last executing test programs: 11.235302051s ago: executing program 2 (id=1960): pkey_free$auto(0x17) mmap$auto(0x0, 0x0, 0x7, 0xeb1, 0xffffffffffffffff, 0x100) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x402e00, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f00000001c0)) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0) read$auto(r0, 0x0, 0x1000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) symlink$auto(0x0, 0x0) socket(0x11, 0x3, 0x4007) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x80000000000000a, 0x2, 0x0) r2 = socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54) getsockopt$auto(r2, 0x84, 0x6d, 0x0, &(0x7f0000000280)=0x1000c0) getsockopt$auto(0x3, 0x6, 0xb, 0x0, 0x0) shutdown$auto(0x200000003, 0x2) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) semctl$auto_GETPID(0x0, 0x7ff, 0xb, 0xffff) recvmmsg$auto(0x3, 0x0, 0x10400, 0x3, 0x0) listen$auto(0x3, 0x3) 10.851733611s ago: executing program 0 (id=1962): r0 = pidfd_open$auto(0x1, 0x0) mmap$auto(0x0, 0x2, 0x3, 0x20eb3, r0, 0xa) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x5, 0x3, 0x0, 0x1, 0x1) r1 = socket(0x1d, 0x2, 0x6) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) lsm_set_self_attr$auto(0x9, 0x0, 0x80, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) bpf$auto_BPF_BTF_LOAD(0x12, &(0x7f0000000180)=@prog_bind_map={r1, r1, 0x4551959d}, 0xffffffff) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000240)='/dev/binderfs/binder0\x00', 0x800, 0x0) socket(0xa, 0x1, 0x100) socket(0x1e, 0x1, 0x7ffffffe) socket(0x2c, 0x3, 0x9) r4 = socket(0x1f, 0x5, 0x6) getsockopt$auto(r4, 0x114, 0x2713, 0xfffffffffffffffc, 0x0) write$auto(0x1, 0x0, 0x80000000) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x4a003, 0x0) r5 = socket(0xa, 0x4, 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) read$auto_random_fops_random(r3, &(0x7f0000000340)=""/250, 0xfa) ioctl$auto_TIOCCBRK2(0xffffffffffffffff, 0x5428, &(0x7f0000000440)="04bd837c60ab003926bfda31968f03b39ed8eaba8be264e810587e2470ec822cd90593379d12b4768fc66bb9bebda6e894b2182d4273cc5b03b302ee8a6e886e9b67cb39dcbdf93176355d495b2760968859f797c7c8ee74c285ef03461a9b18e511e9ce9fdb9986f3aaf2d944c4f9426a3760f7df6c9fdbb7289cc410f44993bcf728b6bd02fd800f03d3b3ba58fac1e02b840abc466b92f9c97d") openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$auto_SO_RCVPRIORITY(r5, 0x2, 0x52, &(0x7f00000001c0)='/dev/virtual_nci\x00', &(0x7f0000000240)=0x7) r6 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0040, 0x0) pread64$auto(r6, 0x0, 0x7ff, 0x400) socket(0x1e, 0x1, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1fc, 0x7, 0xd, 0x2d, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x40, 0x3, 0x1, 0x9, 0x1, 0xffffffdffffffffe]}, 0x0) 8.999563647s ago: executing program 3 (id=1964): mmap$auto(0x0, 0x400006, 0xdf, 0x9b72, 0x2, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x800000a}, 0x3ff}, 0x80000001, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/loginuid\x00', 0x30b000, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/cifsFYI\x00', 0x129542, 0x0) read$auto(0x3, 0x0, 0x7) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) 8.295508025s ago: executing program 0 (id=1966): pkey_free$auto(0x17) mmap$auto(0x0, 0x0, 0x7, 0xeb1, 0xffffffffffffffff, 0x100) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x402e00, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f00000001c0)) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0) read$auto(r0, 0x0, 0x1000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) symlink$auto(0x0, 0x0) socket(0x11, 0x3, 0x4007) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x80000000000000a, 0x2, 0x0) r2 = socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54) getsockopt$auto(r2, 0x84, 0x6d, 0x0, &(0x7f0000000280)=0x1000c0) getsockopt$auto(0x3, 0x6, 0xb, 0x0, 0x0) shutdown$auto(0x200000003, 0x2) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) semctl$auto_GETPID(0x0, 0x7ff, 0xb, 0xffff) recvmmsg$auto(0x3, 0x0, 0x10400, 0x3, 0x0) listen$auto(0x3, 0x3) 8.202373229s ago: executing program 3 (id=1967): pkey_free$auto(0x17) mmap$auto(0x0, 0x0, 0x7, 0xeb1, 0xffffffffffffffff, 0x100) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x402e00, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f00000001c0)) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0) read$auto(r0, 0x0, 0x1000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) close_range$auto(0x2, 0x8, 0x0) socket(0x11, 0x3, 0x4007) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x80000000000000a, 0x2, 0x0) r2 = socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54) getsockopt$auto(r2, 0x84, 0x6d, 0x0, &(0x7f0000000280)=0x1000c0) getsockopt$auto(0x3, 0x6, 0xb, 0x0, 0x0) shutdown$auto(0x200000003, 0x2) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) semctl$auto_GETPID(0x0, 0x7ff, 0xb, 0xffff) recvmmsg$auto(0x3, 0x0, 0x10400, 0x3, 0x0) listen$auto(0x3, 0x3) 8.124065427s ago: executing program 2 (id=1968): pkey_free$auto(0x17) mmap$auto(0x0, 0x0, 0x7, 0xeb1, 0xffffffffffffffff, 0x100) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x402e00, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f00000001c0)) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0) read$auto(r0, 0x0, 0x1000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) close_range$auto(0x2, 0x8, 0x0) socket(0x11, 0x3, 0x4007) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x80000000000000a, 0x2, 0x0) r2 = socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54) getsockopt$auto(r2, 0x84, 0x6d, 0x0, &(0x7f0000000280)=0x1000c0) getsockopt$auto(0x3, 0x6, 0xb, 0x0, 0x0) shutdown$auto(0x200000003, 0x2) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) semctl$auto_GETPID(0x0, 0x7ff, 0xb, 0xffff) recvmmsg$auto(0x3, 0x0, 0x10400, 0x3, 0x0) listen$auto(0x3, 0x3) 7.503017324s ago: executing program 1 (id=1969): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card1/pcm0p/sub6/xrun_injection\x00', 0x20000, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000680), 0xffffffffffffffff) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x2003f0, 0x15) pwrite64$auto(0xc8, &(0x7f0000000840)='\vX\xb5\x91p\xe6\x1eRN8\x99\x00\rs\x1cJ\x99\x00:c\x14\x1f>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2\xc6\xbd\xf2\xab\x96\x9e^\x86\xea\x8a\xd0\x9a-)\x8b\xefD\xc4\x14\xe4G\xa29u\xb7\xe1\a\xa2\xb0m\x98#\x15B\x890\xa9\xae\x8eon\xea\xbbJ\xaa\x9c\xfb5\xe3J8J-\xd7\x8d\xaa\x05\xd4g\t\x82\xb5\xb4\x15\xe1\x15\x1e+t7\x86\x9fv\xc9N\'\xf8\xb0', 0x4e, 0x1) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r3 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r4 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/dri/vgem/clients\x00', 0x60000, 0x0) read$auto_drm_debugfs_entry_fops_drm_debugfs(r4, &(0x7f0000000380)=""/138, 0x8a) getpid() syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000001c0), r3) sendmsg$auto_NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000006c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="14060000c15d84601e2405c30ac78efad9d69236b8971e0eb25a98f5511d363cf0b9d4d257d74c2d648456359cf5d828d665249f78f75114e79afddc338ab2874d14aa7962467a5cad5fc8f89d8ca69a0ad12e529141bc416525d6b598a309b25d131054f9743746e2934f77afd767b710e659bde6f02b78302e2e386f61e0574afd2d8f6c68058249b39e6df6e4b7f51ac04a84bc5e13d4ed179e850d1acee63ba9f735a46a2de9022334f3eb631b5b97a2c57a2000019e8c4ffbddbbf6b8da4e9fd3e2851071e5ab95ea", @ANYBLOB="08002dbd7000fddbdf256b000000"], 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x40) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) read$auto(r2, 0x0, 0xb4d3) socket$nl_generic(0x10, 0x3, 0x10) r5 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000009c0), 0x460000, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_PARAMS(r5, 0x40505412, &(0x7f0000000740)={0x8017, 0x6, 0x1a8, 0x1d5a, 0x1, "65c27c875731c1487a56c94040f33119db1b7cf3a9b1584b31ebb0f69b866a8dc75abf454c641729f2a35d2c08cf64f44e58a6ecd475e09d961d9b29"}) splice$auto(0x4, 0x0, 0x2, 0x0, 0x3, 0x9) write$auto(0x3, 0x0, 0xffd8) madvise$auto(0x0, 0xffffffffffff1001, 0x15) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/packets_per_slave\x00', 0x182b02, 0x0) write$auto(0x3, 0x0, 0xfdef) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) fsconfig$auto_FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000240)='\x82\x00', &(0x7f0000000080)="6b307d2d0a0090a2acad6438cdfc8bb7a7e62ef7e36ae176d626902d1fbb0400000047c58db75eaee3517d0e14e336ec369b45747062228ed7422493f4342bcfda39b9d198782d080257d37392ce8f9f7a447af77fdddece8c71e15244215948f60bad3871f53337f408e231c7cd99ddd217b33cac6ead3631ae5d2c2e3d6aeb06256871e73deadb424e493f94af7635d95a094c92c0540c42fb3d882daaa7264ef057057bb47845c2137ccc4379e706e97a3233e718c42fa73e7d8581c1570f0ea8e6ab85461c7541409a", 0x7fffffff) read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000e80)=""/215, 0xd7) openat$auto_hwsim_fops_ps_(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/ieee80211/phy1/hwsim/ps\x00', 0x240, 0x0) 5.4164971s ago: executing program 1 (id=1970): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x3, 0x66) madvise$auto(0x0, 0x20000a, 0x8) open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14abfd) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/lru_gen_full\x00', 0xc0000, 0x0) r1 = socket(0x1e, 0x6, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcbx\xb2\x18e\x95$\x9d\x804', 0x100000a3d9) setsockopt$auto(0xffffffffffffffff, 0x9, 0x69ce, &(0x7f0000000040)='(%}[\x00', 0x3) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400108, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/tty/ptyqe/power/control\x00', 0xa0b02, 0x0) r3 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/security/tomoyo/profile\x00', 0x48802, 0x0) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000500)=ANY=[@ANYBLOB="8ca5bb4499e811eb66894a43a53b41b942e56adc7caaac2c3a414c4db72306055e341abc9f6a39993e20b0a6aebb368c53eef5c14348e8ea8cf0ede646e75381f188c3a19872824ecc8a5299accc3b2d1582", @ANYRES16=0x0, @ANYBLOB="010029bd7000fddbdf251600000018000180140002006970766c616e3000000000000000000005000300670000000500040006"], 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x4040844) sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00002dbd7000fddb0025140000000800080002a0bdae668d95561c3051633b8a73af00000008001105000c000700000008000f000900000008000f0009000000"], 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x4) read$auto(r3, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0x70) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop7/trace/act_mask\x00', 0x40402, 0x0) write$auto(0x3, 0x0, 0xfdef) write$auto(0x3, 0x0, 0xfdef) 5.167640907s ago: executing program 2 (id=1971): mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/tty/ttyr3/dev\x00', 0x40200, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptye9\x00', 0x141e80, 0x0) fstat$auto(0x2, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) read$auto(0x3, 0x0, 0x80) 5.066259639s ago: executing program 3 (id=1972): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x8) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) 4.956810326s ago: executing program 2 (id=1973): r0 = socket(0x10, 0x2, 0x0) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_WOL_SET(r0, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000002d00)=ANY=[@ANYBLOB="18000000", @ANYRES16=r1, @ANYBLOB="f98a"], 0x18}, 0x1, 0x0, 0x0, 0x801}, 0x40) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) read$auto(0x3, 0x0, 0x7) 4.392706836s ago: executing program 3 (id=1974): mmap$auto(0x0, 0x2020009, 0xa, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0) read$auto(r0, 0x0, 0x7) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x9}, 0x3) prctl$auto_PR_SET_MM_START_DATA(0x6, 0x3, 0xffffffffffffffff, 0x2, 0x1) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) 4.194175358s ago: executing program 2 (id=1975): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x40007, 0x1000000005, 0x9b72, 0x2, 0x8000) userfaultfd$auto(0x1) ioctl$auto(0x3, 0xc018aa3f, 0xf0b) syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), r0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) socket(0xa, 0xa, 0x7ffe) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0) read$auto(r2, 0x0, 0x20) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0xa02, 0x0) unshare$auto(0x40000080) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000005, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) read$auto_objects_fops_(0xffffffffffffffff, &(0x7f0000000240)=""/66, 0x42) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x28800, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sg0\x00', 0x40200, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0) mmap$auto(0xfffffffffffffff9, 0x400003, 0x7, 0x9b72, 0x2, 0x8000) setsockopt$auto(0xffffffffffffffff, 0x1, 0x1021, 0x0, 0xd) close_range$auto(0x2, 0xa, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace\x00', 0x1a6b75d638828712, 0x0) sendfile$auto(r4, r3, 0x0, 0x1000202) 3.68571114s ago: executing program 3 (id=1976): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x110) getdents64$auto(r2, 0x0, 0x400) ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x5) ioctl$auto(r1, 0x4008af13, r0) 3.429996478s ago: executing program 3 (id=1977): pkey_free$auto(0x17) mmap$auto(0x0, 0x0, 0x7, 0xeb1, 0xffffffffffffffff, 0x100) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x402e00, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f00000001c0)) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0) read$auto(r0, 0x0, 0x1000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) symlink$auto(0x0, 0x0) socket(0x11, 0x3, 0x4007) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x80000000000000a, 0x2, 0x0) r1 = socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54) getsockopt$auto(r1, 0x84, 0x6d, 0x0, &(0x7f0000000280)=0x1000c0) getsockopt$auto(0x3, 0x6, 0xb, 0x0, 0x0) shutdown$auto(0x200000003, 0x2) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) semctl$auto_GETPID(0x0, 0x7ff, 0xb, 0xffff) recvmmsg$auto(0x3, 0x0, 0x10400, 0x3, 0x0) listen$auto(0x3, 0x3) 3.374406513s ago: executing program 0 (id=1978): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x40007, 0x1000000005, 0x9b72, 0x2, 0x8000) userfaultfd$auto(0x1) ioctl$auto(0x3, 0xc018aa3f, 0xf0b) syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), r0) r1 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) socket(0xa, 0xa, 0x7ffe) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0) read$auto(r3, 0x0, 0x20) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0xa02, 0x0) unshare$auto(0x40000080) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000005, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) read$auto_objects_fops_(r1, &(0x7f0000000240)=""/66, 0x42) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x28800, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sg0\x00', 0x40200, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0) mmap$auto(0xfffffffffffffff9, 0x400003, 0x7, 0x9b72, 0x2, 0x8000) setsockopt$auto(0xffffffffffffffff, 0x1, 0x1021, 0x0, 0xd) close_range$auto(0x2, 0xa, 0x0) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace\x00', 0x1a6b75d638828712, 0x0) sendfile$auto(r5, r4, 0x0, 0x1000202) 3.292160699s ago: executing program 1 (id=1979): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/driver/nvram\x00', 0x40000, 0x0) munmap$auto(0x8000, 0xffffffff) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) r0 = socket(0x2b, 0x1, 0x1) ioctl$auto(r0, 0x8983, 0x4) 3.073242569s ago: executing program 1 (id=1980): socket(0x2b, 0x1, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000) mremap$auto(0x200000000000, 0x40000000004, 0x4, 0x3, 0x100000000) close_range$auto(r0, 0x8, 0x100000) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) preadv2$auto(r1, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) 2.242974336s ago: executing program 2 (id=1981): pkey_free$auto(0x17) mmap$auto(0x0, 0x0, 0x7, 0xeb1, 0xffffffffffffffff, 0x100) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x402e00, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f00000001c0)) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0) read$auto(r0, 0x0, 0x1000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) symlink$auto(0x0, 0x0) socket(0x11, 0x3, 0x4007) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x80000000000000a, 0x2, 0x0) r2 = socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54) getsockopt$auto(r2, 0x84, 0x6d, 0x0, &(0x7f0000000280)=0x1000c0) getsockopt$auto(0x3, 0x6, 0xb, 0x0, 0x0) shutdown$auto(0x200000003, 0x2) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) semctl$auto_GETPID(0x0, 0x7ff, 0xb, 0xffff) recvmmsg$auto(0x3, 0x0, 0x10400, 0x3, 0x0) listen$auto(0x3, 0x3) 1.956342307s ago: executing program 0 (id=1982): unshare$auto(0x40000080) r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x40040, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000000), 0x40001, 0x0) write$auto(r0, 0x0, 0xfff) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) listmount$auto(0x0, &(0x7f00000001c0)=0x4, 0x4, 0x101) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/workqueue/nvme-reset-wq/cpumask\x00', 0x9c2342, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x15) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000afd003a5394e965231da1bd312e7af6d67d09340d0a4bd7805e18ac78f35cb77d1029c69e7270148078c13a91f6dff64055ad116"], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendfile$auto(r3, r2, 0x0, 0x4000000a1f) r4 = openat$auto_bm_entry_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/fs/binfmt_misc/syz0\x00', 0x28800, 0x0) r5 = openat$auto_ptdump_curusr_fops_(0xffffffffffffff9c, 0x0, 0x101000, 0x0) ioctl$auto(r3, 0x7, r5) readv$auto(r4, &(0x7f00000011c0)={0x0, 0x94}, 0x1) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x0, 0x5, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/block/loop14/queue/stable_writes\x00', 0x182b02, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0xc01) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/audit\x00', 0xc0c02, 0x0) pidfd_open$auto(0x1, 0x0) sendmsg$auto_NL80211_CMD_SET_CHANNEL(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000001200)={0x1130, 0x0, 0x8, 0x70bd25, 0x25dfdbfb, {}, [@NL80211_ATTR_MAC_ADDRS={0x10f0, 0xa6, 0x0, 0x1, [@typed={0x8, 0x14c, 0x0, 