last executing test programs: 14m45.802249254s ago: executing program 1 (id=1656): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'bond_slave_1\x00'}) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(r2, &(0x7f0000003a00)={0x0, 0x0, &(0x7f00000039c0)={&(0x7f0000002600)={0x2c, r1, 0x221, 0x70bd2a, 0x25dfdbff, {}, [@ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000011}, 0x40) 14m45.602915084s ago: executing program 1 (id=1660): sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16, @ANYBLOB="000126bd7000fbdbdf2502000000080001"], 0x44}, 0x1, 0x0, 0x0, 0x20000000}, 0x8080) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="06000000", @ANYRES16=0x0, @ANYBLOB="0100"], 0x14}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040804) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='R'], 0x1ac}}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0x96bc}, 0x2, &(0x7f0000000380), 0x7, 0xa505}, 0x9}, 0x7, 0x4008) 14m45.385022661s ago: executing program 1 (id=1663): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/nvmet_rdma/parameters/srq_size\x00', 0x183841, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x3c8082, 0x0) openat$auto_trace_options_core_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/options/trace_printk_dest\x00', 0x121082, 0x0) write$auto(r0, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0xc) 14m45.099136811s ago: executing program 1 (id=1669): select$auto(0x7, 0x0, 0x0, &(0x7f0000000240)={[0x1ff, 0x7, 0xd, 0x1, 0x400000000000948f, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x90000001, 0x3, 0x1, 0x5, 0x5]}, 0x0) mmap$auto(0x0, 0x2000d, 0x7, 0x1000000000000eb1, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'ipvlan1\x00'}) r0 = socket(0x2, 0xa, 0xa) sendmmsg$auto(r0, &(0x7f0000000300)={{&(0x7f0000000140), 0x14, &(0x7f0000000280)={0x0, 0x4e}, 0x7, 0x0, 0x4e, 0x1}, 0x7}, 0x8, 0x8000) 14m44.904118563s ago: executing program 1 (id=1672): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) tkill$auto(0x1, 0x7) 14m44.062933084s ago: executing program 1 (id=1682): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/workqueue/nvme-reset-wq/cpumask\x00', 0x9c2342, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) write$auto(0x3, 0x0, 0x100082) 14m43.560457439s ago: executing program 32 (id=1682): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/workqueue/nvme-reset-wq/cpumask\x00', 0x9c2342, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) write$auto(0x3, 0x0, 0x100082) 10m4.726440083s ago: executing program 4 (id=4148): mmap$auto(0x0, 0x202000a, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) open(&(0x7f0000000000)='.\x00', 0xc00, 0x409) r0 = open(&(0x7f0000000100)='.\x00', 0x100, 0x0) getdents64$auto(r0, 0x0, 0x400) socket(0x2d, 0x2, 0x0) ioctl$auto(0x3, 0x89e0, 0x91) 10m3.578402073s ago: executing program 4 (id=4155): socket(0x10, 0x2, 0xc) mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000) semctl$auto_IPC_INFO(0x1000, 0x9, 0x3, 0xb) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x5) ioctl$auto(r1, 0x4008af12, r0) 10m3.074688254s ago: executing program 4 (id=4158): mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000) process_madvise$auto_PIDFD_SELF_THREAD(0xffffffffffffd8f0, &(0x7f0000000140)={0x0, 0x55}, 0x6, 0x2, 0x0) mremap$auto(0x200000000000, 0x4, 0x4, 0x3, 0x100000000) timer_settime$auto(0x0, 0x3, 0x0, 0x0) sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(0xffffffffffffffff, 0x0, 0x0) r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0x20401, 0x0) ioctl$auto(r0, 0x4611, r0) 10m2.90821504s ago: executing program 4 (id=4159): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) mkdir$auto(0x0, 0x353) 10m2.427463054s ago: executing program 4 (id=4161): sendmsg$auto_NL80211_CMD_CRIT_PROTOCOL_START(0xffffffffffffffff, 0x0, 0x20000040) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xffffeffe, 0x2) io_uring_setup$auto(0x59, 0x0) open(0x0, 0x64842, 0x0) io_uring_setup$auto(0x40000002c55, 0x0) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) io_uring_register$auto(0x2, 0x14, 0x0, 0x200) 10m1.203752962s ago: executing program 4 (id=4165): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x10000000000048, 0x0) r0 = fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0x400caed0, r0) 10m0.800444889s ago: executing program 33 (id=4165): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x10000000000048, 0x0) r0 = fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0x400caed0, r0) 8m43.561660372s ago: executing program 5 (id=4746): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0x2, 0x0, [{0x250, 0xfffffe05, 0x21}]}) 8m43.255804972s ago: executing program 5 (id=4750): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = open(&(0x7f0000000080)='./cgroup.cpu/cgroup.procs\x00', 0x42842, 0x1a4) read$auto(r0, 0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x123240, 0x0) r1 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) sendmsg$auto_OVS_DP_CMD_NEW(r1, 0x0, 0x80) 8m43.038617204s ago: executing program 5 (id=4752): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000000)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x5}, 0x9}, 0x16d, 0x6, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 8m42.661717618s ago: executing program 5 (id=4756): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x8a403, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x6) ioctl$auto_IOCTL_VMCI_CTX_ADD_NOTIFICATION(r0, 0x7af, 0x0) io_uring_setup$auto(0x6, 0x0) ioctl$auto_IOCTL_VMCI_CTX_ADD_NOTIFICATION(r0, 0x7af, 0x0) close_range$auto(0x2, 0x8, 0x0) 8m42.41032706s ago: executing program 5 (id=4758): mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0xa, 0x0) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x8643, 0x15e) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) rename$auto(&(0x7f0000000480)='./file0\x00', 0x0) 8m42.202764844s ago: executing program 5 (id=4759): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000080)={0x2, 0x0, [{0x40000070, 0x400, 0x9}]}) 8m26.992022676s ago: executing program 34 (id=4759): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000080)={0x2, 0x0, [{0x40000070, 0x400, 0x9}]}) 5.542510824s ago: executing program 3 (id=7170): sendmsg$auto_SMC_NETLINK_REMOVE_UEID(0xffffffffffffffff, 0x0, 0x20000000) socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000) prctl$auto(0x16, 0x2, 0x2, 0x4000000d, 0x100) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x1, 0x0) ioctl$auto_SNDCTL_DSP_GETODELAY(r0, 0x80045017, &(0x7f0000000c00)) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0xa02, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f00000001c0)={{@inferred=0x0, 0x7, 0x101, 0x7, "aab8e80600080043529f895cf5e8ec8f46cbb766439daa41e1aa00000000001200000000070a00", @raw=0x2}, 0x6, 0x8, 0x6, @raw=0xd7, @enumerated={0x1, 0xffff, "3a451db75512bd3527fc812ba5063f658f3a83495f2f7e8b4b84d579e75c002e35796b745e9f1f32cbfbdc296577c42c2257f3cdba1288075707bcc50e018166", 0x10000000009e, 0x9}, "a4699d30a05edbe0d28473c399a7dc920b153e9b1675451d7de94b4123f970bedd3460c667373fcc59b584d81592f6ab606c276852295e00af49e6de6e768034"}) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_REMOVE(r1, 0xc0405519, &(0x7f00000000c0)={@inferred=r2, 0x7, 0xd, 0xa4, "e3eabf11dce36a2eac9cb4682c339b3ce615a9b97386d4462bc6553245da56e4978f37368e849db4a6e0aa4e", @raw=0xa2cfa1c}) 5.501830836s ago: executing program 6 (id=7171): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0) keyctl$auto(0x4, 0xfffffffe, 0xffffffffffffffff, 0xffffffffffffffff, 0x8000000e) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x20800, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) unshare$auto(0x40000080) openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, 0x0, 0x101500, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/midiC2D2\x00', 0x80980, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001180)='/sys/devices/virtual/block/zram0/compact\x00', 0x20001, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000000)="b2", 0x1) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0) sendfile$auto(r0, r3, 0x0, 0x1) 5.303092326s ago: executing program 0 (id=7172): mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x183800, 0x0) ioctl$auto(r0, 0x4008556c, 0x81) socketpair$auto(0x502, 0x7f, 0x5, &(0x7f0000000040)=0x7) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x88841, 0x0) writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000340), 0x7111}, 0x8) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socket$nl_generic(0x10, 0x3, 0x10) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0x2a, 0x1, 0x10002, 0x4, 0x15f4da0e, 0x3, 0xd08, 0xc, 0x8, 0x4, 0x6d3f, 0x9, 0x2, 0x4000000000000d]}, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) 4.470734915s ago: executing program 6 (id=7173): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000001b40)='/dev/cuse\x00', 0x20840, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) preadv$auto(0x40000000000003, 0x0, 0x6, 0x8, 0x5) mmap$auto(0x0, 0xf4, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event1\x00', 0x8000, 0x0) ioctl$auto_EVIOCSMASK(r0, 0x40104593, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x3, 0x1, 0x9, 0x7352, 0x3f, 0x65f, 0x1ffde, 0x7, 0x3, 0x2, 0xb, 0x3, 0x5, 0x101, 0xb4, 0x9, 0x6, 0x7ff, 0x84, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0xb4, 0x0, 0x0, 0x0, 0x0, 0xfffffff9, [0x0, 0x0, 0x68, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000, 0x1000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3, 0x800000000000000, 0x7e30e0be]}, 0x1fe, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xdc5e}, 0x800}, 0x7, 0x4008) 4.165132452s ago: executing program 0 (id=7175): bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x200, 0x1001, 0x24, 0x1, 0xffffffffffffffff, 0x0, 0x5}, 0x4f4) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_VHOST_NET_SET_BACKEND(0xffffffffffffffff, 0x4008af30, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, 0x0, 0x20c01, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) capset$auto(0x0, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r2 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(0xffffffffffffffff, 0xc0184d15, 0xd3) ioctl$auto(r1, 0x4b72, r2) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3d, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f0000000040)='\x00\x00\x00\x00\x00\x00\x00e\x9d4^\xb6)K\xab0o\xc5\x8c\xc2\\\x87\x03\xc5\x06]N\x92\xf5\x1a\x02\xcd\xc6-7n\xa3\xd6x\xa1\xb5\xd0D\x82\x93\x1d\xb7\x9d\xe1,\x0f\x98|Y\xd5@A9\xc9\x84\x81/fi%\" \x06\x00\x00\x00\x00\x00\x00\x00\x9bXijRH\xff\x00\x00\x00\n\x00\x00\x00\x00\x00\x00', 0x100000a3d9) select$auto(0xf, 0x0, 0x0, &(0x7f00000002c0)={[0x800001ff, 0x7, 0xf, 0x1, 0x4, 0x3, 0x15f4da0a, 0x69a, 0x6, 0x3, 0x208000001f, 0x2, 0x6d3c, 0x9, 0x2, 0x6]}, 0x0) 4.069981823s ago: executing program 3 (id=7176): mq_open$auto(0x0, 0x7e, 0x9, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) rseq$auto(0x0, 0x8000, 0x0, 0x8) modify_ldt$auto(0x5, 0x0, 0x100) socket(0x21, 0x1, 0x6) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) writev$auto(r0, 0x0, 0x3) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0xc0802, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, 0x0, 0x100000a3d9) close_range$auto(0x0, 0x5, 0x0) fanotify_init$auto(0x5, 0x2000000000002) inotify_init1$auto(0x3000000000000) socket(0x15, 0x5, 0x0) getsockopt$auto(0x2, 0x114, 0x2711, 0xfffffffffffffffc, 0x0) 3.820339401s ago: executing program 6 (id=7177): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0xa, 0x2, 0x88) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) r0 = open(0x0, 0x261c2, 0x84) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x9, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) r2 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'wg0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r4, r3, 0x4, 0x401, r2, @relative_id=0x13, 0xe600}, 0xf) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r0, 0x0, 0x3}, 0xc) bpf$auto(0x2, &(0x7f0000000500)=@bpf_attr_11={0x5, 0x8000000000000001, 0x9, 0x5, 0xf870e9f, 0x7, 0x8}, 0x9) bpf$auto(0x1, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xf) 3.627947879s ago: executing program 0 (id=7178): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000180)=""/68, 0x44) sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r1, 0x0, 0x20000000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r2 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r2, 0xc0603d06, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000023, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) close_range$auto(0x2, 0xa, 0x0) 3.536419463s ago: executing program 6 (id=7179): move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ppoll$auto(&(0x7f0000000000)={0xffffffffffffffff, 0x81, 0x9}, 0x9, 0x0, 0x0, 0x8) r0 = openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/enable\x00', 0x40, 0x0) readv$auto(r0, &(0x7f0000000100)={&(0x7f0000000140), 0x6}, 0x1) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.7/usb8/power/autosuspend\x00', 0xa0302, 0x0) fcntl$auto(0xffffffffffffffff, 0x8, 0x1) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80402, 0x0) write$auto_ocfs2_control_fops_stack_user(r1, &(0x7f0000003900)='\t', 0x1) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/scsi_mod/parameters/default_dev_flags\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000007ec0)=""/254, 0xfe) read$auto(0x4, 0x0, 0xfdef) 3.450559936s ago: executing program 3 (id=7180): mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xffffeffe, 0x2) socket$nl_generic(0x10, 0x3, 0x10) pipe$auto(0x0) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x2, 0x0) socketpair$auto(0x8, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101080, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_CREATE_VM(r0, 0x4048aecb, 0x0) 3.166708081s ago: executing program 0 (id=7182): mmap$auto(0x0, 0x9, 0xdf, 0x1000000eb1, 0x401, 0x8000) mount$auto(0x0, 0x0, &(0x7f0000000140)='nfsd\x00', 0x10001, 0x0) utimes$auto(0x0, 0x0) r0 = socket(0x18, 0x80000, 0x0) connect$auto(r0, 0x0, 0x1e) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000180)='/:$]\x00', 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xf, 0x3, 0x2) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x100000000, 0x5, 0x63, 0x0, 0x0, 0x0, 0x7ff, 0x200, 0x2, 0xd, 0x9, 0x10009, 0x2, 0xd, 0x6, 0x200000100103}) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) socket(0x10, 0x2, 0x6) socket(0xf, 0x3, 0x2) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 3.162342727s ago: executing program 2 (id=7183): mkdir$auto(&(0x7f0000004440)='./file0\x00', 0x1) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000) r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000001c0), 0x40100, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000280)={{0x3, 0x10000, 0x0, 0x7, 0x4}, "654c6dbc7a4d30983899a7e1325b6a29ba1e184410ba9f74e82a3fa6c3ccf1bf"}) readv$auto(r0, &(0x7f00000000c0)={0x0, 0x1}, 0x6) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x8, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101080, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_CREATE_VM(r1, 0x4048aecb, 0x0) 3.043105698s ago: executing program 3 (id=7184): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x28, 0x801, 0x0) socket(0xf, 0x3, 0x2) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72) socket(0x2, 0x1, 0x0) select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x3, 0xfff, 0x8fb6, 0x948b, 0x3, 0x95f4da2d, 0xc, 0x6, 0x62, 0x7, 0x7, 0x6d3f, 0xa, 0x5, 0x5]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000140), 0x60a41, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x6, 0x1, 0xffffffffffffffe7, 0x800000000000948b, 0x3, 0x15f4da0a, 0x3, 0x4000000000000003, 0x62, 0x80000021, 0x7, 0x6d3e, 0x7fff, 0x8, 0x6]}, 0x0) listen$auto(r0, 0xffffffff) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) madvise$auto(0x4010c230000, 0x80, 0x200) 2.521857675s ago: executing program 2 (id=7185): socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/device_info\x00', 0x48041, 0x0) write$auto(0x3, 0x0, 0xfffffdee) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)={0x28, r1, 0x1, 0x70bd2d, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_HIGH={0x8, 0x16, 0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x8080}, 0x0) syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000700), 0xffffffffffffffff) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) connect$auto(r0, &(0x7f0000000100)=@sco={0x1f, @none}, 0x1) mq_open$auto(0x0, 0x0, 0x7d, &(0x7f0000000040)={0xfffffffffffffffd, 0x6, 0xffffffffffffffc0, 0x800000000000006}) socket(0x2, 0x80805, 0x0) r3 = eventfd$auto(0x7) writev$auto(0x4, &(0x7f0000000080)={&(0x7f0000000040), 0x8}, 0x1) read$auto_vhci_fops_hci_vhci(r3, &(0x7f0000000200)=""/36, 0x24) 2.426213979s ago: executing program 0 (id=7186): r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3) ioctl$auto(r0, 0x5522, 0xf15) ioctl$auto(r0, 0x5523, r0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0x0, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r1, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r1, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) mmap$auto(0x0, 0xe983, 0xa3, 0xeb1, r1, 0x8000) listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1) write$auto(0xffffffffffffffff, 0x0, 0x2b6) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x20881, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x10003c, 0x1, 0x1ffde, 0x7, 0x3, 0xf7fffffffffffffe, 0x9, 0x3, 0x6, 0x4, 0xb4, 0x9, 0x9, 0x10005, 0x82, 0x4, 0xffefffff, 0x7, 0x2000, 0x203, 0x0, 0x20e9d17d, 0x400300000000000, 0xdb, 0x0, 0x80000000, 0xf04, [0xfffffffffffffffe, 0x0, 0x2, 0xfffffffffffffffd, 0x2, 0xfffffffffffffffe, 0x0, 0x20000000000007, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0xff5b, 0xc72, 0x0, 0x9, 0x0, 0x66, 0x2, 0x1, 0x0, 0x0, 0x80000, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, 0x8c]}, 0x2, 0xd) 2.204626004s ago: executing program 2 (id=7187): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0xa, 0x5, 0x0) getsockopt$auto(r0, 0x0, 0x2, 0x0, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r1 = socket(0x1d, 0x3, 0x1) unshare$auto(0x40000080) msgrcv$auto(0x0, 0x0, 0x1000, 0x8000000000000000, 0xb5) syz_genetlink_get_family_id$auto_netdev(0x0, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_MEDIA_GET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)={0x20, r3, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @pid}]}]}, 