ 865.774596][T17384] should_fail_ex+0x512/0x640 [ 865.774623][T17384] ? __kmalloc_noprof+0xbf/0x510 [ 865.774664][T17384] ? sk_prot_alloc+0x1a8/0x2a0 [ 865.774695][T17384] should_failslab+0xc2/0x120 [ 865.774736][T17384] __kmalloc_noprof+0xd2/0x510 [ 865.774789][T17384] sk_prot_alloc+0x1a8/0x2a0 [ 865.774826][T17384] sk_alloc+0x36/0xc20 [ 865.774871][T17384] __netlink_create+0x5e/0x2c0 [ 865.774911][T17384] ? __wake_up+0x3f/0x60 [ 865.774950][T17384] netlink_create+0x39e/0x620 [ 865.775002][T17384] ? __pfx_genl_bind+0x10/0x10 [ 865.775030][T17384] ? __pfx_genl_unbind+0x10/0x10 [ 865.775058][T17384] ? __pfx_genl_release+0x10/0x10 [ 865.775094][T17384] __sock_create+0x338/0x8d0 [ 865.775139][T17384] __sys_socket+0x14d/0x260 [ 865.775178][T17384] ? __pfx___sys_socket+0x10/0x10 [ 865.775219][T17384] ? do_user_addr_fault+0x843/0x1370 [ 865.775275][T17384] __x64_sys_socket+0x72/0xb0 [ 865.775312][T17384] ? lockdep_hardirqs_on+0x7c/0x110 [ 865.775359][T17384] do_syscall_64+0xcd/0x4c0 [ 865.775391][T17384] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 865.775422][T17384] RIP: 0033:0x7f88a5990ac7 [ 865.775447][T17384] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 865.775478][T17384] RSP: 002b:00007f88a6894fa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 865.775508][T17384] RAX: ffffffffffffffda RBX: 00007f88a5bd5fa0 RCX: 00007f88a5990ac7 [ 865.775528][T17384] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 865.775546][T17384] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 865.775564][T17384] R10: 0000200000003fc0 R11: 0000000000000286 R12: 0000000000000000 [ 865.775583][T17384] R13: 00007f88a5bd6038 R14: 00007f88a5bd5fa0 R15: 00007ffe8f4a8608 [ 865.775624][T17384] [ 868.258686][T17423] FAULT_INJECTION: forcing a failure. [ 868.258686][T17423] name failslab, interval 1, probability 0, space 0, times 0 [ 868.305556][T17423] CPU: 0 UID: 0 PID: 17423 Comm: syz.1.2367 Not tainted syzkaller #0 PREEMPT(full) [ 868.305599][T17423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 868.305618][T17423] Call Trace: [ 868.305630][T17423] [ 868.305643][T17423] dump_stack_lvl+0x16c/0x1f0 [ 868.305696][T17423] should_fail_ex+0x512/0x640 [ 868.305724][T17423] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 868.305766][T17423] should_failslab+0xc2/0x120 [ 868.305807][T17423] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 868.305843][T17423] ? __memcg_slab_post_alloc_hook+0x4a0/0x960 [ 868.305883][T17423] ? ep_ptable_queue_proc+0x5b/0x280 [ 868.305919][T17423] ep_ptable_queue_proc+0x5b/0x280 [ 868.305951][T17423] pipe_poll+0x239/0x660 [ 868.305995][T17423] ? __pfx_ep_ptable_queue_proc+0x10/0x10 [ 868.306026][T17423] ? __pfx_pipe_poll+0x10/0x10 [ 868.306063][T17423] ep_item_poll+0x141/0x1f0 [ 868.306097][T17423] do_epoll_ctl+0x1fae/0x3790 [ 868.306148][T17423] ? __pfx_do_epoll_ctl+0x10/0x10 [ 868.306177][T17423] ? find_held_lock+0x2b/0x80 [ 868.306205][T17423] ? __might_fault+0xe3/0x190 [ 868.306238][T17423] ? __might_fault+0xe3/0x190 [ 868.306268][T17423] ? __pfx_ep_ptable_queue_proc+0x10/0x10 [ 868.306312][T17423] ? __x64_sys_epoll_ctl+0x15c/0x1e0 [ 868.306343][T17423] __x64_sys_epoll_ctl+0x15c/0x1e0 [ 868.306376][T17423] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 868.306421][T17423] do_syscall_64+0xcd/0x4c0 [ 868.306451][T17423] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 868.306481][T17423] RIP: 0033:0x7f88a598eba9 [ 868.306505][T17423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 868.306534][T17423] RSP: 002b:00007f88a6896038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 868.306564][T17423] RAX: ffffffffffffffda RBX: 00007f88a5bd5fa0 RCX: 00007f88a598eba9 [ 868.306583][T17423] RDX: 8000000000000000 RSI: 0000000000000001 RDI: 0000000000000006 [ 868.306601][T17423] RBP: 00007f88a5a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 868.306619][T17423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 868.306637][T17423] R13: 00007f88a5bd6038 R14: 00007f88a5bd5fa0 R15: 00007ffe8f4a8608 [ 868.306677][T17423] [ 868.547558][T17423] netlink: 326 bytes leftover after parsing attributes in process `syz.1.2367'. [ 869.938519][T17441] FAULT_INJECTION: forcing a failure. [ 869.938519][T17441] name failslab, interval 1, probability 0, space 0, times 0 [ 869.951689][T17441] CPU: 0 UID: 0 PID: 17441 Comm: syz.2.2372 Not tainted syzkaller #0 PREEMPT(full) [ 869.951732][T17441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 869.951751][T17441] Call Trace: [ 869.951761][T17441] [ 869.951773][T17441] dump_stack_lvl+0x16c/0x1f0 [ 869.951826][T17441] should_fail_ex+0x512/0x640 [ 869.951854][T17441] ? fs_reclaim_acquire+0xae/0x150 [ 869.951895][T17441] should_failslab+0xc2/0x120 [ 869.951920][T17441] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 869.951943][T17441] ? security_inode_alloc+0x3b/0x2b0 [ 869.951969][T17441] security_inode_alloc+0x3b/0x2b0 [ 869.951992][T17441] inode_init_always_gfp+0xce4/0x1030 [ 869.952027][T17441] alloc_inode+0x86/0x240 [ 869.952057][T17441] sock_alloc+0x40/0x280 [ 869.952076][T17441] __sock_create+0xc1/0x8d0 [ 869.952103][T17441] __sys_socket+0x14d/0x260 [ 869.952126][T17441] ? __pfx___sys_socket+0x10/0x10 [ 869.952150][T17441] ? do_user_addr_fault+0x843/0x1370 [ 869.952183][T17441] __x64_sys_socket+0x72/0xb0 [ 869.952205][T17441] ? lockdep_hardirqs_on+0x7c/0x110 [ 869.952232][T17441] do_syscall_64+0xcd/0x4c0 [ 869.952250][T17441] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 869.952270][T17441] RIP: 0033:0x7ff49a790ac7 [ 869.952287][T17441] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 869.952306][T17441] RSP: 002b:00007ff49b6e8fa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 869.952324][T17441] RAX: ffffffffffffffda RBX: 00007ff49a9d5fa0 RCX: 00007ff49a790ac7 [ 869.952337][T17441] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 869.952348][T17441] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 869.952359][T17441] R10: 0000200000003fc0 R11: 0000000000000286 R12: 0000000000000000 [ 869.952371][T17441] R13: 00007ff49a9d6038 R14: 00007ff49a9d5fa0 R15: 00007fff749de6a8 [ 869.952394][T17441] [ 869.952421][T17441] socket: no more sockets [ 871.543846][T15081] Bluetooth: hci2: ACL packet for unknown connection handle 0 [ 872.593092][T17480] FAULT_INJECTION: forcing a failure. [ 872.593092][T17480] name failslab, interval 1, probability 0, space 0, times 0 [ 872.606016][T17480] CPU: 1 UID: 0 PID: 17480 Comm: syz.0.2381 Not tainted syzkaller #0 PREEMPT(full) [ 872.606057][T17480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 872.606076][T17480] Call Trace: [ 872.606087][T17480] [ 872.606099][T17480] dump_stack_lvl+0x16c/0x1f0 [ 872.606154][T17480] should_fail_ex+0x512/0x640 [ 872.606184][T17480] ? __kmalloc_noprof+0xbf/0x510 [ 872.606225][T17480] ? lsm_blob_alloc+0x68/0x90 [ 872.606253][T17480] should_failslab+0xc2/0x120 [ 872.606295][T17480] __kmalloc_noprof+0xd2/0x510 [ 872.606340][T17480] lsm_blob_alloc+0x68/0x90 [ 872.606372][T17480] security_sk_alloc+0x30/0x270 [ 872.606411][T17480] sk_prot_alloc+0x1c7/0x2a0 [ 872.606451][T17480] sk_alloc+0x36/0xc20 [ 872.606497][T17480] __netlink_create+0x5e/0x2c0 [ 872.606537][T17480] ? __wake_up+0x3f/0x60 [ 872.606576][T17480] netlink_create+0x39e/0x620 [ 872.606620][T17480] ? __pfx_genl_bind+0x10/0x10 [ 872.606649][T17480] ? __pfx_genl_unbind+0x10/0x10 [ 872.606677][T17480] ? __pfx_genl_release+0x10/0x10 [ 872.606713][T17480] __sock_create+0x338/0x8d0 [ 872.606759][T17480] __sys_socket+0x14d/0x260 [ 872.606796][T17480] ? __pfx___sys_socket+0x10/0x10 [ 872.606837][T17480] ? do_user_addr_fault+0x843/0x1370 [ 872.606893][T17480] __x64_sys_socket+0x72/0xb0 [ 872.606939][T17480] ? lockdep_hardirqs_on+0x7c/0x110 [ 872.606986][T17480] do_syscall_64+0xcd/0x4c0 [ 872.607017][T17480] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 872.607047][T17480] RIP: 0033:0x7f164cf90ac7 [ 872.607073][T17480] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 872.607104][T17480] RSP: 002b:00007f164de03fa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 872.607135][T17480] RAX: ffffffffffffffda RBX: 00007f164d1d5fa0 RCX: 00007f164cf90ac7 [ 872.607157][T17480] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 872.607176][T17480] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 872.607196][T17480] R10: 0000200000003fc0 R11: 0000000000000286 R12: 0000000000000000 [ 872.607215][T17480] R13: 00007f164d1d6038 R14: 00007f164d1d5fa0 R15: 00007ffc2cbec958 [ 872.607256][T17480] [ 873.072569][T17485] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 875.632612][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 875.648910][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 877.805842][T17552] FAULT_INJECTION: forcing a failure. [ 877.805842][T17552] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 877.821676][T17552] CPU: 0 UID: 0 PID: 17552 Comm: syz.1.2394 Not tainted syzkaller #0 PREEMPT(full) [ 877.821723][T17552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 877.821741][T17552] Call Trace: [ 877.821751][T17552] [ 877.821762][T17552] dump_stack_lvl+0x16c/0x1f0 [ 877.821811][T17552] should_fail_ex+0x512/0x640 [ 877.821847][T17552] _copy_from_user+0x2e/0xd0 [ 877.821883][T17552] copy_msghdr_from_user+0x98/0x160 [ 877.821929][T17552] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 877.821999][T17552] ? kfree+0x24f/0x4d0 [ 877.822027][T17552] ? __pfx__kstrtoull+0x10/0x10 [ 877.822076][T17552] ___sys_sendmsg+0xfe/0x1d0 [ 877.822124][T17552] ? __pfx____sys_sendmsg+0x10/0x10 [ 877.822208][T17552] ? __pfx___might_resched+0x10/0x10 [ 877.822249][T17552] __sys_sendmmsg+0x200/0x420 [ 877.822301][T17552] ? __pfx___sys_sendmmsg+0x10/0x10 [ 877.822368][T17552] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 877.822432][T17552] ? fput+0x9b/0xd0 [ 877.822482][T17552] ? ksys_write+0x1ac/0x250 [ 877.822517][T17552] ? __pfx_ksys_write+0x10/0x10 [ 877.822560][T17552] __x64_sys_sendmmsg+0x9c/0x100 [ 877.822605][T17552] ? lockdep_hardirqs_on+0x7c/0x110 [ 877.822649][T17552] do_syscall_64+0xcd/0x4c0 [ 877.822680][T17552] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 877.822712][T17552] RIP: 0033:0x7f88a598eba9 [ 877.822736][T17552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 877.822766][T17552] RSP: 002b:00007f88a6896038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 877.822796][T17552] RAX: ffffffffffffffda RBX: 00007f88a5bd5fa0 RCX: 00007f88a598eba9 [ 877.822816][T17552] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 877.822834][T17552] RBP: 00007f88a6896090 R08: 0000000000000000 R09: 0000000000000000 [ 877.822852][T17552] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000002 [ 877.822870][T17552] R13: 00007f88a5bd6038 R14: 00007f88a5bd5fa0 R15: 00007ffe8f4a8608 [ 877.822911][T17552] [ 881.280180][T17601] FAULT_INJECTION: forcing a failure. [ 881.280180][T17601] name fail_futex, interval 1, probability 0, space 0, times 0 [ 881.323872][T17601] CPU: 0 UID: 0 PID: 17601 Comm: syz.2.2403 Not tainted syzkaller #0 PREEMPT(full) [ 881.323926][T17601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 881.323946][T17601] Call Trace: [ 881.323957][T17601] [ 881.323969][T17601] dump_stack_lvl+0x16c/0x1f0 [ 881.324006][T17601] should_fail_ex+0x512/0x640 [ 881.324027][T17601] get_futex_key+0x1d0/0x1560 [ 881.324054][T17601] ? __pfx_get_futex_key+0x10/0x10 [ 881.324085][T17601] futex_wake+0xea/0x530 [ 881.324115][T17601] ? __pfx_futex_wake+0x10/0x10 [ 881.324146][T17601] ? errseq_sample+0x53/0x70 [ 881.324166][T17601] ? file_init_path+0x4fe/0x760 [ 881.324199][T17601] do_futex+0x1e3/0x350 [ 881.324240][T17601] ? __pfx_do_futex+0x10/0x10 [ 881.324264][T17601] ? fd_install+0x225/0x750 [ 881.324289][T17601] __x64_sys_futex+0x1e0/0x4c0 [ 881.324315][T17601] ? __sys_socket+0xac/0x260 [ 881.324340][T17601] ? __pfx___x64_sys_futex+0x10/0x10 [ 881.324366][T17601] ? xfd_validate_state+0x61/0x180 [ 881.324402][T17601] do_syscall_64+0xcd/0x4c0 [ 881.324421][T17601] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 881.324440][T17601] RIP: 0033:0x7ff49a78eba9 [ 881.324457][T17601] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 881.324476][T17601] RSP: 002b:00007ff49b6ea0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 881.324497][T17601] RAX: ffffffffffffffda RBX: 00007ff49a9d5fa8 RCX: 00007ff49a78eba9 [ 881.324509][T17601] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff49a9d5fac [ 881.324522][T17601] RBP: 00007ff49a9d5fa0 R08: 00007ff49b6eb000 R09: 0000000000000000 [ 881.324533][T17601] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 881.324545][T17601] R13: 00007ff49a9d6038 R14: 00007fff749de5c0 R15: 00007fff749de6a8 [ 881.324568][T17601] [ 885.607281][T17654] FAULT_INJECTION: forcing a failure. [ 885.607281][T17654] name fail_futex, interval 1, probability 0, space 0, times 0 [ 885.637771][T17654] CPU: 1 UID: 0 PID: 17654 Comm: syz.0.2413 Not tainted syzkaller #0 PREEMPT(full) [ 885.637800][T17654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 885.637812][T17654] Call Trace: [ 885.637819][T17654] [ 885.637827][T17654] dump_stack_lvl+0x16c/0x1f0 [ 