0x0, @u32=0x8}, @generic="7b821598b7f96e4822980fcf4347f047f7f763bd8b169fde3100452ef35daf8018e5e29aa3e839890d4012eccb963df27dc35c2ac687bf8a0fb8159a1104e0d3380c5ad753391dce0852d1221c463573235ba6b38f2c990c5bbcc7067b5ee2abfd2f631b9f8e66257e6126fe2b563d9469790fbf6e6f7f060bce4f3b295f86eab5428eb80894fb8803536246743778b0c9ec7fa031d0555668234fc127a42867ab96e8e6d3954171de5401f84d25c2d6e33ea743f2551ad208333226af2ef6b9124d874c194948d420b09e150afdfb936bc3f0c134d060e2d8b708b8377505e523dc15e64afc08fdda2be260f702182720b72f3782caeb6be86f94e8808ad7719ac126df1aefc701128f4731811f311419b3611908ce4ff912f7c9c434d1af136ebea7606de5844695f4f5a4bde5f551f01b20ceeac85c083ebe4548f544dba9358ebde9eea53ee52752e6bd01fc59abd6c13f93e5247c29a503a5816859920b3b649a30088c4bdc3293c9157dda23cf75b48b3bff74c2b4f315bc37383b6855feaa0b0d62649d304ceba75a298befd8b80367aa64757e9e1f167344674d4c5f682cd6d387211b46b18d6fffa5cc8568312428952864122b9626e08b6c4bfc284d35976dbafeb806de3ce43cda220f4794492e755945a012fb18c0aef9fceb2e96182be54ce975fe54d6622d036e255aedfd5ff7eb77ff774f1a0dc8eacdc18f94f0de006c7252e6677e9596de643acb4e695ba8640652b28f539c0352e0898b4a1ac5955d908707380970717c805d641e74cb3c355aab4449284eeca20d26d5efaea62492649d57bc677fa4de48d9f873bc2ba190c3830fe6d0ab6e64164ed52dec5af78c536c9fc1b4d3e9c958a18a029e222646a76a7cdd77c2bd722c5b3cb5584e2f2338fed0f4050287ce762de5195bd4d19522eface96286b95f095e27e413dbbbe3824487f0f1398f8a9dc16fbb0ee065ff202e76027894eb5e88778298943fc7248f89918dbd250ce2a9df66a15df505dc3904c4d42e780d9c610cc5892201360a55cea4665e5e35e572adb51a16b85cb5a23fdd22a49889d22bd6d1f1d6e3338d2de8decb50125aeeaca4a5ce3b33d15686445a1999a444c5d51d4d18d5b675f2adda73622e68a7014d74f44e3adbfa66be725fbf41c1a8e682668140335b16393e5785702c8845efbb35468c1fe529ee7ecf86c75150ff2fb6ba73b99a9c469058c5969e2e012d8d962a68888f0662c5dc4d7e968b7908bb786c0f49aafe8f0ccbee0071d31c80a2687e4b57d62738f880413c8e3a4ef7cca91f6273d645c377d40717ffcf1f87b5b8b535e924a6c0df60ace98b9673a1e91da8fcd4553ee8f24afd600acb8d12c58158ed3624d03f3ce6437da64af55d474affde10ad6a58697a6a51b07c88a1998b39c4c8f1cd66ac89f3eebbd9a3c68231d116e2f1e9407dd0e8f06b91a33d56589308f5196b0b97a0597f04acdc7fa5ebd5f2da65a8edcf0f8d2397fdd57f66d51cb296464b0fba93bfd68b22dc62a3ed7c0b0d791f28e3dbbcc736226ec5170cdd537e9f2b468d39b6a7a07df57312b04ac9366a20529c416436045ce82e63698108dc1442004de30a55e93b31540e172175824e2463f24de3858807fcf58919dc8a8314e734eab70f3828bfbfbe8dc83d6ef9fefab99d96d8fea30edf2d40a5a2931f9f77d687fae3ede7aa3d849e038ee221431b33144cff6d9e5e803cfa8aa8ab9bf67c85905cc7dbd7cc89003f21bd0d458553f3783ab63882a9d2c3d3752f183ae57f007a592653b33635e7abf8b31ed8a4acb1e8f110e4dff4692d6344a18d24c257e960ab47eb69007d02c5ceda2c9c35e18f9b2031e63c29b9be288551764fd06b8527d4d362520f0b72e0729aa5d5977d556489372534ea57c2d551a29721c6d6d5ca23b9de6bceac41f0eeddce2a62d3b873751782f8b3d7e31fb75519056a3b77d8e09c7dd0a8a1ae0381b69ade928935ad27576d8352e232a2820b70af5e488a2165ada3c64ab0e378ef9a1cbdde2b2173423c7f64b104ae79c30fc98ddf28e9376c1c9f4ff40e0ee4fa185b2ebbe6082e4c90821ce8d8cb1ac96b167127a6e10f61ca96f817673cb46799f1569a8688507f5c38aef34c2b69bd6c15e46cbd4b74b9774572d1a09e6cf3d8a3ee80a9f6d482702623d3beeaa0602d9d427e648c1294da9b7b5396524b0b4076e263ab49345e0b51b7f71243841dbb11506d751d76de9dd8313187000827646224ba28d5ff922583dfdab1a4fd1a376396a2fd2ade5878f3ffd8b0daf3a76785880b0653a6b21425700f0c029983f6d3e8956e6a58cdf41c2fd4327dcef4a9307eae580b866604337ba527078320334ce129a144c86dfee39060b5851f1e8e19e9cf862c66de2de4c5350fc7ef554319bce825b85a29e9ddfd5a24175fc48c4534ae31c42a9ca320fc382271776603f47070bc33ec39a17abd4d3de6e23c3eee65968b982ef3e7539ef50df05591f11d063dce71405fb785f76db2daf3a72b6514de265be14cb71b5351ffe1440e87f743665630f0b77057d161575dee2e434fe05db179d8120278fafc8f91dcf3b6dc6d5fe83ca6fc39e31d40f85164422b0196a361ed582c17208103f45a7638409e47a3baa22e26e6d9ba14c25c9db0380f084354e61bef3d57e76805131e95348c48dff567ffed9e7d26ed11d2d074af9308c925098b8ab43146e8935b03206bf900ea337fdf5ac956438617087a1ec608e45f7f06ceff9233cde7228ad7c2b6b0e0c0a4514f20bd98b37177ffb5cc236d7b8fa1992e72abe190d53d43ceb4dd92b06f250aa5c61a73c99de626f32e00e287faa6695b43a625cd9f7fdf69eeaced4cae21adfedc96ae9d4ed985dfefaeaffc315f42b37ddf1c36fb1c2c9d0270b9453cc85ec7feec070f6160e3dc5c6ab5b3296f857d803a8c40a92d72265a45b477873ec0daa3a8fb90613844f876e40c76f3e838bb0334e8d76a6b610fd0570f6d54efd5a6cf7289f222a1614d4edc2e1ff1998f259e4c09ac79ff63bdcb4d7b8e6dd0667bf68bb9ab7eba501f5f0b16f0f4282ac50b3f5574383096ef8c8500007ee79be82962e562cde99c8267828fb328bf321205dda831f42b1522b1825dabe1895e5f46f3910b7ec216313f473ebce6134b0464462ea8bf741083ac9f0c03e9fafa66228fdab6c2530c3877e55c40087bac71aafa9519f1a56a47277ae10c283f6ed65926368582259ffef70896bcd3db878b2bc05ce4ad16c8da23086b9822e9ba6b9d5add765a127bf12a48a5687701f3fa6b1ee83f31d3d749df51db266f5c5bbe1ffbf7d97d8f10ae6448ab4b021f6db3c2f747f19d528dd6ea94ea4a4564289873882c558a445f083b366cee94afd0215eeac6dbf203e570d5461f957522894795f61d6b03d6ed92001a2ed83fe6a8787e6f85b53a109743d53b7876d830cf27ffef5c956d8a94d81b8d1ba3616b3fc8ff49e4e857285fd4c306ca336ecbee59f8de98bcf451c8c55bc18aa000c7a54d9d9edbf91192e1ab65cc901eb24e1238a2e16c1bba914585333fa8d528f385841a54d5c3491d562ca470e54774885b063a013d1c31f91f880d2f5e408b2f0d6e698df41ea80cfc61b4a7e85661252ba849c473cd5badcc95fe9084fb39bb172c177feab2b49de12fcfbcf8148e82a6ba14dfe8862558c7054ac2d8d5ccd9b89f6444c896595df9fe5b5295596caf1e494a709595ca23317d849a911ba98718a5788fbe2772b7e16279f57ba9b7f277ce0d65f9283bd5df42da8af94904fa9f0a812237c69876fc47d8b591b51700c14c2179ffe7ed7f090e28e2b16c5e11ebd25be7c6c601ce9965302bfb709336120f3a893c068ab975aeb1f125bbccfdf18da5028a11bc570e9313d64ff77067439bd8564959b461b141b77cbc8447dc141e78f856a54c5081d20a333f26bdc3dbaee7ffb6a3ace5a0beaf34240e06a69a60e4e2323247461bd00b6adb40cae98f5461fb9872e0be3e3ca8f363cf6aac298fee776d32426c3078350a936df534223abcf235ac06c0d658152bfc00903af351b4aaf8d92b909fee802cce01153ab011c59aca4abbf85cf007f10f6934f43b490aa65442ab93fd5585ef32b30563f3b5ff5606183aeda90baa1e5df3aaaaede2edf6a52bfc131fbf94b5b069a560b8be0578fcb456a825618f830094d585b48343686b9d397a55f4a2122cf6d186aa5f5a873d510b60d7d49b9c198f1f645870fa00652e0a6f294bf4d1879add56448683c26e8ee8a9e90eae42af8edd19e0c10a5e0b846a4ba5877c2ff295b41603140dd48dc32fe1289c5f26d7a192fd8cdaf8cbe80ecb0cba63c4796792daf500933f7c9f2783100c7791960bdb086f372cf23cf5a905c26aa3083912151d7de5cc705b9227c488f164b7dde0bc617bb83c8e91b57fca5ced7ac9fb727088eb402e52f1c62ad24a19ac1edf6d5a3123a91a9fbab97256b8591198ef48708e609c840e7d74afef7728fce50aeb6c6f1d900b34e909bab61b1d78c8a333eb75516402c2d57ccb84c3196a816c8b7d435dff1d03cd0e55124fa780b425dd6c43f3cffef3d8fe35c06bf8d98e332dd67ee92c23ef18afb008ecc250c91745d082973265d6f429a104eab203d5ee1a8c957d60c5a9ba890605e5f1c1c340f7c78f9e66013b0945f9037359cd6a2e9b51a6a0e95ffbd39b8f92c84658c75b966ad8a40cc76434d272c741ba6c55e935338fcb82a596c98e5b7e91a4204de18d7c434b0a0f823b96a90bb7032120c5bd5af2329b5dc4c700de78465afb98f7049e803c299f3c453562656a1a9daeed097917234b241085240e70ee1b2417f91f3743c0770a15382d9a3195f40204fcbfb21db8ef8bfb7bb0b61b20f05d077978e0a091574cfd6a960f7b8c7432a4c5a4c32568a218acbaafa75b23b19996506ea1b7f46fc5b8cd18ca4e6e40ae72c38e12617f3dd9a4471ba9c9bdc07dc9c1e7333a719e2b79f531ea9db1f86d6f260bf07b707a205c7b2025b424a946b98558c0ec4e3b663da56fe0af2a478045c4d4cd4c4322a96aa6a67f745867fce096256dd751ff43e73925a6ef699de2f5e1ebb6ce301407c8c963dce2f18cae3ddc841289d45205680458770568a05262fc6f6b96230c156d8ec000f5b13e8051135a7171f646a832518b30bfa0e2b9216f99979b0c17226b2454006e20cedf16157fe46e18b68aa1b0aca71e7d65acba22d527a77bed6a470ae2325c9b38fd3b1712dd2f028460e78ea3753e0d85a83be736d95b59cee6deb3e9606c69063d2d17362dae6696f50a73e582f174d0d07803aaa0c4610e0f7f71406f83a87fd99eba341d72fe034c5618f70a21f1baa687b42d5650ca7cd31582b0e705bb2ac010a2128041df723cf6d846a4e8cd8e2bb345029b1deb6b3e334cfb822f57abfba6233018c11b42158268dc66eb6c32f62f0e6da3560374ee5c96e92e93b2ba66fa3ab26d4d0196eafbf16a67c694f5619d57681990ea99fcc0f20b5d5cf62a64935ac3ff0afc24481eb387c3744e7fa8afed6401125a56427ccee11df906f9aa15b8da713ba8d37b573d961c41298c23c84c490fb0f0bd4c54300c2b39c39db38e489f1973b28a70a6deb4ede960bd59c2f971050fca604827e86d1bbb98081d9f4086b61585f90a2c13154ecb8706b52b37904d50fa8aa77a2f8156700c99e8ca973bee603c6c2447ac0b710478aa84d55e6c51d56189fec707cf132b124fc1200095cee7a8177a3dac922c747aedce85b466", @generic="f81ff7a580a1c89a67247c22e6ba908db0240c4c1749f170061dbf34359297fff4e65d9d12a524abeafbb71741a715f52feee48d8087e08c1f2a8d052b2edec722f2661b161f8c70dbaee7f5185568cb50d7a130d2bb88a3777028672710422ca58eeec533fb1cdc4b5f3fd55a3c52129d3d7ba175d08796e8ee8c006ea9a250af9b45ba1a790dcdd8ca004d5fd2e303f62651ada71194d91500b0fdb3353c80c7f8fe66dea99f28e10e6c1d6be2fb5572939ab3182dbb9e522a8d39d721c32da7642f8014846f99661dcaab1cff6507852c5827d69fd3d6b9530b9fbfe2694da6b32f29"]}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_MDID={0x6, 0xb1, 0x6}, @NL80211_ATTR_SMPS_MODE={0x5, 0xd5, 0x2}, @NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x2}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x8}, @NL80211_ATTR_INACTIVITY_TIMEOUT={0x6, 0x96, 0xfffa}]}, 0x1130}, 0x1, 0x0, 0x0, 0x4}, 0x4040) 1.417084795s ago: executing program 1 (id=1983): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000001a00)='/dev/binderfs/binder0\x00', 0x0, 0x0) ioctl$auto_BINDER_GET_NODE_INFO_FOR_REF(r0, 0xc018620c, 0x0) madvise$auto(0x0, 0xffffffffffff0004, 0x19) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x8000000000000000, 0x15) get_robust_list$auto(0x0, 0x0, 0x0) 577.465495ms ago: executing program 0 (id=1984): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';') r1 = openat$auto_rfkill_fops_core(0xffffffffffffff9c, 0x0, 0x40, 0x0) ioctl$auto(0x3, 0x40086200, r1) 253.725618ms ago: executing program 0 (id=1985): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$auto(0x3, 0x80046f49, r0) 0s ago: executing program 1 (id=1986): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x3, 0x66) madvise$auto(0x0, 0x20000a, 0x8) open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14abfd) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/lru_gen_full\x00', 0xc0000, 0x0) r1 = socket(0x1e, 0x6, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcbx\xb2\x18e\x95$\x9d\x804', 0x100000a3d9) setsockopt$auto(0xffffffffffffffff, 0x9, 0x69ce, &(0x7f0000000040)='(%}[\x00', 0x3) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400108, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/tty/ptyqe/power/control\x00', 0xa0b02, 0x0) r3 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/security/tomoyo/profile\x00', 0x48802, 0x0) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000500)=ANY=[@ANYBLOB="8ca5bb4499e811eb66894a43a53b41b942e56adc7caaac2c3a414c4db72306055e341abc9f6a39993e20b0a6aebb368c53eef5c14348e8ea8cf0ede646e75381f188c3a19872824ecc8a5299accc3b2d1582", @ANYRES16=0x0, @ANYBLOB="010029bd7000fddbdf251600000018000180140002006970766c616e30000000000000000000050003006700000005000400060000"], 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x4040844) sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00002dbd7000fddb0025140000000800080002a0bdae668d95561c3051633b8a73af00000008001105000c000700000008000f000900000008000f0009000000"], 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x4) read$auto(r3, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0x70) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop7/trace/act_mask\x00', 0x40402, 0x0) write$auto(0x3, 0x0, 0xfdef) write$auto(0x3, 0x0, 0xfdef) kernel console output (not intermixed with test programs): e Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 380.863929][ T9797] Call Trace: [ 380.863941][ T9797] [ 380.863955][ T9797] dump_stack_lvl+0x16c/0x1f0 [ 380.864008][ T9797] should_fail_ex+0x512/0x640 [ 380.864058][ T9797] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 380.864106][ T9797] should_failslab+0xc2/0x120 [ 380.864154][ T9797] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 380.864197][ T9797] ? __proc_create+0x145/0x8e0 [ 380.864246][ T9797] ? __proc_create+0x2ce/0x8e0 [ 380.864304][ T9797] __proc_create+0x2ce/0x8e0 [ 380.864357][ T9797] ? __pfx___proc_create+0x10/0x10 [ 380.864415][ T9797] ? _raw_write_unlock+0x28/0x50 [ 380.864460][ T9797] ? proc_register+0x314/0x5f0 [ 380.864515][ T9797] proc_create_reg+0x7d/0x180 [ 380.864577][ T9797] proc_create_net_data+0x8e/0x1c0 [ 380.864633][ T9797] ? __pfx_proc_create_net_data+0x10/0x10 [ 380.864698][ T9797] ? __pfx_uevent_net_rcv+0x10/0x10 [ 380.864760][ T9797] ? __pfx_dev_proc_net_init+0x10/0x10 [ 380.864802][ T9797] dev_proc_net_init+0xf9/0x220 [ 380.864844][ T9797] ops_init+0x1e2/0x5f0 [ 380.864899][ T9797] setup_net+0x10f/0x380 [ 380.864945][ T9797] ? lockdep_init_map_type+0x5c/0x280 [ 380.864994][ T9797] ? __pfx_setup_net+0x10/0x10 [ 380.865047][ T9797] ? debug_mutex_init+0x37/0x70 [ 380.865086][ T9797] copy_net_ns+0x2a6/0x5f0 [ 380.865144][ T9797] create_new_namespaces+0x3ea/0xa90 [ 380.865193][ T9797] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 380.865239][ T9797] ksys_unshare+0x45b/0xa40 [ 380.865287][ T9797] ? __pfx_ksys_unshare+0x10/0x10 [ 380.865337][ T9797] ? xfd_validate_state+0x61/0x180 [ 380.865401][ T9797] __x64_sys_unshare+0x31/0x40 [ 380.865448][ T9797] do_syscall_64+0xcd/0x490 [ 380.865500][ T9797] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 380.865535][ T9797] RIP: 0033:0x7f45fa58ebe9 [ 380.865563][ T9797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 380.865598][ T9797] RSP: 002b:00007f45f87d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 380.865631][ T9797] RAX: ffffffffffffffda RBX: 00007f45fa7b6180 RCX: 00007f45fa58ebe9 [ 380.865664][ T9797] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 380.865686][ T9797] RBP: 00007f45fa611e19 R08: 0000000000000000 R09: 0000000000000000 [ 380.865706][ T9797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 380.865727][ T9797] R13: 00007f45fa7b6218 R14: 00007f45fa7b6180 R15: 00007ffe8e2e3f78 [ 380.865773][ T9797] [ 381.600668][ T9813] netlink: 146 bytes leftover after parsing attributes in process `syz.0.410'. [ 383.190407][ T30] audit: type=1800 audit(1756496356.461:7): pid=9833 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.421" name="members" dev="configfs" ino=34031 res=0 errno=0 [ 383.553254][ T9833] FAULT_INJECTION: forcing a failure. [ 383.553254][ T9833] name failslab, interval 1, probability 0, space 0, times 0 [ 383.568835][ T9833] CPU: 1 UID: 0 PID: 9833 Comm: syz.1.421 Not tainted syzkaller #0 PREEMPT(full) [ 383.568879][ T9833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 383.568901][ T9833] Call Trace: [ 383.568912][ T9833] [ 383.568925][ T9833] dump_stack_lvl+0x16c/0x1f0 [ 383.568982][ T9833] should_fail_ex+0x512/0x640 [ 383.569030][ T9833] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 383.569077][ T9833] should_failslab+0xc2/0x120 [ 383.569124][ T9833] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 383.569166][ T9833] ? __proc_create+0xc3/0x8e0 [ 383.569214][ T9833] ? __proc_create+0x2ce/0x8e0 [ 383.569272][ T9833] __proc_create+0x2ce/0x8e0 [ 383.569324][ T9833] ? __pfx___proc_create+0x10/0x10 [ 383.569383][ T9833] ? _raw_write_unlock+0x28/0x50 [ 383.569426][ T9833] ? proc_register+0x314/0x5f0 [ 383.569493][ T9833] proc_create_reg+0x7d/0x180 [ 383.569552][ T9833] proc_create_net_data+0x8e/0x1c0 [ 383.569606][ T9833] ? __pfx_proc_create_net_data+0x10/0x10 [ 383.569661][ T9833] ? __pfx_uevent_net_rcv+0x10/0x10 [ 383.569724][ T9833] ? __pfx_dev_proc_net_init+0x10/0x10 [ 383.569766][ T9833] dev_proc_net_init+0xf9/0x220 [ 383.569808][ T9833] ops_init+0x1e2/0x5f0 [ 383.569862][ T9833] setup_net+0x10f/0x380 [ 383.569908][ T9833] ? lockdep_init_map_type+0x5c/0x280 [ 383.569958][ T9833] ? __pfx_setup_net+0x10/0x10 [ 383.570010][ T9833] ? debug_mutex_init+0x37/0x70 [ 383.570050][ T9833] copy_net_ns+0x2a6/0x5f0 [ 383.570109][ T9833] create_new_namespaces+0x3ea/0xa90 [ 383.570159][ T9833] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 383.570205][ T9833] ksys_unshare+0x45b/0xa40 [ 383.570254][ T9833] ? __pfx_ksys_unshare+0x10/0x10 [ 383.570305][ T9833] ? xfd_validate_state+0x61/0x180 [ 383.570369][ T9833] __x64_sys_unshare+0x31/0x40 [ 383.570418][ T9833] do_syscall_64+0xcd/0x490 [ 383.570469][ T9833] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 383.570512][ T9833] RIP: 0033:0x7ff6a6d8ebe9 [ 383.570540][ T9833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 383.570574][ T9833] RSP: 002b:00007ff6a7bb9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 383.570607][ T9833] RAX: ffffffffffffffda RBX: 00007ff6a6fb6270 RCX: 00007ff6a6d8ebe9 [ 383.570630][ T9833] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 383.570652][ T9833] RBP: 00007ff6a6e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 383.570673][ T9833] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 383.570695][ T9833] R13: 00007ff6a6fb6308 R14: 00007ff6a6fb6270 R15: 00007ffe417be008 [ 383.570739][ T9833] [ 383.897325][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 383.907422][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 385.726914][ T9853] FAULT_INJECTION: forcing a failure. [ 385.726914][ T9853] name failslab, interval 1, probability 0, space 0, times 0 [ 385.762685][ T9853] CPU: 0 UID: 0 PID: 9853 Comm: syz.0.416 Not tainted syzkaller #0 PREEMPT(full) [ 385.762733][ T9853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 385.762754][ T9853] Call Trace: [ 385.762766][ T9853] [ 385.762778][ T9853] dump_stack_lvl+0x16c/0x1f0 [ 385.762833][ T9853] should_fail_ex+0x512/0x640 [ 385.762881][ T9853] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 385.762923][ T9853] should_failslab+0xc2/0x120 [ 385.762970][ T9853] __kmalloc_cache_noprof+0x6a/0x3e0 [ 385.763008][ T9853] ? fuse_dev_alloc+0x48/0x280 [ 385.763067][ T9853] fuse_dev_alloc+0x48/0x280 [ 385.763122][ T9853] fuse_dev_alloc_install+0x13/0x40 [ 385.763177][ T9853] cuse_channel_open+0x100/0x7f0 [ 385.763228][ T9853] ? __pfx_cuse_channel_open+0x10/0x10 [ 385.763291][ T9853] misc_open+0x35d/0x420 [ 385.763330][ T9853] ? __pfx_misc_open+0x10/0x10 [ 385.763366][ T9853] chrdev_open+0x234/0x6a0 [ 385.763412][ T9853] ? __pfx_apparmor_file_open+0x10/0x10 [ 385.763452][ T9853] ? __pfx_chrdev_open+0x10/0x10 [ 385.763498][ T9853] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 385.763546][ T9853] do_dentry_open+0x982/0x1530 [ 385.763590][ T9853] ? __pfx_chrdev_open+0x10/0x10 [ 385.763645][ T9853] vfs_open+0x82/0x3f0 [ 385.763702][ T9853] path_openat+0x1de4/0x2cb0 [ 385.763758][ T9853] ? __pfx_path_openat+0x10/0x10 [ 385.763811][ T9853] do_filp_open+0x20b/0x470 [ 385.763853][ T9853] ? __pfx_do_filp_open+0x10/0x10 [ 385.763932][ T9853] ? alloc_fd+0x471/0x7d0 [ 385.763982][ T9853] do_sys_openat2+0x11b/0x1d0 [ 385.764036][ T9853] ? __pfx_do_sys_openat2+0x10/0x10 [ 385.764109][ T9853] __x64_sys_openat+0x174/0x210 [ 385.764163][ T9853] ? __pfx___x64_sys_openat+0x10/0x10 [ 385.764236][ T9853] do_syscall_64+0xcd/0x490 [ 385.764297][ T9853] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 385.764332][ T9853] RIP: 0033:0x7f86c438ebe9 [ 385.764360][ T9853] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 385.764394][ T9853] RSP: 002b:00007f86c51f3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 385.764426][ T9853] RAX: ffffffffffffffda RBX: 00007f86c45b6270 RCX: 00007f86c438ebe9 [ 385.764448][ T9853] RDX: 0000000000041000 RSI: 00002000000001c0 RDI: ffffffffffffff9c [ 385.764471][ T9853] RBP: 00007f86c4411e19 R08: 0000000000000000 R09: 0000000000000000 [ 385.764492][ T9853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 385.764512][ T9853] R13: 00007f86c45b6308 R14: 00007f86c45b6270 R15: 00007ffd94aafff8 [ 385.764555][ T9853] [ 386.017156][ C0] vkms_vblank_simulate: vblank timer overrun [ 386.596770][ T9859] vhci_hcd: not connected 4 [ 386.796065][ T9865] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input41 [ 387.436261][ T9868] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input42 [ 388.002395][ T9882] netlink: 146 bytes leftover after parsing attributes in process `syz.2.424'. [ 388.780798][ T9891] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input43 [ 388.985177][ T5858] Process accounting resumed [ 390.465436][ T9918] process 'syz.2.430' launched './file0' with NULL argv: empty string added [ 396.525715][ T9979] vhci_hcd: SetHubDepth req not supported for USB 2.0 roothub [ 397.223564][ T30] audit: type=1800 audit(1756496370.491:8): pid=9990 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.441" name="features" dev="configfs" ino=33738 res=0 errno=0 [ 403.929600][T10090] nbd: couldn't find device at index 137 [ 405.251106][T10103] netlink: 146 bytes leftover after parsing attributes in process `syz.3.453'. [ 405.852691][T10111] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 406.359774][T10125] vivid-003: ================= START STATUS ================= [ 406.615929][T10125] vivid-003: Radio HW Seek Mode: Bounded [ 406.628682][T10125] vivid-003: Radio Programmable HW Seek: false [ 406.634945][T10125] vivid-003: RDS Rx I/O Mode: Block I/O [ 406.714955][T10125] vivid-003: Generate RBDS Instead of RDS: false [ 406.881723][T10125] vivid-003: RDS Reception: true [ 406.886761][T10125] vivid-003: RDS Program Type: 0 inactive [ 406.928305][T10125] vivid-003: RDS PS Name: inactive [ 406.944962][T10125] vivid-003: RDS Radio Text: inactive [ 406.954976][T10125] vivid-003: RDS Traffic Announcement: false inactive [ 406.964466][T10125] vivid-003: RDS Traffic Program: false inactive [ 407.030035][T10125] vivid-003: RDS Music: false inactive [ 407.036814][T10125] vivid-003: ================== END STATUS ================== [ 408.652680][T10144] netlink: 146 bytes leftover after parsing attributes in process `syz.3.459'. [ 411.597287][T10173] netlink: 146 bytes leftover after parsing attributes in process `syz.2.465'. [ 413.092026][T10190] random: crng reseeded on system resumption [ 413.476190][T10190] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 413.531033][T10190] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 415.339060][T10216] netlink: 4 bytes leftover after parsing attributes in process `syz.3.470'. [ 417.265733][T10255] netlink: 146 bytes leftover after parsing attributes in process `syz.2.482'. [ 417.732182][T10259] vhci_hcd: invalid port number 21 [ 419.308294][T10289] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input44 [ 420.252492][T10290] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input45 [ 421.808601][ T5187] Bluetooth: hci1: command 0x0406 tx timeout [ 425.733498][T10349] vivid-003: ================= START STATUS ================= [ 425.744973][T10349] vivid-003: Radio HW Seek Mode: Bounded [ 425.756500][T10349] vivid-003: Radio Programmable HW Seek: false [ 425.765167][T10349] vivid-003: RDS Rx I/O Mode: Block I/O [ 425.771896][T10349] vivid-003: Generate RBDS Instead of RDS: false [ 425.782792][T10349] vivid-003: RDS Reception: true [ 425.787820][T10349] vivid-003: RDS Program Type: 0 inactive [ 425.794474][T10349] vivid-003: RDS PS Name: inactive [ 425.819978][T10349] vivid-003: RDS Radio Text: inactive [ 425.825835][T10349] vivid-003: RDS Traffic Announcement: false inactive [ 425.832999][T10349] vivid-003: RDS Traffic Program: false inactive [ 425.841998][T10349] vivid-003: RDS Music: false inactive [ 425.847701][T10349] vivid-003: ================== END STATUS ================== [ 427.790481][T10385] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size [ 428.623342][T10395] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input46 [ 428.672025][ T5937] Process accounting resumed [ 429.870643][T10400] vhci_hcd: not connected 4 [ 435.495130][T10473] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input47 [ 435.673393][ T5937] Process accounting resumed [ 436.236699][T10469] vhci_hcd: not connected 4 [ 436.838255][T10493] vivid-003: ================= START STATUS ================= [ 437.057410][T10493] vivid-003: Radio HW Seek Mode: Bounded [ 437.176444][T10493] vivid-003: Radio Programmable HW Seek: false [ 437.240475][T10493] vivid-003: RDS Rx I/O Mode: Block I/O [ 437.249507][T10493] vivid-003: Generate RBDS Instead of RDS: false [ 437.256108][T10493] vivid-003: RDS Reception: true [ 437.261399][T10493] vivid-003: RDS Program Type: 0 inactive [ 437.267378][T10493] vivid-003: RDS PS Name: inactive [ 437.272831][T10493] vivid-003: RDS Radio Text: inactive [ 437.278555][T10493] vivid-003: RDS Traffic Announcement: false inactive [ 437.285539][T10493] vivid-003: RDS Traffic Program: false inactive [ 437.292177][T10493] vivid-003: RDS Music: false inactive [ 437.297828][T10493] vivid-003: ================== END STATUS ================== [ 440.234216][ T30] audit: type=1800 audit(1756496413.491:9): pid=10545 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.520" name="members" dev="configfs" ino=36801 res=0 errno=0 [ 443.221834][T10580] nbd: couldn't find device at index 137 [ 444.812365][T10591] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 445.353260][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.361749][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 445.679424][T10603] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input48 [ 445.761046][T10604] Process accounting resumed [ 447.172909][T10612] netlink: 268 bytes leftover after parsing attributes in process `syz.3.530'. [ 450.423215][T10657] phram: not enough arguments [ 450.494093][T10657] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xfffffd12 [ 455.493051][ T30] audit: type=1800 audit(1756496428.741:10): pid=10722 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.546" name="members" dev="configfs" ino=38216 res=0 errno=0 [ 455.936789][T10730] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 456.003207][T10727] netlink: 146 bytes leftover after parsing attributes in process `syz.1.545'. [ 457.787854][T10756] netlink: 146 bytes leftover after parsing attributes in process `syz.3.560'. [ 458.004005][T10761] bridge0: port 3(batadv0) entered blocking state [ 458.141313][T10761] bridge0: port 3(batadv0) entered disabled state [ 458.164662][T10761] batadv0: entered allmulticast mode [ 458.236847][T10761] batadv0: entered promiscuous mode [ 458.297269][T10761] bridge0: port 3(batadv0) entered blocking state [ 458.305030][T10761] bridge0: port 3(batadv0) entered forwarding state [ 458.369445][T10760] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input49 [ 458.509163][ T12] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 458.518693][ T12] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 459.111174][T10764] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input50 [ 460.904814][T10780] random: crng reseeded on system resumption [ 462.770212][ T5187] Bluetooth: hci0: command 0x0406 tx timeout [ 464.410696][T10815] netlink: 28 bytes leftover after parsing attributes in process `syz.1.563'. [ 465.178589][ T30] audit: type=1800 audit(1756496438.441:11): pid=10835 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.564" name="file0" dev="tmpfs" ino=864 res=0 errno=0 [ 468.665484][T10874] random: crng reseeded on system resumption [ 470.770306][T10894] netlink: 28 bytes leftover after parsing attributes in process `syz.0.574'. [ 471.581585][T10911] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 471.612677][T10911] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 472.025443][T10911] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 472.278583][T10911] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 472.313360][T10911] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 472.319639][T10911] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 472.524154][T10911] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 472.587147][T10911] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 472.704590][T10911] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 473.648553][ T5187] Bluetooth: hci2: command 0x0406 tx timeout [ 474.063382][ T5187] Bluetooth: hci1: command 0x0406 tx timeout [ 474.368719][ T5187] Bluetooth: hci0: command 0x0406 tx timeout [ 474.528498][ T5187] Bluetooth: hci3: command 0x0c1a tx timeout [ 475.728570][ T5187] Bluetooth: hci2: command 0x0406 tx timeout [ 476.165852][ T5187] Bluetooth: hci1: command 0x0406 tx timeout [ 476.458756][ T5187] Bluetooth: hci0: command 0x0406 tx timeout [ 476.557470][T10967] netlink: 28 bytes leftover after parsing attributes in process `syz.2.586'. [ 476.608698][ T5187] Bluetooth: hci3: command 0x0c1a tx timeout [ 478.193144][T11005] netlink: 330 bytes leftover after parsing attributes in process `syz.1.591'. [ 478.272837][T11005] mac80211_hwsim hwsim48 : renamed from wlan0 (while UP) [ 478.699147][ T5187] Bluetooth: hci3: command 0x0c1a tx timeout [ 479.190130][T11010] phram: not enough arguments [ 479.220758][T11010] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xfffffd12 [ 482.100526][ T30] audit: type=1800 audit(1756496455.371:12): pid=11048 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.599" name="members" dev="configfs" ino=38699 res=0 errno=0 [ 483.709341][T11066] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input51 [ 484.087153][T11069] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input52 [ 485.486651][ T30] audit: type=1800 audit(1756496458.741:13): pid=11091 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.607" name="members" dev="configfs" ino=39232 res=0 errno=0 [ 487.718231][T11115] random: crng reseeded on system resumption [ 488.156256][T11113] ptp ptp0: only physical clock in use now [ 489.440855][ T30] audit: type=1326 audit(1756496462.701:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11122 comm="syz.3.613" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f45fa58ebe9 code=0x0 [ 490.098625][ T30] audit: type=1800 audit(1756496463.361:15): pid=11138 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.616" name="members" dev="configfs" ino=40018 res=0 errno=0 [ 490.764395][T11133] netlink: 268 bytes leftover after parsing attributes in process `syz.0.615'. [ 491.719089][T11145] sd 0:0:1:0: PR command failed: 1026 [ 491.724567][T11145] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 491.843427][T11145] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 493.189626][T11169] random: crng reseeded on system resumption [ 497.726263][ T5187] Bluetooth: hci1: unexpected event 0x02 length: 726 > 260 [ 499.240514][T11237] zram: Removed device: zram0 [ 501.907169][T11268] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 501.930364][T11268] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 501.973861][T11268] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 502.015028][T11268] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 503.978943][ T5871] Bluetooth: hci1: command 0x0406 tx timeout [ 503.978951][ T5187] Bluetooth: hci2: command 0x0406 tx timeout [ 504.048640][ T5871] Bluetooth: hci3: command 0x0c1a tx timeout [ 504.048650][ T5187] Bluetooth: hci0: command 0x0406 tx timeout [ 504.323445][T11316] netlink: 146 bytes leftover after parsing attributes in process `syz.1.643'. [ 506.783748][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.790345][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 508.534640][T11370] netlink: 146 bytes leftover after parsing attributes in process `syz.1.653'. [ 509.219031][T11385] netlink: 146 bytes leftover after parsing attributes in process `syz.2.656'. [ 509.560574][ T30] audit: type=1800 audit(1756496482.821:16): pid=11391 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.654" name="members" dev="configfs" ino=39786 res=0 errno=0 [ 510.861482][T11399] netlink: ct family unspecified [ 512.225388][T11419] input: f as /devices/virtual/input/input53 [ 512.745731][T11428] netlink: 326 bytes leftover after parsing attributes in process `syz.3.665'. [ 515.635066][T11481] netlink: 146 bytes leftover after parsing attributes in process `syz.2.670'. [ 519.183148][T11531] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 520.155764][T11554] Console: switching to colour frame buffer device 128x48 [ 520.174550][T11553] netlink: 146 bytes leftover after parsing attributes in process `syz.3.681'. [ 522.655960][T11582] netlink: 330 bytes leftover after parsing attributes in process `syz.0.685'. [ 522.750054][T11582] mac80211_hwsim hwsim45 : renamed from wlan0 (while UP) [ 523.356500][T11595] netlink: 146 bytes leftover after parsing attributes in process `syz.3.687'. [ 523.831566][T11602] ubi: mtd0 is already attached to ubi0 [ 524.574580][T11614] netlink: 146 bytes leftover after parsing attributes in process `syz.0.691'. [ 527.181768][T11645] netlink: ct family unspecified [ 528.180626][T11661] netlink: 330 bytes leftover after parsing attributes in process `syz.3.698'. [ 528.189988][T11661] mac80211_hwsim hwsim41 : renamed from wlan0 (while UP) [ 528.727624][T11666] netlink: 146 bytes leftover after parsing attributes in process `syz.1.699'. [ 530.082507][T11685] netlink: 28 bytes leftover after parsing attributes in process `syz.1.703'. [ 534.307551][T11757] netlink: 330 bytes leftover after parsing attributes in process `syz.2.710'. [ 534.320995][T11757] mac80211_hwsim hwsim3 : renamed from wlan0 (while UP) [ 534.345667][T11758] netlink: 146 bytes leftover after parsing attributes in process `syz.1.711'. [ 534.994356][ T5871] Bluetooth: hci0: unexpected event 0x02 length: 726 > 260 [ 535.442459][T11773] vivid-007: ================= START STATUS ================= [ 535.538212][T11773] vivid-007: Generate PTS: true [ 535.586334][T11773] vivid-007: Generate SCR: true [ 535.598681][T11773] tpg source WxH: 320x240 (Y'CbCr) [ 535.603929][T11773] tpg field: 1 [ 535.631281][T11773] tpg crop: (0,0)/320x240 [ 535.636504][T11773] tpg compose: (0,0)/320x240 [ 535.644716][T11773] tpg colorspace: 8 [ 535.694915][T11773] tpg transfer function: 0/0 [ 535.716114][T11773] tpg Y'CbCr encoding: 0/0 [ 535.736339][T11773] tpg quantization: 0/0 [ 535.752243][T11773] tpg RGB range: 0/2 [ 535.802561][T11773] vivid-007: ================== END STATUS ================== [ 536.079027][T11773] can: request_module (can-proto-3) failed. [ 536.344115][T11775] netlink: 268 bytes leftover after parsing attributes in process `syz.1.714'. [ 536.428330][T11787] ubi: mtd0 is already attached to ubi0 [ 538.520807][T11816] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(1) [ 539.781216][T11829] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 539.869059][T11832] random: crng reseeded on system resumption [ 540.473395][T11842] netlink: 28 bytes leftover after parsing attributes in process `syz.3.725'. [ 541.982847][T11853] input: f as /devices/virtual/input/input54 [ 543.424168][T11876] netlink: 146 bytes leftover after parsing attributes in process `syz.0.732'. [ 546.272446][T11918] netlink: ct family unspecified [ 546.615671][T11931] vhci_hcd: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub [ 550.028893][T11950] ptrace attach of "./syz-executor exec"[9456] was attempted by "./syz-executor exec"[11950] [ 554.481789][T12054] netlink: 268 bytes leftover after parsing attributes in process `syz.2.752'. [ 554.959452][T12069] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input55 [ 555.536883][T12073] FAULT_INJECTION: forcing a failure. [ 555.536883][T12073] name failslab, interval 1, probability 0, space 0, times 0 [ 555.588590][T12073] CPU: 0 UID: 0 PID: 12073 Comm: syz.1.756 Not tainted syzkaller #0 PREEMPT(full) [ 555.588637][T12073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 555.588656][T12073] Call Trace: [ 555.588667][T12073] [ 555.588679][T12073] dump_stack_lvl+0x16c/0x1f0 [ 555.588730][T12073] should_fail_ex+0x512/0x640 [ 555.588776][T12073] ? fs_reclaim_acquire+0xae/0x150 [ 555.588831][T12073] should_failslab+0xc2/0x120 [ 555.588874][T12073] __kmalloc_cache_noprof+0x6a/0x3e0 [ 555.588906][T12073] ? fsnotify_add_mark_locked+0x211/0xfd0 [ 555.588950][T12073] ? fsnotify_add_mark_locked+0x507/0xfd0 [ 555.588997][T12073] fsnotify_add_mark_locked+0x507/0xfd0 [ 555.589061][T12073] do_fanotify_mark+0x2cdd/0x3600 [ 555.589132][T12073] ? __pfx_do_fanotify_mark+0x10/0x10 [ 555.589187][T12073] ? __x64_sys_futex+0x1e9/0x4c0 [ 555.589238][T12073] ? xfd_validate_state+0x61/0x180 [ 555.589287][T12073] ? __pfx_ksys_write+0x10/0x10 [ 555.589333][T12073] __x64_sys_fanotify_mark+0xbd/0x160 [ 555.589385][T12073] ? do_syscall_64+0x91/0x490 [ 555.589432][T12073] ? lockdep_hardirqs_on+0x7c/0x110 [ 555.589475][T12073] do_syscall_64+0xcd/0x490 [ 555.589525][T12073] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 555.589558][T12073] RIP: 0033:0x7ff6a6d8ebe9 [ 555.589585][T12073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 555.589624][T12073] RSP: 002b:00007ff6a7bfb038 EFLAGS: 00000246 ORIG_RAX: 000000000000012d [ 555.589672][T12073] RAX: ffffffffffffffda RBX: 00007ff6a6fb6090 RCX: 00007ff6a6d8ebe9 [ 555.589694][T12073] RDX: 0000000000008009 RSI: 0000000000000105 RDI: 0000000000000000 [ 555.589734][T12073] RBP: 00007ff6a6e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 555.589755][T12073] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 555.589775][T12073] R13: 00007ff6a6fb6128 R14: 00007ff6a6fb6090 R15: 00007ffe417be008 [ 555.589821][T12073] [ 555.989324][T12072] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input56 [ 557.508251][ T30] audit: type=1800 audit(1756496530.771:17): pid=12108 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.762" name="features" dev="configfs" ino=43217 res=0 errno=0 [ 559.764844][T12115] zswap: compressor not available [ 561.208606][T12119] Setting dangerous option i915.mitigations - tainting kernel [ 562.533034][T12144] vivid-009: ================= START STATUS ================= [ 562.547841][T12144] vivid-009: Enable Output Cropping: true grabbed [ 562.575844][T12144] vivid-009: Enable Output Composing: true grabbed [ 562.611799][T12144] vivid-009: Enable Output Scaler: true grabbed [ 562.618160][T12144] vivid-009: Tx RGB Quantization Range: Automatic grabbed [ 562.627318][T12144] vivid-009: Transmit Mode: HDMI grabbed [ 562.633102][T12144] vivid-009: Hotplug Present: 0x00000000 [ 562.654017][T12144] vivid-009: RxSense Present: 0x00000000 [ 562.728692][T12150] vhci_hcd: invalid port number 21 [ 562.749591][T12144] vivid-009: EDID Present: 0x00000000 [ 562.765705][T12144] vivid-009: ================== END STATUS ================== [ 562.783706][T12151] block nbd7: not configured, cannot reconfigure [ 568.215489][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 568.223468][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 568.730282][T12259] vhci_hcd: invalid port number 21 [ 569.331928][T12244] netlink: 268 bytes leftover after parsing attributes in process `syz.2.787'. [ 569.770293][T12281] netlink: 146 bytes leftover after parsing attributes in process `syz.3.783'. [ 570.644616][T12296] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(1) [ 571.986405][T12312] random: crng reseeded on system resumption [ 572.283146][T12316] FAULT_INJECTION: forcing a failure. [ 572.283146][T12316] name failslab, interval 1, probability 0, space 0, times 0 [ 572.308583][T12316] CPU: 0 UID: 0 PID: 12316 Comm: syz.2.789 Tainted: G U syzkaller #0 PREEMPT(full) [ 572.308632][T12316] Tainted: [U]=USER [ 572.308642][T12316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 572.308659][T12316] Call Trace: [ 572.308668][T12316] [ 572.308676][T12316] dump_stack_lvl+0x16c/0x1f0 [ 572.308724][T12316] should_fail_ex+0x512/0x640 [ 572.308757][T12316] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 572.308793][T12316] should_failslab+0xc2/0x120 [ 572.308824][T12316] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 572.308856][T12316] ? trace_kmem_cache_alloc+0x28/0xc0 [ 572.308910][T12316] ? key_alloc+0x43e/0x1330 [ 572.308945][T12316] kmemdup_noprof+0x29/0x60 [ 572.308978][T12316] key_alloc+0x43e/0x1330 [ 572.309020][T12316] ? __pfx_key_alloc+0x10/0x10 [ 572.309052][T12316] ? __pfx_key_default_cmp+0x10/0x10 [ 572.309089][T12316] ? __pfx_keyring_search_iterator+0x10/0x10 [ 572.309130][T12316] keyring_alloc+0x44/0xc0 [ 572.309169][T12316] look_up_user_keyrings+0x510/0x760 [ 572.309203][T12316] ? __pfx_look_up_user_keyrings+0x10/0x10 [ 572.309234][T12316] ? __pfx_futex_wake+0x10/0x10 [ 572.309278][T12316] lookup_user_key+0x1a3/0x1300 [ 572.309311][T12316] ? __pfx_lookup_user_key+0x10/0x10 [ 572.309339][T12316] ? do_futex+0x122/0x350 [ 572.309377][T12316] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 572.309412][T12316] ? fput+0x9b/0xd0 [ 572.309452][T12316] keyctl_keyring_clear+0x24/0x1a0 [ 572.309478][T12316] __do_sys_keyctl+0x355/0x590 [ 572.309507][T12316] do_syscall_64+0xcd/0x490 [ 572.309547][T12316] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 572.309571][T12316] RIP: 0033:0x7f40cfd8ebe9 [ 572.309590][T12316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 572.309615][T12316] RSP: 002b:00007f40d0ca2038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 572.309637][T12316] RAX: ffffffffffffffda RBX: 00007f40cffb5fa0 RCX: 00007f40cfd8ebe9 [ 572.309653][T12316] RDX: 0000000000000002 RSI: 00000000fffffffb RDI: 0000000000000007 [ 572.309667][T12316] RBP: 00007f40cfe11e19 R08: 0000000000000008 R09: 0000000000000000 [ 572.309681][T12316] R10: 000000000000003e R11: 0000000000000246 R12: 0000000000000000 [ 572.309696][T12316] R13: 00007f40cffb6038 R14: 00007f40cffb5fa0 R15: 00007ffdfc255308 [ 572.309732][T12316] [ 576.126966][T12353] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 576.654904][T12364] netlink: zone id is out of range [ 576.660304][T12364] netlink: zone id is out of range [ 576.665924][T12364] netlink: zone id is out of range [ 576.718834][T12364] netlink: zone id is out of range [ 576.724034][T12364] netlink: zone id is out of range [ 576.747980][T12364] netlink: zone id is out of range [ 576.763678][T12364] netlink: zone id is out of range [ 576.782476][T12364] netlink: zone id is out of range [ 576.787747][T12364] netlink: zone id is out of range [ 576.800920][T12364] netlink: zone id is out of range [ 579.757219][T12405] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 585.478454][T12492] vivid-007: ================= START STATUS ================= [ 585.508521][T12492] vivid-007: Generate PTS: true [ 585.513476][T12492] vivid-007: Generate SCR: true [ 585.520892][T12492] tpg source WxH: 320x240 (Y'CbCr) [ 585.526050][T12492] tpg field: 1 [ 585.529527][T12492] tpg crop: (0,0)/320x240 [ 585.533887][T12492] tpg compose: (0,0)/320x240 [ 585.620180][T12492] tpg colorspace: 8 [ 585.624041][T12492] tpg transfer function: 0/0 [ 585.647752][T12492] tpg Y'CbCr encoding: 0/0 [ 585.697308][T12492] tpg quantization: 0/0 [ 585.702040][T12492] tpg RGB range: 0/2 [ 585.705982][T12492] vivid-007: ================== END STATUS ================== [ 586.294475][T12493] can: request_module (can-proto-3) failed. [ 587.405734][T12524] CIFS: VFS: Invalid SecurityFlags: [ 587.534343][T12528] random: crng reseeded on system resumption [ 588.128904][T12523] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 588.248485][T12523] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 592.568507][T12591] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input57 [ 592.720243][T12586] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input58 [ 593.694704][T12609] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input59 [ 594.032495][T12610] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input60 [ 594.525709][T12617] program syz.2.836 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 594.659467][T12621] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(1) [ 595.918847][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 595.925325][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 595.935016][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 595.942445][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 595.951050][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 595.957398][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 595.997149][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 596.003656][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 599.615333][T12648] net_ratelimit: 515 callbacks suppressed [ 599.615391][T12648] netlink: ct family unspecified [ 600.760616][T12700] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input61 [ 601.391591][T12701] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input62 [ 603.449445][T12732] tipc: Started in network mode [ 603.455641][T12732] tipc: Node identity 45e5412, cluster identity 4711 [ 603.494235][T12732] tipc: Node number set to 73290770 [ 603.612983][T12732] delete_channel: no stack [ 604.754523][T12745] random: crng reseeded on system resumption [ 605.425742][T12743] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 605.456480][T12743] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 605.897647][T12757] random: crng reseeded on system resumption [ 606.731324][T12765] netlink: 326 bytes leftover after parsing attributes in process `syz.3.857'. [ 607.691045][T12778] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input63 [ 607.977329][T12780] snd_aloop snd_aloop.0: control 16781581:65539:5:'x?F/zF˷fC:7 is already present [ 608.555546][T12781] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input64 [ 609.767129][T12800] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input65 [ 610.443722][T12802] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input66 [ 612.061708][T12817] random: crng reseeded on system resumption [ 612.297999][T12823] FAULT_INJECTION: forcing a failure. [ 612.297999][T12823] name failslab, interval 1, probability 0, space 0, times 0 [ 612.361764][T12823] CPU: 0 UID: 0 PID: 12823 Comm: syz.1.869 Tainted: G U syzkaller #0 PREEMPT(full) [ 612.361819][T12823] Tainted: [U]=USER [ 612.361831][T12823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 612.361855][T12823] Call Trace: [ 612.361866][T12823] [ 612.361878][T12823] dump_stack_lvl+0x16c/0x1f0 [ 612.361927][T12823] should_fail_ex+0x512/0x640 [ 612.361974][T12823] ? __kvmalloc_node_noprof+0x124/0x620 [ 612.362017][T12823] should_failslab+0xc2/0x120 [ 612.362062][T12823] __kvmalloc_node_noprof+0x137/0x620 [ 612.362097][T12823] ? __pfx_proc_create_net_data+0x10/0x10 [ 612.362150][T12823] ? __asan_memcpy+0x3c/0x60 [ 612.362181][T12823] ? unix_net_init+0x12b/0x350 [ 612.362221][T12823] ? __pfx_unix_net_init+0x10/0x10 [ 612.362271][T12823] ? unix_net_init+0x12b/0x350 [ 612.362306][T12823] unix_net_init+0x12b/0x350 [ 612.362345][T12823] ? __pfx_unix_net_init+0x10/0x10 [ 612.362382][T12823] ops_init+0x1e2/0x5f0 [ 612.362434][T12823] setup_net+0x10f/0x380 [ 612.362478][T12823] ? lockdep_init_map_type+0x5c/0x280 [ 612.362525][T12823] ? __pfx_setup_net+0x10/0x10 [ 612.362575][T12823] ? debug_mutex_init+0x37/0x70 [ 612.362612][T12823] copy_net_ns+0x2a6/0x5f0 [ 612.362669][T12823] create_new_namespaces+0x3ea/0xa90 [ 612.362718][T12823] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 612.362760][T12823] ksys_unshare+0x45b/0xa40 [ 612.362806][T12823] ? __pfx_ksys_unshare+0x10/0x10 [ 612.362854][T12823] ? xfd_validate_state+0x61/0x180 [ 612.362915][T12823] __x64_sys_unshare+0x31/0x40 [ 612.362959][T12823] do_syscall_64+0xcd/0x490 [ 612.363009][T12823] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 612.363044][T12823] RIP: 0033:0x7ff6a6d8ebe9 [ 612.363070][T12823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 612.363103][T12823] RSP: 002b:00007ff6a7c1c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 612.363135][T12823] RAX: ffffffffffffffda RBX: 00007ff6a6fb5fa0 RCX: 00007ff6a6d8ebe9 [ 612.363158][T12823] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 612.363178][T12823] RBP: 00007ff6a6e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 612.363199][T12823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 612.363245][T12823] R13: 00007ff6a6fb6038 R14: 00007ff6a6fb5fa0 R15: 00007ffe417be008 [ 612.363289][T12823] [ 612.663690][T12829] netlink: 326 bytes leftover after parsing attributes in process `syz.1.869'. [ 613.559626][T12845] random: crng reseeded on system resumption [ 614.169908][T12848] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 615.574785][T12870] ubi: mtd0 is already attached to ubi0 [ 616.489753][T12884] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input67 [ 617.280466][T12886] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input68 [ 621.945894][T12977] random: crng reseeded on system resumption [ 622.888557][T12989] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input69 [ 624.500409][T12993] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input70 [ 625.745609][T13012] zswap: compressor not available [ 626.805321][T13038] FAULT_INJECTION: forcing a failure. [ 626.805321][T13038] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 626.857379][T13038] CPU: 0 UID: 0 PID: 13038 Comm: syz.0.895 Tainted: G U syzkaller #0 PREEMPT(full) [ 626.857444][T13038] Tainted: [U]=USER [ 626.857455][T13038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 626.857475][T13038] Call Trace: [ 626.857486][T13038] [ 626.857499][T13038] dump_stack_lvl+0x16c/0x1f0 [ 626.857549][T13038] should_fail_ex+0x512/0x640 [ 626.857601][T13038] _copy_from_user+0x2e/0xd0 [ 626.857659][T13038] __do_sys_capset+0x1e8/0x460 [ 626.857696][T13038] ? __pfx___do_sys_capset+0x10/0x10 [ 626.857734][T13038] ? __x64_sys_futex+0x1e0/0x4c0 [ 626.857786][T13038] ? xfd_validate_state+0x61/0x180 [ 626.857845][T13038] ? rcu_is_watching+0x12/0xc0 [ 626.857883][T13038] do_syscall_64+0xcd/0x490 [ 626.857933][T13038] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 626.857968][T13038] RIP: 0033:0x7f86c438ebe9 [ 626.857993][T13038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 626.858026][T13038] RSP: 002b:00007f86c5256038 EFLAGS: 00000246 ORIG_RAX: 000000000000007e [ 626.858057][T13038] RAX: ffffffffffffffda RBX: 00007f86c45b5fa0 RCX: 00007f86c438ebe9 [ 626.858078][T13038] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000180 [ 626.858099][T13038] RBP: 00007f86c4411e19 R08: 0000000000000000 R09: 0000000000000000 [ 626.858119][T13038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 626.858139][T13038] R13: 00007f86c45b6038 R14: 00007f86c45b5fa0 R15: 00007ffd94aafff8 [ 626.858181][T13038] [ 627.272634][T13048] random: crng reseeded on system resumption [ 628.848252][T13082] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input71 [ 629.663718][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 629.670123][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 629.844748][T13085] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input72 [ 631.567395][T13123] program syz.0.906 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 632.596201][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 632.602872][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 632.628119][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 632.634599][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 632.648152][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 632.654584][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 632.663143][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 632.669596][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 633.338377][T13127] FAULT_INJECTION: forcing a failure. [ 633.338377][T13127] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 633.375691][T13127] CPU: 0 UID: 0 PID: 13127 Comm: syz.3.908 Tainted: G U syzkaller #0 PREEMPT(full) [ 633.375731][T13127] Tainted: [U]=USER [ 633.375739][T13127] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 633.375754][T13127] Call Trace: [ 633.375761][T13127] [ 633.375770][T13127] dump_stack_lvl+0x16c/0x1f0 [ 633.375808][T13127] should_fail_ex+0x512/0x640 [ 633.375847][T13127] should_fail_alloc_page+0xe7/0x130 [ 633.375891][T13127] prepare_alloc_pages+0x3c2/0x610 [ 633.375932][T13127] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 633.375962][T13127] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 633.376001][T13127] ? __lock_acquire+0x62e/0x1ce0 [ 633.376044][T13127] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 633.376083][T13127] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 633.376142][T13127] ? __lock_acquire+0xb97/0x1ce0 [ 633.376171][T13127] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 633.376209][T13127] ? policy_nodemask+0xea/0x4e0 [ 633.376244][T13127] alloc_pages_mpol+0x1fb/0x550 [ 633.376278][T13127] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 633.376309][T13127] ? do_raw_spin_lock+0x12c/0x2b0 [ 633.376345][T13127] ? find_held_lock+0x2b/0x80 [ 633.376374][T13127] alloc_pages_noprof+0x131/0x390 [ 633.376407][T13127] __pmd_alloc+0x3b/0x930 [ 633.376441][T13127] ? __pud_alloc+0x526/0x750 [ 633.376479][T13127] copy_page_range+0x3eaf/0x5c80 [ 633.376504][T13127] ? rfcomm_tty_write+0x344/0x4b0 [ 633.376539][T13127] ? copy_process+0x4081/0x7690 [ 633.376589][T13127] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 633.376627][T13127] ? mas_wr_store_entry+0xa14/0x2550 [ 633.376665][T13127] ? mas_destroy+0x5de/0xa20 [ 633.376700][T13127] ? __pfx_copy_page_range+0x10/0x10 [ 633.376728][T13127] ? mas_store+0x7a9/0x1160 [ 633.376765][T13127] ? find_held_lock+0x2b/0x80 [ 633.376789][T13127] ? __pfx_mas_store+0x10/0x10 [ 633.376823][T13127] ? __vma_enter_locked+0x163/0x3f0 [ 633.376869][T13127] dup_mmap+0xe88/0x21d0 [ 633.376918][T13127] ? __pfx_dup_mmap+0x10/0x10 [ 633.376975][T13127] copy_process+0x4081/0x7690 [ 633.377020][T13127] ? __pfx_copy_process+0x10/0x10 [ 633.377051][T13127] ? futex_private_hash_put+0x176/0x300 [ 633.377084][T13127] ? futex_private_hash_put+0x18a/0x300 [ 633.377117][T13127] kernel_clone+0xfc/0x930 [ 633.377148][T13127] ? __pfx_futex_wake+0x10/0x10 [ 633.377183][T13127] ? __pfx_kernel_clone+0x10/0x10 [ 633.377231][T13127] __do_sys_clone+0xce/0x120 [ 633.377262][T13127] ? __pfx___do_sys_clone+0x10/0x10 [ 633.377292][T13127] ? find_held_lock+0x2b/0x80 [ 633.377327][T13127] ? xfd_validate_state+0x61/0x180 [ 633.377373][T13127] do_syscall_64+0xcd/0x490 [ 633.377409][T13127] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 633.377434][T13127] RIP: 0033:0x7f45fa58ebe9 [ 633.377453][T13127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 633.377477][T13127] RSP: 002b:00007f45fb314fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 633.377500][T13127] RAX: ffffffffffffffda RBX: 00007f45fa7b5fa0 RCX: 00007f45fa58ebe9 [ 633.377516][T13127] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411 [ 633.377530][T13127] RBP: 00007f45fa611e19 R08: 0000000000000000 R09: 0000000000000000 [ 633.377544][T13127] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 633.377559][T13127] R13: 00007f45fa7b6038 R14: 00007f45fa7b5fa0 R15: 00007ffe8e2e3f78 [ 633.377590][T13127] [ 633.909627][T13154] random: crng reseeded on system resumption [ 634.270899][T13149] vhci_hcd: invalid port number 21 [ 635.902099][T13175] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input73 [ 636.713973][T13179] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input74 [ 638.888532][T13209] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input75 [ 639.364947][T13215] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input76 [ 639.684458][T13219] random: crng reseeded on system resumption [ 640.246918][T13225] random: crng reseeded on system resumption [ 640.582185][T13227] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 644.107827][T13274] delete_channel: no stack [ 644.248464][T13272] tipc: Started in network mode [ 644.286672][T13272] tipc: Node identity 45e5412, cluster identity 4711 [ 644.410970][T13272] tipc: Node number set to 73290770 [ 648.130225][T13334] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 648.191769][T13334] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 648.248247][T13334] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 648.376707][T13334] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 649.901522][T13364] netlink: 8 bytes leftover after parsing attributes in process `syz.3.944'. [ 650.053929][ T30] audit: type=1806 audit(6051464942.270:18): xattr="." res=0 [ 650.135987][T13365] page: refcount:5 mapcount:4 mapping:0000000000000000 index:0x23c pfn:0x78000 [ 650.145944][ T5871] Bluetooth: hci2: command 0x0406 tx timeout [ 650.152536][T13365] flags: 