last executing test programs: 38.962399616s ago: executing program 0 (id=1647): socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x184) openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000080)='/proc/kpageflags\x00', 0x2, 0x0) readv$auto(0x3, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram11\x00', 0x14be02, 0x0) syz_clone3(&(0x7f0000000440)={0x20900, 0x0, &(0x7f00000001c0), &(0x7f0000000200), {0x1e}, 0x0, 0x0, 0x0, 0x0}, 0x58) preadv2$auto(r0, 0x0, 0x6, 0xffffffffffffffff, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_VHOST_SET_BACKEND_FEATURES(r1, 0x4008af25, 0x0) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x62040, 0x0) rseq$auto(0x0, 0x2000aa7, 0x3, 0x2020401) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) 37.883764221s ago: executing program 0 (id=1651): r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) r1 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x1892, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000140), 0xb, 0xa505}, 0x800}, 0x7, 0x4008) r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), 0xffffffffffffffff) capset$auto(&(0x7f0000000180)={0x2, 0x0}, &(0x7f00000001c0)={0x7, 0x1, 0x9}) getpgid(0xffffffffffffffff) msgctl$auto_MSG_INFO(0xe, 0xc, 0x0) sendmsg$auto_NL802154_CMD_DEL_INTERFACE(r1, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000a40)={0x484, r2, 0x200, 0x70bd28, 0x25dfdbff, {}, [@NL802154_ATTR_ACKREQ_DEFAULT={0x5, 0x1a, 0x7f}, @NL802154_ATTR_SUPPORTED_CHANNEL={0x8, 0x16, 0x10001}, @NL802154_ATTR_SCAN_TYPE={0x5, 0x1f, 0xfa}, @NL802154_ATTR_SCAN_TYPE={0x5, 0x1f, 0x8}, @NL802154_ATTR_COORDINATOR={0x168, 0x1e, 0x0, 0x1, [@nested={0xc1, 0xb3, 0x0, 0x1, [@typed={0x8, 0x23, 0x0, 0x0, @pid=0xffffffffffffffff}, @nested={0x4, 0x44}, @typed={0x8, 0x91, 0x0, 0x0, @fd=r0}, @generic="57c675edc5b6f9a4e4d9ca80c47a03d64d5a84659fff2ec34261cae22df7bde8e93e8da688d629361de4c34f55ef752eb3307de37736e7f265bce9ebf9f900dd75edde712b3ae5839a2a6db85779529b36eb8deb018d11d6f28c72ad4e78a96d42970657ff6105511192d6fecc8fc69768bd5d7385913ac0a3a7d29578402ef82f83e0e9f97c7c448b", @typed={0x14, 0x54, 0x0, 0x0, @ipv6=@private2={0xfc, 0x2, '\x00', 0x1}}, @nested={0x4, 0x36}, @nested={0x4, 0xba}, @nested={0x4, 0x125}]}, @nested={0x75, 0xfc, 0x0, 0x1, [@typed={0x8, 0xf1, 0x0, 0x0, @pid=r3}, @typed={0x4, 0x11e}, @nested={0x4, 0x6f}, @generic="1f14f987f0776690f63ebce985640759a5edff5e62a61a12571e6391c8a3029f109e0173596abbfcf83ee1670def7f79c106f32b580806ca72905d5223c96d374f0338ad894bdb0e33a1a9b0f93b43f6c4e39ff933108c28dd3edf338da431a2f3"]}, @typed={0x8, 0x8a, 0x0, 0x0, @u32=0x5c729475}, @typed={0xc, 0xb4, 0x0, 0x0, @u64=0x24}, @nested={0x14, 0x64, 0x0, 0x1, [@nested={0x4, 0x127}, @typed={0x8, 0x2e, 0x0, 0x0, @u32=0x5}, @nested={0x4, 0xec}]}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x10}, @NL802154_ATTR_CCA_ED_LEVEL={0x8}, @NL802154_ATTR_IFNAME={0x14, 0x4, 'batadv0\x00'}, @NL802154_ATTR_COORDINATOR={0x2be, 0x1e, 0x0, 0x1, [@nested={0x14e, 0x20, 0x0, 0x1, [@generic="cce143d901830fe4b53f6a1de37ac26d7afe8e4b18c5a55449d88d7e7c528aa11d62aa4ba741e07f8dc99c65a6990de2f8de829680a0a853f76ad2fedf7db0a92298f5f01ac907f007d39ab3dc21c917ce1eb14b94da21989784f4097b15d69cb8d54168357ee6aa7b00668ccbb22558848d9074fe38a1c52c468e89c4bb0770c7baec54b8752c270c02229558865e9ab0a160b9372d280ded28aac267ea19b7260c4e1ed1ad1c27b5c662a60b82c19ce6ea76d4c6dcbeb66a8f495eb5a45843ab35344928b19e5ecd82eff2f1b784c8556dd135959aef1dedce4d01ca0c0dfe51c60469", @typed={0x8, 0x1, 0x0, 0x0, @uid}, @generic="cbc2277c383092aa67848ce549db1ae100afca5c46b6e85286024ae9f93c5719c8161b952bc71363dae9bc2d7215a71099937b8bcd64937f358cc9c56bb7aa90bf400919faebc14acb65c92f5d9dbf0586114f5f2058", @typed={0x8, 0x4, 0x0, 0x0, @uid}]}, @typed={0x58, 0x82, 0x0, 0x0, @binary="a38904de193fa9e06d2cd139510b7d07db8e2fdf8115ccf2911e61f56f251d926fcacd4a8b9dcbc698f897fc9c24faca74342667ef55369941e0ac1faa516456259c1fac8407ea2b1342d2c5d59474c1afd40f60"}, @nested={0x61, 0x24, 0x0, 0x1, [@generic="8edc3d000f942394aa3d40d01659d6cc5ee1a9cb72e8c592bdeb9a3f1ace0e401915b0fd3fc35b4a5938678ec4db1d1202f8548913ae284691ca9108024929b6058717467fb801adf2b578f014453aa5e0", @nested={0x4, 0x106}, @nested={0x4, 0x136}, @nested={0x4, 0x11d}]}, @generic="b32a298940551d144c319055620524fedfecb19cba3aa87e7673f16896ad546f8e2035c968d96c657343e347ed0c184ee4fdbc96840891a8b6a54f797b0fca18d4a2fea783e227495414ab7041c7848d6516385c77bbd41e2650a7e7610f651a4e6f8ea596cdbdebe35eb1af177c64f5ecba9ad50b469bacea94b5dd389a565265", @typed={0xc, 0x5, 0x0, 0x0, @u64=0x7}, @generic="ba02799adf5f95681a822e5bdea0894e86feda4c0a538dd9d3de4ae4f8e85eeb7c"]}]}, 0x484}}, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r4 = socket(0x2, 0x801, 0x106) bind$auto(0x3, 0x0, 0x6a) getsockopt$auto(r4, 0x6, 0x2, 0x0, 0x0) recvmmsg$auto(r0, &(0x7f0000000140)={{0x0, 0x1, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0) r5 = timerfd_create$auto_CLOCK_BOOTTIME(0x7, 0x6) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r5) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/disable_policy\x00', 0x202, 0x0) sendfile$auto(r8, 0xffffffffffffffff, 0x0, 0x48) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r7, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000001b00)=ANY=[@ANYBLOB="20010000", @ANYRES16=r6, @ANYBLOB="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"], 0x120}, 0x1, 0x68, 0x0, 0x24000000}, 0x140) 36.867463026s ago: executing program 0 (id=1654): r0 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy3/hwflags\x00', 0x40081, 0x0) write$auto(r0, 0x0, 0x4) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) openat$auto_uhid_fops_uhid(0xffffffffffffff9c, 0x0, 0x2201, 0x0) mmap$auto(0x0, 0x402000a, 0xffffffffffffffff, 0x400eb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r1 = socket(0x2, 0x5, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) setsockopt$auto(0x3, 0x84, 0x17, 0x0, 0x27) setsockopt$auto(0x3, 0x10000000084, 0x18, 0x0, 0x8) bind$auto(0x3, 0x0, 0x6a) sendmmsg$auto(r1, 0x0, 0x5, 0x311) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) setsockopt$auto(0xffffffffffffffff, 0x10000000084, 0x23, 0x0, 0x8) close_range$auto(0x2, 0x8, 0x0) socket(0x2b, 0x1, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mlock$auto(0x112, 0x80006) 36.51310802s ago: executing program 0 (id=1656): mmap$auto(0x0, 0x20009, 0x4000000002df, 0xeb1, 0x401, 0x8000) r0 = prctl$auto(0x1000000003b, 0x2, 0x0, 0x3, 0x2a) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x15) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000"], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) io_uring_register$auto_IORING_REGISTER_ENABLE_RINGS(r0, 0xc, &(0x7f0000000080)="e2a24d403c48b274bba86b36c48148aeda1822f347c637d16fc9b4a7b5bd66b4e8adda5d0fba743106c8deecf997e060395f5eb68c692afed3087c2007d9417d9b440d75b415e8bb8a14a10e0e6a4866081580bd3b35447aa486cac9103d441c227979a339c1f5473576c41a20e7464fc2aee09cf5bb7dfa9f0b540c64c0ccd0f1a5d0623a63cf3102", 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup\x00', 0x40400, 0x48) setitimer$auto(0x2, &(0x7f0000000040)={{0x0, 0x5}, {0x0, 0x8}}, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) getitimer$auto_ITIMER_PROF(0x2, 0x0) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0x1002, 0x8, 0x80000008000000a, 0x40000402, 0x9, 0x8, 0xffffffff80000000, 0x800000000000d, 0x6, 0x240000100103}) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) r1 = socket(0x10, 0x2, 0x6) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x5, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x10000) 35.489795251s ago: executing program 0 (id=1659): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_vport(0x0, 0xffffffffffffffff) sendmsg$auto_OVS_VPORT_CMD_NEW(r0, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) gettid() socket(0xa, 0x5, 0x0) r1 = setfsuid$auto(0xee00) setreuid$auto(r1, 0x0) sendmsg$auto_NL802154_CMD_GET_SEC_DEV(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000340)={0x0}, 0x1, 0x0, 0x0, 0x8800}, 0x10) read$auto_proc_auxv_operations_base(0xffffffffffffffff, &(0x7f0000000240)=""/146, 0x92) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000400), 0xffffffffffffffff) geteuid() openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/flags\x00', 0x101142, 0x0) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0xa, 0x0) r2 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x401c5820, 0x0) 35.215710393s ago: executing program 0 (id=1661): madvise$auto(0x1000000000005, 0x8000000000000000, 0xfffffffd) r0 = socket(0xa, 0x2, 0x0) setsockopt$auto(r0, 0x6, 0x19, 0x0, 0x56b) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r1 = socket(0x15, 0x5, 0x0) r2 = openat$auto__dev_ioctl_fops_dev_ioctl(0xffffffffffffff9c, &(0x7f0000001440), 0x101000, 0x0) ioctl$auto__dev_ioctl_fops_dev_ioctl(r2, 0x19300, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) socketpair$auto(0x1ff, 0x5, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x9, 0x0) getsockopt$auto_SO_NETNS_COOKIE(r1, 0x4, 0x47, &(0x7f00000000c0)='/proc/asound/card1/pcm1p/sub1/xrun_injection\x00', &(0x7f0000000140)=0x10) sendmsg$auto(r1, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) listen$auto(r3, 0x21ff) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card1/pcm1p/sub1/xrun_injection\x00', 0x0, 0x0) socket(0x2c, 0x6, 0x6) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mtdblock0\x00', 0x14f642, 0x0) shutdown$auto(0x200000003, 0x2) ioprio_set$auto(0xffffff81, 0x0, 0x5) 19.967173159s ago: executing program 32 (id=1661): madvise$auto(0x1000000000005, 0x8000000000000000, 0xfffffffd) r0 = socket(0xa, 0x2, 0x0) setsockopt$auto(r0, 0x6, 0x19, 0x0, 0x56b) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r1 = socket(0x15, 0x5, 0x0) r2 = openat$auto__dev_ioctl_fops_dev_ioctl(0xffffffffffffff9c, &(0x7f0000001440), 0x101000, 0x0) ioctl$auto__dev_ioctl_fops_dev_ioctl(r2, 0x19300, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) socketpair$auto(0x1ff, 0x5, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x9, 0x0) getsockopt$auto_SO_NETNS_COOKIE(r1, 0x4, 0x47, &(0x7f00000000c0)='/proc/asound/card1/pcm1p/sub1/xrun_injection\x00', &(0x7f0000000140)=0x10) sendmsg$auto(r1, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) listen$auto(r3, 0x21ff) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card1/pcm1p/sub1/xrun_injection\x00', 0x0, 0x0) socket(0x2c, 0x6, 0x6) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mtdblock0\x00', 0x14f642, 0x0) shutdown$auto(0x200000003, 0x2) ioprio_set$auto(0xffffff81, 0x0, 0x5) 7.557498065s ago: executing program 3 (id=1737): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) ioctl$auto(r1, 0x400454ca, 0x38) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x80900, 0x0) openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, 0x0, 0x20a01, 0x0) ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000000c0), 0xffffffffffffffff) mmap$auto(0xb2, 0x14, 0xffb, 0x8000000008015, r0, 0x8000) ioctl$auto_BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f0000000140)={0x80, 0x5, [0x4, 0x8], 0x8001, 0x750c}) write$auto(0x3, 0x0, 0xfffffdef) ioctl$auto_BLKTRACETEARDOWN(r2, 0x1276, 0x0) mmap$auto(0x8000000000002001, 0x20009, 0xdf, 0x15, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = socket(0xa, 0x3, 0x3c) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty48\x00', 0x880, 0x0) ioctl$auto(r4, 0x5609, r3) 6.848342543s ago: executing program 1 (id=1739): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x2, 0x88) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socket(0xa, 0x3, 0x6) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) close_range$auto(0x2, r0, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0180, 0x0) r2 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x401f, 0x1, 0x8e051, r2, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0xffffffffffffffff, 0xae3d, 0xffffffffffffffff) ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x30, 0xff, 0x0, @raw=0xfffff030}}) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0) flistxattr$auto(0xffffffffffffffff, 0x0, 0x8) 6.664011255s ago: executing program 1 (id=1740): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r0 = socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3, @rand_addr=0x40020000}, 0x55) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) capset$auto(0x0, 0x0) setsockopt$auto(r0, 0x10000000084, 0x8, 0x0, 0xc) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xb8ff}, 0x1, 0x0, 0x0, 0x9}, 0x100007}, 0x3, 0x0) r1 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r1, 0x29, 0x31, 0x0, 0x2) socket(0x2, 0x2, 0x0) socket(0x23, 0x6, 0x4) setsockopt$auto(0x4, 0x0, 0x480, 0xfffffffffffffffe, 0x0) r2 = openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_marker_raw\x00', 0xc05, 0x0) writev$auto(r2, &(0x7f0000000140)={0x0, 0x2}, 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) ioctl$auto(r3, 0x2289, 0xbb1) 5.458469063s ago: executing program 3 (id=1742): socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) io_uring_register$auto(0xffffffffffffffff, 0x15, 0x0, 0x9) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) mmap$auto(0x0, 0x61, 0x100001000000004, 0xfa31, 0x400, 0x8000) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0) sendfile$auto(r0, r1, 0x0, 0x1) socket(0x2, 0x801, 0x106) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) close_range$auto(0x0, 0xfffffffffffff000, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0xb5, 0x10, 0x7, 0x4, 0xffffffffffffffff, 0xa, "2af051a940806ec05be276cfc83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0xe5, 0x3}, 0x10) bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex=r2, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0x4040, 0x0) preadv2$auto(0x3, &(0x7f0000001000)={0x0, 0x80000000}, 0x5, 0xffffffffffffffff, 0x7, 0x2e) 4.623729288s ago: executing program 1 (id=1744): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000240), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'macsec0\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000740), 0xffffffffffffffff) r1 = socket(0x1d, 0x2, 0x7) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'vlan0\x00'}) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) set_mempolicy$auto(0x3, &(0x7f0000000000)=0x7, 0x9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vlan0\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x68, 0x0, 0x10, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IF2_AGE={0x8, 0x4, 0x8}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IFINDEX={0x8}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_NODE_ADDR={0xa, 0x1, @remote}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3a}}, @HSR_A_IFINDEX={0x8, 0x2, r3}, @HSR_A_IF1_AGE={0x8, 0x3, 0xfffffffa}, @HSR_A_IF1_AGE={0x8, 0x3, 0x8}]}, 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 4.395316307s ago: executing program 3 (id=1746): openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x8800, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={0x0}, 0x1, 0x0, 0x0, 0x4008040}, 0x40800) sendmsg$auto_ETHTOOL_MSG_FEC_SET(0xffffffffffffffff, 0x0, 0x20004000) unshare$auto(0x40000080) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/usb/usbmon/0u\x00', 0x22202, 0x0) pread64$auto(r1, 0x0, 0x0, 0x9) read$auto_mon_fops_text_t_mon_text(r1, 0x0, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0x0, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sg1\x00', 0x646502, 0x0) openat$auto_set_tracer_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/current_tracer\x00', 0x41, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/037/001\x00', 0x630001, 0x0) openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x100242, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) 4.171305185s ago: executing program 1 (id=1747): socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/inject\x00', 0x2, 0x0) shmget$auto(0x8, 0x10565, 0x7ff) shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa) shmctl$auto(0x0, 0x0, 0xfffffffffffffffd) connect$auto(0x3, 0x0, 0x54) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x109001, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, 0x0, 0x100000a3d9) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20a42, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x65b) epoll_create$auto(0x2) symlink$auto(&(0x7f0000000300)='\\\':.\x00', &(0x7f0000000100)='\xfb\x00') mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r2 = openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0xb92f9b5724540a4, 0x0) ioctl$auto_SG_GET_ACCESS_COUNT(r2, 0x2289, 0x0) write$auto(0xffffffffffffffff, 0x0, 0xa3d9) io_cancel$auto(0x7, &(0x7f0000000080)={0x8, 0x7, 0x5, 0x48a8, 0x78, r0, 0x212f, 0x3ff, 0x2, 0x0, 0x3, r0}, &(0x7f0000000040)={0x8e, 0x6, 0x9, 0x7fffffffffffffff}) shmat$auto(0x0, &(0x7f0000000000)='\x9a\x1e2\x8e\xe3o\rJ\x1e\xe3\xb9\x96\x0f\x80\x91\xb8\xb95\x98F\xf8Q\x01\x00\x93^', 0xfffffffa) 4.167057014s ago: executing program 2 (id=1748): socket(0x15, 0x5, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) clock_getres$auto(0x10, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8ea182, 0x0) r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x0) socket(0xa, 0x801, 0x84) lsm_list_modules$auto(0x0, 0x0, 0x0) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x6c, 0x697c}, 0xed71390}, 0x9a6, 0x0) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vcsu\x00', 0x108002, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)={0x14, r0, 0x1, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x0) write$auto(0x3, 0x0, 0x80000003) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3) r2 = socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x60008004}, 0x80) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x0) r3 = getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) ioctl$auto_VHOST_SET_FEATURES(r3, 0x4008af00, 0x0) preadv2$auto(0xffffffffffffffff, 0x0, 0x6, 0x7fff, 0xd01f, 0x4) 3.601140844s ago: executing program 4 (id=1749): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x10, 0x2, 0x14) socket(0x11, 0x80003, 0x300) socket(0x1d, 0x2, 0x7) socket(0x2, 0x1, 0x0) socket(0x10, 0x2, 0x0) socket(0x1d, 0x2, 0x7) socket(0xa, 0x2, 0x73) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x0) socket(0xa, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000000040)=ANY=[@ANYRES16, @ANYBLOB="010027bd7000ffdbdf25100000000c0001"], 0x28}, 0x1, 0x0, 0x0, 0x90}, 0x0) r1 = socket(0x10, 0x2, 0x14) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14af"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r1], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x2}, 0x3, 0x0) 3.487645129s ago: executing program 1 (id=1750): r0 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/block/nbd11/sched/async_depth\x00', 0x2000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count\x00', 0xc0082, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x100, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_CHANNEL_INFO2(r1, 0x80184132, 0x0) setsockopt$auto_SO_SNDBUF(r0, 0x3028, 0x7, &(0x7f00000000c0)='*+:\x00', 0x7) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x3) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dmmidi2\x00', 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000080), 0xffffffffffffffff) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0xdd01, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) ioctl$auto_BLKRRPART(r2, 0x125f, 0x700000000000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/usb_storage/parameters/delay_use\x00', 0x181942, 0x0) r3 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x0, 0x1, 0x9, 0x40000007, 0x3d, 0x7, 0x1ffde, 0x7, 0x6, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb2, 