last executing test programs: 3m25.759208221s ago: executing program 0 (id=150): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x2, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, 0x0, 0x103041, 0x0) mmap$auto(0x539e, 0x6, 0x13, 0x12, r0, 0x4) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) r1 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000006900)='/sys/kernel/config/target/dbroot\x00', 0x189002, 0x0) write$auto(r1, &(0x7f0000000100)='/dev/audio1\x00', 0x100000a3d7) r2 = prctl$auto_PR_SET_MM_START_BRK(0x5, 0x6, 0x0, 0x5, 0x7) mmap$auto(0x0, 0x6e, 0x4, 0xebe, r2, 0x8) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x539040, 0x0) r3 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2482, 0x0) pread64$auto(r3, 0x0, 0x20000000001, 0x7fff) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001300)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010026bd7000fcdbdf250100000008000200", @ANYBLOB="080001002e535200090002"], 0x34}, 0x1, 0x0, 0x0, 0x20000800}, 0x80) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000340), r6) sendmsg$auto_TIPC_NL_NET_SET(r6, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000040)={0x20, r7, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@typed={0x8, 0x2, 0x0, 0x0, @uid=0xee00}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x2) ioctl$auto_XFS_IOC_ALLOCSP64(0xffffffffffffffff, 0x40305824, &(0x7f0000000080)={0x1, 0x1, 0x8, 0x9, 0x9, 0xffffffffffffffff}) capget$auto(&(0x7f00000000c0)={0x6}, &(0x7f0000000180)={0x5, 0xfffffff6, 0x101}) getuid() syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) r8 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$auto(r8, 0x10e, 0x9, 0xfffffffffffffffe, 0x0) 3m24.624582972s ago: executing program 0 (id=153): mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event\x00', 0x121000, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0x2b, 0x1, 0x1) ioctl$auto_CEC_ADAP_S_LOG_ADDRS(0xffffffffffffffff, 0xc05c6104, &(0x7f0000000100)={"fda256c4", 0x2, 0x6, 0xe, 0x9b2, 0x5, "0800aafc241cd010c7543bfbca2ce1", "02000200", '\x00\x00 \x00', "2ff43123", ['\x00', "f8ffffffffffffff00000001", "0004154db00b0004000400", "5ff1c858612c4b353c022a92"]}) r1 = openat$auto_hsr_node_table_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x400000, 0x0) setsockopt$auto(r1, 0x0, 0x80000000, 0x0, 0x20000000) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x10, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x23, 0x8, 0x2008, 0x0, 0x0) process_vm_writev$auto(0x1, &(0x7f0000002980)={0x0, 0x4}, 0x3, &(0x7f0000002a40)={0x0, 0x7}, 0x4, 0x0) madvise$auto(0xfffffffffffffffd, 0x2003ed, 0x19) select$auto(0x4, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x7, 0xc45d, 0x80, 0x6, 0x3, 0x2, 0x3, 0x3, 0x60, 0x80000022, 0x7, 0x6d3e, 0x2000000004000009, 0x2, 0x6]}, 0x0) mmap$auto(0x1, 0x202000d, 0x240000100, 0x1f, 0xfffffffffffffffa, 0x8003) socket(0xa, 0x5, 0x94) sendmsg$auto_SMC_PNETID_GET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)={0x110, 0x0, 0x300, 0x70bd2c, 0x25dfdbfd, {}, [@SMC_PNETID_NAME={0x7, 0x1, '*@\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0xd}, @SMC_PNETID_IBNAME={0xc2, 0x3, '#\x9b\xb8\xc6\x11\x0f4\x1e_\x84\x8c\xaeS\x91\xb3\n\xec\x9bJ\x0f\x0f\xe28\x8cA\t\xc3\x82\xce\x18dU\r\x03\xa0\xb6\x1aY\xd0U\xcb\xc1Jl_\xe6j\n\x80\xf4V_\x18\xc8\a\a\xbe\xc1]@\x92Lb_\x9a\x82C\x10\xedz\xe4N+L--!\xbd\xfc\x04\xfc5\xc5*g{4^\xcf\xaa\xff}K\x8e\x88>(\xb4l\xc7%-\xaf\x9113\xd3\xff)\xd8\x94\xc4\x8c\x89&\xd6\x9d\x9d\x149\x8f\xd9\x7f9x\x12\xec\xc4\xbc\x02\x19%\xeb\b#+\x13\xd3\xd2\x13\xcc\xa7\xc7o\xcf\x13sG\xe2\xcd\xa5M\x95(\xa8\x19\x9da\xc6\xb1\xb3\xd1G\x82\x06\xfa\xbb\xe2Mo\xbez?\x16B\x1d1O\x16\xe9\xbb )Q\xcd\x8e\x98\xf4\xde\x86'}, @SMC_PNETID_IBNAME={0x16, 0x3, '/dev/snd/midiC2D0\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x4}, @SMC_PNETID_IBPORT={0x5}]}, 0x110}, 0x1, 0x0, 0x0, 0x4040804}, 0x4040010) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket(0x2, 0x1, 0x106) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/workqueue/nf_ft_offload_stats/affinity_scope\x00', 0x2, 0x0) read$auto(0x3, 0x0, 0x20f34) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f000000c380)={0x63, 0x0, 0xbde, 0x7fffffffefff, 0xfffffffffffffffe, 0x9702, 0x0, 0x50b301a, 0x4, 0x5f, 0x0, 0x8}) write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0) 3m23.539497956s ago: executing program 0 (id=160): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0) pipe$auto(&(0x7f0000000000)=0xffffffffffffffff) splice$auto(r0, 0x0, 0x2, 0x0, 0x4000000000009, 0x6) write$auto(0x4, 0x0, 0x100082) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0xa, 0x0) read$auto_vga_arb_device_fops_vgaarb(r0, &(0x7f0000000200)=""/35, 0x23) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) fanotify_init$auto(0x65, 0x2) r1 = pipe$auto(0x0) dup2$auto(0x5, 0x4) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000003980)={&(0x7f0000000180)=ANY=[@ANYBLOB="000000000002000000ae00009461fc465df0c190f71bddade55e5b1bc526632a772479dc28cb9ceff465f9732061748f9e2a12bb917b4b7f0ffe80431fdc2133fc", @ANYRES16=0x0, @ANYBLOB="01032bbd7000fddbdf250a00000008000100fbffffff"], 0x1c}, 0x1, 0x0, 0x0, 0x2004c005}, 0xc4) setsockopt$auto(0x4, 0x0, 0x3, &(0x7f0000000000)='!/*:(*\'\x00', 0x800000e) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000002040)={'bond_slave_1\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(r2, &(0x7f0000021740)={0x0, 0x0, &(0x7f0000021700)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x800) r4 = socket(0x10, 0x2, 0x4) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'xfrm0\x00'}) sendmsg$auto_NFSD_CMD_THREADS_SET(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="0c0000001400c7"], 0x2c}, 0x1, 0x0, 0x0, 0x4000004}, 0x4830) write$auto(r4, &(0x7f0000000000)='-\x00', 0x2fb) readv$auto(r1, &(0x7f0000000100)={&(0x7f0000000040)="122ac7ec616d99cfb3ee59bfe67a8d52717dc204fed2ffe317c94b288eae696bffb8f7e30093fc5b0e528885704664d651a8b5db1181a226cf16aad649c1468932d239bf1bc21cbc6a1c6e89f7407659ab9de0b7abbf2b0c861c8ed1d53e1c527ae6d77720be4f281634954e9aea4de130dba7e6c036c40f7d8c7a29be1fbb0111c1", 0xfffffffffffffe01}, 0x0) splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9) write$auto(0x6, 0x0, 0x100000001) 3m22.221743696s ago: executing program 0 (id=163): mmap$auto(0x0, 0x10, 0xdf, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x401c5820, 0x0) mkdir$auto(0x0, 0x353) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000300), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_ADD_LINK_STA(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000740)=ANY=[@ANYBLOB="3038b752", @ANYRES16=r2, @ANYBLOB="01002cbd7000fbdbdf25960000001a000d01e2d1b2c3e0f4246df8a3901298f8aa701033e4ad88680000"], 0x30}, 0x1, 0x0, 0x0, 0x4000000}, 0x40004) sendmsg$auto_NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x34, r2, 0x100, 0x70bd28, 0x25dfdbfe, {}, [@NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, "534f21b66e44289b38be3fae3a4ba568eb3ae4f8510f65fc0272"}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x40080) sendmsg$auto_NL80211_CMD_SET_PMKSA(r1, &(0x7f0000000680)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000640)={&(0x7f0000000180)={0x4bc, r2, 0x800, 0x70bd29, 0x25dfdbfe, {}, [@NL80211_ATTR_CRIT_PROT_ID={0x6, 0xb3, 0x3140}, @NL80211_ATTR_SCAN_SSIDS={0x2ba, 0x2d, 0x0, 0x1, [@generic="949c5881d498f4cf94d7626bca12f21d771f0fc34e039493620c345e7d1f45da8495c035705dd7d71b6f6c33827d49813c4540dc0697ca7f02e18fad9e67a013c861f958aa55a2787ca12b", @nested={0xd2, 0x10e, 0x0, 0x1, [@generic="2c37d7b8e53cc96f333b6ef011207a5f8ecb1640718970c033860dd62a56401f61340fcb6bb64c2466aec0a36ad11af97db57efca7b1ae401e55ebe3e4fd38e932524f48dfb38ff292d99860111dd9e24d70e2bef084e5174b60a7b74f7982dd0bd9f09bf57848590aebee17d1388c01d997bdf67c8702a9bf604a9c9ec2cada1019ef506e0789dad1f88231e7a52507172f4c63e15a9583b93bbce1077b80043768eaa5a1de2ce0f56a024e286851e5d17982b917d8d4c658991d06aca1e645fcbfa1abfe6e2c32e1766055f0b5"]}, @nested={0xcd, 0xe2, 0x0, 0x1, [@typed={0x8, 0x2b, 0x0, 0x0, @fd=r0}, @nested={0x4, 0x10e}, @nested={0x4, 0x125}, @generic="24fbd592cbbd1f44cfd70357ab394ac9995b02ee18c9526667e9f35dffe9384ba3f55d3844040970571f0ea1bce5dbc8e8b9c71ea7ecd0b62b8fcec31887d5122e7e0c09e808ba8df6338124597b481f9d4a1b2d2c819e9f97ee3d42a24a5877de819d0932241853ab2e6f735f72d27d3f1946acac0316613f600c0e24ca23263357466ea81dfe87315c070abf3532817496a958b4c9a728d704dd69477b9c828ef56c79d62a1d7aacb0878404", @typed={0x4, 0x13b}, @typed={0x8, 0xc1, 0x0, 0x0, @ipv4=@empty}]}, @generic="2d495aee0fcf3e4284324a58154efa6c6a7c0149dae6ed601f9da64ac1c50cd9f7ea169b0543c273ef817fbf063e6286a4fa3d29677ec724750a7d701eee3551a2f38facf536883137ec4e23666e874e5e2cbd0f23774771ab416e881d355995237b10cca4778787b9d95c53e298eb729267bca9ae558b38573e572fbd70322ab5a6faae343268ef46da5a9d776881164cd422d412684b0dd3d25d2d53c3c5b706aa97de7bbc94d887313b459eb5b3f1de7429121863503ac7ed21af78f5e51da3e8d5431559cc"]}, @NL80211_ATTR_ASSOC_MLD_EXT_CAPA_OPS={0x6, 0x151, 0x2}, @NL80211_ATTR_OBSS_COLOR_BITMAP={0xc, 0x12e, 0x6}, @NL80211_ATTR_MLO_RECONF_REM_LINKS={0x6, 0x14f, 0x1ff}, @NL80211_ATTR_TDLS_EXTERNAL_SETUP={0x4}, @NL80211_ATTR_SSID={0x23, 0x34, "aeeded7c1c87d97a8b542691e430ab6a859f5f6257e89aa950188ecaad91af"}, @NL80211_ATTR_REKEY_DATA={0x19e, 0x7a, 0x0, 0x1, [@nested={0x93, 0x107, 0x0, 0x1, [@typed={0x4, 0x84}, @generic="523d46111060d4bc3ce470a2695a83cde86e9047581d7cf74140528e7d0f28841cbfd57b4d61953bab6462ba13ae4da3141c5391c6b1c55cfe93f44ea17965ccfabb9898436647d890f41bc7588de6b62268539f54da4865384f264a212b05c591761e56268b39c56b547638c7493206d7c2311a724fc33b9d65ceb2f7c62f5d168c0e69ac63e2", @nested={0x4, 0x14}]}, @generic="e91a7bca95b139374e08139bb0f1be4bcfe6c37127aba06537dd0b65cef41374d606f089f8f33f88d2dc33ff6d080a4f82aeba633580b6b1a5fbccc7349a291f9e3ab9eb6035b5ae53d19edce6ce0a74e622daad1f998ae2c3301fc2829fec74053f301ef1e5fdf6dd3d03f8f0139f8e48af2922a1df5e9123205a9d91f235ee6d2eab4536b9f6ab6c3458edb9898f9ee899800d8d0214646e8702c4a850a50aeaa6e6ec5d0662f20e88be0dc7faa043ebf313ec47c32692069590835a024d1c53680a48d84decf485eff79a9204b0e400749c559f9b23b4c6c7c14ab6372efcf386ad25156d99755e118f472f5ee6b3e4d67af4654f4d92702131e4bd30", @nested={0x8, 0xd7, 0x0, 0x1, [@nested={0x4, 0x64}]}]}]}, 0x4bc}, 0x1, 0x0, 0x0, 0x20004064}, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) mremap$auto(0x110c230000, 0x0, 0x101, 0x3, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) write$auto(0x3, 0x0, 0xfdef) r4 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x2000, 0x0) ioctl$auto(r4, 0x961064a0, 0x600000000200007) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) socket(0xa, 0x3, 0x3b) getsockopt$auto(r0, 0x3, 0x16, &(0x7f0000000000)='{)*\\@&[-*&B@#-l-*[\x00', &(0x7f0000000040)=0x2) setsockopt$auto(0x400000000000003, 0x29, 0x22, 0x0, 0xa4) 3m21.125283358s ago: executing program 0 (id=167): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = io_uring_setup$auto(0x1, 0x0) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mremap$auto(0x1fc000, 0xfee0, 0x3fd6, 0x3, 0xfffff000) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000007480)='/dev/cec12\x00', 0x400, 0x0) ioctl$auto_CEC_RECEIVE(r0, 0xc0386106, 0x0) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) 3m20.503130788s ago: executing program 0 (id=171): mmap$auto(0x0, 0x1000008, 0xdf, 0x9b72, 0x2, 0x8000) eventfd2$auto(0x0, 0x1) socket(0x10, 0x2, 0x14) socket(0x11, 0x3, 0x9) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x5, 0x0) memfd_create$auto(0x0, 0x2) socket(0xa, 0x2, 0x0) openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48001, 0x0) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x202002, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) setsockopt$auto_SO_CNX_ADVICE(0xffffffffffffffff, 0x4, 0x35, &(0x7f0000000040)='/sys/kernel/security/integrity/ima/policy\x00', 0x72) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYRES8=0x0, @ANYRES8=r0], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x2000c082) write$auto(r1, &(0x7f0000000000)='-\x00', 0xfdef) bpf$auto(0x0, &(0x7f0000000380)=@task_fd_query={0x12, 0x3, 0x4, 0xfffffff8, 0x8, 0xae85, 0xffffffffffffffff, 0x4, 0x7ff}, 0x6f4) 3m19.983478185s ago: executing program 32 (id=171): mmap$auto(0x0, 0x1000008, 0xdf, 0x9b72, 0x2, 0x8000) eventfd2$auto(0x0, 0x1) socket(0x10, 0x2, 0x14) socket(0x11, 0x3, 0x9) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x5, 0x0) memfd_create$auto(0x0, 0x2) socket(0xa, 0x2, 0x0) openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48001, 0x0) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x202002, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) setsockopt$auto_SO_CNX_ADVICE(0xffffffffffffffff, 0x4, 0x35, &(0x7f0000000040)='/sys/kernel/security/integrity/ima/policy\x00', 0x72) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYRES8=0x0, @ANYRES8=r0], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x2000c082) write$auto(r1, &(0x7f0000000000)='-\x00', 0xfdef) bpf$auto(0x0, &(0x7f0000000380)=@task_fd_query={0x12, 0x3, 0x4, 0xfffffff8, 0x8, 0xae85, 0xffffffffffffffff, 0x4, 0x7ff}, 0x6f4) 55.927589316s ago: executing program 4 (id=787): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/unix\x00', 0x121040, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = open(0x0, 0x22240, 0x155) r1 = socket(0x2, 0x80802, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto(r2, 0xc0285443, 0x0) r3 = socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) getsockopt$auto(r3, 0x84, 0x82, 0x0, &(0x7f0000000000)=0x7ffe) sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4000840}, 0x2000c840) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/bus/pci/rescan\x00', 0x20681, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), r0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x60800, 0x0) r7 = setfsuid$auto(0xee00) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r8, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000001f00)={&(0x7f0000000180)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16, @ANYBLOB="010029bd7000fedbdf250d0000000c00060001000000000000000800"], 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$auto_NL802154_CMD_SET_MAX_ASSOCIATIONS(r1, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x11001040}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x24, 0x0, 0x400, 0x70bd2b, 0x25dfdbfe, {}, [@NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0x2}, @NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x2a, 0x69}]}, 0x24}, 0x1, 0x0, 0x0, 0x4004800}, 0x4000000) sendmsg$auto_NL80211_CMD_SET_MAC_ACL(r5, &(0x7f0000000500)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000004c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="e4010000", @ANYRES16=r6, @ANYBLOB="060826bd7000fedbdf255d0000000600fb000600000008000c0000800000b4017a8010005e800800170004000000040044801400e900000000000000000000000000000000018b014a801f00a7002f70726f632f7468726561642d73656c662f6e65742f756e697800000800e100", @ANYRES32=r7, @ANYBLOB="00faff0008b6b96a6c6f90e9f5c0c5341d0a722c8ddded2a3ffdf1c0f104cd03b0636e7d5e7bcd055c38b0d90ef595a1f54b79c7636ebde39d423e7be39ef1eee7ee6ae5b74d5bf4e1b2a02c9a98b550d8549fe797138ea013850ed225345f888dec47d195f46e2104eaffd1a562b22a321a495406d782f1b426a9a7bd52ee353da2f01868e25f2c6410e4b0f52d829779911f300300002b90190d0901a03860c5512244fa6998360cf2d78678750c803288b4a155820189283585f3", @ANYRES32=r4, @ANYBLOB="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"], 0x1e4}, 0x1, 0x0, 0x0, 0x11}, 0x80) write$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000200)='5', 0x1) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 55.657229795s ago: executing program 4 (id=789): pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x5, 0x1ff, 0x1001, 0x9, 0x717e, 0x0, 0x7, 0x200000000000003, 0xd, 0x2, 0x80003, 0x4, 0x1ffffffffffd, 0xb4, 0xfffffffffffffffe, 0x7, 0x10002, 0x7f, 0x2a2, 0x5, 0xa, 0x22000, 0x200, 0x4, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x56, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x33e3, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x400000000000000, 0x0, 0x0, 0x8000000, 0x0, 0xffffffffffffffff, 0x100000000000]}, 0x1fe, 0xd) r1 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000003c0), 0x1541, 0x0) r2 = open(&(0x7f0000000000)='./file0\x00', 0x84342, 0x0) fcntl$auto(r2, 0x400, 0x1) lremovexattr$auto(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)=',\x00') ioctl$auto__ctl_fops_dm_ioctl(r1, 0xfffffffffffffd03, &(0x7f00000001c0)) socket(0x15, 0x5, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@ethernet={0x1, @remote}, 0x8) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) io_uring_setup$auto(0x6, 0x0) r3 = socket(0x2, 0x801, 0x106) openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/dynamic_events\x00', 0x100001, 0x0) setsockopt$auto(r3, 0x6, 0x19, 0x0, 0x9) select$auto(0x5, 0x0, &(0x7f0000000140)={[0x9, 0x8, 0x3, 0x10, 0x3, 0x9, 0x9, 0xff, 0x3, 0x2, 0x2, 0x7, 0x100000001, 0x8000000000000001, 0x4, 0x9]}, &(0x7f00000001c0)={[0x1aa57c94, 0x95, 0x5, 0x100000003, 0x8475, 0x6, 0x1, 0x9, 0xec, 0x2, 0x8, 0x8, 0x200, 0x7]}, 0x0) r4 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/036/001\x00', 0xa901, 0x0) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x5, 0x311) lseek$auto(0xffffffffffffffff, 0x0, 0x0) ioctl$auto(0x3, 0x8108551b, 0x1) ioctl$auto_USBDEVFS_SUBMITURB(r4, 0x8038550a, &(0x7f0000000240)={0x1, 0x81, 0x5b, 0x4, &(0x7f0000000000), 0x9, 0xeb90, 0x2, @stream_id=0x100, 0x7, 0x476, 0x0}) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r6 = getpid() process_vm_readv$auto(r6, &(0x7f0000000200)={0x0, 0xfff}, 0x0, &(0x7f0000000280)={&(0x7f00000001c0)="1138f4bff347ce", 0x400000fffffffe}, 0xa, 0x3b9f) timer_create$auto_CLOCK_REALTIME(0x0, &(0x7f0000000040)={@sival_int=0x6, @inferred=r5}, 0x0) openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x119040, 0x0) 54.166895545s ago: executing program 4 (id=795): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001040)='/proc/asound/card1/pcm1c/sub7/info\x00', 0x28102, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) r1 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) r2 = socket(0x10, 0x2, 0xc) sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000003740)={&(0x7f0000000000)=ANY=[@ANYBLOB="b1000000", @ANYRES16, @ANYBLOB="01002dbd7000fddbdf25030000000c0001"], 0x20}, 0x1, 0x0, 0x0, 0x41}, 0x40080) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r2, @ANYRES8=r0], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050) write$auto(r1, &(0x7f0000000000)='-\x00', 0xfdef) r3 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0) ioctl$auto_tracing_buffers_fops_trace(r3, 0xffffffffffffffff, 0x0) listmount$auto(&(0x7f0000000000)={0x1, @raw=0x2, 0x5fd, 0x35e6c79c, 0x1}, &(0x7f0000000040)=0xdb, 0x4, 0x2) 53.37409207s ago: executing program 4 (id=805): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) syz_clone(0x80000000, &(0x7f0000000000)="085a1056b6aa2f10d8ddee0633aea682a5ff", 0x12, 0x0, 0x0, 0x0) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x10, 0x2, 0xa) setsockopt$auto(r0, 0x104000000000010e, 0x1, 0x0, 0x16) r1 = socket(0x10, 0x2, 0x4) sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c72da808bf8d5feacf8510"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c001) write$auto(r1, &(0x7f0000000000)='-\x00', 0x2fb) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000180), 0xffffffffffffffff) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r2 = socket(0x1e, 0x0, 0x9) mmap$auto(0x0, 0x4, 0x4000000000e0, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) mount$auto(0x0, &(0x7f00000000c0)='.