0xfff00000000010(dirty|node=0|zone=1|lastcpupid=0x7ff) [ 650.208868][T13365] raw: 00fff00000000010 0000000000000000 dead000000000122 0000000000000000 [ 650.223999][ T5871] Bluetooth: hci1: command 0x0406 tx timeout [ 650.273856][T13365] raw: 000000000000023c 0000000000000000 0000000500000003 0000000000000000 [ 650.283128][T13365] page dumped because: unmovable page [ 650.293106][T13365] page_owner tracks the page as allocated [ 650.300260][T13365] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 8725, tgid 8725 (syz-executor), ts 298652826094, free_ts 297980076517 [ 650.321239][T13365] post_alloc_hook+0x1c0/0x230 [ 650.323852][ T5871] Bluetooth: hci0: command 0x0406 tx timeout [ 650.326681][T13365] get_page_from_freelist+0x132b/0x38e0 [ 650.376273][T13365] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 650.382285][T13365] alloc_pages_mpol+0x1fb/0x550 [ 650.387378][T13365] alloc_pages_noprof+0x131/0x390 [ 650.394169][T13365] __vmalloc_node_range_noprof+0x72f/0x14b0 [ 650.400224][T13365] vmalloc_user_noprof+0x9e/0xe0 [ 650.405295][T13365] kcov_ioctl+0x4c/0x730 [ 650.410393][T13365] __x64_sys_ioctl+0x18e/0x210 [ 650.415337][T13365] do_syscall_64+0xcd/0x490 [ 650.420559][T13365] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 650.426645][T13365] page last free pid 8477 tgid 8477 stack trace: [ 650.433144][T13365] __free_frozen_pages+0x7d5/0x10f0 [ 650.438574][T13365] vfree+0x1fd/0xb50 [ 650.443314][T13365] kcov_close+0x34/0x60 [ 650.448165][T13365] __fput+0x402/0xb70 [ 650.452589][T13365] task_work_run+0x14d/0x240 [ 650.458412][T13365] do_exit+0x86f/0x2bf0 [ 650.462651][T13365] do_group_exit+0xd3/0x2a0 [ 650.467402][ T5871] Bluetooth: hci3: command 0x0c1a tx timeout [ 650.476804][T13365] __x64_sys_exit_group+0x3e/0x50 [ 650.481888][T13365] x64_sys_call+0x14fa/0x1720 [ 650.592522][T13365] do_syscall_64+0xcd/0x490 [ 650.635535][T13365] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 663.879296][T13528] netlink: 146 bytes leftover after parsing attributes in process `syz.2.970'. [ 664.282857][T13529] syz.3.971 (13529): /proc/13520/oom_adj is deprecated, please use /proc/13520/oom_score_adj instead. [ 666.579145][T13545] netlink: 146 bytes leftover after parsing attributes in process `syz.1.980'. [ 666.880859][T13546] Invalid ELF header magic: != ELF [ 666.925362][T13551] Console: switching to colour VGA+ 80x25 [ 668.865195][T13569] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input77 [ 670.224001][T13570] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input78 [ 675.997303][T13637] vhci_hcd: invalid port number 21 [ 676.907714][T13651] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input79 [ 677.614852][T13652] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input80 [ 680.153378][T13688] Format for deleting device is "id" (uint). [ 682.587790][T13720] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input81 [ 683.302153][T13729] random: crng reseeded on system resumption [ 684.727740][T13750] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1007'. [ 685.749395][T13761] Format for deleting device is "id" (uint). [ 689.140551][T13786] FAULT_INJECTION: forcing a failure. [ 689.140551][T13786] name failslab, interval 1, probability 0, space 0, times 0 [ 689.153606][T13786] CPU: 1 UID: 0 PID: 13786 Comm: syz.3.1014 Tainted: G U syzkaller #0 PREEMPT(full) [ 689.153645][T13786] Tainted: [U]=USER [ 689.153653][T13786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 689.153668][T13786] Call Trace: [ 689.153678][T13786] [ 689.153687][T13786] dump_stack_lvl+0x116/0x1f0 [ 689.153727][T13786] should_fail_ex+0x512/0x640 [ 689.153767][T13786] should_failslab+0xc2/0x120 [ 689.153800][T13786] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 689.153831][T13786] ? __send_signal_locked+0x159/0x12c0 [ 689.153871][T13786] ? sig_get_ucounts+0x1c0/0x5b0 [ 689.153910][T13786] __send_signal_locked+0x159/0x12c0 [ 689.153957][T13786] group_send_sig_info+0x2a4/0x300 [ 689.153989][T13786] ? __pfx_group_send_sig_info+0x10/0x10 [ 689.154034][T13786] ? kill_pid_info_type+0x1a/0x2a0 [ 689.154063][T13786] kill_pid_info_type+0x92/0x2a0 [ 689.154096][T13786] kill_proc_info+0x6f/0x1b0 [ 689.154128][T13786] kill_something_info+0x2a2/0x310 [ 689.154157][T13786] ? __task_pid_nr_ns+0x186/0x500 [ 689.154195][T13786] __x64_sys_kill+0xd7/0x140 [ 689.154227][T13786] ? __pfx___x64_sys_kill+0x10/0x10 [ 689.154268][T13786] ? rcu_is_watching+0x12/0xc0 [ 689.154295][T13786] do_syscall_64+0xcd/0x490 [ 689.154337][T13786] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 689.154362][T13786] RIP: 0033:0x7f45fa58ebe9 [ 689.154381][T13786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 689.154405][T13786] RSP: 002b:00007f45fb315038 EFLAGS: 00000246 ORIG_RAX: 000000000000003e [ 689.154427][T13786] RAX: ffffffffffffffda RBX: 00007f45fa7b5fa0 RCX: 00007f45fa58ebe9 [ 689.154443][T13786] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 00000000000003a8 [ 689.154457][T13786] RBP: 00007f45fa611e19 R08: 0000000000000000 R09: 0000000000000000 [ 689.154472][T13786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 689.154487][T13786] R13: 00007f45fa7b6038 R14: 00007f45fa7b5fa0 R15: 00007ffe8e2e3f78 [ 689.154522][T13786] [ 689.900171][T13800] netlink: 146 bytes leftover after parsing attributes in process `syz.3.1016'. [ 691.144289][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 691.150632][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 697.362623][T13891] CIFS: VFS: Invalid SecurityFlags: [ 699.938222][T13909] ptrace attach of "./syz-executor exec"[9456] was attempted by "./syz-executor exec"[13909] [ 704.823171][T13989] CIFS: VFS: Invalid SecurityFlags: [ 704.839533][T13985] vivid-003: ================= START STATUS ================= [ 704.951151][T13985] vivid-003: Radio HW Seek Mode: Bounded [ 704.971650][T13985] vivid-003: Radio Programmable HW Seek: false [ 704.985997][T13985] vivid-003: RDS Rx I/O Mode: Block I/O [ 704.995327][T13985] vivid-003: Generate RBDS Instead of RDS: false [ 705.042927][T13985] vivid-003: RDS Reception: true [ 705.160000][T13985] vivid-003: RDS Program Type: 0 inactive [ 705.171531][T13985] vivid-003: RDS PS Name: inactive [ 705.190371][T13985] vivid-003: RDS Radio Text: inactive [ 705.229257][T13985] vivid-003: RDS Traffic Announcement: false inactive [ 705.237409][T13985] vivid-003: RDS Traffic Program: false inactive [ 705.248775][T13985] vivid-003: RDS Music: false inactive [ 705.328267][T13985] vivid-003: ================== END STATUS ================== [ 706.312857][T14009] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 706.319815][T14009] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 706.337043][T14009] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 706.387369][T14009] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 708.352921][ T5871] Bluetooth: hci1: command 0x0406 tx timeout [ 708.353756][T14041] Bluetooth: hci2: command 0x0406 tx timeout [ 708.413287][T14041] Bluetooth: hci3: command 0x0c1a tx timeout [ 708.419378][ T5187] Bluetooth: hci0: command 0x0406 tx timeout [ 711.591859][T14080] Invalid ELF header magic: != ELF [ 716.978814][T14141] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1067'. [ 718.128611][T14154] ICMPv6: process `syz.2.1071' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 727.242903][T14239] Invalid ELF header magic: != ELF [ 727.582632][T14249] nbd: couldn't find device at index 137 [ 727.626005][T14254] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1083'. [ 727.685737][T14254] IPv6: NLM_F_CREATE should be specified when creating new route [ 727.817207][T14254] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 727.817348][T14254] IPv6: NLM_F_CREATE should be set when creating new route [ 727.817372][T14254] IPv6: NLM_F_CREATE should be set when creating new route [ 727.876430][T14255] Console: switching to colour frame buffer device 128x48 [ 728.865490][T14258] zswap: compressor not available [ 733.697778][T14325] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1091'. [ 735.538469][T14342] could not allocate digest TFM handle [ 735.823355][T14352] vhci_hcd: SetHubDepth req not supported for USB 2.0 roothub [ 736.551932][T14349] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1095'. [ 740.213384][T14406] CIFS: VFS: Invalid SecurityFlags: [ 745.626086][T14477] random: crng reseeded on system resumption [ 750.665929][T14535] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 750.705393][T14535] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 750.711645][T14535] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 750.876483][T14535] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 751.063768][T14546] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1127'. [ 752.605532][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 752.612020][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 752.684850][T14041] Bluetooth: hci2: command 0x0406 tx timeout [ 752.766213][T14041] Bluetooth: hci0: command 0x0406 tx timeout [ 752.772427][ T5187] Bluetooth: hci1: command 0x0406 tx timeout [ 752.915169][T14041] Bluetooth: hci3: command 0x0c1a tx timeout [ 756.806555][T14638] netlink: 146 bytes leftover after parsing attributes in process `syz.3.1138'. [ 760.937093][T14705] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1147'. [ 766.709043][T14776] ICMPv6: process `syz.1.1158' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 772.991546][T14851] netlink: 146 bytes leftover after parsing attributes in process `syz.3.1169'. [ 773.110180][T14860] ICMPv6: process `syz.0.1171' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 780.324434][T14959] ICMPv6: process `syz.3.1186' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 787.787500][T15068] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1208'. [ 790.915864][T15117] random: crng reseeded on system resumption [ 794.353933][T15167] netlink: 146 bytes leftover after parsing attributes in process `syz.3.1231'. [ 794.920378][T15175] binder: 15174:15175 ioctl c0046209 9 returned -22 [ 796.689901][T15206] Setting dangerous option i915.mitigations - tainting kernel [ 800.950906][T15277] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1256'. [ 803.992519][T15328] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1267'. [ 807.540215][T15388] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1279'. [ 814.072720][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 814.079831][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 819.653208][T15581] program syz.3.1324 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 821.032741][T15605] binder: 15604:15605 ioctl c0306201 200000000000 returned -14 [ 822.640006][T15633] binder: 15632:15633 ioctl c018620c 200000003b00 returned -22 [ 823.541288][T15653] binder: 15652:15653 ioctl c0306201 200000000000 returned -14 [ 830.931143][T15778] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1368'. [ 837.162218][T15864] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 840.405338][T15909] netlink: 'syz.2.1396': attribute type 11 has an invalid length. [ 840.423584][T15909] netlink: 'syz.2.1396': attribute type 11 has an invalid length. [ 840.487691][T15909] netlink: 'syz.2.1396': attribute type 11 has an invalid length. [ 840.562894][T15909] netlink: 'syz.2.1396': attribute type 11 has an invalid length. [ 841.165207][T15924] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1401'. [ 853.880168][T16095] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1432'. [ 858.750220][T16166] FAULT_INJECTION: forcing a failure. [ 858.750220][T16166] name fail_futex, interval 1, probability 0, space 0, times 0 [ 858.778376][T16166] CPU: 1 UID: 0 PID: 16166 Comm: syz.2.1447 Tainted: G U syzkaller #0 PREEMPT(full) [ 858.778559][T16166] Tainted: [U]=USER [ 858.778572][T16166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 858.778634][T16166] Call Trace: [ 858.778649][T16166] [ 858.778664][T16166] dump_stack_lvl+0x16c/0x1f0 [ 858.778723][T16166] should_fail_ex+0x512/0x640 [ 858.778783][T16166] get_futex_key+0x1d0/0x1560 [ 858.778837][T16166] ? __pfx_get_futex_key+0x10/0x10 [ 858.778900][T16166] futex_wake+0xea/0x530 [ 858.778951][T16166] ? __lock_acquire+0xb97/0x1ce0 [ 858.779006][T16166] ? __pfx_futex_wake+0x10/0x10 [ 858.779077][T16166] ? do_raw_spin_lock+0x12c/0x2b0 [ 858.779140][T16166] do_futex+0x1e3/0x350 [ 858.779190][T16166] ? __pfx_do_futex+0x10/0x10 [ 858.779240][T16166] ? _raw_spin_unlock+0x28/0x50 [ 858.779283][T16166] ? do_set_mempolicy+0x220/0x480 [ 858.779341][T16166] __x64_sys_futex+0x1e0/0x4c0 [ 858.779540][T16166] ? __pfx___x64_sys_futex+0x10/0x10 [ 858.779635][T16166] ? __pfx_kernel_set_mempolicy+0x10/0x10 [ 858.779696][T16166] do_syscall_64+0xcd/0x490 [ 858.779749][T16166] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 858.779785][T16166] RIP: 0033:0x7f40cfd8ebe9 [ 858.779813][T16166] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 858.779847][T16166] RSP: 002b:00007f40d0ca20e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 858.779879][T16166] RAX: ffffffffffffffda RBX: 00007f40cffb5fa8 RCX: 00007f40cfd8ebe9 [ 858.779901][T16166] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f40cffb5fac [ 858.779921][T16166] RBP: 00007f40cffb5fa0 R08: 00007f40d0ca3000 R09: 0000000000000000 [ 858.779943][T16166] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 858.779961][T16166] R13: 00007f40cffb6038 R14: 00007ffdfc255220 R15: 00007ffdfc255308 [ 858.780004][T16166] [ 861.414193][T16199] ovs_: entered promiscuous mode [ 867.826316][T16292] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1474'. [ 870.512282][T16317] FAULT_INJECTION: forcing a failure. [ 870.512282][T16317] name failslab, interval 1, probability 0, space 0, times 0 [ 870.534618][T16317] CPU: 1 UID: 0 PID: 16317 Comm: syz.1.1479 Tainted: G U syzkaller #0 PREEMPT(full) [ 870.534657][T16317] Tainted: [U]=USER [ 870.534665][T16317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 870.534679][T16317] Call Trace: [ 870.534687][T16317] [ 870.534696][T16317] dump_stack_lvl+0x16c/0x1f0 [ 870.534733][T16317] should_fail_ex+0x512/0x640 [ 870.534768][T16317] ? fs_reclaim_acquire+0xae/0x150 [ 870.534817][T16317] should_failslab+0xc2/0x120 [ 870.534850][T16317] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 870.534879][T16317] ? security_inode_alloc+0x3b/0x2b0 [ 870.534906][T16317] ? sk_prot_alloc+0x60/0x2a0 [ 870.534932][T16317] sk_prot_alloc+0x60/0x2a0 [ 870.534956][T16317] sk_alloc+0x36/0xc20 [ 870.534987][T16317] smc_create+0x114/0x2a0 [ 870.535016][T16317] __sock_create+0x335/0x8d0 [ 870.535045][T16317] __sys_socket+0x14d/0x260 [ 870.535070][T16317] ? __pfx___sys_socket+0x10/0x10 [ 870.535096][T16317] ? xfd_validate_state+0x61/0x180 [ 870.535131][T16317] ? __pfx___do_sys_prctl+0x10/0x10 [ 870.535177][T16317] __x64_sys_socket+0x72/0xb0 [ 870.535201][T16317] ? lockdep_hardirqs_on+0x7c/0x110 [ 870.535233][T16317] do_syscall_64+0xcd/0x490 [ 870.535269][T16317] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 870.535294][T16317] RIP: 0033:0x7ff6a6d8ebe9 [ 870.535313][T16317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 870.535337][T16317] RSP: 002b:00007ff6a7c1c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 870.535360][T16317] RAX: ffffffffffffffda RBX: 00007ff6a6fb5fa0 RCX: 00007ff6a6d8ebe9 [ 870.535376][T16317] RDX: 0000000000000001 RSI: 0000000000000001 RDI: 000000000000002b [ 870.535390][T16317] RBP: 00007ff6a6e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 870.535405][T16317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 870.535420][T16317] R13: 00007ff6a6fb6038 R14: 00007ff6a6fb5fa0 R15: 00007ffe417be008 [ 870.535450][T16317] [ 872.891741][T16355] netlink: 146 bytes leftover after parsing attributes in process `syz.3.1485'. [ 875.540599][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 875.547196][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 877.350748][T16416] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1498'. [ 879.675720][T16450] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1505'. [ 885.619155][T16542] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1525'. [ 890.040029][T16619] FAULT_INJECTION: forcing a failure. [ 890.040029][T16619] name failslab, interval 1, probability 0, space 0, times 0 [ 890.054104][T16619] CPU: 1 UID: 0 PID: 16619 Comm: syz.2.1540 Tainted: G U syzkaller #0 PREEMPT(full) [ 890.054158][T16619] Tainted: [U]=USER [ 890.054169][T16619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 890.054191][T16619] Call Trace: [ 890.054204][T16619] [ 890.054217][T16619] dump_stack_lvl+0x16c/0x1f0 [ 890.054289][T16619] should_fail_ex+0x512/0x640 [ 890.054338][T16619] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 890.054380][T16619] should_failslab+0xc2/0x120 [ 890.054427][T16619] __kmalloc_cache_noprof+0x6a/0x3e0 [ 890.054464][T16619] ? fuse_dev_alloc+0x48/0x280 [ 890.054519][T16619] fuse_dev_alloc+0x48/0x280 [ 890.054583][T16619] fuse_dev_alloc_install+0x13/0x40 [ 890.054639][T16619] cuse_channel_open+0x100/0x7f0 [ 890.054688][T16619] ? __pfx_cuse_channel_open+0x10/0x10 [ 890.054741][T16619] misc_open+0x35d/0x420 [ 890.054777][T16619] ? __pfx_misc_open+0x10/0x10 [ 890.054813][T16619] chrdev_open+0x234/0x6a0 [ 890.054858][T16619] ? __pfx_apparmor_file_open+0x10/0x10 [ 890.054897][T16619] ? __pfx_chrdev_open+0x10/0x10 [ 890.054946][T16619] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 890.054996][T16619] do_dentry_open+0x982/0x1530 [ 890.055041][T16619] ? __pfx_chrdev_open+0x10/0x10 [ 890.055093][T16619] vfs_open+0x82/0x3f0 [ 890.055148][T16619] path_openat+0x1de4/0x2cb0 [ 890.055230][T16619] ? __pfx_path_openat+0x10/0x10 [ 890.055283][T16619] do_filp_open+0x20b/0x470 [ 890.055325][T16619] ? __pfx_do_filp_open+0x10/0x10 [ 890.055398][T16619] ? alloc_fd+0x471/0x7d0 [ 890.055447][T16619] do_sys_openat2+0x11b/0x1d0 [ 890.055499][T16619] ? __pfx_do_sys_openat2+0x10/0x10 [ 890.055566][T16619] ? handle_mm_fault+0x2ab/0xd10 [ 890.055613][T16619] __x64_sys_openat+0x174/0x210 [ 890.055668][T16619] ? __pfx___x64_sys_openat+0x10/0x10 [ 890.055742][T16619] do_syscall_64+0xcd/0x490 [ 890.055795][T16619] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 890.055830][T16619] RIP: 0033:0x7f40cfd8ebe9 [ 890.055858][T16619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 890.055893][T16619] RSP: 002b:00007f40d0c1e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 890.055925][T16619] RAX: ffffffffffffffda RBX: 00007f40cffb6360 RCX: 00007f40cfd8ebe9 [ 890.055949][T16619] RDX: 0000000000041000 RSI: 00002000000001c0 RDI: ffffffffffffff9c [ 890.055971][T16619] RBP: 00007f40cfe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 