last executing test programs: 7.712137435s ago: executing program 3 (id=2947): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram11\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc8}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x1f00) ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0xfff8, 0x3}, 0xb3, &(0x7f0000000180)={0x5, 0x4}, 0x0, 0x8) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0xc, 0xeb1, 0xfffffffffffffffa, 0x8000) rseq$auto(0x0, 0xfffffff4, 0x0, 0x5) semget$auto(0xb, 0xe, 0xe0000) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) getsockopt$auto(r2, 0x84, 0x9, 0x0, &(0x7f0000000000)=0x7ffe) ioctl$auto_VHOST_SET_BACKEND_FEATURES(r1, 0x4008af25, &(0x7f0000000000)=0x7) mmap$auto(0xffffffffffffffff, 0x10000000009, 0x8000, 0xe238, r1, 0x5) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x62040, 0x0) rseq$auto(0x0, 0x6, 0x3, 0xff) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYRESDEC=r0, @ANYBLOB='^\x00', @ANYRES64, @ANYRES32], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40) r4 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)={0x1c, r4, 0x27c9d9d5b13b6c03, 0x70bd25, 0x25dfdbfd, {}, [@HWSIM_ATTR_IFTYPE_SUPPORT={0x8, 0x17, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x404c884}, 0x64004890) recvmmsg$auto(r3, 0x0, 0x5, 0x66a6, 0x0) msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004) 6.565770447s ago: executing program 1 (id=2952): r0 = socket(0x10, 0x2, 0x0) r1 = syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_WOL_SET(r0, 0x0, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0xa0202, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'pim6reg0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_LINKSTATE_GET(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r1, 0x2, 0x70bd28, 0x25dfdbff, {}, [@ETHTOOL_A_LINKSTATE_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}]}, @ETHTOOL_A_LINKSTATE_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4004080}, 0x4000) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) lstat$auto(0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) eventfd2$auto(0xa0, 0x0) 5.952339423s ago: executing program 3 (id=2953): r0 = prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) lstat$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x6f, 0x1, 0x8, 0x3, 0x0, 0xee00, 0x0, 0x6, 0x722, 0x9, 0x7, 0x1, 0x3, 0x2c8ebe2a, 0x7c1, 0x1, 0x4}) sendmsg$auto_MAC802154_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000002b00)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000002ac0)={&(0x7f0000000440)={0x1294, 0x0, 0x100, 0x70bd2d, 0x25dfdbfe, {}, [@MAC802154_HWSIM_ATTR_RADIO_EDGES={0x43, 0x3, 0x0, 0x1, [@typed={0x8, 0xd0, 0x0, 0x0, @uid}, @typed={0xc, 0xf7, 0x0, 0x0, @u64=0x9}, @nested={0x18, 0xe9, 0x0, 0x1, [@nested={0x4, 0x98}, @nested={0x4, 0x73}, @typed={0xc, 0x20, 0x0, 0x0, @u64=0xffff}]}, @generic="f47181a56a3b9ba03cefc9f9e1f491e8144a9f"]}, @MAC802154_HWSIM_ATTR_RADIO_EDGES={0x122b, 0x3, 0x0, 0x1, [@generic="474e0f06d201ccb8d98aa3eaa41d6da123bfca69add0d96c98cf85e39fdf4db33d552fee9bc93e3c97e9c24ffe5415839fe8ca8130dfc4d4d9e348316e67c8c56af148b3e1764ceddf8d8eae7b6a0eacb600c0c4c27b20c254cbf390130c6fe3b4e2aa4d4c74d071bde5735ab134b31cd7374482f8e15f5738577dedbb5ca6151c3ffe909ac5667ab8f021e39a726e0fe8c3be9278482817d0353055425cdcad5697b73b304e5b64540b8b42f3fc69fdd89fd9234ff5ac16fc34eda58eb39e63ed896439675d94", @typed={0x8, 0xce, 0x0, 0x0, @ipv4=@remote}, @nested={0x4, 0xb1}, @typed={0x14, 0x4b, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @typed={0x8, 0x6a, 0x0, 0x0, @ipv4=@rand_addr=0x64010102}, @nested={0x104e, 0xfd, 0x0, 0x1, [@typed={0x8, 0xf9, 0x0, 0x0, @fd=r0}, @generic="09a4164205d8f660c8f34de9e0585e77d46f21", @generic="6aa846e3509a7cded2498f2cc6e38d67dc69e176c89e936dd643f4ca87dd9fa708d75316cf0f64d26fbedaea", @typed={0x39, 0x10d, 0x0, 0x0, @binary="c311c806a495f527325a07cd1d4ce4654d5eb5f639ce78a7ed94af34c749284df1058ebc448519c93a5bab16b223aad3b03d897dad"}, @typed={0x4, 0x50, 0x0, 0x0, @binary}, @nested={0x4, 0xbe}, @generic="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"]}, @typed={0x8, 0x11a, 0x0, 0x0, @ipv4=@remote}, @nested={0xc9, 0xc4, 0x0, 0x1, [@typed={0x8, 0x5, 0x0, 0x0, @u32=0x5}, @nested={0x4, 0x95}, @typed={0x9, 0x118, 0x0, 0x0, @str='^\x12(+\x00'}, @typed={0x8, 0x6d, 0x0, 0x0, @ipv4=@broadcast}, @generic="1dcb919189917dce31aace4d5ac5659a3eec205385c7c96f46b2df2a1fdbe60bc2662343e52885e85d7a74d54fe1e63e00b0348512a24ca49f81a47b8bf667aa65748971200f6009b4b0a87989a08bfe880c9dc2e29ff6d3d61c7b2e8633c46e407cce29c5896c5425ef701b0f11e7909065c438ecfa8aa20e67fa0503fe6db3f67b454af2d882635f852550923c11c24e", @nested={0x4, 0x14d}, @nested={0x4, 0xf7}, @nested={0x4, 0x10c}, @nested={0x4, 0x106}, @nested={0x4, 0x23}]}, @nested={0x8, 0x2c, 0x0, 0x1, [@nested={0x4, 0x11}]}, @typed={0xc, 0x36, 0x0, 0x0, @u64=0x7}]}, @MAC802154_HWSIM_ATTR_RADIO_EDGE={0x10, 0x2, 0x0, 0x1, [@typed={0xc, 0x3, 0x0, 0x0, @u64=0xeb7}]}]}, 0x1294}, 0x1, 0x0, 0x0, 0x880}, 0x4) mmap$auto(0x0, 0x40009, 0x129, 0x9b72, 0x7, 0x28000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/fs/ext4/sda1/last_trim_minblks\x00', 0x2400, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000000c0)=""/7, 0x7) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0xf, 0x3, 0x2) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x70) r4 = socket(0x23, 0x1, 0x0) r5 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0) ioctl$auto(r5, 0x5646, r5) read$auto_v4l2_fops_v4l2_dev(r5, &(0x7f0000000280)=""/40, 0x28) socket(0x1e, 0x1, 0x0) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0x9) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x68140, 0x0) ioctl$auto(r6, 0x5457, 0xd8) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0) sendmsg$auto_NL80211_CMD_GET_STATION(r4, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYRES64=r2, @ANYRESHEX=0x0, @ANYRESDEC=r1], 0xc8}, 0x1, 0x0, 0x0, 0x800}, 0x4000811) socket(0x1d, 0x2, 0x3) r7 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0) ioctl$auto_PROCMAP_QUERY(r7, 0xc0686611, 0x0) close_range$auto(0x2, 0x8, 0x0) madvise$auto(0x110c230000, 0x8031ca, 0x9) 5.598182288s ago: executing program 0 (id=2954): r0 = prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) lstat$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x6f, 0x1, 0x8, 0x3, 0x0, 0xee00, 0x0, 0x6, 0x722, 0x9, 0x7, 0x1, 0x3, 0x2c8ebe2a, 0x7c1, 0x1, 0x4}) sendmsg$auto_MAC802154_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000002b00)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000002ac0)={&(0x7f0000000440)={0x1294, 0x0, 0x100, 0x70bd2d, 0x25dfdbfe, {}, [@MAC802154_HWSIM_ATTR_RADIO_EDGES={0x43, 0x3, 0x0, 0x1, [@typed={0x8, 0xd0, 0x0, 0x0, @uid}, @typed={0xc, 0xf7, 0x0, 0x0, @u64=0x9}, @nested={0x18, 0xe9, 0x0, 0x1, [@nested={0x4, 0x98}, @nested={0x4, 0x73}, @typed={0xc, 0x20, 0x0, 0x0, @u64=0xffff}]}, @generic="f47181a56a3b9ba03cefc9f9e1f491e8144a9f"]}, @MAC802154_HWSIM_ATTR_RADIO_EDGES={0x122b, 0x3, 0x0, 0x1, [@generic="474e0f06d201ccb8d98aa3eaa41d6da123bfca69add0d96c98cf85e39fdf4db33d552fee9bc93e3c97e9c24ffe5415839fe8ca8130dfc4d4d9e348316e67c8c56af148b3e1764ceddf8d8eae7b6a0eacb600c0c4c27b20c254cbf390130c6fe3b4e2aa4d4c74d071bde5735ab134b31cd7374482f8e15f5738577dedbb5ca6151c3ffe909ac5667ab8f021e39a726e0fe8c3be9278482817d0353055425cdcad5697b73b304e5b64540b8b42f3fc69fdd89fd9234ff5ac16fc34eda58eb39e63ed896439675d94", @typed={0x8, 0xce, 0x0, 0x0, @ipv4=@remote}, @nested={0x4, 0xb1}, @typed={0x14, 0x4b, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @typed={0x8, 0x6a, 0x0, 0x0, @ipv4=@rand_addr=0x64010102}, @nested={0x104e, 0xfd, 0x0, 0x1, [@typed={0x8, 0xf9, 0x0, 0x0, @fd=r0}, @generic="09a4164205d8f660c8f34de9e0585e77d46f21", @generic="6aa846e3509a7cded2498f2cc6e38d67dc69e176c89e936dd643f4ca87dd9fa708d75316cf0f64d26fbedaea", @typed={0x39, 0x10d, 0x0, 0x0, @binary="c311c806a495f527325a07cd1d4ce4654d5eb5f639ce78a7ed94af34c749284df1058ebc448519c93a5bab16b223aad3b03d897dad"}, @typed={0x4, 0x50, 0x0, 0x0, @binary}, @nested={0x4, 0xbe}, @generic="005d520b0ec114c4d64452a93d23f21556b35970a0f796d863b1b4424216a35a27ae74048ac83a8f001bf02c6796266e4c4dfad13fd9b5e52ac2f8ed753d8499a63842ba77227109792b8bb6e7b482ff003c84f45665dfa6579f5da6c1c56df05473fcf75966682e9c81810b2b62e9246ace76fd01caf6a1e9e1b9bbc0f0a69572c48ac15c8d1799f51c75f011adcdd809d16525dec0ef8fb91d33af6c25fa5418ff63d0a868b4f82731164fd9a60cc22fbd41e22d8cc52f530a894b4ad57521f8e109265de39e31710bd50b16f40974cfa74ac378d253d6d7f48fce37f2f7676c18bf403f667eb2a959d047f39c508e0e034830888d44a0b2919401fc43773cae25507807cb79513f1aeaa8b3d727c749331b86c817f60b4327566599455fe91cd90fee4f77d2806ebb3bbbee16c2882b78631e1696b9140943eb7709028fff1aab56014b004ebe8d6008608aaa12d5e5c478173212f0da4f719bace3eaff5699c7ea4f742d13ef266b1fafe2663df110d201822027110f96d510d696b89edba47f79346ab7517236b1ad0f0a2476cda558edc5893d92e444730aeca9e53d3a0f455572e8264a6def896bcdfd8f4dce8fe02533246178bb33a83a448e6e7f3edbc3a1311561e8468e1dd8a12b9148e70654204b238ea5919f29f9e75500b40bf7a18f846e7f1de57b59b88aa5003bc8e86ed5d8f614a9996590374fe609e16cafcd52e186084410d8ad6aad958ed8a89e9f760ec51864c6b556d9405671c20785ea77e011ff1458151f68259856516f5bd4b1b904cbe44a2fed8aa6a561e3ddfa3231cb516d8c89724ec70bd15cebbe6ca959ad9b09a8e452050d362ce0cd123337d087d946d7c71ea21bd9d0d600550af3378a470a0677a0dbad61c686c0649f85d68c4a5ab6112b8701786dbc27ea289e51b90e209d7c342f9f224d8fbe1d06e81265e8fb460b0fcf2af2a02ce43d779339acd7c8cca20c4d2f2c936b7fa2428bd87f998c90143cb5b366a67892ea0c51c0a3fc0b02d12848d99991d227baac91167cd83b289bae15190a9422d9bddd5dc76d455e0ed703ae0825b09f5553c74c3e7e40ab0dd0cb7ce010f6f3cb102af1af7f6e4c38971b61f9b4820bafd18aa8c5d3f1634ad5d18b61ef355fe592afd0aeefb365d6ec4da5eda0178fbdbd871a14f120827d8ea4ff357e42f6eff2e14362ba58950d3e1a0750c44f499899e4bc216078145ae7fe3cadc10d53a817454ebe989ed0521aef7507b41f2fbf1c2e19e187021a8b7433db979c77880fecdd03a4ec22036fc05516ff0a7bfcbc42967ea09dba5dde2adc3d8f2acd5f64a4e17e004478d8d5967dab7c0edda0837e0561e3add9ebb7f30e2cfd1292d05c9074430df8a6aa9c27ea4d8b491f4453366a86862b5b4e7e3983d558e3be089fcd129956a0b96a1f6c0fb801c3efd15ce80332cfaf9490cbfe606e7c06b4fe6ee434ed7f62e0b967417806c06e7e7631a6d3cb23c5e05792c7b5f4032446cbf3b625aaf3e86197f5e9fecb72b7f0e96add333e541c6fd04b5145053092a15358a62b5df30b06c91ce31edb4f1b8723629fbf3325e8c29ca6e6ec85b5e65228f237385acae779ddda103ed87d0332d05b2d01bc2ed098b3286839579a9f0b709e1bf0e0d3e652e764ba62bd813dfd5b65091e0ecef55aaf8de10f1c22d16766bb28ebef2c3ba66241312fe973bb0a9a7198dcb205d98b4fa0f43898844ce4ddf58d713cec2ab8df6258cebc8dc3995334fb154bd058535dbcc7afecc5f906462f7cd5bb40954cf8cab26823f8a5727c25a5b525fe3f9b00762f3c3aaaa2efd30fd47c3ddea6786032d84c909a0f7134a0b06f0c6c19ee70cea3f62c6d66e711603ef8946e20d1e329ba0f8e8e94f76e859f473c27cc248a33a3fe17d506d9c9a7473afaac9a7b7da74e004d2ae032f6a61ff26adb34b71399e85ffeeb450e53348d906fb29434fb34c247e53a38f101f97cdffe2dbc4ac3b2ac9ba0c8b26317620afdaface2356ea0750d27f8b22fc92e253605d1f468cf7508b9973cc433ed4e464d81c8278a68eea8e960e0721a00ffa0e40d4fa4500049406eddab810fb2b1b7e69a4aa4a9de6a8f69404da37ba3f924a753c4ef44435495346558054ba83f12feb938f35cc21e12ddaef740f6c288c5fb7558faf22b22a7f0f84dc505d7210724b56a77187197f3dbb84887427351143560ebb8922f53400449a32ddfcdc415f47d0412c48a98b8f182768cab3b48cac57ec0ca6e4f1dac8f67724c9c963b98389edde13743f6425c00dac4d836b2aa7a0aaa402a467c08bc7c54dfdea1dbda0d72ccbced1e5512ef1f6c6abb40f90858b33493ebc7c2e9b64a0a8103e4b81f26d3e78f5340adb1770e57b89bcdf5954952cc1bb280bfe57a3dba990587705a822911d7bd85b293e408b3c3e8958c0e7a736a8bc4314edb2d9e46329a0d3738faaff5c9822b118718ebe1dd516ae0b374156ae358d246a4e704df58141abfea057b3916d6a9feb653b6a25561b1b25e20cdae92a2e9a42d2e007f5ea7b2ea74b527b0ff5d345c529164b35860766ffdb92a8ff6c6b866cf8b5f042c643800c351228aa397f48822fc920d3d8014c9da60c4d55770805147a4b77b7cd2dbb71d8605140dc2390285cf870de5c8c23cf0be37dd78e1ad73327c06a2ca98e70a2fe859b122a15c1ec898578bc5137f514ae6798cbb2dbbc24b3e5c86537b1b7ff29dc7d305761581d27845df01ef8884ff5c4da00b1986e4acc94d14318243152f8ff6ec47995acfbf33a51eec90aca763c45e5dc8eb576e1292cf4ec1161d231c7d2c079f86f8f395c068d6383494891737286b408d35d8ad28e09e44f5b475de6321f7a051f84754cbdfb70f22423ff5f0d66fa2e64cb1b84d8f7ad543b0f800dfe9f439fa91928d8e0f739a5fa652ce8105cc0100a674cb303ce5c20b122e559804ce38d43147d00fd90380d05e5ca8161511cfe7ec8abc88559859e6c026c89498b831198e932ff59cf7713e5aa0b293df000638e4e1f27e1d4d12bdeac960a629aff5ea78a14eeac48ee43de9fc408fd3114352f59d23123c846a93d89445c8eb8c5046c574b3cdb5e8318ec4e644715e91425593c11039eb917c982a21bd9e392fd84f10c840aca411ed6734ee903a3936178e16628b3b8785fc8e6b86b4d5901b4be740695d31fe39090210257bd0b2bff36649e2aae0cbe9d91decb4b0eb1eb8be803ae64fbb7f983a12ea49bf302f3da92111ddc2928579bc97929cc21e01ae2d2899e095c10053626bcfbe72734974b86a486cbf2cd4420ea797df4d7d76ce4e2c112e8db7111a372debc5a26b03e7270a1bd52ed5ef32179a8f496224502be878e6a2de722babfa0b991e4796432b5a1bbebcc13075fa9f2328cf56d944de5d3a953772563175ae882ce7838b351f76ae50482caeeff1f31c3eac4d621a77a938da179ab52079057f5db3f40a9d42fcd1980d196a4931bb0c46e16d49856b547c5719919846d05a3ed51be0f47bb21085c34245464e6fa9d47164d6e9eb5bd874acdefae2c74d987bdfb66d2e624b4806aa8ca8bab752b5258103c343a4b83608e71b5aefc0cdd862a1ec11fe8b2ad14464e7b09cd0b01b7d281ad9b51d76d703f0d11168b07209693ff560217cca9a8496ab72650fc26a7f8eec3c9f7be8fbb15ede2d27030d77a330af1675e8b65c8304be566d55550feba3c928c362a3381f526fa00e8cff5459da85393893f212342a9ef06dec01eeaa0399fd308a7c25ecad4b4ad1a3105a4676f6505ba645de04af6067af3cf480c0b6828087596ef4a7f5215806b16fc25279e7c36274e95e95c2979fef4e795fc5a526478dc2ce5c8b64c803b562bb6f16adf8754c4a8ca3395d4997afe5588d440836c109a4719c8926112d0ad533ad93d1b2f3a9fb2eaecd11d0f1366732e17110247e59bab2920e7b5d5a5da3e9e1790cc57422d5e60dc9caf85545813c6602845e8a4a2d637ae10da49355aebd174f6bb85412ec3404ed667c0d99edac0075f0f4cbf13cc7b1daeef4dd719f19c57aa50abcee5e6f4e449309bff811dd2a6457e19a352da637976a547ad6069068fa3462fa58010cc54afc140126874997e6f59da33ae7c01aab14c05ff1c14f6dbd68760d46a543e76e586c781f13b1b7f225c374c72af572f0333c1879c973226c8659ed836e80790f7c24f64838c90a529bdb0b138e5c624538a009cb9a4884f9e3ecbc8ab81de91a4826f878b001de97e503d2b92ba7c73870d0a0c92594e1ba2b8bc1f7281a1fedd153c01dfcc850ec401e140d20a46788e4ac8511b06cb13e24052e1c9bb7842a1b94c8a38e5ef5285b790ffa8d296264e25c919b16db7b3c1d645306fd3de93d2453ebe2c4589289b442a23f6ec4a9b1cc605ed4e68628df2b5d222d3c85ce5c6696ae94c3543f467e694e60a694783660edf97fc6e940cb5069df2660ffeb9c7e1bf14a86210d90140d1718ced80fb51b0e7cb19891b2d6dc56be20058145b15787256fb32bcffba9a415882fa1f4464c85947b2d8b54e8a13b395c7e867876af8aa96eced85fc536af1d5027a7a0cb7e1d3383478c23e4d7d5149f06a1918ce3280ef6cc88f28892e01d4606de09976692f79c880a47558e365e79ff0aac7699d87fddbda654983dab131b651cc1150f2a5a718dbe1bcad3038189f77f3a291f849cd38b103156656b92f1ebf843e8f21e492b5efe75a220d0c559863162c0ae7a0c77f4a31f8472df6df77899c6104f515dc11671ec633ba7ec9d6e1c91ba81bd97c506c8f73804aab6dde0cf9349b9c0f3517da5cd4b0bf28b2447b35e422eb5337abc2decc42adbb30c8adae1f9401270a0079e7179496820034dd3c5753128a76a5e9806a2caa747fbe7b75b33a534f8c48978a67406669274f77de6884f0c7ea55957efacc93c716703b61de3cb2960b0fe37d2942730071e5cecf19de08043bbccdf7319817b0ffc60214ca64c4319cf4639465afea027c38aee4c6103dfb20b4e40fd6d1903fe886e71fadfb2b2514851e012daf12a2f829cde2b3e390572923b9711b6a5df1710e659c472ca294f361b1009144321f64b0ed5138b0feb97f92d3d965aa6f38af0014d6ad3904f43310bd65d4a0f34d69611978798640f6f5989665e2c8150b50d42d5a5766707cf4831b7071c3d33c6529564f9afdd826382b073cd28c41bec184eaa18419fc0514955386909297de2b04a7418054c2cf534f89a2825bbeba88fc7f68491d690fc8ef087783200edd58480b513c2c953c8bb18c8bf24dd55c7390970b44675498b448f99233f15a863d166ef529bfebc73e7d20bc7e7a23e48d5f66ca20dab5d32dc4c7fb54f6f409b147da5d2a42d71b3cdfb1535f0fe132956647f3499e7985bdf96a3289ea9525f7d0fe7e8a9695c202021b0a548890e7a56293caaaa5b6d89ba1e5e7ce88bba7f1db178e5a89ad81f1cbf0e989cf56168fd29176c791e0687200475922591056c89fbadc303ab102c01d75f6e9af622503cb2d3ad96c2be81fc17a530313003daad8c7cffc5fa03db5b58630e6c88d024b14bd84deccd27adc2812516eef98a74734ab16ac6bbab3745ec74bcdce996755a4a10856857a9ed0ba6e4fd64cda78916ab58b1064f6e550356e7c07ddcb7cbb65314fecc83bda54661e613cb1768"]}, @typed={0x8, 0x11a, 0x0, 0x0, @ipv4=@remote}, @nested={0xc9, 0xc4, 0x0, 0x1, [@typed={0x8, 0x5, 0x0, 0x0, @u32=0x5}, @nested={0x4, 0x95}, @typed={0x9, 0x118, 0x0, 0x0, @str='^\x12(+\x00'}, @typed={0x8, 0x6d, 0x0, 0x0, @ipv4=@broadcast}, @generic="1dcb919189917dce31aace4d5ac5659a3eec205385c7c96f46b2df2a1fdbe60bc2662343e52885e85d7a74d54fe1e63e00b0348512a24ca49f81a47b8bf667aa65748971200f6009b4b0a87989a08bfe880c9dc2e29ff6d3d61c7b2e8633c46e407cce29c5896c5425ef701b0f11e7909065c438ecfa8aa20e67fa0503fe6db3f67b454af2d882635f852550923c11c24e", @nested={0x4, 0x14d}, @nested={0x4, 0xf7}, @nested={0x4, 0x10c}, @nested={0x4, 0x106}, @nested={0x4, 0x23}]}, @nested={0x8, 0x2c, 0x0, 0x1, [@nested={0x4, 0x11}]}, @typed={0xc, 0x36, 0x0, 0x0, @u64=0x7}]}, @MAC802154_HWSIM_ATTR_RADIO_EDGE={0x10, 0x2, 0x0, 0x1, [@typed={0xc, 0x3, 0x0, 0x0, @u64=0xeb7}]}]}, 0x1294}, 0x1, 0x0, 0x0, 0x880}, 0x4) mmap$auto(0x0, 0x40009, 0x129, 0x9b72, 0x7, 0x28000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/fs/ext4/sda1/last_trim_minblks\x00', 0x2400, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000000c0)=""/7, 0x7) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0xf, 0x3, 0x2) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x70) r4 = socket(0x23, 0x1, 0x0) r5 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0) ioctl$auto(r5, 0x5646, r5) read$auto_v4l2_fops_v4l2_dev(r5, &(0x7f0000000280)=""/40, 0x28) socket(0x1e, 0x1, 0x0) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0x9) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x68140, 0x0) ioctl$auto(r6, 0x5457, 0xd8) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0) sendmsg$auto_NL80211_CMD_GET_STATION(r4, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYRES64=r2, @ANYRESHEX=0x0, @ANYRESDEC=r1], 0xc8}, 0x1, 0x0, 0x0, 0x800}, 0x4000811) socket(0x1d, 0x2, 0x3) r7 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0) ioctl$auto_PROCMAP_QUERY(r7, 0xc0686611, 0x0) close_range$auto(0x2, 0x8, 0x0) madvise$auto(0x110c230000, 0x8031ca, 0x9) 4.815141421s ago: executing program 1 (id=2955): openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x8800, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000002b40)={0x54, r1, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@HWSIM_ATTR_RADIO_NAME={0x2d, 0x11, '/P\x13jE\f\xf9r\xf5\xa3\xd2\x84y\xf9*\x9b\"\x1c\xa4l-\x19\xfd\xa4\xf4y\x02\xc2\x96\xfa\x84L\x12\xcd\x83\xf7\x12\xd3\xc4\x1e]'}, @HWSIM_ATTR_PMSR_SUPPORT={0x10, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x387}, @NL80211_PMSR_ATTR_TYPE_CAPA={0x4}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x4008040}, 0x40820) sendmsg$auto_ETHTOOL_MSG_FEC_SET(0xffffffffffffffff, 0x0, 0x20004000) unshare$auto(0x40000080) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f0, 0x15) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r2 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x2, 0x1, 0x0) listen$auto(0x3, 0x81) syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000c00), r2) sendmsg$auto_TCP_METRICS_CMD_DEL(r2, 0x0, 0x0) 3.35152108s ago: executing program 0 (id=2956): r0 = socket(0x11, 0x2, 0x0) capset$auto(0x0, &(0x7f0000000000)={0x1, 0xd, 0x8}) sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000080), 0x49}, 0x4, &(0x7f0000000180), 0x5, 0x1040}, 0x5}, 0x2, 0x100) r1 = open(&(0x7f0000000100)='.