last executing test programs: 5.30455768s ago: executing program 1 (id=599): r0 = openat$auto_gpiolib_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) pread64$auto(r0, 0x0, 0x1, 0x5) 5.110851972s ago: executing program 1 (id=602): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_SET_SAR_SPECS(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000480)={0x1c, r1, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@NL80211_ATTR_BEACON_HEAD={0x6, 0xe, "1c36"}]}, 0x1c}, 0x1, 0x0, 0x0, 0x6040000}, 0x20008810) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x1a, 0x0, 0xfffffffffffffffc, 0x696b}, 0xffffffff}, 0x1, 0x9) r2 = socket(0xa, 0x5, 0x84) sendto$auto(r2, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c) 4.432710916s ago: executing program 1 (id=605): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0) ioctl$auto_PROCMAP_QUERY(r0, 0xc0686611, &(0x7f0000000080)={0x102, 0x34, 0x7fff, 0x5, 0x100, 0x1, 0x4000000000c, 0x101, 0x4, 0x7f93, 0x2, 0x0, 0x7ff, 0x0, 0x9}) (async) r1 = fsopen$auto(0x0, 0x1) fsconfig$auto(r1, 0x8, 0x0, 0x0, 0x0) (async) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff) r3 = setfsuid$auto(0x0) setuid$auto(r3) r4 = openat$auto_page_owner_stack_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000140), 0x2040, 0x0) (async) r5 = syz_clone(0x10000000, &(0x7f0000000180)="7a46e3a3e9b9950c", 0x8, &(0x7f00000001c0), &(0x7f0000000200), &(0x7f0000000240)="6121b98c9893d7b45370e94fe6cb9a28fdcd3196c4924ae59ca75b86ce32a19f7b8e3a9e36e76424a41e51756b4c1bfac1a8df1b048bb639af1f8f238faf3af9ff39cdb0b48ff1bee357a934d2d85dd33e5f8b9da132103d6d44e7bc6cccbdc70d25c372b5a6c966a008e42ae27855bce764a5c517d5d67682b88d7c2d2b6a170f85") sendmsg$auto_NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r1, &(0x7f00000016c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000001680)={&(0x7f0000000300)={0x1360, r2, 0x100, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_TSID={0x5, 0xd2, 0x5f}, @NL80211_ATTR_WOWLAN_TRIGGERS={0x133f, 0x75, 0x0, 0x1, [@typed={0x14, 0x85, 0x0, 0x0, @str='/proc/self/maps\x00'}, @nested={0x56, 0x7b, 0x0, 0x1, [@generic="0064b3a00ba40c31b510265b23488bf7a6f0a0ad7c1b2de478980528745e24e3ea4fbe37e84c2e5e86aad6fd5efcce164d2b5d46f5f9be1b60b7aa0f1b5e17081fe6ebf3cccd0e876b0f5a2eb7d2c27b3504"]}, @generic="167573e4b978befeac6f0e1eeb577671bb6affcd9e2af03292b43143bfa0c6575e0a6317fef102eb8c08ad9f99462ec31e4a2427bdfd4be5868a618b34d1c34256a3a9d0611a11f1c3850b225af0751a6b1f5057268dc59d6829caa0c6edb597265fadab1320d27d18f81052767256c5", @typed={0x8, 0xa0, 0x0, 0x0, @uid=r3}, @nested={0x201, 0x32, 0x0, 0x1, [@generic="0e5803286580400c3019b3dbfa07de88b2e9aef05bb21ead8978a9fd55d917713990c31993bab91d8876b90996b49988eed0ccc4a1864b6337060147d057aa331c1bda0aaa87add68db5fbfa9a084e02d5668a08eab6f6e7b23ef0aa03243ed9530996ebae19e9a57a6ee9c76e953d8603b5cf5d993451c3f12fde2d3122bdf97c7b3fc2a85f416a091ee56dd76f7e0385bfb138b20193d9b3a8c52a7c8cccc1128160199347f1a61a4afd76eedfeaf5a3871666cf0905b226b3fac339dbfb98278992e68bf0f120d4b94367e57f1cf6a46287726de631f4f26dacad6cf7515d415601f280c2024a0d364712f6f96b49edfa2a9b4c35f4e054", @typed={0x8, 0x32, 0x0, 0x0, @fd=r4}, @typed={0x5, 0xff, 0x0, 0x0, @str='\x00'}, @generic="63611feb883444469ef56d6e4f7a1d1b0eced6670d32ef1ec4f0511e59a6f49c39e820672ae76f87d289e4706b80084585cdcf052bfce1985308d1ad2356131d518c0fb34769fc394f660cd8fee392491bfae9c84815fb15bd8286964b075da83ccd330bc1efa050f7a4e1c897afdc4da5851f4329b6e984a68860463c61006644fe6cd4616de1d70264ad1bc448a372998c6dc052a1c5ae75db80d561bf9b265d2cb99216b473fdf4827fbcc538ceef4162fdbb930ac5794b0fc9f07c4cdad447d2a8825ec174f5bd8b7b1a5fe89797c2e9f516c59a0e09d2e8f4dcbae7d106ad7d6b53425f73d3a85bfdee0c4dd629a5e00d83"]}, @generic="e3c7a56d28294925bc9ae1cb8b55a80d55b92f0a79eb48dbf23bce1b11b05b7574359c87ad33b7c4df18d8bb5f7465fcccb9053e13e29833f7796b534cf0c7dfbafe24467b0f240d7f", @typed={0x8, 0x11b, 0x0, 0x0, @pid=r5}, @generic="45a4", @generic="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"]}, @NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}]}, 0x1360}, 0x1, 0x0, 0x0, 0x800}, 0x20044002) 4.276831057s ago: executing program 1 (id=606): mmap$auto(0x0, 0x402000b, 0xdb, 0xeb1, 0x401, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) (async) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram6\x00', 0x4040, 0x0) (async) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram6\x00', 0x4040, 0x0) preadv2$auto(0x3, 0x0, 0x5, 0xffffffffffffffff, 0x7, 0x2e) write$auto_tty_fops_tty_io(r0, &(0x7f0000000200)="352c8efa610c0bcf83a4ebdb040000000000000021cb244b19a48bb5e0d12df9735b745b9554dfb0ad77a37be296ebe6f598901d632a206d9bb056d8c8d9a5b4cf165c931477ba53f3a80c522fc11555ea", 0x51) mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) (async) mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) ioctl$auto(0xffffffffffffffff, 0x8912, 0x38) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x8000) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x8000) ustat$auto(0x801, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x40}, 0x8) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) madvise$auto(0x0, 0x2003f0, 0x15) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0xff1, 0x8000) (async) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0xff1, 0x8000) io_uring_setup$auto(0x1, 0x0) bpf$auto(0x5, 0x0, 0x102) getpid() (async) getpid() r3 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/graphics/fbcon/cursor_blink\x00', 0xa001, 0x0) (async) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/graphics/fbcon/cursor_blink\x00', 0xa001, 0x0) write$auto(r4, &(0x7f0000000140)='7\x81=\"\xad\xff\x8d\xf9P\x18\xa4\xb0\xb4\xd9\x82=\xe1P\x05\x00\xfb&\xe8\xbf\x901\a2\xa2X`\a\xf1y\xb3\"=', 0xd4d0) r5 = socket$nl_generic(0x10, 0x3, 0x10) read$auto(r3, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0xffd8) ioprio_get$auto_IOPRIO_WHO_PGRP(0x2, 0x0) (async) ioprio_get$auto_IOPRIO_WHO_PGRP(0x2, 0x0) r6 = syz_genetlink_get_family_id$auto_mac802154_hwsim(&(0x7f00000001c0), r2) r7 = openat$auto_show_traces_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/available_tracers\x00', 0xa880, 0x0) sendmsg$auto_MAC802154_HWSIM_CMD_NEW_EDGE(r5, &(0x7f0000001600)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000015c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="bc050003733b19bcb61ed4dc236014132bd9d9520e76c207702fe0846fa23fb42c1fb7fab8ec8201738434fe92384b78af9659df10948591fc6611faab3e6573f53b860e4f1ff01491944abb5a6e7e71acc6b410e991e504d9b37eeb537df453fe4092d10b8c1e8e4e71787d6b202fdeb5fbf2ab2af6dd78cc5d5b49d3fa925d145838b7150b0f2590828aff7ce6fc1ef59ceb824c563f0ef648da7608c1b724dd0054d05d6788ed82542c1715e233a1d87d4a52db7649fe729cc968b90000", @ANYRES16=r6, @ANYBLOB="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", @ANYRES32=r7, @ANYBLOB="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"], 0x5bc}}, 0x40000) capget$auto(0x0, 0xfffffffffffffffe) 3.337561685s ago: executing program 2 (id=609): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) mmap$auto(0x2, 0x5, 0xe895, 0x16, r0, 0x4) r1 = openat$auto_ima_ascii_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000300), 0x80, 0x0) fadvise64$auto_POSIX_FADV_NORMAL(r1, 0x3, 0xc46c, 0x0) write$auto(0x3, 0x0, 0x7fffffff) mmap$auto(0x4, 0x400008, 0xdf, 0x9b79, r1, 0x8001) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/conf/vxcan1/forwarding\x00', 0x82042, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = io_uring_setup$auto(0x4, 0x0) waitid$auto_P_PIDFD(0x3, r2, 0x0, 0x3, 0x0) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xfffffffffffffffe) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r3, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/vivid.0/video4linux/video10/dev_debug\x00', 0x40000, 0x0) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) writev$auto(r4, 0x0, 0x3) r5 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x640c02, 0x0) mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x8, 0x41, 0x0, 0x6) read$auto(r5, 0x0, 0xb4d3) mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80400, 0x0) 3.090848259s ago: executing program 0 (id=610): r0 = openat$auto_gpiolib_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) pread64$auto(r0, 0x0, 0x1, 0x5) 2.982018427s ago: executing program 1 (id=611): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) open(&(0x7f0000000200)='./file0\x00', 0x18780, 0x38) mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8000) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0xcbd5d) mlock$auto(0x81, 0xffff) madvise$auto(0x0, 0x2000040080000004, 0xe) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) madvise$auto(0x0, 0x200007, 0x19) syslog$auto(0x9, 0x0, 0x7c) unshare$auto(0x40000080) write$auto(0xca, &(0x7f0000000000)='\x04\x01\x04\x00\x00\x00\xf1\xff\x00\xb6', 0x8) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0) madvise$auto(0x0, 0x2000040080000003, 0xe) write$auto(0xffffffffffffffff, &(0x7f0000000040)='//\xf2\x00', 0x80000000) getsockopt$auto_SO_RCVPRIORITY(0xffffffffffffffff, 0x2, 0x52, 0x0, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x88202, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x21, 0x0) write$auto(r1, &(0x7f0000000280)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc\xc4\xe2q;KzH\n\xc4\x9b\xf0\xa0p\xa7fFn\xf8\xd18|\x1b\xb1cO\xaa\x14\xbf_5a\xcb\x97\x01)V\xa5\x1b\xa6Ug\x0e\x16\x1e\xd9\xa1\xa3\x1bi\x9a\x8a4\xf3\xfeX/$\xf5\x9c\xf8vp\x9b\xbe\xccE\x1d\x8e\xcc\xacJ\x7fQ3\xd2', 0x100000a3d9) socket(0x2, 0x3, 0xa) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_udc.1/udc/dummy_udc.1/uevent\x00', 0x40000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000040)=""/195, 0xc3) mmap$auto(0x0, 0x20009, 0x0, 0xeb1, 0x401, 0x8000) 2.981385044s ago: executing program 0 (id=612): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) inotify_init1$auto(0x800) close_range$auto(0x2, 0x8000, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) r1 = socket(0xd92c1114669c7f94, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'wg0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r3, r2, 0x4, 0x401, r1, @relative_id=0x13, 0xe600}, 0xf) bpf$auto(0x1, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xf) 2.685250248s ago: executing program 0 (id=613): r0 = socket(0xa, 0x5, 0x84) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r0) (async, rerun: 32) r2 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), r2) (async, rerun: 32) r4 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_STOP_P2P_DEVICE(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="01002b9b617ff7bc552f4b00000008000300", @ANYRES32=r5], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x4040004) sendmsg$auto_NL80211_CMD_UPDATE_CONNECT_PARAMS(r0, &(0x7f0000000700)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000006c0)={&(0x7f0000000740)=ANY=[@ANYBLOB="58050000", @ANYRES16=r1, @ANYBLOB="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", @ANYRES32=r5, @ANYBLOB="31b7d2c7f5475182b4e3488785faff6d8a18a9ec66b8de5d59600b2c07a55aeb61e793b515f0bcb1bf02007a4387a09616980000000cea80d9c9569cbe27ba237cb3a8970e0baedba02615c2"], 0x558}, 0x1, 0x0, 0x0, 0x10}, 0x4008805) bpf$auto(0xfffffffd, &(0x7f0000000000)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x6, 0x4, 0xffffffffffffffff, @relative_fd=r0, 0xd}, 0xa3) (async) sendto$auto(r0, 0x0, 0x401, 0xffff, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c) 2.504198887s ago: executing program 3 (id=614): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bus/usb/037/001\x00', 0x20882, 0x0) ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x14, 0x5, 0x7fc, 0x7fb, &(0x7f00000002c0)}) (async) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r2 = socket(0x10, 0x2, 0x6) r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x30, r3, 0x1, 0x70bd28, 0x25dfdbfc, {}, [@NL802154_ATTR_COORDINATOR={0x1c, 0x1e, 0x0, 0x1, [@nested={0x18, 0x122, 0x0, 0x1, [@nested={0x8, 0x46, 0x0, 0x1, [@nested={0x4, 0xf7}]}, @nested={0x9, 0x10, 0x0, 0x1, [@generic='\x00\x00\x00*O']}]}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x20008000}, 0x8044) (async) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv6/conf/netdevsim2/hop_limit\x00', 0x5014c0, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004814}, 0x8800) mmap$auto(0x0, 0x0, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) (async) msync$auto(0x801ffff000, 0x1800000000000fe, 0x0) close_range$auto(0x2, 0x8, 0x0) (async) r4 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000001180)='/dev/input/mice\x00', 0x1a1382, 0x0) write$auto_mousedev_fops_mousedev(r4, &(0x7f0000001380)="22d2", 0x2) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x108002, 0x0) (async) r5 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) read$auto_nvram_misc_fops_nvram(r5, &(0x7f0000000280)=""/210, 0xd2) r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/net/sockstat\x00', 0xc0880, 0x0) read$auto(r6, &(0x7f0000000040)='/proc/self/net/icmp\x00', 0x80000001) write$auto_proc_mem_operations_base(0xffffffffffffffff, &(0x7f0000001680)="a7", 0x80000) prctl$auto(0x43, 0x0, 0xffffffffffffffff, 0x0, 0x0) (async) getsockopt$auto_SO_PEERPIDFD(0xffffffffffffffff, 0x1, 0x4d, &(0x7f0000000180)='\x00\x10\\.\x87\xf8Bw\x9bJx\amt\n\xfe\x9c', &(0x7f0000000040)=0xf7) futex$auto(0x0, 0x5, 0x9, 0x0, 0x0, 0xffff7fff) 2.451426704s ago: executing program 2 (id=615): mmap$auto(0x0, 0x10, 0xdf, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) (async) open(0x0, 0x22240, 0x155) socket(0xa, 0x3, 0x3b) (async) socket(0xa, 0x3, 0x3b) setsockopt$auto(0x400000000000003, 0x29, 0x22, 0x0, 0xa4) (async) setsockopt$auto(0x400000000000003, 0x29, 0x22, 0x0, 0xa4) socket(0x10, 0x2, 0xc) (async) socket(0x10, 0x2, 0xc) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/ptp/ptp0/n_external_timestamps\x00', 0x8a684, 0x0) read$auto(r0, &(0x7f0000000000)='/sys/devices/platform/vhci_hcd.8/usb26/descriptors\x00', 0x9) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto(0x3, 0x8904, 0x400000000000004) 2.332073182s ago: executing program 2 (id=616): r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/binderfs/binder1\x00', 0x149883, 0x0) ioctl$auto_BINDER_WRITE_READ(r0, 0xc0306201, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x100000000000033, 0x0) r1 = fsopen$auto(0x0, 0x1) fsconfig$auto(r1, 0x8, 0x0, 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r2, &(0x7f0000000200)={0x0, 0x2b, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x24000000}, 0x4000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r3, 0x0, 0x20) pkey_free$auto(0x9) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r5 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000b80), r6) sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA(r6, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, r7, 0x200, 0x70bd28, 0x25dfdbfc, {}, [@IOAM6_ATTR_SC_NONE={0x4}, @IOAM6_ATTR_SC_NONE={0x4}, @IOAM6_ATTR_SC_NONE={0x4}, @IOAM6_ATTR_SC_ID={0x8, 0x4, 0x6}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000051}, 0x4011) sendmsg$auto_IOAM6_CMD_DEL_SCHEMA(r6, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x1c, r7, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@IOAM6_ATTR_SC_ID={0x8, 0x4, 0x3}]}, 0x1c}}, 0x40040) sendmsg$auto_IOAM6_CMD_DUMP_SCHEMAS(r2, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x14, r7, 0x200, 0x70bd2a, 0x25dfdbff, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x4048044) socket(0x10, 0x2, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB="240000001f73dee3e3bea71cac1676ba7c70373e8c9c8a9f5fbacf292f84e71905853913746a3bc037d26b76256a3f05fe9b755e6bfc3271e69d4e1eb75e75796a76a18197bed14367428422ed2e0db6980463424b60cafe0eba994f8be632f582d69f54fb2aa341d6e6928b6f089224a2d3b71d0edc7cbe0b8f45afa495d439b330cdf7d6a77baf0560c7952076577c770534019857e1402eb7af53f69eba21036c8e43e03bb6991a23196f92ef0574122e007d969dfacccb4076f2eaef92db9b0b66f7ba2dcd54a4b90ecf12b543380a4e245e343b00e24c8535eb2c74605264c3e40805055a", @ANYRES16=0x0, @ANYBLOB="00022abd7000fbdbdf250200000008000300000000000800010000080000"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x10, 0x70bd2c, 0x25dfdbfd, {0xa, 0x0, 0xa00}}, 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) ioctl$auto_PPPIOCSMRU(r5, 0xc004743e, 0x0) 2.329719288s ago: executing program 0 (id=624): getxattrat$auto(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x1000, &(0x7f00000000c0)='nbd\x00', &(0x7f00000001c0)={0x0, 0xa50}, 0x1000) mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) mmap$auto(0x0, 0x8de, 0xdf, 0x591b, 0x2, 0xb) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000200), 0x191901, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) r3 = socketpair$auto(0x1, 0x800, 0x0, &(0x7f00000001c0)) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x47, 0x8000) ioctl$auto(0xffffffffffffffff, 0x8983, 0x4) write$auto(r2, 0x0, 0x100000a3d9) select$auto(0x9, 0x0, 0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8c00, 0x0) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) openat$auto_fops_u16_(0xffffffffffffff9c, &(0x7f0000000b40)='/sys/kernel/debug/netdevsim/netdevsim2/psample/out_tc\x00', 0x44140, 0x0) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r4 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r5 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dri/card1\x00', 0x129e01, 0x0) ioctl$auto(r5, 0x92106409, 0xffffffffffffffff) kcmp$auto(0x1, 0x1, 0x0, r4, r4) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r3) msgctl$auto_MSG_INFO(0x101, 0xc, &(0x7f0000000b80)={{0x3e, 0xee01, 0xee01, 0x5, 0x0, 0xd, 0x6}, &(0x7f0000000ac0)=0xd8, &(0x7f0000000b00)=0x81, 0x4a, 0x7fffffff, 0x44, 0x8, 0x9, 0xfffb, 0x7, 0x7, @inferred, @inferred=0xffffffffffffffff}) sendmsg$auto_NL80211_CMD_REGISTER_FRAME(r1, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000140)={&(0x7f0000000c00)=ANY=[@ANYBLOB="040b0000", @ANYRES16=r6, @ANYBLOB="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", @ANYRES32=r7, @ANYBLOB="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"], 0xb04}}, 0x440dc) openat$auto_drm_crtc_crc_control_fops_drm_debugfs_crc(0xffffffffffffff9c, 0x0, 0xb02, 0x0) write$auto(0x3, 0x0, 0xfffffdef) 1.513340896s ago: executing program 3 (id=617): r0 = openat$auto_gpiolib_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) pread64$auto(r0, 0x0, 0x0, 0x5) 1.391214492s ago: executing program 0 (id=618): r0 = openat$auto_cpu_latency_qos_fops_qos(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0) readv$auto(r0, &(0x7f0000000580)={0x0, 0x1}, 0x1) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ram10\x00', 0x749202, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008013, r1, 0x8000) preadv2$auto(r1, 0x0, 0x6, 0xffffffffffffffff, 0x0, 0x2f) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xd, 0x0, 0x0, 0x0, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/netdevsim2/new_port\x00', 