885.637862][T17654] should_fail_ex+0x512/0x640 [ 885.637884][T17654] get_futex_key+0x1d0/0x1560 [ 885.637920][T17654] ? __pfx_get_futex_key+0x10/0x10 [ 885.637951][T17654] futex_wake+0xea/0x530 [ 885.637982][T17654] ? __pfx_futex_wake+0x10/0x10 [ 885.638012][T17654] ? errseq_sample+0x53/0x70 [ 885.638033][T17654] ? file_init_path+0x4fe/0x760 [ 885.638065][T17654] do_futex+0x1e3/0x350 [ 885.638090][T17654] ? __pfx_do_futex+0x10/0x10 [ 885.638114][T17654] ? fd_install+0x225/0x750 [ 885.638138][T17654] __x64_sys_futex+0x1e0/0x4c0 [ 885.638163][T17654] ? __sys_socket+0xac/0x260 [ 885.638187][T17654] ? __pfx___x64_sys_futex+0x10/0x10 [ 885.638211][T17654] ? xfd_validate_state+0x61/0x180 [ 885.638246][T17654] do_syscall_64+0xcd/0x4c0 [ 885.638265][T17654] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 885.638284][T17654] RIP: 0033:0x7f164cf8eba9 [ 885.638299][T17654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 885.638317][T17654] RSP: 002b:00007f164de050e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 885.638336][T17654] RAX: ffffffffffffffda RBX: 00007f164d1d5fa8 RCX: 00007f164cf8eba9 [ 885.638349][T17654] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f164d1d5fac [ 885.638360][T17654] RBP: 00007f164d1d5fa0 R08: 00007f164de06000 R09: 0000000000000000 [ 885.638372][T17654] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 885.638383][T17654] R13: 00007f164d1d6038 R14: 00007ffc2cbec870 R15: 00007ffc2cbec958 [ 885.638405][T17654] [ 885.824790][ C1] vkms_vblank_simulate: vblank timer overrun [ 886.504266][T13917] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 886.664904][T17668] zswap: compressor not available [ 886.733378][T13917] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 886.877253][T13917] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 886.995767][ T5189] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 887.009371][ T5189] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 887.018960][ T5189] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 887.029828][ T5189] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 887.041044][ T5189] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 887.163376][T13917] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 887.983818][T17680] chnl_net:caif_netlink_parms(): no params data found [ 888.030353][T13917] vlan1: left allmulticast mode [ 888.040426][T13917] veth0_vlan: left allmulticast mode [ 888.084863][T13917] vlan1: left promiscuous mode [ 888.144004][T13917] bridge0: port 3(vlan1) entered disabled state [ 888.531331][T13917] bridge_slave_1: left allmulticast mode [ 888.547323][T13917] bridge_slave_1: left promiscuous mode [ 888.557771][T13917] bridge0: port 2(bridge_slave_1) entered disabled state [ 888.592439][T13917] bridge_slave_0: left allmulticast mode [ 888.604208][T13917] bridge_slave_0: left promiscuous mode [ 888.639813][T13917] bridge0: port 1(bridge_slave_0) entered disabled state [ 889.130566][ T5189] Bluetooth: hci1: command tx timeout [ 889.910176][T17709] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2421'. [ 890.545699][T17721] FAULT_INJECTION: forcing a failure. [ 890.545699][T17721] name failslab, interval 1, probability 0, space 0, times 0 [ 890.559479][T17721] CPU: 1 UID: 0 PID: 17721 Comm: syz.0.2422 Not tainted syzkaller #0 PREEMPT(full) [ 890.559522][T17721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 890.559542][T17721] Call Trace: [ 890.559552][T17721] [ 890.559565][T17721] dump_stack_lvl+0x16c/0x1f0 [ 890.559619][T17721] should_fail_ex+0x512/0x640 [ 890.559646][T17721] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 890.559684][T17721] should_failslab+0xc2/0x120 [ 890.559717][T17721] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 890.559764][T17721] ? do_epoll_ctl+0x1170/0x3790 [ 890.559805][T17721] do_epoll_ctl+0x1170/0x3790 [ 890.559857][T17721] ? __pfx_do_epoll_ctl+0x10/0x10 [ 890.559889][T17721] ? find_held_lock+0x2b/0x80 [ 890.559918][T17721] ? __might_fault+0xe3/0x190 [ 890.559952][T17721] ? __might_fault+0xe3/0x190 [ 890.560000][T17721] ? __x64_sys_epoll_ctl+0x15c/0x1e0 [ 890.560032][T17721] __x64_sys_epoll_ctl+0x15c/0x1e0 [ 890.560069][T17721] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 890.560117][T17721] do_syscall_64+0xcd/0x4c0 [ 890.560149][T17721] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 890.560185][T17721] RIP: 0033:0x7f164cf8eba9 [ 890.560211][T17721] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 890.560240][T17721] RSP: 002b:00007f164de05038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 890.560270][T17721] RAX: ffffffffffffffda RBX: 00007f164d1d5fa0 RCX: 00007f164cf8eba9 [ 890.560291][T17721] RDX: 8000000000000000 RSI: 0000000000000001 RDI: 0000000000000006 [ 890.560311][T17721] RBP: 00007f164d011e19 R08: 0000000000000000 R09: 0000000000000000 [ 890.560330][T17721] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 890.560349][T17721] R13: 00007f164d1d6038 R14: 00007f164d1d5fa0 R15: 00007ffc2cbec958 [ 890.560390][T17721] [ 890.752402][T17722] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2422'. [ 891.152660][T13917] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 891.185107][T13917] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 891.210717][ T5189] Bluetooth: hci1: command tx timeout [ 891.225184][T13917] bond0 (unregistering): Released all slaves [ 891.559179][T17731] FAULT_INJECTION: forcing a failure. [ 891.559179][T17731] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 891.608993][T17731] CPU: 0 UID: 0 PID: 17731 Comm: syz.0.2424 Not tainted syzkaller #0 PREEMPT(full) [ 891.609030][T17731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 891.609044][T17731] Call Trace: [ 891.609052][T17731] [ 891.609063][T17731] dump_stack_lvl+0x16c/0x1f0 [ 891.609115][T17731] should_fail_ex+0x512/0x640 [ 891.609150][T17731] _copy_from_user+0x2e/0xd0 [ 891.609186][T17731] copy_msghdr_from_user+0x98/0x160 [ 891.609233][T17731] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 891.609284][T17731] ? kfree+0x24f/0x4d0 [ 891.609323][T17731] ? __pfx__kstrtoull+0x10/0x10 [ 891.609373][T17731] ___sys_sendmsg+0xfe/0x1d0 [ 891.609420][T17731] ? __pfx____sys_sendmsg+0x10/0x10 [ 891.609511][T17731] ? __pfx___might_resched+0x10/0x10 [ 891.609551][T17731] __sys_sendmmsg+0x200/0x420 [ 891.609600][T17731] ? __pfx___sys_sendmmsg+0x10/0x10 [ 891.609658][T17731] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 891.609719][T17731] ? fput+0x9b/0xd0 [ 891.609759][T17731] ? ksys_write+0x1ac/0x250 [ 891.609793][T17731] ? __pfx_ksys_write+0x10/0x10 [ 891.609832][T17731] __x64_sys_sendmmsg+0x9c/0x100 [ 891.609876][T17731] ? lockdep_hardirqs_on+0x7c/0x110 [ 891.609919][T17731] do_syscall_64+0xcd/0x4c0 [ 891.609948][T17731] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 891.609977][T17731] RIP: 0033:0x7f164cf8eba9 [ 891.610001][T17731] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 891.610025][T17731] RSP: 002b:00007f164de05038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 891.610044][T17731] RAX: ffffffffffffffda RBX: 00007f164d1d5fa0 RCX: 00007f164cf8eba9 [ 891.610066][T17731] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 891.610082][T17731] RBP: 00007f164de05090 R08: 0000000000000000 R09: 0000000000000000 [ 891.610099][T17731] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000003 [ 891.610117][T17731] R13: 00007f164d1d6038 R14: 00007f164d1d5fa0 R15: 00007ffc2cbec958 [ 891.610154][T17731] [ 892.029686][T17736] FAULT_INJECTION: forcing a failure. [ 892.029686][T17736] name failslab, interval 1, probability 0, space 0, times 0 [ 892.042608][T17736] CPU: 0 UID: 0 PID: 17736 Comm: syz.2.2426 Not tainted syzkaller #0 PREEMPT(full) [ 892.042651][T17736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 892.042670][T17736] Call Trace: [ 892.042681][T17736] [ 892.042694][T17736] dump_stack_lvl+0x16c/0x1f0 [ 892.042749][T17736] should_fail_ex+0x512/0x640 [ 892.042776][T17736] ? __kvmalloc_node_noprof+0x124/0x620 [ 892.042816][T17736] should_failslab+0xc2/0x120 [ 892.042859][T17736] __kvmalloc_node_noprof+0x137/0x620 [ 892.042897][T17736] ? io_alloc_cache_init+0x33/0x170 [ 892.042936][T17736] ? io_alloc_cache_init+0x33/0x170 [ 892.042964][T17736] io_alloc_cache_init+0x33/0x170 [ 892.042998][T17736] io_uring_setup+0x680/0x2080 [ 892.043048][T17736] ? __pfx_io_uring_setup+0x10/0x10 [ 892.043093][T17736] ? do_futex+0x122/0x350 [ 892.043135][T17736] ? __pfx_do_futex+0x10/0x10 [ 892.043176][T17736] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 892.043244][T17736] ? xfd_validate_state+0x61/0x180 [ 892.043301][T17736] __x64_sys_io_uring_setup+0xc2/0x170 [ 892.043349][T17736] do_syscall_64+0xcd/0x4c0 [ 892.043380][T17736] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 892.043413][T17736] RIP: 0033:0x7ff49a78eba9 [ 892.043438][T17736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 892.043467][T17736] RSP: 002b:00007ff49b6ea038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 892.043497][T17736] RAX: ffffffffffffffda RBX: 00007ff49a9d5fa0 RCX: 00007ff49a78eba9 [ 892.043526][T17736] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 892.043544][T17736] RBP: 00007ff49a811e19 R08: 0000000000000000 R09: 0000000000000000 [ 892.043563][T17736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 892.043582][T17736] R13: 00007ff49a9d6038 R14: 00007ff49a9d5fa0 R15: 00007fff749de6a8 [ 892.043623][T17736] [ 892.057930][T17680] bridge0: port 1(bridge_slave_0) entered blocking state [ 892.417438][T17680] bridge0: port 1(bridge_slave_0) entered disabled state [ 892.491564][T17680] bridge_slave_0: entered allmulticast mode [ 892.528882][T17680] bridge_slave_0: entered promiscuous mode [ 892.616843][T17680] bridge0: port 2(bridge_slave_1) entered blocking state [ 892.673613][T17680] bridge0: port 2(bridge_slave_1) entered disabled state [ 892.694415][T17680] bridge_slave_1: entered allmulticast mode [ 892.707306][T17680] bridge_slave_1: entered promiscuous mode [ 893.155364][T17680] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 893.219008][T17680] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 893.290092][ T5189] Bluetooth: hci1: command tx timeout [ 893.405596][T13917] hsr_slave_0: left promiscuous mode [ 893.468306][T13917] hsr_slave_1: left promiscuous mode [ 893.497696][T13917] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 893.534025][T13917] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 893.565313][T13917] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 893.580232][T13917] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 893.619782][T13917] veth1_macvtap: left promiscuous mode [ 893.645327][T13917] veth0_macvtap: left promiscuous mode [ 893.684923][T13917] veth1_vlan: left promiscuous mode [ 893.692593][T13917] veth0_vlan: left promiscuous mode [ 895.366998][T13917] team0 (unregistering): Port device team_slave_1 removed [ 895.379920][ T5189] Bluetooth: hci1: command tx timeout [ 895.416621][T13917] team0 (unregistering): Port device team_slave_0 removed [ 895.936617][T17680] team0: Port device team_slave_0 added [ 895.971490][T17680] team0: Port device team_slave_1 added [ 896.065020][T17680] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 896.072533][T17680] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 896.098843][T17680] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 896.113191][T17680] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 896.120598][T17680] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 896.146972][T17680] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 896.327752][T17680] hsr_slave_0: entered promiscuous mode [ 896.345003][T17680] hsr_slave_1: entered promiscuous mode [ 898.436016][ T5189] Bluetooth: hci2: ACL packet for unknown connection handle 0 [ 898.930360][ T5189] Bluetooth: hci2: ACL packet for unknown connection handle 0 [ 899.128752][T17680] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 899.233728][T17680] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 899.263228][T17680] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 899.336490][T17680] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 899.858932][T17680] 8021q: adding VLAN 0 to HW filter on device bond0 [ 900.182887][T17680] 8021q: adding VLAN 0 to HW filter on device team0 [ 900.341987][T13917] bridge0: port 1(bridge_slave_0) entered blocking state [ 900.349235][T13917] bridge0: port 1(bridge_slave_0) entered forwarding state [ 900.373893][T13917] bridge0: port 2(bridge_slave_1) entered blocking state [ 900.381168][T13917] bridge0: port 2(bridge_slave_1) entered forwarding state [ 902.049240][T17680] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 902.328657][T17680] veth0_vlan: entered promiscuous mode [ 902.504896][T17680] veth1_vlan: entered promiscuous mode [ 902.747369][T17680] veth0_macvtap: entered promiscuous mode [ 902.847160][T17890] netlink: 314 bytes leftover after parsing attributes in process `syz.2.2442'. [ 902.873892][T17680] veth1_macvtap: entered promiscuous mode [ 902.950183][T17680] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 