last executing test programs: 9.584054939s ago: executing program 3 (id=302): r0 = openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f00000004c0), 0x101202, 0x0) socket(0x2, 0x1, 0x106) ioctl$auto(0xffffffffffffffff, 0xab07, 0xffffffffffffffff) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$auto_NL80211_CMD_SET_COALESCE(0xffffffffffffffff, 0x0, 0x0) setsockopt$auto_SO_MARK(0xffffffffffffffff, 0x6, 0x24, &(0x7f0000000380)='\x00', 0x163fdb7e) r2 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000040)={0x1, 0x0, 0x1}, 0x18) socket$nl_generic(0x10, 0x3, 0x10) io_uring_register$auto_IORING_REGISTER_BUFFERS_UPDATE(r2, 0x10, &(0x7f0000000080)="f915e8c2ea377492788bb03ccd2cf1575f5cf49c73b06f64d7c7dc391e7439459d92c3c8cbad6abb4dd5c0b41a2545", 0x4) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) semctl$auto(0x8, 0x806, 0x13, 0x46) sendmsg$auto_NL802154_CMD_STOP_BEACONS(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x20000844}, 0x50) msgctl$auto_IPC_INFO(0x7, 0x3, &(0x7f0000000200)={{0x13b8, 0x0, 0xee01, 0x100, 0x3, 0x7fffffff, 0x3afa}, &(0x7f0000000180)=0x3, &(0x7f00000001c0)=0xa, 0x7, 0x3, 0x9, 0x4, 0x8, 0xffff, 0xfffd, 0x6498, @raw=0x71, @raw=0xa}) setsockopt$auto(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x10000) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="01002dd3040000dbdf257e000000"], 0x14}, 0x1, 0x68, 0x0, 0x24000000}, 0xd0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/nbd12\x00', 0x10000, 0x0) mmap$auto(0x2, 0x400008, 0x6, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0x100082) read$auto(0xffffffffffffffff, 0x0, 0x1f) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xeffd) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7) write$auto_nvmf_dev_fops_fabrics(r0, 0x0, 0x0) pread64$auto(r0, 0x0, 0x4, 0x7fff) 8.268925556s ago: executing program 3 (id=306): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendto$auto(0x3, 0x0, 0xfffffffffffffdef, 0x101, 0x0, 0x1c) ioctl$auto(0x3, 0x541b, 0x38) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0xa, 0x5, 0x84) io_uring_setup$auto(0x2, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x10, 0x0, 0x8) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\x00\x80\x00\x00\x00\x00\x00\x00j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) r1 = set_tid_address$auto(0x0) r2 = syz_open_procfs$namespace(r1, &(0x7f0000000080)) getdents$auto(r2, 0x0, 0x18) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) timer_create$auto(0x2, 0x0, 0x0) timer_settime$auto(0x0, 0x6, &(0x7f0000000000)={{0x100000001, 0x3ff}, {0x5a, 0x2}}, 0x0) timer_delete$auto(0x0) getdents$auto(r2, 0x0, 0xa2b0) msync$auto(0x0, 0x2000000005, 0x6) 8.238636675s ago: executing program 0 (id=307): r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0) write$auto(r0, 0x0, 0x9) 7.957518867s ago: executing program 0 (id=308): r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) syz_clone3(&(0x7f00000004c0)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = pipe$auto(&(0x7f0000001480)=0xffffffffffffffff) vmsplice$auto(r2, &(0x7f0000000000)={0x0, 0x7}, 0x5, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) syslog$auto(0xffffffff, &(0x7f0000000080)='..\x00k\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\x00\x80\x00\x00\x00\x00\x00\x00j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)) fchdir$auto(r3) r4 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/027/001\x00', 0xa901, 0x0) ioctl$auto_USBDEVFS_SUBMITURB(r4, 0x8038550a, &(0x7f0000000240)={0x1, 0x81, 0x5b, 0x4, &(0x7f0000000000), 0x9, 0xeb90, 0x2, @stream_id=0x100, 0x7, 0x476, 0x0}) close_range$auto(0x0, 0xfffffffffffff000, 0x2) open(&(0x7f0000000040)='.\x00', 0x100, 0x161) getdents64$auto(0x0, 0x0, 0x7ff) getdents$auto(0x0, 0x0, 0x20) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x10000000000002f, 0x0) ioctl$auto_FBIOGET_FSCREENINFO(r1, 0x4602, &(0x7f0000000340)="1171a8250d0d87d128ba1ff2df1ccca8cae49b4d418a0dbc7cac8fcca008ea8b0f810b") madvise$auto(0x0, 0xffffffffffff0001, 0x15) mlockall$auto(0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x1d, 0x2, 0x7) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = seccomp$auto_SECCOMP_SET_MODE_FILTER(0x1, 0x4, &(0x7f0000000100)="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") r7 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000200), r5) sendmsg$auto_ILA_CMD_GET(r6, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000002c0)={&(0x7f0000000380)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="000229bd7000fbdbdf2503ee4819707b674cc9380000000c000300fa04000000000000050007000c00000005000800010000000c000100080000000e00000005000700bb0000000c00030002000000000000000c000300018000000000000005000700cd0000000c0003000002000000000000"], 0x70}, 0x1, 0x0, 0x0, 0x4c080}, 0x855) sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r5, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f00000000c0)={0x30, r0, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@ETHTOOL_A_TSINFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}]}, @ETHTOOL_A_TSINFO_HWTSTAMP_PROVIDER={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x802}, 0x4000000) 7.794634404s ago: executing program 1 (id=310): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0) read$auto(r0, 0x0, 0x4000000000000002) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) unshare$auto(0x40000080) clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x5) r1 = memfd_secret$auto(0xfffeffff) mmap$auto(0x0, 0x400008, 0xdf, 0x3d, 0x2, 0x8) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) write$auto_tty_fops_tty_io(r1, &(0x7f0000000400)="352c8efa614a572c01096bbbc2ce7db19c429be7137d848ef31b00000000000000000000134a3229dd8f3f3b41ced10c6b240002e78e9d7d20e2a019824a0057a3f2b7ec4acd451daf32a4feb36b107ab95aaf13a7da31f9cf740f145e9c9071cbcd962b736fcc80", 0x68) setfsuid$auto(0xee01) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) r2 = socket(0xa, 0x3, 0x4) getsockopt$auto(r2, 0xff, 0x7, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x2, 0x5, 0x9b72, 0x2, 0x8000) capset$auto(0x0, 0x0) readv$auto(0x3, 0x0, 0x10) r3 = open(&(0x7f0000000040)='./file0\x00', 0x86c1, 0x154) fcntl$auto(r3, 0x400, 0x1) socket(0x26, 0x3, 0x800002) 6.901930779s ago: executing program 0 (id=311): unshare$auto(0x40000080) mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/keys\x00', 0x1c9802, 0x0) r1 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000180), 0x80000, 0x0) r2 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000040), 0x543c00, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r2, 0xc0285700, &(0x7f0000000080)={0x2, "fb2704573a53cf995e9bd50d9a038ae9ba8b6bb523af71be779551bea8bb46e0", @inferred=r1}) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x800000, 0x20009, 0x4000000000e0, 0x18, 0x101000000000000, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) unshare$auto(0x40000080) r3 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) getsockopt$auto(r3, 0x84, 0x0, 0x0, &(0x7f0000000000)=0x84) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/state\x00', 0x20a42, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000000)="48fca9fce87c944c01b8294348d59fc327dd2324b3227bb0f3ab8cfc9f1a2af72398441d049fa2239e00db60e040770ddc585cf93134ee5ffd950b25b6d6313d0df88c656a49c19a4ccf7cfe7734be012fb567ec156663bfc910854064afb220850b0c319971b90d70332350730381dd5aeb760a16", 0x75) write$auto(0xca, &(0x7f0000000000)='\x04>\x01\x01\x00\x00\x00\x01\x00\xb6', 0x7f) ioctl$auto_USB_RAW_IOCTL_EP0_READ(r1, 0xc0085504, &(0x7f00000001c0)={0x9, 0x1, 0x106}) ioctl$auto(0x3, 0x40103e05, 0xffffffffffffffff) pread64$auto(r0, &(0x7f0000000200)='/proc/scsi/sg/devices\x00', 0x100000001, 0xfd) 6.866548546s ago: executing program 3 (id=312): r0 = socket(0x2, 0x1, 0x120) socketpair$auto(0x1, 0x2, 0xffffffff, &(0x7f0000000180)=0xcb1) (async) connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55) (async) mmap$auto(0x3, 0x4, 0x2, 0x40eb1, 0x401, 0x300000000000) ioprio_get$auto(0x3, 0x0) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async, rerun: 64) mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, r0, 0x300000000000) (async, rerun: 64) madvise$auto(0x0, 0xffffffffffff0006, 0x17) mmap$auto(0x0, 0x8de, 0xdf, 0x591b, 0x2, 0xb) (async) r1 = socket(0x2, 0x1, 0x106) bind$auto(r1, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) (async, rerun: 64) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (rerun: 64) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) (async) socket(0xa, 0x2, 0x88) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) (async, rerun: 32) socket(0xa, 0x3, 0x4) (rerun: 32) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) (async) close_range$auto(0x2, r2, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0180, 0x0) r4 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x401f, 0x1, 0x8e051, r4, 0x0) (async) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0xffffffffffffffff, 0xae3d, 0xffffffffffffffff) (async) ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0) (async) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x30, 0xff, 0x0, @raw=0xfffff030}}) 6.69547015s ago: executing program 2 (id=313): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async, rerun: 32) r1 = prctl$auto(0x40003e, 0x1, 0x0, 0x5, 0x0) (rerun: 32) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async, rerun: 64) mmap$auto(0x6, 0x800000004, 0x6, 0x10, r1, 0xfffffffffffffffd) (rerun: 64) socket(0x9, 0x80000, 0x7) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) (async) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/interrupts\x00', 0x18b202, 0x0) pread64$auto(r2, 0x0, 0x400100000001, 0x1ff) readv$auto(0x3, 0x0, 0x4) (async) unshare$auto(0x40000080) (async) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/bus/pci/devices\x00', 0x10b402, 0x0) pread64$auto(r3, 0x0, 0x8100000041, 0x3) (async, rerun: 32) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) (async, rerun: 32) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32) socket(0xa, 0x1, 0x100) (async, rerun: 32) eventfd2$auto(0x6af3, 0x800) (async) r4 = socket(0xa, 0x800, 0x0) setsockopt$auto(r4, 0x29, 0x11, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x110) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32) socket(0x2, 0x80002, 0x73) (rerun: 32) socket(0x2, 0x1, 0x106) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async, rerun: 64) socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64) 5.426288239s ago: executing program 3 (id=314): mmap$auto(0x0, 0x402000a, 0x3, 0x400eb1, 0x401, 0x4) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x10, 0x3, 0x6) (async) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_MESH_CONFIG(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002cbd7000fbdbdf251c00001400040074756e6c3000"/33], 0x28}, 0x1, 0x0, 0x0, 0x4080}, 0x48d0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) (async) socket(0xa, 0x1, 0x84) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) (async) write$auto(0x3, 0x0, 0xfdef) shutdown$auto(0x200000003, 0x2) (async) write$auto(0x3, 0x0, 0xfdef) r2 = io_uring_setup$auto(0xa, 0x0) r3 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000040), r2) sendmsg$auto_SMC_PNETID_ADD(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYRES16=r3, @ANYBLOB="100029bd7000fbdbdf2502000000090001004029402d000000000d000100235e2d242a5b275d000000000500040081000000"], 0x38}, 0x1, 0x0, 0x0, 0x4000084}, 0x8c1) mprotect$auto(0x1ffffffff000, 0x100018, 0x4) (async) lsm_get_self_attr$auto(0x64, 0x0, &(0x7f0000002440)=0x1fb, 0x0) (async) socket(0x2, 0x80002, 0x73) (async) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0xffffffff, 0x1, 0x1, 0x7356, 0x8033, 0x65f, 0x1ffe1, 0x7, 0xffffffffffffffff, 0x20000009, 0xfffffffe, 0x3, 0x7, 0x2091, 0xfff, 0x9, 0x6, 0x6, 0x83, 0x4, 0x10001, 0x400, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x5, [0x1, 0x0, 0x0, 0x0, 0x2000a85, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x3, 0x3, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x4c99, 0x2d8, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000, 0x0, 0x0, 0xfffffffffffffffe]}, 0x1fe, 0xd) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x20000, 0x0) read$auto(r5, 0x0, 0x20) (async) writev$auto(r4, &(0x7f0000000200)={0x0, 0x3}, 0x3) (async) ioctl$auto_CEC_TRANSMIT(0xffffffffffffffff, 0xc0386105, 0x0) futex$auto(&(0x7f0000000000)=0x7, 0x9, 0x7, &(0x7f0000000040)={0xb, 0x401}, 0x0, 0x4) (async) socket(0x5, 0x4, 0x100305) (async) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) 5.359436283s ago: executing program 2 (id=315): r0 = openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x582, 0x0) write$auto_console_fops_tty_io(r0, 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(0x3, 0x0, 0xfdef) read$auto(0x3, 0x0, 0x80) 5.060467853s ago: executing program 1 (id=316): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810008, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000040)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x40, 0x0) r2 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$auto_IMADDTIMER(r2, 0x80044940, &(0x7f0000000140)=0x200000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) rseq$auto(0x0, 0xfffffff4, 0x0, 0x5) ioctl$auto_VHOST_SET_BACKEND_FEATURES(0xffffffffffffffff, 0x4008af25, 0x0) mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, r1, 0x4b4a) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x62040, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2482, 0x0) pread64$auto(r4, 0x0, 0x20000000001, 0x20001) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x1, 0x40009, 0xdf, 0x13, 0xffffffffffffffff, 0x10001) msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004) r5 = socket(0x23, 0x5, 0x0) bind$auto(r5, &(0x7f0000000140)=@phonet={0x23, 0x6, 0x0, 0xa3}, 0x80) socket(0xf, 0xa, 0x5) connect$auto(0x3, &(0x7f0000000080)=@l2={0x1f, 0x6, @none, 0x5}, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='./cgroup.net/blkio.bfq.dequeue\x00', 0x8ad00, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f00000000c0)=""/4096, 0x1000) 4.984329897s ago: executing program 2 (id=317): openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x8800, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000240)={0x70, r1, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@HWSIM_ATTR_RADIO_NAME={0x2d, 0x11, '/P\x13jE\f\xf9r\xf5\xa3\xd2\x84y\xf9*\x9b\"\x1c\xa4l-\x19\xfd\xa4\xf4y\x02\xc2\x96\x12\xcd\x83\xf7\x12\xd3\xc4\x1e]\x00\x00\x00'}, @HWSIM_ATTR_PMSR_SUPPORT={0x2c, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x387}, @NL80211_PMSR_ATTR_TYPE_CAPA={0x20, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x9}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}]}]}]}]}, 0x70}, 0x1, 0x0, 0x0, 0x4008040}, 0x40800) sendmsg$auto_ETHTOOL_MSG_FEC_SET(0xffffffffffffffff, 0x0, 0x20004000) unshare$auto(0x40000080) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/usb/usbmon/0u\x00', 0x22202, 0x0) pread64$auto(r2, 0x0, 0x0, 0x9) read$auto_mon_fops_text_t_mon_text(r2, 0x0, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0x0, 0x0) quotactl$auto(0x1, &(0x7f0000000a80)='net-shaper\x00', 