0x133d01, 0x0) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/route\x00', 0x0, 0x0) pread64$auto(r3, 0x0, 0x10000005, 0x7fff) mmap$auto(0x0, 0x240009, 0xdf, 0x9b72, 0x7, 0x28000) rt_sigprocmask$auto(0x7fffffff, &(0x7f0000000040)={0x6}, 0xffffffffffffffff, 0x8) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) socket(0x11, 0xa, 0x300) sendmmsg$auto(0x4, 0x0, 0x400, 0x7) 1.387320855s ago: executing program 2 (id=619): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) close_range$auto(0x2, 0xa, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3) r0 = socket(0xa, 0x2, 0x88) mmap$auto(0x0, 0x400008, 0xdf, 0x100000009b72, 0x2, 0x8000) mincore$auto(0x1000, 0x8003, 0x0) setsockopt$auto(0x3, 0x0, 0x20, 0x0, 0x28) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) ioctl$auto_TUNGETFILTER(0xffffffffffffffff, 0x801054db, &(0x7f0000000540)={0x2, &(0x7f0000000500)={0xa7, 0xf3, 0x1, @raw=0x2}}) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001500), r1) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001540)={'netdevsim0\x00', 0x0}) sendmsg$auto_NET_SHAPER_CMD_GROUP(r1, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000380)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYRES8=r1, @ANYRES32=r3, @ANYBLOB="38df14f698f9fa936f37db4171a4e378b2b02cca032ac36b187536206ed0bf68e0b62c5dd6164c54bfc950d0db8994e4b80ec8ec92b7d1076af4344d9724ea3823929f5850779c3434b297695e2889727bce8fa4d98d6ac8a89998be0d0000440799b7c72e23ffac3dff1282b2b8d9cec9a13dd2a2476991a694e98c16551ce2a1d0a2cf1da448f3a3ccdf5a7a8179ee2f8abacf29e8cb095e21b455e2563612181657d01394bb609b989e9574b373ffaa4300b976f0f69a7f59f1c3dbd4edff6e574695fd471b83a6a922b042589e6845566fa965a3f1642c7ad156d691f80f2c68dc6332587fd7eaf781c925748db9cf03f141941bfe2d2093b98a1e63d3377e589b2f920d7f600de2"], 0x38}, 0x1, 0x0, 0x0, 0x44000}, 0x14) sendmsg$auto_NET_SHAPER_CMD_DELETE(r0, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB, @ANYRES16=r2, @ANYBLOB="08002cbd7000fcdbdf25030000001c00018008000100000200000800010001000002080001008500000044000180080001000000000008000200818100000800020001f8ffff080001004f0e00bfea1800419e08bdfe8b89d2000800010001000000502fe021ee08"], 0x74}, 0x1, 0x0, 0x0, 0x4000011}, 0x10) openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x81, 0x0, 0x0, &(0x7f0000000300)={[0x1ff, 0x5, 0xd, 0xfffffffffffff4d6, 0x948b, 0x3, 0x15f4da0e, 0x3, 0x0, 0x9, 0x80000001, 0x1000, 0x1, 0x9, 0x3, 0x1]}, 0x0) close_range$auto(r0, 0x8000, 0x0) socket(0x28, 0x3, 0x88) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000100)=@test={r0, 0x7fffffff, 0x3, 0x9, 0x75c, 0x5, 0xfffffbff, 0xc, 0x106, 0xfffffffd, 0x0, 0x3, 0xfffffff8, 0x4, 0x80009}, 0x10) bpf$auto(0x2, &(0x7f00000001c0)=@bpf_attr_1={0xffffffffffffffff, 0x3, @next_key=0x1, 0x7}, 0xc) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0x10c) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/afs/sysname\x00', 0x80002, 0x0) write$auto(r4, &(0x7f0000000240)='//ev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x5014c0, 0x0) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) 1.387246385s ago: executing program 3 (id=620): r0 = openat$auto_gpiolib_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) pread64$auto(r0, 0x0, 0x1, 0x5) 1.251621054s ago: executing program 3 (id=621): madvise$auto_MADV_DONTFORK(0x5, 0x1, 0xa) madvise$auto_MADV_DONTFORK(0x4, 0xc, 0xa) madvise$auto_MADV_DONTFORK(0x80000000, 0x42, 0xa) madvise$auto_MADV_DONTFORK(0x5, 0x0, 0xa) madvise$auto_MADV_DONTFORK(0xa00000000000000, 0x8000, 0xa) madvise$auto_MADV_DONTFORK(0x7, 0x3, 0xa) madvise$auto_MADV_DONTFORK(0x9, 0x5, 0xa) madvise$auto_MADV_DONTFORK(0x5, 0xa231, 0xa) madvise$auto_MADV_DONTFORK(0xfff, 0x9, 0xa) madvise$auto_MADV_DONTFORK(0x0, 0x8, 0xa) madvise$auto_MADV_DONTFORK(0x4, 0x5, 0xa) access$auto(&(0x7f0000000000)='./file0\x00', 0x3) madvise$auto_MADV_DONTFORK(0xc447, 0x7, 0xa) madvise$auto_MADV_DONTFORK(0x1000000, 0x4, 0xa) madvise$auto_MADV_DONTFORK(0x3, 0x526, 0xa) madvise$auto_MADV_DONTFORK(0x8, 0x10, 0xa) madvise$auto_MADV_DONTFORK(0x1, 0x3, 0xa) r0 = openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = signalfd$auto(r0, &(0x7f0000000080)={0x3}, 0x6) madvise$auto_MADV_DONTFORK(0x6, 0x9, 0xa) madvise$auto_MADV_DONTFORK(0x1, 0x0, 0xa) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x0, 0x0) r2 = openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000100), 0x40000, 0x0) sendmmsg$auto(r2, &(0x7f0000000380)={{&(0x7f0000000140)="c4fb867d5509229f75f017fb0d55d21c909fab74dea33ff023ed93e30c123767763c365a28eeef24104cced5d20b44f0f892f2fd62f9f73cabb2c912a9a403ee0f632c99fe1b91a5eb4f6fa38c7f3bc1b7ccdf25000225e0a81bd04517f8a6b72a59311f15ccac1b735b047f56871f0d1018fb86fc25cf71e6f1b42a09f75ab56740e1f1b71540ccfc10db7e9838c9630fe5486255425081b3178ccd65b7595a3f4bf1d114f187674f283215e1", 0xfffffffa, &(0x7f0000000240)={&(0x7f0000000200)="223cd7f77d41", 0x5}, 0x10001, &(0x7f0000000280)="43e3fb09a245105e409adc58034edc4ebc55b2405a3d4d82ceab83b5649dc77c8247302de608aece13c1bb46e3c0c1a20f24c8f2a28bfe56f6657dc2ed3ebeea8966d8442dc598ff4036e1b10bbaa4eb6deb7edd1e3d46b29bf8500395ef79b7304630990f96394f45d5fe31e376abcac7d913d2e06d65a125ffdac1bace810611e38a37bb994cbe00cf4150015b858690af4efb0a3f4adba5760644cddcbc1cbf2cfe0518dedfb95b7931454f1e3f98a1c06f67364012878f91f2f02735eabbd6e92fd2b99c4a6a4d3fd9f156aac24da26c48c80387e7478fbe086dc8", 0x6b7, 0x345}, 0x4}, 0xff, 0x6) madvise$auto_MADV_DONTFORK(0x1, 0x4, 0xa) madvise$auto_MADV_DONTFORK(0x9, 0xdded00000, 0xa) madvise$auto_MADV_DONTFORK(0x9, 0x5, 0xa) setsockopt$auto_SO_RXQ_OVFL(r0, 0x70000000, 0x28, &(0x7f00000003c0)='/proc/sys/fs/binfmt_misc/status\x00', 0x7) madvise$auto_MADV_DONTFORK(0x5, 0x8, 0xa) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, 0x0) 1.072181682s ago: executing program 3 (id=622): r0 = socket(0x15, 0x5, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x100, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0xa, 0x3, 0x3c) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffff}, 0x1, 0x0, 0x0, 0x9}, 0x100007}, 0x3, 0x0) socket(0x23, 0x80805, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/memory_tiering/memory_tier4/nodelist\x00', 0x22100, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000080)=""/247, 0xf7) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe98a, 0xdf, 0xeb4, r0, 0x8000000000000000) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x4000000000001, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x20000002, 0xfffffffffffffffe]}, 0x0) socket(0x1a, 0x4, 0x6) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) close_range$auto(0x2, 0x8, 0x0) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETFAMILY(0xffffffffffffffff, 0x0, 0x80c0) io_uring_setup$auto(0x6, 0x0) r3 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_FEATURES(r3, 0x4008af00, &(0x7f0000000000)=0x200000000) 1.070698731s ago: executing program 1 (id=623): openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/netdevsim/netdevsim1/ports/3/pp_hold\x00', 0x101001, 0x0) socket(0x1b, 0x3, 0x1) madvise$auto(0x0, 0x2000040080000004, 0xe) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) r3 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), 0xffffffffffffffff) syslog$auto(0x2, &(0x7f0000000380)=']^^/W#\'\x00', 0x3) sendmsg$auto_ILA_CMD_ADD(r4, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040880}, 0x4) syz_clone(0x4040400, 0x0, 0x0, 0x0, 0x0, 0x0) readv$auto(0x3, 0x0, 0x1) mmap$auto(0xf728, 0x8000000000000, 0xfffffffffffffffe, 0x11, r3, 0x1) close_range$auto(0x2, 0x8, 0x0) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) io_uring_enter$auto(0xffffffffffffffff, 0x9, 0xfffffc01, 0x4, &(0x7f00000002c0)="9cb0e925b6c933c1e84975dc16630bb8b0f266d7793d8229a9d6a5dfa1591faeb97caa277628e870ede4c8395f417b1d493e45805b63a07812b75f6cd4492fdea991c15d4023d9c188cadd85207071510b6e83adfd4a4c3357c9090be67ea8c4", 0x9) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0xd551) socket(0x2c, 0x6, 0x2) write$auto_rfkill_fops_core(r2, &(0x7f0000000200)="9dea31913cb498217735bbce17f68148281da8acc8b124f8dc04f11f1fa2a9ae7463c4f77ee1feaf711d833ea95c4f433afc6d44d6e591370504369fcc8b786d2db722ab2d5d80df1c7d2ae6eeb0b7cd11d603918ac22abe77711c05c1c11d59bb7c542b966790f31b3d100e436e619db789dd3ae1413d0d9bf34731f5e94f49f389f79f3a3ed9d518bee3c6545f096462d8dad84732e9300a0b987bcc66f7d9fbaa", 0xa2) socket(0x28, 0x801, 0x0) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) setresuid$auto(0xd, 0x0, 0x221) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) 552.133643ms ago: executing program 2 (id=625): openat$auto_proc_setgroups_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/setgroups\x00', 0x28001, 0x0) mmap$auto(0x0, 0x40009, 0x20000000df, 0x9b72, 0x7, 0x28000) (async) socket(0x6, 0x2, 0x2) (async) r0 = socket(0x10, 0x2, 0x4) bind$auto(r0, &(0x7f0000000080)=@nl=@proc={0x10, 0x0, 0x25dfdbff, 0x80000}, 0xe) (async) bind$auto(0x3, &(0x7f0000000000)=@nl=@proc={0x10, 0x0, 0x25dfdbff, 0x40}, 0x68) r1 = socket(0x1d, 0x3, 0x1) getsockopt$auto(r1, 0x65, 0x4, 0xffffffffffffffff, 0x0) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/irq/13/effective_affinity\x00', 0x400, 0x0) pread64$auto(r2, 0x0, 0x100000001, 0x2000006) close_range$auto(0x2, 0x8, 0x0) 333.270163ms ago: executing program 2 (id=626): close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe\x00', 0x80000, 0x0) getsockopt$auto_SO_RESERVE_MEM(r1, 0x800, 0x49, &(0x7f0000000080)='(\'-\'&\x84^\x00', &(0x7f00000000c0)=0x8) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003ec, 0x14) r3 = socket(0x2, 0x1, 0x0) openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x37}}, 0x6e) sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000) socketpair$auto(0xfffffffe, 0x1, 0x8000000000000000, 0x0) fadvise64$auto_POSIX_FADV_DONTNEED(r1, 0x8, 0xc, 0x4) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) mq_getsetattr$auto(r0, &(0x7f0000000100)={0x6, 0x8, 0x9, 0x1000}, &(0x7f0000000180)={0x3, 0x5, 0x7fffffff}) syz_genetlink_get_family_id$auto_nl80211(0x0, r3) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) sendto$auto(0x3, 0x0, 0x100000000, 0x8, 0x0, 0x1c) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) socket(0xa, 0x1, 0x100) 258.555421ms ago: executing program 0 (id=627): socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x10f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, r0, 0x8000) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dri/card1\x00', 0x129e01, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x18, 0xfffffffffffffffa, 0x5) writev$auto(0x3, 0x0, 0x8009) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000140), r1) sendmsg$auto_OVS_FLOW_CMD_DEL(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x18}, 0x1, 0x0, 0x0, 0x40}, 0x800) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) mmap$auto(0x3, 0x402000b, 0x2000006, 0xeb1, 0x401, 0xfff) openat$auto_udf_dir_operations_udfdecl(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/bluetooth/hci4\x00', 0x2000, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x81, 0x0, 0x0, 0x0, 0x0) write$auto(r2, &(0x7f0000000240)='//ev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/kallsyms\x00', 0x0, 0x0) pread64$auto(r4, 0x0, 0x8, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, 0x0, 0x400c058) io_uring_setup$auto(0x1, 0x0) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000100), r3) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r5 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x4610, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0x902, 0x0) pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9) 0s ago: executing program 3 (id=628): r0 = openat$auto_gpiolib_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) pread64$auto(r0, 0x0, 0x1, 0x5) (fail_nth: 2) kernel console output (not intermixed with test programs): ith an up link [ 85.525166][ T5862] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 85.548611][ T5867] chnl_net:caif_netlink_parms(): no params data found [ 85.608145][ T5869] chnl_net:caif_netlink_parms(): no params data found [ 85.621841][ T5862] team0: Port device team_slave_0 added [ 85.648051][ T5862] team0: Port device team_slave_1 added [ 85.736908][ T5862] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.743913][ T5862] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.770577][ T5862] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 85.804369][ T5862] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 85.811333][ T5862] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.837436][ T5862] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.860950][ T5874] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.868451][ T5874] bridge0: port 1(bridge_slave_0) entered disabled state [ 85.875642][ T5874] bridge_slave_0: entered allmulticast mode [ 85.882523][ T5874] bridge_slave_0: entered promiscuous mode [ 85.927988][ T5874] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.935202][ T5874] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.942420][ T5874] bridge_slave_1: entered allmulticast mode [ 85.950374][ T5874] bridge_slave_1: entered promiscuous mode [ 86.028726][ T5874] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 86.038051][ T5869] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.045716][ T5869] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.052835][ T5869] bridge_slave_0: entered allmulticast mode [ 86.060585][ T5869] bridge_slave_0: entered promiscuous mode [ 86.068036][ T5867] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.076081][ T5867] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.083760][ T5867] bridge_slave_0: entered allmulticast mode [ 86.091480][ T5867] bridge_slave_0: entered promiscuous mode [ 86.100511][ T5867] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.107811][ T5867] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.114984][ T5867] bridge_slave_1: entered allmulticast mode [ 86.121905][ T5867] bridge_slave_1: entered promiscuous mode [ 86.137996][ T5862] hsr_slave_0: entered promiscuous mode [ 86.144982][ T5862] hsr_slave_1: entered promiscuous mode [ 86.156297][ T5874] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 86.165518][ T5869] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.173010][ T5869] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.180271][ T5869] bridge_slave_1: entered allmulticast mode [ 86.188198][ T5869] bridge_slave_1: entered promiscuous mode [ 86.280553][ T5874] team0: Port device team_slave_0 added [ 86.289732][ T5874] team0: Port device team_slave_1 added [ 86.297875][ T5869] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 86.310401][ T5867] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 86.359499][ T5869] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 86.389448][ T5867] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 86.448492][ T5874] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 86.455819][ T5874] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.481809][ T5874] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 86.496315][ T5869] team0: Port device team_slave_0 added [ 86.519879][ T5867] team0: Port device team_slave_0 added [ 86.526473][ T5874] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 86.534036][ T5874] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.560910][ T5875] Bluetooth: hci0: command tx timeout [ 86.566511][ T5874] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 86.575810][ T5869] team0: Port device team_slave_1 added [ 86.606744][ T5867] team0: Port device team_slave_1 added [ 86.672163][ T5869] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 86.679446][ T5869] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.706264][ T5869] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 86.718911][ T5869] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 86.726034][ T5869] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.754890][ T5869] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 86.797423][ T5875] Bluetooth: hci2: command tx timeout [ 86.847880][ T5867] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 86.858062][ T5867] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.873884][ T5875] Bluetooth: hci1: command tx timeout [ 86.887762][ T5185] Bluetooth: hci3: command tx timeout [ 86.895973][ T5867] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 86.917479][ T5874] hsr_slave_0: entered promiscuous mode [ 86.927937][ T5874] hsr_slave_1: entered promiscuous mode [ 86.934293][ T5874] debugfs: 'hsr0' already exists in 'hsr' [ 86.940083][ T5874] Cannot create hsr debugfs directory [ 86.978208][ T5867] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 86.988502][ T5867] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.018032][ T5867] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 87.089161][ T5869] hsr_slave_0: entered promiscuous mode [ 87.095514][ T5869] hsr_slave_1: entered promiscuous mode [ 87.101446][ T5869] debugfs: 'hsr0' already exists in 'hsr' [ 87.108180][ T5869] Cannot create hsr debugfs directory [ 87.219694][ T5867] hsr_slave_0: entered promiscuous mode [ 87.226104][ T5867] hsr_slave_1: entered promiscuous mode [ 87.232078][ T5867] debugfs: 'hsr0' already exists in 'hsr' [ 87.237945][ T5867] Cannot create hsr debugfs directory [ 87.379275][ T5862] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 87.424903][ T5862] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 87.436846][ T5862] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 87.475751][ T5862] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 87.560621][ T5874] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 87.595412][ T5874] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 87.616634][ T5874] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 87.649362][ T5874] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 87.752638][ T5867] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 87.763916][ T5867] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 87.780327][ T5867] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 87.810091][ T5867] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 87.922341][ T5869] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 87.934624][ T5869] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 87.950023][ T5862] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.962456][ T5869] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 87.978555][ T5869] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 88.043167][ T5862] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.054837][ T5874] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.092232][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.099451][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.128194][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.135368][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.170990][ T5874] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.189761][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.196922][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.220302][ T5867] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.255862][ T3584] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.262969][ T3584] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.311546][ T5867] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.362892][ T3584] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.370082][ T3584] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.409530][ T5869] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.430874][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.437989][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.502895][ T5869] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.558398][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.565608][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.607697][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.614890][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.633442][ T5185] Bluetooth: hci0: command tx timeout [ 88.637870][ T5867] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 88.786843][ T5862] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 88.873731][ T5185] Bluetooth: hci2: command tx timeout [ 88.890618][ T5874] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 88.941326][ T5862] veth0_vlan: entered promiscuous mode [ 88.953955][ T5185] Bluetooth: hci3: command tx timeout [ 88.956343][ T5875] Bluetooth: hci1: command tx timeout [ 88.982218][ T5862] veth1_vlan: entered promiscuous mode [ 89.057436][ T5874] veth0_vlan: entered promiscuous mode [ 89.094042][ T5874] veth1_vlan: entered promiscuous mode [ 89.116002][ T5862] veth0_macvtap: entered promiscuous mode [ 89.146379][ T5862] veth1_macvtap: entered promiscuous mode [ 89.175807][ T5867] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.225831][ T5862] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 89.265666][ T5862] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 89.289620][ T5874] veth0_macvtap: entered promiscuous mode [ 89.306288][ T3584] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.316113][ T3584] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.328965][ T5874] veth1_macvtap: entered promiscuous mode [ 89.349802][ T44] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.374670][ T44] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.405061][ T5874] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 89.422940][ T5867] veth0_vlan: entered promiscuous mode [ 89.448019][ T5874] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 89.469693][ T5869] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.499936][ T5867] veth1_vlan: entered promiscuous mode [ 89.506775][ T36] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.527230][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.545099][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.546883][ T36] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.562610][ T44] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.598147][ T44] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.636490][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.652189][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.736344][ T5869] veth0_vlan: entered promiscuous mode [ 89.750584][ T5862] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 89.751809][ T5867] veth0_macvtap: entered promiscuous mode [ 89.791957][ T5867] veth1_macvtap: entered promiscuous mode [ 89.813930][ T3584] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.832901][ T3584] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.861452][ T5869] veth1_vlan: entered promiscuous mode [ 89.906522][ T5867] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 89.919874][ T3584] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.930943][ T3584] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.981904][ T5867] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 89.995144][ T5954] overlayfs: missing 'lowerdir' [ 90.035783][ T5869] veth0_macvtap: entered promiscuous mode [ 90.078221][ T5954] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 90.112400][ T5869] veth1_macvtap: entered promiscuous mode [ 90.125111][ T36] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.152946][ T36] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.202019][ T5869] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.225900][ T36] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.264351][ T36] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.307514][ T5869] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.437744][ T36] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.462184][ T36] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.505653][ T36] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.535732][ T36] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.701274][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.713956][ T5875] Bluetooth: hci0: command tx timeout [ 90.736695][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.827783][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.837704][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 90.881203][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.928482][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 90.928564][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 90.928650][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 90.928814][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 90.929642][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 90.955021][ T5875] Bluetooth: hci2: command tx timeout [ 90.956714][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.956735][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.034512][ T5875] Bluetooth: hci3: command tx timeout [ 91.045338][ T5875] Bluetooth: hci1: command tx timeout [ 91.096066][ T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.096089][ T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.903952][ T9] cfg80211: failed to load regulatory.db [ 92.183529][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 92.443617][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 92.574119][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 92.804258][ T5875] Bluetooth: hci0: command tx timeout [ 92.822514][ T5993] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6'. [ 93.033998][ T5875] Bluetooth: hci2: command tx timeout [ 93.122485][ T5875] Bluetooth: hci1: command tx timeout [ 93.128655][ T5185] Bluetooth: hci3: command tx timeout [ 93.194159][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 93.434392][ T6002] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 94.741183][ T6020] netlink: 'syz.2.13': attribute type 1 has an invalid length. [ 94.978552][ T6022] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 95.026502][ T6016] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 99.563962][ T6072] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input5 [ 101.988718][ T6127] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 102.175823][ T30] audit: type=1800 audit(1758740213.616:2): pid=6132 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.32" name="features" dev="configfs" ino=8720 res=0 errno=0 [ 103.341108][ T30] audit: type=1800 audit(1758740214.786:3): pid=6141 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.35" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 103.926909][ T30] audit: type=1800 audit(1758740215.366:4): pid=6155 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.38" name="lu_gp_id" dev="configfs" ino=8100 res=0 errno=0 [ 104.774095][ T6166] random: crng reseeded on system resumption [ 105.905087][ T6176] sysfs_service_op_show: Client not running :-5: [ 108.442642][ T6209] random: crng reseeded on system resumption [ 109.204002][ T5185] Bluetooth: hci3: Malformed Event: 0x02 [ 109.709876][ T6227] Zero length message leads to an empty skb [ 111.410542][ T6251] netlink: 330 bytes leftover after parsing attributes in process `syz.3.56'. [ 111.432405][ T6251] mac80211_hwsim hwsim7 ›: renamed from wlan0 (while UP) [ 112.245587][ T6262] netlink: 342 bytes leftover after parsing attributes in process `syz.2.60'. [ 112.278000][ T6252] random: crng reseeded on system resumption [ 112.332548][ T6261] HfR: entered promiscuous mode [ 112.563117][ T6259] netlink: set zone limit has 8 unknown bytes [ 114.726130][ T6298] vivid-003: ================= START STATUS ================= [ 114.733971][ T6298] vivid-003: Radio HW Seek Mode: Bounded [ 114.739664][ T6298] vivid-003: Radio Programmable HW Seek: false [ 114.754070][ T6298] vivid-003: RDS Rx I/O Mode: Block I/O [ 114.759633][ T6298] vivid-003: Generate RBDS Instead of RDS: false [ 114.843433][ T6298] vivid-003: RDS Reception: true [ 114.853445][ T6298] vivid-003: RDS Program Type: 0 inactive [ 114.868918][ T6298] vivid-003: RDS PS Name: inactive [ 114.904515][ T6298] vivid-003: RDS Radio Text: inactive [ 114.917805][ T6298] vivid-003: RDS Traffic Announcement: false inactive [ 115.016147][ T6298] vivid-003: RDS Traffic Program: false inactive [ 115.036321][ T6298] vivid-003: RDS Music: false inactive [ 115.066695][ T6298] vivid-003: ================== END STATUS ================== [ 116.080876][ T6318] netlink: 28 bytes leftover after parsing attributes in process `syz.2.71'. [ 117.415261][ T6341] process 'syz.1.78' launched ':,' with NULL argv: empty string added [ 117.472042][ T6341] FAULT_INJECTION: forcing a failure. [ 117.472042][ T6341] name failslab, interval 1, probability 0, space 0, times 1 [ 117.485858][ T6341] CPU: 1 UID: 0 PID: 6341 Comm: syz.1.78 Not tainted syzkaller #0 PREEMPT(full) [ 117.485892][ T6341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 117.485911][ T6341] Call Trace: [ 117.485919][ T6341] [ 117.485929][ T6341] dump_stack_lvl+0x16c/0x1f0 [ 117.485976][ T6341] should_fail_ex+0x512/0x640 [ 117.486015][ T6341] ? __kmalloc_noprof+0xbf/0x510 [ 117.486048][ T6341] ? ovs_vport_set_upcall_portids+0xfc/0x2f0 [ 117.486074][ T6341] should_failslab+0xc2/0x120 [ 117.486106][ T6341] __kmalloc_noprof+0xd2/0x510 [ 117.486143][ T6341] ovs_vport_set_upcall_portids+0xfc/0x2f0 [ 117.486173][ T6341] ovs_vport_alloc+0x28c/0x3d0 [ 117.486199][ T6341] internal_dev_create+0x25/0x520 [ 117.486227][ T6341] ovs_vport_add+0x147/0x4d0 [ 117.486281][ T6341] new_vport+0x16/0x1d0 [ 117.486313][ T6341] ovs_dp_cmd_new+0x6ba/0xe60 [ 117.486357][ T6341] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 117.486396][ T6341] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 117.486426][ T6341] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 117.486462][ T6341] genl_family_rcv_msg_doit+0x209/0x2f0 [ 117.486493][ T6341] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 117.486534][ T6341] ? bpf_lsm_capable+0x9/0x10 [ 117.486558][ T6341] ? security_capable+0x7e/0x260 [ 117.486585][ T6341] ? ns_capable+0xd7/0x110 [ 117.486617][ T6341] genl_rcv_msg+0x55c/0x800 [ 117.486649][ T6341] ? __pfx_genl_rcv_msg+0x10/0x10 [ 117.486677][ T6341] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 117.486723][ T6341] netlink_rcv_skb+0x158/0x420 [ 117.486761][ T6341] ? __pfx_genl_rcv_msg+0x10/0x10 [ 117.486789][ T6341] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 117.486842][ T6341] ? netlink_deliver_tap+0x1ae/0xd30 [ 117.486885][ T6341] genl_rcv+0x28/0x40 [ 117.486907][ T6341] netlink_unicast+0x5a7/0x870 [ 117.486950][ T6341] ? __pfx_netlink_unicast+0x10/0x10 [ 117.486988][ T6341] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 117.487020][ T6341] ? __lock_acquire+0xb97/0x1ce0 [ 117.487060][ T6341] netlink_sendmsg+0x8d1/0xdd0 [ 117.487104][ T6341] ? __pfx_netlink_sendmsg+0x10/0x10 [ 117.487147][ T6341] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 117.487182][ T6341] ____sys_sendmsg+0xa98/0xc70 [ 117.487212][ T6341] ? copy_msghdr_from_user+0x10a/0x160 [ 117.487256][ T6341] ? __pfx_____sys_sendmsg+0x10/0x10 [ 117.487304][ T6341] ___sys_sendmsg+0x134/0x1d0 [ 117.487344][ T6341] ? __pfx____sys_sendmsg+0x10/0x10 [ 117.487427][ T6341] __sys_sendmsg+0x16d/0x220 [ 117.487465][ T6341] ? __pfx___sys_sendmsg+0x10/0x10 [ 117.487499][ T6341] ? __x64_sys_futex+0x1e0/0x4c0 [ 117.487553][ T6341] do_syscall_64+0xcd/0x4c0 [ 117.487593][ T6341] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.487616][ T6341] RIP: 0033:0x7fd1eb78eec9 [ 117.487644][ T6341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 117.487674][ T6341] RSP: 002b:00007fd1ec5d9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 117.487699][ T6341] RAX: ffffffffffffffda RBX: 00007fd1eb9e5fa0 RCX: 00007fd1eb78eec9 [ 117.487716][ T6341] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000007 [ 117.487730][ T6341] RBP: 00007fd1eb811f91 R08: 0000000000000000 R09: 0000000000000000 [ 117.487744][ T6341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 117.487757][ T6341] R13: 00007fd1eb9e6038 R14: 00007fd1eb9e5fa0 R15: 00007fff475a11c8 [ 117.487790][ T6341] [ 118.101302][ T6353] ima: policy update failed [ 118.123719][ T30] audit: type=1802 audit(1758740229.556:5): pid=6353 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.82" res=0 errno=0 [ 118.389811][ T6359] random: crng reseeded on system resumption [ 119.552819][ T6366] zram: Removed device: zram0 [ 120.674684][ T6370] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 123.041737][ T6411] netlink: 28 bytes leftover after parsing attributes in process `syz.2.92'. [ 123.051404][ T6411] ipvlan0: entered promiscuous mode [ 123.058401][ T6411] ipvlan0: entered allmulticast mode [ 123.111002][ T6411] veth0_vlan: entered allmulticast mode [ 124.699404][ T30] audit: type=1326 audit(1758740236.146:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6434 comm="syz.1.98" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd1eb78eec9 code=0x0 [ 126.035691][ T6443] netlink: 20 bytes leftover after parsing attributes in process `syz.0.99'. [ 127.459110][ T6478] mmap: syz.2.107 (6478) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 127.492417][ T6475] random: crng reseeded on system resumption [ 128.533663][ T6492] ptrace attach of "./syz-executor exec"[6493] was attempted by "./syz-executor exec"[6492] [ 131.074155][ T6512] kAFS: Invalid Command on /proc/fs/afs/cells file [ 131.809421][ T6530] vivid-002: ================= START STATUS ================= [ 131.900846][ T6530] vivid-002: RDS Tx I/O Mode: Controls [ 131.917362][ T6530] vivid-002: RDS Program ID: 32904 [ 131.929293][ T6530] vivid-002: RDS Program Type: 3 [ 131.965909][ T6530] vivid-002: RDS PS Name: VIVID-TX [ 132.066627][ T6530] vivid-002: RDS Radio Text: This is a VIVID default Radio Text template text, change at will [ 132.087105][ T6530] vivid-002: RDS Stereo: true [ 132.093075][ T6530] vivid-002: RDS Artificial Head: false [ 132.101077][ T6530] vivid-002: RDS Compressed: false [ 132.107020][ T6530] vivid-002: RDS Dynamic PTY: false [ 132.123503][ T6530] vivid-002: RDS Traffic Announcement: false [ 132.272479][ T6530] vivid-002: RDS Traffic Program: true [ 132.278206][ T6530] vivid-002: RDS Music: true [ 132.322857][ T6530] vivid-002: ================== END STATUS ================== [ 132.796237][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.802662][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.952092][ T6546] Invalid ELF header magic: != ELF [ 133.712817][ T6550] FAULT_INJECTION: forcing a failure. [ 133.712817][ T6550] name failslab, interval 1, probability 0, space 0, times 0 [ 133.758753][ T6550] CPU: 1 UID: 0 PID: 6550 Comm: syz.3.122 Not tainted syzkaller #0 PREEMPT(full) [ 133.758791][ T6550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 133.758805][ T6550] Call Trace: [ 133.758813][ T6550] [ 133.758823][ T6550] dump_stack_lvl+0x16c/0x1f0 [ 133.758865][ T6550] should_fail_ex+0x512/0x640 [ 133.758902][ T6550] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 133.758933][ T6550] should_failslab+0xc2/0x120 [ 133.758965][ T6550] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 133.758990][ T6550] ? __lock_acquire+0x62e/0x1ce0 [ 133.759021][ T6550] ? __pmd_alloc+0xbf/0x930 [ 133.759056][ T6550] __pmd_alloc+0xbf/0x930 [ 133.759093][ T6550] walk_pgd_range+0x88b/0x1f50 [ 133.759127][ T6550] ? mt_find+0x757/0xa30 [ 133.759151][ T6550] ? __pfx_guard_install_set_pte+0x10/0x10 [ 133.759187][ T6550] ? mt_find+0x3ef/0xa30 [ 133.759210][ T6550] ? __pfx_guard_install_set_pte+0x10/0x10 [ 133.759239][ T6550] ? __pfx_guard_install_set_pte+0x10/0x10 [ 133.759274][ T6550] ? __pfx_walk_pgd_range+0x10/0x10 [ 133.759316][ T6550] __walk_page_range+0x163/0x820 [ 133.759351][ T6550] ? find_vma+0xbf/0x140 [ 133.759382][ T6550] ? __pfx_find_vma+0x10/0x10 [ 133.759417][ T6550] ? walk_page_test+0x9b/0x180 [ 133.759448][ T6550] walk_page_range_mm+0x461/0xb40 [ 133.759486][ T6550] ? __pfx_walk_page_range_mm+0x10/0x10 [ 133.759527][ T6550] ? __anon_vma_prepare+0x2e2/0x5e0 [ 133.759560][ T6550] madvise_vma_behavior+0xa62/0x2d60 [ 133.759600][ T6550] ? mas_prev_setup.constprop.0+0xb6/0x9d0 [ 133.759635][ T6550] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 133.759675][ T6550] ? __pfx_mas_prev+0x10/0x10 [ 133.759721][ T6550] ? find_vma_prev+0xda/0x160 [ 133.759755][ T6550] ? find_held_lock+0x2b/0x80 [ 133.759790][ T6550] ? __pfx_find_vma_prev+0x10/0x10 [ 133.759826][ T6550] ? futex_unqueue+0x133/0x2c0 [ 133.759865][ T6550] ? __futex_wait+0x24c/0x2f0 [ 133.759908][ T6550] madvise_walk_vmas+0x31f/0x9c0 [ 133.759948][ T6550] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 133.759995][ T6550] madvise_do_behavior+0x1e2/0x530 [ 133.760029][ T6550] ? futex_private_hash_put+0x18a/0x300 [ 133.760056][ T6550] ? __pfx_madvise_do_behavior+0x10/0x10 [ 133.760092][ T6550] ? down_read+0x13d/0x480 [ 133.760134][ T6550] do_madvise+0x176/0x240 [ 133.760167][ T6550] ? __pfx_do_madvise+0x10/0x10 [ 133.760199][ T6550] ? do_futex+0x122/0x350 [ 133.760249][ T6550] ? xfd_validate_state+0x61/0x180 [ 133.760280][ T6550] ? __pfx_ksys_write+0x10/0x10 [ 133.760314][ T6550] __x64_sys_madvise+0xa9/0x110 [ 133.760348][ T6550] ? lockdep_hardirqs_on+0x7c/0x110 [ 133.760382][ T6550] do_syscall_64+0xcd/0x4c0 [ 133.760421][ T6550] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 133.760447][ T6550] RIP: 0033:0x7fccab78eec9 [ 133.760477][ T6550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 133.760500][ T6550] RSP: 002b:00007fccac6af038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 133.760523][ T6550] RAX: ffffffffffffffda RBX: 00007fccab9e5fa0 RCX: 00007fccab78eec9 [ 133.760538][ T6550] RDX: 0000000000000066 RSI: 0000000002021000 RDI: 0000000000000000 [ 133.760553][ T6550] RBP: 00007fccab811f91 R08: 0000000000000000 R09: 