903.031342][T17680] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 903.115232][ T2999] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 903.151899][ T2999] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 903.204053][ T2999] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 903.257102][ T8132] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 903.704727][T13934] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 903.792947][T13934] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 904.000939][ T2999] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 904.026057][ T2999] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 906.171541][T15081] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 906.181160][T15081] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 906.189796][T15081] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 906.199187][T15081] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 906.206660][T15081] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 907.273633][ T30] audit: type=1326 audit(4294986203.052:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17972 comm=6E6C696E650A exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f88a598eba9 code=0x0 [ 907.602575][T17965] chnl_net:caif_netlink_parms(): no params data found [ 907.914273][T17965] bridge0: port 1(bridge_slave_0) entered blocking state [ 907.921804][T17965] bridge0: port 1(bridge_slave_0) entered disabled state [ 907.931615][T17965] bridge_slave_0: entered allmulticast mode [ 907.941285][T17965] bridge_slave_0: entered promiscuous mode [ 907.952518][T17965] bridge0: port 2(bridge_slave_1) entered blocking state [ 907.978885][T17965] bridge0: port 2(bridge_slave_1) entered disabled state [ 907.993934][T17965] bridge_slave_1: entered allmulticast mode [ 908.030035][T17965] bridge_slave_1: entered promiscuous mode [ 908.039214][T17999] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2451'. [ 908.243275][T17965] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 908.249926][ T5189] Bluetooth: hci4: command tx timeout [ 908.261636][T17965] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 908.420772][T17965] team0: Port device team_slave_0 added [ 908.437500][T17965] team0: Port device team_slave_1 added [ 908.588408][T17965] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 908.608704][T17965] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 908.698358][T17965] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 908.713019][T17965] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 908.720480][T17965] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 908.753017][T17965] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 909.074643][T17965] hsr_slave_0: entered promiscuous mode [ 909.085309][T17965] hsr_slave_1: entered promiscuous mode [ 909.096042][T17965] debugfs: 'hsr0' already exists in 'hsr' [ 909.103609][T17965] Cannot create hsr debugfs directory [ 909.197519][T18012] FAULT_INJECTION: forcing a failure. [ 909.197519][T18012] name failslab, interval 1, probability 0, space 0, times 0 [ 909.213342][T18012] CPU: 0 UID: 0 PID: 18012 Comm: syz.2.2455 Not tainted syzkaller #0 PREEMPT(full) [ 909.213383][T18012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 909.213399][T18012] Call Trace: [ 909.213409][T18012] [ 909.213431][T18012] dump_stack_lvl+0x16c/0x1f0 [ 909.213482][T18012] should_fail_ex+0x512/0x640 [ 909.213510][T18012] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 909.213551][T18012] should_failslab+0xc2/0x120 [ 909.213591][T18012] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 909.213630][T18012] ? __pmd_alloc+0xbf/0x930 [ 909.213679][T18012] __pmd_alloc+0xbf/0x930 [ 909.213720][T18012] ? __pud_alloc+0x526/0x750 [ 909.213767][T18012] __handle_mm_fault+0xa06/0x2a50 [ 909.213812][T18012] ? __pfx___handle_mm_fault+0x10/0x10 [ 909.213881][T18012] handle_mm_fault+0x589/0xd10 [ 909.213923][T18012] __get_user_pages+0x551/0x34a0 [ 909.213978][T18012] ? __pfx_validate_mm+0x10/0x10 [ 909.214016][T18012] ? __pfx___get_user_pages+0x10/0x10 [ 909.214074][T18012] get_user_pages_remote+0x243/0xab0 [ 909.214127][T18012] ? __pfx_get_user_pages_remote+0x10/0x10 [ 909.214189][T18012] get_arg_page+0xf4/0x310 [ 909.214221][T18012] ? __pfx_get_arg_page+0x10/0x10 [ 909.214251][T18012] ? __might_fault+0x13b/0x190 [ 909.214293][T18012] copy_string_kernel+0x182/0x520 [ 909.214336][T18012] do_execveat_common.isra.0+0x2ed/0x610 [ 909.214377][T18012] __x64_sys_execve+0x8e/0xb0 [ 909.214411][T18012] do_syscall_64+0xcd/0x4c0 [ 909.214447][T18012] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 909.214477][T18012] RIP: 0033:0x7ff49a78eba9 [ 909.214500][T18012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 909.214529][T18012] RSP: 002b:00007ff49b6c9038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 909.214559][T18012] RAX: ffffffffffffffda RBX: 00007ff49a9d6090 RCX: 00007ff49a78eba9 [ 909.214579][T18012] RDX: 0000200000000100 RSI: 0000000000000000 RDI: 0000200000000000 [ 909.214598][T18012] RBP: 00007ff49b6c9090 R08: 0000000000000000 R09: 0000000000000000 [ 909.214618][T18012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 909.214636][T18012] R13: 00007ff49a9d6128 R14: 00007ff49a9d6090 R15: 00007fff749de6a8 [ 909.214675][T18012] [ 910.225255][T18020] ======================================================= [ 910.225255][T18020] WARNING: The mand mount option has been deprecated and [ 910.225255][T18020] and is ignored by this kernel. Remove the mand [ 910.225255][T18020] option from the mount to silence this warning. [ 910.225255][T18020] ======================================================= [ 910.311626][T17965] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 910.334524][ T5189] Bluetooth: hci4: command tx timeout [ 910.481851][T18020] random: crng reseeded on system resumption [ 910.991959][T17965] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 911.231994][T17965] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 911.685389][T17965] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 911.744948][T17965] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 911.805535][T17965] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 911.858969][T17965] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 912.407815][ T5189] Bluetooth: hci4: command tx timeout [ 912.484537][T17965] 8021q: adding VLAN 0 to HW filter on device bond0 [ 912.529978][T17965] 8021q: adding VLAN 0 to HW filter on device team0 [ 912.563972][T18051] FAULT_INJECTION: forcing a failure. [ 912.563972][T18051] name failslab, interval 1, probability 0, space 0, times 0 [ 912.580992][T13934] bridge0: port 1(bridge_slave_0) entered blocking state [ 912.588268][T13934] bridge0: port 1(bridge_slave_0) entered forwarding state [ 912.605970][T18051] CPU: 0 UID: 0 PID: 18051 Comm: syz.1.2462 Not tainted syzkaller #0 PREEMPT(full) [ 912.606015][T18051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 912.606033][T18051] Call Trace: [ 912.606044][T18051] [ 912.606056][T18051] dump_stack_lvl+0x16c/0x1f0 [ 912.606110][T18051] should_fail_ex+0x512/0x640 [ 912.606138][T18051] ? __kvmalloc_node_noprof+0x124/0x620 [ 912.606176][T18051] should_failslab+0xc2/0x120 [ 912.606219][T18051] __kvmalloc_node_noprof+0x137/0x620 [ 912.606255][T18051] ? trace_kmalloc+0x2b/0xd0 [ 912.606297][T18051] ? __kvmalloc_node_noprof+0x298/0x620 [ 912.606344][T18051] ? io_alloc_cache_init+0x33/0x170 [ 912.606383][T18051] ? io_alloc_cache_init+0x33/0x170 [ 912.606413][T18051] io_alloc_cache_init+0x33/0x170 [ 912.606447][T18051] io_rsrc_cache_init+0x26/0x50 [ 912.606478][T18051] io_uring_setup+0x68b/0x2080 [ 912.606528][T18051] ? __pfx_io_uring_setup+0x10/0x10 [ 912.606570][T18051] ? do_futex+0x122/0x350 [ 912.606611][T18051] ? __pfx_do_futex+0x10/0x10 [ 912.606654][T18051] ? find_held_lock+0x2b/0x80 [ 912.606699][T18051] ? xfd_validate_state+0x61/0x180 [ 912.606754][T18051] __x64_sys_io_uring_setup+0xc2/0x170 [ 912.606800][T18051] do_syscall_64+0xcd/0x4c0 [ 912.606830][T18051] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 912.606859][T18051] RIP: 0033:0x7f88a598eba9 [ 912.606884][T18051] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 912.606913][T18051] RSP: 002b:00007f88a6896038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 912.606943][T18051] RAX: ffffffffffffffda RBX: 00007f88a5bd5fa0 RCX: 00007f88a598eba9 [ 912.606963][T18051] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 912.606981][T18051] RBP: 00007f88a5a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 912.606999][T18051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 912.607017][T18051] R13: 00007f88a5bd6038 R14: 00007f88a5bd5fa0 R15: 00007ffe8f4a8608 [ 912.607055][T18051] [ 912.837336][T17965] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 912.853615][T17965] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 912.870672][ T8132] bridge0: port 2(bridge_slave_1) entered blocking state [ 912.877966][ T8132] bridge0: port 2(bridge_slave_1) entered forwarding state [ 913.719779][T17965] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 913.972516][T17965] veth0_vlan: entered promiscuous mode [ 914.113670][T17965] veth1_vlan: entered promiscuous mode [ 914.334860][T17965] veth0_macvtap: entered promiscuous mode [ 914.489164][ T5189] Bluetooth: hci4: command tx timeout [ 914.581862][T17965] veth1_macvtap: entered promiscuous mode [ 914.685324][T17965] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 914.819110][T17965] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 914.903943][T13933] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 914.936340][T13933] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 914.950074][T13933] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 915.316158][T13933] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 915.864397][T18082] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 916.603751][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 916.617347][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 916.703575][T13934] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 916.739478][T13934] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 917.592328][T18109] random: crng reseeded on system resumption [ 919.010243][T15081] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 919.023647][T15081] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 919.032190][T15081] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 919.041786][T15081] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 919.051511][T15081] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 919.779589][ T7466] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 920.315540][ T7466] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 920.941838][ T7466] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 921.080786][ T7466] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 921.126891][T15081] Bluetooth: hci0: command tx timeout [ 921.441615][T18126] chnl_net:caif_netlink_parms(): no params data found [ 921.806931][ T7466] bridge_slave_1: left allmulticast mode [ 921.812653][ T7466] bridge_slave_1: left promiscuous mode [ 921.897120][ T7466] bridge0: port 2(bridge_slave_1) entered disabled state [ 921.953949][ T7466] bridge_slave_0: left allmulticast mode [ 921.959804][ T7466] bridge_slave_0: left promiscuous mode [ 921.965808][ T7466] bridge0: port 1(bridge_slave_0) entered disabled state [ 923.206684][T15081] Bluetooth: hci0: command tx timeout [ 924.277381][ T7466] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 924.462785][ T7466] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 924.548896][ T7466] bond0 (unregistering): Released all slaves [ 925.286908][T15081] Bluetooth: hci0: command tx timeout [ 925.782203][T18126] bridge0: port 1(bridge_slave_0) entered blocking state [ 925.826710][T18126] bridge0: port 1(bridge_slave_0) entered disabled state [ 925.834078][T18126] bridge_slave_0: entered allmulticast mode [ 925.848191][T18126] bridge_slave_0: entered promiscuous mode [ 925.902227][T18126] bridge0: port 2(bridge_slave_1) entered blocking state [ 925.929622][T18126] bridge0: port 2(bridge_slave_1) entered disabled state [ 925.985400][T18126] bridge_slave_1: entered allmulticast mode [ 926.027627][T18126] bridge_slave_1: entered promiscuous mode [ 926.740159][T18198] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 926.787072][T18126] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 926.821817][T18126] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 927.273375][ T7466] hsr_slave_0: left promiscuous mode [ 927.292527][ T7466] hsr_slave_1: left promiscuous mode [ 927.314472][ T7466] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 927.349795][ T7466] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 927.366174][T15081] Bluetooth: hci0: command tx timeout [ 927.400633][ T7466] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 927.455206][ T7466] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 927.544089][ T7466] veth1_macvtap: left promiscuous mode [ 927.551112][ T7466] veth1_vlan: left promiscuous mode [ 927.564615][ T7466] veth0_vlan: left promiscuous mode [ 929.019794][ T7466] team0 (unregistering): Port device team_slave_1 removed [ 929.102559][ T7466] team0 (unregistering): Port device team_slave_0 removed [ 929.793972][T18126] team0: Port device team_slave_0 added [ 929.895177][T18126] team0: Port device team_slave_1 added [ 930.134413][T18126] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 930.154027][T18126] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 930.225592][T18126] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 930.293930][T18126] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 930.317886][T18126] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 930.385860][T18126] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 930.784821][T18126] hsr_slave_0: entered promiscuous mode [ 930.820242][T18126] hsr_slave_1: entered promiscuous mode [ 930.836829][T18126] debugfs: 'hsr0' already exists in 'hsr' [ 930.842628][T18126] Cannot create hsr debugfs directory [ 931.571550][T18236] nfs: Unknown parameter 'w`_I+; HY Lu>>uh' [ 931.755465][T18237] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input345 [ 933.389122][T18126] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 933.490236][T18126] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 933.566062][T18126] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 933.662750][T18126] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 934.108133][T18126] 8021q: adding VLAN 0 to HW filter on device bond0 [ 934.143874][T18126] 8021q: adding VLAN 0 to HW filter on device team0 [ 934.227015][ T7466] bridge0: port 1(bridge_slave_0) entered blocking state [ 934.234191][ T7466] bridge0: port 1(bridge_slave_0) entered forwarding state [ 934.315028][ T7466] bridge0: port 2(bridge_slave_1) entered blocking state [ 934.322183][ T7466] bridge0: port 2(bridge_slave_1) entered forwarding state [ 934.583919][T18126] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 935.566065][T18126] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 935.972674][T18126] veth0_vlan: entered promiscuous mode [ 936.073643][T18126] veth1_vlan: entered promiscuous mode [ 936.438398][T18126] veth0_macvtap: entered promiscuous mode [ 936.475531][ T5189] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 936.495887][ T5189] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 936.498814][ T5189] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 936.515193][ T5189] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 936.517476][ T5189] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 936.839426][T18126] veth1_macvtap: entered promiscuous mode [ 937.050030][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 937.061404][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 937.159064][T18126] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 937.426646][T18126] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 937.652645][ T7466] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 937.792745][ T7466] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 937.815759][ T7466] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 937.865520][ T7466] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 938.578954][T15081] Bluetooth: hci2: command tx timeout [ 939.081356][T13917] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 939.098494][T13917] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 939.320333][T13917] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 939.357652][T13917] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 939.449579][T18310] chnl_net:caif_netlink_parms(): no params data found [ 940.069205][T15081] Bluetooth: hci0: ACL packet for unknown connection handle 0 [ 940.644325][T15081] Bluetooth: hci2: command tx timeout [ 941.479574][T18310] bridge0: port 1(bridge_slave_0) entered blocking state [ 941.506882][T18310] bridge0: port 1(bridge_slave_0) entered disabled state [ 941.527457][T18310] bridge_slave_0: entered allmulticast mode [ 941.558533][T18310] bridge_slave_0: entered promiscuous mode [ 941.810242][T18310] bridge0: port 2(bridge_slave_1) entered blocking state [ 941.825887][T18310] bridge0: port 2(bridge_slave_1) entered disabled state [ 941.851206][T18310] bridge_slave_1: entered allmulticast mode [ 941.882744][T18310] bridge_slave_1: entered promiscuous mode [ 942.432951][T18310] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 942.505174][T18310] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 942.724251][T15081] Bluetooth: hci2: command tx timeout [ 943.002715][T18310] team0: Port device team_slave_0 added [ 943.028324][T18310] team0: Port device team_slave_1 added [ 943.586839][T18310] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 943.614181][T18310] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 943.656960][T18310] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 943.681720][T18405] FAULT_INJECTION: forcing a failure. [ 943.681720][T18405] name failslab, interval 1, probability 0, space 0, times 0 [ 943.698357][T18405] CPU: 0 UID: 0 PID: 18405 Comm: syz.1.2499 Not tainted syzkaller #0 PREEMPT(full) [ 943.698404][T18405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 943.698423][T18405] Call Trace: [ 943.698434][T18405] [ 943.698446][T18405] dump_stack_lvl+0x16c/0x1f0 [ 943.698501][T18405] should_fail_ex+0x512/0x640 [ 943.698532][T18405] ? __kmalloc_noprof+0xbf/0x510 [ 943.698572][T18405] ? xfrm_hash_alloc+0xd1/0x100 [ 943.698615][T18405] should_failslab+0xc2/0x120 [ 943.698656][T18405] __kmalloc_noprof+0xd2/0x510 [ 943.698692][T18405] ? xfrm_state_init+0x377/0x630 [ 943.698734][T18405] ? xfrm_state_init+0x351/0x630 [ 943.698787][T18405] xfrm_hash_alloc+0xd1/0x100 [ 943.698834][T18405] xfrm_net_init+0x35f/0xcc0 [ 943.698872][T18405] ? __pfx_xfrm_net_init+0x10/0x10 [ 943.698902][T18405] ops_init+0x1e2/0x5f0 [ 943.698937][T18405] setup_net+0x10f/0x380 [ 943.698962][T18405] ? lockdep_init_map_type+0x5c/0x280 [ 943.699006][T18405] ? __pfx_setup_net+0x10/0x10 [ 943.699046][T18405] ? debug_mutex_init+0x37/0x70 [ 943.699082][T18405] copy_net_ns+0x2a6/0x5f0 [ 943.699118][T18405] create_new_namespaces+0x3ea/0xa90 [ 943.699162][T18405] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 943.699201][T18405] ksys_unshare+0x45b/0xa40 [ 943.699241][T18405] ? __pfx_ksys_unshare+0x10/0x10 [ 943.699283][T18405] ? xfd_validate_state+0x61/0x180 [ 943.699343][T18405] __x64_sys_unshare+0x31/0x40 [ 943.699384][T18405] do_syscall_64+0xcd/0x4c0 [ 943.699415][T18405] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 943.699446][T18405] RIP: 0033:0x7efee3b8eba9 [ 943.699472][T18405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 943.699503][T18405] RSP: 002b:00007efee1df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 943.699534][T18405] RAX: ffffffffffffffda RBX: 00007efee3dd5fa0 RCX: 00007efee3b8eba9 [ 943.699556][T18405] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 943.699574][T18405] RBP: 00007efee3c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 943.699594][T18405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 943.699612][T18405] R13: 00007efee3dd6038 R14: 00007efee3dd5fa0 R15: 00007ffe108761c8 [ 943.699653][T18405] [ 943.943965][T18310] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 943.951004][T18310] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 943.978304][T18310] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 944.258415][T13917] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 944.578788][T18310] hsr_slave_0: entered promiscuous mode [ 944.591234][T15081] Bluetooth: hci0: ACL packet for unknown connection handle 0 [ 944.609512][T18310] hsr_slave_1: entered promiscuous mode [ 944.624851][T18310] debugfs: 'hsr0' already exists in 'hsr' [ 944.639882][T18310] Cannot create hsr debugfs directory [ 944.803884][T15081] Bluetooth: hci2: command tx timeout [ 945.253334][T13917] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 945.810433][T13917] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 945.989491][T13917] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 946.863718][T13917] bridge_slave_1: left allmulticast mode [ 946.913681][T13917] bridge_slave_1: left promiscuous mode [ 946.921461][T13917] bridge0: port 2(bridge_slave_1) entered disabled state [ 946.966166][T13917] bridge_slave_0: left allmulticast mode [ 946.972343][T13917] bridge_slave_0: left promiscuous mode [ 946.978379][T13917] bridge0: port 1(bridge_slave_0) entered disabled state [ 948.600356][T18470] device-mapper: ioctl: Invalid ioctl structure: name , dev b00010007 [ 948.814487][T13917] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 948.836968][T13917] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 948.850858][T13917] bond0 (unregistering): Released all slaves [ 948.977419][T18310] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 949.312537][T18310] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 949.344015][T18310] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 949.362670][T18310] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 949.815307][T13917] hsr_slave_0: left promiscuous mode [ 949.851722][T13917] hsr_slave_1: left promiscuous mode [ 949.869851][T13917] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 949.892794][T13917] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 949.914563][T13917] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 949.922012][T13917] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 949.979275][T13917] veth1_macvtap: left promiscuous mode [ 949.994071][T13917] veth0_macvtap: left promiscuous mode [ 950.015371][T13917] veth1_vlan: left promiscuous mode [ 950.020799][T13917] veth0_vlan: left promiscuous mode [ 951.517754][T13917] team0 (unregistering): Port device team_slave_1 removed [ 951.611672][T13917] team0 (unregistering): Port device team_slave_0 removed [ 953.106640][T18310] 8021q: adding VLAN 0 to HW filter on device bond0 [ 953.201024][T18310] 8021q: adding VLAN 0 to HW filter on device team0 [ 953.240951][ T8131] bridge0: port 1(bridge_slave_0) entered blocking state [ 953.248123][ T8131] bridge0: port 1(bridge_slave_0) entered forwarding state [ 953.326982][ T8131] bridge0: port 2(bridge_slave_1) entered blocking state [ 953.334555][ T8131] bridge0: port 2(bridge_slave_1) entered forwarding state [ 954.704464][T18310] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 954.956151][T18552] futex_wake_op: syz.2.2513 tries to shift op by -2048; fix this program [ 955.013015][T18552] futex_wake_op: syz.2.2513 tries to shift op by -2048; fix this program [ 955.406586][T18566] random: crng reseeded on system resumption [ 957.100458][T18310] veth0_vlan: entered promiscuous mode [ 957.229004][T18310] veth1_vlan: entered promiscuous mode [ 957.359607][T18310] veth0_macvtap: entered promiscuous mode [ 957.570112][T18310] veth1_macvtap: entered promiscuous mode [ 957.583523][T18602] FAULT_INJECTION: forcing a failure. [ 957.583523][T18602] name failslab, interval 1, probability 0, space 0, times 0 [ 957.646633][T18602] CPU: 0 UID: 0 PID: 18602 Comm: syz.1.2517 Not tainted syzkaller #0 PREEMPT(full) [ 957.646682][T18602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 957.646702][T18602] Call Trace: [ 957.646714][T18602] [ 957.646727][T18602] dump_stack_lvl+0x16c/0x1f0 [ 957.646783][T18602] should_fail_ex+0x512/0x640 [ 957.646813][T18602] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 957.646852][T18602] should_failslab+0xc2/0x120 [ 957.646893][T18602] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 957.646945][T18602] ? do_epoll_ctl+0x24d7/0x3790 [ 957.646989][T18602] do_epoll_ctl+0x24d7/0x3790 [ 957.647044][T18602] ? __pfx_do_epoll_ctl+0x10/0x10 [ 957.647078][T18602] ? find_held_lock+0x2b/0x80 [ 957.647108][T18602] ? __might_fault+0xe3/0x190 [ 957.647145][T18602] ? __might_fault+0xe3/0x190 [ 957.647197][T18602] ? __x64_sys_epoll_ctl+0x15c/0x1e0 [ 957.647231][T18602] __x64_sys_epoll_ctl+0x15c/0x1e0 [ 957.647269][T18602] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 957.647319][T18602] do_syscall_64+0xcd/0x4c0 [ 957.647352][T18602] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 957.647384][T18602] RIP: 0033:0x7efee3b8eba9 [ 957.647410][T18602] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 957.647441][T18602] RSP: 002b:00007efee1df6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 957.647473][T18602] RAX: ffffffffffffffda RBX: 00007efee3dd5fa0 RCX: 00007efee3b8eba9 [ 957.647494][T18602] RDX: 8000000000000000 RSI: 0000000000000001 RDI: 0000000000000006 [ 957.647514][T18602] RBP: 00007efee3c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 957.647533][T18602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 957.647551][T18602] R13: 00007efee3dd6038 R14: 00007efee3dd5fa0 R15: 00007ffe108761c8 [ 957.647593][T18602] [ 957.886678][T18602] netlink: 326 bytes leftover after parsing attributes in process `syz.1.2517'. [ 958.305535][T18310] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 958.503276][T18310] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 