last executing test programs: 15.582628943s ago: executing program 0 (id=2352): read$auto_qrtr_tun_ops_tun(0xffffffffffffffff, 0x0, 0x0) r0 = socket(0xa, 0x5, 0x84) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x2, 0x88) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000003b00)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x600, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xad41, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_ucma_fops_ucma(0xffffffffffffff9c, 0x0, 0x101002, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(0x0, r2) sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r2, 0x0, 0x0) readv$auto(r1, &(0x7f0000003dc0)={0x0, 0x1}, 0xb) r3 = openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/buffer_percent\x00', 0x1, 0x0) writev$auto(r3, &(0x7f00000035c0)={0x0, 0x4}, 0x4000000000006) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) rename$auto(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00') close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40009, 0x7fffffff, 0x9b72, 0xffffffffffffffff, 0x100000000028000) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x78b9fb018b2a009c, 0x0) sysfs$auto(0x2, 0x7, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r5 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000400), 0x80001, 0x0) ioctl$auto(r5, 0x3b8c, r4) bpf$auto(0xfffffffd, &(0x7f0000000000)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x4, 0x6, 0xffffffffffffffff, @relative_id=0x2, 0x9}, 0xa3) sendto$auto(r0, 0x0, 0x401, 0xffff, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x40242, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r6, 0x0, 0x20) 15.004003944s ago: executing program 0 (id=2354): r0 = openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_XFS_IOC_RTGROUP_GEOMETRY(r0, 0xc0805841, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x4) ioctl$auto(0xffffffffffffffff, 0x401, 0xffffffffffffffff) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) eventfd$auto(0x8e) openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x22a40, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) r2 = ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0xffffffffffffffff) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000040), 0x10d242, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto(r2, 0x4020ae76, r3) 14.666046811s ago: executing program 0 (id=2355): mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) ioctl$auto(r0, 0x2, 0x9) ioctl$auto(0x3, 0x400c4d05, 0x5) ioctl$auto(0x3, 0x400c4d07, 0x5) (fail_nth: 2) 14.124051784s ago: executing program 0 (id=2358): read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000240)=""/118, 0x76) 13.926611281s ago: executing program 0 (id=2360): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) r0 = socket(0x2, 0x2, 0x0) connect$auto(0x3, &(0x7f0000000200)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x51) setsockopt$auto(r0, 0x81, 0x5, 0x0, 0x0) mmap$auto(0x1, 0x10000, 0xe, 0xc000010, r0, 0x4000000008800) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0xa902, 0x0) readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x7fffffffefff}, 0x7) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyr1\x00', 0x103300, 0x0) write$auto_sg_fops_sg(r2, &(0x7f0000001380)="4a0200000000040000899edb615550fd8c44924d87f0010047eb02eff5d2adc245a4e1eded0e91b86c61b6b42ed6", 0x2e) read$auto(r1, 0x0, 0x20) statmount$auto(0x0, 0x0, 0x1fe, 0xd) socket$nl_generic(0x10, 0x3, 0x10) unshare$auto(0x40000080) open(0x0, 0x22240, 0x154) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendto$auto(r2, &(0x7f0000000240)="0113b883f02aa03f328949b505deb0b226382b33aa0045a73a4fa9064a3976dba6f8124ac70a74649680cdc63c804dd135b96dd11336a4c724d013750a6e6c219ab3118bf5827a007bc8055ee95a0685b0556a6ad92f7612c20dafb9b0043be1e4739df36d98c45c970c3e3e3cf6427cf78e427501a0fa665b619d243c4e801384ad7c36cc8167e4930a09b4c652df892eca53e1888a6e3cdaaed7d9b51cbe4921116217d923c0c387b23f04521b158276b0d0a21caf335eba045d42ae883b75a881e0636aef97dd5dca3213cfeda660b4ec0936a6114aadcfe7a2cdc5972be5c524552f4d3cc049f3ee69a613ebb85763cb250b48eab5cb9fc5c8a16be159b906fabf5ae88f340aaeed8e5c640c30fd08f1310a969768b17a134c15063673f4b11bed52f2d0ad2376a607806a22b1913359381f147dcb18ba82712ccd31dabbbb5fb49268dfe5aaa545fcf0a91314345e15d2aa0d9f6a232b320df74e89ed1498fce33489ad7a493784210ca56b32d0b7446eb760fdb86b31a75ecfa77c511b2d279840ce3e4ad181af2d052214f14245e4369d8de62c0e940539274414e6975a70334d65f78a215849ba65747087c348b4488fec0c993f5f12753f6f830c99212e2913e09e337e8d34a6d970b2a179d4585200fbcf3946cbd90188b7732611ff39c25d418b38a9c3c577093930e0951c16207ff89665a5a28d7d1ab21957a85b2cabc49e079a5895b22cbc40047c4e0cabf89eced75ae43610581c2864743f63d0e4614a0ab64356e28b698d0a65ed2ef3f8e2d9a00727bf051588200e49557ff7c360f7022f32f4f11244e73def924fa4006efb2b058b42d9a3401f2c4815481798c2d4adde9dad75e712d6ff3b134cc32f8d34cf55b498e18b6b461b47d9c8ca8e35c1d5624fecff6d9a50f44e87d59af9ac7772056ea1952437738e368bf656702b2007e6a8d6996323814b9a97edc5db0d7cdc0a4d2f07026b69b0526b37e6a8b527b168304b9e50b236b2ff032764a42ab3da058fe02b58e327f1c62527518e1f8263b3cc51d48dc7da97fc55dc531b4be8b0c712589b9f2c25f87901a77f2df9a2b959ed58e191cf35c79cce582ccec773d165545df2f4db457c7925d0ec0f638e66b5b7af69232709cec4282c6d068b7394b8862bf9b05100b9ef2b128322461f9aeafa1628ac2974d966ac20a4030c4baccecef8bd937d2641f6f58d0fffe8fd3035b479d135074d4f2951067a212f5a3d5f58b1f98aee494af3ec2e3a15225ee2f3cb5ba061f58ef7ad7a3201e9a3b38ced1cd25e2b3acc2ab009e68a2c618c5c1caab39e85ce4a87c394a1c8017dcb8b2b12dbe491b2ac6f5f3293d0fa65bbf62541d15014a8d69c8009b0a59d08b3e01d9ad8aa6df72e88cd2d2bc0a47268fdac873e0d307bf718330b095eef1c05af7248d18afbd2dcc12f57c510a0804372d1205c1300139cacbcc2b6ef0e1a053cf8b9ffcd2101524261bdfd823fae66a750f28803cc658de6f64e7e23ed0b32c7ac8191b0f1db9a30e0c361efca4816ab3e7c4ba202e981e04e0b4132021bdc843f8c8893425f42cc81c2d8cb68a113e50563802479d482a38f03a185aecdc058146cc4d1ed5e6bc18f8d21ebdb6b3a1181b53b3d6318f8af3722e0271cefc2650ab2d171288204d74c2c72f562e1a6e2bfe20ee4a21378bcbdffaee6f8288c92e85f8357dfa4fb929d0bab3a8bd62ba928d888c2f768b1e882acf5c35e2f3410abbd235cbc5bc31d7549d43fdb5fdd15300a994544bdec7c0fa3c7256c1ce46e6c4e1c6345a40a2da42962798a0f23eb5748e235ae7d1d76591d1da11d1d5c4dc001285f7e6ac3ef18f3a85ea436cc6e6c4457507f57b352458821a1acf3896c36301de1e6f356530b1d9f0c42706ee694fd551e78cc739785bc177c3ab2f9debe9617eacf28e2fae1f58a6f2ca5d53571986d1a627727de9adaeea793db737939625675ffbe50fcc860efb0e83c337510c4d5e7f8f72d2feabbfa28774e00f297adafeb8e63d1e7da4aa6036d3c8aad6020da7e9a9d5b6a846cd17602ad8d74b1b79fa162c9556eb24b0fadcef658c2466130b95e2cf324e3a485cd69e5138a02d9d213b140b2a5d5b1e60be5bc1227dc065e84524b527097a74bbde28eecca320268c58011e89d86f62ef486f87901191feca2318f2ccec246f163f7559a4efe332c73e75bec7da9edee1706d913828f91513d07540644f8c89945665716e90945eec548aee0817f7149c61315f135f3753e4e5dde0c8a5f157c8e29471fe02e658851f1548ea3ef4bccb8fd7e25cbff1aa917fe6bd49fbd98e4998a32e1ceef71658e1bb5b9889c975d2e56fa82c36bc26622db8ca5464a4683ddbb1b04e0f6a174c6c392280df34baac5718df93e6ee350b1d50f441ff31c7ca81e49c1ca39e8b31ddddd69dd2c5d383917169393d732db1976e46ce47153d0bd7a8e4e6d2e0a321e18caee82b1058f6039a3f695403d16352ba9f0eac7b5d902fba8221cdaae78870656239f9d0a9dad9e8870abad41e60bd8f8cda69d35dc261d138a61609d76cc462c22c9d96e807c3923ffc32786f624dc99436f299eb14c463aeabe3fb2ee0e98ca717c8ecc0774a5446d46f4a28a3383352bf0254796b6e2f8835d8410d883f2670cb1b3c18f069e4c337729109b37ce0fcae7c00cecead55acbe6cc27792782c25aed9365f689cf56a04d1247c1e5e6ce07ff11be390921e066b9f489a34d1532e0b164ea53c54d2a0199dd4cc0ec933629aeca0bc8e5786a6cb7d586ce1fd9b70a26147e8ba84df47f3362a702169505bb03b81b04cc158b8fcdf52da7dbd8c6e035456104b9faae045e3104f12a1546fad83eac2d06af39968e42ef28a599fc91ca346db8463f8555823db52d132462c1a70c6e80a05b2cfd22634ce249d42d677ff2ace2ab1d76d5d0c39157d5f83a51066d5f3cea624dae019df999a7658e3e18210faa96085862c7c59e364159ea3b0924d98aea03910f9f485c670b446cd2b1e6533c1dae5cf99c7c70b20a131e35cef7a524875c389b31aa56848292bb8c73d5ae24f3c3e8dc5a781e65807c880653b52caa5ce0e640a993010c0993c75087715a844d1f13155a2e32d8002b22bc3fc6e1797c0c6d0b2ffe669db14021d918f996c3c6639e356cd27e9ecd8aae56c7bef91815da2fc26ea4c7351dcb4f8d589b15495bc6984efb8f5c5083677d0d2b7bc83fc0d5fe8efb00a5cab5bd3d53ee24e8719e94a878057292a1fdb4dd1c85e6b016d79000508e6af1d20bf08d40ed0544a898b6efbfd4543f65592e4112d8d3c3695d3a6ce304dbf5b06fa0e6bd030bfdbf758d59e2ee3eb42ec550557906cefa12a63f2b753c753e253d987d8ad914c1872973743dbce02f67400312136fe7c37a5a3139bd5a3af33df93735e80f3d77215eaa5bfbc2b7a07a601bd52ab61286fb6a2eada71c0d662cfd4bee049520bda150a14e2c344c1d34903ebeb775cf08106746a3709a6a07b6ca6837d36f0156e717c83fe435409a9d6cc10b089a24e68098202f8401944ba6208fe59be92cb482e76c7b7dd5b565ac1cecd34f9f16d51f6b3b2d52428432a966b5482e7116ce8d8cead7976c47c0925eebe6ec1df9eccee90901604d8b40b17bb5bf033103725964cb0f33b2366c076810ab91f8090a11be2345bcb502fc1a3d1f0e765739d77c630c3fcb1508cd20c6b59abefbaf39046fae24e724de6659c7c1e21fad748641512c95adb2f1a35149a0592496489462e3567096a008c3793c6e6a91051cc96f97d1060a80ec91c93534893c556e796184ac585c99bc5147dfef5aee4cc5bd1c03c390756dba43a886e886f8286faba8a4e1b0ed7590b42879fc10709dc80c26bfc33f40ed0b1d12c9e99e06ca1426dd445064718f8bc41c2f274d7fdd4948d94481fd89fc1ff9cc22a895395116d71163cdac2510d6c26f40e33c5bc0fa9a223f7e518781755d33d4887188f5528f4a9afaf60796d3e572d37fc5ffe5b4bdb331873e6d33cc290d3c2a0b86c22a1b8833938e7dd77a6b8ad3b79e032c0e5265d75772414b11527f82ba2c3af120789752629b3acbbbd382de040988e2e421d8991826295ab780640da5de67065e8b5ed1517c2318a3c4ae41d7e04729dbf02d18d31645eadf6e1ca77e814364c88627a903b40be6769d00691cf18c48532eeeefdd8e479b4deb1698356860bc46d8635c2f39cdebabe081400372600ceaf7d51b181e6ccea5f8f42c8b10805760426657f9819a7ae0481749ffd1ad44423684879f4c262930062438055204926344b308f2291996634cf71710ad2b590fb727b2b1fae1712e0b52adfe9ab22ac90b0268e2eeebf2882b279b0c5be1894b3aa713dade2b4730705233de886024cc3555d4600c40017f724a9c22c5f5b376ac03f4af1063333d268877a6063d19012ebea005a9b4c67ebab834cae99e50c0ad058229fa07828b4d316ec4f02782cfb20be19a7973b49a68fb19cda80f6a79b7ef2ae0842e5a85ab2cbeed68d95033ecaf515e8fcb48e6f9ab3cb5f4d97d3b45e933e8ceca14b39763b604daed3c81579d9d14c5b32602a6b2d87b5515d44387298ff1dcebbf8efc2a219a2809a8a14cdb2b8caebf75921e3562971d159c20cfda375e0401870baa7d4cd33b271cbda4ba31e0fce5e37a77e61392f39ec94f804877986797d4da0bd3df9e08d69a05b75c09639f70722557844fbe6e377b36efcbc5a822dbf6109bf511391326f6af287ef7774b6eb60b4da07a815e66a96da679d7d1ea0860fa4b95f3325b170b8b880fd1a1d42139f5ac666cb401c737b4246d3df28c2a2923b18f41a552def1df0b48ff783091db67fe21b134c3d6dc3f82e4932007ac40dea8a52525536b398601eb83b85e5ca8c60f7fe45cf095e8a399c406c39fdbdd9b657b6669efe6f9f6d3974cce239985e7357567c08dbdd15e5af0b5c33d1f6aa666b458b6e25b7460a1587a0c15f48f833c3d0101e152e499ce64ae41d1999fe3aec5b3e4da81de224879ddec69ea78240c139a3d60847a4aac9498bf279732ce91101b7bf3b0e5a1b3dd77b0665242b45b4bd652fe15c091dad37428d06d156a1a83105f3fc598bd9d46c546439cbc3e28e4f4e2e757692c34b01e449e749ebd3085a6cd85f0caed20ae6c01ea816bacf162a6a05eb527c3b33ac0cc82464f45475a6506662c9143b68c4f2cdd7fb3554a4c9b9d87dc2a2b871f22dea377c24cba31ff3994e8a2119557459f61092bb32945c8eb1a07e1e589f69b941b9199cf4e8725ea990a9616613ac9af77655998549a4650073fa7a7fc55c147d6a525d319a43a57e80f8d84693c8b2f37f2bad3a27f8101c54dd52b4fcb39ff3a6f793bb0fa2b6ada3285d0481fc33d0d1a80988feb7ba8bd58bd230c7c62acb67e9e1088c218742b9c06d2e849a85d734d9ad881698b7091c7f36dcb43ce539c25e03fde7de6ff5ba6b60d6c055f23e745ff349f7d1b2d75dce66898d5a5c948caa767bc74b8300903150de765911a2981ef16a344179a6b4f3f4a369847d498bf5c7680d101af76f8badf1fbd9d5f3cf46ca6ca9718d33ee163800e7c357207d38f4e4a5b86afc47d8b53aa7e976d4d5a830fed34b35d9f3e55498b6d2830a7c10477481c782303269269f55b976fb555864536ba3b27b2d1bfba849e2c56d9a1880a289540992ef81fb2effbcef2d8b10d23f4cad8fe2dc44f1069fc5c93db78d16379c8a5d56cfed4d617d384975be33589ba94561bffc3d51f95", 0x4, 0xd9a, &(0x7f00000000c0)=@nfc={0x27, 0x0, 0x0, 0x1}, 0x2) open(0x0, 0x204140, 0x22) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r3, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x4) ustat$auto(0x7ff, 0x0) mount$auto(&(0x7f0000000000), 0x0, &(0x7f0000000100)='afs\x00', 0x5, 0x0) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0xa0009, 0x4000000000df, 0xeb1, 0xd4, 0x8000) sendmsg$auto_NL802154_CMD_LIST_ASSOCIATIONS(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x84) sendmmsg$auto(0x3, 0x0, 0x200, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x1, 0x6) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0x2, 0x0) 13.030640643s ago: executing program 0 (id=2361): mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/block/nbd6/sched/write0_fifo_list\x00', 0x400, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80001, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) io_getevents$auto(0x1, 0x1ff, 0x9, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x2, 0x2, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x208880, 0x0) openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, 0x0, 0x101500, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/midiC2D2\x00', 0x80980, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001180)='/sys/devices/virtual/block/zram0/compact\x00', 0x20001, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0) 5.275045178s ago: executing program 2 (id=2386): r0 = openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_XFS_IOC_RTGROUP_GEOMETRY(r0, 0xc0805841, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x4) ioctl$auto(0xffffffffffffffff, 0x401, 0xffffffffffffffff) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) eventfd$auto(0x8e) openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x22a40, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) r2 = ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0xffffffffffffffff) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000040), 0x10d242, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto(r2, 0x4020ae76, r3) 5.166444913s ago: executing program 1 (id=2387): mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event\x00', 0x121000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) setresuid$auto(0xffffffffffffffff, 0x8, 0x8000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8955, 0x0) close_range$auto(r0, 0x8, 0x0) brk$auto(0xffffffffffffff66) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r3 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/platform/dummy_hcd.0/usb1/power/wakeup_active_count\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000001100)=""/4106, 0x100a) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) socket(0x10, 0x2, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/udp\x00', 0x20000, 0x0) pread64$auto(r5, 0x0, 0x200000000003, 0x2f4a3a23) r6 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000080), r3) r7 = clone$auto(0xa685, 0x2, &(0x7f0000000100)=0x4, &(0x7f0000000140)=0xfffffff2, 0x1b9) sendmsg$auto_TIPC_NL_BEARER_DISABLE(r2, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000180)={&(0x7f0000000240)={0x123c, r6, 0x400, 0x70bd25, 0x25dfdbfb, {}, [@TIPC_NLA_NET={0xc4, 0x7, 0x0, 0x1, [@nested={0xbd, 0x121, 0x0, 0x1, [@typed={0x8, 0xfe, 0x0, 0x0, @fd=r2}, @typed={0x8, 0xf, 0x0, 0x0, @u32=0x5}, @typed={0x8, 0xc0, 0x0, 0x0, @pid=r7}, @nested={0x4, 0x2f}, @nested={0x4, 0xa7}, @nested={0x4, 0x58}, @nested={0x4, 0x6}, @generic="1fed79b3c9c7e1582a1cd3c8f62b16d0d7e9157b637c71818d74d6520334c0794c1aef06283fa722ffcdb27422a974e4d2def72428b25ba1a3ec1df8edb8b207f4a777e91a8b82bc52063757fb29182b1e261eb2c88cf9ce109086ca9ab1583b9b9252dbaa111f3ffaa6ff8ae948dca15b9faf972d3e981ab407b3c875202f736e5d1bdb3d0f3745a20059959fdcf57def"]}]}, @TIPC_NLA_PUBL={0x115b, 0x3, 0x0, 0x1, [@nested={0xa1, 0xb1, 0x0, 0x1, [@nested={0x4, 0x48}, @generic="8edfe08d0831c69bab2005b714bf5228e554139667c4e4b5b0933d5519d7d9ee39f2c5423e70e4d5de7fe03a9c550b2cb87e2575464b1c55c4037bccd3ae4f450fab8b0b9b8d05b972b3040ba81b6f28bacd4822cb69f99089aaa1a119c2fdfd10d783c505e38d1a6af6415fece7a8afdd2bfee51ee019f0f0c669445f51fdda1d4bf8f5065cd462d3d4372b63a09dd7527de569d47ef9d753"]}, @typed={0x8, 0xb6, 0x0, 0x0, @u32=0x9}, @generic="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", @generic="6c3154f49edc99ef3bb6fa81ec2beeb7d652d1643c8f3e97241cf3578c73d347470e3cbc0aee74043bd7537bccd62a85e10f61c7ecc050552bb717519e43c9ecf0853f7eadd3e6ae743b0e7e19ac76c5474d947ae6637b408a2b2693abed860512ab26c1cb7a0958ff75bc11c4d446bd771de774b19c90b01dd403ed8e7465b37a572759148d2ef22a56966259efe4c77c1e53282af79d383b23f3", @typed={0x8, 0xbc, 0x0, 0x0, @u32=0x800}, @typed={0x5, 0x39, 0x0, 0x0, @str='\x00'}]}, @TIPC_NLA_NODE={0x8, 0x6, 0x0, 0x1, [@typed={0x4, 0x98}]}]}, 0x123c}, 0x1, 0x0, 0x0, 0x80}, 0x40) ioctl$auto_EVIOCGMASK(r2, 0x80104592, &(0x7f0000000000)={0x61, 0x3, 0x8000000000000000}) write$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffffff, 0x0, 0x0) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0xda) 5.066293431s ago: executing program 2 (id=2388): mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event\x00', 0x121000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002bbd7000fcdbdf2504000000040010"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r3 = socket(0x11, 0x3, 0x2) setresuid$auto(0xffffffffffffffff, 0x8, 0x8000) ioctl$sock_SIOCGIFINDEX(r3, 0x8955, 0x0) close_range$auto(r0, 0x8, 0x0) brk$auto(0xffffffffffffff66) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r5 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/platform/dummy_hcd.0/usb1/power/wakeup_active_count\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000001100)=""/4106, 0x100a) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) socket(0x10, 0x2, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) r7 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/udp\x00', 0x20000, 0x0) pread64$auto(r7, 0x0, 0x200000000003, 0x2f4a3a23) r8 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000080), r5) r9 = clone$auto(0xa685, 0x2, &(0x7f0000000100)=0x4, &(0x7f0000000140)=0xfffffff2, 0x1b9) sendmsg$auto_TIPC_NL_BEARER_DISABLE(r4, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000180)={&(0x7f0000000240)={0x1200, r8, 0x400, 0x70bd25, 0x25dfdbfb, {}, [@TIPC_NLA_NET={0x7c, 0x7, 0x0, 0x1, [@nested={0x75, 0x121, 0x0, 0x1, [@typed={0x8, 0xfe, 0x0, 0x0, @fd=r4}, @typed={0x8, 0xf, 0x0, 0x0, @u32=0x5}, @typed={0x8, 0xc0, 0x0, 0x0, @pid=r9}, @nested={0x4, 0x2f}, @nested={0x4, 0xa7}, @nested={0x4, 0x58}, @nested={0x4, 0x6}, @generic="1fed79b3c9c7e1582a1cd3c8f62b16d0d7e9157b637c71818d74d6520334c0794c1aef06283fa722ffcdb27422a974e4d2def72428b25ba1a3ec1df8edb8b207f4a777e91a8b82bc52"]}]}, @TIPC_NLA_PUBL={0x1167, 0x3, 0x0, 0x1, [@nested={0xad, 0xb1, 0x0, 0x1, [@typed={0xc, 0x3e, 0x0, 0x0, @u64=0xc}, @nested={0x4, 0x48}, @generic="8edfe08d0831c69bab2005b714bf5228e554139667c4e4b5b0933d5519d7d9ee39f2c5423e70e4d5de7fe03a9c550b2cb87e2575464b1c55c4037bccd3ae4f450fab8b0b9b8d05b972b3040ba81b6f28bacd4822cb69f99089aaa1a119c2fdfd10d783c505e38d1a6af6415fece7a8afdd2bfee51ee019f0f0c669445f51fdda1d4bf8f5065cd462d3d4372b63a09dd7527de569d47ef9d753"]}, @typed={0x8, 0xb6, 0x0, 0x0, @u32=0x9}, @generic="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", @generic="6c3154f49edc99ef3bb6fa81ec2beeb7d652d1643c8f3e97241cf3578c73d347470e3cbc0aee74043bd7537bccd62a85e10f61c7ecc050552bb717519e43c9ecf0853f7eadd3e6ae743b0e7e19ac76c5474d947ae6637b408a2b2693abed860512ab26c1cb7a0958ff75bc11c4d446bd771de774b19c90b01dd403ed8e7465b37a572759148d2ef22a56966259efe4c77c1e53282af79d383b23f3", @typed={0x8, 0xbc, 0x0, 0x0, @u32=0x800}, @typed={0x5, 0x39, 0x0, 0x0, @str='\x00'}]}, @TIPC_NLA_NODE={0x8, 0x6, 0x0, 0x1, [@typed={0x4, 0x98}]}]}, 0x1200}, 0x1, 0x0, 0x0, 0x80}, 0x40) ioctl$auto_EVIOCGMASK(r4, 0x80104592, &(0x7f0000000000)={0x61, 0x3, 0x8000000000000000}) write$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffffff, 0x0, 0x0) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0xda) 3.641444103s ago: executing program 3 (id=2389): mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/block/nbd6/sched/write0_fifo_list\x00', 0x400, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80001, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) io_getevents$auto(0x1, 0x1ff, 0x9, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto(0xffffffffffffffff, 0x4b3a, 0x1) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) keyctl$auto(0x4, 0xfffffffe, 0xffffffffffffffff, 0xffffffffffffffff, 0x8000000e) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x208880, 