\x00', 0x591002, 0x408) write$auto(0x3, 0x0, 0xfffffdef) r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r2, 0xaf01, 0x5) r3 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$auto(r3, 0x1, 0x19, &(0x7f0000000500)='macvlan1\x00', 0x8001) ioctl$auto(r2, 0xaf01, 0xffffffffffffffff) linkat$auto(r1, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) fanotify_init$auto(0x5, 0x2000000000002) ioctl$auto(0xffffffffffffffff, 0x40246f4c, 0x38) openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='&&\x00', &(0x7f0000000140)={0x20c00, 0x0, 0x21}, 0x18) prctl$auto(0x23, 0x4, 0x7fffffffefff, 0x0, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio1\x00', 0x10dc00, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x8000003, 0x7) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) dup3$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x101) write$auto(0x3, 0x0, 0x81) msync$auto(0xd, 0x8000000000003a6, 0x10001) 3.34671223s ago: executing program 3 (id=2958): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram11\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc8}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x1f00) ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0xfff8, 0x3}, 0xb3, &(0x7f0000000180)={0x5, 0x4}, 0x0, 0x8) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0xc, 0xeb1, 0xfffffffffffffffa, 0x8000) rseq$auto(0x0, 0xfffffff4, 0x0, 0x5) semget$auto(0xb, 0xe, 0xe0000) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) getsockopt$auto(r2, 0x84, 0x9, 0x0, &(0x7f0000000000)=0x7ffe) ioctl$auto_VHOST_SET_BACKEND_FEATURES(r1, 0x4008af25, &(0x7f0000000000)=0x7) mmap$auto(0xffffffffffffffff, 0x10000000009, 0x8000, 0xe238, r1, 0x5) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x62040, 0x0) rseq$auto(0x0, 0x6, 0x3, 0xff) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYRESDEC=r0, @ANYBLOB='^\x00', @ANYRES64, @ANYRES32], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)={0x1c, 0x0, 0x27c9d9d5b13b6c03, 0x70bd25, 0x25dfdbfd, {}, [@HWSIM_ATTR_IFTYPE_SUPPORT={0x8, 0x17, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x404c884}, 0x64004890) recvmmsg$auto(r3, 0x0, 0x5, 0x66a6, 0x0) msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004) 2.783726537s ago: executing program 2 (id=2959): r0 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0x154) mmap$auto(0x1, 0x400008, 0xdf, 0x9b72, r0, 0x8000) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/mtd\x00', 0xc40, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r1) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="2f212cbd7010ca705d845526cc0008000380", @ANYRES32=r3], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x4000000) close_range$auto(0x2, 0x8, 0x0) 2.637865427s ago: executing program 0 (id=2960): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r0 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0) sendmsg$auto_L2TP_CMD_TUNNEL_DELETE(0xffffffffffffffff, 0x0, 0x8000) sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYRESOCT=r0, @ANYRES16, @ANYBLOB="010029040010fba705e0bb4b7a25f921bd"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x40808) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/dummy_hcd.6/usb7/remove\x00', 0x1e5200, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 2.53335647s ago: executing program 2 (id=2961): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000002b40)={0x54, r1, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@HWSIM_ATTR_RADIO_NAME={0x2d, 0x11, '/P\x13jE\f\xf9r\xf5\xa3\xd2\x84y\xf9*\x9b\"\x1c\xa4l-\x19\xfd\xa4\xf4y\x02\xc2\x96\xfa\x84L\x12\xcd\x83\xf7\x12\xd3\xc4\x1e]'}, @HWSIM_ATTR_PMSR_SUPPORT={0x10, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x387}, @NL80211_PMSR_ATTR_TYPE_CAPA={0x4}]}]}, 0x54}, 0x1, 0x0, 0x500, 0x4008040}, 0x40800) 2.376114034s ago: executing program 3 (id=2962): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) epoll_ctl$auto(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0) pkey_mprotect$auto(0x800000000000, 0xb, 0x6, 0x0) ioctl$auto_IMDELTIMER(0xffffffffffffffff, 0x80044941, &(0x7f0000000000)=0x5) openat$auto_suspend_stats_fops_(0xffffffffffffff9c, 0x0, 0x440, 0x0) unshare$auto(0x40000080) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) read$auto_sync_info_debugfs_fops_(0xffffffffffffffff, &(0x7f0000000180)=""/105, 0x69) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r1, 0x0, 0x81) write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x85) close_range$auto(0x2, 0x8, 0x0) shmget$auto(0x4, 0x6, 0xffff) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) 2.282868857s ago: executing program 0 (id=2963): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21) unshare$auto(0x40000080) mmap$auto(0x33, 0x2020009, 0x3, 0x16, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) writev$auto(0xffffffffffffffff, 0x0, 0x8) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) socketcall$auto(0x8000, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) r3 = socket(0x29, 0x2, 0x0) getsockopt$auto(r3, 0x119, 0x6, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001300)={'batadv_slave_0\x00', 0x0}) r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001480), r2) sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r2, &(0x7f0000001cc0)={0x0, 0x0, &(0x7f0000001c80)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01002cbd7000fbdbdf25120000000c00018008000100", @ANYRES32=r4, @ANYBLOB="0800020002000000"], 0x28}, 0x1, 0x100000000000000, 0x0, 0x9dfefc5e47f5c72f}, 0x0) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) mremap$auto(0x200000000000, 0x4, 0x4, 0x3, 0x100000000) r7 = memfd_secret$auto(0x0) copy_file_range$auto(r7, 0x0, r7, &(0x7f00000001c0)=0x7f, 0x2, 0x0) ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r6) r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0) sendfile$auto(r8, r8, 0x0, 0x3) ioctl$auto(r6, 0x100ee3d, r1) r9 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0) ioctl$auto(r9, 0x540a, 0x0) close_range$auto(0x2, 0x8, 0x8cea8) 2.208641338s ago: executing program 2 (id=2964): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram11\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc8}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x1f00) ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0xfff8, 0x3}, 0xb3, &(0x7f0000000180)={0x5, 0x4}, 0x0, 0x8) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0xc, 0xeb1, 0xfffffffffffffffa, 0x8000) rseq$auto(0x0, 0xfffffff4, 0x0, 0x5) semget$auto(0xb, 0xe, 0xe0000) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) getsockopt$auto(r2, 0x84, 0x9, 0x0, &(0x7f0000000000)=0x7ffe) ioctl$auto_VHOST_SET_BACKEND_FEATURES(r1, 0x4008af25, &(0x7f0000000000)=0x7) mmap$auto(0xffffffffffffffff, 0x10000000009, 0x8000, 0xe238, r1, 0x5) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x62040, 0x0) rseq$auto(0x0, 0x6, 0x3, 0xff) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r3 = socket(0x10, 0x2, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)={0x1c, r5, 0x27c9d9d5b13b6c03, 0x70bd25, 0x25dfdbfd, {}, [@HWSIM_ATTR_IFTYPE_SUPPORT={0x8, 0x17, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x404c884}, 0x64004890) recvmmsg$auto(r3, 0x0, 0x5, 0x66a6, 0x0) msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004) 2.058397379s ago: executing program 1 (id=2965): r0 = openat$auto_lsm_ops_inode(0xffffffffffffff9c, &(0x7f0000000000), 0x183800, 0x0) read$auto_lsm_ops_inode(r0, 0x0, 0x0) r1 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dri/card0\x00', 0x440, 0x0) ioctl$auto(r1, 0x64d2, 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x400008000) socket(0x2, 0x2, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) inotify_init1$auto(0x3000000000000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000900)='/proc/sys/kernel/pid_max\x00', 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x15, 0x5, 0x0) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/arch_status\x00', 0x100382, 0x0) socket(0x10, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x0) socket(0xa, 0x1, 0x84) inotify_init1$auto(0x3000000000000) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) open(0x0, 0x22240, 0x154) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$auto(0x3, 0x40106f52, r2) 1.494550711s ago: executing program 1 (id=2966): r0 = prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) lstat$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x6f, 0x1, 0x8, 0x3, 0x0, 0xee00, 0x0, 0x6, 0x722, 0x9, 0x7, 0x1, 0x3, 0x2c8ebe2a, 0x7c1, 0x1, 0x4}) sendmsg$auto_MAC802154_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000002b00)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000002ac0)={&(0x7f0000000440)={0x1294, 0x0, 0x100, 0x70bd2d, 0x25dfdbfe, {}, [@MAC802154_HWSIM_ATTR_RADIO_EDGES={0x43, 0x3, 0x0, 0x1, [@typed={0x8, 0xd0, 0x0, 0x0, @uid}, @typed={0xc, 0xf7, 0x0, 0x0, @u64=0x9}, @nested={0x18, 0xe9, 0x0, 0x1, [@nested={0x4, 0x98}, @nested={0x4, 0x73}, @typed={0xc, 0x20, 0x0, 0x0, @u64=0xffff}]}, @generic="f47181a56a3b9ba03cefc9f9e1f491e8144a9f"]}, @MAC802154_HWSIM_ATTR_RADIO_EDGES={0x122b, 0x3, 0x0, 0x1, [@generic="474e0f06d201ccb8d98aa3eaa41d6da123bfca69add0d96c98cf85e39fdf4db33d552fee9bc93e3c97e9c24ffe5415839fe8ca8130dfc4d4d9e348316e67c8c56af148b3e1764ceddf8d8eae7b6a0eacb600c0c4c27b20c254cbf390130c6fe3b4e2aa4d4c74d071bde5735ab134b31cd7374482f8e15f5738577dedbb5ca6151c3ffe909ac5667ab8f021e39a726e0fe8c3be9278482817d0353055425cdcad5697b73b304e5b64540b8b42f3fc69fdd89fd9234ff5ac16fc34eda58eb39e63ed896439675d94", @typed={0x8, 0xce, 0x0, 0x0, @ipv4=@remote}, @nested={0x4, 0xb1}, @typed={0x14, 0x4b, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @typed={0x8, 0x6a, 0x0, 0x0, @ipv4=@rand_addr=0x64010102}, @nested={0x104e, 0xfd, 0x0, 0x1, [@typed={0x8, 0xf9, 0x0, 0x0, @fd=r0}, @generic="09a4164205d8f660c8f34de9e0585e77d46f21", @generic="6aa846e3509a7cded2498f2cc6e38d67dc69e176c89e936dd643f4ca87dd9fa708d75316cf0f64d26fbedaea", @typed={0x39, 0x10d, 0x0, 0x0, @binary="c311c806a495f527325a07cd1d4ce4654d5eb5f639ce78a7ed94af34c749284df1058ebc448519c93a5bab16b223aad3b03d897dad"}, @typed={0x4, 0x50, 0x0, 0x0, @binary}, @nested={0x4, 0xbe}, @generic="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"]}, @typed={0x8, 0x11a, 0x0, 0x0, @ipv4=@remote}, @nested={0xc9, 0xc4, 0x0, 0x1, [@typed={0x8, 0x5, 0x0, 0x0, @u32=0x5}, @nested={0x4, 0x95}, @typed={0x9, 0x118, 0x0, 0x0, @str='^\x12(+\x00'}, @typed={0x8, 0x6d, 0x0, 0x0, @ipv4=@broadcast}, @generic="1dcb919189917dce31aace4d5ac5659a3eec205385c7c96f46b2df2a1fdbe60bc2662343e52885e85d7a74d54fe1e63e00b0348512a24ca49f81a47b8bf667aa65748971200f6009b4b0a87989a08bfe880c9dc2e29ff6d3d61c7b2e8633c46e407cce29c5896c5425ef701b0f11e7909065c438ecfa8aa20e67fa0503fe6db3f67b454af2d882635f852550923c11c24e", @nested={0x4, 0x14d}, @nested={0x4, 0xf7}, @nested={0x4, 0x10c}, @nested={0x4, 0x106}, @nested={0x4, 0x23}]}, @nested={0x8, 0x2c, 0x0, 0x1, [@nested={0x4, 0x11}]}, @typed={0xc, 0x36, 0x0, 0x0, @u64=0x7}]}, @MAC802154_HWSIM_ATTR_RADIO_EDGE={0x10, 0x2, 0x0, 0x1, [@typed={0xc, 0x3, 0x0, 0x0, @u64=0xeb7}]}]}, 0x1294}, 0x1, 0x0, 0x0, 0x880}, 0x4) mmap$auto(0x0, 0x40009, 0x129, 0x9b72, 0x7, 0x28000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/fs/ext4/sda1/last_trim_minblks\x00', 0x2400, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000000c0)=""/7, 0x7) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0xf, 0x3, 0x2) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x70) r4 = socket(0x23, 0x1, 0x0) r5 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0) ioctl$auto(r5, 0x5646, r5) read$auto_v4l2_fops_v4l2_dev(r5, &(0x7f0000000280)=""/40, 0x28) socket(0x1e, 0x1, 0x0) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0x9) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x68140, 0x0) ioctl$auto(r6, 0x5457, 0xd8) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0) sendmsg$auto_NL80211_CMD_GET_STATION(r4, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYRES64=r2, @ANYRESHEX=0x0, @ANYRESDEC=r1], 0xc8}, 0x1, 0x0, 0x0, 0x800}, 0x4000811) socket(0x1d, 0x2, 0x3) r7 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0) ioctl$auto_PROCMAP_QUERY(r7, 0xc0686611, 0x0) close_range$auto(0x2, 0x8, 0x0) madvise$auto(0x110c230000, 0x8031ca, 0x9) 1.065604555s ago: executing program 2 (id=2967): mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) read$auto(r0, 0x0, 0x20) r2 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000f40), 0x2100, 0x0) ioctl$auto_BTRFS_IOC_GET_SUPPORTED_FEATURES(0xffffffffffffffff, 0x80489439, &(0x7f0000000f80)=[{0x4, 0x3, 0x8000000000000001}, {0x1, 0x5, 0x4000000002}, {0xa6, 0x1, 0x2}]) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/transparent_hugepage/khugepaged/max_ptes_swap\x00', 0x100042, 0x0) write$auto(r3, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0x4) mmap$auto(0x0, 0x8, 0xfffffffffffffffe, 0xeb2, 0x401, 0x8000) close_range$auto(0x2, r1, 0x40) r4 = io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) fsconfig$auto_SHMEM_HUGE_ALWAYS(r4, 0x56a, &(0x7f00000001c0)='*]-,\x00', &(0x7f0000000200)="7c99fc0e6a0eb31fb80188e4620264f53255bc6282f9bd47a810b41a81c2680960a2aa0e27172f49a2bde1666a81332e1402a25b427f0281e6aed5be20", 0x1) r5 = socket$nl_generic(0x10, 0x3, 0x10) getpeername$auto(0x3, 0x0, 0x0) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000400), r5) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="340000002e036dafcc82ab888fc4b817266bdc6fbc327d00b0e76d62df417bca48b44e9798a82c2cdada9a1808ddaf73c340544376d7f9db4e20de59868f145c45773ce0a7ee0a3500a494fb720f8f7221f8b1d5", @ANYRESOCT=r1, @ANYBLOB="050326bd7000fcdbdf251f000000050004000900000008000200010000000800030004000000050006000e000000"], 0x34}, 0x1, 0x0, 0x0, 0x34044040}, 0x4000044) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv6/conf/wlan0/use_oif_addrs_only\x00', 0x16001, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x4) ioprio_set$auto(0x2, 0x800000000, 0x8) r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/kallsyms\x00', 0x20100, 0x0) pread64$auto(r6, 0x0, 0x8, 0x8000) write$auto(0x3, 0x0, 0xfdef) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/0000:00:00.0/enable\x00', 0x18b042, 0x0) mprotect$auto(0x1ffff000, 0xffffffffffffffff, 0xd) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000b80), r4) sendmsg$auto_NL80211_CMD_GET_WOWLAN(r7, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000340)=ANY=[@ANYBLOB="30ea00009903295bb89faf35c958be238fb504fe98cff44ea4", @ANYRES16=r8, @ANYBLOB="01002bbd7000fedbdf254900000019000d019bfcc642fb8222e81879d39dc6fd94f765ecdeabfd000000"], 0x30}, 0x1, 0x0, 0x0, 0x8000}, 0x0) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$auto_BATADV_CMD_GET_HARDIF(r7, &(0x7f0000000040)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x28}, 0xc, &(0x7f0000000300)={&(0x7f0000000600)=ANY=[@ANYRES64=r2, @ANYRES8=r3, @ANYRESHEX=r7], 0x28}, 0x1, 0x0, 0x0, 0x44000}, 0x4004810) 927.446013ms ago: executing program 0 (id=2968): mmap$auto(0x0, 0x6, 0xdb, 0x9b72, 0x2, 0x8000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) fstat$auto(r0, 0x0) seccomp$auto_SECCOMP_SET_MODE_FILTER(0x1, 0x22, 0x0) socket(0x2b, 0x1, 0x0) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x106) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000200), 0x648002, 0x0) openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/Writeback-1/edid_override\x00', 0x40901, 0x0) read$auto_sco_debugfs_fops_(0xffffffffffffffff, &(0x7f00000000c0)=""/254, 0xfe) socket(0x2, 0x1, 0x106) lseek$auto(0xffffffffffffffff, 0x5, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/memory/block_size_bytes\x00', 0x101040, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000010c0)=""/100, 0x64) getdents$auto(0xffffffffffffffff, &(0x7f00000004c0)={0xfe, 0x7fffffffffffffff, 0x4}, 0x62d4) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9) r3 = getpid() process_vm_readv$auto(r3, &(0x7f0000000040)={0x0, 0xfff}, 0x7f, &(0x7f00000001c0)={&(0x7f0000000140), 0x8}, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000340), r4) sendmsg$auto_TIPC_NL_NET_SET(r4, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f00000004c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01002cbd7010ffdbdf250f0000000c00078008000200620582fe48550c1772e4cb3b96fd2792e6faca0e319d1c32670e2302884d8232d283000012cff5dc1682fa0297116b3631415aebcc7b39bd734e2c85e62efbd76a3e8b76000a55cb19e005d2da6557dd151e", @ANYRES32=0xee00, @ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x2) r6 = setfsuid$auto(0xee00) r7 = setfsuid$auto(0xee01) setresuid$auto(r6, r7, r6) lstat$auto(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)={0x8, 0x7, 0x7fffffffffffffff, 0x6, 0xee01, 0x0, 0x0, 0xbb8b, 0x4, 0xe, 0x30, 0x1, 0x6, 0x5, 0x4, 0x100000000, 0x2}) ioctl$auto_BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000380)={"6dabc43ce6410b9ef46ca67b9082d56986afc494849542ad0b656fd3d653f5c0", 0xb8c, 0x10001, 0x7, 0xffffffff, 0xffffffffffffff60, r3}) 609.305053ms ago: executing program 2 (id=2969): shmctl$auto_IPC_RMID(0x5, 0x0, &(0x7f0000000200)={{0x6, 0x0, 0x0, 0x6, 0x9, 0xf0, 0x1}, 0xbb1, 0x9, 0xa53, 0x3ff, @raw=0x4, @raw=0x5760, 0xfffe, 0x0, &(0x7f0000000000)="12b1e86936717f9a59c2080fb32e676a04", 0x0}) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000002040)={'bond_slave_1\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(r0, &(0x7f0000021740)={0x0, 0x0, &(0x7f0000021700)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1], 0x20}, 0x1, 0x9e, 0x0, 0x40000}, 0x800) 495.002828ms ago: executing program 1 (id=2970): r0 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0x154) mmap$auto(0x1, 0x400008, 0xdf, 0x9b72, r0, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r1) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="2f212cbd7010ca705d845526cc0008000380", @ANYRES32=r3], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x4000000) close_range$auto(0x2, 0x8, 0x0) 424.98563ms ago: executing program 0 (id=2971): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r0 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0) sendmsg$auto_L2TP_CMD_TUNNEL_DELETE(0xffffffffffffffff, 0x0, 0x8000) sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYRESOCT=r0, @ANYRES16, @ANYBLOB="010029040010fba705e0bb4b7a25f921bd"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x40808) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/dummy_hcd.6/usb7/remove\x00', 0x1e5200, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 274.106871ms ago: executing program 2 (id=2972): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffff7fffff0005, 0x8) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) (async) socket(0x2, 0x1, 0x0) (async) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000ac0)='/proc/thread-self/net/sctp/remaddr\x00', 0x8200, 0x0) (async) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000c00)='/dev/video9\x00', 0x20000, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) (async) openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x200000, 0x0) (async) r0 = open(&(0x7f00000000c0)='./cgroup\x00', 0x0, 0xb5d1af1605322df2) (async) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0xb, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/pci0000:00/0000:00:03.0/resource1\x00', 0x0, 0x0) mmap$auto(0xff0f0000, 0x3, 0x1000000000000, 0x8000000008011, 0x3, 0x0) (async) syz_clone3(&(0x7f00000003c0)={0x383201180, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) (async) madvise$auto(0x0, 0x5, 0x15) (async) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x7e5, 0x9, 0x8) (async) write$auto(0x3, 0x0, 0xfffffdef) ioctl$auto(0x3, 0x541b, 0x10000000000402) 211.440559ms ago: executing program 3 (id=2973): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000002b40)={0x54, r1, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@HWSIM_ATTR_RADIO_NAME={0x2d, 0x11, '/P\x13jE\f\xf9r\xf5\xa3\xd2\x84y\xf9*\x9b\"\x1c\xa4l-\x19\xfd\xa4\xf4y\x02\xc2\x96\xfa\x84L\x12\xcd\x83\xf7\x12\xd3\xc4\x1e]'}, @HWSIM_ATTR_PMSR_SUPPORT={0x10, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x387}, @NL80211_PMSR_ATTR_TYPE_CAPA={0x4}]}]}, 0x54}, 0x1, 0x0, 0x600, 0x4008040}, 0x40800) 183.995704ms ago: executing program 1 (id=2974): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram11\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc8}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x1f00) ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0xfff8, 0x3}, 0xb3, &(0x7f0000000180)={0x5, 0x4}, 0x0, 0x8) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0xc, 0xeb1, 0xfffffffffffffffa, 0x8000) rseq$auto(0x0, 0xfffffff4, 0x0, 0x5) semget$auto(0xb, 0xe, 0xe0000) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) getsockopt$auto(r2, 0x84, 0x9, 0x0, &(0x7f0000000000)=0x7ffe) ioctl$auto_VHOST_SET_BACKEND_FEATURES(r1, 0x4008af25, &(0x7f0000000000)=0x7) mmap$auto(0xffffffffffffffff, 0x10000000009, 0x8000, 0xe238, r1, 0x5) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x62040, 0x0) rseq$auto(0x0, 0x6, 0x3, 0xff) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r3 = socket(0x10, 0x2, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)={0x1c, r5, 0x27c9d9d5b13b6c03, 0x70bd25, 0x25dfdbfd, {}, [@HWSIM_ATTR_IFTYPE_SUPPORT={0x8, 0x17, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x404c884}, 0x64004890) recvmmsg$auto(r3, 0x0, 0x5, 0x66a6, 0x0) msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004) 0s ago: executing program 3 (id=2975): r0 = openat$auto_lsm_ops_inode(0xffffffffffffff9c, &(0x7f0000000000), 0x183800, 0x0) read$auto_lsm_ops_inode(r0, 0x0, 0x0) r1 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dri/card0\x00', 0x440, 0x0) ioctl$auto(r1, 0x64d2, 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x400008000) socket(0x2, 0x2, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) inotify_init1$auto(0x3000000000000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000900)='/proc/sys/kernel/pid_max\x00', 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x15, 0x5, 0x0) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/arch_status\x00', 0x100382, 0x0) socket(0x10, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x0) socket(0xa, 0x1, 0x84) inotify_init1$auto(0x3000000000000) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) open(0x0, 0x22240, 0x154) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$auto(0x3, 0x40106f52, r2) kernel console output (not intermixed with test programs): 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 895.345457][T17786] RSP: 002b:00007effb9a680e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 895.345487][T17786] RAX: ffffffffffffffda RBX: 00007effb8de6098 RCX: 00007effb8b8eec9 [ 895.345504][T17786] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007effb8de6098 [ 895.345519][T17786] RBP: 00007effb8de6090 R08: 0000000000000000 R09: 0000000000000000 [ 895.345534][T17786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 895.345554][T17786] R13: 00007effb8de6128 R14: 00007ffd1aa706b0 R15: 00007ffd1aa70798 [ 895.345587][T17786] [ 895.800382][T17794] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2655'. [ 896.486227][T17800] netlink: 'syz.2.2656': attribute type 11 has an invalid length. [ 896.589915][T17800] netlink: 'syz.2.2656': attribute type 11 has an invalid length. [ 897.091689][T17803] vivid-007: ================= START STATUS ================= [ 897.139447][T17803] vivid-007: Generate PTS: true [ 897.190036][T17803] vivid-007: Generate SCR: true [ 897.194966][T17803] tpg source WxH: 320x240 (Y'CbCr) [ 897.240020][T17803] tpg field: 1 [ 897.243448][T17803] tpg crop: (0,0)/320x240 [ 897.289998][T17803] tpg compose: (0,0)/320x240 [ 897.328593][T17803] tpg colorspace: 8 [ 897.371444][T17803] tpg transfer function: 0/0 [ 897.376094][T17803] tpg Y'CbCr encoding: 0/0 [ 897.483373][T17803] tpg quantization: 0/0 [ 897.487577][T17803] tpg RGB range: 0/2 [ 