0xee00, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x1dfbdb30) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sg1\x00', 0x646502, 0x0) openat$auto_set_tracer_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/current_tracer\x00', 0x41, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/037/001\x00', 0x630001, 0x0) openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x100242, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/net/lapb4/ifalias\x00', 0x185842, 0x0) 4.802139507s ago: executing program 3 (id=318): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810008, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000040)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x40, 0x0) r2 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$auto_IMADDTIMER(r2, 0x80044940, &(0x7f0000000140)=0x200000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) rseq$auto(0x0, 0xfffffff4, 0x0, 0x5) ioctl$auto_VHOST_SET_BACKEND_FEATURES(0xffffffffffffffff, 0x4008af25, 0x0) mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, r1, 0x4b4a) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x62040, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2482, 0x0) pread64$auto(r4, 0x0, 0x20000000001, 0x20001) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x1, 0x40009, 0xdf, 0x13, 0xffffffffffffffff, 0x10001) msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004) r5 = socket(0x23, 0x5, 0x0) bind$auto(r5, &(0x7f0000000140)=@phonet={0x23, 0x6, 0x0, 0xa3}, 0x80) socket(0xf, 0xa, 0x5) connect$auto(0x3, &(0x7f0000000080)=@l2={0x1f, 0x6, @none, 0x5}, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='./cgroup.net/blkio.bfq.dequeue\x00', 0x8ad00, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f00000000c0)=""/4096, 0x1000) 3.528447294s ago: executing program 1 (id=319): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810008, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000040)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x40, 0x0) r2 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$auto_IMADDTIMER(r2, 0x80044940, &(0x7f0000000140)=0x200000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) rseq$auto(0x0, 0xfffffff4, 0x0, 0x5) ioctl$auto_VHOST_SET_BACKEND_FEATURES(0xffffffffffffffff, 0x4008af25, 0x0) mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, r1, 0x4b4a) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x62040, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2482, 0x0) pread64$auto(r4, 0x0, 0x20000000001, 0x20001) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x1, 0x40009, 0xdf, 0x13, 0xffffffffffffffff, 0x10001) msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004) r5 = socket(0x23, 0x5, 0x0) bind$auto(r5, &(0x7f0000000140)=@phonet={0x23, 0x6, 0x0, 0xa3}, 0x80) socket(0xf, 0xa, 0x5) connect$auto(0x3, &(0x7f0000000080)=@l2={0x1f, 0x6, @none, 0x5}, 0x1) ioperm$auto(0xfffffffffffffffc, 0x7fe, 0x4) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='./cgroup.net/blkio.bfq.dequeue\x00', 0x8ad00, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f00000000c0)=""/4096, 0x1000) 3.438989387s ago: executing program 0 (id=320): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810008, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000040)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x40, 0x0) r2 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$auto_IMADDTIMER(r2, 0x80044940, &(0x7f0000000140)=0x200000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) rseq$auto(0x0, 0xfffffff4, 0x0, 0x5) ioctl$auto_VHOST_SET_BACKEND_FEATURES(0xffffffffffffffff, 0x4008af25, 0x0) mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, r1, 0x4b4a) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x62040, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2482, 0x0) pread64$auto(r4, 0x0, 0x20000000001, 0x20001) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x1, 0x40009, 0xdf, 0x13, 0xffffffffffffffff, 0x10001) msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004) r5 = socket(0x23, 0x5, 0x0) bind$auto(r5, &(0x7f0000000140)=@phonet={0x23, 0x6, 0x0, 0xa3}, 0x80) socket(0xf, 0xa, 0x5) connect$auto(0x3, &(0x7f0000000080)=@l2={0x1f, 0x6, @none, 0x5}, 0x1) ioperm$auto(0xfffffffffffffffc, 0x7fe, 0x4) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='./cgroup.net/blkio.bfq.dequeue\x00', 0x8ad00, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f00000000c0)=""/4096, 0x1000) 2.118019408s ago: executing program 2 (id=321): fstat$auto(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x2, 0xffff, 0x80000001, 0xee00, 0x0, 0x0, 0x9, 0x7fffffff, 0x8, 0x28d1, 0x2, 0x9, 0xeb1, 0x3, 0x8, 0x9}) setreuid$auto(r0, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x3c, 0x65f, 0x1ffde, 0x7, 0x3, 0x5, 0x9, 0x3, 0x6, 0x4, 0xb4, 0xb, 0x6, 0x10003, 0x80, 0x5, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x188a, 0x0, 0x0, 0x0, 0x0, 0x6, [0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x81, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x820, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000]}, 0x1fe, 0xd) mmap$auto(0x0, 0x520, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) socket(0x2, 0x2, 0x88) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) socket(0xa, 0x1, 0x84) r1 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x200, 0x0) ioctl$auto_BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000100)) r2 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x0, 0x0) read$auto_vhci_fops_hci_vhci(r2, &(0x7f0000000d40)=""/16, 0x10) socket(0x25, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) socket(0x29, 0x1, 0x100) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x400008, 0x7, 0x9b72, 0xffffffffffffffff, 0x8000) 1.882402835s ago: executing program 1 (id=322): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000002b40)={0x18, r1, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@HWSIM_ATTR_REG_STRICT_REG={0x4}]}, 0x18}, 0x1, 0x0, 0x700, 0x4008040}, 0x4000800) 1.732213861s ago: executing program 1 (id=323): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) (async) getpeername$auto(0x3, 0x0, 0x0) mmap$auto(0x0, 0x4, 0xffffffffffffffff, 0x800000000000eb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) openat$auto_bm_entry_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x400, 0x0) unshare$auto(0x40000080) setsockopt$auto(0x400000000000003, 0x2d, 0x1c, 0x0, 0x3) (async) sendmsg$auto_NCSI_CMD_CLEAR_INTERFACE(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000480)={0x818, 0x0, 0xc00, 0x70bd29, 0x25dfdbfd, {}, [@NCSI_ATTR_IFINDEX={0x8}, @NCSI_ATTR_PACKAGE_LIST={0x2c, 0x2, 0x0, 0x1, [@typed={0x8, 0x11b, 0x0, 0x0, @ipv4=@remote}, @typed={0x8, 0x2f, 0x0, 0x0, @pid}, @nested={0x18, 0x63, 0x0, 0x1, [@typed={0x14, 0x1a, 0x0, 0x0, @ipv6=@empty}]}]}, @NCSI_ATTR_CHANNEL_MASK={0x8, 0x8, 0x80}, @NCSI_ATTR_DATA={0x7c4, 0x5, "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"}, @NCSI_ATTR_MULTI_FLAG={0x4}]}, 0x818}, 0x1, 0x0, 0x0, 0x4000}, 0x80) socket(0x10, 0x2, 0xc) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) (async) r0 = socket(0x10, 0x2, 0xc) (async) r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="d0000000", @ANYRES16=r1, @ANYBLOB="04002dbd7000fadbdf250a00000ab2000200c0b04e5cdcdf28fffe65c317101ef250ad304e561736843770799fdab838aaf6712a82e628c9e6429a4a38320b2d692863927bd744b4f7b409b29862d3257675d4fd09d74a831929b1005bdd28ef3fc5ae2084effedbebbc656441771e57124268c37932c90ec99923926a97bb444f6903a41102463c79baf78c35827f46efb37be97277d81130bd43e31c60347610f3e65f3d60d3d1e231c0cc23adc0c01c00000000000000000000000000000008000a0000080000"], 0xd0}, 0x1, 0x0, 0x0, 0x403c002}, 0x10004010) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004859}, 0x0) (async) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) (async) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0) r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x1e, 0xa, 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r5 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/v4l-subdev4\x00', 0x169000, 0x0) ioctl$auto(r5, 0xc0905664, r5) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) write$auto(r4, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcbx\xb2\x18e\x95$\x9d\x804', 0x100000a3d9) setsockopt$auto(r3, 0x10000009, 0x69ce, &(0x7f0000000040)='(%}[\x00', 0x3) (async) close_range$auto(0x2, 0x8, 0x0) (async) mmap$auto(0x0, 0x400108, 0xdf, 0xfffffffffffffffd, 0x2, 0x8000) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/tty/ptyqe/power/control\x00', 0xa0b02, 0x0) 1.251855413s ago: executing program 0 (id=324): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0xa, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) sendmmsg$auto(r0, &(0x7f0000000640)={{&(0x7f0000000000), 0x5ae, &(0x7f0000000100)={0x0, 0x13}, 0x5, 0x0, 0x5, 0x1}, 0x1}, 0x1a000, 0x100) mknod$auto(&(0x7f0000000180)=':,\x00', 0xc9, 0xfffffffa) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x40080}, 0x40) openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x181881, 0x0) r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sg0\x00', 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) pread64$auto(r1, &(0x7f0000000140)='[/]&].%[[[\\&.#}}\x00', 0x9, 0x7f) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r2 = socket(0x2, 0x1, 0x84) recvfrom$auto(r2, 0x0, 0xfffffffffffffffe, 0xfffffff9, 0x0, 0xfffffffffffffffd) r3 = socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x801, 0x0) poll$auto(&(0x7f0000000480)={r3, 0x8000, 0xff81}, 0x7, 0x54b) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0x3, 0x0, 0xfdef) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) execve$auto(&(0x7f0000000040)=':,\x00', 0x0, &(0x7f0000000200)=&(0x7f00000001c0)=':,\x00') 879.984878ms ago: executing program 3 (id=325): close_range$auto(0xffffffffffffffff, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x2, 0x5, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f0000000100)={0x0, 0x1a000}, 0x59, 0x0, 0x2, 0xb}, 0xfff}, 0x8, 0x311) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x3, &(0x7f00000002c0)={0x0, 0x8}, 0x1, 0x0, 0x0, 0x9}, 0xfffffffd}, 0x3, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) setfsuid$auto(0xee01) mmap$auto(0x0, 0x6, 0xfff, 0x20800000000eb4, 0x6, 0x2) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x20009, 0x2, 0xeb1, 0x401, 0x8000) setrlimit$auto(0xb, 0x0) r1 = gettid() rt_sigtimedwait$auto(0x0, 0x0, 0x0, 0x8) tkill$auto(r1, 0x7) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x7ffc) capset$auto(0x0, 0x0) readv$auto(0x3, 0x0, 0x10) r2 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0x154) fcntl$auto(r2, 0x400, 0x1) socket(0xa, 0x5, 0x2) fcntl$auto(0x3, 0x8, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x137e42, 0x0) 710.140498ms ago: executing program 2 (id=326): r0 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0x200000c4) r1 = getpid() process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000180)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) unshare$auto(0x40000080) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) setsockopt$auto(0x3, 0x10000000084, 0x7c, 0x0, 0x8) getsockopt$auto(r0, 0x80000001, 0x21807, 0x0, &(0x7f00000001c0)=0xfffffffe) r2 = openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x582, 0x0) write$auto_console_fops_tty_io(r2, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x8000000001, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x50400, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$auto_SO_BSDCOMPAT(r4, 0x1, 0xe, &(0x7f0000000140)='\x00', 0x8) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) r5 = open(&(0x7f00000000c0)='./file0\x00', 0x2000, 0x31) syz_clone(0x843a6a00, 0x0, 0xffffffffffffff14, 0x0, 0x0, 0x0) mmap$auto(0xf000, 0x1, 0x3ff, 0x12, r5, 0x0) writev$auto(0x3, &(0x7f0000004100)={0x0, 0xb}, 0x3ff) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x5, 0x0) sendmmsg$auto(r3, &(0x7f0000000100)={{&(0x7f0000000040), 0xc, &(0x7f00000000c0)={0x0, 0x81a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_UPD_RXSA(r6, &(0x7f0000006200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000003c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="230027bd7000fcdbdf25090000001800038005000180030000000c000800feffffffffffffff0400028008000100", @ANYRES32=0x0, @ANYBLOB="338ce3ff9b5fc269b60ab3b3e21e7f10e9578d49cda43f5a9cc269b80a4cfebd4116101402b5b9cb8007e9b927b6bca38182caa671df643f56e7bb9a7a233fd1be626c9c3c70199b0285aab6a84a565d678ea06db5e1360a3bda30a856e2f85c5583ac556e8a14bb07f05cec472b0586b3e073e16274fbad4b86859208194c465de700a5dd91c3028b7481ceecd43a8526d4514ddc2e6056841da13d6f8bb30c7d401a49d6b4ef0c236fc446d0c0b227c7ebad3ef48bdfd337f90d90fe3cd01b44a18cc3a6a8a3aa69eb11de3263e90ce62e180a8336f0bed31b33ed76dc3f6cd48a8b53447d54"], 0x38}, 0x1, 0x0, 0x0, 0x4008000}, 0x0) 526.249413ms ago: executing program 1 (id=327): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21) unshare$auto(0x40000080) r0 = socket(0x18, 0x5, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) msgctl$auto_IPC_RMID(0x800004, 0x0, &(0x7f0000000240)={{0x77, 0xee01, 0xee00, 0x9, 0x5, 0x8, 0xe}, &(0x7f00000001c0)=0x6, 0x0, 0x1, 0xfff, 0x0, 0x7, 0xffffffffffffffff, 0x4, 0x5, 0xf}) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x40}, 0x8) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0) io_uring_register$auto_IORING_UNREGISTER_FILES(r0, 0x3, &(0x7f00000002c0)="b0d2e89d5f489a36fbd72686ac274b04a138a764a8e96bda3b9547f7413e59a52e5f22d79e6d23858e7aa43a485b6f0fc42867cb7f9fbf8a948e88e792ec24904f8cd4b187ef05e474b105aa74cf5a11b2b294f785fb08f28b86977189db9f4dbfc3293fc6e18e4023a58e06b88005b6e8a2c0b840f3617021af00d5f278e7d3670b7b9f00391f2bc2fa69fd3e5a983ebec2fc7a31b3ed10f69561a8c08f3858", 0x1) ioctl$auto(r2, 0x540a, 0x0) r3 = socket(0xa, 0x1, 0x100) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x801, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0x1e, 0x1, 0x0) fanotify_init$auto(0x5, 0x2000000000002) select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0x3ff, 0xed, 0x7, 0x3, 0x95f4da2d, 0x2, 0x6, 0x4, 0x7, 0x7, 0x6d3f, 0x2, 0x0, 0x5]}, 0x0) write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x4040, 0x0) sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(r3, 0x0, 0x20000000) readv$auto(0xffffffffffffffff, 0x0, 0xe8) pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) 107.268738ms ago: executing program 0 (id=328): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810008, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000040)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x40, 0x0) r2 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$auto_IMADDTIMER(r2, 0x80044940, &(0x7f0000000140)=0x200000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) rseq$auto(0x0, 0xfffffff4, 0x0, 0x5) ioctl$auto_VHOST_SET_BACKEND_FEATURES(0xffffffffffffffff, 0x4008af25, 0x0) mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, r1, 0x4b4a) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x62040, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2482, 0x0) pread64$auto(r4, 0x0, 