0x0) openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, 0x0, 0x101500, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/midiC2D2\x00', 0x80980, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001180)='/sys/devices/virtual/block/zram0/compact\x00', 0x20001, 0x0) sendmsg$auto_NL80211_CMD_REGISTER_FRAME(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x6c, 0x0, 0x1, 0x70bd26, 0x25dfdbfd, {}, [@NL80211_ATTR_KEY_SEQ={0x10, 0xa, "7e829a6acc94f61e329b334b"}, @NL80211_ATTR_AP_SETTINGS_FLAGS={0x8, 0x135, 0x3}, @NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_BSS_CTS_PROT={0x5, 0x1c, 0x6}, @NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, "2f651c81044921b0597687fde2cde24e9dd5a15f3aff84177b53"}, @NL80211_ATTR_RECEIVE_MULTICAST={0x4}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x3}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x93}]}, 0x6c}, 0x1, 0x0, 0x0, 0x100}, 0x40) write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000000)="b2", 0x1) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0) 3.591280473s ago: executing program 1 (id=2390): read$auto_qrtr_tun_ops_tun(0xffffffffffffffff, 0x0, 0x0) r0 = socket(0xa, 0x5, 0x84) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x2, 0x88) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000003b00)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x600, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xad41, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_ucma_fops_ucma(0xffffffffffffff9c, 0x0, 0x101002, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(0x0, r2) sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r2, 0x0, 0x0) readv$auto(r1, &(0x7f0000003dc0)={0x0, 0x1}, 0xb) r3 = openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/buffer_percent\x00', 0x1, 0x0) writev$auto(r3, &(0x7f00000035c0)={0x0, 0x4}, 0x4000000000006) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) rename$auto(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00') close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40009, 0x7fffffff, 0x9b72, 0xffffffffffffffff, 0x100000000028000) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x78b9fb018b2a009c, 0x0) sysfs$auto(0x2, 0x7, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r5 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000400), 0x80001, 0x0) ioctl$auto(r5, 0x3b8c, r4) bpf$auto(0xfffffffd, &(0x7f0000000000)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x4, 0x6, 0xffffffffffffffff, @relative_id=0x2, 0x9}, 0xa3) sendto$auto(r0, 0x0, 0x401, 0xffff, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x40242, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r6, 0x0, 0x20) 3.140736148s ago: executing program 3 (id=2391): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x4000000000000804, 0x100007, 0x7ffffff7) mprotect$auto(0x2000, 0x8, 0xa) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x286040, 0x0) r0 = open_by_handle_at$auto(0xffffffffffffffff, &(0x7f0000000100)={0x9, 0x5, "4fa39aae78d7184354"}, 0x1000000) sendmsg$auto_IPVS_CMD_GET_DEST(0xffffffffffffffff, &(0x7f0000003a40)={0x0, 0x0, &(0x7f0000003a00)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x4040011}, 0x40010) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) socket(0x1e, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408) ioctl$auto_FIOQSIZE(r1, 0x5460, 0xff) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x804, 0x1, 0x0, 0x7, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000240)={[0x1ff, 0xfffffffffffffffd, 0xd, 0x0, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0xd, 0xf, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) bpf$auto_BPF_MAP_LOOKUP_ELEM(0x1, &(0x7f0000000180)=@link_detach={r2}, 0x100) setrlimit$auto(0xb, 0x0) r3 = getpid() mmap$auto(0x0, 0x40009, 0xe1, 0x9b72, r0, 0x28000) mincore$auto(0x1000, 0x8001, 0x0) r4 = gettid() rt_tgsigqueueinfo$auto(r3, r4, 0x21, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1cb842, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0) read$auto(0xffffffffffffffff, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0xffd8) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zram0\x00', 0x6e642, 0x0) 3.027770161s ago: executing program 2 (id=2392): mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/block/nbd6/sched/write0_fifo_list\x00', 0x400, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80001, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) io_getevents$auto(0x1, 0x1ff, 0x9, 0x0, 0x0) socket(0x2, 0x2, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x208880, 0x0) openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, 0x0, 0x101500, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/midiC2D2\x00', 0x80980, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001180)='/sys/devices/virtual/block/zram0/compact\x00', 0x20001, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0) 2.617737453s ago: executing program 2 (id=2393): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000840)='./cgroup.cpu/memory.stat\x00', 0x80200, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0) 2.607713131s ago: executing program 1 (id=2394): r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x20000, 0x0) ioctl$auto_SG_GET_SCSI_ID(r0, 0x2276, &(0x7f0000000040)) close_range$auto(0x2, 0x8, 0x0) arch_prctl$auto(0x1003, 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/event2\x00', 0x0, 0x0) socket(0x2, 0x80002, 0x73) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto(0x3, 0x800005411, 0x38) mmap$auto(0x0, 0x3, 0xdf, 0xeb1, 0x40000000000a5, 0x80000008000) ioctl$auto_EVIOCSREP(r1, 0x40084503, 0x0) 2.566792866s ago: executing program 2 (id=2395): socketcall$auto(0x8000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) unshare$auto(0x40000080) mknod$auto(0x0, 0x1, 0x4) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x3, 0xff) r0 = socket(0x2, 0x801, 0x100) sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA(r0, 0x0, 0x20000054) ioctl$auto(0x3, 0x8914, 0x38) 2.42370429s ago: executing program 1 (id=2396): r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000340)='/dev/sg0\x00', 0x103002, 0x0) write$auto_sg_fops_sg(r0, &(0x7f0000000140)="01000000000d0000624c492f4aa7a158ad329acb69abe1d4bbe91b3ddc84d02747403bbca33c95be8fb08baf91e29260d0", 0x31) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) setrlimit$auto(0x7, &(0x7f0000001380)={0x5, 0x6}) socket(0x2, 0x1, 0x0) inotify_init1$auto(0x3000000000000) getpeername$auto(r2, &(0x7f0000000080)=@ax25={0x3, @default, 0x1}, &(0x7f0000000180)=0x9) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r3 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r4 = socket(0xa, 0x1, 0x84) r5 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x7, 0x5, 0xfffffffffffffffa, 0x1ffde, 0x0, 0xa, 0x1, 0x9, 0x3, 0x9, 0x4, 0xb4, 0x9, 0x2, 0x10000, 0x80, 0x7, 0x0, 0x7, 0x2000, 0x200, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0xadd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf81]}, 0x1fe, 0x200d) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) recvmmsg$auto(r5, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) r6 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES16=r6], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000380)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x6}, 0x3, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) ioctl$auto_UI_DEV_SETUP(r3, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x8, 0x80}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa}) ioctl$auto_UI_DEV_CREATE(r3, 0x5501, 0x0) setsockopt$auto(0xffffffffffffffff, 0x1, 0x1021, 0x0, 0xd) geteuid() sendmsg$auto_OVS_CT_LIMIT_CMD_GET(0xffffffffffffffff, 0x0, 0x200000c0) close_range$auto(0x2, 0xa, 0x0) 1.642876204s ago: executing program 3 (id=2397): mmap$auto(0x100000000000b71f, 0x4, 0x4, 0xfffffffffffffffc, 0xffffffffffffffff, 0x6) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) socket(0x2, 0x801, 0x100) preadv$auto(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x6}, 0x7, 0xbbf, 0x69bf) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec8\x00', 0x101901, 0x0) ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f0000000100)={'\x00', 0xfffc, 0x6, 0x40, 0x9b6, 0x7, "00000000000001000000ffffffe500", '[\x00', "0000fbff", '\x00', ["00000f0008b330ac007abfc1", "0000000000000300", "0800000000000000000000ec", "0017000000ef00"]}) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3, @empty}, 0x51) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000300)='/d\x00'/12, 0x100000a3d9) openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000180), 0x218141, 0x0) connect$auto(r0, &(0x7f0000000000)=@generic={0xa, "00001600"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x801, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x100) socketpair$auto(0xb, 0xd, 0xfffffffd, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x88000, 0x0) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) mmap$auto(0x78d50216, 0x3, 0xfffffffffffffffe, 0x800000000801f, 0x3, 0x7f) ioctl$auto_TCFLSH2(r2, 0x8924, 0x0) 1.631385309s ago: executing program 2 (id=2398): mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000) migrate_pages$auto(0x0, 0x99, 0x0, &(0x7f00000001c0)=0x7b) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f00000001c0)) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SYNC(r1, 0x5001, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0x100082) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xf, 0x3, 0x2) ioctl$auto_SNDCTL_SEQ_NRSYNTHS(r2, 0x8004510a, &(0x7f0000000040)) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) socket(0x2, 0x2, 0x0) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20c01, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001fb, 0x7, 0x3, 0x1, 0x9687, 0x100000000000003, 0x95f4da0a, 0x3, 0x9, 0x62, 0x8, 0x807, 0x6d3f, 0x9, 0x6, 0xfffffffffffffffe]}, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x4, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x8000000000000000, 0x2, 0x6d3c, 0x9, 0x2, 0x8000000000000006]}, 0x0) r4 = getpid() process_vm_readv$auto(r4, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, 0x0, 0xa, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) gettid() mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0xa, 0x1, 0x84) readv$auto(0xffffffffffffffff, 0x0, 0x3) close_range$auto(0x2, 0x8, 0x0) 1.133717434s ago: executing program 1 (id=2399): mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/block/nbd6/sched/write0_fifo_list\x00', 0x400, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80001, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) io_getevents$auto(0x1, 0x1ff, 0x9, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto(0xffffffffffffffff, 0x4b3a, 0x1) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) keyctl$auto(0x4, 0xfffffffe, 0xffffffffffffffff, 0xffffffffffffffff, 0x8000000e) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x208880, 0x0) openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, 0x0, 0x101500, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/midiC2D2\x00', 0x80980, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001180)='/sys/devices/virtual/block/zram0/compact\x00', 0x20001, 0x0) sendmsg$auto_NL80211_CMD_REGISTER_FRAME(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x6c, 0x0, 0x1, 0x70bd26, 0x25dfdbfd, {}, [@NL80211_ATTR_KEY_SEQ={0x10, 0xa, "7e829a6acc94f61e329b334b"}, @NL80211_ATTR_AP_SETTINGS_FLAGS={0x8, 0x135, 0x3}, @NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_BSS_CTS_PROT={0x5, 0x1c, 0x6}, @NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, "2f651c81044921b0597687fde2cde24e9dd5a15f3aff84177b53"}, @NL80211_ATTR_RECEIVE_MULTICAST={0x4}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x3}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x93}]}, 0x6c}, 0x1, 0x0, 0x0, 0x100}, 0x40) write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000000)="b2", 0x1) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0) 695.378533ms ago: executing program 3 (id=2400): get_mempolicy$auto(0x0, 0x0, 0x7f, 0x8, 0x3) 388.342934ms ago: executing program 3 (id=2401): r0 = socket(0x2, 0xa, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @local}, 0x406a) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_setup$auto(0x1, 0x0) setsockopt$auto(0x3, 0x10000000084, 0xb, 0x0, 0x8) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) 780.014µs ago: executing program 3 (id=2402): read$auto_qrtr_tun_ops_tun(0xffffffffffffffff, 0x0, 0x0) r0 = socket(0xa, 0x5, 0x84) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x2, 0x88) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000003b00)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x600, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xad41, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_ucma_fops_ucma(0xffffffffffffff9c, 0x0, 0x101002, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(0x0, r2) sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r2, 0x0, 0x0) readv$auto(r1, &(0x7f0000003dc0)={0x0, 0x1}, 0xb) r3 = openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/buffer_percent\x00', 0x1, 0x0) writev$auto(r3, &(0x7f00000035c0)={0x0, 0x4}, 0x4000000000006) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) rename$auto(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00') close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40009, 0x7fffffff, 0x9b72, 0xffffffffffffffff, 0x100000000028000) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x78b9fb018b2a009c, 0x0) sysfs$auto(0x2, 0x7, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r5 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000400), 0x80001, 0x0) ioctl$auto(r5, 0x3b8c, r4) bpf$auto(0xfffffffd, &(0x7f0000000000)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x4, 0x6, 0xffffffffffffffff, @relative_id=0x2, 0x9}, 0xa3) sendto$auto(r0, 0x0, 0x401, 0xffff, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x40242, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r6, 0x0, 0x20) 0s ago: executing program 1 (id=2409): r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x4, 0x6, 0x2}, 0x3, 0x0, 0x6) poll$auto(&(0x7f00000000c0)={0xffffffffffffffff, 0x5, 0xd9c0}, 0x3, 0xb) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000600)='/proc/sys/net/ipv4/vs/est_cpulist\x00', 0x2, 0x0) write$auto(r1, &(0x7f0000000180)=',\x00\x00\xbb\xfd\x8df\x05k^t\xbb\x9axD,k\xb9\x9e\xac_*\x0em:8P]\x02\xffL\xce\"*\xba\xf2\xed\xa5pp\x172\x81\x94\xff\xec\xaac^\x92\xcc{\x91\xc0\xb8\xa3\xc3\x81\xf7\x9c^M\x91\xc6s\xef\f3dg\xfdC$\xf2hQz\xf8\xec-\x91\xa2\x92\xa17K_\xe3\x15k*S\xb5\xf5\xc6\xd55\xc4\xa8\x04\x83\xf8\xab\xdb\\\xde\xd2\\\xe0\xa8\x15\x94\n\x06\xc3\xf7\xc1\xafh #\xbf\xef\xfb#\xcf4\x1c\x8d\x9c}\xba\xc9\x05\xe7g\x94\xb9\x02N\xf8\xa5>R1\xe7U\xd7\xaah\xcc\xa0%|\xaf\x15;t#\xe8\x82N\xca\xe6\xffjx\xf4JK\x8e\xae\xa1`\xbe\x16\x01*\x1f\xe3\xa0\xcfq\x0e\xd9\x12g\xac\xf3\xca+\xf0\xa5\xc1\xd9\xd3\xb9\x19\xb6}mW6%_38\x12r6\xc0\xf8w\xc2\xd2\xc4k\xeb\b\x9a\x14\xdf\xd6\x90\xa1\x11\xf0\xf2\x8a\xba)\x1b^\xa1\xda\\\xee\x7f\xd9\x87\xe6\x80! \x91h\xf5C|`\xec3\xef\xb83\xb5\x8c\x92BNZ\xaf\xe5\xee\xa2\xbd\x01\xaa\x04O\xe93\xa44\xb5\x96J\xbfi\x92\xa1\bW\xe9\x9c\r\xde\xdfT\x18\xa9\x0f\xd2E\xb6R\xfa}\x90\x1b\x96\a\xbe\x9b\xa47\x1fO\xe3\x17\x9bn\xdd w\xc9K=\xaf\xa7x\xe2\xbe\xa6\x90\x8e8(\xf9\x02IC\xe4O5\xfb\x92\xa0\x95\x87\x1fww\x8e\\4b\xc8\x8a<\xd2b\xe5\x12\xf1\xc9\xb5\xb8p\xc6\nC>r\x91\x82\xd4rU\"\x15\xca;K\x9c\xe6Sw(\x12\xc8\x9c\"4\xc43=C\x99c>\xcdD\x9d\xba\xdf<\x8f\t\tEFRa\x1b#\xceC\xad\x93\x97D^\x06\xd2\x16\xcb\x94\xd1\xb6\xb4\'\xa1', 0xb) r2 = socketcall$auto(0x8000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/queues/tx-13/xps_rxqs\x00', 0x10b142, 0x0) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$auto(r1, 0xae5d, 0x10000000000402) ioctl$auto(0x3, 0xae41, r2) r3 = ioctl$auto_KVM_CREATE_VM(r0, 0xae80, 0x0) ioctl$auto_MTDFILEMODE(r3, 0x4d13, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7ef) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82040, 0x0) mmap$auto(0x0, 0x20009, 0x386, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r4 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) fallocate$auto(r4, 0x0, 0x11, 0x22) mmap$auto(0x0, 0xc, 0xbc5, 0x13, 0x3, 0x8000) socket(0xa, 0x3, 0x73) io_uring_setup$auto(0x3, 0x0) socket(0x11, 0x80001, 0x8ffffffc) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/lru_gen_full\x00', 0xc0000, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) prctl$auto(0x4, 0x1, 0x0, 0x0, 0xffff) ioctl$auto_FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000140)="58fcb282bcbc38bfaef257e019406ea6c445cd4f7f7662ac0f8834baa918d5b3cea133243c4f2b9a39e536b67f5a1a2bfdf589da2b1c980e1ce53883444996d1721d7f3ae627c6c604000000000000007910fbc02d899ab93d002d849884a5377ff11be2ed012110f2f520") socket(0x10, 0x2, 0x4) kernel console output (not intermixed with test programs): 0132] proc_create_reg+0x7d/0x180 [ 397.423693][T10132] proc_create_net_data+0x8e/0x1c0 [ 397.423732][T10132] ? __pfx_proc_create_net_data+0x10/0x10 [ 397.423781][T10132] nfs_fs_proc_net_init+0x141/0x1e0 [ 397.423817][T10132] nfs_net_init+0x130/0x340 [ 397.423848][T10132] ? __pfx_nfs_net_init+0x10/0x10 [ 397.423872][T10132] ops_init+0x1df/0x5f0 [ 397.423911][T10132] setup_net+0x10f/0x380 [ 397.423933][T10132] ? lockdep_init_map_type+0x5c/0x280 [ 397.423970][T10132] ? __pfx_setup_net+0x10/0x10 [ 397.423995][T10132] ? debug_mutex_init+0x37/0x70 [ 397.424026][T10132] copy_net_ns+0x2a6/0x5f0 [ 397.424056][T10132] create_new_namespaces+0x3ea/0xa90 [ 397.424095][T10132] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 397.424127][T10132] ksys_unshare+0x45b/0xa40 [ 397.424160][T10132] ? __pfx_ksys_unshare+0x10/0x10 [ 397.424193][T10132] ? xfd_validate_state+0x61/0x180 [ 397.424236][T10132] __x64_sys_unshare+0x31/0x40 [ 397.424267][T10132] do_syscall_64+0xcd/0x4c0 [ 397.424318][T10132] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 397.424343][T10132] RIP: 0033:0x7faacdb8eec9 [ 397.424365][T10132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 397.424390][T10132] RSP: 002b:00007faaceac8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 397.424414][T10132] RAX: ffffffffffffffda RBX: 00007faacdde5fa0 RCX: 00007faacdb8eec9 [ 397.424429][T10132] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 397.424443][T10132] RBP: 00007faacdc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 397.424456][T10132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 397.424469][T10132] R13: 00007faacdde6038 R14: 00007faacdde5fa0 R15: 00007ffd5c90efa8 [ 397.424499][T10132] [ 401.657481][T10178] FAULT_INJECTION: forcing a failure. [ 401.657481][T10178] name failslab, interval 1, probability 0, space 0, times 0 [ 401.682430][T10178] CPU: 1 UID: 0 PID: 10178 Comm: syz.1.829 Not tainted syzkaller #0 PREEMPT(full) [ 401.682465][T10178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 401.682480][T10178] Call Trace: [ 401.682487][T10178] [ 401.682497][T10178] dump_stack_lvl+0x16c/0x1f0 [ 401.682545][T10178] should_fail_ex+0x512/0x640 [ 401.682584][T10178] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 401.682616][T10178] should_failslab+0xc2/0x120 [ 401.682649][T10178] __kmalloc_cache_noprof+0x6a/0x3e0 [ 401.682676][T10178] ? __alloc_workqueue+0xda2/0x1810 [ 401.682716][T10178] __alloc_workqueue+0xda2/0x1810 [ 401.682764][T10178] alloc_workqueue_noprof+0xd2/0x200 [ 401.682798][T10178] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 401.682837][T10178] ? rcu_is_watching+0x12/0xc0 [ 401.682865][T10178] ? __kmalloc_noprof+0x242/0x510 [ 401.682894][T10178] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 401.682935][T10178] ieee80211_register_hw+0x1f2c/0x4120 [ 401.682994][T10178] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 401.683033][T10178] ? find_held_lock+0x2b/0x80 [ 401.683056][T10178] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 401.683090][T10178] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 401.683121][T10178] ? __hrtimer_setup+0x176/0x280 [ 401.683157][T10178] mac80211_hwsim_new_radio+0x3034/0x54d0 [ 401.683204][T10178] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 401.683240][T10178] hwsim_new_radio_nl+0xb51/0x12c0 [ 401.683269][T10178] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 401.683305][T10178] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 401.683331][T10178] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 