last executing test programs: 7.119165611s ago: executing program 3 (id=1196): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x44, 0x0) r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r1, 0x7a7, 0x0) read$auto(r1, &(0x7f0000000000)='/sys/kernel/debug/sync/sw_sync\x00', 0x2) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, 0x6) ioctl$auto_IOCTL_VMCI_SET_NOTIFY(r1, 0x7cb, 0x0) r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r2, &(0x7f0000000e00)="51426572911c17e9dd66bf94ea32689283bb895dbc0a97721ed6e250c974356905898b7d48acecddf280cf6dd4ba18c1aa3928071c6585025ceab0e2f34f37ddec138ea587fc4def825608b0ab2a6ecac42062bd3c58ba606307b7471b20a40ffa168b91dde4727571c4ec94bfbde1df90ccb265ffda374c98ffb1ee22069af38a3f200532dbbe5e98f4455170e9a137517b9b7b8840359940ab00f37125c2bec0ac36606b6c69edb35967d723fb81a15faea2bd280d1581ad1ef597bb4dc09f6a5d53aaff1877b77c4e425761dc09d34498c1fce72c0ba1041a99b8748a37597b9567cda1de2cbf6962798e5ee11bf7cb2c70a9502f33c43b8e5dc54de743a2e24cb94c22d669b434888a7ce4cb16cd77b324258e07af32adc0cb38f8c622085783f6804edc3913fb9e98c55713fa0bf8101ad0f6f43407ce4be0001d1bb201bec283ade79ab23484c1076e703864629ac9a6031533dc956f705f89f0e0ef7d3109e46859d1f2ad1b8cb3cfcedf868a3be101e8b9acd75e39e6a27a541aa9fe86ad3119b7049c3fad2a901222eb948cabb4b5c3e5ba6ffc02a15bf7d550b00ab0f3dd3002924f7bd0701269ae293c4cb231b9127d1f6b38dd6fbb3429905384eed7eed9330a9c5e732bdd510169d9ca3e420ea2102be3770a0ab598c037b8f01e8910cf8b0942aafb156ac90724cf552df158a7f59c26e62f3fcf32d860c2259cb1b3118a773ff3cfbaf9c5b068dade5cd7778f1ea98700629b62534735fef3071c30afa6ea26f7e651ec140936c07d9e90f1c9faef3e05376b1e121af6a6691616c10e19fd4f16b1858b44d99e597908cda0e8fa8c21d8b700987d7723a4b5a4ff3c371f2d1cb9fb2f054abc58727239ba67a173f1431083fedc7c4304488c13c75e4995a58ac9de085377356ddc5338aeb44e7f3d06f82a5e0c846159c881a0395a3dbf32a9f2530a520721431a752b13b01a89bdf2b38387b72e8a533936623ec396f6ef94ddfcca047bf20a6fe450a03dedb36a57355e2519ff579b5c63095f48407ece8a7c6c4f5b2582616f0a6bba059810c0a28355fb08dceec9e290026452c3135f8ad93f9617f22e590122d43f6fdc1ea0f9ec12c551b5127108443bb081f7a89660034ea4f3c4305108428cc91918dbb28c2a117f09609e40903b13055e92a727afa767b1f97df335ee729686c0113e4cc18aa50f4ad82b1d403cc6c11ac3bf63415560417d7d488df01b69c925ca3fce60ca7ac767fd11df61caf62f3ab67dad043faf1cc334903e0f419c2e97553ecaad5814bf097192e76e9a16bc5c9be932718aba32cd7dbcc6bc634a463c6f709cc81963b39442e710c14c7e107b0aeb7b6a0e3f3757860d10dd741863277c43ce4dcec49f4558959b08f59182baf4f250aa045fee383ceaec280817bf222dfbeeca8c1ec8473176326c1ffd49ea072b5f3c73f36865b6052a1595c1bb76cfe37f976848fbcb408381ddeff9c318a2e6bbfe6c18ef16531fec3c47874a5391238c0d6b0e033db3fce94127cc9c98a4211e5d873f7b4810846d96be2d6cac532fce0ddee737e4d1ddb65b8b2449984a897e4090449ed4fb4006fb9d133e51396d4664a3f0c395c5b24781f8389979ccb565c6461b66db7134d15cff5ae8f935a5bcb23caace2edd2b37a726575e3cb0528de05edd9f03e30feb617767b6a557280a0a288b52af44a1607b6063867e5c9d8d56c44968fd509b5983fa06e6b1eefb2f8cee0c1cb49b8b569cf13b77adbc22ce972cd718167ac571ee41a446d13931f849d5636c729996b36ec84171fde260a4e01e9770cf687591a79833ae6473c51e12c0faab96ef093e6178d485526dbf775c94324c76bd4af2652e9036b1cc0d3df05c9232ee6eef7c4f46a6cf8ad160ad087aba6928bf156bf3ade1d135a965c4a2b283485737da67fe99227f2fbfb3baa74d75fe29122adfd82fcb9325b7ea826a52559654e76d494a374d9535facfcd4ab248e388c516bb8a0dc151b1557e418fd7c625c67ab1c50d6f05b97ba15c55631aeea44b21131aa93ead176f7bfd1418856e28782f004f272738827a64bb695f6b6a08cff8d1917be52a8851bd2bfd57d08bb0660e2ffc23792a419c2e9b006e3b0ad05044d99b97391fd2cceb86cf26acebe089a8", 0x5fc) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xffffffffffffffff, 0xfffffffc) mmap$auto(0x5, 0x6, 0x0, 0x11, r1, 0x8001) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, r0, 0x0) r3 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x46000, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x1, 0x0) pipe2$auto(0x0, 0x80) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) getcwd$auto(0x0, 0xffffffffffffffff) openat2$dir(0xffffffffffffff9c, 0x0, &(0x7f0000000240)={0x480c0, 0x28, 0x3}, 0x18) setsockopt$auto(0x3, 0x1, 0x800000f, 0x0, 0xd0e) listen$auto(0x3, 0x83) shutdown$auto(0x200000003, 0x2) bpf$auto_BPF_PROG_ATTACH(0x8, &(0x7f0000000180)=@info={r2, 0xa, 0x9}, 0xff) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r3, 0xc0285700, 0x0) 7.079161951s ago: executing program 0 (id=1197): select$auto(0x4, 0x0, &(0x7f0000000080)={[0x209c, 0x80000e9e, 0x3, 0xd, 0x250, 0x100000000, 0x2c2, 0x800002017d, 0x4, 0x40, 0xd, 0xd59, 0xfb, 0xff, 0x21, 0x100000005]}, 0x0, 0x0) (async) r0 = openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000180)='/dev/media3\x00', 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x1, 0xf8, r0, 0x8000) (async) socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x121900, 0x0) (rerun: 32) openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000200)='/proc/uptime\x00', 0x2800, 0x0) sendfile$auto(0x2, 0x3, 0x0, 0xc3e0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async, rerun: 32) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) (rerun: 32) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000001100)=""/192, 0xc0) (async) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) r4 = socket(0xa, 0x2, 0x0) setsockopt$auto_SO_WIFI_STATUS(r4, 0x0, 0x29, 0x0, 0xbff) (async) mmap$auto(0x1, 0x2, 0xffffffffffffffff, 0x40eb1, 0x602, 0x300000000000) (async, rerun: 64) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) (async, rerun: 64) syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x2000, 0x0) r5 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) (async, rerun: 64) r6 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64) sendmsg$auto_OVS_FLOW_CMD_GET(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)={0x124, r5, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x10c, 0x1, 0x0, 0x1, [@nested={0x108, 0x10, 0x0, 0x1, [@nested={0x104, 0x8, 0x0, 0x1, [@nested={0x100, 0x6d, 0x0, 0x1, [@nested={0xfc, 0xbf, 0x0, 0x1, [@typed={0x8, 0x39, 0x0, 0x0, @pid}, @typed={0xee, 0xc5, 0x0, 0x0, @binary="87f454b74c8e4e9578d7cba754b5d17e7b508a36dfee9790d341e70ef583e8ffff7892ba30df567a4c377bf8c32ce765acef088e4a3bf9e10bcab15322db3ca33b0a5220ccf3bbe33f8222c26de306eae48fd985ff6b5a5a9229d1f6c445a1dca488443425085e374acc182c63d278a3657f20d855b63683e744c752161656b077dac3ff96d7d69fbef908b63d8d390d82164ae5db8569b7622ffa894d950e285c5665996cea6977d8801620a96f0d526b3d6993e446a71593d78974a90c1b6d3b85f00898d853d608d02b0627270d6275230648a6c394a4d92c5b5dc91b8f48fb489a8dba08b183599f"}]}]}]}]}]}]}, 0x124}, 0x1, 0x0, 0x0, 0x24040071}, 0x800) (async) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000326af00ec93f106000a000000080027000800d2b300000800157ee700"], 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x24008000) socket(0x10, 0x2, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000) (async) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmsg$auto_NFSD_CMD_POOL_MODE_GET(r2, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x14, 0x0, 0x10, 0x70bd2d, 0x25dfdbfe, {}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000041}, 0x800) (async, rerun: 32) process_vm_readv$auto(0xd1d, &(0x7f00000010c0)={0x0, 0x4}, 0x4, 0x0, 0x0, 0x0) (rerun: 32) 5.726034451s ago: executing program 2 (id=1200): mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) socket(0x2, 0x801, 0x100) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/fs/ocfs2/loaded_cluster_plugins\x00', 0x800, 0x0) preadv$auto(r0, &(0x7f0000000080)={0x0, 0x6}, 0x7, 0xbbf, 0x69bf) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) r1 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec8\x00', 0x101901, 0x0) ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r1, 0xc05c6104, &(0x7f0000000100)={'\x00', 0xffff, 0x6, 0x2, 0x9b4, 0x9, "ce7009002ce100", '\x00', "0201ccb7", '\x00', ["00000f0008b330ac007abfc1", "70d900001100", "0800000000000000000000ec", "00deff1000"]}) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3, @empty}, 0x51) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000300)='/d\x00'/12, 0x100000a3d9) sysfs$auto(0x2, 0x10000000000000e, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f602, 0x0) ioctl$auto_UBI_IOCATT(0xffffffffffffffff, 0x40186f40, &(0x7f0000000080)={0xffffffff, 0x0, 0x2000003f, 0x4, 0x1}) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x801, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51) socket(0xf, 0x3, 0x2) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) open(0x0, 0x14d27e, 0x72) socket(0x22, 0x1, 0xfffffffd) fanotify_init$auto(0x5, 0x2000000000002) select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0xfff, 0x1, 0x5, 0x3, 0x95f4da2d, 0xc, 0x6, 0x62, 0x7, 0x7, 0x6d3f, 0xa, 0x4, 0x5]}, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) socketpair$auto(0x6, 0x8, 0x0, 0x0) 5.654329022s ago: executing program 0 (id=1201): mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) pread64$auto(0xffffffffffffffff, 0x0, 0x7fc, 0x400) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/trace\x00', 0x600, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x74c) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xe4, 0x9b72, 0x2, 0x400) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = socket(0xa, 0x2, 0x88) capset$auto(0x0, 0x0) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x800, 0x100) setsockopt$auto(r0, 0x29, 0x10, 0x0, 0x1) socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) bind$auto(0xffffffffffffffff, 0x0, 0xffffffe6) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) 4.404141667s ago: executing program 3 (id=1204): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) ioctl$auto(r1, 0x400454ca, 0x38) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x80900, 0x0) openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, 0x0, 0x20a01, 0x0) ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000000c0), 0xffffffffffffffff) mmap$auto(0xb2, 0x14, 0xffb, 0x8000000008015, r0, 0x7) madvise$auto_MADV_PAGEOUT(0x0, 0x9, 0x15) write$auto(0x3, 0x0, 0xfffffdef) ioctl$auto_BLKTRACETEARDOWN(r2, 0x1276, 0x0) mmap$auto(0x8000000000002001, 0x20009, 0xdf, 0x15, 0xffffffffffffffff, 0x8000) io_uring_setup$auto(0x6, 0x0) pwrite64$auto(r1, &(0x7f0000000040)='MAC80211_HWSIM\x00', 0x4, 0xd) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getresuid$auto(&(0x7f0000000140)=0xf, &(0x7f00000001c0)=0x40, &(0x7f0000000200)) r3 = socket(0xa, 0x3, 0x2) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty48\x00', 0x880, 0x0) ioctl$auto(r4, 0x5609, r3) open_tree$auto(0xffffffffffffffff, 0x0, 0x74ee) sendmsg$auto_NFSD_CMD_THREADS_SET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x20000050}, 0x40040) 4.395828343s ago: executing program 2 (id=1205): openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0xe0f82, 0x0) r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyx4\x00', 0x20000, 0x0) r1 = bpf$auto_BPF_ENABLE_STATS(0x20, &(0x7f0000000040)=@enable_stats={0x400839bd}, 0x8) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto_CDROMCLOSETRAY(r1, 0x5319, &(0x7f0000000100)="dd7811f60f5da95da25477235aae998447b022f71b0743677da058225f576e41b8370f8728d168914e3cc85e7e33ff4fc013cb978151bb79c2632e2526b6bdfc0ada2cb99b4be52ecd6094123fd2acd043f2f7eb520c77cebc7a5e80a996a468598bf4a5af057316a054ab81956fd0717f3038e09cf93f51baedeb122627b16f35288aebe0bb285e4b326982a9069158db171a6f01119a25514ad318400e946f99be5d121d617ba069a171b3df85c7e8e8903929") mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000) mremap$auto(0x1fc000, 0xfee0, 0x3fd6, 0x3, 0x3) getsockopt$auto_SO_ZEROCOPY(r0, 0xed, 0x3c, &(0x7f00000001c0)='#\x00', &(0x7f0000000200)=0x42c) write$auto_console_fops_tty_io(r1, &(0x7f0000000840)="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", 0xd4e) 3.486063684s ago: executing program 1 (id=1207): mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0xffffffffffffffff, 0x10008000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x2501, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0x1d, 0x3000, 0x6, 0x7, 0x400c, 0xffffffffffffffff, [], {0x6, 0x9, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x6}, {0x100, 0x1, 0x52, 0x85, 0x4, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}}) r1 = pidfd_open$auto(0x1, 0x0) sendmsg$auto_NL802154_CMD_SET_WPAN_PHY_NETNS(r1, 0x0, 0x5) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x4, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) socket$nl_generic(0x10, 0x3, 0x10) socket(0x26, 0x80805, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x28400, 0x82) open(&(0x7f00000001c0)='./file0\x00', 0x528c1, 0x118) setfsuid$auto(0xee00) unshare$auto(0x40000080) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/amidi2\x00', 0x101000, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) prctl$auto_PR_SET_MM_ENV_END(0x0, 0xb, 0x0, 0x2, 0x7fffffffffffffff) openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000000), 0x40001, 0x0) write$auto(0xffffffffffffffff, 0x0, 0xfff) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) listmount$auto(0x0, &(0x7f00000001c0)=0x4, 0x4, 0x101) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/workqueue/nvme-reset-wq/cpumask\x00', 0x9c2342, 0x0) sendfile$auto(r3, r3, 0x0, 0x4000000a1f) pidfd_open$auto(0x1, 0x0) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000001b40)='/dev/cuse\x00', 0x5840, 0x0) 3.214316945s ago: executing program 2 (id=1208): r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x41e202, 0x84) open_tree_attr$auto(r0, &(0x7f0000000040)='./file0\x00', 0x7, &(0x7f0000000080)={0x3, 0x7, 0x2, @raw=0x81}, 0x4) ioctl$auto(0xc8, 0x400454cd, 0xfffffffffffffffe) r1 = setfsuid$auto(0xee00) socket(0xb, 0x2, 0x3a) prctl$auto_PR_PAC_SET_ENABLED_KEYS(0x3c, 0x3, 0x5, 0x7, 0x2) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x3, 0x1ff, 0x1001, 0x5, 0x717e, 0x1ffde, 0x7, 0x3, 0xd, 0x0, 0x80003, 0x4, 0x1ffffffffffd, 0xb4, 0xfffffffffffffffe, 0x7, 0x10002, 0x7f, 0x2a2, 0x2, 0xa, 0x22000, 0x200, 0x4, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, 0x1fe, 0xd) ioctl$auto__ctl_fops_dm_ioctl(0xffffffffffffffff, 0xfffffffffffffd03, &(0x7f00000001c0)) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x41900, 0x0) mmap$auto(0x0, 0x8, 0x80000000000000df, 0x10004000eb1, 0x8, 0x8000008000) openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000240), 0x8a002, 0x0) r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb0\x00', 0x800, 0x0) ioctl$auto_FBIOPUTCMAP(r2, 0x4605, &(0x7f0000000340)="139e6019de5686") openat$auto_fops_u64_ro_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ramdisk_pages/ram0\x00', 0xc0435dc3dd0fc551, 0x0) socket(0x2b, 0x1, 0x1) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000000), r3) sendmsg$auto_IOAM6_CMD_ADD_SCHEMA(r3, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="2a4fe1bcdbc40000009be7a3a2b12f455b8c7c0abac53d6f288012a2b62d3b96df6f6d21c0a087106c3c28f2a924a162d3eacbf5546653421808cf768243b7c04b656946a8c07836", @ANYRES16=r4, @ANYBLOB="01002abd7000fbdbdf2504000009040005000800040009000000"], 0x20}, 0x1, 0x3000700, 0x0, 0x1}, 0x8010) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x20540, 0x0) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r6 = socket(0x2, 0x1, 0x0) ioctl$auto(r5, 0x5420, r6) ioctl$auto(0x3, 0x5408, 0x38) setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x567) setresuid$auto(r1, 0x0, r1) semctl$auto(0x6, 0x10, 0x1, 0x6) r7 = set_tid_address$auto(&(0x7f0000000480)=0x1) shmctl$auto_IPC_INFO(0x53, 0x3, &(0x7f0000000280)={{0x80000001, r1, 0x0, 0x4, 0xd, 0xe, 0x9e3b}, 0x5, 0x101, 0x7, 0x2, @inferred=r7, @inferred=r7, 0x7a, 0x0, &(0x7f0000000100)="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", &(0x7f0000000200)="591a8a7bffdb4a9d12d8d8dc02954c441752e3b4c2f63b184df4d921af9f67e1a8db5debd09262cd239e36509839e02e777c538c6e6192ae012a4598e0cb80cf092f8f3d66baa7cceb9a0508f27d81d2df63c63f002fda6d7d6bdadebd8c5186dafa8a53a2133e73c7c27af67f11d1"}) 2.604123206s ago: executing program 0 (id=1209): r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$auto(0x3, 0xae78, r1) 2.480561181s ago: executing program 1 (id=1210): mmap$auto(0x1f, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mincore$auto(0x1000, 0x8001, 0x0) r0 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r0, 0x107, 0x12, 0x0, 0x4) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff) 2.34100369s ago: executing program 2 (id=1211): mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x8200, 0x1001, 0x8, 0x1000000f, 0x66b, 0x0, 0x5}, 0x6f4) socket(0x10, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) pipe$auto(0x0) writev$auto(0x5, &(0x7f0000000100)={0x0, 0x7}, 0x201) vmsplice$auto(0x4, &(0x7f0000000040)={0x0, 0x80000000002}, 0x3, 0x4) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x40001, 0x0) bpf$auto_BPF_MAP_GET_NEXT_ID(0xc, &(0x7f0000000080)=@token_create={0x8, r0}, 0xb6) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x80000008000) io_uring_setup$auto(0x406, 0x0) poll$auto(&(0x7f0000000d40)={0x3, 0x3, 0xa}, 0x5, 0x3fc) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) getrandom$auto(0x0, 0x6000000, 0x3) io_uring_enter$auto(0x3, 0xa84, 0x7ffffffe, 0xa, 0x0, 0x46) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/virtual/block/nbd4/queue/optimal_io_size\x00', 0x40000, 0x0) read$auto(r2, 0x0, 0x20) write$auto(r1, 0x0, 0x98c7) 2.185233132s ago: executing program 0 (id=1212): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/tainted\x00', 0x28002, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCVHANGUP2(r0, 0x5437, 0x0) writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3) r1 = prctl$auto_PR_SET_VMA_ANON_NAME(0x6, 0x0, 0x0, 0x8000000000003, 0x3) socket(0x10, 0x2, 0x0) writev$auto(0xffffffffffffffff, 0x0, 0x9) close_range$auto(0xffffffffffffffff, 0x8, 0x0) mmap$auto(0x0, 0x4020009, 0xdc, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) read$auto_tun_fops_tun(0xffffffffffffffff, 0x0, 0x0) madvise$auto(0x0, 0x600009, 0x19) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x2000, 0x0) ioctl$auto(r2, 0x4b4e, r2) fanotify_init$auto(0x0, 0x5) io_uring_register$auto_IORING_REGISTER_SEND_MSG_RING(r1, 0x1f, &(0x7f0000000000)="2740d29e114b256c28a0f2965524f4f2b0688b5c5b0f265cd1619b3005aa22d52083d7b51ae14601c1165e", 0x1) setsockopt$auto_SO_BINDTOIFINDEX(r1, 0xd4e, 0x3e, &(0x7f0000000040)='/dev/ttyS2\x00', 0x8) 2.184093955s ago: executing program 1 (id=1213): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/nfs/parameters/callback_tcpport\x00', 0x183042, 0x0) sendfile$auto(r0, r0, 0x0, 0x3) mmap$auto(0x0, 0xb, 0x3, 0xeb1, r0, 0x8000) mmap$auto(0x0, 0x400005, 0x800000000000df, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/netfilter/nf_log/3\x00', 0x2a8380, 0x0) mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x8) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1/file0\x00', 0x840, 0xc) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x900, 0x0) r3 = io_uring_setup$auto(0x6, 0x0) io_uring_setup$auto(0x83, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000000)='/dev/etherd/err\x00', 0x0, 0x0) close_range$auto(r1, r2, 0x0) ioctl$auto_I2C_SLAVE_FORCE(r3, 0x706, &(0x7f0000000080)="162c9e7036ec553b4ec4b457c61354171a50f32522ec9c41a999e462f96d") socket(0x10, 0x2, 0x0) io_uring_setup$auto(0x4, 0x0) mlock$auto(0x3, 0x3) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x40500, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) socketpair$auto(0x4004, 0x7, 0x4, 0x0) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r5, 0x5423, 0x0) ioctl$auto_TCFLSH2(r4, 0x5408, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/net/rose14/statistics/tx_aborted_errors\x00', 0x200, 0x0) read$auto(r6, 0x0, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/system/cpu/cpu0/power/pm_qos_resume_latency_us\x00', 0x48a22, 0x0) write$auto(r3, 0x0, 0x8) 1.954132293s ago: executing program 3 (id=1214): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000001440)='/dev/dmmidi2\x00', 