0000000000000000 [ 133.760568][ T6550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 133.760582][ T6550] R13: 00007fccab9e6038 R14: 00007fccab9e5fa0 R15: 00007ffd550c61f8 [ 133.760623][ T6550] [ 134.438049][ T6556] random: crng reseeded on system resumption [ 134.842238][ T6563] netlink: 4 bytes leftover after parsing attributes in process `syz.2.124'. [ 136.028388][ T6578] FAULT_INJECTION: forcing a failure. [ 136.028388][ T6578] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 136.107588][ T6578] CPU: 1 UID: 0 PID: 6578 Comm: syz.0.137 Not tainted syzkaller #0 PREEMPT(full) [ 136.107625][ T6578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 136.107640][ T6578] Call Trace: [ 136.107650][ T6578] [ 136.107660][ T6578] dump_stack_lvl+0x16c/0x1f0 [ 136.107704][ T6578] should_fail_ex+0x512/0x640 [ 136.107747][ T6578] should_fail_alloc_page+0xe7/0x130 [ 136.107784][ T6578] prepare_alloc_pages+0x3c2/0x610 [ 136.107831][ T6578] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 136.107866][ T6578] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 136.107901][ T6578] ? stack_depot_save_flags+0x3de/0x9c0 [ 136.107947][ T6578] ? kasan_save_stack+0x42/0x60 [ 136.107975][ T6578] ? kasan_save_stack+0x33/0x60 [ 136.108002][ T6578] ? kasan_save_track+0x14/0x30 [ 136.108031][ T6578] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 136.108062][ T6578] ? walk_pgd_range+0x88b/0x1f50 [ 136.108091][ T6578] ? walk_page_range_mm+0x461/0xb40 [ 136.108121][ T6578] ? madvise_walk_vmas+0x31f/0x9c0 [ 136.108155][ T6578] ? madvise_do_behavior+0x1e2/0x530 [ 136.108189][ T6578] ? do_madvise+0x176/0x240 [ 136.108221][ T6578] ? __x64_sys_madvise+0xa9/0x110 [ 136.108255][ T6578] ? do_syscall_64+0xcd/0x4c0 [ 136.108290][ T6578] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 136.108332][ T6578] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 136.108372][ T6578] ? policy_nodemask+0xea/0x4e0 [ 136.108409][ T6578] alloc_pages_mpol+0x1fb/0x550 [ 136.108445][ T6578] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 136.108490][ T6578] alloc_pages_noprof+0x131/0x390 [ 136.108524][ T6578] pte_alloc_one+0x1c/0x3a0 [ 136.108560][ T6578] __pte_alloc+0x6d/0x3c0 [ 136.108596][ T6578] ? __pfx___pte_alloc+0x10/0x10 [ 136.108632][ T6578] ? _raw_spin_unlock+0x28/0x50 [ 136.108663][ T6578] ? __pmd_alloc+0x3fb/0x930 [ 136.108704][ T6578] walk_pgd_range+0xb84/0x1f50 [ 136.108740][ T6578] ? __pfx_guard_install_set_pte+0x10/0x10 [ 136.108771][ T6578] ? __pfx_guard_install_pte_entry+0x10/0x10 [ 136.108805][ T6578] ? __pfx_guard_install_set_pte+0x10/0x10 [ 136.108842][ T6578] ? __pfx_guard_install_set_pte+0x10/0x10 [ 136.108876][ T6578] ? __pfx_guard_install_set_pte+0x10/0x10 [ 136.108911][ T6578] ? __pfx_walk_pgd_range+0x10/0x10 [ 136.108952][ T6578] __walk_page_range+0x163/0x820 [ 136.108986][ T6578] ? find_vma+0xbf/0x140 [ 136.109017][ T6578] ? __pfx_find_vma+0x10/0x10 [ 136.109053][ T6578] ? walk_page_test+0x9b/0x180 [ 136.109086][ T6578] walk_page_range_mm+0x461/0xb40 [ 136.109123][ T6578] ? __pfx_walk_page_range_mm+0x10/0x10 [ 136.109164][ T6578] ? __anon_vma_prepare+0x2e2/0x5e0 [ 136.109195][ T6578] madvise_vma_behavior+0xa62/0x2d60 [ 136.109236][ T6578] ? mas_prev_setup.constprop.0+0xb6/0x9d0 [ 136.109287][ T6578] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 136.109331][ T6578] ? __pfx_mas_prev+0x10/0x10 [ 136.109379][ T6578] ? find_vma_prev+0xda/0x160 [ 136.109414][ T6578] ? find_held_lock+0x2b/0x80 [ 136.109439][ T6578] ? __pfx_find_vma_prev+0x10/0x10 [ 136.109474][ T6578] ? futex_unqueue+0x133/0x2c0 [ 136.109514][ T6578] ? __futex_wait+0x24c/0x2f0 [ 136.109560][ T6578] madvise_walk_vmas+0x31f/0x9c0 [ 136.109605][ T6578] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 136.109652][ T6578] madvise_do_behavior+0x1e2/0x530 [ 136.109685][ T6578] ? futex_private_hash_put+0x18a/0x300 [ 136.109717][ T6578] ? __pfx_madvise_do_behavior+0x10/0x10 [ 136.109755][ T6578] ? down_read+0x13d/0x480 [ 136.109798][ T6578] do_madvise+0x176/0x240 [ 136.109833][ T6578] ? __pfx_do_madvise+0x10/0x10 [ 136.109866][ T6578] ? do_futex+0x122/0x350 [ 136.109922][ T6578] ? xfd_validate_state+0x61/0x180 [ 136.109953][ T6578] ? __pfx_ksys_write+0x10/0x10 [ 136.109988][ T6578] __x64_sys_madvise+0xa9/0x110 [ 136.110023][ T6578] ? lockdep_hardirqs_on+0x7c/0x110 [ 136.110058][ T6578] do_syscall_64+0xcd/0x4c0 [ 136.110099][ T6578] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 136.110123][ T6578] RIP: 0033:0x7fe0a1f8eec9 [ 136.110144][ T6578] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 136.110168][ T6578] RSP: 002b:00007fe0a2ee6038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 136.110191][ T6578] RAX: ffffffffffffffda RBX: 00007fe0a21e5fa0 RCX: 00007fe0a1f8eec9 [ 136.110208][ T6578] RDX: 0000000000000066 RSI: 0000000002021000 RDI: 0000000000000000 [ 136.110222][ T6578] RBP: 00007fe0a2011f91 R08: 0000000000000000 R09: 0000000000000000 [ 136.110237][ T6578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 136.110250][ T6578] R13: 00007fe0a21e6038 R14: 00007fe0a21e5fa0 R15: 00007ffc801cfb28 [ 136.110285][ T6578] [ 136.713091][ T6586] random: crng reseeded on system resumption [ 137.910152][ T6591] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 138.203354][ T6606] ima: policy update failed [ 138.212374][ T30] audit: type=1802 audit(1758740249.656:7): pid=6606 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.134" res=0 errno=0 [ 138.382226][ T6613] random: crng reseeded on system resumption [ 138.540361][ T6611] netlink: 4 bytes leftover after parsing attributes in process `syz.3.135'. [ 139.476078][ T6620] openvswitch: HfR: Dropping previously announced user features [ 140.236848][ T6633] netlink: 28 bytes leftover after parsing attributes in process `syz.1.141'. [ 142.400319][ T6669] netlink: 330 bytes leftover after parsing attributes in process `syz.0.149'. [ 142.448435][ T6667] netlink: 342 bytes leftover after parsing attributes in process `syz.3.148'. [ 142.463511][ T6669] mac80211_hwsim hwsim2 ›: renamed from wlan0 (while UP) [ 143.273417][ T6678] FAULT_INJECTION: forcing a failure. [ 143.273417][ T6678] name failslab, interval 1, probability 0, space 0, times 0 [ 143.290393][ T6678] CPU: 0 UID: 0 PID: 6678 Comm: syz.3.152 Not tainted syzkaller #0 PREEMPT(full) [ 143.290425][ T6678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 143.290440][ T6678] Call Trace: [ 143.290448][ T6678] [ 143.290458][ T6678] dump_stack_lvl+0x16c/0x1f0 [ 143.290500][ T6678] should_fail_ex+0x512/0x640 [ 143.290536][ T6678] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 143.290564][ T6678] should_failslab+0xc2/0x120 [ 143.290596][ T6678] __kmalloc_cache_noprof+0x6a/0x3e0 [ 143.290619][ T6678] ? ovs_flow_tbl_init+0xb0/0x600 [ 143.290653][ T6678] ? ovs_flow_tbl_init+0x1c7/0x600 [ 143.290690][ T6678] ovs_flow_tbl_init+0x1c7/0x600 [ 143.290726][ T6678] ovs_dp_cmd_new+0x251/0xe60 [ 143.290769][ T6678] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 143.290809][ T6678] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 143.290837][ T6678] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 143.290881][ T6678] genl_family_rcv_msg_doit+0x209/0x2f0 [ 143.290911][ T6678] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 143.290949][ T6678] ? bpf_lsm_capable+0x9/0x10 [ 143.290973][ T6678] ? security_capable+0x7e/0x260 [ 143.291001][ T6678] ? ns_capable+0xd7/0x110 [ 143.291032][ T6678] genl_rcv_msg+0x55c/0x800 [ 143.291063][ T6678] ? __pfx_genl_rcv_msg+0x10/0x10 [ 143.291091][ T6678] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 143.291137][ T6678] netlink_rcv_skb+0x158/0x420 [ 143.291173][ T6678] ? __pfx_genl_rcv_msg+0x10/0x10 [ 143.291203][ T6678] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 143.291257][ T6678] ? netlink_deliver_tap+0x1ae/0xd30 [ 143.291300][ T6678] genl_rcv+0x28/0x40 [ 143.291324][ T6678] netlink_unicast+0x5a7/0x870 [ 143.291366][ T6678] ? __pfx_netlink_unicast+0x10/0x10 [ 143.291404][ T6678] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 143.291440][ T6678] ? __lock_acquire+0xb97/0x1ce0 [ 143.291484][ T6678] netlink_sendmsg+0x8d1/0xdd0 [ 143.291529][ T6678] ? __pfx_netlink_sendmsg+0x10/0x10 [ 143.291571][ T6678] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 143.291606][ T6678] ____sys_sendmsg+0xa98/0xc70 [ 143.291635][ T6678] ? copy_msghdr_from_user+0x10a/0x160 [ 143.291675][ T6678] ? __pfx_____sys_sendmsg+0x10/0x10 [ 143.291712][ T6678] ? __pfx_futex_wake_mark+0x10/0x10 [ 143.291755][ T6678] ___sys_sendmsg+0x134/0x1d0 [ 143.291796][ T6678] ? __pfx____sys_sendmsg+0x10/0x10 [ 143.291886][ T6678] __sys_sendmsg+0x16d/0x220 [ 143.291926][ T6678] ? __pfx___sys_sendmsg+0x10/0x10 [ 143.291963][ T6678] ? __x64_sys_futex+0x1e0/0x4c0 [ 143.292017][ T6678] do_syscall_64+0xcd/0x4c0 [ 143.292057][ T6678] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 143.292082][ T6678] RIP: 0033:0x7fccab78eec9 [ 143.292103][ T6678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 143.292127][ T6678] RSP: 002b:00007fccac6af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 143.292152][ T6678] RAX: ffffffffffffffda RBX: 00007fccab9e5fa0 RCX: 00007fccab78eec9 [ 143.292169][ T6678] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000007 [ 143.292184][ T6678] RBP: 00007fccab811f91 R08: 0000000000000000 R09: 0000000000000000 [ 143.292200][ T6678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 143.292215][ T6678] R13: 00007fccab9e6038 R14: 00007fccab9e5fa0 R15: 00007ffd550c61f8 [ 143.292250][ T6678] [ 144.026614][ T6681] random: crng reseeded on system resumption [ 144.432102][ T30] audit: type=1800 audit(1758740255.876:8): pid=6695 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.157" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 145.897990][ T6727] netlink: 330 bytes leftover after parsing attributes in process `syz.2.161'. [ 145.907086][ T6727] mac80211_hwsim hwsim6 ›: renamed from wlan0 (while UP) [ 146.238463][ T6728] CIFS: VFS: Invalid SecurityFlags: [ 147.088483][ T6714] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26) [ 147.407682][ T6714] ima: policy update failed [ 147.473603][ T30] audit: type=1802 audit(1758740258.906:9): pid=6714 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.163" res=0 errno=0 [ 149.047326][ T30] audit: type=1800 audit(1758740260.466:10): pid=6761 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.172" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 149.205712][ T30] audit: type=1806 audit(1758740260.656:11): xattr="." res=0 [ 149.883840][ T6786] FAULT_INJECTION: forcing a failure. [ 149.883840][ T6786] name failslab, interval 1, probability 0, space 0, times 0 [ 149.896766][ T6786] CPU: 1 UID: 0 PID: 6786 Comm: syz.0.180 Not tainted syzkaller #0 PREEMPT(full) [ 149.896799][ T6786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 149.896812][ T6786] Call Trace: [ 149.896821][ T6786] [ 149.896832][ T6786] dump_stack_lvl+0x16c/0x1f0 [ 149.896874][ T6786] should_fail_ex+0x512/0x640 [ 149.896918][ T6786] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 149.896949][ T6786] should_failslab+0xc2/0x120 [ 149.896978][ T6786] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 149.897005][ T6786] ? getname_flags.part.0+0x4c/0x550 [ 149.897043][ T6786] getname_flags.part.0+0x4c/0x550 [ 149.897078][ T6786] getname_flags+0x93/0xf0 [ 149.897101][ T6786] do_sys_openat2+0xb8/0x1d0 [ 149.897133][ T6786] ? __pfx_do_sys_openat2+0x10/0x10 [ 149.897166][ T6786] ? __fget_files+0x20e/0x3c0 [ 149.897197][ T6786] __x64_sys_openat+0x174/0x210 [ 149.897216][ T6786] ? __pfx___x64_sys_openat+0x10/0x10 [ 149.897246][ T6786] do_syscall_64+0xcd/0x4c0 [ 149.897281][ T6786] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.897302][ T6786] RIP: 0033:0x7fe0a1f8eec9 [ 149.897318][ T6786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 149.897338][ T6786] RSP: 002b:00007fe0a2ea4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 149.897358][ T6786] RAX: ffffffffffffffda RBX: 00007fe0a21e6180 RCX: 00007fe0a1f8eec9 [ 149.897373][ T6786] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffff9c [ 149.897387][ T6786] RBP: 00007fe0a2011f91 R08: 0000000000000000 R09: 0000000000000000 [ 149.897400][ T6786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 149.897412][ T6786] R13: 00007fe0a21e6218 R14: 00007fe0a21e6180 R15: 00007ffc801cfb28 [ 149.897440][ T6786] [ 151.058190][ T6814] FAULT_INJECTION: forcing a failure. [ 151.058190][ T6814] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 151.097956][ T6814] CPU: 1 UID: 0 PID: 6814 Comm: syz.0.184 Not tainted syzkaller #0 PREEMPT(full) [ 151.097989][ T6814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 151.098002][ T6814] Call Trace: [ 151.098010][ T6814] [ 151.098020][ T6814] dump_stack_lvl+0x16c/0x1f0 [ 151.098060][ T6814] should_fail_ex+0x512/0x640 [ 151.098099][ T6814] _copy_from_user+0x2e/0xd0 [ 151.098126][ T6814] copy_msghdr_from_user+0x98/0x160 [ 151.098161][ T6814] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 151.098198][ T6814] ? kfree+0x24f/0x4d0 [ 151.098218][ T6814] ? __lock_acquire+0x62e/0x1ce0 [ 151.098255][ T6814] ___sys_recvmsg+0xdb/0x1a0 [ 151.098289][ T6814] ? __pfx____sys_recvmsg+0x10/0x10 [ 151.098342][ T6814] ? __pfx___might_resched+0x10/0x10 [ 151.098375][ T6814] do_recvmmsg+0x2fe/0x750 [ 151.098414][ T6814] ? __pfx_do_recvmmsg+0x10/0x10 [ 151.098456][ T6814] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 151.098502][ T6814] ? __fget_files+0x20e/0x3c0 [ 151.098537][ T6814] __x64_sys_recvmmsg+0x22a/0x280 [ 151.098575][ T6814] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 151.098621][ T6814] do_syscall_64+0xcd/0x4c0 [ 151.098659][ T6814] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 151.098683][ T6814] RIP: 0033:0x7fe0a1f8eec9 [ 151.098703][ T6814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 151.098725][ T6814] RSP: 002b:00007fe0a2ee6038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 151.098747][ T6814] RAX: ffffffffffffffda RBX: 00007fe0a21e5fa0 RCX: 00007fe0a1f8eec9 [ 151.098763][ T6814] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 151.098777][ T6814] RBP: 00007fe0a2ee6090 R08: 0000000000000000 R09: 0000000000000000 [ 151.098791][ T6814] R10: 0000000000000ffe R11: 0000000000000246 R12: 0000000000000002 [ 151.098805][ T6814] R13: 00007fe0a21e6038 R14: 00007fe0a21e5fa0 R15: 00007ffc801cfb28 [ 151.098845][ T6814] [ 151.544027][ T6819] random: crng reseeded on system resumption [ 152.158653][ T6834] synth uevent: /bus/hid/drivers/zeroplus: unknown uevent action string [ 152.167843][ T6835] synth uevent: /bus/hid/drivers/zeroplus: unknown uevent action string [ 152.185100][ T30] audit: type=1400 audit(1758740263.636:12): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=6833 comm="syz.2.189" [ 154.731677][ T6882] FAULT_INJECTION: forcing a failure. [ 154.731677][ T6882] name failslab, interval 1, probability 0, space 0, times 0 [ 154.863325][ T6882] CPU: 1 UID: 0 PID: 6882 Comm: syz.2.197 Not tainted syzkaller #0 PREEMPT(full) [ 154.863359][ T6882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 154.863374][ T6882] Call Trace: [ 154.863381][ T6882] [ 154.863400][ T6882] dump_stack_lvl+0x16c/0x1f0 [ 154.863445][ T6882] should_fail_ex+0x512/0x640 [ 154.863484][ T6882] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 154.863515][ T6882] should_failslab+0xc2/0x120 [ 154.863548][ T6882] __kmalloc_cache_noprof+0x6a/0x3e0 [ 154.863576][ T6882] ? vmci_ctx_create+0xbb/0x740 [ 154.863608][ T6882] vmci_ctx_create+0xbb/0x740 [ 154.863640][ T6882] vmci_host_unlocked_ioctl+0x1ad8/0x2040 [ 154.863679][ T6882] ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10 [ 154.863716][ T6882] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 154.863756][ T6882] ? do_vfs_ioctl+0x128/0x14f0 [ 154.863794][ T6882] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 154.863843][ T6882] ? find_held_lock+0x2b/0x80 [ 154.863866][ T6882] ? hook_file_ioctl_common+0x145/0x410 [ 154.863908][ T6882] ? __fget_files+0x20e/0x3c0 [ 154.863941][ T6882] ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10 [ 154.863980][ T6882] __x64_sys_ioctl+0x18b/0x210 [ 154.864021][ T6882] do_syscall_64+0xcd/0x4c0 [ 154.864062][ T6882] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 154.864088][ T6882] RIP: 0033:0x7f35d098eec9 [ 154.864108][ T6882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 154.864132][ T6882] RSP: 002b:00007f35d17b2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 154.864156][ T6882] RAX: ffffffffffffffda RBX: 00007f35d0be6180 RCX: 00007f35d098eec9 [ 154.864174][ T6882] RDX: 0000000000000006 RSI: 00000000000007a0 RDI: 0000000000000009 [ 154.864189][ T6882] RBP: 00007f35d0a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 154.864204][ T6882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 154.864219][ T6882] R13: 00007f35d0be6218 R14: 00007f35d0be6180 R15: 00007ffea30428b8 [ 154.864254][ T6882] [ 154.864273][ T6882] Failed to allocate memory for VMCI context [ 154.874560][ T6889] FAULT_INJECTION: forcing a failure. [ 154.874560][ T6889] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 155.109703][ T6889] CPU: 1 UID: 0 PID: 6889 Comm: syz.1.201 Not tainted syzkaller #0 PREEMPT(full) [ 155.109733][ T6889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 155.109745][ T6889] Call Trace: [ 155.109751][ T6889] [ 155.109759][ T6889] dump_stack_lvl+0x16c/0x1f0 [ 155.109796][ T6889] should_fail_ex+0x512/0x640 [ 155.109835][ T6889] _copy_from_user+0x2e/0xd0 [ 155.109861][ T6889] copy_msghdr_from_user+0x98/0x160 [ 155.109895][ T6889] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 155.109933][ T6889] ? kfree+0x24f/0x4d0 [ 155.109955][ T6889] ? __lock_acquire+0x62e/0x1ce0 [ 155.109989][ T6889] ___sys_recvmsg+0xdb/0x1a0 [ 155.110022][ T6889] ? __pfx____sys_recvmsg+0x10/0x10 [ 155.110072][ T6889] ? __pfx___might_resched+0x10/0x10 [ 155.110104][ T6889] do_recvmmsg+0x2fe/0x750 [ 155.110142][ T6889] ? __pfx_do_recvmmsg+0x10/0x10 [ 155.110184][ T6889] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 155.110230][ T6889] ? __fget_files+0x20e/0x3c0 [ 155.110266][ T6889] __x64_sys_recvmmsg+0x22a/0x280 [ 155.110303][ T6889] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 155.110350][ T6889] do_syscall_64+0xcd/0x4c0 [ 155.110396][ T6889] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 155.110420][ T6889] RIP: 0033:0x7fd1eb78eec9 [ 155.110442][ T6889] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 155.110464][ T6889] RSP: 002b:00007fd1ec5d9038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 155.110487][ T6889] RAX: ffffffffffffffda RBX: 00007fd1eb9e5fa0 RCX: 00007fd1eb78eec9 [ 155.110502][ T6889] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 155.110516][ T6889] RBP: 00007fd1ec5d9090 R08: 0000000000000000 R09: 0000000000000000 [ 155.110530][ T6889] R10: 0000000000000ffe R11: 0000000000000246 R12: 0000000000000002 [ 155.110544][ T6889] R13: 00007fd1eb9e6038 R14: 00007fd1eb9e5fa0 R15: 00007fff475a11c8 [ 155.110577][ T6889] [ 156.170653][ T6912] dyndbg: bad flag-op , at start of ÐåD£×Ù´h"”ÛA.