last executing test programs: 7.657837611s ago: executing program 3 (id=599): mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) r0 = open$dir(&(0x7f0000000040)='}[,&*}\x00', 0x202000, 0x80) futimesat$auto(r0, &(0x7f0000000180)='}[,&*}/file0\x00', &(0x7f00000001c0)={0xce, 0x7}) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0x2, 0x80802, 0x0) openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000200), 0x400000, 0x0) connect$auto(0x3, &(0x7f0000000140), 0x55) sendmsg$auto_BATADV_CMD_GET_HARDIF(r1, 0x0, 0x40080fe) ptrace$auto(0xffffffffffffffff, 0x0, 0xfff, 0x9) openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='}[,&*}\x00', &(0x7f0000000080)={0x220000, 0x0, 0x10}, 0x18) 6.935828339s ago: executing program 3 (id=602): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/net/ip_vs_app\x00', 0x101000, 0x0) r1 = open(&(0x7f0000000000)='./file0\x00', 0x800, 0x100) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0xe0) mmap$auto(0x9, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0xb) setns(0xffffffffffffffff, 0x0) ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, 0x0) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[@ANYBLOB="ea12e528ded30ff1309c8b1613007984cb"], 0x14}}, 0x4000080) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = prctl$auto_PR_SCHED_CORE_SHARE_TO(0x6, 0x2, 0x0, 0x7fff, 0xffffffffffffffff) ioctl$auto_FIOQSIZE(r1, 0x5460, r4) r5 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000140), r4) openat$auto_nsim_udp_tunnels_info_reset_fops_udp_tunnels(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/netdevsim/netdevsim1/ports/0/udp_ports_reset\x00', 0x400000, 0x0) sendmsg$auto_OVS_CT_LIMIT_CMD_GET(r3, &(0x7f0000004480)={0x0, 0x0, &(0x7f0000004440)={&(0x7f00000004c0)=ANY=[@ANYBLOB="38020000", @ANYRES16=r5, @ANYBLOB="01002dbd7000fddbdf250300000017020180ac4ef4057fc1e86e4943361180ebd0adca39c0cb729d21e4c8deca6761e4ece02b6666567e48", @ANYBLOB="9efb056c9886", @ANYBLOB="0800160000000003ad231215a072d59fda90b93800206a743755b15913acd5f2060f16190e755b7e47050d08aee69c1a34ac24e914ca438dec2e54d20e98a24f76e66e8dfd0ba1e10a4bd9bcbd07c27b51f2cb27824362cc4d99496c0345905ef54830ea45ed538914fbf2b04cddd1c597ae51edd46382253d6db39c625b02791fe11a20004b8008000d", @ANYBLOB, @ANYRES32=0x0, @ANYBLOB="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"], 0x238}, 0x1, 0x0, 0x0, 0x20000840}, 0x20000840) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) fanotify_init$auto(0x8, 0x401) mmap$auto(0x0, 0x5810, 0xffb, 0x8000000008011, 0x3, 0x0) mmap$auto(0x0, 0x400000000004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000004) close_range$auto(0x2, 0x8, 0x0) pread64$auto(r0, 0x0, 0x8, 0xffff) socket(0xa, 0x1, 0x0) 5.506886631s ago: executing program 3 (id=606): mmap$auto(0x0, 0x8, 0x80000000000000df, 0x10004000eb1, 0x8, 0x8000008000) close_range$auto(0x2, 0x8, 0x0) sysfs$auto(0x2, 0x100000000000027, 0x0) fsopen$auto(0x0, 0x1) socket(0x10, 0x2, 0x0) syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001500), 0xffffffffffffffff) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x0, 0x8, 0xd, 0x3, 0x81, 0xffffffff, 0x2000000000000002, 0x0, 0x9, 0x1, 0x2, 0x80000001, 0xb0, 0x9, 0x20000800001, 0xffffffff, 0x5, 0x7, 0x6, 0x7, 0x0, 0xffffffee, 0x2a17, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x800000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x71a, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xffffffffffffffe9, 0x0, 0x4, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000]}, 0x9, 0x81) write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0xc090) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4044810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4000010}, 0x40000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x10, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xe}, 0x1, 0x0, 0x6, 0x9}, 0x7}, 0x803, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="5e0027617c36720add70ab0343990f7d0bbc96dc0b"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) r1 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000f40)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_SET_MESH(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)={0x60, r1, 0x1, 0x70bd28, 0x25dfdbfb, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_DAT_CACHE_VID={0x6, 0x25, 0x1}, @BATADV_ATTR_HARD_IFNAME={0x14, 0x7, 'netpci0\x00'}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_BLA_VID={0x6, 0x20, 0x1}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000}, 0x140080e4) 4.80966138s ago: executing program 2 (id=609): openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mkdir$auto(&(0x7f0000000000)='./file0\x00', 0x2) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0xfffffffe, 0x1ff, 0x7, 0x1f, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0x9, 0x3, 0x4, 0x1, 0xb4, 0x9, 0x8, 0x10003, 0x80, 0x4, 0x0, 0xa, 0x22000, 0x200, 0x0, 0x84, [0x3, 0x2, 0x0, 0x2, 0x0, 0x2000, 0x0, 0xe, 0x4000000070624ce7, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x4000, 0x0, 0x6, 0xfffffffffffffffe, 0xfffffffffffbfffd, 0x4, 0x1, 0x10000000000, 0xffffffffffffffff, 0x4, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffffc, 0x400000000005b8, 0xffff, 0x6, 0x0, 0x0, 0x6, 0xffffffffffffffff, 0x88c, 0x8000000000008, 0xfffffffffffffffc, 0x9, 0xa38, 0x0, 0x3, 0xfffffffffffffffc, 0x2, 0x1, 0x4]}, 0x1fe, 0xd) r1 = prctl$auto_PR_SET_SPECULATION_CTRL(0x35, 0x9, 0xffffffffffffffff, 0x5, 0x3) setsockopt$auto_SO_TIMESTAMPING_OLD(r1, 0xd, 0x25, 0x0, 0x1) r2 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0x1d, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x6}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}}) r3 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0) ioctl$auto_tracing_buffers_fops_trace(r3, 0x5220, 0x0) r4 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/timer_list\x00', 0x1c9802, 0x0) pread64$auto(r4, &(0x7f0000000000)='/proc/scsi/sg/devices\x00', 0x100000004, 0x100) poll$auto(&(0x7f0000000040)={r2, 0x1, 0x40}, 0x8, 0x8000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1000"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0xf7374674b920089e) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) socket(0x2, 0x3, 0x100) openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x8000, 0x70) socket(0x11, 0x3, 0x9) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sg0\x00', 0x200, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x1) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) semctl$auto_GETPID(0x800, 0x658c1e91, 0xb, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x981, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x4, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), 0xffffffffffffffff) 4.029034433s ago: executing program 3 (id=612): openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/ipv6/neigh/veth1/unres_qlen\x00', 0x382, 0x0) (async) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) mq_timedreceive$auto(r0, &(0x7f0000000080)='\x00', 0x5, &(0x7f0000000100), &(0x7f0000000140)={0x6, 0x3}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) mmap$auto(0x2, 0x20009, 0xfffffffffffffff7, 0x3b, 0xffffffffffffffff, 0x8000) (async) r1 = memfd_secret$auto(0x0) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) (async) ioctl$auto_SNDRV_CTL_IOCTL_CARD_INFO(r1, 0x81785501, &(0x7f00000002c0)={0x1000, 0x0, "e70383eae60b2cd3ca145cf5bddc62f0", "90ce8b813d2a47c58f432ce849bc97fb", "a3b47f8c4129e08a5c6ba78d69bf630b0670dbce016d5685762d90d3f9c93ce9", "75ec2ebf2634667ccc28bbaf39bfd48ac604450f68458f2cadb3b8b89656fb35309a2614f4eb22dfb328095a6b43526afc3cc36c560af4512f5be22055ccf403236ec414fdcdebbee81e08a59d438538", "686392126dc744809f28bf19c49e4339", "c661cdb611b103d85f2d8ed9ad053699566d5628e003d7d07f7e53b8f6a1bc5c23a0d703f71535d23e76d640609fd9a788e1f4a73e1704a483cbde52b96033b8cd49661988acdd50a71a9d9f48b30bfd", "c4622cead63ac8223451056b6cec158687bfec668cbcccd3fa5ba1f524a78c1dacda090880abe124e2ba0b46b89857208f4b06005002e619bb34f9fa61d01c3d89b8d26e60702dad8a44de913814b0aad39bef8194641d9b4190ea1469901b7cbdb78aac3d8771bfc0f4e2f70f812a980bffd59d0b4c4cad1d9237fa0c0f82a9"}) (async) ioctl$auto_XFS_IOC_SWAPEXT(r1, 0xc0c0586d, &(0x7f0000000580)={0x7, @inferred=r0, @raw=0x2, 0x4, 0x7, '\x00', {0x0, 0x1, 0x4, 0x0, 0xffffffffffffffff, 0x2, 0x80, 0x7, {0x6, 0x5}, {0xfffffffffffffff8, 0x6}, {0x800, 0x5}, 0x0, 0x7, 0x0, 0x101, 0x4, 0xfffd, 0x3c9c, 0x5b1, 0x400, 0x244, '\x00', 0x3, 0x81, 0x10, 0xc}}) sendmsg$auto_IPVS_CMD_GET_DEST(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x80004402}, 0xc, &(0x7f0000000840)={&(0x7f0000000780)=ANY=[@ANYBLOB="00b69685", @ANYRES16=0x0, @ANYBLOB="000125bd7000fedbdf25080000009800028028cbab6e04afea23334b965c3d565c10229055918dea7b8e451b9ded9ce30da07e6416fad8a701edd17fd3357cdb3f0a1386ebf919a5c5ae46dbc296870f1d80b9c1560d37f02a67cfc2ddead0020e080072007f0000010800b300", @ANYRES32=r2, @ANYBLOB="965ca5c250e95acabf86fec8c88ba87281836bc7bdf9e51feb1acf0e2ea133ec939905e79a16b3245e9f6a00b3bd4b48e69219ce14"], 0xac}, 0x1, 0x0, 0x0, 0x24040001}, 0x40) ftruncate$auto(0x3, 0x700) (async) set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4) (async) write$auto_v4l2_fops_v4l2_dev(0xffffffffffffffff, 0x0, 0x0) (async) statx$auto(r1, &(0x7f0000000240)='./file0\x00', 0x6, 0x0, &(0x7f0000000440)={0x6, 0xffff, 0x8000000000000001, 0x5, 0xffffffffffffffff, 0xee01, 0x918, 0x1ff, 0x8, 0x3800, 0x8, 0x1, {0x6}, {0xf, 0x3}, {0x7, 0x7fffffff}, {0xfffffffffffffff7, 0x3}, 0xfff, 0xfff, 0x8000, 0x1, 0x9, 0x5e, 0x7, 0x7, 0x5, 0x7, 0x1400000, 0x8, [0x8000000000000001, 0x8, 0xaa, 0x7fff, 0x3, 0xffffffffffffff35, 0x1, 0x4, 0x4]}) (async) shmctl$auto_SHM_UNLOCK(0x335f, 0xc, &(0x7f0000000700)={{0x9, 0xee00, 0xee00, 0xfffffff7, 0xe, 0x7, 0x9}, 0xac, 0x5, 0xb98, 0xffffffff, @inferred, @inferred=0xffffffffffffffff, 0x401, 0x0, &(0x7f0000000540), &(0x7f0000000640)="1fa57589a6d1d419b7df70905a4aa7206cd569521b2b1b86d494e23c43375dfd6b810a6dc9d8eb0d720775eb30862bab77d94023748f0d51ad0ff5b816c199a8605ac2b41a8ccffb306f7e7c9db58be26aff0ca6728b36b56673bebd3aa35cdb4dbf735258c426d2bceb9c762149b93285f3784270d62f4a375599d28ec648a9a1bd057a1f01"}) setresuid$auto(0x0, r3, r4) io_uring_setup$auto(0x6, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vkms/graphics/fb0/bits_per_pixel\x00', 0x82942, 0x0) sendfile$auto(r5, r5, 0x0, 0x200) (async) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129800, 0x0) openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000000)='/dev/etherd/err\x00', 0x800, 0x0) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) syz_clone(0x4200, 0x0, 0x0, 0x0, 0x0, 0x0) r6 = socket(0x23, 0x80805, 0x0) getsockopt$auto(r6, 0x40000000113, 0x1, 0xfffffffffffffffc, 0x0) 3.367606566s ago: executing program 2 (id=613): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xfffffffffffffffd, 0x40000008000) r0 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x8) close_range$auto(0x2, 0x8000, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/card1/pcm0c/sub0/status\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000280)=""/65, 0x41) socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'ip6tnl0\x00'}) bpf$auto(0x2, &(0x7f00000000c0)=@raw_tracepoint={0x5, r0, 0x0, 0x3}, 0x91) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.1/usb2/bConfigurationValue\x00', 0x101142, 0x0) openat$auto_gpiolib_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x442, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/snd/pcmC0D0p\x00', 0x40, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_HW_REFINE_OLD(r3, 0xc1004110, 0x0) socket(0x28, 0x1, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon1\x00', 0x4ad03, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4460, 0x15f4da0a, 0x1, 0x4, 0x300000000000000, 0x80000001, 0x7, 0x0, 0x5, 0x2, 0x300000000000000]}, 0x0) close_range$auto(0x2, 0x8, 0x0) write$auto(r2, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0x4) 2.707562409s ago: executing program 0 (id=614): prctl$auto_PR_SET_SPECULATION_CTRL(0x35, 0x1, 0xffffffffffffffff, 0x7, 0x9) r0 = openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000001680)='/sys/kernel/debug/tracing/uprobe_events\x00', 0x2, 0x0) r1 = openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000100), 0x80, 0x0) ioctl$auto_BCH_IOCTL_FSCK_OFFLINE(r1, 0x4018bc13, 0x0) write$auto_uprobe_events_ops_trace_uprobe(r0, &(0x7f0000000000)="706f3a82d9e5cc7c2ceda8d50bfc94be9fe6c22ffaf8493a38", 0x19) socket(0x2b, 0x1, 0x1) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) r2 = socket(0x2, 0x1, 0x100) getsockopt$auto(r2, 0x0, 0x42, 0x0, &(0x7f00000000c0)=0x1e) getsockopt$auto_SO_ERROR(r2, 0x6, 0x4, 0x0, 0x0) setsockopt$auto(0x3, 0x29, 0x19, 0xffffffffffffffff, 0x3) vmsplice$auto(0xffffffffffffffff, 0x0, 0x3ff, 0x1) 2.617050162s ago: executing program 2 (id=615): r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0) ptrace$auto(0x6, 0x1, 0x3, 0x180000) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20000005, 0x3, 0xeb1, r0, 0x1000000008000) r2 = clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x3) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r3 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r4 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0) landlock_restrict_self$auto(r4, 0x0) landlock_restrict_self$auto(r3, 0x0) kill$auto(r2, 0x21) sendmsg$auto_SEG6_CMD_DUMPHMAC(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0xc850}, 0x4000004) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000080), 0x262341, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0) memfd_create$auto(0x0, 0xe) socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, &(0x7f0000000000)={0x3, 0x7, 0x8}) fstat$auto(0x2, 0x0) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r6, 0x5423, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) write$auto(r5, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) 2.415032133s ago: executing program 0 (id=616): bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex, 0xffffffffffffffff, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92) (async) r0 = socket(0xa, 0x2, 0x0) (async) socket(0x2, 0x3, 0x2) (async, rerun: 32) setsockopt$auto(0x3, 0x0, 0xd4, 0xfffffffffffffffc, 0x3) (async, rerun: 32) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 32) r1 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f00000004c0), 0x2202, 0x0) (rerun: 32) ioctl$auto_USB_RAW_IOCTL_EP0_WRITE(r1, 0x40085503, 0x0) sendto$auto(r0, 0x0, 0x402, 0xacf8, &(0x7f0000000040)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c) 2.05796365s ago: executing program 0 (id=617): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) getrandom$auto(0x0, 0x6000000, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008) (async) socket(0x29, 0x2, 0x0) (async) r0 = socket(0x10, 0x2, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async) landlock_create_ruleset$auto(&(0x7f0000000000)={0xdaa0, 0x1, 0x9}, 0x9, 0x0) (async) landlock_restrict_self$auto(r1, 0x0) (async) r2 = socket(0x1e, 0x1, 0x0) bind$auto(r2, &(0x7f0000000040)=@tipc=@nameseq={0x1e, 0x1, 0x2, {0x40, 0x0, 0x2}}, 0x66) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r0, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) (async) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xe3102, 0x0) sendfile$auto(r4, r4, 0x0, 0x3) read$auto(r3, 0x0, 0xe8) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket(0x18, 0x4, 0x0) openat$auto_fops_blob_file(0xffffffffffffff9c, &(0x7f0000011500), 0x40002, 0x0) (async) write$auto(0x3, 0x0, 0xfdef) (async) r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0) writev$auto(r5, &(0x7f0000000200)={0x0, 0x7}, 0x3) (async) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x6) socket(0x18, 0xa, 0x1) 1.867427879s ago: executing program 1 (id=619): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, &(0x7f0000000000)={0x3, 0x7, 0x8}) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/devices.deny\x00', 0x8ea182, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0) 1.67058372s ago: executing program 1 (id=620): madvise$auto(0x8c, 0xffffffffffff0001, 0x16) open(&(0x7f0000000100)='./file0\x00', 0x610001, 0x18) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/fs/cifs/smbd_send_credit_target\x00', 0x40, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) statx$auto(0x2, 0x0, 0x1000, 0x8, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc7}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptye8\x00', 0x400002, 0x0) ioctl$auto_TIOCEXCL2(r0, 0x540c, &(0x7f0000000300)="01a03e435b247e3ac8914da105c01aef483696e743119b6dc8b9cb9e2fe58651ae160c3e99e890661996c6fe6d7aa69e24a95cabc4acb99cd89f5461d6a069274dffdb8c81c96524963dde498c29176d61f1ee7e6e2b28d5ca4554a5b2bca6618bf4c068079775c477fa57189efc3227b8a16b2078a05f5add1da5a12e2a67a1cc686497c3dfcf36dd72e589634ae7a41bbf14b783841f58bae44ef1675dafe9826866d60cc335d43c3365c54615a2fa9e8e11b0f3f34120e157fa2cffa939c60272844e256c89a54322a19bba") r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) 1.650128693s ago: executing program 2 (id=621): socket(0x22, 0x2, 0x4) setsockopt$auto(0x3, 0x0, 0x18, 0x0, 0xb) mmap$auto(0x0, 0x2000d, 0x4000000000e3, 0x400000000eb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/008/001\x00', 0xa901, 0x0) ioctl$auto_USBDEVFS_SETCONFIGURATION(r0, 0x80045505, 0x0) 1.581073171s ago: executing program 3 (id=622): socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x80002, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2b, 0x1, 0x0) open(&(0x7f00000001c0)='./file0\x00', 0x121142, 0x13d) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) write$auto(0x3, 0x0, 0xfffffdef) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0) openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) ioctl$auto_SOUND_MIXER_READ_DEVMASK2(r0, 0x80044dfe, &(0x7f0000000180)="3f8106213d4179560d8a29c83c292e3b2903f7e347b975ad") r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000100)='/d-:\xe7J\x00'/23, 0x1eb07fd) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x1000000000007, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x1000000, 0x7ffffffe, 0xc237, 0x6d3c, 0x5, 0x18]}, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ttyS1\x00', 0x208440, 0x0) mmap$auto(0x0, 0x4020009, 0x7, 0xeb1, 0x401, 0x48000) madvise$auto(0xa, 0x40, 0xfffffe00) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0x2, 0x3, 0x100) recvfrom$auto(r2, 0x0, 0x6, 0x7, 0x0, 0x0) socket(0x2, 0x3, 0xa) connect$auto(0x3, 0x0, 