897.560863][T17811] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 897.583383][T17803] vivid-007: ================== END STATUS ================== [ 897.628294][T17811] CPU: 0 UID: 0 PID: 17811 Comm: syz.2.2659 Not tainted syzkaller #0 PREEMPT(full) [ 897.628327][T17811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 897.628341][T17811] Call Trace: [ 897.628350][T17811] [ 897.628359][T17811] dump_stack_lvl+0x16c/0x1f0 [ 897.628392][T17811] sysfs_warn_dup+0x7f/0xa0 [ 897.628423][T17811] sysfs_do_create_link_sd+0x124/0x140 [ 897.628458][T17811] sysfs_create_link+0x61/0xc0 [ 897.628488][T17811] device_add+0x62c/0x1aa0 [ 897.628526][T17811] ? __pfx_device_add+0x10/0x10 [ 897.628555][T17811] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 897.628599][T17811] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 897.628635][T17811] wiphy_register+0x1eb0/0x2b20 [ 897.628668][T17811] ? netdev_run_todo+0x864/0x1320 [ 897.628709][T17811] ? __pfx_wiphy_register+0x10/0x10 [ 897.628759][T17811] ieee80211_register_hw+0x253d/0x4120 [ 897.628805][T17811] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 897.628838][T17811] ? __pfx___debug_object_init+0x10/0x10 [ 897.628867][T17811] ? find_held_lock+0x2b/0x80 [ 897.628893][T17811] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 897.628936][T17811] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 897.628961][T17811] ? __hrtimer_setup+0x176/0x280 [ 897.629002][T17811] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 897.629057][T17811] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 897.629109][T17811] hwsim_new_radio_nl+0xba2/0x1330 [ 897.629148][T17811] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 897.629194][T17811] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 897.629233][T17811] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 897.629283][T17811] genl_family_rcv_msg_doit+0x209/0x2f0 [ 897.629322][T17811] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 897.629370][T17811] ? bpf_lsm_capable+0x9/0x10 [ 897.629402][T17811] ? security_capable+0x7e/0x260 [ 897.629435][T17811] ? ns_capable+0xd7/0x110 [ 897.629464][T17811] genl_rcv_msg+0x55c/0x800 [ 897.629503][T17811] ? __pfx_genl_rcv_msg+0x10/0x10 [ 897.629539][T17811] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 897.629587][T17811] netlink_rcv_skb+0x155/0x420 [ 897.629620][T17811] ? __pfx_genl_rcv_msg+0x10/0x10 [ 897.629656][T17811] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 897.629701][T17811] ? netlink_deliver_tap+0x1ae/0xd30 [ 897.629735][T17811] genl_rcv+0x28/0x40 [ 897.629766][T17811] netlink_unicast+0x5aa/0x870 [ 897.629801][T17811] ? __pfx_netlink_unicast+0x10/0x10 [ 897.629831][T17811] ? __pfx___might_resched+0x10/0x10 [ 897.629856][T17811] ? __lock_acquire+0xb97/0x1ce0 [ 897.629898][T17811] netlink_sendmsg+0x8c8/0xdd0 [ 897.629934][T17811] ? __pfx_netlink_sendmsg+0x10/0x10 [ 897.629969][T17811] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 897.630008][T17811] ____sys_sendmsg+0xa98/0xc70 [ 897.630045][T17811] ? copy_msghdr_from_user+0x10a/0x160 [ 897.630073][T17811] ? __pfx_____sys_sendmsg+0x10/0x10 [ 897.630117][T17811] ? __pfx_futex_wake_mark+0x10/0x10 [ 897.630161][T17811] ___sys_sendmsg+0x134/0x1d0 [ 897.630191][T17811] ? __pfx____sys_sendmsg+0x10/0x10 [ 897.630261][T17811] __sys_sendmsg+0x16d/0x220 [ 897.630296][T17811] ? __pfx___sys_sendmsg+0x10/0x10 [ 897.630324][T17811] ? __x64_sys_futex+0x1e0/0x4c0 [ 897.630378][T17811] do_syscall_64+0xcd/0xfa0 [ 897.630410][T17811] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 897.630435][T17811] RIP: 0033:0x7f4c7cb8eec9 [ 897.630455][T17811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 897.630479][T17811] RSP: 002b:00007f4c7d9bf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 897.630501][T17811] RAX: ffffffffffffffda RBX: 00007f4c7cde5fa0 RCX: 00007f4c7cb8eec9 [ 897.630518][T17811] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003 [ 897.630534][T17811] RBP: 00007f4c7cc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 897.630548][T17811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 897.630563][T17811] R13: 00007f4c7cde6038 R14: 00007f4c7cde5fa0 R15: 00007ffc0ec25638 [ 897.630596][T17811] [ 898.177978][T17812] can: request_module (can-proto-3) failed. [ 898.520646][T17814] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2660'. [ 898.871134][T17825] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 898.921868][T17825] CPU: 0 UID: 0 PID: 17825 Comm: syz.0.2662 Not tainted syzkaller #0 PREEMPT(full) [ 898.921902][T17825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 898.921917][T17825] Call Trace: [ 898.921925][T17825] [ 898.921934][T17825] dump_stack_lvl+0x16c/0x1f0 [ 898.921969][T17825] sysfs_warn_dup+0x7f/0xa0 [ 898.922000][T17825] sysfs_do_create_link_sd+0x124/0x140 [ 898.922034][T17825] sysfs_create_link+0x61/0xc0 [ 898.922065][T17825] device_add+0x62c/0x1aa0 [ 898.922100][T17825] ? __pfx_device_add+0x10/0x10 [ 898.922140][T17825] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 898.922184][T17825] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 898.922220][T17825] wiphy_register+0x1eb0/0x2b20 [ 898.922253][T17825] ? netdev_run_todo+0x864/0x1320 [ 898.922294][T17825] ? __pfx_wiphy_register+0x10/0x10 [ 898.922345][T17825] ieee80211_register_hw+0x253d/0x4120 [ 898.922390][T17825] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 898.922423][T17825] ? __pfx___debug_object_init+0x10/0x10 [ 898.922452][T17825] ? find_held_lock+0x2b/0x80 [ 898.922478][T17825] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 898.922520][T17825] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 898.922545][T17825] ? __hrtimer_setup+0x176/0x280 [ 898.922591][T17825] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 898.922647][T17825] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 898.922692][T17825] hwsim_new_radio_nl+0xba2/0x1330 [ 898.922731][T17825] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 898.922777][T17825] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 898.922815][T17825] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 898.922860][T17825] genl_family_rcv_msg_doit+0x209/0x2f0 [ 898.922899][T17825] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 898.922946][T17825] ? bpf_lsm_capable+0x9/0x10 [ 898.922977][T17825] ? security_capable+0x7e/0x260 [ 898.923011][T17825] ? ns_capable+0xd7/0x110 [ 898.923039][T17825] genl_rcv_msg+0x55c/0x800 [ 898.923079][T17825] ? __pfx_genl_rcv_msg+0x10/0x10 [ 898.923120][T17825] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 898.923168][T17825] netlink_rcv_skb+0x155/0x420 [ 898.923198][T17825] ? __pfx_genl_rcv_msg+0x10/0x10 [ 898.923235][T17825] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 898.923280][T17825] ? netlink_deliver_tap+0x1ae/0xd30 [ 898.923314][T17825] genl_rcv+0x28/0x40 [ 898.923345][T17825] netlink_unicast+0x5aa/0x870 [ 898.923381][T17825] ? __pfx_netlink_unicast+0x10/0x10 [ 898.923411][T17825] ? __pfx___might_resched+0x10/0x10 [ 898.923437][T17825] ? __lock_acquire+0xb97/0x1ce0 [ 898.923482][T17825] netlink_sendmsg+0x8c8/0xdd0 [ 898.923522][T17825] ? __pfx_netlink_sendmsg+0x10/0x10 [ 898.923560][T17825] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 898.923599][T17825] ____sys_sendmsg+0xa98/0xc70 [ 898.923637][T17825] ? copy_msghdr_from_user+0x10a/0x160 [ 898.923666][T17825] ? __pfx_____sys_sendmsg+0x10/0x10 [ 898.923710][T17825] ? __pfx_futex_wake_mark+0x10/0x10 [ 898.923756][T17825] ___sys_sendmsg+0x134/0x1d0 [ 898.923787][T17825] ? __pfx____sys_sendmsg+0x10/0x10 [ 898.923856][T17825] __sys_sendmsg+0x16d/0x220 [ 898.923886][T17825] ? __pfx___sys_sendmsg+0x10/0x10 [ 898.923914][T17825] ? __x64_sys_futex+0x1e0/0x4c0 [ 898.923968][T17825] do_syscall_64+0xcd/0xfa0 [ 898.923999][T17825] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 898.924023][T17825] RIP: 0033:0x7ff14938eec9 [ 898.924043][T17825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 898.924068][T17825] RSP: 002b:00007ff14a17f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 898.924091][T17825] RAX: ffffffffffffffda RBX: 00007ff1495e5fa0 RCX: 00007ff14938eec9 [ 898.924113][T17825] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003 [ 898.924128][T17825] RBP: 00007ff149411f91 R08: 0000000000000000 R09: 0000000000000000 [ 898.924143][T17825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 898.924158][T17825] R13: 00007ff1495e6038 R14: 00007ff1495e5fa0 R15: 00007ffe87cf59f8 [ 898.924192][T17825] [ 899.426824][T17828] FAULT_INJECTION: forcing a failure. [ 899.426824][T17828] name failslab, interval 1, probability 0, space 0, times 0 [ 899.439987][T17828] CPU: 0 UID: 0 PID: 17828 Comm: syz.1.2663 Not tainted syzkaller #0 PREEMPT(full) [ 899.440018][T17828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 899.440034][T17828] Call Trace: [ 899.440042][T17828] [ 899.440051][T17828] dump_stack_lvl+0x16c/0x1f0 [ 899.440101][T17828] should_fail_ex+0x512/0x640 [ 899.440131][T17828] ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0 [ 899.440166][T17828] should_failslab+0xc2/0x120 [ 899.440199][T17828] __kmalloc_node_track_caller_noprof+0xde/0x8a0 [ 899.440230][T17828] ? devinet_init_net+0xc3/0x910 [ 899.440273][T17828] ? kmemdup_noprof+0x29/0x60 [ 899.440296][T17828] kmemdup_noprof+0x29/0x60 [ 899.440321][T17828] devinet_init_net+0xc3/0x910 [ 899.440359][T17828] ? __pfx_devinet_init_net+0x10/0x10 [ 899.440396][T17828] ops_init+0x1df/0x5f0 [ 899.440429][T17828] setup_net+0x100/0x390 [ 899.440459][T17828] ? __pfx_setup_net+0x10/0x10 [ 899.440491][T17828] ? debug_mutex_init+0x37/0x70 [ 899.440520][T17828] copy_net_ns+0x2f8/0x690 [ 899.440556][T17828] create_new_namespaces+0x3ea/0xa90 [ 899.440592][T17828] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 899.440623][T17828] ksys_unshare+0x45b/0xa40 [ 899.440656][T17828] ? __pfx_ksys_unshare+0x10/0x10 [ 899.440690][T17828] ? xfd_validate_state+0x61/0x180 [ 899.440734][T17828] __x64_sys_unshare+0x31/0x40 [ 899.440766][T17828] do_syscall_64+0xcd/0xfa0 [ 899.440797][T17828] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 899.440821][T17828] RIP: 0033:0x7f0d72d8eec9 [ 899.440841][T17828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 899.440864][T17828] RSP: 002b:00007f0d73bb8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 899.440886][T17828] RAX: ffffffffffffffda RBX: 00007f0d72fe5fa0 RCX: 00007f0d72d8eec9 [ 899.440902][T17828] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 899.440917][T17828] RBP: 00007f0d72e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 899.440932][T17828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 899.440947][T17828] R13: 00007f0d72fe6038 R14: 00007f0d72fe5fa0 R15: 00007ffc2bc306d8 [ 899.440980][T17828] [ 899.691641][T17837] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2666'. [ 899.786036][T17840] FAULT_INJECTION: forcing a failure. [ 899.786036][T17840] name fail_futex, interval 1, probability 0, space 0, times 0 [ 899.798945][T17840] CPU: 0 UID: 0 PID: 17840 Comm: syz.0.2665 Not tainted syzkaller #0 PREEMPT(full) [ 899.798982][T17840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 899.798998][T17840] Call Trace: [ 899.799007][T17840] [ 899.799017][T17840] dump_stack_lvl+0x16c/0x1f0 [ 899.799050][T17840] should_fail_ex+0x512/0x640 [ 899.799090][T17840] get_futex_key+0x1d0/0x1560 [ 899.799126][T17840] ? __pfx_get_futex_key+0x10/0x10 [ 899.799161][T17840] ? __pick_eevdf+0x30a/0x670 [ 899.799196][T17840] futex_wait_setup+0x9d/0x550 [ 899.799244][T17840] __futex_wait+0x193/0x2f0 [ 899.799284][T17840] ? __pfx___futex_wait+0x10/0x10 [ 899.799321][T17840] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 899.799346][T17840] ? lockdep_hardirqs_on+0x7c/0x110 [ 899.799377][T17840] ? __pfx_futex_wake_mark+0x10/0x10 [ 899.799421][T17840] ? futex_private_hash_put+0x176/0x300 [ 899.799456][T17840] ? futex_private_hash_put+0x18a/0x300 [ 899.799489][T17840] futex_wait+0xe8/0x380 [ 899.799528][T17840] ? __pfx_futex_wait+0x10/0x10 [ 899.799584][T17840] do_futex+0x229/0x350 [ 899.799618][T17840] ? __pfx_do_futex+0x10/0x10 [ 899.799650][T17840] ? __fput+0x68d/0xb70 [ 899.799683][T17840] ? __pfx___might_resched+0x10/0x10 [ 899.799712][T17840] __x64_sys_futex+0x1e0/0x4c0 [ 899.799746][T17840] ? __pfx_blkcg_maybe_throttle_current+0x10/0x10 [ 899.799774][T17840] ? __pfx___x64_sys_futex+0x10/0x10 [ 899.799808][T17840] ? __pfx___do_sys_close_range+0x10/0x10 [ 899.799845][T17840] do_syscall_64+0xcd/0xfa0 [ 899.799875][T17840] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 899.799900][T17840] RIP: 0033:0x7ff14938eec9 [ 899.799919][T17840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 899.799943][T17840] RSP: 002b:00007ff14a15e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 899.799971][T17840] RAX: ffffffffffffffda RBX: 00007ff1495e6098 RCX: 00007ff14938eec9 [ 899.799988][T17840] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007ff1495e6098 [ 899.800003][T17840] RBP: 00007ff1495e6090 R08: 0000000000000000 R09: 0000000000000000 [ 899.800018][T17840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 899.800033][T17840] R13: 00007ff1495e6128 R14: 00007ffe87cf5910 R15: 00007ffe87cf59f8 [ 899.800065][T17840] [ 901.059675][T17848] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 901.228025][T17848] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 901.326777][T17873] debugfs: '!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' already exists in 'ieee80211' [ 901.376512][T17848] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 901.485274][T17848] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 901.734240][T17879] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 901.767417][T17879] CPU: 0 UID: 0 PID: 17879 Comm: syz.3.2675 Not tainted syzkaller #0 PREEMPT(full) [ 901.767450][T17879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 901.767466][T17879] Call Trace: [ 901.767474][T17879] [ 901.767484][T17879] dump_stack_lvl+0x16c/0x1f0 [ 901.767517][T17879] sysfs_warn_dup+0x7f/0xa0 [ 901.767547][T17879] sysfs_do_create_link_sd+0x124/0x140 [ 901.767581][T17879] sysfs_create_link+0x61/0xc0 [ 901.767615][T17879] device_add+0x62c/0x1aa0 [ 901.767650][T17879] ? __pfx_device_add+0x10/0x10 [ 901.767679][T17879] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 901.767724][T17879] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 901.767759][T17879] wiphy_register+0x1eb0/0x2b20 [ 901.767793][T17879] ? netdev_run_todo+0x864/0x1320 [ 901.767839][T17879] ? __pfx_wiphy_register+0x10/0x10 [ 901.767889][T17879] ieee80211_register_hw+0x253d/0x4120 [ 901.767935][T17879] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 901.767968][T17879] ? __pfx___debug_object_init+0x10/0x10 [ 901.767998][T17879] ? find_held_lock+0x2b/0x80 [ 901.768024][T17879] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 901.768066][T17879] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 901.768093][T17879] ? __hrtimer_setup+0x176/0x280 [ 901.768135][T17879] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 901.768190][T17879] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 901.768237][T17879] hwsim_new_radio_nl+0xba2/0x1330 [ 901.768275][T17879] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 901.768321][T17879] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 901.768359][T17879] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 901.768404][T17879] genl_family_rcv_msg_doit+0x209/0x2f0 [ 901.768442][T17879] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 901.768489][T17879] ? bpf_lsm_capable+0x9/0x10 [ 901.768521][T17879] ? security_capable+0x7e/0x260 [ 901.768554][T17879] ? ns_capable+0xd7/0x110 [ 901.768583][T17879] genl_rcv_msg+0x55c/0x800 [ 901.768622][T17879] ? __pfx_genl_rcv_msg+0x10/0x10 [ 901.768658][T17879] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 901.768705][T17879] netlink_rcv_skb+0x155/0x420 [ 901.768736][T17879] ? __pfx_genl_rcv_msg+0x10/0x10 [ 901.768772][T17879] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 901.768824][T17879] ? netlink_deliver_tap+0x1ae/0xd30 [ 901.768858][T17879] genl_rcv+0x28/0x40 [ 901.768888][T17879] netlink_unicast+0x5aa/0x870 [ 901.768924][T17879] ? __pfx_netlink_unicast+0x10/0x10 [ 901.768955][T17879] ? __pfx___might_resched+0x10/0x10 [ 901.768981][T17879] ? __lock_acquire+0xb97/0x1ce0 [ 901.769023][T17879] netlink_sendmsg+0x8c8/0xdd0 [ 901.769059][T17879] ? __pfx_netlink_sendmsg+0x10/0x10 [ 901.769095][T17879] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 901.769135][T17879] ____sys_sendmsg+0xa98/0xc70 [ 901.769172][T17879] ? copy_msghdr_from_user+0x10a/0x160 [ 901.769201][T17879] ? __pfx_____sys_sendmsg+0x10/0x10 [ 901.769245][T17879] ? __pfx_futex_wake_mark+0x10/0x10 [ 901.769289][T17879] ___sys_sendmsg+0x134/0x1d0 [ 901.769320][T17879] ? __pfx____sys_sendmsg+0x10/0x10 [ 901.769390][T17879] __sys_sendmsg+0x16d/0x220 [ 901.769419][T17879] ? __pfx___sys_sendmsg+0x10/0x10 [ 901.769447][T17879] ? __x64_sys_futex+0x1e0/0x4c0 [ 901.769501][T17879] do_syscall_64+0xcd/0xfa0 [ 901.769532][T17879] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 901.769558][T17879] RIP: 0033:0x7effb8b8eec9 [ 901.769578][T17879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 901.769603][T17879] RSP: 002b:00007effb9a89038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 901.769626][T17879] RAX: ffffffffffffffda RBX: 00007effb8de5fa0 RCX: 00007effb8b8eec9 [ 901.769642][T17879] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003 [ 901.769657][T17879] RBP: 00007effb8c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 901.769673][T17879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 901.769688][T17879] R13: 00007effb8de6038 R14: 00007effb8de5fa0 R15: 00007ffd1aa70798 [ 901.769722][T17879] [ 902.710326][ T5838] Bluetooth: hci0: command 0x0c1a tx timeout [ 902.790697][T17848] Bluetooth: hci3: Opcode 0x0406 failed: -4 syzkaller syzkaller login: [ 903.090194][T17848] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 903.096457][T17848] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 903.259591][T17848] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 903.319573][T17848] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 903.409821][T17848] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 903.429742][ T5838] Bluetooth: hci3: command 0x0c1a tx timeout [ 903.567571][T17893] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2679'. [ 903.577740][T17848] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 903.785689][T17856] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR [ 903.892292][T17898] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 904.386034][T17909] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2691'. [ 904.411211][T17910] vivid-007: ================= START STATUS ================= [ 904.429630][T17910] vivid-007: Generate PTS: true [ 904.434545][T17910] vivid-007: Generate SCR: true [ 904.464968][T17912] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 904.500856][T17910] tpg source WxH: 320x240 (Y'CbCr) [ 904.506014][T17910] tpg field: 1 [ 904.519685][T17912] CPU: 0 UID: 0 PID: 17912 Comm: syz.3.2683 Not tainted syzkaller #0 PREEMPT(full) [ 904.519716][T17912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 904.519730][T17912] Call Trace: [ 904.519738][T17912] [ 904.519748][T17912] dump_stack_lvl+0x16c/0x1f0 [ 904.519781][T17912] sysfs_warn_dup+0x7f/0xa0 [ 904.519811][T17912] sysfs_do_create_link_sd+0x124/0x140 [ 904.519844][T17912] sysfs_create_link+0x61/0xc0 [ 904.519874][T17912] device_add+0x62c/0x1aa0 [ 904.519909][T17912] ? __pfx_device_add+0x10/0x10 [ 904.519938][T17912] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 904.519981][T17912] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 904.520016][T17912] wiphy_register+0x1eb0/0x2b20 [ 904.520049][T17912] ? netdev_run_todo+0x864/0x1320 [ 904.520089][T17912] ? __pfx_wiphy_register+0x10/0x10 [ 904.520139][T17912] ieee80211_register_hw+0x253d/0x4120 [ 904.520184][T17912] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 904.520218][T17912] ? __pfx___debug_object_init+0x10/0x10 [ 904.520248][T17912] ? find_held_lock+0x2b/0x80 [ 904.520274][T17912] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 904.520316][T17912] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 904.520342][T17912] ? __hrtimer_setup+0x176/0x280 [ 904.520383][T17912] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 904.520445][T17912] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 904.520492][T17912] hwsim_new_radio_nl+0xba2/0x1330 [ 904.520531][T17912] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 904.520578][T17912] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 904.520616][T17912] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 904.520661][T17912] genl_family_rcv_msg_doit+0x209/0x2f0 [ 904.520700][T17912] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 904.520750][T17912] ? bpf_lsm_capable+0x9/0x10 [ 904.520782][T17912] ? security_capable+0x7e/0x260 [ 904.520815][T17912] ? ns_capable+0xd7/0x110 [ 904.520845][T17912] genl_rcv_msg+0x55c/0x800 [ 904.520884][T17912] ? __pfx_genl_rcv_msg+0x10/0x10 [ 904.520920][T17912] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 904.520967][T17912] netlink_rcv_skb+0x155/0x420 [ 904.520998][T17912] ? __pfx_genl_rcv_msg+0x10/0x10 [ 904.521035][T17912] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 904.521086][T17912] ? netlink_deliver_tap+0x1ae/0xd30 [ 904.521120][T17912] genl_rcv+0x28/0x40 [ 904.521150][T17912] netlink_unicast+0x5aa/0x870 [ 904.521190][T17912] ? __pfx_netlink_unicast+0x10/0x10 [ 