0x20000000001, 0x20001) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x1, 0x40009, 0xdf, 0x13, 0xffffffffffffffff, 0x10001) msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004) r5 = socket(0x23, 0x5, 0x0) bind$auto(r5, &(0x7f0000000140)=@phonet={0x23, 0x6, 0x0, 0xa3}, 0x80) socket(0xf, 0xa, 0x5) connect$auto(0x3, &(0x7f0000000080)=@l2={0x1f, 0x6, @none, 0x5}, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='./cgroup.net/blkio.bfq.dequeue\x00', 0x8ad00, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f00000000c0)=""/4096, 0x1000) 0s ago: executing program 2 (id=329): close_range$auto(0x0, 0x1c94, 0x2) socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) getcwd$auto(0x0, 0x2) inotify_init1$auto(0x3000000000000) inotify_add_watch$auto(0x4, 0x0, 0x80000008) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0x2c, 0x3, 0x0) r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kcore\x00', 0x101000, 0x0) sendfile$auto(0x3, r0, 0x0, 0x2) open(&(0x7f0000000000)='./file1\x00', 0x10677d, 0x37e5c9853cd1b999) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) socket(0x29, 0x2, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9) r2 = getpid() mremap$auto(0x0, 0x4000007, 0x3fd7, 0x0, 0x20000020000000) process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) lseek$auto(0x3, 0x8, 0x1) ioctl$auto(0x3, 0x400454ca, 0x38) close_range$auto(0x2, 0x8, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.181' (ED25519) to the list of known hosts. [ 99.013130][ T5827] cgroup: Unknown subsys name 'net' [ 99.148585][ T5827] cgroup: Unknown subsys name 'cpuset' [ 99.157990][ T5827] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 101.090007][ T5827] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 102.416079][ T24] cfg80211: failed to load regulatory.db [ 103.575989][ T5845] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 103.596462][ T5848] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 103.605004][ T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 103.613250][ T52] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 103.636967][ T52] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 103.665281][ T5848] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 103.673394][ T5848] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 103.685684][ T5848] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 103.693587][ T5848] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 103.727109][ T5854] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 103.735163][ T5849] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 103.756043][ T5849] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 103.772840][ T5852] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 103.782166][ T5852] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 103.784259][ T5161] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 103.803349][ T5852] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 103.811206][ T5849] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 103.819761][ T5849] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 103.829785][ T5849] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 103.837877][ T5849] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 104.273750][ T5846] chnl_net:caif_netlink_parms(): no params data found [ 104.377541][ T5843] chnl_net:caif_netlink_parms(): no params data found [ 104.599397][ T5846] bridge0: port 1(bridge_slave_0) entered blocking state [ 104.606758][ T5846] bridge0: port 1(bridge_slave_0) entered disabled state [ 104.615238][ T5846] bridge_slave_0: entered allmulticast mode [ 104.622806][ T5846] bridge_slave_0: entered promiscuous mode [ 104.652434][ T5853] chnl_net:caif_netlink_parms(): no params data found [ 104.670634][ T5846] bridge0: port 2(bridge_slave_1) entered blocking state [ 104.677929][ T5846] bridge0: port 2(bridge_slave_1) entered disabled state [ 104.685324][ T5846] bridge_slave_1: entered allmulticast mode [ 104.692944][ T5846] bridge_slave_1: entered promiscuous mode [ 104.790229][ T5843] bridge0: port 1(bridge_slave_0) entered blocking state [ 104.798100][ T5843] bridge0: port 1(bridge_slave_0) entered disabled state [ 104.805780][ T5843] bridge_slave_0: entered allmulticast mode [ 104.813185][ T5843] bridge_slave_0: entered promiscuous mode [ 104.845197][ T5843] bridge0: port 2(bridge_slave_1) entered blocking state [ 104.852398][ T5843] bridge0: port 2(bridge_slave_1) entered disabled state [ 104.859846][ T5843] bridge_slave_1: entered allmulticast mode [ 104.867567][ T5843] bridge_slave_1: entered promiscuous mode [ 104.875443][ T5850] chnl_net:caif_netlink_parms(): no params data found [ 104.897561][ T5846] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 104.935801][ T5846] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 104.972272][ T5843] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 105.025194][ T5843] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 105.082191][ T5853] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.089798][ T5853] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.097832][ T5853] bridge_slave_0: entered allmulticast mode [ 105.105881][ T5853] bridge_slave_0: entered promiscuous mode [ 105.116525][ T5846] team0: Port device team_slave_0 added [ 105.122649][ T5853] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.130403][ T5853] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.137817][ T5853] bridge_slave_1: entered allmulticast mode [ 105.145828][ T5853] bridge_slave_1: entered promiscuous mode [ 105.173743][ T5843] team0: Port device team_slave_0 added [ 105.181965][ T5846] team0: Port device team_slave_1 added [ 105.214202][ T5843] team0: Port device team_slave_1 added [ 105.291973][ T5853] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 105.329221][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 105.336439][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 105.363510][ T5846] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 105.378519][ T5853] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 105.403046][ T5850] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.410778][ T5850] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.418280][ T5850] bridge_slave_0: entered allmulticast mode [ 105.425880][ T5850] bridge_slave_0: entered promiscuous mode [ 105.433961][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 105.441200][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 105.472737][ T5843] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 105.485601][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 105.492592][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 105.518859][ T5846] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 105.543836][ T5850] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.551310][ T5850] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.558811][ T5850] bridge_slave_1: entered allmulticast mode [ 105.566259][ T5850] bridge_slave_1: entered promiscuous mode [ 105.574464][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 105.581467][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 105.608032][ T5843] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 105.629345][ T5853] team0: Port device team_slave_0 added [ 105.662373][ T5853] team0: Port device team_slave_1 added [ 105.685707][ T5850] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 105.740985][ T5850] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 105.775243][ T52] Bluetooth: hci1: command tx timeout [ 105.828093][ T5843] hsr_slave_0: entered promiscuous mode [ 105.835161][ T5843] hsr_slave_1: entered promiscuous mode [ 105.843238][ T5853] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 105.850487][ T5853] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 105.876606][ T5853] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 105.876618][ T52] Bluetooth: hci0: command tx timeout [ 105.887303][ T5849] Bluetooth: hci2: command tx timeout [ 105.890266][ T5853] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 105.905471][ T5853] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 105.931767][ T5853] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 105.942563][ T52] Bluetooth: hci3: command tx timeout [ 105.954926][ T5846] hsr_slave_0: entered promiscuous mode [ 105.961410][ T5846] hsr_slave_1: entered promiscuous mode [ 105.967835][ T5846] debugfs: 'hsr0' already exists in 'hsr' [ 105.973666][ T5846] Cannot create hsr debugfs directory [ 105.981473][ T5850] team0: Port device team_slave_0 added [ 105.990540][ T5850] team0: Port device team_slave_1 added [ 106.073562][ T5850] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 106.080612][ T5850] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 106.106893][ T5850] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 106.151969][ T5850] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 106.160572][ T5850] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 106.186994][ T5850] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 106.253376][ T5853] hsr_slave_0: entered promiscuous mode [ 106.260388][ T5853] hsr_slave_1: entered promiscuous mode [ 106.267782][ T5853] debugfs: 'hsr0' already exists in 'hsr' [ 106.273545][ T5853] Cannot create hsr debugfs directory [ 106.393906][ T5850] hsr_slave_0: entered promiscuous mode [ 106.400748][ T5850] hsr_slave_1: entered promiscuous mode [ 106.407684][ T5850] debugfs: 'hsr0' already exists in 'hsr' [ 106.413456][ T5850] Cannot create hsr debugfs directory [ 106.744484][ T5843] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 106.767210][ T5843] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 106.796754][ T5843] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 106.809122][ T5843] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 106.877066][ T5846] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 106.891883][ T5846] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 106.910454][ T5846] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 106.922329][ T5846] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 107.021376][ T5853] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 107.050254][ T5853] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 107.061589][ T5853] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 107.072801][ T5853] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 107.152928][ T5850] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 107.172190][ T5850] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 107.188054][ T5850] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 107.204775][ T5850] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 107.311429][ T5843] 8021q: adding VLAN 0 to HW filter on device bond0 [ 107.371703][ T5843] 8021q: adding VLAN 0 to HW filter on device team0 [ 107.413222][ T37] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.420684][ T37] bridge0: port 1(bridge_slave_0) entered forwarding state [ 107.446628][ T37] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.453805][ T37] bridge0: port 2(bridge_slave_1) entered forwarding state [ 107.504641][ T5846] 8021q: adding VLAN 0 to HW filter on device bond0 [ 107.522436][ T5853] 8021q: adding VLAN 0 to HW filter on device bond0 [ 107.546597][ T5850] 8021q: adding VLAN 0 to HW filter on device bond0 [ 107.576317][ T5846] 8021q: adding VLAN 0 to HW filter on device team0 [ 107.606335][ T37] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.613482][ T37] bridge0: port 1(bridge_slave_0) entered forwarding state [ 107.637272][ T5850] 8021q: adding VLAN 0 to HW filter on device team0 [ 107.650529][ T5853] 8021q: adding VLAN 0 to HW filter on device team0 [ 107.670125][ T3507] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.677339][ T3507] bridge0: port 1(bridge_slave_0) entered forwarding state [ 107.701170][ T3507] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.708405][ T3507] bridge0: port 2(bridge_slave_1) entered forwarding state [ 107.718012][ T3507] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.725217][ T3507] bridge0: port 1(bridge_slave_0) entered forwarding state [ 107.736678][ T3507] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.743809][ T3507] bridge0: port 2(bridge_slave_1) entered forwarding state [ 107.763902][ T801] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.771135][ T801] bridge0: port 2(bridge_slave_1) entered forwarding state [ 107.856104][ T52] Bluetooth: hci1: command tx timeout [ 107.937319][ T52] Bluetooth: hci2: command tx timeout [ 107.938154][ T5849] Bluetooth: hci0: command tx timeout [ 108.018007][ T5849] Bluetooth: hci3: command tx timeout [ 108.190760][ T5843] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 108.338108][ T5843] veth0_vlan: entered promiscuous mode [ 108.393335][ T5843] veth1_vlan: entered promiscuous mode [ 108.481897][ T5853] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 108.500648][ T5843] veth0_macvtap: entered promiscuous mode [ 108.541225][ T5843] veth1_macvtap: entered promiscuous mode [ 108.613028][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 108.641018][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 108.663030][ T5850] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 108.679518][ T5853] veth0_vlan: entered promiscuous mode [ 108.691639][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.703798][ T5846] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 108.729641][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.739337][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.759205][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.774985][ T5853] veth1_vlan: entered promiscuous mode [ 108.900422][ T5853] veth0_macvtap: entered promiscuous mode [ 108.944005][ T5853] veth1_macvtap: entered promiscuous mode [ 108.951728][ T5850] veth0_vlan: entered promiscuous mode [ 108.958388][ T5846] veth0_vlan: entered promiscuous mode [ 108.969590][ T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.994794][ T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.037145][ T5853] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 109.045656][ T5850] veth1_vlan: entered promiscuous mode [ 109.070284][ T5846] veth1_vlan: entered promiscuous mode [ 109.083796][ T3507] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.094199][ T5853] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 109.094239][ T3507] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.131830][ T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.161796][ T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.193165][ T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.202406][ T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.219280][ T5850] veth0_macvtap: entered promiscuous mode [ 109.236583][ T5843] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 109.267853][ T5850] veth1_macvtap: entered promiscuous mode [ 109.287649][ T5846] veth0_macvtap: entered promiscuous mode [ 109.347733][ T5846] veth1_macvtap: entered promiscuous mode [ 109.399051][ T5850] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 109.407459][ T5932] netlink: 25 bytes leftover after parsing attributes in process `syz.0.1'. [ 109.441705][ T5850] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 109.471832][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 109.490097][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.498364][ T60] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.498980][ T60] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.499052][ T60] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.499106][ T60] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.538299][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.555704][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 109.602297][ T36] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.619488][ T36] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.691323][ T36] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.746430][ T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.756904][ T36] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.767318][ T5938] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 109.767760][ T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.901938][ T3507] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.914688][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.922569][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.935608][ T5849] Bluetooth: hci1: command tx timeout [ 109.945757][ T3507] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.015618][ T5849] Bluetooth: hci0: command tx timeout [ 110.017458][ T52] Bluetooth: hci2: command tx timeout [ 110.077688][ T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.090687][ T37] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.098920][ T52] Bluetooth: hci3: command tx timeout [ 110.128396][ T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.146249][ T37] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.365100][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 111.144673][ T5972] process 'syz.1.10' launched ':,' with NULL argv: empty string added [ 111.176440][ T5970] random: crng reseeded on system resumption [ 112.014701][ T52] Bluetooth: hci1: command tx timeout [ 112.094276][ T52] Bluetooth: hci0: command tx timeout [ 112.099762][ T52] Bluetooth: hci2: command tx timeout [ 112.176755][ T52] Bluetooth: hci3: command tx timeout [ 112.764468][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 112.795287][ T5965] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 112.888935][ T5986] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13'. [ 113.254508][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 113.654604][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 114.754534][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 114.762905][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 114.814109][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 114.885688][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 114.894658][ T0] NOHZ tick-stop error: local softirq work is pending, handler #280!!! [ 115.004730][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 115.375189][ T6010] syz.1.18 (6010) used greatest stack depth: 19720 bytes left [ 115.394950][ T52] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 115.394991][ T52] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 115.410189][ T52] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 115.410238][ T52] Bluetooth: hci0: adv larger than maximum supported [ 115.417489][ T52] Bluetooth: hci0: adv larger than maximum supported [ 115.425121][ T52] Bluetooth: hci0: Malformed LE Event: 0x0d [ 115.866679][ T6025] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 115.949483][ T6025] FAULT_INJECTION: forcing a failure. [ 115.949483][ T6025] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 116.026058][ T6025] CPU: 0 UID: 0 PID: 6025 Comm: syz.1.21 Not tainted syzkaller #0 PREEMPT(full) [ 116.026102][ T6025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 116.026130][ T6025] Call Trace: [ 116.026140][ T6025] [ 116.026159][ T6025] dump_stack_lvl+0x16c/0x1f0 [ 116.026212][ T6025] should_fail_ex+0x512/0x640 [ 116.026267][ T6025] strncpy_from_user+0x3b/0x2e0 [ 116.026317][ T6025] getname_flags.part.0+0x8f/0x550 [ 116.026373][ T6025] getname_flags+0x93/0xf0 [ 116.026409][ T6025] do_sys_openat2+0xb8/0x1d0 [ 116.026459][ T6025] ? __pfx_do_sys_openat2+0x10/0x10 [ 116.026513][ T6025] ? __pfx___might_resched+0x10/0x10 [ 116.026565][ T6025] __x64_sys_openat+0x174/0x210 [ 116.026617][ T6025] ? __pfx___x64_sys_openat+0x10/0x10 [ 116.026693][ T6025] do_syscall_64+0xcd/0x4b0 [ 116.026736][ T6025] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.026770][ T6025] RIP: 0033:0x7ffb1c18eec9 [ 116.026797][ T6025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 116.026829][ T6025] RSP: 002b:00007ffb1a3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 116.026859][ T6025] RAX: ffffffffffffffda RBX: 00007ffb1c3e5fa0 RCX: 00007ffb1c18eec9 [ 116.026880][ T6025] RDX: 0000000000002040 RSI: 0000000000000000 RDI: ffffffffffffff9c [ 116.026900][ T6025] RBP: 00007ffb1c211f91 R08: 0000000000000000 R09: 0000000000000000 [ 116.026920][ T6025] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 116.026939][ T6025] R13: 00007ffb1c3e6038 R14: 00007ffb1c3e5fa0 R15: 00007ffd8a4a0d28 [ 116.026982][ T6025] [ 116.194369][ C0] vkms_vblank_simulate: vblank timer overrun [ 116.548729][ T6016] netlink: 32 bytes leftover after parsing attributes in process `syz.3.15'. [ 118.206252][ T6060] netlink: 342 bytes leftover after parsing attributes in process `syz.3.29'. [ 118.235028][ T6060] Zero length message leads to an empty skb [ 118.382691][ T52] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 118.382734][ T52] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 118.406007][ T52] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 118.406111][ T52] Bluetooth: hci1: adv larger than maximum supported [ 118.414958][ T52] Bluetooth: hci1: adv larger than maximum supported [ 118.421744][ T52] Bluetooth: hci1: Malformed LE Event: 0x0d [ 118.438527][ T6064] FAULT_INJECTION: forcing a failure. [ 118.438527][ T6064] name fail_futex, interval 1, probability 0, space 0, times 1 [ 118.451548][ T6064] CPU: 0 UID: 0 PID: 6064 Comm: syz.2.30 Not tainted syzkaller #0 PREEMPT(full) [ 118.451590][ T6064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 118.451609][ T6064] Call Trace: [ 118.451619][ T6064] [ 118.451632][ T6064] dump_stack_lvl+0x16c/0x1f0 [ 118.451689][ T6064] should_fail_ex+0x512/0x640 [ 118.451742][ T6064] get_futex_key+0x1d0/0x1560 [ 118.451796][ T6064] ? __pfx_get_futex_key+0x10/0x10 [ 118.451858][ T6064] futex_wake+0xea/0x530 [ 118.451890][ T6064] ? rcu_is_watching+0x12/0xc0 [ 118.451929][ T6064] ? __pfx_futex_wake+0x10/0x10 [ 118.451965][ T6064] ? kmem_cache_free+0x2d4/0x6c0 [ 118.452000][ T6064] ? putname+0x154/0x1a0 [ 118.452054][ T6064] do_futex+0x1e3/0x350 [ 118.452101][ T6064] ? __pfx_do_futex+0x10/0x10 [ 118.452158][ T6064] __x64_sys_futex+0x1e0/0x4c0 [ 118.452210][ T6064] ? __x64_sys_openat+0x174/0x210 [ 118.452262][ T6064] ? __pfx___x64_sys_futex+0x10/0x10 [ 118.452328][ T6064] do_syscall_64+0xcd/0x4b0 [ 118.452374][ T6064] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.452408][ T6064] RIP: 0033:0x7f5cdcb8eec9 [ 118.452434][ T6064] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 118.452465][ T6064] RSP: 002b:00007f5cdda130e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 118.452494][ T6064] RAX: ffffffffffffffda RBX: 00007f5cdcde5fa8 RCX: 00007f5cdcb8eec9 [ 118.452514][ T6064] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f5cdcde5fac [ 118.452533][ T6064] RBP: 00007f5cdcde5fa0 R08: 00007f5cdda14000 R09: 0000000000000000 [ 118.452552][ T6064] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000 [ 118.452569][ T6064] R13: 00007f5cdcde6038 R14: 00007ffe1720fbd0 R15: 00007ffe1720fcb8 [ 118.452610][ T6064] [ 119.257708][ T6077] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 119.607461][ T6078] FAULT_INJECTION: forcing a failure. [ 119.607461][ T6078] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 119.682196][ T6078] CPU: 1 UID: 0 PID: 6078 Comm: syz.3.34 Not tainted syzkaller #0 PREEMPT(full) [ 119.682238][ T6078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 119.682258][ T6078] Call Trace: [ 119.682269][ T6078] [ 119.682281][ T6078] dump_stack_lvl+0x16c/0x1f0 [ 119.682331][ T6078] should_fail_ex+0x512/0x640 [ 119.682385][ T6078] should_fail_alloc_page+0xe7/0x130 [ 119.682432][ T6078] prepare_alloc_pages+0x3c2/0x610 [ 119.682484][ T6078] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 119.682543][ T6078] ? __up_read+0x1f8/0x750 [ 119.682578][ T6078] ? __pfx___up_read+0x10/0x10 [ 119.682612][ T6078] ? __rmap_walk_file+0x575/0x620 [ 119.682660][ T6078] ? vma_interval_tree_iter_next+0x10c/0x250 [ 119.682695][ T6078] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 119.682736][ T6078] ? __rmap_walk_file+0x575/0x620 [ 119.682794][ T6078] ? rmap_walk_file+0x174/0x1f0 [ 119.682863][ T6078] __folio_alloc_noprof+0x11/0x220 [ 119.682899][ T6078] alloc_migration_target+0x24a/0x660 [ 119.682954][ T6078] migrate_pages_batch+0x3b9/0x3bb0 [ 119.683012][ T6078] ? __pfx_alloc_migration_target+0x10/0x10 [ 119.683082][ T6078] ? __pfx_migrate_pages_batch+0x10/0x10 [ 119.683142][ T6078] ? __pfx_walk_pgd_range+0x10/0x10 [ 119.683185][ T6078] migrate_pages_sync+0x12d/0x8a0 [ 119.683242][ T6078] ? __pfx_alloc_migration_target+0x10/0x10 [ 119.683302][ T6078] ? queue_pages_test_walk+0x279/0x410 [ 119.683353][ T6078] ? __pfx_migrate_pages_sync+0x10/0x10 [ 119.683408][ T6078] ? walk_page_test+0x9b/0x180 [ 119.683448][ T6078] ? walk_page_range_mm+0x235/0xb40 [ 119.683495][ T6078] migrate_pages+0x1b5f/0x23a0 [ 119.683561][ T6078] ? __pfx_alloc_migration_target+0x10/0x10 [ 119.683627][ T6078] ? __pfx_migrate_pages+0x10/0x10 [ 119.683683][ T6078] ? queue_pages_range+0x11e/0x180 [ 119.683735][ T6078] ? __pfx___up_read+0x10/0x10 [ 119.683769][ T6078] ? do_migrate_pages+0x458/0x750 [ 119.683824][ T6078] do_migrate_pages+0x48e/0x750 [ 119.683875][ T6078] ? __pfx_do_migrate_pages+0x10/0x10 [ 119.683917][ T6078] ? rcu_is_watching+0x12/0xc0 [ 119.683956][ T6078] ? cap_capable+0xb3/0x250 [ 119.683992][ T6078] ? get_task_mm+0xc2/0xf0 [ 119.684026][ T6078] ? security_capable+0x250/0x260 [ 119.684073][ T6078] kernel_migrate_pages+0x55b/0x700 [ 119.684121][ T6078] ? __pfx_kernel_migrate_pages+0x10/0x10 [ 119.684170][ T6078] ? __x64_sys_mmap+0x12d/0x190 [ 119.684203][ T6078] __x64_sys_migrate_pages+0x96/0x100 [ 119.684245][ T6078] ? lockdep_hardirqs_on+0x7c/0x110 [ 119.684277][ T6078] do_syscall_64+0xcd/0x4b0 [ 119.684313][ T6078] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 119.684340][ T6078] RIP: 0033:0x7fada338eec9 [ 119.684362][ T6078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 119.684388][ T6078] RSP: 002b:00007fada4210038 EFLAGS: 00000246 ORIG_RAX: 0000000000000100 [ 119.684415][ T6078] RAX: ffffffffffffffda RBX: 00007fada35e6090 RCX: 00007fada338eec9 [ 119.684432][ T6078] RDX: 0000200000000100 RSI: 000000000000000a RDI: 0000000000000000 [ 119.684449][ T6078] RBP: 00007fada3411f91 R08: 0000000000000000 R09: 0000000000000000 [ 119.684465][ T6078] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000000 [ 119.684481][ T6078] R13: 00007fada35e6128 R14: 00007fada35e6090 R15: 00007ffdbe4ecc38 [ 119.684522][ T6078] [ 120.834690][ T6085] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5) [ 121.412593][ T52] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 121.412636][ T52] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 121.428401][ T52] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 121.428439][ T52] Bluetooth: hci1: adv larger than maximum supported [ 121.435777][ T52] Bluetooth: hci1: adv larger than maximum supported [ 121.442684][ T52] Bluetooth: hci1: Malformed LE Event: 0x0d [ 121.454946][ T6100] FAULT_INJECTION: forcing a failure. [ 121.454946][ T6100] name fail_futex, interval 1, probability 0, space 0, times 0 [ 121.508708][ T6100] CPU: 0 UID: 0 PID: 6100 Comm: syz.2.40 Not tainted syzkaller #0 PREEMPT(full) [ 121.508739][ T6100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 121.508753][ T6100] Call Trace: [ 121.508760][ T6100] [ 121.508769][ T6100] dump_stack_lvl+0x16c/0x1f0 [ 121.508803][ T6100] should_fail_ex+0x512/0x640 [ 121.508843][ T6100] get_futex_key+0x1d0/0x1560 [ 121.508881][ T6100] ? __pfx_get_futex_key+0x10/0x10 [ 121.508924][ T6100] futex_wake+0xea/0x530 [ 121.508948][ T6100] ? rcu_is_watching+0x12/0xc0 [ 121.508978][ T6100] ? __pfx_futex_wake+0x10/0x10 [ 121.509004][ T6100] ? kmem_cache_free+0x2d4/0x6c0 [ 121.509030][ T6100] ? putname+0x154/0x1a0 [ 121.509069][ T6100] do_futex+0x1e3/0x350 [ 121.509104][ T6100] ? __pfx_do_futex+0x10/0x10 [ 121.509148][ T6100] __x64_sys_futex+0x1e0/0x4c0 [ 121.509185][ T6100] ? __x64_sys_openat+0x174/0x210 [ 121.509223][ T6100] ? __pfx___x64_sys_futex+0x10/0x10 [ 121.509270][ T6100] do_syscall_64+0xcd/0x4b0 [ 121.509302][ T6100] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.509327][ T6100] RIP: 0033:0x7f5cdcb8eec9 [ 121.509345][ T6100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 121.509367][ T6100] RSP: 002b:00007f5cdda130e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 121.509389][ T6100] RAX: ffffffffffffffda RBX: 00007f5cdcde5fa8 RCX: 00007f5cdcb8eec9 [ 121.509404][ T6100] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f5cdcde5fac [ 121.509418][ T6100] RBP: 00007f5cdcde5fa0 R08: 00007f5cdda14000 R09: 0000000000000000 [ 121.509433][ T6100] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000 [ 121.509446][ T6100] R13: 00007f5cdcde6038 R14: 00007ffe1720fbd0 R15: 00007ffe1720fcb8 [ 121.509475][ T6100] [ 122.333466][ T6111] mmap: syz.3.42 (6111) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 122.587394][ T6115] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 123.559204][ T6115] WARNING! power/level is deprecated; use power/control instead [ 124.105020][ T6143] block nbd7: not configured, cannot reconfigure [ 124.115864][ T6142] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4) [ 128.399132][ T6193] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input5 [ 129.037033][ T6195] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input6 [ 129.259378][ T6205] FAULT_INJECTION: forcing a failure. [ 129.259378][ T6205] name failslab, interval 1, probability 0, space 0, times 1 [ 129.364211][ T6205] CPU: 0 UID: 0 PID: 6205 Comm: syz.3.61 Not tainted syzkaller #0 PREEMPT(full) [ 129.364256][ T6205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 129.364276][ T6205] Call Trace: [ 129.364287][ T6205] [ 129.364300][ T6205] dump_stack_lvl+0x16c/0x1f0 [ 129.364349][ T6205] should_fail_ex+0x512/0x640 [ 129.364395][ T6205] ? __kmalloc_cache_noprof+0x5f/0x780 [ 129.364435][ T6205] should_failslab+0xc2/0x120 [ 129.364484][ T6205] __kmalloc_cache_noprof+0x72/0x780 [ 129.364517][ T6205] ? rfkill_fop_open+0x1b6/0x750 [ 129.364559][ T6205] ? rfkill_fop_open+0x1b6/0x750 [ 129.364592][ T6205] rfkill_fop_open+0x1b6/0x750 [ 129.364632][ T6205] ? __pfx_rfkill_fop_open+0x10/0x10 [ 129.364669][ T6205] misc_open+0x26a/0x450 [ 129.364709][ T6205] ? __pfx_misc_open+0x10/0x10 [ 129.364745][ T6205] chrdev_open+0x231/0x6a0 [ 129.364795][ T6205] ? __pfx_apparmor_file_open+0x10/0x10 [ 129.364845][ T6205] ? __pfx_chrdev_open+0x10/0x10 [ 129.364891][ T6205] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 129.364938][ T6205] do_dentry_open+0x97f/0x1530 [ 129.364981][ T6205] ? __pfx_chrdev_open+0x10/0x10 [ 129.365031][ T6205] vfs_open+0x82/0x3f0 [ 129.365088][ T6205] path_openat+0x1de4/0x2cb0 [ 129.365143][ T6205] ? __pfx_path_openat+0x10/0x10 [ 129.365217][ T6205] do_filp_open+0x20b/0x470 [ 129.365261][ T6205] ? __pfx_do_filp_open+0x10/0x10 [ 129.365336][ T6205] ? alloc_fd+0x471/0x7d0 [ 129.365385][ T6205] do_sys_openat2+0x11b/0x1d0 [ 129.365439][ T6205] ? __pfx_do_sys_openat2+0x10/0x10 [ 129.365511][ T6205] __x64_sys_openat+0x174/0x210 [ 129.365565][ T6205] ? __pfx___x64_sys_openat+0x10/0x10 [ 129.365638][ T6205] do_syscall_64+0xcd/0x4b0 [ 129.365685][ T6205] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 129.365720][ T6205] RIP: 0033:0x7fada338eec9 [ 129.365748][ T6205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 129.365788][ T6205] RSP: 002b:00007fada4231038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 129.365819][ T6205] RAX: ffffffffffffffda RBX: 00007fada35e5fa0 RCX: 00007fada338eec9 [ 129.365858][ T6205] RDX: 0000000000000080 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 129.365879][ T6205] RBP: 00007fada3411f91 R08: 0000000000000000 R09: 0000000000000000 [ 129.365898][ T6205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 129.365917][ T6205] R13: 00007fada35e6038 R14: 00007fada35e5fa0 R15: 00007ffdbe4ecc38 [ 129.365961][ T6205] [ 131.378144][ T6225] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 132.989175][ T6252] syz.2.69 (6252): /proc/6249/oom_adj is deprecated, please use /proc/6249/oom_score_adj instead. [ 133.152712][ T6260] netlink: 342 bytes leftover after parsing attributes in process `syz.1.71'. [ 133.167466][ T6260] netlink: 342 bytes leftover after parsing attributes in process `syz.1.71'. [ 134.106797][ T6273] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 134.311397][ T6274] random: crng reseeded on system resumption [ 134.394235][ T6276] netlink: 46 bytes leftover after parsing attributes in process `syz.1.74'. [ 134.403553][ T6277] netlink: 46 bytes leftover after parsing attributes in process `syz.1.74'. [ 134.734749][ T6282] syz.1.75 uses obsolete (PF_INET,SOCK_PACKET) [ 137.348337][ T6306] random: crng reseeded on system resumption [ 137.375076][ T52] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 138.703810][ T6323] qrtr: Invalid version 0 [ 138.790308][ T6325] netlink: 186 bytes leftover after parsing attributes in process `syz.3.83'. [ 140.424338][ T52] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 140.755859][ T6348] netlink: 28 bytes leftover after parsing attributes in process `syz.0.89'. [ 140.861179][ T6348] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 141.155789][ T6348] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 141.323256][ T6348] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 141.393529][ T6348] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 143.003275][ T6368] random: crng reseeded on system resumption [ 143.381772][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 143.394169][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 143.816935][ T6380] netlink: 342 bytes leftover after parsing attributes in process `syz.1.95'. [ 144.753971][ T6386] dyndbg: bad flag-op @, at start of @ [ 144.810047][ T6386] dyndbg: flags parse failed [ 144.987108][ T6392] random: crng reseeded on system resumption [ 145.536448][ T30] audit: type=1800 audit(1759665593.219:2): pid=6401 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.100" name="discovery_nqn" dev="configfs" ino=9567 res=0 errno=0 [ 146.104227][ T52] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 147.001771][ T6426] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 147.154982][ T6427] netlink: 28 bytes leftover after parsing attributes in process `syz.1.106'. [ 147.233179][ T30] audit: type=1800 audit(1759665594.929:3): pid=6426 uid=4 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.104" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 147.309988][ T6427] ipvlan0: entered promiscuous mode [ 147.364246][ T6427] ipvlan0: entered allmulticast mode [ 147.376615][ T6427] veth0_vlan: entered allmulticast mode [ 147.665620][ T6436] random: crng reseeded on system resumption [ 150.167296][ T6469] ksmbd: Unknown IPC event: 14, ignore. [ 151.300392][ T6489] sg_write: data in/out 808464396/50 bytes for SCSI command 0x0-- guessing data in; [ 151.300392][ T6489] program syz.3.115 not setting count and/or reply_len properly [ 151.620705][ T6492] random: crng reseeded on system resumption [ 152.115442][ T6502] vivid-003: ================= START STATUS ================= [ 152.123484][ T6502] vivid-003: Radio HW Seek Mode: Bounded [ 152.133693][ T6502] vivid-003: Radio Programmable HW Seek: false [ 152.167054][ T6502] vivid-003: RDS Rx I/O Mode: Block I/O [ 152.238709][ T6504] netlink: 12 bytes leftover after parsing attributes in process `syz.1.121'. [ 152.328091][ T6502] vivid-003: Generate RBDS Instead of RDS: false [ 152.338513][ T6502] vivid-003: RDS Reception: true [ 152.343593][ T6502] vivid-003: RDS Program Type: 0 inactive [ 152.452841][ T6502] vivid-003: RDS PS Name: inactive [ 152.582375][ T6502] vivid-003: RDS Radio Text: inactive [ 152.624169][ T6502] vivid-003: RDS Traffic Announcement: false inactive [ 152.673399][ T6502] vivid-003: RDS Traffic Program: false inactive [ 152.774168][ T6502] vivid-003: RDS Music: false inactive [ 152.779748][ T6502] vivid-003: ================== END STATUS ================== [ 152.855699][ T6507] FAULT_INJECTION: forcing a failure. [ 152.855699][ T6507] name failslab, interval 1, probability 0, space 0, times 0 [ 152.868668][ T6507] CPU: 1 UID: 0 PID: 6507 Comm: syz.0.122 Not tainted syzkaller #0 PREEMPT(full) [ 152.868698][ T6507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 152.868712][ T6507] Call Trace: [ 152.868720][ T6507] [ 152.868729][ T6507] dump_stack_lvl+0x16c/0x1f0 [ 152.868764][ T6507] should_fail_ex+0x512/0x640 [ 152.868797][ T6507] ? fs_reclaim_acquire+0xae/0x150 [ 152.868834][ T6507] should_failslab+0xc2/0x120 [ 152.868868][ T6507] __kmalloc_cache_noprof+0x72/0x780 [ 152.868894][ T6507] ? tomoyo_open_control+0x56/0xa30 [ 152.868925][ T6507] ? __pfx_apparmor_file_open+0x10/0x10 [ 152.868963][ T6507] ? tomoyo_open_control+0x56/0xa30 [ 152.868992][ T6507] tomoyo_open_control+0x56/0xa30 [ 152.869027][ T6507] do_dentry_open+0x97f/0x1530 [ 152.869057][ T6507] ? __pfx_tomoyo_open+0x10/0x10 [ 152.869089][ T6507] vfs_open+0x82/0x3f0 [ 152.869128][ T6507] path_openat+0x1de4/0x2cb0 [ 152.869165][ T6507] ? __pfx_path_openat+0x10/0x10 [ 152.869200][ T6507] do_filp_open+0x20b/0x470 [ 152.869228][ T6507] ? __pfx_do_filp_open+0x10/0x10 [ 152.869277][ T6507] ? alloc_fd+0x471/0x7d0 [ 152.869310][ T6507] do_sys_openat2+0x11b/0x1d0 [ 152.869346][ T6507] ? __pfx_do_sys_openat2+0x10/0x10 [ 152.869404][ T6507] __x64_sys_openat+0x174/0x210 [ 152.869443][ T6507] ? __pfx___x64_sys_openat+0x10/0x10 [ 152.869493][ T6507] do_syscall_64+0xcd/0x4b0 [ 152.869526][ T6507] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 152.869550][ T6507] RIP: 0033:0x7fca2a18eec9 [ 152.869569][ T6507] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 152.869591][ T6507] RSP: 002b:00007fca2b0da038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 152.869612][ T6507] RAX: ffffffffffffffda RBX: 00007fca2a3e5fa0 RCX: 00007fca2a18eec9 [ 152.869628][ T6507] RDX: 00000000000c0802 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 152.869642][ T6507] RBP: 00007fca2a211f91 R08: 0000000000000000 R09: 0000000000000000 [ 152.869656][ T6507] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 152.869670][ T6507] R13: 00007fca2a3e6038 R14: 00007fca2a3e5fa0 R15: 00007ffd2f3aebd8 [ 152.869699][ T6507] [ 153.606612][ T52] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 153.606644][ T52] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 153.621828][ T52] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 153.621891][ T52] Bluetooth: hci3: Malformed LE Event: 0x0d [ 153.649804][ T6517] FAULT_INJECTION: forcing a failure. [ 153.649804][ T6517] name fail_futex, interval 1, probability 0, space 0, times 0 [ 153.672319][ T6517] CPU: 1 UID: 0 PID: 6517 Comm: syz.1.125 Not tainted syzkaller #0 PREEMPT(full) [ 153.672366][ T6517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 153.672386][ T6517] Call Trace: [ 153.672397][ T6517] [ 153.672410][ T6517] dump_stack_lvl+0x16c/0x1f0 [ 153.672459][ T6517] should_fail_ex+0x512/0x640 [ 153.672515][ T6517] get_futex_key+0x1d0/0x1560 [ 153.672568][ T6517] ? __pfx_get_futex_key+0x10/0x10 [ 153.672618][ T6517] ? __fget_files+0x204/0x3c0 [ 153.672664][ T6517] futex_wake+0xea/0x530 [ 153.672702][ T6517] ? __pfx_futex_wake+0x10/0x10 [ 153.672735][ T6517] ? __sys_sendmmsg+0x35f/0x420 [ 153.672790][ T6517] ? __pfx___sys_sendmmsg+0x10/0x10 [ 153.672849][ T6517] do_futex+0x1e3/0x350 [ 153.672906][ T6517] ? __pfx_do_futex+0x10/0x10 [ 153.672969][ T6517] __x64_sys_futex+0x1e0/0x4c0 [ 153.673037][ T6517] ? __x64_sys_openat+0x174/0x210 [ 153.673093][ T6517] ? __pfx___x64_sys_futex+0x10/0x10 [ 153.673145][ T6517] ? xfd_validate_state+0x61/0x180 [ 153.673190][ T6517] do_syscall_64+0xcd/0x4b0 [ 153.673234][ T6517] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 153.673268][ T6517] RIP: 0033:0x7ffb1c18eec9 [ 153.673294][ T6517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 153.673327][ T6517] RSP: 002b:00007ffb1a3f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 153.673359][ T6517] RAX: ffffffffffffffda RBX: 00007ffb1c3e5fa8 RCX: 00007ffb1c18eec9 [ 153.673380][ T6517] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ffb1c3e5fac [ 153.673400][ T6517] RBP: 00007ffb1c3e5fa0 R08: 00007ffb1cf2d000 R09: 0000000000000000 [ 153.673420][ T6517] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 153.673441][ T6517] R13: 00007ffb1c3e6038 R14: 00007ffd8a4a0c40 R15: 00007ffd8a4a0d28 [ 153.673484][ T6517] [ 153.894792][ T6519] FAULT_INJECTION: forcing a failure. [ 153.894792][ T6519] name fail_futex, interval 1, probability 0, space 0, times 0 [ 153.907677][ T6519] CPU: 1 UID: 0 PID: 6519 Comm: syz.2.126 Not tainted syzkaller #0 PREEMPT(full) [ 153.907707][ T6519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 153.907721][ T6519] Call Trace: [ 153.907729][ T6519] [ 153.907738][ T6519] dump_stack_lvl+0x16c/0x1f0 [ 153.907773][ T6519] should_fail_ex+0x512/0x640 [ 153.907812][ T6519] get_futex_key+0x1d0/0x1560 [ 153.907850][ T6519] ? __pfx_get_futex_key+0x10/0x10 [ 153.907893][ T6519] futex_wake+0xea/0x530 [ 153.907916][ T6519] ? rcu_is_watching+0x12/0xc0 [ 153.907947][ T6519] ? __pfx_futex_wake+0x10/0x10 [ 153.907981][ T6519] ? kmem_cache_free+0x2d4/0x6c0 [ 153.908008][ T6519] ? putname+0x154/0x1a0 [ 153.908047][ T6519] do_futex+0x1e3/0x350 [ 153.908082][ T6519] ? __pfx_do_futex+0x10/0x10 [ 153.908126][ T6519] __x64_sys_futex+0x1e0/0x4c0 [ 153.908163][ T6519] ? __x64_sys_openat+0x174/0x210 [ 153.908201][ T6519] ? __pfx___x64_sys_futex+0x10/0x10 [ 153.908252][ T6519] do_syscall_64+0xcd/0x4b0 [ 153.908284][ T6519] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 153.908308][ T6519] RIP: 0033:0x7f5cdcb8eec9 [ 153.908327][ T6519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 153.908349][ T6519] RSP: 002b:00007f5cdda130e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 153.908370][ T6519] RAX: ffffffffffffffda RBX: 00007f5cdcde5fa8 RCX: 00007f5cdcb8eec9 [ 153.908386][ T6519] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f5cdcde5fac [ 153.908400][ T6519] RBP: 00007f5cdcde5fa0 R08: 00007f5cdda14000 R09: 0000000000000000 [ 153.908414][ T6519] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 153.908427][ T6519] R13: 00007f5cdcde6038 R14: 00007ffe1720fbd0 R15: 00007ffe1720fcb8 [ 153.908456][ T6519] [ 153.908610][ T52] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 154.090211][ T52] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 154.105341][ T52] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 154.105391][ T52] Bluetooth: hci1: Malformed LE Event: 0x0d [ 154.881378][ T6525] FAULT_INJECTION: forcing a failure. [ 154.881378][ T6525] name failslab, interval 1, probability 0, space 0, times 0 [ 154.921358][ T6525] CPU: 1 UID: 0 PID: 6525 Comm: syz.2.128 Not tainted syzkaller #0 PREEMPT(full) [ 154.921402][ T6525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 154.921421][ T6525] Call Trace: [ 154.921431][ T6525] [ 154.921444][ T6525] dump_stack_lvl+0x16c/0x1f0 [ 154.921491][ T6525] should_fail_ex+0x512/0x640 [ 154.921539][ T6525] ? __kmalloc_cache_noprof+0x5f/0x780 [ 154.921580][ T6525] should_failslab+0xc2/0x120 [ 154.921629][ T6525] __kmalloc_cache_noprof+0x72/0x780 [ 154.921666][ T6525] ? apply_wqattrs_prepare+0x130/0xbd0 [ 154.921718][ T6525] ? apply_wqattrs_prepare+0x130/0xbd0 [ 154.921760][ T6525] apply_wqattrs_prepare+0x130/0xbd0 [ 154.921819][ T6525] apply_workqueue_attrs_locked+0x64/0xe0 [ 154.921881][ T6525] __alloc_workqueue+0xf3f/0x1810 [ 154.921941][ T6525] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 154.921983][ T6525] alloc_workqueue_noprof+0xd2/0x200 [ 154.922034][ T6525] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 154.922097][ T6525] ? __pfx___debug_object_init+0x10/0x10 [ 154.922148][ T6525] nci_register_device+0x511/0xb80 [ 154.922185][ T6525] ? __pfx_nci_register_device+0x10/0x10 [ 154.922226][ T6525] ? lockdep_init_map_type+0x5c/0x280 [ 154.922289][ T6525] virtual_ncidev_open+0x141/0x220 [ 154.922340][ T6525] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 154.922388][ T6525] misc_open+0x26a/0x450 [ 154.922428][ T6525] ? __pfx_misc_open+0x10/0x10 [ 154.922465][ T6525] chrdev_open+0x231/0x6a0 [ 154.922508][ T6525] ? __pfx_apparmor_file_open+0x10/0x10 [ 154.922558][ T6525] ? __pfx_chrdev_open+0x10/0x10 [ 154.922614][ T6525] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 154.922665][ T6525] do_dentry_open+0x97f/0x1530 [ 154.922711][ T6525] ? __pfx_chrdev_open+0x10/0x10 [ 154.922764][ T6525] vfs_open+0x82/0x3f0 [ 154.922829][ T6525] path_openat+0x1de4/0x2cb0 [ 154.922885][ T6525] ? __pfx_path_openat+0x10/0x10 [ 154.922938][ T6525] do_filp_open+0x20b/0x470 [ 154.922979][ T6525] ? __pfx_do_filp_open+0x10/0x10 [ 154.923052][ T6525] ? alloc_fd+0x471/0x7d0 [ 154.923100][ T6525] do_sys_openat2+0x11b/0x1d0 [ 154.923154][ T6525] ? __pfx_do_sys_openat2+0x10/0x10 [ 154.923210][ T6525] ? __fput+0x68d/0xb70 [ 154.923269][ T6525] __x64_sys_openat+0x174/0x210 [ 154.923323][ T6525] ? __pfx___x64_sys_openat+0x10/0x10 [ 154.923396][ T6525] do_syscall_64+0xcd/0x4b0 [ 154.923442][ T6525] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 154.923476][ T6525] RIP: 