0x800, 0x0) ioctl$auto_SNDRV_RAWMIDI_IOCTL_PVERSION(r0, 0x80045700, 0xfffffffffffffffd) setrlimit$auto(0x2, &(0x7f0000000040)={0x0, 0x20000000000006}) mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000) r1 = getpid() mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) capset$auto(&(0x7f0000000180)={0x19980330}, 0x0) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/sys/kernel/usermodehelper/bset\x00', 0x80001, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r2, 0x0, 0x0) pidfd_open$auto(r1, 0x0) socket(0xa, 0x801, 0x84) r3 = epoll_create$auto(0x3e) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x10, 0x2, 0x14) socket$nl_generic(0x10, 0x3, 0x10) timerfd_create$auto(0x9, 0x0) clock_nanosleep$auto(0xb, 0x6, 0x0, 0xfffffffffffffffd) socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) futex$auto(0x0, 0x5, 0x0, 0x0, 0x0, 0xa0000001) setsockopt$auto(0x3, 0x10000000084, 0x19, 0x0, 0x8) epoll_ctl$auto(r3, 0x1, 0x8000000000000000, 0x0) r4 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/fb0\x00', 0x0, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/platform/snd_aloop.0/sound/card1/id\x00', 0x48a22, 0x0) flock$auto(r5, 0x4) write$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f00000002c0)='-', 0x1) read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000002140)=""/4094, 0xffe) mmap$auto_fb_fops_fb_chrdev(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x7, 0x12, r4, 0x80000000000000) epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0) 1.600581498s ago: executing program 3 (id=1215): mmap$auto(0x0, 0x400008, 0x1, 0x9b72, 0x2, 0x8000) (fail_nth: 4) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000000200)={{@raw=0x3, 0xfffffffd, 0x3, 0x85, "3112d585005a614d19e22af9ffb683dbede3d0bf828bbfba40f035ddbe6b7fe5e2f94bd90484b0755015e48d", @raw=0x80000000}, 0x400008, 0x22, 0x4, @inferred, @enumerated={0x10, 0x1, "dd1697a92d75e4294e40cbf5f00a4bf01fdc216e7e58e9a94cb1fdf9ca28e178df4a1f84cf91cc04e952f45610072c965773ff3ab1ee171017aef9a019266caa", 0x2}, "7a9fc199a16a2311eacf2fc7ae1d8778dc610400000001000f00000000b6debe0eda71bdd709254592b67f9cb5adb17884a16f7ce8cb7c0eb32791702b8d7c2d"}) rt_sigqueueinfo$auto(0x0, 0x4, &(0x7f0000000000)={@siginfo_0_0={0xf9, 0x14, 0x7e73, @_timer={0x0, 0x80000001, @sival_ptr=0x0, 0x5}}}) r0 = socket(0x11, 0x3, 0x9) sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000200), 0xf}, 0x7, 0x0, 0x5, 0xe}, 0x5}, 0x1, 0x101) 1.522385834s ago: executing program 1 (id=1216): madvise$auto_MADV_NORMAL(0x7, 0x60c4, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x2, 0x1, 0x0, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/run_estimation\x00', 0x0, 0x0) read$auto_proc_sys_file_operations_proc_sysctl(r0, 0x0, 0x0) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) pwrite64$auto(0xc8, 0x0, 0xfdef, 0x3) r1 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, 0x0, 0x121480, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) kill$auto(0x0, 0x11) ioctl$auto_CEC_ADAP_G_PHYS_ADDR(r1, 0x80026101, 0x0) mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) rename$auto(0x0, 0x0) r2 = openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x8a141, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000140), r3) sendmsg$auto_IPVS_CMD_SET_CONFIG(r3, &(0x7f0000002a80)={0x0, 0x0, &(0x7f0000002a40)={&(0x7f0000005340)={0x1c, r4, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x80000000}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20040000}, 0x80) write$auto_lowpan_enable_fops_(r2, &(0x7f00000000c0)='3', 0x1) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_VPORT_CMD_SET(r5, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="08002cbd7000fddbdf25040000000900090000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x54}, 0x20000000) 1.171692773s ago: executing program 2 (id=1217): sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x8, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x29, 0x2, 0x0) r0 = socket(0x10, 0x3, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, 0x0, 0x40000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xaa102, 0x0) ioperm$auto(0x7, 0x800, 0x0) r1 = socket(0xa, 0x3, 0x3a) getsockopt$auto(r1, 0x29, 0xce, 0x0, 0x0) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) clock_settime$auto(0xfffffffb, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x7, 0x0, 0x0, 0x0, 0x0) write$auto(r2, 0x0, 0x100000a3d9) r3 = openat$auto_hwsim_fops_rx_rssi_(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy18/hwsim/rx_rssi\x00', 0x4000, 0x0) write$auto_hwsim_fops_rx_rssi_(r3, &(0x7f0000000080)="5ff969eba311c5180d75f8b514dfe0d129fec5c6c8e4c1575770bc3caec998834c9f736668a394b04c21e9d1de5f0a007915319a4d351059c729563e93067e", 0x3f) mmap$auto(0x400000000000, 0x40000b, 0xdf, 0xffffffffffffffff, 0x2, 0x20000008000) madvise$auto(0xff, 0x0, 0x6c34f688) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x50b41, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/tty/ptyu9/power/runtime_active_time\x00', 0x20240, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) write$auto(0x3, 0x0, 0xfdef) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) madvise$auto(0x0, 0x2003f0, 0x18) close_range$auto(0x0, 0xfffffffffffff000, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0xa, 0xb8, 0x10, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0xf) bpf$auto(0x80000001, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex=r4, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x6e, 0x4}}, 0x92) 1.041658035s ago: executing program 3 (id=1218): mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x8000) msgctl$auto_IPC_INFO(0x8, 0x3, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty29\x00', 0x800, 0x0) ioctl$auto(r0, 0x560a, 0x7) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) r1 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffff}, 0x1, 0x0, 0x0, 0x9}, 0x100007}, 0x3, 0x0) select$auto(0x7f, &(0x7f0000000300)={[0x5, 0x840, 0x100000000, 0x4a53157b, 0xb8, 0x4, 0x8, 0xbb2, 0x7, 0x81, 0x7, 0x8, 0x9492, 0x6, 0x9, 0xf]}, &(0x7f0000000380)={[0x7, 0x0, 0xfffffffffffff66c, 0x67b, 0x5, 0xffffffffffffffff, 0x9, 0x46, 0x5, 0x6, 0x1, 0x4, 0xff, 0x20000000, 0x7, 0x1]}, &(0x7f0000000400)={[0x3, 0x2, 0x7, 0x7fff, 0x8, 0x4, 0x352, 0xaa9, 0xffffffff, 0x5, 0x5, 0x1, 0x0, 0x1, 0x5c, 0x7]}, &(0x7f0000000200)={0x2, 0x8}) r2 = socket(0x29, 0x2, 0x0) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x4000}, 0x40000) recvmmsg$auto(r3, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r2, 0x8b0f, 0x24) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r4, 0x0, 0x98c7) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYRES8=r4, @ANYBLOB="260083f85d17a2ebf9e1ece1064530bdadbc1c4576958e97863d0e0037c1b7f0e9195556a3589be958ed0aa7", @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x10000894}, 0x40000) read$auto(r1, &(0x7f0000002300)='MAC802154_HWSIM\x00', 0xfdef) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x98080, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_register$auto_IORING_UNREGISTER_IOWQ_AFF(r1, 0x12, &(0x7f0000000140)="e451c5bfcd0c49514113fcdd7623ba6f4a8c2dbf79b590e35095ed052dcdb9212d15c3d657", 0x57e0) read$auto_state_fops_(0xffffffffffffffff, 0x0, 0x0) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), r1) openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/lu_gp_id\x00', 0x189002, 0x0) 875.480483ms ago: executing program 0 (id=1219): socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000) getsockopt$auto(0x4, 0x6, 0x1b, 0xfffffffffffffffc, 0x0) (fail_nth: 4) 706.751474ms ago: executing program 1 (id=1220): close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$auto(0x3, 0xae78, r1) 169.40502ms ago: executing program 2 (id=1221): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = getpid() pidfd_open$auto(r0, 0x0) socket(0x2d, 0x801, 0x84) r1 = epoll_create$auto(0x3e) epoll_ctl$auto(r1, 0x1, 0x8000000000000000, 0x0) epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0) 82.041411ms ago: executing program 0 (id=1222): r0 = openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/ubifs/chk_lprops\x00', 0x100, 0x0) close_range$auto(r0, 0xfffffffffffff000, 0x9) r1 = socket(0x2b, 0x4, 0x1) r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) ioctl$auto_UI_DEV_SETUP(r2, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x8, 0x80}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa}) ioctl$auto_UI_DEV_CREATE(r2, 0x5501, 0x0) ioctl$auto_UI_DEV_SETUP(r2, 0x405c5503, 0x0) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/bus/input/handlers\x00', 0x20400, 0x0) pread64$auto(r3, 0x0, 0x8, 0x8000) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000300)='/dev/mtd0\x00', 0x28082, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0xfffffffffffffffc, 0x1, 0x4, 0x8000000008011, 0x3, 0x8000) mbind$auto(0x0, 0x81, 0x8, 0x0, 0x6, 0x1000002) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), r1) sendmsg$auto_NL802154_CMD_DEL_INTERFACE(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="240000009acf7a019a3fde2e55b852ba39717d38e0bcf5ea78aba0dd217468a0adf57dfe20c01c9c50a58dbf82be79fd3ed4fa12a7a29f3e15f268c6f03cc3eebae013e018a308f238154f9605274232b05d9e2c2c0158526f8d07c5fd26f346ddb6af0b88f41ba17ee0095a9b222da25d36", @ANYRES16=r3, @ANYBLOB="000326bd7000fcdbdf250800000008000d000600000006000a0006000000"], 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x800) r4 = openat$auto_ext4_dir_operations_ext4(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/bluetooth/hci4/hci4:201\x00', 0x800, 0x0) r5 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x401, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$auto(r5, 0x84, 0x1, 0x0, 0x0) ioctl$auto_EXT4_IOC_CLEAR_ES_CACHE(r4, 0x6628, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket$nl_generic(0x10, 0x3, 0x10) r6 = fanotify_init$auto(0x5, 0x2000000000002) socket$nl_generic(0x10, 0x3, 0x10) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) ioctl$auto(r6, 0xef08, r0) 81.170102ms ago: executing program 1 (id=1223): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r2 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x20001, 0x0) ppoll$auto(&(0x7f00000000c0)={r2, 0x0, 0x8}, 0xf7, &(0x7f0000000100)={0x80000000008000, 0x1}, 0x0, 0x8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x44, 0x0) r4 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) r5 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0) ioctl$auto_RNDADDTOENTCNT2(r5, 0x40045201, &(0x7f0000000280)=0x3) ioctl$auto_IOCTL_VMCI_VERSION2(r4, 0x7a7, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000980), r6) sendmsg$auto_TIPC_NL_MEDIA_SET(r6, &(0x7f000000a4c0)={0x0, 0x0, &(0x7f000000a480)={&(0x7f0000009800)={0x18, r7, 0x1, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000}, 0x20000048) r8 = syz_genetlink_get_family_id$auto_net_dm(&(0x7f0000000280), r1) sendmsg$auto_NET_DM_CMD_CONFIG_GET(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="00042dbd7000fcc0cfadac29fb5c21119daae0dbd725060000000500017fe5deca090083000000050001000600000008000b0009000000"], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0) read$auto(r4, &(0x7f0000000000)='/sys/kernel/debug/sync/sw_sync\x00', 0x2) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r4, 0x7a0, 0x6) ioctl$auto_IOCTL_VMCI_SET_NOTIFY(r4, 0x7cb, 0x0) r9 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r9, &(0x7f0000000e00)="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", 0x5fc) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) 0s ago: executing program 3 (id=1224): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x1, 0x6, 0x0) io_uring_setup$auto(0x1, 0x0) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810008, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000040)={0x0, 0xfff}, 0x6, 0xffff, 0x7ffd, 0x30) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x40, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) rseq$auto(0x0, 0xfffffff4, 0x0, 0x5) ioctl$auto_VHOST_SET_BACKEND_FEATURES(0xffffffffffffffff, 0x4008af25, 0x0) mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, r1, 0x4b4a) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x62040, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x1, 0x40009, 0xdf, 0x13, 0xffffffffffffffff, 0x10001) msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004) r3 = socket(0x27, 0x800, 0x0) bind$auto(r3, &(0x7f0000000140)=@l2tp={0x2, 0x0, @broadcast, 0x4}, 0x20000280) socket(0xf, 0xa, 0x5) connect$auto(0x3, &(0x7f0000000080)=@l2={0x1f, 0x6, @none, 0x5}, 0x2) ioperm$auto(0x7, 0x75, 0x4) mmap$auto(0x0, 0x7ffd, 0x8000000000df, 0x75c, 0x2, 0x5) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48004}, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='./cgroup.net/blkio.bfq.dequeue\x00', 0x608d80, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000001100)=""/4087, 0xff7) kexec_load$auto(0xff, 0x2, &(0x7f0000000080)={@kbuf=0x0, 0x2, 0x8000, 0x3000}, 0x4) kernel console output (not intermixed with test programs): 533.491257][ T9840] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 537.061525][ T9867] netlink: 268 bytes leftover after parsing attributes in process `syz.1.721'. [ 537.207233][ T9872] netlink: 268 bytes leftover after parsing attributes in process `syz.2.722'. [ 537.320891][ T9883] netlink: 268 bytes leftover after parsing attributes in process `syz.3.723'. [ 539.336616][ T9895] netlink: 268 bytes leftover after parsing attributes in process `syz.0.724'. [ 539.933902][ T9912] netlink: 268 bytes leftover after parsing attributes in process `syz.2.727'. [ 540.397879][ T9904] netlink: 268 bytes leftover after parsing attributes in process `syz.1.726'. [ 542.952997][ T9932] netlink: 268 bytes leftover after parsing attributes in process `syz.2.730'. [ 543.172864][ T9927] netlink: 268 bytes leftover after parsing attributes in process `syz.0.729'. [ 543.992621][ T9933] netlink: 268 bytes leftover after parsing attributes in process `syz.1.731'. [ 544.506286][ T9943] ubi0: attaching mtd0 [ 544.510467][ T9943] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 546.455776][ T9946] netlink: 268 bytes leftover after parsing attributes in process `syz.3.734'. [ 547.505358][ T9955] netlink: 268 bytes leftover after parsing attributes in process `syz.0.736'. [ 550.310672][ T9983] netlink: 268 bytes leftover after parsing attributes in process `syz.2.739'. [ 553.448665][T10021] netlink: 268 bytes leftover after parsing attributes in process `syz.2.744'. [ 553.471378][T10027] ubi0: attaching mtd0 [ 553.475555][T10027] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 554.896811][T10039] ubi0: attaching mtd0 [ 554.900944][T10039] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 555.144420][T10033] netlink: 268 bytes leftover after parsing attributes in process `syz.1.746'. [ 556.601864][T10045] netlink: 268 bytes leftover after parsing attributes in process `syz.2.749'. [ 558.328668][T10082] ubi0: attaching mtd0 [ 558.332857][T10082] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 561.560017][T10103] netlink: 268 bytes leftover after parsing attributes in process `syz.3.756'. [ 562.452781][T10125] ubi0: attaching mtd0 [ 562.470001][T10125] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 564.281206][T10151] ubi0: attaching mtd0 [ 564.326348][T10151] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 564.560913][T10156] ubi0: attaching mtd0 [ 564.565055][T10156] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 565.876699][T10145] netlink: 268 bytes leftover after parsing attributes in process `syz.0.763'. [ 568.512089][T10189] netlink: 268 bytes leftover after parsing attributes in process `syz.3.769'. [ 569.241273][T10192] netlink: 268 bytes leftover after parsing attributes in process `syz.0.770'. [ 570.640249][T10198] netlink: 268 bytes leftover after parsing attributes in process `syz.2.771'. [ 572.269311][T10230] ubi0: attaching mtd0 [ 572.280421][T10230] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 573.525217][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 573.531639][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 574.152654][T10241] netlink: 268 bytes leftover after parsing attributes in process `syz.2.776'. [ 576.591993][T10268] netlink: 268 bytes leftover after parsing attributes in process `syz.0.781'. [ 577.437922][T10281] netlink: 268 bytes leftover after parsing attributes in process `syz.2.782'. [ 579.166671][T10310] ubi0: attaching mtd0 [ 579.170990][T10310] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 580.152148][T10318] netlink: 268 bytes leftover after parsing attributes in process `syz.1.787'. [ 580.747952][T10307] netlink: 268 bytes leftover after parsing attributes in process `syz.0.785'. [ 585.430705][T10392] netlink: 268 bytes leftover after parsing attributes in process `syz.2.795'. [ 586.625625][T10399] netlink: 268 bytes leftover after parsing attributes in process `syz.0.796'. [ 587.840245][T10415] netlink: 268 bytes leftover after parsing attributes in process `syz.3.797'. [ 588.762230][T10418] netlink: 268 bytes leftover after parsing attributes in process `syz.2.799'. [ 590.088831][T10426] netlink: 268 bytes leftover after parsing attributes in process `syz.1.800'. [ 591.220461][T10457] ubi0: attaching mtd0 [ 591.265453][T10457] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 595.512409][T10497] netlink: 268 bytes leftover after parsing attributes in process `syz.1.809'. [ 596.441151][T10518] ubi0: attaching mtd0 [ 596.445344][T10518] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 597.287715][T10512] netlink: 268 bytes leftover after parsing attributes in process `syz.0.810'. [ 598.122006][T10517] netlink: 268 bytes leftover after parsing attributes in process `syz.2.811'. [ 600.903997][T10555] netlink: 268 bytes leftover after parsing attributes in process `syz.2.817'. [ 602.601539][T10576] netlink: 268 bytes leftover after parsing attributes in process `syz.0.819'. [ 602.626155][T10587] ubi0: attaching mtd0 [ 602.631385][T10587] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 603.515580][T10584] netlink: 268 bytes leftover after parsing attributes in process `syz.3.820'. [ 605.284154][T10612] netlink: 268 bytes leftover after parsing attributes in process `syz.0.824'. [ 608.129175][T10627] netlink: 268 bytes leftover after parsing attributes in process `syz.0.827'. [ 610.590495][T10663] ubi0: attaching mtd0 [ 610.594758][T10663] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 616.211345][T10712] netlink: 268 bytes leftover after parsing attributes in process `syz.0.838'. [ 616.388592][T10721] netlink: 268 bytes leftover after parsing attributes in process `syz.2.839'. [ 618.759662][T10745] netlink: 268 bytes leftover after parsing attributes in process `syz.2.843'. [ 618.816643][T10746] netlink: 268 bytes leftover after parsing attributes in process `syz.0.842'. [ 619.881779][T10759] netlink: 268 bytes leftover after parsing attributes in process `syz.3.845'. [ 620.040396][T10752] netlink: 268 bytes leftover after parsing attributes in process `syz.1.844'. [ 620.695075][T10769] netlink: 12 bytes leftover after parsing attributes in process `syz.2.847'. [ 624.046035][T10801] netlink: 268 bytes leftover after parsing attributes in process `syz.2.850'. [ 634.944668][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 634.951161][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 637.448220][T10927] netlink: 268 bytes leftover after parsing attributes in process `syz.2.868'. [ 638.623588][T10938] netlink: 268 bytes leftover after parsing attributes in process `syz.0.870'. [ 647.817720][T11026] netlink: 268 bytes leftover after parsing attributes in process `syz.1.883'. [ 648.184351][T11032] netlink: 268 bytes leftover after parsing attributes in process `syz.2.884'. [ 650.402899][T11050] netlink: 268 bytes leftover after parsing attributes