0x55) connect$auto(0x3, &(0x7f0000000140)=@tipc=@name={0x1e, 0x2, 0x0, {{0x43, 0x3}, 0x4}}, 0x55) 1.471525084s ago: executing program 1 (id=623): socket(0x2, 0x3, 0xa) socket(0x2, 0x5, 0x0) setsockopt$auto(0x4, 0x0, 0x81, 0x0, 0x10000) r0 = socket(0xa, 0x1, 0x84) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000004200)={&(0x7f0000000140)={0x2c, r1, 0x1, 0x70bd25, 0x25dfdbfe, {}, [@HWSIM_ATTR_PMSR_SUPPORT={0x18, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_TYPE_CAPA={0x14, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0x4}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40c8}, 0x4048000) getsockopt$auto(r0, 0x0, 0x53, 0x0, &(0x7f0000000040)=0x83) socket(0x2, 0x3, 0xa) (async) socket(0x2, 0x5, 0x0) (async) setsockopt$auto(0x4, 0x0, 0x81, 0x0, 0x10000) (async) socket(0xa, 0x1, 0x84) (async) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000004200)={&(0x7f0000000140)={0x2c, r1, 0x1, 0x70bd25, 0x25dfdbfe, {}, [@HWSIM_ATTR_PMSR_SUPPORT={0x18, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_TYPE_CAPA={0x14, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0x4}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40c8}, 0x4048000) (async) getsockopt$auto(r0, 0x0, 0x53, 0x0, &(0x7f0000000040)=0x83) (async) 1.234490782s ago: executing program 2 (id=624): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xfffffffffffffffd, 0x40000008000) r0 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x8) close_range$auto(0x2, 0x8000, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/card1/pcm0c/sub0/status\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000280)=""/65, 0x41) socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'ip6tnl0\x00'}) bpf$auto(0x2, &(0x7f00000000c0)=@raw_tracepoint={0x5, r0, 0x0, 0x3}, 0x91) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.1/usb2/bConfigurationValue\x00', 0x101142, 0x0) openat$auto_gpiolib_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x442, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/snd/pcmC0D0p\x00', 0x40, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_HW_REFINE_OLD(r3, 0xc1004110, 0x0) socket(0x28, 0x1, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon1\x00', 0x4ad03, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4460, 0x15f4da0a, 0x1, 0x4, 0x300000000000000, 0x80000001, 0x7, 0x0, 0x5, 0x2, 0x300000000000000]}, 0x0) close_range$auto(0x2, 0x8, 0x0) write$auto(r2, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0x4) 1.025024712s ago: executing program 1 (id=625): prctl$auto_PR_SET_SPECULATION_CTRL(0x35, 0x1, 0xffffffffffffffff, 0x7, 0x9) r0 = openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000001680)='/sys/kernel/debug/tracing/uprobe_events\x00', 0x2, 0x0) r1 = openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000100), 0x80, 0x0) ioctl$auto_BCH_IOCTL_FSCK_OFFLINE(r1, 0x4018bc13, 0x0) write$auto_uprobe_events_ops_trace_uprobe(r0, &(0x7f0000000000)="706f3a82d9e5cc7c2ceda8d50bfc94be9fe6c22ffaf8493a38", 0x19) socket(0x2b, 0x1, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) r2 = socket(0x2, 0x1, 0x100) getsockopt$auto(r2, 0x0, 0x42, 0x0, &(0x7f00000000c0)=0x1e) getsockopt$auto_SO_ERROR(r2, 0x6, 0x4, 0x0, 0x0) setsockopt$auto(0x3, 0x29, 0x19, 0xffffffffffffffff, 0x3) vmsplice$auto(0xffffffffffffffff, 0x0, 0x3ff, 0x1) 859.421648ms ago: executing program 0 (id=626): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nbd(0x0, 0xffffffffffffffff) shmctl$auto_IPC_STAT(0x6, 0x2, &(0x7f0000000440)={{0x5, 0xffffffffffffffff, 0xffffffffffffffff, 0x200, 0x1, 0xfff, 0x81}, 0x1000, 0x9, 0xe1a, 0x0, @inferred, @inferred=0xffffffffffffffff, 0x7, 0x0, 0x0, 0x0}) sendmsg$auto_NBD_CMD_CONNECT(r0, 0x0, 0x4010) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) unshare$auto(0x40000080) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYBLOB="6a0051b1"], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) (fail_nth: 10) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) 656.617128ms ago: executing program 2 (id=627): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nbd6\x00', 0x8001, 0x0) ioctl$auto(0x3, 0x80000541b, 0x38) prctl$auto(0x23, 0x0, 0x7fffffffefff, 0x8000000, 0x0) openat$auto_ima_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000340), 0x2400, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/ip_vs\x00', 0x100, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) sysfs$auto(0x2, 0x2b, 0x0) fsopen$auto(0x0, 0x1) r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x401f, 0x1, 0x8e051, r0, 0x0) bpf$auto(0xd, 0x0, 0x6f5) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x8000000000000000, 0x15) madvise$auto(0x0, 0x2000000080000001, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x80, 0x0) move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r1 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, 0x0, 0x1fe, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) sendmmsg$auto(r1, 0x0, 0x7, 0x4008) madvise$auto(0x0, 0xffffffffffff0005, 0x19) 428.708554ms ago: executing program 0 (id=628): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, &(0x7f0000000000)={0x3, 0x7, 0x8}) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/devices.deny\x00', 0x8ea182, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000000), 0x0) 207.012865ms ago: executing program 0 (id=629): syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000200)='ns/time_for_children\x00') mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0xa, 0x2, 0x0) socketpair$auto(0x1e, 0x5, 0x3, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0x2, 0x2, 0x0) r0 = socket(0x2, 0x1, 0x0) r1 = socket(0x2a, 0x2, 0x0) ioctl$auto(r1, 0x8912, 0x38) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) socket(0x2, 0x1, 0x106) listen$auto(0x3, 0x81) socket(0xa, 0x1, 0x84) connect$auto(0x3, 0x0, 0x55) accept$auto(0x3, 0xffffffffffffffff, 0xfffffffffffffffd) ustat$auto(0x801, 0x0) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) syz_genetlink_get_family_id$auto_nfc(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000300)='ns/time\x00') 179.944025ms ago: executing program 1 (id=630): openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtd0ro\x00', 0x2c00, 0x0) madvise$auto(0x3d00000000000000, 0xffffffffffff0001, 0x15) 157.201913ms ago: executing program 3 (id=631): r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x902, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x1d, 0x2, 0x6) renameat2$auto(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, 0x0, 0x7) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0) read$auto(r1, 0x0, 0x6) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) sendmsg$auto_HWSIM_CMD_REGISTER(0xffffffffffffffff, 0x0, 0x48025) socket(0x26, 0x1, 0x1) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mbind$auto(0x0, 0xfa9d, 0x8001, &(0x7f0000000300)=0xc9e, 0x400, 0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_GET_WOWLAN(r3, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000001680)={0x28, 0x0, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x8}, @NL80211_ATTR_WDEV={0xc, 0x99, 0x9ef}]}, 0x28}, 0x1, 0x0, 0x0, 0x8000}, 0x0) unshare$auto(0x40000080) ioctl$auto_RTC_UIE_ON(r0, 0x7003, 0x0) ioctl$auto_RTC_WKALM_SET(r0, 0x4028700f, &(0x7f0000000000)={0x3, 0x3, {0x5, 0x4, 0x9, 0x7, 0x1, 0x3a50, 0xfffffffd, 0xffff, 0xfd}}) socket(0x11, 0x80003, 0x300) socket(0x29, 0x5, 0x0) open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/workqueue/nvme-reset-wq/cpumask\x00', 0x8802, 0x0) write$auto(0x3, 0x0, 0xfdef) open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91) 0s ago: executing program 1 (id=632): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xc18, 0x8000) (async) r0 = socket(0x2, 0x1, 0x0) getsockopt$auto(r0, 0x0, 0x43, 0x0, &(0x7f00000000c0)=0x1e) (async) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/036/001\x00', 0x2ab01, 0x0) ioctl$auto_USBDEVFS_BULK(r1, 0xc0185502, &(0x7f0000000080)={0x82, 0x7fdfff46, 0x8, 0x0}) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async) r2 = socket(0x2, 0x2, 0x1) r3 = bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, r2, 0x10000}, 0x10) mmap$auto(0x0, 0x9, 0xe994, 0x8000000008011, r3, 0x8000) (async) syz_clone(0x20000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) bind$auto(0x3, 0x0, 0x6a) unshare$auto(0x40000080) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) (async) get_mempolicy$auto(0x0, 0x0, 0x3, 0x1ff, 0x6) (async) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x1a6b75d63882a712, 0x0) (async) get_mempolicy$auto(&(0x7f0000000000)=0x6, &(0x7f0000000040)=0xfffffffffffffffe, 0x0, 0x9, 0x7fffffff) (async) socket(0xa, 0x3, 0x73) (async) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async) setsockopt$auto(0x400000000000003, 0x29, 0x7, 0x0, 0x401) (async) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000001c0), r3) sendmsg$auto_NL80211_CMD_SET_CHANNEL(r4, &(0x7f0000000640)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x12040000}, 0xc, &(0x7f0000000600)={&(0x7f0000000200)={0x3ec, r5, 0x300, 0x70bd28, 0x25dfdbfc, {}, [@NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_SUPPORT_MESH_AUTH={0x4}, @NL80211_ATTR_PREV_BSSID={0xf8, 0x4f, "fb6f54cc49b0961ba6232a21f56c91c7c83ced554ba858e2aff9ef127878cc5832ce08e18aad66eb9b8ec222fc58438e42106c6a2bb3c9bf72e4449982810a2cf66d349633e9b8e847a409dcef583dc7888913f7b5a5a4678f4e238070409ff506bb46209355bffb5b84e9188be90dee77926e20b8308679a21f90df9a80b205c3783b1a3f8c1638cbcf95ec55aad67b1e63f9ff73a05543821a1696bd2d2ee4032e05e24ffb304aac7dbd75fd6690318c0e48abeee6afc5c220af2525054f77eb93c32936b8b40d752674a8b8d846e9461998700bdc2fc2dd20ea2b05f4bc8a47208160eab7812ba4980f67be564f82411b8ac0"}, @NL80211_ATTR_COLOR_CHANGE_COUNT={0x5, 0x12f, 0x8}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x2cd, 0x84, 0x0, 0x1, [@generic="d0135a7762e1e988c588619fc380910aedcaaef0cc484192932f578a9eafc318703da20e5ea0829e879589b05671f4b5d35207f6386089e9f62d674841bca7c626c5b3976baf96078282528de3bc11633aec3d022b4c8b5d48ca1b8aeb8b9ecf90a96a726e81fab2ec31a6b2da6919518cbb776ec6118f5ef50481e6eefc811392d97306cf352e7902290ddd85e412df0770fa2f55ffe0fe09fd4c6bee2c399fde3b2903a901ca135645745a39125ea57f6008554f2ed6a374ed4de35fc463c6671efb0186a4bb464a5c741d7be2c370d8fe8cf4", @generic="5ff53e294b77b5b5d34e3962ed569641e1803383c51fcdf81d9cdbace60f84575f925d9b229e22615700ef7bc27f3506c1411885bcbda8197922bdb191b91436bf527dc3c7fb680d8b781dfbd40299505c897a777055942e0fdb0151644064ce94f8321180065f1209ebb9210798786dcca03aa8a61a567bd2484ff70ce015d710a7b9764dfd37885b13d008e325566e81cada91e4c7d9e1ea78e88c196c5e94722ab88ad880e24aa3fff2a612fc88348bb6", @typed={0x19, 0xff, 0x0, 0x0, @str='/dev/bus/usb/036/001\x00'}, @generic="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", @typed={0x2b, 0x117, 0x0, 0x0, @str='/sys/kernel/tracing/per_cpu/cpu1/trace\x00'}]}]}, 0x3ec}, 0x1, 0x0, 0x0, 0x20014884}, 0x804) close_range$auto(0x2, 0x8, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.251' (ED25519) to the list of known hosts. [ 83.218836][ T5828] cgroup: Unknown subsys name 'net' [ 83.374684][ T5828] cgroup: Unknown subsys name 'cpuset' [ 83.384079][ T5828] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 85.175208][ T5828] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 87.349177][ T55] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 87.368448][ T5844] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 87.378131][ T5847] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 87.385885][ T5847] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 87.394194][ T5847] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 87.402143][ T5847] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 87.410752][ T5847] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 87.419580][ T5847] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 87.427894][ T5847] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 87.437398][ T5841] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 87.446081][ T5841] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 87.454939][ T5841] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 87.463223][ T5841] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 87.472620][ T5851] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 87.496194][ T5850] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 87.504087][ T5850] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 87.512161][ T5850] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 87.521946][ T5850] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 87.529956][ T5850] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 87.538956][ T5850] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 88.067389][ T5848] chnl_net:caif_netlink_parms(): no params data found [ 88.094015][ T5843] chnl_net:caif_netlink_parms(): no params data found [ 88.129308][ T5842] chnl_net:caif_netlink_parms(): no params data found [ 88.348289][ T5848] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.356564][ T5848] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.364091][ T5848] bridge_slave_0: entered allmulticast mode [ 88.372560][ T5848] bridge_slave_0: entered promiscuous mode [ 88.426699][ T5848] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.434089][ T5848] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.442201][ T5848] bridge_slave_1: entered allmulticast mode [ 88.449408][ T5848] bridge_slave_1: entered promiscuous mode [ 88.512041][ T5843] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.519274][ T5843] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.526897][ T5843] bridge_slave_0: entered allmulticast mode [ 88.534726][ T5843] bridge_slave_0: entered promiscuous mode [ 88.548603][ T5843] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.556685][ T5843] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.564039][ T5843] bridge_slave_1: entered allmulticast mode [ 88.572048][ T5843] bridge_slave_1: entered promiscuous mode [ 88.579906][ T5842] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.587205][ T5842] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.594587][ T5842] bridge_slave_0: entered allmulticast mode [ 88.602841][ T5842] bridge_slave_0: entered promiscuous mode [ 88.625555][ T5848] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 88.635397][ T5837] chnl_net:caif_netlink_parms(): no params data found [ 88.658582][ T5842] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.666156][ T5842] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.674207][ T5842] bridge_slave_1: entered allmulticast mode [ 88.681563][ T5842] bridge_slave_1: entered promiscuous mode [ 88.691733][ T5848] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 88.758260][ T5843] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 88.808844][ T5843] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 88.822670][ T5842] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 88.835163][ T5842] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 88.848181][ T5848] team0: Port device team_slave_0 added [ 88.857737][ T5848] team0: Port device team_slave_1 added [ 88.951130][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 88.958144][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 88.984184][ T5848] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 89.006890][ T5843] team0: Port device team_slave_0 added [ 89.021497][ T5842] team0: Port device team_slave_0 added [ 89.028484][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 89.036353][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 89.065473][ T5848] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 89.091869][ T5843] team0: Port device team_slave_1 added [ 89.114609][ T5842] team0: Port device team_slave_1 added [ 89.158518][ T5837] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.166267][ T5837] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.174003][ T5837] bridge_slave_0: entered allmulticast mode [ 89.183885][ T5837] bridge_slave_0: entered promiscuous mode [ 89.204452][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 89.211722][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 89.238334][ T5842] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 89.268707][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 89.275864][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 89.302615][ T5843] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 89.314137][ T5837] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.321711][ T5837] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.329017][ T5837] bridge_slave_1: entered allmulticast mode [ 89.337758][ T5837] bridge_slave_1: entered promiscuous mode [ 89.359771][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 89.366889][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 89.393058][ T5842] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 89.405241][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 89.412374][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 89.438842][ T5843] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 89.490447][ T5837] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 89.501053][ T5850] Bluetooth: hci2: command tx timeout [ 89.507036][ T5850] Bluetooth: hci1: command tx timeout [ 89.539647][ T5837] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 89.557791][ T5848] hsr_slave_0: entered promiscuous mode [ 89.564318][ T5848] hsr_slave_1: entered promiscuous mode [ 89.580381][ T5844] Bluetooth: hci3: command tx timeout [ 89.586473][ T5850] Bluetooth: hci0: command tx timeout [ 89.624732][ T5843] hsr_slave_0: entered promiscuous mode [ 89.631514][ T5843] hsr_slave_1: entered promiscuous mode [ 89.637557][ T5843] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 89.647509][ T5843] Cannot create hsr debugfs directory [ 89.717134][ T5837] team0: Port device team_slave_0 added [ 89.730592][ T5842] hsr_slave_0: entered promiscuous mode [ 89.737532][ T5842] hsr_slave_1: entered promiscuous mode [ 89.745439][ T5842] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 89.753414][ T5842] Cannot create hsr debugfs directory [ 89.783086][ T5837] team0: Port device team_slave_1 added [ 89.894463][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 89.902001][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 89.929621][ T5837] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 89.973401][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 