0x9, 0x2, 0x10000, 0x80, 0x7, 0x40000, 0x7, 0x2000, 0x200, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, [0x401, 0x80000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0, 0x6, 0x8, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, 0x202, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 3.404373601s ago: executing program 3 (id=1751): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x4e22, @multicast2}, 0x5) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) setsockopt$auto(0x3, 0x10f, 0x9f06, 0x0, 0x17) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = pipe2$auto(0x0, 0x80) ioctl$auto(r1, 0x5761, 0x4) ioctl$auto_BINDER_SET_MAX_THREADS(r1, 0x40046205, &(0x7f0000000080)="d7a13be3c14e950bc86ac4250954b7f9b37dd9020413b9c0e0437b1770f1e60e3016321fb32f747b55a5dc9aa9c22b1dce04ad94fac29031234d3619f36b2b2872d09c5d4c1cfb73312afd29d4257a5df2dd59a775625a1e196dab0cb2e1b2d6541cf92b53ca962bcdda378470c44ab0a64c4b64c9b43e54f87ea6b5832db97dcf93a6d4b9b9dc59bd74fc71a5359a31c4f31c95a12fe985109d1d4f81144690b512f4214444131cedbd0214a12d") r2 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x400008, 0x2, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x4, 0x14000000000df, 0x40eb2, r2, 0x300000000000) semtimedop$auto(0x40, 0x0, 0x6, 0x0) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0xfffffdef) shutdown$auto(0x200000003, 0x2) 3.351535385s ago: executing program 4 (id=1752): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/tty/console/active\x00', 0x103280, 0x0) socket$nl_generic(0x10, 0x3, 0x10) prctl$auto(0x23, 0x7, 0x2008, 0x0, 0x0) ioctl$auto_SW_SYNC_GET_DEADLINE(0xffffffffffffffff, 0xc0105702, 0x0) r0 = gettid() openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x26, 0xa, 0x7) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000003280)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) sendmsg$auto_BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x140080e4) sched_setaffinity$auto(r0, 0x4, &(0x7f0000000240)=0x6) prctl$auto(0x6, 0x2, r0, 0x4, 0xd) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, 0x0, 0x0) unshare$auto(0x40000080) ioctl$auto_TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0) close_range$auto(0xffffffffffffffff, 0xa, 0x0) openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, 0x0, 0x101002, 0x0) pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x800) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto_USBDEVFS_BULK(r2, 0xc0185502, &(0x7f0000000200)={0x81, 0xfffffffe, 0x4, 0x0}) 3.124090926s ago: executing program 2 (id=1753): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioctl$auto(0xc8, 0x800454e0, 0x5) sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x28, 0x0, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [@ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_COALESCE_RX_USECS_HIGH={0x8, 0x13, 0x400}]}, 0x28}, 0x1, 0x0, 0x0, 0x44845}, 0x0) adjtimex$auto(&(0x7f0000000280)={0x3, 0x0, 0x1, 0x0, 0x8, 0x1ff, 0x8, 0x0, 0x1000, 0x0, 0xa8a, {0x9d, 0x6}, 0x6, 0x0, 0x10001, 0x6, 0x0, 0x7fffffffffffffff, 0x100000000, 0x6dc, 0x8, 0x4, 0x2}) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r0 = openat$auto_userio_fops_userio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x5, 0x311) socket(0x29, 0x2, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) fcntl$auto(0x3, 0x4, 0xa553) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x2a540, 0x0) io_uring_setup$auto(0xa, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) close_range$auto(0x2, 0xa, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x40, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x400, 0x0) readv$auto(r0, &(0x7f0000000000)={0x0, 0x48}, 0x3) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) r1 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x1f00, &(0x7f0000000100)={0x0, 0xfdef}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 2.230618582s ago: executing program 1 (id=1754): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x1, 0x20009, 0x8, 0xeb1, 0x7f, 0x8000) rseq$auto(0x0, 0xfffffff5, 0x0, 0x5) mmap$auto(0x0, 0x40009, 0x7, 0x9b72, 0x7, 0x28000) r0 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) readv$auto(0x3, &(0x7f0000000600)={0x0, 0x4}, 0x1da) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x40401, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0x4010ae67, 0x38) ioctl$auto_XFS_IOC_FSCOUNTS(r0, 0x80205871, &(0x7f0000000040)={0x2, 0x0, 0x8001, 0x6}) openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) 2.14935234s ago: executing program 2 (id=1755): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) memfd_create$auto(0x0, 0x5) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) socket(0x10, 0x2, 0x0) userfaultfd$auto(0x1) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) socket(0xa, 0x801, 0x84) socket(0xa, 0x3, 0x73) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1, 0x1, 0x1) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socket(0x2, 0x801, 0x106) io_uring_setup$auto(0x5, 0x0) socket(0xa, 0x2, 0x0) socket(0xa, 0x2, 0x3a) io_uring_setup$auto(0x6, 0x0) r0 = socket(0xa, 0x2, 0x88) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r0, @new_prog_fd=0x4, 0x4, @old_prog_fd=r0}, 0xa3) bpf$auto(0x4, &(0x7f0000000040)=@query={@target_ifindex, 0x7, 0x6, 0x9, 0x9, @prog_cnt=0x4, 0x0, 0x80000000, 0xc, 0x9, 0xffffffffffffff66}, 0x7) 2.083562078s ago: executing program 4 (id=1756): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) r0 = socket(0x10, 0x3, 0x15) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c7"], 0x2c}}, 0x41) write$auto(r0, &(0x7f0000000000)='-\x00', 0x2fb) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/vhci_hcd.6/usb21/21-0:1.0/bNumEndpoints\x00', 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) open(&(0x7f0000000040)='./file0\x00', 0x161342, 0x130) open(&(0x7f0000000080)='./file0\x00', 0xeee00, 0x31) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cec18\x00', 0x0, 0x0) socket(0xa, 0x5, 0x0) userfaultfd$auto(0x1) socketpair$auto(0x2, 0x3, 0x7, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x161500, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_CREATE_VM(r1, 0xc048aeca, 0x0) 2.04767206s ago: executing program 3 (id=1757): close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) memfd_create$auto(0x0, 0x4) mmap$auto(0x0, 0x5, 0xefb, 0x8000000008011, 0x3, 0x2000000000) openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, 0x0, 0x582, 0x0) socket(0xa, 0x1, 0x100) socket(0x1e, 0x1, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x101, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3739aae3, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x0, 0x0) r1 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) read$auto_rng_chrdev_ops_core(r1, &(0x7f0000000040)=""/4096, 0xfffffe82) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 1.913365992s ago: executing program 2 (id=1758): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/apparmor/parameters/path_max\x00', 0x80000, 0x0) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x752502, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) ioctl$auto_BLKTRACESETUP2(0xffffffffffffffff, 0xc0481273, 0x0) sigaltstack$auto(0x0, &(0x7f00000003c0)={&(0x7f0000000180)="69cc8d0de6b41511259c289f8eba5cd9efe7b46018e5bfce1b542499858929869392667f4a67831f37b948cef0c793b831f0", 0x9, 0x8}) ppoll$auto(0x0, 0x7f, 0x0, &(0x7f00000001c0)={0x5}, 0x8) mount$auto(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='nfs\x00\x00', 0x200, &(0x7f00000001c0)) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x0) r1 = socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) connect$auto(r1, &(0x7f00000001c0)=@in={0x2, 0x3}, 0x55) setsockopt$auto(r1, 0x6, 0xd, &(0x7f0000000280)='lp\x00h\x85M\xdf\xdc\x83\x8a\xa7\xe4]U(\x01\t=\x1e\x00\x00', 0x4) syz_genetlink_get_family_id$auto_nfc(0x0, r1) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000000), r1) close_range$auto(0x2, 0x8, 0x0) shutdown$auto(0x200000003, 0x2) 1.611231657s ago: executing program 4 (id=1759): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) mmap$auto(0xffffffffffffffff, 0x14020009, 0x5877fc9e, 0xeb2, 0xffffffffffffffff, 0x5) recvmmsg$auto(0x3, 0x0, 0x5, 0x4000, 0x0) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0) setsockopt$auto_SO_TXREHASH(0xffffffffffffffff, 0x3, 0x4a, &(0x7f0000000000)='-\x00', 0x5) mmap$auto(0x100000000, 0x71, 0x4000000000dd, 0x200000000eb9, 0xffffffffffffffff, 0x7fff) socket(0x1d, 0x2, 0x6) io_uring_setup$auto(0x10000002, 0x0) sysfs$auto(0x2, 0x10000000000048, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/dev_snmp6/team_slave_1\x00', 0x0, 0x0) pread64$auto(r1, 0x0, 0x810000003e, 0x8) openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x8, 0x1ff, 0x7c9, 0x26, 0x4909b6f5, 0x1ffde, 0x7, 0xe, 0x20000009, 0x9, 0x3, 0x4, 0x1, 0x1, 0x9, 0x8, 0x10003, 0x80, 0x3, 0x0, 0xa, 0x22000, 0x200, 0xffffff28, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x25, 0x4b2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x80000, 0x0, 0xffff, 0x10, 0x0, 0x8, 0x10000, 0x0, 0x0, 0x0, 0x6, 0xbdcc, 0x0, 0xfffffffffffffffe]}, 0x1fe, 0x9) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r2 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x1892, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, &(0x7f0000000140), 0x2, 0xa505}, 0x800}, 0x7, 0x4008) 772.494367ms ago: executing program 4 (id=1760): mmap$auto(0x0, 0x20009, 0x5, 0xeb2, 0x8, 0x1008000) r0 = socket(0x10, 0x2, 0x0) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid_for_children\x00') sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x7fffffffefff}, 0x7) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r1, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r1) read$auto(r1, &(0x7f0000000100)='nl80211\x00', 0xbe62) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1800"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc8}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x1f00) r2 = openat$auto_supply_map_fops_(0xffffffffffffff9c, &(0x7f00000000c0), 0x440500, 0x0) io_uring_setup$auto(0x7d2, &(0x7f0000000000)={0xbe2, 0x7ad, 0x1000, 0x8, 0x9a, 0xfffffff9, r2, [0x10001, 0x31f, 0xa], {0xb2, 0x4, 0x8, 0x98e, 0x2, 0x39, 0x101, 0x1, 0xd}, {0xfffffffc, 0x4, 0x0, 0x3, 0x2, 0x1000, 0x7fff, 0x0, 0xfffffffffffffffb}}) r3 = open(&(0x7f0000000080)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x1c5) mprotect$auto(0x110c230000, 0x136, 0x2) mremap$auto(0x110c230000, 0x0, 0x101, 0x3, 0x0) pread64$auto(r3, 0x0, 0xe, 0x5) 438.865599ms ago: executing program 2 (id=1761): socket(0x2, 0x1, 0x120) connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) ioprio_get$auto(0x3, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) madvise$auto(0x0, 0xffffffffffff0006, 0x17) bpf$auto(0x0, 0x0, 0x6f4) mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0) read$auto(r0, 0x0, 0x1f40) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x9}, 0x3) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) socket(0x2, 0x1, 0x106) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) ioctl$auto(0xffffffffffffffff, 0x8983, 0x4) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x3, 0x948b, 0x8000000000003, 0x15f4da07, 0x3, 0x3, 0x65, 0x8000001f, 0x1000, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0) 365.039969ms ago: executing program 3 (id=1762): socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e10600"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000db, 0xeb1, 0x400, 0x8000) sysfs$auto(0x2, 0x10000000000002a, 0x81) r0 = io_uring_setup$auto(0x1d48, &(0x7f0000000340)={0x7fffffff, 0x10, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x8, 0x1, 0x80000000, 0x100, 0x83, 0x101, 0x6, 0x8000000000000001}, {0x100, 0x1, 0x52, 0x5, 0x11, 0x101, 0x876c5, 0xc9, 0x3}}) io_uring_register$auto(r0, 0x15, 0x0, 0x9) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0xfffffffffffffffc, 0xe983, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/security/tomoyo/exception_policy\x00', 0xc0201, 0x0) timer_create$auto(0x3, 0x0, &(0x7f0000000140)=0xc) write$auto_tomoyo_operations_securityfs_if(r1, &(0x7f00000000c0)="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", 0x113) mmap$auto(0x1000000072, 0x20009, 0x10000203, 0xeb1, 0xffffffffffffffff, 0x7fff) close_range$auto(0x2, 0x8, 0x0) futex$auto(0x0, 0x0, 0x2948, 0x0, 0x0, 0x5) futex$auto(&(0x7f0000000080)=0x3, 0x2, 0x8, 0x0, &(0x7f0000000100)=0x4, 0x440a48d3) epoll_create$auto(0x3e) ioctl$auto_SNDRV_TIMER_IOCTL_GSTATUS(0xffffffffffffffff, 0xc0505405, &(0x7f0000001cc0)={{0x800, 0x10000, 0x5, 0x591, 0x7}, 0x6, 0x2, 0x6, "58e5218f9678796f35bf2803b1e21a54bddb4e340bb83340b899e51485a51568"}) write$auto(0xca, &(0x7f00000001c0)='\x04\x13\xac\x04\x00\x00\x00\x00\x00\x00\x00\x01\n\xdc\x10\x00\x00\xef\xab\xe1ME:\xab \x87|\xe0Z\x1b\x9eZ\xa8\xff\x92+\xc9\x9fs\xbf\xd8\f\x00\x00\x00\xa5V\b\xf1Ne\xc6l\xd0\xdd7\x96gf\xb2\xa0\xf2cN\x8b\x95\xeb\xf3(\x9eM-\xdc\x84N\xc3\tts%\xe9\xbf<\xf1\xdav\xe0n\x04\xb33\x97\xd5\xb4\x02\x94B\xbb\x995\x1e\xf7@\xd8\xca\x8d\a0 \xfa\x87V\xeb1\xe4M%\xdd\xfd\xf6\x8d\xb4\xc7\x9b\x9d\xf5\xd9^\xcdL@\x0f\xd4\x15F,\xc1\xd1i\xa4f/{\xfa\xd5\n\xe1\x95l[\x91\xbfX\xea2\x1b\x8a\x85\t\x00\x05m\x1e\x9b\xca\xfb\x81\x9d{\x19S\xff\xe4\xd2k\x1b/wJ&\x03+{\x84R\xa8\x92\xad\xec\x1b\xb1\xe9\xa7XUo\x93\xd5\xfb\x94\xc4\xdf\x8e\xdd\x97\xfc\x00\x13\xd6\x80g\x7fR;\x88\xf7bm\x8f\xb5\x89\x1a\xb63\x98\xaa\xcc\xbf\x94\xbf#u\xb9', 0x2b) 228.652924ms ago: executing program 4 (id=1763): mmap$auto(0x0, 0x10005, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socket(0x2, 0x5, 0x0) socket(0x2, 0x801, 0x100) mlockall$auto(0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@in={0x2, 0x4e22, @rand_addr=0x64010101}, 0x1) r0 = socket(0x1d, 0x3, 0x1) getsockopt$auto(r0, 0x65, 0x1, 0x0, 0x0) socket(0x25, 0x1, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) setreuid$auto(0xffffffffffffffff, 0x8) pidfd_open$auto(0x1, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x9, 0x5, 0x3) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) truncate$auto(&(0x7f00000000c0)='./file0\x00', 0x0) getpid() prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0xe4, 0x95f4da0a, 0xfffffffffff7ffff, 0x3, 0x62, 0x80000001, 0xa, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948d, 0x3, 0x15f4da0a, 0x4, 0xffffffffffffff3f, 0x100, 0x8000001f, 0x29, 0x6d3e, 0x6, 0x2, 0x6]}, 0x0) 0s ago: executing program 2 (id=1764): mmap$auto(0x0, 0x30009, 0x4000000000df, 0x4000eb1, 0x401, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) madvise$auto(0x0, 0xffffffffffff0006, 0x17) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) writev$auto(0x3, 0x0, 0x8009) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3) syz_open_procfs$namespace(r0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x81, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x20b42, 0x0) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r1, 0x80111500, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r2 = fcntl$auto(0xffffffffffffffff, 0x400, 0x1) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r2) sendmsg$auto_NL80211_CMD_GET_STATION(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000300)={0xc4, r3, 0x800, 0x70bd29, 0x25dfdbfe, {}, [@NL80211_ATTR_EMA_RNR_ELEMS={0x9c, 0x145, 0x0, 0x1, [@nested={0x8f, 0x7e, 0x0, 0x1, [@typed={0x7, 0x44, 0x0, 0x0, @str='+#\xc4'}, @generic="945c566a6e3ff79d28f251c0352637ae0ef4df4fb5d6055819a377a249cce2be3c127dfde2bb01ba282e17604e05cac2bc14bffd170571a9965c59cb74b9f10157d12a5c588ce962054d486a20751d14b3e8df574f64810d1f14767828b3cd6f89fb5e2fd8719ad36594389e48a7620e19c700b83c25c0", @nested={0x4, 0x1d}, @nested={0x4, 0x3d}, @nested={0x4, 0x14e}]}, @typed={0x8, 0x25, 0x0, 0x0, @u32=0xe}]}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x5}, @NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0x6}, @NL80211_ATTR_FILS_NONCES={0x4}]}, 0xc4}, 0x1, 0x0, 0x0, 0x20000050}, 0x4000005) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) kernel console output (not intermixed with test programs): ][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805b191400: abort rx timeout. Force session deactivation [ 376.040151][ T9732] vhci_hcd: invalid port number 16 [ 376.045344][ T9732] vhci_hcd: invalid port number 16 [ 376.056051][ T9731] netlink: 302 bytes leftover after parsing attributes in process `syz.0.903'. [ 377.065632][ T9741] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.2.896: bg 2: bad block bitmap checksum [ 377.078242][ T9741] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1398 with max blocks 6 with error 74 [ 377.092755][ T9741] EXT4-fs (sda1): This should not happen!! Data will be lost [ 377.092755][ T9741] [ 379.245345][ T9746] Process accounting resumed [ 379.350900][ T9775] random: crng reseeded on system resumption [ 380.451631][ T9787] netlink: 302 bytes leftover after parsing attributes in process `syz.2.906'. [ 380.667232][ T9786] sp0: Synchronizing with TNC [ 380.718650][ T9786] sp0: Found TNC [ 380.904278][ T9798] vhci_hcd: invalid port number 16 [ 380.912009][ T9798] vhci_hcd: invalid port number 16 [ 380.932231][ T9797] __vm_enough_memory: pid: 9797, comm: syz.0.909, bytes: 4398046511104 not enough memory for the allocation [ 381.917832][ T9814] netlink: 16 bytes leftover after parsing attributes in process `syz.2.911'. [ 381.996242][ T9815] netlink: 93 bytes leftover after parsing attributes in process `syz.2.911'. [ 382.678053][ T9828] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1399 with max blocks 5 with error 117 [ 382.694558][ T9828] EXT4-fs (sda1): This should not happen!! Data will be lost [ 382.694558][ T9828] [ 383.867418][ T9843] random: crng reseeded on system resumption [ 384.549328][ T9851] netlink: 'syz.0.919': attribute type 1 has an invalid length. [ 385.887874][ T9868] __vm_enough_memory: pid: 9868, comm: syz.3.923, bytes: 4398046511104 not enough memory for the allocation [ 388.602934][ T9894] FAULT_INJECTION: forcing a failure. [ 388.602934][ T9894] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 388.632702][ T9894] CPU: 1 UID: 0 PID: 9894 Comm: syz.1.931 Not tainted syzkaller #0 PREEMPT(full) [ 388.632745][ T9894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 388.632774][ T9894] Call Trace: [ 388.632786][ T9894] [ 388.632799][ T9894] dump_stack_lvl+0x16c/0x1f0 [ 388.632856][ T9894] should_fail_ex+0x512/0x640 [ 388.632915][ T9894] should_fail_alloc_page+0xe7/0x130 [ 388.632969][ T9894] prepare_alloc_pages+0x3c2/0x610 [ 388.633023][ T9894] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 388.633065][ T9894] ? stack_trace_save+0x8e/0xc0 [ 388.633107][ T9894] ? __pfx_stack_trace_save+0x10/0x10 [ 388.633157][ T9894] ? stack_depot_save_flags+0x29/0x9c0 [ 388.633205][ T9894] ? trace_mm_page_alloc+0x11f/0x1a0 [ 388.633264][ T9894] ? kasan_save_stack+0x42/0x60 [ 388.633301][ T9894] ? kasan_save_stack+0x33/0x60 [ 388.633344][ T9894] ? kasan_save_track+0x14/0x30 [ 388.633382][ T9894] ? __kasan_slab_alloc+0x89/0x90 [ 388.633430][ T9894] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 388.633464][ T9894] ? dup_mmap+0xe80/0x2280 [ 388.633513][ T9894] ? kernel_clone+0xfc/0x930 [ 388.633560][ T9894] ? do_syscall_64+0xcd/0x4b0 [ 388.633604][ T9894] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 388.633653][ T9894] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 388.633693][ T9894] ? policy_nodemask+0xea/0x4e0 [ 388.633748][ T9894] alloc_pages_mpol+0x1fb/0x550 [ 388.633802][ T9894] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 388.633854][ T9894] alloc_pages_noprof+0x131/0x390 [ 388.633895][ T9894] pte_alloc_one+0x1e/0x350 [ 388.633933][ T9894] __pte_alloc+0x6d/0x380 [ 388.633969][ T9894] ? __pfx___pte_alloc+0x10/0x10 [ 388.634006][ T9894] ? _raw_spin_unlock+0x28/0x50 [ 388.634041][ T9894] ? __pmd_alloc+0x64f/0x8b0 [ 388.634084][ T9894] copy_page_range+0x44a1/0x6930 [ 388.634153][ T9894] ? __pfx_copy_page_range+0x10/0x10 [ 388.634184][ T9894] ? mas_store+0x860/0x1030 [ 388.634209][ T9894] ? __pfx___might_resched+0x10/0x10 [ 388.634245][ T9894] ? find_held_lock+0x2b/0x80 [ 388.634280][ T9894] ? __pfx_mas_store+0x10/0x10 [ 388.634306][ T9894] ? __vma_enter_locked+0x163/0x3f0 [ 388.634352][ T9894] dup_mmap+0xe80/0x2280 [ 388.634408][ T9894] ? __pfx_dup_mmap+0x10/0x10 [ 388.634475][ T9894] copy_process+0x3f0c/0x76a0 [ 388.634516][ T9894] ? __pfx___futex_wait+0x10/0x10 [ 388.634546][ T9894] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 388.634598][ T9894] ? __pfx_copy_process+0x10/0x10 [ 388.634643][ T9894] ? futex_private_hash_put+0x176/0x300 [ 388.634696][ T9894] ? futex_private_hash_put+0x18a/0x300 [ 388.634756][ T9894] kernel_clone+0xfc/0x930 [ 388.634823][ T9894] ? __pfx_kernel_clone+0x10/0x10 [ 388.634900][ T9894] __do_sys_clone+0xce/0x120 [ 388.634949][ T9894] ? __pfx___do_sys_clone+0x10/0x10 [ 388.635017][ T9894] ? ksys_mmap_pgoff+0x85/0x5c0 [ 388.635080][ T9894] do_syscall_64+0xcd/0x4b0 [ 388.635137][ T9894] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 388.635170][ T9894] RIP: 0033:0x7f1e8b38eec9 [ 388.635198][ T9894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 388.635231][ T9894] RSP: 002b:00007f1e8c2d0fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 388.635263][ T9894] RAX: ffffffffffffffda RBX: 00007f1e8b5e6090 RCX: 00007f1e8b38eec9 [ 388.635286][ T9894] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020a08200 [ 388.635307][ T9894] RBP: 00007f1e8b411f91 R08: 0000000000000000 R09: 0000000000000000 [ 388.635328][ T9894] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 388.635348][ T9894] R13: 00007f1e8b5e6128 R14: 00007f1e8b5e6090 R15: 00007ffd8bba2478 [ 388.635393][ T9894] [ 389.167719][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 389.174112][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 389.288135][ T9] usb usb38-port5: attempt power cycle [ 389.847887][ T9] usb usb38-port5: unable to enumerate USB device [ 389.856407][ T9891] vhci_hcd: default hub control req: 1f00 v0000 i0000 l0 [ 391.679048][ T9936] netlink: 16 bytes leftover after parsing attributes in process `syz.0.939'. [ 391.762246][ T9936] netlink: 93 bytes leftover after parsing attributes in process `syz.0.939'. getty: ttyS0: read error: Resource temporarily unavailable [ 394.366233][ T9968] netlink: 28 bytes leftover after parsing attributes in process `syz.2.950'. [ 394.519001][ T9968] hsr_slave_0: left promiscuous mode [ 394.596342][ T9968] hsr_slave_1: left promiscuous mode [ 394.742866][ T5859] Bluetooth: hci3: unexpected event 0x35 length: 13 > 6 [ 395.497403][ T9986] netlink: 16 bytes leftover after parsing attributes in process `syz.3.952'. [ 395.554359][ T9986] netlink: 93 bytes leftover after parsing attributes in process `syz.3.952'. [ 395.990718][ T9993] netlink: 8 bytes leftover after parsing attributes in process `syz.0.955'. [ 401.835675][T10063] netlink: 8 bytes leftover after parsing attributes in process `syz.2.971'. [ 401.865617][T10062] can0: slcan on ptm0. [ 402.007448][T10060] can0 (unregistered): slcan off ptm0. [ 403.064101][T10091] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input14 [ 403.242105][T10098] netlink: 8 bytes leftover after parsing attributes in process `syz.1.982'. [ 404.214976][T10094] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15 [ 404.954171][T10123] netlink: 28 bytes leftover after parsing attributes in process `syz.3.975'. [ 405.030835][T10123] hsr_slave_0: left promiscuous mode [ 405.063249][T10123] hsr_slave_1: left promiscuous mode [ 405.500163][ T5859] Bluetooth: hci2: unexpected event 0x35 length: 13 > 6 [ 406.059227][T10142] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input16 [ 406.447750][T10148] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1372 with max blocks 32 with error 117 [ 406.461791][T10148] EXT4-fs (sda1): This should not happen!! Data will be lost [ 406.461791][T10148] [ 406.857902][ T5932] usb usb38-port5: attempt power cycle [ 407.294514][T10162] FAULT_INJECTION: forcing a failure. [ 407.294514][T10162] name failslab, interval 1, probability 0, space 0, times 0 [ 407.353742][T10162] CPU: 0 UID: 0 PID: 10162 Comm: syz.2.987 Not tainted syzkaller #0 PREEMPT(full) [ 407.353789][T10162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 407.353811][T10162] Call Trace: [ 407.353823][T10162] [ 407.353836][T10162] dump_stack_lvl+0x16c/0x1f0 [ 407.353898][T10162] should_fail_ex+0x512/0x640 [ 407.353951][T10162] ? fs_reclaim_acquire+0xae/0x150 [ 407.354006][T10162] should_failslab+0xc2/0x120 [ 407.354058][T10162] kmem_cache_alloc_noprof+0x75/0x6e0 [ 407.354105][T10162] ? __asan_memcpy+0x3c/0x60 [ 407.354143][T10162] ? __kernfs_new_node+0xd2/0x8e0 [ 407.354201][T10162] ? __kernfs_new_node+0xd2/0x8e0 [ 407.354247][T10162] __kernfs_new_node+0xd2/0x8e0 [ 407.354301][T10162] ? __pfx___kernfs_new_node+0x10/0x10 [ 407.354363][T10162] ? find_held_lock+0x2b/0x80 [ 407.354408][T10162] ? kernfs_root+0xee/0x2a0 [ 407.354466][T10162] kernfs_new_node+0x13c/0x1e0 [ 407.354527][T10162] kernfs_create_link+0xcc/0x240 [ 407.354572][T10162] sysfs_do_create_link_sd+0x90/0x140 [ 407.354624][T10162] sysfs_create_link+0x61/0xc0 [ 407.354672][T10162] device_add+0xb14/0x1aa0 [ 407.354723][T10162] ? __pfx_device_add+0x10/0x10 [ 407.354773][T10162] ? __pfx___might_resched+0x10/0x10 [ 407.354815][T10162] ? lockdep_hardirqs_on+0x7c/0x110 [ 407.354883][T10162] __add_disk+0x457/0xf00 [ 407.354940][T10162] add_disk_fwnode+0x13f/0x5d0 [ 407.354994][T10162] loop_add+0x903/0xb70 [ 407.355046][T10162] ? __pfx_loop_add+0x10/0x10 [ 407.355133][T10162] ? find_held_lock+0x2b/0x80 [ 407.355182][T10162] loop_control_ioctl+0x13e/0x630 [ 407.355236][T10162] ? __pfx_loop_control_ioctl+0x10/0x10 [ 407.355295][T10162] ? __pfx_loop_control_ioctl+0x10/0x10 [ 407.355348][T10162] __x64_sys_ioctl+0x18e/0x210 [ 407.355385][T10162] do_syscall_64+0xcd/0x4b0 [ 407.355442][T10162] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 407.355478][T10162] RIP: 0033:0x7fbcb3f8eec9 [ 407.355513][T10162] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 407.355547][T10162] RSP: 002b:00007fbcb4eb8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 407.355580][T10162] RAX: ffffffffffffffda RBX: 00007fbcb41e5fa0 RCX: 00007fbcb3f8eec9 [ 407.355603][T10162] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000006 [ 407.355631][T10162] RBP: 00007fbcb4011f91 R08: 0000000000000000 R09: 0000000000000000 [ 407.355661][T10162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 407.355681][T10162] R13: 00007fbcb41e6038 R14: 00007fbcb41e5fa0 R15: 00007ffc6e58fd08 [ 407.355722][T10162] [ 407.618803][ T5932] usb usb38-port5: unable to enumerate USB device [ 410.173897][T10196] Process accounting paused [ 411.118501][T10216] sysfs_service_op_show: Client not running :-5: [ 413.596708][T10250] bond0: option all_slaves_active: invalid value () [ 413.792058][T10258] serio: Serial port pty6 [ 413.893128][T10247] FAULT_INJECTION: forcing a failure. [ 413.893128][T10247] name failslab, interval 1, probability 0, space 0, times 0 [ 413.976571][T10247] CPU: 1 UID: 0 PID: 10247 Comm: syz.0.1010 Not tainted syzkaller #0 PREEMPT(full) [ 413.976616][T10247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 413.976637][T10247] Call Trace: [ 413.976648][T10247] [ 413.976661][T10247] dump_stack_lvl+0x16c/0x1f0 [ 413.976721][T10247] should_fail_ex+0x512/0x640 [ 413.976776][T10247] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 413.976821][T10247] should_failslab+0xc2/0x120 [ 413.976872][T10247] kmem_cache_alloc_noprof+0x75/0x6e0 [ 413.976913][T10247] ? __proc_create+0x2ce/0x8e0 [ 413.976952][T10247] ? __proc_create+0x2ce/0x8e0 [ 413.976981][T10247] __proc_create+0x2ce/0x8e0 [ 413.977014][T10247] ? __pfx___proc_create+0x10/0x10 [ 413.977063][T10247] proc_mkdir+0x81/0x170 [ 413.977096][T10247] ? __pfx_proc_mkdir+0x10/0x10 [ 413.977128][T10247] ? cache_register_net+0x137/0x5e0 [ 413.977170][T10247] cache_register_net+0x18f/0x5e0 [ 413.977207][T10247] nfsd_idmap_init+0x16e/0x250 [ 413.977252][T10247] ? __pfx_nfsd_net_init+0x10/0x10 [ 413.977284][T10247] nfsd_net_init+0x69/0x3d0 [ 413.977319][T10247] ? __pfx_nfsd_net_init+0x10/0x10 [ 413.977352][T10247] ops_init+0x1df/0x5f0 [ 413.977399][T10247] setup_net+0x100/0x390 [ 413.977431][T10247] ? __pfx_setup_net+0x10/0x10 [ 413.977465][T10247] ? debug_mutex_init+0x37/0x70 [ 413.977515][T10247] copy_net_ns+0x2f8/0x690 [ 413.977556][T10247] create_new_namespaces+0x3ea/0xa90 [ 413.977613][T10247] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 413.977665][T10247] ksys_unshare+0x45b/0xa40 [ 413.977719][T10247] ? __pfx_ksys_unshare+0x10/0x10 [ 413.977774][T10247] ? xfd_validate_state+0x61/0x180 [ 413.977819][T10247] __x64_sys_unshare+0x31/0x40 [ 413.977873][T10247] do_syscall_64+0xcd/0x4b0 [ 413.977930][T10247] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 413.977966][T10247] RIP: 0033:0x7fd31df8eec9 [ 413.977992][T10247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 413.978026][T10247] RSP: 002b:00007fd31ee77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 413.978059][T10247] RAX: ffffffffffffffda RBX: 00007fd31e1e5fa0 RCX: 00007fd31df8eec9 [ 413.978081][T10247] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 413.978101][T10247] RBP: 00007fd31e011f91 R08: 0000000000000000 R09: 0000000000000000 [ 413.978122][T10247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 413.978141][T10247] R13: 00007fd31e1e6038 R14: 00007fd31e1e5fa0 R15: 00007fff7e546758 [ 413.978186][T10247] [ 414.427417][T10262] sp0: Synchronizing with TNC [ 415.126954][ T30] audit: type=1326 audit(4294967401.200:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10269 comm="syz.0.1016" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd31df8eec9 code=0x0 [ 421.901041][T10345] FAULT_INJECTION: forcing a failure. [ 421.901041][T10345] name fail_futex, interval 1, probability 0, space 0, times 0 [ 421.946643][T10345] CPU: 0 UID: 0 PID: 10345 Comm: syz.1.1033 Not tainted syzkaller #0 PREEMPT(full) [ 421.946688][T10345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 421.946709][T10345] Call Trace: [ 421.946720][T10345] [ 421.946733][T10345] dump_stack_lvl+0x16c/0x1f0 [ 421.946796][T10345] should_fail_ex+0x512/0x640 [ 421.946856][T10345] get_futex_key+0x1d0/0x1560 [ 421.946909][T10345] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 421.946966][T10345] ? __pfx_get_futex_key+0x10/0x10 [ 421.947020][T10345] ? blk_finish_plug+0x53/0xa0 [ 421.947056][T10345] ? madvise_do_behavior+0x1f4/0x530 [ 421.947115][T10345] futex_wake+0xea/0x530 [ 421.947152][T10345] ? __pfx___up_read+0x10/0x10 [ 421.947188][T10345] ? __pfx_futex_wake+0x10/0x10 [ 421.947220][T10345] ? madvise_unlock+0x16d/0x220 [ 421.947278][T10345] ? madvise_unlock+0x7c/0x220 [ 421.947337][T10345] do_futex+0x1e3/0x350 [ 421.947407][T10345] ? __pfx_do_futex+0x10/0x10 [ 421.947464][T10345] ? __sys_recvmsg+0x189/0x220 [ 421.947500][T10345] __x64_sys_futex+0x1e0/0x4c0 [ 421.947560][T10345] ? __pfx___x64_sys_futex+0x10/0x10 [ 421.947615][T10345] ? xfd_validate_state+0x61/0x180 [ 421.947661][T10345] do_syscall_64+0xcd/0x4b0 [ 421.947718][T10345] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 421.947753][T10345] RIP: 0033:0x7f1e8b38eec9 [ 421.947781][T10345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 421.947815][T10345] RSP: 002b:00007f1e8c2f20e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 421.947848][T10345] RAX: ffffffffffffffda RBX: 00007f1e8b5e5fa8 RCX: 00007f1e8b38eec9 [ 421.947871][T10345] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1e8b5e5fac [ 421.947893][T10345] RBP: 00007f1e8b5e5fa0 R08: 00007f1e8c2f3000 R09: 0000000000000000 [ 421.947914][T10345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 421.947935][T10345] R13: 00007f1e8b5e6038 R14: 00007ffd8bba2390 R15: 00007ffd8bba2478 [ 421.947978][T10345] [ 423.540156][T10365] sg_read: process 927 (syz.2.1046) changed security contexts after opening file descriptor, this is not allowed. [ 431.702679][T10474] sp0: Synchronizing with TNC [ 433.086956][T10488] zswap: compressor 000 not available [ 433.712844][T10503] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1068: iget: checksum invalid [ 433.734659][T10503] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 433.746723][T10503] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1068: iget: checksum invalid [ 433.770210][T10503] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 433.849822][T10505] ICMPv6: process `syz.2.1067' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 433.866352][T10503] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1068: iget: checksum invalid [ 433.897177][T10503] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 433.908261][T10503] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1068: iget: checksum invalid [ 433.932315][T10503] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 433.943135][T10503] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 433.957133][T10503] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 436.267527][T10521] bond0: option all_slaves_active: invalid value () [ 440.416439][T10583] Process accounting resumed [ 440.535776][T10587] ICMPv6: process `syz.1.1083' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 441.764104][T10608] sysfs_service_op_show: Client not running :-5: [ 443.511346][T10634] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17 [ 443.957584][T10642] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1101'. [ 444.442157][T10637] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18 [ 445.376838][T10660] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1096'. [ 446.598355][T10673] sysfs_service_op_show: Client not running :-5: [ 447.823443][T10690] ubi5: attaching mtd0 [ 447.844362][T10690] ubi5 error: ubi_add_to_av: two LEBs with same sequence number 1 [ 447.859262][T10690] eraseblock attaching information dump: [ 447.874752][T10690] ec 1 [ 447.884897][T10690] pnum 0 [ 447.900505][T10690] lnum 0 [ 447.903856][T10690] scrub 0 [ 447.915412][T10690] sqnum 1 [ 447.919300][T10690] Volume identifier header dump: [ 447.924828][T10690] magic 55424921 [ 447.929086][T10690] version 1 [ 447.932586][T10690] vol_type 1 [ 447.939156][T10690] copy_flag 0 [ 447.943395][T10690] compat 5 [ 447.950065][T10690] vol_id 2147479551 [ 447.955732][T10690] lnum 0 [ 447.960265][T10690] data_size 0 [ 447.963673][T10690] used_ebs 0 [ 447.967256][T10690] data_pad 0 [ 447.974017][T10690] sqnum 1 [ 447.978631][T10690] hdr_crc 65b3bd2d [ 447.994336][T10690] Volume identifier header hexdump: [ 448.161874][T10690] ubi5 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 449.862563][T10714] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input19 [ 450.170581][T10723] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1107'. [ 450.273972][T10716] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input20 [ 450.520283][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 450.538592][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 451.498890][T10735] FAULT_INJECTION: forcing a failure. [ 451.498890][T10735] name failslab, interval 1, probability 0, space 0, times 0 [ 451.618467][T10735] CPU: 0 UID: 0 PID: 10735 Comm: syz.0.1111 Not tainted syzkaller #0 PREEMPT(full) [ 451.618534][T10735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 451.618555][T10735] Call Trace: [ 451.618567][T10735] [ 451.618579][T10735] dump_stack_lvl+0x16c/0x1f0 [ 451.618638][T10735] should_fail_ex+0x512/0x640 [ 451.618690][T10735] ? fs_reclaim_acquire+0xae/0x150 [ 451.618746][T10735] should_failslab+0xc2/0x120 [ 451.618796][T10735] kmem_cache_alloc_noprof+0x75/0x6e0 [ 451.618837][T10735] ? __asan_memcpy+0x3c/0x60 [ 451.618875][T10735] ? __kernfs_new_node+0xd2/0x8e0 [ 451.618933][T10735] ? __kernfs_new_node+0xd2/0x8e0 [ 451.618988][T10735] __kernfs_new_node+0xd2/0x8e0 [ 451.619045][T10735] ? __pfx___kernfs_new_node+0x10/0x10 [ 451.619107][T10735] ? find_held_lock+0x2b/0x80 [ 451.619152][T10735] ? kernfs_root+0xee/0x2a0 [ 451.619211][T10735] kernfs_new_node+0x13c/0x1e0 [ 451.619274][T10735] kernfs_create_link+0xcc/0x240 [ 451.619319][T10735] sysfs_do_create_link_sd+0x90/0x140 [ 451.619372][T10735] sysfs_create_link+0x61/0xc0 [ 451.619420][T10735] __add_disk+0x61e/0xf00 [ 451.619477][T10735] add_disk_fwnode+0x13f/0x5d0 [ 451.619528][T10735] loop_add+0x903/0xb70 [ 451.619581][T10735] ? __pfx_loop_add+0x10/0x10 [ 451.619660][T10735] ? find_held_lock+0x2b/0x80 [ 451.619710][T10735] loop_control_ioctl+0x13e/0x630 [ 451.619763][T10735] ? __pfx_loop_control_ioctl+0x10/0x10 [ 451.619821][T10735] ? __pfx_loop_control_ioctl+0x10/0x10 [ 451.619875][T10735] __x64_sys_ioctl+0x18e/0x210 [ 451.619911][T10735] do_syscall_64+0xcd/0x4b0 [ 451.619976][T10735] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 451.620012][T10735] RIP: 0033:0x7fd31df8eec9 [ 451.620038][T10735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 451.620073][T10735] RSP: 002b:00007fd31ee77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 451.620105][T10735] RAX: ffffffffffffffda RBX: 00007fd31e1e5fa0 RCX: 00007fd31df8eec9 [ 451.620128][T10735] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000006 [ 451.620150][T10735] RBP: 00007fd31e011f91 R08: 0000000000000000 R09: 0000000000000000 [ 451.620171][T10735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 451.620192][T10735] R13: 00007fd31e1e6038 R14: 00007fd31e1e5fa0 R15: 00007fff7e546758 [ 451.620236][T10735] [ 452.398275][T10738] zswap: compressor 000 not available [ 452.751543][T10748] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1114'. [ 455.215519][T10786] blktrace: Concurrent blktraces are not allowed on loop2 [ 458.157419][T10832] random: crng reseeded on system resumption [ 458.806370][T10843] blktrace: Concurrent blktraces are not allowed on loop2 [ 459.630391][T10853] random: crng reseeded on system resumption [ 460.850663][T10870] FAULT_INJECTION: forcing a failure. [ 460.850663][T10870] name fail_futex, interval 1, probability 0, space 0, times 0 [ 460.937989][T10870] CPU: 0 UID: 0 PID: 10870 Comm: syz.3.1140 Not tainted syzkaller #0 PREEMPT(full) [ 460.938036][T10870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 460.938057][T10870] Call Trace: [ 460.938068][T10870] [ 460.938081][T10870] dump_stack_lvl+0x16c/0x1f0 [ 460.938140][T10870] should_fail_ex+0x512/0x640 [ 460.938201][T10870] get_futex_key+0x1d0/0x1560 [ 460.938258][T10870] ? __pfx_get_futex_key+0x10/0x10 [ 460.938323][T10870] futex_wake+0xea/0x530 [ 460.938358][T10870] ? rcu_is_watching+0x12/0xc0 [ 460.938390][T10870] ? __pfx_futex_wake+0x10/0x10 [ 460.938417][T10870] ? kmem_cache_free+0x2d4/0x6c0 [ 460.938446][T10870] ? putname+0x154/0x1a0 [ 460.938485][T10870] do_futex+0x1e3/0x350 [ 460.938521][T10870] ? __pfx_do_futex+0x10/0x10 [ 460.938565][T10870] __x64_sys_futex+0x1e0/0x4c0 [ 460.938603][T10870] ? __x64_sys_openat+0x174/0x210 [ 460.938625][T10870] ? __pfx___x64_sys_futex+0x10/0x10 [ 460.938673][T10870] do_syscall_64+0xcd/0x4b0 [ 460.938712][T10870] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 460.938736][T10870] RIP: 0033:0x7fc22658eec9 [ 460.938754][T10870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 460.938777][T10870] RSP: 002b:00007fc2273cd0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 460.938799][T10870] RAX: ffffffffffffffda RBX: 00007fc2267e6098 RCX: 00007fc22658eec9 [ 