0033:0x7f5cdcb8eec9 [ 154.923502][ T6525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 154.923534][ T6525] RSP: 002b:00007f5cdda13038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 154.923567][ T6525] RAX: ffffffffffffffda RBX: 00007f5cdcde5fa0 RCX: 00007f5cdcb8eec9 [ 154.923589][ T6525] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 154.923626][ T6525] RBP: 00007f5cdcc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 154.923647][ T6525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 154.923668][ T6525] R13: 00007f5cdcde6038 R14: 00007f5cdcde5fa0 R15: 00007ffe1720fcb8 [ 154.923711][ T6525] [ 155.653529][ T6530] tipc: Started in network mode [ 155.669048][ T6530] tipc: Node identity ee00, cluster identity 4711 [ 155.689291][ T6530] tipc: Node number set to 60928 [ 157.815836][ T6572] FAULT_INJECTION: forcing a failure. [ 157.815836][ T6572] name fail_futex, interval 1, probability 0, space 0, times 0 [ 157.853460][ T6572] CPU: 0 UID: 0 PID: 6572 Comm: syz.3.136 Not tainted syzkaller #0 PREEMPT(full) [ 157.853503][ T6572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 157.853517][ T6572] Call Trace: [ 157.853524][ T6572] [ 157.853539][ T6572] dump_stack_lvl+0x16c/0x1f0 [ 157.853573][ T6572] should_fail_ex+0x512/0x640 [ 157.853612][ T6572] get_futex_key+0x1d0/0x1560 [ 157.853650][ T6572] ? __pfx_get_futex_key+0x10/0x10 [ 157.853693][ T6572] futex_wake+0xea/0x530 [ 157.853716][ T6572] ? rcu_is_watching+0x12/0xc0 [ 157.853746][ T6572] ? __pfx_futex_wake+0x10/0x10 [ 157.853773][ T6572] ? kmem_cache_free+0x2d4/0x6c0 [ 157.853801][ T6572] ? putname+0x154/0x1a0 [ 157.853839][ T6572] do_futex+0x1e3/0x350 [ 157.853874][ T6572] ? __pfx_do_futex+0x10/0x10 [ 157.853917][ T6572] __x64_sys_futex+0x1e0/0x4c0 [ 157.853955][ T6572] ? __x64_sys_openat+0x174/0x210 [ 157.853992][ T6572] ? __pfx___x64_sys_futex+0x10/0x10 [ 157.854028][ T6572] ? xfd_validate_state+0x61/0x180 [ 157.854077][ T6572] do_syscall_64+0xcd/0x4b0 [ 157.854118][ T6572] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 157.854142][ T6572] RIP: 0033:0x7fada338eec9 [ 157.854160][ T6572] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 157.854182][ T6572] RSP: 002b:00007fada42310e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 157.854204][ T6572] RAX: ffffffffffffffda RBX: 00007fada35e5fa8 RCX: 00007fada338eec9 [ 157.854219][ T6572] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fada35e5fac [ 157.854233][ T6572] RBP: 00007fada35e5fa0 R08: 00007fada4232000 R09: 0000000000000000 [ 157.854247][ T6572] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 157.854260][ T6572] R13: 00007fada35e6038 R14: 00007ffdbe4ecb50 R15: 00007ffdbe4ecc38 [ 157.854289][ T6572] [ 159.700347][ T6582] zswap: compressor not available [ 159.803588][ T6579] zswap: compressor not available [ 160.343514][ T6617] Console: switching to colour VGA+ 80x25 [ 160.491705][ T6622] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7 [ 160.558532][ T6627] sd 0:0:1:0: PR command failed: 1026 [ 160.564610][ T6627] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 160.578745][ T6623] FAULT_INJECTION: forcing a failure. [ 160.578745][ T6623] name failslab, interval 1, probability 0, space 0, times 0 [ 160.593280][ T6627] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 160.624340][ T6623] CPU: 0 UID: 0 PID: 6623 Comm: syz.1.147 Not tainted syzkaller #0 PREEMPT(full) [ 160.624389][ T6623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 160.624409][ T6623] Call Trace: [ 160.624420][ T6623] [ 160.624433][ T6623] dump_stack_lvl+0x16c/0x1f0 [ 160.624487][ T6623] should_fail_ex+0x512/0x640 [ 160.624541][ T6623] should_failslab+0xc2/0x120 [ 160.624601][ T6623] __kmalloc_cache_noprof+0x72/0x780 [ 160.624634][ T6623] ? __task_pid_nr_ns+0x1f5/0x500 [ 160.624689][ T6623] ? proc_self_get_link+0x1a9/0x230 [ 160.624739][ T6623] ? proc_self_get_link+0x1a9/0x230 [ 160.624782][ T6623] proc_self_get_link+0x1a9/0x230 [ 160.624826][ T6623] ? __pfx_proc_self_get_link+0x10/0x10 [ 160.624869][ T6623] step_into+0x189e/0x21a0 [ 160.624911][ T6623] ? __pfx_step_into+0x10/0x10 [ 160.624952][ T6623] ? lookup_fast+0x156/0x610 [ 160.624991][ T6623] walk_component+0xfc/0x5b0 [ 160.625029][ T6623] link_path_walk+0x627/0xe20 [ 160.625079][ T6623] path_openat+0x1b0/0x2cb0 [ 160.625133][ T6623] ? __pfx_path_openat+0x10/0x10 [ 160.625183][ T6623] do_filp_open+0x20b/0x470 [ 160.625223][ T6623] ? __pfx_do_filp_open+0x10/0x10 [ 160.625294][ T6623] ? alloc_fd+0x471/0x7d0 [ 160.625342][ T6623] do_sys_openat2+0x11b/0x1d0 [ 160.625394][ T6623] ? __pfx_do_sys_openat2+0x10/0x10 [ 160.625454][ T6623] __x64_sys_openat+0x174/0x210 [ 160.625503][ T6623] ? __pfx___x64_sys_openat+0x10/0x10 [ 160.625584][ T6623] do_syscall_64+0xcd/0x4b0 [ 160.625631][ T6623] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 160.625665][ T6623] RIP: 0033:0x7ffb1c18eec9 [ 160.625693][ T6623] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 160.625722][ T6623] RSP: 002b:00007ffb1a3d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 160.625753][ T6623] RAX: ffffffffffffffda RBX: 00007ffb1c3e6090 RCX: 00007ffb1c18eec9 [ 160.625775][ T6623] RDX: 0000000000002100 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 160.625796][ T6623] RBP: 00007ffb1c211f91 R08: 0000000000000000 R09: 0000000000000000 [ 160.625816][ T6623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 160.625835][ T6623] R13: 00007ffb1c3e6128 R14: 00007ffb1c3e6090 R15: 00007ffd8a4a0d28 [ 160.625879][ T6623] [ 161.015561][ T6630] FAULT_INJECTION: forcing a failure. [ 161.015561][ T6630] name failslab, interval 1, probability 0, space 0, times 0 [ 161.015611][ T6630] CPU: 0 UID: 0 PID: 6630 Comm: syz.2.148 Not tainted syzkaller #0 PREEMPT(full) [ 161.015649][ T6630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 161.015669][ T6630] Call Trace: [ 161.015679][ T6630] [ 161.015693][ T6630] dump_stack_lvl+0x16c/0x1f0 [ 161.015742][ T6630] should_fail_ex+0x512/0x640 [ 161.015791][ T6630] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 161.015840][ T6630] should_failslab+0xc2/0x120 [ 161.015890][ T6630] __kvmalloc_node_noprof+0x141/0x9c0 [ 161.015935][ T6630] ? evdev_open+0x11a/0x690 [ 161.015990][ T6630] ? evdev_open+0x11a/0x690 [ 161.016032][ T6630] evdev_open+0x11a/0x690 [ 161.016084][ T6630] ? __pfx_evdev_open+0x10/0x10 [ 161.016129][ T6630] chrdev_open+0x231/0x6a0 [ 161.016171][ T6630] ? __pfx_apparmor_file_open+0x10/0x10 [ 161.016221][ T6630] ? __pfx_chrdev_open+0x10/0x10 [ 161.016268][ T6630] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 161.016316][ T6630] do_dentry_open+0x97f/0x1530 [ 161.016358][ T6630] ? __pfx_chrdev_open+0x10/0x10 [ 161.016411][ T6630] vfs_open+0x82/0x3f0 [ 161.016468][ T6630] path_openat+0x1de4/0x2cb0 [ 161.016522][ T6630] ? __pfx_path_openat+0x10/0x10 [ 161.016586][ T6630] do_filp_open+0x20b/0x470 [ 161.016628][ T6630] ? __pfx_do_filp_open+0x10/0x10 [ 161.016699][ T6630] ? alloc_fd+0x471/0x7d0 [ 161.016746][ T6630] do_sys_openat2+0x11b/0x1d0 [ 161.016798][ T6630] ? __pfx_do_sys_openat2+0x10/0x10 [ 161.016868][ T6630] __x64_sys_openat+0x174/0x210 [ 161.016922][ T6630] ? __pfx___x64_sys_openat+0x10/0x10 [ 161.016992][ T6630] do_syscall_64+0xcd/0x4b0 [ 161.017037][ T6630] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 161.017071][ T6630] RIP: 0033:0x7f5cdcb8eec9 [ 161.017097][ T6630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 161.017130][ T6630] RSP: 002b:00007f5cdda13038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 161.017162][ T6630] RAX: ffffffffffffffda RBX: 00007f5cdcde5fa0 RCX: 00007f5cdcb8eec9 [ 161.017183][ T6630] RDX: 0000000000008000 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 161.017204][ T6630] RBP: 00007f5cdcc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 161.017224][ T6630] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 161.017243][ T6630] R13: 00007f5cdcde6038 R14: 00007f5cdcde5fa0 R15: 00007ffe1720fcb8 [ 161.017286][ T6630] [ 161.133473][ T6624] zswap: compressor -Ž not available [ 161.213629][ T6626] Console: switching to colour frame buffer device 128x48 [ 161.216655][ T6631] random: crng reseeded on system resumption [ 164.248950][ T6668] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1048706]. [ 165.093738][ T6686] ecryptfs_parse_packet_length: Error parsing packet length [ 165.114368][ T6686] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 167.821650][ T6738] netlink: 'syz.2.164': attribute type 1 has an invalid length. [ 167.940690][ T6743] FAULT_INJECTION: forcing a failure. [ 167.940690][ T6743] name failslab, interval 1, probability 0, space 0, times 0 [ 167.999571][ T6743] CPU: 1 UID: 0 PID: 6743 Comm: syz.0.165 Not tainted syzkaller #0 PREEMPT(full) [ 167.999610][ T6743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 167.999626][ T6743] Call Trace: [ 167.999636][ T6743] [ 167.999647][ T6743] dump_stack_lvl+0x16c/0x1f0 [ 167.999692][ T6743] should_fail_ex+0x512/0x640 [ 167.999736][ T6743] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 167.999775][ T6743] should_failslab+0xc2/0x120 [ 167.999819][ T6743] kmem_cache_alloc_noprof+0x75/0x6e0 [ 167.999854][ T6743] ? getname_flags.part.0+0x4c/0x550 [ 167.999912][ T6743] ? getname_flags.part.0+0x4c/0x550 [ 167.999960][ T6743] getname_flags.part.0+0x4c/0x550 [ 168.000015][ T6743] __x64_sys_mkdir+0xd8/0x140 [ 168.000056][ T6743] do_syscall_64+0xcd/0x4b0 [ 168.000098][ T6743] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 168.000132][ T6743] RIP: 0033:0x7fca2a18eec9 [ 168.000153][ T6743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 168.000177][ T6743] RSP: 002b:00007fca2b0da038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 168.000201][ T6743] RAX: ffffffffffffffda RBX: 00007fca2a3e5fa0 RCX: 00007fca2a18eec9 [ 168.000218][ T6743] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000200000000040 [ 168.000234][ T6743] RBP: 00007fca2b0da090 R08: 0000000000000000 R09: 0000000000000000 [ 168.000250][ T6743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 168.000265][ T6743] R13: 00007fca2a3e6038 R14: 00007fca2a3e5fa0 R15: 00007ffd2f3aebd8 [ 168.000298][ T6743] [ 168.730804][ T6755] random: crng reseeded on system resumption [ 170.403639][ T6761] netlink: 28 bytes leftover after parsing attributes in process `syz.1.170'. [ 170.632376][ T6763] can-isotp: isotp_sendmsg: can_send_ret -ENETDOWN [ 171.205043][ T6793] FAULT_INJECTION: forcing a failure. [ 171.205043][ T6793] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 171.224350][ T6793] CPU: 0 UID: 0 PID: 6793 Comm: syz.0.175 Not tainted syzkaller #0 PREEMPT(full) [ 171.224393][ T6793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 171.224412][ T6793] Call Trace: [ 171.224428][ T6793] [ 171.224440][ T6793] dump_stack_lvl+0x16c/0x1f0 [ 171.224485][ T6793] should_fail_ex+0x512/0x640 [ 171.224537][ T6793] strncpy_from_user+0x3b/0x2e0 [ 171.224586][ T6793] getname_flags.part.0+0x8f/0x550 [ 171.224641][ T6793] __x64_sys_mkdir+0xd8/0x140 [ 171.224681][ T6793] do_syscall_64+0xcd/0x4b0 [ 171.224724][ T6793] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 171.224756][ T6793] RIP: 0033:0x7fca2a18eec9 [ 171.224781][ T6793] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 171.224811][ T6793] RSP: 002b:00007fca2b0b9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 171.224839][ T6793] RAX: ffffffffffffffda RBX: 00007fca2a3e6090 RCX: 00007fca2a18eec9 [ 171.224859][ T6793] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000200000000040 [ 171.224877][ T6793] RBP: 00007fca2b0b9090 R08: 0000000000000000 R09: 0000000000000000 [ 171.224896][ T6793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 171.224914][ T6793] R13: 00007fca2a3e6128 R14: 00007fca2a3e6090 R15: 00007ffd2f3aebd8 [ 171.224954][ T6793] [ 173.008939][ T6814] random: crng reseeded on system resumption [ 176.094958][ T52] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 176.183720][ T5849] Bluetooth: hci5: Opcode 0x0c03 failed: -110 [ 179.713878][ T6893] random: crng reseeded on system resumption [ 179.900692][ T6905] FAULT_INJECTION: forcing a failure. [ 179.900692][ T6905] name fail_futex, interval 1, probability 0, space 0, times 0 [ 180.020094][ T6905] CPU: 0 UID: 0 PID: 6905 Comm: syz.0.201 Not tainted syzkaller #0 PREEMPT(full) [ 180.020136][ T6905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 180.020153][ T6905] Call Trace: [ 180.020163][ T6905] [ 180.020174][ T6905] dump_stack_lvl+0x16c/0x1f0 [ 180.020229][ T6905] should_fail_ex+0x512/0x640 [ 180.020278][ T6905] get_futex_key+0x1d0/0x1560 [ 180.020327][ T6905] ? __pfx_get_futex_key+0x10/0x10 [ 180.020370][ T6905] ? trace_pid_list_is_set+0xfb/0x150 [ 180.020426][ T6905] ? do_raw_spin_unlock+0x172/0x230 [ 180.020469][ T6905] futex_wait_setup+0x9d/0x550 [ 180.020516][ T6905] __futex_wait+0x193/0x2f0 [ 180.020550][ T6905] ? __pfx___futex_wait+0x10/0x10 [ 180.020581][ T6905] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 180.020614][ T6905] ? lockdep_hardirqs_on+0x7c/0x110 [ 180.020656][ T6905] ? __pfx_futex_wake_mark+0x10/0x10 [ 180.020696][ T6905] ? futex_private_hash_put+0x176/0x300 [ 180.020747][ T6905] ? futex_private_hash_put+0x18a/0x300 [ 180.020795][ T6905] futex_wait+0xe8/0x380 [ 180.020828][ T6905] ? __pfx_futex_wait+0x10/0x10 [ 180.020884][ T6905] do_futex+0x229/0x350 [ 180.020932][ T6905] ? __pfx_do_futex+0x10/0x10 [ 180.020980][ T6905] ? fput+0x9b/0xd0 [ 180.021026][ T6905] ? __sys_sendmsg+0x18c/0x220 [ 180.021077][ T6905] __x64_sys_futex+0x1e0/0x4c0 [ 180.021128][ T6905] ? __pfx___x64_sys_futex+0x10/0x10 [ 180.021219][ T6905] do_syscall_64+0xcd/0x4b0 [ 180.021263][ T6905] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.021296][ T6905] RIP: 0033:0x7fca2a18eec9 [ 180.021321][ T6905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 180.021352][ T6905] RSP: 002b:00007fca2b0b90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 180.021381][ T6905] RAX: ffffffffffffffda RBX: 00007fca2a3e6098 RCX: 00007fca2a18eec9 [ 180.021401][ T6905] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fca2a3e6098 [ 180.021419][ T6905] RBP: 00007fca2a3e6090 R08: 0000000000000000 R09: 0000000000000000 [ 180.021438][ T6905] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 180.021457][ T6905] R13: 00007fca2a3e6128 R14: 00007ffd2f3aeaf0 R15: 00007ffd2f3aebd8 [ 180.021498][ T6905] [ 180.789658][ T6914] usb usb27: usbfs: process 6914 (syz.0.203) did not claim interface 0 before use [ 180.862539][ T6914] FAULT_INJECTION: forcing a failure. [ 180.862539][ T6914] name failslab, interval 1, probability 0, space 0, times 0 [ 180.878485][ T6914] CPU: 1 UID: 0 PID: 6914 Comm: syz.0.203 Not tainted syzkaller #0 PREEMPT(full) [ 180.878516][ T6914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 180.878531][ T6914] Call Trace: [ 180.878538][ T6914] [ 180.878547][ T6914] dump_stack_lvl+0x16c/0x1f0 [ 180.878581][ T6914] should_fail_ex+0x512/0x640 [ 180.878616][ T6914] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 180.878646][ T6914] should_failslab+0xc2/0x120 [ 180.878681][ T6914] kmem_cache_alloc_noprof+0x75/0x6e0 [ 180.878707][ T6914] ? ptlock_alloc+0x1f/0x70 [ 180.878734][ T6914] ? ptlock_alloc+0x1f/0x70 [ 180.878754][ T6914] ptlock_alloc+0x1f/0x70 [ 180.878776][ T6914] pte_alloc_one+0x84/0x350 [ 180.878808][ T6914] do_pte_missing+0x1acf/0x3ba0 [ 180.878831][ T6914] ? __thp_vma_allowable_orders+0x1c8/0xcd0 [ 180.878871][ T6914] ? __pmd_alloc+0x64f/0x8b0 [ 180.878908][ T6914] __handle_mm_fault+0x1556/0x2aa0 [ 180.878935][ T6914] ? mt_find+0x3e2/0xa20 [ 180.878968][ T6914] ? __pfx___handle_mm_fault+0x10/0x10 [ 180.878989][ T6914] ? __pfx_mt_find+0x10/0x10 [ 180.879037][ T6914] ? find_vma+0xbf/0x140 [ 180.879066][ T6914] ? __pfx_find_vma+0x10/0x10 [ 180.879099][ T6914] handle_mm_fault+0x589/0xd10 [ 180.879132][ T6914] ? trace_raw_output_exceptions+0x141/0x150 [ 180.879161][ T6914] do_user_addr_fault+0x7a6/0x1370 [ 180.879191][ T6914] ? rcu_is_watching+0x12/0xc0 [ 180.879225][ T6914] exc_page_fault+0x5c/0xb0 [ 180.879251][ T6914] asm_exc_page_fault+0x26/0x30 [ 180.879274][ T6914] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 180.879312][ T6914] Code: c4 10 e9 04 24 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 cd 23 04 00 66 66 [ 180.879335][ T6914] RSP: 0018:ffffc9000aca7d70 EFLAGS: 00050202 [ 180.879353][ T6914] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000004 [ 180.879367][ T6914] RDX: fffff52001594fbc RSI: 0000000000000000 RDI: ffffc9000aca7de0 [ 180.879382][ T6914] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff52001594fbc [ 180.879396][ T6914] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000 [ 180.879410][ T6914] R13: ffffc9000aca7de0 R14: 0000000000000000 R15: 0000000000000000 [ 180.879439][ T6914] _copy_from_user+0x98/0xd0 [ 180.879477][ T6914] do_sock_getsockopt+0x3ca/0x440 [ 180.879505][ T6914] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 180.879529][ T6914] ? __fget_files+0x204/0x3c0 [ 180.879569][ T6914] __sys_getsockopt+0x123/0x1b0 [ 180.879611][ T6914] __x64_sys_getsockopt+0xbd/0x160 [ 180.879645][ T6914] ? do_syscall_64+0x91/0x4b0 [ 180.879673][ T6914] ? lockdep_hardirqs_on+0x7c/0x110 [ 180.879700][ T6914] do_syscall_64+0xcd/0x4b0 [ 180.879731][ T6914] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.879755][ T6914] RIP: 0033:0x7fca2a18eec9 [ 180.879773][ T6914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 180.879794][ T6914] RSP: 002b:00007fca2b0da038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 180.879815][ T6914] RAX: ffffffffffffffda RBX: 00007fca2a3e5fa0 RCX: 00007fca2a18eec9 [ 180.879830][ T6914] RDX: 000000000000006d RSI: 0000000000000084 RDI: 0000000000000002 [ 180.879844][ T6914] RBP: 00007fca2a211f91 R08: 0000000000000000 R09: 0000000000000000 [ 180.879858][ T6914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 180.879871][ T6914] R13: 00007fca2a3e6038 R14: 00007fca2a3e5fa0 R15: 00007ffd2f3aebd8 [ 180.879901][ T6914] [ 181.655707][ T30] audit: type=1800 audit(1759665629.319:4): pid=6914 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.203" name="dbroot" dev="configfs" ino=12430 res=0 errno=0 [ 182.734157][ T5849] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 183.178466][ T6938] capability: warning: `syz.1.208' uses deprecated v2 capabilities in a way that may be insecure [ 183.296411][ T6940] netlink: 28 bytes leftover after parsing attributes in process `syz.0.210'. [ 183.343424][ T6947] random: crng reseeded on system resumption [ 183.409729][ T6932] netlink: 4 bytes leftover after parsing attributes in process `syz.2.207'. [ 183.505853][ T6947] random: crng reseeded on system resumption [ 186.381365][ T6979] random: crng reseeded on system resumption [ 186.701372][ T6987] netlink: 8 bytes leftover after parsing attributes in process `syz.1.218'. [ 187.097455][ T6994] FAULT_INJECTION: forcing a failure. [ 187.097455][ T6994] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 187.177880][ T6994] CPU: 0 UID: 0 PID: 6994 Comm: syz.1.220 Not tainted syzkaller #0 PREEMPT(full) [ 187.177914][ T6994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 187.177928][ T6994] Call Trace: [ 187.177935][ T6994] [ 187.177944][ T6994] dump_stack_lvl+0x16c/0x1f0 [ 187.177978][ T6994] should_fail_ex+0x512/0x640 [ 187.178016][ T6994] should_fail_alloc_page+0xe7/0x130 [ 187.178053][ T6994] prepare_alloc_pages+0x3c2/0x610 [ 187.178091][ T6994] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 187.178121][ T6994] ? __pfx_stack_trace_save+0x10/0x10 [ 187.178154][ T6994] ? stack_depot_save_flags+0x29/0x9c0 [ 187.178189][ T6994] ? find_held_lock+0x2b/0x80 [ 187.178220][ T6994] ? kasan_save_stack+0x42/0x60 [ 187.178248][ T6994] ? kasan_save_stack+0x33/0x60 [ 187.178277][ T6994] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 187.178302][ T6994] ? alloc_vmap_area+0xdcf/0x29e0 [ 187.178333][ T6994] ? __vmalloc_node_range_noprof+0x271/0x1480 [ 187.178369][ T6994] ? copy_process+0x2c77/0x76a0 [ 187.178401][ T6994] ? kernel_clone+0xfc/0x930 [ 187.178432][ T6994] ? __do_sys_clone+0xce/0x120 [ 187.178463][ T6994] ? do_syscall_64+0xcd/0x4b0 [ 187.178490][ T6994] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.178526][ T6994] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 187.178554][ T6994] ? policy_nodemask+0xea/0x4e0 [ 187.178589][ T6994] alloc_pages_mpol+0x1fb/0x550 [ 187.178624][ T6994] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 187.178667][ T6994] alloc_pages_noprof+0x131/0x390 [ 187.178701][ T6994] get_free_pages_noprof+0x10/0xb0 [ 187.178740][ T6994] kasan_populate_vmalloc+0x9f/0x2d0 [ 187.178768][ T6994] ? alloc_vmap_area+0x8b5/0x29e0 [ 187.178805][ T6994] alloc_vmap_area+0x960/0x29e0 [ 187.178849][ T6994] ? __pfx_alloc_vmap_area+0x10/0x10 [ 187.178890][ T6994] __get_vm_area_node+0x1ca/0x330 [ 187.178930][ T6994] __vmalloc_node_range_noprof+0x271/0x1480 [ 187.178967][ T6994] ? kernel_clone+0xfc/0x930 [ 187.179009][ T6994] ? kernel_clone+0xfc/0x930 [ 187.179049][ T6994] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 187.179092][ T6994] ? rcu_is_watching+0x12/0xc0 [ 187.179123][ T6994] ? kernel_clone+0xfc/0x930 [ 187.179155][ T6994] __vmalloc_node_noprof+0xad/0xf0 [ 187.179191][ T6994] ? kernel_clone+0xfc/0x930 [ 187.179226][ T6994] copy_process+0x2c77/0x76a0 [ 187.179260][ T6994] ? __pfx___futex_wait+0x10/0x10 [ 187.179282][ T6994] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 187.179307][ T6994] ? lockdep_hardirqs_on+0x7c/0x110 [ 187.179342][ T6994] ? __pfx_copy_process+0x10/0x10 [ 187.179374][ T6994] ? futex_private_hash_put+0x176/0x300 [ 187.179411][ T6994] ? futex_private_hash_put+0x18a/0x300 [ 187.179449][ T6994] kernel_clone+0xfc/0x930 [ 187.179484][ T6994] ? __pfx_kernel_clone+0x10/0x10 [ 187.179534][ T6994] __do_sys_clone+0xce/0x120 [ 187.179567][ T6994] ? __pfx___do_sys_clone+0x10/0x10 [ 187.179614][ T6994] ? xfd_validate_state+0x61/0x180 [ 187.179635][ T6994] ? __pfx_ksys_write+0x10/0x10 [ 187.179671][ T6994] do_syscall_64+0xcd/0x4b0 [ 187.179703][ T6994] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.179731][ T6994] RIP: 0033:0x7ffb1c18eec9 [ 187.179750][ T6994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 187.179772][ T6994] RSP: 002b:00007ffb1a3f5fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 187.179794][ T6994] RAX: ffffffffffffffda RBX: 00007ffb1c3e5fa0 RCX: 00007ffb1c18eec9 [ 187.179809][ T6994] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011 [ 187.179823][ T6994] RBP: 00007ffb1c211f91 R08: 0000000000000000 R09: 0000000000000000 [ 187.179837][ T6994] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 187.179851][ T6994] R13: 00007ffb1c3e6038 R14: 00007ffb1c3e5fa0 R15: 00007ffd8a4a0d28 [ 187.179880][ T6994] [ 187.180089][ T6994] syz.1.220: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) [ 187.415282][ T6984] netlink: 5 bytes leftover after parsing attributes in process `syz.2.216'. [ 187.624117][ T6994] ,cpuset=/,mems_allowed=0-1 [ 187.630897][ T6994] CPU: 1 UID: 0 PID: 6994 Comm: syz.1.220 Not tainted syzkaller #0 PREEMPT(full) [ 187.630938][ T6994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 187.630956][ T6994] Call Trace: [ 187.630966][ T6994] [ 187.630978][ T6994] dump_stack_lvl+0x16c/0x1f0 [ 187.631023][ T6994] warn_alloc+0x248/0x3a0 [ 187.631063][ T6994] ? __pfx_warn_alloc+0x10/0x10 [ 187.631099][ T6994] ? kfree+0x2b8/0x6d0 [ 187.631124][ T6994] ? __get_vm_area_node+0x2cd/0x330 [ 187.631177][ T6994] ? __get_vm_area_node+0x2cd/0x330 [ 187.631223][ T6994] ? __get_vm_area_node+0x208/0x330 [ 187.631282][ T6994] __vmalloc_node_range_noprof+0xaf5/0x1480 [ 187.631348][ T6994] ? kernel_clone+0xfc/0x930 [ 187.631438][ T6994] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 187.631503][ T6994] ? rcu_is_watching+0x12/0xc0 [ 187.631551][ T6994] ? kernel_clone+0xfc/0x930 [ 187.631598][ T6994] __vmalloc_node_noprof+0xad/0xf0 [ 187.631651][ T6994] ? kernel_clone+0xfc/0x930 [ 187.631704][ T6994] copy_process+0x2c77/0x76a0 [ 187.631752][ T6994] ? __pfx___futex_wait+0x10/0x10 [ 187.631785][ T6994] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 187.631822][ T6994] ? lockdep_hardirqs_on+0x7c/0x110 [ 187.631874][ T6994] ? __pfx_copy_process+0x10/0x10 [ 187.631925][ T6994] ? futex_private_hash_put+0x176/0x300 [ 187.631978][ T6994] ? futex_private_hash_put+0x18a/0x300 [ 187.632033][ T6994] kernel_clone+0xfc/0x930 [ 187.632085][ T6994] ? __pfx_kernel_clone+0x10/0x10 [ 187.632159][ T6994] __do_sys_clone+0xce/0x120 [ 187.632206][ T6994] ? __pfx___do_sys_clone+0x10/0x10 [ 187.632274][ T6994] ? xfd_validate_state+0x61/0x180 [ 187.632303][ T6994] ? __pfx_ksys_write+0x10/0x10 [ 187.632355][ T6994] do_syscall_64+0xcd/0x4b0 [ 187.632401][ T6994] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.632443][ T6994] RIP: 0033:0x7ffb1c18eec9 [ 187.632469][ T6994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 187.632500][ T6994] RSP: 002b:00007ffb1a3f5fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 187.632529][ T6994] RAX: ffffffffffffffda RBX: 00007ffb1c3e5fa0 RCX: 00007ffb1c18eec9 [ 187.632550][ T6994] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011 [ 187.632570][ T6994] RBP: 00007ffb1c211f91 R08: 0000000000000000 R09: 0000000000000000 [ 187.632589][ T6994] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 187.632609][ T6994] R13: 00007ffb1c3e6038 R14: 00007ffb1c3e5fa0 R15: 00007ffd8a4a0d28 [ 187.632652][ T6994] [ 187.632663][ T6994] Mem-Info: [ 188.155760][ T6994] active_anon:57955 inactive_anon:0 isolated_anon:0 [ 188.155760][ T6994] active_file:17874 inactive_file:40343 isolated_file:0 [ 188.155760][ T6994] unevictable:768 dirty:77 writeback:0 [ 188.155760][ T6994] slab_reclaimable:10794 slab_unreclaimable:92384 [ 188.155760][ T6994] mapped:53540 shmem:51089 pagetables:1273 [ 188.155760][ T6994] sec_pagetables:0 bounce:0 [ 188.155760][ T6994] kernel_misc_reclaimable:0 [ 188.155760][ T6994] free:1281963 free_pcp:10454 free_cma:0 [ 188.201239][ C0] vkms_vblank_simulate: vblank timer overrun [ 188.254812][ T6994] Node 0 active_anon:232676kB inactive_anon:32kB active_file:71428kB inactive_file:161128kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:214116kB dirty:412kB writeback:0kB shmem:204048kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11664kB pagetables:5024kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 188.335575][ T6994] Node 1 active_anon:0kB inactive_anon:0kB active_file:68kB inactive_file:244kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:112kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:136kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 188.365865][ C0] vkms_vblank_simulate: vblank timer overrun [ 188.508878][ T6994] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 188.538997][ C0] vkms_vblank_simulate: vblank timer overrun [ 188.601824][ T6994] lowmem_reserve[]: 0 2488 2488 2488 2488 [ 188.608273][ T6994] Node 0 DMA32 free:1187760kB boost:0kB min:34152kB low:42688kB high:51224kB reserved_highatomic:0KB free_highatomic:0KB active_anon:247888kB inactive_anon:16kB active_file:71428kB inactive_file:161128kB unevictable:1536kB writepending:312kB zspages:0kB present:3129332kB managed:2547976kB mlocked:0kB bounce:0kB free_pcp:36428kB local_pcp:18348kB free_cma:0kB [ 188.641846][ C0] vkms_vblank_simulate: vblank timer overrun [ 188.731043][ T6994] lowmem_reserve[]: 0 0 0 0 0 [ 188.741385][ T6994] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:108kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 188.770749][ C0] vkms_vblank_simulate: vblank timer overrun [ 188.800002][ T6994] lowmem_reserve[]: 0 0 0 0 0 [ 188.813293][ T6994] Node 1 Normal free:3910108kB boost:0kB min:55748kB low:69684kB high:83620kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:68kB inactive_file:244kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 188.852246][ C0] vkms_vblank_simulate: vblank timer overrun [ 188.960765][ T6994] lowmem_reserve[]: 0 0 0 0 0 [ 188.970919][ T6994] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 189.006549][ T6994] Node 0 DMA32: 1207*4kB (U) 841*8kB (UE) 355*16kB (UM) 121*32kB (UME) 91*64kB (UE) 7*128kB (UM) 39*256kB (U) 21*512kB (UME) 11*1024kB (UE) 3*2048kB (UE) 270*4096kB (UM) = 1171892kB [ 189.029684][ T6994] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 189.054885][ T6994] Node 1 Normal: 211*4kB (UME) 56*8kB (UME) 47*16kB (UME) 241*32kB (UME) 99*64kB (UME) 34*128kB (UME) 16*256kB (UE) 7*512kB (UME) 3*1024kB (UM) 2*2048kB (UE) 946*4096kB (UM) = 3910108kB [ 189.073892][ T6994] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 189.083660][ T6994] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 189.093449][ T6994] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 189.103150][ T6994] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 189.113159][ T6994] 118205 total pagecache pages [ 189.118370][ T6994] 4 pages in swap cache [ 189.122573][ T6994] Free swap = 124996kB [ 189.143948][ T6994] Total swap = 124996kB [ 189.159393][ T6994] 2097051 pages RAM [ 189.175783][ T6994] 0 pages HighMem/MovableOnly [ 189.191911][ T6994] 428415 pages reserved [ 189.214382][ T6994] 0 pages cma reserved [ 189.654386][ T5849] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 189.801350][ T7013] FAULT_INJECTION: forcing a failure. [ 189.801350][ T7013] name failslab, interval 1, probability 0, space 0, times 0 [ 189.815655][ T7013] CPU: 0 UID: 0 PID: 7013 Comm: syz.1.223 Not tainted syzkaller #0 PREEMPT(full) [ 189.815686][ T7013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 189.815699][ T7013] Call Trace: [ 189.815707][ T7013] [ 189.815715][ T7013] dump_stack_lvl+0x16c/0x1f0 [ 189.815748][ T7013] should_fail_ex+0x512/0x640 [ 189.815781][ T7013] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 189.815814][ T7013] should_failslab+0xc2/0x120 [ 189.815847][ T7013] __kvmalloc_node_noprof+0x141/0x9c0 [ 189.815878][ T7013] ? traverse.part.0.constprop.0+0x397/0x650 [ 189.815909][ T7013] ? traverse.part.0.constprop.0+0x397/0x650 [ 189.815930][ T7013] ? find_held_lock+0x2b/0x80 [ 189.815956][ T7013] traverse.part.0.constprop.0+0x397/0x650 [ 189.815980][ T7013] ? aa_file_perm+0x28f/0x12e0 [ 189.816014][ T7013] seq_read_iter+0x93c/0x12d0 [ 189.816040][ T7013] ? __pfx_aa_file_perm+0x10/0x10 [ 189.816072][ T7013] seq_read+0x3a3/0x570 [ 189.816093][ T7013] ? __pfx_seq_read+0x10/0x10 [ 189.816130][ T7013] ? rw_verify_area+0xcf/0x6c0 [ 189.816153][ T7013] ? __pfx_seq_read+0x10/0x10 [ 189.816174][ T7013] vfs_read+0x1e1/0xcf0 [ 189.816212][ T7013] ? __pfx___mutex_lock+0x10/0x10 [ 189.816241][ T7013] ? __pfx_vfs_read+0x10/0x10 [ 189.816276][ T7013] ? __fget_files+0x20e/0x3c0 [ 189.816309][ T7013] ksys_read+0x12a/0x250 [ 189.816336][ T7013] ? __pfx_ksys_read+0x10/0x10 [ 189.816371][ T7013] do_syscall_64+0xcd/0x4b0 [ 189.816402][ T7013] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 189.816425][ T7013] RIP: 0033:0x7ffb1c18eec9 [ 189.816443][ T7013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 189.816464][ T7013] RSP: 002b:00007ffb1a3d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 189.816485][ T7013] RAX: ffffffffffffffda RBX: 00007ffb1c3e6090 RCX: 00007ffb1c18eec9 [ 189.816500][ T7013] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000003 [ 189.816513][ T7013] RBP: 00007ffb1a3d5090 R08: 0000000000000000 R09: 0000000000000000 [ 189.816527][ T7013] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 189.816540][ T7013] R13: 00007ffb1c3e6128 R14: 00007ffb1c3e6090 R15: 00007ffd8a4a0d28 [ 189.816569][ T7013] [ 190.043264][ C0] vkms_vblank_simulate: vblank timer overrun [ 192.939926][ T7063] netlink: 'syz.1.237': attribute type 4 has an invalid length. [ 192.986644][ T7063] netlink: 314 bytes leftover after parsing attributes in process `syz.1.237'. [ 194.266894][ T7084] netlink: 152 bytes leftover after parsing attributes in process `syz.2.243'. [ 195.775947][ T7114] FAULT_INJECTION: forcing a failure. [ 195.775947][ T7114] name failslab, interval 1, probability 0, space 0, times 0 [ 195.789379][ T7114] CPU: 1 UID: 0 PID: 7114 Comm: syz.2.249 Not tainted syzkaller #0 PREEMPT(full) [ 195.789423][ T7114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 195.789443][ T7114] Call Trace: [ 195.789452][ T7114] [ 195.789463][ T7114] dump_stack_lvl+0x16c/0x1f0 [ 195.789503][ T7114] should_fail_ex+0x512/0x640 [ 195.789546][ T7114] ? fs_reclaim_acquire+0xae/0x150 [ 195.789596][ T7114] should_failslab+0xc2/0x120 [ 195.789637][ T7114] __kmalloc_noprof+0xdd/0x880 [ 195.789666][ T7114] ? tomoyo_encode2+0x100/0x3e0 [ 195.789701][ T7114] ? tomoyo_encode2+0x100/0x3e0 [ 195.789728][ T7114] tomoyo_encode2+0x100/0x3e0 [ 195.789762][ T7114] tomoyo_encode+0x29/0x50 [ 195.789790][ T7114] tomoyo_realpath_from_path+0x18f/0x6e0 [ 195.789831][ T7114] tomoyo_check_open_permission+0x2ab/0x3c0 [ 195.789879][ T7114] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 195.789958][ T7114] ? do_raw_spin_lock+0x12c/0x2b0 [ 195.789997][ T7114] tomoyo_file_open+0x6b/0x90 [ 195.790034][ T7114] security_file_open+0x84/0x1e0 [ 195.790063][ T7114] do_dentry_open+0x596/0x1530 [ 195.790108][ T7114] vfs_open+0x82/0x3f0 [ 195.790154][ T7114] path_openat+0x1de4/0x2cb0 [ 195.790197][ T7114] ? __pfx_path_openat+0x10/0x10 [ 195.790239][ T7114] do_filp_open+0x20b/0x470 [ 195.790272][ T7114] ? __pfx_do_filp_open+0x10/0x10 [ 195.790329][ T7114] ? alloc_fd+0x471/0x7d0 [ 195.790368][ T7114] do_sys_openat2+0x11b/0x1d0 [ 195.790411][ T7114] ? __pfx_do_sys_openat2+0x10/0x10 [ 195.790468][ T7114] __x64_sys_openat+0x174/0x210 [ 195.790512][ T7114] ? __pfx___x64_sys_openat+0x10/0x10 [ 195.790592][ T7114] do_syscall_64+0xcd/0x4b0 [ 195.790631][ T7114] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 195.790660][ T7114] RIP: 0033:0x7f5cdcb8eec9 [ 195.790683][ T7114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 195.790709][ T7114] RSP: 002b:00007f5cdd9b0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 195.790735][ T7114] RAX: ffffffffffffffda RBX: 00007f5cdcde6270 RCX: 00007f5cdcb8eec9 [ 195.790753][ T7114] RDX: 0000000000084100 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 195.790770][ T7114] RBP: 00007f5cdcc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 195.790787][ T7114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 195.790803][ T7114] R13: 00007f5cdcde6308 R14: 00007f5cdcde6270 R15: 00007ffe1720fcb8 [ 195.790840][ T7114] [ 195.790875][ T7114] ERROR: Out of memory at tomoyo_realpath_from_path. [ 197.027970][ T7146] warning: `syz.2.256' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 197.672677][ T7159] device-mapper: ioctl: Invalid data size in the ioctl structure: 0 [ 199.024542][ T7184] futex_wake_op: syz.2.261 tries to shift op by -9; fix this program [ 199.032967][ T7183] futex_wake_op: syz.2.261 tries to shift op by -9; fix this program [ 200.588280][ T7212] capability: warning: `syz.2.262' uses 32-bit capabilities (legacy support in use) [ 200.750733][ T7214] random: crng reseeded on system resumption [ 201.060697][ T7216] HfR: entered promiscuous mode [ 201.727001][ T7232] nbd: nbd7 already in use [ 203.108320][ T7254] futex_wake_op: syz.2.279 tries to shift op by -2048; fix this program [ 203.117391][ T7254] futex_wake_op: syz.2.279 tries to shift op by -2048; fix this program [ 203.978099][ T7277] random: crng reseeded on system resumption [ 204.818612][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 204.825553][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 205.141157][ T7287] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 206.083992][ T7308] FAULT_INJECTION: forcing a failure. [ 206.083992][ T7308] name failslab, interval 1, probability 0, space 0, times 0 [ 206.114097][ T7308] CPU: 1 UID: 0 PID: 7308 Comm: syz.3.292 Not tainted syzkaller #0 PREEMPT(full) [ 206.114141][ T7308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 206.114159][ T7308] Call Trace: [ 206.114170][ T7308] [ 206.114181][ T7308] dump_stack_lvl+0x16c/0x1f0 [ 206.114229][ T7308] should_fail_ex+0x512/0x640 [ 206.114265][ T7308] ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0 [ 206.114302][ T7308] should_failslab+0xc2/0x120 [ 206.114336][ T7308] __kmalloc_node_track_caller_noprof+0xde/0x8a0 [ 206.114370][ T7308] ? __request_module+0x2cb/0x690 [ 206.114400][ T7308] ? kstrdup+0x53/0x100 [ 206.114425][ T7308] kstrdup+0x53/0x100 [ 206.114452][ T7308] __request_module+0x2cb/0x690 [ 206.114477][ T7308] ? __pfx___request_module+0x10/0x10 [ 206.114523][ T7308] ? find_held_lock+0x2b/0x80 [ 206.114560][ T7308] inet6_create+0xd78/0x12b0 [ 206.114588][ T7308] ? inet6_create+0x7f/0x12b0 [ 206.114616][ T7308] __sock_create+0x338/0x8d0 [ 206.114649][ T7308] __sys_socket+0x14d/0x260 [ 206.114677][ T7308] ? __pfx___sys_socket+0x10/0x10 [ 206.114704][ T7308] ? xfd_validate_state+0x61/0x180 [ 206.114724][ T7308] ? __pfx___do_sys_prctl+0x10/0x10 [ 206.114756][ T7308] __x64_sys_socket+0x72/0xb0 [ 206.114783][ T7308] ? lockdep_hardirqs_on+0x7c/0x110 [ 206.114810][ T7308] do_syscall_64+0xcd/0x4b0 [ 206.114841][ T7308] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 206.114865][ T7308] RIP: 0033:0x7fada338eec9 [ 206.114884][ T7308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 206.114907][ T7308] RSP: 002b:00007fada4231038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 206.114928][ T7308] RAX: ffffffffffffffda RBX: 00007fada35e5fa0 RCX: 00007fada338eec9 [ 206.114944][ T7308] RDX: 0000000000000100 RSI: 0000000000000001 RDI: 000000000000000a [ 206.114958][ T7308] RBP: 00007fada3411f91 R08: 0000000000000000 R09: 0000000000000000 [ 206.114972][ T7308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 206.114986][ T7308] R13: 00007fada35e6038 R14: 00007fada35e5fa0 R15: 00007ffdbe4ecc38 [ 206.115016][ T7308] [ 206.333738][ C1] vkms_vblank_simulate: vblank timer overrun [ 207.847718][ T7328] random: crng reseeded on system resumption [ 211.969993][ T7375] usb usb27: usbfs: process 7375 (syz.0.308) did not claim interface 0 before use [ 212.114411][ T7377] zswap: compressor not available [ 213.025719][ T7385] tty tty17: ldisc open failed (-12), clearing slot 16 [ 213.184542][ T5849] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 214.219491][ T7420] netlink: 20 bytes leftover after parsing attributes in process `syz.3.314'. [ 214.843845][ T7431] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–Í [ 218.217256][ T7463] netlink: 8 bytes leftover after parsing attributes in process `syz.1.323'. [ 219.210173][ T30] audit: type=1804 audit(4294967307.080:5): pid=7476 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.326" name="/newroot/72/file0" dev="tmpfs" ino=389 res=1 errno=0 [ 219.216139][ T7476] netlink: 'syz.2.326': attribute type 8 has an invalid length. [ 219.961671][ T7404] ------------[ cut here ]------------ [ 219.967461][ T7404] WARNING: CPU: 1 PID: 7404 at kernel/trace/trace.c:8604 tracing_buffers_mmap_close+0xdd/0x130 [ 219.978104][ T7404] Modules linked in: [ 219.982540][ T7404] CPU: 1 UID: 0 PID: 7404 Comm: syz.3.312 Not tainted syzkaller #0 PREEMPT(full) [ 219.992104][ T7404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 220.004094][ T7404] RIP: 0010:tracing_buffers_mmap_close+0xdd/0x130 [ 220.010590][ T7404] Code: 75 46 48 8b 7b 08 e8 e2 96 ff ff 31 ff 89 c3 89 c6 e8 07 4d fb ff 85 db 75 0a 48 83 c4 08 5b e9 b9 51 fb ff e8 b4 51 fb ff 90 <0f> 0b 90 48 83 c4 08 5b e9 a6 51 fb ff e8 d1 ce 62 00 eb 87 e8 fa [ 220.030304][ T7404] RSP: 0018:ffffc900185ef9c0 EFLAGS: 00010293 [ 220.036432][ T7404] RAX: 0000000000000000 RBX: 00000000ffffffed RCX: ffffffff81bf4119 [ 220.044441][ T7404] RDX: ffff88805cf8dac0 RSI: ffffffff81bf412c RDI: 0000000000000005 [ 220.052428][ T7404] RBP: ffffffff81bf4050 R08: 0000000000000005 R09: 0000000000000000 [ 220.060498][ T7404] R10: 00000000ffffffed R11: 0000000000000000 R12: ffff888027f30048 [ 220.068537][ T7404] R13: dffffc0000000000 R14: ffffc900185efa48 R15: 0000000000000000 [ 220.076597][ T7404] FS: 0000000000000000(0000) GS:ffff888124f6f000(0000) knlGS:0000000000000000 [ 220.085760][ T7404] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 220.092364][ T7404] CR2: 0000001b32107ff8 CR3: 0000000075a54000 CR4: 00000000003526f0 [ 220.100578][ T7404] Call Trace: [ 220.103875][ T7404] [ 220.106844][ T7404] remove_vma+0x85/0x160 [ 220.111105][ T7404] exit_mmap+0x50a/0xb90 [ 220.115418][ T7404] ? __pfx_exit_mmap+0x10/0x10 [ 220.120215][ T7404] ? __lock_acquire+0xb97/0x1ce0 [ 220.125221][ T7404] ? arch_uprobe_clear_state+0x16/0x150 [ 220.130797][ T7404] __mmput+0x12a/0x410 [ 220.135408][ T7404] mmput+0x62/0x70 [ 220.139203][ T7404] do_exit+0x7c7/0x2bf0 [ 220.143409][ T7404] ? proc_coredump_connector+0x2d1/0x4f0 [ 220.149259][ T7404] ? __pfx_do_exit+0x10/0x10 [ 220.153905][ T7404] do_group_exit+0xd3/0x2a0 [ 220.158478][ T7404] get_signal+0x2671/0x26d0 [ 220.163021][ T7404] ? __pfx_get_signal+0x10/0x10 [ 220.167927][ T7404] ? rcu_is_watching+0x12/0xc0 [ 220.172742][ T7404] arch_do_signal_or_restart+0x8f/0x790 [ 220.178755][ T7404] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 220.185170][ T7404] irqentry_exit_to_user_mode+0x141/0x2b0 [ 220.190924][ T7404] asm_exc_page_fault+0x26/0x30 [ 220.195945][ T7404] RIP: 0033:0x5fff [ 220.199685][ T7404] Code: Unable to access opcode bytes at 0x5fd5. [ 220.206042][ T7404] RSP: 002b:000000000000000a EFLAGS: 00010202 [ 220.212128][ T7404] RAX: 0000000000000000 RBX: 00007fada35e5fa0 RCX: 00007fada338eec9 [ 220.220148][ T7404] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46 [ 220.228171][ T7404] RBP: 00007fada3411f91 R08: 0000000000000002 R09: 0000000000000000 [ 220.236287][ T7404] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 220.244319][ T7404] R13: 00007fada35e6038 R14: 00007fada35e5fa0 R15: 00007ffdbe4ecc38 [ 220.252406][ T7404] [ 220.255483][ T7404] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 220.262791][ T7404] CPU: 1 UID: 0 PID: 7404 Comm: syz.3.312 Not tainted syzkaller #0 PREEMPT(full) [ 220.272020][ T7404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 220.282110][ T7404] Call Trace: [ 220.285409][ T7404] [ 220.288362][ T7404] dump_stack_lvl+0x3d/0x1f0 [ 220.292990][ T7404] vpanic+0x640/0x6f0 [ 220.297027][ T7404] ? tracing_buffers_mmap_close+0xdd/0x130 [ 220.302879][ T7404] panic+0xca/0xd0 [ 220.306626][ T7404] ? __pfx_panic+0x10/0x10 [ 220.311078][ T7404] ? check_panic_on_warn+0x1f/0xb0 [ 220.316220][ T7404] check_panic_on_warn+0xab/0xb0 [ 220.321190][ T7404] __warn+0xf6/0x3c0 [ 220.325111][ T7404] ? tracing_buffers_mmap_close+0xdd/0x130 [ 220.330962][ T7404] report_bug+0x3c3/0x580 [ 220.335326][ T7404] ? tracing_buffers_mmap_close+0xdd/0x130 [ 220.341176][ T7404] handle_bug+0x184/0x210 [ 220.345544][ T7404] exc_invalid_op+0x17/0x50 [ 220.350085][ T7404] asm_exc_invalid_op+0x1a/0x20 [ 220.354965][ T7404] RIP: 0010:tracing_buffers_mmap_close+0xdd/0x130 [ 220.361422][ T7404] Code: 75 46 48 8b 7b 08 e8 e2 96 ff ff 31 ff 89 c3 89 c6 e8 07 4d fb ff 85 db 75 0a 48 83 c4 08 5b e9 b9 51 fb ff e8 b4 51 fb ff 90 <0f> 0b 90 48 83 c4 08 5b e9 a6 51 fb ff e8 d1 ce 62 00 eb 87 e8 fa [ 220.381056][ T7404] RSP: 0018:ffffc900185ef9c0 EFLAGS: 00010293 [ 220.387153][ T7404] RAX: 0000000000000000 RBX: 00000000ffffffed RCX: ffffffff81bf4119 [ 220.395153][ T7404] RDX: ffff88805cf8dac0 RSI: ffffffff81bf412c RDI: 0000000000000005 [ 220.403148][ T7404] RBP: ffffffff81bf4050 R08: 0000000000000005 R09: 0000000000000000 [ 220.411142][ T7404] R10: 00000000ffffffed R11: 0000000000000000 R12: ffff888027f30048 [ 220.419141][ T7404] R13: dffffc0000000000 R14: ffffc900185efa48 R15: 0000000000000000 [ 220.427143][ T7404] ? __pfx_tracing_buffers_mmap_close+0x10/0x10 [ 220.433436][ T7404] ? tracing_buffers_mmap_close+0xc9/0x130 [ 220.439287][ T7404] ? tracing_buffers_mmap_close+0xdc/0x130 [ 220.445138][ T7404] remove_vma+0x85/0x160 [ 220.449409][ T7404] exit_mmap+0x50a/0xb90 [ 220.453694][ T7404] ? __pfx_exit_mmap+0x10/0x10 [ 220.458530][ T7404] ? __lock_acquire+0xb97/0x1ce0 [ 220.463524][ T7404] ? arch_uprobe_clear_state+0x16/0x150 [ 220.469105][ T7404] __mmput+0x12a/0x410 [ 220.473218][ T7404] mmput+0x62/0x70 [ 220.477024][ T7404] do_exit+0x7c7/0x2bf0 [ 220.481210][ T7404] ? proc_coredump_connector+0x2d1/0x4f0 [ 220.486883][ T7404] ? __pfx_do_exit+0x10/0x10 [ 220.491515][ T7404] do_group_exit+0xd3/0x2a0 [ 220.496062][ T7404] get_signal+0x2671/0x26d0 [ 220.500616][ T7404] ? __pfx_get_signal+0x10/0x10 [ 220.505507][ T7404] ? rcu_is_watching+0x12/0xc0 [ 220.510329][ T7404] arch_do_signal_or_restart+0x8f/0x790 [ 220.515939][ T7404] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 220.522212][ T7404] irqentry_exit_to_user_mode+0x141/0x2b0 [ 220.527990][ T7404] asm_exc_page_fault+0x26/0x30 [ 220.532874][ T7404] RIP: 0033:0x5fff [ 220.536639][ T7404] Code: Unable to access opcode bytes at 0x5fd5. [ 220.542975][ T7404] RSP: 002b:000000000000000a EFLAGS: 00010202 [ 220.549085][ T7404] RAX: 0000000000000000 RBX: 00007fada35e5fa0 RCX: 00007fada338eec9 [ 220.557077][ T7404] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46 [ 220.565088][ T7404] RBP: 00007fada3411f91 R08: 0000000000000002 R09: 0000000000000000 [ 220.573086][ T7404] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 220.581093][ T7404] R13: 00007fada35e6038 R14: 00007fada35e5fa0 R15: 00007ffdbe4ecc38 [ 220.589110][ T7404] [ 220.592448][ T7404] Kernel Offset: disabled [ 220.596790][ T7404] Rebooting in 86400 seconds..