89.980939][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 90.007733][ T5837] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 90.207062][ T5837] hsr_slave_0: entered promiscuous mode [ 90.213914][ T5837] hsr_slave_1: entered promiscuous mode [ 90.221846][ T5837] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 90.229591][ T5837] Cannot create hsr debugfs directory [ 90.348195][ T5848] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 90.363826][ T5848] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 90.385188][ T5848] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 90.411690][ T5848] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 90.510435][ T5843] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 90.524192][ T5843] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 90.545882][ T5843] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 90.556157][ T5843] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 90.657605][ T5842] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 90.675830][ T5842] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 90.704723][ T5842] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 90.742829][ T5842] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 90.781041][ T5837] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 90.810057][ T5837] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 90.823253][ T5837] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 90.835508][ T5837] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 90.955777][ T5848] 8021q: adding VLAN 0 to HW filter on device bond0 [ 91.018373][ T5848] 8021q: adding VLAN 0 to HW filter on device team0 [ 91.047085][ T1152] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.054472][ T1152] bridge0: port 1(bridge_slave_0) entered forwarding state [ 91.088121][ T1152] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.095402][ T1152] bridge0: port 2(bridge_slave_1) entered forwarding state [ 91.119596][ T5843] 8021q: adding VLAN 0 to HW filter on device bond0 [ 91.158510][ T5843] 8021q: adding VLAN 0 to HW filter on device team0 [ 91.198521][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.205775][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 91.220331][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.227561][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 91.246304][ T5842] 8021q: adding VLAN 0 to HW filter on device bond0 [ 91.349903][ T5837] 8021q: adding VLAN 0 to HW filter on device bond0 [ 91.379030][ T5842] 8021q: adding VLAN 0 to HW filter on device team0 [ 91.435255][ T5837] 8021q: adding VLAN 0 to HW filter on device team0 [ 91.447622][ T752] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.454895][ T752] bridge0: port 1(bridge_slave_0) entered forwarding state [ 91.495555][ T752] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.503016][ T752] bridge0: port 1(bridge_slave_0) entered forwarding state [ 91.536043][ T752] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.543515][ T752] bridge0: port 2(bridge_slave_1) entered forwarding state [ 91.571362][ T752] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.579277][ T752] bridge0: port 2(bridge_slave_1) entered forwarding state [ 91.587581][ T5850] Bluetooth: hci1: command tx timeout [ 91.588829][ T5844] Bluetooth: hci2: command tx timeout [ 91.660507][ T5844] Bluetooth: hci0: command tx timeout [ 91.661084][ T5850] Bluetooth: hci3: command tx timeout [ 91.738974][ T5848] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 91.754341][ T5837] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 91.920947][ T5848] veth0_vlan: entered promiscuous mode [ 91.958111][ T5848] veth1_vlan: entered promiscuous mode [ 92.107100][ T5848] veth0_macvtap: entered promiscuous mode [ 92.128769][ T5843] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 92.149197][ T5848] veth1_macvtap: entered promiscuous mode [ 92.233937][ T5842] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 92.245257][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 92.279349][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 92.322008][ T5843] veth0_vlan: entered promiscuous mode [ 92.346678][ T5848] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.356901][ T5848] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.366637][ T5848] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.375758][ T5848] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.431560][ T5837] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 92.452576][ T5843] veth1_vlan: entered promiscuous mode [ 92.528246][ T5842] veth0_vlan: entered promiscuous mode [ 92.625767][ T5842] veth1_vlan: entered promiscuous mode [ 92.648777][ T5843] veth0_macvtap: entered promiscuous mode [ 92.669658][ T5837] veth0_vlan: entered promiscuous mode [ 92.698921][ T5843] veth1_macvtap: entered promiscuous mode [ 92.727987][ T5837] veth1_vlan: entered promiscuous mode [ 92.763217][ T3975] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.790645][ T3975] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.811852][ T5842] veth0_macvtap: entered promiscuous mode [ 92.846057][ T5843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 92.861738][ T5843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.874781][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 92.893447][ T5842] veth1_macvtap: entered promiscuous mode [ 92.944097][ T5843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 92.955513][ T5843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.967036][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 92.980025][ T5843] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.989127][ T5843] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.998861][ T5843] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.007995][ T5843] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.038860][ T1152] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.044905][ T5842] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 93.058085][ T1152] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.062675][ T5842] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.078316][ T5842] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 93.088844][ T5842] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.104535][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 93.128930][ T5837] veth0_macvtap: entered promiscuous mode [ 93.139064][ T5842] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.151548][ T5842] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.162188][ T5842] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.172705][ T5842] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.186141][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 93.208462][ T5842] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.228008][ T5842] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.240499][ T5842] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.249348][ T5842] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.276168][ T5837] veth1_macvtap: entered promiscuous mode [ 93.291809][ T5848] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 93.426959][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 93.457849][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.468923][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 93.480046][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.490559][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 93.502796][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.515915][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 93.563620][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.571438][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.577148][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.583006][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.583025][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.583044][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.583056][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.583073][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.584654][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 93.662997][ T5850] Bluetooth: hci1: command tx timeout [ 93.663049][ T5844] Bluetooth: hci2: command tx timeout [ 93.681734][ T5837] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.691291][ T5837] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.700702][ T5837] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.709522][ T5837] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.741098][ T5844] Bluetooth: hci0: command tx timeout [ 93.741106][ T5850] Bluetooth: hci3: command tx timeout [ 93.835938][ T1152] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.861836][ T1152] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.902874][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.939096][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.036669][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.059189][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.191566][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.199472][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.307092][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.324200][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.577825][ T5907] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5'. Á[ 94.912547][ T5844] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 94.912590][ T5844] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 94.928481][ T5844] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 94.928540][ T5844] Bluetooth: hci1: adv larger than maximum supported [ 94.935912][ T5844] Bluetooth: hci1: adv larger than maximum supported [ 94.944116][ T5844] Bluetooth: hci1: Unknown advertising packet type: 0x70 [ 94.951902][ T5844] Bluetooth: hci1: adv larger than maximum supported [ 94.959090][ T5844] Bluetooth: hci1: adv larger than maximum supported [ 94.966396][ T5844] Bluetooth: hci1: Malformed LE Event: 0x0d [ 95.628592][ T5936] mmap: syz.1.7 (5936) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 95.742513][ T5844] Bluetooth: hci1: command tx timeout [ 95.748060][ T5850] Bluetooth: hci2: command tx timeout [ 95.823607][ T5844] Bluetooth: hci0: command tx timeout [ 95.829158][ T5850] Bluetooth: hci3: command tx timeout [ 96.031250][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 96.103535][ T5943] FAULT_INJECTION: forcing a failure. [ 96.103535][ T5943] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 96.103587][ T5943] CPU: 0 UID: 0 PID: 5943 Comm: syz.2.10 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 96.103622][ T5943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 96.103639][ T5943] Call Trace: [ 96.103648][ T5943] [ 96.103659][ T5943] dump_stack_lvl+0x16c/0x1f0 [ 96.103703][ T5943] should_fail_ex+0x512/0x640 [ 96.103743][ T5943] should_fail_alloc_page+0xe7/0x130 [ 96.103775][ T5943] prepare_alloc_pages+0x3c2/0x610 [ 96.103819][ T5943] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 96.103879][ T5943] ? lockdep_unlock+0x64/0xe0 [ 96.103918][ T5943] ? __lock_acquire+0xaa4/0x1ba0 [ 96.103941][ T5943] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 96.103988][ T5943] ? fb_var_to_videomode+0x4c9/0x690 [ 96.104031][ T5943] ? __pfx_fb_match_mode+0x10/0x10 [ 96.104067][ T5943] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 96.104100][ T5943] ? lockdep_hardirqs_on+0x7c/0x110 [ 96.104141][ T5943] ? vc_allocate+0x489/0x880 [ 96.104181][ T5943] __alloc_pages_noprof+0xb/0x1b0 [ 96.104223][ T5943] ___kmalloc_large_node+0x82/0x1e0 [ 96.104255][ T5943] ? con_is_visible+0x65/0x150 [ 96.104294][ T5943] __kmalloc_large_node_noprof+0x1c/0x70 [ 96.104333][ T5943] __kmalloc_noprof.cold+0xc/0x61 [ 96.104383][ T5943] vc_allocate+0x489/0x880 [ 96.104435][ T5943] ? __pfx_vc_allocate+0x10/0x10 [ 96.104492][ T5943] con_install+0xa1/0x600 [ 96.104540][ T5943] ? __pfx_con_install+0x10/0x10 [ 96.104592][ T5943] ? __pfx_con_install+0x10/0x10 [ 96.104639][ T5943] tty_init_dev.part.0+0x99/0x500 [ 96.104673][ T5943] tty_open+0xa50/0xf90 [ 96.104716][ T5943] ? __pfx_tty_open+0x10/0x10 [ 96.104745][ T5943] ? chrdev_open+0x58c/0x6a0 [ 96.104795][ T5943] ? __pfx_tty_open+0x10/0x10 [ 96.104822][ T5943] chrdev_open+0x231/0x6a0 [ 96.104868][ T5943] ? __pfx_chrdev_open+0x10/0x10 [ 96.104908][ T5943] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 96.104950][ T5943] do_dentry_open+0x741/0x1c10 [ 96.104987][ T5943] ? __pfx_chrdev_open+0x10/0x10 [ 96.105032][ T5943] vfs_open+0x82/0x3f0 [ 96.105066][ T5943] path_openat+0x1e5e/0x2d40 [ 96.105121][ T5943] ? __pfx_path_openat+0x10/0x10 [ 96.105169][ T5943] do_filp_open+0x20b/0x470 [ 96.105209][ T5943] ? __pfx_do_filp_open+0x10/0x10 [ 96.105285][ T5943] ? alloc_fd+0x471/0x7d0 [ 96.105336][ T5943] do_sys_openat2+0x11b/0x1d0 [ 96.105365][ T5943] ? __pfx_do_sys_openat2+0x10/0x10 [ 96.105417][ T5943] __x64_sys_openat+0x174/0x210 [ 96.105447][ T5943] ? __pfx___x64_sys_openat+0x10/0x10 [ 96.105479][ T5943] ? rcu_is_watching+0x12/0xc0 [ 96.105525][ T5943] do_syscall_64+0xcd/0x260 [ 96.105567][ T5943] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 96.105593][ T5943] RIP: 0033:0x7f6f14d8d169 [ 96.105614][ T5943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 96.105639][ T5943] RSP: 002b:00007f6f15b6a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 96.105665][ T5943] RAX: ffffffffffffffda RBX: 00007f6f14fa5fa0 RCX: 00007f6f14d8d169 [ 96.105683][ T5943] RDX: 0000000000040000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 96.105700][ T5943] RBP: 00007f6f14e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 96.105716][ T5943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 96.105731][ T5943] R13: 0000000000000000 R14: 00007f6f14fa5fa0 R15: 00007ffc3672c4e8 [ 96.105768][ T5943] [ 96.141447][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 96.194777][ T5946] kmem.limit_in_bytes is deprecated and will be removed. Writing any value to this file has no effect. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 96.391240][ T5936] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 96.701686][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 96.716156][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 96.809686][ T5949] netlink: 28 bytes leftover after parsing attributes in process `syz.0.11'. [ 96.971854][ T5949] team0: Port device team_slave_0 removed [ 97.439244][ T9] cfg80211: failed to load regulatory.db [ 97.690991][ T5965] Zero length message leads to an empty skb [ 99.920876][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 100.621025][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 100.650611][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 101.126715][ T5991] FAULT_INJECTION: forcing a failure. [ 101.126715][ T5991] name failslab, interval 1, probability 0, space 0, times 1 [ 101.327672][ T5991] CPU: 1 UID: 0 PID: 5991 Comm: syz.0.20 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 101.327718][ T5991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 101.327736][ T5991] Call Trace: [ 101.327746][ T5991] [ 101.327756][ T5991] dump_stack_lvl+0x16c/0x1f0 [ 101.327801][ T5991] should_fail_ex+0x512/0x640 [ 101.327835][ T5991] ? __kmalloc_noprof+0xbf/0x510 [ 101.327882][ T5991] ? memcg_list_lru_alloc+0x54f/0x7c0 [ 101.327910][ T5991] should_failslab+0xc2/0x120 [ 101.327938][ T5991] __kmalloc_noprof+0xd2/0x510 [ 101.327990][ T5991] memcg_list_lru_alloc+0x54f/0x7c0 [ 101.328029][ T5991] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 101.328077][ T5991] __memcg_slab_post_alloc_hook+0x131/0x940 [ 101.328115][ T5991] ? kasan_save_track+0x14/0x30 [ 101.328167][ T5991] kmem_cache_alloc_lru_noprof+0x30f/0x3b0 [ 101.328212][ T5991] ? alloc_inode+0xc3/0x240 [ 101.328250][ T5991] alloc_inode+0xc3/0x240 [ 101.328283][ T5991] path_from_stashed+0x2be/0xb00 [ 101.328328][ T5991] ? do_raw_spin_lock+0x12c/0x2b0 [ 101.328365][ T5991] ? __pfx_path_from_stashed+0x10/0x10 [ 101.328423][ T5991] ? do_raw_spin_unlock+0x172/0x230 [ 101.328463][ T5991] ns_get_path+0x5f/0x80 [ 101.328505][ T5991] proc_ns_get_link+0x121/0x260 [ 101.328550][ T5991] ? __pfx_proc_ns_get_link+0x10/0x10 [ 101.328596][ T5991] ? __pfx___might_resched+0x10/0x10 [ 101.328641][ T5991] ? touch_atime+0x2dc/0x5d0 [ 101.328679][ T5991] ? __pfx_proc_ns_get_link+0x10/0x10 [ 101.328724][ T5991] step_into+0x1b22/0x2270 [ 101.328771][ T5991] ? __pfx_step_into+0x10/0x10 [ 101.328808][ T5991] ? find_held_lock+0x2b/0x80 [ 101.328857][ T5991] path_openat+0x749/0x2d40 [ 101.328914][ T5991] ? __pfx_path_openat+0x10/0x10 [ 101.328967][ T5991] do_filp_open+0x20b/0x470 [ 101.329010][ T5991] ? __pfx_do_filp_open+0x10/0x10 [ 101.329081][ T5991] ? alloc_fd+0x471/0x7d0 [ 101.329132][ T5991] do_sys_openat2+0x11b/0x1d0 [ 101.329164][ T5991] ? __pfx_do_sys_openat2+0x10/0x10 [ 101.329203][ T5991] ? __pfx___schedule+0x10/0x10 [ 101.329244][ T5991] __x64_sys_openat+0x174/0x210 [ 101.329276][ T5991] ? __pfx___x64_sys_openat+0x10/0x10 [ 101.329310][ T5991] ? xfd_validate_state+0x5d/0x180 [ 101.329355][ T5991] do_syscall_64+0xcd/0x260 [ 101.329409][ T5991] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 101.329439][ T5991] RIP: 0033:0x7f58ef38bad0 [ 101.329463][ T5991] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 101.329489][ T5991] RSP: 002b:00007f58f0287f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 101.329517][ T5991] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f58ef38bad0 [ 101.329535][ T5991] RDX: 0000000000000002 RSI: 00007f58f0287fa0 RDI: 00000000ffffff9c [ 101.329552][ T5991] RBP: 00007f58f0287fa0 R08: 0000000000000000 R09: 0000000000000000 [ 101.329569][ T5991] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 101.329586][ T5991] R13: 0000000000000000 R14: 00007f58ef5a6080 R15: 00007ffd634ed128 [ 101.329623][ T5991] [ 101.630665][ C1] vkms_vblank_simulate: vblank timer overrun [ 101.709598][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 102.340858][ T5844] Bluetooth: hci3: Unable to find connection for big 0xd2 [ 103.694819][ T6031] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 104.168005][ T6040] netlink: 'syz.0.34': attribute type 11 has an invalid length. [ 104.514447][ T6040] program syz.0.34 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 104.760251][ T0] NOHZ tick-stop error: local softirq work is pending, handler #212!!! [ 104.894628][ T6050] netlink: 342 bytes leftover after parsing attributes in process `syz.0.36'. [ 104.909869][ T6050] netlink: 342 bytes leftover after parsing attributes in process `syz.0.36'. [ 104.953471][ T6050] netlink: 342 bytes leftover after parsing attributes in process `syz.0.36'. [ 105.001573][ T6052] netlink: 302 bytes leftover after parsing attributes in process `syz.0.36'. [ 106.310711][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 108.023723][ T6091] netlink: 36 bytes leftover after parsing attributes in process `syz.2.44'. [ 108.754811][ T6077] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(6) [ 109.941082][ T6108] Invalid ELF header magic: != ELF [ 110.351050][ T6116] random: crng reseeded on system resumption [ 112.108182][ T6108] netlink: 8 bytes leftover after parsing attributes in process `syz.2.47'. [ 112.335087][ T6130] input: jJǸ-¶š9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input5 [ 115.147893][ T6147] FAULT_INJECTION: forcing a failure. [ 115.147893][ T6147] name failslab, interval 1, probability 0, space 0, times 0 [ 115.168910][ T6147] CPU: 0 UID: 8 PID: 6147 Comm: syz.3.54 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 115.168953][ T6147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 115.168971][ T6147] Call Trace: [ 115.168979][ T6147] [ 115.168999][ T6147] dump_stack_lvl+0x16c/0x1f0 [ 115.169043][ T6147] should_fail_ex+0x512/0x640 [ 115.169076][ T6147] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 115.169118][ T6147] should_failslab+0xc2/0x120 [ 115.169144][ T6147] __kmalloc_cache_noprof+0x6a/0x3e0 [ 115.169183][ T6147] ? snd_timer_user_open+0x6b/0x180 [ 115.169211][ T6147] ? __pfx_snd_timer_user_open+0x10/0x10 [ 115.169237][ T6147] snd_timer_user_open+0x6b/0x180 [ 115.169261][ T6147] snd_open+0x1fe/0x450 [ 115.169301][ T6147] ? __pfx_snd_open+0x10/0x10 [ 115.169335][ T6147] chrdev_open+0x231/0x6a0 [ 115.169377][ T6147] ? __pfx_apparmor_file_open+0x10/0x10 [ 115.169412][ T6147] ? __pfx_chrdev_open+0x10/0x10 [ 115.169456][ T6147] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 115.169503][ T6147] do_dentry_open+0x741/0x1c10 [ 115.169543][ T6147] ? __pfx_chrdev_open+0x10/0x10 [ 115.169589][ T6147] vfs_open+0x82/0x3f0 [ 115.169620][ T6147] path_openat+0x1e5e/0x2d40 [ 115.169671][ T6147] ? __pfx_path_openat+0x10/0x10 [ 115.169717][ T6147] do_filp_open+0x20b/0x470 [ 115.169755][ T6147] ? __pfx_do_filp_open+0x10/0x10 [ 115.169818][ T6147] ? alloc_fd+0x471/0x7d0 [ 115.169864][ T6147] do_sys_openat2+0x11b/0x1d0 [ 115.169890][ T6147] ? __pfx_do_sys_openat2+0x10/0x10 [ 115.169922][ T6147] ? kvm_sched_clock_read+0x11/0x20 [ 115.169952][ T6147] ? sched_clock+0x38/0x60 [ 115.169981][ T6147] __x64_sys_openat+0x174/0x210 [ 115.170017][ T6147] ? __pfx___x64_sys_openat+0x10/0x10 [ 115.170047][ T6147] ? __pfx_rcu_exp_handler+0x10/0x10 [ 115.170095][ T6147] do_syscall_64+0xcd/0x260 [ 115.170136][ T6147] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.170161][ T6147] RIP: 0033:0x7fb8d4b8d169 [ 115.170183][ T6147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 115.170206][ T6147] RSP: 002b:00007fb8d5aa8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 115.170231][ T6147] RAX: ffffffffffffffda RBX: 00007fb8d4da5fa0 RCX: 00007fb8d4b8d169 [ 115.170247][ T6147] RDX: 0000000000000040 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 115.170263][ T6147] RBP: 00007fb8d4c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 115.170279][ T6147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 115.170294][ T6147] R13: 0000000000000000 R14: 00007fb8d4da5fa0 R15: 00007ffff06d4d28 [ 115.170329][ T6147] [ 116.011200][ T6150] Invalid ELF header magic: != ELF [ 117.523167][ T6164] capability: warning: `syz.2.58' uses 32-bit capabilities (legacy support in use) [ 117.684693][ T6164] netlink: 64 bytes leftover after parsing attributes in process `syz.2.58'. [ 117.747016][ T6164] netlink: 32 bytes leftover after parsing attributes in process `syz.2.58'. [ 117.807442][ T6164] device-mapper: ioctl: Unable to rename non-existent device, to „ [ 118.059321][ T6167] mmap: syz.0.59 (6167): VmData 39354368 exceed data ulimit 3. Update limits or use boot option ignore_rlimit_data. [ 118.572571][ T6173] netlink: 544 bytes leftover after parsing attributes in process `syz.0.61'. [ 119.107791][ T6179] Invalid ELF header magic: != ELF [ 119.321239][ T6184] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 122.502108][ T6205] sd 0:0:1:0: PR command failed: 1026 [ 122.550488][ T6205] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 122.678608][ T6205] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 123.975747][ T6237] process 'syz.0.75' launched ':,' with NULL argv: empty string added [ 125.441674][ T6249] netlink: 'syz.3.77': attribute type 1 has an invalid length. [ 127.044256][ T6267] netlink: 'syz.2.81': attribute type 29 has an invalid length. [ 127.142843][ T6267] netlink: 334 bytes leftover after parsing attributes in process `syz.2.81'. [ 127.835623][ T6104] syz.3.46 (6104) used greatest stack depth: 21208 bytes left [ 127.984808][ T6286] netlink: 338 bytes leftover after parsing attributes in process `syz.3.86'. [ 128.005887][ T6286] netlink: 338 bytes leftover after parsing attributes in process `syz.3.86'. [ 128.017162][ T6287] random: crng reseeded on system resumption [ 128.056787][ T6286] netlink: 134 bytes leftover after parsing attributes in process `syz.3.86'. [ 130.619899][ T5844] Bluetooth: hci1: unexpected subevent 0x01 length: 4 < 18 [ 130.710185][ T30] audit: type=1800 audit(6038735742.987:2): pid=6311 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.90" name="dbroot" dev="configfs" ino=9369 res=0 errno=0 [ 132.034810][ T6319] random: crng reseeded on system resumption [ 135.275505][ T6330] FAULT_INJECTION: forcing a failure. [ 135.275505][ T6330] name failslab, interval 1, probability 0, space 0, times 0 [ 135.297157][ T6330] CPU: 0 UID: 0 PID: 6330 Comm: syz.3.93 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 135.297200][ T6330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 135.297216][ T6330] Call Trace: [ 135.297225][ T6330] [ 135.297236][ T6330] dump_stack_lvl+0x16c/0x1f0 [ 135.297282][ T6330] should_fail_ex+0x512/0x640 [ 135.297315][ T6330] ? fs_reclaim_acquire+0xae/0x150 [ 135.297354][ T6330] should_failslab+0xc2/0x120 [ 135.297383][ T6330] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 135.297429][ T6330] ? security_inode_alloc+0x3b/0x2b0 [ 135.297466][ T6330] security_inode_alloc+0x3b/0x2b0 [ 135.297500][ T6330] inode_init_always_gfp+0xce4/0x1030 [ 135.297548][ T6330] alloc_inode+0x86/0x240 [ 135.297581][ T6330] sock_alloc+0x40/0x280 [ 135.297623][ T6330] __sock_create+0xc1/0x8d0 [ 135.297657][ T6330] __sys_socket+0x14d/0x260 [ 135.297685][ T6330] ? __pfx___sys_socket+0x10/0x10 [ 135.297714][ T6330] ? rcu_is_watching+0x12/0xc0 [ 135.297751][ T6330] __x64_sys_socket+0x72/0xb0 [ 135.297775][ T6330] ? lockdep_hardirqs_on+0x7c/0x110 [ 135.297806][ T6330] do_syscall_64+0xcd/0x260 [ 135.297841][ T6330] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 135.297868][ T6330] RIP: 0033:0x7fb8d4b8d169 [ 135.297889][ T6330] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 135.297912][ T6330] RSP: 002b:00007fb8d5a66038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 135.297939][ T6330] RAX: ffffffffffffffda RBX: 00007fb8d4da6160 RCX: 00007fb8d4b8d169 [ 135.297958][ T6330] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 135.297986][ T6330] RBP: 00007fb8d4c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 135.298002][ T6330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 135.298017][ T6330] R13: 0000000000000000 R14: 00007fb8d4da6160 R15: 00007ffff06d4d28 [ 135.298051][ T6330] [ 135.298243][ T6330] socket: no more sockets [ 135.310505][ T6332] futex_wake_op: syz.2.94 tries to shift op by 64; fix this program [ 136.687516][ T6354] FAULT_INJECTION: forcing a failure. [ 136.687516][ T6354] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 136.687550][ T6354] CPU: 1 UID: 0 PID: 6354 Comm: syz.0.99 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 136.687577][ T6354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 136.687587][ T6354] Call Trace: [ 136.687592][ T6354] [ 136.687599][ T6354] dump_stack_lvl+0x16c/0x1f0 [ 136.687626][ T6354] should_fail_ex+0x512/0x640 [ 136.687648][ T6354] should_fail_alloc_page+0xe7/0x130 [ 136.687666][ T6354] prepare_alloc_pages+0x3c2/0x610 [ 136.687686][ T6354] ? rcu_is_watching+0x12/0xc0 [ 136.687712][ T6354] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 136.687738][ T6354] ? rcu_is_watching+0x12/0xc0 [ 136.687757][ T6354] ? trace_sched_exit_tp+0xde/0x130 [ 136.687783][ T6354] ? __schedule+0x1186/0x5de0 [ 136.687803][ T6354] ? __pfx___schedule+0x10/0x10 [ 136.687827][ T6354] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 136.687869][ T6354] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 136.687888][ T6354] ? policy_nodemask+0xea/0x4e0 [ 136.687905][ T6354] alloc_pages_mpol+0x1fb/0x550 [ 136.687921][ T6354] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 136.687938][ T6354] ? kimage_alloc_pages+0x12f/0x300 [ 136.687966][ T6354] alloc_pages_noprof+0x131/0x390 [ 136.687982][ T6354] kimage_alloc_pages+0x75/0x300 [ 136.688001][ T6354] kimage_alloc_control_pages+0x15d/0x910 [ 136.688025][ T6354] ? __pfx_kimage_alloc_control_pages+0x10/0x10 [ 136.688050][ T6354] do_kexec_load+0x480/0x8d0 [ 136.688070][ T6354] ? __pfx_do_kexec_load+0x10/0x10 [ 136.688091][ T6354] ? _copy_from_user+0x59/0xd0 [ 136.688113][ T6354] __x64_sys_kexec_load+0x1bf/0x230 [ 136.688135][ T6354] do_syscall_64+0xcd/0x260 [ 136.688158][ T6354] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 136.688176][ T6354] RIP: 0033:0x7f58ef38d169 [ 136.688190][ T6354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 136.688205][ T6354] RSP: 002b:00007f58f02a9038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6 [ 136.688226][ T6354] RAX: ffffffffffffffda RBX: 00007f58ef5a5fa0 RCX: 00007f58ef38d169 [ 136.688236][ T6354] RDX: 0000200000000040 RSI: 0000000000000002 RDI: 0000000000000005 [ 136.688245][ T6354] RBP: 00007f58ef40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 136.688255][ T6354] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 136.688263][ T6354] R13: 0000000000000000 R14: 00007f58ef5a5fa0 R15: 00007ffd634ed128 [ 136.688284][ T6354] [ 136.785263][ T6354] kexec: Could not allocate control_code_buffer [ 138.389279][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.411787][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 139.411388][ T6398] netlink: 16 bytes leftover after parsing attributes in process `syz.1.107'. [ 139.482281][ T6398] netlink: 93 bytes leftover after parsing attributes in process `syz.1.107'. [ 142.571160][ T6430] zswap: compressor not available [ 142.645595][ T6434] page: refcount:8 mapcount:0 mapping:0000000000000000 index:0xffff88807fe00000 pfn:0x7fe00 [ 142.735810][ T6434] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 142.818254][ T6434] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 142.869018][ T6434] raw: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000 [ 142.947772][ T6434] raw: ffff88807fe00000 0000000000000000 00000008ffffffff 0000000000000000 [ 143.044844][ T6437] could not allocate digest TFM handle binfmt_misc [ 143.063686][ T6434] head: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000 [ 143.140251][ T6434] head: ffff88807fe00000 0000000000000000 00000008ffffffff 0000000000000000 [ 143.149582][ T6434] head: 00fff00000000003 ffffea0001ff8001 00000000ffffffff 00000000ffffffff [ 143.215236][ T6434] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 143.301945][ T6434] page dumped because: unmovable page [ 143.307410][ T6434] page_owner tracks the page as allocated [ 143.429658][ T6434] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 0, tgid 0 (swapper/0), ts 86712605216, free_ts 86712192434 [ 143.715828][ T6434] post_alloc_hook+0x181/0x1b0 [ 143.736172][ T6434] get_page_from_freelist+0x1193/0x39b0 [ 143.790253][ T6434] __alloc_frozen_pages_noprof+0x263/0x23a0 [ 143.807552][ T6434] alloc_pages_mpol+0x1fb/0x550 [ 143.890187][ T6434] alloc_pages_noprof+0x131/0x390 [ 143.895409][ T6434] skb_page_frag_refill+0x186/0x5a0 [ 143.960292][ T6434] try_fill_recv+0x79c/0x2690 [ 143.975475][ T6434] virtnet_poll+0x1e23/0x3c00 [ 144.041776][ T6434] __napi_poll.constprop.0+0xb7/0x550 [ 144.047360][ T6434] net_rx_action+0xa97/0x1010 [ 144.141543][ T6434] handle_softirqs+0x216/0x8e0 [ 144.146444][ T6434] __irq_exit_rcu+0x109/0x170 [ 144.180194][ T6434] irq_exit_rcu+0x9/0x30 [ 144.184564][ T6434] common_interrupt+0xbf/0xe0 [ 144.270607][ T6434] asm_common_interrupt+0x26/0x40 [ 144.275834][ T6434] page last free pid 0 tgid 0 stack trace: [ 144.366062][ T6434] __free_frozen_pages+0x69d/0xff0 [ 144.444147][ T6434] __folio_put+0x329/0x450 [ 144.448670][ T6434] skb_release_data+0x618/0x960 [ 144.510809][ T6434] napi_consume_skb+0x15a/0x220 [ 144.517013][ T6434] net_rx_action+0x480/0x1010 [ 144.634715][ T6434] handle_softirqs+0x216/0x8e0 [ 144.639596][ T6434] __irq_exit_rcu+0x109/0x170 [ 144.700236][ T6434] irq_exit_rcu+0x9/0x30 [ 144.704604][ T6434] common_interrupt+0xbf/0xe0 [ 144.709354][ T6434] asm_common_interrupt+0x26/0x40 [ 145.472615][ T6470] netlink: 'syz.1.120': attribute type 1 has an invalid length. [ 145.517239][ T6470] netlink: 'syz.1.120': attribute type 3 has an invalid length. [ 145.705263][ T6472] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 146.690989][ T6488] netlink: 4 bytes leftover after parsing attributes in process `syz.3.126'. [ 146.812734][ T6488] netlink: 354 bytes leftover after parsing attributes in process `syz.3.126'. [ 149.873095][ T6524] input: jJǸ-¶š9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input6 [ 150.702667][ T6531] FAULT_INJECTION: forcing a failure. [ 150.702667][ T6531] name failslab, interval 1, probability 0, space 0, times 0 [ 150.830215][ T6531] CPU: 1 UID: 0 PID: 6531 Comm: syz.1.138 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 150.830257][ T6531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 150.830271][ T6531] Call Trace: [ 150.830280][ T6531] [ 150.830290][ T6531] dump_stack_lvl+0x16c/0x1f0 [ 150.830336][ T6531] should_fail_ex+0x512/0x640 [ 150.830368][ T6531] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 150.830414][ T6531] should_failslab+0xc2/0x120 [ 150.830436][ T6531] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 150.830467][ T6531] ? __proc_create+0xc3/0x8c0 [ 150.830489][ T6531] ? __proc_create+0x2ce/0x8c0 [ 150.830516][ T6531] __proc_create+0x2ce/0x8c0 [ 150.830540][ T6531] ? __pfx___proc_create+0x10/0x10 [ 150.830568][ T6531] ? _raw_write_unlock+0x28/0x50 [ 150.830602][ T6531] ? proc_register+0x314/0x5f0 [ 150.830630][ T6531] proc_create_reg+0x7d/0x180 [ 150.830657][ T6531] ? __pfx_can_rcvlist_eff_proc_show+0x10/0x10 [ 150.830684][ T6531] proc_create_net_single+0x86/0x170 [ 150.830709][ T6531] ? __pfx_proc_create_net_single+0x10/0x10 [ 150.830743][ T6531] can_init_proc+0x319/0x4d0 [ 150.830771][ T6531] can_pernet_init+0x1e4/0x370 [ 150.830797][ T6531] ? __pfx_can_pernet_init+0x10/0x10 [ 150.830820][ T6531] ops_init+0x1df/0x5f0 [ 150.830855][ T6531] setup_net+0x21e/0x850 [ 150.830886][ T6531] ? __pfx_setup_net+0x10/0x10 [ 150.830913][ T6531] ? lockdep_init_map_type+0x5c/0x280 [ 150.830934][ T6531] ? __pfx_down_read_killable+0x10/0x10 [ 150.830970][ T6531] ? debug_mutex_init+0x37/0x70 [ 150.831000][ T6531] copy_net_ns+0x2a6/0x5f0 [ 150.831034][ T6531] create_new_namespaces+0x3ea/0xad0 [ 150.831071][ T6531] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 150.831104][ T6531] ksys_unshare+0x45b/0xa40 [ 150.831138][ T6531] ? __pfx_ksys_unshare+0x10/0x10 [ 150.831176][ T6531] ? trace_irq_enable.constprop.0+0x2f/0x120 [ 150.831204][ T6531] __x64_sys_unshare+0x31/0x40 [ 150.831235][ T6531] do_syscall_64+0xcd/0x260 [ 150.831266][ T6531] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 150.831288][ T6531] RIP: 0033:0x7ff9a7b8d169 [ 150.831306][ T6531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 150.831326][ T6531] RSP: 002b:00007ff9a894a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 150.831348][ T6531] RAX: ffffffffffffffda RBX: 00007ff9a7da5fa0 RCX: 00007ff9a7b8d169 [ 150.831362][ T6531] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 150.831375][ T6531] RBP: 00007ff9a7c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 150.831387][ T6531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 150.831399][ T6531] R13: 0000000000000000 R14: 00007ff9a7da5fa0 R15: 00007fff85ac0d58 [ 150.831427][ T6531] [ 151.708528][ T6522] kexec: Could not allocate control_code_buffer [ 151.913612][ T6531] netlink: 56 bytes leftover after parsing attributes in process `syz.1.138'. [ 153.499317][ T6558] page: refcount:8 mapcount:0 mapping:0000000000000000 index:0xffff88807fe00000 pfn:0x7fe00 [ 153.577542][ T6558] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 153.631120][ T6558] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 153.687211][ T6558] raw: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000 [ 153.687302][ T6558] raw: ffff88807fe00000 0000000000000000 00000008ffffffff 0000000000000000 [ 153.687331][ T6558] head: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000 [ 153.687359][ T6558] head: ffff88807fe00000 0000000000000000 00000008ffffffff 0000000000000000 [ 153.687388][ T6558] head: 00fff00000000003 ffffea0001ff8001 00000000ffffffff 00000000ffffffff [ 153.687416][ T6558] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 153.687434][ T6558] page dumped because: unmovable page [ 153.687448][ T6558] page_owner tracks the page as allocated [ 153.687473][ T6558] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 0, tgid 0 (swapper/0), ts 86712605216, free_ts 86712192434 [ 153.687525][ T6558] post_alloc_hook+0x181/0x1b0 [ 153.687571][ T6558] get_page_from_freelist+0x1193/0x39b0 [ 153.687625][ T6558] __alloc_frozen_pages_noprof+0x263/0x23a0 [ 153.687669][ T6558] alloc_pages_mpol+0x1fb/0x550 [ 153.687695][ T6558] alloc_pages_noprof+0x131/0x390 [ 153.687721][ T6558] skb_page_frag_refill+0x186/0x5a0 [ 153.687766][ T6558] try_fill_recv+0x79c/0x2690 [ 153.687793][ T6558] virtnet_poll+0x1e23/0x3c00 [ 153.687822][ T6558] __napi_poll.constprop.0+0xb7/0x550 [ 153.687856][ T6558] net_rx_action+0xa97/0x1010 [ 