460.938815][T10870] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc2267e609c [ 460.938829][T10870] RBP: 00007fc2267e6090 R08: 00007fc2273ef000 R09: 0000000000000000 [ 460.938844][T10870] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000 [ 460.938858][T10870] R13: 00007fc2267e6128 R14: 00007ffef059c430 R15: 00007ffef059c518 [ 460.938895][T10870] [ 463.912977][T10909] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1148'. [ 464.011234][T10910] netlink: 93 bytes leftover after parsing attributes in process `syz.3.1148'. [ 465.025493][T10914] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input21 [ 465.357783][T10916] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1150'. [ 465.363589][T10920] random: crng reseeded on system resumption [ 465.450049][T10915] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input22 [ 465.729710][T10921] Unrecognized hibernate image header format! [ 465.759823][T10921] PM: hibernation: Image mismatch: architecture specific data [ 466.861210][ T30] audit: type=1800 audit(4294967302.280:17): pid=10936 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1153" name="discovery_nqn" dev="configfs" ino=33445 res=0 errno=0 [ 468.077096][T10949] zswap: compressor not available [ 469.450036][T10977] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size [ 471.287573][T10892] Process accounting paused [ 474.339668][T11041] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input23 [ 474.725863][T11048] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1181'. [ 475.092098][T11044] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input24 [ 477.744499][T11086] bond0: Unable to set peer notification delay as MII monitoring is disabled [ 478.469385][T11105] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1186'. [ 481.896968][T11146] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1199'. [ 484.369875][T11181] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 485.869151][T11198] FAULT_INJECTION: forcing a failure. [ 485.869151][T11198] name failslab, interval 1, probability 0, space 0, times 0 [ 485.897559][T11198] CPU: 0 UID: 0 PID: 11198 Comm: syz.2.1209 Not tainted syzkaller #0 PREEMPT(full) [ 485.897607][T11198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 485.897629][T11198] Call Trace: [ 485.897640][T11198] [ 485.897653][T11198] dump_stack_lvl+0x16c/0x1f0 [ 485.897714][T11198] should_fail_ex+0x512/0x640 [ 485.897778][T11198] ? __kmalloc_cache_noprof+0x5f/0x780 [ 485.897820][T11198] should_failslab+0xc2/0x120 [ 485.897872][T11198] __kmalloc_cache_noprof+0x72/0x780 [ 485.897913][T11198] ? kernfs_fop_open+0xa3a/0xda0 [ 485.897958][T11198] ? kernfs_fop_open+0xa3a/0xda0 [ 485.897995][T11198] kernfs_fop_open+0xa3a/0xda0 [ 485.898045][T11198] do_dentry_open+0x97f/0x1530 [ 485.898092][T11198] ? __pfx_kernfs_fop_open+0x10/0x10 [ 485.898140][T11198] vfs_open+0x82/0x3f0 [ 485.898200][T11198] path_openat+0x1de4/0x2cb0 [ 485.898259][T11198] ? __pfx_path_openat+0x10/0x10 [ 485.898315][T11198] do_filp_open+0x20b/0x470 [ 485.898360][T11198] ? __pfx_do_filp_open+0x10/0x10 [ 485.898440][T11198] ? alloc_fd+0x471/0x7d0 [ 485.898491][T11198] do_sys_openat2+0x11b/0x1d0 [ 485.898524][T11198] ? __pfx_do_sys_openat2+0x10/0x10 [ 485.898574][T11198] __x64_sys_openat+0x174/0x210 [ 485.898609][T11198] ? __pfx___x64_sys_openat+0x10/0x10 [ 485.898661][T11198] do_syscall_64+0xcd/0x4b0 [ 485.898719][T11198] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 485.898762][T11198] RIP: 0033:0x7fbcb3f8eec9 [ 485.898790][T11198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 485.898825][T11198] RSP: 002b:00007fbcb4eb8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 485.898858][T11198] RAX: ffffffffffffffda RBX: 00007fbcb41e5fa0 RCX: 00007fbcb3f8eec9 [ 485.898882][T11198] RDX: 0000000000004400 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 485.898904][T11198] RBP: 00007fbcb4011f91 R08: 0000000000000000 R09: 0000000000000000 [ 485.898926][T11198] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 485.898947][T11198] R13: 00007fbcb41e6038 R14: 00007fbcb41e5fa0 R15: 00007ffc6e58fd08 [ 485.898992][T11198] [ 489.009113][T11240] can0: slcan on pty233. [ 489.099333][T11238] can0 (unregistered): slcan off pty233. [ 489.348079][ T5849] usb usb38-port5: attempt power cycle [ 489.938011][ T5849] usb usb38-port5: unable to enumerate USB device [ 490.902632][T11263] bond0: Unable to set peer notification delay as MII monitoring is disabled [ 491.026383][T11269] zswap: compressor not available [ 491.438033][T11265] bond0: option all_slaves_active: invalid value () [ 491.999567][T11289] sd 0:0:1:0: PR command failed: 1026 [ 492.005201][T11289] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 492.031948][T11289] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 492.484389][T11299] netlink: 'syz.0.1230': attribute type 15 has an invalid length. [ 492.532816][T11299] netlink: 252 bytes leftover after parsing attributes in process `syz.0.1230'. [ 492.590879][T11300] netlink: 'syz.0.1230': attribute type 15 has an invalid length. [ 492.618476][T11300] netlink: 252 bytes leftover after parsing attributes in process `syz.0.1230'. [ 492.901907][T11303] random: crng reseeded on system resumption [ 494.502886][T11324] FAULT_INJECTION: forcing a failure. [ 494.502886][T11324] name failslab, interval 1, probability 0, space 0, times 0 [ 494.516430][T11324] CPU: 0 UID: 0 PID: 11324 Comm: syz.1.1244 Not tainted syzkaller #0 PREEMPT(full) [ 494.516478][T11324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 494.516499][T11324] Call Trace: [ 494.516509][T11324] [ 494.516522][T11324] dump_stack_lvl+0x16c/0x1f0 [ 494.516580][T11324] should_fail_ex+0x512/0x640 [ 494.516632][T11324] ? __kmalloc_cache_noprof+0x5f/0x780 [ 494.516673][T11324] should_failslab+0xc2/0x120 [ 494.516725][T11324] __kmalloc_cache_noprof+0x72/0x780 [ 494.516763][T11324] ? cgroup_file_open+0x93/0x330 [ 494.516807][T11324] ? cgroup_file_open+0x93/0x330 [ 494.516843][T11324] cgroup_file_open+0x93/0x330 [ 494.516879][T11324] ? __pfx_cgroup_file_open+0x10/0x10 [ 494.516920][T11324] kernfs_fop_open+0x8c9/0xda0 [ 494.516962][T11324] do_dentry_open+0x97f/0x1530 [ 494.517006][T11324] ? __pfx_kernfs_fop_open+0x10/0x10 [ 494.517063][T11324] vfs_open+0x82/0x3f0 [ 494.517122][T11324] path_openat+0x1de4/0x2cb0 [ 494.517176][T11324] ? __pfx_path_openat+0x10/0x10 [ 494.517229][T11324] do_filp_open+0x20b/0x470 [ 494.517271][T11324] ? __pfx_do_filp_open+0x10/0x10 [ 494.517344][T11324] ? alloc_fd+0x471/0x7d0 [ 494.517394][T11324] do_sys_openat2+0x11b/0x1d0 [ 494.517426][T11324] ? __pfx_do_sys_openat2+0x10/0x10 [ 494.517475][T11324] __x64_sys_openat+0x174/0x210 [ 494.517507][T11324] ? __pfx___x64_sys_openat+0x10/0x10 [ 494.517558][T11324] do_syscall_64+0xcd/0x4b0 [ 494.517616][T11324] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 494.517651][T11324] RIP: 0033:0x7f1e8b38eec9 [ 494.517678][T11324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 494.517712][T11324] RSP: 002b:00007f1e8c2f2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 494.517743][T11324] RAX: ffffffffffffffda RBX: 00007f1e8b5e5fa0 RCX: 00007f1e8b38eec9 [ 494.517766][T11324] RDX: 0000000000004400 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 494.517788][T11324] RBP: 00007f1e8b411f91 R08: 0000000000000000 R09: 0000000000000000 [ 494.517807][T11324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 494.517826][T11324] R13: 00007f1e8b5e6038 R14: 00007f1e8b5e5fa0 R15: 00007ffd8bba2478 [ 494.517869][T11324] [ 495.001364][T11333] bond0: option all_slaves_active: invalid value () [ 495.144690][ T30] audit: type=1804 audit(4294967330.560:18): pid=11338 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1238" name="/newroot/307/file0" dev="tmpfs" ino=1618 res=1 errno=0 [ 496.449842][ T4196] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1398 with max blocks 6 with error 117 [ 496.574261][ T4196] EXT4-fs (sda1): This should not happen!! Data will be lost [ 496.574261][ T4196] [ 498.707797][T11399] FAULT_INJECTION: forcing a failure. [ 498.707797][T11399] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 498.753237][T11399] CPU: 0 UID: 0 PID: 11399 Comm: syz.1.1253 Not tainted syzkaller #0 PREEMPT(full) [ 498.753283][T11399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 498.753311][T11399] Call Trace: [ 498.753322][T11399] [ 498.753334][T11399] dump_stack_lvl+0x16c/0x1f0 [ 498.753390][T11399] should_fail_ex+0x512/0x640 [ 498.753446][T11399] should_fail_alloc_page+0xe7/0x130 [ 498.753498][T11399] prepare_alloc_pages+0x3c2/0x610 [ 498.753556][T11399] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 498.753613][T11399] ? find_held_lock+0x2b/0x80 [ 498.753655][T11399] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 498.753699][T11399] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 498.753749][T11399] ? is_bpf_text_address+0x94/0x1a0 [ 498.753808][T11399] ? unwind_get_return_address+0x59/0xa0 [ 498.753852][T11399] ? arch_stack_walk+0xa6/0x100 [ 498.753899][T11399] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 498.753939][T11399] ? policy_nodemask+0xea/0x4e0 [ 498.753991][T11399] alloc_pages_mpol+0x1fb/0x550 [ 498.754040][T11399] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 498.754101][T11399] alloc_pages_noprof+0x131/0x390 [ 498.754174][T11399] __pud_alloc+0x3b/0x6b0 [ 498.754232][T11399] __handle_mm_fault+0x1394/0x2aa0 [ 498.754269][T11399] ? mt_find+0x3e2/0xa20 [ 498.754311][T11399] ? __pfx___handle_mm_fault+0x10/0x10 [ 498.754378][T11399] handle_mm_fault+0x589/0xd10 [ 498.754421][T11399] __get_user_pages+0x54e/0x3530 [ 498.754480][T11399] ? __pfx_validate_mm+0x10/0x10 [ 498.754517][T11399] ? __pfx___get_user_pages+0x10/0x10 [ 498.754578][T11399] get_user_pages_remote+0x243/0xab0 [ 498.754635][T11399] ? __pfx_get_user_pages_remote+0x10/0x10 [ 498.754681][T11399] ? __pfx_vma_link+0x10/0x10 [ 498.754732][T11399] get_arg_page+0xf4/0x310 [ 498.754767][T11399] ? __pfx_get_arg_page+0x10/0x10 [ 498.754801][T11399] ? up_write+0x1b2/0x520 [ 498.754842][T11399] copy_string_kernel+0x182/0x520 [ 498.754887][T11399] do_execveat_common.isra.0+0x2ed/0x610 [ 498.754933][T11399] __x64_sys_execve+0x8e/0xb0 [ 498.754973][T11399] do_syscall_64+0xcd/0x4b0 [ 498.755025][T11399] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 498.755057][T11399] RIP: 0033:0x7f1e8b38eec9 [ 498.755082][T11399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 498.755114][T11399] RSP: 002b:00007f1e8c2f2038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 498.755143][T11399] RAX: ffffffffffffffda RBX: 00007f1e8b5e5fa0 RCX: 00007f1e8b38eec9 [ 498.755165][T11399] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000 [ 498.755185][T11399] RBP: 00007f1e8b411f91 R08: 0000000000000000 R09: 0000000000000000 [ 498.755204][T11399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 498.755223][T11399] R13: 00007f1e8b5e6038 R14: 00007f1e8b5e5fa0 R15: 00007ffd8bba2478 [ 498.755264][T11399] [ 499.990868][T11410] nbd: socks must be embedded in a SOCK_ITEM attr [ 500.294298][ T30] audit: type=1804 audit(4294985679.717:19): pid=11417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1257" name="/newroot/sys/kernel/debug/tracing/set_event" dev="tracefs" ino=14 res=1 errno=0 [ 500.712285][T11417] zswap: compressor not available [ 501.357992][T11403] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 501.420984][T11402] Process accounting resumed [ 502.220157][ T30] audit: type=1800 audit(4294985681.637:20): pid=11446 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1260" name="features" dev="configfs" ino=35497 res=0 errno=0 [ 502.991409][T11455] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input25 [ 503.169441][T11456] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input26 [ 503.394578][T11455] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1264'. [ 503.452632][T11451] usb usb15: usbfs: process 11451 (syz.0.1262) did not claim interface 0 before use [ 503.473081][T11458] binder: 11452:11458 ioctl c0306201 200000000000 returned -11 [ 506.702442][T11511] Invalid ELF header magic: != ELF [ 507.421882][T11519] FAULT_INJECTION: forcing a failure. [ 507.421882][T11519] name failslab, interval 1, probability 0, space 0, times 0 [ 507.435058][T11519] CPU: 0 UID: 0 PID: 11519 Comm: syz.2.1277 Not tainted syzkaller #0 PREEMPT(full) [ 507.435100][T11519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 507.435120][T11519] Call Trace: [ 507.435131][T11519] [ 507.435142][T11519] dump_stack_lvl+0x16c/0x1f0 [ 507.435198][T11519] should_fail_ex+0x512/0x640 [ 507.435267][T11519] ? __kmalloc_cache_noprof+0x5f/0x780 [ 507.435307][T11519] should_failslab+0xc2/0x120 [ 507.435356][T11519] __kmalloc_cache_noprof+0x72/0x780 [ 507.435393][T11519] ? snd_card_file_add+0x52/0x340 [ 507.435434][T11519] ? snd_card_file_add+0x52/0x340 [ 507.435467][T11519] snd_card_file_add+0x52/0x340 [ 507.435518][T11519] snd_pcm_oss_open+0x1cf/0x1400 [ 507.435552][T11519] ? lockdep_hardirqs_on+0x7c/0x110 [ 507.435603][T11519] ? find_held_lock+0x2b/0x80 [ 507.435647][T11519] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 507.435684][T11519] ? __lock_acquire+0xb97/0x1ce0 [ 507.435742][T11519] ? __lock_acquire+0xb97/0x1ce0 [ 507.435800][T11519] ? do_raw_spin_lock+0x12c/0x2b0 [ 507.435841][T11519] ? soundcore_open+0x35a/0x580 [ 507.435891][T11519] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 507.435927][T11519] soundcore_open+0x40c/0x580 [ 507.435980][T11519] ? __pfx_soundcore_open+0x10/0x10 [ 507.436029][T11519] chrdev_open+0x231/0x6a0 [ 507.436073][T11519] ? __pfx_apparmor_file_open+0x10/0x10 [ 507.436126][T11519] ? __pfx_chrdev_open+0x10/0x10 [ 507.436173][T11519] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 507.436222][T11519] do_dentry_open+0x97f/0x1530 [ 507.436266][T11519] ? __pfx_chrdev_open+0x10/0x10 [ 507.436320][T11519] vfs_open+0x82/0x3f0 [ 507.436376][T11519] path_openat+0x1de4/0x2cb0 [ 507.436431][T11519] ? __pfx_path_openat+0x10/0x10 [ 507.436496][T11519] do_filp_open+0x20b/0x470 [ 507.436539][T11519] ? __pfx_do_filp_open+0x10/0x10 [ 507.436608][T11519] ? alloc_fd+0x471/0x7d0 [ 507.436657][T11519] do_sys_openat2+0x11b/0x1d0 [ 507.436689][T11519] ? __pfx_do_sys_openat2+0x10/0x10 [ 507.436736][T11519] __x64_sys_openat+0x174/0x210 [ 507.436769][T11519] ? __pfx___x64_sys_openat+0x10/0x10 [ 507.436819][T11519] do_syscall_64+0xcd/0x4b0 [ 507.436876][T11519] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 507.436910][T11519] RIP: 0033:0x7fbcb3f8eec9 [ 507.436937][T11519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 507.436970][T11519] RSP: 002b:00007fbcb4eb8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 507.437001][T11519] RAX: ffffffffffffffda RBX: 00007fbcb41e5fa0 RCX: 00007fbcb3f8eec9 [ 507.437025][T11519] RDX: 0000000000000801 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 507.437046][T11519] RBP: 00007fbcb4011f91 R08: 0000000000000000 R09: 0000000000000000 [ 507.437068][T11519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 507.437087][T11519] R13: 00007fbcb41e6038 R14: 00007fbcb41e5fa0 R15: 00007ffc6e58fd08 [ 507.437129][T11519] [ 507.841436][T11526] sd 0:0:1:0: PR command failed: 1026 [ 507.896724][T11526] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 507.903486][T11526] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 508.792565][T11537] netlink: 'syz.2.1281': attribute type 15 has an invalid length. [ 508.880875][T11537] netlink: 252 bytes leftover after parsing attributes in process `syz.2.1281'. [ 508.957831][T11545] netlink: 'syz.2.1281': attribute type 15 has an invalid length. [ 508.986314][T11545] netlink: 252 bytes leftover after parsing attributes in process `syz.2.1281'. [ 509.034214][T11530] zswap: compressor not available [ 511.190608][T11578] sd 0:0:1:0: PR command failed: 1026 [ 511.196199][T11578] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 511.267717][T11578] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 511.417807][T11581] FAULT_INJECTION: forcing a failure. [ 511.417807][T11581] name failslab, interval 1, probability 0, space 0, times 0 [ 511.446725][T11581] CPU: 0 UID: 0 PID: 11581 Comm: syz.2.1289 Not tainted syzkaller #0 PREEMPT(full) [ 511.446770][T11581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 511.446790][T11581] Call Trace: [ 511.446800][T11581] [ 511.446813][T11581] dump_stack_lvl+0x16c/0x1f0 [ 511.446869][T11581] should_fail_ex+0x512/0x640 [ 511.446921][T11581] ? fs_reclaim_acquire+0xae/0x150 [ 511.446974][T11581] should_failslab+0xc2/0x120 [ 511.447024][T11581] __kmalloc_noprof+0xdd/0x880 [ 511.447056][T11581] ? lockdep_init_map_type+0x5c/0x280 [ 511.447088][T11581] ? tomoyo_open_control+0x51f/0xa30 [ 511.447156][T11581] ? tomoyo_open_control+0x51f/0xa30 [ 511.447204][T11581] tomoyo_open_control+0x51f/0xa30 [ 511.447259][T11581] do_dentry_open+0x97f/0x1530 [ 511.447305][T11581] ? __pfx_tomoyo_open+0x10/0x10 [ 511.447357][T11581] vfs_open+0x82/0x3f0 [ 511.447416][T11581] path_openat+0x1de4/0x2cb0 [ 511.447470][T11581] ? __pfx_path_openat+0x10/0x10 [ 511.447514][T11581] ? irqentry_exit+0x3b/0x90 [ 511.447569][T11581] do_filp_open+0x20b/0x470 [ 511.447612][T11581] ? __pfx_do_filp_open+0x10/0x10 [ 511.447685][T11581] ? alloc_fd+0x471/0x7d0 [ 511.447736][T11581] do_sys_openat2+0x11b/0x1d0 [ 511.447767][T11581] ? __pfx_do_sys_openat2+0x10/0x10 [ 511.447825][T11581] __x64_sys_openat+0x174/0x210 [ 511.447859][T11581] ? __pfx___x64_sys_openat+0x10/0x10 [ 511.447909][T11581] do_syscall_64+0xcd/0x4b0 [ 511.447964][T11581] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 511.447999][T11581] RIP: 0033:0x7fbcb3f8eec9 [ 511.448026][T11581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 511.448059][T11581] RSP: 002b:00007fbcb4eb8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 511.448092][T11581] RAX: ffffffffffffffda RBX: 00007fbcb41e5fa0 RCX: 00007fbcb3f8eec9 [ 511.448115][T11581] RDX: 00000000000c0802 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 511.448148][T11581] RBP: 00007fbcb4011f91 R08: 0000000000000000 R09: 0000000000000000 [ 511.448169][T11581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 511.448189][T11581] R13: 00007fbcb41e6038 R14: 00007fbcb41e5fa0 R15: 00007ffc6e58fd08 [ 511.448233][T11581] [ 511.959963][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 511.968243][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 512.544694][T11606] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1294'. [ 512.565307][T11606] netlink: 'syz.2.1294': attribute type 1 has an invalid length. [ 512.594083][T11606] netlink: 'syz.2.1294': attribute type 6 has an invalid length. [ 512.710464][ T30] audit: type=1804 audit(4294985692.137:21): pid=11602 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1292" name="/newroot/335/file0" dev="tmpfs" ino=1771 res=1 errno=0 [ 515.957973][T11621] kexec: Could not allocate control_code_buffer [ 516.708045][ T30] audit: type=1800 audit(4294985696.127:22): pid=11656 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1302" name="features" dev="configfs" ino=36613 res=0 errno=0 [ 517.717004][T11666] zswap: compressor not available [ 518.185972][T11674] can0: slcan on pty233. [ 518.349341][T11673] can0 (unregistered): slcan off pty233. [ 518.429494][ T10] usb usb38-port5: attempt power cycle [ 518.599986][T11691] vivid-007: ================= START STATUS ================= [ 518.631456][T11691] vivid-007: Generate PTS: true [ 518.666836][T11691] vivid-007: Generate SCR: true [ 518.672039][T11691] tpg source WxH: 320x240 (Y'CbCr) [ 518.700709][T11691] tpg field: 1 [ 518.704238][T11691] tpg crop: (0,0)/320x240 [ 518.723020][T11691] tpg compose: (0,0)/320x240 [ 