\x00', 0x0, 0x144000, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r4 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/devices\x00', 0x0, 0x0) preadv$auto(r4, &(0x7f0000009180)={0x0, 0x7}, 0x26, 0x800000000080, 0x5) fcntl$auto_F_GETPIPE_SZ(r4, 0x408, 0x7) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x48a22, 0x0) sendto$auto(0xffffffffffffffff, 0x0, 0x4, 0xfffffffe, &(0x7f0000000000)=@generic={0xa, "e208004002de00"}, 0x1c) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r5 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000500), r3) sendmsg$auto_SMC_NETLINK_ADD_UEID(r2, &(0x7f00000005c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="200025bd7000fcdbdf250a0000000c0001f16d6c383032313100040001000b0001ffff49504376320000"], 0x30}, 0x1, 0x0, 0x0, 0x20000000}, 0x2004c084) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x163340, 0x6a) socket(0x2, 0x80802, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) 53.046591616s ago: executing program 4 (id=801): openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/dummy0/carrier\x00', 0xc2061, 0x0) write$auto(r0, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x4, 0x15) fchdir$auto(0xffffffffffffffff) pselect6$auto(0x3, &(0x7f0000000040)={[0x1000, 0x0, 0x8, 0x7, 0x5, 0x7, 0x3, 0x6, 0x0, 0x9, 0x8, 0x4, 0x6, 0x5, 0x1, 0x100000001]}, &(0x7f00000000c0)={[0x2, 0x9, 0x4, 0x5, 0x1, 0xc53, 0x7, 0x8c8, 0x8, 0xe4, 0x8, 0x4, 0x6, 0x0, 0x1, 0xc]}, &(0x7f0000000140)={[0xca, 0xfffffffffffffffd, 0x6, 0x7, 0x3, 0x20, 0xbb, 0x0, 0x800, 0x0, 0xf67, 0xa, 0x100000000, 0x1, 0x7ff]}, &(0x7f0000000200)={0x40000000000000, 0x2}, &(0x7f0000000240)="76e10d367d2415435f9a38b9c677dec5da964230172cee43529184032e73f06c39eb73d788c449a95e534c88ce7d6d741ed9e816e606dbda8724c0dd52d2d1719326642ed1665c73c18753c92d0404d0a65a4bd9c32222b8ccfca69e92f3a322da9421254d089bba40e01e0d4691bc01e16e4d5a0603ac0375a038c39649b96baed3172ab5138e152667aee1187261f35669cd6b4031a9d314590dad61b3bce9b0b020177a875b7e7f249bb4eb839e4c75b3528f16875021f4a647768c121f1cde19467816caf08e1c74627f97e375854cd53d841209be982702144b2612587c20f56a91c8d4c0fd8df21b0212699f") mkdir$auto(0x0, 0x6) r1 = bpf$auto(0x0, 0x0, 0x6f3) arch_prctl$auto_ARCH_REQ_XCOMP_PERM(0x1023, 0x7) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) tkill$auto(0x1, 0x7) keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x0, 0x0, 0x0, 0x48eafc79) sendmsg$auto_TIPC_NL_BEARER_ADD(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x24004044}, 0x10000000) io_uring_register$auto(0x2, 0x22, &(0x7f0000000100), 0x1) r2 = socket(0xa, 0x2, 0x88) r3 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/cgroup\x00', 0x420, 0x0) read$auto_proc_single_file_operations_base(r3, &(0x7f0000000040)=""/9, 0x9) ioctl$auto_USB_RAW_IOCTL_EP_WRITE(r1, 0x40085507, &(0x7f0000000340)={0x5, 0x8, 0x4, "a4cc8d4df580d9e94392f4dae021d6fe496641758443e7cdfc848b9bd2557c0b70948e9cd86d35f999bb13ab08bbf215c47a86a8dee7057561bcffc01fdbf0ec59276003eaaad9538a"}) bpf$auto(0x0, 0x0, 0xa3) mmap$auto(0x5, 0x4020008, 0x1001, 0xeb1, r2, 0x8003) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r4 = socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(r4, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) 50.531297387s ago: executing program 4 (id=808): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/lapb3/threaded\x00', 0x8a801, 0x0) write$auto(r0, &(0x7f0000000000)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) r1 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0xffffffffffffffff, 0x8, 0x2) r2 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000007380)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x109041, 0x0) write$auto(r2, &(0x7f0000008d40)='($}-)#@\x00', 0x3) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x10cc3, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000) mmap$auto(0x8, 0x3a02, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x9, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008) r3 = socket(0xf, 0xa, 0xf) setsockopt$auto(r3, 0x1, 0xc, 0x0, 0x7fffffff) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ttyS0\x00', 0x1, 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40) execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) open(&(0x7f00000000c0)='./file0\x00', 0x22240, 0x154) execve$auto(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000300)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\x00\xf20/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a0\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5\x94\xd0\xf5\xe7\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00') execveat$auto(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) rename$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000340)='./file0\x00') rename$auto(&(0x7f0000000000)='./file0\x00', &(0x7f00000002c0)='./file1\x00') 49.987066594s ago: executing program 33 (id=808): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/lapb3/threaded\x00', 0x8a801, 0x0) write$auto(r0, &(0x7f0000000000)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) r1 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0xffffffffffffffff, 0x8, 0x2) r2 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000007380)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x109041, 0x0) write$auto(r2, &(0x7f0000008d40)='($}-)#@\x00', 0x3) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x10cc3, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000) mmap$auto(0x8, 0x3a02, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x9, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008) r3 = socket(0xf, 0xa, 0xf) setsockopt$auto(r3, 0x1, 0xc, 0x0, 0x7fffffff) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ttyS0\x00', 0x1, 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40) execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) open(&(0x7f00000000c0)='./file0\x00', 0x22240, 0x154) execve$auto(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000300)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\x00\xf20/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a0\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5\x94\xd0\xf5\xe7\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00') execveat$auto(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) rename$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000340)='./file0\x00') rename$auto(&(0x7f0000000000)='./file0\x00', &(0x7f00000002c0)='./file1\x00') 7.441459425s ago: executing program 3 (id=950): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/zram0/disksize\x00', 0x40, 0x0) r1 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$auto(r1, &(0x7f0000000040)='\x00', 0x400) mmap$auto(0x2, 0xd, 0xdb, 0x9b72, 0x5, 0x8000) write$auto(r0, 0x0, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sg0\x00', 0x40000, 0x0) ioctl$auto_SG_GET_KEEP_ORPHAN(r2, 0x2288, &(0x7f0000000280)) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) iopl$auto(0x3) clone$auto(0x21002, 0xfffffffffffffffb, 0xfffffffffffffffe, 0xfffffffffffffffd, 0xff) socket(0x2, 0x1, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0) read$auto(r3, 0x0, 0x7) ioctl$auto_BTRFS_IOC_GET_SUPPORTED_FEATURES(0xffffffffffffffff, 0x80489439, &(0x7f0000000f80)=[{0x3ff, 0x3, 0xfffffffffffffffa}, {0x805, 0x5, 0x2}, {0xa6, 0x1, 0x2}]) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) socket(0x11, 0x3, 0x9) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_REPORT_PMSR(r5, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB="4100000000000000040000000000"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0) unshare$auto(0x40000080) 7.420016861s ago: executing program 5 (id=951): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0xa, 0x2, 0x88) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r1, @new_prog_fd=r0, 0x4, @old_prog_fd=0xffffffffffffffff}, 0xa3) close_range$auto(0x2, 0x8, 0x0) r3 = socket(0x2, 0x80002, 0x73) r4 = socket(0x2, 0x1, 0x84) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) r5 = socket(0x29, 0x2, 0x0) r6 = socket(0x10, 0x3, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r6, &(0x7f0000000040)={{0x0, 0x4, 0x0, 0x29, 0x0, 0x0, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r5, 0x89f3, 0x24) sendmsg$auto_GTP_CMD_ECHOREQ(r5, &(0x7f0000000580)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000540)={&(0x7f0000000480)={0x90, 0x0, 0x200, 0x70bd26, 0x25dfdbff, {}, [@GTPA_PEER_ADDRESS={0x8, 0x4, @dev={0xac, 0x14, 0x14, 0x38}}, @GTPA_MS_ADDR6={0x14, 0xc, @local}, @GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_MS_ADDR6={0x14, 0xc, @private0}, @GTPA_VERSION={0x8, 0x2, 0x800}, @GTPA_FAMILY={0x5, 0xd, 0x80}, @GTPA_MS_ADDR6={0x14, 0xc, @private2={0xfc, 0x2, '\x00', 0x1}}, @GTPA_TID={0xc, 0x3, 0xcdd}, @GTPA_TID={0xc, 0x3, 0x2}, @GTPA_I_TEI={0x8, 0x8, 0x6}]}, 0x90}, 0x1, 0x0, 0x0, 0x20040841}, 0x80) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x2) socketpair$auto(0xfffffffd, 0x5, 0x9, 0x0) r7 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000200), r4) sendmsg$auto_IPVS_CMD_DEL_DEST(r4, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000002c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB="000427bd7000fedbdf25070000001df37111e18b5999aa497468733415deb108001e0001000000169838156e7e"], 0x1c}, 0x1, 0x0, 0x0, 0xc000}, 0x4040000) unshare$auto(0x40000080) r8 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/kcore\x00', 0x10b402, 0x0) pread64$auto(r8, 0x0, 0x800003, 0x270) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/pagemap\x00', 0x3a900, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) r9 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r10 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$auto(r3, 0x6, 0xb69a, &(0x7f0000000340)='wlan1\x00', &(0x7f0000000380)=0x2) ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x24, r9, 0x1, 0x70bd29, 0x25dfdbff, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r11}, @NL80211_ATTR_WIPHY_FRAG_THRESHOLD={0x8, 0x3f, 0x6}]}, 0x24}, 0x1, 0x1400, 0x0, 0xaee2e45ddcc9e3a5}, 0x20040080) sendmsg$auto_NL80211_CMD_START_AP(r4, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="020025bd7000fcdbdf250f0000000800a4005868000008004a000900000008000d59ff814166a9bb890009000000"], 0x34}, 0x1, 0x0, 0x0, 0x8000}, 0x800) shutdown$auto(0x200000003, 0x2) 6.97514428s ago: executing program 3 (id=952): socket(0x10, 0x800, 0x5) madvise$auto(0x0, 0x2000040080000004, 0x4ba7) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000180)='//\xf2\x00', 0x7ffffffd) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) socket(0x2, 0x1, 0x106) r1 = getsockopt$auto(0xffffffffffffffff, 0x110, 0x7, 0xffffffffffffffff, 0x0) openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000040), 0x2cc0, 0x0) unshare$auto(0x40000080) r2 = socket(0x1e, 0x805, 0x0) unshare$auto(0x40000080) rmdir$auto(&(0x7f00000001c0)='./cgroup.cpu/cpuset.cpus\x00') ioctl$auto_BTRFS_IOC_GET_FEATURES(r1, 0x80189439, 0x0) sysfs$auto(0x2, 0x1a, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, r2) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) getrandom$auto(0x0, 0x3, 0x3) set_mempolicy$auto(0x6, 0x0, 0x21) unshare$auto(0x40000080) socket(0xa, 0x5, 0x0) set_mempolicy$auto(0x2, 0x0, 0x6) ioctl$auto_MEMREADOOB(0xffffffffffffffff, 0xc0104d04, 0x0) 6.413847235s ago: executing program 5 (id=954): mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) (async) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) prctl$auto(0x3e, 0x5, 0x0, 0x1, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0x5, 0x0) (async) close_range$auto(0x0, 0x5, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) (async) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r0, 0x541c, r1) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) clock_nanosleep$auto(0x8000a, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0xfffffffffffffffe, 0x20948b, 0x2, 0x95f4da0a, 0x10001, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram10/queue/max_sectors_kb\x00', 0xe3102, 0x0) (async) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram10/queue/max_sectors_kb\x00', 0xe3102, 0x0) sendfile$auto(r3, r3, 0x0, 0x1) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000680), 0xffffffffffffffff) select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x1000, 0x62, 0x4000008000001f, 0x7, 0x6d3e, 0x5, 0x2, 0x2]}, 0x0) read$auto_check_wx_fops_(0xffffffffffffffff, &(0x7f0000000140)=""/154, 0x9a) (async) read$auto_check_wx_fops_(0xffffffffffffffff, &(0x7f0000000140)=""/154, 0x9a) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) madvise$auto(0x0, 0xffffffffffff0004, 0x19) madvise$auto(0x0, 0x200007, 0x8) madvise$auto(0x0, 0xf663, 0x15) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0103:00/power/runtime_suspended_time\x00', 0x80001, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0103:00/power/runtime_suspended_time\x00', 0x80001, 0x0) 5.321678242s ago: executing program 1 (id=957): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/workqueue/raid5wq/nice\x00', 0x80001, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/veth0/accept_ra_pinfo\x00', 0x2000, 0x0) read$auto(r0, 0x0, 0x1ff) write$auto(0x3, 0x0, 0x5c8) 5.050663868s ago: executing program 1 (id=958): socket(0x2, 0x3, 0x2) setsockopt$auto(0x3, 0x101, 0xc9, 0xfffffffffffffffc, 0x3c) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/workqueue/raid5wq/nice\x00', 0x80001, 0x0) ioprio_get$auto(0x4, 0xffffffffffffffff) mlockall$auto(0x7) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/transparent_hugepage/khugepaged/max_ptes_shared\x00', 0xac3c3, 0x0) sendfile$auto(r0, r0, 0x0, 0x4f64a1d2) statmount$auto(0x0, &(0x7f0000000100)={0x8, 0x1, 0xa, 0x7, 0x42, 0xfffffffffffffffa, 0x1ffde, 0x7, 0x8, 0x1000002, 0x8, 0x3, 0x2, 0xfffffffffffffffc, 0x80000000, 0x9, 0x2, 0xfff, 0x80, 0x7, 0x0, 0x7, 0x2000, 0x280, 0x0, 0xfffffff7, 0x40, 0x400, 0x0, 0x2, 0xfffffffe, [0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0xa, 0x0, 0x8000000000000000, 0x0, 0x40000000, 0x0, 0x0, 0xfffffffffffffffe, 0x8001, 0x4, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x1, 0x0, 0x800, 0x0, 0x0, 0x4, 0x2, 0x4, 0x1, 0x0, 0x2], "d48c4661f38120d0bae3b54c6464957b1196e8f4cf4b8cf1231aa2298cbfd17694a32519bad283be0f32be96828c3bb0c51910748fe4f0a412d85513d045424ab1fdf036b45195262128d18cd4b41a89a6e990c1a628953647c36db5c8e5f4c54950506381a56735cbf4c02ed55dd5a344270faa07cb55b7b91538ad492cb9ad9499d2d0e9037a17f4116b0523bda5949b1eac3187bfc7d0fd9f41a55355bddfa148c500a3e855cc83a1a5cf048782585602109111c9b679fcb1ccc650f4834732a78edb28d87a4c55108d9c8f4d20898f5b066ae9e709070def80b9ad54f3320d3f95225d8e602c2aa759e256e9b372f330e44e2420"}, 0x1fa, 0x200d) r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/input/event2\x00', 0x20881, 0x0) write$auto(r1, &(0x7f0000000040)='/dev/input/event1\x00', 0x10001) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/thread-self/fail-nth\x00', 0x101000, 0x0) r4 = socket(0x11, 0x2, 0x200300) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/wireless\x00', 0x80, 0x0) pread64$auto(r5, 0x0, 0x201, 0xc000) setsockopt$auto(r4, 0x107, 0x18, 0x0, 0x1) fcntl$auto_F_GETPIPE_SZ(r3, 0x408, 0x101) r6 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), r2) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) futex$auto(&(0x7f0000000080)=0x1, 0xb, 0x1, 0x0, 0x0, 0xfffffffa) futex$auto(&(0x7f0000000080)=0x100002, 0x1, 0x8, 0x0, 0x0, 0x440a4cd3) sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r2, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000001d40)={0x34, r6, 0x1, 0x70bd27, 0x25dfdbff, {}, [@ETHTOOL_A_RINGS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_1\x00'}]}, @ETHTOOL_A_RINGS_TCP_DATA_SPLIT={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x90}, 0x80800) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r7 = openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000040), 0x640181, 0x0) write$auto_split_huge_pages_fops_huge_memory(r7, &(0x7f0000000080)="a4498bae2b92d8caf1c989dd745a71c3601b7fd08bf482856a33bf0843557a55b3d618623eb8f508b15d157915576b84952a", 0x32) write$auto(0x3, 0x0, 0xfdef) 4.998844268s ago: executing program 5 (id=959): mmap$auto(0x0, 0x400008, 0x4, 0x40009b72, 0x2, 0x8000) r0 = io_uring_setup$auto(0x89, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffff9}, 0x6, 0xe27c, 0x8) select$auto(0x4, 0x0, &(0x7f0000000080)={[0x209d, 0x5, 0x4, 0xd, 0x250, 0x100000000, 0x2c2, 0x800002017d, 0x2, 0x40, 0xd, 0xd59, 0xfb, 0xff, 0x1d, 0x2]}, 0x0, 0x0) connect$auto(0xffffffffffffffff, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0xdf) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = getpid() process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x800000001, &(0x7f0000000280)={&(0x7f0000000080), 0x1ffffffff}, 0x6, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8955, 0x0) r2 = socket(0x2b, 0x1, 0x1) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) mmap$auto(0x0, 0x2020009, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001480)={'veth0_virt_wifi\x00'}) ioctl$auto_SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000040)) munmap$auto(0x8000, 0xffffffff) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000180)="c0d858419590dbabb357700619eb8eb93fd372433a4e6170e4d420cc159277ea2500d87706151c86f1cecec20e4130ca8d34ae5f36b3f93227cd9d89700664d9bb4f82652367b2febc5def47094d1edddd16c9991893c44260af7e72b6be3aa2d1b31ecfaf165e3c2b8a4bf955680bbed9df65f95fc6b643505c972f48c2beca6cdbd0de523f3393f15e7bfd24b2724c", 0x90) 4.516366745s ago: executing program 2 (id=961): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/zram0/disksize\x00', 0x40, 0x0) r1 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$auto(r1, &(0x7f0000000040)='\x00', 0x400) mmap$auto(0x2, 0xd, 0xdb, 0x9b72, 0x5, 0x8000) write$auto(r0, 0x0, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sg0\x00', 0x40000, 0x0) ioctl$auto_SG_GET_KEEP_ORPHAN(r2, 0x2288, &(0x7f0000000280)) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) iopl$auto(0x3) clone$auto(0x21002, 0xfffffffffffffffb, 0xfffffffffffffffe, 0xfffffffffffffffd, 0xff) socket(0x2, 0x1, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0) read$auto(r3, 0x0, 0x7) ioctl$auto_BTRFS_IOC_GET_SUPPORTED_FEATURES(0xffffffffffffffff, 0x80489439, &(0x7f0000000f80)=[{0x3ff, 0x3, 0xfffffffffffffffa}, {0x805, 0x5, 0x2}, {0xa6, 0x1, 0x2}]) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) socket(0x11, 0x3, 0x9) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_REPORT_PMSR(r5, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB="4100000000000000040000000000"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0) unshare$auto(0x40000080) 4.324492307s ago: executing program 3 (id=962): openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptypb\x00', 0x442200, 0x0) socket$nl_generic(0x11, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x200, 0x0) preadv$auto(0x40000000000003, 0x0, 0x6, 0x8, 0x5) socket(0x2b, 0x1, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) munmap$auto(0x8000, 0xffffffff) getrandom$auto(0x0, 0x6000000, 0x3) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x19, 0x4, 0x4, 0x880b, 0x8, 0xd, 0x66b, 0x4, 0x7ff}, 0x6f4) (fail_nth: 18) 4.051032918s ago: executing program 1 (id=963): socket$nl_generic(0x11, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) socket(0x2b, 0x1, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) munmap$auto(0x8000, 0xffffffff) getrandom$auto(0x0, 0x6000000, 0x3) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x19, 0x4, 0x4, 0x880b, 0x8, 0xd, 0x66b, 0x4, 0x7ff}, 0x6f4) 3.594937776s ago: executing program 2 (id=964): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x26, 0x1, 0x0, 0x0, 0x0) clone$auto(0x20003b46, 0x100000000000005, 0x0, 0x0, 0x2) close_range$auto(0x2, 0x8, 0x0) read$auto_nvmf_dev_fops_fabrics(0xffffffffffffffff, &(0x7f0000001340)=""/4081, 0xff1) ioctl$auto_SNDRV_TIMER_IOCTL_START(0xffffffffffffffff, 0x54a0, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8000, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x444042, 0x0) r3 = ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_GET_MSRS(r1, 0x4008ae90, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x408, 0x7, 0x1ff, 0x7, 0x10, 0xfff, 0x1ffdf, 0x7, 0x200003, 0x2, 0xa121, 0x3, 0x6, 0x4, 0xb4, 0xa, 0x6, 0x10001, 0x80, 0x100000000, 0x0, 0x7, 0x2100, 0x200, 0xfffffffd, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x7, 0xd) r4 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vlan1\x00', 0x0}) sendmsg$auto_NETDEV_CMD_BIND_RX(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="00010000", @ANYRES16=r4, @ANYBLOB, @ANYRES32=r5, @ANYBLOB="080003", @ANYRES32, @ANYBLOB="04000280"], 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x4) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1c1680, 0x0) socket(0x10, 0x2, 0x0) statmount$auto(0x0, 0x0, 0x1fe, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="60cf34", @ANYRESOCT=r1, @ANYRES32=r0, @ANYRESOCT=r1], 0x3c}, 0x1, 0x0, 0x0, 0x48895}, 0x2000c800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0xb8, 0x100000000, 0x5, 0x1b, 0x93c, 0x1ffdc, 0x7, 0x2000000000000006, 0x2, 0x9, 0x5, 0x2, 0x8001, 0xae, 0x15d0249f, 0x922, 0x7, 0x5, 0x5, 0x3, 0xfffffffe, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14b9, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000000000000]}, 0x1fe, 0x81) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) 3.393027373s ago: executing program 2 (id=965): close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101080, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x21, 0x2, 0x2) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0) r1 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20b42, 0x0) sendfile$auto(r2, r2, 0x0, 0x4f64a1d2) fallocate$auto(r1, 0x0, 0x7, 0x4cbd5d) lchown$auto(&(0x7f0000000080)='./file0\x00', 0xee01, 0xee00) write$auto(0x3, 0x0, 0x100082) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) capset$auto(0x0, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_NEXT_DEVICE(0xffffffffffffffff, 0xc0145401, 0x0) close_range$auto(0x2, 0x8, 0x0) bind$auto(0xffffffffffffffff, 0x0, 0x6b) r3 = socket(0x2, 0x1, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r3, 0x0, 0x400c080) socket(0x1f, 0x5, 0x101) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, 0x0, 0x208480, 0x0) sendmsg$auto_NL80211_CMD_RADAR_DETECT(r1, 0x0, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14fa02, 0x0) mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000) ioctl$auto_SNDCTL_DSP_SYNC(r0, 0x5001, 0xfffffffffffffffc) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) 2.880692487s ago: executing program 2 (id=966): r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/036/001\x00', 0xa901, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) socket(0x10, 0x4, 0xffffffc0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) r2 = socket(0x2, 0x5, 0x0) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(r2, 0x10000000084, 0x7e, 0x0, 0x3) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x406, 0x0, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x4000000000005, 0x7, 0x62, 0x4000000000008, 0x7, 0x1, 0xb, 0x100, 0x18]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) write$auto(r3, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r3, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x4, 0x15) openat$auto_ns_file_operations_nsfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/ns/cgroup\x00', 0x100, 0x0) r4 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64) fchdir$auto(r4) mkdir$auto(&(0x7f0000000480)='./cgroup\x00', 0x6) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x0, 0x21eb, 0x7ff, 0x3, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x1) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0xffffffffffffffff, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x17) ioctl$auto_USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000200)={0x3, 0x81, 0x40005b, 0x1, &(0x7f00000000c0), 0x4, 0x1001000, 0x4, @number_of_packets=0x2, 0x7, 0x8000000, 0x0}) 2.646806741s ago: executing program 3 (id=967): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/unix\x00', 0x121040, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = open(0x0, 0x22240, 0x155) r1 = socket(0x2, 0x80802, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto(r2, 0xc0285443, 0x0) r3 = socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) getsockopt$auto(r3, 0x84, 0x82, 0x0, &(0x7f0000000000)=0x7ffe) sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4000840}, 0x2000c840) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/bus/pci/rescan\x00', 0x20681, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), r0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x60800, 0x0) r7 = setfsuid$auto(0xee00) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r8, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000001f00)={&(0x7f0000000180)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYBLOB="010029bd7000fedbdf250d0000000c0006000100000000000000080001"], 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$auto_NL802154_CMD_SET_MAX_ASSOCIATIONS(r1, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x11001040}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x24, 0x0, 0x400, 0x70bd2b, 0x25dfdbfe, {}, [@NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0x2}, @NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x2a, 0x69}]}, 0x24}, 0x1, 0x0, 0x0, 0x4004800}, 0x4000000) sendmsg$auto_NL80211_CMD_SET_MAC_ACL(r5, &(0x7f0000000500)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000004c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="e4010000", @ANYRES16=r6, @ANYBLOB="060826bd7000fedbdf255d0000000600fb000600000008000c0000800000b4017a8010005e800800170004000000040044801400e900000000000000000000000000000000018b014a801f00a7002f70726f632f7468726561642d73656c662f6e65742f756e697800000800e100", @ANYRES32=r7, @ANYBLOB="00faff0008b6b96a6c6f90e9f5c0c5341d0a722c8ddded2a3ffdf1c0f104cd03b0636e7d5e7bcd055c38b0d90ef595a1f54b79c7636ebde39d423e7be39ef1eee7ee6ae5b74d5bf4e1b2a02c9a98b550d8549fe797138ea013850ed225345f888dec47d195f46e2104eaffd1a562b22a321a495406d782f1b426a9a7bd52ee353da2f01868e25f2c6410e4b0f52d829779911f300300002b90190d0901a03860c5512244fa6998360cf2d78678750c803288b4a155820189283585f3", @ANYRES32=r4, @ANYBLOB="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"], 