959.115222][ T8131] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 959.148565][ T8131] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 959.319723][ T8131] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 959.422708][ T8131] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 959.983685][ T7466] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 960.028955][T15081] Bluetooth: hci0: ACL packet for unknown connection handle 0 [ 960.030867][ T7466] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 960.353130][ T8131] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 960.401391][ T8131] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 961.502547][T18655] random: crng reseeded on system resumption [ 961.879988][T18658] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 963.981744][T18688] FAULT_INJECTION: forcing a failure. [ 963.981744][T18688] name failslab, interval 1, probability 0, space 0, times 0 [ 964.028038][T18688] CPU: 1 UID: 0 PID: 18688 Comm: syz.4.2531 Not tainted syzkaller #0 PREEMPT(full) [ 964.028083][T18688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 964.028101][T18688] Call Trace: [ 964.028113][T18688] [ 964.028124][T18688] dump_stack_lvl+0x16c/0x1f0 [ 964.028177][T18688] should_fail_ex+0x512/0x640 [ 964.028207][T18688] ? __kvmalloc_node_noprof+0x124/0x620 [ 964.028247][T18688] should_failslab+0xc2/0x120 [ 964.028286][T18688] __kvmalloc_node_noprof+0x137/0x620 [ 964.028323][T18688] ? io_alloc_cache_init+0x33/0x170 [ 964.028362][T18688] ? io_alloc_cache_init+0x33/0x170 [ 964.028390][T18688] io_alloc_cache_init+0x33/0x170 [ 964.028424][T18688] io_uring_setup+0x680/0x2080 [ 964.028474][T18688] ? __pfx_io_uring_setup+0x10/0x10 [ 964.028519][T18688] ? do_futex+0x122/0x350 [ 964.028560][T18688] ? __pfx_do_futex+0x10/0x10 [ 964.028604][T18688] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 964.028671][T18688] ? xfd_validate_state+0x61/0x180 [ 964.028727][T18688] __x64_sys_io_uring_setup+0xc2/0x170 [ 964.028777][T18688] do_syscall_64+0xcd/0x4c0 [ 964.028809][T18688] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 964.028852][T18688] RIP: 0033:0x7faaa9b8eba9 [ 964.028879][T18688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 964.028910][T18688] RSP: 002b:00007faaa7df6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 964.028939][T18688] RAX: ffffffffffffffda RBX: 00007faaa9dd5fa0 RCX: 00007faaa9b8eba9 [ 964.028960][T18688] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 964.028978][T18688] RBP: 00007faaa9c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 964.028997][T18688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 964.029015][T18688] R13: 00007faaa9dd6038 R14: 00007faaa9dd5fa0 R15: 00007ffdfc769768 [ 964.029055][T18688] [ 966.069630][T18708] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 970.656925][T18755] Bluetooth: hci2: ACL packet for unknown connection handle 0 [ 974.283773][T18755] Bluetooth: hci0: ACL packet for unknown connection handle 0 [ 974.962132][T18884] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input346 [ 975.044465][T18888] Process accounting resumed [ 977.616149][T18923] input input347: cannot allocate more than FF_MAX_EFFECTS effects [ 977.890783][ T5858] Process accounting resumed [ 978.561732][T18755] Bluetooth: hci0: ACL packet for unknown connection handle 0 [ 978.578230][T18943] Setting dangerous option i915.mitigations - tainting kernel [ 978.763981][T18941] FAULT_INJECTION: forcing a failure. [ 978.763981][T18941] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 978.841695][T18941] CPU: 1 UID: 0 PID: 18941 Comm: syz.0.2565 Tainted: G U syzkaller #0 PREEMPT(full) [ 978.841745][T18941] Tainted: [U]=USER [ 978.841757][T18941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 978.841774][T18941] Call Trace: [ 978.841784][T18941] [ 978.841796][T18941] dump_stack_lvl+0x16c/0x1f0 [ 978.841849][T18941] should_fail_ex+0x512/0x640 [ 978.841884][T18941] strncpy_from_user+0x3b/0x2e0 [ 978.841939][T18941] __do_sys_add_key+0xce/0x470 [ 978.841972][T18941] ? __pfx___do_sys_add_key+0x10/0x10 [ 978.842000][T18941] ? ksys_write+0x1ac/0x250 [ 978.842054][T18941] do_syscall_64+0xcd/0x4c0 [ 978.842086][T18941] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 978.842117][T18941] RIP: 0033:0x7efc6dd8eba9 [ 978.842141][T18941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 978.842170][T18941] RSP: 002b:00007efc6eb77038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8 [ 978.842199][T18941] RAX: ffffffffffffffda RBX: 00007efc6dfd5fa0 RCX: 00007efc6dd8eba9 [ 978.842220][T18941] RDX: 0000200000000080 RSI: 0000200000000040 RDI: 0000200000000000 [ 978.842240][T18941] RBP: 00007efc6eb77090 R08: fffffffffffffffd R09: 0000000000000000 [ 978.842260][T18941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 978.842278][T18941] R13: 00007efc6dfd6038 R14: 00007efc6dfd5fa0 R15: 00007ffc7fc3bbc8 [ 978.842319][T18941] [ 979.056727][T18944] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2564'. [ 980.401778][T18969] can: request_module (can-proto-0) failed. [ 983.704965][T19006] FAULT_INJECTION: forcing a failure. [ 983.704965][T19006] name failslab, interval 1, probability 0, space 0, times 0 [ 983.755353][T19006] CPU: 1 UID: 0 PID: 19006 Comm: syz.0.2578 Tainted: G U syzkaller #0 PREEMPT(full) [ 983.755404][T19006] Tainted: [U]=USER [ 983.755415][T19006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 983.755432][T19006] Call Trace: [ 983.755444][T19006] [ 983.755456][T19006] dump_stack_lvl+0x16c/0x1f0 [ 983.755511][T19006] should_fail_ex+0x512/0x640 [ 983.755541][T19006] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 983.755583][T19006] should_failslab+0xc2/0x120 [ 983.755624][T19006] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 983.755664][T19006] ? security_file_alloc+0x34/0x2b0 [ 983.755716][T19006] security_file_alloc+0x34/0x2b0 [ 983.755762][T19006] init_file+0x93/0x4c0 [ 983.755808][T19006] alloc_empty_file+0x73/0x1e0 [ 983.755867][T19006] alloc_file_pseudo+0x13a/0x230 [ 983.755918][T19006] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 983.755966][T19006] ? alloc_fd+0x471/0x7d0 [ 983.756017][T19006] sock_alloc_file+0x50/0x210 [ 983.756047][T19006] __sys_socket+0x1c0/0x260 [ 983.756070][T19006] ? __pfx___sys_socket+0x10/0x10 [ 983.756093][T19006] ? xfd_validate_state+0x61/0x180 [ 983.756126][T19006] __x64_sys_socket+0x72/0xb0 [ 983.756148][T19006] ? lockdep_hardirqs_on+0x7c/0x110 [ 983.756175][T19006] do_syscall_64+0xcd/0x4c0 [ 983.756194][T19006] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 983.756213][T19006] RIP: 0033:0x7efc6dd8eba9 [ 983.756229][T19006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 983.756248][T19006] RSP: 002b:00007efc6eb77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 983.756266][T19006] RAX: ffffffffffffffda RBX: 00007efc6dfd5fa0 RCX: 00007efc6dd8eba9 [ 983.756278][T19006] RDX: 0010000000000002 RSI: 0000000000000002 RDI: 2000000000000021 [ 983.756290][T19006] RBP: 00007efc6de11e19 R08: 0000000000000000 R09: 0000000000000000 [ 983.756301][T19006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 983.756312][T19006] R13: 00007efc6dfd6038 R14: 00007efc6dfd5fa0 R15: 00007ffc7fc3bbc8 [ 983.756335][T19006] [ 987.865185][T19069] FAULT_INJECTION: forcing a failure. [ 987.865185][T19069] name failslab, interval 1, probability 0, space 0, times 0 [ 987.883819][T19069] CPU: 0 UID: 0 PID: 19069 Comm: syz.2.2591 Tainted: G U syzkaller #0 PREEMPT(full) [ 987.883849][T19069] Tainted: [U]=USER [ 987.883856][T19069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 987.883866][T19069] Call Trace: [ 987.883873][T19069] [ 987.883880][T19069] dump_stack_lvl+0x16c/0x1f0 [ 987.883914][T19069] should_fail_ex+0x512/0x640 [ 987.883932][T19069] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 987.883957][T19069] should_failslab+0xc2/0x120 [ 987.883982][T19069] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 987.884005][T19069] ? prepare_creds+0x2c/0x7d0 [ 987.884035][T19069] prepare_creds+0x2c/0x7d0 [ 987.884064][T19069] join_session_keyring+0x17/0x340 [ 987.884089][T19069] lookup_user_key+0xe3f/0x1300 [ 987.884115][T19069] ? __pfx_lookup_user_key+0x10/0x10 [ 987.884141][T19069] ? __might_fault+0xe3/0x190 [ 987.884165][T19069] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 987.884192][T19069] ? _copy_from_user+0x59/0xd0 [ 987.884214][T19069] ? memdup_user+0x82/0xe0 [ 987.884239][T19069] __do_sys_add_key+0x256/0x470 [ 987.884259][T19069] ? __pfx___do_sys_add_key+0x10/0x10 [ 987.884276][T19069] ? ksys_write+0x1ac/0x250 [ 987.884306][T19069] do_syscall_64+0xcd/0x4c0 [ 987.884324][T19069] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 987.884343][T19069] RIP: 0033:0x7ff49a78eba9 [ 987.884359][T19069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 987.884377][T19069] RSP: 002b:00007ff49b6ea038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8 [ 987.884396][T19069] RAX: ffffffffffffffda RBX: 00007ff49a9d5fa0 RCX: 00007ff49a78eba9 [ 987.884408][T19069] RDX: 0000200000000080 RSI: 0000200000000040 RDI: 0000200000000000 [ 987.884420][T19069] RBP: 00007ff49b6ea090 R08: fffffffffffffffd R09: 0000000000000000 [ 987.884432][T19069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 987.884443][T19069] R13: 00007ff49a9d6038 R14: 00007ff49a9d5fa0 R15: 00007fff749de6a8 [ 987.884465][T19069] [ 989.548110][T19090] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input348 [ 989.922810][T19092] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2594'. [ 990.542236][T19091] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input349 [ 991.928890][T19126] FAULT_INJECTION: forcing a failure. [ 991.928890][T19126] name failslab, interval 1, probability 0, space 0, times 0 [ 991.978191][T19126] CPU: 1 UID: 0 PID: 19126 Comm: syz.2.2603 Tainted: G U syzkaller #0 PREEMPT(full) [ 991.978234][T19126] Tainted: [U]=USER [ 991.978240][T19126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 991.978252][T19126] Call Trace: [ 991.978259][T19126] [ 991.978266][T19126] dump_stack_lvl+0x16c/0x1f0 [ 991.978304][T19126] should_fail_ex+0x512/0x640 [ 991.978331][T19126] ? __kmalloc_noprof+0xbf/0x510 [ 991.978366][T19126] ? lsm_blob_alloc+0x68/0x90 [ 991.978392][T19126] should_failslab+0xc2/0x120 [ 991.978430][T19126] __kmalloc_noprof+0xd2/0x510 [ 991.978473][T19126] lsm_blob_alloc+0x68/0x90 [ 991.978502][T19126] security_prepare_creds+0x30/0x270 [ 991.978547][T19126] prepare_creds+0x56f/0x7d0 [ 991.978666][T19126] join_session_keyring+0x17/0x340 [ 991.978691][T19126] lookup_user_key+0xe3f/0x1300 [ 991.978717][T19126] ? __pfx_lookup_user_key+0x10/0x10 [ 991.978742][T19126] ? __might_fault+0xe3/0x190 [ 991.978766][T19126] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 991.978793][T19126] ? _copy_from_user+0x59/0xd0 [ 991.978819][T19126] ? memdup_user+0x82/0xe0 [ 991.978857][T19126] __do_sys_add_key+0x256/0x470 [ 991.978877][T19126] ? __pfx___do_sys_add_key+0x10/0x10 [ 991.978894][T19126] ? ksys_write+0x1ac/0x250 [ 991.978923][T19126] do_syscall_64+0xcd/0x4c0 [ 991.978941][T19126] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 991.978960][T19126] RIP: 0033:0x7ff49a78eba9 [ 991.978975][T19126] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 991.978994][T19126] RSP: 002b:00007ff49b6ea038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8 [ 991.979012][T19126] RAX: ffffffffffffffda RBX: 00007ff49a9d5fa0 RCX: 00007ff49a78eba9 [ 991.979023][T19126] RDX: 0000200000000080 RSI: 0000200000000040 RDI: 0000200000000000 [ 991.979035][T19126] RBP: 00007ff49b6ea090 R08: fffffffffffffffd R09: 0000000000000000 [ 991.979047][T19126] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 991.979058][T19126] R13: 00007ff49a9d6038 R14: 00007ff49a9d5fa0 R15: 00007fff749de6a8 [ 991.979080][T19126] [ 993.689050][T19157] FAULT_INJECTION: forcing a failure. [ 993.689050][T19157] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 993.788420][T19157] CPU: 0 UID: 0 PID: 19157 Comm: syz.2.2609 Tainted: G U syzkaller #0 PREEMPT(full) [ 993.788469][T19157] Tainted: [U]=USER [ 993.788480][T19157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 993.788498][T19157] Call Trace: [ 993.788509][T19157] [ 993.788522][T19157] dump_stack_lvl+0x16c/0x1f0 [ 993.788570][T19157] should_fail_ex+0x512/0x640 [ 993.788605][T19157] _copy_to_user+0x32/0xd0 [ 993.788642][T19157] simple_read_from_buffer+0xcb/0x170 [ 993.788677][T19157] proc_fail_nth_read+0x197/0x240 [ 993.788711][T19157] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 993.788748][T19157] ? rw_verify_area+0xcf/0x6c0 [ 993.788778][T19157] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 993.788821][T19157] vfs_read+0x1e1/0xcf0 [ 993.788861][T19157] ? __pfx___mutex_lock+0x10/0x10 [ 993.788888][T19157] ? __pfx_vfs_read+0x10/0x10 [ 993.788951][T19157] ? __fget_files+0x20e/0x3c0 [ 993.788997][T19157] ksys_read+0x12a/0x250 [ 993.789043][T19157] ? __pfx_ksys_read+0x10/0x10 [ 993.789101][T19157] do_syscall_64+0xcd/0x4c0 [ 993.789132][T19157] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 993.789163][T19157] RIP: 0033:0x7ff49a78d5bc [ 