0x20}, 0x1, 0x2000000, 0x0, 0x20010}, 0x20040880) r4 = gettid() process_vm_writev$auto(r4, 0x0, 0x3, 0x0, 0x4, 0x0) prctl$auto_PR_SET_MM_BRK(0x8, 0x7, 0xffffffffffffffff, 0x0, 0xfff) sendmsg$auto_TIPC_NL_PUBL_GET(r1, 0x0, 0x4) 1.850319199s ago: executing program 3 (id=7188): mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) r0 = socket(0xa, 0x3, 0x3b) getsockopt$auto(r0, 0x29, 0x24, 0x0, 0x0) mmap$auto(0x0, 0x3, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0xfffffdef) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8543, 0x0) r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40602, 0x0) read$auto(r1, 0x0, 0x7ff) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) 1.515082467s ago: executing program 6 (id=7189): mmap$auto(0xfffffffffffffffc, 0x800000200004, 0x2, 0x40eb1, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) socket(0xb, 0x6, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0x1e, 0x1, 0x0) mmap$auto(0xfff7fffffffffff7, 0x400008, 0xdf, 0x10, 0x2, 0x8000) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) poll$auto(&(0x7f0000000040)={0x3, 0x0, 0xa}, 0x5, 0x108) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpu1/hotplug/fail\x00', 0x100, 0x0) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0xa, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f) 1.390823581s ago: executing program 0 (id=7190): openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x108000, 0x800032, 0x4) madvise$auto(0x0, 0x200007, 0x19) socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) ioctl$auto(0xffffffffffffffff, 0x400064c8, 0xffffffffffffffff) setpriority$auto_PRIO_USER(0x2, 0x0, 0x3) 1.129260237s ago: executing program 2 (id=7191): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) socket(0x2, 0x1, 0x106) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r1 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/set_event\x00', 0xa0301, 0x0) write$auto(r1, 0x0, 0x4) rseq$auto(0x0, 0x8000, 0x0, 0x6) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) shutdown$auto(0x200000003, 0x2) 825.693796ms ago: executing program 6 (id=7192): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket(0xa, 0x1, 0x100) eventfd2$auto(0x6af3, 0x800) select$auto(0xd, 0x0, 0x0, &(0x7f0000000200)={[0x1ff, 0x7, 0x3, 0x8fd6, 0x3, 0x3, 0x15f4da0a, 0x3, 0x3, 0x7f, 0x32, 0x7440, 0xd0, 0xa, 0x9, 0xdffffffffffffffe]}, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/security/tomoyo/query\x00', 0x82a02, 0x0) openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/filter\x00', 0x2, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x68006, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) write$auto(0x3, 0x0, 0x5c8) 427.187658ms ago: executing program 2 (id=7193): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) r1 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000002e40), 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_SET_TUNSRC(r2, &(0x7f0000002f00)={0x0, 0x0, &(0x7f0000002ec0)={&(0x7f0000002e80)={0x14, r3, 0x1, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4048c40}, 0x4) readv$auto(r1, &(0x7f0000000680)={0x0, 0x40200}, 0x3) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, 0x0) ppoll$auto(0x0, 0x2, 0x0, 0x0, 0x8) modify_ldt$auto(0x1, 0x0, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/cpu/cpuidle/current_governor\x00', 0xa42, 0x0) migrate_pages$auto(0x0, 0x99, 0x0, 0x0) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r4, 0xc0045002, &(0x7f00000000c0)) ioctl$auto_SNDCTL_DSP_CHANNELS(r4, 0xc0045006, &(0x7f00000001c0)) 136.742533ms ago: executing program 3 (id=7194): prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) writev$auto(0xffffffffffffffff, 0x0, 0x8) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0xff1, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80402, 0x0) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/radio_si470x_common/parameters/space\x00', 0x149100, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000b40)=""/4096, 0x1000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS_OFF(0x9, 0x0, 0xffffffffffffffff, 0x2, 0x5c) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x40802, 0x0) sendmsg$auto_NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000165c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004000}, 0x0) mmap$auto(0x0, 0xe983, 0xa3, 0xeb1, 0xffffffffffffffff, 0x8000) rseq$auto(0x0, 0x8000, 0x0, 0x8000006) epoll_create$auto(0x7) listmount$auto(0x0, 0x0, 0xf4240, 0x1) 0s ago: executing program 2 (id=7195): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/irq.pressure\x00', 0x101102, 0x0) openat$auto_ocfs2_control_fops_stack_user(0xffffffffffffff9c, &(0x7f0000000040), 0x669400, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/card0/pcm0p/sub3/xrun_injection\x00', 0x8a180, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv6/conf/batadv_slave_0/proxy_ndp\x00', 0x382, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0) inotify_init1$auto(0x3000000000000) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) r1 = socket(0xa, 0x801, 0x84) getsockopt$auto(r1, 0x84, 0x82, 0x0, 0x0) ioctl$auto(0x3, 0x80106f53, r0) kernel console output (not intermixed with test programs): 953.142661][T23263] RSP: 002b:00007f20bb35b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 953.142676][T23263] RAX: ffffffffffffffda RBX: 00007f20ba7e5fa0 RCX: 00007f20ba58eec9 [ 953.142687][T23263] RDX: 000000007fffffff RSI: 0000000000000000 RDI: 0000000000000003 [ 953.142696][T23263] RBP: 00007f20ba611f91 R08: 0000000000000000 R09: 0000000000000000 [ 953.142705][T23263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 953.142713][T23263] R13: 00007f20ba7e6038 R14: 00007f20ba7e5fa0 R15: 00007ffc31040268 [ 953.142733][T23263] [ 953.672495][T23265] CPU: 1 UID: 0 PID: 23265 Comm: syz.3.6490 Tainted: G I syzkaller #0 PREEMPT(full) [ 953.672529][T23265] Tainted: [I]=FIRMWARE_WORKAROUND [ 953.672536][T23265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 953.672545][T23265] Call Trace: [ 953.672551][T23265] [ 953.672558][T23265] dump_stack_lvl+0x16c/0x1f0 [ 953.672587][T23265] should_fail_ex+0x512/0x640 [ 953.672613][T23265] get_futex_key+0x1d0/0x1560 [ 953.672634][T23265] ? __pfx_get_futex_key+0x10/0x10 [ 953.672651][T23265] ? trace_pid_list_is_set+0xfb/0x150 [ 953.672670][T23265] ? do_raw_spin_unlock+0x172/0x230 [ 953.672696][T23265] futex_wait_setup+0x9d/0x550 [ 953.672723][T23265] __futex_wait+0x194/0x2f0 [ 953.672745][T23265] ? __pfx___futex_wait+0x10/0x10 [ 953.672765][T23265] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 953.672857][T23265] ? lockdep_hardirqs_on+0x7c/0x110 [ 953.672882][T23265] ? __pfx_futex_wake_mark+0x10/0x10 [ 953.672907][T23265] ? futex_private_hash_put+0x176/0x300 [ 953.672928][T23265] ? futex_private_hash_put+0x18a/0x300 [ 953.672947][T23265] futex_wait+0xe8/0x380 [ 953.672969][T23265] ? __pfx_futex_wait+0x10/0x10 [ 953.672996][T23265] ? do_vfs_ioctl+0x128/0x14f0 [ 953.673021][T23265] do_futex+0x229/0x350 [ 953.673039][T23265] ? __pfx_do_futex+0x10/0x10 [ 953.673058][T23265] ? find_held_lock+0x2b/0x80 [ 953.673075][T23265] __x64_sys_futex+0x1e0/0x4c0 [ 953.673095][T23265] ? __fget_files+0x20e/0x3c0 [ 953.673111][T23265] ? __pfx___x64_sys_futex+0x10/0x10 [ 953.673131][T23265] ? fput+0x9b/0xd0 [ 953.673154][T23265] do_syscall_64+0xcd/0x4c0 [ 953.673169][T23265] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 953.673184][T23265] RIP: 0033:0x7f597838eec9 [ 953.673198][T23265] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 953.673213][T23265] RSP: 002b:00007f59791860e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 953.673228][T23265] RAX: ffffffffffffffda RBX: 00007f59785e5fa8 RCX: 00007f597838eec9 [ 953.673237][T23265] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f59785e5fa8 [ 953.673246][T23265] RBP: 00007f59785e5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 953.673255][T23265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 953.673264][T23265] R13: 00007f59785e6038 R14: 00007ffea30cf6a0 R15: 00007ffea30cf788 [ 953.673283][T23265] [ 954.686463][T23272] ICMPv6: process `syz.2.6492' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 955.898780][T23260] active_anon:15441 inactive_anon:71451 isolated_anon:0 [ 955.898780][T23260] active_file:22983 inactive_file:37519 isolated_file:0 [ 955.898780][T23260] unevictable:768 dirty:598 writeback:0 [ 955.898780][T23260] slab_reclaimable:13731 slab_unreclaimable:98845 [ 955.898780][T23260] mapped:52653 shmem:79908 pagetables:1520 [ 955.898780][T23260] sec_pagetables:0 bounce:0 [ 955.898780][T23260] kernel_misc_reclaimable:0 [ 955.898780][T23260] free:1222872 free_pcp:25988 free_cma:0 [ 955.973864][T23280] netlink: 338 bytes leftover after parsing attributes in process `syz.2.6495'. [ 956.048914][T23280] netlink: 314 bytes leftover after parsing attributes in process `syz.2.6495'. [ 956.130984][T23282] net_ratelimit: 518 callbacks suppressed [ 956.131000][T23282] netlink: zone id is out of range [ 956.246753][T23282] netlink: zone id is out of range [ 956.306902][T23282] netlink: zone id is out of range [ 956.345847][T23282] netlink: zone id is out of range [ 956.401892][T23282] netlink: zone id is out of range [ 956.412003][T23260] Node 0 active_anon:61660kB inactive_anon:287752kB active_file:91936kB inactive_file:149944kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:214592kB dirty:2400kB writeback:0kB shmem:315700kB shmem_thp:69632kB shmem_pmdmapped:65536kB anon_thp:0kB kernel_stack:13392kB pagetables:5684kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 956.483823][T23282] netlink: zone id is out of range [ 956.515018][T23282] netlink: zone id is out of range [ 956.550220][T23282] netlink: zone id is out of range [ 956.611060][T23282] netlink: zone id is out of range [ 956.656172][T23282] netlink: zone id is out of range [ 956.725749][T23260] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:80kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 956.885989][T23260] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 957.081898][T23260] lowmem_reserve[]: 0 2480 2481 2481 2481 [ 957.114556][T23260] Node 0 DMA32 free:962560kB boost:0kB min:34320kB low:42900kB high:51480kB reserved_highatomic:0KB free_highatomic:0KB active_anon:61612kB inactive_anon:288944kB active_file:90692kB inactive_file:149872kB unevictable:1536kB writepending:2244kB present:3129332kB managed:2539524kB mlocked:0kB bounce:0kB free_pcp:96908kB local_pcp:96908kB free_cma:0kB [ 957.221385][T23289] FAULT_INJECTION: forcing a failure. [ 957.221385][T23289] name failslab, interval 1, probability 0, space 0, times 0 [ 957.336141][T23260] lowmem_reserve[]: 0 0 1 1 1 [ 957.361842][T23260] Node 0 Normal free:12kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:1244kB inactive_file:72kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:12kB free_cma:0kB [ 957.404722][T23289] CPU: 1 UID: 0 PID: 23289 Comm: syz.3.6497 Tainted: G I syzkaller #0 PREEMPT(full) [ 957.404750][T23289] Tainted: [I]=FIRMWARE_WORKAROUND [ 957.404757][T23289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 957.404766][T23289] Call Trace: [ 957.404772][T23289] [ 957.404779][T23289] dump_stack_lvl+0x16c/0x1f0 [ 957.404808][T23289] should_fail_ex+0x512/0x640 [ 957.404832][T23289] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 957.404851][T23289] should_failslab+0xc2/0x120 [ 957.404871][T23289] __kmalloc_cache_noprof+0x6a/0x3e0 [ 957.404887][T23289] ? alloc_netdev_mqs+0xec4/0x1530 [ 957.404909][T23289] ? kasan_save_track+0x14/0x30 [ 957.404928][T23289] alloc_netdev_mqs+0xec4/0x1530 [ 957.404955][T23289] __ip_tunnel_create+0x3ad/0x6e0 [ 957.404972][T23289] ? __pfx___ip_tunnel_create+0x10/0x10 [ 957.404992][T23289] ip_tunnel_init_net+0x22f/0x7d0 [ 957.405010][T23289] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 957.405029][T23289] ? trace_kmalloc+0x2b/0xd0 [ 957.405048][T23289] ? __kmalloc_noprof+0x242/0x510 [ 957.405064][T23289] ? lockdep_init_map_type+0x5c/0x280 [ 957.405087][T23289] ? __pfx_ipgre_tap_init_net+0x10/0x10 [ 957.405109][T23289] ops_init+0x1e2/0x5f0 [ 957.405132][T23289] setup_net+0x10f/0x380 [ 957.405145][T23289] ? lockdep_init_map_type+0x5c/0x280 [ 957.405167][T23289] ? __pfx_setup_net+0x10/0x10 [ 957.405182][T23289] ? debug_mutex_init+0x37/0x70 [ 957.405205][T23289] copy_net_ns+0x2a6/0x5f0 [ 957.405223][T23289] create_new_namespaces+0x3ea/0xa90 [ 957.405246][T23289] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 957.405271][T23289] ksys_unshare+0x45b/0xa40 [ 957.405292][T23289] ? __pfx_ksys_unshare+0x10/0x10 [ 957.405313][T23289] ? xfd_validate_state+0x61/0x180 [ 957.405342][T23289] __x64_sys_unshare+0x31/0x40 [ 957.405361][T23289] do_syscall_64+0xcd/0x4c0 [ 957.405376][T23289] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 957.405391][T23289] RIP: 0033:0x7f597838eec9 [ 957.405405][T23289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 957.405419][T23289] RSP: 002b:00007f5979186038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 957.405433][T23289] RAX: ffffffffffffffda RBX: 00007f59785e5fa0 RCX: 00007f597838eec9 [ 957.405444][T23289] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 957.405453][T23289] RBP: 00007f5978411f91 R08: 0000000000000000 R09: 0000000000000000 [ 957.405463][T23289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 957.405472][T23289] R13: 00007f59785e6038 R14: 00007f59785e5fa0 R15: 00007ffea30cf788 [ 957.405492][T23289] [ 957.787489][T23299] netlink: 'syz.2.6500': attribute type 1 has an invalid length. [ 957.796356][T23299] netlink: 13 bytes leftover after parsing attributes in process `syz.2.6500'. [ 957.848737][T23301] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6501'. [ 957.859091][T23301] netlink: 13 bytes leftover after parsing attributes in process `syz.2.6501'. [ 958.022267][T23260] lowmem_reserve[]: 0 0 0 0 0 [ 958.037244][T23260] Node 1 Normal free:3913808kB boost:0kB min:55560kB low:69448kB high:83336kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:4816kB local_pcp:4816kB free_cma:0kB [ 958.155082][T23260] lowmem_reserve[]: 0 0 0 0 0 [ 958.177299][T23260] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 958.251482][T23260] Node 0 DMA32: 2102*4kB (UME) 1152*8kB (UME) 522*16kB (UME) 467*32kB (UME) 114*64kB (UME) 25*128kB (U) 59*256kB (UME) 186*512kB (UME) 130*1024kB (UM) 5*2048kB (UM) 167*4096kB (UM) = 989144kB [ 958.347074][T23260] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 958.406091][T23260] Node 1 Normal: 208*4kB (UME) 58*8kB (UME) 30*16kB (UME) 211*32kB (UE) 88*64kB (UE) 26*128kB (UE) 10*256kB (UME) 5*512kB (UE) 2*1024kB (U) 3*2048kB (UME) 948*4096kB (UM) = 3913808kB [ 958.486240][T23260] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 958.536792][T23260] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 958.578370][T23260] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 958.625674][T23260] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 958.680848][T23260] 125677 total pagecache pages [ 958.699288][T23260] 11 pages in swap cache [ 958.718593][T23260] Free swap = 104512kB [ 958.747264][T23260] Total swap = 124996kB [ 958.763774][T23260] 2097051 pages RAM [ 958.781882][T23260] 0 pages HighMem/MovableOnly [ 958.806677][T23260] 430208 pages reserved [ 958.827302][T23260] 0 pages cma reserved [ 958.932076][T23309] netlink: 186 bytes leftover after parsing attributes in process `syz.2.6504'. [ 959.536442][T23313] FAULT_INJECTION: forcing a failure. [ 959.536442][T23313] name failslab, interval 1, probability 0, space 0, times 0 [ 959.620226][T23313] CPU: 1 UID: 0 PID: 23313 Comm: syz.6.6507 Tainted: G I syzkaller #0 PREEMPT(full) [ 959.620254][T23313] Tainted: [I]=FIRMWARE_WORKAROUND [ 959.620261][T23313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 959.620271][T23313] Call Trace: [ 959.620277][T23313] [ 959.620284][T23313] dump_stack_lvl+0x16c/0x1f0 [ 959.620312][T23313] should_fail_ex+0x512/0x640 [ 959.620335][T23313] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 959.620357][T23313] should_failslab+0xc2/0x120 [ 959.620377][T23313] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 959.620395][T23313] ? alloc_vfsmnt+0x23/0x6b0 [ 959.620420][T23313] alloc_vfsmnt+0x23/0x6b0 [ 959.620440][T23313] clone_mnt+0x6d/0xbf0 [ 959.620453][T23313] ? copy_mnt_ns+0x1a9/0xac0 [ 959.620474][T23313] copy_tree+0x31d/0xbd0 [ 959.620496][T23313] copy_mnt_ns+0x1a9/0xac0 [ 959.620513][T23313] ? trace_kmem_cache_alloc+0x28/0xc0 [ 959.620536][T23313] ? create_new_namespaces+0x30/0xa90 [ 959.620557][T23313] create_new_namespaces+0xd3/0xa90 [ 959.620572][T23313] ? bpf_lsm_capable+0x9/0x10 [ 959.620586][T23313] ? security_capable+0x7e/0x260 [ 959.620604][T23313] copy_namespaces+0x468/0x560 [ 959.620621][T23313] copy_process+0x2822/0x7690 [ 959.620649][T23313] ? __pfx_copy_process+0x10/0x10 [ 959.620667][T23313] ? futex_private_hash_put+0x176/0x300 [ 959.620688][T23313] ? futex_private_hash_put+0x18a/0x300 [ 959.620708][T23313] kernel_clone+0xfc/0x930 [ 959.620728][T23313] ? __pfx_kernel_clone+0x10/0x10 [ 959.620758][T23313] __do_sys_clone+0xce/0x120 [ 959.620776][T23313] ? __pfx___do_sys_clone+0x10/0x10 [ 959.620795][T23313] ? __pfx___might_resched+0x10/0x10 [ 959.620817][T23313] ? xfd_validate_state+0x61/0x180 [ 959.620846][T23313] ? __pfx_do_writev+0x10/0x10 [ 959.620869][T23313] do_syscall_64+0xcd/0x4c0 [ 959.620884][T23313] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 959.620900][T23313] RIP: 0033:0x7fcf1fb8eec9 [ 959.620913][T23313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 959.620928][T23313] RSP: 002b:00007fcf20a8efe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 959.620942][T23313] RAX: ffffffffffffffda RBX: 00007fcf1fde5fa0 RCX: 00007fcf1fb8eec9 [ 959.620952][T23313] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411 [ 959.620961][T23313] RBP: 00007fcf1fc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 959.620970][T23313] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 959.620979][T23313] R13: 00007fcf1fde6038 R14: 00007fcf1fde5fa0 R15: 00007ffea422c628 [ 959.620999][T23313] [ 961.313610][T23327] sp0: Synchronizing with TNC [ 962.525438][T23356] FAULT_INJECTION: forcing a failure. [ 962.525438][T23356] name failslab, interval 1, probability 0, space 0, times 0 [ 962.588409][T23356] CPU: 1 UID: 0 PID: 23356 Comm: syz.6.6521 Tainted: G I syzkaller #0 PREEMPT(full) [ 962.588439][T23356] Tainted: [I]=FIRMWARE_WORKAROUND [ 