in process `syz.2.886'. [ 650.428064][T11041] netlink: 268 bytes leftover after parsing attributes in process `syz.0.885'. [ 651.292792][T11055] netlink: 268 bytes leftover after parsing attributes in process `syz.3.887'. [ 651.773290][T11059] netlink: 268 bytes leftover after parsing attributes in process `syz.1.888'. [ 652.766458][T11074] ubi0: attaching mtd0 [ 652.781252][T11074] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 654.835937][T11092] netlink: 268 bytes leftover after parsing attributes in process `syz.2.893'. [ 659.874684][T11131] netlink: 268 bytes leftover after parsing attributes in process `syz.2.898'. [ 660.066099][T11142] ubi0: attaching mtd0 [ 660.113691][T11142] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 660.423764][T11128] netlink: 268 bytes leftover after parsing attributes in process `syz.0.899'. [ 662.221301][T11159] QAT: Stopping all acceleration devices. [ 664.653306][T11167] netlink: 268 bytes leftover after parsing attributes in process `syz.3.905'. [ 666.754394][T11198] ubi0: attaching mtd0 [ 666.781026][T11198] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 667.556856][T11195] netlink: 268 bytes leftover after parsing attributes in process `syz.0.909'. [ 669.262236][T11212] netlink: 268 bytes leftover after parsing attributes in process `syz.3.912'. [ 673.109483][T11269] ubi0: attaching mtd0 [ 673.126313][T11269] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 673.511669][T11268] netlink: 268 bytes leftover after parsing attributes in process `syz.2.918'. [ 674.543902][T11267] netlink: 268 bytes leftover after parsing attributes in process `syz.1.919'. [ 676.141931][T11282] netlink: 268 bytes leftover after parsing attributes in process `syz.3.922'. [ 676.828146][T11286] netlink: 268 bytes leftover after parsing attributes in process `syz.2.923'. [ 678.862510][T11314] netlink: 268 bytes leftover after parsing attributes in process `syz.1.927'. [ 679.945126][T11324] ubi0: attaching mtd0 [ 680.034192][T11324] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 680.933309][T11321] netlink: 268 bytes leftover after parsing attributes in process `syz.0.929'. [ 681.257364][T11341] ubi0: attaching mtd0 [ 681.372717][T11341] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 681.806168][T11346] ubi0: attaching mtd0 [ 681.833901][T11346] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 682.268060][T11343] netlink: 268 bytes leftover after parsing attributes in process `syz.1.932'. [ 684.503944][T11361] netlink: 268 bytes leftover after parsing attributes in process `syz.2.937'. [ 685.365120][T11369] netlink: 268 bytes leftover after parsing attributes in process `syz.3.938'. [ 685.495346][T11385] ubi0: attaching mtd0 [ 685.572182][T11385] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 687.500117][T11408] ubi0: attaching mtd0 [ 687.504272][T11408] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 688.201269][T11393] netlink: 268 bytes leftover after parsing attributes in process `syz.0.943'. [ 690.002917][T11435] ubi0: attaching mtd0 [ 690.002961][T11435] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 692.014797][T11456] ubi0: attaching mtd0 [ 692.037340][T11456] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 692.957526][T11462] ubi0: attaching mtd0 [ 692.965476][T11462] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 692.976240][T11452] netlink: 268 bytes leftover after parsing attributes in process `syz.1.957'. [ 693.513591][T11468] ubi0: attaching mtd0 [ 693.532426][T11468] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 693.576703][T11467] FAULT_INJECTION: forcing a failure. [ 693.576703][T11467] name failslab, interval 1, probability 0, space 0, times 0 [ 693.667948][T11467] CPU: 0 UID: 0 PID: 11467 Comm: syz.2.961 Not tainted syzkaller #0 PREEMPT(full) [ 693.667985][T11467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 693.668005][T11467] Call Trace: [ 693.668013][T11467] [ 693.668023][T11467] dump_stack_lvl+0x16c/0x1f0 [ 693.668064][T11467] should_fail_ex+0x512/0x640 [ 693.668103][T11467] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 693.668140][T11467] should_failslab+0xc2/0x120 [ 693.668176][T11467] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 693.668208][T11467] ? getname_flags.part.0+0x4c/0x550 [ 693.668257][T11467] getname_flags.part.0+0x4c/0x550 [ 693.668303][T11467] getname_flags+0x93/0xf0 [ 693.668333][T11467] user_path_at+0x24/0x60 [ 693.668364][T11467] do_faccessat+0x139/0xba0 [ 693.668399][T11467] ? __pfx_do_faccessat+0x10/0x10 [ 693.668430][T11467] ? ksys_write+0x1ac/0x250 [ 693.668460][T11467] ? __pfx_ksys_write+0x10/0x10 [ 693.668498][T11467] __x64_sys_faccessat+0x74/0xb0 [ 693.668532][T11467] ? lockdep_hardirqs_on+0x7c/0x110 [ 693.668582][T11467] do_syscall_64+0xcd/0x490 [ 693.668621][T11467] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 693.668647][T11467] RIP: 0033:0x7f5c1b18ebe9 [ 693.668672][T11467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 693.668703][T11467] RSP: 002b:00007f5c1bf9d038 EFLAGS: 00000246 ORIG_RAX: 000000000000010d [ 693.668728][T11467] RAX: ffffffffffffffda RBX: 00007f5c1b3c5fa0 RCX: 00007f5c1b18ebe9 [ 693.668746][T11467] RDX: 0000000000000002 RSI: 0000200000000140 RDI: 0000000000000003 [ 693.668763][T11467] RBP: 00007f5c1bf9d090 R08: 0000000000000000 R09: 0000000000000000 [ 693.668779][T11467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 693.668795][T11467] R13: 00007f5c1b3c6038 R14: 00007f5c1b3c5fa0 R15: 00007ffedd3b6418 [ 693.668837][T11467] [ 694.453915][T11476] ubi0: attaching mtd0 [ 694.530067][T11476] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 695.461294][T11490] netlink: 104 bytes leftover after parsing attributes in process `syz.2.967'. [ 696.388468][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 696.394979][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 698.580952][T11539] FAULT_INJECTION: forcing a failure. [ 698.580952][T11539] name failslab, interval 1, probability 0, space 0, times 0 [ 698.604514][T11540] ubi0: attaching mtd0 [ 698.619609][T11540] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 698.630956][T11539] CPU: 0 UID: 0 PID: 11539 Comm: syz.2.979 Not tainted syzkaller #0 PREEMPT(full) [ 698.630990][T11539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 698.631006][T11539] Call Trace: [ 698.631014][T11539] [ 698.631024][T11539] dump_stack_lvl+0x16c/0x1f0 [ 698.631074][T11539] should_fail_ex+0x512/0x640 [ 698.631113][T11539] ? __kmalloc_noprof+0xbf/0x510 [ 698.631148][T11539] ? ops_init+0x77/0x5f0 [ 698.631184][T11539] should_failslab+0xc2/0x120 [ 698.631221][T11539] __kmalloc_noprof+0xd2/0x510 [ 698.631253][T11539] ? __raw_spin_lock_init+0x3a/0x110 [ 698.631303][T11539] ops_init+0x77/0x5f0 [ 698.631345][T11539] setup_net+0x10f/0x380 [ 698.631382][T11539] ? lockdep_init_map_type+0x5c/0x280 [ 698.631422][T11539] ? __pfx_setup_net+0x10/0x10 [ 698.631463][T11539] ? debug_mutex_init+0x37/0x70 [ 698.631493][T11539] copy_net_ns+0x2a6/0x5f0 [ 698.631541][T11539] create_new_namespaces+0x3ea/0xa90 [ 698.631580][T11539] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 698.631616][T11539] ksys_unshare+0x45b/0xa40 [ 698.631654][T11539] ? __pfx_ksys_unshare+0x10/0x10 [ 698.631694][T11539] ? xfd_validate_state+0x61/0x180 [ 698.631745][T11539] __x64_sys_unshare+0x31/0x40 [ 698.631783][T11539] do_syscall_64+0xcd/0x490 [ 698.631823][T11539] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 698.631851][T11539] RIP: 0033:0x7f5c1b18ebe9 [ 698.631872][T11539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 698.631897][T11539] RSP: 002b:00007f5c1bf9d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 698.631922][T11539] RAX: ffffffffffffffda RBX: 00007f5c1b3c5fa0 RCX: 00007f5c1b18ebe9 [ 698.631940][T11539] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 698.631956][T11539] RBP: 00007f5c1b211e19 R08: 0000000000000000 R09: 0000000000000000 [ 698.631972][T11539] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 698.631987][T11539] R13: 00007f5c1b3c6038 R14: 00007f5c1b3c5fa0 R15: 00007ffedd3b6418 [ 698.632021][T11539] [ 699.905136][T11562] FAULT_INJECTION: forcing a failure. [ 699.905136][T11562] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 699.927764][T11562] CPU: 1 UID: 0 PID: 11562 Comm: syz.0.985 Not tainted syzkaller #0 PREEMPT(full) [ 699.927798][T11562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 699.927814][T11562] Call Trace: [ 699.927822][T11562] [ 699.927831][T11562] dump_stack_lvl+0x16c/0x1f0 [ 699.927870][T11562] should_fail_ex+0x512/0x640 [ 699.927909][T11562] _copy_from_user+0x2e/0xd0 [ 699.927950][T11562] copy_msghdr_from_user+0x98/0x160 [ 699.927984][T11562] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 699.928023][T11562] ? __pfx__kstrtoull+0x10/0x10 [ 699.928059][T11562] ___sys_sendmsg+0xfe/0x1d0 [ 699.928093][T11562] ? __pfx____sys_sendmsg+0x10/0x10 [ 699.928140][T11562] ? find_held_lock+0x2b/0x80 [ 699.928184][T11562] __sys_sendmmsg+0x200/0x420 [ 699.928221][T11562] ? __pfx___sys_sendmmsg+0x10/0x10 [ 699.928271][T11562] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 699.928320][T11562] ? fput+0x9b/0xd0 [ 699.928359][T11562] ? xfd_validate_state+0x61/0x180 [ 699.928397][T11562] ? __pfx_ksys_write+0x10/0x10 [ 699.928432][T11562] __x64_sys_sendmmsg+0x9c/0x100 [ 699.928467][T11562] ? lockdep_hardirqs_on+0x7c/0x110 [ 699.928501][T11562] do_syscall_64+0xcd/0x490 [ 699.928539][T11562] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 699.928565][T11562] RIP: 0033:0x7ff6acb8ebe9 [ 699.928585][T11562] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 699.928609][T11562] RSP: 002b:00007ff6ad954038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 699.928632][T11562] RAX: ffffffffffffffda RBX: 00007ff6acdc5fa0 RCX: 00007ff6acb8ebe9 [ 699.928649][T11562] RDX: 0000000000000001 RSI: 00002000000001c0 RDI: 0000000000000003 [ 699.928664][T11562] RBP: 00007ff6ad954090 R08: 0000000000000000 R09: 0000000000000000 [ 699.928679][T11562] R10: 0000000000000101 R11: 0000000000000246 R12: 0000000000000001 [ 699.928694][T11562] R13: 00007ff6acdc6038 R14: 00007ff6acdc5fa0 R15: 00007fff8f746c58 [ 699.928725][T11562] [ 700.324059][T11566] netlink: 28 bytes leftover after parsing attributes in process `syz.0.986'. [ 701.157317][T11572] FAULT_INJECTION: forcing a failure. [ 701.157317][T11572] name failslab, interval 1, probability 0, space 0, times 0 [ 701.172597][T11572] CPU: 0 UID: 0 PID: 11572 Comm: syz.2.988 Not tainted syzkaller #0 PREEMPT(full) [ 701.172636][T11572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 701.172655][T11572] Call Trace: [ 701.172665][T11572] [ 701.172677][T11572] dump_stack_lvl+0x16c/0x1f0 [ 701.172723][T11572] should_fail_ex+0x512/0x640 [ 701.172766][T11572] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 701.172809][T11572] should_failslab+0xc2/0x120 [ 701.172846][T11572] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 701.172879][T11572] ? vma_merge_new_range+0x3ae/0xa50 [ 701.172912][T11572] ? vm_area_alloc+0x1f/0x160 [ 701.172948][T11572] vm_area_alloc+0x1f/0x160 [ 701.172979][T11572] __mmap_region+0xf90/0x27b0 [ 701.173020][T11572] ? __pfx___mmap_region+0x10/0x10 [ 701.173066][T11572] ? is_bpf_text_address+0x8a/0x1a0 [ 701.173103][T11572] ? bpf_ksym_find+0x124/0x1c0 [ 701.173134][T11572] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 701.173183][T11572] ? is_bpf_text_address+0x94/0x1a0 [ 701.173220][T11572] ? kernel_text_address+0x8d/0x100 [ 701.173245][T11572] ? __kernel_text_address+0xd/0x40 [ 701.173336][T11572] ? trace_cap_capable+0x18d/0x200 [ 701.173385][T11572] mmap_region+0x1ab/0x3f0 [ 701.173425][T11572] ? __get_unmapped_area+0x267/0x440 [ 701.173480][T11572] do_mmap+0xa3e/0x1210 [ 701.173539][T11572] ? __pfx_do_mmap+0x10/0x10 [ 701.173591][T11572] ? __pfx_down_write_killable+0x10/0x10 [ 701.173656][T11572] vm_mmap_pgoff+0x29e/0x470 [ 701.173718][T11572] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 701.173775][T11572] ? __fget_files+0x20e/0x3c0 [ 701.173828][T11572] ksys_mmap_pgoff+0x7d/0x5c0 [ 701.173880][T11572] ? __pfx_ksys_write+0x10/0x10 [ 701.173919][T11572] ? xfd_validate_state+0x61/0x180 [ 701.173979][T11572] __x64_sys_mmap+0x125/0x190 [ 701.174041][T11572] do_syscall_64+0xcd/0x490 [ 701.174094][T11572] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 701.174130][T11572] RIP: 0033:0x7f5c1b18ebe9 [ 701.174172][T11572] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 701.174205][T11572] RSP: 002b:00007f5c1bf9d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 701.174238][T11572] RAX: ffffffffffffffda RBX: 00007f5c1b3c5fa0 RCX: 00007f5c1b18ebe9 [ 701.174261][T11572] RDX: 0000000000000001 RSI: 0000000000400008 RDI: 0000000000000000 [ 701.174282][T11572] RBP: 00007f5c1bf9d090 R08: 0000000000000002 R09: 0000000000008000 [ 701.174304][T11572] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001 [ 701.174325][T11572] R13: 00007f5c1b3c6038 R14: 00007f5c1b3c5fa0 R15: 00007ffedd3b6418 [ 701.174373][T11572] [ 701.734690][T11579] ubi0: attaching mtd0 [ 701.781406][T11579] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 702.685483][T11590] netlink: 8 bytes leftover after parsing attributes in process `syz.2.997'. [ 702.991509][T11600] FAULT_INJECTION: forcing a failure. [ 702.991509][T11600] name failslab, interval 1, probability 0, space 0, times 0 [ 703.065877][T11600] CPU: 1 UID: 0 PID: 11600 Comm: syz.0.999 Not tainted syzkaller #0 PREEMPT(full) [ 703.065917][T11600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 703.065931][T11600] Call Trace: [ 703.065939][T11600] [ 703.065948][T11600] dump_stack_lvl+0x16c/0x1f0 [ 703.065985][T11600] should_fail_ex+0x512/0x640 [ 703.066023][T11600] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 703.066056][T11600] should_failslab+0xc2/0x120 [ 703.066089][T11600] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 703.066119][T11600] ? getname_flags.part.0+0x4c/0x550 [ 703.066163][T11600] getname_flags.part.0+0x4c/0x550 [ 703.066206][T11600] getname_flags+0x93/0xf0 [ 703.066233][T11600] do_sys_openat2+0xb8/0x1d0 [ 703.066272][T11600] ? __pfx_do_sys_openat2+0x10/0x10 [ 703.066314][T11600] ? __fget_files+0x20e/0x3c0 [ 703.066347][T11600] __x64_sys_openat+0x174/0x210 [ 703.066387][T11600] ? __pfx___x64_sys_openat+0x10/0x10 [ 703.066426][T11600] ? ksys_write+0x1ac/0x250 [ 703.066465][T11600] do_syscall_64+0xcd/0x490 [ 703.066502][T11600] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 703.066527][T11600] RIP: 0033:0x7ff6acb8ebe9 [ 703.066546][T11600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 703.066569][T11600] RSP: 002b:00007ff6ad933038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 703.066590][T11600] RAX: ffffffffffffffda RBX: 00007ff6acdc6090 RCX: 00007ff6acb8ebe9 [ 703.066606][T11600] RDX: 0000000000020b42 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 703.066622][T11600] RBP: 00007ff6ad933090 R08: 0000000000000000 R09: 0000000000000000 [ 703.066636][T11600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 703.066650][T11600] R13: 00007ff6acdc6128 R14: 00007ff6acdc6090 R15: 00007fff8f746c58 [ 703.066681][T11600] [ 703.396974][T11601] netlink: 268 bytes leftover after parsing attributes in process `syz.1.998'. [ 705.182137][T11619] FAULT_INJECTION: forcing a failure. [ 705.182137][T11619] name failslab, interval 1, probability 0, space 0, times 0 [ 705.205421][T11619] CPU: 1 UID: 0 PID: 11619 Comm: syz.1.1002 Not tainted syzkaller #0 PREEMPT(full) [ 705.205469][T11619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 705.205490][T11619] Call Trace: [ 705.205502][T11619] [ 705.205515][T11619] dump_stack_lvl+0x16c/0x1f0 [ 705.205569][T11619] should_fail_ex+0x512/0x640 [ 705.205620][T11619] ? fs_reclaim_acquire+0xae/0x150 [ 705.205678][T11619] ? tomoyo_encode2+0x100/0x3e0 [ 705.205727][T11619] should_failslab+0xc2/0x120 [ 705.205778][T11619] __kmalloc_noprof+0xd2/0x510 [ 705.205841][T11619] tomoyo_encode2+0x100/0x3e0 [ 705.205899][T11619] tomoyo_encode+0x29/0x50 [ 705.205947][T11619] tomoyo_realpath_from_path+0x18f/0x6e0 [ 705.206005][T11619] ? tomoyo_profile+0x47/0x60 [ 705.206042][T11619] tomoyo_path_perm+0x274/0x460 [ 705.206082][T11619] ? tomoyo_path_perm+0x260/0x460 [ 705.206129][T11619] ? __pfx_tomoyo_path_perm+0x10/0x10 [ 705.206219][T11619] ? __pfx_ima_file_check+0x10/0x10 [ 705.206253][T11619] ? hook_file_truncate+0xc7/0x250 [ 705.206312][T11619] security_file_truncate+0x84/0x1e0 [ 705.206364][T11619] path_openat+0xc10/0x2cb0 [ 705.206423][T11619] ? __pfx_path_openat+0x10/0x10 [ 705.206478][T11619] do_filp_open+0x20b/0x470 [ 705.206521][T11619] ? __pfx_do_filp_open+0x10/0x10 [ 705.206598][T11619] ? alloc_fd+0x471/0x7d0 [ 705.206648][T11619] do_sys_openat2+0x11b/0x1d0 [ 705.206704][T11619] ? __pfx_do_sys_openat2+0x10/0x10 [ 705.206763][T11619] ? __pfx___might_resched+0x10/0x10 [ 705.206820][T11619] __x64_sys_openat+0x174/0x210 [ 705.206879][T11619] ? __pfx___x64_sys_openat+0x10/0x10 [ 705.206955][T11619] do_syscall_64+0xcd/0x490 [ 705.207008][T11619] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 705.207044][T11619] RIP: 0033:0x7f50a358ebe9 [ 705.207073][T11619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 705.207107][T11619] RSP: 002b:00007f50a4363038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 705.207141][T11619] RAX: ffffffffffffffda RBX: 00007f50a37c5fa0 RCX: 00007f50a358ebe9 [ 705.207164][T11619] RDX: 0000000000008282 RSI: 0000200000000240 RDI: ffffffffffffff9c [ 705.207185][T11619] RBP: 00007f50a3611e19 R08: 0000000000000000 R09: 0000000000000000 [ 705.207205][T11619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 705.207225][T11619] R13: 00007f50a37c6038 R14: 00007f50a37c5fa0 R15: 00007fff18f07498 [ 705.207270][T11619] [ 705.463151][T11619] ERROR: Out of memory at tomoyo_realpath_from_path. [ 705.726876][T11628] ceph: Failed to parse sending metrics switch value 'P^' [ 705.963050][T11631] ubi0: attaching mtd0 [ 706.005949][T11631] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 706.095126][T11633] process 'syz.1.1005' launched ':,' with NULL argv: empty string added [ 706.144696][T11635] FAULT_INJECTION: forcing a failure. [ 706.144696][T11635] name failslab, interval 1, probability 0, space 0, times 0 [ 706.221718][T11635] CPU: 1 UID: 0 PID: 11635 Comm: syz.3.1007 Not tainted syzkaller #0 PREEMPT(full) [ 706.221764][T11635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 706.221783][T11635] Call Trace: [ 706.221794][T11635] [ 706.221807][T11635] dump_stack_lvl+0x16c/0x1f0 [ 706.221858][T11635] should_fail_ex+0x512/0x640 [ 706.221906][T11635] ? fs_reclaim_acquire+0xae/0x150 [ 706.221963][T11635] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 706.222014][T11635] should_failslab+0xc2/0x120 [ 706.222060][T11635] __kmalloc_noprof+0xd2/0x510 [ 706.222112][T11635] tomoyo_realpath_from_path+0xc2/0x6e0 [ 706.222168][T11635] ? tomoyo_profile+0x47/0x60 [ 706.222204][T11635] tomoyo_path_number_perm+0x245/0x580 [ 706.222244][T11635] ? tomoyo_path_number_perm+0x237/0x580 [ 706.222292][T11635] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 706.222338][T11635] ? find_held_lock+0x2b/0x80 [ 706.222406][T11635] ? lock_acquire+0x179/0x350 [ 706.222455][T11635] ? find_held_lock+0x2b/0x80 [ 706.222487][T11635] ? hook_file_ioctl_common+0x145/0x410 [ 706.222561][T11635] security_file_ioctl+0x9b/0x240 [ 706.222607][T11635] __x64_sys_ioctl+0xb7/0x210 [ 706.222673][T11635] do_syscall_64+0xcd/0x490 [ 706.222723][T11635] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 706.222758][T11635] RIP: 0033:0x7f74d1d8ebe9 [ 706.222784][T11635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 706.222817][T11635] RSP: 002b:00007f74d2b30038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 706.222848][T11635] RAX: ffffffffffffffda RBX: 00007f74d1fc5fa0 RCX: 00007f74d1d8ebe9 [ 706.222871][T11635] RDX: 0000000000000038 