153.687887][ T6558] handle_softirqs+0x216/0x8e0 [ 153.687924][ T6558] __irq_exit_rcu+0x109/0x170 [ 153.687960][ T6558] irq_exit_rcu+0x9/0x30 [ 153.687996][ T6558] common_interrupt+0xbf/0xe0 [ 153.688023][ T6558] asm_common_interrupt+0x26/0x40 [ 153.688052][ T6558] page last free pid 0 tgid 0 stack trace: [ 153.688069][ T6558] __free_frozen_pages+0x69d/0xff0 [ 153.688105][ T6558] __folio_put+0x329/0x450 [ 153.688133][ T6558] skb_release_data+0x618/0x960 [ 153.688169][ T6558] napi_consume_skb+0x15a/0x220 [ 153.688195][ T6558] net_rx_action+0x480/0x1010 [ 153.703799][ T6558] handle_softirqs+0x216/0x8e0 [ 153.703850][ T6558] __irq_exit_rcu+0x109/0x170 [ 153.703887][ T6558] irq_exit_rcu+0x9/0x30 [ 153.703924][ T6558] common_interrupt+0xbf/0xe0 [ 153.703951][ T6558] asm_common_interrupt+0x26/0x40 [ 154.939105][ T6586] netlink: 28 bytes leftover after parsing attributes in process `syz.2.150'. [ 155.001420][ T6586] bridge0: entered promiscuous mode [ 156.803102][ T6610] openvswitch: netlink: Invalid MD length 0 for MD type 0 [ 157.793225][ T6627] netlink: 12 bytes leftover after parsing attributes in process `syz.0.163'. [ 159.089141][ T6642] netlink: 8 bytes leftover after parsing attributes in process `syz.1.168'. [ 159.232532][ T6649] netlink: 8 bytes leftover after parsing attributes in process `syz.3.170'. [ 159.674415][ T6647] zswap: compressor not available [ 160.364393][ T6675] netlink: 342 bytes leftover after parsing attributes in process `syz.2.178'. [ 160.775957][ T6681] FAULT_INJECTION: forcing a failure. [ 160.775957][ T6681] name failslab, interval 1, probability 0, space 0, times 0 [ 160.843976][ T6681] CPU: 1 UID: 0 PID: 6681 Comm: syz.2.180 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 160.844015][ T6681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 160.844031][ T6681] Call Trace: [ 160.844040][ T6681] [ 160.844050][ T6681] dump_stack_lvl+0x16c/0x1f0 [ 160.844093][ T6681] should_fail_ex+0x512/0x640 [ 160.844131][ T6681] should_failslab+0xc2/0x120 [ 160.844158][ T6681] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 160.844200][ T6681] ? skb_clone+0x190/0x3f0 [ 160.844241][ T6681] skb_clone+0x190/0x3f0 [ 160.844278][ T6681] netlink_deliver_tap+0xabd/0xd30 [ 160.844323][ T6681] netlink_unicast+0x5df/0x7f0 [ 160.844365][ T6681] ? __pfx_netlink_unicast+0x10/0x10 [ 160.844399][ T6681] ? __lock_acquire+0xaa4/0x1ba0 [ 160.844437][ T6681] netlink_sendmsg+0x8d1/0xdd0 [ 160.844481][ T6681] ? __pfx_netlink_sendmsg+0x10/0x10 [ 160.844543][ T6681] ____sys_sendmsg+0xa95/0xc70 [ 160.844586][ T6681] ? copy_msghdr_from_user+0x10a/0x160 [ 160.844620][ T6681] ? __pfx_____sys_sendmsg+0x10/0x10 [ 160.844681][ T6681] ___sys_sendmsg+0x134/0x1d0 [ 160.844718][ T6681] ? __pfx____sys_sendmsg+0x10/0x10 [ 160.844803][ T6681] __sys_sendmsg+0x16d/0x220 [ 160.844839][ T6681] ? __pfx___sys_sendmsg+0x10/0x10 [ 160.844891][ T6681] ? rcu_is_watching+0x12/0xc0 [ 160.844934][ T6681] do_syscall_64+0xcd/0x260 [ 160.844974][ T6681] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 160.845001][ T6681] RIP: 0033:0x7f6f14d8d169 [ 160.845024][ T6681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 160.845050][ T6681] RSP: 002b:00007f6f15b6a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 160.845077][ T6681] RAX: ffffffffffffffda RBX: 00007f6f14fa5fa0 RCX: 00007f6f14d8d169 [ 160.845095][ T6681] RDX: 0000000010004010 RSI: 0000200000000100 RDI: 0000000000000004 [ 160.845111][ T6681] RBP: 00007f6f15b6a090 R08: 0000000000000000 R09: 0000000000000000 [ 160.845127][ T6681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 160.845143][ T6681] R13: 0000000000000000 R14: 00007f6f14fa5fa0 R15: 00007ffc3672c4e8 [ 160.845180][ T6681] [ 161.092520][ T6681] netlink: 16 bytes leftover after parsing attributes in process `syz.2.180'. [ 161.093157][ T6683] netlink: 93 bytes leftover after parsing attributes in process `syz.2.180'. [ 161.765297][ T6704] nbd: socks must be embedded in a SOCK_ITEM attr [ 161.834655][ T6704] block nbd0: shutting down sockets [ 161.961081][ T6705] netlink: 28 bytes leftover after parsing attributes in process `syz.2.183'. [ 163.814151][ T5844] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18 [ 164.091406][ T6755] netlink: 8 bytes leftover after parsing attributes in process `syz.0.190'. Á[ 166.080698][ T6801] netlink: zone id is out of range [ 166.090219][ T6801] netlink: zone id is out of range [ 166.180310][ T6801] netlink: zone id is out of range [ 166.190695][ T6806] random: crng reseeded on system resumption [ 166.220374][ T6801] netlink: zone id is out of range [ 166.298269][ T6801] netlink: zone id is out of range [ 166.312210][ T6801] netlink: zone id is out of range [ 166.357500][ T6801] netlink: zone id is out of range [ 166.414321][ T6801] netlink: zone id is out of range [ 166.451139][ T6801] netlink: zone id is out of range [ 166.519942][ T6801] netlink: zone id is out of range [ 167.440823][ T6806] FAULT_INJECTION: forcing a failure. [ 167.440823][ T6806] name failslab, interval 1, probability 0, space 0, times 0 [ 167.495274][ T6806] CPU: 0 UID: 0 PID: 6806 Comm: syz.0.199 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 167.495323][ T6806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 167.495336][ T6806] Call Trace: [ 167.495342][ T6806] [ 167.495348][ T6806] dump_stack_lvl+0x16c/0x1f0 [ 167.495376][ T6806] should_fail_ex+0x512/0x640 [ 167.495396][ T6806] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 167.495422][ T6806] should_failslab+0xc2/0x120 [ 167.495439][ T6806] __kmalloc_cache_noprof+0x6a/0x3e0 [ 167.495462][ T6806] ? single_open+0x4d/0x1f0 [ 167.495493][ T6806] ? __pfx_snd_info_seq_show+0x10/0x10 [ 167.495516][ T6806] single_open+0x4d/0x1f0 [ 167.495536][ T6806] snd_info_text_entry_open+0x175/0x2a0 [ 167.495562][ T6806] ? __pfx_snd_info_text_entry_open+0x10/0x10 [ 167.495586][ T6806] ? trace_kmem_cache_alloc+0x28/0xc0 [ 167.495604][ T6806] ? __pfx_apparmor_file_open+0x10/0x10 [ 167.495625][ T6806] ? proc_reg_open+0x21d/0x610 [ 167.495641][ T6806] ? __pfx_snd_info_text_entry_open+0x10/0x10 [ 167.495667][ T6806] proc_reg_open+0x286/0x610 [ 167.495685][ T6806] do_dentry_open+0x741/0x1c10 [ 167.495708][ T6806] ? __pfx_proc_reg_open+0x10/0x10 [ 167.495728][ T6806] vfs_open+0x82/0x3f0 [ 167.495747][ T6806] path_openat+0x1e5e/0x2d40 [ 167.495780][ T6806] ? __pfx_path_openat+0x10/0x10 [ 167.495808][ T6806] do_filp_open+0x20b/0x470 [ 167.495832][ T6806] ? __pfx_do_filp_open+0x10/0x10 [ 167.495872][ T6806] ? alloc_fd+0x471/0x7d0 [ 167.495901][ T6806] do_sys_openat2+0x11b/0x1d0 [ 167.495918][ T6806] ? __pfx_do_sys_openat2+0x10/0x10 [ 167.495944][ T6806] __x64_sys_openat+0x174/0x210 [ 167.495962][ T6806] ? __pfx___x64_sys_openat+0x10/0x10 [ 167.495981][ T6806] ? rcu_is_watching+0x12/0xc0 [ 167.496008][ T6806] do_syscall_64+0xcd/0x260 [ 167.496032][ T6806] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 167.496048][ T6806] RIP: 0033:0x7f58ef38d169 [ 167.496062][ T6806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 167.496078][ T6806] RSP: 002b:00007f58f02a9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 167.496094][ T6806] RAX: ffffffffffffffda RBX: 00007f58ef5a5fa0 RCX: 00007f58ef38d169 [ 167.496104][ T6806] RDX: 00000000001c1080 RSI: 0000200000001080 RDI: ffffffffffffff9c [ 167.496114][ T6806] RBP: 00007f58ef40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 167.496123][ T6806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 167.496132][ T6806] R13: 0000000000000000 R14: 00007f58ef5a5fa0 R15: 00007ffd634ed128 [ 167.496153][ T6806] [ 168.565295][ T5844] Bluetooth: hci1: unexpected subevent 0x01 length: 4 < 18 [ 170.138503][ T6854] FAULT_INJECTION: forcing a failure. [ 170.138503][ T6854] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 170.163143][ T6854] CPU: 0 UID: 0 PID: 6854 Comm: syz.0.209 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 170.163182][ T6854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 170.163198][ T6854] Call Trace: [ 170.163207][ T6854] [ 170.163217][ T6854] dump_stack_lvl+0x16c/0x1f0 [ 170.163261][ T6854] should_fail_ex+0x512/0x640 [ 170.163299][ T6854] _copy_from_iter+0x2a4/0x15b0 [ 170.163340][ T6854] ? rcu_is_watching+0x12/0xc0 [ 170.163374][ T6854] ? __pfx__copy_from_iter+0x10/0x10 [ 170.163408][ T6854] ? rcu_is_watching+0x12/0xc0 [ 170.163441][ T6854] ? trace_kmalloc+0x2b/0xd0 [ 170.163465][ T6854] ? __kvmalloc_node_noprof.cold+0x60/0x65 [ 170.163502][ T6854] ? __pfx_net_ctl_permissions+0x10/0x10 [ 170.163542][ T6854] ? proc_sys_call_handler+0x2a6/0x5c0 [ 170.163580][ T6854] proc_sys_call_handler+0x317/0x5c0 [ 170.163613][ T6854] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 170.163659][ T6854] vfs_write+0x5ba/0x1180 [ 170.163700][ T6854] ? __pfx_proc_sys_write+0x10/0x10 [ 170.163739][ T6854] ? __pfx___mutex_lock+0x10/0x10 [ 170.163777][ T6854] ? __pfx_vfs_write+0x10/0x10 [ 170.163843][ T6854] ksys_write+0x12a/0x240 [ 170.163881][ T6854] ? __pfx_ksys_write+0x10/0x10 [ 170.163917][ T6854] ? rcu_is_watching+0x12/0xc0 [ 170.163962][ T6854] do_syscall_64+0xcd/0x260 [ 170.164004][ T6854] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.164031][ T6854] RIP: 0033:0x7f58ef38d169 [ 170.164053][ T6854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 170.164078][ T6854] RSP: 002b:00007f58f02a9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 170.164104][ T6854] RAX: ffffffffffffffda RBX: 00007f58ef5a5fa0 RCX: 00007f58ef38d169 [ 170.164121][ T6854] RDX: 0000000000003f00 RSI: 0000000000000000 RDI: 0000000000000003 [ 170.164137][ T6854] RBP: 00007f58f02a9090 R08: 0000000000000000 R09: 0000000000000000 [ 170.164152][ T6854] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 170.164167][ T6854] R13: 0000000000000000 R14: 00007f58ef5a5fa0 R15: 00007ffd634ed128 [ 170.164204][ T6854] [ 170.560328][ T6855] page: refcount:8 mapcount:0 mapping:0000000000000000 index:0xffff88807fe00000 pfn:0x7fe00 [ 170.692217][ T6855] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 170.720479][ T6855] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 170.728833][ T6855] raw: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000 [ 170.741077][ T6855] raw: ffff88807fe00000 0000000000000000 00000008ffffffff 0000000000000000 [ 170.749832][ T6855] head: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000 [ 170.759496][ T6855] head: ffff88807fe00000 0000000000000000 00000008ffffffff 0000000000000000 [ 170.768747][ T6855] head: 00fff00000000003 ffffea0001ff8001 00000000ffffffff 00000000ffffffff [ 170.778120][ T6855] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 170.800845][ T6855] page dumped because: unmovable page [ 170.816867][ T6855] page_owner tracks the page as allocated [ 170.829902][ T6855] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 0, tgid 0 (swapper/0), ts 86712605216, free_ts 86712192434 [ 170.876777][ T6855] post_alloc_hook+0x181/0x1b0 [ 170.900014][ T6855] get_page_from_freelist+0x1193/0x39b0 [ 170.937505][ T6855] __alloc_frozen_pages_noprof+0x263/0x23a0 [ 170.972813][ T6855] alloc_pages_mpol+0x1fb/0x550 [ 171.020608][ T6855] alloc_pages_noprof+0x131/0x390 [ 171.029659][ T6855] skb_page_frag_refill+0x186/0x5a0 [ 171.060601][ T6855] try_fill_recv+0x79c/0x2690 [ 171.065398][ T6855] virtnet_poll+0x1e23/0x3c00 [ 171.130288][ T6855] __napi_poll.constprop.0+0xb7/0x550 [ 171.170593][ T6855] net_rx_action+0xa97/0x1010 [ 171.220189][ T6855] handle_softirqs+0x216/0x8e0 [ 171.298680][ T6855] __irq_exit_rcu+0x109/0x170 [ 171.320168][ T6855] irq_exit_rcu+0x9/0x30 [ 171.328150][ T6855] common_interrupt+0xbf/0xe0 [ 171.356111][ T6855] asm_common_interrupt+0x26/0x40 [ 171.364331][ T6855] page last free pid 0 tgid 0 stack trace: [ 171.390762][ T6855] __free_frozen_pages+0x69d/0xff0 [ 171.400191][ T6855] __folio_put+0x329/0x450 [ 171.404795][ T6855] skb_release_data+0x618/0x960 [ 171.437026][ T6855] napi_consume_skb+0x15a/0x220 [ 171.446624][ T6855] net_rx_action+0x480/0x1010 [ 171.453639][ T6855] handle_softirqs+0x216/0x8e0 [ 171.458798][ T6855] __irq_exit_rcu+0x109/0x170 [ 171.466270][ T6855] irq_exit_rcu+0x9/0x30 [ 171.473501][ T6855] common_interrupt+0xbf/0xe0 [ 171.478485][ T6855] asm_common_interrupt+0x26/0x40 [ 171.742155][ T6880] FAULT_INJECTION: forcing a failure. [ 171.742155][ T6880] name failslab, interval 1, probability 0, space 0, times 0 [ 171.791926][ T6880] CPU: 0 UID: 0 PID: 6880 Comm: syz.2.214 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 171.791966][ T6880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 171.791981][ T6880] Call Trace: [ 171.791990][ T6880] [ 171.792000][ T6880] dump_stack_lvl+0x16c/0x1f0 [ 171.792042][ T6880] should_fail_ex+0x512/0x640 [ 171.792073][ T6880] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 171.792118][ T6880] should_failslab+0xc2/0x120 [ 171.792144][ T6880] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 171.792185][ T6880] ? ptlock_alloc+0x1f/0x70 [ 171.792226][ T6880] ptlock_alloc+0x1f/0x70 [ 171.792261][ T6880] pte_alloc_one+0x6d/0x380 [ 171.792296][ T6880] __pte_alloc+0x6d/0x3c0 [ 171.792324][ T6880] ? __pfx___pte_alloc+0x10/0x10 [ 171.792363][ T6880] ? do_raw_spin_lock+0x12c/0x2b0 [ 171.792393][ T6880] ? find_held_lock+0x2b/0x80 [ 171.792429][ T6880] do_pte_missing+0x2925/0x3fb0 [ 171.792471][ T6880] ? _raw_spin_unlock+0x28/0x50 [ 171.792501][ T6880] ? __pmd_alloc+0x3c2/0x870 [ 171.792536][ T6880] __handle_mm_fault+0x103d/0x2a40 [ 171.792586][ T6880] ? __pfx___handle_mm_fault+0x10/0x10 [ 171.792655][ T6880] handle_mm_fault+0x3fe/0xad0 [ 171.792699][ T6880] __get_user_pages+0x771/0x36f0 [ 171.792747][ T6880] ? __pfx___get_user_pages+0x10/0x10 [ 171.792795][ T6880] get_user_pages_remote+0x258/0xb20 [ 171.792836][ T6880] ? __pfx_get_user_pages_remote+0x10/0x10 [ 171.792887][ T6880] get_arg_page+0xf4/0x310 [ 171.792921][ T6880] ? __pfx_get_arg_page+0x10/0x10 [ 171.792959][ T6880] ? up_write+0x1b2/0x520 [ 171.792991][ T6880] copy_string_kernel+0x155/0x4a0 [ 171.793034][ T6880] do_execveat_common.isra.0+0x2ed/0x610 [ 171.793078][ T6880] __x64_sys_execve+0x8e/0xb0 [ 171.793115][ T6880] do_syscall_64+0xcd/0x260 [ 171.793154][ T6880] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 171.793182][ T6880] RIP: 0033:0x7f6f14d8d169 [ 171.793201][ T6880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 171.793224][ T6880] RSP: 002b:00007f6f15b6a038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 171.793247][ T6880] RAX: ffffffffffffffda RBX: 00007f6f14fa5fa0 RCX: 00007f6f14d8d169 [ 171.793261][ T6880] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00002000000000c0 [ 171.793275][ T6880] RBP: 00007f6f15b6a090 R08: 0000000000000000 R09: 0000000000000000 [ 171.793290][ T6880] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 171.793304][ T6880] R13: 0000000000000000 R14: 00007f6f14fa5fa0 R15: 00007ffc3672c4e8 [ 171.793338][ T6880] [ 173.678290][ T6924] netlink: 'syz.0.227': attribute type 1 has an invalid length. [ 174.734578][ T6939] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 176.500506][ T6969] netlink: 28 bytes leftover after parsing attributes in process `syz.0.237'. [ 176.585509][ T6969] bridge_slave_1: left allmulticast mode [ 176.591483][ T6969] bridge_slave_1: left promiscuous mode [ 176.599672][ T6969] bridge0: port 2(bridge_slave_1) entered disabled state [ 176.696770][ T6969] bridge_slave_0: left allmulticast mode [ 176.722547][ T6969] bridge_slave_0: left promiscuous mode [ 176.723230][ T6964] sd 0:0:1:0: PR command failed: 1026 [ 176.728391][ T6969] bridge0: port 1(bridge_slave_0) entered disabled state [ 176.759963][ T6964] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 176.793338][ T6964] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 179.661290][ T7013] bridge0: port 3(syz_tun) entered blocking state [ 179.668088][ T7013] bridge0: port 3(syz_tun) entered disabled state [ 179.721464][ T7013] syz_tun: entered allmulticast mode [ 179.728959][ T7013] syz_tun: entered promiscuous mode [ 179.751445][ T7013] bridge0: port 3(syz_tun) entered blocking state [ 179.758189][ T7013] bridge0: port 3(syz_tun) entered forwarding state [ 180.273464][ T7029] FAULT_INJECTION: forcing a failure. [ 180.273464][ T7029] name failslab, interval 1, probability 0, space 0, times 0 [ 180.303670][ T7028] net_ratelimit: 75 callbacks suppressed [ 180.303694][ T7028] openvswitch: netlink: Unknown nsh attribute 0 [ 180.315071][ T7029] CPU: 1 UID: 0 PID: 7029 Comm: syz.2.252 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 180.315108][ T7029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 180.315123][ T7029] Call Trace: [ 180.315131][ T7029] [ 180.315141][ T7029] dump_stack_lvl+0x16c/0x1f0 [ 180.315180][ T7029] should_fail_ex+0x512/0x640 [ 180.315208][ T7029] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 180.315244][ T7029] should_failslab+0xc2/0x120 [ 180.315393][ T7029] __kmalloc_cache_noprof+0x6a/0x3e0 [ 180.315427][ T7029] ? snd_midi_event_new+0x6f/0x210 [ 180.315470][ T7029] snd_midi_event_new+0x6f/0x210 [ 180.315506][ T7029] snd_virmidi_input_open+0x107/0x4a0 [ 180.315549][ T7029] open_substream+0x478/0x9b0 [ 180.315579][ T7029] rawmidi_open_priv+0x513/0x6e0 [ 180.315613][ T7029] snd_rawmidi_open+0x4cc/0xbf0 [ 180.315648][ T7029] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 180.315678][ T7029] ? __pfx_default_wake_function+0x10/0x10 [ 180.315714][ T7029] ? kobject_get_unless_zero+0x156/0x1e0 [ 180.315754][ T7029] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 180.315781][ T7029] snd_open+0x1fe/0x450 [ 180.315816][ T7029] ? __pfx_snd_open+0x10/0x10 [ 180.315849][ T7029] chrdev_open+0x231/0x6a0 [ 180.315894][ T7029] ? __pfx_apparmor_file_open+0x10/0x10 [ 180.315930][ T7029] ? __pfx_chrdev_open+0x10/0x10 [ 180.315975][ T7029] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 180.316016][ T7029] do_dentry_open+0x741/0x1c10 [ 180.316051][ T7029] ? __pfx_chrdev_open+0x10/0x10 [ 180.316094][ T7029] vfs_open+0x82/0x3f0 [ 180.316124][ T7029] path_openat+0x1e5e/0x2d40 [ 180.316172][ T7029] ? __pfx_path_openat+0x10/0x10 [ 180.316217][ T7029] do_filp_open+0x20b/0x470 [ 180.316252][ T7029] ? __pfx_do_filp_open+0x10/0x10 [ 180.316321][ T7029] ? alloc_fd+0x471/0x7d0 [ 180.316365][ T7029] do_sys_openat2+0x11b/0x1d0 [ 180.316390][ T7029] ? __pfx_do_sys_openat2+0x10/0x10 [ 180.316430][ T7029] __x64_sys_openat+0x174/0x210 [ 180.316456][ T7029] ? __pfx___x64_sys_openat+0x10/0x10 [ 180.316484][ T7029] ? rcu_is_watching+0x12/0xc0 [ 180.316527][ T7029] do_syscall_64+0xcd/0x260 [ 180.316562][ T7029] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.316587][ T7029] RIP: 0033:0x7f6f14d8d169 [ 180.316609][ T7029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 180.316630][ T7029] RSP: 002b:00007f6f15b49038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 180.316655][ T7029] RAX: ffffffffffffffda RBX: 00007f6f14fa6080 RCX: 00007f6f14d8d169 [ 180.316671][ T7029] RDX: 0000000000080102 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 180.316686][ T7029] RBP: 00007f6f14e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 180.316701][ T7029] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 180.316715][ T7029] R13: 0000000000000000 R14: 00007f6f14fa6080 R15: 00007ffc3672c4e8 [ 180.316749][ T7029] [ 182.407974][ T7071] netlink: 28 bytes leftover after parsing attributes in process `syz.0.265'. [ 185.040292][ T5844] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 185.040336][ T5844] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 185.055303][ T5844] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 185.055357][ T5844] Bluetooth: hci0: adv larger than maximum supported [ 185.063389][ T5844] Bluetooth: hci0: adv larger than maximum supported [ 185.071293][ T5844] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 185.078035][ T5844] Bluetooth: hci0: Malformed LE Event: 0x0d [ 186.677904][ T7165] smc: net device syz_tun applied user defined pnetid ETHTOOL [ 186.843145][ T7169] FAULT_INJECTION: forcing a failure. [ 186.843145][ T7169] name failslab, interval 1, probability 0, space 0, times 0 [ 186.857595][ T7169] CPU: 0 UID: 5 PID: 7169 Comm: syz.0.287 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 186.857629][ T7169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 186.857638][ T7169] Call Trace: [ 186.857645][ T7169] [ 186.857652][ T7169] dump_stack_lvl+0x16c/0x1f0 [ 186.857680][ T7169] should_fail_ex+0x512/0x640 [ 186.857700][ T7169] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 186.857726][ T7169] should_failslab+0xc2/0x120 [ 186.857742][ T7169] __kmalloc_cache_noprof+0x6a/0x3e0 [ 186.857764][ T7169] ? alloc_ucounts+0x13d/0x440 [ 186.857792][ T7169] alloc_ucounts+0x13d/0x440 [ 186.857817][ T7169] ? __pfx_alloc_ucounts+0x10/0x10 [ 186.857847][ T7169] inc_ucount+0x29/0x2f0 [ 186.857871][ T7169] ? debug_mutex_init+0x37/0x70 [ 186.857898][ T7169] __do_sys_fanotify_init+0x30e/0xb80 [ 186.857920][ T7169] ? rcu_is_watching+0x12/0xc0 [ 186.857942][ T7169] do_syscall_64+0xcd/0x260 [ 186.857966][ T7169] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 186.857982][ T7169] RIP: 0033:0x7f58ef38d169 [ 186.857996][ T7169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 186.858011][ T7169] RSP: 002b:00007f58f02a9038 EFLAGS: 00000246 ORIG_RAX: 000000000000012c [ 186.858027][ T7169] RAX: ffffffffffffffda RBX: 00007f58ef5a5fa0 RCX: 00007f58ef38d169 [ 186.858037][ T7169] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000200 [ 186.858046][ T7169] RBP: 00007f58ef40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 186.858055][ T7169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 186.858064][ T7169] R13: 0000000000000000 R14: 00007f58ef5a5fa0 R15: 00007ffd634ed128 [ 186.858083][ T7169] [ 187.032298][ C0] vkms_vblank_simulate: vblank timer overrun [ 187.044673][ T7169] netlink: 4 bytes leftover after parsing attributes in process `syz.0.287'. [ 188.321674][ T7181] FAULT_INJECTION: forcing a failure. [ 188.321674][ T7181] name failslab, interval 1, probability 0, space 0, times 0 [ 188.344552][ T7181] CPU: 1 UID: 0 PID: 7181 Comm: syz.1.290 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 188.344594][ T7181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 188.344609][ T7181] Call Trace: [ 188.344618][ T7181] [ 188.344629][ T7181] dump_stack_lvl+0x16c/0x1f0 [ 188.344673][ T7181] should_fail_ex+0x512/0x640 [ 188.344707][ T7181] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 188.344749][ T7181] should_failslab+0xc2/0x120 [ 188.344778][ T7181] __kmalloc_cache_noprof+0x6a/0x3e0 [ 188.344815][ T7181] ? open_substream+0xec/0x9b0 [ 188.344843][ T7181] ? _raw_spin_unlock_irq+0x23/0x50 [ 188.344880][ T7181] open_substream+0xec/0x9b0 [ 188.344912][ T7181] rawmidi_open_priv+0x543/0x6e0 [ 188.344948][ T7181] snd_rawmidi_open+0x4cc/0xbf0 [ 188.344988][ T7181] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 188.345022][ T7181] ? __pfx_default_wake_function+0x10/0x10 [ 188.345062][ T7181] ? kobject_get_unless_zero+0x156/0x1e0 [ 188.345108][ T7181] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 188.345138][ T7181] snd_open+0x1fe/0x450 [ 188.345178][ T7181] ? __pfx_snd_open+0x10/0x10 [ 188.345213][ T7181] chrdev_open+0x231/0x6a0 [ 188.345256][ T7181] ? __pfx_apparmor_file_open+0x10/0x10 [ 188.345293][ T7181] ? __pfx_chrdev_open+0x10/0x10 [ 188.345338][ T7181] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 188.345385][ T7181] do_dentry_open+0x741/0x1c10 [ 188.345425][ T7181] ? __pfx_chrdev_open+0x10/0x10 [ 188.345485][ T7181] vfs_open+0x82/0x3f0 [ 188.345521][ T7181] path_openat+0x1e5e/0x2d40 [ 188.345577][ T7181] ? __pfx_path_openat+0x10/0x10 [ 188.345623][ T7181] do_filp_open+0x20b/0x470 [ 188.345661][ T7181] ? __pfx_do_filp_open+0x10/0x10 [ 188.345728][ T7181] ? alloc_fd+0x471/0x7d0 [ 188.345776][ T7181] do_sys_openat2+0x11b/0x1d0 [ 188.345806][ T7181] ? __pfx_do_sys_openat2+0x10/0x10 [ 188.345852][ T7181] __x64_sys_openat+0x174/0x210 [ 188.345884][ T7181] ? __pfx___x64_sys_openat+0x10/0x10 [ 188.345917][ T7181] ? rcu_is_watching+0x12/0xc0 [ 188.345962][ T7181] do_syscall_64+0xcd/0x260 [ 188.346002][ T7181] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 188.346028][ T7181] RIP: 0033:0x7ff9a7b8d169 [ 188.346052][ T7181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 188.346078][ T7181] RSP: 002b:00007ff9a8929038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 188.346105][ T7181] RAX: ffffffffffffffda RBX: 00007ff9a7da6080 RCX: 00007ff9a7b8d169 [ 188.346122][ T7181] RDX: 0000000000080102 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 188.346138][ T7181] RBP: 00007ff9a7c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 188.346153][ T7181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 188.346168][ T7181] R13: 0000000000000000 R14: 00007ff9a7da6080 R15: 00007fff85ac0d58 [ 188.346228][ T7181] [ 188.760582][ T7187] netlink: 28 bytes leftover after parsing attributes in process `syz.2.292'. [ 188.769668][ T7187] bridge_slave_1: left allmulticast mode [ 188.775859][ T7187] bridge_slave_1: left promiscuous mode [ 188.781868][ T7187] bridge0: port 2(bridge_slave_1) entered disabled state [ 188.801197][ T7187] bridge_slave_0: left allmulticast mode [ 188.840282][ T7187] bridge_slave_0: left promiscuous mode [ 188.901465][ T7187] bridge0: port 1(bridge_slave_0) entered disabled state [ 189.013135][ T7202] netlink: 4 bytes leftover after parsing attributes in process `syz.0.295'. [ 189.100433][ T5844] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 189.100478][ T5844] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 189.115655][ T5844] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 189.115697][ T5844] Bluetooth: hci1: adv larger than maximum supported [ 189.123237][ T5844] Bluetooth: hci1: adv larger than maximum supported [ 189.129974][ T5844] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 189.137222][ T5844] Bluetooth: hci1: Malformed LE Event: 0x0d [ 189.288977][ T7195] bridge0: port 3(syz_tun) entered blocking state [ 189.295922][ T7195] bridge0: port 3(syz_tun) entered disabled state [ 189.335610][ T7195] syz_tun: entered allmulticast mode [ 189.349064][ T7195] syz_tun: entered promiscuous mode [ 189.360881][ T7195] bridge0: port 3(syz_tun) entered blocking state [ 189.367552][ T7195] bridge0: port 3(syz_tun) entered forwarding state [ 190.781497][ T7236] usbip-vudc usbip-vudc.0: gadget not bound [ 191.907247][ T7265] netlink: zone id is out of range [ 191.914245][ T7265] netlink: zone id is out of range [ 191.919626][ T7265] netlink: zone id is out of range [ 191.927057][ T7265] netlink: zone id is out of range [ 191.933971][ T7265] netlink: zone id is out of range [ 191.939434][ T7265] netlink: zone id is out of range [ 191.953028][ T7265] netlink: zone id is out of range [ 191.961910][ T7265] netlink: zone id is out of range [ 191.967211][ T7265] netlink: zone id is out of range [ 191.973817][ T7265] netlink: zone id is out of range [ 192.028412][ T7265] Invalid ELF header magic: != ELF [ 192.777146][ T7283] FAULT_INJECTION: forcing a failure. [ 192.777146][ T7283] name failslab, interval 1, probability 0, space 0, times 0 [ 192.901158][ T7283] CPU: 1 UID: 0 PID: 7283 Comm: syz.0.313 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 192.901201][ T7283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 192.901219][ T7283] Call Trace: [ 192.901228][ T7283] [ 192.901239][ T7283] dump_stack_lvl+0x16c/0x1f0 [ 192.901283][ T7283] should_fail_ex+0x512/0x640 [ 192.901316][ T7283] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 192.901359][ T7283] should_failslab+0xc2/0x120 [ 192.901395][ T7283] __kmalloc_cache_noprof+0x6a/0x3e0 [ 192.901435][ T7283] ? snd_midi_event_new+0x6f/0x210 [ 192.901483][ T7283] snd_midi_event_new+0x6f/0x210 [ 192.901526][ T7283] snd_virmidi_input_open+0x107/0x4a0 [ 192.901576][ T7283] open_substream+0x478/0x9b0 [ 192.901611][ T7283] rawmidi_open_priv+0x513/0x6e0 [ 192.901650][ T7283] snd_rawmidi_open+0x4cc/0xbf0 [ 192.901690][ T7283] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 192.901726][ T7283] ? __pfx_default_wake_function+0x10/0x10 [ 192.901769][ T7283] ? kobject_get_unless_zero+0x156/0x1e0 [ 192.901816][ T7283] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 192.901848][ T7283] snd_open+0x1fe/0x450 [ 192.901890][ T7283] ? __pfx_snd_open+0x10/0x10 [ 192.901929][ T7283] chrdev_open+0x231/0x6a0 [ 192.901971][ T7283] ? __pfx_apparmor_file_open+0x10/0x10 [ 192.902008][ T7283] ? __pfx_chrdev_open+0x10/0x10 [ 192.902056][ T7283] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 192.902105][ T7283] do_dentry_open+0x741/0x1c10 [ 192.902145][ T7283] ? __pfx_chrdev_open+0x10/0x10 [ 192.902198][ T7283] vfs_open+0x82/0x3f0 [ 192.902232][ T7283] path_openat+0x1e5e/0x2d40 [ 192.902290][ T7283] ? __pfx_path_openat+0x10/0x10 [ 192.902342][ T7283] do_filp_open+0x20b/0x470 [ 192.902392][ T7283] ? __pfx_do_filp_open+0x10/0x10 [ 192.902466][ T7283] ? alloc_fd+0x471/0x7d0 [ 192.902518][ T7283] do_sys_openat2+0x11b/0x1d0 [ 192.902548][ T7283] ? __pfx_do_sys_openat2+0x10/0x10 [ 192.902594][ T7283] __x64_sys_openat+0x174/0x210 [ 192.902626][ T7283] ? __pfx___x64_sys_openat+0x10/0x10 [ 192.902659][ T7283] ? rcu_is_watching+0x12/0xc0 [ 192.902707][ T7283] do_syscall_64+0xcd/0x260 [ 192.902752][ T7283] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 192.902781][ T7283] RIP: 0033:0x7f58ef38d169 [ 192.902805][ T7283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 192.902832][ T7283] RSP: 002b:00007f58f0288038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 192.902859][ T7283] RAX: ffffffffffffffda RBX: 00007f58ef5a6080 RCX: 00007f58ef38d169 [ 192.902878][ T7283] RDX: 0000000000080102 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 192.902895][ T7283] RBP: 00007f58ef40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 192.902912][ T7283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 192.902929][ T7283] R13: 0000000000000000 R14: 00007f58ef5a6080 R15: 00007ffd634ed128 [ 192.902967][ T7283] [ 195.217106][ T7322] ICMPv6: process `syz.0.324' is using deprecated sysctl (syscall) net.ipv6.neigh.macsec0.base_reachable_time - use net.ipv6.neigh.macsec0.base_reachable_time_ms instead [ 197.039336][ T5844] Bluetooth: hci1: unexpected subevent 0x01 length: 4 < 18 [ 198.259899][ T7368] netlink: 28 bytes leftover after parsing attributes in process `syz.1.332'. [ 198.310517][ T7368] syz_tun: left allmulticast mode [ 198.315855][ T7368] syz_tun: left promiscuous mode [ 198.322295][ T7368] bridge0: port 3(syz_tun) entered disabled state [ 198.342808][ T7368] bridge_slave_1: left allmulticast mode [ 198.342843][ T7368] bridge_slave_1: left promiscuous mode [ 198.343105][ T7368] bridge0: port 2(bridge_slave_1) entered disabled state [ 198.347701][ T7368] bridge_slave_0: left allmulticast mode [ 198.347733][ T7368] bridge_slave_0: left promiscuous mode [ 198.348029][ T7368] bridge0: port 1(bridge_slave_0) entered disabled state [ 198.750226][ T5844] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18 [ 198.939063][ T30] audit: type=1800 audit(6038735842.096:3): pid=7390 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.336" name="dbroot" dev="configfs" ino=13591 res=0 errno=0 [ 199.838209][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.845798][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 200.886942][ T30] audit: type=1800 audit(6038735844.176:4): pid=7410 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.341" name="lu_gp_id" dev="configfs" ino=13616 res=0 errno=0 [ 201.543314][ T7421] net_ratelimit: 21 callbacks suppressed [ 201.543341][ T7421] openvswitch: netlink: Key type 261 is out of range max 32 [ 202.138979][ T7423] netlink: 32 bytes leftover after parsing attributes in process `syz.2.342'. [ 202.297122][ T7429] HfR: entered promiscuous mode [ 203.427963][ T5844] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18 [ 203.799063][ T5844] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18 [ 205.284892][ T30] audit: type=1800 audit(6038735864.565:5): pid=7469 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.353" name="lu_gp_id" dev="configfs" ino=13720 res=0 errno=0 [ 205.595094][ T7474] FAULT_INJECTION: forcing a failure. [ 205.595094][ T7474] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 205.609382][ T7474] CPU: 0 UID: 0 PID: 7474 Comm: syz.0.355 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 205.609419][ T7474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 205.609435][ T7474] Call Trace: [ 205.609444][ T7474] [ 205.609454][ T7474] dump_stack_lvl+0x16c/0x1f0 [ 205.609496][ T7474] should_fail_ex+0x512/0x640 [ 205.609532][ T7474] _copy_from_user+0x2e/0xd0 [ 205.609568][ T7474] memdup_user+0x6b/0xe0 [ 205.609596][ T7474] dvb_frontend_handle_ioctl+0x110d/0x3060 [ 205.609633][ T7474] ? __pfx_dvb_frontend_handle_ioctl+0x10/0x10 [ 205.609659][ T7474] ? do_raw_spin_lock+0x12c/0x2b0 [ 205.609689][ T7474] ? find_held_lock+0x2b/0x80 [ 205.609723][ T7474] ? rcu_is_watching+0x12/0xc0 [ 205.609752][ T7474] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 205.609782][ T7474] ? lockdep_hardirqs_on+0x7c/0x110 [ 205.609820][ T7474] dvb_frontend_do_ioctl+0x1c8/0x2f0 [ 205.609849][ T7474] dvb_usercopy+0x164/0x340 [ 205.609873][ T7474] ? __pfx_dvb_frontend_do_ioctl+0x10/0x10 [ 205.609901][ T7474] ? __pfx_dvb_usercopy+0x10/0x10 [ 205.609942][ T7474] ? __fget_files+0x20e/0x3c0 [ 205.609988][ T7474] dvb_frontend_ioctl+0x50/0x80 [ 205.610026][ T7474] ? __pfx_dvb_frontend_ioctl+0x10/0x10 [ 205.610072][ T7474] __x64_sys_ioctl+0x190/0x200 [ 205.610114][ T7474] do_syscall_64+0xcd/0x260 [ 205.610153][ T7474] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 205.610178][ T7474] RIP: 0033:0x7f58ef38d169 [ 205.610199][ T7474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 205.610223][ T7474] RSP: 002b:00007f58f02a9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 205.610249][ T7474] RAX: ffffffffffffffda RBX: 00007f58ef5a5fa0 RCX: 00007f58ef38d169 [ 205.610266][ T7474] RDX: 0000000000000004 RSI: 0000000040106f52 RDI: 0000000000000003 [ 205.610281][ T7474] RBP: 00007f58f02a9090 R08: 0000000000000000 R09: 0000000000000000 [ 205.610296][ T7474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 205.610311][ T7474] R13: 0000000000000000 R14: 00007f58ef5a5fa0 R15: 00007ffd634ed128 [ 205.610345][ T7474] [ 211.823692][ T5847] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18 [ 212.144678][ T5847] Bluetooth: hci1: command 0x0406 tx timeout [ 212.150993][ T5841] Bluetooth: hci3: command 0x0406 tx timeout [ 212.157176][ T5841] Bluetooth: hci2: command 0x0406 tx timeout [ 212.163432][ T5847] Bluetooth: hci0: command 0x0406 tx timeout [ 215.535111][ T7634] netlink: 28 bytes leftover after parsing attributes in process `syz.0.394'. [ 216.463933][ T7643] FAULT_INJECTION: forcing a failure. [ 216.463933][ T7643] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 216.477759][ T7643] CPU: 1 UID: 0 PID: 7643 Comm: syz.0.398 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 216.477799][ T7643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 216.477816][ T7643] Call Trace: [ 216.477826][ T7643] [ 216.477836][ T7643] dump_stack_lvl+0x16c/0x1f0 [ 216.477881][ T7643] should_fail_ex+0x512/0x640 [ 216.477919][ T7643] should_fail_alloc_page+0xe7/0x130 [ 216.477950][ T7643] prepare_alloc_pages+0x3c2/0x610 [ 216.477985][ T7643] ? stack_trace_save+0x8e/0xc0 [ 216.478036][ T7643] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 216.478088][ T7643] ? kasan_save_stack+0x42/0x60 [ 216.478126][ T7643] ? kasan_save_stack+0x33/0x60 [ 216.478164][ T7643] ? kasan_save_track+0x14/0x30 [ 216.478204][ T7643] ? __kasan_kmalloc+0xaa/0xb0 [ 216.478242][ T7643] ? fuse_dev_alloc+0x8e/0x280 [ 216.478271][ T7643] ? fuse_dev_alloc_install+0x13/0x40 [ 216.478304][ T7643] ? cuse_channel_open+0x100/0x7f0 [ 216.478332][ T7643] ? misc_open+0x35a/0x420 [ 216.478365][ T7643] ? chrdev_open+0x231/0x6a0 [ 216.478404][ T7643] ? do_dentry_open+0x741/0x1c10 [ 216.478442][ T7643] ? vfs_open+0x82/0x3f0 [ 216.478467][ T7643] ? path_openat+0x1e5e/0x2d40 [ 216.478504][ T7643] ? look_up_lock_class+0x59/0x150 [ 216.478542][ T7643] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 216.478613][ T7643] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 216.478646][ T7643] ? policy_nodemask+0xea/0x4e0 [ 216.478676][ T7643] alloc_pages_mpol+0x1fb/0x550 [ 216.478706][ T7643] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 216.478734][ T7643] ? fuse_dev_alloc_install+0x2b/0x40 [ 216.478777][ T7643] folio_alloc_noprof+0x20/0x2d0 [ 216.478808][ T7643] cuse_channel_open+0x198/0x7f0 [ 216.478840][ T7643] ? __pfx_cuse_channel_open+0x10/0x10 [ 216.478874][ T7643] misc_open+0x35a/0x420 [ 216.478910][ T7643] ? __pfx_misc_open+0x10/0x10 [ 216.478946][ T7643] chrdev_open+0x231/0x6a0 [ 216.478988][ T7643] ? __pfx_apparmor_file_open+0x10/0x10 [ 216.479032][ T7643] ? __pfx_chrdev_open+0x10/0x10 [ 216.479079][ T7643] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 216.479128][ T7643] do_dentry_open+0x741/0x1c10 [ 216.479169][ T7643] ? __pfx_chrdev_open+0x10/0x10 [ 216.479224][ T7643] vfs_open+0x82/0x3f0 [ 216.479257][ T7643] path_openat+0x1e5e/0x2d40 [ 216.479315][ T7643] ? __pfx_path_openat+0x10/0x10 [ 216.479367][ T7643] do_filp_open+0x20b/0x470 [ 216.479410][ T7643] ? __pfx_do_filp_open+0x10/0x10 [ 216.479483][ T7643] ? alloc_fd+0x471/0x7d0 [ 216.479535][ T7643] do_sys_openat2+0x11b/0x1d0 [ 216.479566][ T7643] ? __pfx_do_sys_openat2+0x10/0x10 [ 216.479599][ T7643] ? do_fcntl+0x1eb/0x1590 [ 216.479636][ T7643] __x64_sys_openat+0x174/0x210 [ 216.479667][ T7643] ? __pfx___x64_sys_openat+0x10/0x10 [ 216.479701][ T7643] ? rcu_is_watching+0x12/0xc0 [ 216.479749][ T7643] do_syscall_64+0xcd/0x260 [ 216.479791][ T7643] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 216.479819][ T7643] RIP: 0033:0x7f58ef38d169 [ 216.479842][ T7643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 216.479869][ T7643] RSP: 002b:00007f58f02a9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 216.479895][ T7643] RAX: ffffffffffffffda RBX: 00007f58ef5a5fa0 RCX: 00007f58ef38d169 [ 216.479914][ T7643] RDX: 00000000001c1041 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 216.479931][ T7643] RBP: 00007f58ef40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 216.479946][ T7643] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 216.479961][ T7643] R13: 0000000000000000 R14: 00007f58ef5a5fa0 R15: 00007ffd634ed128 [ 216.479993][ T7643] [ 216.934373][ T7643] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(668977.0.0), cmd(6) [ 217.062403][ T55] Bluetooth: hci1: unexpected subevent 0x01 length: 4 < 18 [ 217.439204][ T7650] netlink: 4 bytes leftover after parsing attributes in process `syz.1.399'. [ 220.253286][ T7699] netlink: 16 bytes leftover after parsing attributes in process `syz.1.413'. [ 220.370514][ T7699] netlink: 93 bytes leftover after parsing attributes in process `syz.1.413'. [ 220.757147][ T7703] netlink: 28 bytes leftover after parsing attributes in process `syz.2.414'. [ 221.147663][ T55] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18 [ 221.224292][ T7709] bridge0: port 4(team0) entered blocking state [ 221.292679][ T7709] bridge0: port 4(team0) entered disabled state [ 221.400566][ T7709] team0: entered allmulticast mode [ 221.453130][ T7709] team_slave_0: entered allmulticast mode [ 221.458949][ T7709] team_slave_1: entered allmulticast mode [ 221.632869][ T7709] team0: entered promiscuous mode [ 221.637994][ T7709] team_slave_0: entered promiscuous mode [ 221.787788][ T7709] team_slave_1: entered promiscuous mode [ 221.954294][ T7709] bridge0: port 4(team0) entered blocking state [ 221.960780][ T7709] bridge0: port 4(team0) entered forwarding state [ 223.629634][ T7737] zswap: compressor not available [ 225.454183][ T7765] futex_wake_op: syz.0.430 tries to shift op by 64; fix this program [ 226.007894][ T7769] zswap: compressor not available [ 226.833043][ T7785] netlink: 4 bytes leftover after parsing attributes in process `syz.1.435'. [ 226.869120][ T7785] FAULT_INJECTION: forcing a failure. [ 226.869120][ T7785] name failslab, interval 1, probability 0, space 0, times 0 [ 226.920625][ T7785] CPU: 0 UID: 0 PID: 7785 Comm: syz.1.435 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 226.920670][ T7785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 226.920687][ T7785] Call Trace: [ 226.920697][ T7785] [ 226.920708][ T7785] dump_stack_lvl+0x16c/0x1f0 [ 226.920753][ T7785] should_fail_ex+0x512/0x640 [ 226.920785][ T7785] ? __kmalloc_noprof+0xbf/0x510 [ 226.920832][ T7785] ? ops_init+0x77/0x5f0 [ 226.920877][ T7785] should_failslab+0xc2/0x120 [ 226.920906][ T7785] __kmalloc_noprof+0xd2/0x510 [ 226.920950][ T7785] ? debug_mutex_init+0x37/0x70 [ 226.920991][ T7785] ops_init+0x77/0x5f0 [ 226.921034][ T7785] setup_net+0x21e/0x850 [ 226.921077][ T7785] ? __pfx_setup_net+0x10/0x10 [ 226.921111][ T7785] ? lockdep_init_map_type+0x5c/0x280 [ 226.921140][ T7785] ? __pfx_down_read_killable+0x10/0x10 [ 226.921191][ T7785] ? debug_mutex_init+0x37/0x70 [ 226.921231][ T7785] copy_net_ns+0x2a6/0x5f0 [ 226.921278][ T7785] create_new_namespaces+0x3ea/0xad0 [ 226.921328][ T7785] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 226.921374][ T7785] ksys_unshare+0x45b/0xa40 [ 226.921420][ T7785] ? __pfx_ksys_unshare+0x10/0x10 [ 226.921462][ T7785] ? xfd_validate_state+0x5d/0x180 [ 226.921496][ T7785] ? rcu_is_watching+0x12/0xc0 [ 226.921542][ T7785] __x64_sys_unshare+0x31/0x40 [ 226.921585][ T7785] do_syscall_64+0xcd/0x260 [ 226.921627][ T7785] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 226.921656][ T7785] RIP: 0033:0x7ff9a7b8d169 [ 226.921679][ T7785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 226.921706][ T7785] RSP: 002b:00007ff9a894a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 226.921733][ T7785] RAX: ffffffffffffffda RBX: 00007ff9a7da5fa0 RCX: 00007ff9a7b8d169 [ 226.921753][ T7785] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 226.921769][ T7785] RBP: 00007ff9a7c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 226.921786][ T7785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 226.921802][ T7785] R13: 0000000000000000 R14: 00007ff9a7da5fa0 R15: 00007fff85ac0d58 [ 226.921841][ T7785] [ 227.315251][ T7788] netlink: 28 bytes leftover after parsing attributes in process `syz.2.436'. [ 227.637432][ T7793] openvswitch: HfR: Dropping previously announced user features [ 228.360353][ T30] audit: type=1800 audit(6038735911.612:6): pid=7811 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.437" name="dummy_udc" dev="gadgetfs" ino=6416 res=0 errno=0 [ 229.199429][ T7824] zswap: compressor not available [ 229.935815][ T7841] netlink: 28 bytes leftover after parsing attributes in process `syz.2.447'. [ 230.229797][ T55] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18 [ 230.771302][ T7859] FAULT_INJECTION: forcing a failure. [ 230.771302][ T7859] name failslab, interval 1, probability 0, space 0, times 0 [ 230.820309][ T7859] CPU: 0 UID: 0 PID: 7859 Comm: syz.1.453 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 230.820348][ T7859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 230.820364][ T7859] Call Trace: [ 230.820373][ T7859] [ 230.820383][ T7859] dump_stack_lvl+0x16c/0x1f0 [ 230.820425][ T7859] should_fail_ex+0x512/0x640 [ 230.820455][ T7859] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 230.820499][ T7859] should_failslab+0xc2/0x120 [ 230.820524][ T7859] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 230.820563][ T7859] ? __pfx___might_resched+0x10/0x10 [ 230.820599][ T7859] ? __anon_vma_prepare+0xae/0x5e0 [ 230.820644][ T7859] __anon_vma_prepare+0xae/0x5e0 [ 230.820680][ T7859] ? __pfx___pte_alloc+0x10/0x10 [ 230.820712][ T7859] __vmf_anon_prepare+0x11c/0x240 [ 230.820746][ T7859] do_pte_missing+0x1194/0x3fb0 [ 230.820796][ T7859] ? _raw_spin_unlock+0x28/0x50 [ 230.820826][ T7859] ? __pmd_alloc+0x3c2/0x870 [ 230.820860][ T7859] __handle_mm_fault+0x103d/0x2a40 [ 230.820908][ T7859] ? __pfx___handle_mm_fault+0x10/0x10 [ 230.820978][ T7859] handle_mm_fault+0x3fe/0xad0 [ 230.821022][ T7859] __get_user_pages+0x771/0x36f0 [ 230.821069][ T7859] ? __pfx___get_user_pages+0x10/0x10 [ 230.821118][ T7859] get_user_pages_remote+0x258/0xb20 [ 230.821162][ T7859] ? __pfx_get_user_pages_remote+0x10/0x10 [ 230.821212][ T7859] get_arg_page+0xf4/0x310 [ 230.821247][ T7859] ? __pfx_get_arg_page+0x10/0x10 [ 230.821285][ T7859] ? up_write+0x1b2/0x520 [ 230.821318][ T7859] copy_string_kernel+0x155/0x4a0 [ 230.821368][ T7859] do_execveat_common.isra.0+0x2ed/0x610 [ 230.821415][ T7859] __x64_sys_execve+0x8e/0xb0 [ 230.821454][ T7859] do_syscall_64+0xcd/0x260 [ 230.821495][ T7859] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 230.821521][ T7859] RIP: 0033:0x7ff9a7b8d169 [ 230.821541][ T7859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 230.821565][ T7859] RSP: 002b:00007ff9a894a038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 230.821590][ T7859] RAX: ffffffffffffffda RBX: 00007ff9a7da5fa0 RCX: 00007ff9a7b8d169 [ 230.821606][ T7859] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00002000000000c0 [ 230.821621][ T7859] RBP: 00007ff9a894a090 R08: 0000000000000000 R09: 0000000000000000 [ 230.821636][ T7859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 230.821650][ T7859] R13: 0000000000000000 R14: 00007ff9a7da5fa0 R15: 00007fff85ac0d58 [ 230.821686][ T7859] [ 231.566336][ T7863] zswap: compressor not available [ 231.645563][ T55] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18 [ 231.984305][ T7873] netlink: 28 bytes leftover after parsing attributes in process `syz.0.456'. [ 232.018098][ T55] Bluetooth: hci0: unexpected subevent 0x01 length: 4 < 18 [ 233.288637][ T7902] zswap: compressor not available [ 234.158131][ T7592] syz.3.384 (7592) used greatest stack depth: 19816 bytes left [ 234.564657][ T7930] netlink: 8 bytes leftover after parsing attributes in process `syz.1.471'. [ 234.993095][ T7942] openvswitch: netlink: IP tunnel dst address not specified [ 235.955482][ T7953] netlink: 28 bytes leftover after parsing attributes in process `syz.0.477'. [ 236.795184][ T7978] Invalid ELF header magic: != ELF [ 237.828040][ T55] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18 [ 238.159590][ T7594] syz.3.384 (7594) used greatest stack depth: 19496 bytes left [ 238.276264][ T8000] netlink: 28 bytes leftover after parsing attributes in process `syz.0.488'. [ 238.417042][ T7561] syz.3.380 (7561) used greatest stack depth: 17768 bytes left [ 241.264850][ T8076] netlink: 28 bytes leftover after parsing attributes in process `syz.2.508'. [ 241.503864][ T8076] ipvlan1: entered promiscuous mode [ 242.485817][ T8092] Invalid ELF header magic: != ELF [ 245.175727][ T8141] blktrace: Concurrent blktraces are not allowed on ram7 [ 245.339488][ T55] Bluetooth: hci0: unexpected subevent 0x01 length: 4 < 18 [ 246.281593][ T8164] nbd: must specify a size in bytes for the device [ 246.300330][ T30] audit: type=1800 audit(6038736992.579:7): pid=8161 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.534" name="dummy_udc" dev="gadgetfs" ino=6416 res=0 errno=0 [ 246.560763][ T8169] FAULT_INJECTION: forcing a failure. [ 246.560763][ T8169] name failslab, interval 1, probability 0, space 0, times 0 [ 246.652325][ T8169] CPU: 1 UID: 0 PID: 8169 Comm: syz.1.536 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 246.652364][ T8169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 246.652380][ T8169] Call Trace: [ 246.652389][ T8169] [ 246.652400][ T8169] dump_stack_lvl+0x16c/0x1f0 [ 246.652442][ T8169] should_fail_ex+0x512/0x640 [ 246.652473][ T8169] ? __kmalloc_noprof+0xbf/0x510 [ 246.652516][ T8169] ? kernfs_fop_write_iter+0x237/0x510 [ 246.652548][ T8169] should_failslab+0xc2/0x120 [ 246.652575][ T8169] __kmalloc_noprof+0xd2/0x510 [ 246.652625][ T8169] kernfs_fop_write_iter+0x237/0x510 [ 246.652665][ T8169] vfs_write+0x5ba/0x1180 [ 246.652699][ T8169] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 246.652730][ T8169] ? __pfx___mutex_lock+0x10/0x10 [ 246.652764][ T8169] ? __pfx_vfs_write+0x10/0x10 [ 246.652847][ T8169] ksys_write+0x12a/0x240 [ 246.652881][ T8169] ? __pfx_ksys_write+0x10/0x10 [ 246.652915][ T8169] ? rcu_is_watching+0x12/0xc0 [ 246.652970][ T8169] do_syscall_64+0xcd/0x260 [ 246.653010][ T8169] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 246.653038][ T8169] RIP: 0033:0x7ff9a7b8d169 [ 246.653061][ T8169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 246.653086][ T8169] RSP: 002b:00007ff9a894a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 246.653110][ T8169] RAX: ffffffffffffffda RBX: 00007ff9a7da5fa0 RCX: 00007ff9a7b8d169 [ 246.653127][ T8169] RDX: 000000000000cd04 RSI: 0000200000000140 RDI: 0000000000000003 [ 246.653142][ T8169] RBP: 00007ff9a894a090 R08: 0000000000000000 R09: 0000000000000000 [ 246.653157][ T8169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 246.653173][ T8169] R13: 0000000000000000 R14: 00007ff9a7da5fa0 R15: 00007fff85ac0d58 [ 246.653211][ T8169] [ 247.177682][ T55] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18 [ 247.852395][ T8182] netlink: 28 bytes leftover after parsing attributes in process `syz.2.543'. [ 248.203884][ T8196] smc: net device syz_tun applied user defined pnetid ETHTOOL [ 249.930986][ T8232] netlink: 4 bytes leftover after parsing attributes in process `syz.1.556'. [ 250.714702][ T8250] netlink: 28 bytes leftover after parsing attributes in process `syz.2.561'. [ 251.410473][ T8271] delete_channel: no stack [ 251.837209][ T8282] openvswitch: HfR: Dropping previously announced user features [ 252.190923][ T8293] netlink: 342 bytes leftover after parsing attributes in process `syz.2.573'. [ 252.215336][ T8293] netlink: 8 bytes leftover after parsing attributes in process `syz.2.573'. [ 252.238285][ T8288] netlink: 28 bytes leftover after parsing attributes in process `syz.3.572'. [ 252.255578][ T8293] netlink: zone id is out of range [ 252.269559][ T8288] team0: left allmulticast mode [ 252.275457][ T8293] netlink: zone id is out of range [ 252.277819][ T8288] team_slave_0: left allmulticast mode [ 252.281418][ T8293] netlink: zone id is out of range [ 252.286225][ T8288] team_slave_1: left allmulticast mode [ 252.286268][ T8288] team0: left promiscuous mode [ 252.286287][ T8288] team_slave_0: left promiscuous mode [ 252.286615][ T8288] team_slave_1: left promiscuous mode [ 252.309960][ T8293] netlink: zone id is out of range [ 252.353621][ T8293] netlink: zone id is out of range [ 252.355841][ T8288] bridge0: port 4(team0) entered disabled state [ 252.358777][ T8293] netlink: zone id is out of range [ 252.381840][ T8288] syz_tun: left allmulticast mode [ 252.431441][ T8288] syz_tun: left promiscuous mode [ 252.437313][ T8293] netlink: zone id is out of range [ 252.454327][ T8288] bridge0: port 3(syz_tun) entered disabled state [ 252.465504][ T8293] netlink: zone id is out of range [ 252.486377][ T8293] netlink: zone id is out of range [ 252.511172][ T8293] netlink: zone id is out of range [ 252.539052][ T8288] bridge_slave_1: left allmulticast mode [ 252.560334][ T8288] bridge_slave_1: left promiscuous mode [ 252.566374][ T8288] bridge0: port 2(bridge_slave_1) entered disabled state [ 252.641544][ T8288] bridge_slave_0: left allmulticast mode [ 252.650501][ T8288] bridge_slave_0: left promiscuous mode [ 252.671467][ T8288] bridge0: port 1(bridge_slave_0) entered disabled state [ 252.923307][ T55] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18 [ 253.262855][ T8310] FAULT_INJECTION: forcing a failure. [ 253.262855][ T8310] name failslab, interval 1, probability 0, space 0, times 0 [ 253.280696][ T8310] CPU: 0 UID: 0 PID: 8310 Comm: syz.1.576 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 253.280738][ T8310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 253.280754][ T8310] Call Trace: [ 253.280764][ T8310] [ 253.280775][ T8310] dump_stack_lvl+0x16c/0x1f0 [ 253.280819][ T8310] should_fail_ex+0x512/0x640 [ 253.280853][ T8310] ? __kvmalloc_node_noprof+0x122/0x600 [ 253.280907][ T8310] should_failslab+0xc2/0x120 [ 253.280936][ T8310] __kvmalloc_node_noprof+0x135/0x600 [ 253.280984][ T8310] ? lockdep_init_map_type+0x5c/0x280 [ 253.281013][ T8310] ? open_substream+0x30c/0x9b0 [ 253.281049][ T8310] ? open_substream+0x30c/0x9b0 [ 253.281075][ T8310] ? open_substream+0x19a/0x9b0 [ 253.281099][ T8310] open_substream+0x30c/0x9b0 [ 253.281131][ T8310] rawmidi_open_priv+0x543/0x6e0 [ 253.281170][ T8310] snd_rawmidi_open+0x4cc/0xbf0 [ 253.281210][ T8310] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 253.281245][ T8310] ? __pfx_default_wake_function+0x10/0x10 [ 253.281285][ T8310] ? kobject_get_unless_zero+0x156/0x1e0 [ 253.281330][ T8310] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 253.281360][ T8310] snd_open+0x1fe/0x450 [ 253.281400][ T8310] ? __pfx_snd_open+0x10/0x10 [ 253.281439][ T8310] chrdev_open+0x231/0x6a0 [ 253.281478][ T8310] ? __pfx_apparmor_file_open+0x10/0x10 [ 253.281515][ T8310] ? __pfx_chrdev_open+0x10/0x10 [ 253.281560][ T8310] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 253.281607][ T8310] do_dentry_open+0x741/0x1c10 [ 253.281646][ T8310] ? __pfx_chrdev_open+0x10/0x10 [ 253.281696][ T8310] vfs_open+0x82/0x3f0 [ 253.281731][ T8310] path_openat+0x1e5e/0x2d40 [ 253.281786][ T8310] ? __pfx_path_openat+0x10/0x10 [ 253.281836][ T8310] do_filp_open+0x20b/0x470 [ 253.281886][ T8310] ? __pfx_do_filp_open+0x10/0x10 [ 253.281959][ T8310] ? alloc_fd+0x471/0x7d0 [ 253.282011][ T8310] do_sys_openat2+0x11b/0x1d0 [ 253.282042][ T8310] ? __pfx_do_sys_openat2+0x10/0x10 [ 253.282088][ T8310] __x64_sys_openat+0x174/0x210 [ 253.282118][ T8310] ? __pfx___x64_sys_openat+0x10/0x10 [ 253.282168][ T8310] ? rcu_is_watching+0x12/0xc0 [ 253.282216][ T8310] do_syscall_64+0xcd/0x260 [ 253.282258][ T8310] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 253.282283][ T8310] RIP: 0033:0x7ff9a7b8d169 [ 253.282322][ T8310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 253.282346][ T8310] RSP: 002b:00007ff9a8929038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 253.282373][ T8310] RAX: ffffffffffffffda RBX: 00007ff9a7da6080 RCX: 00007ff9a7b8d169 [ 253.282391][ T8310] RDX: 0000000000080102 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 253.282415][ T8310] RBP: 00007ff9a7c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 253.282432][ T8310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 253.282448][ T8310] R13: 0000000000000000 R14: 00007ff9a7da6080 R15: 00007fff85ac0d58 [ 253.282487][ T8310] [ 253.819954][ T55] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18 [ 253.861185][ T8316] FAULT_INJECTION: forcing a failure. [ 253.861185][ T8316] name failslab, interval 1, probability 0, space 0, times 0 [ 253.862283][ T8314] netlink: 16 bytes leftover after parsing attributes in process `syz.3.577'. [ 253.873992][ T8316] CPU: 0 UID: 0 PID: 8316 Comm: syz.1.578 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 253.874030][ T8316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 253.874045][ T8316] Call Trace: [ 253.874054][ T8316] [ 253.874064][ T8316] dump_stack_lvl+0x16c/0x1f0 [ 253.874106][ T8316] should_fail_ex+0x512/0x640 [ 253.874131][ T8316] ? fs_reclaim_acquire+0xae/0x150 [ 253.874162][ T8316] ? tomoyo_encode2+0x100/0x3e0 [ 253.874191][ T8316] should_failslab+0xc2/0x120 [ 253.874213][ T8316] __kmalloc_noprof+0xd2/0x510 [ 253.874247][ T8316] ? d_absolute_path+0x136/0x1a0 [ 253.874279][ T8316] tomoyo_encode2+0x100/0x3e0 [ 253.874314][ T8316] tomoyo_encode+0x29/0x50 [ 253.874343][ T8316] tomoyo_realpath_from_path+0x18f/0x6e0 [ 253.874384][ T8316] tomoyo_path_number_perm+0x245/0x580 [ 253.874410][ T8316] ? tomoyo_path_number_perm+0x237/0x580 [ 253.874440][ T8316] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 253.874469][ T8316] ? find_held_lock+0x2b/0x80 [ 253.874528][ T8316] ? find_held_lock+0x2b/0x80 [ 253.874555][ T8316] ? hook_file_ioctl_common+0x145/0x410 [ 253.874588][ T8316] ? __fget_files+0x20e/0x3c0 [ 253.874635][ T8316] security_file_ioctl+0x9b/0x240 [ 253.874665][ T8316] __x64_sys_ioctl+0xb7/0x200 [ 253.874696][ T8316] do_syscall_64+0xcd/0x260 [ 253.874730][ T8316] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 253.874752][ T8316] RIP: 0033:0x7ff9a7b8d169 [ 253.874773][ T8316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 253.874794][ T8316] RSP: 002b:00007ff9a894a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 253.874816][ T8316] RAX: ffffffffffffffda RBX: 00007ff9a7da5fa0 RCX: 00007ff9a7b8d169 [ 253.874831][ T8316] RDX: 0000000000000004 RSI: 0000000040106f52 RDI: 0000000000000003 [ 253.874845][ T8316] RBP: 00007ff9a894a090 R08: 0000000000000000 R09: 0000000000000000 [ 253.874858][ T8316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 253.874871][ T8316] R13: 0000000000000000 R14: 00007ff9a7da5fa0 R15: 00007fff85ac0d58 [ 253.874903][ T8316] [ 253.874926][ T8316] ERROR: Out of memory at tomoyo_realpath_from_path. [ 254.135443][ T8316] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 254.322912][ T8319] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 254.370800][ T8319] CIFS mount error: No usable UNC path provided in device string! [ 254.370800][ T8319] [ 254.426842][ T8319] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 255.270078][ T8345] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE [ 255.270078][ T8345] sõ£Ò„yù*›"¤l-ý¤ôy–ú„ [ 255.623998][ T8361] FAULT_INJECTION: forcing a failure. [ 255.623998][ T8361] name failslab, interval 1, probability 0, space 0, times 0 [ 255.732541][ T8361] CPU: 1 UID: 0 PID: 8361 Comm: syz.3.587 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 255.732592][ T8361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 255.732607][ T8361] Call Trace: [ 255.732616][ T8361] [ 255.732627][ T8361] dump_stack_lvl+0x16c/0x1f0 [ 255.732668][ T8361] should_fail_ex+0x512/0x640 [ 255.732699][ T8361] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 255.732740][ T8361] should_failslab+0xc2/0x120 [ 255.732768][ T8361] __kmalloc_cache_noprof+0x6a/0x3e0 [ 255.732807][ T8361] ? trace_kmalloc+0x2b/0xd0 [ 255.732831][ T8361] ? snd_virmidi_input_open+0xc8/0x4a0 [ 255.732877][ T8361] snd_virmidi_input_open+0xc8/0x4a0 [ 255.732919][ T8361] open_substream+0x478/0x9b0 [ 255.732950][ T8361] rawmidi_open_priv+0x513/0x6e0 [ 255.732988][ T8361] snd_rawmidi_open+0x4cc/0xbf0 [ 255.733027][ T8361] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 255.733062][ T8361] ? __pfx_default_wake_function+0x10/0x10 [ 255.733104][ T8361] ? kobject_get_unless_zero+0x156/0x1e0 [ 255.733148][ T8361] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 255.733177][ T8361] snd_open+0x1fe/0x450 [ 255.733218][ T8361] ? __pfx_snd_open+0x10/0x10 [ 255.733255][ T8361] chrdev_open+0x231/0x6a0 [ 255.733292][ T8361] ? __pfx_apparmor_file_open+0x10/0x10 [ 255.733326][ T8361] ? __pfx_chrdev_open+0x10/0x10 [ 255.733370][ T8361] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 255.733417][ T8361] do_dentry_open+0x741/0x1c10 [ 255.733455][ T8361] ? __pfx_chrdev_open+0x10/0x10 [ 255.733502][ T8361] vfs_open+0x82/0x3f0 [ 255.733537][ T8361] path_openat+0x1e5e/0x2d40 [ 255.733611][ T8361] ? __pfx_path_openat+0x10/0x10 [ 255.733665][ T8361] do_filp_open+0x20b/0x470 [ 255.733708][ T8361] ? __pfx_do_filp_open+0x10/0x10 [ 255.733777][ T8361] ? alloc_fd+0x471/0x7d0 [ 255.733827][ T8361] do_sys_openat2+0x11b/0x1d0 [ 255.733856][ T8361] ? __pfx_do_sys_openat2+0x10/0x10 [ 255.733898][ T8361] __x64_sys_openat+0x174/0x210 [ 255.733928][ T8361] ? __pfx___x64_sys_openat+0x10/0x10 [ 255.733956][ T8361] ? rcu_is_watching+0x12/0xc0 [ 255.734000][ T8361] do_syscall_64+0xcd/0x260 [ 255.734039][ T8361] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 255.734066][ T8361] RIP: 0033:0x7fb8d4b8d169 [ 255.734088][ T8361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 255.734112][ T8361] RSP: 002b:00007fb8d5a87038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 255.734139][ T8361] RAX: ffffffffffffffda RBX: 00007fb8d4da6080 RCX: 00007fb8d4b8d169 [ 255.734157][ T8361] RDX: 0000000000080102 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 255.734173][ T8361] RBP: 00007fb8d4c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 255.734190][ T8361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 255.734206][ T8361] R13: 0000000000000000 R14: 00007fb8d4da6080 R15: 00007ffff06d4d28 [ 255.734240][ T8361] [ 257.081839][ T55] Bluetooth: hci0: unexpected subevent 0x01 length: 4 < 18 [ 259.244223][ T8437] netlink: 544 bytes leftover after parsing attributes in process `syz.3.602'. [ 259.546578][ T55] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18 [ 260.410988][ T8465] netlink: 28 bytes leftover after parsing attributes in process `syz.3.606'. [ 261.280970][ T55] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18 [ 261.340266][ T30] audit: type=1800 audit(6038737055.625:8): pid=8478 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.611" name="dbroot" dev="configfs" ino=18588 res=0 errno=0 [ 261.357077][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 261.450333][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 264.443320][ T8532] FAULT_INJECTION: forcing a failure. [ 264.443320][ T8532] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 264.557243][ T8532] CPU: 0 UID: 0 PID: 8532 Comm: syz.0.626 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 264.557283][ T8532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 264.557299][ T8532] Call Trace: [ 264.557308][ T8532] [ 264.557318][ T8532] dump_stack_lvl+0x16c/0x1f0 [ 264.557361][ T8532] should_fail_ex+0x512/0x640 [ 264.557399][ T8532] _copy_from_iter+0x2a4/0x15b0 [ 264.557437][ T8532] ? __alloc_skb+0x200/0x380 [ 264.557469][ T8532] ? __pfx__copy_from_iter+0x10/0x10 [ 264.557507][ T8532] ? __lock_acquire+0xaa4/0x1ba0 [ 264.557543][ T8532] netlink_sendmsg+0x829/0xdd0 [ 264.557589][ T8532] ? __pfx_netlink_sendmsg+0x10/0x10 [ 264.557641][ T8532] ____sys_sendmsg+0xa95/0xc70 [ 264.557684][ T8532] ? copy_msghdr_from_user+0x10a/0x160 [ 264.557728][ T8532] ? __pfx_____sys_sendmsg+0x10/0x10 [ 264.557776][ T8532] ? kfree+0x252/0x4d0 [ 264.557808][ T8532] ? __pfx__kstrtoull+0x10/0x10 [ 264.557859][ T8532] ___sys_sendmsg+0x134/0x1d0 [ 264.557895][ T8532] ? __pfx____sys_sendmsg+0x10/0x10 [ 264.557964][ T8532] ? __pfx___might_resched+0x10/0x10 [ 264.558005][ T8532] __sys_sendmmsg+0x200/0x420 [ 264.558040][ T8532] ? __pfx___sys_sendmmsg+0x10/0x10 [ 264.558082][ T8532] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 264.558132][ T8532] ? fput+0x70/0xf0 [ 264.558159][ T8532] ? ksys_write+0x1b9/0x240 [ 264.558196][ T8532] ? __pfx_ksys_write+0x10/0x10 [ 264.558230][ T8532] ? rcu_is_watching+0x12/0xc0 [ 264.558275][ T8532] __x64_sys_sendmmsg+0x9c/0x100 [ 264.558310][ T8532] ? lockdep_hardirqs_on+0x7c/0x110 [ 264.558345][ T8532] do_syscall_64+0xcd/0x260 [ 264.558385][ T8532] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 264.558411][ T8532] RIP: 0033:0x7f58ef38d169 [ 264.558433][ T8532] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 264.558459][ T8532] RSP: 002b:00007f58f0288038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 264.558484][ T8532] RAX: ffffffffffffffda RBX: 00007f58ef5a6080 RCX: 00007f58ef38d169 [ 264.558501][ T8532] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000005 [ 264.558517][ T8532] RBP: 00007f58f0288090 R08: 0000000000000000 R09: 0000000000000000 [ 264.558533][ T8532] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002 [ 264.558549][ T8532] R13: 0000000000000000 R14: 00007f58ef5a6080 R15: 00007ffd634ed128 [ 264.558584][ T8532] [ 264.595990][ T8534] Invalid ELF header magic: != ELF [ 265.228666][ T8552] FAULT_INJECTION: forcing a failure. [ 265.228666][ T8552] name failslab, interval 1, probability 0, space 0, times 0 [ 265.276565][ T8552] CPU: 0 UID: 0 PID: 8552 Comm: syz.3.631 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 265.276609][ T8552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 265.276626][ T8552] Call Trace: [ 265.276636][ T8552] [ 265.276647][ T8552] dump_stack_lvl+0x16c/0x1f0 [ 265.276693][ T8552] should_fail_ex+0x512/0x640 [ 265.276726][ T8552] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 265.276770][ T8552] should_failslab+0xc2/0x120 [ 265.276795][ T8552] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 265.276837][ T8552] ? __proc_create+0xc3/0x8c0 [ 265.276868][ T8552] ? __proc_create+0x2ce/0x8c0 [ 265.276904][ T8552] __proc_create+0x2ce/0x8c0 [ 265.276936][ T8552] ? __pfx___proc_create+0x10/0x10 [ 265.276983][ T8552] _proc_mkdir+0xb9/0x200 [ 265.277015][ T8552] ? __pfx__proc_mkdir+0x10/0x10 [ 265.277060][ T8552] nfs_fs_proc_net_init+0x9b/0x1e0 [ 265.277104][ T8552] nfs_net_init+0x130/0x300 [ 265.277145][ T8552] ? __pfx_nfs_net_init+0x10/0x10 [ 265.277182][ T8552] ops_init+0x1df/0x5f0 [ 265.277226][ T8552] setup_net+0x21e/0x850 [ 265.277270][ T8552] ? __pfx_setup_net+0x10/0x10 [ 265.277307][ T8552] ? lockdep_init_map_type+0x5c/0x280 [ 265.277336][ T8552] ? __pfx_down_read_killable+0x10/0x10 [ 265.277388][ T8552] ? debug_mutex_init+0x37/0x70 [ 265.277430][ T8552] copy_net_ns+0x2a6/0x5f0 [ 265.277478][ T8552] create_new_namespaces+0x3ea/0xad0 [ 265.277537][ T8552] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 265.277583][ T8552] ksys_unshare+0x45b/0xa40 [ 265.277628][ T8552] ? __pfx_ksys_unshare+0x10/0x10 [ 265.277669][ T8552] ? xfd_validate_state+0x5d/0x180 [ 265.277704][ T8552] ? rcu_is_watching+0x12/0xc0 [ 265.277751][ T8552] __x64_sys_unshare+0x31/0x40 [ 265.277794][ T8552] do_syscall_64+0xcd/0x260 [ 265.277837][ T8552] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 265.277865][ T8552] RIP: 0033:0x7fb8d4b8d169 [ 265.277890][ T8552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 265.277917][ T8552] RSP: 002b:00007fb8d5aa8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 265.277944][ T8552] RAX: ffffffffffffffda RBX: 00007fb8d4da5fa0 RCX: 00007fb8d4b8d169 [ 265.277963][ T8552] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 265.277979][ T8552] RBP: 00007fb8d4c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 265.277996][ T8552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 265.278012][ T8552] R13: 0000000000000000 R14: 00007fb8d4da5fa0 R15: 00007ffff06d4d28 [ 265.278049][ T8552] [ 265.634053][ T8552] ------------[ cut here ]------------ [ 265.639682][ T8552] remove_proc_entry: removing non-empty directory 'net/rpc', leaking at least 'nfs' [ 265.773932][ T8552] WARNING: CPU: 1 PID: 8552 at fs/proc/generic.c:727 remove_proc_entry+0x45e/0x530 [ 265.783674][ T8552] Modules linked in: [ 265.788197][ T8552] CPU: 1 UID: 0 PID: 8552 Comm: syz.3.631 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 265.799970][ T8552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 265.810271][ T8552] RIP: 0010:remove_proc_entry+0x45e/0x530 [ 265.816057][ T8552] Code: 3c 02 00 0f 85 85 00 00 00 48 8b 93 d8 00 00 00 4d 89 f0 4c 89 e9 48 c7 c6 80 6d a2 8b 48 c7 c7 a0 6c a2 8b e8 23 7b 1f ff 90 <0f> 0b 90 90 e9 5f fe ff ff e8 a4 eb 5f ff 90 48 b8 00 00 00 00 00 [ 265.835998][ T8552] RSP: 0018:ffffc90003077b70 EFLAGS: 00010282 [ 265.842387][ T8552] RAX: 0000000000000000 RBX: ffff888034980780 RCX: ffffc9000cc4b000 [ 265.850459][ T8552] RDX: 0000000000080000 RSI: ffffffff817ad135 RDI: 0000000000000001 [ 265.859005][ T8552] RBP: ffff888039031480 R08: 0000000000000001 R09: 0000000000000000 [ 265.867390][ T8552] R10: 0000000000000001 R11: 0000000000000001 R12: ffff8880390313c0 [ 265.875559][ T8552] R13: ffff8880390314a4 R14: ffff8880123e10e4 R15: dffffc0000000000 [ 265.883613][ T8552] FS: 00007fb8d5aa86c0(0000) GS:ffff888124abc000(0000) knlGS:0000000000000000 [ 265.892671][ T8552] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 265.899313][ T8552] CR2: 00007f6f14f94ce8 CR3: 000000003906a000 CR4: 00000000003526f0 [ 265.907611][ T8552] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 265.915663][ T8552] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 265.923751][ T8552] Call Trace: [ 265.927067][ T8552] [ 265.930043][ T8552] ? __pfx_remove_proc_entry+0x10/0x10 [ 265.935621][ T8552] ? kfree+0x2b6/0x4d0 [ 265.939854][ T8552] ? cache_destroy_net+0x31/0x50 [ 265.944924][ T8552] ? sunrpc_exit_net+0x37/0x90 [ 265.949880][ T8552] sunrpc_exit_net+0x46/0x90 [ 265.955366][ T8552] ? __pfx_sunrpc_exit_net+0x10/0x10 [ 265.961704][ T8552] ops_exit_list+0xb0/0x180 [ 265.966309][ T8552] setup_net+0x4e8/0x850 [ 265.971589][ T8552] ? __pfx_setup_net+0x10/0x10 [ 265.976451][ T8552] ? lockdep_init_map_type+0x5c/0x280 [ 265.982312][ T8552] ? __pfx_down_read_killable+0x10/0x10 [ 265.988524][ T8552] ? debug_mutex_init+0x37/0x70 [ 265.994258][ T8552] copy_net_ns+0x2a6/0x5f0 [ 265.999329][ T8552] create_new_namespaces+0x3ea/0xad0 [ 266.004968][ T8552] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 266.010748][ T8552] ksys_unshare+0x45b/0xa40 [ 266.015407][ T8552] ? __pfx_ksys_unshare+0x10/0x10 [ 266.020590][ T8552] ? xfd_validate_state+0x5d/0x180 [ 266.025782][ T8552] ? rcu_is_watching+0x12/0xc0 [ 266.030778][ T8552] __x64_sys_unshare+0x31/0x40 [ 266.036103][ T8552] do_syscall_64+0xcd/0x260 [ 266.040944][ T8552] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 266.046994][ T8552] RIP: 0033:0x7fb8d4b8d169 [ 266.051603][ T8552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 266.071357][ C1] vkms_vblank_simulate: vblank timer overrun [ 266.078287][ T8552] RSP: 002b:00007fb8d5aa8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 266.087335][ T8552] RAX: ffffffffffffffda RBX: 00007fb8d4da5fa0 RCX: 00007fb8d4b8d169 [ 266.095466][ T8552] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 266.103556][ T8552] RBP: 00007fb8d4c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 266.111627][ T8552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 266.119954][ T8552] R13: 0000000000000000 R14: 00007fb8d4da5fa0 R15: 00007ffff06d4d28 [ 266.128314][ T8552] [ 266.131415][ T8552] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 266.138738][ T8552] CPU: 1 UID: 0 PID: 8552 Comm: syz.3.631 Not tainted 6.14.0-syzkaller-13183-g06a22366d6a1 #0 PREEMPT(full) [ 266.150391][ T8552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 266.160551][ T8552] Call Trace: [ 266.163850][ T8552] [ 266.166817][ T8552] dump_stack_lvl+0x3d/0x1f0 [ 266.171442][ T8552] panic+0x71c/0x800 [ 266.175534][ T8552] ? __pfx_panic+0x10/0x10 [ 266.179979][ T8552] ? show_trace_log_lvl+0x29b/0x3e0 [ 266.185207][ T8552] ? remove_proc_entry+0x45e/0x530 [ 266.190341][ T8552] check_panic_on_warn+0xab/0xb0 [ 266.195690][ T8552] __warn+0xf6/0x3c0 [ 266.199690][ T8552] ? preempt_schedule_notrace+0x62/0xe0 [ 266.205259][ T8552] ? remove_proc_entry+0x45e/0x530 [ 266.210393][ T8552] report_bug+0x3c3/0x580 [ 266.214754][ T8552] ? remove_proc_entry+0x45e/0x530 [ 266.219890][ T8552] handle_bug+0x184/0x210 [ 266.224330][ T8552] exc_invalid_op+0x17/0x50 [ 266.228862][ T8552] asm_exc_invalid_op+0x1a/0x20 [ 266.233729][ T8552] RIP: 0010:remove_proc_entry+0x45e/0x530 [ 266.239597][ T8552] Code: 3c 02 00 0f 85 85 00 00 00 48 8b 93 d8 00 00 00 4d 89 f0 4c 89 e9 48 c7 c6 80 6d a2 8b 48 c7 c7 a0 6c a2 8b e8 23 7b 1f ff 90 <0f> 0b 90 90 e9 5f fe ff ff e8 a4 eb 5f ff 90 48 b8 00 00 00 00 00 [ 266.259222][ T8552] RSP: 0018:ffffc90003077b70 EFLAGS: 00010282 [ 266.265317][ T8552] RAX: 0000000000000000 RBX: ffff888034980780 RCX: ffffc9000cc4b000 [ 266.273483][ T8552] RDX: 0000000000080000 RSI: ffffffff817ad135 RDI: 0000000000000001 [ 266.281475][ T8552] RBP: ffff888039031480 R08: 0000000000000001 R09: 0000000000000000 [ 266.289481][ T8552] R10: 0000000000000001 R11: 0000000000000001 R12: ffff8880390313c0 [ 266.297638][ T8552] R13: ffff8880390314a4 R14: ffff8880123e10e4 R15: dffffc0000000000 [ 266.305729][ T8552] ? __warn_printk+0x1a5/0x350 [ 266.310520][ T8552] ? __pfx_remove_proc_entry+0x10/0x10 [ 266.316004][ T8552] ? kfree+0x2b6/0x4d0 [ 266.320094][ T8552] ? cache_destroy_net+0x31/0x50 [ 266.325049][ T8552] ? sunrpc_exit_net+0x37/0x90 [ 266.329847][ T8552] sunrpc_exit_net+0x46/0x90 [ 266.334468][ T8552] ? __pfx_sunrpc_exit_net+0x10/0x10 [ 266.339876][ T8552] ops_exit_list+0xb0/0x180 [ 266.344577][ T8552] setup_net+0x4e8/0x850 [ 266.348848][ T8552] ? __pfx_setup_net+0x10/0x10 [ 266.353630][ T8552] ? lockdep_init_map_type+0x5c/0x280 [ 266.359027][ T8552] ? __pfx_down_read_killable+0x10/0x10 [ 266.364698][ T8552] ? debug_mutex_init+0x37/0x70 [ 266.369579][ T8552] copy_net_ns+0x2a6/0x5f0 [ 266.374116][ T8552] create_new_namespaces+0x3ea/0xad0 [ 266.379438][ T8552] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 266.385100][ T8552] ksys_unshare+0x45b/0xa40 [ 266.389637][ T8552] ? __pfx_ksys_unshare+0x10/0x10 [ 266.394702][ T8552] ? xfd_validate_state+0x5d/0x180 [ 266.399833][ T8552] ? rcu_is_watching+0x12/0xc0 [ 266.404714][ T8552] __x64_sys_unshare+0x31/0x40 [ 266.409502][ T8552] do_syscall_64+0xcd/0x260 [ 266.414130][ T8552] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 266.420140][ T8552] RIP: 0033:0x7fb8d4b8d169 [ 266.424571][ T8552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 266.444556][ T8552] RSP: 002b:00007fb8d5aa8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 266.453079][ T8552] RAX: ffffffffffffffda RBX: 00007fb8d4da5fa0 RCX: 00007fb8d4b8d169 [ 266.461063][ T8552] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 266.469050][ T8552] RBP: 00007fb8d4c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 266.477069][ T8552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 266.485054][ T8552] R13: 0000000000000000 R14: 00007fb8d4da5fa0 R15: 00007ffff06d4d28 [ 266.493054][ T8552] [ 266.496370][ T8552] Kernel Offset: disabled [ 266.500700][ T8552] Rebooting in 86400 seconds..