962.588445][T23356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 962.588454][T23356] Call Trace: [ 962.588460][T23356] [ 962.588467][T23356] dump_stack_lvl+0x16c/0x1f0 [ 962.588495][T23356] should_fail_ex+0x512/0x640 [ 962.588525][T23356] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 962.588544][T23356] should_failslab+0xc2/0x120 [ 962.588565][T23356] __kmalloc_cache_noprof+0x6a/0x3e0 [ 962.588580][T23356] ? lockdep_init_map_type+0x5c/0x280 [ 962.588601][T23356] ? nci_hci_allocate+0x45/0x330 [ 962.588626][T23356] nci_hci_allocate+0x45/0x330 [ 962.588648][T23356] nci_allocate_device+0x26f/0x430 [ 962.588668][T23356] virtual_ncidev_open+0x6f/0x220 [ 962.588687][T23356] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 962.588705][T23356] misc_open+0x35d/0x420 [ 962.588724][T23356] ? __pfx_misc_open+0x10/0x10 [ 962.588741][T23356] chrdev_open+0x234/0x6a0 [ 962.588761][T23356] ? __pfx_apparmor_file_open+0x10/0x10 [ 962.588778][T23356] ? __pfx_chrdev_open+0x10/0x10 [ 962.588798][T23356] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 962.588818][T23356] do_dentry_open+0x982/0x1530 [ 962.588837][T23356] ? __pfx_chrdev_open+0x10/0x10 [ 962.588859][T23356] vfs_open+0x82/0x3f0 [ 962.588886][T23356] path_openat+0x1de4/0x2cb0 [ 962.588912][T23356] ? __pfx_path_openat+0x10/0x10 [ 962.588935][T23356] do_filp_open+0x20b/0x470 [ 962.588952][T23356] ? __pfx_do_filp_open+0x10/0x10 [ 962.588983][T23356] ? alloc_fd+0x471/0x7d0 [ 962.589005][T23356] do_sys_openat2+0x11b/0x1d0 [ 962.589032][T23356] ? __pfx_do_sys_openat2+0x10/0x10 [ 962.589062][T23356] __x64_sys_openat+0x174/0x210 [ 962.589077][T23356] ? __pfx___x64_sys_openat+0x10/0x10 [ 962.589098][T23356] do_syscall_64+0xcd/0x4c0 [ 962.589114][T23356] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 962.589130][T23356] RIP: 0033:0x7fcf1fb8eec9 [ 962.589143][T23356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 962.589159][T23356] RSP: 002b:00007fcf20a8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 962.589174][T23356] RAX: ffffffffffffffda RBX: 00007fcf1fde5fa0 RCX: 00007fcf1fb8eec9 [ 962.589184][T23356] RDX: 0000000000000002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 962.589194][T23356] RBP: 00007fcf1fc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 962.589203][T23356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 962.589212][T23356] R13: 00007fcf1fde6038 R14: 00007fcf1fde5fa0 R15: 00007ffea422c628 [ 962.589232][T23356] [ 963.589141][T23365] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6523'. [ 964.054953][T23368] lo: entered allmulticast mode [ 964.175819][T23368] lo: left allmulticast mode [ 964.682661][T23380] FAULT_INJECTION: forcing a failure. [ 964.682661][T23380] name failslab, interval 1, probability 0, space 0, times 0 [ 964.760838][T23380] CPU: 1 UID: 0 PID: 23380 Comm: syz.6.6529 Tainted: G I syzkaller #0 PREEMPT(full) [ 964.760866][T23380] Tainted: [I]=FIRMWARE_WORKAROUND [ 964.760873][T23380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 964.760883][T23380] Call Trace: [ 964.760889][T23380] [ 964.760897][T23380] dump_stack_lvl+0x16c/0x1f0 [ 964.760927][T23380] should_fail_ex+0x512/0x640 [ 964.760950][T23380] ? __kmalloc_cache_node_noprof+0x5a/0x420 [ 964.760971][T23380] should_failslab+0xc2/0x120 [ 964.760993][T23380] __kmalloc_cache_node_noprof+0x6d/0x420 [ 964.761010][T23380] ? __get_vm_area_node+0x101/0x330 [ 964.761037][T23380] __get_vm_area_node+0x101/0x330 [ 964.761060][T23380] ? ringbuf_map_alloc+0x3da/0x7f0 [ 964.761078][T23380] get_vm_area_caller+0x71/0xa0 [ 964.761101][T23380] ? ringbuf_map_alloc+0x3da/0x7f0 [ 964.761118][T23380] vmap+0x135/0x320 [ 964.761140][T23380] ? __pfx_vmap+0x10/0x10 [ 964.761166][T23380] ringbuf_map_alloc+0x3da/0x7f0 [ 964.761188][T23380] map_create+0x592/0x1f80 [ 964.761215][T23380] ? __pfx_map_create+0x10/0x10 [ 964.761233][T23380] ? __might_fault+0xe3/0x190 [ 964.761249][T23380] ? __might_fault+0xe3/0x190 [ 964.761265][T23380] ? __might_fault+0x13b/0x190 [ 964.761288][T23380] __sys_bpf+0x44d2/0x4de0 [ 964.761311][T23380] ? __pfx___sys_bpf+0x10/0x10 [ 964.761334][T23380] ? errseq_sample+0x53/0x70 [ 964.761350][T23380] ? file_init_path+0x4fe/0x760 [ 964.761375][T23380] ? do_futex+0x122/0x350 [ 964.761394][T23380] ? __pfx_do_futex+0x10/0x10 [ 964.761420][T23380] ? __sys_socket+0xac/0x260 [ 964.761439][T23380] ? xfd_validate_state+0x61/0x180 [ 964.761460][T23380] ? __pfx___do_sys_close_range+0x10/0x10 [ 964.761482][T23380] __x64_sys_bpf+0x78/0xc0 [ 964.761494][T23380] ? lockdep_hardirqs_on+0x7c/0x110 [ 964.761516][T23380] do_syscall_64+0xcd/0x4c0 [ 964.761531][T23380] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 964.761547][T23380] RIP: 0033:0x7fcf1fb8eec9 [ 964.761561][T23380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 964.761576][T23380] RSP: 002b:00007fcf20a8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 964.761601][T23380] RAX: ffffffffffffffda RBX: 00007fcf1fde5fa0 RCX: 00007fcf1fb8eec9 [ 964.761612][T23380] RDX: 0000000000000010 RSI: 00002000000000c0 RDI: 0000000000000000 [ 964.761621][T23380] RBP: 00007fcf1fc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 964.761630][T23380] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 964.761639][T23380] R13: 00007fcf1fde6038 R14: 00007fcf1fde5fa0 R15: 00007ffea422c628 [ 964.761659][T23380] [ 965.483588][T23385] netlink: 'syz.6.6531': attribute type 10 has an invalid length. [ 965.530231][T23385] netlink: 230 bytes leftover after parsing attributes in process `syz.6.6531'. [ 966.346694][T23373] FAULT_INJECTION: forcing a failure. [ 966.346694][T23373] name failslab, interval 1, probability 0, space 0, times 0 [ 966.411590][T23373] CPU: 1 UID: 0 PID: 23373 Comm: syz.2.6526 Tainted: G I syzkaller #0 PREEMPT(full) [ 966.411618][T23373] Tainted: [I]=FIRMWARE_WORKAROUND [ 966.411625][T23373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 966.411634][T23373] Call Trace: [ 966.411640][T23373] [ 966.411647][T23373] dump_stack_lvl+0x16c/0x1f0 [ 966.411675][T23373] should_fail_ex+0x512/0x640 [ 966.411698][T23373] ? __kmalloc_noprof+0xbf/0x510 [ 966.411717][T23373] ? __seq_open_private+0x22/0xd0 [ 966.411729][T23373] should_failslab+0xc2/0x120 [ 966.411749][T23373] __kmalloc_noprof+0xd2/0x510 [ 966.411765][T23373] ? apparmor_file_open+0x1a1/0x9c0 [ 966.411782][T23373] ? do_raw_spin_lock+0x12c/0x2b0 [ 966.411806][T23373] __seq_open_private+0x22/0xd0 [ 966.411819][T23373] sysvipc_proc_open+0x29/0x2d0 [ 966.411839][T23373] ? __pfx_sysvipc_proc_open+0x10/0x10 [ 966.411859][T23373] proc_reg_open+0x134/0x5f0 [ 966.411879][T23373] do_dentry_open+0x982/0x1530 [ 966.411898][T23373] ? __pfx_proc_reg_open+0x10/0x10 [ 966.411920][T23373] vfs_open+0x82/0x3f0 [ 966.411943][T23373] path_openat+0x1de4/0x2cb0 [ 966.411967][T23373] ? __pfx_path_openat+0x10/0x10 [ 966.411989][T23373] do_filp_open+0x20b/0x470 [ 966.412011][T23373] ? __pfx_do_filp_open+0x10/0x10 [ 966.412041][T23373] ? alloc_fd+0x471/0x7d0 [ 966.412061][T23373] do_sys_openat2+0x11b/0x1d0 [ 966.412091][T23373] ? __pfx_do_sys_openat2+0x10/0x10 [ 966.412121][T23373] __x64_sys_openat+0x174/0x210 [ 966.412135][T23373] ? __pfx___x64_sys_openat+0x10/0x10 [ 966.412156][T23373] do_syscall_64+0xcd/0x4c0 [ 966.412171][T23373] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 966.412186][T23373] RIP: 0033:0x7f20ba58eec9 [ 966.412200][T23373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 966.412216][T23373] RSP: 002b:00007f20bb35b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 966.412231][T23373] RAX: ffffffffffffffda RBX: 00007f20ba7e5fa0 RCX: 00007f20ba58eec9 [ 966.412241][T23373] RDX: 00000000001a3000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 966.412251][T23373] RBP: 00007f20ba611f91 R08: 0000000000000000 R09: 0000000000000000 [ 966.412259][T23373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 966.412268][T23373] R13: 00007f20ba7e6038 R14: 00007f20ba7e5fa0 R15: 00007ffc31040268 [ 966.412287][T23373] [ 967.768332][T23385] net_ratelimit: 519 callbacks suppressed [ 967.768348][T23385] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check. [ 969.569931][T23435] FAULT_INJECTION: forcing a failure. [ 969.569931][T23435] name failslab, interval 1, probability 0, space 0, times 0 [ 969.647561][T23435] CPU: 1 UID: 0 PID: 23435 Comm: syz.6.6544 Tainted: G I syzkaller #0 PREEMPT(full) [ 969.647590][T23435] Tainted: [I]=FIRMWARE_WORKAROUND [ 969.647596][T23435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 969.647606][T23435] Call Trace: [ 969.647611][T23435] [ 969.647617][T23435] dump_stack_lvl+0x16c/0x1f0 [ 969.647645][T23435] should_fail_ex+0x512/0x640 [ 969.647670][T23435] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 969.647689][T23435] should_failslab+0xc2/0x120 [ 969.647709][T23435] __kmalloc_cache_noprof+0x6a/0x3e0 [ 969.647725][T23435] ? snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0 [ 969.647747][T23435] snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0 [ 969.647775][T23435] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 969.647794][T23435] ? snd_pcm_oss_change_params_locked+0x958/0x3a30 [ 969.647817][T23435] snd_pcm_oss_change_params_locked+0x9cd/0x3a30 [ 969.647844][T23435] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 969.647878][T23435] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 969.647898][T23435] snd_pcm_oss_sync+0x32e/0x840 [ 969.647918][T23435] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 969.647935][T23435] snd_pcm_oss_release+0x28b/0x310 [ 969.647953][T23435] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 969.647972][T23435] __fput+0x402/0xb70 [ 969.647997][T23435] task_work_run+0x150/0x240 [ 969.648012][T23435] ? __pfx_task_work_run+0x10/0x10 [ 969.648025][T23435] ? __pfx___do_sys_close_range+0x10/0x10 [ 969.648048][T23435] exit_to_user_mode_loop+0xeb/0x110 [ 969.648071][T23435] do_syscall_64+0x41c/0x4c0 [ 969.648086][T23435] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 969.648101][T23435] RIP: 0033:0x7fcf1fb8eec9 [ 969.648114][T23435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 969.648128][T23435] RSP: 002b:00007fcf20a6e038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 969.648143][T23435] RAX: 0000000000000000 RBX: 00007fcf1fde6090 RCX: 00007fcf1fb8eec9 [ 969.648152][T23435] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 969.648161][T23435] RBP: 00007fcf1fc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 969.648170][T23435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 969.648178][T23435] R13: 00007fcf1fde6128 R14: 00007fcf1fde6090 R15: 00007ffea422c628 [ 969.648197][T23435] [ 975.200118][T23516] FAULT_INJECTION: forcing a failure. [ 975.200118][T23516] name failslab, interval 1, probability 0, space 0, times 0 [ 975.258975][T23520] netlink: 'syz.6.6570': attribute type 6 has an invalid length. [ 975.287999][T23516] CPU: 1 UID: 0 PID: 23516 Comm: syz.2.6568 Tainted: G I syzkaller #0 PREEMPT(full) [ 975.288026][T23516] Tainted: [I]=FIRMWARE_WORKAROUND [ 975.288032][T23516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 975.288042][T23516] Call Trace: [ 975.288048][T23516] [ 975.288055][T23516] dump_stack_lvl+0x16c/0x1f0 [ 975.288084][T23516] should_fail_ex+0x512/0x640 [ 975.288116][T23516] ? __kmalloc_noprof+0xbf/0x510 [ 975.288136][T23516] ? lsm_blob_alloc+0x68/0x90 [ 975.288149][T23516] should_failslab+0xc2/0x120 [ 975.288169][T23516] __kmalloc_noprof+0xd2/0x510 [ 975.288191][T23516] lsm_blob_alloc+0x68/0x90 [ 975.288205][T23516] security_sk_alloc+0x30/0x270 [ 975.288224][T23516] sk_prot_alloc+0x1c7/0x2a0 [ 975.288242][T23516] sk_alloc+0x36/0xc20 [ 975.288263][T23516] tap_open+0x2f0/0x1170 [ 975.288286][T23516] ? __pfx_tap_open+0x10/0x10 [ 975.288307][T23516] chrdev_open+0x234/0x6a0 [ 975.288327][T23516] ? __pfx_apparmor_file_open+0x10/0x10 [ 975.288344][T23516] ? __pfx_chrdev_open+0x10/0x10 [ 975.288364][T23516] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 975.288385][T23516] do_dentry_open+0x982/0x1530 [ 975.288404][T23516] ? __pfx_chrdev_open+0x10/0x10 [ 975.288426][T23516] vfs_open+0x82/0x3f0 [ 975.288451][T23516] path_openat+0x1de4/0x2cb0 [ 975.288478][T23516] ? __pfx_path_openat+0x10/0x10 [ 975.288500][T23516] do_filp_open+0x20b/0x470 [ 975.288519][T23516] ? __pfx_do_filp_open+0x10/0x10 [ 975.288550][T23516] ? alloc_fd+0x471/0x7d0 [ 975.288571][T23516] do_sys_openat2+0x11b/0x1d0 [ 975.288593][T23516] ? __pfx_do_sys_openat2+0x10/0x10 [ 975.288623][T23516] __x64_sys_openat+0x174/0x210 [ 975.288636][T23516] ? __pfx___x64_sys_openat+0x10/0x10 [ 975.288662][T23516] do_syscall_64+0xcd/0x4c0 [ 975.288679][T23516] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 975.288695][T23516] RIP: 0033:0x7f20ba58eec9 [ 975.288709][T23516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 975.288724][T23516] RSP: 002b:00007f20bb35b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 975.288739][T23516] RAX: ffffffffffffffda RBX: 00007f20ba7e5fa0 RCX: 00007f20ba58eec9 [ 975.288749][T23516] RDX: 0000000000020000 RSI: 0000200000000e00 RDI: ffffffffffffff9c [ 975.288760][T23516] RBP: 00007f20ba611f91 R08: 0000000000000000 R09: 0000000000000000 [ 975.288770][T23516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 975.288779][T23516] R13: 00007f20ba7e6038 R14: 00007f20ba7e5fa0 R15: 00007ffc31040268 [ 975.288798][T23516] [ 975.548801][T23520] netlink: 13 bytes leftover after parsing attributes in process `syz.6.6570'. [ 979.848380][T23589] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6593'. [ 979.905019][T23589] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6593'. [ 980.005988][T23593] [U]  [ 980.008796][T23593] [U] [ 980.011497][T23593] [U] [ 980.014168][T23593] [U] [ 980.105109][T23593] [U] [ 980.107831][T23593] [U] [ 980.110505][T23593] [U] [ 980.113176][T23593] [U] [ 980.161948][T23593] [U] [ 980.164665][T23593] [U] [ 980.167342][T23593] [U] [ 980.170023][T23593] [U] [ 980.204336][T23593] [U] [ 980.207070][T23593] [U] [ 980.209765][T23593] [U] [ 980.212456][T23593] [U] [ 980.264210][T23593] [U] [ 980.266940][T23593] [U] [ 980.269619][T23593] [U] [ 980.272294][T23593] [U] [ 980.318697][T23593] [U] [ 980.321417][T23593] [U] [ 980.324116][T23593] [U] [ 980.326790][T23593] [U] [ 980.360753][T23593] [U] [ 980.363470][T23593] [U] [ 980.366148][T23593] [U] [ 980.368846][T23593] [U] [ 980.399181][T23593] [U] [ 980.401927][T23593] [U] [ 980.404605][T23593] [U] [ 980.407277][T23593] [U] [ 980.444262][T23593] [U] [ 980.446978][T23593] [U] [ 980.449659][T23593] [U] [ 980.452328][T23593] [U] [ 980.485888][T23593] [U] [ 980.488605][T23593] [U] [ 980.491286][T23593] [U] [ 980.493961][T23593] [U] [ 980.526468][T23593] [U] [ 980.529218][T23593] [U] [ 980.531897][T23593] [U] [ 980.534570][T23593] [U] [ 980.572494][T23593] [U] [ 980.575239][T23593] [U] [ 980.577925][T23593] [U] [ 980.580599][T23593] [U] [ 980.615502][T23593] [U] [ 980.618247][T23593] [U] [ 980.620958][T23593] [U] [ 980.623635][T23593] [U] [ 980.661623][T23593] [U] [ 980.664343][T23593] [U] [ 980.667019][T23593] [U] [ 980.669696][T23593] [U] [ 980.701842][T23593] [U] [ 980.704585][T23593] [U] [ 980.707263][T23593] [U] [ 980.709961][T23593] [U] [ 980.772081][T23593] [U] [ 980.774803][T23593] [U] [ 980.777482][T23593] [U] [ 980.780157][T23593] [U] [ 980.853252][T23593] [U] [ 980.855994][T23593] [U] [ 980.858675][T23593] [U] [ 980.861351][T23593] [U] [ 980.909320][T23593] [U] [ 981.155092][T23613] netlink: 246 bytes leftover after parsing attributes in process `syz.2.6601'. [ 981.427441][T23624] netlink: 342 bytes leftover after parsing attributes in process `syz.2.6604'. [ 981.507940][T23624] netlink: 274 bytes leftover after parsing attributes in process `syz.2.6604'. [ 981.797962][T23627] FAULT_INJECTION: forcing a failure. [ 981.797962][T23627] name failslab, interval 1, probability 0, space 0, times 0 [ 981.811507][T23627] CPU: 1 UID: 0 PID: 23627 Comm: syz.3.6606 Tainted: G I syzkaller #0 PREEMPT(full) [ 981.811534][T23627] Tainted: [I]=FIRMWARE_WORKAROUND [ 981.811540][T23627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 981.811550][T23627] Call Trace: [ 981.811556][T23627] [ 981.811562][T23627] dump_stack_lvl+0x16c/0x1f0 [ 981.811590][T23627] should_fail_ex+0x512/0x640 [ 981.811616][T23627] should_failslab+0xc2/0x120 [ 981.811636][T23627] __kmalloc_cache_noprof+0x6a/0x3e0 [ 981.811653][T23627] ? alloc_lookup_fw_priv+0x1f6/0x820 [ 981.811676][T23627] alloc_lookup_fw_priv+0x1f6/0x820 [ 981.811695][T23627] ? firmware_request_builtin_buf+0x169/0x1c0 [ 981.811719][T23627] _request_firmware+0x33e/0x1470 [ 981.811743][T23627] ? assign_fw+0x1cb/0x640 [ 981.811760][T23627] ? _request_firmware+0x957/0x1470 [ 981.811779][T23627] ? __pfx__request_firmware+0x10/0x10 [ 981.811806][T23627] request_firmware+0x35/0x50 [ 981.811826][T23627] valid_regdb+0x184/0x590 [ 981.811847][T23627] ? __pfx___mutex_lock+0x10/0x10 [ 981.811862][T23627] ? __pfx_valid_regdb+0x10/0x10 [ 981.811887][T23627] reg_reload_regdb+0x11a/0x460 [ 981.811902][T23627] ? __pfx_reg_reload_regdb+0x10/0x10 [ 981.811921][T23627] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 981.811939][T23627] ? nl80211_pre_doit+0x1b0/0xb10 [ 981.811959][T23627] genl_family_rcv_msg_doit+0x206/0x2f0 [ 981.811977][T23627] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 981.811992][T23627] ? rcu_is_watching+0x12/0xc0 [ 981.812015][T23627] ? bpf_lsm_capable+0x9/0x10 [ 981.812029][T23627] ? security_capable+0x7e/0x260 [ 981.812048][T23627] genl_rcv_msg+0x55c/0x800 [ 981.812065][T23627] ? __pfx_genl_rcv_msg+0x10/0x10 [ 981.812080][T23627] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 981.812098][T23627] ? __pfx_nl80211_reload_regdb+0x10/0x10 [ 981.812119][T23627] ? __pfx_nl80211_post_doit+0x10/0x10 [ 981.812139][T23627] netlink_rcv_skb+0x155/0x420 [ 981.812161][T23627] ? __pfx_genl_rcv_msg+0x10/0x10 [ 981.812177][T23627] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 981.812207][T23627] ? netlink_deliver_tap+0x1ae/0xd30 [ 981.812231][T23627] genl_rcv+0x28/0x40 [ 981.812244][T23627] netlink_unicast+0x5aa/0x870 [ 981.812268][T23627] ? __pfx_netlink_unicast+0x10/0x10 [ 981.812290][T23627] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 981.812311][T23627] ? __lock_acquire+0xb97/0x1ce0 [ 981.812335][T23627] netlink_sendmsg+0x8d1/0xdd0 [ 981.812361][T23627] ? __pfx_netlink_sendmsg+0x10/0x10 [ 981.812394][T23627] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 981.812415][T23627] ____sys_sendmsg+0xa95/0xc70 [ 981.812434][T23627] ? copy_msghdr_from_user+0x10a/0x160 [ 