RSI: 000000080000541b RDI: 0000000000000006 [ 706.222891][T11635] RBP: 00007f74d2b30090 R08: 0000000000000000 R09: 0000000000000000 [ 706.222913][T11635] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 706.222933][T11635] R13: 00007f74d1fc6038 R14: 00007f74d1fc5fa0 R15: 00007ffd7302a528 [ 706.222978][T11635] [ 706.224732][T11635] ERROR: Out of memory at tomoyo_realpath_from_path. [ 707.310447][T11658] FAULT_INJECTION: forcing a failure. [ 707.310447][T11658] name failslab, interval 1, probability 0, space 0, times 0 [ 707.310509][T11658] CPU: 1 UID: 0 PID: 11658 Comm: syz.2.1011 Not tainted syzkaller #0 PREEMPT(full) [ 707.310538][T11658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 707.310553][T11658] Call Trace: [ 707.310561][T11658] [ 707.310570][T11658] dump_stack_lvl+0x16c/0x1f0 [ 707.310608][T11658] should_fail_ex+0x512/0x640 [ 707.310645][T11658] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 707.310679][T11658] should_failslab+0xc2/0x120 [ 707.310714][T11658] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 707.310746][T11658] ? vm_area_dup+0x27/0x8d0 [ 707.310777][T11658] vm_area_dup+0x27/0x8d0 [ 707.310805][T11658] __split_vma+0x18e/0x1070 [ 707.310838][T11658] ? __pfx___split_vma+0x10/0x10 [ 707.310873][T11658] ? __pfx_mas_prev+0x10/0x10 [ 707.310916][T11658] vms_gather_munmap_vmas+0x3b1/0x1340 [ 707.310951][T11658] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 707.310985][T11658] ? mas_walk+0x6f5/0x980 [ 707.311026][T11658] __mmap_region+0x436/0x27b0 [ 707.311061][T11658] ? __pfx___mmap_region+0x10/0x10 [ 707.311100][T11658] ? is_bpf_text_address+0x8a/0x1a0 [ 707.311133][T11658] ? bpf_ksym_find+0x124/0x1c0 [ 707.311157][T11658] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 707.311189][T11658] ? is_bpf_text_address+0x94/0x1a0 [ 707.311221][T11658] ? kernel_text_address+0x8d/0x100 [ 707.311245][T11658] ? __kernel_text_address+0xd/0x40 [ 707.311268][T11658] ? unwind_get_return_address+0x59/0xa0 [ 707.311296][T11658] ? arch_stack_walk+0xa6/0x100 [ 707.311332][T11658] ? __lock_acquire+0x62e/0x1ce0 [ 707.311407][T11658] ? trace_cap_capable+0x18d/0x200 [ 707.311445][T11658] mmap_region+0x1ab/0x3f0 [ 707.311476][T11658] ? __get_unmapped_area+0x267/0x440 [ 707.311517][T11658] do_mmap+0xa3e/0x1210 [ 707.311561][T11658] ? __pfx_do_mmap+0x10/0x10 [ 707.311599][T11658] ? __pfx_down_write_killable+0x10/0x10 [ 707.311646][T11658] vm_mmap_pgoff+0x29e/0x470 [ 707.311690][T11658] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 707.311731][T11658] ? __fget_files+0x20e/0x3c0 [ 707.311768][T11658] ksys_mmap_pgoff+0x7d/0x5c0 [ 707.311805][T11658] ? __pfx_ksys_write+0x10/0x10 [ 707.311839][T11658] __x64_sys_mmap+0x125/0x190 [ 707.311883][T11658] do_syscall_64+0xcd/0x490 [ 707.311922][T11658] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 707.311948][T11658] RIP: 0033:0x7f5c1b18ebe9 [ 707.311967][T11658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 707.311991][T11658] RSP: 002b:00007f5c1bf3a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 707.312014][T11658] RAX: ffffffffffffffda RBX: 00007f5c1b3c6270 RCX: 00007f5c1b18ebe9 [ 707.312031][T11658] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 707.312046][T11658] RBP: 00007f5c1bf3a090 R08: 0000000000000002 R09: 0000000000008000 [ 707.312061][T11658] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001 [ 707.312076][T11658] R13: 00007f5c1b3c6308 R14: 00007f5c1b3c6270 R15: 00007ffedd3b6418 [ 707.312107][T11658] [ 708.346759][T11666] random: crng reseeded on system resumption [ 711.001740][T11698] ubi0: attaching mtd0 [ 711.045926][T11698] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 712.711071][T11728] netlink: 93 bytes leftover after parsing attributes in process `syz.0.1024'. [ 713.336311][ T5878] Bluetooth: hci3: command 0x0406 tx timeout [ 713.343588][T11702] Bluetooth: hci3: Opcode 0x0c1a failed: -110 [ 713.999695][T11702] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 714.053533][T11702] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 714.067057][T11702] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 714.121167][T11702] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 714.130366][T11702] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 714.142320][T11702] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 714.185822][T11702] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 714.221279][T11706] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR [ 714.789876][T11768] QAT: Stopping all acceleration devices. [ 715.585957][ T5878] Bluetooth: hci3: command 0x0406 tx timeout [ 715.705228][T11776] ubi0: attaching mtd0 [ 715.739495][T11776] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 716.061933][ T5878] Bluetooth: hci2: command 0x0406 tx timeout [ 716.147618][ T5878] Bluetooth: hci0: command 0x0406 tx timeout [ 716.218924][ T5878] Bluetooth: hci1: command 0x0406 tx timeout [ 717.651104][T11801] ubi0: attaching mtd0 [ 717.793674][T11801] ubi0: scanning is finished [ 717.813199][T11801] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 717.967951][T11801] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 718.148767][ T5878] Bluetooth: hci2: command 0x0406 tx timeout [ 718.183921][T11796] netlink: 268 bytes leftover after parsing attributes in process `syz.1.1036'. [ 718.222031][ T5878] Bluetooth: hci0: command 0x0406 tx timeout [ 718.298850][ T5878] Bluetooth: hci1: command 0x0406 tx timeout [ 719.306680][T11819] Invalid ELF header magic: != ELF [ 720.039310][T11807] netlink: 268 bytes leftover after parsing attributes in process `syz.3.1038'. [ 720.806965][T11827] ubi0: attaching mtd0 [ 720.811281][T11827] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 721.196065][T11825] netlink: 294 bytes leftover after parsing attributes in process `syz.2.1042'. [ 721.262331][T11825] netlink: 74 bytes leftover after parsing attributes in process `syz.2.1042'. [ 722.189633][T11842] FAULT_INJECTION: forcing a failure. [ 722.189633][T11842] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 722.230690][T11842] CPU: 1 UID: 0 PID: 11842 Comm: syz.1.1046 Not tainted syzkaller #0 PREEMPT(full) [ 722.230736][T11842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 722.230752][T11842] Call Trace: [ 722.230762][T11842] [ 722.230773][T11842] dump_stack_lvl+0x16c/0x1f0 [ 722.230818][T11842] should_fail_ex+0x512/0x640 [ 722.230865][T11842] _copy_from_user+0x2e/0xd0 [ 722.230914][T11842] __io_uring_register+0x154f/0x23c0 [ 722.230965][T11842] ? trace_contention_end+0xdd/0x130 [ 722.231008][T11842] ? __pfx___io_uring_register+0x10/0x10 [ 722.231059][T11842] ? __pfx___mutex_lock+0x10/0x10 [ 722.231110][T11842] ? __fget_files+0x20e/0x3c0 [ 722.231157][T11842] __x64_sys_io_uring_register+0x169/0x280 [ 722.231205][T11842] do_syscall_64+0xcd/0x490 [ 722.231248][T11842] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 722.231277][T11842] RIP: 0033:0x7f50a358ebe9 [ 722.231299][T11842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 722.231327][T11842] RSP: 002b:00007f50a4363038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab [ 722.231353][T11842] RAX: ffffffffffffffda RBX: 00007f50a37c5fa0 RCX: 00007f50a358ebe9 [ 722.231371][T11842] RDX: 0000200000000180 RSI: 0000000000000011 RDI: 0000000000000003 [ 722.231389][T11842] RBP: 00007f50a4363090 R08: 0000000000000000 R09: 0000000000000000 [ 722.231406][T11842] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000001 [ 722.231422][T11842] R13: 00007f50a37c6038 R14: 00007f50a37c5fa0 R15: 00007fff18f07498 [ 722.231459][T11842] [ 722.397699][ C1] vkms_vblank_simulate: vblank timer overrun [ 723.558977][T11862] FAULT_INJECTION: forcing a failure. [ 723.558977][T11862] name failslab, interval 1, probability 0, space 0, times 0 [ 723.651455][T11862] CPU: 0 UID: 0 PID: 11862 Comm: syz.0.1050 Not tainted syzkaller #0 PREEMPT(full) [ 723.651491][T11862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 723.651506][T11862] Call Trace: [ 723.651514][T11862] [ 723.651524][T11862] dump_stack_lvl+0x16c/0x1f0 [ 723.651564][T11862] should_fail_ex+0x512/0x640 [ 723.651600][T11862] ? fs_reclaim_acquire+0xae/0x150 [ 723.651643][T11862] ? tomoyo_encode2+0x100/0x3e0 [ 723.651678][T11862] should_failslab+0xc2/0x120 [ 723.651713][T11862] __kmalloc_noprof+0xd2/0x510 [ 723.651744][T11862] ? d_absolute_path+0x136/0x1a0 [ 723.651787][T11862] tomoyo_encode2+0x100/0x3e0 [ 723.651836][T11862] tomoyo_encode+0x29/0x50 [ 723.651872][T11862] tomoyo_realpath_from_path+0x18f/0x6e0 [ 723.651914][T11862] ? tomoyo_profile+0x47/0x60 [ 723.651939][T11862] tomoyo_path_number_perm+0x245/0x580 [ 723.651970][T11862] ? tomoyo_path_number_perm+0x237/0x580 [ 723.652005][T11862] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 723.652039][T11862] ? find_held_lock+0x2b/0x80 [ 723.652092][T11862] ? find_held_lock+0x2b/0x80 [ 723.652116][T11862] ? hook_file_ioctl_common+0x145/0x410 [ 723.652158][T11862] ? __fget_files+0x20e/0x3c0 [ 723.652191][T11862] security_file_ioctl+0x9b/0x240 [ 723.652226][T11862] __x64_sys_ioctl+0xb7/0x210 [ 723.652270][T11862] do_syscall_64+0xcd/0x490 [ 723.652309][T11862] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 723.652336][T11862] RIP: 0033:0x7ff6acb8ebe9 [ 723.652356][T11862] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 723.652380][T11862] RSP: 002b:00007ff6ad954038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 723.652403][T11862] RAX: ffffffffffffffda RBX: 00007ff6acdc5fa0 RCX: 00007ff6acb8ebe9 [ 723.652420][T11862] RDX: fffffffffffffffe RSI: 00000000400454cd RDI: 00000000000000c8 [ 723.652435][T11862] RBP: 00007ff6ad954090 R08: 0000000000000000 R09: 0000000000000000 [ 723.652451][T11862] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 723.652465][T11862] R13: 00007ff6acdc6038 R14: 00007ff6acdc5fa0 R15: 00007fff8f746c58 [ 723.652498][T11862] [ 723.652520][T11862] ERROR: Out of memory at tomoyo_realpath_from_path. [ 723.953990][T11865] FAULT_INJECTION: forcing a failure. [ 723.953990][T11865] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 723.967295][T11865] CPU: 0 UID: 0 PID: 11865 Comm: syz.2.1052 Not tainted syzkaller #0 PREEMPT(full) [ 723.967343][T11865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 723.967364][T11865] Call Trace: [ 723.967375][T11865] [ 723.967388][T11865] dump_stack_lvl+0x16c/0x1f0 [ 723.967441][T11865] should_fail_ex+0x512/0x640 [ 723.967499][T11865] strncpy_from_user+0x3b/0x2e0 [ 723.967552][T11865] getname_flags.part.0+0x8f/0x550 [ 723.967614][T11865] getname_flags+0x93/0xf0 [ 723.967654][T11865] user_path_at+0x24/0x60 [ 723.967696][T11865] do_faccessat+0x139/0xba0 [ 723.967757][T11865] ? __pfx_do_faccessat+0x10/0x10 [ 723.967799][T11865] ? ksys_write+0x1ac/0x250 [ 723.967839][T11865] ? __pfx_ksys_write+0x10/0x10 [ 723.967891][T11865] __x64_sys_faccessat+0x74/0xb0 [ 723.967937][T11865] ? lockdep_hardirqs_on+0x7c/0x110 [ 723.967984][T11865] do_syscall_64+0xcd/0x490 [ 723.968038][T11865] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 723.968075][T11865] RIP: 0033:0x7f5c1b18ebe9 [ 723.968101][T11865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 723.968136][T11865] RSP: 002b:00007f5c1bf9d038 EFLAGS: 00000246 ORIG_RAX: 000000000000010d [ 723.968170][T11865] RAX: ffffffffffffffda RBX: 00007f5c1b3c5fa0 RCX: 00007f5c1b18ebe9 [ 723.968194][T11865] RDX: 0000000000000002 RSI: 0000200000000140 RDI: 0000000000000003 [ 723.968216][T11865] RBP: 00007f5c1bf9d090 R08: 0000000000000000 R09: 0000000000000000 [ 723.968238][T11865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 723.968260][T11865] R13: 00007f5c1b3c6038 R14: 00007f5c1b3c5fa0 R15: 00007ffedd3b6418 [ 723.968306][T11865] [ 724.214392][T11867] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 724.368817][T11853] netlink: 268 bytes leftover after parsing attributes in process `syz.1.1049'. [ 724.840788][T11870] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1054'. [ 725.383805][T11875] ======================================================= [ 725.383805][T11875] WARNING: The mand mount option has been deprecated and [ 725.383805][T11875] and is ignored by this kernel. Remove the mand [ 725.383805][T11875] option from the mount to silence this warning. [ 725.383805][T11875] ======================================================= [ 725.553990][T11877] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1056'. [ 725.560350][T11877] netlink: 'syz.1.1056': attribute type 1 has an invalid length. [ 725.560382][T11877] netlink: 13 bytes leftover after parsing attributes in process `syz.1.1056'. [ 725.916977][T11881] FAULT_INJECTION: forcing a failure. [ 725.916977][T11881] name failslab, interval 1, probability 0, space 0, times 0 [ 725.964355][T11881] CPU: 0 UID: 0 PID: 11881 Comm: syz.1.1058 Not tainted syzkaller #0 PREEMPT(full) [ 725.964406][T11881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 725.964428][T11881] Call Trace: [ 725.964440][T11881] [ 725.964454][T11881] dump_stack_lvl+0x16c/0x1f0 [ 725.964510][T11881] should_fail_ex+0x512/0x640 [ 725.964570][T11881] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 725.964613][T11881] should_failslab+0xc2/0x120 [ 725.964664][T11881] __kmalloc_cache_noprof+0x6a/0x3e0 [ 725.964700][T11881] ? __pfx_snprintf+0x10/0x10 [ 725.964745][T11881] ? init_srcu_struct_fields+0x97a/0xde0 [ 725.964806][T11881] init_srcu_struct_fields+0x97a/0xde0 [ 725.964863][T11881] ? lockdep_init_map_type+0x5c/0x280 [ 725.964920][T11881] kvm_dev_ioctl+0x574/0x1af0 [ 725.964965][T11881] ? find_held_lock+0x2b/0x80 [ 725.965000][T11881] ? hook_file_ioctl_common+0x145/0x410 [ 725.965049][T11881] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 725.965092][T11881] ? __fget_files+0x20e/0x3c0 [ 725.965137][T11881] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 725.965177][T11881] __x64_sys_ioctl+0x18e/0x210 [ 725.965238][T11881] do_syscall_64+0xcd/0x490 [ 725.965292][T11881] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 725.965329][T11881] RIP: 0033:0x7f50a358ebe9 [ 725.965356][T11881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 725.965392][T11881] RSP: 002b:00007f50a4363038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 725.965426][T11881] RAX: ffffffffffffffda RBX: 00007f50a37c5fa0 RCX: 00007f50a358ebe9 [ 725.965450][T11881] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000002 [ 725.965471][T11881] RBP: 00007f50a3611e19 R08: 0000000000000000 R09: 0000000000000000 [ 725.965493][T11881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 725.965515][T11881] R13: 00007f50a37c6038 R14: 00007f50a37c5fa0 R15: 00007fff18f07498 [ 725.965570][T11881] [ 726.180568][T11883] FAULT_INJECTION: forcing a failure. [ 726.180568][T11883] name failslab, interval 1, probability 0, space 0, times 0 [ 726.202629][T11883] CPU: 1 UID: 0 PID: 11883 Comm: syz.2.1060 Not tainted syzkaller #0 PREEMPT(full) [ 726.202676][T11883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 726.202697][T11883] Call Trace: [ 726.202708][T11883] [ 726.202721][T11883] dump_stack_lvl+0x16c/0x1f0 [ 726.202775][T11883] should_fail_ex+0x512/0x640 [ 726.202833][T11883] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 726.202881][T11883] should_failslab+0xc2/0x120 [ 726.202929][T11883] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 726.202973][T11883] ? __alloc_skb+0x2b2/0x380 [ 726.203025][T11883] __alloc_skb+0x2b2/0x380 [ 726.203070][T11883] ? __pfx___alloc_skb+0x10/0x10 [ 726.203131][T11883] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 726.203179][T11883] ? __lock_acquire+0xb97/0x1ce0 [ 726.203231][T11883] netlink_alloc_large_skb+0x69/0x130 [ 726.203283][T11883] netlink_sendmsg+0x6a1/0xdd0 [ 726.203339][T11883] ? __pfx_netlink_sendmsg+0x10/0x10 [ 726.203395][T11883] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 726.203441][T11883] ____sys_sendmsg+0xa95/0xc70 [ 726.203476][T11883] ? copy_msghdr_from_user+0x10a/0x160 [ 726.203523][T11883] ? __pfx_____sys_sendmsg+0x10/0x10 [ 726.203579][T11883] ___sys_sendmsg+0x134/0x1d0 [ 726.203630][T11883] ? __pfx____sys_sendmsg+0x10/0x10 [ 726.203732][T11883] __sys_sendmsg+0x16d/0x220 [ 726.203780][T11883] ? __pfx___sys_sendmsg+0x10/0x10 [ 726.203865][T11883] do_syscall_64+0xcd/0x490 [ 726.203917][T11883] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 726.203952][T11883] RIP: 0033:0x7f5c1b18ebe9 [ 726.203979][T11883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 726.204012][T11883] RSP: 002b:00007f5c1bf9d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 726.204044][T11883] RAX: ffffffffffffffda RBX: 00007f5c1b3c5fa0 RCX: 00007f5c1b18ebe9 [ 726.204067][T11883] RDX: 000000000000c800 RSI: 0000200000000000 RDI: 0000000000000003 [ 726.204088][T11883] RBP: 00007f5c1bf9d090 R08: 0000000000000000 R09: 0000000000000000 [ 726.204110][T11883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 726.204131][T11883] R13: 00007f5c1b3c6038 R14: 00007f5c1b3c5fa0 R15: 00007ffedd3b6418 [ 726.204176][T11883] [ 726.447611][T11889] FAULT_INJECTION: forcing a failure. [ 726.447611][T11889] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 726.460848][T11889] CPU: 1 UID: 0 PID: 11889 Comm: syz.3.1062 Not tainted syzkaller #0 PREEMPT(full) [ 726.460894][T11889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 726.460916][T11889] Call Trace: [ 726.460928][T11889] [ 726.460940][T11889] dump_stack_lvl+0x16c/0x1f0 [ 726.460994][T11889] should_fail_ex+0x512/0x640 [ 726.461051][T11889] _copy_from_user+0x2e/0xd0 [ 726.461110][T11889] ____sys_sendmsg+0x607/0xc70 [ 726.461150][T11889] ? __pfx_____sys_sendmsg+0x10/0x10 [ 726.461194][T11889] ? __pfx__kstrtoull+0x10/0x10 [ 726.461245][T11889] ___sys_sendmsg+0x134/0x1d0 [ 726.461297][T11889] ? __pfx____sys_sendmsg+0x10/0x10 [ 726.461367][T11889] ? find_held_lock+0x2b/0x80 [ 726.461433][T11889] __sys_sendmmsg+0x200/0x420 [ 726.461487][T11889] ? __pfx___sys_sendmmsg+0x10/0x10 [ 726.461560][T11889] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 726.461627][T11889] ? fput+0x9b/0xd0 [ 726.461677][T11889] ? ksys_write+0x1ac/0x250 [ 726.461718][T11889] ? __pfx_ksys_write+0x10/0x10 [ 726.461767][T11889] __x64_sys_sendmmsg+0x9c/0x100 [ 726.461815][T11889] ? lockdep_hardirqs_on+0x7c/0x110 [ 726.461861][T11889] do_syscall_64+0xcd/0x490 [ 726.461913][T11889] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 726.461949][T11889] RIP: 0033:0x7f74d1d8ebe9 [ 726.461976][T11889] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 726.462009][T11889] RSP: 002b:00007f74d2b30038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 726.462042][T11889] RAX: ffffffffffffffda RBX: 00007f74d1fc5fa0 RCX: 00007f74d1d8ebe9 [ 726.462065][T11889] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 726.462086][T11889] RBP: 00007f74d2b30090 R08: 0000000000000000 R09: 0000000000000000 [ 726.462108][T11889] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 726.462130][T11889] R13: 00007f74d1fc6038 R14: 00007f74d1fc5fa0 R15: 00007ffd7302a528 [ 726.462176][T11889] [ 726.796990][T11881] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 727.074012][ T30] audit: type=1800 audit(1757013852.701:2): pid=11902 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1061" name="dbroot" dev="configfs" ino=26198 res=0 errno=0 [ 727.916029][T11912] FAULT_INJECTION: forcing a failure. [ 727.916029][T11912] name failslab, interval 1, probability 0, space 0, times 0 [ 728.043112][T11912] CPU: 0 UID: 0 PID: 11912 Comm: syz.0.1066 Not tainted syzkaller #0 PREEMPT(full) [ 728.043159][T11912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 728.043180][T11912] Call Trace: [ 728.043191][T11912] [ 728.043204][T11912] dump_stack_lvl+0x16c/0x1f0 [ 728.043257][T11912] should_fail_ex+0x512/0x640 [ 728.043307][T11912] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 728.043362][T11912] should_failslab+0xc2/0x120 [ 728.043408][T11912] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 