518.733141][T11691] tpg colorspace: 8 [ 518.751464][T11691] tpg transfer function: 0/0 [ 518.760694][T11691] tpg Y'CbCr encoding: 0/0 [ 518.768130][T11691] tpg quantization: 0/0 [ 518.775402][T11691] tpg RGB range: 0/2 [ 518.785770][T11691] vivid-007: ================== END STATUS ================== [ 519.018087][ T10] usb usb38-port5: unable to enumerate USB device [ 519.449519][T11714] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1313'. [ 519.479050][T11714] netlink: 354 bytes leftover after parsing attributes in process `syz.0.1313'. [ 520.099970][T11720] binder: 11719:11720 ioctl 5380 2000000000c0 returned -22 [ 520.240975][T11720] sd 0:0:1:0: PR command failed: 1026 [ 520.269719][T11720] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 520.292393][T11720] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 523.024689][T11770] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 524.471005][T11793] FAULT_INJECTION: forcing a failure. [ 524.471005][T11793] name failslab, interval 1, probability 0, space 0, times 0 [ 524.486156][T11793] CPU: 0 UID: 0 PID: 11793 Comm: syz.0.1324 Not tainted syzkaller #0 PREEMPT(full) [ 524.486210][T11793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 524.486230][T11793] Call Trace: [ 524.486240][T11793] [ 524.486256][T11793] dump_stack_lvl+0x16c/0x1f0 [ 524.486313][T11793] should_fail_ex+0x512/0x640 [ 524.486365][T11793] ? __kmalloc_cache_noprof+0x5f/0x780 [ 524.486407][T11793] should_failslab+0xc2/0x120 [ 524.486463][T11793] __kmalloc_cache_noprof+0x72/0x780 [ 524.486498][T11793] ? net_alloc_generic+0x1e/0x70 [ 524.486526][T11793] ? copy_net_ns+0xe9/0x690 [ 524.486557][T11793] ? copy_net_ns+0x136/0x690 [ 524.486599][T11793] ? copy_net_ns+0x136/0x690 [ 524.486630][T11793] copy_net_ns+0x136/0x690 [ 524.486663][T11793] ? copy_cgroup_ns+0x71/0x6b0 [ 524.486711][T11793] create_new_namespaces+0x3ea/0xa90 [ 524.486767][T11793] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 524.486817][T11793] ksys_unshare+0x45b/0xa40 [ 524.486868][T11793] ? __pfx_ksys_unshare+0x10/0x10 [ 524.486924][T11793] ? syscall_user_dispatch+0x78/0x140 [ 524.486971][T11793] __x64_sys_unshare+0x31/0x40 [ 524.487023][T11793] do_syscall_64+0xcd/0x4b0 [ 524.487079][T11793] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 524.487113][T11793] RIP: 0033:0x7fd31df8eec9 [ 524.487138][T11793] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 524.487171][T11793] RSP: 002b:00007fd31ee35038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 524.487210][T11793] RAX: ffffffffffffffda RBX: 00007fd31e1e6180 RCX: 00007fd31df8eec9 [ 524.487232][T11793] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 524.487253][T11793] RBP: 00007fd31e011f91 R08: 0000000000000000 R09: 0000000000000000 [ 524.487274][T11793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 524.487294][T11793] R13: 00007fd31e1e6218 R14: 00007fd31e1e6180 R15: 00007fff7e546758 [ 524.487338][T11793] [ 524.851453][ T30] audit: type=1800 audit(4294985704.277:23): pid=11796 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1323" name="features" dev="configfs" ino=37910 res=0 errno=0 [ 525.976314][T11805] netlink: 268 bytes leftover after parsing attributes in process `syz.3.1327'. [ 526.024330][T11805] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1327: iget: checksum invalid [ 526.038540][T11805] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 526.050279][T11805] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1327: iget: checksum invalid [ 526.061951][T11805] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 526.072918][T11805] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1327: iget: checksum invalid [ 526.117419][T11809] program syz.2.1328 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 526.159023][T11805] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 526.170282][T11805] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1327: iget: checksum invalid [ 526.190832][T11805] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 526.202747][T11805] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 526.240457][T11805] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 528.356006][T11836] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 529.714459][T11860] Invalid ELF header magic: != ELF [ 529.765359][T11863] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input27 [ 529.934058][T11865] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1338: iget: checksum invalid [ 529.967394][T11865] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 529.990381][T11865] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1338: iget: checksum invalid [ 530.002308][T11865] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 530.017455][T11865] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1338: iget: checksum invalid [ 530.085042][T11865] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 530.100336][T11865] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1338: iget: checksum invalid [ 530.115939][T11865] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 530.137730][T11865] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 530.148351][T11865] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 530.371435][ T30] audit: type=1800 audit(4294985709.797:24): pid=11867 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1336" name="features" dev="configfs" ino=37370 res=0 errno=0 [ 531.349743][T11892] XFS: Clearing xfsstats [ 532.019076][T11880] Process accounting paused [ 532.328126][ T30] audit: type=1400 audit(4294985711.737:25): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=11900 comm="syz.0.1345" [ 533.197457][T11922] random: crng reseeded on system resumption [ 533.473739][T11928] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1351'. [ 533.523918][T11928] bridge_slave_1: left allmulticast mode [ 533.531155][T11928] bridge_slave_1: left promiscuous mode [ 533.542327][T11925] Unrecognized hibernate image header format! [ 533.553025][T11925] PM: hibernation: Image mismatch: architecture specific data [ 533.566714][T11928] bridge0: port 2(bridge_slave_1) entered disabled state [ 533.596632][T11928] bridge_slave_0: left allmulticast mode [ 533.603374][T11928] bridge_slave_0: left promiscuous mode [ 533.635154][T11928] bridge0: port 1(bridge_slave_0) entered disabled state [ 533.952267][T11932] : Can't lookup blockdev [ 534.049617][ T30] audit: type=1800 audit(4294985713.467:26): pid=11934 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1354" name="features" dev="configfs" ino=37553 res=0 errno=0 [ 534.284240][ T1115] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1373 with max blocks 31 with error 117 [ 534.336280][ T1115] EXT4-fs (sda1): This should not happen!! Data will be lost [ 534.336280][ T1115] [ 537.634434][T11989] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 539.399649][T12015] syz.1.1373: vmalloc error: size 24576, failed to allocate pages, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 539.416410][T12015] CPU: 1 UID: 0 PID: 12015 Comm: syz.1.1373 Not tainted syzkaller #0 PREEMPT(full) [ 539.416453][T12015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 539.416473][T12015] Call Trace: [ 539.416484][T12015] [ 539.416495][T12015] dump_stack_lvl+0x16c/0x1f0 [ 539.416552][T12015] warn_alloc+0x248/0x3a0 [ 539.416592][T12015] ? __pfx_warn_alloc+0x10/0x10 [ 539.416628][T12015] ? alloc_pages_mpol+0x25a/0x550 [ 539.416672][T12015] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 539.416711][T12015] ? __pfx_alloc_pages_bulk_mempolicy_noprof+0x10/0x10 [ 539.416743][T12015] ? __kmalloc_node_noprof+0x364/0x8a0 [ 539.416793][T12015] ? __get_vm_area_node+0x208/0x330 [ 539.416843][T12015] __vmalloc_node_range_noprof+0x119b/0x1480 [ 539.416903][T12015] ? kernel_clone+0xfc/0x930 [ 539.416952][T12015] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 539.417004][T12015] ? rcu_is_watching+0x12/0xc0 [ 539.417042][T12015] ? kernel_clone+0xfc/0x930 [ 539.417079][T12015] __vmalloc_node_noprof+0xad/0xf0 [ 539.417122][T12015] ? kernel_clone+0xfc/0x930 [ 539.417164][T12015] copy_process+0x2c77/0x76a0 [ 539.417203][T12015] ? __pfx___futex_wait+0x10/0x10 [ 539.417245][T12015] ? __pfx_copy_process+0x10/0x10 [ 539.417283][T12015] ? futex_private_hash_put+0x176/0x300 [ 539.417327][T12015] ? futex_private_hash_put+0x18a/0x300 [ 539.417373][T12015] kernel_clone+0xfc/0x930 [ 539.417414][T12015] ? __pfx_kernel_clone+0x10/0x10 [ 539.417475][T12015] __do_sys_clone+0xce/0x120 [ 539.417514][T12015] ? __pfx___do_sys_clone+0x10/0x10 [ 539.417573][T12015] ? xfd_validate_state+0x61/0x180 [ 539.417597][T12015] ? __pfx_do_writev+0x10/0x10 [ 539.417640][T12015] do_syscall_64+0xcd/0x4b0 [ 539.417685][T12015] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 539.417730][T12015] RIP: 0033:0x7f1e8b38eec9 [ 539.417754][T12015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 539.417789][T12015] RSP: 002b:00007f1e8c2f2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 539.417816][T12015] RAX: ffffffffffffffda RBX: 00007f1e8b5e5fa0 RCX: 00007f1e8b38eec9 [ 539.417836][T12015] RDX: 0000000000000000 RSI: 0000000100000000 RDI: 0000000000000007 [ 539.417853][T12015] RBP: 00007f1e8b411f91 R08: 0000000000000006 R09: 0000000000000000 [ 539.417872][T12015] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000 [ 539.417888][T12015] R13: 00007f1e8b5e6038 R14: 00007f1e8b5e5fa0 R15: 00007ffd8bba2478 [ 539.417923][T12015] [ 539.809846][T12015] Mem-Info: [ 539.813052][T12015] active_anon:14969 inactive_anon:10 isolated_anon:0 [ 539.813052][T12015] active_file:9508 inactive_file:60011 isolated_file:0 [ 539.813052][T12015] unevictable:768 dirty:628 writeback:0 [ 539.813052][T12015] slab_reclaimable:11434 slab_unreclaimable:93916 [ 539.813052][T12015] mapped:28154 shmem:3147 pagetables:1159 [ 539.813052][T12015] sec_pagetables:0 bounce:0 [ 539.813052][T12015] kernel_misc_reclaimable:0 [ 539.813052][T12015] free:1316989 free_pcp:1229 free_cma:0 [ 539.962708][T12015] Node 0 active_anon:65204kB inactive_anon:40kB active_file:39616kB inactive_file:239856kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:117588kB dirty:2508kB writeback:0kB shmem:16412kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11320kB pagetables:4472kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 540.037836][T12015] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:188kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:136kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 540.131350][T12015] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 540.166604][T12015] lowmem_reserve[]: 0 2488 2488 2488 2488 [ 540.166901][T12024] netlink: 25 bytes leftover after parsing attributes in process `syz.3.1374'. [ 540.172582][T12015] Node 0 DMA32 free:1324244kB boost:0kB min:34152kB low:42688kB high:51224kB reserved_highatomic:0KB free_highatomic:0KB active_anon:68544kB inactive_anon:36kB active_file:39668kB inactive_file:239856kB unevictable:1536kB writepending:2576kB zspages:0kB present:3129332kB managed:2548148kB mlocked:0kB bounce:0kB free_pcp:7084kB local_pcp:3336kB free_cma:0kB [ 540.243262][T12015] lowmem_reserve[]: 0 0 0 0 0 [ 540.249461][T12015] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:108kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 540.297254][T12015] lowmem_reserve[]: 0 0 0 0 0 [ 540.302348][T12015] Node 1 Normal free:3916232kB boost:0kB min:55748kB low:69684kB high:83620kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:188kB unevictable:1536kB writepending:4kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 540.386571][T12015] lowmem_reserve[]: 0 0 0 0 0 [ 540.411633][T12015] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 540.449326][T12015] Node 0 DMA32: 146*4kB (UME) 451*8kB (UME) 715*16kB (UME) 1101*32kB (UME) 657*64kB (UME) 450*128kB (UME) 264*256kB (UM) 88*512kB (ME) 63*1024kB (UME) 23*2048kB (UME) 231*4096kB (UM) = 1320944kB [ 540.546493][T12015] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 540.576501][T12015] Node 1 Normal: 162*4kB (UME) 62*8kB (UME) 47*16kB (UME) 235*32kB (UME) 102*64kB (UME) 31*128kB (UME) 12*256kB (UME) 8*512kB (UME) 6*1024kB (UME) 4*2048kB (UME) 946*4096kB (M) = 3916232kB [ 540.630749][T12015] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 540.655813][T12015] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 540.686573][T12015] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 540.696208][T12015] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 540.746346][T12015] 76847 total pagecache pages [ 540.751262][T12015] 5 pages in swap cache [ 540.755545][T12015] Free swap = 124976kB [ 540.763452][T12015] Total swap = 124996kB [ 540.770226][T12015] 2097051 pages RAM [ 540.774102][T12015] 0 pages HighMem/MovableOnly [ 540.798083][T12015] 428372 pages reserved [ 540.802359][T12015] 0 pages cma reserved [ 542.712259][T12063] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1385'. [ 543.962413][T12084] : Can't lookup blockdev [ 544.296555][ T30] audit: type=1800 audit(4294985723.707:27): pid=12083 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1389" name="features" dev="configfs" ino=38549 res=0 errno=0 [ 544.451945][T12087] program syz.1.1390 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 545.873709][T12106] FAULT_INJECTION: forcing a failure. [ 545.873709][T12106] name failslab, interval 1, probability 0, space 0, times 0 [ 545.893314][T12106] CPU: 0 UID: 0 PID: 12106 Comm: syz.1.1395 Not tainted syzkaller #0 PREEMPT(full) [ 545.893346][T12106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 545.893361][T12106] Call Trace: [ 545.893368][T12106] [ 545.893378][T12106] dump_stack_lvl+0x16c/0x1f0 [ 545.893419][T12106] should_fail_ex+0x512/0x640 [ 545.893456][T12106] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 545.893491][T12106] should_failslab+0xc2/0x120 [ 545.893526][T12106] __kvmalloc_node_noprof+0x141/0x9c0 [ 545.893557][T12106] ? bpf_lsm_capable+0x9/0x10 [ 545.893591][T12106] ? security_capable+0x7e/0x260 [ 545.893627][T12106] ? proc_sys_call_handler+0x286/0x570 [ 545.893664][T12106] ? ns_capable_noaudit+0xda/0x110 [ 545.893699][T12106] ? proc_sys_call_handler+0x286/0x570 [ 545.893736][T12106] proc_sys_call_handler+0x286/0x570 [ 545.893775][T12106] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 545.893814][T12106] ? copy_splice_read+0x1a8/0xc20 [ 545.893844][T12106] copy_splice_read+0x618/0xc20 [ 545.893876][T12106] ? __pfx_copy_splice_read+0x10/0x10 [ 545.893904][T12106] ? look_up_lock_class+0x59/0x150 [ 545.893944][T12106] ? lockdep_init_map_type+0x5c/0x280 [ 545.893968][T12106] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 545.893999][T12106] ? __pfx_copy_splice_read+0x10/0x10 [ 545.894031][T12106] do_splice_read+0x282/0x370 [ 545.894060][T12106] splice_direct_to_actor+0x2a1/0xa30 [ 545.894089][T12106] ? __pfx_direct_splice_actor+0x10/0x10 [ 545.894122][T12106] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 545.894157][T12106] do_splice_direct+0x174/0x240 [ 545.894185][T12106] ? __pfx_do_splice_direct+0x10/0x10 [ 545.894212][T12106] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 545.894243][T12106] ? bpf_lsm_file_permission+0x9/0x10 [ 545.894274][T12106] ? security_file_permission+0x71/0x210 [ 545.894303][T12106] ? rw_verify_area+0xcf/0x6c0 [ 545.894332][T12106] do_sendfile+0xb06/0xe50 [ 545.894364][T12106] ? __pfx_do_sendfile+0x10/0x10 [ 545.894398][T12106] ? __x64_sys_futex+0x1e0/0x4c0 [ 545.894433][T12106] ? __x64_sys_futex+0x1e9/0x4c0 [ 545.894472][T12106] __x64_sys_sendfile64+0x1d8/0x220 [ 545.894508][T12106] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 545.894553][T12106] do_syscall_64+0xcd/0x4b0 [ 545.894592][T12106] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 545.894616][T12106] RIP: 0033:0x7f1e8b38eec9 [ 545.894635][T12106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 545.894658][T12106] RSP: 002b:00007f1e8c2f2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 545.894679][T12106] RAX: ffffffffffffffda RBX: 00007f1e8b5e5fa0 RCX: 00007f1e8b38eec9 [ 545.894695][T12106] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000008 [ 545.894709][T12106] RBP: 00007f1e8b411f91 R08: 0000000000000000 R09: 0000000000000000 [ 545.894723][T12106] R10: 0000000000000200 R11: 0000000000000246 R12: 0000000000000000 [ 545.894737][T12106] R13: 00007f1e8b5e6038 R14: 00007f1e8b5e5fa0 R15: 00007ffd8bba2478 [ 545.894767][T12106] [ 546.249859][T12106] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 546.376229][T12114] Invalid ELF header magic: != ELF [ 547.552695][T12141] random: crng reseeded on system resumption [ 548.277590][T12147] Unrecognized hibernate image header format! [ 548.284035][T12147] PM: hibernation: Image mismatch: architecture specific data [ 548.750115][T12149] netlink: 268 bytes leftover after parsing attributes in process `syz.2.1405'. [ 548.766997][T12149] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.2.1405: iget: checksum invalid [ 548.800432][T12149] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 548.896542][T12149] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.2.1405: iget: checksum invalid [ 548.943064][T12149] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 549.049407][T12149] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.2.1405: iget: checksum invalid [ 549.062304][T12149] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 549.073729][T12149] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.2.1405: iget: checksum invalid [ 549.085420][T12149] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 549.096514][T12149] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 549.109041][T12149] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 550.929029][T12175] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.2.1410: iget: checksum invalid [ 551.113808][T12175] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 551.114012][T12175] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.2.1410: iget: checksum invalid [ 551.114232][T12175] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 551.114385][T12175] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.2.1410: iget: checksum invalid [ 551.114561][T12175] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 551.114725][T12175] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.2.1410: iget: checksum invalid [ 551.114961][T12175] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 551.114997][T12175] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 551.115020][T12175] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 552.160178][T12183] ima: policy update failed [ 552.210415][ T30] audit: type=1802 audit(4294985731.587:28): pid=12183 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1412" res=0 errno=0 [ 553.662843][T12204] random: crng reseeded on system resumption [ 553.675821][T12198] netlink: 268 bytes leftover after parsing attributes in process `syz.0.1415'. [ 553.712663][T12198] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.1415: iget: checksum invalid [ 553.777154][T12198] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 553.891944][T12198] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.1415: iget: checksum invalid [ 553.904676][T12198] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 553.951336][T12198] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.1415: iget: checksum invalid [ 553.999486][T12198] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 554.020394][T12198] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.1415: iget: checksum invalid [ 554.078102][T12198] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 