890.055992][T16619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 890.056014][T16619] R13: 00007f40cffb63f8 R14: 00007f40cffb6360 R15: 00007ffdfc255308 [ 890.056060][T16619] [ 894.752265][T16691] FAULT_INJECTION: forcing a failure. [ 894.752265][T16691] name failslab, interval 1, probability 0, space 0, times 0 [ 894.795735][T16691] CPU: 1 UID: 0 PID: 16691 Comm: syz.2.1557 Tainted: G U syzkaller #0 PREEMPT(full) [ 894.795789][T16691] Tainted: [U]=USER [ 894.795800][T16691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 894.795823][T16691] Call Trace: [ 894.795833][T16691] [ 894.795846][T16691] dump_stack_lvl+0x16c/0x1f0 [ 894.795901][T16691] should_fail_ex+0x512/0x640 [ 894.795947][T16691] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 894.795998][T16691] should_failslab+0xc2/0x120 [ 894.796058][T16691] __kmalloc_cache_noprof+0x6a/0x3e0 [ 894.796093][T16691] ? vhost_net_open+0x28/0x8a0 [ 894.796139][T16691] ? vhost_net_open+0x6e/0x8a0 [ 894.796190][T16691] ? __pfx_vhost_net_open+0x10/0x10 [ 894.796235][T16691] vhost_net_open+0x6e/0x8a0 [ 894.796278][T16691] ? __pfx_vhost_net_open+0x10/0x10 [ 894.796325][T16691] misc_open+0x35d/0x420 [ 894.796362][T16691] ? __pfx_misc_open+0x10/0x10 [ 894.796398][T16691] chrdev_open+0x234/0x6a0 [ 894.796442][T16691] ? __pfx_apparmor_file_open+0x10/0x10 [ 894.796481][T16691] ? __pfx_chrdev_open+0x10/0x10 [ 894.796530][T16691] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 894.796578][T16691] do_dentry_open+0x982/0x1530 [ 894.796622][T16691] ? __pfx_chrdev_open+0x10/0x10 [ 894.796673][T16691] vfs_open+0x82/0x3f0 [ 894.796726][T16691] path_openat+0x1de4/0x2cb0 [ 894.796777][T16691] ? __pfx_path_openat+0x10/0x10 [ 894.796828][T16691] do_filp_open+0x20b/0x470 [ 894.796869][T16691] ? __pfx_do_filp_open+0x10/0x10 [ 894.796940][T16691] ? alloc_fd+0x471/0x7d0 [ 894.797028][T16691] do_sys_openat2+0x11b/0x1d0 [ 894.797082][T16691] ? __pfx_do_sys_openat2+0x10/0x10 [ 894.797150][T16691] __x64_sys_openat+0x174/0x210 [ 894.797204][T16691] ? __pfx___x64_sys_openat+0x10/0x10 [ 894.797276][T16691] do_syscall_64+0xcd/0x490 [ 894.797326][T16691] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 894.797361][T16691] RIP: 0033:0x7f40cfd8ebe9 [ 894.797387][T16691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 894.797422][T16691] RSP: 002b:00007f40d0ca2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 894.797455][T16691] RAX: ffffffffffffffda RBX: 00007f40cffb5fa0 RCX: 00007f40cfd8ebe9 [ 894.797478][T16691] RDX: 0000000000000100 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 894.797500][T16691] RBP: 00007f40cfe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 894.797522][T16691] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 894.797542][T16691] R13: 00007f40cffb6038 R14: 00007f40cffb5fa0 R15: 00007ffdfc255308 [ 894.797585][T16691] [ 895.616479][ T3495] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 895.666812][T16704] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1560'. [ 895.951467][T16712] FAULT_INJECTION: forcing a failure. [ 895.951467][T16712] name failslab, interval 1, probability 0, space 0, times 0 [ 896.034436][T16712] CPU: 0 UID: 0 PID: 16712 Comm: syz.3.1563 Tainted: G U syzkaller #0 PREEMPT(full) [ 896.034490][T16712] Tainted: [U]=USER [ 896.034501][T16712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 896.034522][T16712] Call Trace: [ 896.034533][T16712] [ 896.034545][T16712] dump_stack_lvl+0x16c/0x1f0 [ 896.034596][T16712] should_fail_ex+0x512/0x640 [ 896.034644][T16712] ? __kmalloc_noprof+0xbf/0x510 [ 896.034687][T16712] ? __seq_open_private+0x22/0xd0 [ 896.034739][T16712] should_failslab+0xc2/0x120 [ 896.034785][T16712] __kmalloc_noprof+0xd2/0x510 [ 896.034825][T16712] ? __pfx_apparmor_file_open+0x10/0x10 [ 896.034871][T16712] __seq_open_private+0x22/0xd0 [ 896.034981][T16712] proc_timers_open+0x27/0x150 [ 896.035036][T16712] do_dentry_open+0x982/0x1530 [ 896.035080][T16712] ? __pfx_proc_timers_open+0x10/0x10 [ 896.035142][T16712] vfs_open+0x82/0x3f0 [ 896.035199][T16712] path_openat+0x1de4/0x2cb0 [ 896.035255][T16712] ? __pfx_path_openat+0x10/0x10 [ 896.035308][T16712] do_filp_open+0x20b/0x470 [ 896.035351][T16712] ? __pfx_do_filp_open+0x10/0x10 [ 896.035407][T16712] ? __pfx_kfree_link+0x10/0x10 [ 896.035471][T16712] ? alloc_fd+0x471/0x7d0 [ 896.035520][T16712] do_sys_openat2+0x11b/0x1d0 [ 896.035572][T16712] ? __pfx_do_sys_openat2+0x10/0x10 [ 896.035643][T16712] __x64_sys_openat+0x174/0x210 [ 896.035697][T16712] ? __pfx___x64_sys_openat+0x10/0x10 [ 896.035770][T16712] do_syscall_64+0xcd/0x490 [ 896.035820][T16712] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 896.035856][T16712] RIP: 0033:0x7f45fa58ebe9 [ 896.035882][T16712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 896.035923][T16712] RSP: 002b:00007f45fb315038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 896.035955][T16712] RAX: ffffffffffffffda RBX: 00007f45fa7b5fa0 RCX: 00007f45fa58ebe9 [ 896.035978][T16712] RDX: 0000000000000040 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 896.036000][T16712] RBP: 00007f45fa611e19 R08: 0000000000000000 R09: 0000000000000000 [ 896.036021][T16712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 896.036042][T16712] R13: 00007f45fa7b6038 R14: 00007f45fa7b5fa0 R15: 00007ffe8e2e3f78 [ 896.036086][T16712] [ 898.641805][T16755] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1574'. [ 909.271515][T16912] FAULT_INJECTION: forcing a failure. [ 909.271515][T16912] name failslab, interval 1, probability 0, space 0, times 0 [ 909.344128][T16912] CPU: 0 UID: 0 PID: 16912 Comm: syz.3.1605 Tainted: G U syzkaller #0 PREEMPT(full) [ 909.344182][T16912] Tainted: [U]=USER [ 909.344193][T16912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 909.344214][T16912] Call Trace: [ 909.344228][T16912] [ 909.344242][T16912] dump_stack_lvl+0x16c/0x1f0 [ 909.344296][T16912] should_fail_ex+0x512/0x640 [ 909.344353][T16912] ? fs_reclaim_acquire+0xae/0x150 [ 909.344407][T16912] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 909.344456][T16912] should_failslab+0xc2/0x120 [ 909.344501][T16912] __kmalloc_noprof+0xd2/0x510 [ 909.344538][T16912] ? tomoyo_realpath_from_path+0x19f/0x6e0 [ 909.344598][T16912] tomoyo_realpath_from_path+0xc2/0x6e0 [ 909.344652][T16912] ? tomoyo_fill_path_info+0x233/0x420 [ 909.344692][T16912] tomoyo_path2_perm+0x36a/0x710 [ 909.344734][T16912] ? __pfx_tomoyo_path2_perm+0x10/0x10 [ 909.344786][T16912] ? look_up_lock_class+0x59/0x150 [ 909.344871][T16912] ? do_raw_spin_lock+0x12c/0x2b0 [ 909.344932][T16912] ? find_held_lock+0x2b/0x80 [ 909.344973][T16912] tomoyo_path_rename+0xfc/0x1a0 [ 909.345027][T16912] ? __pfx_tomoyo_path_rename+0x10/0x10 [ 909.345078][T16912] ? _raw_spin_unlock+0x28/0x50 [ 909.345132][T16912] security_path_rename+0x18e/0x3c0 [ 909.345178][T16912] do_renameat2+0x735/0xc50 [ 909.345234][T16912] ? __pfx_do_renameat2+0x10/0x10 [ 909.345283][T16912] ? find_held_lock+0x2b/0x80 [ 909.345314][T16912] ? __might_fault+0xe3/0x190 [ 909.345353][T16912] ? __might_fault+0x13b/0x190 [ 909.345413][T16912] ? getname_flags.part.0+0x1c5/0x550 [ 909.345486][T16912] __x64_sys_rename+0x7d/0xa0 [ 909.345535][T16912] do_syscall_64+0xcd/0x490 [ 909.345586][T16912] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 909.345619][T16912] RIP: 0033:0x7f45fa58ebe9 [ 909.345646][T16912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 909.345680][T16912] RSP: 002b:00007f45fb315038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052 [ 909.345713][T16912] RAX: ffffffffffffffda RBX: 00007f45fa7b5fa0 RCX: 00007f45fa58ebe9 [ 909.345737][T16912] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000440 [ 909.345757][T16912] RBP: 00007f45fa611e19 R08: 0000000000000000 R09: 0000000000000000 [ 909.345793][T16912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 909.345814][T16912] R13: 00007f45fa7b6038 R14: 00007f45fa7b5fa0 R15: 00007ffe8e2e3f78 [ 909.345860][T16912] [ 909.345874][T16912] ERROR: Out of memory at tomoyo_realpath_from_path. [ 910.345584][T16928] FAULT_INJECTION: forcing a failure. [ 910.345584][T16928] name failslab, interval 1, probability 0, space 0, times 0 [ 910.447482][T16928] CPU: 1 UID: 0 PID: 16928 Comm: syz.1.1610 Tainted: G U syzkaller #0 PREEMPT(full) [ 910.447522][T16928] Tainted: [U]=USER [ 910.447529][T16928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 910.447544][T16928] Call Trace: [ 910.447553][T16928] [ 910.447562][T16928] dump_stack_lvl+0x16c/0x1f0 [ 910.447600][T16928] should_fail_ex+0x512/0x640 [ 910.447634][T16928] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 910.447667][T16928] should_failslab+0xc2/0x120 [ 910.447700][T16928] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 910.447728][T16928] ? d_instantiate+0x77/0x90 [ 910.447759][T16928] ? alloc_empty_file+0x55/0x1e0 [ 910.447800][T16928] alloc_empty_file+0x55/0x1e0 [ 910.447837][T16928] alloc_file_pseudo+0x13a/0x230 [ 910.447874][T16928] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 910.447912][T16928] ? tipc_sk_finish_conn+0x580/0x790 [ 910.447955][T16928] sock_alloc_file+0x50/0x210 [ 910.447992][T16928] __sys_socketpair+0x34e/0x5a0 [ 910.448020][T16928] ? __pfx___sys_socketpair+0x10/0x10 [ 910.448049][T16928] ? xfd_validate_state+0x61/0x180 [ 910.448084][T16928] ? __pfx_do_writev+0x10/0x10 [ 910.448114][T16928] __x64_sys_socketpair+0x96/0x100 [ 910.448140][T16928] ? lockdep_hardirqs_on+0x7c/0x110 [ 910.448179][T16928] do_syscall_64+0xcd/0x490 [ 910.448216][T16928] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 910.448240][T16928] RIP: 0033:0x7ff6a6d8ebe9 [ 910.448260][T16928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 910.448284][T16928] RSP: 002b:00007ff6a7c1c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 910.448306][T16928] RAX: ffffffffffffffda RBX: 00007ff6a6fb5fa0 RCX: 00007ff6a6d8ebe9 [ 910.448323][T16928] RDX: 8000000000000000 RSI: 0000000000000005 RDI: 000000000000001e [ 910.448338][T16928] RBP: 00007ff6a6e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 910.448353][T16928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 910.448368][T16928] R13: 00007ff6a6fb6038 R14: 00007ff6a6fb5fa0 R15: 00007ffe417be008 [ 910.448397][T16928] [ 916.976519][T17035] FAULT_INJECTION: forcing a failure. [ 916.976519][T17035] name failslab, interval 1, probability 0, space 0, times 0 [ 916.989458][T17035] CPU: 0 UID: 0 PID: 17035 Comm: syz.2.1633 Tainted: G U syzkaller #0 PREEMPT(full) [ 916.989497][T17035] Tainted: [U]=USER [ 916.989505][T17035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 916.989519][T17035] Call Trace: [ 916.989528][T17035] [ 916.989537][T17035] dump_stack_lvl+0x16c/0x1f0 [ 916.989574][T17035] should_fail_ex+0x512/0x640 [ 916.989609][T17035] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 916.989649][T17035] should_failslab+0xc2/0x120 [ 916.989699][T17035] __kmalloc_cache_noprof+0x6a/0x3e0 [ 916.989725][T17035] ? qrtr_tun_open+0x47/0x220 [ 916.989754][T17035] ? __pfx_qrtr_tun_open+0x10/0x10 [ 916.989777][T17035] qrtr_tun_open+0x47/0x220 [ 916.989801][T17035] ? __pfx_qrtr_tun_open+0x10/0x10 [ 916.989830][T17035] misc_open+0x35d/0x420 [ 916.989865][T17035] ? __pfx_misc_open+0x10/0x10 [ 916.989900][T17035] chrdev_open+0x234/0x6a0 [ 916.989943][T17035] ? __pfx_apparmor_file_open+0x10/0x10 [ 916.989978][T17035] ? __pfx_chrdev_open+0x10/0x10 [ 916.990012][T17035] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 916.990046][T17035] do_dentry_open+0x982/0x1530 [ 916.990077][T17035] ? __pfx_chrdev_open+0x10/0x10 [ 916.990116][T17035] vfs_open+0x82/0x3f0 [ 916.990156][T17035] path_openat+0x1de4/0x2cb0 [ 916.990195][T17035] ? __pfx_path_openat+0x10/0x10 [ 916.990232][T17035] do_filp_open+0x20b/0x470 [ 916.990262][T17035] ? __pfx_do_filp_open+0x10/0x10 [ 916.990313][T17035] ? alloc_fd+0x471/0x7d0 [ 916.990347][T17035] do_sys_openat2+0x11b/0x1d0 [ 916.990394][T17035] ? __pfx_do_sys_openat2+0x10/0x10 [ 916.990444][T17035] __x64_sys_openat+0x174/0x210 [ 916.990483][T17035] ? __pfx___x64_sys_openat+0x10/0x10 [ 916.990535][T17035] do_syscall_64+0xcd/0x490 [ 916.990572][T17035] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 916.990597][T17035] RIP: 0033:0x7f40cfd8ebe9 [ 916.990616][T17035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 916.990648][T17035] RSP: 002b:00007f40d0ca2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 916.990671][T17035] RAX: ffffffffffffffda RBX: 00007f40cffb5fa0 RCX: 00007f40cfd8ebe9 [ 916.990687][T17035] RDX: 0000000000000001 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 916.990703][T17035] RBP: 00007f40cfe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 916.990717][T17035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 916.990732][T17035] R13: 00007f40cffb6038 R14: 00007f40cffb5fa0 R15: 00007ffdfc255308 [ 916.990763][T17035] [ 924.539882][T17147] FAULT_INJECTION: forcing a failure. [ 924.539882][T17147] name fail_futex, interval 1, probability 0, space 0, times 0 [ 924.595964][T17147] CPU: 1 UID: 0 PID: 17147 Comm: syz.0.1660 Tainted: G U syzkaller #0 PREEMPT(full) [ 924.596012][T17147] Tainted: [U]=USER [ 924.596022][T17147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 924.596041][T17147] Call Trace: [ 924.596050][T17147] [ 924.596061][T17147] dump_stack_lvl+0x16c/0x1f0 [ 924.596108][T17147] should_fail_ex+0x512/0x640 [ 924.596162][T17147] get_futex_key+0x1d0/0x1560 [ 924.596206][T17147] ? __pfx_get_futex_key+0x10/0x10 [ 924.596254][T17147] futex_wake+0xea/0x530 [ 924.596304][T17147] ? rcu_is_watching+0x12/0xc0 [ 924.596338][T17147] ? __pfx_futex_wake+0x10/0x10 [ 924.596390][T17147] ? kmem_cache_free+0x2d1/0x4d0 [ 924.596427][T17147] ? fd_install+0x225/0x750 [ 924.596458][T17147] ? putname+0x154/0x1a0 [ 924.596510][T17147] do_futex+0x1e3/0x350 [ 924.596551][T17147] ? __pfx_do_futex+0x10/0x10 [ 924.596603][T17147] __x64_sys_futex+0x1e0/0x4c0 [ 924.596649][T17147] ? __x64_sys_openat+0x174/0x210 [ 924.596702][T17147] ? __pfx___x64_sys_futex+0x10/0x10 [ 924.596755][T17147] do_syscall_64+0xcd/0x490 [ 924.596805][T17147] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 924.596838][T17147] RIP: 0033:0x7f86c438ebe9 [ 924.596863][T17147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 924.596894][T17147] RSP: 002b:00007f86c52560e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 924.596977][T17147] RAX: ffffffffffffffda RBX: 00007f86c45b5fa8 RCX: 00007f86c438ebe9 [ 924.596992][T17147] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f86c45b5fac [ 924.597007][T17147] RBP: 00007f86c45b5fa0 R08: 00007f86c5257000 R09: 0000000000000000 [ 924.597022][T17147] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 924.597035][T17147] R13: 00007f86c45b6038 R14: 00007ffd94aaff10 R15: 00007ffd94aafff8 [ 924.597065][T17147] [ 926.596833][T17176] FAULT_INJECTION: forcing a failure. [ 926.596833][T17176] name failslab, interval 1, probability 0, space 0, times 0 [ 926.658824][T17176] CPU: 0 UID: 0 PID: 17176 Comm: syz.0.1668 Tainted: G U syzkaller #0 PREEMPT(full) [ 926.658888][T17176] Tainted: [U]=USER [ 926.658898][T17176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 926.658918][T17176] Call Trace: [ 926.658928][T17176] [ 926.658940][T17176] dump_stack_lvl+0x16c/0x1f0 [ 926.658984][T17176] should_fail_ex+0x512/0x640 [ 926.659029][T17176] ? fs_reclaim_acquire+0xae/0x150 [ 926.659079][T17176] should_failslab+0xc2/0x120 [ 926.659121][T17176] __kmalloc_cache_noprof+0x6a/0x3e0 [ 926.659158][T17176] ? __lock_acquire+0x62e/0x1ce0 [ 926.659196][T17176] ? usb_control_msg+0xbc/0x4a0 [ 926.659244][T17176] usb_control_msg+0xbc/0x4a0 [ 926.659291][T17176] ? __pfx_usb_control_msg+0x10/0x10 [ 926.659348][T17176] hub_ext_port_status+0x14e/0x670 [ 926.659419][T17176] hub_activate+0x6e5/0x1d60 [ 926.659479][T17176] ? __pfx_hub_activate+0x10/0x10 [ 926.659521][T17176] ? find_held_lock+0x2b/0x80 [ 926.659553][T17176] ? proc_do_submiturb+0x22a0/0x3b10 [ 926.659616][T17176] hub_resume+0xa8/0x3f0 [ 926.659659][T17176] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 926.659706][T17176] ? __pfx_hub_resume+0x10/0x10 [ 926.659751][T17176] ? __pfx_hcd_bus_resume+0x10/0x10 [ 926.659806][T17176] usb_resume_interface.constprop.0.isra.0+0x2c2/0x3e0 [ 926.659848][T17176] usb_resume_both+0x273/0x800 [ 926.659881][T17176] ? __pfx_usb_resume_both+0x10/0x10 [ 926.659913][T17176] ? __pfx_usb_runtime_resume+0x10/0x10 [ 926.659951][T17176] ? __pfx_usb_runtime_resume+0x10/0x10 [ 926.659986][T17176] __rpm_callback+0xc8/0x610 [ 926.660031][T17176] ? __pfx_usb_runtime_resume+0x10/0x10 [ 926.660069][T17176] rpm_callback+0x1b7/0x200 [ 926.660112][T17176] ? __pfx_usb_runtime_resume+0x10/0x10 [ 926.660147][T17176] rpm_resume+0xd0a/0x1310 [ 926.660200][T17176] ? __pfx_rpm_resume+0x10/0x10 [ 926.660240][T17176] ? do_raw_spin_lock+0x12c/0x2b0 [ 926.660288][T17176] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 926.660350][T17176] __pm_runtime_resume+0xb6/0x170 [ 926.660396][T17176] usb_autoresume_device+0x23/0xe0 [ 926.660432][T17176] usbdev_open+0x228/0x8b0 [ 926.660468][T17176] ? kobject_get_unless_zero+0x156/0x1e0 [ 926.660513][T17176] ? __pfx_usbdev_open+0x10/0x10 [ 926.660548][T17176] ? chrdev_open+0x10b/0x6a0 [ 926.660593][T17176] ? __pfx_usbdev_open+0x10/0x10 [ 926.660627][T17176] chrdev_open+0x234/0x6a0 [ 926.660665][T17176] ? __pfx_apparmor_file_open+0x10/0x10 [ 926.660699][T17176] ? __pfx_chrdev_open+0x10/0x10 [ 926.660741][T17176] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 926.660804][T17176] do_dentry_open+0x982/0x1530 [ 926.660846][T17176] ? __pfx_chrdev_open+0x10/0x10 [ 926.660897][T17176] vfs_open+0x82/0x3f0 [ 926.660947][T17176] path_openat+0x1de4/0x2cb0 [ 926.660996][T17176] ? __pfx_path_openat+0x10/0x10 [ 926.661044][T17176] do_filp_open+0x20b/0x470 [ 926.661084][T17176] ? __pfx_do_filp_open+0x10/0x10 [ 926.661152][T17176] ? alloc_fd+0x471/0x7d0 [ 926.661197][T17176] do_sys_openat2+0x11b/0x1d0 [ 926.661244][T17176] ? __pfx_do_sys_openat2+0x10/0x10 [ 926.661307][T17176] __x64_sys_openat+0x174/0x210 [ 926.661355][T17176] ? __pfx___x64_sys_openat+0x10/0x10 [ 926.661420][T17176] do_syscall_64+0xcd/0x490 [ 926.661465][T17176] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 926.661496][T17176] RIP: 0033:0x7f86c438ebe9 [ 926.661520][T17176] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 926.661550][T17176] RSP: 002b:00007f86c5256038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 926.661579][T17176] RAX: ffffffffffffffda RBX: 00007f86c45b5fa0 RCX: 00007f86c438ebe9 [ 926.661599][T17176] RDX: 0000000000040101 RSI: 0000200000000240 RDI: ffffffffffffff9c [ 926.661618][T17176] RBP: 00007f86c4411e19 R08: 0000000000000000 R09: 0000000000000000 [ 926.661636][T17176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 926.661654][T17176] R13: 00007f86c45b6038 R14: 00007f86c45b5fa0 R15: 00007ffd94aafff8 [ 926.661693][T17176] [ 926.661712][T17176] hub 2-0:1.0: hub_ext_port_status failed (err = -12) [ 929.144788][T17217] page: refcount:5 mapcount:4 mapping:0000000000000000 index:0x23c pfn:0x78000 [ 929.188996][T17217] flags: 0xfff00000000014(referenced|dirty|node=0|zone=1|lastcpupid=0x7ff) [ 929.210967][T17217] raw: 00fff00000000014 0000000000000000 dead000000000122 0000000000000000 [ 929.295934][T17217] raw: 000000000000023c 0000000000000000 0000000500000003 0000000000000000 [ 929.353017][T17217] page dumped because: unmovable page [ 929.365092][T17217] page_owner tracks the page as allocated [ 929.397414][T17217] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 8725, tgid 8725 (syz-executor), ts 298652826094, free_ts 297980076517 [ 929.423401][T17217] post_alloc_hook+0x1c0/0x230 [ 929.445698][T17217] get_page_from_freelist+0x132b/0x38e0 [ 929.451362][T17217] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 929.498070][T17217] alloc_pages_mpol+0x1fb/0x550 [ 929.503034][T17217] alloc_pages_noprof+0x131/0x390 [ 929.541660][T17217] __vmalloc_node_range_noprof+0x72f/0x14b0 [ 929.579741][T17217] vmalloc_user_noprof+0x9e/0xe0 [ 929.605379][T17217] kcov_ioctl+0x4c/0x730 [ 929.617560][T17217] __x64_sys_ioctl+0x18e/0x210 [ 929.634662][T17217] do_syscall_64+0xcd/0x490 [ 929.649872][T17217] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 929.667353][T17217] page last free pid 8477 tgid 8477 stack trace: [ 929.673894][T17217] __free_frozen_pages+0x7d5/0x10f0 [ 929.679266][T17217] vfree+0x1fd/0xb50 [ 929.683245][T17217] kcov_close+0x34/0x60 [ 929.688024][T17217] __fput+0x402/0xb70 [ 929.692114][T17217] task_work_run+0x14d/0x240 [ 929.700001][T17217] do_exit+0x86f/0x2bf0 [ 929.705058][T17217] do_group_exit+0xd3/0x2a0 [ 929.709605][T17217] __x64_sys_exit_group+0x3e/0x50 [ 929.726642][T17217] x64_sys_call+0x14fa/0x1720 [ 929.739430][T17217] do_syscall_64+0xcd/0x490 [ 929.777589][T17217] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 932.791373][T17276] FAULT_INJECTION: forcing a failure. [ 932.791373][T17276] name failslab, interval 1, probability 0, space 0, times 0 [ 932.845155][T17276] CPU: 1 UID: 0 PID: 17276 Comm: syz.2.1690 Tainted: G U syzkaller #0 PREEMPT(full) [ 932.845209][T17276] Tainted: [U]=USER [ 932.845219][T17276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 932.845238][T17276] Call Trace: [ 932.845250][T17276] [ 932.845262][T17276] dump_stack_lvl+0x16c/0x1f0 [ 932.845313][T17276] should_fail_ex+0x512/0x640 [ 932.845358][T17276] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 932.845409][T17276] should_failslab+0xc2/0x120 [ 932.845454][T17276] __kmalloc_cache_noprof+0x6a/0x3e0 [ 932.845490][T17276] ? nci_allocate_device+0x105/0x430 [ 932.845536][T17276] nci_allocate_device+0x105/0x430 [ 932.845576][T17276] virtual_ncidev_open+0x6f/0x220 [ 932.845615][T17276] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 932.845651][T17276] misc_open+0x35d/0x420 [ 932.845687][T17276] ? __pfx_misc_open+0x10/0x10 [ 932.845722][T17276] chrdev_open+0x234/0x6a0 [ 932.845764][T17276] ? __pfx_apparmor_file_open+0x10/0x10 [ 932.845801][T17276] ? __pfx_chrdev_open+0x10/0x10 [ 932.845847][T17276] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 932.845892][T17276] do_dentry_open+0x982/0x1530 [ 932.845929][T17276] ? __pfx_chrdev_open+0x10/0x10 [ 932.845980][T17276] vfs_open+0x82/0x3f0 [ 932.846031][T17276] path_openat+0x1de4/0x2cb0 [ 932.846085][T17276] ? __pfx_path_openat+0x10/0x10 [ 932.846128][T17276] do_filp_open+0x20b/0x470 [ 932.846161][T17276] ? __pfx_do_filp_open+0x10/0x10 [ 932.846226][T17276] ? alloc_fd+0x471/0x7d0 [ 932.846270][T17276] do_sys_openat2+0x11b/0x1d0 [ 932.846318][T17276] ? __pfx_do_sys_openat2+0x10/0x10 [ 932.846394][T17276] __x64_sys_openat+0x174/0x210 [ 932.846446][T17276] ? __pfx___x64_sys_openat+0x10/0x10 [ 932.846512][T17276] do_syscall_64+0xcd/0x490 [ 932.846561][T17276] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 932.846594][T17276] RIP: 0033:0x7f40cfd8ebe9 [ 932.846622][T17276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 932.846654][T17276] RSP: 002b:00007f40d0ca2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 932.846685][T17276] RAX: ffffffffffffffda RBX: 00007f40cffb5fa0 RCX: 00007f40cfd8ebe9 [ 932.846706][T17276] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 932.846728][T17276] RBP: 00007f40cfe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 932.846756][T17276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 932.846776][T17276] R13: 00007f40cffb6038 R14: 00007f40cffb5fa0 R15: 00007ffdfc255308 [ 932.846819][T17276] [ 937.027442][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 937.033837][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 939.996112][T17380] sctp: Failed to create the SCTP UDP tunneling v4 sock [ 952.523013][T17545] sd 0:0:1:0: PR command failed: 1026 [ 952.541059][T17545] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 952.561420][T17545] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 965.205109][T17700] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1781'. [ 968.465625][T17756] FAULT_INJECTION: forcing a failure. [ 968.465625][T17756] name failslab, interval 1, probability 0, space 0, times 0 [ 968.478509][T17756] CPU: 0 UID: 0 PID: 17756 Comm: syz.1.1792 Tainted: G U syzkaller #0 PREEMPT(full) [ 968.478547][T17756] Tainted: [U]=USER [ 968.478555][T17756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 968.478570][T17756] Call Trace: [ 968.478578][T17756] [ 968.478587][T17756] dump_stack_lvl+0x16c/0x1f0 [ 968.478625][T17756] should_fail_ex+0x512/0x640 [ 968.478659][T17756] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 968.478692][T17756] should_failslab+0xc2/0x120 [ 968.478725][T17756] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 968.478754][T17756] ? prepare_creds+0x2c/0x7d0 [ 968.478795][T17756] prepare_creds+0x2c/0x7d0 [ 968.478832][T17756] __do_sys_landlock_restrict_self+0x13e/0x910 [ 968.478860][T17756] ? rcu_is_watching+0x12/0xc0 [ 968.478887][T17756] do_syscall_64+0xcd/0x490 [ 968.478922][T17756] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 968.478958][T17756] RIP: 0033:0x7ff6a6d8ebe9 [ 968.478977][T17756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 968.479000][T17756] RSP: 002b:00007ff6a7c1c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001be [ 968.479023][T17756] RAX: ffffffffffffffda RBX: 00007ff6a6fb5fa0 RCX: 00007ff6a6d8ebe9 [ 968.479039][T17756] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000005 [ 968.479053][T17756] RBP: 00007ff6a6e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 968.479067][T17756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 968.479081][T17756] R13: 00007ff6a6fb6038 R14: 00007ff6a6fb5fa0 R15: 00007ffe417be008 [ 968.479111][T17756] [ 969.541647][T17771] : renamed from gre0 (while UP) [ 974.313383][T17827] netlink: 146 bytes leftover after parsing attributes in process `syz.3.1808'. [ 974.809306][T17832] overlayfs: missing 'lowerdir' [ 974.992360][T17840] FAULT_INJECTION: forcing a failure. [ 974.992360][T17840] name failslab, interval 1, probability 0, space 0, times 0 [ 975.022970][T17840] CPU: 1 UID: 0 PID: 17840 Comm: syz.0.1812 Tainted: G U syzkaller #0 PREEMPT(full) [ 975.023025][T17840] Tainted: [U]=USER [ 975.023037][T17840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 975.023059][T17840] Call Trace: [ 975.023070][T17840] [ 975.023082][T17840] dump_stack_lvl+0x16c/0x1f0 [ 975.023134][T17840] should_fail_ex+0x512/0x640 [ 975.023180][T17840] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 975.023219][T17840] should_failslab+0xc2/0x120 [ 975.023265][T17840] __kmalloc_cache_noprof+0x6a/0x3e0 [ 975.023299][T17840] ? kfree+0x2b4/0x4d0 [ 975.023327][T17840] ? memtype_get_idx+0x3d/0xc0 [ 975.023373][T17840] memtype_get_idx+0x3d/0xc0 [ 975.023412][T17840] seq_read_iter+0xa12/0x12c0 [ 975.023463][T17840] seq_read+0x3a3/0x570 [ 975.023497][T17840] ? __pfx_seq_read+0x10/0x10 [ 975.023560][T17840] full_proxy_read+0x131/0x1a0 [ 975.023612][T17840] ? __pfx_full_proxy_read+0x10/0x10 [ 975.023665][T17840] vfs_read+0x1e4/0xcf0 [ 975.023708][T17840] ? __pfx___mutex_lock+0x10/0x10 [ 975.023754][T17840] ? __pfx_vfs_read+0x10/0x10 [ 975.023813][T17840] ? __fget_files+0x20e/0x3c0 [ 975.023864][T17840] ksys_read+0x12a/0x250 [ 975.023904][T17840] ? __pfx_ksys_read+0x10/0x10 [ 975.023955][T17840] do_syscall_64+0xcd/0x490 [ 975.024006][T17840] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 975.024041][T17840] RIP: 0033:0x7f86c438ebe9 [ 975.024068][T17840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 975.024102][T17840] RSP: 002b:00007f86c5256038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 975.024135][T17840] RAX: ffffffffffffffda RBX: 00007f86c45b5fa0 RCX: 00007f86c438ebe9 [ 975.024158][T17840] RDX: 00000000000000f8 RSI: 0000200000000240 RDI: 0000000000000005 [ 975.024179][T17840] RBP: 00007f86c4411e19 R08: 0000000000000000 R09: 0000000000000000 [ 975.024200][T17840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 975.024221][T17840] R13: 00007f86c45b6038 R14: 00007f86c45b5fa0 R15: 00007ffd94aafff8 [ 975.024266][T17840] [ 977.307262][T17878] FAULT_INJECTION: forcing a failure. [ 977.307262][T17878] name failslab, interval 1, probability 0, space 0, times 0 [ 977.356910][T17878] CPU: 0 UID: 0 PID: 17878 Comm: syz.3.1821 Tainted: G U syzkaller #0 PREEMPT(full) [ 977.356949][T17878] Tainted: [U]=USER [ 977.356957][T17878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 977.356971][T17878] Call Trace: [ 977.356979][T17878] [ 977.356988][T17878] dump_stack_lvl+0x16c/0x1f0 [ 977.357025][T17878] should_fail_ex+0x512/0x640 [ 977.357059][T17878] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 977.357091][T17878] should_failslab+0xc2/0x120 [ 977.357123][T17878] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 977.357152][T17878] ? prepare_creds+0x2c/0x7d0 [ 977.357192][T17878] prepare_creds+0x2c/0x7d0 [ 977.357229][T17878] __do_sys_landlock_restrict_self+0x13e/0x910 [ 977.357258][T17878] ? rcu_is_watching+0x12/0xc0 [ 977.357285][T17878] do_syscall_64+0xcd/0x490 [ 977.357325][T17878] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 977.357350][T17878] RIP: 0033:0x7f45fa58ebe9 [ 977.357368][T17878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 977.357391][T17878] RSP: 002b:00007f45fb315038 EFLAGS: 00000246 ORIG_RAX: 00000000000001be [ 977.357421][T17878] RAX: ffffffffffffffda RBX: 00007f45fa7b5fa0 RCX: 00007f45fa58ebe9 [ 977.357437][T17878] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000005 [ 977.357451][T17878] RBP: 00007f45fa611e19 R08: 0000000000000000 R09: 0000000000000000 [ 977.357467][T17878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 977.357481][T17878] R13: 00007f45fa7b6038 R14: 00007f45fa7b5fa0 R15: 00007ffe8e2e3f78 [ 977.357511][T17878] [ 978.220762][T17885] netlink: 146 bytes leftover after parsing attributes in process `syz.3.1822'. [ 979.136254][T17898] FAULT_INJECTION: forcing a failure. [ 979.136254][T17898] name fail_futex, interval 1, probability 0, space 0, times 0 [ 979.149529][T17898] CPU: 0 UID: 0 PID: 17898 Comm: syz.0.1825 Tainted: G U syzkaller #0 PREEMPT(full) [ 979.149565][T17898] Tainted: [U]=USER [ 979.149572][T17898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 979.149586][T17898] Call Trace: [ 979.149594][T17898] [ 979.149603][T17898] dump_stack_lvl+0x16c/0x1f0 [ 979.149639][T17898] should_fail_ex+0x512/0x640 [ 979.149677][T17898] get_futex_key+0x1d0/0x1560 [ 979.149708][T17898] ? __pfx_get_futex_key+0x10/0x10 [ 979.149736][T17898] ? __mutex_trylock_common+0xe9/0x250 [ 979.149776][T17898] futex_wake+0xea/0x530 [ 979.149812][T17898] ? __pfx_futex_wake+0x10/0x10 [ 979.149858][T17898] do_futex+0x1e3/0x350 [ 979.149887][T17898] ? __pfx_do_futex+0x10/0x10 [ 979.149914][T17898] ? __might_fault+0xe3/0x190 [ 979.149949][T17898] mm_release+0x24e/0x300 [ 979.149976][T17898] do_exit+0x68e/0x2bf0 [ 979.150014][T17898] ? __pfx_do_exit+0x10/0x10 [ 979.150045][T17898] ? do_raw_spin_lock+0x12c/0x2b0 [ 979.150080][T17898] ? find_held_lock+0x2b/0x80 [ 979.150107][T17898] do_group_exit+0xd3/0x2a0 [ 979.150141][T17898] get_signal+0x2673/0x26d0 [ 979.150178][T17898] ? __pfx_get_signal+0x10/0x10 [ 979.150204][T17898] ? do_futex+0x122/0x350 [ 979.150233][T17898] ? __pfx_do_futex+0x10/0x10 [ 979.150264][T17898] arch_do_signal_or_restart+0x8f/0x790 [ 979.150296][T17898] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 979.150334][T17898] ? xfd_validate_state+0x61/0x180 [ 979.150367][T17898] ? __pfx_ksys_write+0x10/0x10 [ 979.150400][T17898] exit_to_user_mode_loop+0x84/0x110 [ 979.150436][T17898] do_syscall_64+0x3f6/0x490 [ 979.150469][T17898] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 979.150493][T17898] RIP: 0033:0x7f86c438ebe9 [ 979.150515][T17898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 979.150538][T17898] RSP: 002b:00007f86c52350e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 979.150560][T17898] RAX: fffffffffffffe00 RBX: 00007f86c45b6098 RCX: 00007f86c438ebe9 [ 979.150575][T17898] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f86c45b6098 [ 979.150590][T17898] RBP: 00007f86c45b6090 R08: 0000000000000000 R09: 0000000000000000 [ 979.150604][T17898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 979.150617][T17898] R13: 00007f86c45b6128 R14: 00007ffd94aaff10 R15: 00007ffd94aafff8 [ 979.150646][T17898] [ 979.592612][T17904] FAULT_INJECTION: forcing a failure. [ 979.592612][T17904] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 979.607272][T17904] CPU: 0 UID: 0 PID: 17904 Comm: syz.0.1827 Tainted: G U syzkaller #0 PREEMPT(full) [ 979.607326][T17904] Tainted: [U]=USER [ 979.607338][T17904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 979.607358][T17904] Call Trace: [ 979.607369][T17904] [ 979.607381][T17904] dump_stack_lvl+0x16c/0x1f0 [ 979.607434][T17904] should_fail_ex+0x512/0x640 [ 979.607487][T17904] _copy_from_user+0x2e/0xd0 [ 979.607541][T17904] ? __pfx_do_get_feature_msr+0x10/0x10 [ 979.607582][T17904] memdup_user+0x6b/0xe0 [ 979.607624][T17904] msr_io+0xea/0x2a0 [ 979.607665][T17904] ? __pfx_msr_io+0x10/0x10 [ 979.607704][T17904] ? tomoyo_path_number_perm+0x18d/0x580 [ 979.607751][T17904] kvm_arch_dev_ioctl+0x39b/0x760 [ 979.607790][T17904] ? __pfx_kvm_arch_dev_ioctl+0x10/0x10 [ 979.607837][T17904] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 979.607890][T17904] ? do_vfs_ioctl+0x128/0x14f0 [ 979.607943][T17904] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 979.607992][T17904] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 979.608043][T17904] kvm_dev_ioctl+0x721/0x1af0 [ 979.608084][T17904] ? find_held_lock+0x2b/0x80 [ 979.608116][T17904] ? hook_file_ioctl_common+0x145/0x410 [ 979.608161][T17904] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 979.608201][T17904] ? __fget_files+0x20e/0x3c0 [ 979.608250][T17904] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 979.608288][T17904] __x64_sys_ioctl+0x18e/0x210 [ 979.608343][T17904] do_syscall_64+0xcd/0x490 [ 979.608393][T17904] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 979.608446][T17904] RIP: 0033:0x7f86c438ebe9 [ 979.608472][T17904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 979.608505][T17904] RSP: 002b:00007f86c5256038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 979.608536][T17904] RAX: ffffffffffffffda RBX: 00007f86c45b5fa0 RCX: 00007f86c438ebe9 [ 979.608558][T17904] RDX: 0000200000000040 RSI: 00000000c008ae88 RDI: 0000000000000005 [ 979.608580][T17904] RBP: 00007f86c4411e19 R08: 0000000000000000 R09: 0000000000000000 [ 979.608600][T17904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 979.608620][T17904] R13: 00007f86c45b6038 R14: 00007f86c45b5fa0 R15: 00007ffd94aafff8 [ 979.608663][T17904] [ 986.235790][T17993] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1848'. [ 987.330361][T18008] FAULT_INJECTION: forcing a failure. [ 987.330361][T18008] name failslab, interval 1, probability 0, space 0, times 0 [ 987.394061][T18008] CPU: 1 UID: 0 PID: 18008 Comm: syz.0.1852 Tainted: G U syzkaller #0 PREEMPT(full) [ 987.394113][T18008] Tainted: [U]=USER [ 987.394124][T18008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 987.394144][T18008] Call Trace: [ 987.394155][T18008] [ 987.394168][T18008] dump_stack_lvl+0x16c/0x1f0 [ 987.394216][T18008] should_fail_ex+0x512/0x640 [ 987.394259][T18008] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 987.394299][T18008] should_failslab+0xc2/0x120 [ 987.394342][T18008] __kmalloc_cache_noprof+0x6a/0x3e0 [ 987.394375][T18008] ? _raw_spin_unlock+0x28/0x50 [ 987.394412][T18008] ? snd_ctl_open+0x174/0x5f0 [ 987.394460][T18008] snd_ctl_open+0x174/0x5f0 [ 987.394504][T18008] ? __pfx_snd_ctl_open+0x10/0x10 [ 987.394545][T18008] snd_open+0x22a/0x4c0 [ 987.394604][T18008] ? __pfx_snd_open+0x10/0x10 [ 987.394649][T18008] chrdev_open+0x234/0x6a0 [ 987.394691][T18008] ? __pfx_apparmor_file_open+0x10/0x10 [ 987.394725][T18008] ? __pfx_chrdev_open+0x10/0x10 [ 987.394768][T18008] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 987.394812][T18008] do_dentry_open+0x982/0x1530 [ 987.394852][T18008] ? __pfx_chrdev_open+0x10/0x10 [ 987.394912][T18008] vfs_open+0x82/0x3f0 [ 987.394966][T18008] path_openat+0x1de4/0x2cb0 [ 987.395015][T18008] ? __pfx_path_openat+0x10/0x10 [ 987.395062][T18008] do_filp_open+0x20b/0x470 [ 987.395100][T18008] ? __pfx_do_filp_open+0x10/0x10 [ 987.395166][T18008] ? alloc_fd+0x471/0x7d0 [ 987.395209][T18008] do_sys_openat2+0x11b/0x1d0 [ 987.395256][T18008] ? __pfx_do_sys_openat2+0x10/0x10 [ 987.395319][T18008] __x64_sys_openat+0x174/0x210 [ 987.395368][T18008] ? __pfx___x64_sys_openat+0x10/0x10 [ 987.395434][T18008] do_syscall_64+0xcd/0x490 [ 987.395480][T18008] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 987.395512][T18008] RIP: 0033:0x7f86c438ebe9 [ 987.395537][T18008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 987.395570][T18008] RSP: 002b:00007f86c5256038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 987.395600][T18008] RAX: ffffffffffffffda RBX: 00007f86c45b5fa0 RCX: 00007f86c438ebe9 [ 987.395623][T18008] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 987.395643][T18008] RBP: 00007f86c4411e19 R08: 0000000000000000 R09: 0000000000000000 [ 987.395664][T18008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 987.395683][T18008] R13: 00007f86c45b6038 R14: 00007f86c45b5fa0 R15: 00007ffd94aafff8 [ 987.395724][T18008] [ 989.102533][T18032] FAULT_INJECTION: forcing a failure. [ 