993.789188][T19157] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 993.789216][T19157] RSP: 002b:00007ff49b6ea030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 993.789245][T19157] RAX: ffffffffffffffda RBX: 00007ff49a9d5fa0 RCX: 00007ff49a78d5bc [ 993.789265][T19157] RDX: 000000000000000f RSI: 00007ff49b6ea0a0 RDI: 0000000000000004 [ 993.789283][T19157] RBP: 00007ff49b6ea090 R08: 0000000000000000 R09: 0000000000000000 [ 993.789300][T19157] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 993.789318][T19157] R13: 00007ff49a9d6038 R14: 00007ff49a9d5fa0 R15: 00007fff749de6a8 [ 993.789360][T19157] [ 998.485069][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 998.493041][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 999.291390][T18755] Bluetooth: hci2: ACL packet for unknown connection handle 0 [ 1001.719356][T19275] FAULT_INJECTION: forcing a failure. [ 1001.719356][T19275] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1001.737145][T19275] CPU: 0 UID: 0 PID: 19275 Comm: syz.1.2629 Tainted: G U syzkaller #0 PREEMPT(full) [ 1001.737196][T19275] Tainted: [U]=USER [ 1001.737207][T19275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1001.737225][T19275] Call Trace: [ 1001.737235][T19275] [ 1001.737247][T19275] dump_stack_lvl+0x16c/0x1f0 [ 1001.737299][T19275] should_fail_ex+0x512/0x640 [ 1001.737335][T19275] _copy_from_user+0x2e/0xd0 [ 1001.737370][T19275] copy_strings.isra.0+0x3a7/0x990 [ 1001.737417][T19275] do_execveat_common.isra.0+0x397/0x610 [ 1001.737461][T19275] __x64_sys_execve+0x8e/0xb0 [ 1001.737497][T19275] do_syscall_64+0xcd/0x4c0 [ 1001.737540][T19275] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1001.737571][T19275] RIP: 0033:0x7efee3b8eba9 [ 1001.737596][T19275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1001.737625][T19275] RSP: 002b:00007efee1dd5038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 1001.737656][T19275] RAX: ffffffffffffffda RBX: 00007efee3dd6090 RCX: 00007efee3b8eba9 [ 1001.737676][T19275] RDX: 0000200000000100 RSI: 0000000000000000 RDI: 0000200000000000 [ 1001.737695][T19275] RBP: 00007efee1dd5090 R08: 0000000000000000 R09: 0000000000000000 [ 1001.737713][T19275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1001.737731][T19275] R13: 00007efee3dd6128 R14: 00007efee3dd6090 R15: 00007ffe108761c8 [ 1001.737770][T19275] [ 1002.738541][T19281] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input350 [ 1002.855543][T19288] Process accounting resumed [ 1003.571789][T18755] Bluetooth: hci4: ACL packet for unknown connection handle 0 [ 1004.823339][T19323] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 1005.787268][T19358] syz.1.2641 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 1006.637462][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 1006.644020][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 1006.675440][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 1006.681961][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 1006.699146][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 1006.705848][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 1006.714537][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 1006.721678][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 1008.130225][T19401] random: crng reseeded on system resumption [ 1008.689387][T19415] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2650'. [ 1012.779343][T18755] Bluetooth: hci0: ACL packet for unknown connection handle 0 [ 1017.819735][T18755] Bluetooth: hci0: ACL packet for unknown connection handle 0 [ 1018.372776][T19565] ubi0: attaching mtd0 [ 1018.387874][T19565] ubi0: scanning is finished [ 1018.392742][T19565] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 1018.679954][T19565] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1019.542321][T19583] zram: Removed device: zram0 [ 1020.741060][T19609] FAULT_INJECTION: forcing a failure. [ 1020.741060][T19609] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1020.821362][T19609] CPU: 0 UID: 0 PID: 19609 Comm: syz.1.2690 Tainted: G U syzkaller #0 PREEMPT(full) [ 1020.821395][T19609] Tainted: [U]=USER [ 1020.821401][T19609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1020.821412][T19609] Call Trace: [ 1020.821419][T19609] [ 1020.821426][T19609] dump_stack_lvl+0x16c/0x1f0 [ 1020.821459][T19609] should_fail_ex+0x512/0x640 [ 1020.821486][T19609] should_fail_alloc_page+0xe7/0x130 [ 1020.821514][T19609] prepare_alloc_pages+0x3c2/0x610 [ 1020.821545][T19609] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 1020.821576][T19609] ? lock_acquire+0x179/0x350 [ 1020.821603][T19609] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1020.821627][T19609] ? __free_frozen_pages+0x8e2/0x10f0 [ 1020.821646][T19609] ? do_raw_spin_unlock+0x172/0x230 [ 1020.821691][T19609] __folio_alloc_noprof+0x11/0x220 [ 1020.821713][T19609] alloc_migration_target+0x2bf/0x770 [ 1020.821743][T19609] migrate_pages_batch+0x39f/0x3bd0 [ 1020.821773][T19609] ? __pfx_alloc_migration_target+0x10/0x10 [ 1020.821809][T19609] ? __pfx_migrate_pages_batch+0x10/0x10 [ 1020.821841][T19609] ? __pfx_walk_pgd_range+0x10/0x10 [ 1020.821867][T19609] migrate_pages_sync+0x12d/0x8a0 [ 1020.821896][T19609] ? __pfx_alloc_migration_target+0x10/0x10 [ 1020.821926][T19609] ? queue_pages_test_walk+0x279/0x410 [ 1020.821953][T19609] ? __pfx_migrate_pages_sync+0x10/0x10 [ 1020.821987][T19609] ? walk_page_test+0x9b/0x180 [ 1020.822011][T19609] ? walk_page_range_mm+0x235/0xb40 [ 1020.822039][T19609] migrate_pages+0x1b67/0x23b0 [ 1020.822069][T19609] ? __pfx_alloc_migration_target+0x10/0x10 [ 1020.822102][T19609] ? __pfx_migrate_pages+0x10/0x10 [ 1020.822130][T19609] ? queue_pages_range+0x11e/0x180 [ 1020.822156][T19609] ? __pfx___up_read+0x10/0x10 [ 1020.822184][T19609] ? do_migrate_pages+0x458/0x750 [ 1020.822213][T19609] do_migrate_pages+0x48e/0x750 [ 1020.822243][T19609] ? __pfx_do_migrate_pages+0x10/0x10 [ 1020.822270][T19609] ? rcu_is_watching+0x12/0xc0 [ 1020.822293][T19609] ? cap_capable+0xb3/0x250 [ 1020.822311][T19609] ? get_task_mm+0xc2/0xf0 [ 1020.822332][T19609] ? security_capable+0x250/0x260 [ 1020.822354][T19609] kernel_migrate_pages+0x55b/0x700 [ 1020.822380][T19609] ? __pfx_kernel_migrate_pages+0x10/0x10 [ 1020.822405][T19609] ? ksys_write+0x1ac/0x250 [ 1020.822426][T19609] ? __pfx_ksys_write+0x10/0x10 [ 1020.822451][T19609] __x64_sys_migrate_pages+0x96/0x100 [ 1020.822483][T19609] ? lockdep_hardirqs_on+0x7c/0x110 [ 1020.822510][T19609] do_syscall_64+0xcd/0x4c0 [ 1020.822528][T19609] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1020.822547][T19609] RIP: 0033:0x7efee3b8eba9 [ 1020.822563][T19609] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1020.822581][T19609] RSP: 002b:00007efee1df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000100 [ 1020.822599][T19609] RAX: ffffffffffffffda RBX: 00007efee3dd5fa0 RCX: 00007efee3b8eba9 [ 1020.822612][T19609] RDX: 0000200000000100 RSI: 000000000000000a RDI: 0000000000000000 [ 1020.822623][T19609] RBP: 00007efee1df6090 R08: 0000000000000000 R09: 0000000000000000 [ 1020.822634][T19609] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000001 [ 1020.822645][T19609] R13: 00007efee3dd6038 R14: 00007efee3dd5fa0 R15: 00007ffe108761c8 [ 1020.822667][T19609] [ 1025.388969][T18755] Bluetooth: hci4: ACL packet for unknown connection handle 0 [ 1028.108008][T18755] Bluetooth: hci4: ACL packet for unknown connection handle 0 [ 1030.685380][T19745] Bluetooth: hci4: ACL packet for unknown connection handle 0 [ 1031.280976][T19745] Bluetooth: hci4: command 0x0406 tx timeout [ 1031.333958][T19786] FAULT_INJECTION: forcing a failure. [ 1031.333958][T19786] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1031.369571][T19786] CPU: 0 UID: 0 PID: 19786 Comm: syz.4.2724 Tainted: G U syzkaller #0 PREEMPT(full) [ 1031.369607][T19786] Tainted: [U]=USER [ 1031.369613][T19786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1031.369625][T19786] Call Trace: [ 1031.369631][T19786] [ 1031.369639][T19786] dump_stack_lvl+0x16c/0x1f0 [ 1031.369674][T19786] should_fail_ex+0x512/0x640 [ 1031.369695][T19786] should_fail_alloc_page+0xe7/0x130 [ 1031.369722][T19786] prepare_alloc_pages+0x3c2/0x610 [ 1031.369754][T19786] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 1031.369789][T19786] ? __up_read+0x1f8/0x750 [ 1031.369833][T19786] ? __pfx___up_read+0x10/0x10 [ 1031.369874][T19786] ? __rmap_walk_file+0x575/0x620 [ 1031.369919][T19786] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1031.369955][T19786] ? __rmap_walk_file+0x575/0x620 [ 1031.369989][T19786] ? rmap_walk_file+0x174/0x1f0 [ 1031.370014][T19786] __folio_alloc_noprof+0x11/0x220 [ 1031.370036][T19786] alloc_migration_target+0x2bf/0x770 [ 1031.370066][T19786] migrate_pages_batch+0x39f/0x3bd0 [ 1031.370096][T19786] ? __pfx_alloc_migration_target+0x10/0x10 [ 1031.370132][T19786] ? __pfx_migrate_pages_batch+0x10/0x10 [ 1031.370172][T19786] ? __pfx_walk_pgd_range+0x10/0x10 [ 1031.370197][T19786] migrate_pages_sync+0x12d/0x8a0 [ 1031.370226][T19786] ? __pfx_alloc_migration_target+0x10/0x10 [ 1031.370257][T19786] ? queue_pages_test_walk+0x279/0x410 [ 1031.370283][T19786] ? __pfx_migrate_pages_sync+0x10/0x10 [ 1031.370312][T19786] ? walk_page_test+0x9b/0x180 [ 1031.370335][T19786] ? walk_page_range_mm+0x235/0xb40 [ 1031.370362][T19786] migrate_pages+0x1b67/0x23b0 [ 1031.370392][T19786] ? __pfx_alloc_migration_target+0x10/0x10 [ 1031.370425][T19786] ? __pfx_migrate_pages+0x10/0x10 [ 1031.370453][T19786] ? queue_pages_range+0x11e/0x180 [ 1031.370480][T19786] ? __pfx___up_read+0x10/0x10 [ 1031.370506][T19786] ? do_migrate_pages+0x458/0x750 [ 1031.370535][T19786] do_migrate_pages+0x48e/0x750 [ 1031.370566][T19786] ? __pfx_do_migrate_pages+0x10/0x10 [ 1031.370592][T19786] ? rcu_is_watching+0x12/0xc0 [ 1031.370620][T19786] ? cap_capable+0xb3/0x250 [ 1031.370638][T19786] ? get_task_mm+0xc2/0xf0 [ 1031.370660][T19786] ? security_capable+0x250/0x260 [ 1031.370682][T19786] kernel_migrate_pages+0x55b/0x700 [ 1031.370708][T19786] ? __pfx_kernel_migrate_pages+0x10/0x10 [ 1031.370733][T19786] ? ksys_write+0x1ac/0x250 [ 1031.370755][T19786] ? __pfx_ksys_write+0x10/0x10 [ 1031.370781][T19786] __x64_sys_migrate_pages+0x96/0x100 [ 1031.370807][T19786] ? lockdep_hardirqs_on+0x7c/0x110 [ 1031.370834][T19786] do_syscall_64+0xcd/0x4c0 [ 1031.370853][T19786] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1031.370872][T19786] RIP: 0033:0x7faaa9b8eba9 [ 1031.370887][T19786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1031.370906][T19786] RSP: 002b:00007faaa7df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000100 [ 1031.370924][T19786] RAX: ffffffffffffffda RBX: 00007faaa9dd5fa0 RCX: 00007faaa9b8eba9 [ 1031.370936][T19786] RDX: 0000200000000100 RSI: 000000000000000a RDI: 0000000000000000 [ 1031.370947][T19786] RBP: 00007faaa7df6090 R08: 0000000000000000 R09: 0000000000000000 [ 1031.370958][T19786] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000001 [ 1031.370969][T19786] R13: 00007faaa9dd6038 R14: 00007faaa9dd5fa0 R15: 00007ffdfc769768 [ 1031.370992][T19786] [ 1031.701465][ C0] vkms_vblank_simulate: vblank timer overrun [ 1032.764686][T19807] FAULT_INJECTION: forcing a failure. [ 1032.764686][T19807] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1032.789626][T19807] CPU: 1 UID: 0 PID: 19807 Comm: syz.0.2728 Tainted: G U syzkaller #0 PREEMPT(full) [ 1032.789660][T19807] Tainted: [U]=USER [ 1032.789667][T19807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1032.789678][T19807] Call Trace: [ 1032.789686][T19807] [ 1032.789694][T19807] dump_stack_lvl+0x16c/0x1f0 [ 1032.789728][T19807] should_fail_ex+0x512/0x640 [ 1032.789750][T19807] should_fail_alloc_page+0xe7/0x130 [ 1032.789777][T19807] prepare_alloc_pages+0x3c2/0x610 [ 1032.789810][T19807] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 1032.789843][T19807] ? lock_acquire+0x179/0x350 [ 1032.789870][T19807] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1032.789894][T19807] ? finish_task_switch.isra.0+0x21c/0xc10 [ 1032.789915][T19807] ? rcu_is_watching+0x12/0xc0 [ 1032.789934][T19807] ? finish_task_switch.isra.0+0x221/0xc10 [ 1032.789957][T19807] ? rcu_is_watching+0x12/0xc0 [ 1032.789976][T19807] ? trace_sched_exit_tp+0xd1/0x120 [ 1032.790005][T19807] ? __schedule+0x11a3/0x5de0 [ 1032.790030][T19807] ? __lock_acquire+0x62e/0x1ce0 [ 1032.790053][T19807] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1032.790083][T19807] ? policy_nodemask+0xea/0x4e0 [ 1032.790109][T19807] alloc_pages_mpol+0x1fb/0x550 [ 1032.790137][T19807] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1032.790182][T19807] alloc_pages_noprof+0x131/0x390 [ 1032.790217][T19807] __pmd_alloc+0x3b/0x930 [ 1032.790258][T19807] __handle_mm_fault+0xa06/0x2a50 [ 1032.790282][T19807] ? mt_find+0x3ef/0xa30 [ 1032.790301][T19807] ? __pfx___handle_mm_fault+0x10/0x10 [ 1032.790319][T19807] ? __pfx_mt_find+0x10/0x10 [ 1032.790349][T19807] ? find_vma+0xbf/0x140 [ 1032.790373][T19807] ? __pfx_find_vma+0x10/0x10 [ 1032.790407][T19807] handle_mm_fault+0x589/0xd10 [ 1032.790427][T19807] ? trace_raw_output_exceptions+0x131/0x150 [ 1032.790458][T19807] do_user_addr_fault+0x7a6/0x1370 [ 1032.790492][T19807] ? rcu_is_watching+0x12/0xc0 [ 1032.790514][T19807] exc_page_fault+0x5c/0xb0 [ 1032.790541][T19807] asm_exc_page_fault+0x26/0x30 [ 1032.790559][T19807] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 1032.790583][T19807] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 1032.790602][T19807] RSP: 0018:ffffc9000be47e38 EFLAGS: 00050206 [ 1032.790618][T19807] RAX: 0000000000000001 RBX: 00000000000001a0 RCX: 00000000000001a0 [ 1032.790629][T19807] RDX: ffffed10054e4cd1 RSI: ffff88802a7264e8 RDI: 000000000000000d [ 1032.790641][T19807] RBP: 000000000000000d R08: 0000000000000000 R09: ffffed10054e4cd0 [ 1032.790652][T19807] R10: ffff88802a726687 R11: 0000000000000000 R12: ffff88802a7264e8 [ 1032.790664][T19807] R13: 00000000000001ad R14: 00007ffffffff000 R15: 0000000000000000 [ 1032.790688][T19807] _copy_to_user+0xbb/0xd0 [ 1032.790711][T19807] __do_sys_prctl+0x1c7/0x20e0 [ 1032.790731][T19807] ? __pfx___do_sys_prctl+0x10/0x10 [ 1032.790767][T19807] do_syscall_64+0xcd/0x4c0 [ 1032.790785][T19807] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1032.790804][T19807] RIP: 0033:0x7efc6dd8eba9 [ 1032.790818][T19807] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1032.790836][T19807] RSP: 002b:00007efc6eb77038 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 1032.790853][T19807] RAX: ffffffffffffffda RBX: 00007efc6dfd5fa0 RCX: 00007efc6dd8eba9 [ 1032.790865][T19807] RDX: 0000000000002008 RSI: 000000000000000d RDI: 0000000041555856 [ 1032.790876][T19807] RBP: 00007efc6de11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1032.790887][T19807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1032.790899][T19807] R13: 00007efc6dfd6038 R14: 00007efc6dfd5fa0 R15: 00007ffc7fc3bbc8 [ 1032.790922][T19807] [ 1033.176030][ C0] unchecked MSR access error: WRMSR to 0x418 (tried to write 0x0000000000000322) at rIP: 0xffffffff8163fc29 (__mcheck_cpu_init_clear_banks+0x109/0x1f0) [ 1033.191395][ C0] Call Trace: [ 1033.194693][ C0] [ 1033.197552][ C0] ? __pfx_mce_cpu_restart+0x10/0x10 [ 1033.202857][ C0] mce_cpu_restart+0x98/0xb0 [ 1033.207466][ C0] __flush_smp_call_function_queue+0x27a/0x8c0 [ 1033.213652][ C0] __sysvec_call_function_single+0x87/0x400 [ 1033.219571][ C0] sysvec_call_function_single+0x9f/0xc0 [ 1033.225242][ C0] [ 1033.228203][ C0] [ 1033.231165][ C0] asm_sysvec_call_function_single+0x1a/0x20 [ 1033.237173][ C0] RIP: 0010:finish_task_switch.isra.0+0x22a/0xc10 [ 1033.243611][ C0] Code: fb 09 00 00 44 8b 05 19 37 23 0f 45 85 c0 0f 85 be 01 00 00 4c 89 e7 e8 a4 f6 ff ff e8 ff 4c 3a 00 fb 65 48 8b 1d de bb 4d 12 <48> 8d bb 18 16 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 [ 1033.263237][ C0] RSP: 0000:ffffc9001a2efb70 EFLAGS: 00000206 [ 1033.269326][ C0] RAX: 00000000003a9599 RBX: ffff888026cd5a00 RCX: ffffffff81c2f02f [ 1033.277309][ C0] RDX: 0000000000000000 RSI: ffffffff8de4f4d9 RDI: ffffffff8c163480 [ 1033.285303][ C0] RBP: ffffc9001a2efbb8 R08: 0000000000000001 R09: 0000000000000001 [ 1033.293328][ C0] R10: ffffffff90aba997 R11: 0000000000000000 R12: ffff8880b843a440 [ 1033.301321][ C0] R13: ffff88802e8c0000 R14: ffff8880b843a440 R15: ffff8880b843b2b0 [ 1033.309323][ C0] ? trace_irq_enable.constprop.0+0x2f/0x120 [ 1033.315354][ C0] ? __switch_to+0x7a5/0x11a0 [ 1033.320063][ C0] __schedule+0x1198/0x5de0 [ 1033.324610][ C0] ? __pfx___schedule+0x10/0x10 [ 1033.329491][ C0] ? find_held_lock+0x2b/0x80 [ 1033.334193][ C0] ? schedule+0x2d7/0x3a0 [ 1033.338569][ C0] schedule+0xe7/0x3a0 [ 1033.342675][ C0] ? worker_thread+0x28b/0xf10 [ 1033.347456][ C0] worker_thread+0x2e5/0xf10 [ 1033.352072][ C0] ? __pfx_worker_thread+0x10/0x10 [ 1033.357213][ C0] kthread+0x3c5/0x780 [ 1033.361329][ C0] ? __pfx_kthread+0x10/0x10 [ 1033.365968][ C0] ? rcu_is_watching+0x12/0xc0 [ 1033.370764][ C0] ? __pfx_kthread+0x10/0x10 [ 1033.375469][ C0] ret_from_fork+0x56d/0x730 [ 1033.380090][ C0] ? __pfx_kthread+0x10/0x10 [ 1033.384706][ C0] ret_from_fork_asm+0x1a/0x30 [ 1033.389523][ C0] [ 1033.394306][ C0] vkms_vblank_simulate: vblank timer overrun [ 1034.222472][T19793] zswap: compressor not available [ 1034.479861][T18755] Bluetooth: hci2: ACL packet for unknown connection handle 0 [ 1035.263380][T19833] FAULT_INJECTION: forcing a failure. [ 1035.263380][T19833] name failslab, interval 1, probability 0, space 0, times 0 [ 1035.336351][T19833] CPU: 1 UID: 0 PID: 19833 Comm: syz.4.2734 Tainted: G U syzkaller #0 PREEMPT(full) [ 1035.336411][T19833] Tainted: [U]=USER [ 1035.336422][T19833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1035.336441][T19833] Call Trace: [ 1035.336453][T19833] [ 1035.336465][T19833] dump_stack_lvl+0x16c/0x1f0 [ 1035.336520][T19833] should_fail_ex+0x512/0x640 [ 1035.336549][T19833] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1035.336593][T19833] should_failslab+0xc2/0x120 [ 1035.336635][T19833] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1035.336675][T19833] ? ptlock_alloc+0x1f/0x70 [ 1035.336716][T19833] ptlock_alloc+0x1f/0x70 [ 1035.336748][T19833] pte_alloc_one+0x82/0x3a0 [ 1035.336784][T19833] __pte_alloc+0x6d/0x3c0 [ 1035.336826][T19833] ? __pfx___pte_alloc+0x10/0x10 [ 1035.336881][T19833] do_pte_missing+0x285a/0x3ba0 [ 1035.336931][T19833] __handle_mm_fault+0x152a/0x2a50 [ 1035.336977][T19833] ? __pfx___handle_mm_fault+0x10/0x10 [ 1035.337012][T19833] ? folio_mark_accessed+0xc1/0xc00 [ 1035.337057][T19833] ? __pfx_folio_mark_accessed+0x10/0x10 [ 1035.337099][T19833] ? find_held_lock+0x2b/0x80 [ 1035.337156][T19833] handle_mm_fault+0x589/0xd10 [ 1035.337199][T19833] __get_user_pages+0x551/0x34a0 [ 1035.337265][T19833] ? __pfx___get_user_pages+0x10/0x10 [ 1035.337324][T19833] populate_vma_page_range+0x267/0x3f0 [ 1035.337378][T19833] ? __pfx_populate_vma_page_range+0x10/0x10 [ 1035.337437][T19833] ? __pfx_find_vma_intersection+0x10/0x10 [ 1035.337484][T19833] ? do_mmap+0x69c/0x1210 [ 1035.337534][T19833] __mm_populate+0x1d8/0x380 [ 1035.337566][T19833] ? __pfx___mm_populate+0x10/0x10 [ 1035.337620][T19833] ? up_write+0x1b2/0x520 [ 1035.337671][T19833] vm_mmap_pgoff+0x37f/0x470 [ 1035.337723][T19833] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1035.337770][T19833] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 1035.337827][T19833] ? __x64_sys_futex+0x1e0/0x4c0 [ 1035.337866][T19833] ? __x64_sys_futex+0x1e9/0x4c0 [ 1035.337912][T19833] ksys_mmap_pgoff+0x7d/0x5c0 [ 1035.337966][T19833] ? xfd_validate_state+0x61/0x180 [ 1035.338020][T19833] __x64_sys_mmap+0x125/0x190 [ 1035.338075][T19833] do_syscall_64+0xcd/0x4c0 [ 1035.338108][T19833] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1035.338140][T19833] RIP: 0033:0x7faaa9b8eba9 [ 1035.338165][T19833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1035.338196][T19833] RSP: 002b:00007faaa7df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1035.338226][T19833] RAX: ffffffffffffffda RBX: 00007faaa9dd5fa0 RCX: 00007faaa9b8eba9 [ 1035.338247][T19833] RDX: 0000000000000004 RSI: 0000000000400008 RDI: 0000000000000000 [ 1035.338266][T19833] RBP: 00007faaa9c11e19 R08: 0000000000000002 R09: 0000000000008000 [ 1035.338285][T19833] R10: 0000000040009b72 R11: 0000000000000246 R12: 0000000000000000 [ 1035.338304][T19833] R13: 00007faaa9dd6038 R14: 00007faaa9dd5fa0 R15: 00007ffdfc769768 [ 1035.338345][T19833] [ 1037.525036][T18755] Bluetooth: hci3: ACL packet for unknown connection handle 0 [ 1037.778470][T19874] bridge0: port 3(vlan1) entered blocking state [ 1037.786140][T19874] bridge0: port 3(vlan1) entered disabled state [ 1037.804867][T19874] vlan1: entered allmulticast mode [ 1037.804888][T19874] veth0_vlan: entered allmulticast mode [ 1037.813877][T19874] vlan1: entered promiscuous mode [ 1037.814928][T19874] bridge0: port 3(vlan1) entered blocking state [ 1037.815103][T19874] bridge0: port 3(vlan1) entered forwarding state [ 1038.207107][T19891] FAULT_INJECTION: forcing a failure. [ 1038.207107][T19891] name failslab, interval 1, probability 0, space 0, times 0 [ 1038.229584][T19891] CPU: 1 UID: 0 PID: 19891 Comm: syz.4.2743 Tainted: G U syzkaller #0 PREEMPT(full) [ 1038.229631][T19891] Tainted: [U]=USER [ 1038.229642][T19891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1038.229659][T19891] Call Trace: [ 1038.229671][T19891] [ 1038.229683][T19891] dump_stack_lvl+0x16c/0x1f0 [ 1038.229736][T19891] should_fail_ex+0x512/0x640 [ 1038.229764][T19891] ? __kmalloc_noprof+0xbf/0x510 [ 1038.229803][T19891] ? trace_parser_get_init+0x30/0xc0 [ 1038.229846][T19891] should_failslab+0xc2/0x120 [ 1038.229886][T19891] __kmalloc_noprof+0xd2/0x510 [ 1038.229932][T19891] trace_parser_get_init+0x30/0xc0 [ 1038.229979][T19891] ftrace_event_write+0x177/0x2c0 [ 1038.230011][T19891] ? __pfx_ftrace_event_write+0x10/0x10 [ 1038.230058][T19891] ? __pfx_ftrace_event_write+0x10/0x10 [ 1038.230098][T19891] vfs_write+0x2a0/0x11d0 [ 1038.230141][T19891] ? __pfx___mutex_lock+0x10/0x10 [ 1038.230170][T19891] ? __pfx_vfs_write+0x10/0x10 [ 1038.230217][T19891] ? __fget_files+0x20e/0x3c0 [ 1038.230263][T19891] ksys_write+0x12a/0x250 [ 1038.230299][T19891] ? __pfx_ksys_write+0x10/0x10 [ 1038.230347][T19891] do_syscall_64+0xcd/0x4c0 [ 1038.230379][T19891] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1038.230410][T19891] RIP: 0033:0x7faaa9b8eba9 [ 1038.230435][T19891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1038.230464][T19891] RSP: 002b:00007faaa7db4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1038.230494][T19891] RAX: ffffffffffffffda RBX: 00007faaa9dd6180 RCX: 00007faaa9b8eba9 [ 1038.230514][T19891] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000007 [ 1038.230531][T19891] RBP: 00007faaa7db4090 R08: 0000000000000000 R09: 0000000000000000 [ 1038.230549][T19891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1038.230567][T19891] R13: 00007faaa9dd6218 R14: 00007faaa9dd6180 R15: 00007ffdfc769768 [ 1038.230609][T19891] [ 1041.518396][T18755] Bluetooth: hci0: command 0x0406 tx timeout [ 1042.079975][T19745] Bluetooth: hci4: ACL packet for unknown connection handle 0 [ 1042.620454][T19944] netlink: 'syz.1.2756': attribute type 11 has an invalid length. [ 1042.777678][T19948] FAULT_INJECTION: forcing a failure. [ 1042.777678][T19948] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1042.891649][T19948] CPU: 0 UID: 0 PID: 19948 Comm: syz.2.2757 Tainted: G U syzkaller #0 PREEMPT(full) [ 1042.891702][T19948] Tainted: [U]=USER [ 1042.891712][T19948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1042.891729][T19948] Call Trace: [ 1042.891741][T19948] [ 1042.891753][T19948] dump_stack_lvl+0x16c/0x1f0 [ 1042.891803][T19948] should_fail_ex+0x512/0x640 [ 1042.891837][T19948] should_fail_alloc_page+0xe7/0x130 [ 1042.891880][T19948] prepare_alloc_pages+0x3c2/0x610 [ 1042.891927][T19948] ? rcu_is_watching+0x12/0xc0 [ 1042.891962][T19948] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 1042.891999][T19948] ? css_rstat_updated+0x1c2/0x510 [ 1042.892034][T19948] ? __pfx_css_rstat_updated+0x10/0x10 [ 1042.892080][T19948] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1042.892133][T19948] ? __lock_acquire+0x62e/0x1ce0 [ 1042.892182][T19948] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1042.892232][T19948] ? policy_nodemask+0xea/0x4e0 [ 1042.892276][T19948] alloc_pages_mpol+0x1fb/0x550 [ 1042.892320][T19948] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1042.892376][T19948] ? __lock_acquire+0x62e/0x1ce0 [ 1042.892421][T19948] folio_alloc_mpol_noprof+0x36/0x2f0 [ 1042.892471][T19948] vma_alloc_folio_noprof+0xed/0x1e0 [ 1042.892517][T19948] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 1042.892578][T19948] do_pte_missing+0x2230/0x3ba0 [ 1042.892612][T19948] ? find_held_lock+0x2b/0x80 [ 1042.892653][T19948] __handle_mm_fault+0x152a/0x2a50 [ 1042.892696][T19948] ? __pfx___handle_mm_fault+0x10/0x10 [ 1042.892731][T19948] ? __pte_offset_map_lock+0x174/0x310 [ 1042.892776][T19948] ? find_held_lock+0x2b/0x80 [ 1042.892816][T19948] ? follow_page_pte.constprop.0+0x5cf/0x1390 [ 1042.892862][T19948] handle_mm_fault+0x589/0xd10 [ 1042.892903][T19948] __get_user_pages+0x551/0x34a0 [ 1042.892967][T19948] ? __pfx___get_user_pages+0x10/0x10 [ 1042.893028][T19948] populate_vma_page_range+0x267/0x3f0 [ 1042.893080][T19948] ? __pfx_populate_vma_page_range+0x10/0x10 [ 1042.893123][T19948] ? __pfx_find_vma_intersection+0x10/0x10 [ 1042.893169][T19948] ? do_mmap+0x69c/0x1210 [ 1042.893215][T19948] __mm_populate+0x1d8/0x380 [ 1042.893245][T19948] ? __pfx___mm_populate+0x10/0x10 [ 1042.893297][T19948] ? up_write+0x1b2/0x520 [ 1042.893355][T19948] vm_mmap_pgoff+0x37f/0x470 [ 1042.893406][T19948] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1042.893449][T19948] ? __sock_release+0x20b/0x270 [ 1042.893488][T19948] ? __x64_sys_futex+0x1e0/0x4c0 [ 1042.893525][T19948] ? __x64_sys_futex+0x1e9/0x4c0 [ 1042.893569][T19948] ksys_mmap_pgoff+0x7d/0x5c0 [ 1042.893610][T19948] ? xfd_validate_state+0x61/0x180 [ 1042.893650][T19948] ? __pfx___do_sys_close_range+0x10/0x10 [ 1042.893692][T19948] __x64_sys_mmap+0x125/0x190 [ 1042.893744][T19948] do_syscall_64+0xcd/0x4c0 [ 