©k±ûÔß¼¹êo­B`pÊtF†´!5PÃkrÃصiuýÃ~G’…lBFÆr§£ä0Z•BÒGOh™¤*9Å‹(ëu$ÒhÝž2Ï—##‡Ð:ÿ•á±j¾?ˆׂªO5ï [ 156.188983][ T6912] dyndbg: flags parse failed [ 156.934744][ T3584] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u8:7: bg 1: bad block bitmap checksum [ 156.959576][ T3584] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1437 with max blocks 9 with error 74 [ 156.976462][ T3584] EXT4-fs (sda1): This should not happen!! Data will be lost [ 156.976462][ T3584] [ 157.694923][ T6950] FAULT_INJECTION: forcing a failure. [ 157.694923][ T6950] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 157.756881][ T6950] CPU: 1 UID: 0 PID: 6950 Comm: syz.0.215 Not tainted syzkaller #0 PREEMPT(full) [ 157.756914][ T6950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 157.756927][ T6950] Call Trace: [ 157.756935][ T6950] [ 157.756944][ T6950] dump_stack_lvl+0x16c/0x1f0 [ 157.756984][ T6950] should_fail_ex+0x512/0x640 [ 157.757025][ T6950] _copy_from_user+0x2e/0xd0 [ 157.757052][ T6950] copy_msghdr_from_user+0x98/0x160 [ 157.757087][ T6950] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 157.757127][ T6950] ? kfree+0x24f/0x4d0 [ 157.757149][ T6950] ? __lock_acquire+0x62e/0x1ce0 [ 157.757188][ T6950] ___sys_recvmsg+0xdb/0x1a0 [ 157.757222][ T6950] ? __pfx____sys_recvmsg+0x10/0x10 [ 157.757277][ T6950] ? __pfx___might_resched+0x10/0x10 [ 157.757309][ T6950] do_recvmmsg+0x2fe/0x750 [ 157.757355][ T6950] ? __pfx_do_recvmmsg+0x10/0x10 [ 157.757397][ T6950] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 157.757444][ T6950] ? __fget_files+0x20e/0x3c0 [ 157.757479][ T6950] __x64_sys_recvmmsg+0x22a/0x280 [ 157.757517][ T6950] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 157.757561][ T6950] do_syscall_64+0xcd/0x4c0 [ 157.757596][ T6950] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 157.757619][ T6950] RIP: 0033:0x7fe0a1f8eec9 [ 157.757636][ T6950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 157.757657][ T6950] RSP: 002b:00007fe0a2ee6038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 157.757678][ T6950] RAX: ffffffffffffffda RBX: 00007fe0a21e5fa0 RCX: 00007fe0a1f8eec9 [ 157.757693][ T6950] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 157.757706][ T6950] RBP: 00007fe0a2ee6090 R08: 0000000000000000 R09: 0000000000000000 [ 157.757719][ T6950] R10: 0000000000000ffe R11: 0000000000000246 R12: 0000000000000002 [ 157.757732][ T6950] R13: 00007fe0a21e6038 R14: 00007fe0a21e5fa0 R15: 00007ffc801cfb28 [ 157.757764][ T6950] [ 158.264849][ T6954] sp0: Synchronizing with TNC [ 158.301719][ T6958] netlink: 8 bytes leftover after parsing attributes in process `syz.0.219'. [ 160.239039][ T7000] FAULT_INJECTION: forcing a failure. [ 160.239039][ T7000] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 160.305751][ T7000] CPU: 1 UID: 0 PID: 7000 Comm: syz.3.228 Not tainted syzkaller #0 PREEMPT(full) [ 160.305771][ T7000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 160.305779][ T7000] Call Trace: [ 160.305784][ T7000] [ 160.305790][ T7000] dump_stack_lvl+0x16c/0x1f0 [ 160.305815][ T7000] should_fail_ex+0x512/0x640 [ 160.305839][ T7000] _copy_from_user+0x2e/0xd0 [ 160.305854][ T7000] copy_msghdr_from_user+0x98/0x160 [ 160.305876][ T7000] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 160.305898][ T7000] ? kfree+0x24f/0x4d0 [ 160.305922][ T7000] ___sys_recvmsg+0xdb/0x1a0 [ 160.305942][ T7000] ? __pfx____sys_recvmsg+0x10/0x10 [ 160.305971][ T7000] ? __pfx___might_resched+0x10/0x10 [ 160.305990][ T7000] do_recvmmsg+0x2fe/0x750 [ 160.306012][ T7000] ? __pfx_do_recvmmsg+0x10/0x10 [ 160.306035][ T7000] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 160.306061][ T7000] ? __fget_files+0x20e/0x3c0 [ 160.306081][ T7000] __x64_sys_recvmmsg+0x22a/0x280 [ 160.306102][ T7000] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 160.306128][ T7000] do_syscall_64+0xcd/0x4c0 [ 160.306150][ T7000] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 160.306164][ T7000] RIP: 0033:0x7fccab78eec9 [ 160.306175][ T7000] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 160.306188][ T7000] RSP: 002b:00007fccac68e038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 160.306202][ T7000] RAX: ffffffffffffffda RBX: 00007fccab9e6090 RCX: 00007fccab78eec9 [ 160.306210][ T7000] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 160.306218][ T7000] RBP: 00007fccac68e090 R08: 0000000000000000 R09: 0000000000000000 [ 160.306226][ T7000] R10: 0000000000000ffe R11: 0000000000000246 R12: 0000000000000002 [ 160.306234][ T7000] R13: 00007fccab9e6128 R14: 00007fccab9e6090 R15: 00007ffd550c61f8 [ 160.306251][ T7000] [ 161.022837][ T7011] netlink: 32 bytes leftover after parsing attributes in process `syz.0.230'. [ 161.043402][ T7012] netlink: 32 bytes leftover after parsing attributes in process `syz.0.230'. [ 162.789795][ T7055] FAULT_INJECTION: forcing a failure. [ 162.789795][ T7055] name failslab, interval 1, probability 0, space 0, times 0 [ 162.930821][ T7055] CPU: 0 UID: 0 PID: 7055 Comm: syz.2.236 Not tainted syzkaller #0 PREEMPT(full) [ 162.930856][ T7055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 162.930871][ T7055] Call Trace: [ 162.930880][ T7055] [ 162.930890][ T7055] dump_stack_lvl+0x16c/0x1f0 [ 162.930935][ T7055] should_fail_ex+0x512/0x640 [ 162.930973][ T7055] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 162.931009][ T7055] should_failslab+0xc2/0x120 [ 162.931042][ T7055] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 162.931073][ T7055] ? __kernfs_new_node+0xd2/0x8e0 [ 162.931110][ T7055] __kernfs_new_node+0xd2/0x8e0 [ 162.931148][ T7055] ? __pfx___kernfs_new_node+0x10/0x10 [ 162.931189][ T7055] ? find_held_lock+0x2b/0x80 [ 162.931216][ T7055] ? kernfs_root+0xee/0x2a0 [ 162.931255][ T7055] kernfs_new_node+0x13c/0x1e0 [ 162.931297][ T7055] __kernfs_create_file+0x53/0x350 [ 162.931327][ T7055] sysfs_add_file_mode_ns+0x207/0x3c0 [ 162.931367][ T7055] internal_create_group+0x578/0xf30 [ 162.931409][ T7055] ? __pfx_internal_create_group+0x10/0x10 [ 162.931449][ T7055] ? kernfs_create_link+0x1bd/0x240 [ 162.931481][ T7055] internal_create_groups+0x9d/0x150 [ 162.931518][ T7055] device_add+0xf30/0x1aa0 [ 162.931549][ T7055] ? __pfx_device_add+0x10/0x10 [ 162.931576][ T7055] ? lockdep_init_map_type+0x5c/0x280 [ 162.931620][ T7055] ? __init_waitqueue_head+0xca/0x150 [ 162.931669][ T7055] wakeup_source_device_create+0x214/0x2a0 [ 162.931700][ T7055] wakeup_source_sysfs_add+0x1c/0x90 [ 162.931728][ T7055] wakeup_source_register+0x154/0x3e0 [ 162.931769][ T7055] ep_create_wakeup_source+0x1dd/0x2e0 [ 162.931797][ T7055] ? __pfx_ep_create_wakeup_source+0x10/0x10 [ 162.931832][ T7055] ? do_epoll_ctl+0x1565/0x3790 [ 162.931867][ T7055] do_epoll_ctl+0x1f60/0x3790 [ 162.931912][ T7055] ? __pfx_do_epoll_ctl+0x10/0x10 [ 162.931938][ T7055] ? find_held_lock+0x2b/0x80 [ 162.931962][ T7055] ? __might_fault+0xe3/0x190 [ 162.931990][ T7055] ? __might_fault+0xe3/0x190 [ 162.932033][ T7055] ? __x64_sys_epoll_ctl+0x15c/0x1e0 [ 162.932059][ T7055] __x64_sys_epoll_ctl+0x15c/0x1e0 [ 162.932089][ T7055] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 162.932128][ T7055] do_syscall_64+0xcd/0x4c0 [ 162.932155][ T7055] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 162.932169][ T7055] RIP: 0033:0x7f35d098eec9 [ 162.932186][ T7055] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 162.932200][ T7055] RSP: 002b:00007f35d17f4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 162.932214][ T7055] RAX: ffffffffffffffda RBX: 00007f35d0be5fa0 RCX: 00007f35d098eec9 [ 162.932223][ T7055] RDX: 8000000000000000 RSI: 0000000000000001 RDI: 000000000000000b [ 162.932232][ T7055] RBP: 00007f35d0a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 162.932241][ T7055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 162.932250][ T7055] R13: 00007f35d0be6038 R14: 00007f35d0be5fa0 R15: 00007ffea30428b8 [ 162.932268][ T7055] [ 164.318171][ T7087] ICMPv6: process `syz.1.240' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 165.095623][ T7096] ubi0: attaching mtd0 [ 165.109556][ T7096] ubi0: scanning is finished [ 165.116799][ T7096] ubi0: empty MTD device detected [ 165.513666][ T7096] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 165.521634][ T7096] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 165.529464][ T7096] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 165.536489][ T7096] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 165.544734][ T7096] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 165.551522][ T7096] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 165.559676][ T7096] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 4092178100 [ 165.569729][ T7096] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 165.665945][ T7115] ubi0: background thread "ubi_bgt0d" started, PID 7115 [ 167.868188][ T7164] FAULT_INJECTION: forcing a failure. [ 167.868188][ T7164] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 167.910418][ T7164] CPU: 0 UID: 0 PID: 7164 Comm: syz.2.252 Not tainted syzkaller #0 PREEMPT(full) [ 167.910450][ T7164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 167.910463][ T7164] Call Trace: [ 167.910471][ T7164] [ 167.910480][ T7164] dump_stack_lvl+0x16c/0x1f0 [ 167.910519][ T7164] should_fail_ex+0x512/0x640 [ 167.910559][ T7164] _copy_from_user+0x2e/0xd0 [ 167.910586][ T7164] copy_msghdr_from_user+0x98/0x160 [ 167.910619][ T7164] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 167.910655][ T7164] ? kfree+0x24f/0x4d0 [ 167.910675][ T7164] ? __lock_acquire+0x62e/0x1ce0 [ 167.910710][ T7164] ___sys_recvmsg+0xdb/0x1a0 [ 167.910744][ T7164] ? __pfx____sys_recvmsg+0x10/0x10 [ 167.910794][ T7164] ? __pfx___might_resched+0x10/0x10 [ 167.910825][ T7164] do_recvmmsg+0x2fe/0x750 [ 167.910862][ T7164] ? __pfx_do_recvmmsg+0x10/0x10 [ 167.910902][ T7164] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 167.910946][ T7164] ? __fget_files+0x20e/0x3c0 [ 167.910980][ T7164] __x64_sys_recvmmsg+0x22a/0x280 [ 167.911017][ T7164] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 167.911070][ T7164] do_syscall_64+0xcd/0x4c0 [ 167.911106][ T7164] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 167.911130][ T7164] RIP: 0033:0x7f35d098eec9 [ 167.911148][ T7164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 167.911170][ T7164] RSP: 002b:00007f35d17f4038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 167.911191][ T7164] RAX: ffffffffffffffda RBX: 00007f35d0be5fa0 RCX: 00007f35d098eec9 [ 167.911206][ T7164] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 167.911219][ T7164] RBP: 00007f35d17f4090 R08: 0000000000000000 R09: 0000000000000000 [ 167.911233][ T7164] R10: 0000000000000ffe R11: 0000000000000246 R12: 0000000000000002 [ 167.911246][ T7164] R13: 00007f35d0be6038 R14: 00007f35d0be5fa0 R15: 00007ffea30428b8 [ 167.911278][ T7164] [ 168.694428][ T7151] workqueue: Failed to create a rescuer kthread for wq "nfc3_nci_tx_wq": -EINTR [ 169.432478][ C0] vcan0: j1939_tp_rxtimer: 0xffff88805ae8e000: rx timeout, send abort [ 169.900276][ T7218] netlink: zone id is out of range [ 169.905962][ T7218] netlink: zone id is out of range [ 169.911620][ T7218] netlink: zone id is out of range [ 169.917515][ T7218] netlink: zone id is out of range [ 169.922993][ T7218] netlink: zone id is out of range [ 169.950215][ C0] vcan0: j1939_tp_rxtimer: 0xffff88805ae8e000: abort rx timeout. Force session deactivation [ 170.072717][ T7218] netlink: zone id is out of range [ 170.085248][ T7218] netlink: zone id is out of range [ 170.091107][ T7218] netlink: zone id is out of range [ 170.103801][ T7218] netlink: zone id is out of range [ 170.116718][ T7218] netlink: zone id is out of range [ 171.201061][ T7236] Invalid ELF header magic: != ELF [ 171.706329][ T30] audit: type=1804 audit(1758740283.146:13): pid=7240 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.266" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 172.372118][ T7250] HfR: entered promiscuous mode [ 172.507508][ T7252] FAULT_INJECTION: forcing a failure. [ 172.507508][ T7252] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 172.592383][ T7252] CPU: 0 UID: 0 PID: 7252 Comm: syz.1.270 Not tainted syzkaller #0 PREEMPT(full) [ 172.592404][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 172.592413][ T7252] Call Trace: [ 172.592418][ T7252] [ 172.592431][ T7252] dump_stack_lvl+0x16c/0x1f0 [ 172.592460][ T7252] should_fail_ex+0x512/0x640 [ 172.592484][ T7252] _copy_from_user+0x2e/0xd0 [ 172.592500][ T7252] snd_rawmidi_kernel_write1+0x50a/0x8a0 [ 172.592524][ T7252] snd_rawmidi_write+0x26e/0xc10 [ 172.592546][ T7252] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 172.592564][ T7252] ? __pfx_default_wake_function+0x10/0x10 [ 172.592580][ T7252] ? bpf_lsm_file_permission+0x9/0x10 [ 172.592600][ T7252] ? security_file_permission+0x71/0x210 [ 172.592619][ T7252] ? rw_verify_area+0xcf/0x6c0 [ 172.592637][ T7252] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 172.592654][ T7252] vfs_write+0x29d/0x11d0 [ 172.592673][ T7252] ? __pfx_vfs_write+0x10/0x10 [ 172.592687][ T7252] ? find_held_lock+0x2b/0x80 [ 172.592702][ T7252] ? __fget_files+0x204/0x3c0 [ 172.592719][ T7252] ? __fget_files+0x20e/0x3c0 [ 172.592739][ T7252] ksys_write+0x1f8/0x250 [ 172.592769][ T7252] ? __pfx_ksys_write+0x10/0x10 [ 172.592790][ T7252] do_syscall_64+0xcd/0x4c0 [ 172.592817][ T7252] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 172.592831][ T7252] RIP: 0033:0x7fd1eb78eec9 [ 172.592843][ T7252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 172.592856][ T7252] RSP: 002b:00007fd1ec5b8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 172.592879][ T7252] RAX: ffffffffffffffda RBX: 00007fd1eb9e6090 RCX: 00007fd1eb78eec9 [ 172.592889][ T7252] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000008 [ 172.592898][ T7252] RBP: 00007fd1eb811f91 R08: 0000000000000000 R09: 0000000000000000 [ 172.592906][ T7252] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 172.592914][ T7252] R13: 00007fd1eb9e6128 R14: 00007fd1eb9e6090 R15: 00007fff475a11c8 [ 172.592933][ T7252] [ 175.948962][ T7321] zswap: compressor not available [ 176.393162][ T7329] FAULT_INJECTION: forcing a failure. [ 176.393162][ T7329] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 176.444148][ T7329] CPU: 0 UID: 0 PID: 7329 Comm: syz.2.285 Not tainted syzkaller #0 PREEMPT(full) [ 176.444184][ T7329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 176.444198][ T7329] Call Trace: [ 176.444206][ T7329] [ 176.444217][ T7329] dump_stack_lvl+0x16c/0x1f0 [ 176.444261][ T7329] should_fail_ex+0x512/0x640 [ 176.444312][ T7329] should_fail_alloc_page+0xe7/0x130 [ 176.444350][ T7329] prepare_alloc_pages+0x3c2/0x610 [ 176.444397][ T7329] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 176.444444][ T7329] ? stack_depot_save_flags+0x29/0x9c0 [ 176.444489][ T7329] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 176.444524][ T7329] ? get_il_weight+0xea/0x290 [ 176.444563][ T7329] ? get_il_weight+0xf4/0x290 [ 176.444596][ T7329] ? weighted_interleave_nodes+0x28f/0x560 [ 176.444636][ T7329] ? policy_nodemask+0xea/0x4e0 [ 176.444670][ T7329] alloc_pages_mpol+0x1fb/0x550 [ 176.444704][ T7329] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 176.444751][ T7329] alloc_pages_noprof+0x131/0x390 [ 176.444787][ T7329] get_free_pages_noprof+0x10/0xb0 [ 176.444821][ T7329] kasan_populate_vmalloc+0x9f/0x2d0 [ 176.444849][ T7329] ? alloc_vmap_area+0x8b5/0x29c0 [ 176.444893][ T7329] alloc_vmap_area+0x960/0x29c0 [ 176.444947][ T7329] ? __pfx_alloc_vmap_area+0x10/0x10 [ 176.444998][ T7329] __get_vm_area_node+0x1ca/0x330 [ 176.445043][ T7329] __vmalloc_node_range_noprof+0x271/0x14b0 [ 176.445067][ T7329] ? n_tty_open+0x1a/0x170 [ 176.445100][ T7329] ? __lock_acquire+0xb97/0x1ce0 [ 176.445136][ T7329] ? n_tty_open+0x1a/0x170 [ 176.445182][ T7329] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 176.445214][ T7329] ? find_held_lock+0x2b/0x80 [ 176.445245][ T7329] ? n_tty_open+0x12b/0x170 [ 176.445275][ T7329] ? n_tty_open+0x1a/0x170 [ 176.445299][ T7329] __vmalloc_node_noprof+0xad/0xf0 [ 176.445325][ T7329] ? n_tty_open+0x1a/0x170 [ 176.445351][ T7329] ? __pfx_n_tty_open+0x10/0x10 [ 176.445379][ T7329] n_tty_open+0x1a/0x170 [ 176.445406][ T7329] ? __pfx_n_tty_open+0x10/0x10 [ 176.445437][ T7329] tty_ldisc_open+0x9f/0x120 [ 176.445477][ T7329] tty_ldisc_setup+0x87/0x100 [ 176.445514][ T7329] tty_init_dev.part.0+0x1ec/0x500 [ 176.445541][ T7329] tty_open+0xa50/0xf90 [ 176.445574][ T7329] ? __pfx_tty_open+0x10/0x10 [ 176.445599][ T7329] ? chrdev_open+0x58c/0x6a0 [ 176.445638][ T7329] ? __pfx_tty_open+0x10/0x10 [ 176.445659][ T7329] chrdev_open+0x231/0x6a0 [ 176.445694][ T7329] ? __pfx_chrdev_open+0x10/0x10 [ 176.445729][ T7329] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 176.445767][ T7329] do_dentry_open+0x97f/0x1530 [ 176.445799][ T7329] ? __pfx_chrdev_open+0x10/0x10 [ 176.445845][ T7329] vfs_open+0x82/0x3f0 [ 176.445888][ T7329] path_openat+0x1de4/0x2cb0 [ 176.445933][ T7329] ? __pfx_path_openat+0x10/0x10 [ 176.445980][ T7329] do_filp_open+0x20b/0x470 [ 176.446012][ T7329] ? __pfx_do_filp_open+0x10/0x10 [ 176.446073][ T7329] ? alloc_fd+0x471/0x7d0 [ 176.446113][ T7329] do_sys_openat2+0x11b/0x1d0 [ 176.446151][ T7329] ? __pfx_do_sys_openat2+0x10/0x10 [ 176.446209][ T7329] __x64_sys_openat+0x174/0x210 [ 176.446233][ T7329] ? __pfx___x64_sys_openat+0x10/0x10 [ 176.446258][ T7329] ? syscall_user_dispatch+0x78/0x140 [ 176.446309][ T7329] do_syscall_64+0xcd/0x4c0 [ 176.446352][ T7329] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 176.446378][ T7329] RIP: 0033:0x7f35d098eec9 [ 176.446399][ T7329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 176.446433][ T7329] RSP: 002b:00007f35d1791038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 176.446458][ T7329] RAX: ffffffffffffffda RBX: 00007f35d0be6270 RCX: 00007f35d098eec9 [ 176.446476][ T7329] RDX: 0000000000040001 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 176.446493][ T7329] RBP: 00007f35d0a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 176.446509][ T7329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 176.446525][ T7329] R13: 00007f35d0be6308 R14: 00007f35d0be6270 R15: 00007ffea30428b8 [ 176.446562][ T7329] [ 176.642878][ T7329] syz.2.285: vmalloc error: size 9128, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 177.066455][ T7329] CPU: 0 UID: 0 PID: 7329 Comm: syz.2.285 Not tainted syzkaller #0 PREEMPT(full) [ 177.066489][ T7329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 177.066503][ T7329] Call Trace: [ 177.066511][ T7329] [ 