554.092402][T12198] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 554.104057][T12198] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 554.926530][T12205] Unrecognized hibernate image header format! [ 554.966574][T12205] PM: hibernation: Image mismatch: architecture specific data [ 556.163895][T12238] FAULT_INJECTION: forcing a failure. [ 556.163895][T12238] name failslab, interval 1, probability 0, space 0, times 0 [ 556.214352][T12238] CPU: 0 UID: 0 PID: 12238 Comm: syz.3.1422 Not tainted syzkaller #0 PREEMPT(full) [ 556.214398][T12238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 556.214420][T12238] Call Trace: [ 556.214431][T12238] [ 556.214445][T12238] dump_stack_lvl+0x16c/0x1f0 [ 556.214501][T12238] should_fail_ex+0x512/0x640 [ 556.214553][T12238] ? fs_reclaim_acquire+0xae/0x150 [ 556.214606][T12238] should_failslab+0xc2/0x120 [ 556.214656][T12238] __kmalloc_noprof+0xdd/0x880 [ 556.214695][T12238] ? lockdep_init_map_type+0x5c/0x280 [ 556.214729][T12238] ? tomoyo_open_control+0x51f/0xa30 [ 556.214784][T12238] ? tomoyo_open_control+0x51f/0xa30 [ 556.214832][T12238] tomoyo_open_control+0x51f/0xa30 [ 556.214887][T12238] do_dentry_open+0x97f/0x1530 [ 556.214933][T12238] ? __pfx_tomoyo_open+0x10/0x10 [ 556.214989][T12238] vfs_open+0x82/0x3f0 [ 556.215046][T12238] path_openat+0x1de4/0x2cb0 [ 556.215099][T12238] ? __pfx_path_openat+0x10/0x10 [ 556.215158][T12238] do_filp_open+0x20b/0x470 [ 556.215201][T12238] ? __pfx_do_filp_open+0x10/0x10 [ 556.215271][T12238] ? alloc_fd+0x471/0x7d0 [ 556.215321][T12238] do_sys_openat2+0x11b/0x1d0 [ 556.215352][T12238] ? __pfx_do_sys_openat2+0x10/0x10 [ 556.215401][T12238] __x64_sys_openat+0x174/0x210 [ 556.215433][T12238] ? __pfx___x64_sys_openat+0x10/0x10 [ 556.215491][T12238] do_syscall_64+0xcd/0x4b0 [ 556.215545][T12238] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 556.215577][T12238] RIP: 0033:0x7fc22658eec9 [ 556.215602][T12238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 556.215634][T12238] RSP: 002b:00007fc2273ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 556.215665][T12238] RAX: ffffffffffffffda RBX: 00007fc2267e5fa0 RCX: 00007fc22658eec9 [ 556.215687][T12238] RDX: 00000000000c0802 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 556.215708][T12238] RBP: 00007fc226611f91 R08: 0000000000000000 R09: 0000000000000000 [ 556.215729][T12238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 556.215748][T12238] R13: 00007fc2267e6038 R14: 00007fc2267e5fa0 R15: 00007ffef059c518 [ 556.215790][T12238] [ 559.685138][T12272] Invalid ELF header magic: != ELF [ 562.391824][T12301] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1438'. [ 562.431864][T12301] Process accounting resumed [ 562.701500][T12315] FAULT_INJECTION: forcing a failure. [ 562.701500][T12315] name failslab, interval 1, probability 0, space 0, times 0 [ 562.714495][T12315] CPU: 1 UID: 0 PID: 12315 Comm: syz.3.1439 Not tainted syzkaller #0 PREEMPT(full) [ 562.714539][T12315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 562.714555][T12315] Call Trace: [ 562.714564][T12315] [ 562.714573][T12315] dump_stack_lvl+0x16c/0x1f0 [ 562.714616][T12315] should_fail_ex+0x512/0x640 [ 562.714653][T12315] ? __kmalloc_cache_noprof+0x5f/0x780 [ 562.714683][T12315] should_failslab+0xc2/0x120 [ 562.714726][T12315] __kmalloc_cache_noprof+0x72/0x780 [ 562.714751][T12315] ? net_alloc_generic+0x1e/0x70 [ 562.714772][T12315] ? copy_net_ns+0xe9/0x690 [ 562.714795][T12315] ? copy_net_ns+0x136/0x690 [ 562.714824][T12315] ? copy_net_ns+0x136/0x690 [ 562.714847][T12315] copy_net_ns+0x136/0x690 [ 562.714870][T12315] ? copy_cgroup_ns+0x71/0x6b0 [ 562.714905][T12315] create_new_namespaces+0x3ea/0xa90 [ 562.714945][T12315] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 562.714981][T12315] ksys_unshare+0x45b/0xa40 [ 562.715019][T12315] ? __pfx_ksys_unshare+0x10/0x10 [ 562.715059][T12315] ? syscall_user_dispatch+0x78/0x140 [ 562.715093][T12315] __x64_sys_unshare+0x31/0x40 [ 562.715130][T12315] do_syscall_64+0xcd/0x4b0 [ 562.715170][T12315] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 562.715195][T12315] RIP: 0033:0x7fc22658eec9 [ 562.715213][T12315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 562.715236][T12315] RSP: 002b:00007fc2273ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 562.715258][T12315] RAX: ffffffffffffffda RBX: 00007fc2267e6180 RCX: 00007fc22658eec9 [ 562.715273][T12315] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 562.715287][T12315] RBP: 00007fc226611f91 R08: 0000000000000000 R09: 0000000000000000 [ 562.715302][T12315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 562.715316][T12315] R13: 00007fc2267e6218 R14: 00007fc2267e6180 R15: 00007ffef059c518 [ 562.715345][T12315] [ 564.299733][ T30] audit: type=1400 audit(4294985743.727:29): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=12311 comm="syz.1.1440" [ 564.911622][T12338] : Can't lookup blockdev [ 565.065356][ T30] audit: type=1800 audit(4294985744.487:30): pid=12340 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1442" name="features" dev="configfs" ino=40125 res=0 errno=0 [ 565.740989][T12349] can0: slcan on ttyS2. [ 565.761603][T12351] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1446'. [ 565.918176][T12349] can0 (unregistered): slcan off ttyS2. [ 566.143380][T12363] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input28 [ 566.253972][T12363] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.1448: iget: checksum invalid [ 566.287364][T12363] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 566.301223][T12363] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.1448: iget: checksum invalid [ 566.314287][T12363] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 566.398406][T12363] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.1448: iget: checksum invalid [ 566.446836][T12363] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 566.477054][T12363] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.1448: iget: checksum invalid [ 566.536844][T12363] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 566.565411][T12363] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 566.575647][T12363] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 567.919027][T12362] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1450'. [ 567.952985][T12362] bond0: entered allmulticast mode [ 568.009121][T12362] bond_slave_1: entered allmulticast mode [ 568.672434][T12410] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1457'. [ 569.765831][T12428] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1461'. [ 570.243316][T12428] team0 (unregistering): Port device team_slave_0 removed [ 570.275232][T12428] team0 (unregistering): Port device team_slave_1 removed [ 570.672852][T12440] random: crng reseeded on system resumption [ 570.690175][T12439] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1464'. [ 571.129059][T12441] Unrecognized hibernate image header format! [ 571.200372][T12441] PM: hibernation: Image mismatch: architecture specific data [ 573.132289][T12460] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 573.243014][T12466] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input29 [ 573.428558][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 573.435132][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 573.500267][T12469] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.1467: iget: checksum invalid [ 573.517588][T12469] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 573.543356][T12469] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.1467: iget: checksum invalid [ 573.556240][T12469] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 573.589882][T12469] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.1467: iget: checksum invalid [ 573.647166][T12469] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 573.659031][T12469] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.1467: iget: checksum invalid [ 573.720327][T12469] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 573.733241][T12469] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 573.744404][T12469] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 574.360763][T12484] Console: switching to colour VGA+ 80x25 [ 574.787627][T12488] Console: switching to colour frame buffer device 128x48 [ 575.369697][T12493] __vm_enough_memory: pid: 12493, comm: syz.3.1474, bytes: 4398046511104 not enough memory for the allocation [ 576.326873][T12524] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input30 [ 576.727138][T12526] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1481: iget: checksum invalid [ 576.863104][T12526] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 576.876098][T12526] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1481: iget: checksum invalid [ 576.925415][T12526] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 577.044754][T12526] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1481: iget: checksum invalid [ 577.298676][T12526] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 577.326585][T12526] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1481: iget: checksum invalid [ 577.346201][T12526] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 577.356780][T12526] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 577.373412][T12526] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 577.835337][T12539] FAULT_INJECTION: forcing a failure. [ 577.835337][T12539] name failslab, interval 1, probability 0, space 0, times 0 [ 577.917410][T12539] CPU: 1 UID: 0 PID: 12539 Comm: syz.1.1483 Not tainted syzkaller #0 PREEMPT(full) [ 577.917454][T12539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 577.917475][T12539] Call Trace: [ 577.917486][T12539] [ 577.917498][T12539] dump_stack_lvl+0x16c/0x1f0 [ 577.917557][T12539] should_fail_ex+0x512/0x640 [ 577.917609][T12539] ? __kmalloc_cache_noprof+0x5f/0x780 [ 577.917655][T12539] should_failslab+0xc2/0x120 [ 577.917706][T12539] __kmalloc_cache_noprof+0x72/0x780 [ 577.917741][T12539] ? net_alloc_generic+0x1e/0x70 [ 577.917768][T12539] ? copy_net_ns+0xe9/0x690 [ 577.917799][T12539] ? copy_net_ns+0x136/0x690 [ 577.917841][T12539] ? copy_net_ns+0x136/0x690 [ 577.917874][T12539] copy_net_ns+0x136/0x690 [ 577.917906][T12539] ? copy_cgroup_ns+0x71/0x6b0 [ 577.917953][T12539] create_new_namespaces+0x3ea/0xa90 [ 577.918007][T12539] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 577.918057][T12539] ksys_unshare+0x45b/0xa40 [ 577.918117][T12539] ? __pfx_ksys_unshare+0x10/0x10 [ 577.918174][T12539] ? syscall_user_dispatch+0x78/0x140 [ 577.918222][T12539] __x64_sys_unshare+0x31/0x40 [ 577.918272][T12539] do_syscall_64+0xcd/0x4b0 [ 577.918321][T12539] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 577.918352][T12539] RIP: 0033:0x7f1e8b38eec9 [ 577.918377][T12539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 577.918411][T12539] RSP: 002b:00007f1e8c2b0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 577.918443][T12539] RAX: ffffffffffffffda RBX: 00007f1e8b5e6180 RCX: 00007f1e8b38eec9 [ 577.918465][T12539] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 577.918486][T12539] RBP: 00007f1e8b411f91 R08: 0000000000000000 R09: 0000000000000000 [ 577.918507][T12539] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 577.918527][T12539] R13: 00007f1e8b5e6218 R14: 00007f1e8b5e6180 R15: 00007ffd8bba2478 [ 577.918568][T12539] [ 578.121638][ C1] vkms_vblank_simulate: vblank timer overrun [ 578.546402][T12549] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input31 [ 578.787676][T12551] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1494: iget: checksum invalid [ 578.799485][T12551] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 578.812165][T12551] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1494: iget: checksum invalid [ 578.873424][T12551] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 578.910794][T12551] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1494: iget: checksum invalid [ 578.932446][T12551] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 578.948371][T12551] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1494: iget: checksum invalid [ 579.007860][T12551] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 579.019489][T12551] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 579.029588][T12551] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 579.358074][T12558] FAULT_INJECTION: forcing a failure. [ 579.358074][T12558] name failslab, interval 1, probability 0, space 0, times 0 [ 579.446963][T12558] CPU: 1 UID: 0 PID: 12558 Comm: syz.1.1485 Not tainted syzkaller #0 PREEMPT(full) [ 579.447007][T12558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 579.447022][T12558] Call Trace: [ 579.447030][T12558] [ 579.447038][T12558] dump_stack_lvl+0x16c/0x1f0 [ 579.447086][T12558] should_fail_ex+0x512/0x640 [ 579.447122][T12558] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 579.447153][T12558] should_failslab+0xc2/0x120 [ 579.447189][T12558] kmem_cache_alloc_noprof+0x75/0x6e0 [ 579.447216][T12558] ? pidfs_register_pid+0x97/0x1f0 [ 579.447247][T12558] ? pidfs_register_pid+0x97/0x1f0 [ 579.447271][T12558] pidfs_register_pid+0x97/0x1f0 [ 579.447298][T12558] unix_socketpair+0x126/0x860 [ 579.447322][T12558] ? unix_connect_peers+0x345/0x500 [ 579.447359][T12558] ? __pfx_unix_socketpair+0x10/0x10 [ 579.447381][T12558] ? apparmor_socket_socketpair+0x49b/0x700 [ 579.447415][T12558] __sys_socketpair+0x2f2/0x5a0 [ 579.447448][T12558] ? __pfx___sys_socketpair+0x10/0x10 [ 579.447480][T12558] ? __pfx___x64_sys_futex+0x10/0x10 [ 579.447525][T12558] __x64_sys_socketpair+0x96/0x100 [ 579.447555][T12558] ? lockdep_hardirqs_on+0x7c/0x110 [ 579.447590][T12558] do_syscall_64+0xcd/0x4b0 [ 579.447629][T12558] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 579.447653][T12558] RIP: 0033:0x7f1e8b38eec9 [ 579.447671][T12558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 579.447694][T12558] RSP: 002b:00007f1e8c2d1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 579.447716][T12558] RAX: ffffffffffffffda RBX: 00007f1e8b5e6090 RCX: 00007f1e8b38eec9 [ 579.447732][T12558] RDX: 8000000000000000 RSI: 0000000000000005 RDI: 0000000000000001 [ 579.447746][T12558] RBP: 00007f1e8b411f91 R08: 0000000000000000 R09: 0000000000000000 [ 579.447760][T12558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 579.447774][T12558] R13: 00007f1e8b5e6128 R14: 00007f1e8b5e6090 R15: 00007ffd8bba2478 [ 579.447804][T12558] [ 579.655694][ C1] vkms_vblank_simulate: vblank timer overrun [ 580.092551][T12569] Invalid ELF header magic: != ELF [ 580.253599][T12566] syz.0.1488 (12566): /proc/12565/oom_adj is deprecated, please use /proc/12565/oom_score_adj instead. [ 580.822832][T12580] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1490'. [ 580.884605][T12580] veth1_macvtap: left promiscuous mode [ 581.262337][T12589] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1503'. [ 581.293964][T12589] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1503'. [ 581.439895][T12594] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1495'. [ 582.907037][T12614] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input32 [ 588.060675][T12690] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input33 [ 588.341860][T12693] FAULT_INJECTION: forcing a failure. [ 588.341860][T12693] name failslab, interval 1, probability 0, space 0, times 0 [ 588.355383][T12693] CPU: 0 UID: 0 PID: 12693 Comm: syz.0.1518 Not tainted syzkaller #0 PREEMPT(full) [ 588.355428][T12693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 588.355449][T12693] Call Trace: [ 588.355460][T12693] [ 588.355474][T12693] dump_stack_lvl+0x16c/0x1f0 [ 588.355535][T12693] should_fail_ex+0x512/0x640 [ 588.355588][T12693] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 588.355637][T12693] should_failslab+0xc2/0x120 [ 588.355688][T12693] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 588.355729][T12693] ? d_lookup+0xe7/0x190 [ 588.355760][T12693] ? alloc_inode+0x64/0x240 [ 588.355817][T12693] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 588.355851][T12693] ? alloc_inode+0x64/0x240 [ 588.355901][T12693] alloc_inode+0x64/0x240 [ 588.355952][T12693] new_inode+0x22/0x1c0 [ 588.356008][T12693] __debugfs_create_file+0x11c/0x6b0 [ 588.356063][T12693] debugfs_create_file_full+0x41/0x60 [ 588.356108][T12693] ref_tracker_dir_debugfs+0x19d/0x290 [ 588.356144][T12693] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 588.356217][T12693] ? lockdep_init_map_type+0x5c/0x280 [ 588.356258][T12693] preinit_net.part.0+0x24e/0x8a0 [ 588.356300][T12693] copy_net_ns+0x3ba/0x690 [ 588.356341][T12693] create_new_namespaces+0x3ea/0xa90 [ 588.356403][T12693] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 588.356454][T12693] ksys_unshare+0x45b/0xa40 [ 588.356507][T12693] ? __pfx_ksys_unshare+0x10/0x10 [ 588.356565][T12693] ? syscall_user_dispatch+0x78/0x140 [ 588.356616][T12693] __x64_sys_unshare+0x31/0x40 [ 588.356669][T12693] do_syscall_64+0xcd/0x4b0 [ 588.356727][T12693] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 588.356762][T12693] RIP: 0033:0x7fd31df8eec9 [ 588.356790][T12693] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 588.356826][T12693] RSP: 002b:00007fd31ee35038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 588.356858][T12693] RAX: ffffffffffffffda RBX: 00007fd31e1e6180 RCX: 00007fd31df8eec9 [ 588.356881][T12693] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 588.356901][T12693] RBP: 00007fd31e011f91 R08: 0000000000000000 R09: 0000000000000000 [ 588.356922][T12693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 588.356944][T12693] R13: 00007fd31e1e6218 R14: 00007fd31e1e6180 R15: 00007fff7e546758 [ 588.356989][T12693] [ 588.592664][T12693] debugfs: out of free dentries, can not create file 'net_refcnt@ffff88807a4001a8' [ 588.642389][T12694] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.1517: iget: checksum invalid [ 588.653821][T12694] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 588.717997][T12694] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.1517: iget: checksum invalid [ 588.732879][T12694] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 588.743852][T12694] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.1517: iget: checksum invalid [ 588.755724][T12694] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 588.767032][T12694] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.1517: iget: checksum invalid [ 588.779003][T12694] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 588.789149][T12694] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 588.921666][T12694] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 591.998119][T12762] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input34 [ 592.227776][T12765] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1532: iget: checksum invalid [ 592.318829][T12765] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 592.346874][T12765] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1532: iget: checksum invalid [ 592.367329][T12765] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 592.437316][T12765] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1532: iget: checksum invalid [ 592.470899][T12765] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 592.530659][T12765] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.1532: iget: checksum invalid [ 592.564468][T12765] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 592.587625][T12767] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1533'. [ 592.607092][T12765] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 