981.812457][T23627] ? __pfx_____sys_sendmsg+0x10/0x10 [ 981.812478][T23627] ? __pfx_futex_wake_mark+0x10/0x10 [ 981.812503][T23627] ___sys_sendmsg+0x134/0x1d0 [ 981.812526][T23627] ? __pfx____sys_sendmsg+0x10/0x10 [ 981.812570][T23627] __sys_sendmsg+0x16d/0x220 [ 981.812592][T23627] ? __pfx___sys_sendmsg+0x10/0x10 [ 981.812612][T23627] ? __x64_sys_futex+0x1e0/0x4c0 [ 981.812642][T23627] do_syscall_64+0xcd/0x4c0 [ 981.812657][T23627] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 981.812672][T23627] RIP: 0033:0x7f597838eec9 [ 981.812686][T23627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 981.812701][T23627] RSP: 002b:00007f5979186038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 981.812717][T23627] RAX: ffffffffffffffda RBX: 00007f59785e5fa0 RCX: 00007f597838eec9 [ 981.812727][T23627] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000007 [ 981.812736][T23627] RBP: 00007f5978411f91 R08: 0000000000000000 R09: 0000000000000000 [ 981.812745][T23627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 981.812754][T23627] R13: 00007f59785e6038 R14: 00007f59785e5fa0 R15: 00007ffea30cf788 [ 981.812773][T23627] [ 986.349581][T23695] mkiss: ax0: crc mode is auto. [ 986.750269][T23695] mkiss: ax0: crc mode is auto. [ 989.086624][T23736] netlink: 25 bytes leftover after parsing attributes in process `syz.2.6637'. [ 989.148216][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 989.155138][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 989.187052][T23737] ima: policy update failed [ 989.219844][ T30] audit: type=1802 audit(4294967471.685:20): pid=23737 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.6636" res=0 errno=0 [ 992.748122][T23800] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 994.516794][T23838] ERROR: Out of memory at tomoyo_memory_ok. [ 994.761941][T23838] FAULT_INJECTION: forcing a failure. [ 994.761941][T23838] name failslab, interval 1, probability 0, space 0, times 0 [ 994.982980][T23838] CPU: 1 UID: 0 PID: 23838 Comm: syz.6.6667 Tainted: G I syzkaller #0 PREEMPT(full) [ 994.983008][T23838] Tainted: [I]=FIRMWARE_WORKAROUND [ 994.983014][T23838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 994.983024][T23838] Call Trace: [ 994.983030][T23838] [ 994.983036][T23838] dump_stack_lvl+0x16c/0x1f0 [ 994.983066][T23838] should_fail_ex+0x512/0x640 [ 994.983089][T23838] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 994.983108][T23838] should_failslab+0xc2/0x120 [ 994.983128][T23838] __kmalloc_cache_noprof+0x6a/0x3e0 [ 994.983144][T23838] ? get_mountpoint+0x166/0x4d0 [ 994.983169][T23838] get_mountpoint+0x166/0x4d0 [ 994.983191][T23838] do_lock_mount+0x248/0x5a0 [ 994.983209][T23838] ? __pfx_do_lock_mount+0x10/0x10 [ 994.983223][T23838] ? do_raw_spin_unlock+0x172/0x230 [ 994.983247][T23838] ? _raw_spin_unlock+0x28/0x50 [ 994.983265][T23838] ? mnt_warn_timestamp_expiry+0xab/0x5e0 [ 994.983285][T23838] ? vfs_create_mount.part.0+0x386/0x4b0 [ 994.983311][T23838] path_mount+0x1b75/0x2000 [ 994.983333][T23838] ? __pfx_path_mount+0x10/0x10 [ 994.983353][T23838] ? kmem_cache_free+0x2d1/0x4d0 [ 994.983373][T23838] ? putname+0x154/0x1a0 [ 994.983395][T23838] ? __x64_sys_mount+0x28d/0x310 [ 994.983416][T23838] __x64_sys_mount+0x28d/0x310 [ 994.983435][T23838] ? __pfx___x64_sys_mount+0x10/0x10 [ 994.983460][T23838] do_syscall_64+0xcd/0x4c0 [ 994.983476][T23838] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 994.983491][T23838] RIP: 0033:0x7fcf1fb8eec9 [ 994.983504][T23838] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 994.983519][T23838] RSP: 002b:00007fcf20a8f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 994.983534][T23838] RAX: ffffffffffffffda RBX: 00007fcf1fde5fa0 RCX: 00007fcf1fb8eec9 [ 994.983544][T23838] RDX: 0000200000000100 RSI: 00002000000000c0 RDI: 0000000000000000 [ 994.983553][T23838] RBP: 00007fcf1fc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 994.983562][T23838] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000 [ 994.983571][T23838] R13: 00007fcf1fde6038 R14: 00007fcf1fde5fa0 R15: 00007ffea422c628 [ 994.983590][T23838] [ 995.501064][T23849] FAULT_INJECTION: forcing a failure. [ 995.501064][T23849] name failslab, interval 1, probability 0, space 0, times 0 [ 995.537603][T23849] CPU: 1 UID: 0 PID: 23849 Comm: syz.3.6671 Tainted: G I syzkaller #0 PREEMPT(full) [ 995.537631][T23849] Tainted: [I]=FIRMWARE_WORKAROUND [ 995.537637][T23849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 995.537647][T23849] Call Trace: [ 995.537653][T23849] [ 995.537659][T23849] dump_stack_lvl+0x16c/0x1f0 [ 995.537688][T23849] should_fail_ex+0x512/0x640 [ 995.537711][T23849] ? fs_reclaim_acquire+0xae/0x150 [ 995.537735][T23849] should_failslab+0xc2/0x120 [ 995.537755][T23849] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 995.537773][T23849] ? security_inode_alloc+0x3b/0x2b0 [ 995.537793][T23849] security_inode_alloc+0x3b/0x2b0 [ 995.537811][T23849] inode_init_always_gfp+0xce4/0x1030 [ 995.537831][T23849] alloc_inode+0x86/0x240 [ 995.537852][T23849] sock_alloc+0x40/0x280 [ 995.537866][T23849] __sock_create+0xc1/0x8d0 [ 995.537896][T23849] __sys_socket+0x14d/0x260 [ 995.537915][T23849] ? __pfx___sys_socket+0x10/0x10 [ 995.537932][T23849] ? xfd_validate_state+0x61/0x180 [ 995.537960][T23849] __x64_sys_socket+0x72/0xb0 [ 995.537977][T23849] ? lockdep_hardirqs_on+0x7c/0x110 [ 995.537999][T23849] do_syscall_64+0xcd/0x4c0 [ 995.538013][T23849] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 995.538028][T23849] RIP: 0033:0x7f597838eec9 [ 995.538042][T23849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 995.538056][T23849] RSP: 002b:00007f5979186038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 995.538071][T23849] RAX: ffffffffffffffda RBX: 00007f59785e5fa0 RCX: 00007f597838eec9 [ 995.538080][T23849] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000015 [ 995.538089][T23849] RBP: 00007f5978411f91 R08: 0000000000000000 R09: 0000000000000000 [ 995.538098][T23849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 995.538106][T23849] R13: 00007f59785e6038 R14: 00007f59785e5fa0 R15: 00007ffea30cf788 [ 995.538124][T23849] [ 995.538150][T23849] socket: no more sockets [ 996.729253][T23866] FAULT_INJECTION: forcing a failure. [ 996.729253][T23866] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 996.835884][T23866] CPU: 1 UID: 0 PID: 23866 Comm: syz.3.6677 Tainted: G I syzkaller #0 PREEMPT(full) [ 996.835911][T23866] Tainted: [I]=FIRMWARE_WORKAROUND [ 996.835918][T23866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 996.835927][T23866] Call Trace: [ 996.835933][T23866] [ 996.835939][T23866] dump_stack_lvl+0x16c/0x1f0 [ 996.835975][T23866] should_fail_ex+0x512/0x640 [ 996.836004][T23866] should_fail_alloc_page+0xe7/0x130 [ 996.836026][T23866] prepare_alloc_pages+0x3c2/0x610 [ 996.836049][T23866] ? rcu_is_watching+0x12/0xc0 [ 996.836067][T23866] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 996.836085][T23866] ? __lock_acquire+0xb97/0x1ce0 [ 996.836113][T23866] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 996.836131][T23866] ? do_raw_spin_lock+0x12c/0x2b0 [ 996.836153][T23866] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 996.836176][T23866] ? find_held_lock+0x2b/0x80 [ 996.836196][T23866] ? __lock_acquire+0xb97/0x1ce0 [ 996.836215][T23866] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 996.836242][T23866] ? policy_nodemask+0xea/0x4e0 [ 996.836263][T23866] alloc_pages_mpol+0x1fb/0x550 [ 996.836284][T23866] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 996.836310][T23866] folio_alloc_mpol_noprof+0x36/0x2f0 [ 996.836334][T23866] shmem_alloc_folio+0x135/0x160 [ 996.836350][T23866] shmem_alloc_and_add_folio+0x499/0xc20 [ 996.836371][T23866] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 996.836391][T23866] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 996.836412][T23866] shmem_get_folio_gfp+0x67f/0x1600 [ 996.836434][T23866] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 996.836452][T23866] ? __pfx___might_resched+0x10/0x10 [ 996.836471][T23866] shmem_fallocate+0x795/0xf50 [ 996.836496][T23866] ? __pfx_shmem_fallocate+0x10/0x10 [ 996.836520][T23866] ? __lock_acquire+0xb97/0x1ce0 [ 996.836540][T23866] ? __lock_acquire+0x62e/0x1ce0 [ 996.836571][T23866] ? __pfx_shmem_fallocate+0x10/0x10 [ 996.836588][T23866] vfs_fallocate+0x5b4/0x10e0 [ 996.836609][T23866] ? __pfx_vfs_fallocate+0x10/0x10 [ 996.836633][T23866] __x64_sys_fallocate+0xd5/0x150 [ 996.836653][T23866] do_syscall_64+0xcd/0x4c0 [ 996.836669][T23866] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 996.836684][T23866] RIP: 0033:0x7f597838eec9 [ 996.836702][T23866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 996.836718][T23866] RSP: 002b:00007f5979165038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 996.836736][T23866] RAX: ffffffffffffffda RBX: 00007f59785e6090 RCX: 00007f597838eec9 [ 996.836747][T23866] RDX: 0000000000000009 RSI: 0000000000000000 RDI: 8000000000000003 [ 996.836756][T23866] RBP: 00007f5978411f91 R08: 0000000000000000 R09: 0000000000000000 [ 996.836766][T23866] R10: 00000000004cbd5d R11: 0000000000000246 R12: 0000000000000000 [ 996.836775][T23866] R13: 00007f59785e6128 R14: 00007f59785e6090 R15: 00007ffea30cf788 [ 996.836796][T23866] [ 999.973775][T23898] vmstat_refresh: nr_hugetlb -14336 [ 1000.456883][T23902] FAULT_INJECTION: forcing a failure. [ 1000.456883][T23902] name failslab, interval 1, probability 0, space 0, times 0 [ 1000.538778][T23902] CPU: 1 UID: 0 PID: 23902 Comm: syz.6.6688 Tainted: G I syzkaller #0 PREEMPT(full) [ 1000.538806][T23902] Tainted: [I]=FIRMWARE_WORKAROUND [ 1000.538811][T23902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1000.538821][T23902] Call Trace: [ 1000.538828][T23902] [ 1000.538834][T23902] dump_stack_lvl+0x16c/0x1f0 [ 1000.538862][T23902] should_fail_ex+0x512/0x640 [ 1000.538885][T23902] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1000.538904][T23902] should_failslab+0xc2/0x120 [ 1000.538923][T23902] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1000.538938][T23902] ? _request_firmware+0x2a4/0x1470 [ 1000.538961][T23902] _request_firmware+0x2a4/0x1470 [ 1000.538985][T23902] ? assign_fw+0x1cb/0x640 [ 1000.539002][T23902] ? _request_firmware+0x957/0x1470 [ 1000.539022][T23902] ? __pfx__request_firmware+0x10/0x10 [ 1000.539049][T23902] request_firmware+0x35/0x50 [ 1000.539074][T23902] valid_regdb+0x184/0x590 [ 1000.539097][T23902] ? __pfx___mutex_lock+0x10/0x10 [ 1000.539113][T23902] ? __pfx_valid_regdb+0x10/0x10 [ 1000.539140][T23902] reg_reload_regdb+0x11a/0x460 [ 1000.539156][T23902] ? __pfx_reg_reload_regdb+0x10/0x10 [ 1000.539171][T23902] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 1000.539189][T23902] ? nl80211_pre_doit+0x1b0/0xb10 [ 1000.539210][T23902] genl_family_rcv_msg_doit+0x206/0x2f0 [ 1000.539228][T23902] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 1000.539243][T23902] ? rcu_is_watching+0x12/0xc0 [ 1000.539265][T23902] ? bpf_lsm_capable+0x9/0x10 [ 1000.539287][T23902] ? security_capable+0x7e/0x260 [ 1000.539307][T23902] genl_rcv_msg+0x55c/0x800 [ 1000.539326][T23902] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1000.539342][T23902] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 1000.539360][T23902] ? __pfx_nl80211_reload_regdb+0x10/0x10 [ 1000.539382][T23902] ? __pfx_nl80211_post_doit+0x10/0x10 [ 1000.539403][T23902] netlink_rcv_skb+0x155/0x420 [ 1000.539425][T23902] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1000.539442][T23902] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1000.539472][T23902] ? netlink_deliver_tap+0x1ae/0xd30 [ 1000.539496][T23902] genl_rcv+0x28/0x40 [ 1000.539509][T23902] netlink_unicast+0x5aa/0x870 [ 1000.539534][T23902] ? __pfx_netlink_unicast+0x10/0x10 [ 1000.539556][T23902] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 1000.539578][T23902] ? __lock_acquire+0xb97/0x1ce0 [ 1000.539602][T23902] netlink_sendmsg+0x8d1/0xdd0 [ 1000.539628][T23902] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1000.539652][T23902] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 1000.539671][T23902] ____sys_sendmsg+0xa95/0xc70 [ 1000.539689][T23902] ? copy_msghdr_from_user+0x10a/0x160 [ 1000.539711][T23902] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1000.539731][T23902] ? __pfx_futex_wake_mark+0x10/0x10 [ 1000.539760][T23902] ___sys_sendmsg+0x134/0x1d0 [ 1000.539783][T23902] ? __pfx____sys_sendmsg+0x10/0x10 [ 1000.539828][T23902] __sys_sendmsg+0x16d/0x220 [ 1000.539851][T23902] ? __pfx___sys_sendmsg+0x10/0x10 [ 1000.539872][T23902] ? __x64_sys_futex+0x1e0/0x4c0 [ 1000.539904][T23902] do_syscall_64+0xcd/0x4c0 [ 1000.539918][T23902] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1000.539934][T23902] RIP: 0033:0x7fcf1fb8eec9 [ 1000.539947][T23902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1000.539962][T23902] RSP: 002b:00007fcf20a8f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1000.539978][T23902] RAX: ffffffffffffffda RBX: 00007fcf1fde5fa0 RCX: 00007fcf1fb8eec9 [ 1000.539988][T23902] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000007 [ 1000.539998][T23902] RBP: 00007fcf1fc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1000.540007][T23902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1000.540016][T23902] R13: 00007fcf1fde6038 R14: 00007fcf1fde5fa0 R15: 00007ffea422c628 [ 1000.540036][T23902] [ 1000.543356][T23902] faux_driver regulatory: _request_firmware_prepare: kmalloc(struct firmware) failed [ 1001.562890][T23915] ubi0: detaching mtd0 [ 1001.844377][T23915] ubi0: mtd0 is detached [ 1002.306821][T23928] cougar: G6 mapped to space [ 1002.987895][T23933] netlink: 186 bytes leftover after parsing attributes in process `syz.0.6699'. [ 1006.478081][ T50] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 1006.478107][ T50] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 1006.497722][ T50] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 1006.497747][ T50] Bluetooth: hci1: adv larger than maximum supported [ 1006.509181][ T50] Bluetooth: hci1: adv larger than maximum supported [ 1006.516772][ T50] Bluetooth: hci1: Malformed LE Event: 0x0d [ 1007.007241][T23995] FAULT_INJECTION: forcing a failure. [ 1007.007241][T23995] name failslab, interval 1, probability 0, space 0, times 0 [ 1007.189433][T23995] CPU: 1 UID: 0 PID: 23995 Comm: syz.6.6719 Tainted: G I syzkaller #0 PREEMPT(full) [ 1007.189462][T23995] Tainted: [I]=FIRMWARE_WORKAROUND [ 1007.189468][T23995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1007.189478][T23995] Call Trace: [ 1007.189484][T23995] [ 1007.189490][T23995] dump_stack_lvl+0x16c/0x1f0 [ 1007.189518][T23995] should_fail_ex+0x512/0x640 [ 1007.189541][T23995] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1007.189562][T23995] should_failslab+0xc2/0x120 [ 1007.189583][T23995] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1007.189609][T23995] ? __kernfs_new_node+0xd2/0x8e0 [ 1007.189632][T23995] __kernfs_new_node+0xd2/0x8e0 [ 1007.189653][T23995] ? __pfx___kernfs_new_node+0x10/0x10 [ 1007.189678][T23995] ? find_held_lock+0x2b/0x80 [ 1007.189694][T23995] ? kernfs_root+0xee/0x2a0 [ 1007.189716][T23995] kernfs_new_node+0x13c/0x1e0 [ 1007.189740][T23995] __kernfs_create_file+0x53/0x350 [ 1007.189757][T23995] sysfs_add_file_mode_ns+0x207/0x3c0 [ 1007.189780][T23995] sysfs_merge_group+0x1aa/0x340 [ 1007.189800][T23995] ? __pfx_sysfs_merge_group+0x10/0x10 [ 1007.189822][T23995] ? __pfx_dev_add_physical_location+0x10/0x10 [ 1007.189838][T23995] ? bus_to_subsys+0x131/0x160 [ 1007.189859][T23995] dpm_sysfs_add+0x237/0x280 [ 1007.189875][T23995] device_add+0x9a6/0x1aa0 [ 1007.189892][T23995] ? __pfx_device_add+0x10/0x10 [ 1007.189915][T23995] device_create_groups_vargs+0x1f8/0x270 [ 1007.189938][T23995] device_create+0xed/0x130 [ 1007.189955][T23995] ? __pfx_device_create+0x10/0x10 [ 1007.189973][T23995] ? do_init_timer+0xc9/0x110 [ 1007.189995][T23995] ? ieee80211_roc_setup+0x136/0x270 [ 1007.190015][T23995] ? ieee80211_alloc_hw_nm+0x231/0x2260 [ 1007.190041][T23995] mac80211_hwsim_new_radio+0x369/0x54d0 [ 1007.190070][T23995] ? __asan_memset+0x23/0x50 [ 1007.190086][T23995] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 1007.190109][T23995] hwsim_new_radio_nl+0xb51/0x12c0 [ 1007.190128][T23995] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1007.190151][T23995] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 1007.190169][T23995] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 1007.190190][T23995] genl_family_rcv_msg_doit+0x206/0x2f0 [ 1007.190207][T23995] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 1007.190230][T23995] ? bpf_lsm_capable+0x9/0x10 [ 1007.190243][T23995] ? security_capable+0x7e/0x260 [ 1007.190259][T23995] ? ns_capable+0xd7/0x110 [ 1007.190277][T23995] genl_rcv_msg+0x55c/0x800 [ 1007.190295][T23995] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1007.190311][T23995] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1007.190335][T23995] netlink_rcv_skb+0x155/0x420 [ 1007.190357][T23995] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1007.190374][T23995] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1007.190404][T23995] ? netlink_deliver_tap+0x1ae/0xd30 [ 1007.190428][T23995] genl_rcv+0x28/0x40 [ 1007.190441][T23995] netlink_unicast+0x5aa/0x870 [ 1007.190467][T23995] ? __pfx_netlink_unicast+0x10/0x10 [ 1007.190488][T23995] ? __pfx___might_resched+0x10/0x10 [ 1007.190503][T23995] ? __lock_acquire+0xb97/0x1ce0 [ 1007.190528][T23995] netlink_sendmsg+0x8d1/0xdd0 [ 1007.190553][T23995] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1007.190578][T23995] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 1007.190604][T23995] ____sys_sendmsg+0xa95/0xc70 [ 1007.190623][T23995] ? copy_msghdr_from_user+0x10a/0x160 [ 1007.190646][T23995] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1007.190674][T23995] ___sys_sendmsg+0x134/0x1d0 [ 1007.190694][T23995] ? futex_private_hash_put+0x176/0x300 [ 1007.190713][T23995] ? __pfx____sys_sendmsg+0x10/0x10 [ 1007.190734][T23995] ? futex_private_hash_put+0x18a/0x300 [ 1007.190758][T23995] ? rcu_is_watching+0x12/0xc0 [ 1007.190781][T23995] ? do_futex+0x122/0x350 [ 1007.190802][T23995] __sys_sendmsg+0x16d/0x220 [ 1007.190824][T23995] ? __pfx___sys_sendmsg+0x10/0x10 [ 1007.190845][T23995] ? __x64_sys_futex+0x1e0/0x4c0 [ 1007.190875][T23995] do_syscall_64+0xcd/0x4c0 [ 1007.190890][T23995] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1007.190906][T23995] RIP: 0033:0x7fcf1fb8eec9 [ 