728.043455][T11912] ? mas_alloc_nodes+0x18b/0x8b0 [ 728.043503][T11912] mas_alloc_nodes+0x18b/0x8b0 [ 728.043556][T11912] mas_node_count_gfp+0x105/0x130 [ 728.043603][T11912] mas_preallocate+0x7e0/0xde0 [ 728.043674][T11912] ? __pfx_mas_preallocate+0x10/0x10 [ 728.043743][T11912] ? vma_merge_new_range+0x3ae/0xa50 [ 728.043804][T11912] ? vm_area_alloc+0x1f/0x160 [ 728.043841][T11912] ? lockdep_init_map_type+0x5c/0x280 [ 728.043899][T11912] __mmap_region+0x118a/0x27b0 [ 728.043949][T11912] ? __pfx___mmap_region+0x10/0x10 [ 728.044006][T11912] ? is_bpf_text_address+0x8a/0x1a0 [ 728.044053][T11912] ? bpf_ksym_find+0x124/0x1c0 [ 728.044088][T11912] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 728.044132][T11912] ? is_bpf_text_address+0x94/0x1a0 [ 728.044178][T11912] ? kernel_text_address+0x8d/0x100 [ 728.044212][T11912] ? __kernel_text_address+0xd/0x40 [ 728.044322][T11912] ? trace_cap_capable+0x18d/0x200 [ 728.044377][T11912] mmap_region+0x1ab/0x3f0 [ 728.044422][T11912] ? __get_unmapped_area+0x267/0x440 [ 728.044480][T11912] do_mmap+0xa3e/0x1210 [ 728.044540][T11912] ? __pfx_do_mmap+0x10/0x10 [ 728.044595][T11912] ? __pfx_down_write_killable+0x10/0x10 [ 728.044671][T11912] vm_mmap_pgoff+0x29e/0x470 [ 728.044733][T11912] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 728.044791][T11912] ? __fget_files+0x20e/0x3c0 [ 728.044845][T11912] ksys_mmap_pgoff+0x7d/0x5c0 [ 728.044895][T11912] ? __pfx_ksys_write+0x10/0x10 [ 728.044942][T11912] __x64_sys_mmap+0x125/0x190 [ 728.045004][T11912] do_syscall_64+0xcd/0x490 [ 728.045058][T11912] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 728.045095][T11912] RIP: 0033:0x7ff6acb8ebe9 [ 728.045123][T11912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 728.045158][T11912] RSP: 002b:00007ff6ad954038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 728.045192][T11912] RAX: ffffffffffffffda RBX: 00007ff6acdc5fa0 RCX: 00007ff6acb8ebe9 [ 728.045216][T11912] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 728.045237][T11912] RBP: 00007ff6ad954090 R08: 0000000000000002 R09: 0000000000008000 [ 728.045260][T11912] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001 [ 728.045281][T11912] R13: 00007ff6acdc6038 R14: 00007ff6acdc5fa0 R15: 00007fff8f746c58 [ 728.045329][T11912] [ 729.585803][T11932] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 730.585456][T11925] netlink: 268 bytes leftover after parsing attributes in process `syz.2.1068'. [ 731.027521][T11943] syz.1.1071 (11943): attempted to duplicate a private mapping with mremap. This is not supported. [ 731.565556][T11943] mmap: syz.1.1071 (11943) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 732.908636][T11951] netlink: 268 bytes leftover after parsing attributes in process `syz.0.1073'. [ 736.046364][T12003] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 737.944429][T12024] FAULT_INJECTION: forcing a failure. [ 737.944429][T12024] name failslab, interval 1, probability 0, space 0, times 0 [ 737.980575][T12024] CPU: 0 UID: 0 PID: 12024 Comm: syz.0.1089 Not tainted syzkaller #0 PREEMPT(full) [ 737.980621][T12024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 737.980641][T12024] Call Trace: [ 737.980653][T12024] [ 737.980665][T12024] dump_stack_lvl+0x16c/0x1f0 [ 737.980715][T12024] should_fail_ex+0x512/0x640 [ 737.980762][T12024] ? fs_reclaim_acquire+0xae/0x150 [ 737.980819][T12024] ? tomoyo_encode2+0x100/0x3e0 [ 737.980862][T12024] should_failslab+0xc2/0x120 [ 737.980908][T12024] __kmalloc_noprof+0xd2/0x510 [ 737.980962][T12024] tomoyo_encode2+0x100/0x3e0 [ 737.981016][T12024] tomoyo_encode+0x29/0x50 [ 737.981064][T12024] tomoyo_realpath_from_path+0x18f/0x6e0 [ 737.981119][T12024] ? tomoyo_profile+0x47/0x60 [ 737.981154][T12024] tomoyo_path_number_perm+0x245/0x580 [ 737.981195][T12024] ? tomoyo_path_number_perm+0x237/0x580 [ 737.981244][T12024] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 737.981290][T12024] ? find_held_lock+0x2b/0x80 [ 737.981360][T12024] ? __pfx_do_sys_openat2+0x10/0x10 [ 737.981416][T12024] ? hook_file_ioctl_common+0x145/0x410 [ 737.981484][T12024] security_file_ioctl+0x9b/0x240 [ 737.981539][T12024] __x64_sys_ioctl+0xb7/0x210 [ 737.981597][T12024] do_syscall_64+0xcd/0x490 [ 737.981649][T12024] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 737.981683][T12024] RIP: 0033:0x7ff6acb8ebe9 [ 737.981710][T12024] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 737.981744][T12024] RSP: 002b:00007ff6ad954038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 737.981777][T12024] RAX: ffffffffffffffda RBX: 00007ff6acdc5fa0 RCX: 00007ff6acb8ebe9 [ 737.981798][T12024] RDX: ffffffffffffffff RSI: 000000008008b705 RDI: 0000000000000003 [ 737.981818][T12024] RBP: 00007ff6ad954090 R08: 0000000000000000 R09: 0000000000000000 [ 737.981837][T12024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 737.981856][T12024] R13: 00007ff6acdc6038 R14: 00007ff6acdc5fa0 R15: 00007fff8f746c58 [ 737.981901][T12024] [ 737.981930][T12024] ERROR: Out of memory at tomoyo_realpath_from_path. [ 738.223700][T11998] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 738.533354][T12029] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1092'. [ 738.566844][T12029] FAULT_INJECTION: forcing a failure. [ 738.566844][T12029] name failslab, interval 1, probability 0, space 0, times 0 [ 738.598971][T12029] CPU: 0 UID: 0 PID: 12029 Comm: syz.1.1092 Not tainted syzkaller #0 PREEMPT(full) [ 738.599018][T12029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 738.599039][T12029] Call Trace: [ 738.599050][T12029] [ 738.599064][T12029] dump_stack_lvl+0x16c/0x1f0 [ 738.599118][T12029] should_fail_ex+0x512/0x640 [ 738.599169][T12029] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 738.599218][T12029] should_failslab+0xc2/0x120 [ 738.599268][T12029] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 738.599312][T12029] ? __alloc_skb+0x2b2/0x380 [ 738.599364][T12029] __alloc_skb+0x2b2/0x380 [ 738.599410][T12029] ? __pfx___alloc_skb+0x10/0x10 [ 738.599460][T12029] ? __pfx___might_resched+0x10/0x10 [ 738.599496][T12029] ? __lock_acquire+0xb97/0x1ce0 [ 738.599550][T12029] netlink_alloc_large_skb+0x69/0x130 [ 738.599606][T12029] netlink_sendmsg+0x6a1/0xdd0 [ 738.599665][T12029] ? __pfx_netlink_sendmsg+0x10/0x10 [ 738.599737][T12029] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 738.599785][T12029] ____sys_sendmsg+0xa95/0xc70 [ 738.599822][T12029] ? copy_msghdr_from_user+0x10a/0x160 [ 738.599871][T12029] ? __pfx_____sys_sendmsg+0x10/0x10 [ 738.599929][T12029] ___sys_sendmsg+0x134/0x1d0 [ 738.599982][T12029] ? __pfx____sys_sendmsg+0x10/0x10 [ 738.600096][T12029] __sys_sendmsg+0x16d/0x220 [ 738.600147][T12029] ? __pfx___sys_sendmsg+0x10/0x10 [ 738.600228][T12029] do_syscall_64+0xcd/0x490 [ 738.600282][T12029] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 738.600319][T12029] RIP: 0033:0x7f50a358ebe9 [ 738.600346][T12029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 738.600381][T12029] RSP: 002b:00007f50a4363038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 738.600413][T12029] RAX: ffffffffffffffda RBX: 00007f50a37c5fa0 RCX: 00007f50a358ebe9 [ 738.600437][T12029] RDX: 0000000000040000 RSI: 0000200000000240 RDI: 0000000000000003 [ 738.600465][T12029] RBP: 00007f50a4363090 R08: 0000000000000000 R09: 0000000000000000 [ 738.600487][T12029] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 738.600506][T12029] R13: 00007f50a37c6038 R14: 00007f50a37c5fa0 R15: 00007fff18f07498 [ 738.600550][T12029] [ 739.240100][T12039] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 739.917666][T12053] QAT: Stopping all acceleration devices. [ 740.403206][T12053] FAULT_INJECTION: forcing a failure. [ 740.403206][T12053] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 740.403248][T12053] CPU: 0 UID: 0 PID: 12053 Comm: syz.3.1096 Not tainted syzkaller #0 PREEMPT(full) [ 740.403277][T12053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 740.403293][T12053] Call Trace: [ 740.403300][T12053] [ 740.403309][T12053] dump_stack_lvl+0x16c/0x1f0 [ 740.403348][T12053] should_fail_ex+0x512/0x640 [ 740.403390][T12053] core_sys_select+0x4c5/0xc10 [ 740.403426][T12053] ? __pfx_core_sys_select+0x10/0x10 [ 740.403459][T12053] ? proc_fail_nth_write+0x9f/0x220 [ 740.403513][T12053] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 740.403571][T12053] kern_select+0x15d/0x1e0 [ 740.403598][T12053] ? __pfx_kern_select+0x10/0x10 [ 740.403629][T12053] ? __pfx_ksys_write+0x10/0x10 [ 740.403665][T12053] __x64_sys_select+0xbd/0x160 [ 740.403691][T12053] ? do_syscall_64+0x91/0x490 [ 740.403726][T12053] ? lockdep_hardirqs_on+0x7c/0x110 [ 740.403759][T12053] do_syscall_64+0xcd/0x490 [ 740.403798][T12053] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 740.403824][T12053] RIP: 0033:0x7f74d1d8ebe9 [ 740.403843][T12053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 740.403869][T12053] RSP: 002b:00007f74cffb4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 740.403892][T12053] RAX: ffffffffffffffda RBX: 00007f74d1fc6270 RCX: 00007f74d1d8ebe9 [ 740.403909][T12053] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 740.403924][T12053] RBP: 00007f74cffb4090 R08: 0000000000000000 R09: 0000000000000000 [ 740.403940][T12053] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000001 [ 740.403955][T12053] R13: 00007f74d1fc6308 R14: 00007f74d1fc6270 R15: 00007ffd7302a528 [ 740.403987][T12053] [ 741.189246][T12067] ubi0: attaching mtd0 [ 741.189283][T12067] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 742.157262][T12076] ubi0: attaching mtd0 [ 742.210725][T12076] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 742.792236][T12074] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1100'. [ 742.969634][T12081] tipc: Started in network mode [ 742.974948][T12081] tipc: Node identity 45e5412, cluster identity 4711 [ 742.987699][T12081] tipc: Node number set to 73290770 [ 743.262964][T12072] delete_channel: no stack [ 743.477914][T12094] FAULT_INJECTION: forcing a failure. [ 743.477914][T12094] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 743.519740][T12094] CPU: 1 UID: 0 PID: 12094 Comm: syz.3.1104 Not tainted syzkaller #0 PREEMPT(full) [ 743.519780][T12094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 743.519796][T12094] Call Trace: [ 743.519804][T12094] [ 743.519815][T12094] dump_stack_lvl+0x16c/0x1f0 [ 743.519856][T12094] should_fail_ex+0x512/0x640 [ 743.519900][T12094] _copy_from_iter+0x29f/0x1720 [ 743.519950][T12094] ? __pfx__copy_from_iter+0x10/0x10 [ 743.520002][T12094] ? rcu_is_watching+0x12/0xc0 [ 743.520030][T12094] ? trace_kmalloc+0x2b/0xd0 [ 743.520068][T12094] ? __kmalloc_noprof+0x242/0x510 [ 743.520108][T12094] kernfs_fop_write_iter+0x19a/0x510 [ 743.520140][T12094] vfs_write+0x7d0/0x11d0 [ 743.520173][T12094] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 743.520201][T12094] ? __pfx___mutex_lock+0x10/0x10 [ 743.520240][T12094] ? __pfx_vfs_write+0x10/0x10 [ 743.520294][T12094] ksys_write+0x12a/0x250 [ 743.520325][T12094] ? __pfx_ksys_write+0x10/0x10 [ 743.520367][T12094] do_syscall_64+0xcd/0x490 [ 743.520407][T12094] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 743.520434][T12094] RIP: 0033:0x7f74d1d8ebe9 [ 743.520455][T12094] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 743.520480][T12094] RSP: 002b:00007f74d2b30038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 743.520505][T12094] RAX: ffffffffffffffda RBX: 00007f74d1fc5fa0 RCX: 00007f74d1d8ebe9 [ 743.520523][T12094] RDX: 00000000000098c7 RSI: 0000000000000000 RDI: 0000000000000003 [ 743.520539][T12094] RBP: 00007f74d2b30090 R08: 0000000000000000 R09: 0000000000000000 [ 743.520555][T12094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 743.520571][T12094] R13: 00007f74d1fc6038 R14: 00007f74d1fc5fa0 R15: 00007ffd7302a528 [ 743.520605][T12094] [ 744.070780][T12106] nfs: Unknown parameter 'w`_I+; HY Lu>>uh*C<+ ' [ 744.326783][T12113] FAULT_INJECTION: forcing a failure. [ 744.326783][T12113] name failslab, interval 1, probability 0, space 0, times 0 [ 744.360031][T12106] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input45 [ 744.372230][T12113] CPU: 0 UID: 0 PID: 12113 Comm: syz.2.1107 Not tainted syzkaller #0 PREEMPT(full) [ 744.372272][T12113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 744.372287][T12113] Call Trace: [ 744.372295][T12113] [ 744.372305][T12113] dump_stack_lvl+0x16c/0x1f0 [ 744.372344][T12113] should_fail_ex+0x512/0x640 [ 744.372380][T12113] ? fs_reclaim_acquire+0xae/0x150 [ 744.372422][T12113] ? tomoyo_encode2+0x100/0x3e0 [ 744.372457][T12113] should_failslab+0xc2/0x120 [ 744.372490][T12113] __kmalloc_noprof+0xd2/0x510 [ 744.372520][T12113] ? d_absolute_path+0x136/0x1a0 [ 744.372563][T12113] tomoyo_encode2+0x100/0x3e0 [ 744.372604][T12113] tomoyo_encode+0x29/0x50 [ 744.372638][T12113] tomoyo_realpath_from_path+0x18f/0x6e0 [ 744.372685][T12113] tomoyo_path_number_perm+0x245/0x580 [ 744.372716][T12113] ? tomoyo_path_number_perm+0x237/0x580 [ 744.372750][T12113] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 744.372784][T12113] ? find_held_lock+0x2b/0x80 [ 744.372838][T12113] ? find_held_lock+0x2b/0x80 [ 744.372862][T12113] ? hook_file_ioctl_common+0x145/0x410 [ 744.372928][T12113] ? __fget_files+0x20e/0x3c0 [ 744.372963][T12113] security_file_ioctl+0x9b/0x240 [ 744.373001][T12113] __x64_sys_ioctl+0xb7/0x210 [ 744.373047][T12113] do_syscall_64+0xcd/0x490 [ 744.373087][T12113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 744.373115][T12113] RIP: 0033:0x7f5c1b18ebe9 [ 744.373135][T12113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 744.373168][T12113] RSP: 002b:00007f5c1bf9d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 744.373193][T12113] RAX: ffffffffffffffda RBX: 00007f5c1b3c5fa0 RCX: 00007f5c1b18ebe9 [ 744.373212][T12113] RDX: 0000000000000000 RSI: 00000000c0045516 RDI: 0000000000000003 [ 744.373228][T12113] RBP: 00007f5c1bf9d090 R08: 0000000000000000 R09: 0000000000000000 [ 744.373244][T12113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 744.373260][T12113] R13: 00007f5c1b3c6038 R14: 00007f5c1b3c5fa0 R15: 00007ffedd3b6418 [ 744.373294][T12113] [ 744.373346][T12113] ERROR: Out of memory at tomoyo_realpath_from_path. [ 744.874250][T12117] FAULT_INJECTION: forcing a failure. [ 744.874250][T12117] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 744.904404][T12117] CPU: 1 UID: 0 PID: 12117 Comm: syz.2.1108 Not tainted syzkaller #0 PREEMPT(full) [ 744.904439][T12117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 744.904454][T12117] Call Trace: [ 744.904462][T12117] [ 744.904471][T12117] dump_stack_lvl+0x16c/0x1f0 [ 744.904509][T12117] should_fail_ex+0x512/0x640 [ 744.904548][T12117] _copy_to_user+0x32/0xd0 [ 744.904572][T12117] simple_read_from_buffer+0xcb/0x170 [ 744.904600][T12117] proc_fail_nth_read+0x197/0x240 [ 744.904627][T12117] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 744.904655][T12117] ? rw_verify_area+0xcf/0x6c0 [ 744.904679][T12117] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 744.904705][T12117] vfs_read+0x1e4/0xcf0 [ 744.904737][T12117] ? __pfx___mutex_lock+0x10/0x10 [ 744.904771][T12117] ? __pfx_vfs_read+0x10/0x10 [ 744.904806][T12117] ? __fget_files+0x20e/0x3c0 [ 744.904841][T12117] ksys_read+0x12a/0x250 [ 744.904868][T12117] ? __pfx_ksys_read+0x10/0x10 [ 744.904894][T12117] ? security_setselfattr+0x25a/0x320 [ 744.904926][T12117] do_syscall_64+0xcd/0x490 [ 744.904961][T12117] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 744.904986][T12117] RIP: 0033:0x7f5c1b18d5fc [ 744.905005][T12117] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 744.905029][T12117] RSP: 002b:00007f5c1bf9d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 744.905052][T12117] RAX: ffffffffffffffda RBX: 00007f5c1b3c5fa0 RCX: 00007f5c1b18d5fc [ 744.905068][T12117] RDX: 000000000000000f RSI: 00007f5c1bf9d0a0 RDI: 0000000000000003 [ 744.905083][T12117] RBP: 00007f5c1bf9d090 R08: 0000000000000000 R09: 0000000000000000 [ 744.905105][T12117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 744.905120][T12117] R13: 00007f5c1b3c6038 R14: 00007f5c1b3c5fa0 R15: 00007ffedd3b6418 [ 744.905151][T12117] [ 745.140695][T12110] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input46 [ 746.578874][T12137] FAULT_INJECTION: forcing a failure. [ 746.578874][T12137] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 746.579004][T12137] CPU: 0 UID: 0 PID: 12137 Comm: syz.1.1113 Not tainted syzkaller #0 PREEMPT(full) [ 746.579041][T12137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 746.579059][T12137] Call Trace: [ 746.579069][T12137] [ 746.579081][T12137] dump_stack_lvl+0x16c/0x1f0 [ 746.579127][T12137] should_fail_ex+0x512/0x640 [ 746.579175][T12137] should_fail_alloc_page+0xe7/0x130 [ 746.579217][T12137] prepare_alloc_pages+0x3c2/0x610 [ 746.579267][T12137] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 746.579309][T12137] ? process_measurement+0x4a6/0x23e0 [ 746.579339][T12137] ? down_write+0x14d/0x200 [ 746.579386][T12137] ? up_write+0x1b2/0x520 [ 746.579431][T12137] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 746.579487][T12137] ? __lock_acquire+0x62e/0x1ce0 [ 746.579527][T12137] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 746.579574][T12137] ? policy_nodemask+0xea/0x4e0 [ 746.579616][T12137] alloc_pages_mpol+0x1fb/0x550 [ 746.579656][T12137] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 746.579713][T12137] alloc_pages_noprof+0x131/0x390 [ 746.579753][T12137] __pud_alloc+0x3b/0x750 [ 746.579801][T12137] __handle_mm_fault+0x13de/0x2a50 [ 746.579835][T12137] ? mt_find+0x3ef/0xa30 [ 746.579878][T12137] ? __pfx___handle_mm_fault+0x10/0x10 [ 746.579906][T12137] ? __pfx_mt_find+0x10/0x10 [ 746.579970][T12137] ? find_vma+0xbf/0x140 [ 746.580008][T12137] ? __pfx_find_vma+0x10/0x10 [ 746.580050][T12137] handle_mm_fault+0x589/0xd10 [ 746.580082][T12137] ? trace_raw_output_exceptions+0x131/0x150 [ 746.580130][T12137] do_user_addr_fault+0x7a6/0x1370 [ 746.580180][T12137] ? rcu_is_watching+0x12/0xc0 [ 746.580214][T12137] exc_page_fault+0x5c/0xb0 [ 746.580253][T12137] asm_exc_page_fault+0x26/0x30 [ 746.580292][T12137] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 746.580325][T12137] Code: c4 10 e9 54 1f 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 [ 746.580355][T12137] RSP: 0018:ffffc900045ffd18 EFLAGS: 00050202 [ 746.580379][T12137] RAX: 0000000000000001 RBX: 0000200000000180 RCX: 0000000000000007 [ 746.580398][T12137] RDX: fffff520008bffb7 RSI: 0000200000000180 RDI: ffffc900045ffdb0 [ 746.580418][T12137] RBP: 0000000000000007 R08: 0000000000000001 R09: fffff520008bffb6 [ 746.580436][T12137] R10: ffffc900045ffdb6 R11: 0000000000000000 R12: 0000000000000000 [ 746.580453][T12137] R13: ffffc900045ffdb0 R14: 0000000000000007 R15: 0000000000000011 [ 746.580494][T12137] _copy_from_user+0x98/0xd0 [ 746.580545][T12137] __io_uring_register+0x154f/0x23c0 [ 746.580589][T12137] ? trace_contention_end+0xdd/0x130 [ 746.580633][T12137] ? __pfx___io_uring_register+0x10/0x10 [ 746.580686][T12137] ? __pfx___mutex_lock+0x10/0x10 [ 746.580751][T12137] ? __fget_files+0x20e/0x3c0 [ 746.580796][T12137] __x64_sys_io_uring_register+0x169/0x280 [ 746.580846][T12137] do_syscall_64+0xcd/0x490 [ 746.580890][T12137] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 746.580920][T12137] RIP: 0033:0x7f50a358ebe9 [ 746.580944][T12137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 746.580977][T12137] RSP: 002b:00007f50a4363038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab [ 746.581005][T12137] RAX: ffffffffffffffda RBX: 00007f50a37c5fa0 RCX: 00007f50a358ebe9 [ 746.581025][T12137] RDX: 0000200000000180 RSI: 0000000000000011 RDI: 0000000000000003 [ 746.581044][T12137] RBP: 00007f50a4363090 R08: 0000000000000000 R09: 0000000000000000 [ 746.581061][T12137] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000001 [ 746.581079][T12137] R13: 00007f50a37c6038 R14: 00007f50a37c5fa0 R15: 00007fff18f07498 [ 746.581119][T12137] [ 746.650596][T12121] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1117'. [ 746.650626][T12121] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 746.650678][T12121] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 746.651984][T12121] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 746.652009][T12121] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 748.688484][T12152] nbd: must specify a device to reconfigure [ 748.845102][T12154] FAULT_INJECTION: forcing a failure. [ 748.845102][T12154] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 748.882020][T12154] CPU: 0 UID: 0 PID: 12154 Comm: syz.0.1120 Not tainted syzkaller #0 PREEMPT(full) [ 748.882067][T12154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 748.882087][T12154] Call Trace: [ 748.882099][T12154] [ 748.882112][T12154] dump_stack_lvl+0x16c/0x1f0 [ 748.882165][T12154] should_fail_ex+0x512/0x640 [ 748.882223][T12154] _copy_to_user+0x32/0xd0 [ 748.882258][T12154] simple_read_from_buffer+0xcb/0x170 [ 748.882298][T12154] proc_fail_nth_read+0x197/0x240 [ 748.882338][T12154] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 748.882379][T12154] ? rw_verify_area+0xcf/0x6c0 [ 748.882415][T12154] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 748.882451][T12154] vfs_read+0x1e4/0xcf0 [ 748.882511][T12154] ? __pfx___mutex_lock+0x10/0x10 [ 748.882559][T12154] ? __pfx_vfs_read+0x10/0x10 [ 748.882612][T12154] ? __fget_files+0x20e/0x3c0 [ 748.882664][T12154] ksys_read+0x12a/0x250 [ 748.882705][T12154] ? __pfx_ksys_read+0x10/0x10 [ 748.882748][T12154] ? fput+0x9b/0xd0 [ 748.882804][T12154] do_syscall_64+0xcd/0x490 [ 748.882856][T12154] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 748.882891][T12154] RIP: 0033:0x7ff6acb8d5fc [ 748.882919][T12154] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 748.882953][T12154] RSP: 002b:00007ff6ad954030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 748.882985][T12154] RAX: ffffffffffffffda RBX: 00007ff6acdc5fa0 RCX: 00007ff6acb8d5fc [ 748.883008][T12154] RDX: 000000000000000f RSI: 00007ff6ad9540a0 RDI: 0000000000000003 [ 748.883030][T12154] RBP: 00007ff6ad954090 R08: 0000000000000000 R09: 0000000000000000 [ 748.883052][T12154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 748.883074][T12154] R13: 00007ff6acdc6038 R14: 00007ff6acdc5fa0 R15: 00007fff8f746c58 [ 748.883122][T12154] [ 749.066793][ C0] vkms_vblank_simulate: vblank timer overrun [ 750.549022][T12183] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 750.783815][T12186] zram: Removed device: zram0 [ 751.050223][T12189] ovs_: entered promiscuous mode [ 751.172828][T12197] FAULT_INJECTION: forcing a failure. [ 751.172828][T12197] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 751.288390][T12197] CPU: 0 UID: 0 PID: 12197 Comm: syz.1.1130 Not tainted syzkaller #0 PREEMPT(full) [ 751.288438][T12197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 751.288455][T12197] Call Trace: [ 751.288465][T12197] [ 751.288475][T12197] dump_stack_lvl+0x16c/0x1f0 [ 751.288519][T12197] should_fail_ex+0x512/0x640 [ 751.288562][T12197] _copy_to_user+0x32/0xd0 [ 751.288588][T12197] simple_read_from_buffer+0xcb/0x170 [ 751.288618][T12197] proc_fail_nth_read+0x197/0x240 [ 751.288648][T12197] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 751.288678][T12197] ? rw_verify_area+0xcf/0x6c0 [ 751.288705][T12197] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 751.288733][T12197] vfs_read+0x1e4/0xcf0 [ 751.288767][T12197] ? mtdchar_unlocked_ioctl+0xba/0xf0 [ 751.288799][T12197] ? __pfx_vfs_read+0x10/0x10 [ 751.288830][T12197] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 751.288871][T12197] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 751.288921][T12197] ksys_read+0x12a/0x250 [ 751.288956][T12197] ? __pfx_ksys_read+0x10/0x10 [ 751.288988][T12197] ? mtdchar_unlocked_ioctl+0xba/0xf0 [ 751.289018][T12197] ? __pfx_mtdchar_unlocked_ioctl+0x10/0x10 [ 751.289058][T12197] do_syscall_64+0xcd/0x490 [ 751.289100][T12197] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 751.289128][T12197] RIP: 0033:0x7f50a358d5fc [ 751.289149][T12197] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 751.289177][T12197] RSP: 002b:00007f50a4363030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 751.289203][T12197] RAX: ffffffffffffffda RBX: 00007f50a37c5fa0 RCX: 00007f50a358d5fc [ 751.289222][T12197] RDX: 000000000000000f RSI: 00007f50a43630a0 RDI: 0000000000000002 [ 751.289239][T12197] RBP: 00007f50a4363090 R08: 0000000000000000 R09: 0000000000000000 [ 751.289278][T12197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 751.289294][T12197] R13: 00007f50a37c6038 R14: 00007f50a37c5fa0 R15: 00007fff18f07498 [ 751.289327][T12197] [ 751.493246][ C0] vkms_vblank_simulate: vblank timer overrun [ 751.619297][T12201] ubi0: attaching mtd0 [ 751.623474][T12201] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 754.021441][T12224] FAULT_INJECTION: forcing a failure. [ 754.021441][T12224] name failslab, interval 1, probability 0, space 0, times 0 [ 754.028086][T12227] FAULT_INJECTION: forcing a failure. [ 754.028086][T12227] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 754.053619][T12224] CPU: 1 UID: 0 PID: 12224 Comm: syz.1.1136 Not tainted syzkaller #0 PREEMPT(full) [ 754.053664][T12224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 754.053685][T12224] Call Trace: [ 754.053698][T12224] [ 754.053711][T12224] dump_stack_lvl+0x16c/0x1f0 [ 754.053762][T12224] should_fail_ex+0x512/0x640 [ 754.053810][T12224] ? fs_reclaim_acquire+0xae/0x150 [ 754.053868][T12224] should_failslab+0xc2/0x120 [ 754.053916][T12224] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 754.053961][T12224] ? security_inode_alloc+0x3b/0x2b0 [ 754.054009][T12224] security_inode_alloc+0x3b/0x2b0 [ 754.054069][T12224] inode_init_always_gfp+0xce4/0x1030 [ 754.054115][T12224] alloc_inode+0x86/0x240 [ 754.054168][T12224] sock_alloc+0x40/0x280 [ 754.054223][T12224] __sock_create+0xc1/0x8d0 [ 754.054267][T12224] __sys_socket+0x14d/0x260 [ 754.054304][T12224] ? __pfx___sys_socket+0x10/0x10 [ 754.054344][T12224] ? do_user_addr_fault+0x843/0x1370 [ 754.054408][T12224] __x64_sys_socket+0x72/0xb0 [ 754.054443][T12224] ? lockdep_hardirqs_on+0x7c/0x110 [ 754.054490][T12224] do_syscall_64+0xcd/0x490 [ 754.054544][T12224] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 754.054580][T12224] RIP: 0033:0x7f50a3590b07 [ 754.054607][T12224] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 754.054642][T12224] RSP: 002b:00007f50a4361fa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 754.054677][T12224] RAX: ffffffffffffffda RBX: 00007f50a37c5fa0 RCX: 00007f50a3590b07 [ 754.054700][T12224] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 754.054721][T12224] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 754.054743][T12224] R10: 0000200000000040 R11: 0000000000000286 R12: 0000000000000001 [ 754.054766][T12224] R13: 00007f50a37c6038 R14: 00007f50a37c5fa0 R15: 00007fff18f07498 [ 754.054813][T12224] [ 754.055060][T12224] socket: no more sockets [ 754.105888][T12227] CPU: 0 UID: 0 PID: 12227 Comm: syz.3.1135 Not tainted syzkaller #0 PREEMPT(full) [ 754.105943][T12227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 754.105966][T12227] Call Trace: [ 754.105980][T12227] [ 754.105994][T12227] dump_stack_lvl+0x16c/0x1f0 [ 754.106053][T12227] should_fail_ex+0x512/0x640 [ 754.106110][T12227] _copy_to_user+0x32/0xd0 [ 754.106147][T12227] simple_read_from_buffer+0xcb/0x170 [ 754.106192][T12227] proc_fail_nth_read+0x197/0x240 [ 754.106235][T12227] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 754.106290][T12227] ? rw_verify_area+0xcf/0x6c0 [ 754.106330][T12227] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 754.106371][T12227] vfs_read+0x1e4/0xcf0 [ 754.106427][T12227] ? __pfx___mutex_lock+0x10/0x10 [ 754.106481][T12227] ? __pfx_vfs_read+0x10/0x10 [ 754.106539][T12227] ? __fget_files+0x20e/0x3c0 [ 754.106596][T12227] ksys_read+0x12a/0x250 [ 754.106639][T12227] ? __pfx_ksys_read+0x10/0x10 [ 754.106697][T12227] do_syscall_64+0xcd/0x490 [ 754.106749][T12227] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 754.106782][T12227] RIP: 0033:0x7f74d1d8d5fc [ 754.106808][T12227] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 754.106841][T12227] RSP: 002b:00007f74cfff6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 754.106874][T12227] RAX: ffffffffffffffda RBX: 00007f74d1fc6090 RCX: 00007f74d1d8d5fc [ 754.106897][T12227] RDX: 000000000000000f RSI: 00007f74cfff60a0 RDI: 0000000000000004 [ 754.106917][T12227] RBP: 00007f74cfff6090 R08: 0000000000000000 R09: 0000000000000000 [ 754.106936][T12227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 754.106954][T12227] R13: 00007f74d1fc6128 R14: 00007f74d1fc6090 R15: 00007ffd7302a528 [ 754.106997][T12227] [ 755.657781][T12264] FAULT_INJECTION: forcing a failure. [ 755.657781][T12264] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 755.767500][T12264] CPU: 0 UID: 0 PID: 12264 Comm: syz.3.1145 Not tainted syzkaller #0 PREEMPT(full) [ 755.767545][T12264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 755.767561][T12264] Call Trace: [ 755.767570][T12264] [ 755.767581][T12264] dump_stack_lvl+0x16c/0x1f0 [ 755.767624][T12264] should_fail_ex+0x512/0x640 [ 755.767666][T12264] _copy_to_user+0x32/0xd0 [ 755.767691][T12264] do_statfs_native+0x9e/0x100 [ 755.767732][T12264] ? __pfx_do_statfs_native+0x10/0x10 [ 755.767785][T12264] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 755.767828][T12264] __do_sys_statfs+0xf0/0x100 [ 755.767869][T12264] ? __pfx___do_sys_statfs+0x10/0x10 [ 755.767932][T12264] ? rcu_is_watching+0x12/0xc0 [ 755.767962][T12264] do_syscall_64+0xcd/0x490 [ 755.768000][T12264] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 755.768027][T12264] RIP: 0033:0x7f74d1d8ebe9 [ 755.768047][T12264] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 755.768072][T12264] RSP: 002b:00007f74d2b30038 EFLAGS: 00000246 ORIG_RAX: 0000000000000089 [ 755.768096][T12264] RAX: ffffffffffffffda RBX: 00007f74d1fc5fa0 RCX: 00007f74d1d8ebe9 [ 755.768113][T12264] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000200000000180 [ 755.768129][T12264] RBP: 00007f74d2b30090 R08: 0000000000000000 R09: 0000000000000000 [ 755.768145][T12264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 755.768160][T12264] R13: 00007f74d1fc6038 R14: 00007f74d1fc5fa0 R15: 00007ffd7302a528 [ 755.768192][T12264] [ 756.041351][T12266] FAULT_INJECTION: forcing a failure. [ 756.041351][T12266] name failslab, interval 1, probability 0, space 0, times 0 [ 756.059414][T12266] CPU: 0 UID: 0 PID: 12266 Comm: syz.2.1148 Not tainted syzkaller #0 PREEMPT(full) [ 756.059452][T12266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 756.059467][T12266] Call Trace: [ 756.059475][T12266] [ 756.059486][T12266] dump_stack_lvl+0x16c/0x1f0 [ 756.059525][T12266] should_fail_ex+0x512/0x640 [ 756.059560][T12266] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 756.059593][T12266] should_failslab+0xc2/0x120 [ 756.059625][T12266] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 756.059655][T12266] ? __pmd_alloc+0xbf/0x930 [ 756.059697][T12266] __pmd_alloc+0xbf/0x930 [ 756.059737][T12266] __handle_mm_fault+0xa06/0x2a50 [ 756.059766][T12266] ? mt_find+0x3ef/0xa30 [ 756.059803][T12266] ? __pfx___handle_mm_fault+0x10/0x10 [ 756.059826][T12266] ? __pfx_mt_find+0x10/0x10 [ 756.059885][T12266] ? find_vma+0xbf/0x140 [ 756.059918][T12266] ? __pfx_find_vma+0x10/0x10 [ 756.059956][T12266] handle_mm_fault+0x589/0xd10 [ 756.059984][T12266] ? trace_raw_output_exceptions+0x131/0x150 [ 756.060030][T12266] do_user_addr_fault+0x7a6/0x1370 [ 756.060074][T12266] ? rcu_is_watching+0x12/0xc0 [ 756.060105][T12266] exc_page_fault+0x5c/0xb0 [ 756.060139][T12266] asm_exc_page_fault+0x26/0x30 [ 756.060164][T12266] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 756.060192][T12266] Code: c4 10 e9 54 1f 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 [ 756.060217][T12266] RSP: 0018:ffffc9001ab77d70 EFLAGS: 00050202 [ 756.060237][T12266] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000004 [ 756.060252][T12266] RDX: fffff5200356efbc RSI: 0000000000000000 RDI: ffffc9001ab77de0 [ 756.060269][T12266] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff5200356efbc [ 756.060285][T12266] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000 [ 756.060299][T12266] R13: ffffc9001ab77de0 R14: 0000000000000000 R15: 0000000000000000 [ 756.060331][T12266] _copy_from_user+0x98/0xd0 [ 756.060375][T12266] do_sock_getsockopt+0x3ca/0x440 [ 756.060420][T12266] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 756.060461][T12266] ? __fget_files+0x204/0x3c0 [ 756.060491][T12266] ? 0xffffffffff600000 [ 756.060522][T12266] __sys_getsockopt+0x123/0x1b0 [ 756.060557][T12266] ? 0xffffffffff600000 [ 756.060579][T12266] __x64_sys_getsockopt+0xbd/0x160 [ 756.060612][T12266] ? do_syscall_64+0x91/0x490 [ 756.060648][T12266] ? lockdep_hardirqs_on+0x7c/0x110 [ 756.060681][T12266] do_syscall_64+0xcd/0x490 [ 756.060719][T12266] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 756.060745][T12266] RIP: 0033:0x7f5c1b18ebe9 [ 756.060763][T12266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 756.060788][T12266] RSP: 002b:00007f5c1bf9d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 756.060810][T12266] RAX: ffffffffffffffda RBX: 00007f5c1b3c5fa0 RCX: 00007f5c1b18ebe9 [ 756.060827][T12266] RDX: 000000000000001b RSI: 0000000000000006 RDI: 0000000000000004 [ 756.060842][T12266] RBP: 00007f5c1bf9d090 R08: 0000000000000000 R09: 0000000000000000 [ 756.060863][T12266] R10: ffffffffff600000 R11: 0000000000000246 R12: 0000000000000001 [ 756.060879][T12266] R13: 00007f5c1b3c6038 R14: 00007f5c1b3c5fa0 R15: 00007ffedd3b6418 [ 756.060901][T12266] ? 0xffffffffff600000 [ 756.060927][T12266] [ 757.844653][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 757.851133][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 760.373994][T12320] FAULT_INJECTION: forcing a failure. [ 760.373994][T12320] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 760.394322][T12320] CPU: 0 UID: 0 PID: 12320 Comm: syz.3.1157 Not tainted syzkaller #0 PREEMPT(full) [ 760.394370][T12320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 760.394390][T12320] Call Trace: [ 760.394402][T12320] [ 760.394415][T12320] dump_stack_lvl+0x16c/0x1f0 [ 760.394482][T12320] should_fail_ex+0x512/0x640 [ 760.394540][T12320] _copy_from_user+0x2e/0xd0 [ 760.394598][T12320] vmci_host_unlocked_ioctl+0xbdb/0x2040 [ 760.394652][T12320] ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10 [ 760.394704][T12320] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 760.394762][T12320] ? do_vfs_ioctl+0x128/0x14f0 [ 760.394820][T12320] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 760.394891][T12320] ? find_held_lock+0x2b/0x80 [ 760.394925][T12320] ? hook_file_ioctl_common+0x145/0x410 [ 760.394983][T12320] ? __fget_files+0x20e/0x3c0 [ 760.395031][T12320] ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10 [ 760.395083][T12320] __x64_sys_ioctl+0x18e/0x210 [ 760.395142][T12320] do_syscall_64+0xcd/0x490 [ 760.395195][T12320] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 760.395231][T12320] RIP: 0033:0x7f74d1d8ebe9 [ 760.395259][T12320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 760.395294][T12320] RSP: 002b:00007f74cfff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 760.395328][T12320] RAX: ffffffffffffffda RBX: 00007f74d1fc6090 RCX: 00007f74d1d8ebe9 [ 760.395352][T12320] RDX: 0000000000000006 RSI: 00000000000007a0 RDI: 0000000000000004 [ 760.395374][T12320] RBP: 00007f74cfff6090 R08: 0000000000000000 R09: 0000000000000000 [ 760.395396][T12320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 760.395418][T12320] R13: 00007f74d1fc6128 R14: 00007f74d1fc6090 R15: 00007ffd7302a528 [ 760.395472][T12320] [ 763.201840][T12350] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1165'. [ 763.242381][T12350] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1165'. [ 763.690821][T12360] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1168'. [ 763.731826][T12360] netlink: 254 bytes leftover after parsing attributes in process `syz.2.1168'. [ 765.768276][T12393] [U]  [ 765.768384][T12393] [U] [ 765.768449][T12393] [U] [ 765.768514][T12393] [U] [ 765.818173][T12393] [U] [ 765.818239][T12393] [U] [ 765.818294][T12393] [U] [ 765.818348][T12393] [U] [ 765.831463][T12393] [U] [ 765.831531][T12393] [U] [ 765.831586][T12393] [U] [ 765.831642][T12393] [U] [ 765.831890][T12393] [U] [ 765.831947][T12393] [U] [ 765.832003][T12393] [U] [ 765.832070][T12393] [U] [ 765.842623][T12393] [U] [ 765.842701][T12393] [U] [ 765.842772][T12393] [U] [ 765.842842][T12393] [U] [ 765.843160][T12393] [U] [ 765.843231][T12393] [U] [ 765.843302][T12393] [U] [ 765.843372][T12393] [U] [ 765.843697][T12393] [U] [ 765.843765][T12393] [U] [ 765.843836][T12393] [U] [ 765.843906][T12393] [U] [ 765.844234][T12393] [U] [ 765.844305][T12393] [U] [ 765.844376][T12393] [U] [ 765.844447][T12393] [U] [ 765.844770][T12393] [U] [ 765.844837][T12393] [U] [ 765.844908][T12393] [U] [ 765.844978][T12393] [U] [ 765.845301][T12393] [U] [ 765.845366][T12393] [U] [ 765.845431][T12393] [U] [ 765.845496][T12393] [U] [ 765.845794][T12393] [U] [ 765.845861][T12393] [U] [ 765.845929][T12393] [U] [ 765.845998][T12393] [U] [ 765.846319][T12393] [U] [ 765.846389][T12393] [U] [ 765.846458][T12393] [U] [ 765.846525][T12393] [U] [ 765.846832][T12393] [U] [ 765.846897][T12393] [U] [ 765.846964][T12393] [U] [ 765.847040][T12393] [U] [ 765.847350][T12393] [U] [ 765.847419][T12393] [U] [ 765.847488][T12393] [U] [ 765.847554][T12393] [U] [ 765.847875][T12393] [U] [ 765.847943][T12393] [U] [ 765.848019][T12393] [U] [ 765.848086][T12393] [U] [ 765.848405][T12393] [U] [ 765.848475][T12393] [U] [ 765.848546][T12393] [U] [ 765.848616][T12393] [U] [ 765.848920][T12393] [U] [ 765.848991][T12393] [U] [ 765.849067][T12393] [U] [ 765.849138][T12393] [U] [ 765.849457][T12393] [U] [ 765.849526][T12393] [U] [ 765.849595][T12393] [U] [ 765.849665][T12393] [U] [ 765.849987][T12393] [U] [ 765.850067][T12393] [U] [ 765.850137][T12393] [U] [ 765.850206][T12393] [U] [ 765.872833][T12393] [U] [ 765.872906][T12393] [U] [ 765.872974][T12393] [U] [ 765.873053][T12393] [U] [ 765.873359][T12393] [U] [ 765.873426][T12393] [U] [ 765.873494][T12393] [U] [ 765.873561][T12393] [U] [ 765.873869][T12393] [U] [ 765.873938][T12393] [U] [ 765.874014][T12393] [U] [ 765.874079][T12393] [U] [ 765.874392][T12393] [U] [ 765.874461][T12393] [U] [ 765.874529][T12393] [U] [ 765.874595][T12393] [U] [ 765.874899][T12393] [U] [ 765.874968][T12393] [U] [ 765.875042][T12393] [U] [ 765.875111][T12393] [U] [ 765.884402][T12393] [U] [ 765.884472][T12393] [U] [ 765.884538][T12393] [U] [ 765.884600][T12393] [U] [ 765.884907][T12393] [U] [ 765.884976][T12393] [U] [ 765.885052][T12393] [U] [ 765.885120][T12393] [U] [ 765.885431][T12393] [U] [ 765.885499][T12393] [U] [ 765.885567][T12393] [U] [ 765.885634][T12393] [U] [ 765.885944][T12393] [U] [ 765.886017][T12393] [U] [ 765.886085][T12393] [U] [ 765.886153][T12393] [U] [ 765.886455][T12393] [U] [ 765.886523][T12393] [U] [ 765.886589][T12393] [U] [ 765.886655][T12393] [U] [ 765.886940][T12393] [U] [ 765.887014][T12393] [U] [ 765.887080][T12393] [U] [ 765.887143][T12393] [U] [ 765.887440][T12393] [U] [ 765.887506][T12393] [U] [ 765.887574][T12393] [U] [ 765.887640][T12393] [U] [ 765.887884][T12393] [U] [ 765.887953][T12393] [U] [ 765.888027][T12393] [U] [ 765.902977][T12398] [U] [ 765.903068][T12398] [U] [ 765.903134][T12398] [U] [ 765.903200][T12398] [U] [ 765.903495][T12398] [U] [ 765.903560][T12398] [U] [ 765.903627][T12398] [U] [ 765.903694][T12398] [U] [ 765.903762][T12398] [U] [ 