1042.893775][T19948] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1042.893807][T19948] RIP: 0033:0x7ff49a78eba9 [ 1042.893833][T19948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1042.893861][T19948] RSP: 002b:00007ff49b6ea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1042.893890][T19948] RAX: ffffffffffffffda RBX: 00007ff49a9d5fa0 RCX: 00007ff49a78eba9 [ 1042.893910][T19948] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 1042.893929][T19948] RBP: 00007ff49a811e19 R08: 0000000000000002 R09: 0000000000008000 [ 1042.893947][T19948] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 1042.893966][T19948] R13: 00007ff49a9d6038 R14: 00007ff49a9d5fa0 R15: 00007fff749de6a8 [ 1042.894007][T19948] [ 1043.582097][T19950] FAULT_INJECTION: forcing a failure. [ 1043.582097][T19950] name failslab, interval 1, probability 0, space 0, times 0 [ 1043.618819][T19950] CPU: 0 UID: 0 PID: 19950 Comm: syz.1.2758 Tainted: G U syzkaller #0 PREEMPT(full) [ 1043.618886][T19950] Tainted: [U]=USER [ 1043.618897][T19950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1043.618913][T19950] Call Trace: [ 1043.618923][T19950] [ 1043.618936][T19950] dump_stack_lvl+0x16c/0x1f0 [ 1043.619022][T19950] should_fail_ex+0x512/0x640 [ 1043.619050][T19950] ? __kmalloc_noprof+0xbf/0x510 [ 1043.619134][T19950] ? tracepoint_add_func+0x2a6/0xea0 [ 1043.619177][T19950] should_failslab+0xc2/0x120 [ 1043.619235][T19950] __kmalloc_noprof+0xd2/0x510 [ 1043.619266][T19950] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 1043.619301][T19950] tracepoint_add_func+0x2a6/0xea0 [ 1043.619334][T19950] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 1043.619378][T19950] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 1043.619405][T19950] tracepoint_probe_register+0xbf/0x100 [ 1043.619435][T19950] ? __pfx_tracepoint_probe_register+0x10/0x10 [ 1043.619469][T19950] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 1043.619503][T19950] tracing_start_sched_switch+0xaf/0x1e0 [ 1043.619535][T19950] __ftrace_event_enable_disable+0x694/0x810 [ 1043.619570][T19950] __ftrace_set_clr_event_nolock+0x390/0xb70 [ 1043.619608][T19950] ftrace_set_clr_event+0x16e/0x330 [ 1043.619634][T19950] ? __pfx_ftrace_set_clr_event+0x10/0x10 [ 1043.619660][T19950] ftrace_event_write+0x259/0x2c0 [ 1043.619680][T19950] ? __pfx_ftrace_event_write+0x10/0x10 [ 1043.619707][T19950] ? __pfx_ftrace_event_write+0x10/0x10 [ 1043.619725][T19950] vfs_write+0x2a0/0x11d0 [ 1043.619751][T19950] ? __pfx___mutex_lock+0x10/0x10 [ 1043.619768][T19950] ? __pfx_vfs_write+0x10/0x10 [ 1043.619797][T19950] ? __fget_files+0x20e/0x3c0 [ 1043.619824][T19950] ksys_write+0x12a/0x250 [ 1043.619846][T19950] ? __pfx_ksys_write+0x10/0x10 [ 1043.619875][T19950] do_syscall_64+0xcd/0x4c0 [ 1043.619894][T19950] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1043.619914][T19950] RIP: 0033:0x7efee3b8eba9 [ 1043.619930][T19950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1043.619949][T19950] RSP: 002b:00007efee1df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1043.619972][T19950] RAX: ffffffffffffffda RBX: 00007efee3dd5fa0 RCX: 00007efee3b8eba9 [ 1043.619985][T19950] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000004 [ 1043.619996][T19950] RBP: 00007efee1df6090 R08: 0000000000000000 R09: 0000000000000000 [ 1043.620007][T19950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1043.620018][T19950] R13: 00007efee3dd6038 R14: 00007efee3dd5fa0 R15: 00007ffe108761c8 [ 1043.620042][T19950] [ 1043.620105][T19950] wakeup trace: Couldn't activate tracepoint probe to kernel_sched_wakeup [ 1044.669888][ T30] audit: type=1800 audit(4294994140.454:53): pid=19979 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2763" name="lu_gp_id" dev="configfs" ino=76282 res=0 errno=0 [ 1046.073797][T19996] blktrace: Concurrent blktraces are not allowed on ram7 [ 1046.413577][T20007] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2769'. [ 1052.333111][T19745] Bluetooth: hci4: ACL packet for unknown connection handle 0 [ 1055.813205][T20154] FAULT_INJECTION: forcing a failure. [ 1055.813205][T20154] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1055.826805][T20154] CPU: 1 UID: 0 PID: 20154 Comm: syz.1.2800 Tainted: G U syzkaller #0 PREEMPT(full) [ 1055.826837][T20154] Tainted: [U]=USER [ 1055.826843][T20154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1055.826854][T20154] Call Trace: [ 1055.826861][T20154] [ 1055.826869][T20154] dump_stack_lvl+0x16c/0x1f0 [ 1055.826904][T20154] should_fail_ex+0x512/0x640 [ 1055.826925][T20154] get_futex_key+0x1d0/0x1560 [ 1055.826951][T20154] ? __pfx_get_futex_key+0x10/0x10 [ 1055.826985][T20154] futex_wake+0xea/0x530 [ 1055.827015][T20154] ? __pfx_futex_wake+0x10/0x10 [ 1055.827045][T20154] ? errseq_sample+0x53/0x70 [ 1055.827065][T20154] ? file_init_path+0x4fe/0x760 [ 1055.827096][T20154] do_futex+0x1e3/0x350 [ 1055.827120][T20154] ? __pfx_do_futex+0x10/0x10 [ 1055.827144][T20154] ? fd_install+0x225/0x750 [ 1055.827168][T20154] __x64_sys_futex+0x1e0/0x4c0 [ 1055.827194][T20154] ? __sys_socket+0xac/0x260 [ 1055.827224][T20154] ? __pfx___x64_sys_futex+0x10/0x10 [ 1055.827249][T20154] ? xfd_validate_state+0x61/0x180 [ 1055.827276][T20154] ? __pfx___do_sys_close_range+0x10/0x10 [ 1055.827306][T20154] do_syscall_64+0xcd/0x4c0 [ 1055.827326][T20154] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1055.827345][T20154] RIP: 0033:0x7efee3b8eba9 [ 1055.827360][T20154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1055.827379][T20154] RSP: 002b:00007efee1df60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1055.827398][T20154] RAX: ffffffffffffffda RBX: 00007efee3dd5fa8 RCX: 00007efee3b8eba9 [ 1055.827410][T20154] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007efee3dd5fac [ 1055.827422][T20154] RBP: 00007efee3dd5fa0 R08: 00007efee4928000 R09: 0000000000000000 [ 1055.827434][T20154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1055.827445][T20154] R13: 00007efee3dd6038 R14: 00007ffe108760e0 R15: 00007ffe108761c8 [ 1055.827467][T20154] [ 1056.028188][ C1] vkms_vblank_simulate: vblank timer overrun [ 1056.083771][T20148] ------------[ cut here ]------------ [ 1056.089684][T20148] WARNING: CPU: 1 PID: 20148 at kernel/tracepoint.c:358 tracepoint_probe_unregister+0x894/0xd70 [ 1056.100190][T20148] Modules linked in: [ 1056.104270][T20148] CPU: 1 UID: 0 PID: 20148 Comm: syz.4.2799 Tainted: G U syzkaller #0 PREEMPT(full) [ 1056.115270][T20148] Tainted: [U]=USER [ 1056.119681][T20148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1056.130713][T20148] RIP: 0010:tracepoint_probe_unregister+0x894/0xd70 [ 1056.137429][T20148] Code: 41 5e 41 5f c3 cc cc cc cc e8 28 23 fe ff 48 c7 c6 20 d7 bc 81 48 89 df e8 19 ac e4 ff eb 9f bb fe ff ff ff e8 0d 23 fe ff 90 <0f> 0b 90 eb 91 e8 02 23 fe ff 48 89 da 48 b8 00 00 00 00 00 fc ff [ 1056.157059][ C1] vkms_vblank_simulate: vblank timer overrun [ 1056.163291][T20148] RSP: 0018:ffffc9000d4678a0 EFLAGS: 00010287 [ 1056.169551][T20148] RAX: 00000000000576c9 RBX: 00000000fffffffe RCX: ffffc90011a6c000 [ 1056.177789][T20148] RDX: 0000000000080000 RSI: ffffffff81bce863 RDI: 0000000000000005 [ 1056.185946][T20148] RBP: ffff88801c68dbc8 R08: 0000000000000005 R09: 0000000000000000 [ 1056.194097][T20148] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff81c2dfb0 [ 1056.202261][T20148] R13: 0000000000000002 R14: 0000000000000000 R15: ffffffff8e990300 [ 1056.210422][T20148] FS: 00007faaa7df66c0(0000) GS:ffff8881247ba000(0000) knlGS:0000000000000000 [ 1056.220268][T20148] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1056.227781][T20148] CR2: 00002000001e9000 CR3: 000000007b992000 CR4: 00000000003526f0 [ 1056.235844][T20148] Call Trace: [ 1056.239133][T20148] [ 1056.242259][T20148] ? __pfx_tracepoint_probe_unregister+0x10/0x10 [ 1056.248803][T20148] tracing_stop_cmdline_record+0x66/0xa0 [ 1056.254483][T20148] __ftrace_event_enable_disable+0x708/0x810 [ 1056.260575][T20148] ftrace_event_set_open+0x232/0x380 [ 1056.265946][T20148] do_dentry_open+0x982/0x1530 [ 1056.270823][T20148] ? __pfx_ftrace_event_set_open+0x10/0x10 [ 1056.276699][T20148] vfs_open+0x82/0x3f0 [ 1056.280799][T20148] path_openat+0x1de4/0x2cb0 [ 1056.285432][T20148] ? __pfx_path_openat+0x10/0x10 [ 1056.290443][T20148] do_filp_open+0x20b/0x470 [ 1056.295112][T20148] ? __pfx_do_filp_open+0x10/0x10 [ 1056.300191][T20148] ? alloc_fd+0x471/0x7d0 [ 1056.304548][T20148] do_sys_openat2+0x11b/0x1d0 [ 1056.309341][T20148] ? __pfx_do_sys_openat2+0x10/0x10 [ 1056.314578][T20148] __x64_sys_openat+0x174/0x210 [ 1056.319547][T20148] ? __pfx___x64_sys_openat+0x10/0x10 [ 1056.325559][T20148] do_syscall_64+0xcd/0x4c0 [ 1056.330081][T20148] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1056.336529][T20148] RIP: 0033:0x7faaa9b8eba9 [ 1056.340970][T20148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1056.360791][T20148] RSP: 002b:00007faaa7df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1056.369375][T20148] RAX: ffffffffffffffda RBX: 00007faaa9dd5fa0 RCX: 00007faaa9b8eba9 [ 1056.377407][T20148] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 1056.385499][T20148] RBP: 00007faaa9c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1056.393491][T20148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1056.401507][T20148] R13: 00007faaa9dd6038 R14: 00007faaa9dd5fa0 R15: 00007ffdfc769768 [ 1056.409539][T20148] [ 1056.412562][T20148] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1056.419844][T20148] CPU: 1 UID: 0 PID: 20148 Comm: syz.4.2799 Tainted: G U syzkaller #0 PREEMPT(full) [ 1056.430790][T20148] Tainted: [U]=USER [ 1056.434589][T20148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1056.444675][T20148] Call Trace: [ 1056.447982][T20148] [ 1056.450919][T20148] dump_stack_lvl+0x3d/0x1f0 [ 1056.455527][T20148] vpanic+0x6e8/0x7a0 [ 1056.459542][T20148] ? __pfx_vpanic+0x10/0x10 [ 1056.464069][T20148] ? tracepoint_probe_unregister+0x894/0xd70 [ 1056.470083][T20148] panic+0xca/0xd0 [ 1056.473824][T20148] ? __pfx_panic+0x10/0x10 [ 1056.478274][T20148] check_panic_on_warn+0xab/0xb0 [ 1056.483252][T20148] __warn+0xf6/0x3c0 [ 1056.487169][T20148] ? tracepoint_probe_unregister+0x894/0xd70 [ 1056.493175][T20148] report_bug+0x3c3/0x580 [ 1056.497525][T20148] ? tracepoint_probe_unregister+0x894/0xd70 [ 1056.503543][T20148] handle_bug+0x184/0x210 [ 1056.507898][T20148] exc_invalid_op+0x17/0x50 [ 1056.512410][T20148] asm_exc_invalid_op+0x1a/0x20 [ 1056.517296][T20148] RIP: 0010:tracepoint_probe_unregister+0x894/0xd70 [ 1056.523915][T20148] Code: 41 5e 41 5f c3 cc cc cc cc e8 28 23 fe ff 48 c7 c6 20 d7 bc 81 48 89 df e8 19 ac e4 ff eb 9f bb fe ff ff ff e8 0d 23 fe ff 90 <0f> 0b 90 eb 91 e8 02 23 fe ff 48 89 da 48 b8 00 00 00 00 00 fc ff [ 1056.543546][T20148] RSP: 0018:ffffc9000d4678a0 EFLAGS: 00010287 [ 1056.549626][T20148] RAX: 00000000000576c9 RBX: 00000000fffffffe RCX: ffffc90011a6c000 [ 1056.557610][T20148] RDX: 0000000000080000 RSI: ffffffff81bce863 RDI: 0000000000000005 [ 1056.565594][T20148] RBP: ffff88801c68dbc8 R08: 0000000000000005 R09: 0000000000000000 [ 1056.574100][T20148] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff81c2dfb0 [ 1056.582082][T20148] R13: 0000000000000002 R14: 0000000000000000 R15: ffffffff8e990300 [ 1056.590072][T20148] ? __pfx_probe_sched_switch+0x10/0x10 [ 1056.595652][T20148] ? tracepoint_probe_unregister+0x893/0xd70 [ 1056.601668][T20148] ? __pfx_tracepoint_probe_unregister+0x10/0x10 [ 1056.608024][T20148] tracing_stop_cmdline_record+0x66/0xa0 [ 1056.613673][T20148] __ftrace_event_enable_disable+0x708/0x810 [ 1056.619689][T20148] ftrace_event_set_open+0x232/0x380 [ 1056.625080][T20148] do_dentry_open+0x982/0x1530 [ 1056.629859][T20148] ? __pfx_ftrace_event_set_open+0x10/0x10 [ 1056.635689][T20148] vfs_open+0x82/0x3f0 [ 1056.639777][T20148] path_openat+0x1de4/0x2cb0 [ 1056.644401][T20148] ? __pfx_path_openat+0x10/0x10 [ 1056.649385][T20148] do_filp_open+0x20b/0x470 [ 1056.653924][T20148] ? __pfx_do_filp_open+0x10/0x10 [ 1056.658990][T20148] ? alloc_fd+0x471/0x7d0 [ 1056.663338][T20148] do_sys_openat2+0x11b/0x1d0 [ 1056.668033][T20148] ? __pfx_do_sys_openat2+0x10/0x10 [ 1056.673340][T20148] __x64_sys_openat+0x174/0x210 [ 1056.678195][T20148] ? __pfx___x64_sys_openat+0x10/0x10 [ 1056.683615][T20148] do_syscall_64+0xcd/0x4c0 [ 1056.688142][T20148] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1056.694054][T20148] RIP: 0033:0x7faaa9b8eba9 [ 1056.698485][T20148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1056.718105][T20148] RSP: 002b:00007faaa7df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1056.726541][T20148] RAX: ffffffffffffffda RBX: 00007faaa9dd5fa0 RCX: 00007faaa9b8eba9 [ 1056.734517][T20148] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 1056.742491][T20148] RBP: 00007faaa9c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1056.750465][T20148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1056.758594][T20148] R13: 00007faaa9dd6038 R14: 00007faaa9dd5fa0 R15: 00007ffdfc769768 [ 1056.766608][T20148] [ 1056.769937][T20148] Kernel Offset: disabled [ 1056.774313][T20148] Rebooting in 86400 seconds..