904.521221][T17912] ? __pfx___might_resched+0x10/0x10 [ 904.521246][T17912] ? __lock_acquire+0xb97/0x1ce0 [ 904.521288][T17912] netlink_sendmsg+0x8c8/0xdd0 [ 904.521325][T17912] ? __pfx_netlink_sendmsg+0x10/0x10 [ 904.521361][T17912] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 904.521402][T17912] ____sys_sendmsg+0xa98/0xc70 [ 904.521443][T17912] ? copy_msghdr_from_user+0x10a/0x160 [ 904.521476][T17912] ? __pfx_____sys_sendmsg+0x10/0x10 [ 904.521520][T17912] ? __pfx_futex_wake_mark+0x10/0x10 [ 904.521565][T17912] ___sys_sendmsg+0x134/0x1d0 [ 904.521597][T17912] ? __pfx____sys_sendmsg+0x10/0x10 [ 904.521668][T17912] __sys_sendmsg+0x16d/0x220 [ 904.521697][T17912] ? __pfx___sys_sendmsg+0x10/0x10 [ 904.521725][T17912] ? __x64_sys_futex+0x1e0/0x4c0 [ 904.521779][T17912] do_syscall_64+0xcd/0xfa0 [ 904.521810][T17912] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 904.521834][T17912] RIP: 0033:0x7effb8b8eec9 [ 904.521854][T17912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 904.521878][T17912] RSP: 002b:00007effb9a89038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 904.521901][T17912] RAX: ffffffffffffffda RBX: 00007effb8de5fa0 RCX: 00007effb8b8eec9 [ 904.521918][T17912] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003 [ 904.521934][T17912] RBP: 00007effb8c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 904.521949][T17912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 904.521963][T17912] R13: 00007effb8de6038 R14: 00007effb8de5fa0 R15: 00007ffd1aa70798 [ 904.521997][T17912] [ 905.192319][T17910] tpg crop: (0,0)/320x240 [ 905.198520][T17910] tpg compose: (0,0)/320x240 [ 905.203251][T17910] tpg colorspace: 8 [ 905.207064][T17910] tpg transfer function: 0/0 [ 905.211685][T17910] tpg Y'CbCr encoding: 0/0 [ 905.216155][T17910] tpg quantization: 0/0 [ 905.220357][T17910] tpg RGB range: 0/2 [ 905.224259][T17910] vivid-007: ================== END STATUS ================== [ 905.386849][ T5838] Bluetooth: hci0: command 0x0c1a tx timeout [ 905.399265][ T5838] Bluetooth: hci2: command 0x0c1a tx timeout [ 905.407002][ T5838] Bluetooth: hci4: command 0x0c1a tx timeout [ 905.517677][T17924] ceph: Failed to parse sending metrics switch value 'P^' [ 905.591178][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout [ 905.687175][T17918] can: request_module (can-proto-3) failed. [ 906.689696][T17953] random: crng reseeded on system resumption [ 906.949424][T17961] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2696'. [ 907.251565][T17965] ERROR: Out of memory at tomoyo_memory_ok. [ 907.429560][ T5834] Bluetooth: hci4: command 0x0c1a tx timeout [ 907.435748][ T5838] Bluetooth: hci2: command 0x0c1a tx timeout [ 907.475143][T17969] ERROR: Out of memory at tomoyo_memory_ok. [ 907.670801][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout [ 909.179736][T18004] ceph: Failed to parse sending metrics switch value 'P^' [ 909.203334][T18008] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2708'. [ 909.510669][ T5838] Bluetooth: hci2: command 0x0c1a tx timeout [ 909.516778][ T5834] Bluetooth: hci4: command 0x0c1a tx timeout [ 909.527685][T18012] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 909.562350][T18011] vivid-007: ================= START STATUS ================= [ 909.585412][T18011] vivid-007: Generate PTS: true [ 909.608921][T18012] CPU: 0 UID: 0 PID: 18012 Comm: syz.2.2709 Not tainted syzkaller #0 PREEMPT(full) [ 909.608954][T18012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 909.608969][T18012] Call Trace: [ 909.608977][T18012] [ 909.608987][T18012] dump_stack_lvl+0x16c/0x1f0 [ 909.609020][T18012] sysfs_warn_dup+0x7f/0xa0 [ 909.609052][T18012] sysfs_do_create_link_sd+0x124/0x140 [ 909.609090][T18012] sysfs_create_link+0x61/0xc0 [ 909.609122][T18012] device_add+0x62c/0x1aa0 [ 909.609157][T18012] ? __pfx_device_add+0x10/0x10 [ 909.609186][T18012] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 909.609229][T18012] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 909.609265][T18012] wiphy_register+0x1eb0/0x2b20 [ 909.609298][T18012] ? netdev_run_todo+0x864/0x1320 [ 909.609346][T18012] ? __pfx_wiphy_register+0x10/0x10 [ 909.609396][T18012] ieee80211_register_hw+0x253d/0x4120 [ 909.609442][T18012] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 909.609476][T18012] ? __pfx___debug_object_init+0x10/0x10 [ 909.609505][T18012] ? find_held_lock+0x2b/0x80 [ 909.609531][T18012] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 909.609573][T18012] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 909.609599][T18012] ? __hrtimer_setup+0x176/0x280 [ 909.609640][T18012] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 909.609695][T18012] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 909.609741][T18012] hwsim_new_radio_nl+0xba2/0x1330 [ 909.609780][T18012] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 909.609826][T18012] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 909.609871][T18012] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 909.609916][T18012] genl_family_rcv_msg_doit+0x209/0x2f0 [ 909.609954][T18012] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 909.610003][T18012] ? bpf_lsm_capable+0x9/0x10 [ 909.610034][T18012] ? security_capable+0x7e/0x260 [ 909.610067][T18012] ? ns_capable+0xd7/0x110 [ 909.610097][T18012] genl_rcv_msg+0x55c/0x800 [ 909.610137][T18012] ? __pfx_genl_rcv_msg+0x10/0x10 [ 909.610173][T18012] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 909.610220][T18012] netlink_rcv_skb+0x155/0x420 [ 909.610251][T18012] ? __pfx_genl_rcv_msg+0x10/0x10 [ 909.610287][T18012] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 909.610332][T18012] ? netlink_deliver_tap+0x1ae/0xd30 [ 909.610366][T18012] genl_rcv+0x28/0x40 [ 909.610396][T18012] netlink_unicast+0x5aa/0x870 [ 909.610432][T18012] ? __pfx_netlink_unicast+0x10/0x10 [ 909.610462][T18012] ? __pfx___might_resched+0x10/0x10 [ 909.610488][T18012] ? __lock_acquire+0xb97/0x1ce0 [ 909.610530][T18012] netlink_sendmsg+0x8c8/0xdd0 [ 909.610567][T18012] ? __pfx_netlink_sendmsg+0x10/0x10 [ 909.610602][T18012] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 909.610642][T18012] ____sys_sendmsg+0xa98/0xc70 [ 909.610679][T18012] ? copy_msghdr_from_user+0x10a/0x160 [ 909.610708][T18012] ? __pfx_____sys_sendmsg+0x10/0x10 [ 909.610752][T18012] ? __pfx_futex_wake_mark+0x10/0x10 [ 909.610796][T18012] ___sys_sendmsg+0x134/0x1d0 [ 909.610828][T18012] ? __pfx____sys_sendmsg+0x10/0x10 [ 909.610907][T18012] __sys_sendmsg+0x16d/0x220 [ 909.610942][T18012] ? __pfx___sys_sendmsg+0x10/0x10 [ 909.610970][T18012] ? __x64_sys_futex+0x1e0/0x4c0 [ 909.611024][T18012] do_syscall_64+0xcd/0xfa0 [ 909.611056][T18012] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 909.611080][T18012] RIP: 0033:0x7f4c7cb8eec9 [ 909.611101][T18012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 909.611132][T18012] RSP: 002b:00007f4c7d9bf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 909.611161][T18012] RAX: ffffffffffffffda RBX: 00007f4c7cde5fa0 RCX: 00007f4c7cb8eec9 [ 909.611181][T18012] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003 [ 909.611200][T18012] RBP: 00007f4c7cc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 909.611218][T18012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 909.611245][T18012] R13: 00007f4c7cde6038 R14: 00007f4c7cde5fa0 R15: 00007ffc0ec25638 [ 909.611287][T18012] [ 910.412168][T18011] vivid-007: Generate SCR: true [ 910.418921][T18011] tpg source WxH: 320x240 (Y'CbCr) [ 910.442823][T18011] tpg field: 1 [ 910.446240][T18011] tpg crop: (0,0)/320x240 [ 910.459193][T18011] tpg compose: (0,0)/320x240 [ 910.470436][T18011] tpg colorspace: 8 [ 910.479283][T18011] tpg transfer function: 0/0 [ 910.489182][T18011] tpg Y'CbCr encoding: 0/0 [ 910.493716][T18011] tpg quantization: 0/0 [ 910.508070][T18011] tpg RGB range: 0/2 [ 910.512032][T18011] vivid-007: ================== END STATUS ================== [ 910.941816][T18022] FAULT_INJECTION: forcing a failure. [ 910.941816][T18022] name failslab, interval 1, probability 0, space 0, times 0 [ 910.956811][T18011] can: request_module (can-proto-3) failed. [ 910.989199][T18022] CPU: 0 UID: 0 PID: 18022 Comm: syz.1.2711 Not tainted syzkaller #0 PREEMPT(full) [ 910.989233][T18022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 910.989248][T18022] Call Trace: [ 910.989257][T18022] [ 910.989266][T18022] dump_stack_lvl+0x16c/0x1f0 [ 910.989298][T18022] should_fail_ex+0x512/0x640 [ 910.989328][T18022] ? __kmalloc_cache_noprof+0x5f/0x780 [ 910.989371][T18022] should_failslab+0xc2/0x120 [ 910.989404][T18022] __kmalloc_cache_noprof+0x72/0x780 [ 910.989443][T18022] ? __lock_acquire+0x62e/0x1ce0 [ 910.989481][T18022] ? newseg+0x25a/0xe60 [ 910.989509][T18022] ? newseg+0x25a/0xe60 [ 910.989529][T18022] ? __pfx___might_resched+0x10/0x10 [ 910.989555][T18022] newseg+0x25a/0xe60 [ 910.989583][T18022] ? __pfx_newseg+0x10/0x10 [ 910.989604][T18022] ? find_held_lock+0x2b/0x80 [ 910.989629][T18022] ? ipcget+0xa98/0xfa0 [ 910.989659][T18022] ipcget+0xaf0/0xfa0 [ 910.989692][T18022] ? __pfx___might_resched+0x10/0x10 [ 910.989717][T18022] ? __pfx_ipcget+0x10/0x10 [ 910.989743][T18022] ? __x64_sys_futex+0x1e0/0x4c0 [ 910.989781][T18022] ? __x64_sys_futex+0x1e9/0x4c0 [ 910.989820][T18022] __x64_sys_shmget+0x13b/0x1b0 [ 910.989846][T18022] ? __pfx___x64_sys_shmget+0x10/0x10 [ 910.989876][T18022] ? rcu_is_watching+0x12/0xc0 [ 910.989905][T18022] do_syscall_64+0xcd/0xfa0 [ 910.989935][T18022] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 910.989960][T18022] RIP: 0033:0x7f0d72d8eec9 [ 910.989980][T18022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 910.990004][T18022] RSP: 002b:00007f0d73b97038 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 910.990027][T18022] RAX: ffffffffffffffda RBX: 00007f0d72fe6090 RCX: 00007f0d72d8eec9 [ 910.990044][T18022] RDX: 000000000000ffff RSI: 0000000000000006 RDI: 0000000000000004 [ 910.990058][T18022] RBP: 00007f0d72e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 910.990073][T18022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 910.990088][T18022] R13: 00007f0d72fe6128 R14: 00007f0d72fe6090 R15: 00007ffc2bc306d8 [ 910.990120][T18022] [ 911.504694][T18026] ptm ptm33: ldisc open failed (-12), clearing slot 33 [ 912.643238][T18047] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2719'. [ 913.898126][T18066] vivid-007: ================= START STATUS ================= [ 913.960845][T18066] vivid-007: Generate PTS: true [ 913.965758][T18066] vivid-007: Generate SCR: true [ 914.036812][T18066] tpg source WxH: 320x240 (Y'CbCr) [ 914.073079][T18066] tpg field: 1 [ 914.146441][T18066] tpg crop: (0,0)/320x240 [ 914.181955][T18066] tpg compose: (0,0)/320x240 [ 914.205546][T18066] tpg colorspace: 8 [ 914.317536][T18066] tpg transfer function: 0/0 [ 914.378596][T18066] tpg Y'CbCr encoding: 0/0 [ 914.416561][T18066] tpg quantization: 0/0 [ 914.496252][T18066] tpg RGB range: 0/2 [ 914.581555][T18078] can: request_module (can-proto-3) failed. [ 914.605014][T18066] vivid-007: ================== END STATUS ================== [ 915.266731][ T5834] Bluetooth: hci0: unexpected event 0x02 length: 726 > 260 [ 916.749793][T18119] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 916.802250][T18119] CPU: 0 UID: 0 PID: 18119 Comm: syz.3.2732 Not tainted syzkaller #0 PREEMPT(full) [ 916.802284][T18119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 916.802299][T18119] Call Trace: [ 916.802308][T18119] [ 916.802319][T18119] dump_stack_lvl+0x16c/0x1f0 [ 916.802524][T18119] sysfs_warn_dup+0x7f/0xa0 [ 916.802555][T18119] sysfs_do_create_link_sd+0x124/0x140 [ 916.802589][T18119] sysfs_create_link+0x61/0xc0 [ 916.802620][T18119] device_add+0x62c/0x1aa0 [ 916.802655][T18119] ? __pfx_device_add+0x10/0x10 [ 916.802684][T18119] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 916.802728][T18119] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 916.802763][T18119] wiphy_register+0x1eb0/0x2b20 [ 916.802795][T18119] ? netdev_run_todo+0x864/0x1320 [ 916.802836][T18119] ? __pfx_wiphy_register+0x10/0x10 [ 916.802886][T18119] ieee80211_register_hw+0x253d/0x4120 [ 916.802932][T18119] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 916.802965][T18119] ? __pfx___debug_object_init+0x10/0x10 [ 916.802995][T18119] ? find_held_lock+0x2b/0x80 [ 916.803021][T18119] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 916.803063][T18119] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 916.803099][T18119] ? __hrtimer_setup+0x176/0x280 [ 916.803140][T18119] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 916.803196][T18119] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 916.803243][T18119] hwsim_new_radio_nl+0xba2/0x1330 [ 916.803286][T18119] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 916.803332][T18119] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 916.803371][T18119] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 916.803415][T18119] genl_family_rcv_msg_doit+0x209/0x2f0 [ 916.803454][T18119] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 916.803501][T18119] ? bpf_lsm_capable+0x9/0x10 [ 916.803533][T18119] ? security_capable+0x7e/0x260 [ 916.803566][T18119] ? ns_capable+0xd7/0x110 [ 916.803595][T18119] genl_rcv_msg+0x55c/0x800 [ 916.803634][T18119] ? __pfx_genl_rcv_msg+0x10/0x10 [ 916.803670][T18119] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 916.803718][T18119] netlink_rcv_skb+0x155/0x420 [ 916.803749][T18119] ? __pfx_genl_rcv_msg+0x10/0x10 [ 916.803786][T18119] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 916.803831][T18119] ? netlink_deliver_tap+0x1ae/0xd30 [ 916.803876][T18119] genl_rcv+0x28/0x40 [ 916.803906][T18119] netlink_unicast+0x5aa/0x870 [ 916.803940][T18119] ? __pfx_netlink_unicast+0x10/0x10 [ 916.803988][T18119] ? __pfx___might_resched+0x10/0x10 [ 916.804013][T18119] ? __lock_acquire+0xb97/0x1ce0 [ 916.804055][T18119] netlink_sendmsg+0x8c8/0xdd0 [ 916.804097][T18119] ? __pfx_netlink_sendmsg+0x10/0x10 [ 916.804133][T18119] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 916.804174][T18119] ____sys_sendmsg+0xa98/0xc70 [ 916.804211][T18119] ? copy_msghdr_from_user+0x10a/0x160 [ 916.804240][T18119] ? __pfx_____sys_sendmsg+0x10/0x10 [ 916.804284][T18119] ? __pfx_futex_wake_mark+0x10/0x10 [ 916.804328][T18119] ___sys_sendmsg+0x134/0x1d0 [ 916.804359][T18119] ? __pfx____sys_sendmsg+0x10/0x10 [ 916.804429][T18119] __sys_sendmsg+0x16d/0x220 [ 916.804458][T18119] ? __pfx___sys_sendmsg+0x10/0x10 [ 916.804486][T18119] ? __x64_sys_futex+0x1e0/0x4c0 [ 916.804540][T18119] do_syscall_64+0xcd/0xfa0 [ 916.804571][T18119] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 916.804597][T18119] RIP: 0033:0x7effb8b8eec9 [ 916.804619][T18119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 916.804643][T18119] RSP: 002b:00007effb9a89038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 916.804666][T18119] RAX: ffffffffffffffda RBX: 00007effb8de5fa0 RCX: 00007effb8b8eec9 [ 916.804682][T18119] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003 [ 916.804697][T18119] RBP: 00007effb8c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 916.804712][T18119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 916.804728][T18119] R13: 00007effb8de6038 R14: 00007effb8de5fa0 R15: 00007ffd1aa70798 [ 916.804762][T18119] [ 917.988312][T18134] vivid-007: ================= START STATUS ================= [ 918.045019][T18134] vivid-007: Generate PTS: true [ 918.059193][T18134] vivid-007: Generate SCR: true [ 918.064106][T18134] tpg source WxH: 320x240 (Y'CbCr) [ 918.123159][T18134] tpg field: 1 [ 918.126574][T18134] tpg crop: (0,0)/320x240 [ 918.173641][T18134] tpg compose: (0,0)/320x240 [ 918.193998][T18134] tpg colorspace: 8 [ 918.197858][T18134] tpg transfer function: 0/0 [ 918.290426][T18134] tpg Y'CbCr encoding: 0/0 [ 918.294888][T18134] tpg quantization: 0/0 [ 918.299056][T18134] tpg RGB range: 0/2 [ 918.454840][T18134] vivid-007: ================== END STATUS ================== [ 918.793691][T18134] can: request_module (can-proto-3) failed. [ 919.257355][T18169] delete_channel: no stack [ 920.217407][T18182] FAULT_INJECTION: forcing a failure. [ 920.217407][T18182] name failslab, interval 1, probability 0, space 0, times 0 [ 920.294700][T18182] CPU: 0 UID: 0 PID: 18182 Comm: syz.1.2753 Not tainted syzkaller #0 PREEMPT(full) [ 920.294733][T18182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 920.294757][T18182] Call Trace: [ 920.294766][T18182] [ 920.294775][T18182] dump_stack_lvl+0x16c/0x1f0 [ 920.294820][T18182] should_fail_ex+0x512/0x640 [ 920.294850][T18182] ? __kmalloc_cache_noprof+0x5f/0x780 [ 920.294893][T18182] should_failslab+0xc2/0x120 [ 920.294927][T18182] __kmalloc_cache_noprof+0x72/0x780 [ 920.294967][T18182] ? __lock_acquire+0x62e/0x1ce0 [ 920.294998][T18182] ? newseg+0x25a/0xe60 [ 920.295026][T18182] ? newseg+0x25a/0xe60 [ 920.295046][T18182] ? __pfx___might_resched+0x10/0x10 [ 920.295071][T18182] newseg+0x25a/0xe60 [ 920.295099][T18182] ? __pfx_newseg+0x10/0x10 [ 920.295120][T18182] ? find_held_lock+0x2b/0x80 [ 920.295146][T18182] ? ipcget+0xa98/0xfa0 [ 920.295175][T18182] ipcget+0xaf0/0xfa0 [ 920.295209][T18182] ? __pfx___might_resched+0x10/0x10 [ 920.295234][T18182] ? __pfx_ipcget+0x10/0x10 [ 920.295260][T18182] ? __x64_sys_futex+0x1e0/0x4c0 [ 920.295292][T18182] ? __x64_sys_futex+0x1e9/0x4c0 [ 920.295330][T18182] __x64_sys_shmget+0x13b/0x1b0 [ 920.295356][T18182] ? __pfx___x64_sys_shmget+0x10/0x10 [ 920.295386][T18182] ? rcu_is_watching+0x12/0xc0 [ 920.295415][T18182] do_syscall_64+0xcd/0xfa0 [ 920.295445][T18182] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 920.295470][T18182] RIP: 0033:0x7f0d72d8eec9 [ 920.295492][T18182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 920.295517][T18182] RSP: 002b:00007f0d73b97038 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 920.295539][T18182] RAX: ffffffffffffffda RBX: 00007f0d72fe6090 RCX: 00007f0d72d8eec9 [ 920.295556][T18182] RDX: 000000000000ffff RSI: 0000000000000006 RDI: 0000000000000004 [ 920.295571][T18182] RBP: 00007f0d72e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 920.295585][T18182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 920.295600][T18182] R13: 00007f0d72fe6128 R14: 00007f0d72fe6090 R15: 00007ffc2bc306d8 [ 920.295633][T18182] [ 921.291838][T18203] FAULT_INJECTION: forcing a failure. [ 921.291838][T18203] name failslab, interval 1, probability 0, space 0, times 0 [ 921.371372][T18203] CPU: 0 UID: 0 PID: 18203 Comm: syz.2.2751 Not tainted syzkaller #0 PREEMPT(full) [ 921.371403][T18203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 921.371418][T18203] Call Trace: [ 921.371426][T18203] [ 921.371434][T18203] dump_stack_lvl+0x16c/0x1f0 [ 921.371466][T18203] should_fail_ex+0x512/0x640 [ 921.371494][T18203] ? __kmalloc_noprof+0xca/0x880 [ 921.371536][T18203] should_failslab+0xc2/0x120 [ 921.371567][T18203] __kmalloc_noprof+0xdd/0x880 [ 921.371609][T18203] ? trace_kmalloc+0x2b/0xd0 [ 921.371637][T18203] ? __kmalloc_noprof+0x34f/0x880 [ 921.371673][T18203] ? devlink_fmsg_put_value+0xaa/0x2d0 [ 921.371711][T18203] ? devlink_fmsg_put_value+0xaa/0x2d0 [ 921.371742][T18203] devlink_fmsg_put_value+0xaa/0x2d0 [ 921.371778][T18203] devlink_fmsg_u8_pair_put+0x19c/0x2f0 [ 921.371813][T18203] ? __pfx_devlink_fmsg_u8_pair_put+0x10/0x10 [ 921.371847][T18203] ? kasan_enable_current+0x20/0x20 [ 921.371877][T18203] ? devlink_fmsg_nest_common.part.0+0xcd/0x1e0 [ 921.371914][T18203] nsim_dev_dummy_fmsg_put+0x192/0x1e0 [ 921.371943][T18203] devlink_health_do_dump+0x240/0x620 [ 921.371982][T18203] devlink_health_report+0x6c3/0xb00 [ 921.372023][T18203] ? __pfx_devlink_health_report+0x10/0x10 [ 921.372062][T18203] ? _copy_from_user+0x59/0xd0 [ 921.372097][T18203] nsim_dev_health_break_write+0x166/0x210 [ 921.372123][T18203] ? __pfx_nsim_dev_health_break_write+0x10/0x10 [ 921.372159][T18203] full_proxy_write+0x12e/0x1a0 [ 921.372195][T18203] ? __pfx_full_proxy_write+0x10/0x10 [ 921.372225][T18203] vfs_write+0x2a0/0x11d0 [ 921.372256][T18203] ? __pfx___mutex_lock+0x10/0x10 [ 921.372286][T18203] ? __pfx_vfs_write+0x10/0x10 [ 921.372321][T18203] ? __fget_files+0x20e/0x3c0 [ 921.372354][T18203] ksys_write+0x12a/0x250 [ 921.372379][T18203] ? __pfx_ksys_write+0x10/0x10 [ 921.372415][T18203] do_syscall_64+0xcd/0xfa0 [ 921.372444][T18203] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 921.372468][T18203] RIP: 0033:0x7f4c7cb8eec9 [ 921.372486][T18203] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 921.372509][T18203] RSP: 002b:00007f4c7d9bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 921.372531][T18203] RAX: ffffffffffffffda RBX: 00007f4c7cde5fa0 RCX: 00007f4c7cb8eec9 [ 921.372547][T18203] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000007 [ 921.372561][T18203] RBP: 00007f4c7cc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 921.372575][T18203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 921.372593][T18203] R13: 00007f4c7cde6038 R14: 00007f4c7cde5fa0 R15: 00007ffc0ec25638 [ 921.372626][T18203] [ 922.504361][T18225] FAULT_INJECTION: forcing a failure. [ 922.504361][T18225] name fail_futex, interval 1, probability 0, space 0, times 0 [ 922.568716][T18225] CPU: 0 UID: 0 PID: 18225 Comm: syz.2.2755 Not tainted syzkaller #0 PREEMPT(full) [ 922.568748][T18225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 922.568764][T18225] Call Trace: [ 922.568773][T18225] [ 922.568782][T18225] dump_stack_lvl+0x16c/0x1f0 [ 922.568814][T18225] should_fail_ex+0x512/0x640 [ 922.568850][T18225] get_futex_key+0x1d0/0x1560 [ 922.568886][T18225] ? __pfx_get_futex_key+0x10/0x10 [ 922.568920][T18225] ? __lock_acquire+0xb97/0x1ce0 [ 922.568960][T18225] futex_wake+0xea/0x530 [ 922.569000][T18225] ? find_held_lock+0x2b/0x80 [ 922.569024][T18225] ? __pfx_futex_wake+0x10/0x10 [ 922.569062][T18225] ? find_held_lock+0x2b/0x80 [ 922.569094][T18225] ? up_write+0x1b2/0x520 [ 922.569136][T18225] do_futex+0x1e3/0x350 [ 922.569169][T18225] ? __pfx_do_futex+0x10/0x10 [ 922.569206][T18225] ? __pfx___might_resched+0x10/0x10 [ 922.569235][T18225] __x64_sys_futex+0x1e0/0x4c0 [ 922.569274][T18225] ? __pfx___x64_sys_futex+0x10/0x10 [ 922.569309][T18225] ? __pfx___x64_sys_shmget+0x10/0x10 [ 922.569345][T18225] do_syscall_64+0xcd/0xfa0 [ 922.569376][T18225] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 922.569400][T18225] RIP: 0033:0x7f4c7cb8eec9 [ 922.569428][T18225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 922.569453][T18225] RSP: 002b:00007f4c7d99e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 922.569476][T18225] RAX: ffffffffffffffda RBX: 00007f4c7cde6098 RCX: 00007f4c7cb8eec9 [ 922.569492][T18225] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f4c7cde609c [ 922.569507][T18225] RBP: 00007f4c7cde6090 R08: 00007f4c7d9c0000 R09: 0000000000000000 [ 922.569523][T18225] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 922.569539][T18225] R13: 00007f4c7cde6128 R14: 00007ffc0ec25550 R15: 00007ffc0ec25638 [ 922.569571][T18225] [ 923.281342][ T5834] Bluetooth: hci3: unexpected event 0x02 length: 726 > 260 [ 923.891865][T18251] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 924.270277][T18255] FAULT_INJECTION: forcing a failure. [ 924.270277][T18255] name fail_futex, interval 1, probability 0, space 0, times 0 [ 924.369566][T18255] CPU: 0 UID: 0 PID: 18255 Comm: syz.0.2760 Not tainted syzkaller #0 PREEMPT(full) [ 924.369601][T18255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 924.369616][T18255] Call Trace: [ 924.369624][T18255] [ 924.369634][T18255] dump_stack_lvl+0x16c/0x1f0 [ 924.369666][T18255] should_fail_ex+0x512/0x640 [ 924.369702][T18255] get_futex_key+0x1d0/0x1560 [ 924.369738][T18255] ? __pfx_get_futex_key+0x10/0x10 [ 924.369771][T18255] ? __lock_acquire+0xb97/0x1ce0 [ 924.369812][T18255] futex_wake+0xea/0x530 [ 924.369851][T18255] ? find_held_lock+0x2b/0x80 [ 924.369875][T18255] ? __pfx_futex_wake+0x10/0x10 [ 924.369913][T18255] ? find_held_lock+0x2b/0x80 [ 924.369940][T18255] ? up_write+0x1b2/0x520 [ 924.369982][T18255] do_futex+0x1e3/0x350 [ 924.370015][T18255] ? __pfx_do_futex+0x10/0x10 [ 924.370051][T18255] ? __pfx___might_resched+0x10/0x10 [ 924.370081][T18255] __x64_sys_futex+0x1e0/0x4c0 [ 924.370142][T18255] ? __pfx___x64_sys_futex+0x10/0x10 [ 924.370178][T18255] ? __pfx___x64_sys_shmget+0x10/0x10 [ 924.370213][T18255] do_syscall_64+0xcd/0xfa0 [ 924.370249][T18255] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 924.370274][T18255] RIP: 0033:0x7ff14938eec9 [ 924.370294][T18255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 924.370317][T18255] RSP: 002b:00007ff14a15e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 924.370340][T18255] RAX: ffffffffffffffda RBX: 00007ff1495e6098 RCX: 00007ff14938eec9 [ 924.370356][T18255] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff1495e609c [ 924.370371][T18255] RBP: 00007ff1495e6090 R08: 00007ff14a180000 R09: 0000000000000000 [ 924.370386][T18255] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 924.370401][T18255] R13: 00007ff1495e6128 R14: 00007ffe87cf5910 R15: 00007ffe87cf59f8 [ 924.370433][T18255] [ 925.177889][T18264] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 926.185352][T18289] vivid-007: ================= START STATUS ================= [ 926.239267][T18289] vivid-007: Generate PTS: true [ 926.262184][T18289] vivid-007: Generate SCR: true [ 926.295310][T18289] tpg source WxH: 320x240 (Y'CbCr) [ 926.337208][T18289] tpg field: 1 [ 926.370543][T18289] tpg crop: (0,0)/320x240 [ 926.374919][T18289] tpg compose: (0,0)/320x240 [ 926.507290][T18289] tpg colorspace: 8 [ 926.574236][T18289] tpg transfer function: 0/0 [ 926.578873][T18289] tpg Y'CbCr encoding: 0/0 [ 926.709484][T18289] tpg quantization: 0/0 [ 926.726666][T18289] tpg RGB range: 0/2 [ 926.811226][T18300] can: request_module (can-proto-3) failed. [ 926.836275][T18289] vivid-007: ================== END STATUS ================== [ 926.928067][T18303] can: request_module (can-proto-3) failed. [ 926.996362][T18291] vivid-007: ================= START STATUS ================= [ 927.043884][T18291] vivid-007: Generate PTS: true [ 927.048817][T18291] vivid-007: Generate SCR: true [ 927.088082][T18291] tpg source WxH: 320x240 (Y'CbCr) [ 927.122202][T18291] tpg field: 1 [ 927.142577][ T5834] Bluetooth: hci4: unexpected event 0x01 length: 5 > 1 [ 927.143117][T18291] tpg crop: (0,0)/320x240 [ 927.187564][T18291] tpg compose: (0,0)/320x240 [ 927.229311][T18291] tpg colorspace: 8 [ 927.233189][T18291] tpg transfer function: 0/0 [ 927.253467][T18291] tpg Y'CbCr encoding: 0/0 [ 927.271863][T18291] tpg quantization: 0/0 [ 927.290416][T18291] tpg RGB range: 0/2 [ 927.307675][T18291] vivid-007: ================== END STATUS ================== [ 928.194102][T18317] ERROR: Out of memory at tomoyo_memory_ok. [ 928.348132][T18332] FAULT_INJECTION: forcing a failure. [ 928.348132][T18332] name failslab, interval 1, probability 0, space 0, times 0 [ 928.457058][T18332] CPU: 0 UID: 0 PID: 18332 Comm: syz.1.2777 Not tainted syzkaller #0 PREEMPT(full) [ 928.457092][T18332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 928.457107][T18332] Call Trace: [ 928.457115][T18332] [ 928.457124][T18332] dump_stack_lvl+0x16c/0x1f0 [ 928.457157][T18332] should_fail_ex+0x512/0x640 [ 928.457187][T18332] ? __kmalloc_cache_noprof+0x5f/0x780 [ 928.457230][T18332] should_failslab+0xc2/0x120 [ 928.457264][T18332] __kmalloc_cache_noprof+0x72/0x780 [ 928.457304][T18332] ? resv_map_alloc+0x7e/0x400 [ 928.457341][T18332] ? resv_map_alloc+0x7e/0x400 [ 928.457372][T18332] resv_map_alloc+0x7e/0x400 [ 928.457407][T18332] hugetlbfs_get_inode+0x33f/0x730 [ 928.457433][T18332] ? security_capable+0x7e/0x260 [ 928.457477][T18332] hugetlb_file_setup+0x38d/0x620 [ 928.457508][T18332] newseg+0xa74/0xe60 [ 928.457536][T18332] ? __pfx_newseg+0x10/0x10 [ 928.457557][T18332] ? find_held_lock+0x2b/0x80 [ 928.457583][T18332] ? ipcget+0xa98/0xfa0 [ 928.457613][T18332] ipcget+0xaf0/0xfa0 [ 928.457647][T18332] ? __pfx___might_resched+0x10/0x10 [ 928.457673][T18332] ? __pfx_ipcget+0x10/0x10 [ 928.457698][T18332] ? __x64_sys_futex+0x1e0/0x4c0 [ 928.457730][T18332] ? __x64_sys_futex+0x1e9/0x4c0 [ 928.457768][T18332] __x64_sys_shmget+0x13b/0x1b0 [ 928.457801][T18332] ? __pfx___x64_sys_shmget+0x10/0x10 [ 928.457831][T18332] ? rcu_is_watching+0x12/0xc0 [ 928.457860][T18332] do_syscall_64+0xcd/0xfa0 [ 928.457891][T18332] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 928.457916][T18332] RIP: 0033:0x7f0d72d8eec9 [ 928.457934][T18332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 928.457959][T18332] RSP: 002b:00007f0d73b97038 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 928.457982][T18332] RAX: ffffffffffffffda RBX: 00007f0d72fe6090 RCX: 00007f0d72d8eec9 [ 928.457998][T18332] RDX: 000000000000ffff RSI: 0000000000000006 RDI: 0000000000000004 [ 928.458013][T18332] RBP: 00007f0d72e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 928.458028][T18332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 928.458043][T18332] R13: 00007f0d72fe6128 R14: 00007f0d72fe6090 R15: 00007ffc2bc306d8 [ 928.458081][T18332] [ 928.968490][T18343] vivid-007: ================= START STATUS ================= [ 928.976403][T18343] vivid-007: Generate PTS: true [ 928.981652][T18343] vivid-007: Generate SCR: true [ 928.986702][T18343] tpg source WxH: 320x240 (Y'CbCr) [ 928.992274][T18343] tpg field: 1 [ 928.995729][T18343] tpg crop: (0,0)/320x240 [ 929.000670][T18343] tpg compose: (0,0)/320x240 [ 929.005340][T18343] tpg colorspace: 8 [ 929.009542][T18343] tpg transfer function: 0/0 [ 929.014324][T18343] tpg Y'CbCr encoding: 0/0 [ 929.077083][T18343] tpg quantization: 0/0 [ 929.132279][T18343] tpg RGB range: 0/2 [ 929.158930][T18343] vivid-007: ================== END STATUS ================== [ 929.533332][T18344] can: request_module (can-proto-3) failed. [ 929.674528][T18354] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 929.977738][T18359] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input20 [ 930.151112][ T5182] ERROR: Out of memory at tomoyo_memory_ok. [ 930.531143][T18362] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input21 [ 930.723490][T18375] ERROR: Out of memory at tomoyo_memory_ok. [ 930.913997][T18377] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2791'. [ 931.056254][T18380] FAULT_INJECTION: forcing a failure. [ 931.056254][T18380] name fail_futex, interval 1, probability 0, space 0, times 0 [ 931.156799][T18380] CPU: 0 UID: 0 PID: 18380 Comm: syz.0.2790 Not tainted syzkaller #0 PREEMPT(full) [ 931.156831][T18380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 931.156845][T18380] Call Trace: [ 931.156853][T18380] [ 931.156863][T18380] dump_stack_lvl+0x16c/0x1f0 [ 931.156897][T18380] should_fail_ex+0x512/0x640 [ 931.156932][T18380] get_futex_key+0x1d0/0x1560 [ 931.156966][T18380] ? __pfx_get_futex_key+0x10/0x10 [ 931.157016][T18380] ? __lock_acquire+0xb97/0x1ce0 [ 931.157056][T18380] futex_wake+0xea/0x530 [ 931.157095][T18380] ? find_held_lock+0x2b/0x80 [ 931.157119][T18380] ? __pfx_futex_wake+0x10/0x10 [ 931.157157][T18380] ? find_held_lock+0x2b/0x80 [ 931.157184][T18380] ? up_write+0x1b2/0x520 [ 931.157226][T18380] do_futex+0x1e3/0x350 [ 931.157259][T18380] ? __pfx_do_futex+0x10/0x10 [ 931.157295][T18380] ? __pfx___might_resched+0x10/0x10 [ 931.157324][T18380] __x64_sys_futex+0x1e0/0x4c0 [ 931.157362][T18380] ? __pfx___x64_sys_futex+0x10/0x10 [ 931.157397][T18380] ? __pfx___x64_sys_shmget+0x10/0x10 [ 931.157432][T18380] do_syscall_64+0xcd/0xfa0 [ 931.157462][T18380] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 931.157486][T18380] RIP: 0033:0x7ff14938eec9 [ 931.157505][T18380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 931.157528][T18380] RSP: 002b:00007ff14a15e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 931.157557][T18380] RAX: ffffffffffffffda RBX: 00007ff1495e6098 RCX: 00007ff14938eec9 [ 931.157573][T18380] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff1495e609c [ 931.157588][T18380] RBP: 00007ff1495e6090 R08: 00007ff14a180000 R09: 0000000000000000 [ 931.157604][T18380] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 931.157618][T18380] R13: 00007ff1495e6128 R14: 00007ffe87cf5910 R15: 00007ffe87cf59f8 [ 931.157651][T18380] [ 931.744995][T18385] zswap: compressor 000 not available [ 932.170162][T18401] vivid-007: ================= START STATUS ================= [ 932.222652][T18401] vivid-007: Generate PTS: true [ 932.251846][T18401] vivid-007: Generate SCR: true [ 932.282773][T18402] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 932.300126][T18401] tpg source WxH: 320x240 (Y'CbCr) [ 932.305283][T18401] tpg field: 1 [ 932.308655][T18401] tpg crop: (0,0)/320x240 [ 932.382625][T18401] tpg compose: (0,0)/320x240 [ 932.387270][T18401] tpg colorspace: 8 [ 932.482924][T18401] tpg transfer function: 0/0 [ 932.487561][T18401] tpg Y'CbCr encoding: 0/0 [ 932.574865][T18401] tpg quantization: 0/0 [ 932.654698][T18401] tpg RGB range: 0/2 [ 932.683452][T18401] vivid-007: ================== END STATUS ================== [ 932.859240][T18414] can: request_module (can-proto-3) failed. [ 933.528071][ T5834] Bluetooth: hci2: unexpected event 0x01 length: 5 > 1 [ 933.572815][T18436] ERROR: Out of memory at tomoyo_memory_ok. [ 933.954190][ T5834] Bluetooth: hci4: unexpected event 0x02 length: 726 > 260 [ 934.052721][T18432] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 934.140364][T18432] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 934.146449][T18432] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 934.233250][T18432] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 934.409362][T18453] capability: warning: `syz.3.2806' uses deprecated v2 capabilities in a way that may be insecure [ 934.985715][T18464] FAULT_INJECTION: forcing a failure. [ 934.985715][T18464] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 935.084389][T18464] CPU: 0 UID: 0 PID: 18464 Comm: syz.0.2809 Not tainted syzkaller #0 PREEMPT(full) [ 935.084421][T18464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 935.084436][T18464] Call Trace: [ 935.084444][T18464] [ 935.084454][T18464] dump_stack_lvl+0x16c/0x1f0 [ 935.084487][T18464] should_fail_ex+0x512/0x640 [ 935.084526][T18464] _copy_from_user+0x2e/0xd0 [ 935.084558][T18464] copy_from_sockptr_offset.constprop.0+0x153/0x1a0 [ 935.084598][T18464] ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10 [ 935.084645][T18464] packet_setsockopt+0x861/0x33c0 [ 935.084668][T18464] ? __pfx___might_resched+0x10/0x10 [ 935.084694][T18464] ? __lock_acquire+0x62e/0x1ce0 [ 935.084729][T18464] ? __pfx_packet_setsockopt+0x10/0x10 [ 935.084751][T18464] ? aa_sk_perm+0x2f4/0xb10 [ 935.084773][T18464] ? ksys_write+0x190/0x250 [ 935.084800][T18464] ? __pfx_aa_sk_perm+0x10/0x10 [ 935.084825][T18464] ? find_held_lock+0x2b/0x80 [ 935.084852][T18464] ? aa_sock_opt_perm+0xfd/0x1c0 [ 935.084884][T18464] ? __pfx_packet_setsockopt+0x10/0x10 [ 935.084909][T18464] do_sock_setsockopt+0xf0/0x1d0 [ 935.084947][T18464] __sys_setsockopt+0x120/0x1a0 [ 935.084978][T18464] __x64_sys_setsockopt+0xbd/0x160 [ 935.085003][T18464] ? do_syscall_64+0x91/0xfa0 [ 935.085029][T18464] ? lockdep_hardirqs_on+0x7c/0x110 [ 935.085057][T18464] do_syscall_64+0xcd/0xfa0 [ 935.085086][T18464] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 935.085110][T18464] RIP: 0033:0x7ff14938eec9 [ 935.085138][T18464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 935.085162][T18464] RSP: 002b:00007ff14a17f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 935.085184][T18464] RAX: ffffffffffffffda RBX: 00007ff1495e5fa0 RCX: 00007ff14938eec9 [ 935.085200][T18464] RDX: 0000000000000001 RSI: 0000000000000107 RDI: 0000000000000004 [ 935.085214][T18464] RBP: 00007ff14a17f090 R08: 0000000000008004 R09: 0000000000000000 [ 935.085228][T18464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 935.085242][T18464] R13: 00007ff1495e6038 R14: 00007ff1495e5fa0 R15: 00007ffe87cf59f8 [ 935.085273][T18464] [ 935.655313][ T5838] Bluetooth: hci0: command 0x0c1a tx timeout [ 936.117192][T18485] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2816'. [ 936.229227][ T5838] Bluetooth: hci2: command 0x0c1a tx timeout [ 936.235344][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout [ 936.309472][ T5838] Bluetooth: hci4: command 0x0c1a tx timeout [ 937.447226][T18504] FAULT_INJECTION: forcing a failure. [ 937.447226][T18504] name failslab, interval 1, probability 0, space 0, times 0 [ 937.515967][T18504] CPU: 0 UID: 0 PID: 18504 Comm: syz.3.2822 Not tainted syzkaller #0 PREEMPT(full) [ 937.516000][T18504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 937.516015][T18504] Call Trace: [ 937.516025][T18504] [ 937.516055][T18504] dump_stack_lvl+0x16c/0x1f0 [ 937.516086][T18504] should_fail_ex+0x512/0x640 [ 937.516115][T18504] ? __kmalloc_cache_noprof+0x5f/0x780 [ 937.516157][T18504] should_failslab+0xc2/0x120 [ 937.516190][T18504] __kmalloc_cache_noprof+0x72/0x780 [ 937.516230][T18504] ? packet_setsockopt+0x15bc/0x33c0 [ 937.516258][T18504] ? packet_setsockopt+0x15bc/0x33c0 [ 937.516279][T18504] packet_setsockopt+0x15bc/0x33c0 [ 937.516303][T18504] ? __pfx___might_resched+0x10/0x10 [ 937.516329][T18504] ? __lock_acquire+0x62e/0x1ce0 [ 937.516368][T18504] ? __pfx_packet_setsockopt+0x10/0x10 [ 937.516389][T18504] ? aa_sk_perm+0x2f4/0xb10 [ 937.516410][T18504] ? ksys_write+0x190/0x250 [ 937.516438][T18504] ? __pfx_aa_sk_perm+0x10/0x10 [ 937.516462][T18504] ? find_held_lock+0x2b/0x80 [ 937.516490][T18504] ? aa_sock_opt_perm+0xfd/0x1c0 [ 937.516521][T18504] ? __pfx_packet_setsockopt+0x10/0x10 [ 937.516546][T18504] do_sock_setsockopt+0xf0/0x1d0 [ 937.516584][T18504] __sys_setsockopt+0x120/0x1a0 [ 937.516616][T18504] __x64_sys_setsockopt+0xbd/0x160 [ 937.516640][T18504] ? do_syscall_64+0x91/0xfa0 [ 937.516666][T18504] ? lockdep_hardirqs_on+0x7c/0x110 [ 937.516694][T18504] do_syscall_64+0xcd/0xfa0 [ 937.516724][T18504] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 937.516748][T18504] RIP: 0033:0x7effb8b8eec9 [ 937.516767][T18504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 937.516791][T18504] RSP: 002b:00007effb9a89038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 937.516813][T18504] RAX: ffffffffffffffda RBX: 00007effb8de5fa0 RCX: 00007effb8b8eec9 [ 937.516843][T18504] RDX: 0000000000000001 RSI: 0000000000000107 RDI: 0000000000000004 [ 937.516857][T18504] RBP: 00007effb9a89090 R08: 0000000000008004 R09: 0000000000000000 [ 937.516871][T18504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 937.516886][T18504] R13: 00007effb8de6038 R14: 00007effb8de5fa0 R15: 00007ffd1aa70798 [ 937.516919][T18504] [ 937.806922][T18508] FAULT_INJECTION: forcing a failure. [ 937.806922][T18508] name fail_futex, interval 1, probability 0, space 0, times 0 [ 937.819993][T18508] CPU: 0 UID: 0 PID: 18508 Comm: syz.0.2824 Not tainted syzkaller #0 PREEMPT(full) [ 937.820025][T18508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 937.820041][T18508] Call Trace: [ 937.820049][T18508] [ 937.820058][T18508] dump_stack_lvl+0x16c/0x1f0 [ 937.820091][T18508] should_fail_ex+0x512/0x640 [ 937.820127][T18508] get_futex_key+0x1d0/0x1560 [ 937.820162][T18508] ? __pfx_get_futex_key+0x10/0x10 [ 937.820196][T18508] ? __lock_acquire+0xb97/0x1ce0 [ 937.820236][T18508] futex_wake+0xea/0x530 [ 937.820284][T18508] ? find_held_lock+0x2b/0x80 [ 937.820309][T18508] ? __pfx_futex_wake+0x10/0x10 [ 937.820348][T18508] ? find_held_lock+0x2b/0x80 [ 937.820376][T18508] ? up_write+0x1b2/0x520 [ 937.820418][T18508] do_futex+0x1e3/0x350 [ 937.820452][T18508] ? __pfx_do_futex+0x10/0x10 [ 937.820488][T18508] ? __pfx___might_resched+0x10/0x10 [ 937.820517][T18508] __x64_sys_futex+0x1e0/0x4c0 [ 937.820555][T18508] ? __pfx___x64_sys_futex+0x10/0x10 [ 937.820591][T18508] ? __pfx___x64_sys_shmget+0x10/0x10 [ 937.820626][T18508] do_syscall_64+0xcd/0xfa0 [ 937.820656][T18508] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 937.820691][T18508] RIP: 0033:0x7ff14938eec9 [ 937.820711][T18508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 937.820734][T18508] RSP: 002b:00007ff14a15e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 937.820765][T18508] RAX: ffffffffffffffda RBX: 00007ff1495e6098 RCX: 00007ff14938eec9 [ 937.820781][T18508] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff1495e609c [ 937.820796][T18508] RBP: 00007ff1495e6090 R08: 00007ff14a180000 R09: 0000000000000000 [ 937.820812][T18508] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 937.820827][T18508] R13: 00007ff1495e6128 R14: 00007ffe87cf5910 R15: 00007ffe87cf59f8 [ 937.820860][T18508] [ 938.403702][T18521] FAULT_INJECTION: forcing a failure. [ 938.403702][T18521] name fail_futex, interval 1, probability 0, space 0, times 0 [ 938.537923][T18521] CPU: 0 UID: 0 PID: 18521 Comm: syz.0.2825 Not tainted syzkaller #0 PREEMPT(full) [ 938.537969][T18521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 938.537984][T18521] Call Trace: [ 938.537992][T18521] [ 938.538001][T18521] dump_stack_lvl+0x16c/0x1f0 [ 938.538033][T18521] should_fail_ex+0x512/0x640 [ 938.538068][T18521] get_futex_key+0x1d0/0x1560 [ 938.538104][T18521] ? __pfx_get_futex_key+0x10/0x10 [ 938.538146][T18521] futex_wake+0xea/0x530 [ 938.538188][T18521] ? __pfx_futex_wake+0x10/0x10 [ 938.538240][T18521] do_futex+0x1e3/0x350 [ 938.538274][T18521] ? __pfx_do_futex+0x10/0x10 [ 938.538307][T18521] ? find_held_lock+0x2b/0x80 [ 938.538338][T18521] __x64_sys_futex+0x1e0/0x4c0 [ 938.538373][T18521] ? __do_sys_close_range+0x278/0x730 [ 938.538401][T18521] ? __pfx___x64_sys_futex+0x10/0x10 [ 938.538436][T18521] ? __pfx___do_sys_close_range+0x10/0x10 [ 938.538472][T18521] do_syscall_64+0xcd/0xfa0 [ 938.538502][T18521] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 938.538527][T18521] RIP: 0033:0x7ff14938eec9 [ 938.538546][T18521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 938.538570][T18521] RSP: 002b:00007ff14a15e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 938.538593][T18521] RAX: ffffffffffffffda RBX: 00007ff1495e6098 RCX: 00007ff14938eec9 [ 938.538609][T18521] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff1495e609c [ 938.538623][T18521] RBP: 00007ff1495e6090 R08: 00007ff14a180000 R09: 0000000000000000 [ 938.538638][T18521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 938.538653][T18521] R13: 00007ff1495e6128 R14: 00007ffe87cf5910 R15: 00007ffe87cf59f8 [ 938.538689][T18521] [ 939.635243][T18527] FAULT_INJECTION: forcing a failure. [ 939.635243][T18527] name failslab, interval 1, probability 0, space 0, times 0 [ 939.652682][T18527] CPU: 0 UID: 0 PID: 18527 Comm: syz.3.2828 Not tainted syzkaller #0 PREEMPT(full) [ 939.652715][T18527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 939.652731][T18527] Call Trace: [ 939.652739][T18527] [ 939.652748][T18527] dump_stack_lvl+0x16c/0x1f0 [ 939.652781][T18527] should_fail_ex+0x512/0x640 [ 939.652811][T18527] ? __kmalloc_noprof+0xca/0x880 [ 939.652852][T18527] should_failslab+0xc2/0x120 [ 939.652885][T18527] __kmalloc_noprof+0xdd/0x880 [ 939.652924][T18527] ? lsm_blob_alloc+0x68/0x90 [ 939.652957][T18527] ? lsm_blob_alloc+0x68/0x90 [ 939.652983][T18527] lsm_blob_alloc+0x68/0x90 [ 939.653012][T18527] security_sk_alloc+0x30/0x270 [ 939.653047][T18527] sk_prot_alloc+0x1c7/0x2a0 [ 939.653085][T18527] sk_alloc+0x36/0xc20 [ 939.653112][T18527] __netlink_create+0x5e/0x2c0 [ 939.653134][T18527] ? __wake_up+0x3f/0x60 [ 939.653164][T18527] netlink_create+0x39e/0x620 [ 939.653190][T18527] ? __pfx_genl_bind+0x10/0x10 [ 939.653220][T18527] ? __pfx_genl_unbind+0x10/0x10 [ 939.653249][T18527] ? __pfx_genl_release+0x10/0x10 [ 939.653285][T18527] __sock_create+0x335/0x8d0 [ 939.653328][T18527] __sys_socket+0x14d/0x260 [ 939.653365][T18527] ? __pfx___sys_socket+0x10/0x10 [ 939.653405][T18527] ? do_user_addr_fault+0x843/0x1370 [ 939.653434][T18527] __x64_sys_socket+0x72/0xb0 [ 939.653470][T18527] ? lockdep_hardirqs_on+0x7c/0x110 [ 939.653498][T18527] do_syscall_64+0xcd/0xfa0 [ 939.653537][T18527] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 939.653562][T18527] RIP: 0033:0x7effb8b90de7 [ 939.653581][T18527] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 939.653606][T18527] RSP: 002b:00007effb9a66fa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 939.653629][T18527] RAX: ffffffffffffffda RBX: 00007effb8de6090 RCX: 00007effb8b90de7 [ 939.653646][T18527] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 939.653660][T18527] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 939.653675][T18527] R10: 00002000000002c0 R11: 0000000000000286 R12: 0000000000000000 [ 939.653690][T18527] R13: 00007effb8de6128 R14: 00007effb8de6090 R15: 00007ffd1aa70798 [ 939.653722][T18527] [ 940.001211][T18532] __vm_enough_memory: pid: 18532, comm: syz.1.2830, bytes: 4398046511104 not enough memory for the allocation [ 940.101942][T18535] vivid-007: ================= START STATUS ================= [ 940.109724][T18535] vivid-007: Generate PTS: true [ 940.116505][T18535] vivid-007: Generate SCR: true [ 940.129230][T18535] tpg source WxH: 320x240 (Y'CbCr) [ 940.206808][T18535] tpg field: 1 [ 940.225094][T18535] tpg crop: (0,0)/320x240 [ 940.234592][T18535] tpg compose: (0,0)/320x240 [ 940.249286][T18535] tpg colorspace: 8 [ 940.253132][T18535] tpg transfer function: 0/0 [ 940.270307][T18535] tpg Y'CbCr encoding: 0/0 [ 940.274790][T18535] tpg quantization: 0/0 [ 940.278948][T18535] tpg RGB range: 0/2 [ 940.290953][T18535] vivid-007: ================== END STATUS ================== [ 940.592451][T18536] can: request_module (can-proto-3) failed. [ 941.453463][T18553] FAULT_INJECTION: forcing a failure. [ 941.453463][T18553] name fail_futex, interval 1, probability 0, space 0, times 0 [ 941.509464][T18553] CPU: 0 UID: 0 PID: 18553 Comm: syz.0.2834 Not tainted syzkaller #0 PREEMPT(full) [ 941.509497][T18553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 941.509512][T18553] Call Trace: [ 941.509519][T18553] [ 941.509529][T18553] dump_stack_lvl+0x16c/0x1f0 [ 941.509563][T18553] should_fail_ex+0x512/0x640 [ 941.509598][T18553] get_futex_key+0x1d0/0x1560 [ 941.509634][T18553] ? __pfx_get_futex_key+0x10/0x10 [ 941.509668][T18553] ? __lock_acquire+0xb97/0x1ce0 [ 941.509707][T18553] futex_wake+0xea/0x530 [ 941.509746][T18553] ? find_held_lock+0x2b/0x80 [ 941.509770][T18553] ? __pfx_futex_wake+0x10/0x10 [ 941.509808][T18553] ? find_held_lock+0x2b/0x80 [ 941.509835][T18553] ? up_write+0x1b2/0x520 [ 941.509877][T18553] do_futex+0x1e3/0x350 [ 941.509910][T18553] ? __pfx_do_futex+0x10/0x10 [ 941.509946][T18553] ? __pfx___might_resched+0x10/0x10 [ 941.509976][T18553] __x64_sys_futex+0x1e0/0x4c0 [ 941.510014][T18553] ? __pfx___x64_sys_futex+0x10/0x10 [ 941.510049][T18553] ? __pfx___x64_sys_shmget+0x10/0x10 [ 941.510085][T18553] do_syscall_64+0xcd/0xfa0 [ 941.510114][T18553] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 941.510139][T18553] RIP: 0033:0x7ff14938eec9 [ 941.510158][T18553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 941.510183][T18553] RSP: 002b:00007ff14a15e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 941.510206][T18553] RAX: ffffffffffffffda RBX: 00007ff1495e6098 RCX: 00007ff14938eec9 [ 941.510222][T18553] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff1495e609c [ 941.510237][T18553] RBP: 00007ff1495e6090 R08: 00007ff14a180000 R09: 0000000000000000 [ 941.510252][T18553] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 941.510267][T18553] R13: 00007ff1495e6128 R14: 00007ffe87cf5910 R15: 00007ffe87cf59f8 [ 941.510299][T18553] [ 942.243728][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 942.251495][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 942.378045][T18566] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 942.429935][T18566] CPU: 0 UID: 0 PID: 18566 Comm: syz.1.2838 Not tainted syzkaller #0 PREEMPT(full) [ 942.429968][T18566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 942.429984][T18566] Call Trace: [ 942.429992][T18566] [ 942.430002][T18566] dump_stack_lvl+0x16c/0x1f0 [ 942.430035][T18566] sysfs_warn_dup+0x7f/0xa0 [ 942.430065][T18566] sysfs_do_create_link_sd+0x124/0x140 [ 942.430099][T18566] sysfs_create_link+0x61/0xc0 [ 942.430129][T18566] device_add+0x62c/0x1aa0 [ 942.430164][T18566] ? __pfx_device_add+0x10/0x10 [ 942.430194][T18566] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 942.430238][T18566] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 942.430273][T18566] wiphy_register+0x1eb0/0x2b20 [ 942.430306][T18566] ? netdev_run_todo+0x864/0x1320 [ 942.430354][T18566] ? __pfx_wiphy_register+0x10/0x10 [ 942.430405][T18566] ieee80211_register_hw+0x253d/0x4120 [ 942.430451][T18566] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 942.430484][T18566] ? __pfx___debug_object_init+0x10/0x10 [ 942.430515][T18566] ? find_held_lock+0x2b/0x80 [ 942.430542][T18566] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 942.430583][T18566] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 942.430609][T18566] ? __hrtimer_setup+0x176/0x280 [ 942.430650][T18566] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 942.430704][T18566] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 942.430751][T18566] hwsim_new_radio_nl+0xba2/0x1330 [ 942.430790][T18566] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 942.430835][T18566] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 942.430874][T18566] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 942.430918][T18566] genl_family_rcv_msg_doit+0x209/0x2f0 [ 942.430960][T18566] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 942.431007][T18566] ? bpf_lsm_capable+0x9/0x10 [ 942.431039][T18566] ? security_capable+0x7e/0x260 [ 942.431072][T18566] ? ns_capable+0xd7/0x110 [ 942.431101][T18566] genl_rcv_msg+0x55c/0x800 [ 942.431141][T18566] ? __pfx_genl_rcv_msg+0x10/0x10 [ 942.431177][T18566] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 942.431225][T18566] netlink_rcv_skb+0x155/0x420 [ 942.431256][T18566] ? __pfx_genl_rcv_msg+0x10/0x10 [ 942.431293][T18566] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 942.431343][T18566] ? netlink_deliver_tap+0x1ae/0xd30 [ 942.431377][T18566] genl_rcv+0x28/0x40 [ 942.431408][T18566] netlink_unicast+0x5aa/0x870 [ 942.431443][T18566] ? __pfx_netlink_unicast+0x10/0x10 [ 942.431474][T18566] ? __pfx___might_resched+0x10/0x10 [ 942.431499][T18566] ? __lock_acquire+0xb97/0x1ce0 [ 942.431542][T18566] netlink_sendmsg+0x8c8/0xdd0 [ 942.431578][T18566] ? __pfx_netlink_sendmsg+0x10/0x10 [ 942.431613][T18566] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 942.431653][T18566] ____sys_sendmsg+0xa98/0xc70 [ 942.431691][T18566] ? copy_msghdr_from_user+0x10a/0x160 [ 942.431719][T18566] ? __pfx_____sys_sendmsg+0x10/0x10 [ 942.431762][T18566] ? __pfx_futex_wake_mark+0x10/0x10 [ 942.431806][T18566] ___sys_sendmsg+0x134/0x1d0 [ 942.431837][T18566] ? __pfx____sys_sendmsg+0x10/0x10 [ 942.431906][T18566] __sys_sendmsg+0x16d/0x220 [ 942.431936][T18566] ? __pfx___sys_sendmsg+0x10/0x10 [ 942.431964][T18566] ? __x64_sys_futex+0x1e0/0x4c0 [ 942.432017][T18566] do_syscall_64+0xcd/0xfa0 [ 942.432048][T18566] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 942.432073][T18566] RIP: 0033:0x7f0d72d8eec9 [ 942.432094][T18566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 942.432118][T18566] RSP: 002b:00007f0d73bb8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 942.432141][T18566] RAX: ffffffffffffffda RBX: 00007f0d72fe5fa0 RCX: 00007f0d72d8eec9 [ 942.432157][T18566] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003 [ 942.432172][T18566] RBP: 00007f0d72e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 942.432188][T18566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 942.432202][T18566] R13: 00007f0d72fe6038 R14: 00007f0d72fe5fa0 R15: 00007ffc2bc306d8 [ 942.432237][T18566] [ 946.235642][T18620] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 946.310428][T18620] CPU: 0 UID: 0 PID: 18620 Comm: syz.0.2850 Not tainted syzkaller #0 PREEMPT(full) [ 946.310460][T18620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 946.310475][T18620] Call Trace: [ 946.310483][T18620] [ 946.310492][T18620] dump_stack_lvl+0x16c/0x1f0 [ 946.310525][T18620] sysfs_warn_dup+0x7f/0xa0 [ 946.310556][T18620] sysfs_do_create_link_sd+0x124/0x140 [ 946.310590][T18620] sysfs_create_link+0x61/0xc0 [ 946.310620][T18620] device_add+0x62c/0x1aa0 [ 946.310655][T18620] ? __pfx_device_add+0x10/0x10 [ 946.310684][T18620] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 946.310728][T18620] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 946.310763][T18620] wiphy_register+0x1eb0/0x2b20 [ 946.310796][T18620] ? netdev_run_todo+0x864/0x1320 [ 946.310837][T18620] ? __pfx_wiphy_register+0x10/0x10 [ 946.310887][T18620] ieee80211_register_hw+0x253d/0x4120 [ 946.310933][T18620] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 946.310967][T18620] ? __pfx___debug_object_init+0x10/0x10 [ 946.310996][T18620] ? find_held_lock+0x2b/0x80 [ 946.311023][T18620] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 946.311071][T18620] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 946.311098][T18620] ? __hrtimer_setup+0x176/0x280 [ 946.311139][T18620] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 946.311200][T18620] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 946.311246][T18620] hwsim_new_radio_nl+0xba2/0x1330 [ 946.311285][T18620] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 946.311330][T18620] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 946.311369][T18620] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 946.311414][T18620] genl_family_rcv_msg_doit+0x209/0x2f0 [ 946.311452][T18620] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 946.311503][T18620] ? bpf_lsm_capable+0x9/0x10 [ 946.311534][T18620] ? security_capable+0x7e/0x260 [ 946.311568][T18620] ? ns_capable+0xd7/0x110 [ 946.311597][T18620] genl_rcv_msg+0x55c/0x800 [ 946.311636][T18620] ? __pfx_genl_rcv_msg+0x10/0x10 [ 946.311673][T18620] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 946.311720][T18620] netlink_rcv_skb+0x155/0x420 [ 946.311751][T18620] ? __pfx_genl_rcv_msg+0x10/0x10 [ 946.311787][T18620] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 946.311832][T18620] ? netlink_deliver_tap+0x1ae/0xd30 [ 946.311866][T18620] genl_rcv+0x28/0x40 [ 946.311897][T18620] netlink_unicast+0x5aa/0x870 [ 946.311933][T18620] ? __pfx_netlink_unicast+0x10/0x10 [ 946.311966][T18620] ? __pfx___might_resched+0x10/0x10 [ 946.311992][T18620] ? __lock_acquire+0xb97/0x1ce0 [ 946.312034][T18620] netlink_sendmsg+0x8c8/0xdd0 [ 946.312075][T18620] ? __pfx_netlink_sendmsg+0x10/0x10 [ 946.312110][T18620] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 946.312150][T18620] ____sys_sendmsg+0xa98/0xc70 [ 946.312188][T18620] ? copy_msghdr_from_user+0x10a/0x160 [ 946.312216][T18620] ? __pfx_____sys_sendmsg+0x10/0x10 [ 946.312260][T18620] ? __pfx_futex_wake_mark+0x10/0x10 [ 946.312304][T18620] ___sys_sendmsg+0x134/0x1d0 [ 946.312334][T18620] ? __pfx____sys_sendmsg+0x10/0x10 [ 946.312404][T18620] __sys_sendmsg+0x16d/0x220 [ 946.312434][T18620] ? __pfx___sys_sendmsg+0x10/0x10 [ 946.312462][T18620] ? __x64_sys_futex+0x1e0/0x4c0 [ 946.312515][T18620] do_syscall_64+0xcd/0xfa0 [ 946.312547][T18620] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 946.312572][T18620] RIP: 0033:0x7ff14938eec9 [ 946.312592][T18620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 946.312615][T18620] RSP: 002b:00007ff14a17f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 946.312638][T18620] RAX: ffffffffffffffda RBX: 00007ff1495e5fa0 RCX: 00007ff14938eec9 [ 946.312655][T18620] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003 [ 946.312670][T18620] RBP: 00007ff149411f91 R08: 0000000000000000 R09: 0000000000000000 [ 946.312685][T18620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 946.312699][T18620] R13: 00007ff1495e6038 R14: 00007ff1495e5fa0 R15: 00007ffe87cf59f8 [ 946.312740][T18620] [ 946.707800][ C0] vkms_vblank_simulate: vblank timer overrun [ 947.154363][T18630] FAULT_INJECTION: forcing a failure. [ 947.154363][T18630] name fail_futex, interval 1, probability 0, space 0, times 0 [ 947.208456][T18630] CPU: 0 UID: 0 PID: 18630 Comm: syz.2.2853 Not tainted syzkaller #0 PREEMPT(full) [ 947.208490][T18630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 947.208505][T18630] Call Trace: [ 947.208513][T18630] [ 947.208525][T18630] dump_stack_lvl+0x16c/0x1f0 [ 947.208558][T18630] should_fail_ex+0x512/0x640 [ 947.208594][T18630] get_futex_key+0x1d0/0x1560 [ 947.208630][T18630] ? __pfx_get_futex_key+0x10/0x10 [ 947.208666][T18630] ? stack_trace_save+0x8e/0xc0 [ 947.208699][T18630] futex_wait_setup+0x9d/0x550 [ 947.208757][T18630] __futex_wait+0x193/0x2f0 [ 947.208797][T18630] ? __pfx___futex_wait+0x10/0x10 [ 947.208842][T18630] ? __pfx_futex_wake_mark+0x10/0x10 [ 947.208886][T18630] ? futex_private_hash_put+0x176/0x300 [ 947.208923][T18630] ? futex_private_hash_put+0x18a/0x300 [ 947.208957][T18630] futex_wait+0xe8/0x380 [ 947.208995][T18630] ? __pfx_futex_wait+0x10/0x10 [ 947.209052][T18630] do_futex+0x229/0x350 [ 947.209088][T18630] ? __pfx_do_futex+0x10/0x10 [ 947.209121][T18630] ? __fput+0x68d/0xb70 [ 947.209154][T18630] ? __pfx___might_resched+0x10/0x10 [ 947.209184][T18630] __x64_sys_futex+0x1e0/0x4c0 [ 947.209219][T18630] ? __pfx_blkcg_maybe_throttle_current+0x10/0x10 [ 947.209246][T18630] ? __pfx___x64_sys_futex+0x10/0x10 [ 947.209280][T18630] ? __pfx___do_sys_close_range+0x10/0x10 [ 947.209317][T18630] do_syscall_64+0xcd/0xfa0 [ 947.209346][T18630] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 947.209371][T18630] RIP: 0033:0x7f4c7cb8eec9 [ 947.209390][T18630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 947.209414][T18630] RSP: 002b:00007f4c7d99e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 947.209437][T18630] RAX: ffffffffffffffda RBX: 00007f4c7cde6098 RCX: 00007f4c7cb8eec9 [ 947.209453][T18630] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f4c7cde6098 [ 947.209468][T18630] RBP: 00007f4c7cde6090 R08: 0000000000000000 R09: 0000000000000000 [ 947.209483][T18630] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 947.209497][T18630] R13: 00007f4c7cde6128 R14: 00007ffc0ec25550 R15: 00007ffc0ec25638 [ 947.209530][T18630] [ 947.424934][ C0] vkms_vblank_simulate: vblank timer overrun [ 949.858875][ T5838] Bluetooth: hci3: unexpected subevent 0x05 length: 123 > 12 [ 949.971479][T18683] FAULT_INJECTION: forcing a failure. [ 949.971479][T18683] name fail_futex, interval 1, probability 0, space 0, times 0 [ 950.043130][T18683] CPU: 0 UID: 0 PID: 18683 Comm: syz.0.2866 Not tainted syzkaller #0 PREEMPT(full) [ 950.043164][T18683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 950.043179][T18683] Call Trace: [ 950.043187][T18683] [ 950.043197][T18683] dump_stack_lvl+0x16c/0x1f0 [ 950.043230][T18683] should_fail_ex+0x512/0x640 [ 950.043265][T18683] get_futex_key+0x1d0/0x1560 [ 950.043302][T18683] ? __pfx_get_futex_key+0x10/0x10 [ 950.043337][T18683] ? __pick_eevdf+0x30a/0x670 [ 950.043371][T18683] futex_wait_setup+0x9d/0x550 [ 950.043420][T18683] __futex_wait+0x193/0x2f0 [ 950.043460][T18683] ? __pfx___futex_wait+0x10/0x10 [ 950.043506][T18683] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 950.043533][T18683] ? lockdep_hardirqs_on+0x7c/0x110 [ 950.043565][T18683] ? __pfx_futex_wake_mark+0x10/0x10 [ 950.043609][T18683] ? futex_private_hash_put+0x176/0x300 [ 950.043645][T18683] ? futex_private_hash_put+0x18a/0x300 [ 950.043679][T18683] futex_wait+0xe8/0x380 [ 950.043718][T18683] ? __pfx_futex_wait+0x10/0x10 [ 950.043774][T18683] do_futex+0x229/0x350 [ 950.043807][T18683] ? __pfx_do_futex+0x10/0x10 [ 950.043840][T18683] ? __fput+0x68d/0xb70 [ 950.043872][T18683] ? __pfx___might_resched+0x10/0x10 [ 950.043901][T18683] __x64_sys_futex+0x1e0/0x4c0 [ 950.043936][T18683] ? __pfx_blkcg_maybe_throttle_current+0x10/0x10 [ 950.043964][T18683] ? __pfx___x64_sys_futex+0x10/0x10 [ 950.043999][T18683] ? __pfx___do_sys_close_range+0x10/0x10 [ 950.044036][T18683] do_syscall_64+0xcd/0xfa0 [ 950.044066][T18683] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 950.044090][T18683] RIP: 0033:0x7ff14938eec9 [ 950.044109][T18683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 950.044132][T18683] RSP: 002b:00007ff14a15e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 950.044155][T18683] RAX: ffffffffffffffda RBX: 00007ff1495e6098 RCX: 00007ff14938eec9 [ 950.044171][T18683] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007ff1495e6098 [ 950.044186][T18683] RBP: 00007ff1495e6090 R08: 0000000000000000 R09: 0000000000000000 [ 950.044200][T18683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 950.044215][T18683] R13: 00007ff1495e6128 R14: 00007ffe87cf5910 R15: 00007ffe87cf59f8 [ 950.044247][T18683] [ 950.275147][ C0] vkms_vblank_simulate: vblank timer overrun [ 951.910901][ T5838] Bluetooth: hci3: command 0x0c1a tx timeout [ 951.930217][T18705] netlink: 'syz.0.2869': attribute type 1 has an invalid length. [ 953.493658][T18743] ERROR: Out of memory at tomoyo_memory_ok. [ 953.762627][ T31] audit: type=1800 audit(4294967308.710:14): pid=18746 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2878" name="lu_gp_id" dev="configfs" ino=68974 res=0 errno=0 [ 953.885132][T18751] FAULT_INJECTION: forcing a failure. [ 953.885132][T18751] name fail_futex, interval 1, probability 0, space 0, times 0 [ 953.948129][T18751] CPU: 0 UID: 0 PID: 18751 Comm: syz.2.2879 Not tainted syzkaller #0 PREEMPT(full) [ 953.948162][T18751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 953.948178][T18751] Call Trace: [ 953.948185][T18751] [ 953.948195][T18751] dump_stack_lvl+0x16c/0x1f0 [ 953.948228][T18751] should_fail_ex+0x512/0x640 [ 953.948264][T18751] get_futex_key+0x1d0/0x1560 [ 953.948299][T18751] ? __pfx_get_futex_key+0x10/0x10 [ 953.948336][T18751] ? stack_trace_save+0x8e/0xc0 [ 953.948367][T18751] futex_wait_setup+0x9d/0x550 [ 953.948416][T18751] __futex_wait+0x193/0x2f0 [ 953.948457][T18751] ? __pfx___futex_wait+0x10/0x10 [ 953.948501][T18751] ? __pfx_futex_wake_mark+0x10/0x10 [ 953.948545][T18751] ? futex_private_hash_put+0x176/0x300 [ 953.948580][T18751] ? futex_private_hash_put+0x18a/0x300 [ 953.948617][T18751] futex_wait+0xe8/0x380 [ 953.948655][T18751] ? __pfx_futex_wait+0x10/0x10 [ 953.948710][T18751] do_futex+0x229/0x350 [ 953.948744][T18751] ? __pfx_do_futex+0x10/0x10 [ 953.948777][T18751] ? __fput+0x68d/0xb70 [ 953.948809][T18751] ? __pfx___might_resched+0x10/0x10 [ 953.948838][T18751] __x64_sys_futex+0x1e0/0x4c0 [ 953.948873][T18751] ? __pfx_blkcg_maybe_throttle_current+0x10/0x10 [ 953.948900][T18751] ? __pfx___x64_sys_futex+0x10/0x10 [ 953.948936][T18751] ? __pfx___do_sys_close_range+0x10/0x10 [ 953.948972][T18751] do_syscall_64+0xcd/0xfa0 [ 953.949011][T18751] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 953.949036][T18751] RIP: 0033:0x7f4c7cb8eec9 [ 953.949055][T18751] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 953.949083][T18751] RSP: 002b:00007f4c7d99e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 953.949107][T18751] RAX: ffffffffffffffda RBX: 00007f4c7cde6098 RCX: 00007f4c7cb8eec9 [ 953.949124][T18751] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f4c7cde6098 [ 953.949139][T18751] RBP: 00007f4c7cde6090 R08: 0000000000000000 R09: 0000000000000000 [ 953.949154][T18751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 953.949169][T18751] R13: 00007f4c7cde6128 R14: 00007ffc0ec25550 R15: 00007ffc0ec25638 [ 953.949202][T18751] [ 955.163826][ T5838] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 955.163859][ T5838] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 955.182185][ T5838] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 955.182213][ T5838] Bluetooth: hci0: adv larger than maximum supported [ 955.189837][ T5838] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 955.196556][ T5838] Bluetooth: hci0: Malformed LE Event: 0x0d [ 955.296818][T18774] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2884'. [ 955.347828][T18774] netlink: 'syz.0.2884': attribute type 1 has an invalid length. [ 955.491723][T18777] vivid-007: ================= START STATUS ================= [ 955.547977][T18777] vivid-007: Generate PTS: true [ 955.588423][T18777] vivid-007: Generate SCR: true [ 955.620420][T18777] tpg source WxH: 320x240 (Y'CbCr) [ 955.731123][T18782] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 955.744936][T18777] tpg field: 1 [ 955.748349][T18777] tpg crop: (0,0)/320x240 [ 955.824092][T18777] tpg compose: (0,0)/320x240 [ 955.828737][T18777] tpg colorspace: 8 [ 955.967723][T18777] tpg transfer function: 0/0 [ 956.043514][T18777] tpg Y'CbCr encoding: 0/0 [ 956.047977][T18777] tpg quantization: 0/0 [ 956.123071][T18777] tpg RGB range: 0/2 [ 956.174338][T18777] vivid-007: ================== END STATUS ================== [ 956.261427][T18788] can: request_module (can-proto-3) failed. [ 