0x1e4}, 0x1, 0x0, 0x0, 0x11}, 0x80) write$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000200)='5', 0x1) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 2.532790674s ago: executing program 5 (id=968): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/workqueue/raid5wq/nice\x00', 0x80001, 0x0) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/veth0/accept_ra_pinfo\x00', 0x2000, 0x0) read$auto(r0, 0x0, 0x1ff) write$auto(0x3, 0x0, 0x5c8) 2.513643297s ago: executing program 3 (id=969): openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0) mmap$auto(0x0, 0x40000c, 0x45bd, 0x9b72, 0x2, 0x8000) r0 = epoll_create$auto(0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace_marker_raw\x00', 0x401, 0x0) write$auto(0x3, 0x0, 0x5c8) statmount$auto(0x0, &(0x7f0000000180)={0x770, 0xfffffffe, 0x8, 0x4, 0x4005, 0x0, 0x3ffde, 0x400, 0x3, 0x9, 0x6, 0x6, 0x4, 0x11ffffffffffb, 0xb2, 0x2, 0x6, 0x10, 0x80, 0x800000029f, 0x8000, 0x1, 0x1, 0x202, 0x9, 0xbca7, 0x4, 0x0, 0x0, 0x0, 0x0, [0x2, 0x6, 0x0, 0x4, 0x0, 0x0, 0x20000000000, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffc01, 0x7fffffff, 0xfffffffffffffffb, 0x0, 0x9, 0x2000000, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x20000000000000, 0x0, 0x1000000000000200, 0x0, 0x400, 0x96, 0x9, 0x4, 0xe17, 0x0, 0x6]}, 0x1fe, 0x1) r1 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) ioprio_get$auto_IOPRIO_WHO_PROCESS(0x1, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x480001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x5, 0x3, 0x62, 0x80000001, 0x7, 0x2d, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r2, 0x0, 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x200007, 0x19) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000) mkdir$auto(&(0x7f00000001c0)='}[,&*}\x00', 0xc001) statx$auto(0xffffffffffffff9c, &(0x7f0000000000)='}[,&*}\x00', 0x9, 0x45d9, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) timerfd_gettime$auto(0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x40009, 0x3, 0x19, 0xffffffffffffffff, 0x28000) madvise$auto(0x0, 0x2003f0, 0x15) ioctl$auto__ctl_fops_dm_ioctl(r1, 0xfffffffffffffd03, &(0x7f00000001c0)) socket(0x2, 0x1, 0x106) getsockopt$auto(r0, 0xfffffff4, 0x100004, 0xfffffffffffffffe, 0xfffffffffffffffd) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101e81, 0x0) 2.382342566s ago: executing program 5 (id=970): mmap$auto(0x0, 0x7, 0x6, 0xeb1, 0xffffffffffffffff, 0x6) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/hugetlb.2MB.rsvd.limit_in_bytes\x00', 0x0, 0x0) socket(0x1b, 0x3, 0x1) madvise$auto(0x0, 0x2000040080000004, 0x4ba7) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x301f42, 0x0) write$auto(r0, &(0x7f0000000180)='//\xf2\x00', 0x7ffffffd) openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000040)='/dev/media19\x00', 0x28801, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) sysinfo$auto(0x0) ioctl$auto(0x3, 0xc1007c01, 0x38) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x8000000000000000, 0x15) mmap$auto(0x0, 0x2020009, 0xfffffffffffffff1, 0xeb1, 0xfffffffffffffffa, 0x8000) move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) msgsnd$auto(0x61e, &(0x7f0000000240)={0x8000000000000000, 0xfe}, 0x2000000000000005, 0x7) msgctl$auto(0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), 0xffffffffffffffff) mmap$auto(0x7fd, 0x400009, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) 2.202039409s ago: executing program 1 (id=971): r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/036/001\x00', 0xa901, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) socket(0x10, 0x4, 0xffffffc0) r1 = socket(0x2, 0x5, 0x0) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(r1, 0x10000000084, 0x7e, 0x0, 0x3) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) socket(0x10, 0x2, 0xc) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r2, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x4, 0x15) openat$auto_ns_file_operations_nsfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/ns/cgroup\x00', 0x100, 0x0) r3 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64) fchdir$auto(r3) mkdir$auto(&(0x7f0000000480)='./cgroup\x00', 0x6) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x0, 0x21eb, 0x7ff, 0x3, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x1) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0xffffffffffffffff, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x17) ioctl$auto_USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000200)={0x3, 0x81, 0x40005b, 0x1, &(0x7f00000000c0), 0x4, 0x1001000, 0x4, @number_of_packets=0x2, 0x7, 0x8000000, 0x0}) 987.438047ms ago: executing program 5 (id=972): mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) socket(0x2, 0x1, 0x0) close_range$auto(0x0, 0xfffffffffffff001, 0x2) socket(0x2, 0x1, 0x0) socket(0x1e, 0x1, 0x0) socket(0x10, 0x2, 0x0) memfd_create$auto(0x0, 0x4) mmap$auto(0x8000000, 0x8, 0x1000000016, 0x13, 0x3, 0x180000000) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x1000000fffd}, 0x1) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptypb\x00', 0x442200, 0x0) socket$nl_generic(0x11, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x200, 0x0) preadv$auto(0x40000000000003, 0x0, 0x6, 0x8, 0x5) socket(0x2b, 0x1, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) munmap$auto(0x8000, 0xffffffff) getrandom$auto(0x0, 0x6000000, 0x3) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x19, 0x4, 0x4, 0x880b, 0x8, 0xd, 0x66b, 0x4, 0x7ff}, 0x6f4) 783.995956ms ago: executing program 1 (id=973): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/zram0/disksize\x00', 0x40, 0x0) r1 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$auto(r1, &(0x7f0000000040)='\x00', 0x400) mmap$auto(0x2, 0xd, 0xdb, 0x9b72, 0x5, 0x8000) write$auto(r0, 0x0, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sg0\x00', 0x40000, 0x0) ioctl$auto_SG_GET_KEEP_ORPHAN(r2, 0x2288, &(0x7f0000000280)) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) iopl$auto(0x3) clone$auto(0x21002, 0xfffffffffffffffb, 0xfffffffffffffffe, 0xfffffffffffffffd, 0xff) socket(0x2, 0x1, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0) read$auto(r3, 0x0, 0x7) ioctl$auto_BTRFS_IOC_GET_SUPPORTED_FEATURES(0xffffffffffffffff, 0x80489439, &(0x7f0000000f80)=[{0x3ff, 0x3, 0xfffffffffffffffa}, {0x805, 0x5, 0x2}, {0xa6, 0x1, 0x2}]) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) socket(0x11, 0x3, 0x9) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_REPORT_PMSR(r5, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB="4100000000000000040000000000"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0) unshare$auto(0x40000080) 666.876891ms ago: executing program 2 (id=974): r0 = prctl$auto_PR_SET_MM_BRK(0x10, 0x7, 0x0, 0xfffffffffffffff8, 0x5084) mmap$auto(0x0, 0x6, 0x29, 0x40eb6, r0, 0x308000000000) socket(0x10, 0x2, 0x0) socket(0xa, 0x801, 0x84) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x29, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x7) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x3, 0x100) r2 = open(0x0, 0x261c2, 0x84) close_range$auto(0x2, 0x8000, 0x0) socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f00000000c0)=@iter_create={r1, 0xa0}, 0x10) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r2, 0x0, 0x3}, 0xc) r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) move_pages$auto(r3, 0x1002, 0x0, 0x0, 0x0, 0x2) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/sound/ctl-led/speaker/card0/attach\x00', 0x105e00, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/graphics/fbcon/rotate_all\x00', 0xa001, 0x0) write$auto(r4, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) semctl$auto(0x3, 0x3, 0x1, 0x4000000000000) write$auto(0x3, 0x0, 0xfffffdef) 542.838124ms ago: executing program 3 (id=975): setrlimit$auto(0x0, &(0x7f0000000000)={0x1, 0xfb3}) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x734f, 0x36, 0x67f, 0x1ffde, 0x7, 0x3, 0x20000002, 0xd, 0x3, 0x1, 0x2091, 0xb4, 0x9, 0x6, 0x6, 0x80, 0x4, 0x1cd7, 0x1000, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x1fe, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x13, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8040) r0 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000140), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) setrlimit$auto(0x0, &(0x7f0000000040)={0x3346, 0xffffffffffffffff}) 212.511757ms ago: executing program 1 (id=976): sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f00000013c0)={0x0, 0x0, &(0x7f0000001380)={&(0x7f0000000380)=ANY=[@ANYBLOB="7bd5c3208298138ccf04b17b8735075348e93156f3cd8364f89c66cbeccb123c9fb35142653ddbcc4addd49052288551b3239f41033f3b69539f77a2ac77ae894d86c0dffed0ba499128cf8f84015c691d2b68f22a27"], 0x58}, 0x1, 0x0, 0x0, 0x40000}, 0x400c994) mmap$auto(0x0, 0x40009, 0x10001, 0x19, 0xffffffffffffffff, 0x28000) mmap$auto(0x0, 0x5, 0xdf, 0xeb3, 0x401, 0x400000001d) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) r0 = fcntl$auto(0x3, 0x4, 0xa553) mmap$auto(0x3ff, 0x20009, 0x4000000000e0, 0x40000000000eb1, 0x401, 0x8000) (async) mmap$auto(0x3ff, 0x20009, 0x4000000000e0, 0x40000000000eb1, 0x401, 0x8000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) syslog$auto(0x1, 0x0, 0x0) (async) syslog$auto(0x1, 0x0, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) close_range$auto(0x0, 0xfffffffffffff001, 0x2) r2 = socket(0x2b, 0x1, 0x0) mmap$auto(0x8, 0xe983, 0xdf, 0x100000000000016, 0xffffffffffffffff, 0x7ffd) (async) mmap$auto(0x8, 0xe983, 0xdf, 0x100000000000016, 0xffffffffffffffff, 0x7ffd) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video33\x00', 0x80382, 0x0) (async) r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video33\x00', 0x80382, 0x0) ioctl$auto(r3, 0xc0045627, r2) (async) ioctl$auto(r3, 0xc0045627, r2) socket(0x10, 0x2, 0x0) (async) socket(0x10, 0x2, 0x0) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) sendmsg$auto_TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000700)=ANY=[@ANYBLOB="000100001259b8a136ce0d603f50fdd183287228f7c9cf8261a0114c7613ab7895bcd80ce89f3e6117d8192875e28dcbb60da4c34a87a63c18e1e02ccdbae7bd3b12c15b2ca63d6e7da9e25f5948ae97bf077556ad146dce708b8c9bf9ed522715ffff17d95adada4d219e9eaf2de16deca2bffd28b83c", @ANYRES16=0x0, @ANYBLOB="000326bd7000fcdbdf2503000000790008805b4f2525b2dc3a73ec37e7122e6f0d55382854d419b883b7ed64bd3c7b9fb15273e787030718751e0622cc6cabcae114aa6448d0356183e1ca7c01536c5c6f37915b26a3e75515ab022446e932b8a415a581dcdc9d7800061e231c001d800400d3800c002000f3000000002b3c0c7e"], 0x100}, 0x1, 0x0, 0x0, 0x8000}, 0x42) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'veth1_vlan\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_WOL_SET(r4, &(0x7f0000000500)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="b4000000", @ANYRES16=0x0, @ANYBLOB="00042bbd7000fddbdf250a0000003000018008000300ff0300001400020064766d7270310000000000000000000008000300fffffeff08000100", @ANYRES32=0x0, @ANYBLOB="07000300ef7ccf002800018014000200776c616e30000000000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="08000300bb5f8467400001800800030080100000080003000800000008000300080000001400020070696d7265673000000000000000000008000100", @ANYRES32=r5, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="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"], 0xb4}, 0x1, 0x0, 0x0, 0x24040080}, 0x404c084) r6 = socket(0x10, 0x2, 0x15) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000"], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) r7 = openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace_marker_raw\x00', 0x2, 0x0) write$auto(r7, 0x0, 0x5) sendmmsg$auto(r6, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x3}, 0x3, 0x800) (async) sendmmsg$auto(r6, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x3}, 0x3, 0x800) 0s ago: executing program 2 (id=977): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/unix\x00', 0x121040, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = open(0x0, 0x22240, 0x155) r1 = socket(0x2, 0x80802, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto(r2, 0xc0285443, 0x0) r3 = socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) getsockopt$auto(r3, 0x84, 0x82, 0x0, &(0x7f0000000000)=0x7ffe) sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4000840}, 0x2000c840) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/bus/pci/rescan\x00', 0x20681, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), r0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x60800, 0x0) r7 = setfsuid$auto(0xee00) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r8, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000001f00)={&(0x7f0000000180)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYBLOB="010029bd7000fedbdf250d0000000c0006000100000000000000080001"], 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$auto_NL802154_CMD_SET_MAX_ASSOCIATIONS(r1, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x11001040}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x24, 0x0, 0x400, 0x70bd2b, 0x25dfdbfe, {}, [@NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0x2}, @NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x2a, 0x69}]}, 0x24}, 0x1, 0x0, 0x0, 0x4004800}, 0x4000000) sendmsg$auto_NL80211_CMD_SET_MAC_ACL(r5, &(0x7f0000000500)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000004c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="e4010000", @ANYRES16=r6, @ANYBLOB="060826bd7000fedbdf255d0000000600fb000600000008000c0000800000b4017a8010005e800800170004000000040044801400e900000000000000000000000000000000018b014a801f00a7002f70726f632f7468726561642d73656c662f6e65742f756e697800000800e100", @ANYRES32=r7, @ANYBLOB="00faff0008b6b96a6c6f90e9f5c0c5341d0a722c8ddded2a3ffdf1c0f104cd03b0636e7d5e7bcd055c38b0d90ef595a1f54b79c7636ebde39d423e7be39ef1eee7ee6ae5b74d5bf4e1b2a02c9a98b550d8549fe797138ea013850ed225345f888dec47d195f46e2104eaffd1a562b22a321a495406d782f1b426a9a7bd52ee353da2f01868e25f2c6410e4b0f52d829779911f300300002b90190d0901a03860c5512244fa6998360cf2d78678750c803288b4a155820189283585f3", @ANYRES32=r4, @ANYBLOB="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"], 0x1e4}, 0x1, 0x0, 0x0, 0x11}, 0x80) write$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000200)='5', 0x1) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) kernel console output (not intermixed with test programs): x_stack_trace_save+0x10/0x10 [ 158.945279][ T7231] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 158.945314][ T7231] ? policy_nodemask+0xea/0x4e0 [ 158.945342][ T7231] alloc_pages_mpol+0x1fb/0x550 [ 158.945369][ T7231] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 158.945405][ T7231] alloc_pages_noprof+0x131/0x390 [ 158.945432][ T7231] kimage_alloc_pages+0x74/0x350 [ 158.945468][ T7231] kimage_alloc_control_pages+0x153/0xa00 [ 158.945515][ T7231] ? __pfx_kimage_alloc_control_pages+0x10/0x10 [ 158.945562][ T7231] do_kexec_load+0x478/0x8a0 [ 158.945599][ T7231] ? __pfx_do_kexec_load+0x10/0x10 [ 158.945637][ T7231] ? _copy_from_user+0x59/0xd0 [ 158.945665][ T7231] __x64_sys_kexec_load+0x1bf/0x230 [ 158.945703][ T7231] do_syscall_64+0xcd/0xfa0 [ 158.945740][ T7231] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 158.945766][ T7231] RIP: 0033:0x7f091098eec9 [ 158.945786][ T7231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 158.945809][ T7231] RSP: 002b:00007f09118a4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6 [ 158.945834][ T7231] RAX: ffffffffffffffda RBX: 00007f0910be5fa0 RCX: 00007f091098eec9 [ 158.945851][ T7231] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000005 [ 158.945866][ T7231] RBP: 00007f0910a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 158.945882][ T7231] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 158.945897][ T7231] R13: 00007f0910be6038 R14: 00007f0910be5fa0 R15: 00007fffe38722c8 [ 158.945933][ T7231] [ 158.946028][ T7231] kexec: Could not allocate control_code_buffer [ 160.073684][ T7264] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input41 [ 160.457289][ T7248] HfR: entered promiscuous mode [ 160.525151][ T7273] usb usb36: usbfs: process 7273 (syz.4.271) did not claim interface 0 before use [ 160.551133][ T7278] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 162.053212][ T5149] Bluetooth: hci0: unexpected event 0x14 length: 16 > 6 [ 162.089497][ T7322] hub 1-0:1.0: USB hub found [ 162.125868][ T7322] hub 1-0:1.0: 1 port detected [ 162.237143][ T7326] netlink: 8 bytes leftover after parsing attributes in process `syz.2.280'. [ 164.025589][ T7346] usb usb36: usbfs: process 7346 (syz.1.285) did not claim interface 0 before use [ 164.147078][ T7363] bond0: option all_slaves_active: invalid value () [ 165.043935][ T7385] usb usb34: usbfs: process 7385 (syz.2.288) did not claim interface 0 before use [ 166.911088][ T7419] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input42 [ 167.291550][ T7419] usb usb36: usbfs: process 7419 (syz.4.299) did not claim interface 0 before use [ 168.273575][ T7435] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 168.509407][ T7446] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 170.882798][ T7514] FAULT_INJECTION: forcing a failure. [ 170.882798][ T7514] name failslab, interval 1, probability 0, space 0, times 0 [ 171.022284][ T7514] CPU: 1 UID: 0 PID: 7514 Comm: syz.3.320 Not tainted syzkaller #0 PREEMPT(full) [ 171.022320][ T7514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 171.022335][ T7514] Call Trace: [ 171.022344][ T7514] [ 171.022353][ T7514] dump_stack_lvl+0x16c/0x1f0 [ 171.022395][ T7514] should_fail_ex+0x512/0x640 [ 171.022432][ T7514] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 171.022468][ T7514] should_failslab+0xc2/0x120 [ 171.022491][ T7514] kmem_cache_alloc_noprof+0x75/0x6e0 [ 171.022522][ T7514] ? __pmd_alloc+0xbf/0x8b0 [ 171.022551][ T7514] ? __pmd_alloc+0xbf/0x8b0 [ 171.022573][ T7514] __pmd_alloc+0xbf/0x8b0 [ 171.022600][ T7514] walk_pgd_range+0x88b/0x1f50 [ 171.022639][ T7514] ? mt_find+0x749/0xa20 [ 171.022675][ T7514] ? __pfx_guard_install_set_pte+0x10/0x10 [ 171.022702][ T7514] ? mt_find+0x3e2/0xa20 [ 171.022735][ T7514] ? __pfx_guard_install_set_pte+0x10/0x10 [ 171.022758][ T7514] ? __pfx_guard_install_set_pte+0x10/0x10 [ 171.022782][ T7514] ? __pfx_walk_pgd_range+0x10/0x10 [ 171.022817][ T7514] ? __lock_acquire+0xb8a/0x1c90 [ 171.022845][ T7514] __walk_page_range+0x163/0x820 [ 171.022883][ T7514] ? find_vma+0xbf/0x140 [ 171.022915][ T7514] ? __pfx_find_vma+0x10/0x10 [ 171.022950][ T7514] ? walk_page_test+0x9b/0x180 [ 171.022982][ T7514] walk_page_range_mm+0x461/0xb40 [ 171.023020][ T7514] ? __pfx_walk_page_range_mm+0x10/0x10 [ 171.023060][ T7514] ? __anon_vma_prepare+0x2e2/0x5e0 [ 171.023093][ T7514] madvise_vma_behavior+0xa54/0x2d50 [ 171.023122][ T7514] ? mas_prev_setup.constprop.0+0xb6/0x9d0 [ 171.023158][ T7514] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 171.023186][ T7514] ? mas_prev+0x9b/0xf0 [ 171.023217][ T7514] ? __pfx_mas_prev+0x10/0x10 [ 171.023250][ T7514] ? find_vma_prev+0xd3/0x150 [ 171.023271][ T7514] ? find_held_lock+0x2b/0x80 [ 171.023304][ T7514] ? __pfx_find_vma_prev+0x10/0x10 [ 171.023341][ T7514] ? __futex_wait+0x24b/0x2f0 [ 171.023377][ T7514] madvise_walk_vmas+0x31f/0x9c0 [ 171.023412][ T7514] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 171.023450][ T7514] madvise_do_behavior+0x1e2/0x530 [ 171.023473][ T7514] ? futex_private_hash_put+0x18a/0x300 [ 171.023513][ T7514] ? __pfx_madvise_do_behavior+0x10/0x10 [ 171.023540][ T7514] ? down_read+0x13d/0x480 [ 171.023579][ T7514] do_madvise+0x176/0x240 [ 171.023605][ T7514] ? __pfx_do_madvise+0x10/0x10 [ 171.023630][ T7514] ? do_futex+0x122/0x350 [ 171.023678][ T7514] ? xfd_validate_state+0x61/0x180 [ 171.023702][ T7514] ? __pfx_ksys_write+0x10/0x10 [ 171.023742][ T7514] __x64_sys_madvise+0xa9/0x110 [ 171.023766][ T7514] ? lockdep_hardirqs_on+0x7c/0x110 [ 171.023798][ T7514] do_syscall_64+0xcd/0xfa0 [ 171.023833][ T7514] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 171.023859][ T7514] RIP: 0033:0x7f0c7878eec9 [ 171.023879][ T7514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 171.023905][ T7514] RSP: 002b:00007f0c7958a038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 171.023928][ T7514] RAX: ffffffffffffffda RBX: 00007f0c789e5fa0 RCX: 00007f0c7878eec9 [ 171.023946][ T7514] RDX: 0000000000000066 RSI: 0000000002021000 RDI: 0000000000000000 [ 171.023961][ T7514] RBP: 00007f0c78811f91 R08: 0000000000000000 R09: 0000000000000000 [ 171.023977][ T7514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 171.023992][ T7514] R13: 00007f0c789e6038 R14: 00007f0c789e5fa0 R15: 00007ffd0383c468 [ 171.024028][ T7514] [ 171.364684][ C1] vkms_vblank_simulate: vblank timer overrun [ 172.439726][ T7531] FAULT_INJECTION: forcing a failure. [ 172.439726][ T7531] name failslab, interval 1, probability 0, space 0, times 0 [ 172.456917][ T7531] CPU: 1 UID: 0 PID: 7531 Comm: syz.3.324 Not tainted syzkaller #0 PREEMPT(full) [ 172.456952][ T7531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 172.456967][ T7531] Call Trace: [ 172.456976][ T7531] [ 172.456987][ T7531] dump_stack_lvl+0x16c/0x1f0 [ 172.457030][ T7531] should_fail_ex+0x512/0x640 [ 172.457068][ T7531] ? fs_reclaim_acquire+0xae/0x150 [ 172.457097][ T7531] should_failslab+0xc2/0x120 [ 172.457122][ T7531] __kmalloc_noprof+0xdd/0x880 [ 172.457153][ T7531] ? kfree+0x252/0x6d0 [ 172.457188][ T7531] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 172.457233][ T7531] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 172.457269][ T7531] tomoyo_realpath_from_path+0xc2/0x6e0 [ 172.457315][ T7531] tomoyo_check_open_permission+0x2ab/0x3c0 [ 172.457348][ T7531] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 172.457415][ T7531] ? do_raw_spin_lock+0x12c/0x2b0 [ 172.457457][ T7531] tomoyo_file_open+0x6b/0x90 [ 172.457501][ T7531] security_file_open+0x84/0x1e0 [ 172.457535][ T7531] do_dentry_open+0x596/0x1530 [ 172.457582][ T7531] vfs_open+0x82/0x3f0 [ 172.457613][ T7531] path_openat+0x1de4/0x2cb0 [ 172.457660][ T7531] ? __pfx_path_openat+0x10/0x10 [ 172.457697][ T7531] ? __lock_acquire+0xb8a/0x1c90 [ 172.457727][ T7531] do_filp_open+0x20b/0x470 [ 172.457763][ T7531] ? __pfx_do_filp_open+0x10/0x10 [ 172.457823][ T7531] ? alloc_fd+0x471/0x7d0 [ 172.457863][ T7531] do_sys_openat2+0x11b/0x1d0 [ 172.457888][ T7531] ? __pfx_do_sys_openat2+0x10/0x10 [ 172.457928][ T7531] __x64_sys_openat+0x174/0x210 [ 172.457954][ T7531] ? __pfx___x64_sys_openat+0x10/0x10 [ 172.457997][ T7531] do_syscall_64+0xcd/0xfa0 [ 172.458036][ T7531] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 172.458062][ T7531] RIP: 0033:0x7f0c7878eec9 [ 172.458081][ T7531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 172.458104][ T7531] RSP: 002b:00007f0c7958a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 172.458128][ T7531] RAX: ffffffffffffffda RBX: 00007f0c789e5fa0 RCX: 00007f0c7878eec9 [ 172.458145][ T7531] RDX: 0000000000002000 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 172.458162][ T7531] RBP: 00007f0c78811f91 R08: 0000000000000000 R09: 0000000000000000 [ 172.458184][ T7531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 172.458200][ T7531] R13: 00007f0c789e6038 R14: 00007f0c789e5fa0 R15: 00007ffd0383c468 [ 172.458238][ T7531] [ 172.458248][ T7531] ERROR: Out of memory at tomoyo_realpath_from_path. [ 175.214402][ T7558] usb usb36: usbfs: process 7558 (syz.3.330) did not claim interface 0 before use [ 176.162338][ T7589] netlink: 8 bytes leftover after parsing attributes in process `syz.3.338'. [ 176.413755][ T7599] input: f as /devices/virtual/input/input43 [ 177.238088][ T7606] Invalid ELF header magic: != ELF [ 177.616625][ T7615] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input44 [ 177.955114][ T7618] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input45 [ 178.320133][ T7621] usb usb36: usbfs: process 7621 (syz.4.343) did not claim interface 0 before use [ 178.763535][ T7630] FAULT_INJECTION: forcing a failure. [ 178.763535][ T7630] name failslab, interval 1, probability 0, space 0, times 0 [ 178.852205][ T7630] CPU: 0 UID: 0 PID: 7630 Comm: syz.3.346 Not tainted syzkaller #0 PREEMPT(full) [ 178.852239][ T7630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 178.852254][ T7630] Call Trace: [ 178.852263][ T7630] [ 178.852273][ T7630] dump_stack_lvl+0x16c/0x1f0 [ 178.852314][ T7630] should_fail_ex+0x512/0x640 [ 178.852351][ T7630] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 178.852388][ T7630] should_failslab+0xc2/0x120 [ 178.852412][ T7630] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 178.852447][ T7630] ? __d_alloc+0x32/0xae0 [ 178.852489][ T7630] ? __d_alloc+0x32/0xae0 [ 178.852521][ T7630] __d_alloc+0x32/0xae0 [ 178.852558][ T7630] d_alloc_pseudo+0x1c/0xc0 [ 178.852585][ T7630] alloc_file_pseudo+0xcf/0x230 [ 178.852615][ T7630] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 178.852642][ T7630] ? alloc_fd+0x471/0x7d0 [ 178.852687][ T7630] sock_alloc_file+0x50/0x210 [ 178.852729][ T7630] __sys_socket+0x1c0/0x260 [ 178.852761][ T7630] ? __pfx___sys_socket+0x10/0x10 [ 178.852793][ T7630] ? do_user_addr_fault+0x843/0x1370 [ 178.852830][ T7630] __x64_sys_socket+0x72/0xb0 [ 178.852857][ T7630] ? lockdep_hardirqs_on+0x7c/0x110 [ 178.852893][ T7630] do_syscall_64+0xcd/0xfa0 [ 178.852930][ T7630] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 178.852956][ T7630] RIP: 0033:0x7f0c78790de7 [ 178.852976][ T7630] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 178.852999][ T7630] RSP: 002b:00007f0c79588fa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 178.853023][ T7630] RAX: ffffffffffffffda RBX: 00007f0c789e5fa0 RCX: 00007f0c78790de7 [ 178.853039][ T7630] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 178.853054][ T7630] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 178.853069][ T7630] R10: 0000200000000180 R11: 0000000000000286 R12: 0000000000000000 [ 178.853085][ T7630] R13: 00007f0c789e6038 R14: 00007f0c789e5fa0 R15: 00007ffd0383c468 [ 178.853120][ T7630] [ 179.253951][ T7624] usb usb36: usbfs: process 7624 (syz.1.344) did not claim interface 0 before use [ 180.134249][ T7658] FAULT_INJECTION: forcing a failure. [ 180.134249][ T7658] name failslab, interval 1, probability 0, space 0, times 0 [ 180.152333][ T7658] CPU: 1 UID: 0 PID: 7658 Comm: syz.1.351 Not tainted syzkaller #0 PREEMPT(full) [ 180.152367][ T7658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 180.152381][ T7658] Call Trace: [ 180.152390][ T7658] [ 180.152400][ T7658] dump_stack_lvl+0x16c/0x1f0 [ 180.152443][ T7658] should_fail_ex+0x512/0x640 [ 180.152479][ T7658] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 180.152521][ T7658] should_failslab+0xc2/0x120 [ 180.152546][ T7658] __kvmalloc_node_noprof+0x141/0x9c0 [ 180.152581][ T7658] ? __fget_files+0x204/0x3c0 [ 180.152614][ T7658] ? do_getxattr+0xad/0x360 [ 180.152651][ T7658] ? do_getxattr+0xad/0x360 [ 180.152679][ T7658] do_getxattr+0xad/0x360 [ 180.152713][ T7658] path_getxattrat+0x25d/0x2d0 [ 180.152750][ T7658] ? __pfx_path_getxattrat+0x10/0x10 [ 180.152819][ T7658] ? xfd_validate_state+0x61/0x180 [ 180.152845][ T7658] ? __pfx___x64_sys_pselect6+0x10/0x10 [ 180.152889][ T7658] do_syscall_64+0xcd/0xfa0 [ 180.152928][ T7658] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.152953][ T7658] RIP: 0033:0x7f474018eec9 [ 180.152974][ T7658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 180.152997][ T7658] RSP: 002b:00007f4740f57038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c1 [ 180.153021][ T7658] RAX: ffffffffffffffda RBX: 00007f47403e5fa0 RCX: 00007f474018eec9 [ 180.153038][ T7658] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000007 [ 180.153053][ T7658] RBP: 00007f4740211f91 R08: 0000000000000000 R09: 0000000000000000 [ 180.153068][ T7658] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000 [ 180.153083][ T7658] R13: 00007f47403e6038 R14: 00007f47403e5fa0 R15: 00007ffc7560ccf8 [ 180.153118][ T7658] [ 180.336078][ C1] vkms_vblank_simulate: vblank timer overrun [ 180.571343][ T7666] ICMPv6: process `syz.3.353' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 180.981247][ T7679] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE r҄y*"l-y– [ 181.291206][ T7690] netlink: 8 bytes leftover after parsing attributes in process `syz.2.356'. [ 182.352240][ T7727] vhci_hcd: invalid port number 16 [ 182.357369][ T7727] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 183.191741][ T7745] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input46 [ 183.607706][ T7748] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input47 [ 184.051707][ T7757] usb usb36: usbfs: process 7757 (syz.2.367) did not claim interface 0 before use [ 184.484247][ T7746] usb usb36: usbfs: process 7746 (syz.4.369) did not claim interface 0 before use [ 185.494852][ T7789] ptrace attach of "./syz-executor exec"[5831] was attempted by ""[7789] [ 186.120257][ T30] audit: type=1800 audit(1760262064.302:15): pid=7803 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.380" name="discovery_nqn" dev="configfs" ino=19570 res=0 errno=0 [ 186.660930][ T7818] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input48 [ 187.149443][ T7819] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input49 [ 187.391837][ T7822] FAULT_INJECTION: forcing a failure. [ 187.391837][ T7822] name failslab, interval 1, probability 0, space 0, times 0 [ 187.414345][ T7820] usb usb36: usbfs: process 7820 (syz.1.381) did not claim interface 0 before use [ 187.492161][ T7822] CPU: 1 UID: 0 PID: 7822 Comm: syz.2.383 Not tainted syzkaller #0 PREEMPT(full) [ 187.492180][ T7822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 187.492188][ T7822] Call Trace: [ 187.492193][ T7822] [ 187.492199][ T7822] dump_stack_lvl+0x16c/0x1f0 [ 187.492224][ T7822] should_fail_ex+0x512/0x640 [ 187.492245][ T7822] ? __kmalloc_noprof+0xca/0x880 [ 187.492264][ T7822] should_failslab+0xc2/0x120 [ 187.492277][ T7822] __kmalloc_noprof+0xdd/0x880 [ 187.492293][ T7822] ? __register_sysctl_table+0xb3/0x1900 [ 187.492313][ T7822] ? __register_sysctl_table+0xb3/0x1900 [ 187.492327][ T7822] __register_sysctl_table+0xb3/0x1900 [ 187.492342][ T7822] ? is_module_address+0x5f/0xf0 [ 187.492360][ T7822] ? __pfx___register_sysctl_table+0x10/0x10 [ 187.492375][ T7822] ? is_module_address+0x69/0xf0 [ 187.492388][ T7822] ? register_net_sysctl_sz+0x228/0x3e0 [ 187.492404][ T7822] ? __asan_memcpy+0x3c/0x60 [ 187.492423][ T7822] sysctl_route_net_init+0x15e/0x2c0 [ 187.492440][ T7822] ? __pfx_sysctl_route_net_init+0x10/0x10 [ 187.492455][ T7822] ops_init+0x1e2/0x5f0 [ 187.492478][ T7822] setup_net+0x100/0x390 [ 187.492498][ T7822] ? __pfx_setup_net+0x10/0x10 [ 187.492519][ T7822] ? debug_mutex_init+0x37/0x70 [ 187.492540][ T7822] copy_net_ns+0x2f8/0x690 [ 187.492556][ T7822] create_new_namespaces+0x3ea/0xa90 [ 187.492580][ T7822] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 187.492601][ T7822] ksys_unshare+0x45b/0xa40 [ 187.492615][ T7822] ? __pfx_ksys_unshare+0x10/0x10 [ 187.492629][ T7822] ? xfd_validate_state+0x61/0x180 [ 187.492649][ T7822] __x64_sys_unshare+0x31/0x40 [ 187.492661][ T7822] do_syscall_64+0xcd/0xfa0 [ 187.492682][ T7822] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.492697][ T7822] RIP: 0033:0x7f133b78eec9 [ 187.492716][ T7822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 187.492735][ T7822] RSP: 002b:00007f133c672038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 187.492748][ T7822] RAX: ffffffffffffffda RBX: 00007f133b9e5fa0 RCX: 00007f133b78eec9 [ 187.492757][ T7822] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 187.492765][ T7822] RBP: 00007f133b811f91 R08: 0000000000000000 R09: 0000000000000000 [ 187.492773][ T7822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 187.492780][ T7822] R13: 00007f133b9e6038 R14: 00007f133b9e5fa0 R15: 00007ffe3df558c8 [ 187.492799][ T7822] [ 189.213182][ T7865] netlink: 4 bytes leftover after parsing attributes in process `syz.3.393'. [ 189.245244][ T7864] ptrace attach of "./syz-executor exec"[5830] was attempted by ""[7864] [ 189.505191][ T7864] mkiss: ax0: crc mode is auto. [ 189.995899][ T7869] netlink: 268 bytes leftover after parsing attributes in process `syz.1.394'. [ 190.364130][ T7889] netlink: 350 bytes leftover after parsing attributes in process `syz.4.401'. [ 190.522172][ T7869] syz.1.394 (7869) used greatest stack depth: 19720 bytes left [ 191.617842][ T7908] FAULT_INJECTION: forcing a failure. [ 191.617842][ T7908] name failslab, interval 1, probability 0, space 0, times 0 [ 191.668059][ T7908] CPU: 1 UID: 0 PID: 7908 Comm: syz.1.406 Not tainted syzkaller #0 PREEMPT(full) [ 191.668092][ T7908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 191.668104][ T7908] Call Trace: [ 191.668110][ T7908] [ 191.668115][ T7908] dump_stack_lvl+0x16c/0x1f0 [ 191.668141][ T7908] should_fail_ex+0x512/0x640 [ 191.668162][ T7908] ? __kmalloc_cache_noprof+0x5f/0x780 [ 191.668183][ T7908] should_failslab+0xc2/0x120 [ 191.668197][ T7908] __kmalloc_cache_noprof+0x72/0x780 [ 191.668214][ T7908] ? snd_hrtimer_open+0x43/0xf0 [ 191.668236][ T7908] ? snd_hrtimer_open+0x43/0xf0 [ 191.668252][ T7908] ? __pfx_snd_hrtimer_open+0x10/0x10 [ 191.668268][ T7908] snd_hrtimer_open+0x43/0xf0 [ 191.668285][ T7908] snd_timer_open+0xb56/0x1060 [ 191.668305][ T7908] ? __pfx_snd_timer_open+0x10/0x10 [ 191.668324][ T7908] ? kstrdup+0xb5/0x100 [ 191.668345][ T7908] snd_seq_timer_open+0x280/0x600 [ 191.668367][ T7908] ? __pfx_snd_seq_timer_open+0x10/0x10 [ 191.668388][ T7908] ? find_held_lock+0x2b/0x80 [ 191.668410][ T7908] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 191.668428][ T7908] ? lockdep_hardirqs_on+0x7c/0x110 [ 191.668447][ T7908] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 191.668468][ T7908] queue_use+0xe3/0x250 [ 191.668485][ T7908] snd_seq_queue_alloc+0x2e5/0x5a0 [ 191.668505][ T7908] snd_seq_ioctl_create_queue+0xa9/0x390 [ 191.668524][ T7908] call_seq_client_ctl+0x9f/0x110 [ 191.668547][ T7908] snd_seq_kernel_client_ctl+0x77/0xd0 [ 191.668561][ T7908] alloc_seq_queue+0xda/0x180 [ 191.668575][ T7908] ? __pfx_alloc_seq_queue+0x10/0x10 [ 191.668600][ T7908] ? mark_held_locks+0x49/0x80 [ 191.668613][ T7908] ? _raw_spin_unlock_irq+0x23/0x50 [ 191.668630][ T7908] ? lockdep_hardirqs_on+0x7c/0x110 [ 191.668652][ T7908] snd_seq_oss_open+0x38c/0xa20 [ 191.668670][ T7908] odev_open+0x79/0xc0 [ 191.668682][ T7908] ? __pfx_odev_open+0x10/0x10 [ 191.668695][ T7908] soundcore_open+0x40c/0x580 [ 191.668711][ T7908] ? __pfx_soundcore_open+0x10/0x10 [ 191.668724][ T7908] chrdev_open+0x234/0x6a0 [ 191.668744][ T7908] ? __pfx_apparmor_file_open+0x10/0x10 [ 191.668767][ T7908] ? __pfx_chrdev_open+0x10/0x10 [ 191.668789][ T7908] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 191.668813][ T7908] do_dentry_open+0x982/0x1530 [ 191.668834][ T7908] ? __pfx_chrdev_open+0x10/0x10 [ 191.668858][ T7908] vfs_open+0x82/0x3f0 [ 191.668876][ T7908] path_openat+0x1de4/0x2cb0 [ 191.668902][ T7908] ? __pfx_path_openat+0x10/0x10 [ 191.668922][ T7908] ? __lock_acquire+0xb8a/0x1c90 [ 191.668938][ T7908] do_filp_open+0x20b/0x470 [ 191.668957][ T7908] ? __pfx_do_filp_open+0x10/0x10 [ 191.668990][ T7908] ? alloc_fd+0x471/0x7d0 [ 191.669013][ T7908] do_sys_openat2+0x11b/0x1d0 [ 191.669028][ T7908] ? __pfx_do_sys_openat2+0x10/0x10 [ 191.669044][ T7908] ? __pfx___might_resched+0x10/0x10 [ 191.669067][ T7908] __x64_sys_openat+0x174/0x210 [ 191.669082][ T7908] ? __pfx___x64_sys_openat+0x10/0x10 [ 191.669106][ T7908] do_syscall_64+0xcd/0xfa0 [ 191.669126][ T7908] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 191.669140][ T7908] RIP: 0033:0x7f474018eec9 [ 191.669152][ T7908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 191.669165][ T7908] RSP: 002b:00007f4740f57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 191.669180][ T7908] RAX: ffffffffffffffda RBX: 00007f47403e5fa0 RCX: 00007f474018eec9 [ 191.669190][ T7908] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 191.669199][ T7908] RBP: 00007f4740211f91 R08: 0000000000000000 R09: 0000000000000000 [ 191.669207][ T7908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 191.669216][ T7908] R13: 00007f47403e6038 R14: 00007f47403e5fa0 R15: 00007ffc7560ccf8 [ 191.669237][ T7908] [ 192.353249][ T7916] sctp: [Deprecated]: syz.2.409 (pid 7916) Use of struct sctp_assoc_value in delayed_ack socket option. [ 192.353249][ T7916] Use struct sctp_sack_info instead [ 192.440025][ T7919] netlink: 28 bytes leftover after parsing attributes in process `syz.2.410'. [ 192.516844][ T7919] bridge0: port 2(bridge_slave_1) entered disabled state [ 192.555647][ T7919] bridge_slave_1 (unregistering): left allmulticast mode [ 192.573993][ T7919] bridge_slave_1 (unregistering): left promiscuous mode [ 192.582074][ T7919] bridge0: port 2(bridge_slave_1) entered disabled state [ 193.069478][ T7917] binder: 7915:7917 ioctl c00c620f 2000000000c0 returned -22 [ 193.763801][ T7957] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input50 [ 194.236952][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.248657][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.754801][ T7961] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input51 [ 195.020565][ T7983] usb usb36: usbfs: process 7983 (syz.2.415) did not claim interface 0 before use [ 196.180768][ T8003] syz.1.426 uses obsolete (PF_INET,SOCK_PACKET) [ 197.095738][ T8029] netlink: 302 bytes leftover after parsing attributes in process `syz.2.430'. [ 197.136070][ T8027] rnbd_client L213: map_device: Parameters missing [ 198.197152][ T8062] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input52 [ 198.850143][ T8067] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input53 [ 199.189392][ T30] audit: type=1806 audit(1760262077.372:16): xattr="." res=0 [ 199.357046][ T8062] usb usb36: usbfs: process 8062 (syz.2.435) did not claim interface 0 before use [ 199.744746][ T5149] Bluetooth: hci3: unexpected event 0x36 length: 123 > 7 [ 200.162546][ T983] smpboot: CPU 1 is now offline [ 200.491287][ T8121] FAULT_INJECTION: forcing a failure. [ 200.491287][ T8121] name failslab, interval 1, probability 0, space 0, times 0 [ 200.504060][ T8121] CPU: 0 UID: 0 PID: 8121 Comm: syz.4.448 Not tainted syzkaller #0 PREEMPT(full) [ 200.504079][ T8121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 200.504087][ T8121] Call Trace: [ 200.504092][ T8121] [ 200.504097][ T8121] dump_stack_lvl+0x16c/0x1f0 [ 200.504121][ T8121] should_fail_ex+0x512/0x640 [ 200.504145][ T8121] should_failslab+0xc2/0x120 [ 200.504159][ T8121] __kmalloc_cache_noprof+0x72/0x780 [ 200.504177][ T8121] ? tipc_nametbl_insert_publ+0x5a/0x1720 [ 200.504202][ T8121] ? tipc_nametbl_insert_publ+0x5a/0x1720 [ 200.504222][ T8121] tipc_nametbl_insert_publ+0x5a/0x1720 [ 200.504243][ T8121] ? do_raw_spin_lock+0x12c/0x2b0 [ 200.504261][ T8121] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 200.504276][ T8121] ? net_generic+0xea/0x2a0 [ 200.504300][ T8121] tipc_nametbl_publish+0x137/0x280 [ 200.504323][ T8121] tipc_sk_publish+0x1d8/0x430 [ 200.504337][ T8121] ? __pfx_tipc_sk_publish+0x10/0x10 [ 200.504356][ T8121] tipc_setsockopt+0x991/0xdb0 [ 200.504370][ T8121] ? __pfx_tipc_setsockopt+0x10/0x10 [ 200.504391][ T8121] ? __pfx_tipc_setsockopt+0x10/0x10 [ 200.504405][ T8121] do_sock_setsockopt+0xf3/0x1d0 [ 200.504422][ T8121] __sys_setsockopt+0x120/0x1a0 [ 200.504444][ T8121] __x64_sys_setsockopt+0xbd/0x160 [ 200.504462][ T8121] ? do_syscall_64+0x91/0xfa0 [ 200.504481][ T8121] ? lockdep_hardirqs_on+0x7c/0x110 [ 200.504500][ T8121] do_syscall_64+0xcd/0xfa0 [ 200.504520][ T8121] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 200.504534][ T8121] RIP: 0033:0x7f091098eec9 [ 200.504545][ T8121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 200.504558][ T8121] RSP: 002b:00007f09118a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 200.504571][ T8121] RAX: ffffffffffffffda RBX: 00007f0910be5fa0 RCX: 00007f091098eec9 [ 200.504579][ T8121] RDX: 0000000000000087 RSI: 000000000000010f RDI: 0000000000000003 [ 200.504587][ T8121] RBP: 00007f0910a11f91 R08: 0000000000000014 R09: 0000000000000000 [ 200.504595][ T8121] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 200.504602][ T8121] R13: 00007f0910be6038 R14: 00007f0910be5fa0 R15: 00007fffe38722c8 [ 200.504621][ T8121] [ 200.728588][ C0] vkms_vblank_simulate: vblank timer overrun [ 200.975738][ T8128] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input54 [ 201.369861][ T8148] usb usb36: usbfs: process 8148 (syz.3.449) did not claim interface 0 before use [ 201.807519][ T8141] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input55 [ 202.062951][ T8164] qrtr: Invalid version 0 [ 202.704018][ T8177] openvswitch: netlink: IP tunnel TTL not specified. [ 202.785025][ T8174] netlink: zone id is out of range [ 202.822122][ T8174] netlink: zone id is out of range [ 202.866138][ T8174] netlink: zone id is out of range [ 202.912334][ T8174] netlink: zone id is out of range [ 202.929818][ T8174] netlink: zone id is out of range [ 202.977452][ T8174] netlink: zone id is out of range [ 203.014660][ T8174] netlink: zone id is out of range [ 203.038778][ T8174] netlink: zone id is out of range [ 203.076329][ T8174] netlink: zone id is out of range [ 204.666464][ T8205] binder: BINDER_SET_CONTEXT_MGR already set [ 204.684014][ T8224] netlink: 350 bytes leftover after parsing attributes in process `syz.4.471'. [ 204.735926][ T8205] binder: 8204:8205 ioctl 4018620d 9 returned -16 [ 204.921013][ T8225] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input56 [ 205.287852][ T8231] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input57 [ 205.954204][ T8231] usb usb36: usbfs: process 8231 (syz.2.470) did not claim interface 0 before use [ 208.045312][ T8290] usb usb36: usbfs: process 8290 (syz.4.482) did not claim interface 0 before use [ 210.046347][ T8319] bond0: option all_slaves_active: invalid value () [ 211.611564][ T8334] i2c i2c-0: delete_device: Can't parse I2C address [ 212.369240][ T8343] usb usb36: usbfs: process 8343 (syz.4.494) did not claim interface 0 before use [ 212.894442][ T8368] FAULT_INJECTION: forcing a failure. [ 212.894442][ T8368] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 212.982211][ T8368] CPU: 0 UID: 0 PID: 8368 Comm: syz.3.501 Not tainted syzkaller #0 PREEMPT(full) [ 212.982231][ T8368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 212.982239][ T8368] Call Trace: [ 212.982244][ T8368] [ 212.982249][ T8368] dump_stack_lvl+0x16c/0x1f0 [ 212.982274][ T8368] should_fail_ex+0x512/0x640 [ 212.982298][ T8368] _copy_from_user+0x2e/0xd0 [ 212.982312][ T8368] core_sys_select+0x35b/0xc20 [ 212.982335][ T8368] ? __pfx_core_sys_select+0x10/0x10 [ 212.982355][ T8368] ? proc_fail_nth_write+0x9f/0x220 [ 212.982390][ T8368] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 212.982415][ T8368] kern_select+0x15d/0x1e0 [ 212.982432][ T8368] ? __pfx_kern_select+0x10/0x10 [ 212.982451][ T8368] ? __pfx_ksys_write+0x10/0x10 [ 212.982473][ T8368] __x64_sys_select+0xbd/0x160 [ 212.982489][ T8368] ? do_syscall_64+0x91/0xfa0 [ 212.982508][ T8368] ? lockdep_hardirqs_on+0x7c/0x110 [ 212.982527][ T8368] do_syscall_64+0xcd/0xfa0 [ 212.982547][ T8368] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 212.982561][ T8368] RIP: 0033:0x7f0c7878eec9 [ 212.982572][ T8368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 212.982584][ T8368] RSP: 002b:00007f0c7958a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 212.982597][ T8368] RAX: ffffffffffffffda RBX: 00007f0c789e5fa0 RCX: 00007f0c7878eec9 [ 212.982606][ T8368] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 212.982614][ T8368] RBP: 00007f0c7958a090 R08: 0000000000000000 R09: 0000000000000000 [ 212.982621][ T8368] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000001 [ 212.982629][ T8368] R13: 00007f0c789e6038 R14: 00007f0c789e5fa0 R15: 00007ffd0383c468 [ 212.982647][ T8368] [ 213.166450][ C0] vkms_vblank_simulate: vblank timer overrun [ 213.437124][ T8375] random: crng reseeded on system resumption [ 213.952889][ T5149] Bluetooth: hci1: unexpected event 0x01 length: 5 > 1 [ 214.168414][ T8385] zswap: compressor 000 not available [ 214.778780][ T983] Process accounting resumed [ 216.354166][ T8443] FAULT_INJECTION: forcing a failure. [ 216.354166][ T8443] name failslab, interval 1, probability 0, space 0, times 0 [ 216.432752][ T8443] CPU: 0 UID: 0 PID: 8443 Comm: syz.4.519 Not tainted syzkaller #0 PREEMPT(full) [ 216.432772][ T8443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 216.432780][ T8443] Call Trace: [ 216.432784][ T8443] [ 216.432789][ T8443] dump_stack_lvl+0x16c/0x1f0 [ 216.432814][ T8443] should_fail_ex+0x512/0x640 [ 216.432835][ T8443] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 216.432855][ T8443] should_failslab+0xc2/0x120 [ 216.432868][ T8443] kmem_cache_alloc_noprof+0x75/0x6e0 [ 216.432885][ T8443] ? taskstats_exit+0x654/0xbe0 [ 216.432905][ T8443] ? taskstats_exit+0x654/0xbe0 [ 216.432920][ T8443] ? acct_update_integrals+0x2ce/0x4a0 [ 216.432936][ T8443] taskstats_exit+0x654/0xbe0 [ 216.432953][ T8443] ? __pfx_taskstats_exit+0x10/0x10 [ 216.432972][ T8443] ? exit_signals+0x38e/0xb40 [ 216.432993][ T8443] do_exit+0x5dc/0x2bf0 [ 216.433011][ T8443] ? __pfx_do_exit+0x10/0x10 [ 216.433024][ T8443] ? do_raw_spin_lock+0x12c/0x2b0 [ 216.433040][ T8443] ? find_held_lock+0x2b/0x80 [ 216.433061][ T8443] do_group_exit+0xd3/0x2a0 [ 216.433077][ T8443] get_signal+0x2671/0x26d0 [ 216.433100][ T8443] ? poll_select_finish+0x376/0x6b0 [ 216.433118][ T8443] ? __pfx_get_signal+0x10/0x10 [ 216.433143][ T8443] arch_do_signal_or_restart+0x8f/0x790 [ 216.433165][ T8443] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 216.433191][ T8443] ? __pfx_ksys_write+0x10/0x10 [ 216.433213][ T8443] exit_to_user_mode_loop+0x85/0x130 [ 216.433230][ T8443] do_syscall_64+0x426/0xfa0 [ 216.433251][ T8443] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 216.433265][ T8443] RIP: 0033:0x7f091098eec9 [ 216.433276][ T8443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 216.433288][ T8443] RSP: 002b:00007f09118a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 216.433302][ T8443] RAX: fffffffffffffdfe RBX: 00007f0910be5fa0 RCX: 00007f091098eec9 [ 216.433311][ T8443] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 216.433318][ T8443] RBP: 00007f09118a4090 R08: 0000000000000000 R09: 0000000000000000 [ 216.433326][ T8443] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000001 [ 216.433334][ T8443] R13: 00007f0910be6038 R14: 00007f0910be5fa0 R15: 00007fffe38722c8 [ 216.433352][ T8443] [ 216.666119][ C0] vkms_vblank_simulate: vblank timer overrun [ 217.480495][ T8452] Unable to find swap-space signature [ 217.895273][ T8477] uvcvideo: [Deprecated]: nodrop parameter will be eventually removed. [ 219.024233][ T8486] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input58 [ 219.502611][ T8510] usb usb36: usbfs: process 8510 (syz.2.529) did not claim interface 0 before use [ 219.602236][ T8493] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input59 [ 219.652644][ T8512] vivid-007: ================= START STATUS ================= [ 219.664342][ T8508] usb usb36: usbfs: process 8508 (syz.4.530) did not claim interface 0 before use [ 219.694483][ T8512] vivid-007: Generate PTS: true [ 219.722168][ T8512] vivid-007: Generate SCR: true [ 219.727045][ T8512] tpg source WxH: 320x240 (Y'CbCr) [ 219.779023][ T8512] tpg field: 1 [ 219.808348][ T8512] tpg crop: (0,0)/320x240 [ 219.885103][ T8512] tpg compose: (0,0)/320x240 [ 220.002642][ T8512] tpg colorspace: 8 [ 220.006461][ T8512] tpg transfer function: 0/0 [ 220.061338][ T8512] tpg Y'CbCr encoding: 0/0 [ 220.129247][ T8512] tpg quantization: 0/0 [ 220.183958][ T8521] netlink: 330 bytes leftover after parsing attributes in process `syz.1.538'. [ 220.208305][ T8512] tpg RGB range: 0/2 [ 220.257832][ T8512] vivid-007: ================== END STATUS ================== [ 220.438329][ T8529] netlink: 64 bytes leftover after parsing attributes in process `syz.4.541'. [ 220.683973][ T8545] hub 1-0:1.0: USB hub found [ 220.716928][ T8545] hub 1-0:1.0: 1 port detected [ 221.213262][ T30] audit: type=1400 audit(1760262099.392:17): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=8542 comm="syz.4.543" [ 221.771397][ T8562] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input60 [ 222.217489][ T8567] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input61 [ 222.528698][ T8562] usb usb36: usbfs: process 8562 (syz.1.546) did not claim interface 0 before use [ 222.794550][ T8570] bond0: option packets_per_slave: invalid value () [ 222.794626][ T8570] bond0: option packets_per_slave: allowed values 0 - 65535 [ 223.140448][ T8586] netlink: 'syz.1.553': attribute type 33 has an invalid length. [ 223.573755][ T8602] netlink: 28 bytes leftover after parsing attributes in process `syz.2.558'. [ 223.616225][ T8602] macvlan0: entered allmulticast mode [ 223.621616][ T8602] veth1_vlan: entered allmulticast mode [ 224.323655][ T8612] db_root: not a directory: /dev/audio1 [ 224.329648][ T30] audit: type=1800 audit(1760269902.522:18): pid=8612 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.561" name="dbroot" dev="configfs" ino=25056 res=0 errno=0 [ 224.349599][ C0] vkms_vblank_simulate: vblank timer overrun [ 224.661777][ T8614] syz.3.562 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 225.480260][ T8646] syz.4.569: vmalloc error: size 16384, failed to allocate pages, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 225.610074][ T8646] CPU: 0 UID: 0 PID: 8646 Comm: syz.4.569 Not tainted syzkaller #0 PREEMPT(full) [ 225.610093][ T8646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 225.610101][ T8646] Call Trace: [ 225.610105][ T8646] [ 225.610111][ T8646] dump_stack_lvl+0x16c/0x1f0 [ 225.610135][ T8646] warn_alloc+0x248/0x3a0 [ 225.610155][ T8646] ? __pfx_warn_alloc+0x10/0x10 [ 225.610173][ T8646] ? alloc_pages_mpol+0x25a/0x550 [ 225.610188][ T8646] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 225.610199][ T8646] ? __pfx_alloc_pages_bulk_mempolicy_noprof+0x10/0x10 [ 225.610217][ T8646] ? __kmalloc_node_noprof+0x364/0x8a0 [ 225.610237][ T8646] ? __get_vm_area_node+0x208/0x330 [ 225.610254][ T8646] __vmalloc_node_range_noprof+0x119b/0x1480 [ 225.610274][ T8646] ? kernel_clone+0xfc/0x930 [ 225.610300][ T8646] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 225.610318][ T8646] ? rcu_is_watching+0x12/0xc0 [ 225.610339][ T8646] ? kernel_clone+0xfc/0x930 [ 225.610358][ T8646] __vmalloc_node_noprof+0xad/0xf0 [ 225.610372][ T8646] ? kernel_clone+0xfc/0x930 [ 225.610394][ T8646] copy_process+0x2c77/0x76a0 [ 225.610414][ T8646] ? __pfx___futex_wait+0x10/0x10 [ 225.610437][ T8646] ? __pfx_copy_process+0x10/0x10 [ 225.610457][ T8646] ? futex_private_hash_put+0x176/0x300 [ 225.610481][ T8646] ? futex_private_hash_put+0x18a/0x300 [ 225.610505][ T8646] kernel_clone+0xfc/0x930 [ 225.610527][ T8646] ? __pfx_kernel_clone+0x10/0x10 [ 225.610557][ T8646] __do_sys_clone+0xce/0x120 [ 225.610569][ T8646] ? __pfx___do_sys_clone+0x10/0x10 [ 225.610589][ T8646] ? xfd_validate_state+0x61/0x180 [ 225.610603][ T8646] ? __pfx_ksys_read+0x10/0x10 [ 225.610627][ T8646] do_syscall_64+0xcd/0xfa0 [ 225.610647][ T8646] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 225.610661][ T8646] RIP: 0033:0x7f091098eec9 [ 225.610672][ T8646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 225.610685][ T8646] RSP: 002b:00007f09118a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 225.610698][ T8646] RAX: ffffffffffffffda RBX: 00007f0910be5fa0 RCX: 00007f091098eec9 [ 225.610707][ T8646] RDX: 0000000000000000 RSI: 0000000100000000 RDI: 0000000000000007 [ 225.610714][ T8646] RBP: 00007f0910a11f91 R08: 0000000000000006 R09: 0000000000000000 [ 225.610722][ T8646] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000 [ 225.610730][ T8646] R13: 00007f0910be6038 R14: 00007f0910be5fa0 R15: 00007fffe38722c8 [ 225.610748][ T8646] [ 225.610753][ T8646] Mem-Info: [ 227.660064][ T8695] net_ratelimit: 367 callbacks suppressed [ 227.660078][ T8695] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 227.757915][ T8696] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 227.842156][ T8646] active_anon:29722 inactive_anon:19 isolated_anon:0 [ 227.842156][ T8646] active_file:4289 inactive_file:50997 isolated_file:0 [ 227.842156][ T8646] unevictable:768 dirty:988 writeback:0 [ 227.842156][ T8646] slab_reclaimable:11076 slab_unreclaimable:94418 [ 227.842156][ T8646] mapped:34005 shmem:18878 pagetables:1376 [ 227.842156][ T8646] sec_pagetables:0 bounce:0 [ 227.842156][ T8646] kernel_misc_reclaimable:0 [ 227.842156][ T8646] free:1307876 free_pcp:6924 free_cma:0 [ 227.887500][ C0] vkms_vblank_simulate: vblank timer overrun [ 228.198305][ T8709] FAULT_INJECTION: forcing a failure. [ 228.198305][ T8709] name failslab, interval 1, probability 0, space 0, times 0 [ 228.219419][ T8706] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input62 [ 228.313108][ T8709] CPU: 0 UID: 0 PID: 8709 Comm: syz.2.580 Not tainted syzkaller #0 PREEMPT(full) [ 228.313128][ T8709] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 228.313138][ T8709] Call Trace: [ 228.313142][ T8709] [ 228.313148][ T8709] dump_stack_lvl+0x16c/0x1f0 [ 228.313174][ T8709] should_fail_ex+0x512/0x640 [ 228.313195][ T8709] ? fs_reclaim_acquire+0xae/0x150 [ 228.313210][ T8709] should_failslab+0xc2/0x120 [ 228.313224][ T8709] __kmalloc_noprof+0xdd/0x880 [ 228.313239][ T8709] ? lockdep_init_map_type+0x5c/0x280 [ 228.313256][ T8709] ? tomoyo_open_control+0x51f/0xa30 [ 228.313280][ T8709] ? tomoyo_open_control+0x51f/0xa30 [ 228.313299][ T8709] tomoyo_open_control+0x51f/0xa30 [ 228.313323][ T8709] do_dentry_open+0x982/0x1530 [ 228.313343][ T8709] ? __pfx_tomoyo_open+0x10/0x10 [ 228.313365][ T8709] vfs_open+0x82/0x3f0 [ 228.313381][ T8709] path_openat+0x1de4/0x2cb0 [ 228.313406][ T8709] ? __pfx_path_openat+0x10/0x10 [ 228.313426][ T8709] ? __lock_acquire+0xb8a/0x1c90 [ 228.313446][ T8709] do_filp_open+0x20b/0x470 [ 228.313466][ T8709] ? __pfx_do_filp_open+0x10/0x10 [ 228.313499][ T8709] ? alloc_fd+0x471/0x7d0 [ 228.313523][ T8709] do_sys_openat2+0x11b/0x1d0 [ 228.313538][ T8709] ? __pfx_do_sys_openat2+0x10/0x10 [ 228.313560][ T8709] __x64_sys_openat+0x174/0x210 [ 228.313575][ T8709] ? __pfx___x64_sys_openat+0x10/0x10 [ 228.313597][ T8709] do_syscall_64+0xcd/0xfa0 [ 228.313618][ T8709] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 228.313632][ T8709] RIP: 0033:0x7f133b78eec9 [ 228.313644][ T8709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 228.313657][ T8709] RSP: 002b:00007f133c672038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 228.313670][ T8709] RAX: ffffffffffffffda RBX: 00007f133b9e5fa0 RCX: 00007f133b78eec9 [ 228.313679][ T8709] RDX: 00000000000c0802 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 228.313688][ T8709] RBP: 00007f133b811f91 R08: 0000000000000000 R09: 0000000000000000 [ 228.313696][ T8709] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 228.313703][ T8709] R13: 00007f133b9e6038 R14: 00007f133b9e5fa0 R15: 00007ffe3df558c8 [ 228.313722][ T8709] [ 228.539055][ C0] vkms_vblank_simulate: vblank timer overrun [ 228.615237][ T8646] Node 0 active_anon:124348kB inactive_anon:76kB active_file:19808kB inactive_file:201740kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:147564kB dirty:1664kB writeback:572kB shmem:79852kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12368kB pagetables:5676kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 228.647492][ C0] vkms_vblank_simulate: vblank timer overrun [ 228.654327][ T8646] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 228.684121][ C0] vkms_vblank_simulate: vblank timer overrun [ 228.690524][ T8646] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 228.720323][ C0] vkms_vblank_simulate: vblank timer overrun [ 228.726643][ T8646] lowmem_reserve[]: 0 2483 2485 2485 2485 [ 228.732557][ T8646] Node 0 DMA32 free:1299732kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB free_highatomic:0KB active_anon:124348kB inactive_anon:76kB active_file:19808kB inactive_file:201740kB unevictable:1536kB writepending:2184kB zspages:0kB present:3129332kB managed:2543612kB mlocked:0kB bounce:0kB free_pcp:22404kB local_pcp:22404kB free_cma:0kB [ 228.766088][ C0] vkms_vblank_simulate: vblank timer overrun [ 228.773121][ T8646] lowmem_reserve[]: 0 0 1 1 1 [ 228.789683][ T8646] Node 0 Normal free:0kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 228.819253][ C0] vkms_vblank_simulate: vblank timer overrun [ 228.924461][ T8646] lowmem_reserve[]: 0 0 0 0 0 [ 228.945717][ T8646] Node 1 Normal free:3908612kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:6384kB local_pcp:6384kB free_cma:0kB [ 228.977775][ C0] vkms_vblank_simulate: vblank timer overrun [ 229.037588][ T8715] usb usb36: usbfs: process 8715 (syz.1.579) did not claim interface 0 before use [ 229.081737][ T8646] lowmem_reserve[]: 0 0 0 0 0 [ 229.091459][ T8646] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 229.122087][ T8646] Node 0 DMA32: 593*4kB (UME) 159*8kB (UME) 247*16kB (UME) 66*32kB (UME) 44*64kB (UE) 21*128kB (UME) 27*256kB (UM) 41*512kB (UM) 23*1024kB (UME) 7*2048kB (UM) 296*4096kB (UM) = 1293420kB [ 229.172193][ T8646] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 229.227125][ T8646] Node 1 Normal: 177*4kB (UE) 54*8kB (UME) 39*16kB (UME) 221*32kB (UME) 68*64kB (UME) 21*128kB (UME) 6*256kB (UM) 2*512kB (M) 3*1024kB (UME) 2*2048kB (UE) 948*4096kB (M) = 3908612kB [ 229.300801][ T8646] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 229.332067][ T8646] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 229.355976][ T8646] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 229.397352][ T8646] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 229.434403][ T8646] 79964 total pagecache pages [ 229.442057][ T8646] 29 pages in swap cache [ 229.450051][ T8646] Free swap = 124880kB [ 229.460272][ T8646] Total swap = 124996kB [ 229.470363][ T8646] 2097051 pages RAM [ 229.475643][ T8646] 0 pages HighMem/MovableOnly [ 229.490009][ T8646] 429058 pages reserved [ 229.499694][ T8646] 0 pages cma reserved [ 229.511099][ T8723] FAULT_INJECTION: forcing a failure. [ 229.511099][ T8723] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 229.572113][ T8723] CPU: 0 UID: 0 PID: 8723 Comm: syz.2.582 Not tainted syzkaller #0 PREEMPT(full) [ 229.572133][ T8723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 229.572142][ T8723] Call Trace: [ 229.572147][ T8723] [ 229.572153][ T8723] dump_stack_lvl+0x16c/0x1f0 [ 229.572177][ T8723] should_fail_ex+0x512/0x640 [ 229.572202][ T8723] should_fail_alloc_page+0xe7/0x130 [ 229.572217][ T8723] prepare_alloc_pages+0x3c2/0x610 [ 229.572234][ T8723] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 229.572253][ T8723] ? __lock_acquire+0xb8a/0x1c90 [ 229.572269][ T8723] ? kasan_save_stack+0x42/0x60 [ 229.572288][ T8723] ? kasan_save_stack+0x33/0x60 [ 229.572306][ T8723] ? kasan_save_track+0x14/0x30 [ 229.572324][ T8723] ? __kasan_save_free_info+0x3b/0x60 [ 229.572340][ T8723] ? __kasan_slab_free+0x5f/0x80 [ 229.572359][ T8723] ? kfree+0x2b8/0x6d0 [ 229.572373][ T8723] ? tomoyo_path_number_perm+0x470/0x580 [ 229.572388][ T8723] ? security_file_ioctl+0x9b/0x240 [ 229.572403][ T8723] ? __x64_sys_ioctl+0xb7/0x210 [ 229.572416][ T8723] ? do_syscall_64+0xcd/0xfa0 [ 229.572434][ T8723] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 229.572451][ T8723] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 229.572478][ T8723] ? look_up_lock_class+0x59/0x150 [ 229.572499][ T8723] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 229.572518][ T8723] ? policy_nodemask+0xea/0x4e0 [ 229.572533][ T8723] alloc_pages_mpol+0x1fb/0x550 [ 229.572547][ T8723] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 229.572561][ T8723] ? do_raw_spin_lock+0x12c/0x2b0 [ 229.572577][ T8723] ? find_held_lock+0x2b/0x80 [ 229.572596][ T8723] ___kmalloc_large_node+0xed/0x160 [ 229.572613][ T8723] __kmalloc_large_noprof+0x1c/0x70 [ 229.572626][ T8723] ? get_task_mm+0xc7/0xf0 [ 229.572644][ T8723] vhost_dev_set_owner+0x3af/0xa50 [ 229.572666][ T8723] ? __mutex_lock+0x1c5/0x1060 [ 229.572693][ T8723] vhost_dev_ioctl+0x2eb/0xe20 [ 229.572706][ T8723] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 229.572726][ T8723] ? __pfx_vhost_dev_ioctl+0x10/0x10 [ 229.572747][ T8723] vhost_vsock_dev_ioctl+0x3a5/0xb30 [ 229.572769][ T8723] ? hook_file_ioctl_common+0x145/0x410 [ 229.572787][ T8723] ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10 [ 229.572810][ T8723] ? __fget_files+0x20e/0x3c0 [ 229.572830][ T8723] ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10 [ 229.572851][ T8723] __x64_sys_ioctl+0x18e/0x210 [ 229.572868][ T8723] do_syscall_64+0xcd/0xfa0 [ 229.572889][ T8723] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 229.572902][ T8723] RIP: 0033:0x7f133b78eec9 [ 229.572914][ T8723] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 229.572926][ T8723] RSP: 002b:00007f133c651038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 229.572940][ T8723] RAX: ffffffffffffffda RBX: 00007f133b9e6090 RCX: 00007f133b78eec9 [ 229.572949][ T8723] RDX: 0000000000000000 RSI: 000000000000af01 RDI: 0000000000000009 [ 229.572957][ T8723] RBP: 00007f133b811f91 R08: 0000000000000000 R09: 0000000000000000 [ 229.572965][ T8723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 229.572973][ T8723] R13: 00007f133b9e6128 R14: 00007f133b9e6090 R15: 00007ffe3df558c8 [ 229.572993][ T8723] [ 229.892065][ C0] vkms_vblank_simulate: vblank timer overrun [ 230.921221][ T8712] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input63 [ 232.033604][ T8763] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(1.0.1), cmd(6) [ 233.914482][ T8809] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input64 [ 234.515727][ T8815] usb usb36: usbfs: process 8815 (syz.4.593) did not claim interface 0 before use [ 234.688866][ T8814] bond0: option all_slaves_active: invalid value () [ 234.735568][ T8813] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input65 [ 234.857642][ T8826] kAFS: Invalid Command on /proc/fs/afs/cells file [ 235.786681][ T8848] netlink: 4 bytes leftover after parsing attributes in process `syz.4.604'. [ 236.672127][ T8860] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 236.678155][ T8860] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 236.898049][ T8860] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 236.941926][ T8860] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 237.606673][ T8868] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input66 [ 238.182448][ T8884] phram: not enough arguments [ 238.391769][ T8877] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input67 [ 238.500066][ T8868] usb usb36: usbfs: process 8868 (syz.1.608) did not claim interface 0 before use [ 238.708679][ T8894] netlink: 488 bytes leftover after parsing attributes in process `syz.2.613'. [ 238.718400][ T5835] Bluetooth: hci1: command 0x0c1a tx timeout [ 238.724675][ T5149] Bluetooth: hci0: command 0x0c1a tx timeout [ 238.952543][ T5835] Bluetooth: hci2: command 0x040f tx timeout [ 238.958587][ T5149] Bluetooth: hci3: command 0x0c1a tx timeout [ 240.254342][ T8925] FAULT_INJECTION: forcing a failure. [ 240.254342][ T8925] name failslab, interval 1, probability 0, space 0, times 0 [ 240.325076][ T8925] CPU: 0 UID: 0 PID: 8925 Comm: syz.4.621 Not tainted syzkaller #0 PREEMPT(full) [ 240.325097][ T8925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 240.325105][ T8925] Call Trace: [ 240.325110][ T8925] [ 240.325116][ T8925] dump_stack_lvl+0x16c/0x1f0 [ 240.325141][ T8925] should_fail_ex+0x512/0x640 [ 240.325162][ T8925] ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0 [ 240.325188][ T8925] should_failslab+0xc2/0x120 [ 240.325202][ T8925] __kmalloc_node_track_caller_noprof+0xde/0x8a0 [ 240.325222][ T8925] ? kasan_save_stack+0x42/0x60 [ 240.325242][ T8925] ? kasan_save_stack+0x33/0x60 [ 240.325260][ T8925] ? kstrdup_const+0x63/0x80 [ 240.325277][ T8925] ? __kasan_kmalloc+0xaa/0xb0 [ 240.325299][ T8925] ? kstrdup+0x53/0x100 [ 240.325319][ T8925] kstrdup+0x53/0x100 [ 240.325339][ T8925] kstrdup_const+0x63/0x80 [ 240.325357][ T8925] __kernfs_new_node+0x9b/0x8e0 [ 240.325382][ T8925] ? __pfx___kernfs_new_node+0x10/0x10 [ 240.325408][ T8925] ? find_held_lock+0x2b/0x80 [ 240.325428][ T8925] ? kernfs_root+0xee/0x2a0 [ 240.325444][ T8925] kernfs_new_node+0x13c/0x1e0 [ 240.325458][ T8925] ? kasan_save_track+0x14/0x30 [ 240.325480][ T8925] kernfs_create_dir_ns+0x4c/0x1a0 [ 240.325498][ T8925] cgroup_mkdir+0x40f/0x12e0 [ 240.325519][ T8925] ? __pfx_cgroup_mkdir+0x10/0x10 [ 240.325537][ T8925] kernfs_iop_mkdir+0x111/0x190 [ 240.325550][ T8925] ? bpf_lsm_inode_mkdir+0x9/0x10 [ 240.325570][ T8925] vfs_mkdir+0x593/0x8c0 [ 240.325588][ T8925] do_mkdirat+0x304/0x3e0 [ 240.325609][ T8925] ? __pfx_do_mkdirat+0x10/0x10 [ 240.325629][ T8925] ? getname_flags.part.0+0x1c5/0x550 [ 240.325646][ T8925] __x64_sys_mkdir+0xef/0x140 [ 240.325666][ T8925] do_syscall_64+0xcd/0xfa0 [ 240.325687][ T8925] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 240.325701][ T8925] RIP: 0033:0x7f091098eec9 [ 240.325713][ T8925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 240.325726][ T8925] RSP: 002b:00007f09118a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 240.325739][ T8925] RAX: ffffffffffffffda RBX: 00007f0910be5fa0 RCX: 00007f091098eec9 [ 240.325748][ T8925] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000200000000080 [ 240.325756][ T8925] RBP: 00007f0910a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 240.325764][ T8925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 240.325772][ T8925] R13: 00007f0910be6038 R14: 00007f0910be5fa0 R15: 00007fffe38722c8 [ 240.325791][ T8925] [ 241.405475][ T8932] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input69 [ 241.445024][ T8936] netlink: 62 bytes leftover after parsing attributes in process `syz.4.625'. [ 241.934914][ T8940] usb usb36: usbfs: process 8940 (syz.3.624) did not claim interface 0 before use [ 242.020929][ T8939] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input70 [ 242.783290][ T8963] netlink: 'syz.1.629': attribute type 20 has an invalid length. [ 242.822159][ T8963] netlink: 330 bytes leftover after parsing attributes in process `syz.1.629'. [ 242.874093][ T8963] IPv6: NLM_F_CREATE should be specified when creating new route [ 244.158225][ T8977] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input71 [ 244.761377][ T8980] usb usb36: usbfs: process 8980 (syz.4.635) did not claim interface 0 before use [ 244.863113][ T8979] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input72 [ 245.523802][ T9024] futex_wake_op: syz.3.641 tries to shift op by -2048; fix this program [ 245.564365][ T9024] futex_wake_op: syz.3.641 tries to shift op by -2048; fix this program [ 245.875904][ T9032] input: f as /devices/virtual/input/input73 [ 247.719083][ T9070] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input74 [ 248.337293][ T9074] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input75 [ 248.396117][ T9070] usb usb36: usbfs: process 9070 (syz.2.649) did not claim interface 0 before use [ 248.844947][ T9103] netlink: 'syz.4.659': attribute type 1 has an invalid length. [ 248.896320][ T9108] netlink: 93 bytes leftover after parsing attributes in process `syz.4.659'. [ 249.072905][ T9103] kfence: disabled [ 249.674822][ T9126] netlink: 20 bytes leftover after parsing attributes in process `syz.1.661'. [ 250.456935][ T9137] FAULT_INJECTION: forcing a failure. [ 250.456935][ T9137] name failslab, interval 1, probability 0, space 0, times 0 [ 250.501630][ T9138] ecryptfs_parse_packet_length: Five-byte packet length not supported [ 250.540955][ T9137] CPU: 0 UID: 0 PID: 9137 Comm: syz.4.666 Not tainted syzkaller #0 PREEMPT(full) [ 250.540976][ T9137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 250.540986][ T9137] Call Trace: [ 250.540991][ T9137] [ 250.540997][ T9137] dump_stack_lvl+0x16c/0x1f0 [ 250.541021][ T9137] should_fail_ex+0x512/0x640 [ 250.541044][ T9137] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 250.541067][ T9137] should_failslab+0xc2/0x120 [ 250.541082][ T9137] __kvmalloc_node_noprof+0x141/0x9c0 [ 250.541103][ T9137] ? regset_get_alloc+0xf1/0x1f0 [ 250.541117][ T9137] ? __pfx_thread_group_cputime+0x10/0x10 [ 250.541135][ T9137] ? regset_get_alloc+0xf1/0x1f0 [ 250.541147][ T9137] ? regset_get+0x102/0x1c0 [ 250.541158][ T9137] regset_get_alloc+0xf1/0x1f0 [ 250.541181][ T9137] elf_core_dump+0x11cc/0x3c00 [ 250.541211][ T9137] ? __pfx_elf_core_dump+0x10/0x10 [ 250.541230][ T9137] ? kasan_save_stack+0x33/0x60 [ 250.541250][ T9137] ? __kasan_kmalloc+0xaa/0xb0 [ 250.541269][ T9137] ? __kvmalloc_node_noprof+0x3a3/0x9c0 [ 250.541287][ T9137] ? vfs_coredump+0x1ddc/0x5670 [ 250.541304][ T9137] ? arch_do_signal_or_restart+0x8f/0x790 [ 250.541324][ T9137] ? exit_to_user_mode_loop+0x85/0x130 [ 250.541339][ T9137] ? do_syscall_64+0x426/0xfa0 [ 250.541395][ T9137] ? vfs_coredump+0x2b9f/0x5670 [ 250.541410][ T9137] vfs_coredump+0x2b9f/0x5670 [ 250.541434][ T9137] ? __pfx_vfs_coredump+0x10/0x10 [ 250.541453][ T9137] ? __lock_acquire+0x622/0x1c90 [ 250.541474][ T9137] ? lock_acquire+0x179/0x350 [ 250.541497][ T9137] ? is_bpf_text_address+0x8a/0x1a0 [ 250.541511][ T9137] ? bpf_ksym_find+0x124/0x1c0 [ 250.541535][ T9137] ? unwind_get_return_address+0x59/0xa0 [ 250.541554][ T9137] ? arch_stack_walk+0xa6/0x100 [ 250.541580][ T9137] ? stack_trace_save+0x8e/0xc0 [ 250.541600][ T9137] ? __pfx_stack_trace_save+0x10/0x10 [ 250.541620][ T9137] ? stack_depot_save_flags+0x29/0x9c0 [ 250.541642][ T9137] ? __lock_acquire+0xb8a/0x1c90 [ 250.541687][ T9137] ? proc_coredump_connector+0x2d1/0x4f0 [ 250.541703][ T9137] ? __pfx_proc_coredump_connector+0x10/0x10 [ 250.541722][ T9137] ? rcu_is_watching+0x12/0xc0 [ 250.541743][ T9137] get_signal+0x22e1/0x26d0 [ 250.541771][ T9137] ? __pfx_get_signal+0x10/0x10 [ 250.541791][ T9137] ? fpu__clear_user_states+0xf4/0x1d0 [ 250.541811][ T9137] ? rcu_is_watching+0x12/0xc0 [ 250.541829][ T9137] ? __local_bh_enable_ip+0xa4/0x120 [ 250.541851][ T9137] arch_do_signal_or_restart+0x8f/0x790 [ 250.541871][ T9137] ? __rseq_handle_notify_resume+0x66e/0x10c0 [ 250.541891][ T9137] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 250.541917][ T9137] ? xfd_validate_state+0x61/0x180 [ 250.541930][ T9137] ? __pfx___do_sys_prctl+0x10/0x10 [ 250.541950][ T9137] exit_to_user_mode_loop+0x85/0x130 [ 250.541967][ T9137] do_syscall_64+0x426/0xfa0 [ 250.541992][ T9137] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 250.542007][ T9137] RIP: 0033:0x7f091084f980 [ 250.542019][ T9137] Code: 48 c1 e8 12 83 e0 01 88 15 72 5d ec 00 88 05 6f 5d ec 00 c3 50 48 8d 35 19 26 1c 00 48 8d 3d 1f 26 1c 00 31 c0 e8 20 f7 ff ff <53> 89 fb 48 83 ec 10 64 8b 04 25 94 ff ff ff 85 c0 74 2a 89 fe 31 [ 250.542034][ T9137] RSP: 002b:00007f09118a3b38 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 250.542048][ T9137] RAX: 0000000000000000 RBX: 00007f0910be5fa8 RCX: 00007f091098eec9 [ 250.542057][ T9137] RDX: 00007f09118a3b40 RSI: 00007f09118a3c70 RDI: 000000000000000b [ 250.542066][ T9137] RBP: 00007f0910be5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 250.542075][ T9137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 250.542083][ T9137] R13: 00007f0910be6038 R14: 00007fffe38721e0 R15: 00007fffe38722c8 [ 250.542104][ T9137] [ 250.922535][ T9138] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 251.219841][ T9146] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input76 [ 251.510439][ T9157] usb usb36: usbfs: process 9157 (syz.2.670) did not claim interface 0 before use [ 251.613839][ T9152] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input77 [ 252.884190][ T9183] input: f as /devices/virtual/input/input78 [ 254.445747][ T9211] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input79 [ 254.611003][ T9216] netlink: 330 bytes leftover after parsing attributes in process `syz.3.686'. [ 254.822221][ T9214] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input80 [ 254.875581][ T9216] : renamed from bond_slave_1 (while UP) [ 255.133487][ T9215] usb usb36: usbfs: process 9215 (syz.4.685) did not claim interface 0 before use [ 255.429278][ T9221] zswap: compressor not available [ 255.683168][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.692898][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.779470][ T9242] netlink: 'syz.3.694': attribute type 4 has an invalid length. [ 255.819413][ T9242] netlink: 'syz.3.694': attribute type 5 has an invalid length. [ 255.850242][ T9242] netlink: 10 bytes leftover after parsing attributes in process `syz.3.694'. [ 256.243418][ T9262] netlink: 'syz.4.696': attribute type 11 has an invalid length. [ 256.275027][ T9262] netlink: 'syz.4.696': attribute type 11 has an invalid length. [ 256.337296][ T9262] netlink: 160 bytes leftover after parsing attributes in process `syz.4.696'. [ 256.404817][ T9264] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input81 [ 256.825632][ T9267] random: crng reseeded on system resumption [ 257.788885][ T9282] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input82 [ 258.094653][ T9264] usb usb36: usbfs: process 9264 (syz.3.699) did not claim interface 0 before use [ 258.321227][ T9292] netlink: 220 bytes leftover after parsing attributes in process `syz.4.706'. [ 258.532941][ T9306] FAULT_INJECTION: forcing a failure. [ 258.532941][ T9306] name failslab, interval 1, probability 0, space 0, times 0 [ 258.556534][ T9305] FAULT_INJECTION: forcing a failure. [ 258.556534][ T9305] name failslab, interval 1, probability 0, space 0, times 0 [ 258.585059][ T9305] CPU: 0 UID: 0 PID: 9305 Comm: syz.3.711 Not tainted syzkaller #0 PREEMPT(full) [ 258.585080][ T9305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 258.585089][ T9305] Call Trace: [ 258.585095][ T9305] [ 258.585100][ T9305] dump_stack_lvl+0x16c/0x1f0 [ 258.585125][ T9305] should_fail_ex+0x512/0x640 [ 258.585147][ T9305] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 258.585170][ T9305] should_failslab+0xc2/0x120 [ 258.585185][ T9305] __kvmalloc_node_noprof+0x141/0x9c0 [ 258.585206][ T9305] ? io_alloc_cache_init+0x38/0x170 [ 258.585224][ T9305] ? io_alloc_cache_init+0x38/0x170 [ 258.585236][ T9305] io_alloc_cache_init+0x38/0x170 [ 258.585251][ T9305] io_uring_setup+0x648/0x20e0 [ 258.585272][ T9305] ? __pfx_io_uring_setup+0x10/0x10 [ 258.585291][ T9305] ? do_futex+0x122/0x350 [ 258.585305][ T9305] ? __pfx_do_futex+0x10/0x10 [ 258.585317][ T9305] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 258.585360][ T9305] ? xfd_validate_state+0x61/0x180 [ 258.585375][ T9305] ? __pfx___do_sys_close_range+0x10/0x10 [ 258.585399][ T9305] __x64_sys_io_uring_setup+0xc2/0x170 [ 258.585420][ T9305] do_syscall_64+0xcd/0xfa0 [ 258.585441][ T9305] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 258.585455][ T9305] RIP: 0033:0x7f0c7878eec9 [ 258.585467][ T9305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 258.585480][ T9305] RSP: 002b:00007f0c7958a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 258.585500][ T9305] RAX: ffffffffffffffda RBX: 00007f0c789e5fa0 RCX: 00007f0c7878eec9 [ 258.585510][ T9305] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 258.585519][ T9305] RBP: 00007f0c78811f91 R08: 0000000000000000 R09: 0000000000000000 [ 258.585527][ T9305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 258.585536][ T9305] R13: 00007f0c789e6038 R14: 00007f0c789e5fa0 R15: 00007ffd0383c468 [ 258.585556][ T9305] [ 258.837867][ T9306] CPU: 0 UID: 0 PID: 9306 Comm: syz.1.710 Not tainted syzkaller #0 PREEMPT(full) [ 258.837887][ T9306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 258.837895][ T9306] Call Trace: [ 258.837900][ T9306] [ 258.837905][ T9306] dump_stack_lvl+0x16c/0x1f0 [ 258.837929][ T9306] should_fail_ex+0x512/0x640 [ 258.837950][ T9306] ? __kmalloc_cache_noprof+0x5f/0x780 [ 258.837969][ T9306] should_failslab+0xc2/0x120 [ 258.837983][ T9306] __kmalloc_cache_noprof+0x72/0x780 [ 258.837999][ T9306] ? lockdep_hardirqs_on+0x7c/0x110 [ 258.838018][ T9306] ? sctp_endpoint_new+0xfc/0xb20 [ 258.838042][ T9306] ? sctp_endpoint_new+0xfc/0xb20 [ 258.838061][ T9306] sctp_endpoint_new+0xfc/0xb20 [ 258.838083][ T9306] ? __pfx_sctp_endpoint_new+0x10/0x10 [ 258.838104][ T9306] ? lockdep_init_map_type+0x5c/0x280 [ 258.838120][ T9306] ? lockdep_init_map_type+0x5c/0x280 [ 258.838137][ T9306] sctp_init_sock+0xe2b/0x12f0 [ 258.838157][ T9306] ? __pfx_sctp_v6_init_sock+0x10/0x10 [ 258.838177][ T9306] sctp_v6_init_sock+0x16/0x70 [ 258.838195][ T9306] ? __pfx_sctp_v6_init_sock+0x10/0x10 [ 258.838215][ T9306] inet6_create+0xb30/0x12b0 [ 258.838237][ T9306] ? inet6_create+0x7f/0x12b0 [ 258.838259][ T9306] __sock_create+0x338/0x8d0 [ 258.838279][ T9306] __sys_socket+0x14d/0x260 [ 258.838294][ T9306] ? __pfx___sys_socket+0x10/0x10 [ 258.838310][ T9306] ? xfd_validate_state+0x61/0x180 [ 258.838324][ T9306] ? __pfx_ksys_write+0x10/0x10 [ 258.838347][ T9306] __x64_sys_socket+0x72/0xb0 [ 258.838361][ T9306] ? lockdep_hardirqs_on+0x7c/0x110 [ 258.838380][ T9306] do_syscall_64+0xcd/0xfa0 [ 258.838402][ T9306] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 258.838415][ T9306] RIP: 0033:0x7f474018eec9 [ 258.838427][ T9306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 258.838440][ T9306] RSP: 002b:00007f473e3d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 258.838454][ T9306] RAX: ffffffffffffffda RBX: 00007f47403e6180 RCX: 00007f474018eec9 [ 258.838463][ T9306] RDX: 0000000000000084 RSI: 0000000000000005 RDI: 000000000000000a [ 258.838471][ T9306] RBP: 00007f4740211f91 R08: 0000000000000000 R09: 0000000000000000 [ 258.838486][ T9306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 258.838494][ T9306] R13: 00007f47403e6218 R14: 00007f47403e6180 R15: 00007ffc7560ccf8 [ 258.838513][ T9306] [ 260.566988][ T9347] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input83 [ 261.232224][ T9352] usb usb36: usbfs: process 9352 (syz.4.717) did not claim interface 0 before use [ 261.291732][ T9350] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input84 [ 262.587657][ T9394] netlink: 32 bytes leftover after parsing attributes in process `syz.3.725'. [ 263.836513][ T9422] nvme_fabrics: unknown parameter or missing value 'ŝ @BHۆZv}$QŇ1dL?Qͳ>{c|V\ȥ' in ctrl creation request [ 264.158500][ T30] audit: type=1800 audit(4294967317.389:19): pid=9427 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.737" name="dbroot" dev="configfs" ino=29647 res=0 errno=0 [ 264.196160][ T9422] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 264.254099][ T9422] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 264.299464][ T9422] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 264.368219][ T9422] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 264.490159][ T9433] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input85 [ 264.864092][ T9435] usb usb36: usbfs: process 9435 (syz.1.738) did not claim interface 0 before use [ 264.928340][ T9434] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input86 [ 265.808300][ T9453] random: crng reseeded on system resumption [ 266.232332][ T5835] Bluetooth: hci0: command 0x0c1a tx timeout [ 266.314759][ T5835] Bluetooth: hci3: command 0x0c1a tx timeout [ 266.314796][ T5835] Bluetooth: hci1: command 0x0c1a tx timeout [ 266.392342][ T5149] Bluetooth: hci2: command 0x040f tx timeout [ 266.422508][ T9470] random: crng reseeded on system resumption [ 266.665564][ T9478] FAULT_INJECTION: forcing a failure. [ 266.665564][ T9478] name failslab, interval 1, probability 0, space 0, times 0 [ 266.665611][ T9478] CPU: 0 UID: 0 PID: 9478 Comm: syz.1.747 Not tainted syzkaller #0 PREEMPT(full) [ 266.665627][ T9478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 266.665636][ T9478] Call Trace: [ 266.665641][ T9478] [ 266.665646][ T9478] dump_stack_lvl+0x16c/0x1f0 [ 266.665670][ T9478] should_fail_ex+0x512/0x640 [ 266.665692][ T9478] ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0 [ 266.665716][ T9478] should_failslab+0xc2/0x120 [ 266.665730][ T9478] __kmalloc_node_track_caller_noprof+0xde/0x8a0 [ 266.665752][ T9478] ? devinet_init_net+0xc3/0x910 [ 266.665771][ T9478] ? kmemdup_noprof+0x29/0x60 [ 266.665788][ T9478] kmemdup_noprof+0x29/0x60 [ 266.665807][ T9478] devinet_init_net+0xc3/0x910 [ 266.665823][ T9478] ? __pfx_devinet_init_net+0x10/0x10 [ 266.665838][ T9478] ops_init+0x1e2/0x5f0 [ 266.665861][ T9478] setup_net+0x100/0x390 [ 266.665881][ T9478] ? __pfx_setup_net+0x10/0x10 [ 266.665911][ T9478] ? debug_mutex_init+0x37/0x70 [ 266.665934][ T9478] copy_net_ns+0x2f8/0x690 [ 266.665950][ T9478] create_new_namespaces+0x3ea/0xa90 [ 266.665976][ T9478] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 266.665998][ T9478] ksys_unshare+0x45b/0xa40 [ 266.666012][ T9478] ? __pfx_ksys_unshare+0x10/0x10 [ 266.666026][ T9478] ? xfd_validate_state+0x61/0x180 [ 266.666047][ T9478] __x64_sys_unshare+0x31/0x40 [ 266.666060][ T9478] do_syscall_64+0xcd/0xfa0 [ 266.666081][ T9478] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 266.666095][ T9478] RIP: 0033:0x7f474018eec9 [ 266.666107][ T9478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 266.666120][ T9478] RSP: 002b:00007f473e3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 266.666134][ T9478] RAX: ffffffffffffffda RBX: 00007f47403e6090 RCX: 00007f474018eec9 [ 266.666143][ T9478] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 266.666151][ T9478] RBP: 00007f4740211f91 R08: 0000000000000000 R09: 0000000000000000 [ 266.666160][ T9478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 266.666168][ T9478] R13: 00007f47403e6128 R14: 00007f47403e6090 R15: 00007ffc7560ccf8 [ 266.666188][ T9478] [ 267.179283][ T30] audit: type=1804 audit(4294967320.419:20): pid=9482 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.749" name="/newroot/193/file0" dev="tmpfs" ino=1021 res=1 errno=0 [ 267.799269][ T9489] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input87 [ 268.160390][ T9491] usb usb36: usbfs: process 9491 (syz.2.750) did not claim interface 0 before use [ 268.185263][ T9490] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input88 [ 268.599439][ T9499] netlink: 8 bytes leftover after parsing attributes in process `syz.2.751'. [ 268.714039][ T9500] netlink: 13 bytes leftover after parsing attributes in process `syz.2.751'. [ 268.848779][ T9502] netlink: 28 bytes leftover after parsing attributes in process `syz.3.752'. [ 269.335946][ T9485] tty tty45: ldisc open failed (-12), clearing slot 44 [ 269.961402][ T9521] netlink: 28 bytes leftover after parsing attributes in process `syz.3.758'. [ 270.281316][ T9526] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input89 [ 270.483265][ T9530] synth uevent: /bus/mei: unknown uevent action string [ 270.605056][ T9531] usb usb36: usbfs: process 9531 (syz.3.760) did not claim interface 0 before use [ 270.816908][ T9529] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input90 [ 271.643339][ T9546] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input91 [ 272.290273][ T9558] usb usb36: usbfs: process 9558 (syz.4.772) did not claim interface 0 before use [ 272.446171][ T9553] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input92 [ 272.676354][ T9569] netlink: zone id is out of range [ 272.742552][ T9569] netlink: del zone limit has 4 unknown bytes [ 272.794869][ T9566] netlink: set zone limit has 8 unknown bytes [ 273.342880][ T9577] netlink: 346 bytes leftover after parsing attributes in process `syz.2.771'. [ 274.075806][ T9581] futex_wake_op: syz.1.774 tries to shift op by -2048; fix this program [ 274.109042][ T9581] futex_wake_op: syz.1.774 tries to shift op by -2048; fix this program [ 276.163339][ T9618] netlink: 28 bytes leftover after parsing attributes in process `syz.3.779'. [ 276.431236][ T30] audit: type=1804 audit(4294967329.659:21): pid=9627 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.783" name="/newroot/205/file0" dev="tmpfs" ino=1079 res=1 errno=0 [ 277.650591][ T9641] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input93 [ 277.945007][ T9645] netlink: 346 bytes leftover after parsing attributes in process `syz.1.786'. [ 278.034673][ T9642] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input94 [ 278.319705][ T9641] usb usb36: usbfs: process 9641 (syz.3.785) did not claim interface 0 before use [ 278.720314][ T9653] usb usb36: usbfs: process 9653 (syz.4.789) did not claim interface 0 before use [ 279.087834][ T9662] FAULT_INJECTION: forcing a failure. [ 279.087834][ T9662] name failslab, interval 1, probability 0, space 0, times 0 [ 279.157761][ T9662] CPU: 0 UID: 0 PID: 9662 Comm: syz.3.792 Not tainted syzkaller #0 PREEMPT(full) [ 279.157782][ T9662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 279.157791][ T9662] Call Trace: [ 279.157796][ T9662] [ 279.157802][ T9662] dump_stack_lvl+0x16c/0x1f0 [ 279.157828][ T9662] should_fail_ex+0x512/0x640 [ 279.157849][ T9662] ? __kmalloc_noprof+0xca/0x880 [ 279.157869][ T9662] should_failslab+0xc2/0x120 [ 279.157883][ T9662] __kmalloc_noprof+0xdd/0x880 [ 279.157898][ T9662] ? kasan_quarantine_put+0x10a/0x240 [ 279.157919][ T9662] ? lockdep_hardirqs_on+0x7c/0x110 [ 279.157938][ T9662] ? constrain_params_by_rules+0x175/0xca0 [ 279.157959][ T9662] ? constrain_params_by_rules+0x175/0xca0 [ 279.157975][ T9662] constrain_params_by_rules+0x175/0xca0 [ 279.157995][ T9662] ? constrain_params_by_rules+0xa09/0xca0 [ 279.158012][ T9662] ? constrain_params_by_rules+0xa0e/0xca0 [ 279.158031][ T9662] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 279.158053][ T9662] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 279.158082][ T9662] snd_pcm_hw_refine+0x7de/0xad0 [ 279.158102][ T9662] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 279.158123][ T9662] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 279.158147][ T9662] snd_pcm_hw_param_first+0x334/0x6f0 [ 279.158168][ T9662] snd_pcm_hw_params+0x5eb/0x1ba0 [ 279.158190][ T9662] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 279.158209][ T9662] ? snd_pcm_hw_param_near.constprop.0+0x72f/0x8e0 [ 279.158226][ T9662] ? snd_pcm_hw_param_near.constprop.0+0x734/0x8e0 [ 279.158245][ T9662] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 279.158271][ T9662] ? __asan_memset+0x23/0x50 [ 279.158291][ T9662] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 279.158313][ T9662] snd_pcm_oss_change_params_locked+0x1432/0x3a30 [ 279.158342][ T9662] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 279.158360][ T9662] ? __pfx___futex_wait+0x10/0x10 [ 279.158380][ T9662] ? __pfx_futex_wake_mark+0x10/0x10 [ 279.158400][ T9662] ? futex_private_hash_put+0x176/0x300 [ 279.158426][ T9662] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 279.158444][ T9662] snd_pcm_oss_write+0x4c2/0xa10 [ 279.158462][ T9662] ? bpf_lsm_file_permission+0x9/0x10 [ 279.158482][ T9662] ? security_file_permission+0x71/0x210 [ 279.158503][ T9662] ? __pfx_snd_pcm_oss_write+0x10/0x10 [ 279.158519][ T9662] vfs_write+0x2a0/0x11d0 [ 279.158542][ T9662] ? __pfx_vfs_write+0x10/0x10 [ 279.158568][ T9662] ? find_held_lock+0x2b/0x80 [ 279.158589][ T9662] ? __fget_files+0x204/0x3c0 [ 279.158611][ T9662] ? __fget_files+0x20e/0x3c0 [ 279.158633][ T9662] ksys_write+0x12a/0x250 [ 279.158652][ T9662] ? __pfx_ksys_write+0x10/0x10 [ 279.158677][ T9662] do_syscall_64+0xcd/0xfa0 [ 279.158700][ T9662] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 279.158714][ T9662] RIP: 0033:0x7f0c7878eec9 [ 279.158726][ T9662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 279.158740][ T9662] RSP: 002b:00007f0c7958a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 279.158754][ T9662] RAX: ffffffffffffffda RBX: 00007f0c789e5fa0 RCX: 00007f0c7878eec9 [ 279.158763][ T9662] RDX: 00000000000041ec RSI: 0000000000000000 RDI: 0000000000000004 [ 279.158772][ T9662] RBP: 00007f0c78811f91 R08: 0000000000000000 R09: 0000000000000000 [ 279.158781][ T9662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 279.158789][ T9662] R13: 00007f0c789e6038 R14: 00007f0c789e5fa0 R15: 00007ffd0383c468 [ 279.158809][ T9662] [ 280.059288][ T9670] netlink: 4 bytes leftover after parsing attributes in process `syz.4.795'. [ 280.095529][ T9671] netlink: 28 bytes leftover after parsing attributes in process `syz.1.796'. [ 280.105606][ T9670] netlink: 13 bytes leftover after parsing attributes in process `syz.4.795'. [ 280.393509][ T9671] team0 (unregistering): Port device team_slave_0 removed [ 280.424411][ T9671] team0 (unregistering): Port device team_slave_1 removed [ 280.830702][ T9680] futex_wake_op: syz.2.799 tries to shift op by -2048; fix this program [ 280.873972][ T9680] futex_wake_op: syz.2.799 tries to shift op by -2048; fix this program [ 281.298316][ T9697] FAULT_INJECTION: forcing a failure. [ 281.298316][ T9697] name failslab, interval 1, probability 0, space 0, times 0 [ 281.338357][ T9697] CPU: 0 UID: 0 PID: 9697 Comm: syz.1.803 Not tainted syzkaller #0 PREEMPT(full) [ 281.338378][ T9697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 281.338387][ T9697] Call Trace: [ 281.338393][ T9697] [ 281.338399][ T9697] dump_stack_lvl+0x16c/0x1f0 [ 281.338424][ T9697] should_fail_ex+0x512/0x640 [ 281.338446][ T9697] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 281.338468][ T9697] should_failslab+0xc2/0x120 [ 281.338482][ T9697] kmem_cache_alloc_node_noprof+0x78/0x770 [ 281.338500][ T9697] ? alloc_vmap_area+0x648/0x29e0 [ 281.338520][ T9697] ? __pfx___might_resched+0x10/0x10 [ 281.338543][ T9697] ? alloc_vmap_area+0x648/0x29e0 [ 281.338562][ T9697] alloc_vmap_area+0x648/0x29e0 [ 281.338591][ T9697] ? __pfx_alloc_vmap_area+0x10/0x10 [ 281.338618][ T9697] __get_vm_area_node+0x1ca/0x330 [ 281.338635][ T9697] __vmalloc_node_range_noprof+0x271/0x1480 [ 281.338651][ T9697] ? __snd_dma_alloc_pages+0x53/0x90 [ 281.338674][ T9697] ? __pfx___mutex_trylock_common+0x10/0x10 [ 281.338691][ T9697] ? __snd_dma_alloc_pages+0x53/0x90 [ 281.338710][ T9697] ? rcu_is_watching+0x12/0xc0 [ 281.338728][ T9697] ? trace_contention_end+0xdd/0x130 [ 281.338745][ T9697] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 281.338764][ T9697] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 281.338788][ T9697] ? __snd_dma_alloc_pages+0x53/0x90 [ 281.338816][ T9697] __vmalloc_node_noprof+0xad/0xf0 [ 281.338831][ T9697] ? __snd_dma_alloc_pages+0x53/0x90 [ 281.338851][ T9697] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 281.338874][ T9697] __snd_dma_alloc_pages+0x53/0x90 [ 281.338894][ T9697] snd_dma_alloc_dir_pages+0x151/0x240 [ 281.338916][ T9697] do_alloc_pages+0x136/0x2d0 [ 281.338938][ T9697] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 281.338961][ T9697] snd_pcm_hw_params+0x1656/0x1ba0 [ 281.338983][ T9697] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 281.339002][ T9697] ? snd_pcm_hw_param_near.constprop.0+0x72f/0x8e0 [ 281.339019][ T9697] ? snd_pcm_hw_param_near.constprop.0+0x734/0x8e0 [ 281.339038][ T9697] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 281.339058][ T9697] ? __asan_memset+0x23/0x50 [ 281.339078][ T9697] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 281.339099][ T9697] snd_pcm_oss_change_params_locked+0x1432/0x3a30 [ 281.339125][ T9697] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 281.339142][ T9697] ? __pfx___futex_wait+0x10/0x10 [ 281.339163][ T9697] ? __pfx_futex_wake_mark+0x10/0x10 [ 281.339183][ T9697] ? futex_private_hash_put+0x176/0x300 [ 281.339208][ T9697] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 281.339226][ T9697] snd_pcm_oss_write+0x4c2/0xa10 [ 281.339244][ T9697] ? bpf_lsm_file_permission+0x9/0x10 [ 281.339264][ T9697] ? security_file_permission+0x71/0x210 [ 281.339285][ T9697] ? __pfx_snd_pcm_oss_write+0x10/0x10 [ 281.339302][ T9697] vfs_write+0x2a0/0x11d0 [ 281.339325][ T9697] ? __pfx_vfs_write+0x10/0x10 [ 281.339342][ T9697] ? find_held_lock+0x2b/0x80 [ 281.339361][ T9697] ? __fget_files+0x204/0x3c0 [ 281.339381][ T9697] ? __fget_files+0x20e/0x3c0 [ 281.339404][ T9697] ksys_write+0x12a/0x250 [ 281.339422][ T9697] ? __pfx_ksys_write+0x10/0x10 [ 281.339447][ T9697] do_syscall_64+0xcd/0xfa0 [ 281.339468][ T9697] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 281.339483][ T9697] RIP: 0033:0x7f474018eec9 [ 281.339496][ T9697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 281.339509][ T9697] RSP: 002b:00007f4740f57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 281.339524][ T9697] RAX: ffffffffffffffda RBX: 00007f47403e5fa0 RCX: 00007f474018eec9 [ 281.339533][ T9697] RDX: 00000000000041ec RSI: 0000000000000000 RDI: 0000000000000004 [ 281.339542][ T9697] RBP: 00007f4740211f91 R08: 0000000000000000 R09: 0000000000000000 [ 281.339551][ T9697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 281.339559][ T9697] R13: 00007f47403e6038 R14: 00007f47403e5fa0 R15: 00007ffc7560ccf8 [ 281.339579][ T9697] [ 281.725386][ T9697] syz.1.803: vmalloc error: size 2097152, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 281.739558][ T9697] CPU: 0 UID: 0 PID: 9697 Comm: syz.1.803 Not tainted syzkaller #0 PREEMPT(full) [ 281.739578][ T9697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 281.739587][ T9697] Call Trace: [ 281.739593][ T9697] [ 281.739599][ T9697] dump_stack_lvl+0x16c/0x1f0 [ 281.739624][ T9697] warn_alloc+0x248/0x3a0 [ 281.739644][ T9697] ? __pfx_warn_alloc+0x10/0x10 [ 281.739663][ T9697] ? __get_vm_area_node+0x2cd/0x330 [ 281.739680][ T9697] ? __get_vm_area_node+0x2cd/0x330 [ 281.739692][ T9697] ? __get_vm_area_node+0x1dc/0x330 [ 281.739705][ T9697] ? __get_vm_area_node+0x208/0x330 [ 281.739723][ T9697] __vmalloc_node_range_noprof+0xaf5/0x1480 [ 281.739742][ T9697] ? __pfx___mutex_trylock_common+0x10/0x10 [ 281.739767][ T9697] ? __snd_dma_alloc_pages+0x53/0x90 [ 281.739789][ T9697] ? rcu_is_watching+0x12/0xc0 [ 281.739815][ T9697] ? trace_contention_end+0xdd/0x130 [ 281.739832][ T9697] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 281.739852][ T9697] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 281.739875][ T9697] ? __snd_dma_alloc_pages+0x53/0x90 [ 281.739895][ T9697] __vmalloc_node_noprof+0xad/0xf0 [ 281.739909][ T9697] ? __snd_dma_alloc_pages+0x53/0x90 [ 281.739929][ T9697] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 281.739951][ T9697] __snd_dma_alloc_pages+0x53/0x90 [ 281.739971][ T9697] snd_dma_alloc_dir_pages+0x151/0x240 [ 281.739993][ T9697] do_alloc_pages+0x136/0x2d0 [ 281.740014][ T9697] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 281.740037][ T9697] snd_pcm_hw_params+0x1656/0x1ba0 [ 281.740060][ T9697] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 281.740078][ T9697] ? snd_pcm_hw_param_near.constprop.0+0x72f/0x8e0 [ 281.740095][ T9697] ? snd_pcm_hw_param_near.constprop.0+0x734/0x8e0 [ 281.740114][ T9697] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 281.740131][ T9697] ? __asan_memset+0x23/0x50 [ 281.740152][ T9697] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 281.740172][ T9697] snd_pcm_oss_change_params_locked+0x1432/0x3a30 [ 281.740198][ T9697] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 281.740215][ T9697] ? __pfx___futex_wait+0x10/0x10 [ 281.740236][ T9697] ? __pfx_futex_wake_mark+0x10/0x10 [ 281.740256][ T9697] ? futex_private_hash_put+0x176/0x300 [ 281.740281][ T9697] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 281.740299][ T9697] snd_pcm_oss_write+0x4c2/0xa10 [ 281.740317][ T9697] ? bpf_lsm_file_permission+0x9/0x10 [ 281.740337][ T9697] ? security_file_permission+0x71/0x210 [ 281.740358][ T9697] ? __pfx_snd_pcm_oss_write+0x10/0x10 [ 281.740374][ T9697] vfs_write+0x2a0/0x11d0 [ 281.740398][ T9697] ? __pfx_vfs_write+0x10/0x10 [ 281.740415][ T9697] ? find_held_lock+0x2b/0x80 [ 281.740434][ T9697] ? __fget_files+0x204/0x3c0 [ 281.740455][ T9697] ? __fget_files+0x20e/0x3c0 [ 281.740477][ T9697] ksys_write+0x12a/0x250 [ 281.740496][ T9697] ? __pfx_ksys_write+0x10/0x10 [ 281.740520][ T9697] do_syscall_64+0xcd/0xfa0 [ 281.740542][ T9697] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 281.740556][ T9697] RIP: 0033:0x7f474018eec9 [ 281.740568][ T9697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 281.740586][ T9697] RSP: 002b:00007f4740f57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 281.740600][ T9697] RAX: ffffffffffffffda RBX: 00007f47403e5fa0 RCX: 00007f474018eec9 [ 281.740609][ T9697] RDX: 00000000000041ec RSI: 0000000000000000 RDI: 0000000000000004 [ 281.740618][ T9697] RBP: 00007f4740211f91 R08: 0000000000000000 R09: 0000000000000000 [ 281.740627][ T9697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 281.740635][ T9697] R13: 00007f47403e6038 R14: 00007f47403e5fa0 R15: 00007ffc7560ccf8 [ 281.740655][ T9697] [ 281.740712][ T9697] Mem-Info: [ 282.140117][ T9697] active_anon:19045 inactive_anon:0 isolated_anon:0 [ 282.140117][ T9697] active_file:8948 inactive_file:51247 isolated_file:0 [ 282.140117][ T9697] unevictable:768 dirty:834 writeback:0 [ 282.140117][ T9697] slab_reclaimable:11220 slab_unreclaimable:94687 [ 282.140117][ T9697] mapped:29132 shmem:3381 pagetables:1387 [ 282.140117][ T9697] sec_pagetables:0 bounce:0 [ 282.140117][ T9697] kernel_misc_reclaimable:0 [ 282.140117][ T9697] free:1307177 free_pcp:10666 free_cma:0 [ 282.187924][ T9697] Node 0 active_anon:76232kB inactive_anon:0kB active_file:35792kB inactive_file:204856kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:116528kB dirty:3336kB writeback:0kB shmem:11988kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:12288kB kernel_stack:12304kB pagetables:5408kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 282.220825][ T9697] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 282.261513][ T9697] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 282.342174][ T9697] lowmem_reserve[]: 0 2483 2485 2485 2485 [ 282.347932][ T9697] Node 0 DMA32 free:1300740kB boost:0kB min:34352kB low:42940kB high:51528kB reserved_highatomic:0KB free_highatomic:0KB active_anon:76236kB inactive_anon:0kB active_file:35792kB inactive_file:204856kB unevictable:1536kB writepending:3344kB zspages:0kB present:3129332kB managed:2543612kB mlocked:0kB bounce:0kB free_pcp:36396kB local_pcp:36396kB free_cma:0kB [ 282.470559][ T9697] lowmem_reserve[]: 0 0 1 1 1 [ 282.491514][ T9697] Node 0 Normal free:0kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 282.589186][ T9697] lowmem_reserve[]: 0 0 0 0 0 [ 282.599797][ T9697] Node 1 Normal free:3908468kB boost:0kB min:55524kB low:69404kB high:83284kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:6540kB local_pcp:6540kB free_cma:0kB [ 282.682358][ T9702] usb usb36: usbfs: process 9702 (syz.2.804) did not claim interface 0 before use [ 282.691624][ T9697] lowmem_reserve[]: 0 0 0 0 0 [ 282.701764][ T9697] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 282.722673][ T9697] Node 0 DMA32: 3514*4kB (UME) 2096*8kB (UME) 1267*16kB (UME) 549*32kB (UME) 330*64kB (UME) 111*128kB (UME) 73*256kB (UM) 26*512kB (UM) 8*1024kB (UME) 0*2048kB 279*4096kB (UM) = 1286968kB [ 282.745102][ T9697] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 282.756932][ T9697] Node 1 Normal: 185*4kB (UME) 58*8kB (UME) 40*16kB (UME) 224*32kB (UME) 73*64kB (UME) 22*128kB (UME) 5*256kB (UM) 1*512kB (M) 3*1024kB (UME) 2*2048kB (UE) 948*4096kB (M) = 3908468kB [ 282.780227][ T9697] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 282.790417][ T9697] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 282.801563][ T9697] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 282.833530][ T9697] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 282.881091][ T9697] 63546 total pagecache pages [ 282.902708][ T9697] 3 pages in swap cache [ 282.923226][ T9697] Free swap = 124988kB [ 282.943280][ T9697] Total swap = 124996kB [ 282.947435][ T9697] 2097051 pages RAM [ 282.982150][ T9697] 0 pages HighMem/MovableOnly [ 283.017126][ T9697] 429058 pages reserved [ 283.032697][ T9697] 0 pages cma reserved [ 283.507805][ T3563] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 283.675703][ T3563] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 283.814352][ T3563] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 283.930424][ T9708] HfR: entered promiscuous mode [ 284.020525][ T3563] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 284.367667][ T3563] bridge_slave_1: left allmulticast mode [ 284.406486][ T3563] bridge_slave_1: left promiscuous mode [ 284.437180][ T3563] bridge0: port 2(bridge_slave_1) entered disabled state [ 284.491461][ T3563] bridge_slave_0: left allmulticast mode [ 284.539319][ T3563] bridge_slave_0: left promiscuous mode [ 284.572784][ T3563] bridge0: port 1(bridge_slave_0) entered disabled state [ 285.047013][ T5835] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 285.056478][ T5835] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 285.066237][ T5835] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 285.074770][ T5835] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 285.083249][ T5835] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 285.419408][ T9737] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input95 [ 285.820419][ T9742] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input96 [ 285.922246][ T9737] usb usb36: usbfs: process 9737 (syz.3.814) did not claim interface 0 before use [ 285.989209][ T3563] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 286.057363][ T3563] bond_slave_0: left allmulticast mode [ 286.119103][ T3563] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 286.162334][ T3563] bond_slave_1: left allmulticast mode [ 286.168577][ T3563] bond0 (unregistering): Released all slaves [ 286.582823][ T3563] hsr_slave_0: left promiscuous mode [ 286.607429][ T3563] hsr_slave_1: left promiscuous mode [ 286.625003][ T3563] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 286.654915][ T3563] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 286.677144][ T3563] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 286.701368][ T3563] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 286.766094][ T3563] veth1_macvtap: left promiscuous mode [ 286.788674][ T3563] veth0_macvtap: left promiscuous mode [ 286.803442][ T3563] veth1_vlan: left promiscuous mode [ 286.820844][ T3563] veth0_vlan: left promiscuous mode [ 287.113574][ T5835] Bluetooth: hci2: command tx timeout [ 287.569883][ T3563] team0 (unregistering): Port device team_slave_1 removed [ 287.603696][ T3563] team0 (unregistering): Port device team_slave_0 removed [ 288.227355][ T9776] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input97 [ 288.309642][ T9729] chnl_net:caif_netlink_parms(): no params data found [ 288.762186][ T9781] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input98 [ 288.892285][ T9729] bridge0: port 1(bridge_slave_0) entered blocking state [ 288.946716][ T9729] bridge0: port 1(bridge_slave_0) entered disabled state [ 289.003385][ T9729] bridge_slave_0: entered allmulticast mode [ 289.039708][ T9729] bridge_slave_0: entered promiscuous mode [ 289.052963][ T9776] usb usb36: usbfs: process 9776 (syz.2.817) did not claim interface 0 before use [ 289.085866][ T9729] bridge0: port 2(bridge_slave_1) entered blocking state [ 289.128030][ T9729] bridge0: port 2(bridge_slave_1) entered disabled state [ 289.186307][ T9729] bridge_slave_1: entered allmulticast mode [ 289.192429][ T5835] Bluetooth: hci2: command tx timeout [ 289.239468][ T9729] bridge_slave_1: entered promiscuous mode [ 289.628747][ T9729] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 289.664260][ T9729] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 289.766423][ T9729] team0: Port device team_slave_0 added [ 289.796287][ T9729] team0: Port device team_slave_1 added [ 289.901066][ T9729] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 289.931515][ T9729] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 290.054034][ T9729] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 290.102913][ T9729] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 290.109941][ T9729] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 290.240727][ T9729] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 290.487288][ T9729] hsr_slave_0: entered promiscuous mode [ 290.515457][ T9812] device-mapper: ioctl: Unable to rename non-existent device,  to [ 290.530426][ T9729] hsr_slave_1: entered promiscuous mode [ 290.740333][ T9817] usb usb36: usbfs: process 9817 (syz.3.819) did not claim interface 0 before use [ 291.134230][ T9824] block nbd0: Unsupported socket: should be TCP or UNIX. [ 291.272377][ T5835] Bluetooth: hci2: command tx timeout [ 291.453474][ T9729] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 291.505649][ T9729] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 291.561250][ T9729] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 291.614622][ T9729] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 291.916558][ T9729] 8021q: adding VLAN 0 to HW filter on device bond0 [ 291.997001][ T9729] 8021q: adding VLAN 0 to HW filter on device team0 [ 292.029782][ T7023] bridge0: port 1(bridge_slave_0) entered blocking state [ 292.036937][ T7023] bridge0: port 1(bridge_slave_0) entered forwarding state [ 292.135191][ T3563] bridge0: port 2(bridge_slave_1) entered blocking state [ 292.142325][ T3563] bridge0: port 2(bridge_slave_1) entered forwarding state [ 292.171242][ T9846] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input99 [ 292.416868][ T9847] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input100 [ 292.791402][ T9729] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 292.894132][ T9846] usb usb36: usbfs: process 9846 (syz.3.826) did not claim interface 0 before use [ 293.352157][ T5835] Bluetooth: hci2: command tx timeout [ 293.484698][ T9729] veth0_vlan: entered promiscuous mode [ 293.506926][ T9729] veth1_vlan: entered promiscuous mode [ 293.554434][ T9729] veth0_macvtap: entered promiscuous mode [ 293.571641][ T9729] veth1_macvtap: entered promiscuous mode [ 293.617119][ T9729] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 293.643076][ T9729] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 293.686151][ T7008] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 293.715935][ T7008] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 293.747678][ T7008] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 293.779573][ T7008] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 293.846212][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 293.868276][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 293.926317][ T3563] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 293.948871][ T3563] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 295.693959][ T9903] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input101 [ 295.930178][ T9914] block nbd0: Unsupported socket: should be TCP or UNIX. [ 296.056442][ T9908] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input102 [ 296.097858][ T9912] usb usb36: usbfs: process 9912 (syz.5.837) did not claim interface 0 before use [ 296.199986][ T9903] usb usb36: usbfs: process 9903 (syz.1.835) did not claim interface 0 before use [ 296.265748][ T9907] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input103 [ 296.434835][ T9911] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input104 [ 296.768839][ T9922] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input105 [ 297.014224][ T9926] usb usb36: usbfs: process 9926 (syz.1.842) did not claim interface 0 before use [ 297.054167][ T9925] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input106 [ 297.459002][ T9934] Invalid ELF header magic: != ELF [ 299.438430][ T9967] usb usb36: usbfs: process 9967 (syz.1.852) did not claim interface 0 before use [ 299.668961][ T9973] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input107 [ 299.916515][ T9977] usb usb36: usbfs: process 9977 (syz.3.854) did not claim interface 0 before use [ 299.990904][ T9976] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input108 [ 300.183386][ T9980] block nbd0: Unsupported socket: should be TCP or UNIX. [ 300.468133][ T9984] FAULT_INJECTION: forcing a failure. [ 300.468133][ T9984] name failslab, interval 1, probability 0, space 0, times 0 [ 300.530423][ T9984] CPU: 0 UID: 0 PID: 9984 Comm: syz.3.857 Not tainted syzkaller #0 PREEMPT(full) [ 300.530443][ T9984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 300.530451][ T9984] Call Trace: [ 300.530457][ T9984] [ 300.530462][ T9984] dump_stack_lvl+0x16c/0x1f0 [ 300.530487][ T9984] should_fail_ex+0x512/0x640 [ 300.530508][ T9984] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 300.530529][ T9984] should_failslab+0xc2/0x120 [ 300.530543][ T9984] kmem_cache_alloc_node_noprof+0x78/0x770 [ 300.530561][ T9984] ? __alloc_skb+0x2b2/0x380 [ 300.530583][ T9984] ? __alloc_skb+0x2b2/0x380 [ 300.530600][ T9984] __alloc_skb+0x2b2/0x380 [ 300.530618][ T9984] ? __pfx___alloc_skb+0x10/0x10 [ 300.530638][ T9984] ? __pfx___might_resched+0x10/0x10 [ 300.530657][ T9984] ? __lock_acquire+0xb8a/0x1c90 [ 300.530674][ T9984] netlink_alloc_large_skb+0x69/0x140 [ 300.530696][ T9984] netlink_sendmsg+0x698/0xdd0 [ 300.530721][ T9984] ? __pfx_netlink_sendmsg+0x10/0x10 [ 300.530744][ T9984] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 300.530761][ T9984] ____sys_sendmsg+0xa98/0xc70 [ 300.530777][ T9984] ? copy_msghdr_from_user+0x10a/0x160 [ 300.530797][ T9984] ? __pfx_____sys_sendmsg+0x10/0x10 [ 300.530814][ T9984] ? kfree+0x252/0x6d0 [ 300.530828][ T9984] ? __pfx__kstrtoull+0x10/0x10 [ 300.530849][ T9984] ___sys_sendmsg+0x134/0x1d0 [ 300.530870][ T9984] ? __pfx____sys_sendmsg+0x10/0x10 [ 300.530907][ T9984] ? __pfx___might_resched+0x10/0x10 [ 300.530928][ T9984] __sys_sendmmsg+0x200/0x420 [ 300.530950][ T9984] ? __pfx___sys_sendmmsg+0x10/0x10 [ 300.530976][ T9984] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 300.531004][ T9984] ? fput+0x9b/0xd0 [ 300.531018][ T9984] ? ksys_write+0x1ac/0x250 [ 300.531037][ T9984] ? __pfx_ksys_write+0x10/0x10 [ 300.531058][ T9984] __x64_sys_sendmmsg+0x9c/0x100 [ 300.531078][ T9984] ? lockdep_hardirqs_on+0x7c/0x110 [ 300.531098][ T9984] do_syscall_64+0xcd/0xfa0 [ 300.531119][ T9984] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 300.531133][ T9984] RIP: 0033:0x7f0c7878eec9 [ 300.531144][ T9984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 300.531157][ T9984] RSP: 002b:00007f0c7958a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 300.531170][ T9984] RAX: ffffffffffffffda RBX: 00007f0c789e5fa0 RCX: 00007f0c7878eec9 [ 300.531179][ T9984] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000004 [ 300.531188][ T9984] RBP: 00007f0c7958a090 R08: 0000000000000000 R09: 0000000000000000 [ 300.531195][ T9984] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 300.531204][ T9984] R13: 00007f0c789e6038 R14: 00007f0c789e5fa0 R15: 00007ffd0383c468 [ 300.531222][ T9984] [ 301.419186][ T9994] Invalid ELF header magic: != ELF [ 302.800079][T10025] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input109 [ 303.105356][T10028] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input110 [ 303.213395][T10025] usb usb36: usbfs: process 10025 (syz.2.865) did not claim interface 0 before use [ 303.276884][T10031] usb usb36: usbfs: process 10031 (syz.5.863) did not claim interface 0 before use [ 303.654810][T10047] phram: not enough arguments [ 304.218843][T10059] FAULT_INJECTION: forcing a failure. [ 304.218843][T10059] name failslab, interval 1, probability 0, space 0, times 0 [ 304.381740][T10059] CPU: 0 UID: 0 PID: 10059 Comm: syz.2.872 Not tainted syzkaller #0 PREEMPT(full) [ 304.381762][T10059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 304.381780][T10059] Call Trace: [ 304.381785][T10059] [ 304.381791][T10059] dump_stack_lvl+0x16c/0x1f0 [ 304.381817][T10059] should_fail_ex+0x512/0x640 [ 304.381838][T10059] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 304.381862][T10059] should_failslab+0xc2/0x120 [ 304.381876][T10059] __kvmalloc_node_noprof+0x141/0x9c0 [ 304.381896][T10059] ? __fget_files+0x204/0x3c0 [ 304.381914][T10059] ? do_getxattr+0xad/0x360 [ 304.381935][T10059] ? do_getxattr+0xad/0x360 [ 304.381950][T10059] do_getxattr+0xad/0x360 [ 304.381983][T10059] path_getxattrat+0x25d/0x2d0 [ 304.382004][T10059] ? __pfx_path_getxattrat+0x10/0x10 [ 304.382041][T10059] ? xfd_validate_state+0x61/0x180 [ 304.382056][T10059] ? __pfx___x64_sys_pselect6+0x10/0x10 [ 304.382080][T10059] do_syscall_64+0xcd/0xfa0 [ 304.382101][T10059] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 304.382115][T10059] RIP: 0033:0x7f133b78eec9 [ 304.382128][T10059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 304.382141][T10059] RSP: 002b:00007f133c672038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c1 [ 304.382154][T10059] RAX: ffffffffffffffda RBX: 00007f133b9e5fa0 RCX: 00007f133b78eec9 [ 304.382163][T10059] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000007 [ 304.382172][T10059] RBP: 00007f133b811f91 R08: 0000000000000000 R09: 0000000000000000 [ 304.382180][T10059] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000 [ 304.382188][T10059] R13: 00007f133b9e6038 R14: 00007f133b9e5fa0 R15: 00007ffe3df558c8 [ 304.382211][T10059] [ 305.787708][T10085] usb usb36: usbfs: process 10085 (syz.3.874) did not claim interface 0 before use [ 306.442774][T10104] ICMPv6: process `syz.1.876' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 306.628057][T10109] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input111 [ 307.039785][T10116] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input112 [ 307.446945][T10123] usb usb36: usbfs: process 10123 (syz.3.880) did not claim interface 0 before use [ 307.644970][T10137] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input113 [ 308.160703][T10140] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input114 [ 308.263459][T10152] ptrace attach of "./syz-executor exec"[5826] was attempted by ""[10152] [ 