401.683362][T10178] genl_family_rcv_msg_doit+0x209/0x2f0 [ 401.683390][T10178] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 401.683430][T10178] ? bpf_lsm_capable+0x9/0x10 [ 401.683457][T10178] ? security_capable+0x7e/0x260 [ 401.683484][T10178] ? ns_capable+0xd7/0x110 [ 401.683515][T10178] genl_rcv_msg+0x55c/0x800 [ 401.683544][T10178] ? __pfx_genl_rcv_msg+0x10/0x10 [ 401.683570][T10178] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 401.683605][T10178] netlink_rcv_skb+0x158/0x420 [ 401.683642][T10178] ? __pfx_genl_rcv_msg+0x10/0x10 [ 401.683669][T10178] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 401.683722][T10178] ? netlink_deliver_tap+0x1ae/0xd30 [ 401.683761][T10178] genl_rcv+0x28/0x40 [ 401.683780][T10178] netlink_unicast+0x5a7/0x870 [ 401.683819][T10178] ? __pfx_netlink_unicast+0x10/0x10 [ 401.683850][T10178] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 401.683882][T10178] ? __lock_acquire+0xb97/0x1ce0 [ 401.683921][T10178] netlink_sendmsg+0x8d1/0xdd0 [ 401.683969][T10178] ? __pfx_netlink_sendmsg+0x10/0x10 [ 401.684013][T10178] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 401.684050][T10178] ____sys_sendmsg+0xa98/0xc70 [ 401.684080][T10178] ? copy_msghdr_from_user+0x10a/0x160 [ 401.684114][T10178] ? __pfx_____sys_sendmsg+0x10/0x10 [ 401.684144][T10178] ? __pfx_futex_wake_mark+0x10/0x10 [ 401.684181][T10178] ___sys_sendmsg+0x134/0x1d0 [ 401.684221][T10178] ? __pfx____sys_sendmsg+0x10/0x10 [ 401.684300][T10178] __sys_sendmsg+0x16d/0x220 [ 401.684339][T10178] ? __pfx___sys_sendmsg+0x10/0x10 [ 401.684375][T10178] ? __x64_sys_futex+0x1e0/0x4c0 [ 401.684431][T10178] do_syscall_64+0xcd/0x4c0 [ 401.684472][T10178] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 401.684498][T10178] RIP: 0033:0x7faacdb8eec9 [ 401.684517][T10178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 401.684542][T10178] RSP: 002b:00007faaceac8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 401.684569][T10178] RAX: ffffffffffffffda RBX: 00007faacdde5fa0 RCX: 00007faacdb8eec9 [ 401.684586][T10178] RDX: 0000000004040040 RSI: 0000200000000300 RDI: 0000000000000005 [ 401.684601][T10178] RBP: 00007faacdc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 401.684617][T10178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 401.684632][T10178] R13: 00007faacdde6038 R14: 00007faacdde5fa0 R15: 00007ffd5c90efa8 [ 401.684668][T10178] [ 401.718777][T10174] zswap: compressor not available [ 404.461343][T10217] FAULT_INJECTION: forcing a failure. [ 404.461343][T10217] name failslab, interval 1, probability 0, space 0, times 0 [ 404.563634][T10217] CPU: 1 UID: 0 PID: 10217 Comm: syz.3.834 Not tainted syzkaller #0 PREEMPT(full) [ 404.563670][T10217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 404.563679][T10217] Call Trace: [ 404.563686][T10217] [ 404.563692][T10217] dump_stack_lvl+0x16c/0x1f0 [ 404.563720][T10217] should_fail_ex+0x512/0x640 [ 404.563742][T10217] ? __kmalloc_noprof+0xbf/0x510 [ 404.563761][T10217] ? apply_wqattrs_prepare+0xf8/0xbd0 [ 404.563776][T10217] should_failslab+0xc2/0x120 [ 404.563795][T10217] __kmalloc_noprof+0xd2/0x510 [ 404.563816][T10217] apply_wqattrs_prepare+0xf8/0xbd0 [ 404.563839][T10217] apply_workqueue_attrs_locked+0x64/0xe0 [ 404.563855][T10217] __alloc_workqueue+0xf41/0x1810 [ 404.563880][T10217] alloc_workqueue_noprof+0xd2/0x200 [ 404.563898][T10217] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 404.563919][T10217] ? rcu_is_watching+0x12/0xc0 [ 404.563934][T10217] ? __kmalloc_noprof+0x242/0x510 [ 404.563949][T10217] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 404.563973][T10217] ieee80211_register_hw+0x1f2c/0x4120 [ 404.564003][T10217] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 404.564027][T10217] ? find_held_lock+0x2b/0x80 [ 404.564042][T10217] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 404.564062][T10217] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 404.564083][T10217] ? __hrtimer_setup+0x176/0x280 [ 404.564105][T10217] mac80211_hwsim_new_radio+0x3034/0x54d0 [ 404.564133][T10217] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 404.564155][T10217] hwsim_new_radio_nl+0xb51/0x12c0 [ 404.564173][T10217] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 404.564194][T10217] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 404.564211][T10217] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 404.564231][T10217] genl_family_rcv_msg_doit+0x209/0x2f0 [ 404.564247][T10217] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 404.564269][T10217] ? bpf_lsm_capable+0x9/0x10 [ 404.564281][T10217] ? security_capable+0x7e/0x260 [ 404.564297][T10217] ? ns_capable+0xd7/0x110 [ 404.564313][T10217] genl_rcv_msg+0x55c/0x800 [ 404.564330][T10217] ? __pfx_genl_rcv_msg+0x10/0x10 [ 404.564345][T10217] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 404.564368][T10217] netlink_rcv_skb+0x158/0x420 [ 404.564390][T10217] ? __pfx_genl_rcv_msg+0x10/0x10 [ 404.564409][T10217] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 404.564440][T10217] ? netlink_deliver_tap+0x1ae/0xd30 [ 404.564463][T10217] genl_rcv+0x28/0x40 [ 404.564475][T10217] netlink_unicast+0x5a7/0x870 [ 404.564500][T10217] ? __pfx_netlink_unicast+0x10/0x10 [ 404.564521][T10217] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 404.564552][T10217] ? __lock_acquire+0xb97/0x1ce0 [ 404.564576][T10217] netlink_sendmsg+0x8d1/0xdd0 [ 404.564607][T10217] ? __pfx_netlink_sendmsg+0x10/0x10 [ 404.564636][T10217] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 404.564655][T10217] ____sys_sendmsg+0xa98/0xc70 [ 404.564671][T10217] ? copy_msghdr_from_user+0x10a/0x160 [ 404.564691][T10217] ? __pfx_____sys_sendmsg+0x10/0x10 [ 404.564716][T10217] ___sys_sendmsg+0x134/0x1d0 [ 404.564737][T10217] ? __pfx____sys_sendmsg+0x10/0x10 [ 404.564781][T10217] __sys_sendmsg+0x16d/0x220 [ 404.564802][T10217] ? __pfx___sys_sendmsg+0x10/0x10 [ 404.564821][T10217] ? __x64_sys_futex+0x1e0/0x4c0 [ 404.564851][T10217] do_syscall_64+0xcd/0x4c0 [ 404.564874][T10217] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 404.564888][T10217] RIP: 0033:0x7fc30e58eec9 [ 404.564901][T10217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 404.564914][T10217] RSP: 002b:00007fc30f439038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 404.564928][T10217] RAX: ffffffffffffffda RBX: 00007fc30e7e5fa0 RCX: 00007fc30e58eec9 [ 404.564938][T10217] RDX: 0000000004040040 RSI: 0000200000000300 RDI: 0000000000000005 [ 404.564947][T10217] RBP: 00007fc30e611f91 R08: 0000000000000000 R09: 0000000000000000 [ 404.564955][T10217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 404.564964][T10217] R13: 00007fc30e7e6038 R14: 00007fc30e7e5fa0 R15: 00007ffc83f1ee08 [ 404.564982][T10217] [ 405.496273][T10225] netlink: 8 bytes leftover after parsing attributes in process `syz.0.836'. [ 405.839853][ T5870] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 408.548774][T10265] netlink: 8 bytes leftover after parsing attributes in process `syz.0.844'. [ 408.565317][T10268] FAULT_INJECTION: forcing a failure. [ 408.565317][T10268] name failslab, interval 1, probability 0, space 0, times 0 [ 408.768623][T10268] CPU: 1 UID: 0 PID: 10268 Comm: syz.3.846 Not tainted syzkaller #0 PREEMPT(full) [ 408.768653][T10268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 408.768667][T10268] Call Trace: [ 408.768675][T10268] [ 408.768685][T10268] dump_stack_lvl+0x16c/0x1f0 [ 408.768725][T10268] should_fail_ex+0x512/0x640 [ 408.768760][T10268] ? fs_reclaim_acquire+0xae/0x150 [ 408.768797][T10268] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 408.768830][T10268] should_failslab+0xc2/0x120 [ 408.768861][T10268] __kmalloc_noprof+0xd2/0x510 [ 408.768898][T10268] tomoyo_realpath_from_path+0xc2/0x6e0 [ 408.768935][T10268] ? tomoyo_profile+0x47/0x60 [ 408.768960][T10268] tomoyo_path_number_perm+0x245/0x580 [ 408.768988][T10268] ? tomoyo_path_number_perm+0x237/0x580 [ 408.769021][T10268] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 408.769052][T10268] ? find_held_lock+0x2b/0x80 [ 408.769109][T10268] ? find_held_lock+0x2b/0x80 [ 408.769131][T10268] ? hook_file_ioctl_common+0x145/0x410 [ 408.769170][T10268] ? __fget_files+0x20e/0x3c0 [ 408.769203][T10268] security_file_ioctl+0x9b/0x240 [ 408.769235][T10268] __x64_sys_ioctl+0xb7/0x210 [ 408.769274][T10268] do_syscall_64+0xcd/0x4c0 [ 408.769320][T10268] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 408.769345][T10268] RIP: 0033:0x7fc30e58eec9 [ 408.769364][T10268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 408.769386][T10268] RSP: 002b:00007fc30f439038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 408.769409][T10268] RAX: ffffffffffffffda RBX: 00007fc30e7e5fa0 RCX: 00007fc30e58eec9 [ 408.769425][T10268] RDX: 0000000000000005 RSI: 00000000400c4d07 RDI: 0000000000000003 [ 408.769443][T10268] RBP: 00007fc30f439090 R08: 0000000000000000 R09: 0000000000000000 [ 408.769457][T10268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 408.769471][T10268] R13: 00007fc30e7e6038 R14: 00007fc30e7e5fa0 R15: 00007ffc83f1ee08 [ 408.769505][T10268] [ 408.769528][T10268] ERROR: Out of memory at tomoyo_realpath_from_path. [ 412.368831][T10311] FAULT_INJECTION: forcing a failure. [ 412.368831][T10311] name fail_futex, interval 1, probability 0, space 0, times 0 [ 412.382435][T10311] CPU: 1 UID: 0 PID: 10311 Comm: syz.3.855 Not tainted syzkaller #0 PREEMPT(full) [ 412.382469][T10311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 412.382484][T10311] Call Trace: [ 412.382493][T10311] [ 412.382503][T10311] dump_stack_lvl+0x16c/0x1f0 [ 412.382547][T10311] should_fail_ex+0x512/0x640 [ 412.382591][T10311] get_futex_key+0x1d0/0x1560 [ 412.382626][T10311] ? __pfx_get_futex_key+0x10/0x10 [ 412.382667][T10311] futex_wait_setup+0x9d/0x550 [ 412.382715][T10311] __futex_wait+0x194/0x2f0 [ 412.382754][T10311] ? __pfx___futex_wait+0x10/0x10 [ 412.382796][T10311] ? __pfx_futex_wake_mark+0x10/0x10 [ 412.382839][T10311] ? futex_private_hash_put+0x176/0x300 [ 412.382873][T10311] ? futex_private_hash_put+0x18a/0x300 [ 412.382905][T10311] futex_wait+0xe8/0x380 [ 412.382940][T10311] ? __pfx_futex_wait+0x10/0x10 [ 412.382982][T10311] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 412.383020][T10311] ? is_valid_madvise+0x34/0xd0 [ 412.383058][T10311] do_futex+0x229/0x350 [ 412.383090][T10311] ? __pfx_do_futex+0x10/0x10 [ 412.383132][T10311] __x64_sys_futex+0x1e0/0x4c0 [ 412.383170][T10311] ? __pfx___x64_sys_futex+0x10/0x10 [ 412.383212][T10311] ? xfd_validate_state+0x61/0x180 [ 412.383248][T10311] ? __pfx_ksys_write+0x10/0x10 [ 412.383289][T10311] do_syscall_64+0xcd/0x4c0 [ 412.383329][T10311] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 412.383354][T10311] RIP: 0033:0x7fc30e58eec9 [ 412.383375][T10311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 412.383399][T10311] RSP: 002b:00007fc30f4390e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 412.383423][T10311] RAX: ffffffffffffffda RBX: 00007fc30e7e5fa8 RCX: 00007fc30e58eec9 [ 412.383441][T10311] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fc30e7e5fa8 [ 412.383457][T10311] RBP: 00007fc30e7e5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 412.383473][T10311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 412.383488][T10311] R13: 00007fc30e7e6038 R14: 00007ffc83f1ed20 R15: 00007ffc83f1ee08 [ 412.383523][T10311] [ 416.387887][T10358] FAULT_INJECTION: forcing a failure. [ 416.387887][T10358] name failslab, interval 1, probability 0, space 0, times 0 [ 416.512476][T10358] CPU: 1 UID: 0 PID: 10358 Comm: syz.3.865 Not tainted syzkaller #0 PREEMPT(full) [ 416.512509][T10358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 416.512522][T10358] Call Trace: [ 416.512530][T10358] [ 416.512538][T10358] dump_stack_lvl+0x16c/0x1f0 [ 416.512577][T10358] should_fail_ex+0x512/0x640 [ 416.512612][T10358] ? fs_reclaim_acquire+0xae/0x150 [ 416.512648][T10358] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 416.512680][T10358] should_failslab+0xc2/0x120 [ 416.512712][T10358] __kmalloc_noprof+0xd2/0x510 [ 416.512749][T10358] tomoyo_realpath_from_path+0xc2/0x6e0 [ 416.512785][T10358] ? tomoyo_profile+0x47/0x60 [ 416.512811][T10358] tomoyo_path_number_perm+0x245/0x580 [ 416.512837][T10358] ? tomoyo_path_number_perm+0x237/0x580 [ 416.512868][T10358] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 416.512904][T10358] ? find_held_lock+0x2b/0x80 [ 416.512956][T10358] ? find_held_lock+0x2b/0x80 [ 416.512976][T10358] ? hook_file_ioctl_common+0x145/0x410 [ 416.513011][T10358] ? __fget_files+0x20e/0x3c0 [ 416.513039][T10358] security_file_ioctl+0x9b/0x240 [ 416.513065][T10358] __x64_sys_ioctl+0xb7/0x210 [ 416.513098][T10358] do_syscall_64+0xcd/0x4c0 [ 416.513131][T10358] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 416.513155][T10358] RIP: 0033:0x7fc30e58eec9 [ 416.513171][T10358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 416.513189][T10358] RSP: 002b:00007fc30f439038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 416.513208][T10358] RAX: ffffffffffffffda RBX: 00007fc30e7e5fa0 RCX: 00007fc30e58eec9 [ 416.513223][T10358] RDX: 00002000000001c0 RSI: 00000000802c550a RDI: 0000000000000004 [ 416.513237][T10358] RBP: 00007fc30f439090 R08: 0000000000000000 R09: 0000000000000000 [ 416.513248][T10358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 416.513259][T10358] R13: 00007fc30e7e6038 R14: 00007fc30e7e5fa0 R15: 00007ffc83f1ee08 [ 416.513290][T10358] [ 416.513305][T10358] ERROR: Out of memory at tomoyo_realpath_from_path. [ 416.786008][T10363] netlink: 8 bytes leftover after parsing attributes in process `syz.0.867'. [ 417.045763][T10368] netlink: 8 bytes leftover after parsing attributes in process `syz.2.869'. [ 420.658001][T10402] FAULT_INJECTION: forcing a failure. [ 420.658001][T10402] name failslab, interval 1, probability 0, space 0, times 0 [ 420.733824][T10402] CPU: 0 UID: 0 PID: 10402 Comm: syz.0.875 Not tainted syzkaller #0 PREEMPT(full) [ 420.733853][T10402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 420.733865][T10402] Call Trace: [ 420.733872][T10402] [ 420.733881][T10402] dump_stack_lvl+0x16c/0x1f0 [ 420.733916][T10402] should_fail_ex+0x512/0x640 [ 420.733947][T10402] ? fs_reclaim_acquire+0xae/0x150 [ 420.733983][T10402] should_failslab+0xc2/0x120 [ 420.734011][T10402] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 420.734038][T10402] ? __kernfs_new_node+0xd2/0x8e0 [ 420.734068][T10402] __kernfs_new_node+0xd2/0x8e0 [ 420.734097][T10402] ? __pfx___kernfs_new_node+0x10/0x10 [ 420.734131][T10402] ? find_held_lock+0x2b/0x80 [ 420.734156][T10402] ? kernfs_root+0xee/0x2a0 [ 420.734188][T10402] kernfs_new_node+0x13c/0x1e0 [ 420.734228][T10402] __kernfs_create_file+0x53/0x350 [ 420.734256][T10402] sysfs_add_file_mode_ns+0x207/0x3c0 [ 420.734294][T10402] internal_create_group+0x578/0xf30 [ 420.734341][T10402] ? __pfx_internal_create_group+0x10/0x10 [ 420.734371][T10402] ? kernfs_create_link+0x1bd/0x240 [ 420.734397][T10402] internal_create_groups+0x9d/0x150 [ 420.734432][T10402] device_add+0x731/0x1aa0 [ 420.734462][T10402] ? __pfx_device_add+0x10/0x10 [ 420.734485][T10402] ? __pfx___might_resched+0x10/0x10 [ 420.734508][T10402] ? lockdep_hardirqs_on+0x7c/0x110 [ 420.734554][T10402] __add_disk+0x457/0xf00 [ 420.734596][T10402] add_disk_fwnode+0x13f/0x5d0 [ 420.734637][T10402] loop_add+0x903/0xb70 [ 420.734665][T10402] ? __pfx_loop_add+0x10/0x10 [ 420.734718][T10402] ? find_held_lock+0x2b/0x80 [ 420.734746][T10402] loop_control_ioctl+0x13e/0x630 [ 420.734776][T10402] ? __pfx_loop_control_ioctl+0x10/0x10 [ 420.734811][T10402] ? __pfx_loop_control_ioctl+0x10/0x10 [ 420.734842][T10402] __x64_sys_ioctl+0x18b/0x210 [ 420.734880][T10402] do_syscall_64+0xcd/0x4c0 [ 420.734918][T10402] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 420.734942][T10402] RIP: 0033:0x7f755918eec9 [ 420.734960][T10402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 420.734982][T10402] RSP: 002b:00007f7559fa5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 420.735003][T10402] RAX: ffffffffffffffda RBX: 00007f75593e6090 RCX: 00007f755918eec9 [ 420.735018][T10402] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 000000000000000b [ 420.735032][T10402] RBP: 00007f7559211f91 R08: 0000000000000000 R09: 0000000000000000 [ 420.735046][T10402] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 420.735059][T10402] R13: 00007f75593e6128 R14: 00007f75593e6090 R15: 00007ffe9ff803c8 [ 420.735088][T10402] [ 422.991792][T10425] netlink: 8 bytes leftover after parsing attributes in process `syz.0.880'. [ 423.507359][T10436] netlink: 8 bytes leftover after parsing attributes in process `syz.1.883'. [ 427.845504][T10479] openvswitch: netlink: Message has 20 unknown bytes. [ 428.667564][T10497] FAULT_INJECTION: forcing a failure. [ 428.667564][T10497] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 428.680769][T10497] CPU: 0 UID: 0 PID: 10497 Comm: syz.3.893 Not tainted syzkaller #0 PREEMPT(full) [ 428.680797][T10497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 428.680809][T10497] Call Trace: [ 428.680816][T10497] [ 428.680830][T10497] dump_stack_lvl+0x16c/0x1f0 [ 428.680867][T10497] should_fail_ex+0x512/0x640 [ 428.680904][T10497] _copy_from_user+0x2e/0xd0 [ 428.680929][T10497] copy_msghdr_from_user+0x98/0x160 [ 428.680961][T10497] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 428.680995][T10497] ? kfree+0x24f/0x4d0 [ 428.681014][T10497] ? __lock_acquire+0x62e/0x1ce0 [ 428.681049][T10497] ___sys_recvmsg+0xdb/0x1a0 [ 428.681080][T10497] ? __pfx____sys_recvmsg+0x10/0x10 [ 428.681133][T10497] ? __pfx___might_resched+0x10/0x10 [ 428.681166][T10497] do_recvmmsg+0x2fe/0x750 [ 428.681206][T10497] ? __pfx_do_recvmmsg+0x10/0x10 [ 428.681248][T10497] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 428.681295][T10497] ? __fget_files+0x20e/0x3c0 [ 428.681331][T10497] __x64_sys_recvmmsg+0x22a/0x280 [ 428.681369][T10497] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 428.681415][T10497] do_syscall_64+0xcd/0x4c0 [ 428.681453][T10497] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 428.681478][T10497] RIP: 0033:0x7fc30e58eec9 [ 428.681498][T10497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 428.681520][T10497] RSP: 002b:00007fc30f418038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 428.681542][T10497] RAX: ffffffffffffffda RBX: 00007fc30e7e6090 RCX: 00007fc30e58eec9 [ 428.681558][T10497] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 428.681572][T10497] RBP: 00007fc30f418090 R08: 0000000000000000 R09: 0000000000000000 [ 428.681586][T10497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 428.681600][T10497] R13: 00007fc30e7e6128 R14: 00007fc30e7e6090 R15: 00007ffc83f1ee08 [ 428.681633][T10497] [ 429.773308][T10513] netlink: 8 bytes leftover after parsing attributes in process `syz.2.896'. [ 432.106987][T10547] netlink: 28 bytes leftover after parsing attributes in process `syz.3.904'. [ 435.936871][T10599] netlink: 12 bytes leftover after parsing attributes in process `syz.3.914'. [ 435.958675][T10597] MTRR 1 not used [ 436.012106][T10601] netlink: 8 bytes leftover after parsing attributes in process `syz.0.915'. [ 437.695471][T10626] netlink: 'syz.1.919': attribute type 11 has an invalid length. [ 437.728248][T10626] netlink: 'syz.1.919': attribute type 11 has an invalid length. [ 437.753906][T10626] netlink: 'syz.1.919': attribute type 11 has an invalid length. [ 437.790803][ T30] audit: type=1326 audit(1758661148.320:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10625 comm="syz.1.919" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7faacdb8eec9 code=0x0 [ 440.183992][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.192589][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.973142][T10668] netlink: 8 bytes leftover after parsing attributes in process `syz.1.929'. [ 443.666781][ T30] audit: type=1804 audit(1758661154.190:12): pid=10695 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.933" name="/newroot/sys/kernel/tracing/set_event" dev="tracefs" ino=14 res=1 errno=0 [ 444.120841][T10702] netlink: 8 bytes leftover after parsing attributes in process `syz.3.936'. [ 446.299314][T10737] netlink: 8 bytes leftover after parsing attributes in process `syz.1.942'. [ 449.257885][T10760] zswap: compressor not available [ 450.587268][T10794] openvswitch: netlink: Message has 20 unknown