177.066520][ T7329] dump_stack_lvl+0x16c/0x1f0 [ 177.066558][ T7329] warn_alloc+0x248/0x3a0 [ 177.066589][ T7329] ? __pfx_warn_alloc+0x10/0x10 [ 177.066620][ T7329] ? kfree+0x2b4/0x4d0 [ 177.066651][ T7329] ? __get_vm_area_node+0x208/0x330 [ 177.066694][ T7329] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 177.066726][ T7329] ? __lock_acquire+0xb97/0x1ce0 [ 177.066758][ T7329] ? n_tty_open+0x1a/0x170 [ 177.066791][ T7329] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 177.066819][ T7329] ? find_held_lock+0x2b/0x80 [ 177.066842][ T7329] ? n_tty_open+0x12b/0x170 [ 177.066868][ T7329] ? n_tty_open+0x1a/0x170 [ 177.066889][ T7329] __vmalloc_node_noprof+0xad/0xf0 [ 177.066911][ T7329] ? n_tty_open+0x1a/0x170 [ 177.066934][ T7329] ? __pfx_n_tty_open+0x10/0x10 [ 177.066959][ T7329] n_tty_open+0x1a/0x170 [ 177.066982][ T7329] ? __pfx_n_tty_open+0x10/0x10 [ 177.067008][ T7329] tty_ldisc_open+0x9f/0x120 [ 177.067039][ T7329] tty_ldisc_setup+0x87/0x100 [ 177.067072][ T7329] tty_init_dev.part.0+0x1ec/0x500 [ 177.067097][ T7329] tty_open+0xa50/0xf90 [ 177.067132][ T7329] ? __pfx_tty_open+0x10/0x10 [ 177.067153][ T7329] ? chrdev_open+0x58c/0x6a0 [ 177.067188][ T7329] ? __pfx_tty_open+0x10/0x10 [ 177.067209][ T7329] chrdev_open+0x231/0x6a0 [ 177.067239][ T7329] ? __pfx_chrdev_open+0x10/0x10 [ 177.067271][ T7329] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 177.067305][ T7329] do_dentry_open+0x97f/0x1530 [ 177.067334][ T7329] ? __pfx_chrdev_open+0x10/0x10 [ 177.067371][ T7329] vfs_open+0x82/0x3f0 [ 177.067408][ T7329] path_openat+0x1de4/0x2cb0 [ 177.067448][ T7329] ? __pfx_path_openat+0x10/0x10 [ 177.067486][ T7329] do_filp_open+0x20b/0x470 [ 177.067514][ T7329] ? __pfx_do_filp_open+0x10/0x10 [ 177.067571][ T7329] ? alloc_fd+0x471/0x7d0 [ 177.067608][ T7329] do_sys_openat2+0x11b/0x1d0 [ 177.067643][ T7329] ? __pfx_do_sys_openat2+0x10/0x10 [ 177.067692][ T7329] __x64_sys_openat+0x174/0x210 [ 177.067715][ T7329] ? __pfx___x64_sys_openat+0x10/0x10 [ 177.067739][ T7329] ? syscall_user_dispatch+0x78/0x140 [ 177.067784][ T7329] do_syscall_64+0xcd/0x4c0 [ 177.067822][ T7329] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 177.067845][ T7329] RIP: 0033:0x7f35d098eec9 [ 177.067864][ T7329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 177.067886][ T7329] RSP: 002b:00007f35d1791038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 177.067910][ T7329] RAX: ffffffffffffffda RBX: 00007f35d0be6270 RCX: 00007f35d098eec9 [ 177.067926][ T7329] RDX: 0000000000040001 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 177.067941][ T7329] RBP: 00007f35d0a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 177.067955][ T7329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 177.067969][ T7329] R13: 00007f35d0be6308 R14: 00007f35d0be6270 R15: 00007ffea30428b8 [ 177.068003][ T7329] [ 177.071762][ T7329] Mem-Info: [ 177.384726][ T7329] active_anon:13378 inactive_anon:25 isolated_anon:0 [ 177.384726][ T7329] active_file:3665 inactive_file:52590 isolated_file:0 [ 177.384726][ T7329] unevictable:3793 dirty:422 writeback:0 [ 177.384726][ T7329] slab_reclaimable:10831 slab_unreclaimable:93742 [ 177.384726][ T7329] mapped:28817 shmem:2788 pagetables:1272 [ 177.384726][ T7329] sec_pagetables:0 bounce:0 [ 177.384726][ T7329] kernel_misc_reclaimable:0 [ 177.384726][ T7329] free:1315503 free_pcp:14360 free_cma:0 [ 177.465537][ T7329] Node 0 active_anon:53512kB inactive_anon:100kB active_file:14660kB inactive_file:210064kB unevictable:13736kB isolated(anon):0kB isolated(file):0kB mapped:115268kB dirty:1684kB writeback:0kB shmem:9616kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12004kB pagetables:4972kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 177.501907][ T7329] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:196kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:116kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 177.535279][ T7329] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 177.614832][ T6092] udevd[6092]: inotify_add_watch(7, /dev/nbd0, 10) failed: No such file or directory [ 177.624731][ T7329] lowmem_reserve[]: 0 2480 2481 2481 2481 [ 177.630532][ T7329] Node 0 DMA32 free:1361036kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:54468kB inactive_anon:100kB active_file:14660kB inactive_file:208756kB unevictable:9736kB writepending:1684kB present:3129332kB managed:2539528kB mlocked:8200kB bounce:0kB free_pcp:42292kB local_pcp:17312kB free_cma:0kB [ 177.669696][ T7329] lowmem_reserve[]: 0 0 1 1 1 [ 177.675872][ T7329] Node 0 Normal free:16kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1308kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:20kB local_pcp:12kB free_cma:0kB [ 177.708031][ T7329] lowmem_reserve[]: 0 0 0 0 0 [ 177.712793][ T7329] Node 1 Normal free:3884900kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:196kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:19036kB local_pcp:8064kB free_cma:0kB [ 177.818957][ T7329] lowmem_reserve[]: 0 0 0 0 0 [ 177.828213][ T7329] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 177.841356][ T7329] Node 0 DMA32: 1172*4kB (UM) 384*8kB (UM) 471*16kB (UME) 541*32kB (UM) 262*64kB (UM) 148*128kB (UM) 76*256kB (UME) 30*512kB (UME) 11*1024kB (UM) 11*2048kB (UME) 299*4096kB (M) = 1361632kB [ 177.863379][ T7329] Node 0 Normal: 0*4kB 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB [ 177.879196][ T7329] Node 1 Normal: 212*4kB (UME) 53*8kB (UE) 48*16kB (UME) 107*32kB (UME) 41*64kB (UME) 8*128kB (UME) 6*256kB (UME) 3*512kB (UME) 2*1024kB (UM) 2*2048kB (UE) 944*4096kB (M) = 3884952kB [ 177.898789][ T7329] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 177.923310][ T7329] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 177.933589][ T7329] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 177.943533][ T7329] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 177.983306][ T7329] 59952 total pagecache pages [ 177.996246][ T7329] 848 pages in swap cache [ 178.000864][ T7329] Free swap = 120748kB [ 178.010702][ T7329] Total swap = 124996kB [ 178.017622][ T7329] 2097051 pages RAM [ 178.026081][ T7329] 0 pages HighMem/MovableOnly [ 178.047444][ T7360] FAULT_INJECTION: forcing a failure. [ 178.047444][ T7360] name failslab, interval 1, probability 0, space 0, times 0 [ 178.076237][ T7329] 430207 pages reserved [ 178.078632][ T7362] netlink: 330 bytes leftover after parsing attributes in process `syz.0.292'. [ 178.082499][ T7360] CPU: 0 UID: 0 PID: 7360 Comm: syz.1.291 Not tainted syzkaller #0 PREEMPT(full) [ 178.082528][ T7360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 178.082541][ T7360] Call Trace: [ 178.082549][ T7360] [ 178.082558][ T7360] dump_stack_lvl+0x16c/0x1f0 [ 178.082596][ T7360] should_fail_ex+0x512/0x640 [ 178.082630][ T7360] ? __kvmalloc_node_noprof+0x124/0x620 [ 178.082659][ T7360] should_failslab+0xc2/0x120 [ 178.082689][ T7360] __kvmalloc_node_noprof+0x137/0x620 [ 178.082717][ T7360] ? seq_read_iter+0x826/0x12c0 [ 178.082747][ T7360] ? seq_read_iter+0x826/0x12c0 [ 178.082768][ T7360] seq_read_iter+0x826/0x12c0 [ 178.082806][ T7360] kernfs_fop_read_iter+0x46c/0x610 [ 178.082829][ T7360] ? rw_verify_area+0xcf/0x6c0 [ 178.082857][ T7360] vfs_read+0x8bf/0xcf0 [ 178.082888][ T7360] ? __pfx___mutex_lock+0x10/0x10 [ 178.082922][ T7360] ? __pfx_vfs_read+0x10/0x10 [ 178.082971][ T7360] ksys_read+0x12a/0x250 [ 178.082996][ T7360] ? __pfx_ksys_read+0x10/0x10 [ 178.083032][ T7360] do_syscall_64+0xcd/0x4c0 [ 178.083068][ T7360] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 178.083092][ T7360] RIP: 0033:0x7fd1eb78eec9 [ 178.083110][ T7360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 178.083131][ T7360] RSP: 002b:00007fd1ec5d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 178.083153][ T7360] RAX: ffffffffffffffda RBX: 00007fd1eb9e5fa0 RCX: 00007fd1eb78eec9 [ 178.083168][ T7360] RDX: 000000000000007c RSI: 0000200000000040 RDI: 0000000000000003 [ 178.083186][ T7360] RBP: 00007fd1ec5d9090 R08: 0000000000000000 R09: 0000000000000000 [ 178.083200][ T7360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 178.083213][ T7360] R13: 00007fd1eb9e6038 R14: 00007fd1eb9e5fa0 R15: 00007fff475a11c8 [ 178.083245][ T7360] [ 178.102420][ T7329] 0 pages cma reserved [ 178.392742][ T7329] pty pty228: ldisc open failed (-12), clearing slot 228 [ 178.599206][ T7369] FAULT_INJECTION: forcing a failure. [ 178.599206][ T7369] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 178.612641][ T7369] CPU: 0 UID: 0 PID: 7369 Comm: syz.2.295 Not tainted syzkaller #0 PREEMPT(full) [ 178.612673][ T7369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 178.612687][ T7369] Call Trace: [ 178.612695][ T7369] [ 178.612704][ T7369] dump_stack_lvl+0x16c/0x1f0 [ 178.612745][ T7369] should_fail_ex+0x512/0x640 [ 178.612783][ T7369] _copy_from_user+0x2e/0xd0 [ 178.612810][ T7369] copy_msghdr_from_user+0x98/0x160 [ 178.612846][ T7369] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 178.612886][ T7369] ? kfree+0x24f/0x4d0 [ 178.612908][ T7369] ? __lock_acquire+0x62e/0x1ce0 [ 178.612946][ T7369] ___sys_recvmsg+0xdb/0x1a0 [ 178.612987][ T7369] ? __pfx____sys_recvmsg+0x10/0x10 [ 178.613038][ T7369] ? __pfx___might_resched+0x10/0x10 [ 178.613070][ T7369] do_recvmmsg+0x2fe/0x750 [ 178.613109][ T7369] ? __pfx_do_recvmmsg+0x10/0x10 [ 178.613152][ T7369] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 178.613199][ T7369] ? __fget_files+0x20e/0x3c0 [ 178.613230][ T7369] __x64_sys_recvmmsg+0x22a/0x280 [ 178.613266][ T7369] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 178.613310][ T7369] do_syscall_64+0xcd/0x4c0 [ 178.613348][ T7369] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 178.613373][ T7369] RIP: 0033:0x7f35d098eec9 [ 178.613392][ T7369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 178.613414][ T7369] RSP: 002b:00007f35d17f4038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 178.613436][ T7369] RAX: ffffffffffffffda RBX: 00007f35d0be5fa0 RCX: 00007f35d098eec9 [ 178.613452][ T7369] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 178.613465][ T7369] RBP: 00007f35d17f4090 R08: 0000000000000000 R09: 0000000000000000 [ 178.613478][ T7369] R10: 0000000000000ffe R11: 0000000000000246 R12: 0000000000000002 [ 178.613492][ T7369] R13: 00007f35d0be6038 R14: 00007f35d0be5fa0 R15: 00007ffea30428b8 [ 178.613526][ T7369] [ 179.843538][ T7390] IPVS: length: 131 != 8 [ 179.936183][ T7402] syz.2.300 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 180.759538][ T7415] FAULT_INJECTION: forcing a failure. [ 180.759538][ T7415] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 180.803980][ T7415] CPU: 0 UID: 0 PID: 7415 Comm: syz.3.303 Not tainted syzkaller #0 PREEMPT(full) [ 180.804019][ T7415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 180.804037][ T7415] Call Trace: [ 180.804045][ T7415] [ 180.804055][ T7415] dump_stack_lvl+0x16c/0x1f0 [ 180.804096][ T7415] should_fail_ex+0x512/0x640 [ 180.804137][ T7415] _copy_to_iter+0x29f/0x1710 [ 180.804167][ T7415] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 180.804207][ T7415] ? __pfx__copy_to_iter+0x10/0x10 [ 180.804235][ T7415] ? kernfs_seq_stop+0xcd/0x120 [ 180.804264][ T7415] ? kernfs_put_active+0x86/0xe0 [ 180.804301][ T7415] seq_read_iter+0xcf8/0x12c0 [ 180.804342][ T7415] kernfs_fop_read_iter+0x46c/0x610 [ 180.804367][ T7415] ? rw_verify_area+0xcf/0x6c0 [ 180.804395][ T7415] vfs_read+0x8bf/0xcf0 [ 180.804428][ T7415] ? __pfx___mutex_lock+0x10/0x10 [ 180.804463][ T7415] ? __pfx_vfs_read+0x10/0x10 [ 180.804514][ T7415] ksys_read+0x12a/0x250 [ 180.804541][ T7415] ? __pfx_ksys_read+0x10/0x10 [ 180.804579][ T7415] do_syscall_64+0xcd/0x4c0 [ 180.804618][ T7415] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.804642][ T7415] RIP: 0033:0x7fccab78eec9 [ 180.804661][ T7415] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 180.804683][ T7415] RSP: 002b:00007fccac6af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 180.804706][ T7415] RAX: ffffffffffffffda RBX: 00007fccab9e5fa0 RCX: 00007fccab78eec9 [ 180.804734][ T7415] RDX: 000000000000007c RSI: 0000200000000040 RDI: 0000000000000003 [ 180.804749][ T7415] RBP: 00007fccac6af090 R08: 0000000000000000 R09: 0000000000000000 [ 180.804763][ T7415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 180.804776][ T7415] R13: 00007fccab9e6038 R14: 00007fccab9e5fa0 R15: 00007ffd550c61f8 [ 180.804810][ T7415] [ 181.063406][ T7412] netlink: 342 bytes leftover after parsing attributes in process `syz.1.302'. [ 182.699254][ T7438] netlink: 4 bytes leftover after parsing attributes in process `syz.1.308'. [ 182.719437][ T7438] netlink: 354 bytes leftover after parsing attributes in process `syz.1.308'. [ 183.377538][ T7452] FAULT_INJECTION: forcing a failure. [ 183.377538][ T7452] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 183.475588][ T7452] CPU: 1 UID: 0 PID: 7452 Comm: syz.0.312 Not tainted syzkaller #0 PREEMPT(full) [ 183.475621][ T7452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 183.475634][ T7452] Call Trace: [ 183.475642][ T7452] [ 183.475651][ T7452] dump_stack_lvl+0x16c/0x1f0 [ 183.475691][ T7452] should_fail_ex+0x512/0x640 [ 183.475732][ T7452] _copy_to_user+0x32/0xd0 [ 183.475761][ T7452] simple_read_from_buffer+0xcb/0x170 [ 183.475789][ T7452] proc_fail_nth_read+0x197/0x240 [ 183.475815][ T7452] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 183.475842][ T7452] ? rw_verify_area+0xcf/0x6c0 [ 183.475863][ T7452] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 183.475889][ T7452] vfs_read+0x1e1/0xcf0 [ 183.475920][ T7452] ? __pfx___mutex_lock+0x10/0x10 [ 183.475954][ T7452] ? __pfx_vfs_read+0x10/0x10 [ 183.475991][ T7452] ? __fget_files+0x20e/0x3c0 [ 183.476027][ T7452] ksys_read+0x12a/0x250 [ 183.476053][ T7452] ? __pfx_ksys_read+0x10/0x10 [ 183.476091][ T7452] do_syscall_64+0xcd/0x4c0 [ 183.476129][ T7452] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.476154][ T7452] RIP: 0033:0x7fe0a1f8d8dc [ 183.476173][ T7452] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 183.476195][ T7452] RSP: 002b:00007fe0a2ee6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 183.476218][ T7452] RAX: ffffffffffffffda RBX: 00007fe0a21e5fa0 RCX: 00007fe0a1f8d8dc [ 183.476234][ T7452] RDX: 000000000000000f RSI: 00007fe0a2ee60a0 RDI: 0000000000000004 [ 183.476248][ T7452] RBP: 00007fe0a2ee6090 R08: 0000000000000000 R09: 0000000000000000 [ 183.476262][ T7452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 183.476276][ T7452] R13: 00007fe0a21e6038 R14: 00007fe0a21e5fa0 R15: 00007ffc801cfb28 [ 183.476310][ T7452] [ 184.486717][ T7476] FAULT_INJECTION: forcing a failure. [ 184.486717][ T7476] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 184.535789][ T7476] CPU: 0 UID: 0 PID: 7476 Comm: syz.3.316 Not tainted syzkaller #0 PREEMPT(full) [ 184.535824][ T7476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 184.535838][ T7476] Call Trace: [ 184.535846][ T7476] [ 184.535855][ T7476] dump_stack_lvl+0x16c/0x1f0 [ 184.535896][ T7476] should_fail_ex+0x512/0x640 [ 184.535937][ T7476] _copy_from_user+0x2e/0xd0 [ 184.535964][ T7476] copy_msghdr_from_user+0x98/0x160 [ 184.536000][ T7476] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 184.536040][ T7476] ? kfree+0x24f/0x4d0 [ 184.536062][ T7476] ? __lock_acquire+0x62e/0x1ce0 [ 184.536100][ T7476] ___sys_recvmsg+0xdb/0x1a0 [ 184.536134][ T7476] ? __pfx____sys_recvmsg+0x10/0x10 [ 184.536188][ T7476] ? __pfx___might_resched+0x10/0x10 [ 184.536221][ T7476] do_recvmmsg+0x2fe/0x750 [ 184.536261][ T7476] ? __pfx_do_recvmmsg+0x10/0x10 [ 184.536303][ T7476] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 184.536350][ T7476] ? __fget_files+0x20e/0x3c0 [ 184.536385][ T7476] __x64_sys_recvmmsg+0x22a/0x280 [ 184.536423][ T7476] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 184.536469][ T7476] do_syscall_64+0xcd/0x4c0 [ 184.536507][ T7476] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.536529][ T7476] RIP: 0033:0x7fccab78eec9 [ 184.536548][ T7476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 184.536569][ T7476] RSP: 002b:00007fccac6af038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 184.536592][ T7476] RAX: ffffffffffffffda RBX: 00007fccab9e5fa0 RCX: 00007fccab78eec9 [ 184.536607][ T7476] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 184.536621][ T7476] RBP: 00007fccac6af090 R08: 0000000000000000 R09: 0000000000000000 [ 184.536636][ T7476] R10: 0000000000000ffe R11: 0000000000000246 R12: 0000000000000002 [ 184.536649][ T7476] R13: 00007fccab9e6038 R14: 00007fccab9e5fa0 R15: 00007ffd550c61f8 [ 184.536682][ T7476] [ 184.912450][ T7475] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 185.285804][ T7497] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input6 [ 186.166813][ T7507] netlink: 8 bytes leftover after parsing attributes in process `syz.0.325'. [ 186.363366][ T7515] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 186.387752][ T7520] sctp: [Deprecated]: syz.3.327 (pid 7520) Use of struct sctp_assoc_value in delayed_ack socket option. [ 186.387752][ T7520] Use struct sctp_sack_info instead [ 186.745794][ T7529] FAULT_INJECTION: forcing a failure. [ 186.745794][ T7529] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 186.843954][ T7529] CPU: 0 UID: 0 PID: 7529 Comm: syz.1.330 Not tainted syzkaller #0 PREEMPT(full) [ 186.843975][ T7529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 186.843984][ T7529] Call Trace: [ 186.843989][ T7529] [ 186.843995][ T7529] dump_stack_lvl+0x16c/0x1f0 [ 186.844019][ T7529] should_fail_ex+0x512/0x640 [ 186.844042][ T7529] _copy_from_user+0x2e/0xd0 [ 186.844058][ T7529] copy_msghdr_from_user+0x98/0x160 [ 186.844079][ T7529] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 186.844113][ T7529] ? kfree+0x24f/0x4d0 [ 186.844127][ T7529] ? __lock_acquire+0x62e/0x1ce0 [ 186.844149][ T7529] ___sys_recvmsg+0xdb/0x1a0 [ 186.844172][ T7529] ? __pfx____sys_recvmsg+0x10/0x10 [ 186.844201][ T7529] ? __pfx___might_resched+0x10/0x10 [ 186.844219][ T7529] do_recvmmsg+0x2fe/0x750 [ 186.844241][ T7529] ? __pfx_do_recvmmsg+0x10/0x10 [ 186.844265][ T7529] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 186.844291][ T7529] ? __fget_files+0x20e/0x3c0 [ 186.844311][ T7529] __x64_sys_recvmmsg+0x22a/0x280 [ 186.844332][ T7529] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 186.844358][ T7529] do_syscall_64+0xcd/0x4c0 [ 186.844380][ T7529] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 186.844397][ T7529] RIP: 0033:0x7fd1eb78eec9 [ 186.844413][ T7529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 186.844426][ T7529] RSP: 002b:00007fd1ec5d9038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 186.844440][ T7529] RAX: ffffffffffffffda RBX: 00007fd1eb9e5fa0 RCX: 00007fd1eb78eec9 [ 186.844449][ T7529] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 