592.643180][T12765] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 593.020760][T12765] Process accounting paused [ 594.287815][T12788] binder: 12785:12788 ioctl c0306201 200000000000 returned -11 [ 594.436081][T12791] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1547'. [ 596.683195][T12828] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1546'. [ 596.742444][T12828] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1546'. [ 596.756556][T12828] netlink: 290 bytes leftover after parsing attributes in process `syz.2.1546'. [ 596.784074][T12828] veth0_macvtap: left promiscuous mode [ 596.792399][T12828] netlink: 290 bytes leftover after parsing attributes in process `syz.2.1546'. [ 596.801754][T12828] veth0_macvtap: entered promiscuous mode [ 599.772370][T12890] FAULT_INJECTION: forcing a failure. [ 599.772370][T12890] name failslab, interval 1, probability 0, space 0, times 0 [ 599.795900][T12890] CPU: 0 UID: 0 PID: 12890 Comm: syz.1.1559 Not tainted syzkaller #0 PREEMPT(full) [ 599.795946][T12890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 599.795967][T12890] Call Trace: [ 599.795988][T12890] [ 599.796001][T12890] dump_stack_lvl+0x16c/0x1f0 [ 599.796061][T12890] should_fail_ex+0x512/0x640 [ 599.796113][T12890] ? __kmalloc_cache_noprof+0x5f/0x780 [ 599.796156][T12890] should_failslab+0xc2/0x120 [ 599.796208][T12890] __kmalloc_cache_noprof+0x72/0x780 [ 599.796244][T12890] ? net_alloc_generic+0x1e/0x70 [ 599.796274][T12890] ? copy_net_ns+0xe9/0x690 [ 599.796312][T12890] ? copy_net_ns+0x136/0x690 [ 599.796353][T12890] ? copy_net_ns+0x136/0x690 [ 599.796388][T12890] copy_net_ns+0x136/0x690 [ 599.796425][T12890] ? copy_cgroup_ns+0x71/0x6b0 [ 599.796472][T12890] create_new_namespaces+0x3ea/0xa90 [ 599.796529][T12890] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 599.796580][T12890] ksys_unshare+0x45b/0xa40 [ 599.796634][T12890] ? __pfx_ksys_unshare+0x10/0x10 [ 599.796689][T12890] ? syscall_user_dispatch+0x78/0x140 [ 599.796738][T12890] __x64_sys_unshare+0x31/0x40 [ 599.796789][T12890] do_syscall_64+0xcd/0x4b0 [ 599.796843][T12890] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 599.796877][T12890] RIP: 0033:0x7f1e8b38eec9 [ 599.796903][T12890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 599.796935][T12890] RSP: 002b:00007f1e8c2b0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 599.796966][T12890] RAX: ffffffffffffffda RBX: 00007f1e8b5e6180 RCX: 00007f1e8b38eec9 [ 599.796997][T12890] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 599.797017][T12890] RBP: 00007f1e8b411f91 R08: 0000000000000000 R09: 0000000000000000 [ 599.797038][T12890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 599.797059][T12890] R13: 00007f1e8b5e6218 R14: 00007f1e8b5e6180 R15: 00007ffd8bba2478 [ 599.797104][T12890] [ 602.686825][T12920] netlink: zone id is out of range [ 602.724650][T12920] netlink: del zone limit has 4 unknown bytes [ 602.946943][T12921] HfR: entered promiscuous mode [ 603.039976][T12915] netlink: set zone limit has 8 unknown bytes [ 605.454393][T12967] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1574'. [ 605.619562][T12967] bond0: (slave bond_slave_1): Releasing backup interface [ 611.775997][T13055] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1596'. [ 614.652180][T13120] 0x000200000001-0xa29656a63616329 : "" [ 614.759024][T13120] mtd: partition "" is out of reach -- disabled [ 614.868132][T13120] ftl_cs: FTL header not found. [ 616.699894][ C0] unchecked MSR access error: WRMSR to 0x418 (tried to write 0x0000000000000322) at rIP: 0xffffffff8163916a (__mcheck_cpu_init_prepare_banks+0x18a/0x380) [ 616.715571][ C0] Call Trace: [ 616.718875][ C0] [ 616.721740][ C0] ? __pfx___mcheck_cpu_init_prepare_banks+0x10/0x10 [ 616.728460][ C0] ? __pfx_sched_clock_cpu+0x10/0x10 [ 616.733796][ C0] ? __pfx_mce_cpu_restart+0x10/0x10 [ 616.739201][ C0] mce_cpu_restart+0xd9/0x1f0 [ 616.743914][ C0] __flush_smp_call_function_queue+0x27a/0x8c0 [ 616.750115][ C0] __sysvec_call_function_single+0x87/0x400 [ 616.756055][ C0] sysvec_call_function_single+0x9f/0xc0 [ 616.761719][ C0] [ 616.764665][ C0] [ 616.767610][ C0] asm_sysvec_call_function_single+0x1a/0x20 [ 616.773625][ C0] RIP: 0010:finish_task_switch.isra.0+0x22a/0xc10 [ 616.780102][ C0] Code: fb 09 00 00 44 8b 05 29 dc d7 0e 45 85 c0 0f 85 be 01 00 00 4c 89 e7 e8 a4 f6 ff ff e8 2f 5a 3a 00 fb 65 48 8b 1d 4e e3 f1 11 <48> 8d bb 58 16 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 [ 616.799733][ C0] RSP: 0018:ffffc90000107b70 EFLAGS: 00000206 [ 616.805827][ C0] RAX: 0000000000864e8b RBX: ffff88801d6dbc80 RCX: ffffffff81c295ef [ 616.813904][ C0] RDX: 0000000000000000 RSI: ffffffff8d823954 RDI: ffffffff8bd04ac0 [ 616.821892][ C0] RBP: ffffc90000107bb8 R08: 0000000000000001 R09: 0000000000000001 [ 616.829884][ C0] R10: ffffffff905fe897 R11: 0000000000000000 R12: ffff8880b863a480 [ 616.837871][ C0] R13: ffff888020f3dac0 R14: ffff8880b863a480 R15: ffff8880b863b2b0 [ 616.845871][ C0] ? trace_irq_enable.constprop.0+0x2f/0x120 [ 616.851893][ C0] ? __switch_to+0x7a5/0x11a0 [ 616.856616][ C0] __schedule+0x1198/0x5de0 [ 616.861173][ C0] ? __pfx___schedule+0x10/0x10 [ 616.866060][ C0] ? find_held_lock+0x2b/0x80 [ 616.870774][ C0] ? schedule+0x2d7/0x3a0 [ 616.875137][ C0] schedule+0xe7/0x3a0 [ 616.879237][ C0] ? worker_thread+0x28b/0xf10 [ 616.884025][ C0] worker_thread+0x2e5/0xf10 [ 616.888654][ C0] ? __pfx_worker_thread+0x10/0x10 [ 616.893790][ C0] kthread+0x3c5/0x780 [ 616.897882][ C0] ? __pfx_kthread+0x10/0x10 [ 616.902497][ C0] ? rcu_is_watching+0x12/0xc0 [ 616.907287][ C0] ? __pfx_kthread+0x10/0x10 [ 616.911899][ C0] ret_from_fork+0x56d/0x730 [ 616.916517][ C0] ? __pfx_kthread+0x10/0x10 [ 616.921138][ C0] ret_from_fork_asm+0x1a/0x30 [ 616.925955][ C0] [ 617.698003][T13185] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1620'. [ 621.918988][T13236] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1628'. [ 623.211920][T13252] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1631'. [ 623.221105][T13252] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 623.238013][T13252] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 623.357917][T13252] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 623.388198][T13252] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 624.103929][T13240] Process accounting resumed [ 626.092557][T13282] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1636'. [ 626.857087][T13291] FAULT_INJECTION: forcing a failure. [ 626.857087][T13291] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 626.886457][T13291] CPU: 1 UID: 0 PID: 13291 Comm: syz.1.1640 Not tainted syzkaller #0 PREEMPT(full) [ 626.886502][T13291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 626.886522][T13291] Call Trace: [ 626.886530][T13291] [ 626.886539][T13291] dump_stack_lvl+0x16c/0x1f0 [ 626.886586][T13291] should_fail_ex+0x512/0x640 [ 626.886628][T13291] should_fail_alloc_page+0xe7/0x130 [ 626.886666][T13291] prepare_alloc_pages+0x3c2/0x610 [ 626.886700][T13291] ? rcu_is_watching+0x12/0xc0 [ 626.886734][T13291] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 626.886764][T13291] ? __lock_acquire+0xb97/0x1ce0 [ 626.886814][T13291] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 626.886842][T13291] ? do_raw_spin_lock+0x12c/0x2b0 [ 626.886868][T13291] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 626.886894][T13291] ? find_held_lock+0x2b/0x80 [ 626.886931][T13291] ? __lock_acquire+0xb97/0x1ce0 [ 626.886968][T13291] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 626.886996][T13291] ? policy_nodemask+0xea/0x4e0 [ 626.887034][T13291] alloc_pages_mpol+0x1fb/0x550 [ 626.887071][T13291] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 626.887114][T13291] folio_alloc_mpol_noprof+0x36/0x2f0 [ 626.887140][T13291] shmem_alloc_folio+0x135/0x160 [ 626.887179][T13291] shmem_alloc_and_add_folio+0x499/0xc20 [ 626.887213][T13291] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 626.887242][T13291] ? shmem_allowable_huge_orders+0xd4/0x3f0 [ 626.887277][T13291] shmem_get_folio_gfp+0x67f/0x1610 [ 626.887311][T13291] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 626.887339][T13291] ? __pfx_timestamp_truncate+0x10/0x10 [ 626.887375][T13291] shmem_fault+0x1fe/0xa30 [ 626.887403][T13291] ? __pfx_shmem_fault+0x10/0x10 [ 626.887429][T13291] ? __lock_acquire+0x62e/0x1ce0 [ 626.887469][T13291] ? __pfx___up_read+0x10/0x10 [ 626.887492][T13291] ? inode_to_bdi+0x9e/0x160 [ 626.887529][T13291] ? __pfx_filemap_map_pages+0x10/0x10 [ 626.887559][T13291] __do_fault+0x10d/0x490 [ 626.887590][T13291] ? __pfx_filemap_map_pages+0x10/0x10 [ 626.887614][T13291] do_pte_missing+0x1a6/0x3ba0 [ 626.887639][T13291] ? find_held_lock+0x2b/0x80 [ 626.887668][T13291] ? __handle_mm_fault+0x1529/0x2aa0 [ 626.887696][T13291] __handle_mm_fault+0x1556/0x2aa0 [ 626.887729][T13291] ? __pfx___handle_mm_fault+0x10/0x10 [ 626.887756][T13291] ? __pte_offset_map_lock+0x174/0x310 [ 626.887789][T13291] ? find_held_lock+0x2b/0x80 [ 626.887826][T13291] ? follow_page_pte+0x5cf/0x1390 [ 626.887867][T13291] handle_mm_fault+0x589/0xd10 [ 626.887897][T13291] __get_user_pages+0x54e/0x3530 [ 626.887942][T13291] ? down_read_killable+0x220/0x4b0 [ 626.887967][T13291] ? __pfx___get_user_pages+0x10/0x10 [ 626.888012][T13291] faultin_page_range+0x338/0x940 [ 626.888056][T13291] madvise_do_behavior+0x34c/0x530 [ 626.888096][T13291] ? __pfx_madvise_do_behavior+0x10/0x10 [ 626.888136][T13291] ? down_read+0x13d/0x480 [ 626.888172][T13291] do_madvise+0x176/0x240 [ 626.888208][T13291] ? __pfx_do_madvise+0x10/0x10 [ 626.888244][T13291] ? do_futex+0x122/0x350 [ 626.888300][T13291] ? xfd_validate_state+0x61/0x180 [ 626.888328][T13291] __x64_sys_madvise+0xa9/0x110 [ 626.888365][T13291] ? lockdep_hardirqs_on+0x7c/0x110 [ 626.888400][T13291] do_syscall_64+0xcd/0x4b0 [ 626.888439][T13291] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 626.888463][T13291] RIP: 0033:0x7f1e8b38eec9 [ 626.888483][T13291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 626.888506][T13291] RSP: 002b:00007f1e8c2f2038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 626.888529][T13291] RAX: ffffffffffffffda RBX: 00007f1e8b5e5fa0 RCX: 00007f1e8b38eec9 [ 626.888545][T13291] RDX: 0000000000000017 RSI: 0000000000100000 RDI: 0000000000000000 [ 626.888566][T13291] RBP: 00007f1e8b411f91 R08: 0000000000000000 R09: 0000000000000000 [ 626.888581][T13291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 626.888595][T13291] R13: 00007f1e8b5e6038 R14: 00007f1e8b5e5fa0 R15: 00007ffd8bba2478 [ 626.888625][T13291] [ 629.480440][T13318] FAULT_INJECTION: forcing a failure. [ 629.480440][T13318] name failslab, interval 1, probability 0, space 0, times 0 [ 629.535448][T13318] CPU: 1 UID: 0 PID: 13318 Comm: syz.3.1645 Not tainted syzkaller #0 PREEMPT(full) [ 629.535494][T13318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 629.535514][T13318] Call Trace: [ 629.535525][T13318] [ 629.535538][T13318] dump_stack_lvl+0x16c/0x1f0 [ 629.535595][T13318] should_fail_ex+0x512/0x640 [ 629.535644][T13318] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 629.535685][T13318] ? __pfx_objects_open+0x10/0x10 [ 629.535729][T13318] should_failslab+0xc2/0x120 [ 629.535777][T13318] kmem_cache_alloc_noprof+0x75/0x6e0 [ 629.535813][T13318] ? debug_mutex_init+0x37/0x70 [ 629.535853][T13318] ? seq_open+0x55/0x170 [ 629.535906][T13318] ? __pfx_objects_open+0x10/0x10 [ 629.535950][T13318] ? seq_open+0x55/0x170 [ 629.535996][T13318] seq_open+0x55/0x170 [ 629.536046][T13318] objects_open+0x22/0xd0 [ 629.536090][T13318] full_proxy_open_regular+0x1b9/0x360 [ 629.536148][T13318] do_dentry_open+0x97f/0x1530 [ 629.536192][T13318] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 629.536266][T13318] vfs_open+0x82/0x3f0 [ 629.536325][T13318] path_openat+0x1de4/0x2cb0 [ 629.536393][T13318] ? __pfx_path_openat+0x10/0x10 [ 629.536444][T13318] do_filp_open+0x20b/0x470 [ 629.536485][T13318] ? __pfx_do_filp_open+0x10/0x10 [ 629.536539][T13318] ? alloc_fd+0x471/0x7d0 [ 629.536572][T13318] do_sys_openat2+0x11b/0x1d0 [ 629.536594][T13318] ? __pfx_do_sys_openat2+0x10/0x10 [ 629.536627][T13318] __x64_sys_openat+0x174/0x210 [ 629.536649][T13318] ? __pfx___x64_sys_openat+0x10/0x10 [ 629.536683][T13318] do_syscall_64+0xcd/0x4b0 [ 629.536722][T13318] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 629.536746][T13318] RIP: 0033:0x7fc22658eec9 [ 629.536764][T13318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 629.536788][T13318] RSP: 002b:00007fc2273ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 629.536810][T13318] RAX: ffffffffffffffda RBX: 00007fc2267e6180 RCX: 00007fc22658eec9 [ 629.536825][T13318] RDX: 0000000000040042 RSI: 00002000000002c0 RDI: ffffffffffffff9c [ 629.536840][T13318] RBP: 00007fc226611f91 R08: 0000000000000000 R09: 0000000000000000 [ 629.536854][T13318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 629.536868][T13318] R13: 00007fc2267e6218 R14: 00007fc2267e6180 R15: 00007ffef059c518 [ 629.536897][T13318] [ 631.169871][T13345] netlink: 268 bytes leftover after parsing attributes in process `syz.0.1651'. [ 631.201306][T13345] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.1651: iget: checksum invalid [ 631.223118][T13345] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 631.279318][T13345] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.1651: iget: checksum invalid [ 631.331743][T13345] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 631.343792][T13345] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.1651: iget: checksum invalid [ 631.399545][T13345] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 631.427361][T13345] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.1651: iget: checksum invalid [ 631.444416][T13345] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 631.454561][T13345] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 631.464433][T13345] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 633.014040][T13371] netlink: 186 bytes leftover after parsing attributes in process `syz.0.1656'. [ 634.564263][T13369] kexec: Could not allocate control_code_buffer [ 634.841186][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 634.847708][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 636.671948][T13428] raw_sendmsg: syz.3.1667 forgot to set AF_INET. Fix it! [ 637.160305][T13433] ptrace attach of "./syz-executor exec"[5847] was attempted by ""[13433] [ 639.792399][T13453] kexec: Could not allocate control_code_buffer [ 640.195039][T13472] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1677'. [ 640.432481][T13482] netlink: 'syz.2.1677': attribute type 1 has an invalid length. [ 640.463902][T13482] netlink: 'syz.2.1677': attribute type 2 has an invalid length. [ 640.497022][T13482] netlink: 'syz.2.1677': attribute type 7 has an invalid length. [ 640.515604][T13482] netlink: 274 bytes leftover after parsing attributes in process `syz.2.1677'. [ 641.002733][T13493] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1679'. [ 641.102187][T13493] : renamed from bond0 (while UP) [ 643.627662][T13527] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1687'. [ 643.661280][T13527] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1687'. [ 645.069915][T13548] netlink: zone id is out of range [ 645.072568][T13545] netlink: set zone limit has 8 unknown bytes [ 645.075127][T13548] netlink: del zone limit has 4 unknown bytes [ 645.421804][T13545] openvswitch: HfR: Dropping previously announced user features [ 646.859658][ T5859] Bluetooth: hci3: unexpected event 0x02 length: 726 > 260 [ 648.569462][T13589] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1700'. [ 648.608356][T13589] netlink: 'syz.2.1700': attribute type 1 has an invalid length. [ 648.616136][T13589] netlink: 'syz.2.1700': attribute type 6 has an invalid length. [ 648.733945][T13591] netlink: 306 bytes leftover after parsing attributes in process `syz.1.1701'. [ 648.930633][T13594] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1703'. [ 648.956953][T13592] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137 [ 648.977917][T13594] netlink: 354 bytes leftover after parsing attributes in process `syz.2.1703'. [ 649.007666][T13592] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 1, inode_bitmap = 138 [ 649.048914][T13592] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum [ 649.388974][T13597] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1705'. [ 649.524319][T13597] macsec0: entered allmulticast mode [ 649.537341][T13597] veth1_macvtap: entered allmulticast mode [ 649.854331][T13612] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 649.864021][T13612] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 649.876292][T13612] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 649.884686][T13612] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 649.895869][T13614] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 650.358242][T13620] random: crng reseeded on system resumption [ 650.869852][T13627] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1400 with max blocks 4 with error 117 [ 650.897742][T13627] EXT4-fs (sda1): This should not happen!! Data will be lost [ 650.897742][T13627] [ 650.950938][ T1318] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 651.056256][T13610] chnl_net:caif_netlink_parms(): no params data found [ 651.095863][ T1318] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 651.158303][T13635] __vm_enough_memory: pid: 13635, comm: syz.3.1711, bytes: 4398046511104 not enough memory for the allocation [ 651.220180][ T1318] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 651.386819][ T1318] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 651.594022][T13610] bridge0: port 1(bridge_slave_0) entered blocking state [ 651.604464][T13610] bridge0: port 1(bridge_slave_0) entered disabled state [ 651.611907][T13610] bridge_slave_0: entered allmulticast mode [ 651.622989][T13610] bridge_slave_0: entered promiscuous mode [ 651.655918][T13610] bridge0: port 2(bridge_slave_1) entered blocking state [ 651.681018][T13610] bridge0: port 2(bridge_slave_1) entered disabled state [ 651.690280][T13610] bridge_slave_1: entered allmulticast mode [ 651.699029][T13610] bridge_slave_1: entered promiscuous mode [ 651.820721][T13610] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 651.838347][T13610] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 651.956709][T13614] Bluetooth: hci4: command tx timeout [ 652.039785][T13610] team0: Port device team_slave_0 added [ 652.061270][T13610] team0: Port device team_slave_1 added [ 652.188344][T13610] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 652.206900][T13610] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 652.244236][T13654] netlink: 93 bytes leftover after parsing attributes in process `syz.2.1714'. [ 652.246541][T13610] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 652.314465][ T1318] netdevsim netdevsim15 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 652.478619][T13610] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 652.493484][T13610] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 652.519553][ C0] vkms_vblank_simulate: vblank timer overrun [ 652.536557][T13610] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 652.862706][T13610] hsr_slave_0: entered promiscuous mode [ 653.017909][T13610] hsr_slave_1: entered promiscuous mode [ 653.175202][T13668] FAULT_INJECTION: forcing a failure. [ 653.175202][T13668] name failslab, interval 1, probability 0, space 0, times 0 [ 653.210418][T13668] CPU: 0 UID: 0 PID: 13668 Comm: syz.1.1717 Not tainted syzkaller #0 PREEMPT(full) [ 