1007.190920][T23995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1007.190934][T23995] RSP: 002b:00007fcf20a8f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1007.190949][T23995] RAX: ffffffffffffffda RBX: 00007fcf1fde5fa0 RCX: 00007fcf1fb8eec9 [ 1007.190959][T23995] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000002 [ 1007.190969][T23995] RBP: 00007fcf1fc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1007.190978][T23995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1007.190987][T23995] R13: 00007fcf1fde6038 R14: 00007fcf1fde5fa0 R15: 00007ffea422c628 [ 1007.191008][T23995] [ 1008.772320][T24004] netlink: 330 bytes leftover after parsing attributes in process `syz.0.6722'. [ 1010.373137][T24022] netlink: 334 bytes leftover after parsing attributes in process `syz.2.6728'. [ 1012.653056][T24042] bond0: invalid ARP target specified [ 1014.513573][T24071] netlink: 86 bytes leftover after parsing attributes in process `syz.2.6741'. [ 1015.118883][T24082] FAULT_INJECTION: forcing a failure. [ 1015.118883][T24082] name failslab, interval 1, probability 0, space 0, times 0 [ 1015.340121][T24082] CPU: 1 UID: 0 PID: 24082 Comm: syz.2.6745 Tainted: G I syzkaller #0 PREEMPT(full) [ 1015.340148][T24082] Tainted: [I]=FIRMWARE_WORKAROUND [ 1015.340154][T24082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1015.340164][T24082] Call Trace: [ 1015.340170][T24082] [ 1015.340176][T24082] dump_stack_lvl+0x16c/0x1f0 [ 1015.340204][T24082] should_fail_ex+0x512/0x640 [ 1015.340229][T24082] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1015.340250][T24082] should_failslab+0xc2/0x120 [ 1015.340270][T24082] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1015.340294][T24082] ? security_file_alloc+0x34/0x2b0 [ 1015.340317][T24082] security_file_alloc+0x34/0x2b0 [ 1015.340337][T24082] init_file+0x93/0x4c0 [ 1015.340359][T24082] alloc_empty_file+0x73/0x1e0 [ 1015.340385][T24082] path_openat+0xda/0x2cb0 [ 1015.340402][T24082] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1015.340423][T24082] ? __pfx_path_openat+0x10/0x10 [ 1015.340445][T24082] do_filp_open+0x20b/0x470 [ 1015.340463][T24082] ? __pfx_do_filp_open+0x10/0x10 [ 1015.340493][T24082] ? alloc_fd+0x471/0x7d0 [ 1015.340513][T24082] do_sys_openat2+0x11b/0x1d0 [ 1015.340535][T24082] ? __pfx_do_sys_openat2+0x10/0x10 [ 1015.340564][T24082] __x64_sys_openat+0x174/0x210 [ 1015.340577][T24082] ? __pfx___x64_sys_openat+0x10/0x10 [ 1015.340608][T24082] do_syscall_64+0xcd/0x4c0 [ 1015.340624][T24082] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1015.340639][T24082] RIP: 0033:0x7f20ba58eec9 [ 1015.340653][T24082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1015.340667][T24082] RSP: 002b:00007f20bb35b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1015.340681][T24082] RAX: ffffffffffffffda RBX: 00007f20ba7e5fa0 RCX: 00007f20ba58eec9 [ 1015.340691][T24082] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffff9c [ 1015.340701][T24082] RBP: 00007f20ba611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1015.340710][T24082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1015.340719][T24082] R13: 00007f20ba7e6038 R14: 00007f20ba7e5fa0 R15: 00007ffc31040268 [ 1015.340738][T24082] [ 1016.229870][T24096] FAULT_INJECTION: forcing a failure. [ 1016.229870][T24096] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1016.285669][T24096] CPU: 1 UID: 0 PID: 24096 Comm: syz.2.6749 Tainted: G I syzkaller #0 PREEMPT(full) [ 1016.285697][T24096] Tainted: [I]=FIRMWARE_WORKAROUND [ 1016.285703][T24096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1016.285713][T24096] Call Trace: [ 1016.285720][T24096] [ 1016.285726][T24096] dump_stack_lvl+0x16c/0x1f0 [ 1016.285756][T24096] should_fail_ex+0x512/0x640 [ 1016.285782][T24096] should_fail_alloc_page+0xe7/0x130 [ 1016.285806][T24096] prepare_alloc_pages+0x3c2/0x610 [ 1016.285828][T24096] ? rcu_is_watching+0x12/0xc0 [ 1016.285846][T24096] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 1016.285865][T24096] ? __lock_acquire+0xb97/0x1ce0 [ 1016.285892][T24096] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1016.285910][T24096] ? do_raw_spin_lock+0x12c/0x2b0 [ 1016.285932][T24096] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 1016.285954][T24096] ? find_held_lock+0x2b/0x80 [ 1016.285974][T24096] ? __lock_acquire+0xb97/0x1ce0 [ 1016.285992][T24096] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1016.286016][T24096] ? policy_nodemask+0xea/0x4e0 [ 1016.286036][T24096] alloc_pages_mpol+0x1fb/0x550 [ 1016.286056][T24096] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1016.286081][T24096] folio_alloc_mpol_noprof+0x36/0x2f0 [ 1016.286104][T24096] shmem_alloc_folio+0x135/0x160 [ 1016.286119][T24096] shmem_alloc_and_add_folio+0x499/0xc20 [ 1016.286140][T24096] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 1016.286159][T24096] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 1016.286180][T24096] shmem_get_folio_gfp+0x67f/0x1600 [ 1016.286201][T24096] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 1016.286219][T24096] ? __pfx___might_resched+0x10/0x10 [ 1016.286238][T24096] shmem_fallocate+0x795/0xf50 [ 1016.286264][T24096] ? __pfx_shmem_fallocate+0x10/0x10 [ 1016.286287][T24096] ? __lock_acquire+0xb97/0x1ce0 [ 1016.286308][T24096] ? __lock_acquire+0x62e/0x1ce0 [ 1016.286337][T24096] ? __pfx_shmem_fallocate+0x10/0x10 [ 1016.286355][T24096] vfs_fallocate+0x5b4/0x10e0 [ 1016.286376][T24096] ? __pfx_vfs_fallocate+0x10/0x10 [ 1016.286399][T24096] __x64_sys_fallocate+0xd5/0x150 [ 1016.286420][T24096] do_syscall_64+0xcd/0x4c0 [ 1016.286436][T24096] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1016.286451][T24096] RIP: 0033:0x7f20ba58eec9 [ 1016.286465][T24096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1016.286480][T24096] RSP: 002b:00007f20b87f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 1016.286503][T24096] RAX: ffffffffffffffda RBX: 00007f20ba7e6090 RCX: 00007f20ba58eec9 [ 1016.286514][T24096] RDX: 0000000000000009 RSI: 0000000000000000 RDI: 8000000000000003 [ 1016.286523][T24096] RBP: 00007f20ba611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1016.286532][T24096] R10: 00000000004cbd5d R11: 0000000000000246 R12: 0000000000000000 [ 1016.286541][T24096] R13: 00007f20ba7e6128 R14: 00007f20ba7e6090 R15: 00007ffc31040268 [ 1016.286562][T24096] [ 1020.435868][T24134] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6770'. [ 1020.478068][T24134] netlink: 354 bytes leftover after parsing attributes in process `syz.0.6770'. [ 1021.496651][T24158] netlink: 25 bytes leftover after parsing attributes in process `syz.6.6768'. [ 1025.952648][T24217] netlink: 62 bytes leftover after parsing attributes in process `syz.0.6788'. [ 1026.002028][T24218] netlink: 62 bytes leftover after parsing attributes in process `syz.0.6788'. [ 1026.134308][T24218] netlink: 62 bytes leftover after parsing attributes in process `syz.0.6788'. [ 1026.200612][T24218] netlink: 62 bytes leftover after parsing attributes in process `syz.0.6788'. [ 1026.261265][T24218] netlink: 62 bytes leftover after parsing attributes in process `syz.0.6788'. [ 1026.388639][T24218] netlink: 62 bytes leftover after parsing attributes in process `syz.0.6788'. [ 1026.428841][T24218] netlink: 62 bytes leftover after parsing attributes in process `syz.0.6788'. [ 1026.477200][T24224] netlink: 338 bytes leftover after parsing attributes in process `syz.2.6790'. [ 1026.517232][T24225] netlink: 338 bytes leftover after parsing attributes in process `syz.2.6790'. [ 1026.653588][T24218] netlink: 62 bytes leftover after parsing attributes in process `syz.0.6788'. [ 1026.897280][T24229] netlink: 'syz.0.6792': attribute type 10 has an invalid length. [ 1027.968486][T24250] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 1027.975561][T24250] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 1031.946214][T24296] __nla_validate_parse: 17 callbacks suppressed [ 1031.946232][T24296] netlink: 25 bytes leftover after parsing attributes in process `syz.3.6811'. [ 1032.430239][T24301] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6813'. [ 1032.541598][T24305] netlink: 354 bytes leftover after parsing attributes in process `syz.2.6813'. [ 1032.581199][T24299] netlink: 186 bytes leftover after parsing attributes in process `syz.3.6812'. [ 1032.898548][T24310] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 1032.974804][T24310] Unable to find swap-space signature [ 1033.226873][T24315] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„ [ 1034.041948][T24326] netlink: 25 bytes leftover after parsing attributes in process `syz.0.6821'. [ 1043.024440][T24425] FAULT_INJECTION: forcing a failure. [ 1043.024440][T24425] name failslab, interval 1, probability 0, space 0, times 0 [ 1043.100302][T24425] CPU: 1 UID: 0 PID: 24425 Comm: syz.2.6851 Tainted: G I syzkaller #0 PREEMPT(full) [ 1043.100331][T24425] Tainted: [I]=FIRMWARE_WORKAROUND [ 1043.100337][T24425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1043.100346][T24425] Call Trace: [ 1043.100353][T24425] [ 1043.100360][T24425] dump_stack_lvl+0x16c/0x1f0 [ 1043.100389][T24425] should_fail_ex+0x512/0x640 [ 1043.100411][T24425] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1043.100430][T24425] should_failslab+0xc2/0x120 [ 1043.100450][T24425] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1043.100464][T24425] ? do_raw_spin_lock+0x12c/0x2b0 [ 1043.100487][T24425] ? single_open+0x4d/0x1f0 [ 1043.100511][T24425] ? __pfx_tracing_trace_options_show+0x10/0x10 [ 1043.100528][T24425] single_open+0x4d/0x1f0 [ 1043.100557][T24425] tracing_trace_options_open+0xa7/0x100 [ 1043.100581][T24425] do_dentry_open+0x982/0x1530 [ 1043.100602][T24425] ? __pfx_tracing_trace_options_open+0x10/0x10 [ 1043.100628][T24425] vfs_open+0x82/0x3f0 [ 1043.100652][T24425] path_openat+0x1de4/0x2cb0 [ 1043.100676][T24425] ? __pfx_path_openat+0x10/0x10 [ 1043.100699][T24425] do_filp_open+0x20b/0x470 [ 1043.100716][T24425] ? __pfx_do_filp_open+0x10/0x10 [ 1043.100747][T24425] ? alloc_fd+0x471/0x7d0 [ 1043.100767][T24425] do_sys_openat2+0x11b/0x1d0 [ 1043.100789][T24425] ? __pfx_do_sys_openat2+0x10/0x10 [ 1043.100819][T24425] __x64_sys_openat+0x174/0x210 [ 1043.100832][T24425] ? __pfx___x64_sys_openat+0x10/0x10 [ 1043.100852][T24425] do_syscall_64+0xcd/0x4c0 [ 1043.100868][T24425] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1043.100883][T24425] RIP: 0033:0x7f20ba58eec9 [ 1043.100896][T24425] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1043.100911][T24425] RSP: 002b:00007f20bb35b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1043.100926][T24425] RAX: ffffffffffffffda RBX: 00007f20ba7e5fa0 RCX: 00007f20ba58eec9 [ 1043.100936][T24425] RDX: 0000000000084100 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1043.100945][T24425] RBP: 00007f20ba611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1043.100955][T24425] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1043.100964][T24425] R13: 00007f20ba7e6038 R14: 00007f20ba7e5fa0 R15: 00007ffc31040268 [ 1043.100983][T24425] [ 1044.318083][T24434] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6855'. [ 1045.114398][ T50] Bluetooth: hci1: unexpected event 0x20 length: 123 > 7 [ 1045.311591][T24455] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 1045.380813][T24455] Unable to find swap-space signature [ 1045.813309][T24462] netlink: 'syz.6.6864': attribute type 4 has an invalid length. [ 1045.850310][T24462] netlink: 'syz.6.6864': attribute type 5 has an invalid length. [ 1045.889844][T24462] netlink: 10 bytes leftover after parsing attributes in process `syz.6.6864'. [ 1046.140760][T24468] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6866'. [ 1046.178655][T24468] netlink: 'syz.2.6866': attribute type 1 has an invalid length. [ 1046.237429][T24467] FAULT_INJECTION: forcing a failure. [ 1046.237429][T24467] name failslab, interval 1, probability 0, space 0, times 0 [ 1046.256733][T24468] netlink: 'syz.2.6866': attribute type 6 has an invalid length. [ 1046.321735][T24467] CPU: 1 UID: 0 PID: 24467 Comm: syz.6.6868 Tainted: G I syzkaller #0 PREEMPT(full) [ 1046.321762][T24467] Tainted: [I]=FIRMWARE_WORKAROUND [ 1046.321769][T24467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1046.321779][T24467] Call Trace: [ 1046.321785][T24467] [ 1046.321792][T24467] dump_stack_lvl+0x16c/0x1f0 [ 1046.321822][T24467] should_fail_ex+0x512/0x640 [ 1046.321845][T24467] ? __kmalloc_noprof+0xbf/0x510 [ 1046.321865][T24467] ? apply_wqattrs_prepare+0xf8/0xbd0 [ 1046.321881][T24467] should_failslab+0xc2/0x120 [ 1046.321901][T24467] __kmalloc_noprof+0xd2/0x510 [ 1046.321925][T24467] apply_wqattrs_prepare+0xf8/0xbd0 [ 1046.321949][T24467] apply_workqueue_attrs_locked+0x64/0xe0 [ 1046.321967][T24467] __alloc_workqueue+0xf41/0x1810 [ 1046.321989][T24467] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1046.322012][T24467] alloc_workqueue_noprof+0xd2/0x200 [ 1046.322032][T24467] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 1046.322056][T24467] ? __pfx___debug_object_init+0x10/0x10 [ 1046.322080][T24467] nci_register_device+0x511/0xb80 [ 1046.322101][T24467] ? __pfx_nci_register_device+0x10/0x10 [ 1046.322123][T24467] ? lockdep_init_map_type+0x5c/0x280 [ 1046.322157][T24467] virtual_ncidev_open+0x141/0x220 [ 1046.322178][T24467] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 1046.322197][T24467] misc_open+0x35d/0x420 [ 1046.322218][T24467] ? __pfx_misc_open+0x10/0x10 [ 1046.322236][T24467] chrdev_open+0x234/0x6a0 [ 1046.322255][T24467] ? __pfx_apparmor_file_open+0x10/0x10 [ 1046.322272][T24467] ? __pfx_chrdev_open+0x10/0x10 [ 1046.322292][T24467] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1046.322312][T24467] do_dentry_open+0x982/0x1530 [ 1046.322331][T24467] ? __pfx_chrdev_open+0x10/0x10 [ 1046.322354][T24467] vfs_open+0x82/0x3f0 [ 1046.322378][T24467] path_openat+0x1de4/0x2cb0 [ 1046.322402][T24467] ? __pfx_path_openat+0x10/0x10 [ 1046.322425][T24467] do_filp_open+0x20b/0x470 [ 1046.322443][T24467] ? __pfx_do_filp_open+0x10/0x10 [ 1046.322474][T24467] ? alloc_fd+0x471/0x7d0 [ 1046.322496][T24467] do_sys_openat2+0x11b/0x1d0 [ 1046.322517][T24467] ? __pfx_do_sys_openat2+0x10/0x10 [ 1046.322547][T24467] __x64_sys_openat+0x174/0x210 [ 1046.322561][T24467] ? __pfx___x64_sys_openat+0x10/0x10 [ 1046.322582][T24467] do_syscall_64+0xcd/0x4c0 [ 1046.322597][T24467] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1046.322613][T24467] RIP: 0033:0x7fcf1fb8eec9 [ 1046.322626][T24467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1046.322641][T24467] RSP: 002b:00007fcf20a8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1046.322655][T24467] RAX: ffffffffffffffda RBX: 00007fcf1fde5fa0 RCX: 00007fcf1fb8eec9 [ 1046.322665][T24467] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 1046.322675][T24467] RBP: 00007fcf1fc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1046.322685][T24467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1046.322694][T24467] R13: 00007fcf1fde6038 R14: 00007fcf1fde5fa0 R15: 00007ffea422c628 [ 1046.322713][T24467] [ 1046.806942][T24481] netlink: 25 bytes leftover after parsing attributes in process `syz.0.6870'. [ 1047.205620][T24490] netlink: 13 bytes leftover after parsing attributes in process `syz.6.6872'. [ 1047.521784][T24500] FAULT_INJECTION: forcing a failure. [ 1047.521784][T24500] name failslab, interval 1, probability 0, space 0, times 0 [ 1047.638500][T24500] CPU: 1 UID: 0 PID: 24500 Comm: syz.3.6874 Tainted: G I syzkaller #0 PREEMPT(full) [ 1047.638528][T24500] Tainted: [I]=FIRMWARE_WORKAROUND [ 1047.638534][T24500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1047.638544][T24500] Call Trace: [ 1047.638550][T24500] [ 1047.638556][T24500] dump_stack_lvl+0x16c/0x1f0 [ 1047.638586][T24500] should_fail_ex+0x512/0x640 [ 1047.638610][T24500] ? __kmalloc_noprof+0xbf/0x510 [ 1047.638630][T24500] ? cache_create_net+0x9d/0x220 [ 1047.638649][T24500] should_failslab+0xc2/0x120 [ 1047.638668][T24500] __kmalloc_noprof+0xd2/0x510 [ 1047.638689][T24500] cache_create_net+0x9d/0x220 [ 1047.638709][T24500] ? __pfx_nfsd_net_init+0x10/0x10 [ 1047.638726][T24500] nfsd_export_init+0x62/0x250 [ 1047.638745][T24500] ? __pfx_nfsd_net_init+0x10/0x10 [ 1047.638761][T24500] nfsd_net_init+0x33/0x3d0 [ 1047.638778][T24500] ? __pfx_nfsd_net_init+0x10/0x10 [ 1047.638794][T24500] ops_init+0x1e2/0x5f0 [ 1047.638810][T24500] setup_net+0x10f/0x380 [ 1047.638822][T24500] ? lockdep_init_map_type+0x5c/0x280 [ 1047.638844][T24500] ? __pfx_setup_net+0x10/0x10 [ 1047.638858][T24500] ? debug_mutex_init+0x37/0x70 [ 1047.638874][T24500] copy_net_ns+0x2a6/0x5f0 [ 1047.638892][T24500] create_new_namespaces+0x3ea/0xa90 [ 1047.638914][T24500] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1047.638933][T24500] ksys_unshare+0x45b/0xa40 [ 1047.638960][T24500] ? __pfx_ksys_unshare+0x10/0x10 [ 1047.638982][T24500] ? xfd_validate_state+0x61/0x180 [ 1047.639015][T24500] __x64_sys_unshare+0x31/0x40 [ 1047.639037][T24500] do_syscall_64+0xcd/0x4c0 [ 1047.639053][T24500] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1047.639069][T24500] RIP: 0033:0x7f597838eec9 [ 1047.639081][T24500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1047.639096][T24500] RSP: 002b:00007f5979165038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1047.639119][T24500] RAX: ffffffffffffffda RBX: 00007f59785e6090 RCX: 00007f597838eec9 [ 1047.639130][T24500] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1047.639139][T24500] RBP: 00007f5978411f91 R08: 0000000000000000 R09: 0000000000000000 [ 1047.639148][T24500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1047.639159][T24500] R13: 00007f59785e6128 R14: 00007f59785e6090 R15: 00007ffea30cf788 [ 1047.639181][T24500] [ 1048.520094][T24508] netlink: 186 bytes leftover after parsing attributes in process `syz.6.6876'. [ 1048.718282][T24510] FAULT_INJECTION: forcing a failure. [ 1048.718282][T24510] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1048.778494][T24510] CPU: 1 UID: 0 PID: 24510 Comm: syz.2.6877 Tainted: G I syzkaller #0 PREEMPT(full) [ 1048.778523][T24510] Tainted: [I]=FIRMWARE_WORKAROUND [ 1048.778529][T24510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1048.778540][T24510] Call Trace: [ 1048.778546][T24510] [ 1048.778552][T24510] dump_stack_lvl+0x16c/0x1f0 [ 1048.778579][T24510] should_fail_ex+0x512/0x640 [ 1048.778605][T24510] should_fail_alloc_page+0xe7/0x130 [ 1048.778629][T24510] prepare_alloc_pages+0x3c2/0x610 [ 1048.778650][T24510] ? stack_trace_save+0x8e/0xc0 [ 1048.778670][T24510] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 1048.778691][T24510] ? kasan_save_stack+0x42/0x60 [ 1048.778707][T24510] ? kasan_save_stack+0x33/0x60 [ 1048.778722][T24510] ? kasan_save_track+0x14/0x30 [ 1048.778739][T24510] ? __kasan_kmalloc+0xaa/0xb0 [ 1048.778755][T24510] ? fuse_dev_alloc+0x8e/0x280 [ 1048.778782][T24510] ? fuse_dev_alloc_install+0x13/0x40 [ 1048.778804][T24510] ? cuse_channel_open+0x100/0x7f0 [ 1048.778824][T24510] ? misc_open+0x35d/0x420 [ 1048.778843][T24510] ? chrdev_open+0x234/0x6a0 [ 1048.778865][T24510] ? do_dentry_open+0x982/0x1530 [ 1048.778882][T24510] ? vfs_open+0x82/0x3f0 [ 1048.778901][T24510] ? path_openat+0x1de4/0x2cb0 [ 1048.778917][T24510] ? look_up_lock_class+0x59/0x150 [ 1048.778939][T24510] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1048.778971][T24510] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1048.778994][T24510] ? policy_nodemask+0xea/0x4e0 [ 1048.779015][T24510] alloc_pages_mpol+0x1fb/0x550 [ 1048.779035][T24510] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1048.779054][T24510] ? fuse_dev_alloc_install+0x2b/0x40 [ 1048.779080][T24510] folio_alloc_noprof+0x20/0x2d0 [ 1048.779102][T24510] cuse_channel_open+0x198/0x7f0 [ 1048.779130][T24510] ? __pfx_cuse_channel_open+0x10/0x10 [ 1048.779152][T24510] misc_open+0x35d/0x420 [ 1048.779170][T24510] ? __pfx_misc_open+0x10/0x10 [ 1048.779189][T24510] chrdev_open+0x234/0x6a0 [ 1048.779208][T24510] ? __pfx_apparmor_file_open+0x10/0x10 [ 1048.779225][T24510] ? __pfx_chrdev_open+0x10/0x10 [ 1048.779245][T24510] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1048.779265][T24510] do_dentry_open+0x982/0x1530 [ 1048.779284][T24510] ? __pfx_chrdev_open+0x10/0x10 [ 1048.779306][T24510] vfs_open+0x82/0x3f0 [ 1048.779330][T24510] path_openat+0x1de4/0x2cb0 [ 1048.779354][T24510] ? __pfx_path_openat+0x10/0x10 [ 1048.779376][T24510] do_filp_open+0x20b/0x470 [ 1048.779394][T24510] ? __pfx_do_filp_open+0x10/0x10 [ 1048.779425][T24510] ? alloc_fd+0x471/0x7d0 [ 1048.779446][T24510] do_sys_openat2+0x11b/0x1d0 [ 1048.779468][T24510] ? __pfx_do_sys_openat2+0x10/0x10 [ 1048.779498][T24510] __x64_sys_openat+0x174/0x210 [ 1048.779511][T24510] ? __pfx___x64_sys_openat+0x10/0x10 [ 1048.779532][T24510] do_syscall_64+0xcd/0x4c0 [ 1048.779547][T24510] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1048.779562][T24510] RIP: 0033:0x7f20ba58eec9 [ 1048.779575][T24510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1048.779591][T24510] RSP: 002b:00007f20bb35b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1048.779606][T24510] RAX: ffffffffffffffda RBX: 00007f20ba7e5fa0 RCX: 00007f20ba58eec9 [ 1048.779616][T24510] RDX: 0000000000000000 RSI: 0000200000000380 RDI: ffffffffffffff9c [ 1048.779626][T24510] RBP: 00007f20ba611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1048.779635][T24510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1048.779645][T24510] R13: 00007f20ba7e6038 R14: 00007f20ba7e5fa0 R15: 00007ffc31040268 [ 1048.779665][T24510] [ 1050.315823][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 1050.322310][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 1051.022586][T24528] netlink: 25 bytes leftover after parsing attributes in process `syz.6.6884'. [ 1051.892671][T24538] netlink: 354 bytes leftover after parsing attributes in process `syz.2.6888'. [ 1052.788531][T24559] netlink: 25 bytes leftover after parsing attributes in process `syz.0.6894'. [ 1053.644120][T24565] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6897'. [ 1053.713423][T24565] netlink: 17 bytes leftover after parsing attributes in process `syz.6.6897'. [ 1053.778043][T24565] netlink: 2 bytes leftover after parsing attributes in process `syz.6.6897'. [ 1054.752516][ T50] Bluetooth: hci3: unexpected event 0x20 length: 123 > 7 [ 1055.816657][T24599] debugfs: '!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' already exists in 'ieee80211' [ 1057.335605][T24622] FAULT_INJECTION: forcing a failure. [ 1057.335605][T24622] name failslab, interval 1, probability 0, space 0, times 0 [ 1057.436999][T24622] CPU: 1 UID: 0 PID: 24622 Comm: syz.6.6914 Tainted: G I syzkaller #0 PREEMPT(full) [ 1057.437030][T24622] Tainted: [I]=FIRMWARE_WORKAROUND [ 1057.437037][T24622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1057.437047][T24622] Call Trace: [ 1057.437052][T24622] [ 1057.437059][T24622] dump_stack_lvl+0x16c/0x1f0 [ 1057.437087][T24622] should_fail_ex+0x512/0x640 [ 1057.437110][T24622] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 1057.437132][T24622] should_failslab+0xc2/0x120 [ 1057.437152][T24622] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 1057.437169][T24622] ? do_raw_write_lock+0x11c/0x3a0 [ 1057.437193][T24622] ? sock_alloc_inode+0x25/0x1c0 [ 1057.437211][T24622] ? __pfx_sock_alloc_inode+0x10/0x10 [ 1057.437225][T24622] sock_alloc_inode+0x25/0x1c0 [ 1057.437239][T24622] alloc_inode+0x64/0x240 [ 1057.437261][T24622] sock_alloc+0x40/0x280 [ 1057.437276][T24622] __sock_create+0xc1/0x8d0 [ 1057.437293][T24622] ? proc_create_reg+0xe3/0x180 [ 1057.437318][T24622] inet_ctl_sock_create+0x94/0x230 [ 1057.437336][T24622] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 1057.437353][T24622] ? lockdep_init_map_type+0x5c/0x280 [ 1057.437378][T24622] ? lockdep_init_map_type+0x5c/0x280 [ 1057.437399][T24622] ? __pfx_igmp_net_init+0x10/0x10 [ 1057.437418][T24622] igmp_net_init+0xd0/0x1a0 [ 1057.437437][T24622] ops_init+0x1e2/0x5f0 [ 1057.437452][T24622] setup_net+0x10f/0x380 [ 1057.437464][T24622] ? lockdep_init_map_type+0x5c/0x280 [ 1057.437484][T24622] ? __pfx_setup_net+0x10/0x10 [ 1057.437498][T24622] ? debug_mutex_init+0x37/0x70 [ 1057.437515][T24622] copy_net_ns+0x2a6/0x5f0 [ 1057.437532][T24622] create_new_namespaces+0x3ea/0xa90 [ 1057.437554][T24622] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1057.437572][T24622] ksys_unshare+0x45b/0xa40 [ 1057.437593][T24622] ? __pfx_ksys_unshare+0x10/0x10 [ 1057.437614][T24622] ? xfd_validate_state+0x61/0x180 [ 1057.437641][T24622] __x64_sys_unshare+0x31/0x40 [ 1057.437661][T24622] do_syscall_64+0xcd/0x4c0 [ 1057.437676][T24622] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1057.437690][T24622] RIP: 0033:0x7fcf1fb8eec9 [ 1057.437703][T24622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1057.437717][T24622] RSP: 002b:00007fcf20a8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1057.437732][T24622] RAX: ffffffffffffffda RBX: 00007fcf1fde5fa0 RCX: 00007fcf1fb8eec9 [ 1057.437742][T24622] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1057.437751][T24622] RBP: 00007fcf1fc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1057.437760][T24622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1057.437770][T24622] R13: 00007fcf1fde6038 R14: 00007fcf1fde5fa0 R15: 00007ffea422c628 [ 1057.437789][T24622] [ 1058.422728][T24635] netlink: 246 bytes leftover after parsing attributes in process `syz.0.6917'. [ 1059.058954][T24554] delete_channel: no stack [ 1059.512970][T24622] socket: no more sockets [ 1059.566633][T24622] Failed to initialize the IGMP autojoin socket (err -23) [ 1060.546415][T18470] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1060.614150][T24669] FAULT_INJECTION: forcing a failure. [ 1060.614150][T24669] name failslab, interval 1, probability 0, space 0, times 0 [ 1060.708466][T24671] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6924'. [ 1060.778693][T24669] CPU: 1 UID: 0 PID: 24669 Comm: syz.3.6923 Tainted: G I syzkaller #0 PREEMPT(full) [ 1060.778721][T24669] Tainted: [I]=FIRMWARE_WORKAROUND [ 1060.778728][T24669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1060.778738][T24669] Call Trace: [ 1060.778743][T24669] [ 1060.778750][T24669] dump_stack_lvl+0x16c/0x1f0 [ 1060.778785][T24669] should_fail_ex+0x512/0x640 [ 1060.778809][T24669] ? __kmalloc_noprof+0xbf/0x510 [ 1060.778830][T24669] ? __register_sysctl_table+0xb3/0x1900 [ 1060.778852][T24669] should_failslab+0xc2/0x120 [ 1060.778872][T24669] __kmalloc_noprof+0xd2/0x510 [ 1060.778893][T24669] __register_sysctl_table+0xb3/0x1900 [ 1060.778915][T24669] ? is_module_address+0x5f/0xf0 [ 1060.778939][T24669] ? __pfx___register_sysctl_table+0x10/0x10 [ 1060.778962][T24669] ? is_module_address+0x69/0xf0 [ 1060.778983][T24669] ? register_net_sysctl_sz+0x228/0x3e0 [ 1060.778999][T24669] ? __asan_memcpy+0x3c/0x60 [ 1060.779016][T24669] sysctl_route_net_init+0x15e/0x2c0 [ 1060.779034][T24669] ? __pfx_sysctl_route_net_init+0x10/0x10 [ 1060.779049][T24669] ops_init+0x1e2/0x5f0 [ 1060.779065][T24669] setup_net+0x10f/0x380 [ 1060.779077][T24669] ? lockdep_init_map_type+0x5c/0x280 [ 1060.779098][T24669] ? __pfx_setup_net+0x10/0x10 [ 1060.779112][T24669] ? debug_mutex_init+0x37/0x70 [ 1060.779128][T24669] copy_net_ns+0x2a6/0x5f0 [ 1060.779145][T24669] create_new_namespaces+0x3ea/0xa90 [ 1060.779167][T24669] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1060.779186][T24669] ksys_unshare+0x45b/0xa40 [ 1060.779207][T24669] ? __pfx_ksys_unshare+0x10/0x10 [ 1060.779228][T24669] ? xfd_validate_state+0x61/0x180 [ 1060.779254][T24669] __x64_sys_unshare+0x31/0x40 [ 1060.779273][T24669] do_syscall_64+0xcd/0x4c0 [ 1060.779288][T24669] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1060.779303][T24669] RIP: 0033:0x7f597838eec9 [ 1060.779316][T24669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1060.779330][T24669] RSP: 002b:00007f5979144038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1060.779345][T24669] RAX: ffffffffffffffda RBX: 00007f59785e6180 RCX: 00007f597838eec9 [ 1060.779355][T24669] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1060.779364][T24669] RBP: 00007f5978411f91 R08: 0000000000000000 R09: 0000000000000000 [ 1060.779374][T24669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1060.779383][T24669] R13: 00007f59785e6218 R14: 00007f59785e6180 R15: 00007ffea30cf788 [ 1060.779403][T24669] [ 1061.474514][T24676] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 1061.577762][T24676] CIFS mount error: No usable UNC path provided in device string! [ 1061.577762][T24676] [ 1061.608216][T24676] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1062.589501][T24697] FAULT_INJECTION: forcing a failure. [ 1062.589501][T24697] name failslab, interval 1, probability 0, space 0, times 0 [ 1062.660505][T24697] CPU: 1 UID: 0 PID: 24697 Comm: syz.6.6936 Tainted: G I syzkaller #0 PREEMPT(full) [ 1062.660532][T24697] Tainted: [I]=FIRMWARE_WORKAROUND [ 1062.660539][T24697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1062.660548][T24697] Call Trace: [ 1062.660554][T24697] [ 1062.660561][T24697] dump_stack_lvl+0x16c/0x1f0 [ 1062.660589][T24697] should_fail_ex+0x512/0x640 [ 1062.660612][T24697] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1062.660630][T24697] should_failslab+0xc2/0x120 [ 1062.660650][T24697] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1062.660666][T24697] ? fuse_dev_alloc+0x8e/0x280 [ 1062.660688][T24697] ? kasan_save_track+0x14/0x30 [ 1062.660707][T24697] fuse_dev_alloc+0x8e/0x280 [ 1062.660730][T24697] fuse_dev_alloc_install+0x13/0x40 [ 1062.660753][T24697] cuse_channel_open+0x100/0x7f0 [ 1062.660775][T24697] ? __pfx_cuse_channel_open+0x10/0x10 [ 1062.660804][T24697] misc_open+0x35d/0x420 [ 1062.660824][T24697] ? __pfx_misc_open+0x10/0x10 [ 1062.660842][T24697] chrdev_open+0x234/0x6a0 [ 1062.660861][T24697] ? __pfx_apparmor_file_open+0x10/0x10 [ 1062.660879][T24697] ? __pfx_chrdev_open+0x10/0x10 [ 1062.660899][T24697] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1062.660919][T24697] do_dentry_open+0x982/0x1530 [ 1062.660938][T24697] ? __pfx_chrdev_open+0x10/0x10 [ 1062.660961][T24697] vfs_open+0x82/0x3f0 [ 1062.660985][T24697] path_openat+0x1de4/0x2cb0 [ 1062.661009][T24697] ? __pfx_path_openat+0x10/0x10 [ 1062.661031][T24697] do_filp_open+0x20b/0x470 [ 1062.661049][T24697] ? __pfx_do_filp_open+0x10/0x10 [ 1062.661080][T24697] ? alloc_fd+0x471/0x7d0 [ 1062.661102][T24697] do_sys_openat2+0x11b/0x1d0 [ 1062.661124][T24697] ? __pfx_do_sys_openat2+0x10/0x10 [ 1062.661154][T24697] __x64_sys_openat+0x174/0x210 [ 1062.661167][T24697] ? __pfx___x64_sys_openat+0x10/0x10 [ 1062.661188][T24697] do_syscall_64+0xcd/0x4c0 [ 1062.661204][T24697] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1062.661219][T24697] RIP: 0033:0x7fcf1fb8eec9 [ 1062.661233][T24697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1062.661248][T24697] RSP: 002b:00007fcf20a8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1062.661263][T24697] RAX: ffffffffffffffda RBX: 00007fcf1fde5fa0 RCX: 00007fcf1fb8eec9 [ 1062.661273][T24697] RDX: 0000000000000000 RSI: 0000200000000380 RDI: ffffffffffffff9c [ 1062.661282][T24697] RBP: 00007fcf1fc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1062.661290][T24697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1062.661299][T24697] R13: 00007fcf1fde6038 R14: 00007fcf1fde5fa0 R15: 00007ffea422c628 [ 1062.661319][T24697] òÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿ[ 1066.568709][T24758] FAULT_INJECTION: forcing a failure. [ 1066.568709][T24758] name failslab, interval 1, probability 0, space 0, times 0 [ 1066.676626][T24758] CPU: 1 UID: 0 PID: 24758 Comm: syz.3.6953 Tainted: G I syzkaller #0 PREEMPT(full) [ 1066.676653][T24758] Tainted: [I]=FIRMWARE_WORKAROUND [ 1066.676660][T24758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1066.676669][T24758] Call Trace: [ 1066.676676][T24758] [ 1066.676682][T24758] dump_stack_lvl+0x16c/0x1f0 [ 1066.676710][T24758] should_fail_ex+0x512/0x640 [ 1066.676734][T24758] ? __kmalloc_cache_node_noprof+0x5a/0x420 [ 1066.676754][T24758] should_failslab+0xc2/0x120 [ 1066.676775][T24758] __kmalloc_cache_node_noprof+0x6d/0x420 [ 1066.676791][T24758] ? alloc_shrinker_info+0xea/0x470 [ 1066.676809][T24758] ? alloc_shrinker_info+0x18c/0x470 [ 1066.676831][T24758] alloc_shrinker_info+0x18c/0x470 [ 1066.676855][T24758] mem_cgroup_css_online+0x217/0x640 [ 1066.676877][T24758] ? __pfx_mem_cgroup_css_online+0x10/0x10 [ 1066.676892][T24758] online_css+0xaf/0x350 [ 1066.676912][T24758] cgroup_apply_control_enable+0x702/0xbb0 [ 1066.676943][T24758] cgroup_mkdir+0x5e7/0x11f0 [ 1066.676968][T24758] ? __pfx_cgroup_mkdir+0x10/0x10 [ 1066.676991][T24758] kernfs_iop_mkdir+0x111/0x190 [ 1066.677011][T24758] ? bpf_lsm_inode_mkdir+0x9/0x10 [ 1066.677032][T24758] vfs_mkdir+0x590/0x8c0 [ 1066.677049][T24758] do_mkdirat+0x304/0x3e0 [ 1066.677068][T24758] ? __pfx_do_mkdirat+0x10/0x10 [ 1066.677088][T24758] ? getname_flags.part.0+0x1c5/0x550 [ 1066.677113][T24758] __x64_sys_mkdir+0xef/0x140 [ 1066.677131][T24758] do_syscall_64+0xcd/0x4c0 [ 1066.677146][T24758] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1066.677161][T24758] RIP: 0033:0x7f597838eec9 [ 1066.677174][T24758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1066.677188][T24758] RSP: 002b:00007f5979186038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 1066.677202][T24758] RAX: ffffffffffffffda RBX: 00007f59785e5fa0 RCX: 00007f597838eec9 [ 1066.677212][T24758] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000 [ 1066.677221][T24758] RBP: 00007f5978411f91 R08: 0000000000000000 R09: 0000000000000000 [ 1066.677229][T24758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1066.677238][T24758] R13: 00007f59785e6038 R14: 00007f59785e5fa0 R15: 00007ffea30cf788 [ 1066.677257][T24758] [ 1067.965411][T24771] FAULT_INJECTION: forcing a failure. [ 1067.965411][T24771] name failslab, interval 1, probability 0, space 0, times 0 [ 1068.062922][T24771] CPU: 1 UID: 0 PID: 24771 Comm: syz.3.6958 Tainted: G I syzkaller #0 PREEMPT(full) [ 1068.062950][T24771] Tainted: [I]=FIRMWARE_WORKAROUND [ 1068.062956][T24771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1068.062966][T24771] Call Trace: [ 1068.062972][T24771] [ 1068.062979][T24771] dump_stack_lvl+0x16c/0x1f0 [ 1068.063008][T24771] should_fail_ex+0x512/0x640 [ 1068.063031][T24771] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1068.063050][T24771] should_failslab+0xc2/0x120 [ 1068.063070][T24771] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1068.063085][T24771] ? ww_mutex_lock+0x37/0x160 [ 1068.063098][T24771] ? vkms_atomic_crtc_duplicate_state+0x78/0x1d0 [ 1068.063121][T24771] vkms_atomic_crtc_duplicate_state+0x78/0x1d0 [ 1068.063140][T24771] drm_atomic_get_crtc_state+0x171/0x450 [ 1068.063160][T24771] drm_atomic_get_plane_state+0x436/0x590 [ 1068.063179][T24771] drm_client_modeset_commit_atomic+0x237/0x7e0 [ 1068.063198][T24771] ? __pfx___might_resched+0x10/0x10 [ 1068.063219][T24771] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 1068.063238][T24771] ? __mutex_lock+0x1c5/0x1060 [ 1068.063249][T24771] ? rcu_is_watching+0x12/0xc0 [ 1068.063283][T24771] drm_client_modeset_commit_locked+0x14d/0x580 [ 1068.063304][T24771] drm_client_modeset_commit+0x4f/0x80 [ 1068.063323][T24771] __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200 [ 1068.063342][T24771] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 1068.063365][T24771] drm_fbdev_client_restore+0x2c/0x40 [ 1068.063388][T24771] drm_client_dev_restore+0x1f6/0x2a0 [ 1068.063409][T24771] drm_release+0x2c4/0x360 [ 1068.063428][T24771] ? __pfx_drm_release+0x10/0x10 [ 1068.063444][T24771] __fput+0x402/0xb70 [ 1068.063469][T24771] task_work_run+0x150/0x240 [ 1068.063484][T24771] ? __pfx_task_work_run+0x10/0x10 [ 1068.063498][T24771] ? __pfx___do_sys_close_range+0x10/0x10 [ 1068.063516][T24771] ? syscall_user_dispatch+0x78/0x140 [ 1068.063543][T24771] exit_to_user_mode_loop+0xeb/0x110 [ 1068.063565][T24771] do_syscall_64+0x41c/0x4c0 [ 1068.063580][T24771] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1068.063596][T24771] RIP: 0033:0x7f597838eec9 [ 1068.063610][T24771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1068.063625][T24771] RSP: 002b:00007f5979186038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 1068.063640][T24771] RAX: 0000000000000000 RBX: 00007f59785e5fa0 RCX: 00007f597838eec9 [ 1068.063649][T24771] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 1068.063658][T24771] RBP: 00007f5978411f91 R08: 0000000000000000 R09: 0000000000000000 [ 1068.063667][T24771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1068.063675][T24771] R13: 00007f59785e6038 R14: 00007f59785e5fa0 R15: 00007ffea30cf788 [ 1068.063696][T24771] [ 1068.579675][T24779] debugfs: '!