bytes. [ 451.789899][T10797] kexec: Could not allocate control_code_buffer [ 452.756071][T10806] zswap: compressor not available [ 455.297889][T10845] mkiss: ax0: crc mode is auto. [ 457.878948][T10864] zswap: compressor not available [ 461.781992][T10915] netlink: 8 bytes leftover after parsing attributes in process `syz.2.975'. [ 468.309939][T10980] zswap: compressor not available [ 469.126533][T10996] mkiss: ax0: crc mode is auto. [ 470.825612][T11025] FAULT_INJECTION: forcing a failure. [ 470.825612][T11025] name failslab, interval 1, probability 0, space 0, times 0 [ 470.920379][T11025] CPU: 0 UID: 0 PID: 11025 Comm: syz.3.996 Not tainted syzkaller #0 PREEMPT(full) [ 470.920460][T11025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 470.920471][T11025] Call Trace: [ 470.920485][T11025] [ 470.920492][T11025] dump_stack_lvl+0x16c/0x1f0 [ 470.920521][T11025] should_fail_ex+0x512/0x640 [ 470.920543][T11025] ? fs_reclaim_acquire+0xae/0x150 [ 470.920573][T11025] should_failslab+0xc2/0x120 [ 470.920593][T11025] __kmalloc_cache_noprof+0x6a/0x3e0 [ 470.920610][T11025] ? tomoyo_init_log+0x197/0x2140 [ 470.920633][T11025] tomoyo_init_log+0x197/0x2140 [ 470.920652][T11025] ? kasan_save_stack+0x33/0x60 [ 470.920669][T11025] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 470.920696][T11025] ? __pfx_tomoyo_init_log+0x10/0x10 [ 470.920715][T11025] ? tomoyo_profile+0x47/0x60 [ 470.920727][T11025] ? tomoyo_domain_quota_is_ok+0x2f6/0x5a0 [ 470.920746][T11025] tomoyo_supervisor+0x302/0x13b0 [ 470.920763][T11025] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 470.920775][T11025] ? __pfx_vsnprintf+0x10/0x10 [ 470.920803][T11025] ? tomoyo_encode2+0x329/0x3e0 [ 470.920825][T11025] ? tomoyo_check_path_number_acl+0xa6/0x2f0 [ 470.920849][T11025] tomoyo_path_number_perm+0x448/0x580 [ 470.920874][T11025] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 470.920931][T11025] ? find_held_lock+0x2b/0x80 [ 470.920947][T11025] ? hook_file_ioctl_common+0x145/0x410 [ 470.920971][T11025] ? __fget_files+0x20e/0x3c0 [ 470.920991][T11025] security_file_ioctl+0x9b/0x240 [ 470.921012][T11025] __x64_sys_ioctl+0xb7/0x210 [ 470.921037][T11025] do_syscall_64+0xcd/0x4c0 [ 470.921060][T11025] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 470.921076][T11025] RIP: 0033:0x7fc30e58eec9 [ 470.921089][T11025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 470.921103][T11025] RSP: 002b:00007fc30f439038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 470.921118][T11025] RAX: ffffffffffffffda RBX: 00007fc30e7e5fa0 RCX: 00007fc30e58eec9 [ 470.921128][T11025] RDX: 0000000000000006 RSI: 00000000000007a0 RDI: 0000000000000008 [ 470.921137][T11025] RBP: 00007fc30e611f91 R08: 0000000000000000 R09: 0000000000000000 [ 470.921146][T11025] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 470.921156][T11025] R13: 00007fc30e7e6038 R14: 00007fc30e7e5fa0 R15: 00007ffc83f1ee08 [ 470.921175][T11025] [ 471.707635][T11038] netlink: 8 bytes leftover after parsing attributes in process `syz.3.999'. [ 472.001278][T11030] zswap: compressor not available [ 474.418516][T11065] mkiss: ax0: crc mode is auto. [ 476.592699][T11090] capability: warning: `syz.1.1011' uses 32-bit capabilities (legacy support in use) [ 476.614945][T11082] zswap: compressor not available [ 479.754225][T11137] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 481.073347][T11163] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input11 [ 481.427559][T11148] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 481.891947][T11178] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1029'. [ 483.862937][T11201] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1035'. [ 483.927459][T11202] mkiss: ax0: crc mode is auto. [ 485.370614][T11221] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1040'. [ 488.469262][T11265] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888078000dc0 pfn:0x78000 [ 488.511563][T11265] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 488.539783][T11265] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 488.551707][T11265] raw: ffff888078000dc0 0000000000000000 00000001ffffffff 0000000000000000 [ 488.577720][T11265] page dumped because: unmovable page [ 488.611573][T11265] page_owner tracks the page as allocated [ 488.662959][T11265] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xcc0(GFP_KERNEL), pid 11177, tgid 11177 (syz.2.1030), ts 482945684080, free_ts 482059627961 [ 488.765781][T11265] post_alloc_hook+0x1c0/0x230 [ 488.889246][T11265] get_page_from_freelist+0x132b/0x38e0 [ 488.922383][T11265] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 489.001749][T11265] alloc_pages_bulk_noprof+0x71c/0x1410 [ 489.065460][T11265] kasan_populate_vmalloc+0x112/0x2d0 [ 489.138271][T11265] alloc_vmap_area+0x960/0x29c0 [ 489.228971][T11265] __get_vm_area_node+0x1ca/0x330 [ 489.253855][T11265] __vmalloc_node_range_noprof+0x271/0x14b0 [ 489.303183][T11265] __vmalloc_node_noprof+0xad/0xf0 [ 489.328600][T11265] __snd_dma_alloc_pages+0x50/0x90 [ 489.337028][T11265] snd_dma_alloc_dir_pages+0x151/0x240 [ 489.364060][T11265] do_alloc_pages+0x136/0x2d0 [ 489.391732][T11265] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 489.421206][T11265] snd_pcm_hw_params+0x1656/0x1ba0 [ 489.431620][T11265] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 489.583231][T11265] snd_pcm_oss_change_params_locked+0x1432/0x3a30 [ 489.589935][T11265] page last free pid 15 tgid 15 stack trace: [ 489.596060][T11265] __free_frozen_pages+0x7d5/0x10f0 [ 489.646433][T11265] rcu_core+0x799/0x1530 [ 489.666485][T11265] handle_softirqs+0x216/0x8e0 [ 489.707783][T11265] run_ksoftirqd+0x3a/0x60 [ 489.724188][T11265] smpboot_thread_fn+0x3f7/0xae0 [ 489.736535][T11265] kthread+0x3c5/0x780 [ 489.740853][T11265] ret_from_fork+0x56d/0x730 [ 489.746972][T11265] ret_from_fork_asm+0x1a/0x30 [ 490.097943][T11282] mkiss: ax0: crc mode is auto. [ 495.729808][T11362] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1066'. [ 495.760410][T11359] FAULT_INJECTION: forcing a failure. [ 495.760410][T11359] name failslab, interval 1, probability 0, space 0, times 0 [ 495.818745][T11359] CPU: 0 UID: 0 PID: 11359 Comm: syz.0.1065 Not tainted syzkaller #0 PREEMPT(full) [ 495.818767][T11359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 495.818777][T11359] Call Trace: [ 495.818782][T11359] [ 495.818788][T11359] dump_stack_lvl+0x16c/0x1f0 [ 495.818813][T11359] should_fail_ex+0x512/0x640 [ 495.818835][T11359] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 495.818854][T11359] should_failslab+0xc2/0x120 [ 495.818873][T11359] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 495.818889][T11359] ? ptlock_alloc+0x1f/0x70 [ 495.818906][T11359] ptlock_alloc+0x1f/0x70 [ 495.818919][T11359] pte_alloc_one+0x82/0x3a0 [ 495.818935][T11359] __pte_alloc+0x6d/0x3c0 [ 495.818953][T11359] ? __pfx___pte_alloc+0x10/0x10 [ 495.818973][T11359] ? do_raw_spin_lock+0x12c/0x2b0 [ 495.818996][T11359] do_pte_missing+0x285a/0x3ba0 [ 495.819010][T11359] ? do_raw_spin_unlock+0x172/0x230 [ 495.819031][T11359] ? _raw_spin_unlock+0x28/0x50 [ 495.819049][T11359] ? __pmd_alloc+0x3fb/0x930 [ 495.819070][T11359] __handle_mm_fault+0x152a/0x2a50 [ 495.819093][T11359] ? __pfx___handle_mm_fault+0x10/0x10 [ 495.819122][T11359] handle_mm_fault+0x589/0xd10 [ 495.819140][T11359] __get_user_pages+0x551/0x34a0 [ 495.819168][T11359] ? __pfx___get_user_pages+0x10/0x10 [ 495.819194][T11359] populate_vma_page_range+0x267/0x3f0 [ 495.819216][T11359] ? __pfx_populate_vma_page_range+0x10/0x10 [ 495.819237][T11359] ? __pfx_find_vma_intersection+0x10/0x10 [ 495.819257][T11359] ? do_mmap+0x69c/0x1210 [ 495.819278][T11359] __mm_populate+0x1d8/0x380 [ 495.819292][T11359] ? __pfx___mm_populate+0x10/0x10 [ 495.819306][T11359] ? up_write+0x1b2/0x520 [ 495.819333][T11359] vm_mmap_pgoff+0x37f/0x470 [ 495.819356][T11359] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 495.819377][T11359] ? __fget_files+0x20e/0x3c0 [ 495.819397][T11359] ksys_mmap_pgoff+0x7d/0x5c0 [ 495.819416][T11359] ? __pfx_ksys_write+0x10/0x10 [ 495.819434][T11359] __x64_sys_mmap+0x125/0x190 [ 495.819458][T11359] do_syscall_64+0xcd/0x4c0 [ 495.819480][T11359] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 495.819495][T11359] RIP: 0033:0x7f755918eec9 [ 495.819506][T11359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 495.819520][T11359] RSP: 002b:00007f7559fc6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 495.819534][T11359] RAX: ffffffffffffffda RBX: 00007f75593e5fa0 RCX: 00007f755918eec9 [ 495.819543][T11359] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 495.819551][T11359] RBP: 00007f7559fc6090 R08: 0000000000000002 R09: 0000000000008000 [ 495.819560][T11359] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001 [ 495.819568][T11359] R13: 00007f75593e6038 R14: 00007f75593e5fa0 R15: 00007ffe9ff803c8 [ 495.819586][T11359] [ 496.141942][T11364] usb usb36: usbfs: process 11364 (syz.3.1066) did not claim interface 0 before use [ 496.267138][T11354] mkiss: ax0: crc mode is auto. [ 498.251085][T11393] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1073'. [ 499.190083][T11403] netlink: 'syz.3.1076': attribute type 64 has an invalid length. [ 499.211466][T11403] netlink: 74 bytes leftover after parsing attributes in process `syz.3.1076'. [ 500.639880][T11417] mkiss: ax0: crc mode is auto. [ 500.682035][T11422] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1079'. [ 501.622457][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.638757][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 504.745913][T11481] mkiss: ax0: crc mode is auto. [ 505.238954][T11485] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1093'. [ 505.779721][T11494] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1095'. [ 508.281426][T11530] mkiss: ax0: crc mode is auto. [ 509.933761][T11551] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1108'. [ 510.715354][T11560] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1110'. [ 510.883796][T11559] zswap: compressor not available [ 510.913308][T11566] usb usb36: usbfs: process 11566 (syz.0.1110) did not claim interface 0 before use [ 514.175081][T11616] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1122'. [ 514.339771][T11617] zswap: compressor not available [ 523.935492][T11725] netlink: 'syz.0.1148': attribute type 64 has an invalid length. [ 524.023961][T11725] netlink: 74 bytes leftover after parsing attributes in process `syz.0.1148'. [ 525.375962][T11741] mkiss: ax0: crc mode is auto. [ 528.794613][T11780] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1160'. [ 531.863974][T11808] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1164'. [ 535.460454][T11846] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1172'. [ 536.582912][T11861] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1175'. [ 541.947268][T11928] ======================================================= [ 541.947268][T11928] WARNING: The mand mount option has been deprecated and [ 541.947268][T11928] and is ignored by this kernel. Remove the mand [ 541.947268][T11928] option from the mount to silence this warning. [ 541.947268][T11928] ======================================================= [ 547.289904][T11988] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1212'. [ 552.999415][T12056] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1222'. [ 554.695885][T12067] zswap: compressor  not available [ 555.276370][T12079] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1225'. [ 557.114823][T12103] mtrr: base(0x40000000000) is not aligned on a size(0x0000) boundary [ 558.137271][T12116] FAULT_INJECTION: forcing a failure. [ 558.137271][T12116] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 558.156422][T12116] CPU: 1 UID: 0 PID: 12116 Comm: syz.0.1234 Not tainted syzkaller #0 PREEMPT(full) [ 558.156455][T12116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 558.156469][T12116] Call Trace: [ 558.156478][T12116] [ 558.156487][T12116] dump_stack_lvl+0x16c/0x1f0 [ 558.156527][T12116] should_fail_ex+0x512/0x640 [ 558.156569][T12116] strncpy_from_user+0x3b/0x2e0 [ 558.156606][T12116] getname_flags.part.0+0x8f/0x550 [ 558.156648][T12116] __x64_sys_mkdir+0xd8/0x140 [ 558.156675][T12116] do_syscall_64+0xcd/0x4c0 [ 558.156719][T12116] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 558.156742][T12116] RIP: 0033:0x7f755918eec9 [ 558.156762][T12116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 558.156783][T12116] RSP: 002b:00007f7559fa5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 558.156806][T12116] RAX: ffffffffffffffda RBX: 00007f75593e6090 RCX: 00007f755918eec9 [ 558.156822][T12116] RDX: 0000000000000000 RSI: 000000000000000a RDI: 00002000000001c0 [ 558.156835][T12116] RBP: 00007f7559fa5090 R08: 0000000000000000 R09: 0000000000000000 [ 558.156849][T12116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 558.156862][T12116] R13: 00007f75593e6128 R14: 00007f75593e6090 R15: 00007ffe9ff803c8 [ 558.156895][T12116] [ 560.294459][T12151] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1244'. [ 561.239892][T12164] FAULT_INJECTION: forcing a failure. [ 561.239892][T12164] name failslab, interval 1, probability 0, space 0, times 0 [ 561.370469][T12164] CPU: 1 UID: 0 PID: 12164 Comm: syz.1.1247 Not tainted syzkaller #0 PREEMPT(full) [ 561.370512][T12164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 561.370527][T12164] Call Trace: [ 561.370535][T12164] [ 561.370544][T12164] dump_stack_lvl+0x16c/0x1f0 [ 561.370586][T12164] should_fail_ex+0x512/0x640 [ 561.370621][T12164] ? __kvmalloc_node_noprof+0x124/0x620 [ 561.370653][T12164] should_failslab+0xc2/0x120 [ 561.370684][T12164] __kvmalloc_node_noprof+0x137/0x620 [ 561.370713][T12164] ? seq_read_iter+0x826/0x12c0 [ 561.370744][T12164] ? seq_read_iter+0x826/0x12c0 [ 561.370765][T12164] seq_read_iter+0x826/0x12c0 [ 561.370804][T12164] kernfs_fop_read_iter+0x46c/0x610 [ 561.370830][T12164] ? rw_verify_area+0xcf/0x6c0 [ 561.370859][T12164] vfs_read+0x8bf/0xcf0 [ 561.370891][T12164] ? __pfx___mutex_lock+0x10/0x10 [ 561.370928][T12164] ? __pfx_vfs_read+0x10/0x10 [ 561.370979][T12164] ksys_read+0x12a/0x250 [ 561.371007][T12164] ? __pfx_ksys_read+0x10/0x10 [ 561.371044][T12164] do_syscall_64+0xcd/0x4c0 [ 561.371082][T12164] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 561.371107][T12164] RIP: 0033:0x7faacdb8eec9 [ 561.371126][T12164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 561.371149][T12164] RSP: 002b:00007faaceac8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 561.371171][T12164] RAX: ffffffffffffffda RBX: 00007faacdde5fa0 RCX: 00007faacdb8eec9 [ 561.371188][T12164] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000003 [ 561.371202][T12164] RBP: 00007faaceac8090 R08: 0000000000000000 R09: 0000000000000000 [ 561.371216][T12164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 561.371230][T12164] R13: 00007faacdde6038 R14: 00007faacdde5fa0 R15: 00007ffd5c90efa8 [ 561.371261][T12164] [ 563.071669][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.078579][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 563.962374][T12195] ima: policy update failed [ 563.974440][ T30] audit: type=1802 audit(1758661274.490:13): pid=12195 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1256" res=0 errno=0 [ 564.021469][T12195] ima: policy update failed [ 564.044886][ T30] audit: type=1802 audit(1758661274.560:14): pid=12195 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1256" res=0 errno=0 [ 569.159331][T12277] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 569.212543][T12287] netlink: 'syz.0.1271': attribute type 11 has an invalid length. [ 569.220937][T12287] netlink: 'syz.0.1271': attribute type 11 has an invalid length. [ 569.510138][T12294] FAULT_INJECTION: forcing a failure. [ 569.510138][T12294] name failslab, interval 1, probability 0, space 0, times 0 [ 569.524849][T12294] CPU: 0 UID: 0 PID: 12294 Comm: syz.1.1274 Not tainted syzkaller #0 PREEMPT(full) [ 569.524871][T12294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 569.524880][T12294] Call Trace: [ 569.524886][T12294] [ 569.524891][T12294] dump_stack_lvl+0x16c/0x1f0 [ 569.524917][T12294] should_fail_ex+0x512/0x640 [ 569.524939][T12294] ? __kmalloc_noprof+0xbf/0x510 [ 569.524957][T12294] ? iter_file_splice_write+0x1cc/0x12e0 [ 569.524975][T12294] should_failslab+0xc2/0x120 [ 569.524993][T12294] __kmalloc_noprof+0xd2/0x510 [ 569.525013][T12294] iter_file_splice_write+0x1cc/0x12e0 [ 569.525031][T12294] ? kfree+0x2b4/0x4d0 [ 569.525049][T12294] ? __pfx_iter_file_splice_write+0x10/0x10 [ 569.525065][T12294] ? __lock_acquire+0xb97/0x1ce0 [ 569.525085][T12294] ? __pfx_copy_splice_read+0x10/0x10 [ 569.525109][T12294] ? __pfx_iter_file_splice_write+0x10/0x10 [ 569.525125][T12294] direct_splice_actor+0x192/0x6c0 [ 569.525141][T12294] splice_direct_to_actor+0x342/0xa30 [ 569.525157][T12294] ? __pfx_direct_splice_actor+0x10/0x10 [ 569.525175][T12294] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 569.525188][T12294] ? get_pid_task+0xfc/0x250 [ 569.525212][T12294] do_splice_direct+0x174/0x240 [ 569.525233][T12294] ? __pfx_do_splice_direct+0x10/0x10 [ 569.525247][T12294] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 569.525264][T12294] ? rw_verify_area+0xcf/0x6c0 [ 569.525280][T12294] do_sendfile+0xb06/0xe50 [ 569.525299][T12294] ? __pfx_do_sendfile+0x10/0x10 [ 569.525314][T12294] ? __fget_files+0x20e/0x3c0 [ 569.525334][T12294] __x64_sys_sendfile64+0x1d8/0x220 [ 569.525352][T12294] ? ksys_write+0x1ac/0x250 [ 569.525367][T12294] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 569.525392][T12294] do_syscall_64+0xcd/0x4c0 [ 569.525414][T12294] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 569.525429][T12294] RIP: 0033:0x7faacdb8eec9 [ 569.525441][T12294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 569.525454][T12294] RSP: 002b:00007faaceac8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 569.525468][T12294] RAX: ffffffffffffffda RBX: 00007faacdde5fa0 RCX: 00007faacdb8eec9 [ 569.525477][T12294] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 569.525485][T12294] RBP: 00007faaceac8090 R08: 0000000000000000 R09: 0000000000000000 [ 569.525493][T12294] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 569.525500][T12294] R13: 00007faacdde6038 R14: 00007faacdde5fa0 R15: 00007ffd5c90efa8 [ 569.525518][T12294] [ 570.460747][T12300] input: f as /devices/virtual/input/input12 [ 570.619956][T12303] netlink: 'syz.2.1277': attribute type 28 has an invalid length. [ 570.669047][T12303] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1277'. [ 572.984220][T12333] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1284'. [ 576.930184][T12371] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1290'. [ 577.371008][T12376] synth uevent: /devices/platform/vivid.0/video4linux/vbi4: unknown uevent action string [ 577.382466][T12376] video4linux vbi4: uevent: failed to send synthetic uevent: -22 [ 582.626429][T12432] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1304'. [ 583.519405][T12443] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1305'. [ 586.051371][T12474] __vm_enough_memory: pid: 12474, comm: syz.1.1311, bytes: 4398046511104 not enough memory for the allocation [ 586.443390][T12480] zero sized request [ 586.448086][T12480] zero sized request [ 589.337975][T12522] program syz.0.1322 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 590.231798][T12540] __vm_enough_memory: pid: 12540, comm: syz.0.1324, bytes: 4398046511104 not enough memory for the allocation [ 590.678092][T12545] sp0: Synchronizing with TNC [ 591.039743][T12539] netlink: 'syz.0.1324': attribute type 15 has an invalid length. [ 591.053387][T12539] netlink: 186 bytes leftover after parsing attributes in process `syz.0.1324'. [ 594.679518][T12612] sp0: Synchronizing with TNC [ 594.757419][T12613] FAULT_INJECTION: forcing a failure. [ 594.757419][T12613] name failslab, interval 1, probability 0, space 0, times 0 [ 594.802560][T12613] CPU: 0 UID: 0 PID: 12613 Comm: syz.0.1340 Not tainted syzkaller #0 PREEMPT(full) [ 594.802587][T12613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 594.802597][T12613] Call Trace: [ 594.802603][T12613] [ 594.802609][T12613] dump_stack_lvl+0x16c/0x1f0 [ 594.802636][T12613] should_fail_ex+0x512/0x640 [ 594.802658][T12613] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 594.802677][T12613] should_failslab+0xc2/0x120 [ 594.802697][T12613] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 594.802714][T12613] ? security_file_alloc+0x34/0x2b0 [ 594.802738][T12613] security_file_alloc+0x34/0x2b0 [ 594.802757][T12613] init_file+0x93/0x4c0 [ 594.802778][T12613] alloc_empty_file+0x73/0x1e0 [ 594.802799][T12613] alloc_file_pseudo+0x13a/0x230 [ 594.802820][T12613] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 594.802840][T12613] ? alloc_fd+0x471/0x7d0 [ 594.802858][T12613] sock_alloc_file+0x50/0x210 [ 594.802872][T12613] __sys_socket+0x1c0/0x260 [ 594.802887][T12613] ? __fget_files+0x20e/0x3c0 [ 594.802901][T12613] ? __pfx___sys_socket+0x10/0x10 [ 594.802917][T12613] ? xfd_validate_state+0x61/0x180 [ 594.802942][T12613] __x64_sys_socket+0x72/0xb0 [ 594.802974][T12613] ? lockdep_hardirqs_on+0x7c/0x110 [ 594.802995][T12613] do_syscall_64+0xcd/0x4c0 [ 594.803018][T12613] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 594.803033][T12613] RIP: 0033:0x7f755918eec9 [ 594.803045][T12613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 594.803059][T12613] RSP: 002b:00007f7559fa5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 594.803073][T12613] RAX: ffffffffffffffda RBX: 00007f75593e6090 RCX: 00007f755918eec9 [ 594.803082][T12613] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 594.803090][T12613] RBP: 00007f7559211f91 R08: 0000000000000000 R09: 0000000000000000 [ 594.803098][T12613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 594.803107][T12613] R13: 00007f75593e6128 R14: 00007f75593e6090 R15: 00007ffe9ff803c8 [ 594.803130][T12613] [ 595.288174][ T5870] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 599.534481][T12741] sp0: Synchronizing with TNC [ 605.061426][T12839] mkiss: ax0: crc mode is auto. [ 605.951311][ T30] audit: type=1804 audit(1758661316.470:15): pid=12862 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1364" name="/newroot/sys/kernel/tracing/set_event" dev="tracefs" ino=14 res=1 errno=0 [ 605.974296][ C1] vkms_vblank_simulate: vblank timer overrun [ 606.165379][T12859] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1364'. [ 609.957578][T12918] QAT: Stopping all acceleration devices. [ 610.175958][T12917] mkiss: ax0: crc mode is auto. [ 610.322484][T12922] FAULT_INJECTION: forcing a failure. [ 610.322484][T12922] name failslab, interval 1, probability 0, space 0, times 0 [ 610.335391][T12922] CPU: 1 UID: 0 PID: 12922 Comm: syz.3.1374 Not tainted syzkaller #0 PREEMPT(full) [ 610.335426][T12922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 610.335441][T12922] Call Trace: [ 610.335449][T12922] [ 610.335459][T12922] dump_stack_lvl+0x16c/0x1f0 [ 610.335508][T12922] should_fail_ex+0x512/0x640 [ 610.335546][T12922] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 610.335583][T12922] should_failslab+0xc2/0x120 [ 610.335617][T12922] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 610.335647][T12922] ? ktime_get_coarse_real_ts64_mg+0x240/0x300 [ 610.335683][T12922] ? __d_alloc+0x32/0xae0 [ 610.335719][T12922] __d_alloc+0x32/0xae0 [ 610.335747][T12922] ? look_up_lock_class+0x59/0x150 [ 610.335788][T12922] d_alloc_pseudo+0x1c/0xc0 [ 610.335826][T12922] alloc_file_pseudo+0xcf/0x230 [ 610.335868][T12922] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 610.335903][T12922] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 610.335942][T12922] create_pipe_files+0x364/0x9a0 [ 610.335982][T12922] do_pipe2+0xaf/0x1c0 [ 610.336019][T12922] ? __pfx_do_pipe2+0x10/0x10 [ 610.336052][T12922] ? xfd_validate_state+0x61/0x180 [ 610.336089][T12922] ? __pfx_ksys_write+0x10/0x10 [ 610.336129][T12922] __x64_sys_pipe+0x33/0x50 [ 610.336161][T12922] do_syscall_64+0xcd/0x4c0 [ 610.336202][T12922] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 610.336228][T12922] RIP: 0033:0x7fc30e58eec9 [ 610.336250][T12922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 610.336275][T12922] RSP: 002b:00007fc30f418038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 610.336309][T12922] RAX: ffffffffffffffda RBX: 00007fc30e7e6090 RCX: 00007fc30e58eec9 [ 610.336327][T12922] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 610.336343][T12922] RBP: 00007fc30e611f91 R08: 0000000000000000 R09: 0000000000000000 [ 610.336359][T12922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 610.336375][T12922] R13: 00007fc30e7e6128 R14: 00007fc30e7e6090 R15: 00007ffc83f1ee08 [ 610.336411][T12922] [ 610.543141][ C1] vkms_vblank_simulate: vblank timer overrun [ 614.512325][T12998] mkiss: ax0: crc mode is auto. [ 616.910493][T13019] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 617.337532][T13094] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1398'. [ 623.848866][T13170] kAFS: Invalid Command on /proc/fs/afs/cells file [ 624.506710][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.513615][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 625.077152][T13192] mkiss: ax0: crc mode is auto. [ 625.275017][T13183] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 625.284898][T13183] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 625.347422][T13183] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 625.435001][T13183] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 625.468514][T13183] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 625.491032][T13183] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 625.519014][T13183] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 625.593334][T13183] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 625.631904][T13183] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 625.935546][T13197] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR [ 626.898529][T12637] Bluetooth: hci0: command 0x0406 tx timeout [ 627.440647][T13241] FAULT_INJECTION: forcing a failure. [ 627.440647][T13241] name failslab, interval 1, probability 0, space 0, times 0 [ 627.455579][T13241] CPU: 1 UID: 0 PID: 13241 Comm: syz.3.1421 Not tainted syzkaller #0 PREEMPT(full) [ 627.455609][T13241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 627.455621][T13241] Call Trace: [ 627.455629][T13241] [ 627.455638][T13241] dump_stack_lvl+0x16c/0x1f0 [ 627.455679][T13241] should_fail_ex+0x512/0x640 [ 627.455707][T13241] ? __kvmalloc_node_noprof+0x124/0x620 [ 627.455725][T13241] should_failslab+0xc2/0x120 [ 627.455744][T13241] __kvmalloc_node_noprof+0x137/0x620 [ 627.455760][T13241] ? seq_read_iter+0x826/0x12c0 [ 627.455777][T13241] ? seq_read_iter+0x826/0x12c0 [ 627.455789][T13241] seq_read_iter+0x826/0x12c0 [ 627.455811][T13241] seq_read+0x3a3/0x570 [ 627.455825][T13241] ? __pfx_seq_read+0x10/0x10 [ 627.455852][T13241] full_proxy_read+0x12e/0x1a0 [ 627.455881][T13241] ? __pfx_full_proxy_read+0x10/0x10 [ 627.455902][T13241] vfs_read+0x1e1/0xcf0 [ 627.455921][T13241] ? __pfx___mutex_lock+0x10/0x10 [ 627.455942][T13241] ? __pfx_vfs_read+0x10/0x10 [ 627.455962][T13241] ? __fget_files+0x20e/0x3c0 [ 627.455983][T13241] ksys_read+0x12a/0x250 [ 627.455998][T13241] ? __pfx_ksys_read+0x10/0x10 [ 627.456019][T13241] do_syscall_64+0xcd/0x4c0 [ 627.456041][T13241] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 627.456056][T13241] RIP: 0033:0x7fc30e58eec9 [ 627.456068][T13241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 627.456081][T13241] RSP: 002b:00007fc30f418038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 627.456094][T13241] RAX: ffffffffffffffda RBX: 00007fc30e7e6090 RCX: 00007fc30e58eec9 [ 627.456104][T13241] RDX: 00000000000000e4 RSI: 0000200000000080 RDI: 0000000000000005 [ 627.456112][T13241] RBP: 00007fc30f418090 R08: 0000000000000000 R09: 0000000000000000 [ 627.456122][T13241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 627.456130][T13241] R13: 00007fc30e7e6128 R14: 00007fc30e7e6090 R15: 00007ffc83f1ee08 [ 627.456149][T13241] [ 627.674245][ T51] Bluetooth: hci1: command 0x0406 tx timeout [ 627.681750][ T51] Bluetooth: hci3: command 0x0406 tx timeout [ 627.688119][T12637] Bluetooth: hci2: command 0x0406 tx timeout [ 628.978661][T12637] Bluetooth: hci0: command 0x0406 tx timeout [ 629.698802][T12637] Bluetooth: hci2: command 0x0406 tx timeout [ 629.698831][ T5870] Bluetooth: hci3: command 0x0406 tx timeout [ 629.704864][T12637] Bluetooth: hci1: command 0x0406 tx timeout [ 629.823991][T13274] mkiss: ax0: crc mode is auto. [ 630.872207][T13264] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 631.058583][T12637] Bluetooth: hci0: command 0x0406 tx timeout [ 637.053222][T13423] FAULT_INJECTION: forcing a failure. [ 637.053222][T13423] name failslab, interval 1, probability 0, space 0, times 0 [ 637.092334][T13423] CPU: 0 UID: 0 PID: 13423 Comm: syz.0.1447 Not tainted syzkaller #0 PREEMPT(full) [ 637.092372][T13423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 637.092386][T13423] Call Trace: [ 637.092394][T13423] [ 637.092405][T13423] dump_stack_lvl+0x16c/0x1f0 [ 637.092450][T13423] should_fail_ex+0x512/0x640 [ 637.092489][T13423] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 637.092525][T13423] should_failslab+0xc2/0x120 [ 637.092561][T13423] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 637.092593][T13423] ? shmem_alloc_inode+0x25/0x50 [ 637.092631][T13423] ? __pfx_shmem_alloc_inode+0x10/0x10 [ 637.092665][T13423] shmem_alloc_inode+0x25/0x50 [ 637.092699][T13423] alloc_inode+0x61/0x240 [ 637.092742][T13423] new_inode+0x22/0x1c0 [ 637.092784][T13423] shmem_get_inode+0x19a/0xfb0 [ 637.092831][T13423] shmem_mknod+0x1a8/0x450 [ 637.092874][T13423] ? __pfx_shmem_create+0x10/0x10 [ 637.092909][T13423] lookup_open.isra.0+0x11d3/0x1580 [ 637.092945][T13423] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 637.092989][T13423] ? __pfx_down_write+0x10/0x10 [ 637.093013][T13423] ? mnt_get_write_access+0x20c/0x300 [ 637.093056][T13423] path_openat+0x893/0x2cb0 [ 637.093098][T13423] ? __pfx_path_openat+0x10/0x10 [ 637.093132][T13423] ? __lock_acquire+0xb97/0x1ce0 [ 637.093172][T13423] do_filp_open+0x20b/0x470 [ 637.093213][T13423] ? __pfx_do_filp_open+0x10/0x10 [ 637.093273][T13423] ? _raw_spin_unlock+0x28/0x50 [ 637.093310][T13423] ? alloc_fd+0x471/0x7d0 [ 637.093348][T13423] do_sys_openat2+0x11b/0x1d0 [ 637.093386][T13423] ? __pfx_do_sys_openat2+0x10/0x10 [ 637.093432][T13423] __x64_sys_open+0x153/0x1e0 [ 637.093454][T13423] ? __pfx___x64_sys_open+0x10/0x10 [ 637.093479][T13423] ? rcu_is_watching+0x12/0xc0 [ 637.093496][T13423] do_syscall_64+0xcd/0x4c0 [ 637.093518][T13423] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 637.093537][T13423] RIP: 0033:0x7f755918eec9 [ 637.093551][T13423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 637.093566][T13423] RSP: 002b:00007f7559fc6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 637.093580][T13423] RAX: ffffffffffffffda RBX: 00007f75593e5fa0 RCX: 00007f755918eec9 [ 637.093590][T13423] RDX: 0000000000000000 RSI: 0000000000149443 RDI: 0000000000000000 [ 637.093599][T13423] RBP: 00007f7559211f91 R08: 0000000000000000 R09: 0000000000000000 [ 637.093608][T13423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 637.093616][T13423] R13: 00007f75593e6038 R14: 00007f75593e5fa0 R15: 00007ffe9ff803c8 [ 637.093636][T13423] [ 639.227518][T13460] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1454'. [ 640.996296][T13493] ICMPv6: process `syz.3.1458' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 641.113549][T13489] mkiss: ax0: crc mode is auto. [ 644.930637][T13550] mkiss: ax0: crc mode is auto. [ 645.816755][T13563] random: crng reseeded on system resumption [ 645.877391][T13570] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1469'. [ 645.904993][T13570] cifs: Unknown parameter 'no+ 1`rsFn)aHāh`9kA}1\D@.ZCg^' [ 647.754624][T13597] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1476'. [ 648.306625][T13611] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1478'. [ 648.544494][T13616] mkiss: ax0: crc mode is auto. [ 653.576335][T13678] mkiss: ax0: crc mode is auto. [ 654.034054][T13690] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1491'. [ 656.943042][T13744] FAULT_INJECTION: forcing a failure. [ 656.943042][T13744] name failslab, interval 1, probability 0, space 0, times 0 [ 656.955810][T13744] CPU: 0 UID: 0 PID: 13744 Comm: syz.0.1498 Not tainted syzkaller #0 PREEMPT(full) [ 656.955830][T13744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 656.955839][T13744] Call Trace: [ 656.955844][T13744] [ 656.955850][T13744] dump_stack_lvl+0x16c/0x1f0 [ 656.955874][T13744] should_fail_ex+0x512/0x640 [ 656.955896][T13744] ? fs_reclaim_acquire+0xae/0x150 [ 656.955917][T13744] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 656.955938][T13744] should_failslab+0xc2/0x120 [ 656.955956][T13744] __kmalloc_noprof+0xd2/0x510 [ 656.955982][T13744] tomoyo_realpath_from_path+0xc2/0x6e0 [ 656.956003][T13744] ? tomoyo_profile+0x47/0x60 [ 656.956018][T13744] tomoyo_path_number_perm+0x245/0x580 [ 656.956034][T13744] ? tomoyo_path_number_perm+0x237/0x580 [ 656.956052][T13744] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 656.956070][T13744] ? find_held_lock+0x2b/0x80 [ 656.956101][T13744] ? ksys_semctl.constprop.0+0x152/0x2f0 [ 656.956117][T13744] ? hook_file_ioctl_common+0x145/0x410 [ 656.956144][T13744] security_file_ioctl+0x9b/0x240 [ 656.956162][T13744] __x64_sys_ioctl+0xb7/0x210 [ 656.956186][T13744] do_syscall_64+0xcd/0x4c0 [ 656.956208][T13744] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 656.956222][T13744] RIP: 0033:0x7f755918eec9 [ 656.956234][T13744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 656.956248][T13744] RSP: 002b:00007f7559fc6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 656.956261][T13744] RAX: ffffffffffffffda RBX: 00007f75593e5fa0 RCX: 00007f755918eec9 [ 656.956270][T13744] RDX: 0000000000000000 RSI: 00000000c1004110 RDI: 0000000000000008 [ 656.956278][T13744] RBP: 00007f7559fc6090 R08: 0000000000000000 R09: 0000000000000000 [ 656.956287][T13744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 656.956294][T13744] R13: 00007f75593e6038 R14: 00007f75593e5fa0 R15: 00007ffe9ff803c8 [ 656.956312][T13744] [ 656.956319][T13744] ERROR: Out of memory at tomoyo_realpath_from_path. [ 658.431652][T13753] mkiss: ax0: crc mode is auto. [ 662.380777][T13863] mkiss: ax0: crc mode is auto. [ 665.952754][T13971] mkiss: ax0: crc mode is auto. [ 667.990897][T14013] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1532'. [ 670.143241][T14043] mkiss: ax0: crc mode is auto. [ 670.353295][T14054] FAULT_INJECTION: forcing a failure. [ 670.353295][T14054] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 670.370729][T14054] CPU: 1 UID: 0 PID: 14054 Comm: syz.0.1539 Not tainted syzkaller #0 PREEMPT(full) [ 670.370763][T14054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 670.370778][T14054] Call Trace: [ 670.370786][T14054] [ 670.370794][T14054] dump_stack_lvl+0x16c/0x1f0 [ 670.370835][T14054] should_fail_ex+0x512/0x640 [ 670.370884][T14054] _copy_from_user+0x2e/0xd0 [ 670.370912][T14054] copy_msghdr_from_user+0x98/0x160 [ 670.370948][T14054] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 670.370989][T14054] ? kfree+0x24f/0x4d0 [ 670.371011][T14054] ? __lock_acquire+0x62e/0x1ce0 [ 670.371049][T14054] ___sys_recvmsg+0xdb/0x1a0 [ 670.371084][T14054] ? __pfx____sys_recvmsg+0x10/0x10 [ 670.371137][T14054] ? __pfx___might_resched+0x10/0x10 [ 670.371169][T14054] do_recvmmsg+0x2fe/0x750 [ 670.371209][T14054] ? __pfx_do_recvmmsg+0x10/0x10 [ 670.371252][T14054] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 670.371298][T14054] ? __fget_files+0x20e/0x3c0 [ 670.371332][T14054] __x64_sys_recvmmsg+0x22a/0x280 [ 670.371369][T14054] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 670.371413][T14054] do_syscall_64+0xcd/0x4c0 [ 670.371451][T14054] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 670.371475][T14054] RIP: 0033:0x7f755918eec9 [ 670.371495][T14054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 670.371517][T14054] RSP: 002b:00007f7559fa5038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 670.371540][T14054] RAX: ffffffffffffffda RBX: 00007f75593e6090 RCX: 00007f755918eec9 [ 670.371557][T14054] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 670.371571][T14054] RBP: 00007f7559fa5090 R08: 0000000000000000 R09: 0000000000000000 [ 670.371586][T14054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 670.371600][T14054] R13: 00007f75593e6128 R14: 00007f75593e6090 R15: 00007ffe9ff803c8 [ 670.371633][T14054] [ 673.245881][T14113] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1549'. [ 673.781919][T14128] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1547'. [ 674.761679][T14135] mkiss: ax0: crc mode is auto. [ 677.528798][T14181] FAULT_INJECTION: forcing a failure. [ 677.528798][T14181] name failslab, interval 1, probability 0, space 0, times 0 [ 677.563617][T14181] CPU: 1 UID: 0 PID: 14181 Comm: syz.3.1557 Not tainted syzkaller #0 PREEMPT(full) [ 677.563656][T14181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 677.563671][T14181] Call Trace: [ 677.563679][T14181] [ 677.563689][T14181] dump_stack_lvl+0x16c/0x1f0 [ 677.563735][T14181] should_fail_ex+0x512/0x640 [ 677.563771][T14181] ? __kmalloc_noprof+0xbf/0x510 [ 677.563804][T14181] ? rfkill_alloc+0xac/0x330 [ 677.563829][T14181] should_failslab+0xc2/0x120 [ 677.563861][T14181] __kmalloc_noprof+0xd2/0x510 [ 677.563897][T14181] rfkill_alloc+0xac/0x330 [ 677.563928][T14181] nfc_register_device+0xe8/0x3c0 [ 677.563968][T14181] nci_register_device+0x7f1/0xb80 [ 677.564004][T14181] ? __pfx_nci_register_device+0x10/0x10 [ 677.564043][T14181] ? lockdep_init_map_type+0x5c/0x280 [ 677.564085][T14181] virtual_ncidev_open+0x141/0x220 [ 677.564119][T14181] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 677.564150][T14181] misc_open+0x35a/0x420 [ 677.564182][T14181] ? __pfx_misc_open+0x10/0x10 [ 677.564229][T14181] chrdev_open+0x231/0x6a0 [ 677.564263][T14181] ? __pfx_apparmor_file_open+0x10/0x10 [ 677.564302][T14181] ? __pfx_chrdev_open+0x10/0x10 [ 677.564340][T14181] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 677.564380][T14181] do_dentry_open+0x97f/0x1530 [ 677.564414][T14181] ? __pfx_chrdev_open+0x10/0x10 [ 677.564456][T14181] vfs_open+0x82/0x3f0 [ 677.564499][T14181] path_openat+0x1de4/0x2cb0 [ 677.564543][T14181] ? __pfx_path_openat+0x10/0x10 [ 677.564591][T14181] do_filp_open+0x20b/0x470 [ 677.564624][T14181] ? __pfx_do_filp_open+0x10/0x10 [ 677.564684][T14181] ? alloc_fd+0x471/0x7d0 [ 677.564724][T14181] do_sys_openat2+0x11b/0x1d0 [ 677.564758][T14181] ? __pfx_do_sys_openat2+0x10/0x10 [ 677.564804][T14181] __x64_sys_openat+0x174/0x210 [ 677.564824][T14181] ? __pfx___x64_sys_openat+0x10/0x10 [ 677.564859][T14181] do_syscall_64+0xcd/0x4c0 [ 677.564897][T14181] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 677.564922][T14181] RIP: 0033:0x7fc30e58eec9 [ 677.564945][T14181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 677.564982][T14181] RSP: 002b:00007fc30f439038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 677.565008][T14181] RAX: ffffffffffffffda RBX: 00007fc30e7e5fa0 RCX: 00007fc30e58eec9 [ 677.565027][T14181] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 677.565044][T14181] RBP: 00007fc30e611f91 R08: 0000000000000000 R09: 0000000000000000 [ 677.565069][T14181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 677.565085][T14181] R13: 00007fc30e7e6038 R14: 00007fc30e7e5fa0 R15: 00007ffc83f1ee08 [ 677.565122][T14181] [ 678.262073][T14177] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1556'. [ 678.410590][T14178] MTRR 1 not used [ 679.616265][T14210] mkiss: ax0: crc mode is auto. [ 680.612472][T14226] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1563'. [ 682.660394][T14248] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1567'. [ 684.119035][T14271] FAULT_INJECTION: forcing a failure. [ 684.119035][T14271] name fail_futex, interval 1, probability 0, space 0, times 0 [ 684.219699][T14271] CPU: 0 UID: 0 PID: 14271 Comm: syz.3.1571 Not tainted syzkaller #0 PREEMPT(full) [ 684.219733][T14271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 684.219748][T14271] Call Trace: [ 684.219756][T14271] [ 684.219765][T14271] dump_stack_lvl+0x16c/0x1f0 [ 684.219806][T14271] should_fail_ex+0x512/0x640 [ 684.219846][T14271] get_futex_key+0x1d0/0x1560 [ 684.219881][T14271] ? __pfx_get_futex_key+0x10/0x10 [ 684.219922][T14271] futex_wait_setup+0x9d/0x550 [ 684.219969][T14271] __futex_wait+0x194/0x2f0 [ 684.220005][T14271] ? __pfx___futex_wait+0x10/0x10 [ 684.220047][T14271] ? __pfx_futex_wake_mark+0x10/0x10 [ 684.220092][T14271] ? futex_private_hash_put+0x176/0x300 [ 684.220126][T14271] ? futex_private_hash_put+0x18a/0x300 [ 684.220157][T14271] futex_wait+0xe8/0x380 [ 684.220191][T14271] ? __pfx_futex_wait+0x10/0x10 [ 684.220237][T14271] ? do_vfs_ioctl+0x128/0x14f0 [ 684.220278][T14271] do_futex+0x229/0x350 [ 684.220309][T14271] ? __pfx_do_futex+0x10/0x10 [ 684.220341][T14271] ? find_held_lock+0x2b/0x80 [ 684.220369][T14271] __x64_sys_futex+0x1e0/0x4c0 [ 684.220403][T14271] ? __fget_files+0x20e/0x3c0 [ 684.220429][T14271] ? __pfx___x64_sys_futex+0x10/0x10 [ 684.220463][T14271] ? fput+0x9b/0xd0 [ 684.220502][T14271] do_syscall_64+0xcd/0x4c0 [ 684.220540][T14271] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 684.220566][T14271] RIP: 0033:0x7fc30e58eec9 [ 684.220585][T14271] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 684.220608][T14271] RSP: 002b:00007fc30f3f70e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 684.220631][T14271] RAX: ffffffffffffffda RBX: 00007fc30e7e6188 RCX: 00007fc30e58eec9 [ 684.220647][T14271] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fc30e7e6188 [ 684.220663][T14271] RBP: 00007fc30e7e6180 R08: 0000000000000000 R09: 0000000000000000 [ 684.220678][T14271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 684.220693][T14271] R13: 00007fc30e7e6218 R14: 00007ffc83f1ed20 R15: 00007ffc83f1ee08 [ 684.220727][T14271] [ 685.422421][T14291] mkiss: ax0: crc mode is auto. [ 685.945299][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 685.952134][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 687.099561][T14331] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1579'. [ 687.926669][T14342] zswap: compressor 000 not available [ 689.246185][T14396] mkiss: ax0: crc mode is auto. [ 691.574456][T14432] FAULT_INJECTION: forcing a failure. [ 691.574456][T14432] name failslab, interval 1, probability 0, space 0, times 0 [ 691.587335][T14432] CPU: 1 UID: 0 PID: 14432 Comm: syz.0.1590 Not tainted syzkaller #0 PREEMPT(full) [ 691.587369][T14432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 691.587383][T14432] Call Trace: [ 691.587391][T14432] [ 691.587400][T14432] dump_stack_lvl+0x16c/0x1f0 [ 691.587451][T14432] should_fail_ex+0x512/0x640 [ 691.587490][T14432] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 691.587527][T14432] should_failslab+0xc2/0x120 [ 691.587571][T14432] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 691.587603][T14432] ? kvasprintf_const+0x66/0x1a0 [ 691.587636][T14432] kvasprintf+0xbc/0x160 [ 691.587661][T14432] ? __pfx_kvasprintf+0x10/0x10 [ 691.587688][T14432] ? find_held_lock+0x2b/0x80 [ 691.587720][T14432] ? rcu_read_unlock+0x17/0x60 [ 691.587756][T14432] kvasprintf_const+0x66/0x1a0 [ 691.587785][T14432] kobject_set_name_vargs+0x5a/0x140 [ 691.587813][T14432] dev_set_name+0xc7/0x100 [ 691.587841][T14432] ? __pfx_dev_set_name+0x10/0x10 [ 691.587866][T14432] ? rcu_is_watching+0x12/0xc0 [ 691.587920][T14432] ? rcu_is_watching+0x12/0xc0 [ 691.587946][T14432] ? trace_kmalloc+0x2b/0xd0 [ 691.587975][T14432] ? __kmalloc_noprof.cold+0x5c/0x61 [ 691.588011][T14432] ? wiphy_new_nm+0x797/0x2190 [ 691.588053][T14432] wiphy_new_nm+0x811/0x2190 [ 691.588089][T14432] ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10 [ 691.588126][T14432] ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10 [ 691.588178][T14432] ieee80211_alloc_hw_nm+0x1b7a/0x2260 [ 691.588222][T14432] ? __local_bh_enable_ip+0xa4/0x120 [ 691.588256][T14432] mac80211_hwsim_new_radio+0x1d4/0x54d0 [ 691.588301][T14432] ? __asan_memset+0x23/0x50 [ 691.588324][T14432] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 691.588360][T14432] hwsim_new_radio_nl+0xb51/0x12c0 [ 691.588389][T14432] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 691.588429][T14432] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 691.588457][T14432] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 691.588488][T14432] genl_family_rcv_msg_doit+0x209/0x2f0 [ 691.588514][T14432] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 691.588561][T14432] ? bpf_lsm_capable+0x9/0x10 [ 691.588583][T14432] ? security_capable+0x7e/0x260 [ 691.588611][T14432] ? ns_capable+0xd7/0x110 [ 691.588640][T14432] genl_rcv_msg+0x55c/0x800 [ 691.588671][T14432] ? __pfx_genl_rcv_msg+0x10/0x10 [ 691.588698][T14432] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 691.588740][T14432] netlink_rcv_skb+0x158/0x420 [ 691.588776][T14432] ? __pfx_genl_rcv_msg+0x10/0x10 [ 691.588804][T14432] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 691.588860][T14432] ? netlink_deliver_tap+0x1ae/0xd30 [ 691.588901][T14432] genl_rcv+0x28/0x40 [ 691.588930][T14432] netlink_unicast+0x5a7/0x870 [ 691.588971][T14432] ? __pfx_netlink_unicast+0x10/0x10 [ 691.589007][T14432] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 691.589040][T14432] ? __lock_acquire+0xb97/0x1ce0 [ 691.589081][T14432] netlink_sendmsg+0x8d1/0xdd0 [ 691.589123][T14432] ? __pfx_netlink_sendmsg+0x10/0x10 [ 691.589169][T14432] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 691.589202][T14432] ____sys_sendmsg+0xa98/0xc70 [ 691.589231][T14432] ? copy_msghdr_from_user+0x10a/0x160 [ 691.589266][T14432] ? __pfx_____sys_sendmsg+0x10/0x10 [ 691.589311][T14432] ___sys_sendmsg+0x134/0x1d0 [ 691.589349][T14432] ? __pfx____sys_sendmsg+0x10/0x10 [ 691.589433][T14432] __sys_sendmsg+0x16d/0x220 [ 691.589469][T14432] ? __pfx___sys_sendmsg+0x10/0x10 [ 691.589530][T14432] do_syscall_64+0xcd/0x4c0 [ 691.589577][T14432] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 691.589600][T14432] RIP: 0033:0x7f755918eec9 [ 691.589620][T14432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 691.589643][T14432] RSP: 002b:00007f7559fc6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 691.589666][T14432] RAX: ffffffffffffffda RBX: 00007f75593e5fa0 RCX: 00007f755918eec9 [ 691.589683][T14432] RDX: 0000000004040040 RSI: 0000200000000300 RDI: 0000000000000006 [ 691.589704][T14432] RBP: 00007f7559fc6090 R08: 0000000000000000 R09: 0000000000000000 [ 691.589719][T14432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 691.589733][T14432] R13: 00007f75593e6038 R14: 00007f75593e5fa0 R15: 00007ffe9ff803c8 [ 691.589768][T14432] [ 693.899197][T14477] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88807c170ac0 pfn:0x78002 [ 693.957013][T14477] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 694.083840][T14491] mkiss: ax0: crc mode is auto. [ 694.248847][T14477] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 694.438381][T14477] raw: ffff88807c170ac0 0000000000000000 00000001ffffffff 0000000000000000 [ 694.522953][T14477] page dumped because: unmovable page [ 694.528554][T14477] page_owner tracks the page as allocated [ 694.534412][T14477] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 8614, tgid 8612 (syz.3.520), ts 283224400763, free_ts 282022066788 [ 694.558314][T14477] post_alloc_hook+0x1c0/0x230 [ 694.563129][T14477] get_page_from_freelist+0x132b/0x38e0 [ 694.737997][T14477] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 694.800579][T14477] alloc_pages_mpol+0x1fb/0x550 [ 694.854151][T14509] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1597'. [ 694.928584][T14477] alloc_pages_noprof+0x131/0x390 [ 695.026039][T14477] __vmalloc_node_range_noprof+0x72f/0x14b0 [ 695.107162][T14477] __vmalloc_node_noprof+0xad/0xf0 [ 695.184608][T14477] pcpu_mem_zalloc+0x54/0xb0 [ 695.250609][T14477] pcpu_create_chunk+0x432/0x730 [ 695.255588][T14477] pcpu_alloc_noprof+0x128f/0x14c0 [ 695.351387][T14477] bpf_map_alloc_percpu+0x9a/0x4b0 [ 695.427250][T14477] htab_map_alloc+0x10ca/0x1570 [ 695.503775][T14477] map_create+0x58f/0x1f80 [ 695.552220][T14477] __sys_bpf+0x44d2/0x4de0 [ 695.666844][T14477] __x64_sys_bpf+0x78/0xc0 [ 695.678414][T14477] do_syscall_64+0xcd/0x4c0 [ 695.762294][T14477] page last free pid 8587 tgid 8579 stack trace: [ 695.924758][T14477] __free_frozen_pages+0x7d5/0x10f0 [ 695.998328][T14477] mon_bin_release+0x15a/0x240 [ 696.003165][T14477] __fput+0x3ff/0xb70 [ 696.007164][T14477] task_work_run+0x14d/0x240 [ 696.118430][T14477] exit_to_user_mode_loop+0xeb/0x110 [ 696.135096][T14477] do_syscall_64+0x41c/0x4c0 [ 696.228429][T14477] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 699.712652][T14165] syz.3.1554 (14165) used greatest stack depth: 20152 bytes left [ 704.081819][T14616] zswap: compressor I not available [ 705.057718][T14634] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1619'. [ 705.619619][T14647] FAULT_INJECTION: forcing a failure. [ 705.619619][T14647] name failslab, interval 1, probability 0, space 0, times 0 [ 705.658349][T14647] CPU: 0 UID: 0 PID: 14647 Comm: syz.0.1620 Not tainted syzkaller #0 PREEMPT(full) [ 705.658387][T14647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 705.658405][T14647] Call Trace: [ 705.658414][T14647] [ 705.658426][T14647] dump_stack_lvl+0x16c/0x1f0 [ 705.658471][T14647] should_fail_ex+0x512/0x640 [ 705.658518][T14647] ? __kmalloc_noprof+0xbf/0x510 [ 705.658548][T14647] ? nfc_llcp_build_tlv+0xfd/0x230 [ 705.658583][T14647] should_failslab+0xc2/0x120 [ 705.658628][T14647] __kmalloc_noprof+0xd2/0x510 [ 705.658670][T14647] nfc_llcp_build_tlv+0xfd/0x230 [ 705.658713][T14647] nfc_llcp_build_gb.isra.0+0x11e/0x400 [ 705.658759][T14647] ? __pfx_nfc_llcp_build_gb.isra.0+0x10/0x10 [ 705.658820][T14647] ? nfc_genl_dump_ses+0x920/0x980 [ 705.658851][T14647] ? lockdep_init_map_type+0x5c/0x280 [ 705.658893][T14647] nfc_llcp_register_device+0x600/0xa60 [ 705.658937][T14647] nfc_register_device+0x6d/0x3c0 [ 705.658980][T14647] nci_register_device+0x7f1/0xb80 [ 705.659018][T14647] ? __pfx_nci_register_device+0x10/0x10 [ 705.659057][T14647] ? lockdep_init_map_type+0x5c/0x280 [ 705.659098][T14647] virtual_ncidev_open+0x141/0x220 [ 705.659131][T14647] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 705.659163][T14647] misc_open+0x35a/0x420 [ 705.659194][T14647] ? __pfx_misc_open+0x10/0x10 [ 705.659224][T14647] chrdev_open+0x231/0x6a0 [ 705.659255][T14647] ? __pfx_apparmor_file_open+0x10/0x10 [ 705.659284][T14647] ? __pfx_chrdev_open+0x10/0x10 [ 705.659319][T14647] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 705.659354][T14647] do_dentry_open+0x97f/0x1530 [ 705.659386][T14647] ? __pfx_chrdev_open+0x10/0x10 [ 705.659427][T14647] vfs_open+0x82/0x3f0 [ 705.659469][T14647] path_openat+0x1de4/0x2cb0 [ 705.659513][T14647] ? __pfx_path_openat+0x10/0x10 [ 705.659554][T14647] do_filp_open+0x20b/0x470 [ 705.659586][T14647] ? __pfx_do_filp_open+0x10/0x10 [ 705.659652][T14647] ? alloc_fd+0x471/0x7d0 [ 705.659691][T14647] do_sys_openat2+0x11b/0x1d0 [ 705.659730][T14647] ? __pfx_do_sys_openat2+0x10/0x10 [ 705.659783][T14647] __x64_sys_openat+0x174/0x210 [ 705.659808][T14647] ? __pfx___x64_sys_openat+0x10/0x10 [ 705.659847][T14647] do_syscall_64+0xcd/0x4c0 [ 705.659888][T14647] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 705.659915][T14647] RIP: 0033:0x7f755918eec9 [ 705.659937][T14647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 705.659962][T14647] RSP: 002b:00007f7559fc6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 705.659988][T14647] RAX: ffffffffffffffda RBX: 00007f75593e5fa0 RCX: 00007f755918eec9 [ 705.660006][T14647] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 705.660024][T14647] RBP: 00007f7559211f91 R08: 0000000000000000 R09: 0000000000000000 [ 705.660041][T14647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 705.660057][T14647] R13: 00007f75593e6038 R14: 00007f75593e5fa0 R15: 00007ffe9ff803c8 [ 705.660095][T14647] [ 706.270509][T14648] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1621'. [ 706.365134][T14661] MTRR 1 not used [ 710.070438][T14714] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1631'. [ 710.089939][T14715] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1633'. [ 712.362339][T14748] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1638'. [ 716.900113][T14802] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1646'. [ 717.515399][T14808] mkiss: ax0: crc mode is auto. [ 719.093318][T14873] mkiss: ax0: crc mode is auto. [ 719.668523][T14890] ICMPv6: process `syz.3.1653' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 719.874210][T14885] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1660'. [ 719.898040][T14887] mkiss: ax0: crc mode is auto. [ 719.910772][T14885] cifs: Unknown parameter 'no+ 1`rsFn)aHāh`9kA}1\D@.ZCg^' [ 724.157898][T14974] mkiss: ax0: crc mode is auto. [ 725.466445][T14990] mkiss: ax0: crc mode is auto. [ 726.754604][T15011] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1670'. [ 730.055178][T15069] mkiss: ax0: crc mode is auto. [ 730.980046][T15086] mkiss: ax0: crc mode is auto. [ 732.194723][T15115] mkiss: ax0: crc mode is auto. [ 733.080714][T15091] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 734.054504][T15135] mkiss: ax0: crc mode is auto. [ 734.868772][T15152] mkiss: ax0: crc mode is auto. [ 735.797353][T15168] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1691'. [ 739.873430][T15236] mkiss: ax0: crc mode is auto. [ 742.564652][T15282] kAFS: Invalid Command on /proc/fs/afs/cells file [ 743.602192][T15296] mkiss: ax0: crc mode is auto. [ 746.982792][T15338] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1719'. [ 747.392159][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.392275][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 750.203768][T15382] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1725'. [ 754.529018][T15431] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1733'. [ 756.701472][T15453] FAULT_INJECTION: forcing a failure. [ 756.701472][T15453] name failslab, interval 1, probability 0, space 0, times 0 [ 756.714290][T15453] CPU: 1 UID: 0 PID: 15453 Comm: syz.3.1737 Not tainted syzkaller #0 PREEMPT(full) [ 756.714312][T15453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 756.714322][T15453] Call Trace: [ 756.714328][T15453] [ 756.714334][T15453] dump_stack_lvl+0x16c/0x1f0 [ 756.714360][T15453] should_fail_ex+0x512/0x640 [ 756.714383][T15453] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 756.714402][T15453] should_failslab+0xc2/0x120 [ 756.714421][T15453] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 756.714439][T15453] ? __d_alloc+0x32/0xae0 [ 756.714459][T15453] __d_alloc+0x32/0xae0 [ 756.714477][T15453] d_alloc_pseudo+0x1c/0xc0 [ 756.714497][T15453] alloc_file_pseudo+0xcf/0x230 [ 756.714519][T15453] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 756.714540][T15453] ? alloc_fd+0x471/0x7d0 [ 756.714557][T15453] sock_alloc_file+0x50/0x210 [ 756.714572][T15453] __sys_socket+0x1c0/0x260 [ 756.714587][T15453] ? __fget_files+0x20e/0x3c0 [ 756.714602][T15453] ? __pfx___sys_socket+0x10/0x10 [ 756.714617][T15453] ? xfd_validate_state+0x61/0x180 [ 756.714642][T15453] __x64_sys_socket+0x72/0xb0 [ 756.714657][T15453] ? lockdep_hardirqs_on+0x7c/0x110 [ 756.714678][T15453] do_syscall_64+0xcd/0x4c0 [ 756.714700][T15453] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 756.714714][T15453] RIP: 0033:0x7fc30e58eec9 [ 756.714726][T15453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 756.714740][T15453] RSP: 002b:00007fc30f439038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 756.714753][T15453] RAX: ffffffffffffffda RBX: 00007fc30e7e5fa0 RCX: 00007fc30e58eec9 [ 756.714763][T15453] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 756.714771][T15453] RBP: 00007fc30e611f91 R08: 0000000000000000 R09: 0000000000000000 [ 756.714779][T15453] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 756.714787][T15453] R13: 00007fc30e7e6038 R14: 00007fc30e7e5fa0 R15: 00007ffc83f1ee08 [ 756.714804][T15453] [ 757.200272][T12637] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 765.674208][T15676] netlink: 'syz.1.1756': attribute type 28 has an invalid length. [ 765.735421][T15676] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1756'. [ 766.236462][T15688] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1758'. [ 766.655647][T15699] __vm_enough_memory: pid: 15699, comm: syz.2.1757, bytes: 4398046511104 not enough memory for the allocation [ 770.471714][T15770] mkiss: ax0: crc mode is auto. [ 772.145411][T15788] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1768'. [ 774.053196][T15819] netlink: 'syz.0.1773': attribute type 28 has an invalid length. [ 774.061673][T15819] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1773'. [ 775.337574][T15829] __vm_enough_memory: pid: 15829, comm: syz.3.1774, bytes: 4398046511104 not enough memory for the allocation [ 775.873172][T15828] netlink: 'syz.3.1774': attribute type 15 has an invalid length. [ 775.881253][T15828] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1774'. [ 776.733073][T15852] mkiss: ax0: crc mode is auto. [ 778.230902][T15861] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 780.052488][T15890] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1784'. [ 780.133701][T15888] sp0: Synchronizing with TNC [ 782.660864][T15932] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1788'. [ 783.836790][T15942] mkiss: ax0: crc mode is auto. [ 784.233046][T15951] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1791'. [ 789.251218][T16034] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1799'. [ 791.060799][T16025] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 792.791323][T16080] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1802'. [ 792.993164][T16081] mkiss: ax0: crc mode is auto. [ 796.617691][T16166] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1822'. [ 797.024506][T16171] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1814'. [ 797.176193][T16171] MTRR 1 not used [ 797.532009][T16184] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1816'. [ 797.814399][T16183] mkiss: ax0: crc mode is auto. [ 799.771857][T16248] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1819'. [ 801.513986][T16288] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1824'. [ 802.470623][T16303] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1826'. [ 804.975848][T16334] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1830'. [ 805.841916][T16351] mkiss: ax0: crc mode is auto. [ 806.957125][T16369] mkiss: ax0: crc mode is auto. [ 807.070291][T16375] mkiss: ax1: crc mode is auto. [ 808.522007][T16404] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1841'. [ 808.824457][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 808.830893][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 810.514344][T16433] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1844'. [ 811.736757][T16452] zswap: compressor I not available [ 813.806769][T16497] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1855'. [ 817.583327][T16562] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1860'. [ 819.259379][T16597] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1868'. [ 821.336582][T16632] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1871'. [ 827.634664][T16722] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1884'. [ 828.469597][T16740] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1887'. [ 833.388773][T16808] mkiss: ax0: crc mode is auto. [ 834.839496][T16831] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1898'. [ 842.591073][T16932] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1917'. [ 842.682223][T16930] mkiss: ax0: crc mode is auto. [ 844.311146][T16957] mkiss: ax0: crc mode is auto. [ 845.687304][T16984] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1923'. [ 851.386518][T17060] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1935'. [ 851.760120][T17069] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1936'. [ 852.148806][T17072] mkiss: ax0: crc mode is auto. [ 853.821005][T17111] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1938'. [ 857.928396][T17165] mkiss: ax0: crc mode is auto. [ 860.010200][T17194] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1951'. [ 860.452096][T17203] mkiss: ax0: crc mode is auto. [ 868.790374][T17318] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1970'. [ 870.282009][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 870.289309][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 871.446584][T17368] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1978'. [ 874.839474][T17420] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1983'. [ 875.938039][T17445] mkiss: ax0: crc mode