765.904068][T12398] [U] [ 765.904137][T12398] [U] [ 765.904205][T12398] [U] [ 765.904272][T12398] [U] [ 765.904568][T12398] [U] [ 765.904637][T12398] [U] [ 765.904705][T12398] [U] [ 765.904772][T12398] [U] [ 765.905079][T12398] [U] [ 765.905148][T12398] [U] [ 765.905216][T12398] [U] [ 765.905283][T12398] [U] [ 765.905586][T12398] [U] [ 765.905654][T12398] [U] [ 765.905722][T12398] [U] [ 765.905790][T12398] [U] [ 765.906119][T12398] [U] [ 765.906191][T12398] [U] [ 765.906261][T12398] [U] [ 765.906332][T12398] [U] [ 765.906648][T12398] [U] [ 765.906720][T12398] [U] [ 765.906789][T12398] [U] [ 765.906859][T12398] [U] [ 765.907188][T12398] [U] [ 765.907260][T12398] [U] [ 765.907331][T12398] [U] [ 765.907401][T12398] [U] [ 765.907719][T12398] [U] [ 765.907791][T12398] [U] [ 765.907862][T12398] [U] [ 765.907932][T12398] [U] [ 765.908258][T12398] [U] [ 765.908331][T12398] [U] [ 765.908401][T12398] [U] [ 765.908472][T12398] [U] [ 765.908791][T12398] [U] [ 765.908863][T12398] [U] [ 765.908933][T12398] [U] [ 765.909011][T12398] [U] [ 765.909331][T12398] [U] [ 765.909403][T12398] [U] [ 765.909473][T12398] [U] [ 765.909543][T12398] [U] [ 765.909863][T12398] [U] [ 765.909935][T12398] [U] [ 765.910011][T12398] [U] [ 765.910083][T12398] [U] [ 765.910395][T12398] [U] [ 765.910465][T12398] [U] [ 765.910532][T12398] [U] [ 765.910602][T12398] [U] [ 765.910901][T12398] [U] [ 765.910994][T12398] [U] [ 765.911073][T12398] [U] [ 765.911143][T12398] [U] [ 765.911464][T12398] [U] [ 765.911535][T12398] [U] [ 765.911607][T12398] [U] [ 765.911677][T12398] [U] [ 765.911995][T12398] [U] [ 765.912073][T12398] [U] [ 765.912144][T12398] [U] [ 765.912215][T12398] [U] [ 765.937125][T12398] [U] [ 765.937202][T12398] [U] [ 765.937276][T12398] [U] [ 765.937342][T12398] [U] [ 765.937634][T12398] [U] [ 765.937682][T12398] [U] [ 765.937728][T12398] [U] [ 765.937773][T12398] [U] [ 765.937987][T12398] [U] [ 765.938034][T12398] [U] [ 765.938081][T12398] [U] [ 765.938128][T12398] [U] [ 765.938364][T12398] [U] [ 765.938413][T12398] [U] [ 765.938460][T12398] [U] [ 765.938507][T12398] [U] [ 765.938727][T12398] [U] [ 765.938775][T12398] [U] [ 765.938823][T12398] [U] [ 765.938871][T12398] [U] [ 765.939080][T12398] [U] [ 765.939127][T12398] [U] [ 765.939173][T12398] [U] [ 765.939219][T12398] [U] [ 765.939441][T12398] [U] [ 765.939489][T12398] [U] [ 765.939538][T12398] [U] [ 765.939587][T12398] [U] [ 765.939806][T12398] [U] [ 765.939855][T12398] [U] [ 765.939903][T12398] [U] [ 765.939952][T12398] [U] [ 765.940175][T12398] [U] [ 765.940223][T12398] [U] [ 765.940277][T12398] [U] [ 765.940326][T12398] [U] [ 765.940547][T12398] [U] [ 765.940595][T12398] [U] [ 765.940643][T12398] [U] [ 765.940691][T12398] [U] [ 765.940911][T12398] [U] [ 765.940959][T12398] [U] [ 765.941007][T12398] [U] [ 765.941055][T12398] [U] [ 765.941280][T12398] [U] [ 765.941330][T12398] [U] [ 765.941379][T12398] [U] [ 765.941428][T12398] [U] [ 765.941654][T12398] [U] [ 765.941703][T12398] [U] [ 765.941751][T12398] [U] [ 765.941800][T12398] [U] [ 765.942021][T12398] [U] [ 765.942069][T12398] [U] [ 765.942118][T12398] [U] [ 765.942166][T12398] [U] [ 766.093852][T12393] [U] [ 766.093909][T12393] [U] [ 766.093958][T12393] [U] [ 766.094016][T12393] [U] [ 766.094241][T12393] [U] [ 766.094290][T12393] [U] [ 766.094338][T12393] [U] [ 766.094386][T12393] [U] [ 766.094605][T12393] [U] [ 766.094654][T12393] [U] [ 766.094702][T12393] [U] [ 766.094750][T12393] [U] [ 766.094969][T12393] [U] [ 766.095023][T12393] [U] [ 766.095071][T12393] [U] [ 766.095120][T12393] [U] [ 766.095168][T12393] [U] [ 766.095387][T12393] [U] [ 766.095436][T12393] [U] [ 766.095484][T12393] [U] [ 766.095532][T12393] [U] [ 766.095753][T12393] [U] [ 766.095802][T12393] [U] [ 766.095851][T12393] [U] [ 766.095899][T12393] [U] [ 766.096124][T12393] [U] [ 766.096173][T12393] [U] [ 766.096221][T12393] [U] [ 766.096270][T12393] [U] [ 766.096489][T12393] [U] [ 766.096537][T12393] [U] [ 766.096586][T12393] [U] [ 766.096634][T12393] [U] [ 766.096854][T12393] [U] [ 766.096902][T12393] [U] [ 766.096951][T12393] [U] [ 766.097005][T12393] [U] [ 766.097226][T12393] [U] [ 766.097275][T12393] [U] [ 766.097324][T12393] [U] [ 766.097372][T12393] [U] [ 766.097593][T12393] [U] [ 766.097642][T12393] [U] [ 766.097691][T12393] [U] [ 766.097739][T12393] [U] [ 766.097959][T12393] [U] [ 766.098017][T12393] [U] [ 766.098066][T12393] [U] [ 766.098114][T12393] [U] [ 766.098335][T12393] [U] [ 766.098384][T12393] [U] [ 766.098432][T12393] [U] [ 766.098481][T12393] [U] [ 766.098702][T12393] [U] [ 766.098750][T12393] [U] [ 766.098798][T12393] [U] [ 766.098847][T12393] [U] [ 766.099073][T12393] [U] [ 766.099121][T12393] [U] [ 766.099169][T12393] [U] [ 766.099218][T12393] [U] [ 766.099439][T12393] [U] [ 766.099488][T12393] [U] [ 766.099536][T12393] [U] [ 766.099584][T12393] [U] [ 766.099805][T12393] [U] [ 766.099854][T12393] [U] [ 766.099903][T12393] [U] [ 766.099951][T12393] [U] [ 766.100177][T12393] [U] [ 766.100226][T12393] [U] [ 766.100275][T12393] [U] [ 766.100323][T12393] [U] [ 766.100544][T12393] [U] [ 766.100592][T12393] [U] [ 766.100641][T12393] [U] [ 766.100690][T12393] [U] [ 766.100909][T12393] [U] [ 766.100958][T12393] [U] [ 766.101010][T12393] [U] [ 766.101064][T12393] [U] [ 766.101401][T12393] [U] [ 766.101451][T12393] [U] [ 766.101499][T12393] [U] [ 766.101548][T12393] [U] [ 766.101770][T12393] [U] [ 766.101818][T12393] [U] [ 766.101867][T12393] [U] [ 766.101915][T12393] [U] [ 766.102147][T12393] [U] [ 766.102195][T12393] [U] [ 766.102243][T12393] [U] [ 766.102292][T12393] [U] [ 766.102597][T12393] [U] [ 766.102647][T12393] [U] [ 766.102696][T12393] [U] [ 766.102744][T12393] [U] [ 766.102968][T12393] [U] [ 766.103022][T12393] [U] [ 766.103071][T12393] [U] [ 766.103119][T12393] [U] [ 766.103339][T12393] [U] [ 766.103387][T12393] [U] [ 766.103436][T12393] [U] [ 766.103484][T12393] [U] [ 766.103702][T12393] [U] [ 766.103751][T12393] [U] [ 766.103799][T12393] [U] [ 766.103846][T12393] [U] [ 766.104070][T12393] [U] [ 766.104118][T12393] [U] [ 766.104165][T12393] [U] [ 766.104214][T12393] [U] [ 766.104433][T12393] [U] [ 766.104481][T12393] [U] [ 766.104529][T12393] [U] [ 766.104578][T12393] [U] [ 766.104797][T12393] [U] [ 766.104847][T12393] [U] [ 766.104896][T12393] [U] [ 766.104944][T12393] [U] [ 766.105175][T12393] [U] [ 766.105224][T12393] [U] [ 766.105273][T12393] [U] [ 766.105321][T12393] [U] [ 766.105543][T12393] [U] [ 766.105591][T12393] [U] [ 766.105639][T12393] [U] [ 766.105687][T12393] [U] [ 766.105908][T12393] [U] [ 766.105956][T12393] [U] [ 766.106011][T12393] [U] [ 766.106060][T12393] [U] [ 766.106281][T12393] [U] [ 766.106329][T12393] [U] [ 766.106377][T12393] [U] [ 766.106425][T12393] [U] [ 766.106644][T12393] [U] [ 766.106692][T12393] [U] [ 766.106740][T12393] [U] [ 766.106789][T12393] [U] [ 766.107011][T12393] [U] [ 766.107060][T12393] [U] [ 766.107108][T12393] [U] [ 766.107156][T12393] [U] [ 766.107204][T12393] [U] [ 766.107423][T12393] [U] [ 766.107472][T12393] [U] [ 766.107520][T12393] [U] [ 766.107568][T12393] [U] [ 766.107786][T12393] [U] [ 766.107834][T12393] [U] [ 766.107883][T12393] [U] [ 766.107931][T12393] [U] [ 766.108155][T12393] [U] [ 766.108203][T12393] [U] [ 766.108252][T12393] [U] [ 766.108300][T12393] [U] [ 766.108519][T12393] [U] [ 766.108567][T12393] [U] [ 766.108615][T12393] [U] [ 766.108663][T12393] [U] [ 766.108881][T12393] [U] [ 766.108929][T12393] [U] [ 766.108977][T12393] [U] [ 766.109028][T12393] [U] [ 766.109246][T12393] [U] [ 766.109295][T12393] [U] [ 766.109343][T12393] [U] [ 766.109391][T12393] [U] [ 766.109609][T12393] [U] [ 766.109656][T12393] [U] [ 766.109705][T12393] [U] [ 766.109753][T12393] [U] [ 766.109971][T12393] [U] [ 766.110023][T12393] [U] [ 766.110071][T12393] [U] [ 766.110120][T12393] [U] [ 766.110338][T12393] [U] [ 766.110386][T12393] [U] [ 766.110434][T12393] [U] [ 766.110482][T12393] [U] [ 766.110701][T12393] [U] [ 766.110748][T12393] [U] [ 766.110796][T12393] [U] [ 766.110844][T12393] [U] [ 766.111085][T12393] [U] [ 766.111134][T12393] [U] [ 766.111182][T12393] [U] [ 766.111231][T12393] [U] [ 766.122823][T12393] [U] [ 766.122899][T12393] [U] [ 766.122969][T12393] [U] [ 766.123041][T12393] [U] [ 766.123371][T12393] [U] [ 766.123443][T12393] [U] [ 766.123512][T12393] [U] [ 766.123583][T12393] [U] [ 766.123892][T12393] [U] [ 766.123961][T12393] [U] [ 766.124031][T12393] [U] [ 766.124102][T12393] [U] [ 766.124430][T12393] [U] [ 766.124502][T12393] [U] [ 766.124572][T12393] [U] [ 766.124642][T12393] [U] [ 766.124960][T12393] [U] [ 766.125031][T12393] [U] [ 766.125101][T12393] [U] [ 766.125172][T12393] [U] [ 766.125498][T12393] [U] [ 766.125565][T12393] [U] [ 766.125633][T12393] [U] [ 766.125700][T12393] [U] [ 766.126075][T12393] [U] [ 766.126143][T12393] [U] [ 766.126210][T12393] [U] [ 766.126279][T12393] [U] [ 766.126578][T12393] [U] [ 766.126643][T12393] [U] [ 766.126709][T12393] [U] [ 766.126776][T12393] [U] [ 766.127074][T12393] [U] [ 766.127139][T12393] [U] [ 766.127205][T12393] [U] [ 766.127276][T12393] [U] [ 766.127585][T12393] [U] [ 766.127652][T12393] [U] [ 766.127719][T12393] [U] [ 766.127786][T12393] [U] [ 766.128085][T12393] [U] [ 766.128152][T12393] [U] [ 766.128219][T12393] [U] [ 766.128292][T12393] [U] [ 766.128598][T12393] [U] [ 766.128665][T12393] [U] [ 766.128732][T12393] [U] [ 766.128789][T12393] [U] [ 766.130271][T12393] [U] [ 766.130336][T12393] [U] [ 766.130401][T12393] [U] [ 766.130468][T12393] [U] [ 766.130773][T12393] [U] [ 766.130840][T12393] [U] [ 766.130930][T12393] [U] [ 766.130995][T12393] [U] [ 766.131303][T12393] [U] [ 766.131366][T12393] [U] [ 766.131430][T12393] [U] [ 766.131497][T12393] [U] [ 766.131805][T12393] [U] [ 766.131872][T12393] [U] [ 766.131939][T12393] [U] [ 766.132006][T12393] [U] [ 766.132316][T12393] [U] [ 766.132388][T12393] [U] [ 766.132450][T12393] [U] [ 766.132517][T12393] [U] [ 766.146672][T12394] QAT: Device 238 not found [ 766.150751][T12393] [U] [ 766.150851][T12393] [U] [ 766.150947][T12393] [U] [ 766.151019][T12393] [U] [ 766.151342][T12393] [U] [ 766.151411][T12393] [U] [ 766.151478][T12393] [U] [ 766.151572][T12393] [U] [ 766.151878][T12393] [U] [ 766.151945][T12393] [U] [ 766.152011][T12393] [U] [ 766.152080][T12393] [U] [ 766.152147][T12393] [U] [ 766.157667][T12393] [U] [ 766.157738][T12393] [U] [ 766.157806][T12393] [U] [ 766.157871][T12393] [U] [ 766.158179][T12393] [U] [ 766.158257][T12393] [U] [ 766.158326][T12393] [U] [ 766.158393][T12393] [U] [ 766.158699][T12393] [U] [ 766.158768][T12393] [U] [ 766.158836][T12393] [U] [ 766.158901][T12393] [U] [ 766.159207][T12393] [U] [ 766.159283][T12393] [U] [ 766.159350][T12393] [U] [ 766.159418][T12393] [U] [ 766.159721][T12393] [U] [ 766.159790][T12393] [U] [ 766.159858][T12393] [U] [ 766.159926][T12393] [U] [ 766.160237][T12393] [U] [ 766.160305][T12393] [U] [ 766.160372][T12393] [U] [ 766.160440][T12393] [U] [ 766.160746][T12393] [U] [ 766.160814][T12393] [U] [ 766.160880][T12393] [U] [ 766.160947][T12393] [U] [ 766.161258][T12393] [U] [ 766.161327][T12393] [U] [ 766.161394][T12393] [U] [ 766.161462][T12393] [U] [ 766.161771][T12393] [U] [ 766.161838][T12393] [U] [ 766.161905][T12393] [U] [ 766.161973][T12393] [U] [ 766.162287][T12393] [U] [ 766.162355][T12393] [U] [ 766.162424][T12393] [U] [ 766.162490][T12393] [U] [ 766.190448][T12393] [U] [ 767.652037][T12393] [U] [ 767.652112][T12393] [U] [ 767.652168][T12393] [U] [ 767.689462][T12393] [U] [ 767.699329][T12393] [U] [ 767.702095][T12393] [U] [ 767.704858][T12393] [U] [ 767.708950][T12393] [U] [ 767.711727][T12393] [U] [ 767.714496][T12393] [U] [ 767.717240][T12393] [U] [ 767.720350][T12393] [U] [ 767.723106][T12393] [U] [ 767.725866][T12393] [U] [ 767.728611][T12393] [U] [ 767.733336][T12393] [U] [ 767.736117][T12393] [U] [ 767.738863][T12393] [U] [ 767.741661][T12393] [U] [ 767.744775][T12393] [U] [ 767.747540][T12393] [U] [ 767.750281][T12393] [U] [ 767.753000][T12393] [U] [ 767.756047][T12393] [U] [ 767.758810][T12393] [U] [ 767.761916][T12393] [U] [ 767.764738][T12393] [U] [ 767.768560][T12393] [U] [ 767.771345][T12393] [U] [ 767.774116][T12393] [U] [ 767.776881][T12393] [U] [ 767.833055][T12393] [U] [ 767.835897][T12393] [U] [ 767.835969][T12393] [U] [ 767.836038][T12393] [U] [ 767.840413][T12393] [U] [ 767.840490][T12393] [U] [ 767.840557][T12393] [U] [ 767.840626][T12393] [U] [ 767.840996][T12393] [U] [ 767.841050][T12393] [U] [ 767.841110][T12393] [U] [ 767.841176][T12393] [U] [ 767.841468][T12393] [U] [ 767.841532][T12393] [U] [ 767.841595][T12393] [U] [ 767.841659][T12393] [U] [ 767.841938][T12393] [U] [ 767.841990][T12393] [U] [ 767.842042][T12393] [U] [ 767.842101][T12393] [U] [ 767.842412][T12393] [U] [ 767.842479][T12393] [U] [ 767.842557][T12393] [U] [ 767.842627][T12393] [U] [ 767.842924][T12393] [U] [ 767.842979][T12393] [U] [ 767.843033][T12393] [U] [ 767.843092][T12393] [U] [ 767.845622][T12393] [U] [ 767.845677][T12393] [U] [ 767.845726][T12393] [U] [ 767.845777][T12393] [U] [ 767.846007][T12393] [U] [ 767.846056][T12393] [U] [ 767.846106][T12393] [U] [ 767.846153][T12393] [U] [ 767.846376][T12393] [U] [ 767.846424][T12393] [U] [ 767.846472][T12393] [U] [ 767.846521][T12393] [U] [ 767.846742][T12393] [U] [ 767.846791][T12393] [U] [ 767.846844][T12393] [U] [ 767.846893][T12393] [U] [ 767.847114][T12393] [U] [ 767.847162][T12393] [U] [ 767.847210][T12393] [U] [ 767.847259][T12393] [U] [ 767.847479][T12393] [U] [ 767.847528][T12393] [U] [ 767.847576][T12393] [U] [ 767.847625][T12393] [U] [ 767.847850][T12393] [U] [ 767.847898][T12393] [U] [ 767.847947][T12393] [U] [ 767.847995][T12393] [U] [ 767.848043][T12393] [U] [ 767.848264][T12393] [U] [ 767.848312][T12393] [U] [ 767.848361][T12393] [U] [ 767.848409][T12393] [U] [ 767.848630][T12393] [U] [ 767.848678][T12393] [U] [ 767.848726][T12393] [U] [ 767.848774][T12393] [U] [ 767.849000][T12393] [U] [ 767.849048][T12393] [U] [ 767.849096][T12393] [U] [ 767.849144][T12393] [U] [ 767.849365][T12393] [U] [ 767.849414][T12393] [U] [ 767.849462][T12393] [U] [ 767.849510][T12393] [U] [ 767.849729][T12393] [U] [ 767.849777][T12393] [U] [ 767.849831][T12393] [U] [ 767.849879][T12393] [U] [ 767.850099][T12393] [U] [ 767.850148][T12393] [U] [ 767.850197][T12393] [U] [ 767.850245][T12393] [U] [ 767.850668][T12393] [U] [ 767.850719][T12393] [U] [ 767.850777][T12393] [U] [ 767.850831][T12393] [U] [ 767.851316][T12393] [U] [ 767.851367][T12393] [U] [ 767.851416][T12393] [U] [ 767.851464][T12393] [U] [ 767.851688][T12393] [U] [ 767.851736][T12393] [U] [ 767.851785][T12393] [U] [ 767.851844][T12393] [U] [ 767.852063][T12393] [U] [ 767.852113][T12393] [U] [ 767.852160][T12393] [U] [ 767.852209][T12393] [U] [ 767.852429][T12393] [U] [ 767.852477][T12393] [U] [ 767.852525][T12393] [U] [ 767.852573][T12393] [U] [ 767.852793][T12393] [U] [ 767.852846][T12393] [U] [ 767.852895][T12393] [U] [ 767.852943][T12393] [U] [ 767.853164][T12393] [U] [ 767.853213][T12393] [U] [ 767.853276][T12393] [U] [ 767.853340][T12393] [U] [ 767.888450][T12393] [U] [ 767.888506][T12393] [U] [ 767.888552][T12393] [U] [ 767.888609][T12393] [U] [ 767.888823][T12393] [U] [ 767.888870][T12393] [U] [ 767.888916][T12393] [U] [ 767.888963][T12393] [U] [ 767.889180][T12393] [U] [ 767.889227][T12393] [U] [ 767.889273][T12393] [U] [ 767.889319][T12393] [U] [ 767.889531][T12393] [U] [ 767.889578][T12393] [U] [ 767.889625][T12393] [U] [ 767.889671][T12393] [U] [ 767.889883][T12393] [U] [ 767.889929][T12393] [U] [ 767.889976][T12393] [U] [ 767.890022][T12393] [U] [ 767.890238][T12393] [U] [ 767.890285][T12393] [U] [ 767.890331][T12393] [U] [ 767.890377][T12393] [U] [ 767.890589][T12393] [U] [ 767.890635][T12393] [U] [ 767.890682][T12393] [U] [ 767.890728][T12393] [U] [ 767.890961][T12393] [U] [ 767.891008][T12393] [U] [ 767.891055][T12393] [U] [ 767.891105][T12393] [U] [ 767.891317][T12393] [U] [ 767.891363][T12393] [U] [ 767.891410][T12393] [U] [ 767.891456][T12393] [U] [ 767.891668][T12393] [U] [ 767.891715][T12393] [U] [ 767.891761][T12393] [U] [ 767.891807][T12393] [U] [ 767.892020][T12393] [U] [ 767.892071][T12393] [U] [ 767.892117][T12393] [U] [ 767.892163][T12393] [U] [ 767.892375][T12393] [U] [ 767.892421][T12393] [U] [ 767.892468][T12393] [U] [ 767.892514][T12393] [U] [ 767.892725][T12393] [U] [ 767.892772][T12393] [U] [ 767.892818][T12393] [U] [ 767.892865][T12393] [U] [ 767.893082][T12393] [U] [ 767.893129][T12393] [U] [ 767.893175][T12393] [U] [ 767.893221][T12393] [U] [ 767.905905][T12393] [U] [ 768.044603][T12405] FAULT_INJECTION: forcing a failure. [ 768.044603][T12405] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 768.044642][T12405] CPU: 0 UID: 0 PID: 12405 Comm: syz.1.1180 Not tainted syzkaller #0 PREEMPT(full) [ 768.044673][T12405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 768.044689][T12405] Call Trace: [ 768.044697][T12405] [ 768.044707][T12405] dump_stack_lvl+0x16c/0x1f0 [ 768.044746][T12405] should_fail_ex+0x512/0x640 [ 768.044788][T12405] ? __pfx_virtual_ncidev_write+0x10/0x10 [ 768.044830][T12405] _copy_from_user+0x2e/0xd0 [ 768.044875][T12405] virtual_ncidev_write+0xa5/0x210 [ 768.044907][T12405] vfs_writev+0x5df/0xde0 [ 768.044946][T12405] ? __pfx_vfs_writev+0x10/0x10 [ 768.044998][T12405] ? __fget_files+0x20e/0x3c0 [ 768.045025][T12405] ? __fget_files+0x200/0x3c0 [ 768.045063][T12405] ? do_writev+0x132/0x340 [ 768.045088][T12405] do_writev+0x132/0x340 [ 768.045115][T12405] ? __pfx_do_writev+0x10/0x10 [ 768.045152][T12405] do_syscall_64+0xcd/0x490 [ 768.045189][T12405] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 768.045215][T12405] RIP: 0033:0x7f50a358ebe9 [ 768.045235][T12405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 768.045260][T12405] RSP: 002b:00007f50a4342038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 768.045283][T12405] RAX: ffffffffffffffda RBX: 00007f50a37c6090 RCX: 00007f50a358ebe9 [ 768.045300][T12405] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 768.045315][T12405] RBP: 00007f50a4342090 R08: 0000000000000000 R09: 0000000000000000 [ 768.045331][T12405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 768.045345][T12405] R13: 00007f50a37c6128 R14: 00007f50a37c6090 R15: 00007fff18f07498 [ 768.045377][T12405] [ 771.227567][T12456] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 771.234451][T12456] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 771.701553][T12463] FAULT_INJECTION: forcing a failure. [ 771.701553][T12463] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 771.778425][T12463] CPU: 0 UID: 0 PID: 12463 Comm: syz.3.1194 Not tainted syzkaller #0 PREEMPT(full) [ 771.778468][T12463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 771.778488][T12463] Call Trace: [ 771.778498][T12463] [ 771.778510][T12463] dump_stack_lvl+0x16c/0x1f0 [ 771.778560][T12463] should_fail_ex+0x512/0x640 [ 771.778613][T12463] should_fail_alloc_page+0xe7/0x130 [ 771.778661][T12463] prepare_alloc_pages+0x3c2/0x610 [ 771.778731][T12463] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 771.778773][T12463] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 771.778817][T12463] ? process_measurement+0x4a6/0x23e0 [ 771.778851][T12463] ? down_write+0x14d/0x200 [ 771.778903][T12463] ? up_write+0x1b2/0x520 [ 771.778952][T12463] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 771.778991][T12463] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 771.779059][T12463] ? __lock_acquire+0xb97/0x1ce0 [ 771.779099][T12463] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 771.779155][T12463] ? policy_nodemask+0xea/0x4e0 [ 771.779202][T12463] alloc_pages_mpol+0x1fb/0x550 [ 771.779248][T12463] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 771.779293][T12463] ? do_raw_spin_lock+0x12c/0x2b0 [ 771.779343][T12463] ? find_held_lock+0x2b/0x80 [ 771.779383][T12463] alloc_pages_noprof+0x131/0x390 [ 771.779429][T12463] __pmd_alloc+0x3b/0x930 [ 771.779477][T12463] ? __pud_alloc+0x526/0x750 [ 