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' already exists in 'ieee80211' [ 1069.815647][T24806] netlink: 206 bytes leftover after parsing attributes in process `syz.3.6968'. [ 1069.897448][T24797] zswap: compressor not available [ 1071.829207][T24837] debugfs: '!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' already exists in 'ieee80211' [ 1073.578445][ C1] vkms_vblank_simulate: vblank timer overrun [ 1075.287005][T24882] netlink: 'syz.6.6985': attribute type 2 has an invalid length. [ 1075.406550][T24882] netlink: 5 bytes leftover after parsing attributes in process `syz.6.6985'. [ 1076.262174][T24886] ubi0: attaching mtd0 [ 1076.335391][T24886] ubi0: scanning is finished [ 1076.393065][T24886] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 1076.733885][T24890] zswap: compressor 000 not available [ 1076.812058][T24886] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1077.356344][T24903] netlink: 302 bytes leftover after parsing attributes in process `syz.6.6993'. [ 1080.872979][T24958] ERROR: Out of memory at tomoyo_memory_ok. [ 1080.945119][T24958] FAULT_INJECTION: forcing a failure. [ 1080.945119][T24958] name failslab, interval 1, probability 0, space 0, times 0 [ 1081.042564][T24958] CPU: 1 UID: 0 PID: 24958 Comm: syz.2.7007 Tainted: G I syzkaller #0 PREEMPT(full) [ 1081.042596][T24958] Tainted: [I]=FIRMWARE_WORKAROUND [ 1081.042603][T24958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1081.042613][T24958] Call Trace: [ 1081.042618][T24958] [ 1081.042625][T24958] dump_stack_lvl+0x16c/0x1f0 [ 1081.042654][T24958] should_fail_ex+0x512/0x640 [ 1081.042677][T24958] ? fs_reclaim_acquire+0xae/0x150 [ 1081.042702][T24958] ? ext4_find_extent+0x844/0xa70 [ 1081.042722][T24958] should_failslab+0xc2/0x120 [ 1081.042743][T24958] __kmalloc_noprof+0xd2/0x510 [ 1081.042760][T24958] ? find_held_lock+0x2b/0x80 [ 1081.042780][T24958] ext4_find_extent+0x844/0xa70 [ 1081.042800][T24958] ? is_bpf_text_address+0x94/0x1a0 [ 1081.042822][T24958] ext4_ext_map_blocks+0x290/0x5fe0 [ 1081.042852][T24958] ? stack_trace_save+0x8e/0xc0 [ 1081.042869][T24958] ? __pfx_stack_trace_save+0x10/0x10 [ 1081.042889][T24958] ? __pfx_ext4_ext_map_blocks+0x10/0x10 [ 1081.042914][T24958] ? ext4_do_writepages+0x167b/0x3cf0 [ 1081.042941][T24958] ? __pfx___might_resched+0x10/0x10 [ 1081.042962][T24958] ? __pfx_down_write+0x10/0x10 [ 1081.042975][T24958] ? ext4_es_lookup_extent+0xc7/0xc50 [ 1081.042995][T24958] ext4_map_blocks+0x570/0x1400 [ 1081.043016][T24958] ? __pfx_ext4_map_blocks+0x10/0x10 [ 1081.043035][T24958] ? trace_kmem_cache_alloc+0x28/0xc0 [ 1081.043056][T24958] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 1081.043077][T24958] ? ext4_ext_index_trans_blocks+0x159/0x190 [ 1081.043099][T24958] ? __ext4_journal_ensure_credits+0x25e/0x2f0 [ 1081.043121][T24958] ext4_do_writepages+0x1ffa/0x3cf0 [ 1081.043157][T24958] ? __pfx_ext4_do_writepages+0x10/0x10 [ 1081.043187][T24958] ? ext4_writepages+0x37a/0x7d0 [ 1081.043205][T24958] ext4_writepages+0x37a/0x7d0 [ 1081.043225][T24958] ? __pfx_ext4_writepages+0x10/0x10 [ 1081.043253][T24958] ? do_writepages+0x4b7/0x600 [ 1081.043269][T24958] ? __pfx_ext4_writepages+0x10/0x10 [ 1081.043290][T24958] do_writepages+0x27a/0x600 [ 1081.043306][T24958] ? __pfx_do_writepages+0x10/0x10 [ 1081.043319][T24958] ? do_raw_spin_unlock+0x172/0x230 [ 1081.043342][T24958] ? _raw_spin_unlock+0x28/0x50 [ 1081.043363][T24958] filemap_fdatawrite_wbc+0x104/0x160 [ 1081.043379][T24958] __filemap_fdatawrite_range+0xb9/0x100 [ 1081.043399][T24958] ? __pfx___filemap_fdatawrite_range+0x10/0x10 [ 1081.043447][T24958] file_write_and_wait_range+0xca/0x140 [ 1081.043468][T24958] ext4_sync_file+0x310/0xf10 [ 1081.043487][T24958] ? __pfx___up_read+0x10/0x10 [ 1081.043509][T24958] ? __pfx_ext4_sync_file+0x10/0x10 [ 1081.043526][T24958] vfs_fsync_range+0x139/0x220 [ 1081.043547][T24958] __do_sys_msync+0x3cb/0x5c0 [ 1081.043578][T24958] do_syscall_64+0xcd/0x4c0 [ 1081.043595][T24958] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1081.043611][T24958] RIP: 0033:0x7f20ba58eec9 [ 1081.043625][T24958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1081.043639][T24958] RSP: 002b:00007f20bb35b038 EFLAGS: 00000246 ORIG_RAX: 000000000000001a [ 1081.043654][T24958] RAX: ffffffffffffffda RBX: 00007f20ba7e5fa0 RCX: 00007f20ba58eec9 [ 1081.043665][T24958] RDX: 0000000400000004 RSI: 01800000000000fe RDI: 000000001ffff000 [ 1081.043674][T24958] RBP: 00007f20ba611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1081.043684][T24958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1081.043693][T24958] R13: 00007f20ba7e6038 R14: 00007f20ba7e5fa0 R15: 00007ffc31040268 [ 1081.043713][T24958] [ 1081.408752][T24959] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4) [ 1083.694059][T24981] HfR: entered promiscuous mode [ 1089.355310][T25069] sd 0:0:1:0: PR command failed: 1026 [ 1089.480926][T25069] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 1089.601155][T25069] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 1094.209742][T25116] netlink: 330 bytes leftover after parsing attributes in process `syz.3.7046'. [ 1096.330118][T25138] FAULT_INJECTION: forcing a failure. [ 1096.330118][T25138] name failslab, interval 1, probability 0, space 0, times 0 [ 1096.515416][T25138] CPU: 1 UID: 0 PID: 25138 Comm: syz.3.7053 Tainted: G I syzkaller #0 PREEMPT(full) [ 1096.515444][T25138] Tainted: [I]=FIRMWARE_WORKAROUND [ 1096.515450][T25138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1096.515459][T25138] Call Trace: [ 1096.515466][T25138] [ 1096.515473][T25138] dump_stack_lvl+0x16c/0x1f0 [ 1096.515502][T25138] should_fail_ex+0x512/0x640 [ 1096.515526][T25138] ? __kmalloc_noprof+0xbf/0x510 [ 1096.515546][T25138] ? lsm_blob_alloc+0x68/0x90 [ 1096.515565][T25138] should_failslab+0xc2/0x120 [ 1096.515586][T25138] __kmalloc_noprof+0xd2/0x510 [ 1096.515608][T25138] lsm_blob_alloc+0x68/0x90 [ 1096.515622][T25138] security_prepare_creds+0x30/0x270 [ 1096.515645][T25138] prepare_creds+0x56f/0x7d0 [ 1096.515669][T25138] __sys_setfsgid+0xe3/0x380 [ 1096.515685][T25138] ? rcu_is_watching+0x12/0xc0 [ 1096.515702][T25138] do_syscall_64+0xcd/0x4c0 [ 1096.515717][T25138] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1096.515732][T25138] RIP: 0033:0x7f597838eec9 [ 1096.515745][T25138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1096.515760][T25138] RSP: 002b:00007f5979165038 EFLAGS: 00000246 ORIG_RAX: 000000000000007b [ 1096.515774][T25138] RAX: ffffffffffffffda RBX: 00007f59785e6090 RCX: 00007f597838eec9 [ 1096.515784][T25138] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1096.515792][T25138] RBP: 00007f5978411f91 R08: 0000000000000000 R09: 0000000000000000 [ 1096.515801][T25138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1096.515810][T25138] R13: 00007f59785e6128 R14: 00007f59785e6090 R15: 00007ffea30cf788 [ 1096.515830][T25138] [ 1104.632195][T25237] FAULT_INJECTION: forcing a failure. [ 1104.632195][T25237] name failslab, interval 1, probability 0, space 0, times 0 [ 1104.729176][T25237] CPU: 1 UID: 0 PID: 25237 Comm: syz.2.7080 Tainted: G I syzkaller #0 PREEMPT(full) [ 1104.729205][T25237] Tainted: [I]=FIRMWARE_WORKAROUND [ 1104.729211][T25237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1104.729220][T25237] Call Trace: [ 1104.729227][T25237] [ 1104.729233][T25237] dump_stack_lvl+0x16c/0x1f0 [ 1104.729263][T25237] should_fail_ex+0x512/0x640 [ 1104.729286][T25237] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1104.729305][T25237] should_failslab+0xc2/0x120 [ 1104.729325][T25237] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1104.729340][T25237] ? sctp_endpoint_new+0x7c/0xcd0 [ 1104.729364][T25237] sctp_endpoint_new+0x7c/0xcd0 [ 1104.729388][T25237] sctp_init_sock+0xe2d/0x1330 [ 1104.729408][T25237] ? __pfx_sctp_v6_init_sock+0x10/0x10 [ 1104.729429][T25237] sctp_v6_init_sock+0x16/0x70 [ 1104.729447][T25237] ? __pfx_sctp_v6_init_sock+0x10/0x10 [ 1104.729466][T25237] inet6_create+0xb2d/0x12b0 [ 1104.729485][T25237] ? inet6_create+0x7f/0x12b0 [ 1104.729503][T25237] __sock_create+0x335/0x8d0 [ 1104.729525][T25237] __sys_socket+0x14d/0x260 [ 1104.729542][T25237] ? __pfx___sys_socket+0x10/0x10 [ 1104.729559][T25237] ? xfd_validate_state+0x61/0x180 [ 1104.729581][T25237] ? __pfx_ksys_write+0x10/0x10 [ 1104.729602][T25237] __x64_sys_socket+0x72/0xb0 [ 1104.729618][T25237] ? lockdep_hardirqs_on+0x7c/0x110 [ 1104.729640][T25237] do_syscall_64+0xcd/0x4c0 [ 1104.729654][T25237] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1104.729669][T25237] RIP: 0033:0x7f20ba58eec9 [ 1104.729682][T25237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1104.729696][T25237] RSP: 002b:00007f20b87f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 1104.729718][T25237] RAX: ffffffffffffffda RBX: 00007f20ba7e6090 RCX: 00007f20ba58eec9 [ 1104.729728][T25237] RDX: 0000000000000084 RSI: 0000000000000005 RDI: 000000000000000a [ 1104.729737][T25237] RBP: 00007f20ba611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1104.729746][T25237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1104.729755][T25237] R13: 00007f20ba7e6128 R14: 00007f20ba7e6090 R15: 00007ffc31040268 [ 1104.729775][T25237] [ 1105.439075][T25242] ERROR: Out of memory at tomoyo_memory_ok. [ 1105.476576][T25242] FAULT_INJECTION: forcing a failure. [ 1105.476576][T25242] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1105.512451][T25242] CPU: 1 UID: 0 PID: 25242 Comm: syz.6.7082 Tainted: G I syzkaller #0 PREEMPT(full) [ 1105.512480][T25242] Tainted: [I]=FIRMWARE_WORKAROUND [ 1105.512486][T25242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1105.512496][T25242] Call Trace: [ 1105.512502][T25242] [ 1105.512508][T25242] dump_stack_lvl+0x16c/0x1f0 [ 1105.512536][T25242] should_fail_ex+0x512/0x640 [ 1105.512564][T25242] _copy_from_user+0x2e/0xd0 [ 1105.512582][T25242] vmci_host_unlocked_ioctl+0xbdb/0x2040 [ 1105.512606][T25242] ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10 [ 1105.512629][T25242] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1105.512655][T25242] ? do_vfs_ioctl+0x128/0x14f0 [ 1105.512678][T25242] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 1105.512708][T25242] ? find_held_lock+0x2b/0x80 [ 1105.512723][T25242] ? hook_file_ioctl_common+0x145/0x410 [ 1105.512746][T25242] ? __fget_files+0x20e/0x3c0 [ 1105.512765][T25242] ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10 [ 1105.512788][T25242] __x64_sys_ioctl+0x18e/0x210 [ 1105.512812][T25242] do_syscall_64+0xcd/0x4c0 [ 1105.512827][T25242] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1105.512842][T25242] RIP: 0033:0x7fcf1fb8eec9 [ 1105.512876][T25242] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1105.512891][T25242] RSP: 002b:00007fcf20a6e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1105.512914][T25242] RAX: ffffffffffffffda RBX: 00007fcf1fde6090 RCX: 00007fcf1fb8eec9 [ 1105.512924][T25242] RDX: 0000000000000006 RSI: 00000000000007a0 RDI: 0000000000000007 [ 1105.512940][T25242] RBP: 00007fcf1fc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1105.512949][T25242] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1105.512959][T25242] R13: 00007fcf1fde6128 R14: 00007fcf1fde6090 R15: 00007ffea422c628 [ 1105.512979][T25242] [ 1106.126179][ T30] audit: type=1326 audit(4294976412.150:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25247 comm="syz.3.7084" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f597838eec9 code=0x0 [ 1106.185886][T25250] FAULT_INJECTION: forcing a failure. [ 1106.185886][T25250] name failslab, interval 1, probability 0, space 0, times 0 [ 1106.287682][T25250] CPU: 1 UID: 0 PID: 25250 Comm: syz.3.7084 Tainted: G I syzkaller #0 PREEMPT(full) [ 1106.287711][T25250] Tainted: [I]=FIRMWARE_WORKAROUND [ 1106.287717][T25250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1106.287727][T25250] Call Trace: [ 1106.287733][T25250] [ 1106.287739][T25250] dump_stack_lvl+0x16c/0x1f0 [ 1106.287768][T25250] should_fail_ex+0x512/0x640 [ 1106.287791][T25250] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1106.287810][T25250] should_failslab+0xc2/0x120 [ 1106.287831][T25250] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1106.287847][T25250] ? snd_pcm_oss_change_params_locked+0x1db/0x3a30 [ 1106.287870][T25250] snd_pcm_oss_change_params_locked+0x1db/0x3a30 [ 1106.287890][T25250] ? trace_contention_end+0xdd/0x130 [ 1106.287911][T25250] ? __mutex_lock+0x1c5/0x1060 [ 1106.287928][T25250] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 1106.287947][T25250] ? __pfx___mutex_lock+0x10/0x10 [ 1106.287965][T25250] ? __fsnotify_parent+0x24b/0xc40 [ 1106.287987][T25250] snd_pcm_oss_make_ready+0xe6/0x1b0 [ 1106.288005][T25250] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 1106.288021][T25250] snd_pcm_oss_sync+0x1de/0x840 [ 1106.288040][T25250] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 1106.288057][T25250] snd_pcm_oss_release+0x28b/0x310 [ 1106.288075][T25250] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 1106.288091][T25250] __fput+0x402/0xb70 [ 1106.288123][T25250] task_work_run+0x150/0x240 [ 1106.288138][T25250] ? __pfx_task_work_run+0x10/0x10 [ 1106.288152][T25250] ? __pfx___do_sys_close_range+0x10/0x10 [ 1106.288176][T25250] exit_to_user_mode_loop+0xeb/0x110 [ 1106.288199][T25250] do_syscall_64+0x41c/0x4c0 [ 1106.288214][T25250] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1106.288229][T25250] RIP: 0033:0x7f597838eec9 [ 1106.288243][T25250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1106.288257][T25250] RSP: 002b:00007f5979165038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 1106.288272][T25250] RAX: 0000000000000000 RBX: 00007f59785e6090 RCX: 00007f597838eec9 [ 1106.288282][T25250] RDX: 0000000000000000 RSI: fffffffffffff000 RDI: 0000000000000000 [ 1106.288291][T25250] RBP: 00007f5978411f91 R08: 0000000000000000 R09: 0000000000000000 [ 1106.288300][T25250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1106.288308][T25250] R13: 00007f59785e6128 R14: 00007f59785e6090 R15: 00007ffea30cf788 [ 1106.288327][T25250] [ 1107.583682][T25261] FAULT_INJECTION: forcing a failure. [ 1107.583682][T25261] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1107.629877][T25254] [U]  [ 1107.632690][T25254] [U] [ 1107.635366][T25254] [U] [ 1107.638045][T25254] [U] [ 1107.671073][T25261] CPU: 1 UID: 0 PID: 25261 Comm: syz.6.7085 Tainted: G I syzkaller #0 PREEMPT(full) [ 1107.671100][T25261] Tainted: [I]=FIRMWARE_WORKAROUND [ 1107.671106][T25261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1107.671116][T25261] Call Trace: [ 1107.671122][T25261] [ 1107.671128][T25261] dump_stack_lvl+0x16c/0x1f0 [ 1107.671157][T25261] should_fail_ex+0x512/0x640 [ 1107.671184][T25261] should_fail_alloc_page+0xe7/0x130 [ 1107.671207][T25261] prepare_alloc_pages+0x3c2/0x610 [ 1107.671229][T25261] ? rcu_is_watching+0x12/0xc0 [ 1107.671247][T25261] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 1107.671266][T25261] ? __pfx_stack_trace_save+0x10/0x10 [ 1107.671305][T25261] ? __lock_acquire+0x62e/0x1ce0 [ 1107.671327][T25261] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1107.671345][T25261] ? blk_trace_setup+0xed/0x1b0 [ 1107.671374][T25261] ? rcu_read_unlock+0x17/0x60 [ 1107.671397][T25261] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1107.671421][T25261] ? policy_nodemask+0xea/0x4e0 [ 1107.671449][T25261] alloc_pages_mpol+0x1fb/0x550 [ 1107.671473][T25261] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1107.671496][T25261] ? trace_kmalloc+0x2b/0xd0 [ 1107.671515][T25261] ? __kvmalloc_node_noprof.cold+0x60/0x65 [ 1107.671540][T25261] ? trace_kmalloc+0x2b/0xd0 [ 1107.671559][T25261] ? __kmalloc_noprof.cold+0x5c/0x61 [ 1107.671582][T25261] alloc_pages_noprof+0x131/0x390 [ 1107.671602][T25261] relay_open_buf.part.0+0x25d/0xc30 [ 1107.671628][T25261] relay_open+0x653/0xad0 [ 1107.671647][T25261] ? debugfs_create_file_full+0x41/0x60 [ 1107.671667][T25261] do_blk_trace_setup+0x4c5/0xb00 [ 1107.671685][T25261] blk_trace_setup+0xed/0x1b0 [ 1107.671702][T25261] ? __pfx_blk_trace_setup+0x10/0x10 [ 1107.671717][T25261] ? __pfx_snprintf+0x10/0x10 [ 1107.671744][T25261] ? do_vfs_ioctl+0x128/0x14f0 [ 1107.671769][T25261] blk_trace_ioctl+0x146/0x280 [ 1107.671787][T25261] ? __pfx_blk_trace_ioctl+0x10/0x10 [ 1107.671806][T25261] ? find_held_lock+0x2b/0x80 [ 1107.671820][T25261] ? hook_file_ioctl_common+0x145/0x410 [ 1107.671841][T25261] blkdev_ioctl+0x108/0x6d0 [ 1107.671861][T25261] ? __pfx_blkdev_ioctl+0x10/0x10 [ 1107.671882][T25261] ? __pfx_blkdev_ioctl+0x10/0x10 [ 1107.671901][T25261] __x64_sys_ioctl+0x18e/0x210 [ 1107.671925][T25261] do_syscall_64+0xcd/0x4c0 [ 1107.671940][T25261] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1107.671955][T25261] RIP: 0033:0x7fcf1fb8eec9 [ 1107.671968][T25261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1107.671983][T25261] RSP: 002b:00007fcf20a8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1107.671998][T25261] RAX: ffffffffffffffda RBX: 00007fcf1fde5fa0 RCX: 00007fcf1fb8eec9 [ 1107.672008][T25261] RDX: 0000200000000240 RSI: 00000000c0481273 RDI: 0000000000000008 [ 1107.672018][T25261] RBP: 00007fcf1fc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1107.672028][T25261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1107.672037][T25261] R13: 00007fcf1fde6038 R14: 00007fcf1fde5fa0 R15: 00007ffea422c628 [ 1107.672057][T25261] [ 1107.676650][T25254] [U] [ 1107.978468][T25254] [U] [ 1107.981142][T25254] [U] [ 1107.983815][T25254] [U] [ 1108.557629][T25268] program syz.3.7088 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1108.589124][T25267] FAULT_INJECTION: forcing a failure. [ 1108.589124][T25267] name failslab, interval 1, probability 0, space 0, times 0 [ 1108.646635][T25267] CPU: 1 UID: 0 PID: 25267 Comm: syz.6.7089 Tainted: G I syzkaller #0 PREEMPT(full) [ 1108.646662][T25267] Tainted: [I]=FIRMWARE_WORKAROUND [ 1108.646669][T25267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1108.646679][T25267] Call Trace: [ 1108.646685][T25267] [ 1108.646692][T25267] dump_stack_lvl+0x16c/0x1f0 [ 1108.646722][T25267] should_fail_ex+0x512/0x640 [ 1108.646746][T25267] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1108.646768][T25267] should_failslab+0xc2/0x120 [ 1108.646789][T25267] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1108.646808][T25267] ? __kernfs_new_node+0xd2/0x8e0 [ 1108.646830][T25267] __kernfs_new_node+0xd2/0x8e0 [ 1108.646851][T25267] ? __pfx___kernfs_new_node+0x10/0x10 [ 1108.646875][T25267] ? find_held_lock+0x2b/0x80 [ 1108.646894][T25267] ? kernfs_root+0xee/0x2a0 [ 1108.646916][T25267] kernfs_new_node+0x13c/0x1e0 [ 1108.646940][T25267] __kernfs_create_file+0x53/0x350 [ 1108.646958][T25267] sysfs_add_file_mode_ns+0x207/0x3c0 [ 1108.646981][T25267] internal_create_group+0x578/0xf30 [ 1108.647006][T25267] ? __pfx_internal_create_group+0x10/0x10 [ 1108.647028][T25267] ? kernfs_create_link+0x1bd/0x240 [ 1108.647046][T25267] internal_create_groups+0x9d/0x150 [ 1108.647067][T25267] device_add+0x6d1/0x1aa0 [ 1108.647086][T25267] ? __pfx_device_add+0x10/0x10 [ 1108.647102][T25267] ? lockdep_init_map_type+0x5c/0x280 [ 1108.647122][T25267] ? __init_waitqueue_head+0xca/0x150 [ 1108.647153][T25267] netdev_register_kobject+0x1a9/0x3d0 [ 1108.647173][T25267] register_netdevice+0x13dc/0x2270 [ 1108.647192][T25267] ? __pfx_register_netdevice+0x10/0x10 [ 1108.647221][T25267] __ip_tunnel_create+0x540/0x6e0 [ 1108.647238][T25267] ? __pfx___ip_tunnel_create+0x10/0x10 [ 1108.647260][T25267] ip_tunnel_init_net+0x22f/0x7d0 [ 1108.647279][T25267] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 1108.647299][T25267] ? trace_kmalloc+0x2b/0xd0 [ 1108.647320][T25267] ? __kmalloc_noprof+0x242/0x510 [ 1108.647336][T25267] ? lockdep_init_map_type+0x5c/0x280 [ 1108.647358][T25267] ? __pfx_ipgre_tap_init_net+0x10/0x10 [ 1108.647385][T25267] ops_init+0x1e2/0x5f0 [ 1108.647404][T25267] setup_net+0x10f/0x380 [ 1108.647416][T25267] ? lockdep_init_map_type+0x5c/0x280 [ 1108.647436][T25267] ? __pfx_setup_net+0x10/0x10 [ 1108.647451][T25267] ? debug_mutex_init+0x37/0x70 [ 1108.647468][T25267] copy_net_ns+0x2a6/0x5f0 [ 1108.647485][T25267] create_new_namespaces+0x3ea/0xa90 [ 1108.647508][T25267] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1108.647533][T25267] ksys_unshare+0x45b/0xa40 [ 1108.647558][T25267] ? __pfx_ksys_unshare+0x10/0x10 [ 1108.647578][T25267] ? xfd_validate_state+0x61/0x180 [ 1108.647605][T25267] __x64_sys_unshare+0x31/0x40 [ 1108.647625][T25267] do_syscall_64+0xcd/0x4c0 [ 1108.647641][T25267] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1108.647657][T25267] RIP: 0033:0x7fcf1fb8eec9 [ 1108.647671][T25267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1108.647686][T25267] RSP: 002b:00007fcf20a8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1108.647702][T25267] RAX: ffffffffffffffda RBX: 00007fcf1fde5fa0 RCX: 00007fcf1fb8eec9 [ 1108.647712][T25267] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1108.647721][T25267] RBP: 00007fcf1fc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1108.647731][T25267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1108.647741][T25267] R13: 00007fcf1fde6038 R14: 00007fcf1fde5fa0 R15: 00007ffea422c628 [ 1108.647761][T25267] [ 1109.074018][T25254] [U] [ 1109.076738][T25254] [U] [ 1109.079451][T25254] [U] [ 1109.082140][T25254] [U] [ 1109.085187][T25254] [U] [ 1109.087868][T25254] [U] [ 1109.090541][T25254] [U] [ 1109.093216][T25254] [U] [ 1109.096105][T25254] [U] [ 1109.098819][T25254] [U] [ 1109.101493][T25254] [U] [ 1109.104178][T25254] [U] [ 1109.107825][T25254] [U] [ 1109.110518][T25254] [U] [ 1109.113191][T25254] [U] [ 1109.115867][T25254] [U] [ 1109.119496][T25254] [U] [ 1109.122183][T25254] [U] [ 1109.124856][T25254] [U] [ 1109.127531][T25254] [U] [ 1109.130680][T25254] [U] [ 1109.133362][T25254] [U] [ 1109.136032][T25254] [U] [ 1109.138704][T25254] [U] [ 1109.141593][T25254] [U] [ 1109.144271][T25254] [U] [ 1109.146942][T25254] [U] [ 1109.149615][T25254] [U] [ 1109.152547][T25254] [U] [ 1109.155226][T25254] [U] [ 1109.157898][T25254] [U] [ 1109.160595][T25254] [U] [ 1109.163633][T25254] [U] [ 1109.166327][T25254] [U] [ 1109.168998][T25254] [U] [ 1109.171671][T25254] [U] [ 1109.191328][T25254] [U] [ 1109.307257][T25272] size and base must be multiples of 4 kiB [ 1109.313453][T25272] CPU: 1 UID: 0 PID: 25272 Comm: syz.2.7090 Tainted: G I syzkaller #0 PREEMPT(full) [ 1109.313478][T25272] Tainted: [I]=FIRMWARE_WORKAROUND [ 1109.313485][T25272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1109.313495][T25272] Call Trace: [ 1109.313501][T25272] [ 1109.313506][T25272] dump_stack_lvl+0x16c/0x1f0 [ 1109.313536][T25272] mtrr_add+0xdf/0x110 [ 1109.313558][T25272] mtrr_ioctl+0x7ef/0xcf0 [ 1109.313579][T25272] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1109.313602][T25272] ? find_held_lock+0x2b/0x80 [ 1109.313624][T25272] ? __fget_files+0x20e/0x3c0 [ 1109.313641][T25272] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1109.313661][T25272] proc_reg_unlocked_ioctl+0x229/0x320 [ 1109.313681][T25272] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1109.313702][T25272] __x64_sys_ioctl+0x18e/0x210 [ 1109.313726][T25272] do_syscall_64+0xcd/0x4c0 [ 1109.313741][T25272] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1109.313756][T25272] RIP: 0033:0x7f20ba58eec9 [ 1109.313769][T25272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1109.313782][T25272] RSP: 002b:00007f20bb35b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1109.313797][T25272] RAX: ffffffffffffffda RBX: 00007f20ba7e5fa0 RCX: 00007f20ba58eec9 [ 1109.313806][T25272] RDX: 0000000000000005 RSI: 00000000400c4d01 RDI: 0000000000000005 [ 1109.313815][T25272] RBP: 00007f20ba611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1109.313824][T25272] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1109.313832][T25272] R13: 00007f20ba7e6038 R14: 00007f20ba7e5fa0 R15: 00007ffc31040268 [ 1109.313851][T25272] [ 1110.126717][T25283] netlink: 20 bytes leftover after parsing attributes in process `syz.6.7095'. [ 1110.245109][T25283] mac80211_hwsim hwsim27 wlan1: entered allmulticast mode [ 1111.417284][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 1111.423849][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 1114.982483][T25323] Loading of unsigned module is rejected [ 1117.030933][T25372] ima: policy update failed [ 1117.035654][ T30] audit: type=1802 audit(4294976423.121:22): pid=25372 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.6.7118" res=0 errno=0 [ 1117.099743][T25372] netlink: 25 bytes leftover after parsing attributes in process `syz.6.7118'. [ 1119.685895][T25393] sd 0:0:1:0: PR command failed: 1026 [ 1119.767893][T25393] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 1119.986769][T25393] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 1121.361017][T25437] netlink: 25 bytes leftover after parsing attributes in process `syz.3.7134'. [ 1121.903905][T25444] netlink: 5 bytes leftover after parsing attributes in process `syz.3.7136'. [ 1121.958864][T25444] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7136'. [ 1129.297041][T25550] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7161'. [ 1129.446343][T25551] netlink: 354 bytes leftover after parsing attributes in process `syz.0.7161'. [ 1131.175580][T25572] sp0: Synchronizing with TNC [ 1132.746034][T25599] netlink: 28 bytes leftover after parsing attributes in process `syz.6.7173'. [ 1132.883076][T25599] veth0_macvtap: left promiscuous mode [ 1132.999945][T25602] mkiss: ax0: crc mode is auto. [ 1134.139755][T25631] netlink: 186 bytes leftover after parsing attributes in process `syz.0.7182'. [ 1134.417695][T25627] zswap: compressor not available [ 1137.173877][T25682] ================================================================== [ 1137.182061][T25682] BUG: KASAN: slab-use-after-free in dvb_device_open+0x36a/0x3b0 [ 1137.189775][T25682] Read of size 8 at addr ffff88802a1cfa18 by task syz.2.7195/25682 [ 1137.197653][T25682] [ 1137.199969][T25682] CPU: 1 UID: 0 PID: 25682 Comm: syz.2.7195 Tainted: G I syzkaller #0 PREEMPT(full) [ 1137.199994][T25682] Tainted: [I]=FIRMWARE_WORKAROUND [ 1137.200000][T25682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1137.200011][T25682] Call Trace: [ 1137.200018][T25682] [ 1137.200029][T25682] dump_stack_lvl+0x116/0x1f0 [ 1137.200056][T25682] print_report+0xcd/0x630 [ 1137.200076][T25682] ? __virt_addr_valid+0x81/0x610 [ 1137.200094][T25682] ? __phys_addr+0xe8/0x180 [ 1137.200113][T25682] ? dvb_device_open+0x36a/0x3b0 [ 1137.200126][T25682] kasan_report+0xe0/0x110 [ 1137.200144][T25682] ? dvb_device_open+0x36a/0x3b0 [ 1137.200158][T25682] ? __pfx_dvb_device_open+0x10/0x10 [ 1137.200170][T25682] dvb_device_open+0x36a/0x3b0 [ 1137.200183][T25682] ? __pfx_dvb_device_open+0x10/0x10 [ 1137.200197][T25682] chrdev_open+0x234/0x6a0 [ 1137.200216][T25682] ? __pfx_apparmor_file_open+0x10/0x10 [ 1137.200233][T25682] ? __pfx_chrdev_open+0x10/0x10 [ 1137.200251][T25682] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1137.200270][T25682] do_dentry_open+0x982/0x1530 [ 1137.200289][T25682] ? __pfx_chrdev_open+0x10/0x10 [ 1137.200309][T25682] vfs_open+0x82/0x3f0 [ 1137.200331][T25682] path_openat+0x1de4/0x2cb0 [ 1137.200350][T25682] ? __pfx_path_openat+0x10/0x10 [ 1137.200369][T25682] do_filp_open+0x20b/0x470 [ 1137.200385][T25682] ? __pfx_do_filp_open+0x10/0x10 [ 1137.200408][T25682] ? alloc_fd+0x471/0x7d0 [ 1137.200425][T25682] do_sys_openat2+0x11b/0x1d0 [ 1137.200446][T25682] ? __pfx_do_sys_openat2+0x10/0x10 [ 1137.200467][T25682] ? __pfx_do_sys_openat2+0x10/0x10 [ 1137.200488][T25682] ? __pfx___might_resched+0x10/0x10 [ 1137.200506][T25682] __x64_sys_openat+0x174/0x210 [ 1137.200518][T25682] ? __pfx___x64_sys_openat+0x10/0x10 [ 1137.200534][T25682] do_syscall_64+0xcd/0x4c0 [ 1137.200548][T25682] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1137.200563][T25682] RIP: 0033:0x7f20ba58eec9 [ 1137.200577][T25682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1137.200593][T25682] RSP: 002b:00007f20bb35b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1137.200607][T25682] RAX: ffffffffffffffda RBX: 00007f20ba7e5fa0 RCX: 00007f20ba58eec9 [ 1137.200617][T25682] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1137.200627][T25682] RBP: 00007f20ba611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1137.200637][T25682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1137.200646][T25682] R13: 00007f20ba7e6038 R14: 00007f20ba7e5fa0 R15: 00007ffc31040268 [ 1137.200661][T25682] [ 1137.200666][T25682] [ 1137.457187][T25682] Allocated by task 25398: [ 1137.461587][T25682] kasan_save_stack+0x33/0x60 [ 1137.466257][T25682] kasan_save_track+0x14/0x30 [ 1137.470929][T25682] __kasan_kmalloc+0xaa/0xb0 [ 1137.475537][T25682] __kmalloc_node_track_caller_noprof+0x221/0x510 [ 1137.481954][T25682] kmemdup_noprof+0x29/0x60 [ 1137.486464][T25682] xfrm_sysctl_init+0x10a/0x2d0 [ 1137.491309][T25682] xfrm_net_init+0x842/0xcc0 [ 1137.495972][T25682] ops_init+0x1e2/0x5f0 [ 1137.500146][T25682] setup_net+0x10f/0x380 [ 1137.504372][T25682] copy_net_ns+0x2a6/0x5f0 [ 1137.508776][T25682] create_new_namespaces+0x3ea/0xa90 [ 1137.514058][T25682] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1137.519699][T25682] ksys_unshare+0x45b/0xa40 [ 1137.524226][T25682] __x64_sys_unshare+0x31/0x40 [ 1137.529081][T25682] do_syscall_64+0xcd/0x4c0 [ 1137.533568][T25682] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1137.539461][T25682] [ 1137.541776][T25682] Freed by task 995: [ 1137.545667][T25682] kasan_save_stack+0x33/0x60 [ 1137.550338][T25682] kasan_save_track+0x14/0x30 [ 1137.555003][T25682] kasan_save_free_info+0x3b/0x60 [ 1137.560015][T25682] __kasan_slab_free+0x60/0x70 [ 1137.564772][T25682] kfree+0x2b4/0x4d0 [ 1137.568913][T25682] xfrm_net_exit+0x1d/0x70 [ 1137.573333][T25682] ops_undo_list+0x2ee/0xab0 [ 1137.577905][T25682] cleanup_net+0x408/0x890 [ 1137.582308][T25682] process_one_work+0x9cc/0x1b70 [ 1137.587230][T25682] worker_thread+0x6c8/0xf10 [ 1137.591809][T25682] kthread+0x3c2/0x780 [ 1137.595871][T25682] ret_from_fork+0x56d/0x730 [ 1137.600468][T25682] ret_from_fork_asm+0x1a/0x30 [ 1137.605233][T25682] [ 1137.607553][T25682] The buggy address belongs to the object at ffff88802a1cfa00 [ 1137.607553][T25682] which belongs to the cache kmalloc-256 of size 256 [ 1137.621588][T25682] The buggy address is located 24 bytes inside of [ 1137.621588][T25682] freed 256-byte region [ffff88802a1cfa00, ffff88802a1cfb00) [ 1137.635631][T25682] [ 1137.637967][T25682] The buggy address belongs to the physical page: [ 1137.644357][T25682] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88802a1cfa00 pfn:0x2a1ce [ 1137.654404][T25682] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 1137.662892][T25682] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff) [ 1137.671381][T25682] page_type: f5(slab) [ 1137.675352][T25682] raw: 00fff00000000240 ffff88801b841b40 ffffea0000aa1290 ffffea0000ada510 [ 1137.683918][T25682] raw: ffff88802a1cfa00 000000000010000f 00000000f5000000 0000000000000000 [ 1137.692486][T25682] head: 00fff00000000240 ffff88801b841b40 ffffea0000aa1290 ffffea0000ada510 [ 1137.701144][T25682] head: ffff88802a1cfa00 000000000010000f 00000000f5000000 0000000000000000 [ 1137.709805][T25682] head: 00fff00000000001 ffffea0000a87381 00000000ffffffff 00000000ffffffff [ 1137.718740][T25682] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 1137.727407][T25682] page dumped because: kasan: bad access detected [ 1137.733810][T25682] page_owner tracks the page as allocated [ 1137.739512][T25682] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 19666952852, free_ts 0 [ 1137.759235][T25682] post_alloc_hook+0x1c0/0x230 [ 1137.763995][T25682] get_page_from_freelist+0x132b/0x38e0 [ 1137.769545][T25682] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 1137.775427][T25682] alloc_pages_mpol+0x1fb/0x550 [ 1137.780267][T25682] new_slab+0x247/0x330 [ 1137.784405][T25682] ___slab_alloc+0xcf2/0x1750 [ 1137.789066][T25682] __slab_alloc.constprop.0+0x56/0xb0 [ 1137.794422][T25682] __kmalloc_cache_noprof+0xfb/0x3e0 [ 1137.799690][T25682] bus_add_driver+0x92/0x690 [ 1137.804272][T25682] driver_register+0x15c/0x4b0 [ 1137.809115][T25682] usb_register_driver+0x216/0x4d0 [ 1137.814214][T25682] do_one_initcall+0x120/0x6e0 [ 1137.819393][T25682] kernel_init_freeable+0x5c2/0x910 [ 1137.824681][T25682] kernel_init+0x1c/0x2b0 [ 1137.829007][T25682] ret_from_fork+0x56d/0x730 [ 1137.833592][T25682] ret_from_fork_asm+0x1a/0x30 [ 1137.838346][T25682] page_owner free stack trace missing [ 1137.843695][T25682] [ 1137.846021][T25682] Memory state around the buggy address: [ 1137.851652][T25682] ffff88802a1cf900: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 1137.859697][T25682] ffff88802a1cf980: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 1137.867758][T25682] >ffff88802a1cfa00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 1137.875798][T25682] ^ [ 1137.880633][T25682] ffff88802a1cfa80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 1137.888679][T25682] ffff88802a1cfb00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 1137.896718][T25682] ================================================================== [ 1138.208366][T25678] zswap: compressor not available SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 1139.750378][T18339] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137 [ 1139.823522][T18339] EXT4-fs error (device sda1) in ext4_free_inode:361: Filesystem failed CRC [ 1140.043174][T18339] EXT4-fs error (device sda1) in ext4_free_inode:361: Corrupt filesystem [ 1140.682448][ T12] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1140.824117][ T8109] EXT4-fs error (device sda1) in ext4_free_inode:361: Corrupt filesystem [ 1141.012897][ T8109] EXT4-fs error (device sda1) in ext4_free_inode:361: Corrupt filesystem [ 1141.060864][ T12] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1141.261997][T25682] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 1141.269239][T25682] CPU: 1 UID: 0 PID: 25682 Comm: syz.2.7195 Tainted: G I syzkaller #0 PREEMPT(full) [ 1141.280176][T25682] Tainted: [I]=FIRMWARE_WORKAROUND [ 1141.285264][T25682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1141.295307][T25682] Call Trace: [ 1141.298590][T25682] [ 1141.301505][T25682] dump_stack_lvl+0x3d/0x1f0 [ 1141.306105][T25682] vpanic+0x6e8/0x7a0 [ 1141.310079][T25682] ? __pfx_vpanic+0x10/0x10 [ 1141.314577][T25682] ? __pfx_vprintk_emit+0x10/0x10 [ 1141.319612][T25682] ? dvb_device_open+0x36a/0x3b0 [ 1141.324540][T25682] panic+0xca/0xd0 [ 1141.328257][T25682] ? __pfx_panic+0x10/0x10 [ 1141.332668][T25682] ? dvb_device_open+0x36a/0x3b0 [ 1141.337594][T25682] ? preempt_schedule_common+0x44/0xc0 [ 1141.343078][T25682] ? preempt_schedule_thunk+0x16/0x30 [ 1141.348446][T25682] check_panic_on_warn+0xab/0xb0 [ 1141.353382][T25682] end_report+0x107/0x170 [ 1141.357705][T25682] kasan_report+0xee/0x110 [ 1141.362112][T25682] ? dvb_device_open+0x36a/0x3b0 [ 1141.367037][T25682] ? __pfx_dvb_device_open+0x10/0x10 [ 1141.372327][T25682] dvb_device_open+0x36a/0x3b0 [ 1141.377092][T25682] ? __pfx_dvb_device_open+0x10/0x10 [ 1141.382383][T25682] chrdev_open+0x234/0x6a0 [ 1141.386795][T25682] ? __pfx_apparmor_file_open+0x10/0x10 [ 1141.392331][T25682] ? __pfx_chrdev_open+0x10/0x10 [ 1141.397258][T25682] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1141.403582][T25682] do_dentry_open+0x982/0x1530 [ 1141.408346][T25682] ? __pfx_chrdev_open+0x10/0x10 [ 1141.413276][T25682] vfs_open+0x82/0x3f0 [ 1141.417338][T25682] path_openat+0x1de4/0x2cb0 [ 1141.421945][T25682] ? __pfx_path_openat+0x10/0x10 [ 1141.426876][T25682] do_filp_open+0x20b/0x470 [ 1141.431373][T25682] ? __pfx_do_filp_open+0x10/0x10 [ 1141.436398][T25682] ? alloc_fd+0x471/0x7d0 [ 1141.440804][T25682] do_sys_openat2+0x11b/0x1d0 [ 1141.445478][T25682] ? __pfx_do_sys_openat2+0x10/0x10 [ 1141.450703][T25682] ? __pfx_do_sys_openat2+0x10/0x10 [ 1141.455898][T25682] ? __pfx___might_resched+0x10/0x10 [ 1141.461175][T25682] __x64_sys_openat+0x174/0x210 [ 1141.466037][T25682] ? __pfx___x64_sys_openat+0x10/0x10 [ 1141.471399][T25682] do_syscall_64+0xcd/0x4c0 [ 1141.475907][T25682] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1141.481788][T25682] RIP: 0033:0x7f20ba58eec9 [ 1141.486213][T25682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1141.505828][T25682] RSP: 002b:00007f20bb35b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1141.514226][T25682] RAX: ffffffffffffffda RBX: 00007f20ba7e5fa0 RCX: 00007f20ba58eec9 [ 1141.522184][T25682] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1141.530144][T25682] RBP: 00007f20ba611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1141.538101][T25682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1141.546087][T25682] R13: 00007f20ba7e6038 R14: 00007f20ba7e5fa0 R15: 00007ffc31040268 [ 1141.554051][T25682] [ 1141.557124][T25682] Kernel Offset: disabled [ 1141.561437][T25682] Rebooting in 86400 seconds..