is auto. [ 877.185406][T17461] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1996'. [ 877.826143][T17480] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1989'. [ 882.828119][T17570] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2005'. [ 888.990709][T17666] mkiss: ax0: crc mode is auto. [ 889.068014][T17668] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2020'. [ 891.997442][T17719] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2025'. [ 894.444874][T17760] mkiss: ax0: crc mode is auto. [ 894.690153][T17769] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2032'. [ 896.567506][T17802] mkiss: ax0: crc mode is auto. [ 897.793307][T17830] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2040'. [ 899.715240][T17868] mkiss: ax0: crc mode is auto. [ 901.941684][T17906] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2055'. [ 902.680270][T17927] mkiss: ax0: crc mode is auto. [ 904.049957][T17951] mkiss: ax0: crc mode is auto. [ 905.292275][T17971] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2063'. [ 906.977216][T18004] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2067'. [ 908.543247][T18035] mkiss: ax0: crc mode is auto. [ 911.965647][T18088] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2080'. [ 912.673542][T18096] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2081'. [ 914.835490][T18147] mkiss: ax0: crc mode is auto. [ 916.085462][T18166] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2093'. [ 917.247018][T18192] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2096'. [ 918.266094][T18222] mkiss: ax0: crc mode is auto. [ 919.660002][T18244] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2111'. [ 919.874628][T18252] mkiss: ax0: crc mode is auto. [ 920.538388][T18264] mkiss: ax1: crc mode is auto. [ 922.095628][T18303] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2109'. [ 922.541116][T18317] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2110'. [ 925.353636][T18373] mkiss: ax0: crc mode is auto. [ 926.449209][T18396] mkiss: ax0: crc mode is auto. [ 927.808329][T18427] mkiss: ax0: crc mode is auto. [ 929.283714][T18449] mkiss: ax0: crc mode is auto. [ 930.015737][T18470] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2137'. [ 930.037480][T18471] mkiss: ax0: crc mode is auto. [ 931.392886][T18500] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2141'. [ 931.704755][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 931.711208][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 933.242646][T18551] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2150'. [ 935.630255][T18594] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2156'. [ 936.250170][T18609] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2158'. [ 937.573482][T18638] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2168'. [ 937.779064][T18651] overlayfs: missing 'lowerdir' [ 939.154807][T18672] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2162'. [ 941.294873][T18715] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2172'. [ 941.509658][T18722] mkiss: ax0: crc mode is auto. [ 944.195579][T18772] mkiss: ax0: crc mode is auto. [ 945.545098][T18825] mkiss: ax0: crc mode is auto. [ 945.922842][T18834] mkiss: ax1: crc mode is auto. [ 946.043578][T18840] __vm_enough_memory: pid: 18840, comm: syz.3.2189, bytes: 4398046511104 not enough memory for the allocation [ 947.414057][T18859] mkiss: ax0: crc mode is auto. [ 948.602955][T18885] mkiss: ax0: crc mode is auto. [ 949.741669][T18906] mkiss: ax0: crc mode is auto. [ 950.184959][T18913] mkiss: ax1: crc mode is auto. [ 950.892536][T18924] mkiss: ax0: crc mode is auto. [ 954.643223][T18992] mkiss: ax0: crc mode is auto. [ 955.221363][T19006] mkiss: ax0: crc mode is auto. [ 956.241306][T19032] mkiss: ax0: crc mode is auto. [ 957.043422][T19049] FAULT_INJECTION: forcing a failure. [ 957.043422][T19049] name failslab, interval 1, probability 0, space 0, times 0 [ 957.056645][T19049] CPU: 0 UID: 0 PID: 19049 Comm: syz.0.2223 Not tainted syzkaller #0 PREEMPT(full) [ 957.056672][T19049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 957.056681][T19049] Call Trace: [ 957.056687][T19049] [ 957.056692][T19049] dump_stack_lvl+0x16c/0x1f0 [ 957.056720][T19049] should_fail_ex+0x512/0x640 [ 957.056742][T19049] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 957.056761][T19049] should_failslab+0xc2/0x120 [ 957.056779][T19049] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 957.056795][T19049] ? vma_merge_new_range+0x3ae/0xa50 [ 957.056810][T19049] ? vm_area_alloc+0x1f/0x160 [ 957.056827][T19049] vm_area_alloc+0x1f/0x160 [ 957.056840][T19049] __mmap_region+0xf90/0x27b0 [ 957.056859][T19049] ? __pfx___mmap_region+0x10/0x10 [ 957.056880][T19049] ? is_bpf_text_address+0x8a/0x1a0 [ 957.056897][T19049] ? bpf_ksym_find+0x124/0x1c0 [ 957.056911][T19049] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 957.056928][T19049] ? is_bpf_text_address+0x94/0x1a0 [ 957.056944][T19049] ? kernel_text_address+0x8d/0x100 [ 957.056965][T19049] ? __kernel_text_address+0xd/0x40 [ 957.057008][T19049] ? trace_cap_capable+0x18d/0x200 [ 957.057029][T19049] mmap_region+0x1ab/0x3f0 [ 957.057045][T19049] ? __get_unmapped_area+0x267/0x440 [ 957.057067][T19049] do_mmap+0xa3e/0x1210 [ 957.057089][T19049] ? __pfx_do_mmap+0x10/0x10 [ 957.057109][T19049] ? __pfx_down_write_killable+0x10/0x10 [ 957.057127][T19049] vm_mmap_pgoff+0x29e/0x470 [ 957.057150][T19049] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 957.057171][T19049] ? __fget_files+0x20e/0x3c0 [ 957.057192][T19049] ksys_mmap_pgoff+0x7d/0x5c0 [ 957.057211][T19049] ? __pfx_ksys_write+0x10/0x10 [ 957.057229][T19049] __x64_sys_mmap+0x125/0x190 [ 957.057253][T19049] do_syscall_64+0xcd/0x4c0 [ 957.057275][T19049] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 957.057289][T19049] RIP: 0033:0x7f755918eec9 [ 957.057302][T19049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 957.057316][T19049] RSP: 002b:00007f7559f63038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 957.057329][T19049] RAX: ffffffffffffffda RBX: 00007f75593e6270 RCX: 00007f755918eec9 [ 957.057339][T19049] RDX: 0000000000000003 RSI: 0000000002060009 RDI: 0000000000000000 [ 957.057347][T19049] RBP: 00007f7559f63090 R08: ffffffffffffffff R09: 0000000000008000 [ 957.057355][T19049] R10: 0040000000000eb2 R11: 0000000000000246 R12: 0000000000000001 [ 957.057363][T19049] R13: 00007f75593e6308 R14: 00007f75593e6270 R15: 00007ffe9ff803c8 [ 957.057381][T19049] [ 957.792798][T19069] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2228'. [ 958.143239][ T30] audit: type=1804 audit(1758661668.660:16): pid=19085 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.2229" name="/newroot/sys/kernel/debug/tracing/set_event" dev="tracefs" ino=14 res=1 errno=0 [ 958.856160][T19115] mkiss: ax0: crc mode is auto. [ 960.374455][T19147] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2234'. [ 964.630227][T19216] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2255'. [ 968.939523][T19289] FAULT_INJECTION: forcing a failure. [ 968.939523][T19289] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 969.042387][T19289] CPU: 1 UID: 0 PID: 19289 Comm: syz.2.2265 Not tainted syzkaller #0 PREEMPT(full) [ 969.042418][T19289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 969.042431][T19289] Call Trace: [ 969.042438][T19289] [ 969.042447][T19289] dump_stack_lvl+0x16c/0x1f0 [ 969.042486][T19289] should_fail_ex+0x512/0x640 [ 969.042525][T19289] _copy_from_iter+0x463/0x1720 [ 969.042553][T19289] ? rcu_is_watching+0x12/0xc0 [ 969.042576][T19289] ? __pfx__copy_from_iter+0x10/0x10 [ 969.042598][T19289] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 969.042626][T19289] ? __asan_memset+0x23/0x50 [ 969.042651][T19289] ? __build_skb_around+0x278/0x3b0 [ 969.042682][T19289] ? is_vmalloc_addr+0x86/0xa0 [ 969.042714][T19289] netlink_sendmsg+0x829/0xdd0 [ 969.042757][T19289] ? __pfx_netlink_sendmsg+0x10/0x10 [ 969.042795][T19289] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 969.042828][T19289] ____sys_sendmsg+0xa98/0xc70 [ 969.042857][T19289] ? __pfx_____sys_sendmsg+0x10/0x10 [ 969.042890][T19289] ? __pfx__kstrtoull+0x10/0x10 [ 969.042929][T19289] ___sys_sendmsg+0x134/0x1d0 [ 969.042963][T19289] ? __pfx____sys_sendmsg+0x10/0x10 [ 969.043010][T19289] ? find_held_lock+0x2b/0x80 [ 969.043055][T19289] __sys_sendmmsg+0x200/0x420 [ 969.043090][T19289] ? __pfx___sys_sendmmsg+0x10/0x10 [ 969.043141][T19289] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 969.043186][T19289] ? fput+0x9b/0xd0 [ 969.043216][T19289] ? ksys_write+0x1ac/0x250 [ 969.043239][T19289] ? __pfx_ksys_write+0x10/0x10 [ 969.043269][T19289] __x64_sys_sendmmsg+0x9c/0x100 [ 969.043299][T19289] ? lockdep_hardirqs_on+0x7c/0x110 [ 969.043330][T19289] do_syscall_64+0xcd/0x4c0 [ 969.043364][T19289] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 969.043379][T19289] RIP: 0033:0x7f8c0998eec9 [ 969.043391][T19289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 969.043404][T19289] RSP: 002b:00007f8c0a741038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 969.043418][T19289] RAX: ffffffffffffffda RBX: 00007f8c09be5fa0 RCX: 00007f8c0998eec9 [ 969.043427][T19289] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000008 [ 969.043435][T19289] RBP: 00007f8c0a741090 R08: 0000000000000000 R09: 0000000000000000 [ 969.043444][T19289] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 969.043452][T19289] R13: 00007f8c09be6038 R14: 00007f8c09be5fa0 R15: 00007ffd036baf98 [ 969.043469][T19289] [ 969.498574][T19303] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 969.704991][ T30] audit: type=1804 audit(1758661680.220:17): pid=19330 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2267" name="/newroot/584/file0" dev="tmpfs" ino=3031 res=1 errno=0 [ 970.142286][T19329] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 970.195141][T19329] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 970.266446][T19334] mkiss: ax0: crc mode is auto. [ 970.534596][T19358] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2270'. [ 971.123552][T19382] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2273'. [ 972.153755][T19429] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 973.126368][T19447] mkiss: ax0: crc mode is auto. [ 974.216973][T19477] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2282'. [ 975.016488][T19494] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2283'. [ 975.596107][T19509] FAULT_INJECTION: forcing a failure. [ 975.596107][T19509] name failslab, interval 1, probability 0, space 0, times 0 [ 975.609000][T19509] CPU: 0 UID: 0 PID: 19509 Comm: syz.3.2284 Not tainted syzkaller #0 PREEMPT(full) [ 975.609021][T19509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 975.609031][T19509] Call Trace: [ 975.609036][T19509] [ 975.609042][T19509] dump_stack_lvl+0x16c/0x1f0 [ 975.609069][T19509] should_fail_ex+0x512/0x640 [ 975.609091][T19509] ? fs_reclaim_acquire+0xae/0x150 [ 975.609115][T19509] should_failslab+0xc2/0x120 [ 975.609135][T19509] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 975.609153][T19509] ? security_inode_alloc+0x3b/0x2b0 [ 975.609173][T19509] security_inode_alloc+0x3b/0x2b0 [ 975.609189][T19509] inode_init_always_gfp+0xce4/0x1030 [ 975.609208][T19509] alloc_inode+0x86/0x240 [ 975.609228][T19509] sock_alloc+0x40/0x280 [ 975.609243][T19509] sock_create_lite+0x82/0x120 [ 975.609258][T19509] __netlink_kernel_create+0xbd/0x750 [ 975.609281][T19509] ? __pfx___netlink_kernel_create+0x10/0x10 [ 975.609301][T19509] ? find_held_lock+0x2b/0x80 [ 975.609316][T19509] ? audit_net_init+0x190/0x440 [ 975.609336][T19509] audit_net_init+0x1ae/0x440 [ 975.609352][T19509] ? __pfx_audit_net_init+0x10/0x10 [ 975.609369][T19509] ? __pfx_audit_receive+0x10/0x10 [ 975.609387][T19509] ? __pfx_audit_multicast_bind+0x10/0x10 [ 975.609404][T19509] ? __pfx_audit_multicast_unbind+0x10/0x10 [ 975.609423][T19509] ? __kmalloc_noprof+0x242/0x510 [ 975.609442][T19509] ? __pfx_audit_net_init+0x10/0x10 [ 975.609458][T19509] ops_init+0x1df/0x5f0 [ 975.609481][T19509] setup_net+0x10f/0x380 [ 975.609492][T19509] ? lockdep_init_map_type+0x5c/0x280 [ 975.609511][T19509] ? __pfx_setup_net+0x10/0x10 [ 975.609524][T19509] ? debug_mutex_init+0x37/0x70 [ 975.609540][T19509] copy_net_ns+0x2a6/0x5f0 [ 975.609556][T19509] create_new_namespaces+0x3ea/0xa90 [ 975.609577][T19509] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 975.609595][T19509] ksys_unshare+0x45b/0xa40 [ 975.609628][T19509] ? __pfx_ksys_unshare+0x10/0x10 [ 975.609649][T19509] ? xfd_validate_state+0x61/0x180 [ 975.609676][T19509] __x64_sys_unshare+0x31/0x40 [ 975.609696][T19509] do_syscall_64+0xcd/0x4c0 [ 975.609718][T19509] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 975.609733][T19509] RIP: 0033:0x7fc30e58eec9 [ 975.609745][T19509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 975.609759][T19509] RSP: 002b:00007fc30f439038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 975.609773][T19509] RAX: ffffffffffffffda RBX: 00007fc30e7e5fa0 RCX: 00007fc30e58eec9 [ 975.609783][T19509] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 975.609791][T19509] RBP: 00007fc30e611f91 R08: 0000000000000000 R09: 0000000000000000 [ 975.609800][T19509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 975.609808][T19509] R13: 00007fc30e7e6038 R14: 00007fc30e7e5fa0 R15: 00007ffc83f1ee08 [ 975.609827][T19509] [ 975.609857][T19509] audit: cannot initialize netlink socket in namespace [ 976.146172][T19515] netlink: 146 bytes leftover after parsing attributes in process `syz.1.2285'. [ 977.481555][T19540] mkiss: ax0: crc mode is auto. [ 982.208214][ T30] audit: type=1804 audit(4294967309.250:18): pid=19675 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2305" name="/newroot/581/file0" dev="tmpfs" ino=3017 res=1 errno=0 [ 982.635709][T19675] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 982.705583][T19675] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 983.433672][T19689] mkiss: ax0: crc mode is auto. [ 984.296119][T19690] Process accounting resumed [ 985.376673][ T51] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 985.386951][ T51] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 985.398555][ T51] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 985.417511][ T51] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 985.425337][ T51] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 986.588427][ T3528] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 986.614832][ T30] audit: type=1804 audit(4294967297.730:19): pid=19814 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2319" name="/newroot/565/file0" dev="tmpfs" ino=2942 res=1 errno=0 [ 986.810372][ T3528] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 986.995590][ T3528] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 987.028682][T19814] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 987.045049][T19814] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 987.286657][ T3528] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 987.463195][T19758] chnl_net:caif_netlink_parms(): no params data found [ 987.552191][T12637] Bluetooth: hci4: command tx timeout [ 987.553047][T19909] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2321'. [ 988.238535][T19758] bridge0: port 1(bridge_slave_0) entered blocking state [ 988.273038][T19758] bridge0: port 1(bridge_slave_0) entered disabled state [ 988.288455][T19758] bridge_slave_0: entered allmulticast mode [ 988.308482][T19758] bridge_slave_0: entered promiscuous mode [ 988.323737][T19758] bridge0: port 2(bridge_slave_1) entered blocking state [ 988.348677][T19758] bridge0: port 2(bridge_slave_1) entered disabled state [ 988.362039][T19758] bridge_slave_1: entered allmulticast mode [ 988.380020][T19758] bridge_slave_1: entered promiscuous mode [ 988.425414][ T3528] bridge_slave_1: left allmulticast mode [ 988.438638][ T3528] bridge_slave_1: left promiscuous mode [ 988.458618][ T3528] bridge0: port 2(bridge_slave_1) entered disabled state [ 988.514434][ T3528] bridge_slave_0: left allmulticast mode [ 988.520279][ T3528] bridge_slave_0: left promiscuous mode [ 988.526058][ T3528] bridge0: port 1(bridge_slave_0) entered disabled state [ 989.619094][T12637] Bluetooth: hci4: command tx timeout [ 990.195388][ T3528] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 990.227945][ T3528] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 990.258023][ T3528] bond0 (unregistering): Released all slaves [ 990.361616][T20015] Falling back ldisc for ptm0. [ 990.555078][T19758] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 990.659939][T19758] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 991.007560][T19758] team0: Port device team_slave_0 added [ 991.081762][T19758] team0: Port device team_slave_1 added [ 991.585451][T19758] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 991.606086][T19758] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 991.668293][T19758] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 991.699045][T12637] Bluetooth: hci4: command tx timeout [ 991.702063][T19758] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 991.779896][T19758] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 991.819545][T19758] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 992.243798][T19758] hsr_slave_0: entered promiscuous mode [ 992.273562][T19758] hsr_slave_1: entered promiscuous mode [ 992.299210][T19758] debugfs: 'hsr0' already exists in 'hsr' [ 992.304985][T19758] Cannot create hsr debugfs directory [ 992.943644][T20115] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 993.145631][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 993.152064][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 993.426520][ T3528] hsr_slave_0: left promiscuous mode [ 993.512722][ T3528] hsr_slave_1: left promiscuous mode [ 993.523628][ T3528] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 993.558465][ T3528] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 993.606149][ T3528] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 993.660238][ T3528] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 993.769729][ T3528] veth1_macvtap: left promiscuous mode [ 993.778465][T12637] Bluetooth: hci4: command tx timeout [ 993.786683][ T3528] veth0_macvtap: left promiscuous mode [ 993.805926][ T3528] veth1_vlan: left promiscuous mode [ 993.816450][ T3528] veth0_vlan: left promiscuous mode [ 994.665384][T20252] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2334'. [ 995.398399][ T3528] team0 (unregistering): Port device team_slave_1 removed [ 995.501298][ T3528] team0 (unregistering): Port device team_slave_0 removed [ 998.255575][T19758] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 998.373912][T19758] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 998.406805][T19758] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 998.467355][T19758] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 999.221290][T19758] 8021q: adding VLAN 0 to HW filter on device bond0 [ 999.321130][T19758] 8021q: adding VLAN 0 to HW filter on device team0 [ 999.373566][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 999.380752][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 999.495334][ T56] bridge0: port 2(bridge_slave_1) entered blocking state [ 999.502647][ T56] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1000.632590][T19758] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1000.841406][T19758] veth0_vlan: entered promiscuous mode [ 1000.895772][T19758] veth1_vlan: entered promiscuous mode [ 1001.018134][T19758] veth0_macvtap: entered promiscuous mode [ 1001.043751][T19758] veth1_macvtap: entered promiscuous mode [ 1001.084697][T19758] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1001.132461][T19758] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1001.204394][ T3542] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1001.249641][ T3542] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1001.285846][ T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1001.312452][ T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1001.812031][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1001.851691][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1002.045073][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1002.087990][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1002.422049][T20517] FAULT_INJECTION: forcing a failure. [ 1002.422049][T20517] name failslab, interval 1, probability 0, space 0, times 0 [ 1002.470456][T20517] CPU: 1 UID: 0 PID: 20517 Comm: syz.1.2317 Not tainted syzkaller #0 PREEMPT(full) [ 1002.470501][T20517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1002.470516][T20517] Call Trace: [ 1002.470527][T20517] [ 1002.470537][T20517] dump_stack_lvl+0x16c/0x1f0 [ 1002.470584][T20517] should_fail_ex+0x512/0x640 [ 1002.470625][T20517] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 1002.470662][T20517] should_failslab+0xc2/0x120 [ 1002.470696][T20517] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 1002.470728][T20517] ? sock_alloc_inode+0x25/0x1c0 [ 1002.470760][T20517] ? __pfx_sock_alloc_inode+0x10/0x10 [ 1002.470784][T20517] sock_alloc_inode+0x25/0x1c0 [ 1002.470808][T20517] alloc_inode+0x61/0x240 [ 1002.470841][T20517] sock_alloc+0x40/0x280 [ 1002.470865][T20517] sock_create_lite+0x82/0x120 [ 1002.470890][T20517] __netlink_kernel_create+0xbd/0x750 [ 1002.470928][T20517] ? __pfx___netlink_kernel_create+0x10/0x10 [ 1002.470975][T20517] uevent_net_init+0xf8/0x350 [ 1002.471004][T20517] ? __pfx_uevent_net_init+0x10/0x10 [ 1002.471034][T20517] ? __pfx_uevent_net_rcv+0x10/0x10 [ 1002.471073][T20517] ? __pfx_uevent_net_init+0x10/0x10 [ 1002.471098][T20517] ops_init+0x1df/0x5f0 [ 1002.471141][T20517] setup_net+0x10f/0x380 [ 1002.471161][T20517] ? lockdep_init_map_type+0x5c/0x280 [ 1002.471198][T20517] ? __pfx_setup_net+0x10/0x10 [ 1002.471228][T20517] ? debug_mutex_init+0x37/0x70 [ 1002.471260][T20517] copy_net_ns+0x2a6/0x5f0 [ 1002.471291][T20517] create_new_namespaces+0x3ea/0xa90 [ 1002.471332][T20517] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1002.471365][T20517] ksys_unshare+0x45b/0xa40 [ 1002.471400][T20517] ? __pfx_ksys_unshare+0x10/0x10 [ 1002.471436][T20517] ? xfd_validate_state+0x61/0x180 [ 1002.471492][T20517] __x64_sys_unshare+0x31/0x40 [ 1002.471526][T20517] do_syscall_64+0xcd/0x4c0 [ 1002.471569][T20517] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1002.471597][T20517] RIP: 0033:0x7f1a8c38eec9 [ 1002.471617][T20517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1002.471642][T20517] RSP: 002b:00007f1a8d1ab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1002.471667][T20517] RAX: ffffffffffffffda RBX: 00007f1a8c5e5fa0 RCX: 00007f1a8c38eec9 [ 1002.471684][T20517] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1002.471699][T20517] RBP: 00007f1a8c411f91 R08: 0000000000000000 R09: 0000000000000000 [ 1002.471713][T20517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1002.471728][T20517] R13: 00007f1a8c5e6038 R14: 00007f1a8c5e5fa0 R15: 00007ffda630e998 [ 1002.471762][T20517] [ 1002.799181][T20517] kobject_uevent: unable to create netlink socket! [ 1004.105087][T20582] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2350'. [ 1004.756256][T20598] mkiss: ax0: crc mode is auto. [ 1005.213713][T20622] FAULT_INJECTION: forcing a failure. [ 1005.213713][T20622] name failslab, interval 1, probability 0, space 0, times 0 [ 1005.247401][T20622] CPU: 0 UID: 0 PID: 20622 Comm: syz.0.2355 Not tainted syzkaller #0 PREEMPT(full) [ 1005.247431][T20622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1005.247444][T20622] Call Trace: [ 1005.247451][T20622] [ 1005.247460][T20622] dump_stack_lvl+0x16c/0x1f0 [ 1005.247496][T20622] should_fail_ex+0x512/0x640 [ 1005.247528][T20622] ? fs_reclaim_acquire+0xae/0x150 [ 1005.247566][T20622] ? tomoyo_encode2+0x100/0x3e0 [ 1005.247595][T20622] should_failslab+0xc2/0x120 [ 1005.247625][T20622] __kmalloc_noprof+0xd2/0x510 [ 1005.247658][T20622] tomoyo_encode2+0x100/0x3e0 [ 1005.247693][T20622] tomoyo_encode+0x29/0x50 [ 1005.247724][T20622] tomoyo_realpath_from_path+0x18f/0x6e0 [ 1005.247760][T20622] ? tomoyo_profile+0x47/0x60 [ 1005.247785][T20622] tomoyo_path_number_perm+0x245/0x580 [ 1005.247813][T20622] ? tomoyo_path_number_perm+0x237/0x580 [ 1005.247844][T20622] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1005.247871][T20622] ? find_held_lock+0x2b/0x80 [ 1005.247922][T20622] ? find_held_lock+0x2b/0x80 [ 1005.247942][T20622] ? hook_file_ioctl_common+0x145/0x410 [ 1005.247977][T20622] ? __fget_files+0x20e/0x3c0 [ 1005.248009][T20622] security_file_ioctl+0x9b/0x240 [ 1005.248042][T20622] __x64_sys_ioctl+0xb7/0x210 [ 1005.248081][T20622] do_syscall_64+0xcd/0x4c0 [ 1005.248119][T20622] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1005.248142][T20622] RIP: 0033:0x7f755918eec9 [ 1005.248159][T20622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1005.248179][T20622] RSP: 002b:00007f7559fc6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1005.248200][T20622] RAX: ffffffffffffffda RBX: 00007f75593e5fa0 RCX: 00007f755918eec9 [ 1005.248214][T20622] RDX: 0000000000000005 RSI: 00000000400c4d07 RDI: 0000000000000003 [ 1005.248228][T20622] RBP: 00007f7559fc6090 R08: 0000000000000000 R09: 0000000000000000 [ 1005.248241][T20622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1005.248255][T20622] R13: 00007f75593e6038 R14: 00007f75593e5fa0 R15: 00007ffe9ff803c8 [ 1005.248296][T20622] [ 1005.548311][T20622] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1008.077583][ T51] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 1008.087825][ T51] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 1008.097732][ T51] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 1008.105905][ T51] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 1008.113630][ T51] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 1008.875005][ T3498] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1009.241377][ T3498] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1009.505092][ T3498] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1009.874807][ T3498] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1010.178725][T12637] Bluetooth: hci2: command tx timeout [ 1010.236162][T20862] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2372'. [ 1010.402733][T20702] chnl_net:caif_netlink_parms(): no params data found [ 1010.488674][T20880] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 1011.035993][T20942] FAULT_INJECTION: forcing a failure. [ 1011.035993][T20942] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1011.050398][T20942] CPU: 0 UID: 0 PID: 20942 Comm: syz.2.2374 Not tainted syzkaller #0 PREEMPT(full) [ 1011.050431][T20942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1011.050444][T20942] Call Trace: [ 1011.050453][T20942] [ 1011.050462][T20942] dump_stack_lvl+0x16c/0x1f0 [ 1011.050501][T20942] should_fail_ex+0x512/0x640 [ 1011.050537][T20942] _copy_from_user+0x2e/0xd0 [ 1011.050558][T20942] kstrtouint_from_user+0xd6/0x1d0 [ 1011.050585][T20942] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 1011.050612][T20942] ? __lock_acquire+0xb97/0x1ce0 [ 1011.050659][T20942] proc_fail_nth_write+0x83/0x220 [ 1011.050688][T20942] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 1011.050722][T20942] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 1011.050746][T20942] vfs_write+0x29d/0x11d0 [ 1011.050778][T20942] ? __pfx___mutex_lock+0x10/0x10 [ 1011.050812][T20942] ? __pfx_vfs_write+0x10/0x10 [ 1011.050847][T20942] ? __fget_files+0x20e/0x3c0 [ 1011.050883][T20942] ksys_write+0x12a/0x250 [ 1011.050908][T20942] ? __pfx_ksys_write+0x10/0x10 [ 1011.050936][T20942] ? fdget+0x187/0x210 [ 1011.050967][T20942] do_syscall_64+0xcd/0x4c0 [ 1011.051001][T20942] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1011.051023][T20942] RIP: 0033:0x7f8c0998d97f [ 1011.051042][T20942] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 1011.051069][T20942] RSP: 002b:00007f8c07bf6030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 1011.051083][T20942] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f8c0998d97f [ 1011.051092][T20942] RDX: 0000000000000001 RSI: 00007f8c07bf60a0 RDI: 0000000000000005 [ 1011.051100][T20942] RBP: 00007f8c07bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 1011.051108][T20942] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 1011.051116][T20942] R13: 00007f8c09be6128 R14: 00007f8c09be6090 R15: 00007ffd036baf98 [ 1011.051135][T20942] [ 1011.542871][ T3498] bridge_slave_1: left allmulticast mode [ 1011.549920][ T3498] bridge_slave_1: left promiscuous mode [ 1011.558134][ T3498] bridge0: port 2(bridge_slave_1) entered disabled state [ 1011.580183][ T3498] bridge_slave_0: left allmulticast mode [ 1011.585930][ T3498] bridge_slave_0: left promiscuous mode [ 1011.598793][ T3498] bridge0: port 1(bridge_slave_0) entered disabled state [ 1012.133956][ T3498] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1012.146090][ T3498] bond0 (unregistering): Released all slaves [ 1012.259938][T12637] Bluetooth: hci2: command tx timeout [ 1012.335813][T20702] bridge0: port 1(bridge_slave_0) entered blocking state [ 1012.354376][T20702] bridge0: port 1(bridge_slave_0) entered disabled state [ 1012.361816][T20702] bridge_slave_0: entered allmulticast mode [ 1012.372583][T20702] bridge_slave_0: entered promiscuous mode [ 1012.405004][T20702] bridge0: port 2(bridge_slave_1) entered blocking state [ 1012.412570][T20702] bridge0: port 2(bridge_slave_1) entered disabled state [ 1012.419968][T20702] bridge_slave_1: entered allmulticast mode [ 1012.431033][T20702] bridge_slave_1: entered promiscuous mode [ 1012.617959][T20702] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1012.721668][T20702] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1013.037186][T20702] team0: Port device team_slave_0 added [ 1013.083644][ T3498] hsr_slave_0: left promiscuous mode [ 1013.102395][ T3498] hsr_slave_1: left promiscuous mode [ 1013.109944][ T3498] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1013.148450][ T3498] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1013.163820][ T3498] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1013.189512][ T3498] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1013.222753][ T3498] veth1_macvtap: left promiscuous mode [ 1013.231112][ T3498] veth0_macvtap: left promiscuous mode [ 1013.238116][ T3498] veth1_vlan: left promiscuous mode [ 1013.244972][ T3498] veth0_vlan: left promiscuous mode [ 1014.338644][T12637] Bluetooth: hci2: command tx timeout [ 1014.763737][T21125] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2388'. [ 1014.923243][ T3498] team0 (unregistering): Port device team_slave_1 removed [ 1015.002817][ T3498] team0 (unregistering): Port device team_slave_0 removed [ 1016.022527][T20702] team0: Port device team_slave_1 added [ 1016.074723][T21093] Process accounting paused [ 1016.231851][T20702] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1016.252010][T20702] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1016.299065][T20702] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1016.336493][T20702] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1016.348358][T20702] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1016.376019][T20702] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1016.429126][T12637] Bluetooth: hci2: command tx timeout [ 1016.716623][T20702] hsr_slave_0: entered promiscuous mode [ 1016.747077][T20702] hsr_slave_1: entered promiscuous mode [ 1017.390360][T21294] sg_write: data in/out 3292/1 bytes for SCSI command 0xa3-- guessing data in; [ 1017.390360][T21294] program syz.1.2396 not setting count and/or reply_len properly [ 1017.962272][T21308] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2396'. [ 1017.976404][T21308] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2396'. [ 1018.019591][T21308] netlink: 290 bytes leftover after parsing attributes in process `syz.1.2396'. [ 1018.036738][T21308] netlink: 290 bytes leftover after parsing attributes in process `syz.1.2396'. [ 1019.094433][T20702] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1019.284280][T20702] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1019.336415][T20702] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1019.360364][T20702] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1019.777859][T20702] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1019.870753][T20702] 8021q: adding VLAN 0 to HW filter on device team0 [ 1019.884666][ T56] bridge0: port 1(bridge_slave_0) entered blocking state [ 1019.891846][ T56] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1019.949043][T21401] ------------[ cut here ]------------ [ 1019.954702][T21401] WARNING: CPU: 0 PID: 21401 at kernel/trace/trace.c:8604 tracing_buffers_mmap_close+0xdd/0x130 [ 1019.965372][T21401] Modules linked in: [ 1019.969865][T21401] CPU: 0 UID: 0 PID: 21401 Comm: syz.1.2409 Not tainted syzkaller #0 PREEMPT(full) [ 1019.979524][T21401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1019.989420][T20702] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 1019.989756][T21401] RIP: 0010:tracing_buffers_mmap_close+0xdd/0x130 [ 1020.006907][T21401] Code: 75 46 48 8b 7b 08 e8 02 96 ff ff 31 ff 89 c3 89 c6 e8 e7 58 fb ff 85 db 75 0a 48 83 c4 08 5b e9 99 5d fb ff e8 94 5d fb ff 90 <0f> 0b 90 48 83 c4 08 5b e9 86 5d fb ff e8 31 cd 60 00 eb 87 e8 5a [ 1020.008226][T20702] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1020.027393][T21401] RSP: 0018:ffffc9000b3ff818 EFLAGS: 00010287 [ 1020.044325][T21401] RAX: 00000000000004cc RBX: 00000000ffffffed RCX: ffffc9001abe2000 [ 1020.052500][T21401] RDX: 0000000000080000 RSI: ffffffff81bfac8c RDI: 0000000000000005 [ 1020.060656][T21401] RBP: ffff888058fc9b88 R08: 0000000000000005 R09: 0000000000000000 [ 1020.068860][T21401] R10: 00000000ffffffed R11: 0000000000000000 R12: dffffc0000000000 [ 1020.077049][T21401] R13: 0000000000000000 R14: 0000000000000000 R15: ffffffff81bfabb0 [ 1020.085411][T21401] FS: 00007f1a8d1ab6c0(0000) GS:ffff8881246ba000(0000) knlGS:0000000000000000 [ 1020.094598][T21401] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1020.101580][T21401] CR2: 0000001b2df06ff8 CR3: 0000000028aa8000 CR4: 00000000003526f0 [ 1020.109987][T21401] Call Trace: [ 1020.113283][T21401] [ 1020.116221][T21401] __mmap_region+0x6c1/0x27b0 [ 1020.120949][T21401] ? finish_task_switch.isra.0+0x21c/0xc10 [ 1020.126755][T21401] ? __pfx___mmap_region+0x10/0x10 [ 1020.131988][T21401] ? rcu_is_watching+0x12/0xc0 [ 1020.136758][T21401] ? rcu_is_watching+0x12/0xc0 [ 1020.141557][T21401] ? trace_sched_exit_tp+0xd1/0x120 [ 1020.146796][T21401] ? __schedule+0x11a3/0x5de0 [ 1020.151540][T21401] ? __lock_acquire+0x62e/0x1ce0 [ 1020.156776][T21401] ? __lock_acquire+0x62e/0x1ce0 [ 1020.161810][T21401] ? __pfx___schedule+0x10/0x10 [ 1020.166709][T21401] ? trace_cap_capable+0x18d/0x200 [ 1020.171876][T21401] mmap_region+0x1ab/0x3f0 [ 1020.176418][T21401] ? __get_unmapped_area+0x267/0x440 [ 1020.181864][T21401] do_mmap+0xa3e/0x1210 [ 1020.186030][T21401] ? __pfx_do_mmap+0x10/0x10 [ 1020.190671][T21401] ? __pfx_down_write_killable+0x10/0x10 [ 1020.196314][T21401] ? kmem_cache_free+0x2d1/0x4d0 [ 1020.201558][T21401] vm_mmap_pgoff+0x29e/0x470 [ 1020.206185][T21401] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1020.211556][T21401] ? __sock_release+0x20b/0x270 [ 1020.216428][T21401] ? __x64_sys_futex+0x1e0/0x4c0 [ 1020.221428][T21401] ? __x64_sys_futex+0x1e9/0x4c0 [ 1020.226373][T21401] ksys_mmap_pgoff+0x7d/0x5c0 [ 1020.231089][T21401] ? xfd_validate_state+0x61/0x180 [ 1020.236202][T21401] __x64_sys_mmap+0x125/0x190 [ 1020.240917][T21401] do_syscall_64+0xcd/0x4c0 [ 1020.245424][T21401] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1020.251358][T21401] RIP: 0033:0x7f1a8c38eec9 [ 1020.255760][T21401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1020.275487][T21401] RSP: 002b:00007f1a8d1ab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1020.284087][T21401] RAX: ffffffffffffffda RBX: 00007f1a8c5e5fa0 RCX: 00007f1a8c38eec9 [ 1020.292319][T21401] RDX: 00004000000000df RSI: 0000000000020009 RDI: 0000000000000000 [ 1020.300328][T21401] RBP: 00007f1a8c411f91 R08: 0000000000000006 R09: 0000000000008000 [ 1020.308630][T21401] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 1020.316598][T21401] R13: 00007f1a8c5e6038 R14: 00007f1a8c5e5fa0 R15: 00007ffda630e998 [ 1020.324816][T21401] [ 1020.327837][T21401] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1020.335108][T21401] CPU: 0 UID: 0 PID: 21401 Comm: syz.1.2409 Not tainted syzkaller #0 PREEMPT(full) [ 1020.344460][T21401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1020.354601][T21401] Call Trace: [ 1020.357898][T21401] [ 1020.360817][T21401] dump_stack_lvl+0x3d/0x1f0 [ 1020.365415][T21401] vpanic+0x6e8/0x7a0 [ 1020.369439][T21401] ? __pfx_vpanic+0x10/0x10 [ 1020.373937][T21401] ? tracing_buffers_mmap_close+0xdd/0x130 [ 1020.379737][T21401] panic+0xca/0xd0 [ 1020.383458][T21401] ? __pfx_panic+0x10/0x10 [ 1020.387869][T21401] check_panic_on_warn+0xab/0xb0 [ 1020.392797][T21401] __warn+0xf6/0x3c0 [ 1020.396688][T21401] ? tracing_buffers_mmap_close+0xdd/0x130 [ 1020.402572][T21401] report_bug+0x3c3/0x580 [ 1020.406895][T21401] ? tracing_buffers_mmap_close+0xdd/0x130 [ 1020.412691][T21401] handle_bug+0x184/0x210 [ 1020.417013][T21401] exc_invalid_op+0x17/0x50 [ 1020.421501][T21401] asm_exc_invalid_op+0x1a/0x20 [ 1020.426369][T21401] RIP: 0010:tracing_buffers_mmap_close+0xdd/0x130 [ 1020.432779][T21401] Code: 75 46 48 8b 7b 08 e8 02 96 ff ff 31 ff 89 c3 89 c6 e8 e7 58 fb ff 85 db 75 0a 48 83 c4 08 5b e9 99 5d fb ff e8 94 5d fb ff 90 <0f> 0b 90 48 83 c4 08 5b e9 86 5d fb ff e8 31 cd 60 00 eb 87 e8 5a [ 1020.452377][T21401] RSP: 0018:ffffc9000b3ff818 EFLAGS: 00010287 [ 1020.458435][T21401] RAX: 00000000000004cc RBX: 00000000ffffffed RCX: ffffc9001abe2000 [ 1020.466388][T21401] RDX: 0000000000080000 RSI: ffffffff81bfac8c RDI: 0000000000000005 [ 1020.474339][T21401] RBP: ffff888058fc9b88 R08: 0000000000000005 R09: 0000000000000000 [ 1020.482297][T21401] R10: 00000000ffffffed R11: 0000000000000000 R12: dffffc0000000000 [ 1020.490258][T21401] R13: 0000000000000000 R14: 0000000000000000 R15: ffffffff81bfabb0 [ 1020.498223][T21401] ? __pfx_tracing_buffers_mmap_close+0x10/0x10 [ 1020.504477][T21401] ? tracing_buffers_mmap_close+0xdc/0x130 [ 1020.510285][T21401] ? tracing_buffers_mmap_close+0xdc/0x130 [ 1020.516083][T21401] __mmap_region+0x6c1/0x27b0 [ 1020.520753][T21401] ? finish_task_switch.isra.0+0x21c/0xc10 [ 1020.526552][T21401] ? __pfx___mmap_region+0x10/0x10 [ 1020.531656][T21401] ? rcu_is_watching+0x12/0xc0 [ 1020.536432][T21401] ? rcu_is_watching+0x12/0xc0 [ 1020.541185][T21401] ? trace_sched_exit_tp+0xd1/0x120 [ 1020.546389][T21401] ? __schedule+0x11a3/0x5de0 [ 1020.551071][T21401] ? __lock_acquire+0x62e/0x1ce0 [ 1020.556029][T21401] ? __lock_acquire+0x62e/0x1ce0 [ 1020.560972][T21401] ? __pfx___schedule+0x10/0x10 [ 1020.565866][T21401] ? trace_cap_capable+0x18d/0x200 [ 1020.570982][T21401] mmap_region+0x1ab/0x3f0 [ 1020.575505][T21401] ? __get_unmapped_area+0x267/0x440 [ 1020.580879][T21401] do_mmap+0xa3e/0x1210 [ 1020.585121][T21401] ? __pfx_do_mmap+0x10/0x10 [ 1020.589719][T21401] ? __pfx_down_write_killable+0x10/0x10 [ 1020.595441][T21401] ? kmem_cache_free+0x2d1/0x4d0 [ 1020.600375][T21401] vm_mmap_pgoff+0x29e/0x470 [ 1020.604966][T21401] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1020.610076][T21401] ? __sock_release+0x20b/0x270 [ 1020.614917][T21401] ? __x64_sys_futex+0x1e0/0x4c0 [ 1020.619873][T21401] ? __x64_sys_futex+0x1e9/0x4c0 [ 1020.624890][T21401] ksys_mmap_pgoff+0x7d/0x5c0 [ 1020.629563][T21401] ? xfd_validate_state+0x61/0x180 [ 1020.634675][T21401] __x64_sys_mmap+0x125/0x190 [ 1020.639350][T21401] do_syscall_64+0xcd/0x4c0 [ 1020.643870][T21401] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1020.649764][T21401] RIP: 0033:0x7f1a8c38eec9 [ 1020.654184][T21401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1020.673884][T21401] RSP: 002b:00007f1a8d1ab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1020.682365][T21401] RAX: ffffffffffffffda RBX: 00007f1a8c5e5fa0 RCX: 00007f1a8c38eec9 [ 1020.690336][T21401] RDX: 00004000000000df RSI: 0000000000020009 RDI: 0000000000000000 [ 1020.698301][T21401] RBP: 00007f1a8c411f91 R08: 0000000000000006 R09: 0000000000008000 [ 1020.706268][T21401] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 1020.714224][T21401] R13: 00007f1a8c5e6038 R14: 00007f1a8c5e5fa0 R15: 00007ffda630e998 [ 1020.722197][T21401] [ 1020.725480][T21401] Kernel Offset: disabled [ 1020.729798][T21401] Rebooting in 86400 seconds..