771.779529][T12463] __handle_mm_fault+0xa06/0x2a50 [ 771.779570][T12463] ? mt_find+0x3ef/0xa30 [ 771.779619][T12463] ? __pfx___handle_mm_fault+0x10/0x10 [ 771.779651][T12463] ? __pfx_mt_find+0x10/0x10 [ 771.779731][T12463] ? find_vma+0xbf/0x140 [ 771.779775][T12463] ? __pfx_find_vma+0x10/0x10 [ 771.779824][T12463] handle_mm_fault+0x589/0xd10 [ 771.779862][T12463] ? trace_raw_output_exceptions+0x131/0x150 [ 771.779920][T12463] do_user_addr_fault+0x7a6/0x1370 [ 771.779976][T12463] ? rcu_is_watching+0x12/0xc0 [ 771.780016][T12463] exc_page_fault+0x5c/0xb0 [ 771.780061][T12463] asm_exc_page_fault+0x26/0x30 [ 771.780093][T12463] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 771.780127][T12463] Code: c4 10 e9 54 1f 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 [ 771.780160][T12463] RSP: 0018:ffffc90018597d18 EFLAGS: 00050202 [ 771.780187][T12463] RAX: 0000000000000001 RBX: 0000200000000180 RCX: 0000000000000007 [ 771.780208][T12463] RDX: fffff520030b2fb7 RSI: 0000200000000180 RDI: ffffc90018597db0 [ 771.780230][T12463] RBP: 0000000000000007 R08: 0000000000000001 R09: fffff520030b2fb6 [ 771.780250][T12463] R10: ffffc90018597db6 R11: 0000000000000000 R12: 0000000000000000 [ 771.780271][T12463] R13: ffffc90018597db0 R14: 0000000000000007 R15: 0000000000000011 [ 771.780316][T12463] _copy_from_user+0x98/0xd0 [ 771.780372][T12463] __io_uring_register+0x154f/0x23c0 [ 771.780422][T12463] ? trace_contention_end+0xdd/0x130 [ 771.780470][T12463] ? __pfx___io_uring_register+0x10/0x10 [ 771.780529][T12463] ? __pfx___mutex_lock+0x10/0x10 [ 771.780587][T12463] ? __fget_files+0x20e/0x3c0 [ 771.780638][T12463] __x64_sys_io_uring_register+0x169/0x280 [ 771.780705][T12463] do_syscall_64+0xcd/0x490 [ 771.780756][T12463] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 771.780791][T12463] RIP: 0033:0x7f74d1d8ebe9 [ 771.780816][T12463] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 771.780848][T12463] RSP: 002b:00007f74d2b30038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab [ 771.780878][T12463] RAX: ffffffffffffffda RBX: 00007f74d1fc5fa0 RCX: 00007f74d1d8ebe9 [ 771.780899][T12463] RDX: 0000200000000180 RSI: 0000000000000011 RDI: 0000000000000003 [ 771.780920][T12463] RBP: 00007f74d2b30090 R08: 0000000000000000 R09: 0000000000000000 [ 771.780940][T12463] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000001 [ 771.780961][T12463] R13: 00007f74d1fc6038 R14: 00007f74d1fc5fa0 R15: 00007ffd7302a528 [ 771.781006][T12463] [ 775.828465][T12520] FAULT_INJECTION: forcing a failure. [ 775.828465][T12520] name failslab, interval 1, probability 0, space 0, times 0 [ 775.886155][T12520] CPU: 1 UID: 0 PID: 12520 Comm: syz.1.1206 Not tainted syzkaller #0 PREEMPT(full) [ 775.886199][T12520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 775.886217][T12520] Call Trace: [ 775.886227][T12520] [ 775.886238][T12520] dump_stack_lvl+0x16c/0x1f0 [ 775.886286][T12520] should_fail_ex+0x512/0x640 [ 775.886330][T12520] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 775.886374][T12520] should_failslab+0xc2/0x120 [ 775.886416][T12520] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 775.886456][T12520] ? security_file_alloc+0x34/0x2b0 [ 775.886500][T12520] security_file_alloc+0x34/0x2b0 [ 775.886541][T12520] init_file+0x93/0x4c0 [ 775.886587][T12520] alloc_empty_file+0x73/0x1e0 [ 775.886635][T12520] path_openat+0xda/0x2cb0 [ 775.886671][T12520] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 775.886719][T12520] ? __pfx_path_openat+0x10/0x10 [ 775.886769][T12520] do_filp_open+0x20b/0x470 [ 775.886808][T12520] ? __pfx_do_filp_open+0x10/0x10 [ 775.886876][T12520] ? alloc_fd+0x471/0x7d0 [ 775.886922][T12520] do_sys_openat2+0x11b/0x1d0 [ 775.886975][T12520] ? __pfx_do_sys_openat2+0x10/0x10 [ 775.887050][T12520] __x64_sys_openat+0x174/0x210 [ 775.887100][T12520] ? __pfx___x64_sys_openat+0x10/0x10 [ 775.887148][T12520] ? ksys_write+0x1ac/0x250 [ 775.887196][T12520] do_syscall_64+0xcd/0x490 [ 775.887241][T12520] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 775.887279][T12520] RIP: 0033:0x7f50a358ebe9 [ 775.887307][T12520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 775.887341][T12520] RSP: 002b:00007f50a4363038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 775.887374][T12520] RAX: ffffffffffffffda RBX: 00007f50a37c5fa0 RCX: 00007f50a358ebe9 [ 775.887397][T12520] RDX: 0000000000028082 RSI: 0000200000000300 RDI: ffffffffffffff9c [ 775.887419][T12520] RBP: 00007f50a4363090 R08: 0000000000000000 R09: 0000000000000000 [ 775.887441][T12520] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 775.887460][T12520] R13: 00007f50a37c6038 R14: 00007f50a37c5fa0 R15: 00007fff18f07498 [ 775.887499][T12520] [ 778.096372][T12550] capability: warning: `syz.3.1214' uses 32-bit capabilities (legacy support in use) [ 778.338241][T12556] FAULT_INJECTION: forcing a failure. [ 778.338241][T12556] name failslab, interval 1, probability 0, space 0, times 0 [ 778.374554][T12556] CPU: 1 UID: 0 PID: 12556 Comm: syz.3.1215 Not tainted syzkaller #0 PREEMPT(full) [ 778.374600][T12556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 778.374621][T12556] Call Trace: [ 778.374632][T12556] [ 778.374646][T12556] dump_stack_lvl+0x16c/0x1f0 [ 778.374698][T12556] should_fail_ex+0x512/0x640 [ 778.374742][T12556] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 778.374788][T12556] should_failslab+0xc2/0x120 [ 778.374833][T12556] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 778.374875][T12556] ? __pmd_alloc+0xbf/0x930 [ 778.374937][T12556] __pmd_alloc+0xbf/0x930 [ 778.374987][T12556] ? find_held_lock+0x2b/0x80 [ 778.375024][T12556] __handle_mm_fault+0xa06/0x2a50 [ 778.375073][T12556] ? __pfx___handle_mm_fault+0x10/0x10 [ 778.375159][T12556] handle_mm_fault+0x589/0xd10 [ 778.375207][T12556] __get_user_pages+0x551/0x34a0 [ 778.375280][T12556] ? __pfx___get_user_pages+0x10/0x10 [ 778.375348][T12556] populate_vma_page_range+0x267/0x3f0 [ 778.375410][T12556] ? __pfx_populate_vma_page_range+0x10/0x10 [ 778.375467][T12556] ? __pfx_find_vma_intersection+0x10/0x10 [ 778.375520][T12556] ? do_mmap+0x69c/0x1210 [ 778.375575][T12556] __mm_populate+0x1d8/0x380 [ 778.375632][T12556] ? __pfx___mm_populate+0x10/0x10 [ 778.375692][T12556] ? up_write+0x1b2/0x520 [ 778.375756][T12556] vm_mmap_pgoff+0x37f/0x470 [ 778.375812][T12556] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 778.375864][T12556] ? __fget_files+0x20e/0x3c0 [ 778.375914][T12556] ksys_mmap_pgoff+0x7d/0x5c0 [ 778.375962][T12556] ? __pfx_ksys_write+0x10/0x10 [ 778.376009][T12556] __x64_sys_mmap+0x125/0x190 [ 778.376073][T12556] do_syscall_64+0xcd/0x490 [ 778.376132][T12556] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 778.376164][T12556] RIP: 0033:0x7f74d1d8ebe9 [ 778.376189][T12556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 778.376222][T12556] RSP: 002b:00007f74d2b30038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 778.376255][T12556] RAX: ffffffffffffffda RBX: 00007f74d1fc5fa0 RCX: 00007f74d1d8ebe9 [ 778.376276][T12556] RDX: 0000000000000001 RSI: 0000000000400008 RDI: 0000000000000000 [ 778.376295][T12556] RBP: 00007f74d2b30090 R08: 0000000000000002 R09: 0000000000008000 [ 778.376315][T12556] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001 [ 778.376335][T12556] R13: 00007f74d1fc6038 R14: 00007f74d1fc5fa0 R15: 00007ffd7302a528 [ 778.376379][T12556] [ 779.073959][T12570] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1218'. [ 779.113091][T12569] FAULT_INJECTION: forcing a failure. [ 779.113091][T12569] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 779.128778][T12569] CPU: 0 UID: 0 PID: 12569 Comm: syz.0.1219 Not tainted syzkaller #0 PREEMPT(full) [ 779.128820][T12569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 779.128841][T12569] Call Trace: [ 779.128852][T12569] [ 779.128864][T12569] dump_stack_lvl+0x16c/0x1f0 [ 779.128920][T12569] should_fail_ex+0x512/0x640 [ 779.128976][T12569] should_fail_alloc_page+0xe7/0x130 [ 779.129025][T12569] prepare_alloc_pages+0x3c2/0x610 [ 779.129096][T12569] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 779.129141][T12569] ? stack_trace_save+0x8e/0xc0 [ 779.129182][T12569] ? __pfx_stack_trace_save+0x10/0x10 [ 779.129220][T12569] ? rcu_is_watching+0x12/0xc0 [ 779.129256][T12569] ? stack_depot_save_flags+0x29/0x9c0 [ 779.129312][T12569] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 779.129352][T12569] ? __kasan_slab_alloc+0x89/0x90 [ 779.129394][T12569] ? __pmd_alloc+0xbf/0x930 [ 779.129445][T12569] ? handle_mm_fault+0x589/0xd10 [ 779.129478][T12569] ? do_user_addr_fault+0x7a6/0x1370 [ 779.129532][T12569] ? exc_page_fault+0x5c/0xb0 [ 779.129573][T12569] ? asm_exc_page_fault+0x26/0x30 [ 779.129605][T12569] ? rep_movs_alternative+0xf/0x90 [ 779.129640][T12569] ? _copy_from_user+0x98/0xd0 [ 779.129692][T12569] ? do_sock_getsockopt+0x3ca/0x440 [ 779.129794][T12569] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 779.129851][T12569] ? policy_nodemask+0xea/0x4e0 [ 779.129901][T12569] alloc_pages_mpol+0x1fb/0x550 [ 779.129951][T12569] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 779.130012][T12569] alloc_pages_noprof+0x131/0x390 [ 779.130072][T12569] pte_alloc_one+0x1c/0x3a0 [ 779.130110][T12569] do_pte_missing+0x1afc/0x3ba0 [ 779.130148][T12569] ? do_raw_spin_unlock+0x172/0x230 [ 779.130207][T12569] ? __pmd_alloc+0x3fb/0x930 [ 779.130262][T12569] __handle_mm_fault+0x152a/0x2a50 [ 779.130304][T12569] ? mt_find+0x3ef/0xa30 [ 779.130367][T12569] ? __pfx___handle_mm_fault+0x10/0x10 [ 779.130398][T12569] ? __pfx_mt_find+0x10/0x10 [ 779.130470][T12569] ? find_vma+0xbf/0x140 [ 779.130512][T12569] ? __pfx_find_vma+0x10/0x10 [ 779.130560][T12569] handle_mm_fault+0x589/0xd10 [ 779.130614][T12569] ? trace_raw_output_exceptions+0x131/0x150 [ 779.130668][T12569] do_user_addr_fault+0x7a6/0x1370 [ 779.130725][T12569] ? rcu_is_watching+0x12/0xc0 [ 779.130764][T12569] exc_page_fault+0x5c/0xb0 [ 779.130807][T12569] asm_exc_page_fault+0x26/0x30 [ 779.130838][T12569] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 779.130873][T12569] Code: c4 10 e9 54 1f 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 [ 779.130906][T12569] RSP: 0018:ffffc9000453fd70 EFLAGS: 00050202 [ 779.130934][T12569] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000004 [ 779.130953][T12569] RDX: fffff520008a7fbc RSI: 0000000000000000 RDI: ffffc9000453fde0 [ 779.130974][T12569] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff520008a7fbc [ 779.130993][T12569] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000 [ 779.131012][T12569] R13: ffffc9000453fde0 R14: 0000000000000000 R15: 0000000000000000 [ 779.131063][T12569] _copy_from_user+0x98/0xd0 [ 779.131120][T12569] do_sock_getsockopt+0x3ca/0x440 [ 779.131176][T12569] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 779.131228][T12569] ? __fget_files+0x204/0x3c0 [ 779.131267][T12569] ? 0xffffffffff600000 [ 779.131309][T12569] __sys_getsockopt+0x123/0x1b0 [ 779.131355][T12569] ? 0xffffffffff600000 [ 779.131387][T12569] __x64_sys_getsockopt+0xbd/0x160 [ 779.131430][T12569] ? do_syscall_64+0x91/0x490 [ 779.131476][T12569] ? lockdep_hardirqs_on+0x7c/0x110 [ 779.131519][T12569] do_syscall_64+0xcd/0x490 [ 779.131569][T12569] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 779.131602][T12569] RIP: 0033:0x7ff6acb8ebe9 [ 779.131626][T12569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 779.131658][T12569] RSP: 002b:00007ff6ad954038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 779.131688][T12569] RAX: ffffffffffffffda RBX: 00007ff6acdc5fa0 RCX: 00007ff6acb8ebe9 [ 779.131710][T12569] RDX: 000000000000001b RSI: 0000000000000006 RDI: 0000000000000004 [ 779.131730][T12569] RBP: 00007ff6ad954090 R08: 0000000000000000 R09: 0000000000000000 [ 779.131751][T12569] R10: ffffffffff600000 R11: 0000000000000246 R12: 0000000000000001 [ 779.131772][T12569] R13: 00007ff6acdc6038 R14: 00007ff6acdc5fa0 R15: 00007fff8f746c58 [ 779.131802][T12569] ? 0xffffffffff600000 [ 779.131839][T12569] [ 779.568897][ T30] audit: type=1800 audit(1757013904.745:3): pid=12566 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1218" name="lu_gp_id" dev="configfs" ino=28518 res=0 errno=0 [ 779.993406][T12579] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input47 [ 780.149657][T12582] ================================================================== [ 780.149680][T12582] BUG: KASAN: vmalloc-out-of-bounds in sys_imageblit+0x1a6f/0x1e60 [ 780.149733][T12582] Write of size 8 at addr ffffc90003c19200 by task syz.1.1223/12582 [ 780.149762][T12582] [ 780.149777][T12582] CPU: 0 UID: 0 PID: 12582 Comm: syz.1.1223 Not tainted syzkaller #0 PREEMPT(full) [ 780.149818][T12582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 780.149839][T12582] Call Trace: [ 780.149850][T12582] [ 780.149864][T12582] dump_stack_lvl+0x116/0x1f0 [ 780.149916][T12582] print_report+0xcd/0x630 [ 780.149962][T12582] ? __virt_addr_valid+0x81/0x610 [ 780.150010][T12582] ? sys_imageblit+0x1a6f/0x1e60 [ 780.150043][T12582] kasan_report+0xe0/0x110 [ 780.150089][T12582] ? sys_imageblit+0x1a6f/0x1e60 [ 780.150128][T12582] sys_imageblit+0x1a6f/0x1e60 [ 780.150166][T12582] ? __pfx_sys_imageblit+0x10/0x10 [ 780.150216][T12582] drm_fbdev_shmem_defio_imageblit+0x20/0x130 [ 780.150267][T12582] soft_cursor+0x521/0xa10 [ 780.150317][T12582] ? fb_get_color_depth+0x120/0x250 [ 780.150352][T12582] bit_cursor+0xe8c/0x17e0 [ 780.150392][T12582] ? __pfx_bit_cursor+0x10/0x10 [ 780.150433][T12582] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 780.150475][T12582] ? get_color+0x1da/0x450 [ 780.150505][T12582] ? __pfx_bit_cursor+0x10/0x10 [ 780.150540][T12582] fbcon_cursor+0x40c/0x5f0 [ 780.150572][T12582] ? mark_lock+0x591/0x610 [ 780.150606][T12582] hide_cursor+0x84/0x220 [ 780.150637][T12582] do_con_write+0x23f7/0x8280 [ 780.150675][T12582] ? rcu_is_watching+0x12/0xc0 [ 780.150701][T12582] ? trace_contention_end+0xdd/0x130 [ 780.150752][T12582] ? __pfx___mutex_lock+0x10/0x10 [ 780.150790][T12582] ? __pfx_do_con_write+0x10/0x10 [ 780.150835][T12582] con_write+0x23/0xb0 [ 780.150871][T12582] n_tty_write+0x41c/0x11e0 [ 780.150902][T12582] ? __pfx_n_tty_write+0x10/0x10 [ 780.150925][T12582] ? rcu_is_watching+0x12/0xc0 [ 780.150952][T12582] ? __pfx_woken_wake_function+0x10/0x10 [ 780.150996][T12582] ? kfree+0x24f/0x4d0 [ 780.151018][T12582] ? file_tty_write.constprop.0+0x6ef/0x9b0 [ 780.151057][T12582] ? __pfx_n_tty_write+0x10/0x10 [ 780.151082][T12582] file_tty_write.constprop.0+0x504/0x9b0 [ 780.151123][T12582] redirected_tty_write+0xd4/0x150 [ 780.151159][T12582] vfs_write+0x7d0/0x11d0 [ 780.151189][T12582] ? __pfx_redirected_tty_write+0x10/0x10 [ 780.151227][T12582] ? __pfx_vfs_write+0x10/0x10 [ 780.151256][T12582] ? find_held_lock+0x2b/0x80 [ 780.151291][T12582] ksys_write+0x12a/0x250 [ 780.151321][T12582] ? __pfx_ksys_write+0x10/0x10 [ 780.151357][T12582] do_syscall_64+0xcd/0x490 [ 780.151395][T12582] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 780.151422][T12582] RIP: 0033:0x7f50a358ebe9 [ 780.151442][T12582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 780.151468][T12582] RSP: 002b:00007f50a4342038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 780.151493][T12582] RAX: ffffffffffffffda RBX: 00007f50a37c6090 RCX: 00007f50a358ebe9 [ 780.151511][T12582] RDX: 00000000000005fc RSI: 0000200000000e00 RDI: 0000000000000008 [ 780.151528][T12582] RBP: 00007f50a3611e19 R08: 0000000000000000 R09: 0000000000000000 [ 780.151545][T12582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 780.151561][T12582] R13: 00007f50a37c6128 R14: 00007f50a37c6090 R15: 00007fff18f07498 [ 780.151587][T12582] [ 780.151596][T12582] [ 780.151604][T12582] The buggy address belongs to a vmalloc virtual mapping [ 780.151623][T12582] Memory state around the buggy address: [ 780.151637][T12582] ffffc90003c19100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 780.151655][T12582] ffffc90003c19180: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 780.151673][T12582] >ffffc90003c19200: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 780.151687][T12582] ^ [ 780.151699][T12582] ffffc90003c19280: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 780.151718][T12582] ffffc90003c19300: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 780.151739][T12582] ================================================================== [ 780.154279][T12582] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 780.154309][T12582] CPU: 1 UID: 0 PID: 12582 Comm: syz.1.1223 Not tainted syzkaller #0 PREEMPT(full) [ 780.154352][T12582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 780.154373][T12582] Call Trace: [ 780.154385][T12582] [ 780.154399][T12582] dump_stack_lvl+0x3d/0x1f0 [ 780.154453][T12582] vpanic+0x6e8/0x7a0 [ 780.154506][T12582] ? __pfx_vpanic+0x10/0x10 [ 780.154565][T12582] ? sys_imageblit+0x1a6f/0x1e60 [ 780.154599][T12582] panic+0xca/0xd0 [ 780.154650][T12582] ? __pfx_panic+0x10/0x10 [ 780.154703][T12582] ? sys_imageblit+0x1a6f/0x1e60 [ 780.154738][T12582] ? preempt_schedule_common+0x44/0xc0 [ 780.154786][T12582] ? preempt_schedule_thunk+0x16/0x30 [ 780.154843][T12582] check_panic_on_warn+0xab/0xb0 [ 780.154898][T12582] end_report+0x107/0x170 [ 780.154946][T12582] kasan_report+0xee/0x110 [ 780.155009][T12582] ? sys_imageblit+0x1a6f/0x1e60 [ 780.155051][T12582] sys_imageblit+0x1a6f/0x1e60 [ 780.155092][T12582] ? __pfx_sys_imageblit+0x10/0x10 [ 780.155147][T12582] drm_fbdev_shmem_defio_imageblit+0x20/0x130 [ 780.155199][T12582] soft_cursor+0x521/0xa10 [ 780.155255][T12582] ? fb_get_color_depth+0x120/0x250 [ 780.155304][T12582] bit_cursor+0xe8c/0x17e0 [ 780.155359][T12582] ? __pfx_bit_cursor+0x10/0x10 [ 780.155416][T12582] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 780.155473][T12582] ? get_color+0x1da/0x450 [ 780.155515][T12582] ? __pfx_bit_cursor+0x10/0x10 [ 780.155563][T12582] fbcon_cursor+0x40c/0x5f0 [ 780.155605][T12582] ? mark_lock+0x591/0x610 [ 780.155653][T12582] hide_cursor+0x84/0x220 [ 780.155695][T12582] do_con_write+0x23f7/0x8280 [ 780.155754][T12582] ? rcu_is_watching+0x12/0xc0 [ 780.155791][T12582] ? trace_contention_end+0xdd/0x130 [ 780.155851][T12582] ? __pfx___mutex_lock+0x10/0x10 [ 780.155899][T12582] ? __pfx_do_con_write+0x10/0x10 [ 780.155960][T12582] con_write+0x23/0xb0 [ 780.156021][T12582] n_tty_write+0x41c/0x11e0 [ 780.156065][T12582] ? __pfx_n_tty_write+0x10/0x10 [ 780.156099][T12582] ? rcu_is_watching+0x12/0xc0 [ 780.156136][T12582] ? __pfx_woken_wake_function+0x10/0x10 [ 780.156196][T12582] ? kfree+0x24f/0x4d0 [ 780.156227][T12582] ? file_tty_write.constprop.0+0x6ef/0x9b0 [ 780.156278][T12582] ? __pfx_n_tty_write+0x10/0x10 [ 780.156310][T12582] file_tty_write.constprop.0+0x504/0x9b0 [ 780.156366][T12582] redirected_tty_write+0xd4/0x150 [ 780.156416][T12582] vfs_write+0x7d0/0x11d0 [ 780.156457][T12582] ? __pfx_redirected_tty_write+0x10/0x10 [ 780.156509][T12582] ? __pfx_vfs_write+0x10/0x10 [ 780.156548][T12582] ? find_held_lock+0x2b/0x80 [ 780.156597][T12582] ksys_write+0x12a/0x250 [ 780.156638][T12582] ? __pfx_ksys_write+0x10/0x10 [ 780.156688][T12582] do_syscall_64+0xcd/0x490 [ 780.156738][T12582] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 780.156775][T12582] RIP: 0033:0x7f50a358ebe9 [ 780.156801][T12582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 780.156836][T12582] RSP: 002b:00007f50a4342038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 780.156871][T12582] RAX: ffffffffffffffda RBX: 00007f50a37c6090 RCX: 00007f50a358ebe9 [ 780.156895][T12582] RDX: 00000000000005fc RSI: 0000200000000e00 RDI: 0000000000000008 [ 780.156919][T12582] RBP: 00007f50a3611e19 R08: 0000000000000000 R09: 0000000000000000 [ 780.156943][T12582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 780.156966][T12582] R13: 00007f50a37c6128 R14: 00007f50a37c6090 R15: 00007fff18f07498 [ 780.157011][T12582] [ 780.157427][T12582] Kernel Offset: disabled