956.346631][T18786] vivid-007: ================= START STATUS ================= [ 956.398744][T18795] can: request_module (can-proto-3) failed. [ 956.503903][T18786] vivid-007: Generate PTS: true [ 956.594661][T18786] vivid-007: Generate SCR: true [ 956.685751][T18786] tpg source WxH: 320x240 (Y'CbCr) [ 956.769451][T18786] tpg field: 1 [ 956.827718][T18786] tpg crop: (0,0)/320x240 [ 956.892253][T18786] tpg compose: (0,0)/320x240 [ 956.966138][T18786] tpg colorspace: 8 [ 956.982792][T18786] tpg transfer function: 0/0 [ 956.987441][T18786] tpg Y'CbCr encoding: 0/0 [ 957.044960][T18786] tpg quantization: 0/0 [ 957.075706][T18786] tpg RGB range: 0/2 [ 957.104515][T18786] vivid-007: ================== END STATUS ================== [ 957.218163][ T31] audit: type=1800 audit(4294967312.160:15): pid=18811 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2891" name="lu_gp_id" dev="configfs" ino=69349 res=0 errno=0 [ 957.556528][ T5838] Bluetooth: hci0: unexpected event 0x36 length: 123 > 7 [ 958.099331][T18816] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2892'. [ 959.243767][T18841] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 960.343393][T18857] vivid-007: ================= START STATUS ================= [ 960.433315][T18857] vivid-007: Generate PTS: true [ 960.438242][T18857] vivid-007: Generate SCR: true [ 960.640795][T18857] tpg source WxH: 320x240 (Y'CbCr) [ 960.907450][T18857] tpg field: 1 [ 960.923866][T18867] FAULT_INJECTION: forcing a failure. [ 960.923866][T18867] name failslab, interval 1, probability 0, space 0, times 0 [ 960.948923][ T31] audit: type=1800 audit(4294967315.890:16): pid=18866 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2904" name="lu_gp_id" dev="configfs" ino=69668 res=0 errno=0 [ 960.973973][T18857] tpg crop: (0,0)/320x240 [ 961.029249][T18857] tpg compose: (0,0)/320x240 [ 961.060978][T18867] CPU: 0 UID: 0 PID: 18867 Comm: syz.1.2903 Not tainted syzkaller #0 PREEMPT(full) [ 961.061012][T18867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 961.061027][T18867] Call Trace: [ 961.061036][T18867] [ 961.061045][T18867] dump_stack_lvl+0x16c/0x1f0 [ 961.061078][T18867] should_fail_ex+0x512/0x640 [ 961.061109][T18867] ? __kmalloc_cache_noprof+0x5f/0x780 [ 961.061152][T18867] should_failslab+0xc2/0x120 [ 961.061185][T18867] __kmalloc_cache_noprof+0x72/0x780 [ 961.061230][T18867] ? resv_map_alloc+0x7e/0x400 [ 961.061267][T18867] ? resv_map_alloc+0x7e/0x400 [ 961.061298][T18867] resv_map_alloc+0x7e/0x400 [ 961.061333][T18867] hugetlbfs_get_inode+0x33f/0x730 [ 961.061358][T18867] ? security_capable+0x7e/0x260 [ 961.061394][T18867] hugetlb_file_setup+0x38d/0x620 [ 961.061424][T18867] newseg+0xa74/0xe60 [ 961.061452][T18867] ? __pfx_newseg+0x10/0x10 [ 961.061479][T18867] ? find_held_lock+0x2b/0x80 [ 961.061506][T18867] ? ipcget+0xa98/0xfa0 [ 961.061535][T18867] ipcget+0xaf0/0xfa0 [ 961.061570][T18867] ? __pfx___might_resched+0x10/0x10 [ 961.061597][T18867] ? __pfx_ipcget+0x10/0x10 [ 961.061623][T18867] ? __x64_sys_futex+0x1e0/0x4c0 [ 961.061656][T18867] ? __x64_sys_futex+0x1e9/0x4c0 [ 961.061694][T18867] __x64_sys_shmget+0x13b/0x1b0 [ 961.061720][T18867] ? __pfx___x64_sys_shmget+0x10/0x10 [ 961.061750][T18867] ? rcu_is_watching+0x12/0xc0 [ 961.061778][T18867] do_syscall_64+0xcd/0xfa0 [ 961.061809][T18867] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 961.061833][T18867] RIP: 0033:0x7f0d72d8eec9 [ 961.061852][T18867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 961.061877][T18867] RSP: 002b:00007f0d73b97038 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 961.061900][T18867] RAX: ffffffffffffffda RBX: 00007f0d72fe6090 RCX: 00007f0d72d8eec9 [ 961.061916][T18867] RDX: 000000000000ffff RSI: 0000000000000006 RDI: 0000000000000004 [ 961.061930][T18867] RBP: 00007f0d72e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 961.061945][T18867] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 961.061959][T18867] R13: 00007f0d72fe6128 R14: 00007f0d72fe6090 R15: 00007ffc2bc306d8 [ 961.061992][T18867] [ 961.540068][T18857] tpg colorspace: 8 [ 961.543921][T18857] tpg transfer function: 0/0 [ 961.548515][T18857] tpg Y'CbCr encoding: 0/0 [ 961.572137][T18857] tpg quantization: 0/0 [ 961.644999][T18857] tpg RGB range: 0/2 [ 961.648942][T18857] vivid-007: ================== END STATUS ================== [ 961.774611][T18872] can: request_module (can-proto-3) failed. [ 962.463702][ T5838] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260 [ 962.463735][ T5838] Bluetooth: hci4: unexpected subevent 0x0d length: 725 > 260 [ 962.481233][ T5838] Bluetooth: hci4: Unknown advertising packet type: 0x7f [ 962.481279][ T5838] Bluetooth: hci4: adv larger than maximum supported [ 962.488562][ T5838] Bluetooth: hci4: adv larger than maximum supported [ 962.496536][ T5838] Bluetooth: hci4: adv larger than maximum supported [ 962.503520][ T5838] Bluetooth: hci4: Malformed LE Event: 0x0d [ 963.063397][T18896] vivid-007: ================= START STATUS ================= [ 963.093885][T18896] vivid-007: Generate PTS: true [ 963.098805][T18896] vivid-007: Generate SCR: true [ 963.136175][T18896] tpg source WxH: 320x240 (Y'CbCr) [ 963.169355][T18896] tpg field: 1 [ 963.172774][T18896] tpg crop: (0,0)/320x240 [ 963.217321][T18896] tpg compose: (0,0)/320x240 [ 963.260472][T18896] tpg colorspace: 8 [ 963.286872][T18896] tpg transfer function: 0/0 [ 963.363907][T18896] tpg Y'CbCr encoding: 0/0 [ 963.389402][T18896] tpg quantization: 0/0 [ 963.432740][T18896] tpg RGB range: 0/2 [ 963.496280][T18896] vivid-007: ================== END STATUS ================== [ 963.784027][T18904] can: request_module (can-proto-3) failed. [ 965.208628][T18924] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 965.299749][T18924] CPU: 0 UID: 0 PID: 18924 Comm: syz.3.2916 Not tainted syzkaller #0 PREEMPT(full) [ 965.299790][T18924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 965.299805][T18924] Call Trace: [ 965.299814][T18924] [ 965.299823][T18924] dump_stack_lvl+0x16c/0x1f0 [ 965.299856][T18924] sysfs_warn_dup+0x7f/0xa0 [ 965.299887][T18924] sysfs_do_create_link_sd+0x124/0x140 [ 965.299920][T18924] sysfs_create_link+0x61/0xc0 [ 965.299950][T18924] device_add+0x62c/0x1aa0 [ 965.299985][T18924] ? __pfx_device_add+0x10/0x10 [ 965.300014][T18924] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 965.300057][T18924] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 965.300093][T18924] wiphy_register+0x1eb0/0x2b20 [ 965.300126][T18924] ? netdev_run_todo+0x864/0x1320 [ 965.300166][T18924] ? __pfx_wiphy_register+0x10/0x10 [ 965.300217][T18924] ieee80211_register_hw+0x253d/0x4120 [ 965.300262][T18924] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 965.300295][T18924] ? __pfx___debug_object_init+0x10/0x10 [ 965.300325][T18924] ? find_held_lock+0x2b/0x80 [ 965.300351][T18924] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 965.300393][T18924] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 965.300419][T18924] ? __hrtimer_setup+0x176/0x280 [ 965.300469][T18924] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 965.300528][T18924] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 965.300574][T18924] hwsim_new_radio_nl+0xba2/0x1330 [ 965.300613][T18924] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 965.300662][T18924] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 965.300700][T18924] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 965.300744][T18924] genl_family_rcv_msg_doit+0x209/0x2f0 [ 965.300790][T18924] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 965.300837][T18924] ? bpf_lsm_capable+0x9/0x10 [ 965.300869][T18924] ? security_capable+0x7e/0x260 [ 965.300902][T18924] ? ns_capable+0xd7/0x110 [ 965.300931][T18924] genl_rcv_msg+0x55c/0x800 [ 965.300970][T18924] ? __pfx_genl_rcv_msg+0x10/0x10 [ 965.301007][T18924] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 965.301056][T18924] netlink_rcv_skb+0x155/0x420 [ 965.301087][T18924] ? __pfx_genl_rcv_msg+0x10/0x10 [ 965.301124][T18924] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 965.301168][T18924] ? netlink_deliver_tap+0x1ae/0xd30 [ 965.301203][T18924] genl_rcv+0x28/0x40 [ 965.301234][T18924] netlink_unicast+0x5aa/0x870 [ 965.301270][T18924] ? __pfx_netlink_unicast+0x10/0x10 [ 965.301300][T18924] ? __pfx___might_resched+0x10/0x10 [ 965.301326][T18924] ? __lock_acquire+0xb97/0x1ce0 [ 965.301368][T18924] netlink_sendmsg+0x8c8/0xdd0 [ 965.301404][T18924] ? __pfx_netlink_sendmsg+0x10/0x10 [ 965.301440][T18924] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 965.301479][T18924] ____sys_sendmsg+0xa98/0xc70 [ 965.301517][T18924] ? copy_msghdr_from_user+0x10a/0x160 [ 965.301545][T18924] ? __pfx_____sys_sendmsg+0x10/0x10 [ 965.301589][T18924] ? __pfx_futex_wake_mark+0x10/0x10 [ 965.301633][T18924] ___sys_sendmsg+0x134/0x1d0 [ 965.301664][T18924] ? __pfx____sys_sendmsg+0x10/0x10 [ 965.301734][T18924] __sys_sendmsg+0x16d/0x220 [ 965.301763][T18924] ? __pfx___sys_sendmsg+0x10/0x10 [ 965.301798][T18924] ? __x64_sys_futex+0x1e0/0x4c0 [ 965.301852][T18924] do_syscall_64+0xcd/0xfa0 [ 965.301884][T18924] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 965.301909][T18924] RIP: 0033:0x7effb8b8eec9 [ 965.301929][T18924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 965.301954][T18924] RSP: 002b:00007effb9a89038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 965.301978][T18924] RAX: ffffffffffffffda RBX: 00007effb8de5fa0 RCX: 00007effb8b8eec9 [ 965.301994][T18924] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003 [ 965.302009][T18924] RBP: 00007effb8c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 965.302024][T18924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 965.302038][T18924] R13: 00007effb8de6038 R14: 00007effb8de5fa0 R15: 00007ffd1aa70798 [ 965.302072][T18924] [ 967.522038][T18939] vivid-007: ================= START STATUS ================= [ 967.565667][T18939] vivid-007: Generate PTS: true [ 967.600279][T18939] vivid-007: Generate SCR: true [ 967.605260][T18939] tpg source WxH: 320x240 (Y'CbCr) [ 967.661541][T18939] tpg field: 1 [ 967.664968][T18939] tpg crop: (0,0)/320x240 [ 967.697890][T18939] tpg compose: (0,0)/320x240 [ 967.711506][T18939] tpg colorspace: 8 [ 967.763730][T18939] tpg transfer function: 0/0 [ 967.768398][T18939] tpg Y'CbCr encoding: 0/0 [ 967.846076][T18939] tpg quantization: 0/0 [ 967.868556][T18939] tpg RGB range: 0/2 [ 967.919533][T18939] vivid-007: ================== END STATUS ================== [ 968.021541][T18951] vivid-007: ================= START STATUS ================= [ 968.116758][T18951] vivid-007: Generate PTS: true [ 968.167372][T18951] vivid-007: Generate SCR: true [ 968.186040][T18958] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 968.218006][T18951] tpg source WxH: 320x240 (Y'CbCr) [ 968.316094][T18951] tpg field: 1 [ 968.351737][T18951] tpg crop: (0,0)/320x240 [ 968.442978][T18951] tpg compose: (0,0)/320x240 [ 968.505453][T18951] tpg colorspace: 8 [ 968.594363][T18961] can: request_module (can-proto-3) failed. [ 968.641946][T18951] tpg transfer function: 0/0 [ 968.707989][T18951] tpg Y'CbCr encoding: 0/0 [ 968.766324][T18951] tpg quantization: 0/0 [ 968.832192][T18951] tpg RGB range: 0/2 [ 968.874169][T18951] vivid-007: ================== END STATUS ================== [ 969.951342][T18984] FAULT_INJECTION: forcing a failure. [ 969.951342][T18984] name failslab, interval 1, probability 0, space 0, times 0 [ 970.027681][T18984] CPU: 0 UID: 0 PID: 18984 Comm: syz.1.2930 Not tainted syzkaller #0 PREEMPT(full) [ 970.027714][T18984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 970.027729][T18984] Call Trace: [ 970.027738][T18984] [ 970.027748][T18984] dump_stack_lvl+0x16c/0x1f0 [ 970.027780][T18984] should_fail_ex+0x512/0x640 [ 970.027811][T18984] ? __kmalloc_cache_noprof+0x5f/0x780 [ 970.027854][T18984] should_failslab+0xc2/0x120 [ 970.027888][T18984] __kmalloc_cache_noprof+0x72/0x780 [ 970.027928][T18984] ? resv_map_alloc+0x46/0x400 [ 970.027965][T18984] ? resv_map_alloc+0x46/0x400 [ 970.027997][T18984] resv_map_alloc+0x46/0x400 [ 970.028031][T18984] hugetlbfs_get_inode+0x33f/0x730 [ 970.028057][T18984] ? security_capable+0x7e/0x260 [ 970.028093][T18984] hugetlb_file_setup+0x38d/0x620 [ 970.028123][T18984] newseg+0xa74/0xe60 [ 970.028152][T18984] ? __pfx_newseg+0x10/0x10 [ 970.028173][T18984] ? find_held_lock+0x2b/0x80 [ 970.028198][T18984] ? ipcget+0xa98/0xfa0 [ 970.028236][T18984] ipcget+0xaf0/0xfa0 [ 970.028270][T18984] ? __pfx___might_resched+0x10/0x10 [ 970.028297][T18984] ? __pfx_ipcget+0x10/0x10 [ 970.028323][T18984] ? __x64_sys_futex+0x1e0/0x4c0 [ 970.028356][T18984] ? __x64_sys_futex+0x1e9/0x4c0 [ 970.028394][T18984] __x64_sys_shmget+0x13b/0x1b0 [ 970.028419][T18984] ? __pfx___x64_sys_shmget+0x10/0x10 [ 970.028449][T18984] ? rcu_is_watching+0x12/0xc0 [ 970.028478][T18984] do_syscall_64+0xcd/0xfa0 [ 970.028508][T18984] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 970.028532][T18984] RIP: 0033:0x7f0d72d8eec9 [ 970.028551][T18984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 970.028574][T18984] RSP: 002b:00007f0d73b97038 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 970.028597][T18984] RAX: ffffffffffffffda RBX: 00007f0d72fe6090 RCX: 00007f0d72d8eec9 [ 970.028614][T18984] RDX: 000000000000ffff RSI: 0000000000000006 RDI: 0000000000000004 [ 970.028628][T18984] RBP: 00007f0d72e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 970.028643][T18984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 970.028657][T18984] R13: 00007f0d72fe6128 R14: 00007f0d72fe6090 R15: 00007ffc2bc306d8 [ 970.028690][T18984] [ 971.995433][T18995] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 972.068042][T18995] CPU: 0 UID: 0 PID: 18995 Comm: syz.3.2932 Not tainted syzkaller #0 PREEMPT(full) [ 972.068076][T18995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 972.068091][T18995] Call Trace: [ 972.068099][T18995] [ 972.068109][T18995] dump_stack_lvl+0x16c/0x1f0 [ 972.068143][T18995] sysfs_warn_dup+0x7f/0xa0 [ 972.068173][T18995] sysfs_do_create_link_sd+0x124/0x140 [ 972.068207][T18995] sysfs_create_link+0x61/0xc0 [ 972.068237][T18995] device_add+0x62c/0x1aa0 [ 972.068272][T18995] ? __pfx_device_add+0x10/0x10 [ 972.068301][T18995] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 972.068345][T18995] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 972.068380][T18995] wiphy_register+0x1eb0/0x2b20 [ 972.068413][T18995] ? netdev_run_todo+0x864/0x1320 [ 972.068454][T18995] ? __pfx_wiphy_register+0x10/0x10 [ 972.068504][T18995] ieee80211_register_hw+0x253d/0x4120 [ 972.068550][T18995] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 972.068584][T18995] ? __pfx___debug_object_init+0x10/0x10 [ 972.068613][T18995] ? find_held_lock+0x2b/0x80 [ 972.068639][T18995] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 972.068681][T18995] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 972.068708][T18995] ? __hrtimer_setup+0x176/0x280 [ 972.068749][T18995] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 972.068804][T18995] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 972.068855][T18995] hwsim_new_radio_nl+0xba2/0x1330 [ 972.068894][T18995] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 972.068940][T18995] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 972.068987][T18995] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 972.069031][T18995] genl_family_rcv_msg_doit+0x209/0x2f0 [ 972.069073][T18995] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 972.069121][T18995] ? bpf_lsm_capable+0x9/0x10 [ 972.069152][T18995] ? security_capable+0x7e/0x260 [ 972.069187][T18995] ? ns_capable+0xd7/0x110 [ 972.069224][T18995] genl_rcv_msg+0x55c/0x800 [ 972.069263][T18995] ? __pfx_genl_rcv_msg+0x10/0x10 [ 972.069299][T18995] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 972.069347][T18995] netlink_rcv_skb+0x155/0x420 [ 972.069377][T18995] ? __pfx_genl_rcv_msg+0x10/0x10 [ 972.069414][T18995] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 972.069459][T18995] ? netlink_deliver_tap+0x1ae/0xd30 [ 972.069493][T18995] genl_rcv+0x28/0x40 [ 972.069523][T18995] netlink_unicast+0x5aa/0x870 [ 972.069559][T18995] ? __pfx_netlink_unicast+0x10/0x10 [ 972.069589][T18995] ? __pfx___might_resched+0x10/0x10 [ 972.069614][T18995] ? __lock_acquire+0xb97/0x1ce0 [ 972.069656][T18995] netlink_sendmsg+0x8c8/0xdd0 [ 972.069693][T18995] ? __pfx_netlink_sendmsg+0x10/0x10 [ 972.069728][T18995] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 972.069767][T18995] ____sys_sendmsg+0xa98/0xc70 [ 972.069804][T18995] ? copy_msghdr_from_user+0x10a/0x160 [ 972.069833][T18995] ? __pfx_____sys_sendmsg+0x10/0x10 [ 972.069915][T18995] ? __pfx_futex_wake_mark+0x10/0x10 [ 972.069961][T18995] ___sys_sendmsg+0x134/0x1d0 [ 972.069998][T18995] ? __pfx____sys_sendmsg+0x10/0x10 [ 972.070070][T18995] __sys_sendmsg+0x16d/0x220 [ 972.070100][T18995] ? __pfx___sys_sendmsg+0x10/0x10 [ 972.070128][T18995] ? __x64_sys_futex+0x1e0/0x4c0 [ 972.070181][T18995] do_syscall_64+0xcd/0xfa0 [ 972.070213][T18995] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 972.070238][T18995] RIP: 0033:0x7effb8b8eec9 [ 972.070258][T18995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 972.070283][T18995] RSP: 002b:00007effb9a89038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 972.070307][T18995] RAX: ffffffffffffffda RBX: 00007effb8de5fa0 RCX: 00007effb8b8eec9 [ 972.070323][T18995] RDX: 0000000000040500 RSI: 00002000000000c0 RDI: 0000000000000003 [ 972.070339][T18995] RBP: 00007effb8c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 972.070354][T18995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 972.070369][T18995] R13: 00007effb8de6038 R14: 00007effb8de5fa0 R15: 00007ffd1aa70798 [ 972.070403][T18995] [ 973.755704][T19002] mkiss: ax0: crc mode is auto. [ 973.853469][T19003] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2934'. [ 974.091085][T19011] vivid-007: ================= START STATUS ================= [ 974.116868][T19011] vivid-007: Generate PTS: true [ 974.132276][T19011] vivid-007: Generate SCR: true [ 974.157709][T19011] tpg source WxH: 320x240 (Y'CbCr) [ 974.176914][T19011] tpg field: 1 [ 974.185139][T19011] tpg crop: (0,0)/320x240 [ 974.196308][T19011] tpg compose: (0,0)/320x240 [ 974.216169][T19011] tpg colorspace: 8 [ 974.240657][T19011] tpg transfer function: 0/0 [ 974.300376][T19011] tpg Y'CbCr encoding: 0/0 [ 974.347586][T19011] tpg quantization: 0/0 [ 974.388871][T19011] tpg RGB range: 0/2 [ 974.470661][T19011] vivid-007: ================== END STATUS ================== [ 974.586135][ T31] audit: type=1800 audit(4294967329.530:17): pid=19023 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2938" name="discovery_nqn" dev="configfs" ino=70681 res=0 errno=0 [ 974.797370][T19015] can: request_module (can-proto-3) failed. [ 975.138959][T19033] FAULT_INJECTION: forcing a failure. [ 975.138959][T19033] name failslab, interval 1, probability 0, space 0, times 0 [ 975.231024][T19033] CPU: 0 UID: 0 PID: 19033 Comm: syz.0.2940 Not tainted syzkaller #0 PREEMPT(full) [ 975.231057][T19033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 975.231072][T19033] Call Trace: [ 975.231080][T19033] [ 975.231090][T19033] dump_stack_lvl+0x16c/0x1f0 [ 975.231123][T19033] should_fail_ex+0x512/0x640 [ 975.231152][T19033] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 975.231181][T19033] should_failslab+0xc2/0x120 [ 975.231220][T19033] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 975.231248][T19033] ? __d_alloc+0x32/0xae0 [ 975.231281][T19033] ? __d_alloc+0x32/0xae0 [ 975.231305][T19033] __d_alloc+0x32/0xae0 [ 975.231336][T19033] d_alloc_parallel+0x111/0x1480 [ 975.231380][T19033] ? find_held_lock+0x2b/0x80 [ 975.231408][T19033] ? __pfx_d_alloc_parallel+0x10/0x10 [ 975.231448][T19033] ? __d_lookup+0x266/0x4a0 [ 975.231491][T19033] lookup_open.isra.0+0x665/0x1580 [ 975.231537][T19033] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 975.231596][T19033] ? lookup_fast+0x156/0x610 [ 975.231638][T19033] path_openat+0x893/0x2cb0 [ 975.231682][T19033] ? __pfx_path_openat+0x10/0x10 [ 975.231717][T19033] do_filp_open+0x20b/0x470 [ 975.231744][T19033] ? __pfx_do_filp_open+0x10/0x10 [ 975.231783][T19033] ? __pfx_kfree_link+0x10/0x10 [ 975.231827][T19033] ? alloc_fd+0x471/0x7d0 [ 975.231859][T19033] do_sys_openat2+0x11b/0x1d0 [ 975.231895][T19033] ? __pfx_do_sys_openat2+0x10/0x10 [ 975.231943][T19033] __x64_sys_openat+0x174/0x210 [ 975.231979][T19033] ? __pfx___x64_sys_openat+0x10/0x10 [ 975.232028][T19033] do_syscall_64+0xcd/0xfa0 [ 975.232059][T19033] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 975.232083][T19033] RIP: 0033:0x7ff14938eec9 [ 975.232102][T19033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 975.232126][T19033] RSP: 002b:00007ff14a17f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 975.232149][T19033] RAX: ffffffffffffffda RBX: 00007ff1495e5fa0 RCX: 00007ff14938eec9 [ 975.232165][T19033] RDX: 0000000000109480 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 975.232181][T19033] RBP: 00007ff149411f91 R08: 0000000000000000 R09: 0000000000000000 [ 975.232196][T19033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 975.232211][T19033] R13: 00007ff1495e6038 R14: 00007ff1495e5fa0 R15: 00007ffe87cf59f8 [ 975.232244][T19033] [ 975.471900][ C0] vkms_vblank_simulate: vblank timer overrun [ 976.359352][T19047] random: crng reseeded on system resumption [ 977.966457][T19061] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2945'. [ 978.395533][T19067] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2948'. [ 978.494640][T19071] FAULT_INJECTION: forcing a