308.453953][T10137] usb usb36: usbfs: process 10137 (syz.2.882) did not claim interface 0 before use [ 308.609199][T10155] FAULT_INJECTION: forcing a failure. [ 308.609199][T10155] name failslab, interval 1, probability 0, space 0, times 0 [ 308.693588][T10155] CPU: 0 UID: 0 PID: 10155 Comm: syz.3.886 Not tainted syzkaller #0 PREEMPT(full) [ 308.693611][T10155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 308.693620][T10155] Call Trace: [ 308.693626][T10155] [ 308.693631][T10155] dump_stack_lvl+0x16c/0x1f0 [ 308.693657][T10155] should_fail_ex+0x512/0x640 [ 308.693680][T10155] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 308.693703][T10155] should_failslab+0xc2/0x120 [ 308.693718][T10155] __kvmalloc_node_noprof+0x141/0x9c0 [ 308.693737][T10155] ? __fget_files+0x204/0x3c0 [ 308.693756][T10155] ? do_getxattr+0xad/0x360 [ 308.693836][T10155] ? do_getxattr+0xad/0x360 [ 308.693864][T10155] do_getxattr+0xad/0x360 [ 308.693888][T10155] path_getxattrat+0x25d/0x2d0 [ 308.693910][T10155] ? __pfx_path_getxattrat+0x10/0x10 [ 308.693949][T10155] ? xfd_validate_state+0x61/0x180 [ 308.693965][T10155] ? __pfx___x64_sys_pselect6+0x10/0x10 [ 308.693989][T10155] do_syscall_64+0xcd/0xfa0 [ 308.694011][T10155] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 308.694025][T10155] RIP: 0033:0x7f0c7878eec9 [ 308.694038][T10155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 308.694052][T10155] RSP: 002b:00007f0c7958a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c1 [ 308.694066][T10155] RAX: ffffffffffffffda RBX: 00007f0c789e5fa0 RCX: 00007f0c7878eec9 [ 308.694076][T10155] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000007 [ 308.694084][T10155] RBP: 00007f0c78811f91 R08: 0000000000000000 R09: 0000000000000000 [ 308.694093][T10155] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000 [ 308.694101][T10155] R13: 00007f0c789e6038 R14: 00007f0c789e5fa0 R15: 00007ffd0383c468 [ 308.694121][T10155] [ 308.876273][ C0] vkms_vblank_simulate: vblank timer overrun [ 309.196222][T10173] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input115 [ 309.475885][T10175] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input116 [ 310.054174][T10173] usb usb36: usbfs: process 10173 (syz.5.887) did not claim interface 0 before use [ 310.639883][T10200] netlink: 8 bytes leftover after parsing attributes in process `syz.5.891'. [ 311.167691][T10205] ICMPv6: process `syz.2.892' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 312.171214][T10228] FAULT_INJECTION: forcing a failure. [ 312.171214][T10228] name failslab, interval 1, probability 0, space 0, times 0 [ 312.228729][T10228] CPU: 0 UID: 0 PID: 10228 Comm: syz.5.899 Not tainted syzkaller #0 PREEMPT(full) [ 312.228750][T10228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 312.228759][T10228] Call Trace: [ 312.228764][T10228] [ 312.228770][T10228] dump_stack_lvl+0x16c/0x1f0 [ 312.228795][T10228] should_fail_ex+0x512/0x640 [ 312.228816][T10228] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 312.228831][T10228] should_failslab+0xc2/0x120 [ 312.228845][T10228] kmem_cache_alloc_noprof+0x75/0x6e0 [ 312.228864][T10228] ? skb_clone+0x190/0x3f0 [ 312.228887][T10228] ? skb_clone+0x190/0x3f0 [ 312.228905][T10228] skb_clone+0x190/0x3f0 [ 312.228926][T10228] netlink_deliver_tap+0xabd/0xd30 [ 312.228951][T10228] netlink_unicast+0x64c/0x870 [ 312.228974][T10228] ? __pfx_netlink_unicast+0x10/0x10 [ 312.228994][T10228] ? __pfx___might_resched+0x10/0x10 [ 312.229020][T10228] netlink_sendmsg+0x8c8/0xdd0 [ 312.229044][T10228] ? __pfx_netlink_sendmsg+0x10/0x10 [ 312.229067][T10228] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 312.229085][T10228] ____sys_sendmsg+0xa98/0xc70 [ 312.229101][T10228] ? copy_msghdr_from_user+0x10a/0x160 [ 312.229121][T10228] ? __pfx_____sys_sendmsg+0x10/0x10 [ 312.229138][T10228] ? kfree+0x252/0x6d0 [ 312.229152][T10228] ? __pfx__kstrtoull+0x10/0x10 [ 312.229173][T10228] ___sys_sendmsg+0x134/0x1d0 [ 312.229194][T10228] ? __pfx____sys_sendmsg+0x10/0x10 [ 312.229231][T10228] ? __pfx___might_resched+0x10/0x10 [ 312.229253][T10228] __sys_sendmmsg+0x200/0x420 [ 312.229275][T10228] ? __pfx___sys_sendmmsg+0x10/0x10 [ 312.229301][T10228] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 312.229329][T10228] ? fput+0x9b/0xd0 [ 312.229343][T10228] ? ksys_write+0x1ac/0x250 [ 312.229361][T10228] ? __pfx_ksys_write+0x10/0x10 [ 312.229383][T10228] __x64_sys_sendmmsg+0x9c/0x100 [ 312.229402][T10228] ? lockdep_hardirqs_on+0x7c/0x110 [ 312.229422][T10228] do_syscall_64+0xcd/0xfa0 [ 312.229443][T10228] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 312.229456][T10228] RIP: 0033:0x7f95fd58eec9 [ 312.229468][T10228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 312.229481][T10228] RSP: 002b:00007f95fe3bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 312.229494][T10228] RAX: ffffffffffffffda RBX: 00007f95fd7e5fa0 RCX: 00007f95fd58eec9 [ 312.229503][T10228] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000004 [ 312.229512][T10228] RBP: 00007f95fe3bf090 R08: 0000000000000000 R09: 0000000000000000 [ 312.229526][T10228] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002 [ 312.229534][T10228] R13: 00007f95fd7e6038 R14: 00007f95fd7e5fa0 R15: 00007fffdcf7f548 [ 312.229553][T10228] [ 312.229603][T10228] netlink: 28 bytes leftover after parsing attributes in process `syz.5.899'. [ 312.725223][T10233] zswap: compressor Oֹ?JJ [ 313.779307][T10244] dump_stack_lvl+0x16c/0x1f0 [ 313.779331][T10244] should_fail_ex+0x512/0x640 [ 313.779352][T10244] ? __kmalloc_noprof+0xca/0x880 [ 313.779371][T10244] should_failslab+0xc2/0x120 [ 313.779384][T10244] __kmalloc_noprof+0xdd/0x880 [ 313.779401][T10244] ? kernfs_fop_write_iter+0x237/0x570 [ 313.779428][T10244] ? kernfs_fop_write_iter+0x237/0x570 [ 313.779444][T10244] kernfs_fop_write_iter+0x237/0x570 [ 313.779464][T10244] vfs_write+0x7d3/0x11d0 [ 313.779485][T10244] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 313.779502][T10244] ? __pfx___mutex_lock+0x10/0x10 [ 313.779523][T10244] ? __pfx_vfs_write+0x10/0x10 [ 313.779554][T10244] ksys_write+0x12a/0x250 [ 313.779573][T10244] ? __pfx_ksys_write+0x10/0x10 [ 313.779597][T10244] do_syscall_64+0xcd/0xfa0 [ 313.779618][T10244] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 313.779632][T10244] RIP: 0033:0x7f133b78eec9 [ 313.779644][T10244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 313.779657][T10244] RSP: 002b:00007f133c672038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 313.779670][T10244] RAX: ffffffffffffffda RBX: 00007f133b9e5fa0 RCX: 00007f133b78eec9 [ 313.779679][T10244] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003 [ 313.779688][T10244] RBP: 00007f133c672090 R08: 0000000000000000 R09: 0000000000000000 [ 313.779696][T10244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 313.779704][T10244] R13: 00007f133b9e6038 R14: 00007f133b9e5fa0 R15: 00007ffe3df558c8 [ 313.779723][T10244] [ 313.961339][ C0] vkms_vblank_simulate: vblank timer overrun [ 314.968284][T10274] ptrace attach of "./syz-executor exec"[5830] was attempted by ""[10274] [ 315.401387][T10281] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input117 [ 315.927126][T10284] usb usb36: usbfs: process 10284 (syz.5.907) did not claim interface 0 before use [ 316.256302][T10283] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input118 [ 316.705987][T10297] ICMPv6: process `syz.5.910' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 316.747787][T10298] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input119 [ 317.037027][T10303] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input120 [ 317.119272][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.136541][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.672412][T10298] usb usb36: usbfs: process 10298 (syz.2.912) did not claim interface 0 before use [ 318.521828][T10337] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input121 [ 318.569752][T10339] netlink: 28 bytes leftover after parsing attributes in process `syz.3.922'. [ 318.677417][T10340] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input122 [ 318.709817][T10339] bridge0: port 2(bridge_slave_1) entered disabled state [ 318.822841][T10339] bridge_slave_1 (unregistering): left allmulticast mode [ 318.861959][T10339] bridge_slave_1 (unregistering): left promiscuous mode [ 318.872034][T10339] bridge0: port 2(bridge_slave_1) entered disabled state [ 319.358438][T10347] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input123 [ 319.576214][T10348] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input124 [ 319.982152][T10347] usb usb36: usbfs: process 10347 (syz.1.924) did not claim interface 0 before use [ 321.068322][T10372] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input125 [ 321.390298][T10373] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input126 [ 321.423912][T10385] FAULT_INJECTION: forcing a failure. [ 321.423912][T10385] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 321.477274][T10385] CPU: 0 UID: 0 PID: 10385 Comm: syz.5.941 Not tainted syzkaller #0 PREEMPT(full) [ 321.477294][T10385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 321.477303][T10385] Call Trace: [ 321.477308][T10385] [ 321.477313][T10385] dump_stack_lvl+0x16c/0x1f0 [ 321.477338][T10385] should_fail_ex+0x512/0x640 [ 321.477363][T10385] _copy_from_iter+0x29f/0x1720 [ 321.477389][T10385] ? __pfx__copy_from_iter+0x10/0x10 [ 321.477410][T10385] ? rcu_is_watching+0x12/0xc0 [ 321.477429][T10385] ? trace_kmalloc+0x2b/0xd0 [ 321.477441][T10385] ? __kmalloc_noprof+0x34f/0x880 [ 321.477458][T10385] ? kernfs_fop_write_iter+0x237/0x570 [ 321.477482][T10385] kernfs_fop_write_iter+0x19a/0x570 [ 321.477502][T10385] vfs_write+0x7d3/0x11d0 [ 321.477522][T10385] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 321.477539][T10385] ? __pfx___mutex_lock+0x10/0x10 [ 321.477560][T10385] ? __pfx_vfs_write+0x10/0x10 [ 321.477591][T10385] ksys_write+0x12a/0x250 [ 321.477609][T10385] ? __pfx_ksys_write+0x10/0x10 [ 321.477633][T10385] do_syscall_64+0xcd/0xfa0 [ 321.477654][T10385] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 321.477668][T10385] RIP: 0033:0x7f95fd58eec9 [ 321.477680][T10385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 321.477693][T10385] RSP: 002b:00007f95fe3bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 321.477707][T10385] RAX: ffffffffffffffda RBX: 00007f95fd7e5fa0 RCX: 00007f95fd58eec9 [ 321.477716][T10385] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003 [ 321.477725][T10385] RBP: 00007f95fe3bf090 R08: 0000000000000000 R09: 0000000000000000 [ 321.477733][T10385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 321.477741][T10385] R13: 00007f95fd7e6038 R14: 00007f95fd7e5fa0 R15: 00007fffdcf7f548 [ 321.477760][T10385] [ 321.756493][T10388] FAULT_INJECTION: forcing a failure. [ 321.756493][T10388] name failslab, interval 1, probability 0, space 0, times 0 [ 321.769624][T10388] CPU: 0 UID: 0 PID: 10388 Comm: syz.5.932 Not tainted syzkaller #0 PREEMPT(full) [ 321.769644][T10388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 321.769653][T10388] Call Trace: [ 321.769658][T10388] [ 321.769664][T10388] dump_stack_lvl+0x16c/0x1f0 [ 321.769689][T10388] should_fail_ex+0x512/0x640 [ 321.769710][T10388] ? __kmalloc_cache_noprof+0x5f/0x780 [ 321.769730][T10388] should_failslab+0xc2/0x120 [ 321.769744][T10388] __kmalloc_cache_noprof+0x72/0x780 [ 321.769762][T10388] ? snd_seq_prioq_new+0x3f/0x110 [ 321.769786][T10388] ? snd_seq_prioq_new+0x3f/0x110 [ 321.769805][T10388] snd_seq_prioq_new+0x3f/0x110 [ 321.769824][T10388] snd_seq_queue_alloc+0x12b/0x5a0 [ 321.769852][T10388] snd_seq_ioctl_create_queue+0xa9/0x390 [ 321.769869][T10388] call_seq_client_ctl+0x9f/0x110 [ 321.769893][T10388] snd_seq_kernel_client_ctl+0x77/0xd0 [ 321.769908][T10388] alloc_seq_queue+0xda/0x180 [ 321.769923][T10388] ? __pfx_alloc_seq_queue+0x10/0x10 [ 321.769948][T10388] ? mark_held_locks+0x49/0x80 [ 321.769962][T10388] ? _raw_spin_unlock_irq+0x23/0x50 [ 321.769980][T10388] ? lockdep_hardirqs_on+0x7c/0x110 [ 321.770002][T10388] snd_seq_oss_open+0x38c/0xa20 [ 321.770020][T10388] odev_open+0x79/0xc0 [ 321.770032][T10388] ? __pfx_odev_open+0x10/0x10 [ 321.770045][T10388] soundcore_open+0x40c/0x580 [ 321.770060][T10388] ? __pfx_soundcore_open+0x10/0x10 [ 321.770074][T10388] chrdev_open+0x234/0x6a0 [ 321.770094][T10388] ? __pfx_apparmor_file_open+0x10/0x10 [ 321.770109][T10388] ? __pfx_chrdev_open+0x10/0x10 [ 321.770130][T10388] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 321.770153][T10388] do_dentry_open+0x982/0x1530 [ 321.770173][T10388] ? __pfx_chrdev_open+0x10/0x10 [ 321.770197][T10388] vfs_open+0x82/0x3f0 [ 321.770213][T10388] path_openat+0x1de4/0x2cb0 [ 321.770238][T10388] ? __pfx_path_openat+0x10/0x10 [ 321.770258][T10388] ? __lock_acquire+0xb8a/0x1c90 [ 321.770274][T10388] do_filp_open+0x20b/0x470 [ 321.770293][T10388] ? __pfx_do_filp_open+0x10/0x10 [ 321.770326][T10388] ? alloc_fd+0x471/0x7d0 [ 321.770349][T10388] do_sys_openat2+0x11b/0x1d0 [ 321.770363][T10388] ? __pfx_do_sys_openat2+0x10/0x10 [ 321.770379][T10388] ? __pfx___might_resched+0x10/0x10 [ 321.770403][T10388] __x64_sys_openat+0x174/0x210 [ 321.770418][T10388] ? __pfx___x64_sys_openat+0x10/0x10 [ 321.770441][T10388] do_syscall_64+0xcd/0xfa0 [ 321.770462][T10388] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 321.770476][T10388] RIP: 0033:0x7f95fd58eec9 [ 321.770487][T10388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 321.770501][T10388] RSP: 002b:00007f95fe3bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 321.770514][T10388] RAX: ffffffffffffffda RBX: 00007f95fd7e5fa0 RCX: 00007f95fd58eec9 [ 321.770524][T10388] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 321.770533][T10388] RBP: 00007f95fd611f91 R08: 0000000000000000 R09: 0000000000000000 [ 321.770542][T10388] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 321.770550][T10388] R13: 00007f95fd7e6038 R14: 00007f95fd7e5fa0 R15: 00007fffdcf7f548 [ 321.770570][T10388] [ 322.089865][T10372] usb usb36: usbfs: process 10372 (syz.3.929) did not claim interface 0 before use [ 322.368316][T10390] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR [ 322.476280][T10402] netlink: 8 bytes leftover after parsing attributes in process `syz.3.933'. [ 322.984487][T10408] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input127 [ 323.084323][T10410] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input128 [ 323.522082][T10418] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input129 [ 323.865118][T10422] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input130 [ 324.299784][T10418] usb usb36: usbfs: process 10418 (syz.5.936) did not claim interface 0 before use [ 324.817994][T10443] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input131 [ 325.030224][T10447] usb usb36: usbfs: process 10447 (syz.2.942) did not claim interface 0 before use [ 325.215487][T10445] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input132 [ 326.750152][T10472] qrtr: Invalid version 0 [ 327.323813][T10487] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input133 [ 327.686795][T10492] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input134 [ 328.207576][T10487] usb usb36: usbfs: process 10487 (syz.1.960) did not claim interface 0 before use [ 328.794094][T10516] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input135 [ 329.079335][T10520] usb usb36: usbfs: process 10520 (syz.2.956) did not claim interface 0 before use [ 329.186532][T10523] warning: `syz.1.958' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 329.299080][T10518] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input136 [ 329.686463][T10531] qrtr: Invalid version 0 [ 331.522892][T10549] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input137 [ 332.195881][T10556] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input138 [ 332.268726][T10573] usb usb36: usbfs: process 10573 (syz.1.971) did not claim interface 0 before use [ 332.471520][T10549] usb usb36: usbfs: process 10549 (syz.2.966) did not claim interface 0 before use [ 332.638476][T10571] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input139 [ 332.821319][T10572] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input140 [ 332.985305][T10576] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(640441213.32042.4294967291), cmd(3) [ 333.367823][T10581] qrtr: Invalid version 0 [ 333.614698][T10585] netlink: 28 bytes leftover after parsing attributes in process `syz.3.975'. [ 334.188428][T10595] ------------[ cut here ]------------ [ 334.194229][T10595] memcpy: detected field-spanning write (size 5) of single field "&entry->id" at kernel/trace/trace.c:7458 (size 4) [ 334.206803][T10595] WARNING: CPU: 0 PID: 10595 at kernel/trace/trace.c:7458 write_raw_marker_to_buffer.isra.0+0x2d4/0x330 [ 334.218169][T10595] Modules linked in: [ 334.222334][T10595] CPU: 0 UID: 0 PID: 10595 Comm: syz.1.976 Not tainted syzkaller #0 PREEMPT(full) [ 334.232137][T10595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 334.242609][T10595] RIP: 0010:write_raw_marker_to_buffer.isra.0+0x2d4/0x330 [ 334.249721][T10595] Code: ff e8 30 74 fa ff c6 05 34 af a9 0e 01 90 b9 04 00 00 00 48 c7 c2 c0 2e 93 8b 4c 89 e6 48 c7 c7 20 2f 93 8b e8 6d f8 b8 ff 90 <0f> 0b 90 90 e9 d7 fe ff ff e8 4e 06 62 00 e9 da fd ff ff e8 44 06 [ 334.269755][T10595] RSP: 0018:ffffc9000aee7c40 EFLAGS: 00010282 [ 334.275950][T10595] RAX: 0000000000000000 RBX: ffff88813ff34014 RCX: ffffffff817b2e58 [ 334.283962][T10595] RDX: ffff88802fb90000 RSI: ffffffff817b2e65 RDI: 0000000000000001 [ 334.291916][T10595] RBP: ffff88813ff34010 R08: 0000000000000001 R09: 0000000000000000 [ 334.299906][T10595] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000005 [ 334.307974][T10595] R13: ffff88813ff18c00 R14: 0000000000000000 R15: 0000000000000000 [ 334.316072][T10595] FS: 00007f473e3936c0(0000) GS:ffff8881249e1000(0000) knlGS:0000000000000000 [ 334.325068][T10595] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 334.331966][T10595] CR2: 000055558620a588 CR3: 000000007aeee000 CR4: 00000000003526f0 [ 334.340138][T10595] Call Trace: [ 334.343429][T10595] [ 334.346355][T10595] tracing_mark_raw_write+0x2da/0x4a0 [ 334.351717][T10595] ? __pfx_tracing_mark_raw_write+0x10/0x10 [ 334.357635][T10595] ? __pfx_tracing_mark_raw_write+0x10/0x10 [ 334.363545][T10595] vfs_write+0x2a0/0x11d0 [ 334.367870][T10595] ? __pfx_vfs_write+0x10/0x10 [ 334.372665][T10595] ? find_held_lock+0x2b/0x80 [ 334.377330][T10595] ? __fget_files+0x204/0x3c0 [ 334.382030][T10595] ? __fget_files+0x20e/0x3c0 [ 334.386696][T10595] ksys_write+0x1f8/0x250 [ 334.391011][T10595] ? __pfx_ksys_write+0x10/0x10 [ 334.395954][T10595] do_syscall_64+0xcd/0xfa0 [ 334.400446][T10595] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 334.406425][T10595] RIP: 0033:0x7f474018eec9 [ 334.410826][T10595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 334.430516][T10595] RSP: 002b:00007f473e393038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 334.439291][T10595] RAX: ffffffffffffffda RBX: 00007f47403e6360 RCX: 00007f474018eec9 [ 334.447465][T10595] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 000000000000000a [ 334.455452][T10595] RBP: 00007f4740211f91 R08: 0000000000000000 R09: 0000000000000000 [ 334.463432][T10595] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 334.471387][T10595] R13: 00007f47403e63f8 R14: 00007f47403e6360 R15: 00007ffc7560ccf8 [ 334.479380][T10595] [ 334.482403][T10595] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 334.489663][T10595] CPU: 0 UID: 0 PID: 10595 Comm: syz.1.976 Not tainted syzkaller #0 PREEMPT(full) [ 334.498921][T10595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 334.508954][T10595] Call Trace: [ 334.512214][T10595] [ 334.515123][T10595] dump_stack_lvl+0x3d/0x1f0 [ 334.519701][T10595] vpanic+0x640/0x6f0 [ 334.523663][T10595] ? write_raw_marker_to_buffer.isra.0+0x2d4/0x330 [ 334.530146][T10595] panic+0xca/0xd0 [ 334.533847][T10595] ? __pfx_panic+0x10/0x10 [ 334.538250][T10595] ? check_panic_on_warn+0x1f/0xb0 [ 334.543340][T10595] check_panic_on_warn+0xab/0xb0 [ 334.548258][T10595] __warn+0xf6/0x3c0 [ 334.552131][T10595] ? __pfx_vprintk_emit+0x10/0x10 [ 334.557136][T10595] ? write_raw_marker_to_buffer.isra.0+0x2d4/0x330 [ 334.563622][T10595] report_bug+0x3c3/0x580 [ 334.567935][T10595] ? write_raw_marker_to_buffer.isra.0+0x2d4/0x330 [ 334.574421][T10595] handle_bug+0x184/0x210 [ 334.578728][T10595] exc_invalid_op+0x17/0x50 [ 334.583208][T10595] asm_exc_invalid_op+0x1a/0x20 [ 334.588036][T10595] RIP: 0010:write_raw_marker_to_buffer.isra.0+0x2d4/0x330 [ 334.595129][T10595] Code: ff e8 30 74 fa ff c6 05 34 af a9 0e 01 90 b9 04 00 00 00 48 c7 c2 c0 2e 93 8b 4c 89 e6 48 c7 c7 20 2f 93 8b e8 6d f8 b8 ff 90 <0f> 0b 90 90 e9 d7 fe ff ff e8 4e 06 62 00 e9 da fd ff ff e8 44 06 [ 334.614715][T10595] RSP: 0018:ffffc9000aee7c40 EFLAGS: 00010282 [ 334.620763][T10595] RAX: 0000000000000000 RBX: ffff88813ff34014 RCX: ffffffff817b2e58 [ 334.628711][T10595] RDX: ffff88802fb90000 RSI: ffffffff817b2e65 RDI: 0000000000000001 [ 334.636659][T10595] RBP: ffff88813ff34010 R08: 0000000000000001 R09: 0000000000000000 [ 334.644606][T10595] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000005 [ 334.652553][T10595] R13: ffff88813ff18c00 R14: 0000000000000000 R15: 0000000000000000 [ 334.660508][T10595] ? __warn_printk+0x198/0x350 [ 334.665254][T10595] ? __warn_printk+0x1a5/0x350 [ 334.670002][T10595] tracing_mark_raw_write+0x2da/0x4a0 [ 334.675358][T10595] ? __pfx_tracing_mark_raw_write+0x10/0x10 [ 334.681250][T10595] ? __pfx_tracing_mark_raw_write+0x10/0x10 [ 334.687125][T10595] vfs_write+0x2a0/0x11d0 [ 334.691444][T10595] ? __pfx_vfs_write+0x10/0x10 [ 334.696189][T10595] ? find_held_lock+0x2b/0x80 [ 334.700854][T10595] ? __fget_files+0x204/0x3c0 [ 334.705524][T10595] ? __fget_files+0x20e/0x3c0 [ 334.710187][T10595] ksys_write+0x1f8/0x250 [ 334.714500][T10595] ? __pfx_ksys_write+0x10/0x10 [ 334.719339][T10595] do_syscall_64+0xcd/0xfa0 [ 334.723844][T10595] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 334.729733][T10595] RIP: 0033:0x7f474018eec9 [ 334.734130][T10595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 334.753723][T10595] RSP: 002b:00007f473e393038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 334.762130][T10595] RAX: ffffffffffffffda RBX: 00007f47403e6360 RCX: 00007f474018eec9 [ 334.770089][T10595] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 000000000000000a [ 334.778042][T10595] RBP: 00007f4740211f91 R08: 0000000000000000 R09: 0000000000000000 [ 334.785995][T10595] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 334.793945][T10595] R13: 00007f47403e63f8 R14: 00007f47403e6360 R15: 00007ffc7560ccf8 [ 334.801910][T10595] [ 334.804972][T10595] Kernel Offset: disabled [ 334.809282][T10595] Rebooting in 86400 seconds..