653.210450][T13668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 653.210465][T13668] Call Trace: [ 653.210473][T13668] [ 653.210481][T13668] dump_stack_lvl+0x16c/0x1f0 [ 653.210524][T13668] should_fail_ex+0x512/0x640 [ 653.210560][T13668] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 653.210592][T13668] should_failslab+0xc2/0x120 [ 653.210627][T13668] kmem_cache_alloc_noprof+0x75/0x6e0 [ 653.210655][T13668] ? fcntl_setlease+0x389/0x5a0 [ 653.210687][T13668] ? fcntl_setlease+0x389/0x5a0 [ 653.210711][T13668] fcntl_setlease+0x389/0x5a0 [ 653.210736][T13668] ? __pfx_fcntl_setlease+0x10/0x10 [ 653.210767][T13668] ? do_futex+0x122/0x350 [ 653.210808][T13668] ? __pfx_do_futex+0x10/0x10 [ 653.210847][T13668] do_fcntl+0x751/0x15a0 [ 653.210883][T13668] ? __pfx_do_fcntl+0x10/0x10 [ 653.210917][T13668] ? __x64_sys_futex+0x1e0/0x4c0 [ 653.210951][T13668] ? __x64_sys_futex+0x1e9/0x4c0 [ 653.210993][T13668] ? tomoyo_file_fcntl+0x6c/0xc0 [ 653.211031][T13668] __x64_sys_fcntl+0x163/0x200 [ 653.211069][T13668] do_syscall_64+0xcd/0x4b0 [ 653.211108][T13668] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 653.211132][T13668] RIP: 0033:0x7f1e8b38eec9 [ 653.211150][T13668] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 653.211173][T13668] RSP: 002b:00007f1e8c2f2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048 [ 653.211195][T13668] RAX: ffffffffffffffda RBX: 00007f1e8b5e5fa0 RCX: 00007f1e8b38eec9 [ 653.211210][T13668] RDX: 0000000000000001 RSI: 0000000000000400 RDI: 0000000000000001 [ 653.211225][T13668] RBP: 00007f1e8b411f91 R08: 0000000000000000 R09: 0000000000000000 [ 653.211239][T13668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 653.211252][T13668] R13: 00007f1e8b5e6038 R14: 00007f1e8b5e5fa0 R15: 00007ffd8bba2478 [ 653.211282][T13668] [ 653.409895][ C0] vkms_vblank_simulate: vblank timer overrun [ 653.476680][T13668] Invalid ELF header magic: != ELF [ 653.722935][ T1318] bridge_slave_1: left allmulticast mode [ 653.758868][ T1318] bridge_slave_1: left promiscuous mode [ 653.779271][ T1318] bridge0: port 2(bridge_slave_1) entered disabled state [ 653.808277][ T1318] bridge_slave_0: left allmulticast mode [ 653.827990][ T1318] bridge_slave_0: left promiscuous mode [ 653.834039][ T1318] bridge0: port 1(bridge_slave_0) entered disabled state [ 654.036631][T13614] Bluetooth: hci4: command tx timeout [ 654.833709][ T1318] bond0 (unregistering): Released all slaves [ 655.036129][ T1318] HfR: left promiscuous mode [ 655.192334][ T1318] tipc: Left network mode [ 655.506154][T13655] Process accounting paused [ 655.781825][T13710] FAULT_INJECTION: forcing a failure. [ 655.781825][T13710] name failslab, interval 1, probability 0, space 0, times 0 [ 655.817577][T13610] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 655.833553][T13710] CPU: 1 UID: 0 PID: 13710 Comm: syz.3.1722 Not tainted syzkaller #0 PREEMPT(full) [ 655.833603][T13710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 655.833625][T13710] Call Trace: [ 655.833636][T13710] [ 655.833648][T13710] dump_stack_lvl+0x16c/0x1f0 [ 655.833710][T13710] should_fail_ex+0x512/0x640 [ 655.833762][T13710] ? __kmalloc_cache_noprof+0x5f/0x780 [ 655.833805][T13710] should_failslab+0xc2/0x120 [ 655.833855][T13710] __kmalloc_cache_noprof+0x72/0x780 [ 655.833892][T13710] ? _raw_write_unlock+0x28/0x50 [ 655.833939][T13710] ? ip6addrlbl_add+0xbb/0xc40 [ 655.833998][T13710] ? ip6addrlbl_add+0xbb/0xc40 [ 655.834051][T13710] ip6addrlbl_add+0xbb/0xc40 [ 655.834114][T13710] ? lockdep_init_map_type+0x5c/0x280 [ 655.834154][T13710] ip6addrlbl_net_init+0x10a/0x380 [ 655.834209][T13710] ? __pfx_ip6addrlbl_net_init+0x10/0x10 [ 655.834266][T13710] ops_init+0x1df/0x5f0 [ 655.834304][T13710] setup_net+0x100/0x390 [ 655.834336][T13710] ? __pfx_setup_net+0x10/0x10 [ 655.834370][T13710] ? debug_mutex_init+0x37/0x70 [ 655.834416][T13710] copy_net_ns+0x2f8/0x690 [ 655.834456][T13710] create_new_namespaces+0x3ea/0xa90 [ 655.834512][T13710] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 655.834563][T13710] ksys_unshare+0x45b/0xa40 [ 655.834618][T13710] ? __pfx_ksys_unshare+0x10/0x10 [ 655.834672][T13710] ? xfd_validate_state+0x61/0x180 [ 655.834717][T13710] __x64_sys_unshare+0x31/0x40 [ 655.834769][T13710] do_syscall_64+0xcd/0x4b0 [ 655.834825][T13710] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 655.834860][T13710] RIP: 0033:0x7fc22658eec9 [ 655.834886][T13710] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 655.834920][T13710] RSP: 002b:00007fc2273ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 655.834951][T13710] RAX: ffffffffffffffda RBX: 00007fc2267e5fa0 RCX: 00007fc22658eec9 [ 655.834974][T13710] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 655.834995][T13710] RBP: 00007fc226611f91 R08: 0000000000000000 R09: 0000000000000000 [ 655.835016][T13710] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 655.835036][T13710] R13: 00007fc2267e6038 R14: 00007fc2267e5fa0 R15: 00007ffef059c518 [ 655.835088][T13710] [ 656.125710][T13614] Bluetooth: hci4: command tx timeout [ 656.208264][T13610] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 656.247909][T13610] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 656.272480][T13610] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 656.366967][T13721] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1723'. [ 656.569839][T13730] netlink: 'syz.1.1724': attribute type 11 has an invalid length. [ 656.600654][T13730] netlink: 'syz.1.1724': attribute type 11 has an invalid length. [ 656.610412][T13730] netlink: 'syz.1.1724': attribute type 11 has an invalid length. [ 656.625231][T13730] netlink: 'syz.1.1724': attribute type 11 has an invalid length. [ 656.633927][ T1318] hsr_slave_0: left promiscuous mode [ 656.658312][ T1318] hsr_slave_1: left promiscuous mode [ 656.732669][ T1318] veth1_macvtap: left promiscuous mode [ 656.750407][ T1318] veth0_macvtap: left promiscuous mode [ 656.756206][ T1318] veth1_vlan: left promiscuous mode [ 656.766990][ T1318] veth0_vlan: left promiscuous mode [ 657.683369][ T1318] team0 (unregistering): Port device team_slave_1 removed [ 657.733293][ T1318] team0 (unregistering): Port device team_slave_0 removed [ 658.196958][T13614] Bluetooth: hci4: command tx timeout [ 658.201861][T13610] 8021q: adding VLAN 0 to HW filter on device bond0 [ 658.285085][T13610] 8021q: adding VLAN 0 to HW filter on device team0 [ 658.338020][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 658.345319][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 658.391074][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 658.398332][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 659.989192][T13610] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 660.089563][T13804] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1733'. [ 660.104026][T13804] ipvlan0: entered promiscuous mode [ 660.127292][T13804] ipvlan0: entered allmulticast mode [ 660.156564][T13804] veth0_vlan: entered allmulticast mode [ 660.427625][T13614] Bluetooth: hci3: unexpected event 0x3e length: 728 > 260 [ 660.427673][T13614] Bluetooth: hci3: unexpected subevent 0x0c length: 727 > 5 [ 660.492566][T13812] FAULT_INJECTION: forcing a failure. [ 660.492566][T13812] name failslab, interval 1, probability 0, space 0, times 0 [ 660.523587][T13812] CPU: 0 UID: 0 PID: 13812 Comm: syz.1.1734 Not tainted syzkaller #0 PREEMPT(full) [ 660.523637][T13812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 660.523659][T13812] Call Trace: [ 660.523670][T13812] [ 660.523682][T13812] dump_stack_lvl+0x16c/0x1f0 [ 660.523751][T13812] should_fail_ex+0x512/0x640 [ 660.523803][T13812] ? __kmalloc_cache_noprof+0x5f/0x780 [ 660.523846][T13812] should_failslab+0xc2/0x120 [ 660.523897][T13812] __kmalloc_cache_noprof+0x72/0x780 [ 660.523933][T13812] ? lockdep_init_map_type+0x5c/0x280 [ 660.523964][T13812] ? register_netdevice+0x4eb/0x2270 [ 660.523999][T13812] ? lockdep_init_map_type+0x5c/0x280 [ 660.524035][T13812] ? register_netdevice+0x4eb/0x2270 [ 660.524069][T13812] register_netdevice+0x4eb/0x2270 [ 660.524108][T13812] ? idr_alloc+0xdd/0x130 [ 660.524155][T13812] ? __pfx_register_netdevice+0x10/0x10 [ 660.524203][T13812] ppp_dev_configure+0xa1e/0xd40 [ 660.524253][T13812] ppp_ioctl+0x170e/0x2880 [ 660.524295][T13812] ? find_held_lock+0x2b/0x80 [ 660.524335][T13812] ? __pfx_ppp_ioctl+0x10/0x10 [ 660.524382][T13812] ? __fget_files+0x20e/0x3c0 [ 660.524427][T13812] ? __pfx_ppp_ioctl+0x10/0x10 [ 660.524484][T13812] __x64_sys_ioctl+0x18e/0x210 [ 660.524521][T13812] do_syscall_64+0xcd/0x4b0 [ 660.524577][T13812] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 660.524616][T13812] RIP: 0033:0x7f1e8b38eec9 [ 660.524642][T13812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 660.524677][T13812] RSP: 002b:00007f1e8c2f2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 660.524717][T13812] RAX: ffffffffffffffda RBX: 00007f1e8b5e5fa0 RCX: 00007f1e8b38eec9 [ 660.524741][T13812] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000008 [ 660.524762][T13812] RBP: 00007f1e8b411f91 R08: 0000000000000000 R09: 0000000000000000 [ 660.524783][T13812] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 660.524804][T13812] R13: 00007f1e8b5e6038 R14: 00007f1e8b5e5fa0 R15: 00007ffd8bba2478 [ 660.524849][T13812] [ 661.566324][T13610] veth0_vlan: entered promiscuous mode [ 661.661024][T13610] veth1_vlan: entered promiscuous mode [ 661.921733][T13843] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1738'. [ 661.940449][T13610] veth0_macvtap: entered promiscuous mode [ 662.002427][T13610] veth1_macvtap: entered promiscuous mode [ 662.144995][T13610] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 662.205536][T13610] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 662.260910][T13731] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 662.281789][T13731] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 662.302634][T13731] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 662.330253][T13731] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 662.431762][T13856] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1741'. [ 662.701506][T13731] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 662.724314][T13731] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 662.869580][T13731] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 662.897345][T13731] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 664.462533][T13887] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1744'. [ 664.481949][T13889] netlink: 338 bytes leftover after parsing attributes in process `syz.4.1745'. [ 664.504448][T13889] netlink: 338 bytes leftover after parsing attributes in process `syz.4.1745'. [ 664.526922][T13887] : renamed from vlan0 (while UP) [ 664.551192][T13889] netlink: 290 bytes leftover after parsing attributes in process `syz.4.1745'. [ 664.568429][T13880] netlink: 266 bytes leftover after parsing attributes in process `syz.2.1743'. [ 664.587453][T13889] veth0_macvtap: left promiscuous mode [ 664.593626][T13880] IPv6: NLM_F_CREATE should be specified when creating new route [ 664.655073][T13892] netlink: 290 bytes leftover after parsing attributes in process `syz.4.1745'. [ 664.842762][T13896] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.2.1748: iget: checksum invalid [ 664.867004][T13896] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 664.878974][T13896] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.2.1748: iget: checksum invalid [ 664.953047][T13896] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 665.023647][T13896] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.2.1748: iget: checksum invalid [ 665.088445][T13896] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 665.119702][T13896] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.2.1748: iget: checksum invalid [ 665.144388][T13896] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 665.186268][T13896] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 665.261071][T13896] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 665.385758][T13907] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1749'. [ 665.405412][T13907] netlink: 'syz.4.1749': attribute type 1 has an invalid length. [ 665.418329][T13907] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1749'. [ 665.719528][T13917] usb usb15: usbfs: process 13917 (syz.4.1752) did not claim interface 0 before use [ 667.630328][T13950] __nla_validate_parse: 3 callbacks suppressed [ 667.630346][T13950] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1759'. [ 667.867867][T13950] team0: Port device team_slave_1 removed [ 668.378986][T13954] netlink: 'syz.4.1760': attribute type 4 has an invalid length. [ 668.416636][T13954] netlink: 'syz.4.1760': attribute type 5 has an invalid length. [ 668.469284][T13954] netlink: 10 bytes leftover after parsing attributes in process `syz.4.1760'. [ 669.545635][T13848] ------------[ cut here ]------------ [ 669.551247][T13848] WARNING: CPU: 1 PID: 13848 at kernel/trace/trace.c:8604 tracing_buffers_mmap_close+0xdd/0x130 [ 669.562286][T13848] Modules linked in: [ 669.566953][T13848] CPU: 1 UID: 0 PID: 13848 Comm: syz.1.1739 Not tainted syzkaller #0 PREEMPT(full) [ 669.576416][T13848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 669.586969][T13848] RIP: 0010:tracing_buffers_mmap_close+0xdd/0x130 [ 669.593423][T13848] Code: 75 46 48 8b 7b 08 e8 e2 96 ff ff 31 ff 89 c3 89 c6 e8 07 4d fb ff 85 db 75 0a 48 83 c4 08 5b e9 b9 51 fb ff e8 b4 51 fb ff 90 <0f> 0b 90 48 83 c4 08 5b e9 a6 51 fb ff e8 91 cf 62 00 eb 87 e8 ba [ 669.613736][T13848] RSP: 0018:ffffc90004dd79c0 EFLAGS: 00010293 [ 669.620412][T13848] RAX: 0000000000000000 RBX: 00000000ffffffed RCX: ffffffff81bf5299 [ 669.628460][T13848] RDX: ffff888030f99e40 RSI: ffffffff81bf52ac RDI: 0000000000000005 [ 669.636569][T13848] RBP: ffffffff81bf51d0 R08: 0000000000000005 R09: 0000000000000000 [ 669.644586][T13848] R10: 00000000ffffffed R11: 0000000000000000 R12: ffff88807c9ed188 [ 669.652869][T13848] R13: dffffc0000000000 R14: ffffc90004dd7a48 R15: 0000000000000000 [ 669.661035][T13848] FS: 0000000000000000(0000) GS:ffff888124f7e000(0000) knlGS:0000000000000000 [ 669.670198][T13848] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 669.676915][T13848] CR2: 00007fc840890b50 CR3: 00000000754a8000 CR4: 00000000003526f0 [ 669.685225][T13848] Call Trace: [ 669.688885][T13848] [ 669.691851][T13848] remove_vma+0x85/0x160 [ 669.696115][T13848] exit_mmap+0x50a/0xb90 [ 669.700419][T13848] ? __pfx_exit_mmap+0x10/0x10 [ 669.705561][T13848] ? __lock_acquire+0xb97/0x1ce0 [ 669.710924][T13848] ? arch_uprobe_clear_state+0x16/0x150 [ 669.716676][T13848] __mmput+0x12a/0x410 [ 669.720807][T13848] mmput+0x62/0x70 [ 669.724551][T13848] do_exit+0x7c7/0x2bf0 [ 669.728749][T13848] ? proc_coredump_connector+0x2d1/0x4f0 [ 669.734432][T13848] ? __pfx_do_exit+0x10/0x10 [ 669.739088][T13848] do_group_exit+0xd3/0x2a0 [ 669.743615][T13848] get_signal+0x2671/0x26d0 [ 669.748346][T13848] ? force_sig_fault+0xc4/0x100 [ 669.753225][T13848] ? __pfx_get_signal+0x10/0x10 [ 669.758320][T13848] arch_do_signal_or_restart+0x8f/0x790 [ 669.763963][T13848] ? trace_irq_disable.constprop.0+0xd4/0x120 [ 669.770090][T13848] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 669.776338][T13848] irqentry_exit_to_user_mode+0x141/0x2b0 [ 669.782208][T13848] asm_exc_page_fault+0x26/0x30 [ 669.787586][T13848] RIP: 0033:0x40fff [ 669.791449][T13848] Code: Unable to access opcode bytes at 0x40fd5. [ 669.798229][T13848] RSP: 002b:000000000000000a EFLAGS: 00010206 [ 669.804330][T13848] RAX: 0000000000000000 RBX: 00007f1e8b5e5fa0 RCX: 00007f1e8b38eec9 [ 669.812735][T13848] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46 [ 669.821141][T13848] RBP: 00007f1e8b411f91 R08: 0000000000000002 R09: 0000000000000000 [ 669.829259][T13848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 669.837274][T13848] R13: 00007f1e8b5e6038 R14: 00007f1e8b5e5fa0 R15: 00007ffd8bba2478 [ 669.845282][T13848] [ 669.848369][T13848] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 669.855661][T13848] CPU: 1 UID: 0 PID: 13848 Comm: syz.1.1739 Not tainted syzkaller #0 PREEMPT(full) [ 669.865055][T13848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 669.875160][T13848] Call Trace: [ 669.878453][T13848] [ 669.881482][T13848] dump_stack_lvl+0x3d/0x1f0 [ 669.886114][T13848] vpanic+0x640/0x6f0 [ 669.890207][T13848] ? tracing_buffers_mmap_close+0xdd/0x130 [ 669.896059][T13848] panic+0xca/0xd0 [ 669.899806][T13848] ? __pfx_panic+0x10/0x10 [ 669.904339][T13848] ? check_panic_on_warn+0x1f/0xb0 [ 669.909471][T13848] check_panic_on_warn+0xab/0xb0 [ 669.914430][T13848] __warn+0xf6/0x3c0 [ 669.918362][T13848] ? tracing_buffers_mmap_close+0xdd/0x130 [ 669.924204][T13848] report_bug+0x3c3/0x580 [ 669.928577][T13848] ? tracing_buffers_mmap_close+0xdd/0x130 [ 669.934415][T13848] handle_bug+0x184/0x210 [ 669.938759][T13848] exc_invalid_op+0x17/0x50 [ 669.943362][T13848] asm_exc_invalid_op+0x1a/0x20 [ 669.948226][T13848] RIP: 0010:tracing_buffers_mmap_close+0xdd/0x130 [ 669.954752][T13848] Code: 75 46 48 8b 7b 08 e8 e2 96 ff ff 31 ff 89 c3 89 c6 e8 07 4d fb ff 85 db 75 0a 48 83 c4 08 5b e9 b9 51 fb ff e8 b4 51 fb ff 90 <0f> 0b 90 48 83 c4 08 5b e9 a6 51 fb ff e8 91 cf 62 00 eb 87 e8 ba [ 669.974385][T13848] RSP: 0018:ffffc90004dd79c0 EFLAGS: 00010293 [ 669.980477][T13848] RAX: 0000000000000000 RBX: 00000000ffffffed RCX: ffffffff81bf5299 [ 669.988666][T13848] RDX: ffff888030f99e40 RSI: ffffffff81bf52ac RDI: 0000000000000005 [ 669.996668][T13848] RBP: ffffffff81bf51d0 R08: 0000000000000005 R09: 0000000000000000 [ 670.004657][T13848] R10: 00000000ffffffed R11: 0000000000000000 R12: ffff88807c9ed188 [ 670.012638][T13848] R13: dffffc0000000000 R14: ffffc90004dd7a48 R15: 0000000000000000 [ 670.020632][T13848] ? __pfx_tracing_buffers_mmap_close+0x10/0x10 [ 670.026931][T13848] ? tracing_buffers_mmap_close+0xc9/0x130 [ 670.032779][T13848] ? tracing_buffers_mmap_close+0xdc/0x130 [ 670.038633][T13848] remove_vma+0x85/0x160 [ 670.043200][T13848] exit_mmap+0x50a/0xb90 [ 670.047508][T13848] ? __pfx_exit_mmap+0x10/0x10 [ 670.052331][T13848] ? __lock_acquire+0xb97/0x1ce0 [ 670.057394][T13848] ? arch_uprobe_clear_state+0x16/0x150 [ 670.062982][T13848] __mmput+0x12a/0x410 [ 670.067085][T13848] mmput+0x62/0x70 [ 670.070828][T13848] do_exit+0x7c7/0x2bf0 [ 670.075001][T13848] ? proc_coredump_connector+0x2d1/0x4f0 [ 670.080661][T13848] ? __pfx_do_exit+0x10/0x10 [ 670.085278][T13848] do_group_exit+0xd3/0x2a0 [ 670.089797][T13848] get_signal+0x2671/0x26d0 [ 670.094334][T13848] ? force_sig_fault+0xc4/0x100 [ 670.099216][T13848] ? __pfx_get_signal+0x10/0x10 [ 670.104101][T13848] arch_do_signal_or_restart+0x8f/0x790 [ 670.109683][T13848] ? trace_irq_disable.constprop.0+0xd4/0x120 [ 670.115771][T13848] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 670.122063][T13848] irqentry_exit_to_user_mode+0x141/0x2b0 [ 670.127842][T13848] asm_exc_page_fault+0x26/0x30 [ 670.132709][T13848] RIP: 0033:0x40fff [ 670.136535][T13848] Code: Unable to access opcode bytes at 0x40fd5. [ 670.143007][T13848] RSP: 002b:000000000000000a EFLAGS: 00010206 [ 670.149094][T13848] RAX: 0000000000000000 RBX: 00007f1e8b5e5fa0 RCX: 00007f1e8b38eec9 [ 670.157080][T13848] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46 [ 670.165150][T13848] RBP: 00007f1e8b411f91 R08: 0000000000000002 R09: 0000000000000000 [ 670.173135][T13848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 670.181165][T13848] R13: 00007f1e8b5e6038 R14: 00007f1e8b5e5fa0 R15: 00007ffd8bba2478 [ 670.189167][T13848] [ 670.192557][T13848] Kernel Offset: disabled [ 670.196898][T13848] Rebooting in 86400 seconds..