186.844457][ T7529] RBP: 00007fd1ec5d9090 R08: 0000000000000000 R09: 0000000000000000 [ 186.844465][ T7529] R10: 0000000000000ffe R11: 0000000000000246 R12: 0000000000000002 [ 186.844472][ T7529] R13: 00007fd1eb9e6038 R14: 00007fd1eb9e5fa0 R15: 00007fff475a11c8 [ 186.844490][ T7529] [ 187.410808][ T7544] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.333: iget: checksum invalid [ 187.516615][ T7544] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 187.661026][ T7544] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.333: iget: checksum invalid [ 187.730637][ T7544] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 187.741402][ T7544] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.333: iget: checksum invalid [ 187.761184][ T7541] net_ratelimit: 519 callbacks suppressed [ 187.761195][ T7544] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 187.761201][ T7541] openvswitch: netlink: Message has 20 unknown bytes. [ 187.795509][ T7544] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.333: iget: checksum invalid [ 187.831679][ T7547] Invalid ELF header magic: != ELF [ 187.877415][ T7544] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 187.932081][ T7544] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 188.013412][ T7544] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 188.051280][ T7551] 0x000200000001-0xa29656a63616329 : "" [ 188.057122][ T7551] mtd: partition "" is out of reach -- disabled [ 188.108809][ T7551] ftl_cs: FTL header not found. [ 189.371050][ T7573] FAULT_INJECTION: forcing a failure. [ 189.371050][ T7573] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 189.387593][ T7573] CPU: 1 UID: 0 PID: 7573 Comm: syz.1.341 Not tainted syzkaller #0 PREEMPT(full) [ 189.387623][ T7573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 189.387636][ T7573] Call Trace: [ 189.387644][ T7573] [ 189.387653][ T7573] dump_stack_lvl+0x16c/0x1f0 [ 189.387692][ T7573] should_fail_ex+0x512/0x640 [ 189.387732][ T7573] _copy_from_user+0x2e/0xd0 [ 189.387758][ T7573] copy_msghdr_from_user+0x98/0x160 [ 189.387793][ T7573] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 189.387832][ T7573] ? kfree+0x24f/0x4d0 [ 189.387870][ T7573] ? __lock_acquire+0x62e/0x1ce0 [ 189.387912][ T7573] ___sys_recvmsg+0xdb/0x1a0 [ 189.387946][ T7573] ? __pfx____sys_recvmsg+0x10/0x10 [ 189.388001][ T7573] ? __pfx___might_resched+0x10/0x10 [ 189.388032][ T7573] do_recvmmsg+0x2fe/0x750 [ 189.388069][ T7573] ? __pfx_do_recvmmsg+0x10/0x10 [ 189.388107][ T7573] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 189.388151][ T7573] ? __fget_files+0x20e/0x3c0 [ 189.388187][ T7573] __x64_sys_recvmmsg+0x22a/0x280 [ 189.388223][ T7573] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 189.388267][ T7573] do_syscall_64+0xcd/0x4c0 [ 189.388304][ T7573] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 189.388328][ T7573] RIP: 0033:0x7fd1eb78eec9 [ 189.388347][ T7573] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 189.388368][ T7573] RSP: 002b:00007fd1ec5d9038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 189.388391][ T7573] RAX: ffffffffffffffda RBX: 00007fd1eb9e5fa0 RCX: 00007fd1eb78eec9 [ 189.388407][ T7573] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 189.388421][ T7573] RBP: 00007fd1ec5d9090 R08: 0000000000000000 R09: 0000000000000000 [ 189.388436][ T7573] R10: 0000000000000ffe R11: 0000000000000246 R12: 0000000000000002 [ 189.388449][ T7573] R13: 00007fd1eb9e6038 R14: 00007fd1eb9e5fa0 R15: 00007fff475a11c8 [ 189.388482][ T7573] [ 190.248919][ T7589] ICMPv6: process `syz.2.345' is using deprecated sysctl (syscall) net.ipv6.neigh.wg1.retrans_time - use net.ipv6.neigh.wg1.retrans_time_ms instead [ 190.323368][ T7593] netlink: 'syz.1.343': attribute type 1 has an invalid length. [ 190.501755][ T7599] syz.3.347 uses obsolete (PF_INET,SOCK_PACKET) [ 190.854374][ T7586] vivid-007: ================= START STATUS ================= [ 190.858332][ T7609] netlink: 20 bytes leftover after parsing attributes in process `syz.3.349'. [ 190.873031][ T7586] vivid-007: Enable Output Cropping: true [ 190.881638][ T7586] vivid-007: Enable Output Composing: true [ 190.889029][ T7586] vivid-007: Enable Output Scaler: true [ 190.891012][ T7609] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode [ 190.895147][ T7586] vivid-007: Tx RGB Quantization Range: Automatic [ 190.909016][ T7586] vivid-007: Transmit Mode: HDMI [ 190.915161][ T7586] vivid-007: Hotplug Present: 0x00000000 [ 190.920974][ T7586] vivid-007: RxSense Present: 0x00000000 [ 190.961591][ T7586] vivid-007: EDID Present: 0x00000000 [ 190.971614][ T7586] vivid-007: ================== END STATUS ================== [ 191.032309][ T7609] kvm: kvm [7608]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x40000077) [ 191.289270][ T7618] FAULT_INJECTION: forcing a failure. [ 191.289270][ T7618] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 191.337448][ T7619] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7 [ 191.362223][ T7618] CPU: 0 UID: 0 PID: 7618 Comm: syz.0.352 Not tainted syzkaller #0 PREEMPT(full) [ 191.362253][ T7618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 191.362266][ T7618] Call Trace: [ 191.362274][ T7618] [ 191.362283][ T7618] dump_stack_lvl+0x16c/0x1f0 [ 191.362322][ T7618] should_fail_ex+0x512/0x640 [ 191.362362][ T7618] _copy_from_user+0x2e/0xd0 [ 191.362389][ T7618] copy_msghdr_from_user+0x98/0x160 [ 191.362423][ T7618] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 191.362462][ T7618] ? kfree+0x24f/0x4d0 [ 191.362491][ T7618] ___sys_recvmsg+0xdb/0x1a0 [ 191.362524][ T7618] ? __pfx____sys_recvmsg+0x10/0x10 [ 191.362577][ T7618] ? __pfx___might_resched+0x10/0x10 [ 191.362610][ T7618] do_recvmmsg+0x2fe/0x750 [ 191.362648][ T7618] ? __pfx_do_recvmmsg+0x10/0x10 [ 191.362689][ T7618] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 191.362734][ T7618] ? __fget_files+0x20e/0x3c0 [ 191.362769][ T7618] __x64_sys_recvmmsg+0x22a/0x280 [ 191.362806][ T7618] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 191.362850][ T7618] do_syscall_64+0xcd/0x4c0 [ 191.362885][ T7618] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 191.362916][ T7618] RIP: 0033:0x7fe0a1f8eec9 [ 191.362935][ T7618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 191.362958][ T7618] RSP: 002b:00007fe0a2ee6038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 191.362980][ T7618] RAX: ffffffffffffffda RBX: 00007fe0a21e5fa0 RCX: 00007fe0a1f8eec9 [ 191.362995][ T7618] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 191.363007][ T7618] RBP: 00007fe0a2ee6090 R08: 0000000000000000 R09: 0000000000000000 [ 191.363021][ T7618] R10: 0000000000000ffe R11: 0000000000000246 R12: 0000000000000002 [ 191.363035][ T7618] R13: 00007fe0a21e6038 R14: 00007fe0a21e5fa0 R15: 00007ffc801cfb28 [ 191.363069][ T7618] [ 191.938005][ T7629] openvswitch: netlink: IP tunnel dst address not specified [ 192.175428][ T7622] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8 [ 192.938547][ T30] audit: type=1804 audit(1758740304.376:14): pid=7651 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.360" name="/newroot/83/file0" dev="tmpfs" ino=448 res=1 errno=0 [ 193.012418][ T7648] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 193.181965][ T7648] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 193.352851][ T7660] FAULT_INJECTION: forcing a failure. [ 193.352851][ T7660] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 193.403497][ T7660] CPU: 0 UID: 0 PID: 7660 Comm: syz.1.362 Not tainted syzkaller #0 PREEMPT(full) [ 193.403529][ T7660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 193.403542][ T7660] Call Trace: [ 193.403550][ T7660] [ 193.403560][ T7660] dump_stack_lvl+0x16c/0x1f0 [ 193.403598][ T7660] should_fail_ex+0x512/0x640 [ 193.403636][ T7660] _copy_from_user+0x2e/0xd0 [ 193.403663][ T7660] copy_msghdr_from_user+0x98/0x160 [ 193.403698][ T7660] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 193.403740][ T7660] ? kfree+0x24f/0x4d0 [ 193.403762][ T7660] ? __lock_acquire+0x62e/0x1ce0 [ 193.403796][ T7660] ___sys_recvmsg+0xdb/0x1a0 [ 193.403828][ T7660] ? __pfx____sys_recvmsg+0x10/0x10 [ 193.403878][ T7660] ? __pfx___might_resched+0x10/0x10 [ 193.403908][ T7660] do_recvmmsg+0x2fe/0x750 [ 193.403944][ T7660] ? __pfx_do_recvmmsg+0x10/0x10 [ 193.403987][ T7660] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 193.404034][ T7660] ? __fget_files+0x20e/0x3c0 [ 193.404069][ T7660] __x64_sys_recvmmsg+0x22a/0x280 [ 193.404108][ T7660] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 193.404154][ T7660] do_syscall_64+0xcd/0x4c0 [ 193.404192][ T7660] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 193.404216][ T7660] RIP: 0033:0x7fd1eb78eec9 [ 193.404235][ T7660] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 193.404257][ T7660] RSP: 002b:00007fd1ec5d9038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 193.404280][ T7660] RAX: ffffffffffffffda RBX: 00007fd1eb9e5fa0 RCX: 00007fd1eb78eec9 [ 193.404296][ T7660] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 193.404311][ T7660] RBP: 00007fd1ec5d9090 R08: 0000000000000000 R09: 0000000000000000 [ 193.404325][ T7660] R10: 0000000000000ffe R11: 0000000000000246 R12: 0000000000000002 [ 193.404340][ T7660] R13: 00007fd1eb9e6038 R14: 00007fd1eb9e5fa0 R15: 00007fff475a11c8 [ 193.404373][ T7660] [ 194.241959][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.251443][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.855397][ T30] audit: type=1800 audit(1758740307.306:15): pid=7698 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.369" name="dbroot" dev="configfs" ino=17591 res=0 errno=0 [ 196.665942][ T7717] FAULT_INJECTION: forcing a failure. [ 196.665942][ T7717] name failslab, interval 1, probability 0, space 0, times 0 [ 196.678925][ T7717] CPU: 0 UID: 0 PID: 7717 Comm: syz.1.374 Not tainted syzkaller #0 PREEMPT(full) [ 196.678958][ T7717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 196.678973][ T7717] Call Trace: [ 196.678982][ T7717] [ 196.678992][ T7717] dump_stack_lvl+0x16c/0x1f0 [ 196.679035][ T7717] should_fail_ex+0x512/0x640 [ 196.679072][ T7717] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 196.679109][ T7717] should_failslab+0xc2/0x120 [ 196.679142][ T7717] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 196.679169][ T7717] ? find_held_lock+0x2b/0x80 [ 196.679194][ T7717] ? __alloc_skb+0x2b2/0x380 [ 196.679232][ T7717] __alloc_skb+0x2b2/0x380 [ 196.679266][ T7717] ? __pfx___alloc_skb+0x10/0x10 [ 196.679301][ T7717] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 196.679336][ T7717] ? __pfx_tipc_node_xmit+0x10/0x10 [ 196.679385][ T7717] tipc_buf_acquire+0x26/0xe0 [ 196.679415][ T7717] tipc_msg_append+0x140/0x660 [ 196.679462][ T7717] __tipc_sendstream+0xb0c/0x1170 [ 196.679507][ T7717] ? __pfx___tipc_sendstream+0x10/0x10 [ 196.679536][ T7717] ? do_raw_spin_lock+0x12c/0x2b0 [ 196.679572][ T7717] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 196.679609][ T7717] ? __pfx_woken_wake_function+0x10/0x10 [ 196.679654][ T7717] ? __local_bh_enable_ip+0xa4/0x120 [ 196.679688][ T7717] tipc_sendstream+0x4f/0x70 [ 196.679718][ T7717] ____sys_sendmsg+0xa98/0xc70 [ 196.679747][ T7717] ? copy_msghdr_from_user+0x10a/0x160 [ 196.679784][ T7717] ? __pfx_____sys_sendmsg+0x10/0x10 [ 196.679818][ T7717] ? kfree+0x24f/0x4d0 [ 196.679841][ T7717] ? futex_unqueue+0x133/0x2c0 [ 196.679877][ T7717] ___sys_sendmsg+0x134/0x1d0 [ 196.679916][ T7717] ? __pfx____sys_sendmsg+0x10/0x10 [ 196.679988][ T7717] ? __pfx___might_resched+0x10/0x10 [ 196.680022][ T7717] __sys_sendmmsg+0x200/0x420 [ 196.680063][ T7717] ? __pfx___sys_sendmmsg+0x10/0x10 [ 196.680110][ T7717] ? __pfx_do_futex+0x10/0x10 [ 196.680155][ T7717] ? __sys_socket+0xac/0x260 [ 196.680186][ T7717] ? xfd_validate_state+0x61/0x180 [ 196.680221][ T7717] ? __pfx___do_sys_close_range+0x10/0x10 [ 196.680259][ T7717] __x64_sys_sendmmsg+0x9c/0x100 [ 196.680296][ T7717] ? lockdep_hardirqs_on+0x7c/0x110 [ 196.680331][ T7717] do_syscall_64+0xcd/0x4c0 [ 196.680378][ T7717] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.680404][ T7717] RIP: 0033:0x7fd1eb78eec9 [ 196.680425][ T7717] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 196.680449][ T7717] RSP: 002b:00007fd1ec5d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 196.680474][ T7717] RAX: ffffffffffffffda RBX: 00007fd1eb9e5fa0 RCX: 00007fd1eb78eec9 [ 196.680492][ T7717] RDX: 0000000000000400 RSI: 0000000000000000 RDI: 0000000000000004 [ 196.680508][ T7717] RBP: 00007fd1eb811f91 R08: 0000000000000000 R09: 0000000000000000 [ 196.680524][ T7717] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000 [ 196.680539][ T7717] R13: 00007fd1eb9e6038 R14: 00007fd1eb9e5fa0 R15: 00007fff475a11c8 [ 196.680575][ T7717] [ 198.608060][ T7736] netlink: 6400 bytes leftover after parsing attributes in process `syz.3.377'. [ 198.662252][ T7736] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 200.000151][ T7756] mkiss: ax0: crc mode is auto. [ 206.044290][ T7862] netlink: 330 bytes leftover after parsing attributes in process `syz.3.404'. [ 206.144777][ T7862] netlink: 330 bytes leftover after parsing attributes in process `syz.3.404'. [ 207.941657][ T7856] kexec: Could not allocate control_code_buffer [ 208.325410][ T7912] netlink: 'syz.3.415': attribute type 19 has an invalid length. [ 208.333355][ T7912] netlink: 334 bytes leftover after parsing attributes in process `syz.3.415'. [ 208.629980][ T7923] netlink: 342 bytes leftover after parsing attributes in process `syz.0.418'. [ 208.639682][ T7924] netlink: 342 bytes leftover after parsing attributes in process `syz.0.418'. [ 208.692671][ T7924] netlink: 342 bytes leftover after parsing attributes in process `syz.0.418'. [ 209.080947][ T7937] bond0: option arp_interval: invalid value () [ 209.088470][ T7937] bond0: option arp_interval: allowed values 0 - 2147483647 [ 211.684495][ T51] Bluetooth: hci2: command 0x0406 tx timeout [ 211.690555][ T51] Bluetooth: hci1: command 0x0406 tx timeout [ 211.696952][ T5871] Bluetooth: hci3: command 0x0406 tx timeout [ 211.702974][ T5871] Bluetooth: hci0: command 0x0406 tx timeout [ 214.219494][ T7975] kexec: Could not allocate control_code_buffer [ 214.307841][ T8038] netlink: 16 bytes leftover after parsing attributes in process `syz.3.437'. [ 214.327366][ T8038] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9 [ 215.539198][ T8063] netlink: 28 bytes leftover after parsing attributes in process `syz.2.442'. [ 216.426701][ T8078] mkiss: ax0: crc mode is auto. [ 216.626198][ T8076] device-mapper: ioctl: Invalid data size in the ioctl structure: 1 [ 217.660676][ T8086] kexec: Could not allocate control_code_buffer [ 217.758665][ T30] audit: type=1804 audit(1758740329.206:16): pid=8106 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.452" name="/newroot/sys/kernel/tracing/set_event" dev="tracefs" ino=1039 res=1 errno=0 [ 217.805672][ T8107] netlink: 25 bytes leftover after parsing attributes in process `syz.0.461'. [ 218.023805][ T8118] ICMPv6: process `syz.3.455' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 218.060192][ T8118] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 218.696561][ T8132] zswap: compressor not available [ 219.924462][ T8163] openvswitch: netlink: Port -2134900732 exceeds max allowable 65535 [ 222.421542][ T8208] FAULT_INJECTION: forcing a failure. [ 222.421542][ T8208] name fail_futex, interval 1, probability 0, space 0, times 1 [ 222.434532][ T8208] CPU: 1 UID: 0 PID: 8208 Comm: syz.3.477 Not tainted syzkaller #0 PREEMPT(full) [ 222.434550][ T8208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 222.434559][ T8208] Call Trace: [ 222.434563][ T8208] [ 222.434569][ T8208] dump_stack_lvl+0x16c/0x1f0 [ 222.434593][ T8208] should_fail_ex+0x512/0x640 [ 222.434617][ T8208] get_futex_key+0x1d0/0x1560 [ 222.434637][ T8208] ? __pfx_get_futex_key+0x10/0x10 [ 222.434652][ T8208] ? __mutex_trylock_common+0xe9/0x250 [ 222.434676][ T8208] futex_wake+0xea/0x530 [ 222.434697][ T8208] ? __pfx_futex_wake+0x10/0x10 [ 222.434724][ T8208] do_futex+0x1e3/0x350 [ 222.434741][ T8208] ? __pfx_do_futex+0x10/0x10 [ 222.434756][ T8208] ? __might_fault+0xe3/0x190 [ 222.434777][ T8208] mm_release+0x24e/0x300 [ 222.434800][ T8208] do_exit+0x68e/0x2bf0 [ 222.434822][ T8208] ? __pfx_do_exit+0x10/0x10 [ 222.434840][ T8208] ? do_raw_spin_lock+0x12c/0x2b0 [ 222.434859][ T8208] ? find_held_lock+0x2b/0x80 [ 222.434875][ T8208] do_group_exit+0xd3/0x2a0 [ 222.434895][ T8208] get_signal+0x2673/0x26d0 [ 222.434917][ T8208] ? __pfx_get_signal+0x10/0x10 [ 222.434933][ T8208] ? do_futex+0x122/0x350 [ 222.434949][ T8208] ? __pfx_do_futex+0x10/0x10 [ 222.434967][ T8208] arch_do_signal_or_restart+0x8f/0x790 [ 222.434986][ T8208] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 222.435014][ T8208] exit_to_user_mode_loop+0x84/0x110 [ 222.435035][ T8208] do_syscall_64+0x41c/0x4c0 [ 222.435057][ T8208] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 222.435070][ T8208] RIP: 0033:0x7fccab78eec9 [ 222.435081][ T8208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 222.435094][ T8208] RSP: 002b:00007fccac6af0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 222.435107][ T8208] RAX: fffffffffffffe00 RBX: 00007fccab9e5fa8 RCX: 00007fccab78eec9 [ 222.435116][ T8208] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fccab9e5fa8 [ 222.435124][ T8208] RBP: 00007fccab9e5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 222.435132][ T8208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 222.435139][ T8208] R13: 00007fccab9e6038 R14: 00007ffd550c6110 R15: 00007ffd550c61f8 [ 222.435156][ T8208] [ 223.307144][ T8221] netlink: 16 bytes leftover after parsing attributes in process `syz.2.479'. [ 223.320342][ T8224] kfence: disabled [ 224.293436][ T8238] netlink: 'syz.1.485': attribute type 16 has an invalid length. [ 224.318422][ T8238] netlink: 290 bytes leftover after parsing attributes in process `syz.1.485'. [ 225.868574][ T8288] random: crng reseeded on system resumption [ 228.021655][ T8345] netlink: 16 bytes leftover after parsing attributes in process `syz.0.502'. [ 229.385465][ T8362] netlink: 20 bytes leftover after parsing attributes in process `syz.3.503'. [ 233.208903][ T8416] netlink: 16 bytes leftover after parsing attributes in process `syz.1.519'. [ 240.561850][ T8511] netlink: 20 bytes leftover after parsing attributes in process `syz.2.541'. [ 241.292009][ T8536] netlink: 334 bytes leftover after parsing attributes in process `syz.0.548'. [ 242.797500][ T5873] Bluetooth: hci0: unexpected subevent 0x03 length: 253 > 9 [ 243.816712][ T5870] Process accounting resumed [ 244.927655][ T5873] Bluetooth: hci0: unexpected event 0x01 length: 5 > 1 [ 245.436199][ T8601] nfs: Unknown parameter 'ýÿÿÿÿÿÿÿ' [ 245.449397][ T8602] nfs: Unknown parameter 'ýÿÿÿÿÿÿÿ' [ 245.957434][ T30] audit: type=1800 audit(1758740357.406:17): pid=8610 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.563" name="features" dev="configfs" ino=22311 res=0 errno=0 [ 247.005977][ T8632] FAULT_INJECTION: forcing a failure. [ 247.005977][ T8632] name failslab, interval 1, probability 0, space 0, times 0 [ 247.020303][ T8632] CPU: 1 UID: 0 PID: 8632 Comm: syz.3.570 Not tainted syzkaller #0 PREEMPT(full) [ 247.020340][ T8632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 247.020354][ T8632] Call Trace: [ 247.020362][ T8632] [ 247.020371][ T8632] dump_stack_lvl+0x16c/0x1f0 [ 247.020406][ T8632] should_fail_ex+0x512/0x640 [ 247.020437][ T8632] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 247.020466][ T8632] should_failslab+0xc2/0x120 [ 247.020494][ T8632] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 247.020518][ T8632] ? __d_alloc+0x32/0xae0 [ 247.020549][ T8632] __d_alloc+0x32/0xae0 [ 247.020572][ T8632] ? bpf_ksym_find+0x124/0x1c0 [ 247.020596][ T8632] d_alloc_parallel+0x111/0x1480 [ 247.020627][ T8632] ? __x64_sys_ioctl+0x18b/0x210 [ 247.020657][ T8632] ? unwind_get_return_address+0x59/0xa0 [ 247.020680][ T8632] ? arch_stack_walk+0xa6/0x100 [ 247.020706][ T8632] ? __pfx_d_alloc_parallel+0x10/0x10 [ 247.020739][ T8632] ? lockdep_init_map_type+0x5c/0x280 [ 247.020769][ T8632] ? lockdep_init_map_type+0x5c/0x280 [ 247.020799][ T8632] __lookup_slow+0x193/0x460 [ 247.020835][ T8632] ? __pfx___lookup_slow+0x10/0x10 [ 247.020875][ T8632] ? perf_trace_mm_compaction_suitable_template+0x110/0x5e0 [ 247.020919][ T8632] ? perf_trace_mm_compaction_suitable_template+0x110/0x5e0 [ 247.020955][ T8632] ? d_lookup+0xe7/0x190 [ 247.020995][ T8632] lookup_noperm+0xe1/0x110 [ 247.021031][ T8632] simple_start_creating+0xd1/0x1b0 [ 247.021055][ T8632] start_creating.part.0+0x82/0x190 [ 247.021080][ T8632] __debugfs_create_file+0xa7/0x6b0 [ 247.021105][ T8632] debugfs_create_file_full+0x41/0x60 [ 247.021130][ T8632] kvm_dev_ioctl+0x153f/0x1af0 [ 247.021158][ T8632] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 247.021187][ T8632] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 247.021212][ T8632] __x64_sys_ioctl+0x18b/0x210 [ 247.021246][ T8632] do_syscall_64+0xcd/0x4c0 [ 247.021280][ T8632] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 247.021303][ T8632] RIP: 0033:0x7fccab78eec9 [ 247.021329][ T8632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 247.021349][ T8632] RSP: 002b:00007fccac66d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 247.021371][ T8632] RAX: ffffffffffffffda RBX: 00007fccab9e6180 RCX: 00007fccab78eec9 [ 247.021385][ T8632] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 000000000000000b [ 247.021398][ T8632] RBP: 00007fccab811f91 R08: 0000000000000000 R09: 0000000000000000 [ 247.021410][ T8632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 247.021422][ T8632] R13: 00007fccab9e6218 R14: 00007fccab9e6180 R15: 00007ffd550c61f8 [ 247.021453][ T8632] [ 248.330958][ T8643] FAULT_INJECTION: forcing a failure. [ 248.330958][ T8643] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 248.366835][ T8643] CPU: 1 UID: 0 PID: 8643 Comm: syz.1.571 Not tainted syzkaller #0 PREEMPT(full) [ 248.366868][ T8643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 248.366881][ T8643] Call Trace: [ 248.366889][ T8643] [ 248.366897][ T8643] dump_stack_lvl+0x16c/0x1f0 [ 248.366935][ T8643] should_fail_ex+0x512/0x640 [ 248.366973][ T8643] strncpy_from_user+0x3b/0x2e0 [ 248.367007][ T8643] getname_flags.part.0+0x8f/0x550 [ 248.367044][ T8643] getname_flags+0x93/0xf0 [ 248.367068][ T8643] do_sys_openat2+0xb8/0x1d0 [ 248.367100][ T8643] ? __pfx_do_sys_openat2+0x10/0x10 [ 248.367137][ T8643] ? __fget_files+0x20e/0x3c0 [ 248.367173][ T8643] __x64_sys_openat+0x174/0x210 [ 248.367193][ T8643] ? __pfx___x64_sys_openat+0x10/0x10 [ 248.367225][ T8643] do_syscall_64+0xcd/0x4c0 [ 248.367261][ T8643] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.367283][ T8643] RIP: 0033:0x7fd1eb78eec9 [ 248.367299][ T8643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 248.367319][ T8643] RSP: 002b:00007fd1ec597038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 248.367339][ T8643] RAX: ffffffffffffffda RBX: 00007fd1eb9e6180 RCX: 00007fd1eb78eec9 [ 248.367353][ T8643] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffff9c [ 248.367366][ T8643] RBP: 00007fd1eb811f91 R08: 0000000000000000 R09: 0000000000000000 [ 248.367378][ T8643] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 248.367391][ T8643] R13: 00007fd1eb9e6218 R14: 00007fd1eb9e6180 R15: 00007fff475a11c8 [ 248.367418][ T8643] [ 249.374743][ T8670] random: crng reseeded on system resumption [ 250.267102][ T8676] ALSA: mixer_oss: invalid OSS volume '' [ 251.123771][ T8715] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 251.947327][ T8740] Invalid ELF header magic: != ELF [ 252.225732][ T8758] binder: 8757:8758 ioctl c0306201 0 returned -14 [ 252.264947][ T8758] FAULT_INJECTION: forcing a failure. [ 252.264947][ T8758] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 252.312421][ T8758] CPU: 1 UID: 0 PID: 8758 Comm: syz.0.600 Not tainted syzkaller #0 PREEMPT(full) [ 252.312466][ T8758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 252.312481][ T8758] Call Trace: [ 252.312489][ T8758] [ 252.312499][ T8758] dump_stack_lvl+0x16c/0x1f0 [ 252.312541][ T8758] should_fail_ex+0x512/0x640 [ 252.312587][ T8758] should_fail_alloc_page+0xe7/0x130 [ 252.312623][ T8758] prepare_alloc_pages+0x3c2/0x610 [ 252.312665][ T8758] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 252.312697][ T8758] ? stack_trace_save+0x8e/0xc0 [ 252.312724][ T8758] ? __pfx_stack_trace_save+0x10/0x10 [ 252.312749][ T8758] ? rcu_is_watching+0x12/0xc0 [ 252.312775][ T8758] ? stack_depot_save_flags+0x29/0x9c0 [ 252.312819][ T8758] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 252.312849][ T8758] ? __kasan_slab_alloc+0x89/0x90 [ 252.312879][ T8758] ? __pmd_alloc+0xbf/0x930 [ 252.312910][ T8758] ? handle_mm_fault+0x589/0xd10 [ 252.312932][ T8758] ? do_user_addr_fault+0x7a6/0x1370 [ 252.312967][ T8758] ? exc_page_fault+0x5c/0xb0 [ 252.313001][ T8758] ? asm_exc_page_fault+0x26/0x30 [ 252.313024][ T8758] ? __get_user_4+0x14/0x20 [ 252.313049][ T8758] ? ppp_ioctl+0x1700/0x2670 [ 252.313082][ T8758] ? __x64_sys_ioctl+0x18b/0x210 [ 252.313136][ T8758] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 252.313173][ T8758] ? policy_nodemask+0xea/0x4e0 [ 252.313214][ T8758] alloc_pages_mpol+0x1fb/0x550 [ 252.313248][ T8758] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 252.313292][ T8758] alloc_pages_noprof+0x131/0x390 [ 252.313325][ T8758] pte_alloc_one+0x1c/0x3a0 [ 252.313354][ T8758] do_pte_missing+0x1afc/0x3ba0 [ 252.313382][ T8758] ? do_raw_spin_unlock+0x172/0x230 [ 252.313422][ T8758] ? __pmd_alloc+0x3fb/0x930 [ 252.313476][ T8758] __handle_mm_fault+0x152a/0x2a50 [ 252.313509][ T8758] ? mt_find+0x3ef/0xa30 [ 252.313537][ T8758] ? __pfx___handle_mm_fault+0x10/0x10 [ 252.313563][ T8758] ? __pfx_mt_find+0x10/0x10 [ 252.313610][ T8758] ? find_vma+0xbf/0x140 [ 252.313641][ T8758] ? __pfx_find_vma+0x10/0x10 [ 252.313678][ T8758] handle_mm_fault+0x589/0xd10 [ 252.313705][ T8758] ? trace_raw_output_exceptions+0x131/0x150 [ 252.313746][ T8758] do_user_addr_fault+0x7a6/0x1370 [ 252.313788][ T8758] ? rcu_is_watching+0x12/0xc0 [ 252.313819][ T8758] exc_page_fault+0x5c/0xb0 [ 252.313856][ T8758] asm_exc_page_fault+0x26/0x30 [ 252.313880][ T8758] RIP: 0010:__get_user_4+0x14/0x20 [ 252.313911][ T8758] Code: 00 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 ba 00 f0 ff ff ff 7f 00 00 48 39 d0 48 0f 47 c2 0f 01 cb <8b> 10 31 c0 0f 01 ca e9 50 17 04 00 90 90 90 90 90 90 90 90 90 90 [ 252.313935][ T8758] RSP: 0018:ffffc9001859fdb8 EFLAGS: 00050287 [ 252.313956][ T8758] RAX: 0000000000000000 RBX: ffff88807a610000 RCX: ffffc9000b9f9000 [ 252.313972][ T8758] RDX: 00007ffffffff000 RSI: ffffffff86ca1ee8 RDI: ffffffff8c163800 [ 252.313988][ T8758] RBP: 1ffff920030b3fbf R08: 4eabaea34dba89a6 R09: 0000000000000001 [ 252.314004][ T8758] R10: 0000000000000001 R11: 0000000000000000 R12: 00000000c004743e [ 252.314019][ T8758] R13: 00000000c004743e R14: 0000000000000000 R15: ffff88807bd296c0 [ 252.314047][ T8758] ? ppp_ioctl+0x16f8/0x2670 [ 252.314089][ T8758] ppp_ioctl+0x1700/0x2670 [ 252.314130][ T8758] ? find_held_lock+0x2b/0x80 [ 252.314155][ T8758] ? __pfx_ppp_ioctl+0x10/0x10 [ 252.314199][ T8758] ? __fget_files+0x20e/0x3c0 [ 252.314233][ T8758] ? __pfx_ppp_ioctl+0x10/0x10 [ 252.314272][ T8758] __x64_sys_ioctl+0x18b/0x210 [ 252.314313][ T8758] do_syscall_64+0xcd/0x4c0 [ 252.314354][ T8758] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 252.314378][ T8758] RIP: 0033:0x7fe0a1f8eec9 [ 252.314398][ T8758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 252.314421][ T8758] RSP: 002b:00007fe0a2ee6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 252.314443][ T8758] RAX: ffffffffffffffda RBX: 00007fe0a21e5fa0 RCX: 00007fe0a1f8eec9 [ 252.314467][ T8758] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000008 [ 252.314483][ T8758] RBP: 00007fe0a2011f91 R08: 0000000000000000 R09: 0000000000000000 [ 252.314499][ T8758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 252.314514][ T8758] R13: 00007fe0a21e6038 R14: 00007fe0a21e5fa0 R15: 00007ffc801cfb28 [ 252.314551][ T8758] [ 253.251737][ T8776] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10 [ 255.119233][ T8829] futex_wake_op: syz.3.614 tries to shift op by -9; fix this program [ 255.189136][ T8831] binder: 8830:8831 ioctl c0306201 0 returned -14 [ 255.250060][ T8831] FAULT_INJECTION: forcing a failure. [ 255.250060][ T8831] name failslab, interval 1, probability 0, space 0, times 0 [ 255.262968][ T8831] CPU: 0 UID: 0 PID: 8831 Comm: syz.2.616 Not tainted syzkaller #0 PREEMPT(full) [ 255.262988][ T8831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 255.262997][ T8831] Call Trace: [ 255.263003][ T8831] [ 255.263009][ T8831] dump_stack_lvl+0x16c/0x1f0 [ 255.263035][ T8831] should_fail_ex+0x512/0x640 [ 255.263056][ T8831] ? fs_reclaim_acquire+0xae/0x150 [ 255.263079][ T8831] ? tomoyo_encode2+0x100/0x3e0 [ 255.263097][ T8831] should_failslab+0xc2/0x120 [ 255.263116][ T8831] __kmalloc_noprof+0xd2/0x510 [ 255.263132][ T8831] ? d_absolute_path+0x136/0x1a0 [ 255.263157][ T8831] tomoyo_encode2+0x100/0x3e0 [ 255.263186][ T8831] tomoyo_encode+0x29/0x50 [ 255.263219][ T8831] tomoyo_realpath_from_path+0x18f/0x6e0 [ 255.263260][ T8831] tomoyo_path_number_perm+0x245/0x580 [ 255.263277][ T8831] ? tomoyo_path_number_perm+0x237/0x580 [ 255.263295][ T8831] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 255.263319][ T8831] ? __pfx___schedule+0x10/0x10 [ 255.263346][ T8831] ? rcu_is_watching+0x12/0xc0 [ 255.263361][ T8831] ? irqentry_exit+0x3b/0x90 [ 255.263379][ T8831] ? lockdep_hardirqs_on+0x7c/0x110 [ 255.263413][ T8831] ? hook_file_ioctl_common+0x145/0x410 [ 255.263441][ T8831] security_file_ioctl+0x9b/0x240 [ 255.263462][ T8831] __x64_sys_ioctl+0xb7/0x210 [ 255.263485][ T8831] do_syscall_64+0xcd/0x4c0 [ 255.263507][ T8831] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 255.263521][ T8831] RIP: 0033:0x7f35d098eec9 [ 255.263533][ T8831] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 255.263548][ T8831] RSP: 002b:00007f35d17f4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 255.263562][ T8831] RAX: ffffffffffffffda RBX: 00007f35d0be5fa0 RCX: 00007f35d098eec9 [ 255.263571][ T8831] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000008 [ 255.263580][ T8831] RBP: 00007f35d0a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 255.263589][ T8831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 255.263597][ T8831] R13: 00007f35d0be6038 R14: 00007f35d0be5fa0 R15: 00007ffea30428b8 [ 255.263616][ T8831] [ 255.515200][ T5873] Bluetooth: hci3: unexpected event 0x01 length: 5 > 1 [ 255.641540][ T8831] ERROR: Out of memory at tomoyo_realpath_from_path. [ 255.723456][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.730080][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 257.563152][ T8878] FAULT_INJECTION: forcing a failure. [ 257.563152][ T8878] name failslab, interval 1, probability 0, space 0, times 0 [ 257.603587][ T8878] CPU: 1 UID: 0 PID: 8878 Comm: syz.3.628 Not tainted syzkaller #0 PREEMPT(full) [ 257.603618][ T8878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 257.603631][ T8878] Call Trace: [ 257.603639][ T8878] [ 257.603648][ T8878] dump_stack_lvl+0x16c/0x1f0 [ 257.603688][ T8878] should_fail_ex+0x512/0x640 [ 257.603723][ T8878] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 257.603751][ T8878] should_failslab+0xc2/0x120 [ 257.603781][ T8878] __kmalloc_cache_noprof+0x6a/0x3e0 [ 257.603803][ T8878] ? trace_kmalloc+0x2b/0xd0 [ 257.603834][ T8878] ? __kvmalloc_node_noprof+0x298/0x620 [ 257.603860][ T8878] ? gpiolib_seq_start+0x69/0x270 [ 257.603889][ T8878] ? traverse.part.0.constprop.0+0x392/0x640 [ 257.603918][ T8878] gpiolib_seq_start+0x69/0x270 [ 257.603952][ T8878] traverse.part.0.constprop.0+0xac/0x640 [ 257.603990][ T8878] seq_read_iter+0x932/0x12c0 [ 257.604030][ T8878] seq_read+0x3a3/0x570 [ 257.604054][ T8878] ? __pfx_seq_read+0x10/0x10 [ 257.604086][ T8878] ? get_pid_task+0xfc/0x250 [ 257.604136][ T8878] full_proxy_read+0x12e/0x1a0 [ 257.604177][ T8878] ? __pfx_full_proxy_read+0x10/0x10 [ 257.604213][ T8878] vfs_read+0x1e1/0xcf0 [ 257.604248][ T8878] ? __pfx_vfs_read+0x10/0x10 [ 257.604273][ T8878] ? find_held_lock+0x2b/0x80 [ 257.604298][ T8878] ? __fget_files+0x204/0x3c0 [ 257.604330][ T8878] ? __fget_files+0x20e/0x3c0 [ 257.604354][ T8878] ? __fget_files+0x1d0/0x3c0 [ 257.604389][ T8878] __x64_sys_pread64+0x1eb/0x250 [ 257.604419][ T8878] ? __pfx___x64_sys_pread64+0x10/0x10 [ 257.604460][ T8878] do_syscall_64+0xcd/0x4c0 [ 257.604498][ T8878] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 257.604522][ T8878] RIP: 0033:0x7fccab78eec9 [ 257.604541][ T8878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 257.604564][ T8878] RSP: 002b:00007fccac6af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 257.604587][ T8878] RAX: ffffffffffffffda RBX: 00007fccab9e5fa0 RCX: 00007fccab78eec9 [ 257.604604][ T8878] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000003 [ 257.604618][ T8878] RBP: 00007fccac6af090 R08: 0000000000000000 R09: 0000000000000000 [ 257.604632][ T8878] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001 [ 257.604647][ T8878] R13: 00007fccab9e6038 R14: 00007fccab9e5fa0 R15: 00007ffd550c61f8 [ 257.604682][ T8878] [ 257.606518][ T8878] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI [ 257.850830][ T8878] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 257.859223][ T8878] CPU: 1 UID: 0 PID: 8878 Comm: syz.3.628 Not tainted syzkaller #0 PREEMPT(full) [ 257.868421][ T8878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 257.878457][ T8878] RIP: 0010:gpiolib_seq_stop+0x4c/0xe0 [ 257.883906][ T8878] Code: 48 c1 ea 03 80 3c 02 00 0f 85 98 00 00 00 48 8b 9b e0 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 8d 7b 04 48 89 fa 48 c1 ea 03 <0f> b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 04 84 d2 75 60 8b [ 257.903504][ T8878] RSP: 0018:ffffc9000b4efa50 EFLAGS: 00010247 [ 257.909551][ T8878] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffff888028838ba8 [ 257.917502][ T8878] RDX: 0000000000000000 RSI: ffffffff8519a36e RDI: 0000000000000004 [ 257.925455][ T8878] RBP: 0000000000000000 R08: 0000000000000dc0 R09: 00000000ffffffff [ 257.933406][ T8878] R10: ffffffff8e78b093 R11: 0000000000000001 R12: ffffffff8c19ee60 [ 257.941359][ T8878] R13: 0000000000000000 R14: 0000000000000000 R15: ffff888028838ba8 [ 257.949312][ T8878] FS: 00007fccac6af6c0(0000) GS:ffff8881247ba000(0000) knlGS:0000000000000000 [ 257.958223][ T8878] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 257.964788][ T8878] CR2: 00007f35d17b1f98 CR3: 0000000033470000 CR4: 00000000003526f0 [ 257.972743][ T8878] Call Trace: [ 257.976003][ T8878] [ 257.978919][ T8878] traverse.part.0.constprop.0+0x2c0/0x640 [ 257.984713][ T8878] seq_read_iter+0x932/0x12c0 [ 257.989377][ T8878] seq_read+0x3a3/0x570 [ 257.993515][ T8878] ? __pfx_seq_read+0x10/0x10 [ 257.998174][ T8878] ? get_pid_task+0xfc/0x250 [ 258.002751][ T8878] full_proxy_read+0x12e/0x1a0 [ 258.007504][ T8878] ? __pfx_full_proxy_read+0x10/0x10 [ 258.012780][ T8878] vfs_read+0x1e1/0xcf0 [ 258.016926][ T8878] ? __pfx_vfs_read+0x10/0x10 [ 258.021586][ T8878] ? find_held_lock+0x2b/0x80 [ 258.026244][ T8878] ? __fget_files+0x204/0x3c0 [ 258.030909][ T8878] ? __fget_files+0x20e/0x3c0 [ 258.035588][ T8878] ? __fget_files+0x1d0/0x3c0 [ 258.040249][ T8878] __x64_sys_pread64+0x1eb/0x250 [ 258.045170][ T8878] ? __pfx___x64_sys_pread64+0x10/0x10 [ 258.050611][ T8878] do_syscall_64+0xcd/0x4c0 [ 258.055106][ T8878] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 258.060982][ T8878] RIP: 0033:0x7fccab78eec9 [ 258.065377][ T8878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 258.084966][ T8878] RSP: 002b:00007fccac6af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 258.093359][ T8878] RAX: ffffffffffffffda RBX: 00007fccab9e5fa0 RCX: 00007fccab78eec9 [ 258.101310][ T8878] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000003 [ 258.109265][ T8878] RBP: 00007fccac6af090 R08: 0000000000000000 R09: 0000000000000000 [ 258.117216][ T8878] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001 [ 258.125167][ T8878] R13: 00007fccab9e6038 R14: 00007fccab9e5fa0 R15: 00007ffd550c61f8 [ 258.133125][ T8878] [ 258.136124][ T8878] Modules linked in: [ 258.140789][ T8878] ---[ end trace 0000000000000000 ]--- [ 258.219345][ T8878] RIP: 0010:gpiolib_seq_stop+0x4c/0xe0 [ 258.260089][ T8878] Code: 48 c1 ea 03 80 3c 02 00 0f 85 98 00 00 00 48 8b 9b e0 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 8d 7b 04 48 89 fa 48 c1 ea 03 <0f> b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 04 84 d2 75 60 8b [ 258.315488][ T8878] RSP: 0018:ffffc9000b4efa50 EFLAGS: 00010247 [ 258.370618][ T8878] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffff888028838ba8 [ 258.389492][ T8878] RDX: 0000000000000000 RSI: ffffffff8519a36e RDI: 0000000000000004 [ 258.448784][ T8878] RBP: 0000000000000000 R08: 0000000000000dc0 R09: 00000000ffffffff [ 258.477821][ T8878] R10: ffffffff8e78b093 R11: 0000000000000001 R12: ffffffff8c19ee60 [ 258.496775][ T8878] R13: 0000000000000000 R14: 0000000000000000 R15: ffff888028838ba8 [ 258.506597][ T8878] FS: 00007fccac6af6c0(0000) GS:ffff8881247ba000(0000) knlGS:0000000000000000 [ 258.515926][ T8878] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 258.522868][ T8878] CR2: 000020000054b000 CR3: 0000000033470000 CR4: 00000000003526f0 [ 258.547244][ T8878] Kernel panic - not syncing: Fatal exception [ 258.553579][ T8878] Kernel Offset: disabled [ 258.557889][ T8878] Rebooting in 86400 seconds..