failure. [ 978.494640][T19071] name fail_futex, interval 1, probability 0, space 0, times 0 [ 978.579398][T19071] CPU: 0 UID: 0 PID: 19071 Comm: syz.0.2949 Not tainted syzkaller #0 PREEMPT(full) [ 978.579431][T19071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 978.579447][T19071] Call Trace: [ 978.579454][T19071] [ 978.579464][T19071] dump_stack_lvl+0x16c/0x1f0 [ 978.579497][T19071] should_fail_ex+0x512/0x640 [ 978.579532][T19071] get_futex_key+0x1d0/0x1560 [ 978.579568][T19071] ? __pfx_get_futex_key+0x10/0x10 [ 978.579602][T19071] ? __lock_acquire+0xb97/0x1ce0 [ 978.579642][T19071] futex_wake+0xea/0x530 [ 978.579681][T19071] ? find_held_lock+0x2b/0x80 [ 978.579706][T19071] ? __pfx_futex_wake+0x10/0x10 [ 978.579743][T19071] ? find_held_lock+0x2b/0x80 [ 978.579771][T19071] ? up_write+0x1b2/0x520 [ 978.579813][T19071] do_futex+0x1e3/0x350 [ 978.579846][T19071] ? __pfx_do_futex+0x10/0x10 [ 978.579882][T19071] ? __pfx___might_resched+0x10/0x10 [ 978.579912][T19071] __x64_sys_futex+0x1e0/0x4c0 [ 978.579950][T19071] ? __pfx___x64_sys_futex+0x10/0x10 [ 978.579988][T19071] ? __pfx___x64_sys_shmget+0x10/0x10 [ 978.580026][T19071] do_syscall_64+0xcd/0xfa0 [ 978.580056][T19071] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 978.580081][T19071] RIP: 0033:0x7ff14938eec9 [ 978.580100][T19071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 978.580124][T19071] RSP: 002b:00007ff14a15e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 978.580147][T19071] RAX: ffffffffffffffda RBX: 00007ff1495e6098 RCX: 00007ff14938eec9 [ 978.580162][T19071] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff1495e609c [ 978.580177][T19071] RBP: 00007ff1495e6090 R08: 00007ff14a180000 R09: 0000000000000000 [ 978.580192][T19071] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 978.580207][T19071] R13: 00007ff1495e6128 R14: 00007ffe87cf5910 R15: 00007ffe87cf59f8 [ 978.580239][T19071] [ 978.777002][ C0] vkms_vblank_simulate: vblank timer overrun [ 979.099135][ T31] audit: type=1804 audit(4294967333.760:18): pid=19072 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2943" name="/newroot/113/file0" dev="tmpfs" ino=612 res=1 errno=0 [ 979.199722][ T31] audit: type=1800 audit(4294967333.760:19): pid=19072 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2943" name="file0" dev="tmpfs" ino=612 res=0 errno=0 [ 980.086811][T19083] vivid-007: ================= START STATUS ================= [ 980.115069][T19083] vivid-007: Generate PTS: true [ 980.160155][T19083] vivid-007: Generate SCR: true [ 980.165255][T19083] tpg source WxH: 320x240 (Y'CbCr) [ 980.205037][T19083] tpg field: 1 [ 980.208502][T19083] tpg crop: (0,0)/320x240 [ 980.266935][T19083] tpg compose: (0,0)/320x240 [ 980.299388][T19083] tpg colorspace: 8 [ 980.366268][T19083] tpg transfer function: 0/0 [ 980.472659][T19083] tpg Y'CbCr encoding: 0/0 [ 980.520624][T19083] tpg quantization: 0/0 [ 980.524840][T19083] tpg RGB range: 0/2 [ 980.606763][T19083] vivid-007: ================== END STATUS ================== [ 980.756767][T19090] vivid-007: ================= START STATUS ================= [ 980.767320][T19091] can: request_module (can-proto-3) failed. [ 980.844356][T19090] vivid-007: Generate PTS: true [ 980.929295][T19090] vivid-007: Generate SCR: true [ 980.934204][T19090] tpg source WxH: 320x240 (Y'CbCr) [ 981.012482][T19097] can: request_module (can-proto-3) failed. [ 981.140195][T19090] tpg field: 1 [ 981.192501][T19090] tpg crop: (0,0)/320x240 [ 981.196891][T19090] tpg compose: (0,0)/320x240 [ 981.233318][T19103] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 981.297387][T19103] CPU: 0 UID: 0 PID: 19103 Comm: syz.1.2955 Not tainted syzkaller #0 PREEMPT(full) [ 981.297421][T19103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 981.297436][T19103] Call Trace: [ 981.297445][T19103] [ 981.297455][T19103] dump_stack_lvl+0x16c/0x1f0 [ 981.297488][T19103] sysfs_warn_dup+0x7f/0xa0 [ 981.297518][T19103] sysfs_do_create_link_sd+0x124/0x140 [ 981.297552][T19103] sysfs_create_link+0x61/0xc0 [ 981.297582][T19103] device_add+0x62c/0x1aa0 [ 981.297618][T19103] ? __pfx_device_add+0x10/0x10 [ 981.297647][T19103] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 981.297691][T19103] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 981.297727][T19103] wiphy_register+0x1eb0/0x2b20 [ 981.297760][T19103] ? netdev_run_todo+0x864/0x1320 [ 981.297801][T19103] ? __pfx_wiphy_register+0x10/0x10 [ 981.297851][T19103] ieee80211_register_hw+0x253d/0x4120 [ 981.297897][T19103] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 981.297940][T19103] ? __pfx___debug_object_init+0x10/0x10 [ 981.297970][T19103] ? find_held_lock+0x2b/0x80 [ 981.297997][T19103] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 981.298039][T19103] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 981.298065][T19103] ? __hrtimer_setup+0x176/0x280 [ 981.298105][T19103] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 981.298161][T19103] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 981.298207][T19103] hwsim_new_radio_nl+0xba2/0x1330 [ 981.298246][T19103] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 981.298292][T19103] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 981.298330][T19103] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 981.298374][T19103] genl_family_rcv_msg_doit+0x209/0x2f0 [ 981.298413][T19103] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 981.298460][T19103] ? bpf_lsm_capable+0x9/0x10 [ 981.298492][T19103] ? security_capable+0x7e/0x260 [ 981.298525][T19103] ? ns_capable+0xd7/0x110 [ 981.298554][T19103] genl_rcv_msg+0x55c/0x800 [ 981.298593][T19103] ? __pfx_genl_rcv_msg+0x10/0x10 [ 981.298629][T19103] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 981.298676][T19103] netlink_rcv_skb+0x155/0x420 [ 981.298706][T19103] ? __pfx_genl_rcv_msg+0x10/0x10 [ 981.298743][T19103] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 981.298787][T19103] ? netlink_deliver_tap+0x1ae/0xd30 [ 981.298821][T19103] genl_rcv+0x28/0x40 [ 981.298852][T19103] netlink_unicast+0x5aa/0x870 [ 981.298888][T19103] ? __pfx_netlink_unicast+0x10/0x10 [ 981.298918][T19103] ? __pfx___might_resched+0x10/0x10 [ 981.298949][T19103] ? __lock_acquire+0xb97/0x1ce0 [ 981.298991][T19103] netlink_sendmsg+0x8c8/0xdd0 [ 981.299028][T19103] ? __pfx_netlink_sendmsg+0x10/0x10 [ 981.299069][T19103] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 981.299108][T19103] ____sys_sendmsg+0xa98/0xc70 [ 981.299147][T19103] ? copy_msghdr_from_user+0x10a/0x160 [ 981.299175][T19103] ? __pfx_____sys_sendmsg+0x10/0x10 [ 981.299227][T19103] ___sys_sendmsg+0x134/0x1d0 [ 981.299258][T19103] ? __pfx____sys_sendmsg+0x10/0x10 [ 981.299327][T19103] __sys_sendmsg+0x16d/0x220 [ 981.299357][T19103] ? __pfx___sys_sendmsg+0x10/0x10 [ 981.299385][T19103] ? __x64_sys_futex+0x1e0/0x4c0 [ 981.299439][T19103] do_syscall_64+0xcd/0xfa0 [ 981.299470][T19103] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 981.299495][T19103] RIP: 0033:0x7f0d72d8eec9 [ 981.299515][T19103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 981.299540][T19103] RSP: 002b:00007f0d73bb8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 981.299563][T19103] RAX: ffffffffffffffda RBX: 00007f0d72fe5fa0 RCX: 00007f0d72d8eec9 [ 981.299579][T19103] RDX: 0000000000040820 RSI: 00002000000000c0 RDI: 0000000000000003 [ 981.299594][T19103] RBP: 00007f0d72e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 981.299608][T19103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 981.299623][T19103] R13: 00007f0d72fe6038 R14: 00007f0d72fe5fa0 R15: 00007ffc2bc306d8 [ 981.299657][T19103] [ 982.089218][T19090] tpg colorspace: 8 [ 982.093075][T19090] tpg transfer function: 0/0 [ 982.137573][T19090] tpg Y'CbCr encoding: 0/0 [ 982.160873][T19090] tpg quantization: 0/0 [ 982.169412][T19090] tpg RGB range: 0/2 [ 982.173347][T19090] vivid-007: ================== END STATUS ================== [ 982.981625][T19111] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2957'. [ 983.766535][T19131] FAULT_INJECTION: forcing a failure. [ 983.766535][T19131] name fail_futex, interval 1, probability 0, space 0, times 0 [ 983.898993][T19131] CPU: 0 UID: 0 PID: 19131 Comm: syz.3.2962 Not tainted syzkaller #0 PREEMPT(full) [ 983.899027][T19131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 983.899042][T19131] Call Trace: [ 983.899054][T19131] [ 983.899063][T19131] dump_stack_lvl+0x16c/0x1f0 [ 983.899096][T19131] should_fail_ex+0x512/0x640 [ 983.899130][T19131] get_futex_key+0x1d0/0x1560 [ 983.899167][T19131] ? __pfx_get_futex_key+0x10/0x10 [ 983.899199][T19131] ? __lock_acquire+0xb97/0x1ce0 [ 983.899240][T19131] futex_wake+0xea/0x530 [ 983.899280][T19131] ? find_held_lock+0x2b/0x80 [ 983.899303][T19131] ? __pfx_futex_wake+0x10/0x10 [ 983.899342][T19131] ? find_held_lock+0x2b/0x80 [ 983.899369][T19131] ? up_write+0x1b2/0x520 [ 983.899411][T19131] do_futex+0x1e3/0x350 [ 983.899444][T19131] ? __pfx_do_futex+0x10/0x10 [ 983.899481][T19131] ? __pfx___might_resched+0x10/0x10 [ 983.899510][T19131] __x64_sys_futex+0x1e0/0x4c0 [ 983.899548][T19131] ? __pfx___x64_sys_futex+0x10/0x10 [ 983.899583][T19131] ? __pfx___x64_sys_shmget+0x10/0x10 [ 983.899618][T19131] do_syscall_64+0xcd/0xfa0 [ 983.899649][T19131] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 983.899674][T19131] RIP: 0033:0x7effb8b8eec9 [ 983.899693][T19131] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 983.899717][T19131] RSP: 002b:00007effb9a680e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 983.899740][T19131] RAX: ffffffffffffffda RBX: 00007effb8de6098 RCX: 00007effb8b8eec9 [ 983.899763][T19131] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007effb8de609c [ 983.899778][T19131] RBP: 00007effb8de6090 R08: 00007effb9a8a000 R09: 0000000000000000 [ 983.899794][T19131] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 983.899809][T19131] R13: 00007effb8de6128 R14: 00007ffd1aa706b0 R15: 00007ffd1aa70798 [ 983.899841][T19131] [ 984.293283][T19137] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4) [ 984.425845][T19143] vivid-007: ================= START STATUS ================= [ 984.458490][T19143] vivid-007: Generate PTS: true [ 984.468388][T19143] vivid-007: Generate SCR: true [ 984.493094][T19143] tpg source WxH: 320x240 (Y'CbCr) [ 984.514023][T19143] tpg field: 1 [ 984.517553][T19143] tpg crop: (0,0)/320x240 [ 984.522028][T19143] tpg compose: (0,0)/320x240 [ 984.539652][T19143] tpg colorspace: 8 [ 984.545206][T19143] tpg transfer function: 0/0 [ 984.588345][T19143] tpg Y'CbCr encoding: 0/0 [ 984.604118][T19143] tpg quantization: 0/0 [ 984.608315][T19143] tpg RGB range: 0/2 [ 984.637416][T19143] vivid-007: ================== END STATUS ================== [ 984.986242][T19143] can: request_module (can-proto-3) failed. [ 985.204465][T19153] tipc: Started in network mode [ 985.217725][T19153] tipc: Node identity fe820562, cluster identity 4711 [ 985.264558][T19153] tipc: Node number set to 4269933922 [ 985.405380][T19156] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2969'. [ 985.843609][T19170] random: crng reseeded on system resumption [ 986.004279][T19173] ================================================================== [ 986.012382][T19173] BUG: KASAN: slab-use-after-free in dvb_device_open+0x36a/0x3b0 [ 986.020135][T19173] Read of size 8 at addr ffff888029cf9218 by task syz.3.2975/19173 [ 986.028032][T19173] [ 986.030365][T19173] CPU: 0 UID: 0 PID: 19173 Comm: syz.3.2975 Not tainted syzkaller #0 PREEMPT(full) [ 986.030394][T19173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 986.030409][T19173] Call Trace: [ 986.030419][T19173] [ 986.030429][T19173] dump_stack_lvl+0x116/0x1f0 [ 986.030460][T19173] print_report+0xcd/0x630 [ 986.030491][T19173] ? __virt_addr_valid+0x81/0x610 [ 986.030523][T19173] ? __phys_addr+0xe8/0x180 [ 986.030554][T19173] ? dvb_device_open+0x36a/0x3b0 [ 986.030592][T19173] kasan_report+0xe0/0x110 [ 986.030623][T19173] ? dvb_device_open+0x36a/0x3b0 [ 986.030664][T19173] ? __pfx_dvb_device_open+0x10/0x10 [ 986.030702][T19173] dvb_device_open+0x36a/0x3b0 [ 986.030751][T19173] ? __pfx_dvb_device_open+0x10/0x10 [ 986.030790][T19173] chrdev_open+0x234/0x6a0 [ 986.030818][T19173] ? __pfx_apparmor_file_open+0x10/0x10 [ 986.030853][T19173] ? __pfx_chrdev_open+0x10/0x10 [ 986.030882][T19173] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 986.030913][T19173] do_dentry_open+0x982/0x1530 [ 986.030940][T19173] ? __pfx_chrdev_open+0x10/0x10 [ 986.030972][T19173] vfs_open+0x82/0x3f0 [ 986.031008][T19173] path_openat+0x1de4/0x2cb0 [ 986.031039][T19173] ? __pfx_path_openat+0x10/0x10 [ 986.031068][T19173] do_filp_open+0x20b/0x470 [ 986.031094][T19173] ? __pfx_do_filp_open+0x10/0x10 [ 986.031132][T19173] ? alloc_fd+0x471/0x7d0 [ 986.031159][T19173] do_sys_openat2+0x11b/0x1d0 [ 986.031193][T19173] ? __pfx_do_sys_openat2+0x10/0x10 [ 986.031231][T19173] ? __pfx_do_sys_openat2+0x10/0x10 [ 986.031267][T19173] ? __pfx___might_resched+0x10/0x10 [ 986.031297][T19173] __x64_sys_openat+0x174/0x210 [ 986.031333][T19173] ? __pfx___x64_sys_openat+0x10/0x10 [ 986.031376][T19173] do_syscall_64+0xcd/0xfa0 [ 986.031405][T19173] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 986.031430][T19173] RIP: 0033:0x7effb8b8eec9 [ 986.031451][T19173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 986.031475][T19173] RSP: 002b:00007effb9a89038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 986.031499][T19173] RAX: ffffffffffffffda RBX: 00007effb8de5fa0 RCX: 00007effb8b8eec9 [ 986.031516][T19173] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 986.031533][T19173] RBP: 00007effb8c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 986.031549][T19173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 986.031564][T19173] R13: 00007effb8de6038 R14: 00007effb8de5fa0 R15: 00007ffd1aa70798 [ 986.031590][T19173] [ 986.031599][T19173] [ 986.281836][T19173] Allocated by task 1: [ 986.285905][T19173] kasan_save_stack+0x33/0x60 [ 986.290601][T19173] kasan_save_track+0x14/0x30 [ 986.295289][T19173] __kasan_kmalloc+0xaa/0xb0 [ 986.299929][T19173] dvb_register_device+0x1e4/0x2370 [ 986.305146][T19173] dvb_register_frontend+0x5a6/0x880 [ 986.310464][T19173] vidtv_bridge_probe+0x459/0xa90 [ 986.315525][T19173] platform_probe+0x106/0x1d0 [ 986.320227][T19173] really_probe+0x23e/0xa90 [ 986.324751][T19173] __driver_probe_device+0x1de/0x440 [ 986.330055][T19173] driver_probe_device+0x4c/0x1b0 [ 986.335111][T19173] __driver_attach+0x283/0x580 [ 986.339899][T19173] bus_for_each_dev+0x13b/0x1d0 [ 986.344770][T19173] bus_add_driver+0x2e9/0x690 [ 986.349473][T19173] driver_register+0x15c/0x4b0 [ 986.354246][T19173] vidtv_bridge_init+0x45/0x80 [ 986.359030][T19173] do_one_initcall+0x120/0x6e0 [ 986.363814][T19173] kernel_init_freeable+0x5c2/0x910 [ 986.369041][T19173] kernel_init+0x1c/0x2b0 [ 986.373403][T19173] ret_from_fork+0x675/0x7d0 [ 986.378022][T19173] ret_from_fork_asm+0x1a/0x30 [ 986.382800][T19173] [ 986.385122][T19173] Freed by task 19137: [ 986.389191][T19173] kasan_save_stack+0x33/0x60 [ 986.393882][T19173] kasan_save_track+0x14/0x30 [ 986.398574][T19173] __kasan_save_free_info+0x3b/0x60 [ 986.403796][T19173] __kasan_slab_free+0x5f/0x80 [ 986.408580][T19173] kfree+0x2b8/0x6d0 [ 986.412500][T19173] dvb_device_put.part.0+0x60/0x90 [ 986.417636][T19173] dvb_device_open+0x2a4/0x3b0 [ 986.422436][T19173] chrdev_open+0x234/0x6a0 [ 986.426866][T19173] do_dentry_open+0x982/0x1530 [ 986.431652][T19173] vfs_open+0x82/0x3f0 [ 986.435737][T19173] path_openat+0x1de4/0x2cb0 [ 986.440344][T19173] do_filp_open+0x20b/0x470 [ 986.444860][T19173] do_sys_openat2+0x11b/0x1d0 [ 986.449561][T19173] __x64_sys_openat+0x174/0x210 [ 986.454438][T19173] do_syscall_64+0xcd/0xfa0 [ 986.458955][T19173] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 986.464858][T19173] [ 986.467276][T19173] The buggy address belongs to the object at ffff888029cf9200 [ 986.467276][T19173] which belongs to the cache kmalloc-256 of size 256 [ 986.481346][T19173] The buggy address is located 24 bytes inside of [ 986.481346][T19173] freed 256-byte region [ffff888029cf9200, ffff888029cf9300) [ 986.495240][T19173] [ 986.497574][T19173] The buggy address belongs to the physical page: [ 986.503995][T19173] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x29cf8 [ 986.512781][T19173] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 986.521291][T19173] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 986.528857][T19173] page_type: f5(slab) [ 986.532847][T19173] raw: 00fff00000000040 ffff88813ffa6b40 dead000000000122 0000000000000000 [ 986.541443][T19173] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 986.550035][T19173] head: 00fff00000000040 ffff88813ffa6b40 dead000000000122 0000000000000000 [ 986.558727][T19173] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 986.567406][T19173] head: 00fff00000000001 ffffea0000a73e01 00000000ffffffff 00000000ffffffff [ 986.576113][T19173] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 986.584806][T19173] page dumped because: kasan: bad access detected [ 986.591307][T19173] page_owner tracks the page as allocated [ 986.597017][T19173] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 26582167812, free_ts 0 [ 986.616738][T19173] post_alloc_hook+0x1c0/0x230 [ 986.621530][T19173] get_page_from_freelist+0x10a3/0x3a30 [ 986.627080][T19173] __alloc_frozen_pages_noprof+0x25f/0x2470 [ 986.632980][T19173] alloc_pages_mpol+0x1fb/0x550 [ 986.637852][T19173] new_slab+0x24a/0x360 [ 986.642026][T19173] ___slab_alloc+0xdc4/0x1ae0 [ 986.646721][T19173] __slab_alloc.constprop.0+0x63/0x110 [ 986.652213][T19173] __kmalloc_cache_noprof+0x477/0x780 [ 986.657626][T19173] bus_add_driver+0x92/0x690 [ 986.662291][T19173] driver_register+0x15c/0x4b0 [ 986.667078][T19173] usb_register_driver+0x216/0x4d0 [ 986.672209][T19173] do_one_initcall+0x120/0x6e0 [ 986.676996][T19173] kernel_init_freeable+0x5c2/0x910 [ 986.682233][T19173] kernel_init+0x1c/0x2b0 [ 986.686591][T19173] ret_from_fork+0x675/0x7d0 [ 986.691204][T19173] ret_from_fork_asm+0x1a/0x30 [ 986.695991][T19173] page_owner free stack trace missing [ 986.701357][T19173] [ 986.703682][T19173] Memory state around the buggy address: [ 986.709312][T19173] ffff888029cf9100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 986.717377][T19173] ffff888029cf9180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 986.725443][T19173] >ffff888029cf9200: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 986.733531][T19173] ^ [ 986.738385][T19173] ffff888029cf9280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 986.746539][T19173] ffff888029cf9300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 986.754602][T19173] ================================================================== [ 987.007345][ T5179] ERROR: Out of memory at tomoyo_memory_ok. [ 987.023163][T19173] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 987.030423][T19173] CPU: 0 UID: 0 PID: 19173 Comm: syz.3.2975 Not tainted syzkaller #0 PREEMPT(full) [ 987.039896][T19173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 987.049961][T19173] Call Trace: [ 987.053245][T19173] [ 987.056211][T19173] dump_stack_lvl+0x3d/0x1f0 [ 987.060819][T19173] vpanic+0x640/0x6f0 [ 987.064822][T19173] panic+0xca/0xd0 [ 987.068561][T19173] ? __pfx_panic+0x10/0x10 [ 987.073009][T19173] ? dvb_device_open+0x36a/0x3b0 [ 987.077997][T19173] ? preempt_schedule_common+0x44/0xc0 [ 987.083504][T19173] ? preempt_schedule_thunk+0x16/0x30 [ 987.088912][T19173] check_panic_on_warn+0xab/0xb0 [ 987.093894][T19173] end_report+0x107/0x170 [ 987.098252][T19173] kasan_report+0xee/0x110 [ 987.102702][T19173] ? dvb_device_open+0x36a/0x3b0 [ 987.107685][T19173] ? __pfx_dvb_device_open+0x10/0x10 [ 987.113046][T19173] dvb_device_open+0x36a/0x3b0 [ 987.117869][T19173] ? __pfx_dvb_device_open+0x10/0x10 [ 987.123277][T19173] chrdev_open+0x234/0x6a0 [ 987.127723][T19173] ? __pfx_apparmor_file_open+0x10/0x10 [ 987.133293][T19173] ? __pfx_chrdev_open+0x10/0x10 [ 987.138279][T19173] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 987.144676][T19173] do_dentry_open+0x982/0x1530 [ 987.149474][T19173] ? __pfx_chrdev_open+0x10/0x10 [ 987.154441][T19173] vfs_open+0x82/0x3f0 [ 987.158542][T19173] path_openat+0x1de4/0x2cb0 [ 987.163171][T19173] ? __pfx_path_openat+0x10/0x10 [ 987.168132][T19173] do_filp_open+0x20b/0x470 [ 987.172658][T19173] ? __pfx_do_filp_open+0x10/0x10 [ 987.177710][T19173] ? alloc_fd+0x471/0x7d0 [ 987.182058][T19173] do_sys_openat2+0x11b/0x1d0 [ 987.186759][T19173] ? __pfx_do_sys_openat2+0x10/0x10 [ 987.192004][T19173] ? __pfx_do_sys_openat2+0x10/0x10 [ 987.197265][T19173] ? __pfx___might_resched+0x10/0x10 [ 987.202566][T19173] __x64_sys_openat+0x174/0x210 [ 987.207442][T19173] ? __pfx___x64_sys_openat+0x10/0x10 [ 987.212845][T19173] do_syscall_64+0xcd/0xfa0 [ 987.217373][T19173] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 987.223374][T19173] RIP: 0033:0x7effb8b8eec9 [ 987.227884][T19173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 987.247539][T19173] RSP: 002b:00007effb9a89038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 987.255983][T19173] RAX: ffffffffffffffda RBX: 00007effb8de5fa0 RCX: 00007effb8b8eec9 [ 987.263964][T19173] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 987.271965][T19173] RBP: 00007effb8c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 987.279945][T19173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 987.287922][T19173] R13: 00007effb8de6038 R14: 00007effb8de5fa0 R15: 00007ffd1aa70798 [ 987.295909][T19173] [ 987.299034][T19173] Kernel Offset: disabled [ 987.303367][T19173] Rebooting in 86400 seconds..