989.102533][T18032] name failslab, interval 1, probability 0, space 0, times 0 [ 989.146888][T18032] CPU: 0 UID: 0 PID: 18032 Comm: syz.0.1858 Tainted: G U syzkaller #0 PREEMPT(full) [ 989.146941][T18032] Tainted: [U]=USER [ 989.146952][T18032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 989.146974][T18032] Call Trace: [ 989.146985][T18032] [ 989.146998][T18032] dump_stack_lvl+0x16c/0x1f0 [ 989.147047][T18032] should_fail_ex+0x512/0x640 [ 989.147094][T18032] ? fs_reclaim_acquire+0xae/0x150 [ 989.147149][T18032] should_failslab+0xc2/0x120 [ 989.147192][T18032] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 989.147234][T18032] ? __kernfs_new_node+0xd2/0x8e0 [ 989.147283][T18032] __kernfs_new_node+0xd2/0x8e0 [ 989.147331][T18032] ? __pfx___kernfs_new_node+0x10/0x10 [ 989.147385][T18032] ? find_held_lock+0x2b/0x80 [ 989.147419][T18032] ? kernfs_root+0xee/0x2a0 [ 989.147468][T18032] kernfs_new_node+0x13c/0x1e0 [ 989.147525][T18032] __kernfs_create_file+0x53/0x350 [ 989.147563][T18032] sysfs_add_file_mode_ns+0x207/0x3c0 [ 989.147623][T18032] internal_create_group+0x578/0xf30 [ 989.147679][T18032] ? __pfx_internal_create_group+0x10/0x10 [ 989.147727][T18032] ? sysfs_create_dir_ns+0x14c/0x2b0 [ 989.147768][T18032] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 989.147807][T18032] ? sysfs_create_dir_ns+0x14c/0x2b0 [ 989.147845][T18032] ? sysfs_create_dir_ns+0x18a/0x2b0 [ 989.147891][T18032] internal_create_groups+0x9d/0x150 [ 989.147945][T18032] kobject_add_internal+0x311/0x9b0 [ 989.148003][T18032] kobject_add+0x16e/0x240 [ 989.148052][T18032] ? __pfx_kobject_add+0x10/0x10 [ 989.148103][T18032] ? __pfx_kobject_add+0x10/0x10 [ 989.148170][T18032] blk_register_queue+0x89/0x4e0 [ 989.148226][T18032] __add_disk+0x74a/0xf00 [ 989.148280][T18032] add_disk_fwnode+0x13f/0x5d0 [ 989.148330][T18032] loop_add+0x903/0xb70 [ 989.148368][T18032] ? __pfx_loop_add+0x10/0x10 [ 989.148432][T18032] ? find_held_lock+0x2b/0x80 [ 989.148470][T18032] loop_control_ioctl+0x13e/0x630 [ 989.148508][T18032] ? __pfx_loop_control_ioctl+0x10/0x10 [ 989.148553][T18032] ? __pfx_loop_control_ioctl+0x10/0x10 [ 989.148597][T18032] __x64_sys_ioctl+0x18e/0x210 [ 989.148653][T18032] do_syscall_64+0xcd/0x490 [ 989.148702][T18032] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 989.148735][T18032] RIP: 0033:0x7f86c438ebe9 [ 989.148761][T18032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 989.148792][T18032] RSP: 002b:00007f86c5256038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 989.148824][T18032] RAX: ffffffffffffffda RBX: 00007f86c45b5fa0 RCX: 00007f86c438ebe9 [ 989.148846][T18032] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000005 [ 989.148867][T18032] RBP: 00007f86c4411e19 R08: 0000000000000000 R09: 0000000000000000 [ 989.148888][T18032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 989.148908][T18032] R13: 00007f86c45b6038 R14: 00007f86c45b5fa0 R15: 00007ffd94aafff8 [ 989.148950][T18032] [ 989.555650][T18032] kobject: kobject_add_internal failed for queue (error: -12 parent: loop32) [ 989.989614][T18049] qrtr: Invalid version 4 [ 994.861271][T18117] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1881'. [ 995.499115][T18128] FAULT_INJECTION: forcing a failure. [ 995.499115][T18128] name failslab, interval 1, probability 0, space 0, times 0 [ 995.512164][T18128] CPU: 1 UID: 0 PID: 18128 Comm: syz.0.1883 Tainted: G U syzkaller #0 PREEMPT(full) [ 995.512228][T18128] Tainted: [U]=USER [ 995.512235][T18128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 995.512252][T18128] Call Trace: [ 995.512260][T18128] [ 995.512268][T18128] dump_stack_lvl+0x16c/0x1f0 [ 995.512304][T18128] should_fail_ex+0x512/0x640 [ 995.512337][T18128] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 995.512364][T18128] should_failslab+0xc2/0x120 [ 995.512403][T18128] __kmalloc_cache_noprof+0x6a/0x3e0 [ 995.512427][T18128] ? nfc_allocate_device+0x15b/0x5e0 [ 995.512490][T18128] nfc_allocate_device+0x15b/0x5e0 [ 995.512523][T18128] ? __init_swait_queue_head+0xca/0x150 [ 995.512566][T18128] nci_allocate_device+0x23b/0x430 [ 995.512599][T18128] virtual_ncidev_open+0x6f/0x220 [ 995.512627][T18128] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 995.512654][T18128] misc_open+0x35d/0x420 [ 995.512680][T18128] ? __pfx_misc_open+0x10/0x10 [ 995.512705][T18128] chrdev_open+0x234/0x6a0 [ 995.512736][T18128] ? __pfx_apparmor_file_open+0x10/0x10 [ 995.512763][T18128] ? __pfx_chrdev_open+0x10/0x10 [ 995.512796][T18128] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 995.512830][T18128] do_dentry_open+0x982/0x1530 [ 995.512860][T18128] ? __pfx_chrdev_open+0x10/0x10 [ 995.512897][T18128] vfs_open+0x82/0x3f0 [ 995.512937][T18128] path_openat+0x1de4/0x2cb0 [ 995.512975][T18128] ? __pfx_path_openat+0x10/0x10 [ 995.513012][T18128] do_filp_open+0x20b/0x470 [ 995.513041][T18128] ? __pfx_do_filp_open+0x10/0x10 [ 995.513098][T18128] ? alloc_fd+0x471/0x7d0 [ 995.513132][T18128] do_sys_openat2+0x11b/0x1d0 [ 995.513172][T18128] ? __pfx_do_sys_openat2+0x10/0x10 [ 995.513222][T18128] __x64_sys_openat+0x174/0x210 [ 995.513262][T18128] ? __pfx___x64_sys_openat+0x10/0x10 [ 995.513314][T18128] do_syscall_64+0xcd/0x490 [ 995.513354][T18128] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 995.513384][T18128] RIP: 0033:0x7f86c438ebe9 [ 995.513404][T18128] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 995.513429][T18128] RSP: 002b:00007f86c5256038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 995.513452][T18128] RAX: ffffffffffffffda RBX: 00007f86c45b5fa0 RCX: 00007f86c438ebe9 [ 995.513468][T18128] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 995.513484][T18128] RBP: 00007f86c4411e19 R08: 0000000000000000 R09: 0000000000000000 [ 995.513498][T18128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 995.513512][T18128] R13: 00007f86c45b6038 R14: 00007f86c45b5fa0 R15: 00007ffd94aafff8 [ 995.513543][T18128] [ 998.463428][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 998.470071][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 998.589764][T18164] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1892'. [ 1000.678529][T18188] i2c i2c-0: new_device: Instantiated device card: at 0x01 [ 1003.152227][ T30] audit: type=1326 audit(6051466318.256:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18209 comm=6E6C696E650A exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f40cfd8ebe9 code=0x0 [ 1003.341457][T18212] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1902'. [ 1004.717008][T18237] i2c i2c-0: delete_device: Can't find device in list [ 1007.087242][T18262] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1913'. [ 1008.248782][T18280] FAULT_INJECTION: forcing a failure. [ 1008.248782][T18280] name failslab, interval 1, probability 0, space 0, times 0 [ 1008.285032][T18282] FAULT_INJECTION: forcing a failure. [ 1008.285032][T18282] name failslab, interval 1, probability 0, space 0, times 0 [ 1008.298429][T18280] CPU: 0 UID: 0 PID: 18280 Comm: syz.1.1917 Tainted: G U syzkaller #0 PREEMPT(full) [ 1008.298479][T18280] Tainted: [U]=USER [ 1008.298489][T18280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1008.298510][T18280] Call Trace: [ 1008.298520][T18280] [ 1008.298533][T18280] dump_stack_lvl+0x16c/0x1f0 [ 1008.298592][T18280] should_fail_ex+0x512/0x640 [ 1008.298639][T18280] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 1008.298690][T18280] should_failslab+0xc2/0x120 [ 1008.298734][T18280] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 1008.298780][T18280] ? __kthread_create_on_node+0x186/0x3f0 [ 1008.298837][T18280] kvasprintf+0xbc/0x160 [ 1008.298870][T18280] ? __pfx_kvasprintf+0x10/0x10 [ 1008.298936][T18280] ? __pfx_tomoyo_gc_thread+0x10/0x10 [ 1008.298978][T18280] __kthread_create_on_node+0x186/0x3f0 [ 1008.299027][T18280] ? __pfx___kthread_create_on_node+0x10/0x10 [ 1008.299118][T18280] ? __pfx_tomoyo_gc_thread+0x10/0x10 [ 1008.299164][T18280] kthread_create_on_node+0xc7/0x100 [ 1008.299210][T18280] ? __pfx_kthread_create_on_node+0x10/0x10 [ 1008.299256][T18280] ? kasan_quarantine_put+0x10a/0x240 [ 1008.299300][T18280] ? find_held_lock+0x2b/0x80 [ 1008.299335][T18280] ? tomoyo_notify_gc+0xc6/0x470 [ 1008.299386][T18280] tomoyo_notify_gc+0xea/0x470 [ 1008.299427][T18280] ? ima_iint_find+0xea/0x130 [ 1008.299465][T18280] ? __pfx_tomoyo_release+0x10/0x10 [ 1008.299515][T18280] tomoyo_release+0x31/0x40 [ 1008.299570][T18280] __fput+0x402/0xb70 [ 1008.299630][T18280] task_work_run+0x14d/0x240 [ 1008.299688][T18280] ? __pfx_task_work_run+0x10/0x10 [ 1008.299743][T18280] ? __pfx___do_sys_close_range+0x10/0x10 [ 1008.299795][T18280] exit_to_user_mode_loop+0xeb/0x110 [ 1008.299850][T18280] do_syscall_64+0x3f6/0x490 [ 1008.299903][T18280] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1008.299939][T18280] RIP: 0033:0x7ff6a6d8ebe9 [ 1008.299966][T18280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1008.300002][T18280] RSP: 002b:00007ff6a7c1c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 1008.300036][T18280] RAX: 0000000000000000 RBX: 00007ff6a6fb5fa0 RCX: 00007ff6a6d8ebe9 [ 1008.300058][T18280] RDX: 0000000000000000 RSI: 000000000000000a RDI: 0000000000000002 [ 1008.300090][T18280] RBP: 00007ff6a6e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1008.300110][T18280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1008.300130][T18280] R13: 00007ff6a6fb6038 R14: 00007ff6a6fb5fa0 R15: 00007ffe417be008 [ 1008.300172][T18280] [ 1008.467145][T18282] CPU: 1 UID: 0 PID: 18282 Comm: syz.2.1918 Tainted: G U syzkaller #0 PREEMPT(full) [ 1008.467203][T18282] Tainted: [U]=USER [ 1008.467214][T18282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1008.467236][T18282] Call Trace: [ 1008.467247][T18282] [ 1008.467263][T18282] dump_stack_lvl+0x16c/0x1f0 [ 1008.467319][T18282] should_fail_ex+0x512/0x640 [ 1008.467370][T18282] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1008.467413][T18282] should_failslab+0xc2/0x120 [ 1008.467463][T18282] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1008.467517][T18282] ? pty_common_install+0x10e/0xb30 [ 1008.467569][T18282] pty_common_install+0x10e/0xb30 [ 1008.467620][T18282] ? __pfx_pty_install+0x10/0x10 [ 1008.467663][T18282] tty_init_dev.part.0+0x99/0x500 [ 1008.467720][T18282] tty_open+0xa50/0xf90 [ 1008.467780][T18282] ? __pfx_tty_open+0x10/0x10 [ 1008.467833][T18282] ? chrdev_open+0x58c/0x6a0 [ 1008.467886][T18282] ? __pfx_tty_open+0x10/0x10 [ 1008.467937][T18282] chrdev_open+0x234/0x6a0 [ 1008.467985][T18282] ? __pfx_chrdev_open+0x10/0x10 [ 1008.468035][T18282] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1008.468086][T18282] do_dentry_open+0x982/0x1530 [ 1008.468131][T18282] ? __pfx_chrdev_open+0x10/0x10 [ 1008.468187][T18282] vfs_open+0x82/0x3f0 [ 1008.468247][T18282] path_openat+0x1de4/0x2cb0 [ 1008.468304][T18282] ? __pfx_path_openat+0x10/0x10 [ 1008.468359][T18282] do_filp_open+0x20b/0x470 [ 1008.468403][T18282] ? __pfx_do_filp_open+0x10/0x10 [ 1008.468487][T18282] ? alloc_fd+0x471/0x7d0 [ 1008.468540][T18282] do_sys_openat2+0x11b/0x1d0 [ 1008.468594][T18282] ? __pfx_do_sys_openat2+0x10/0x10 [ 1008.468669][T18282] __x64_sys_openat+0x174/0x210 [ 1008.468727][T18282] ? __pfx___x64_sys_openat+0x10/0x10 [ 1008.468805][T18282] do_syscall_64+0xcd/0x490 [ 1008.468860][T18282] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1008.468896][T18282] RIP: 0033:0x7f40cfd8ebe9 [ 1008.468925][T18282] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1008.468963][T18282] RSP: 002b:00007f40d0ca2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1008.468999][T18282] RAX: ffffffffffffffda RBX: 00007f40cffb5fa0 RCX: 00007f40cfd8ebe9 [ 1008.469023][T18282] RDX: 0000000000101e81 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 1008.469046][T18282] RBP: 00007f40cfe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1008.469069][T18282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1008.469091][T18282] R13: 00007f40cffb6038 R14: 00007f40cffb5fa0 R15: 00007ffdfc255308 [ 1008.469139][T18282] [ 1009.526167][T18299] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1924'. [ 1019.347209][T18455] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4) [ 1026.654625][T18532] FAULT_INJECTION: forcing a failure. [ 1026.654625][T18532] name failslab, interval 1, probability 0, space 0, times 0 [ 1026.709537][T18532] CPU: 1 UID: 0 PID: 18532 Comm: syz.3.1972 Tainted: G U syzkaller #0 PREEMPT(full) [ 1026.709592][T18532] Tainted: [U]=USER [ 1026.709602][T18532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1026.709622][T18532] Call Trace: [ 1026.709634][T18532] [ 1026.709647][T18532] dump_stack_lvl+0x16c/0x1f0 [ 1026.709698][T18532] should_fail_ex+0x512/0x640 [ 1026.709747][T18532] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 1026.709798][T18532] should_failslab+0xc2/0x120 [ 1026.709843][T18532] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 1026.709892][T18532] ? __kthread_create_on_node+0x186/0x3f0 [ 1026.709947][T18532] kvasprintf+0xbc/0x160 [ 1026.709979][T18532] ? __pfx_kvasprintf+0x10/0x10 [ 1026.710029][T18532] ? __pfx_dvb_frontend_thread+0x10/0x10 [ 1026.710078][T18532] __kthread_create_on_node+0x186/0x3f0 [ 1026.710127][T18532] ? __pfx___kthread_create_on_node+0x10/0x10 [ 1026.710188][T18532] ? __lock_acquire+0xb97/0x1ce0 [ 1026.710244][T18532] ? __pfx_dvb_frontend_thread+0x10/0x10 [ 1026.710296][T18532] kthread_create_on_node+0xc7/0x100 [ 1026.710343][T18532] ? __pfx_kthread_create_on_node+0x10/0x10 [ 1026.710398][T18532] ? mark_held_locks+0x49/0x80 [ 1026.710442][T18532] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 1026.710486][T18532] ? lockdep_hardirqs_on+0x7c/0x110 [ 1026.710537][T18532] dvb_frontend_open+0xf47/0x1730 [ 1026.710598][T18532] ? __pfx_dvb_frontend_open+0x10/0x10 [ 1026.710648][T18532] dvb_device_open+0x26d/0x3b0 [ 1026.710698][T18532] ? __pfx_dvb_device_open+0x10/0x10 [ 1026.710747][T18532] chrdev_open+0x234/0x6a0 [ 1026.710791][T18532] ? __pfx_apparmor_file_open+0x10/0x10 [ 1026.710830][T18532] ? __pfx_chrdev_open+0x10/0x10 [ 1026.710878][T18532] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1026.710926][T18532] do_dentry_open+0x982/0x1530 [ 1026.710971][T18532] ? __pfx_chrdev_open+0x10/0x10 [ 1026.711024][T18532] vfs_open+0x82/0x3f0 [ 1026.711082][T18532] path_openat+0x1de4/0x2cb0 [ 1026.711135][T18532] ? __pfx_path_openat+0x10/0x10 [ 1026.711178][T18532] do_filp_open+0x20b/0x470 [ 1026.711213][T18532] ? __pfx_do_filp_open+0x10/0x10 [ 1026.711283][T18532] ? alloc_fd+0x471/0x7d0 [ 1026.711323][T18532] do_sys_openat2+0x11b/0x1d0 [ 1026.711367][T18532] ? __pfx_do_sys_openat2+0x10/0x10 [ 1026.711425][T18532] __x64_sys_openat+0x174/0x210 [ 1026.711471][T18532] ? __pfx___x64_sys_openat+0x10/0x10 [ 1026.711533][T18532] do_syscall_64+0xcd/0x490 [ 1026.711575][T18532] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1026.711604][T18532] RIP: 0033:0x7f45fa58ebe9 [ 1026.711626][T18532] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1026.711655][T18532] RSP: 002b:00007f45fb315038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1026.711682][T18532] RAX: ffffffffffffffda RBX: 00007f45fa7b5fa0 RCX: 00007f45fa58ebe9 [ 1026.711700][T18532] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1026.711718][T18532] RBP: 00007f45fa611e19 R08: 0000000000000000 R09: 0000000000000000 [ 1026.711736][T18532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1026.711753][T18532] R13: 00007f45fa7b6038 R14: 00007f45fa7b5fa0 R15: 00007ffe8e2e3f78 [ 1026.711789][T18532] [ 1026.876824][T18532] i2c i2c-0: dvb_frontend_start: failed to start kthread (-12) [ 1027.317034][T18538] FAULT_INJECTION: forcing a failure. [ 1027.317034][T18538] name failslab, interval 1, probability 0, space 0, times 0 [ 1027.404638][T18538] CPU: 0 UID: 0 PID: 18538 Comm: syz.3.1974 Tainted: G U syzkaller #0 PREEMPT(full) [ 1027.404686][T18538] Tainted: [U]=USER [ 1027.404695][T18538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1027.404714][T18538] Call Trace: [ 1027.404725][T18538] [ 1027.404737][T18538] dump_stack_lvl+0x16c/0x1f0 [ 1027.404786][T18538] should_fail_ex+0x512/0x640 [ 1027.404830][T18538] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1027.404873][T18538] should_failslab+0xc2/0x120 [ 1027.404917][T18538] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1027.404959][T18538] ? copy_process+0x3798/0x7690 [ 1027.405001][T18538] ? _raw_spin_unlock_irq+0x23/0x50 [ 1027.405042][T18538] copy_process+0x3798/0x7690 [ 1027.405076][T18538] ? __pfx___futex_wait+0x10/0x10 [ 1027.405129][T18538] ? __pfx_copy_process+0x10/0x10 [ 1027.405163][T18538] ? futex_private_hash_put+0x176/0x300 [ 1027.405199][T18538] ? futex_private_hash_put+0x18a/0x300 [ 1027.405250][T18538] kernel_clone+0xfc/0x930 [ 1027.405288][T18538] ? __pfx_kernel_clone+0x10/0x10 [ 1027.405366][T18538] __do_sys_clone+0xce/0x120 [ 1027.405403][T18538] ? __pfx___do_sys_clone+0x10/0x10 [ 1027.405437][T18538] ? cap_task_prctl+0x2af/0xa80 [ 1027.405480][T18538] ? xfd_validate_state+0x61/0x180 [ 1027.405520][T18538] ? __pfx___do_sys_prctl+0x10/0x10 [ 1027.405574][T18538] do_syscall_64+0xcd/0x490 [ 1027.405616][T18538] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1027.405643][T18538] RIP: 0033:0x7f45fa58ebe9 [ 1027.405665][T18538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1027.405691][T18538] RSP: 002b:00007f45fb314fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1027.405718][T18538] RAX: ffffffffffffffda RBX: 00007f45fa7b5fa0 RCX: 00007f45fa58ebe9 [ 1027.405736][T18538] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011 [ 1027.405753][T18538] RBP: 00007f45fa611e19 R08: 0000000000000000 R09: 0000000000000000 [ 1027.405770][T18538] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 1027.405786][T18538] R13: 00007f45fa7b6038 R14: 00007f45fa7b5fa0 R15: 00007ffe8e2e3f78 [ 1027.405822][T18538] [ 1028.812003][T18567] __vm_enough_memory: pid: 18567, comm: syz.1.1980, bytes: 4398046511104 not enough memory for the allocation [ 1029.937815][T18580] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1982'. [ 1030.495230][T18587] binder: 18586:18587 ioctl c018620c 0 returned -1 [ 1031.628163][T18594] ================================================================== [ 1031.636292][T18594] BUG: KASAN: slab-use-after-free in dvb_device_open+0x36a/0x3b0 [ 1031.644081][T18594] Read of size 8 at addr ffff88814739be18 by task syz.0.1985/18594 [ 1031.652022][T18594] [ 1031.654387][T18594] CPU: 0 UID: 0 PID: 18594 Comm: syz.0.1985 Tainted: G U syzkaller #0 PREEMPT(full) [ 1031.654439][T18594] Tainted: [U]=USER [ 1031.654452][T18594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1031.654473][T18594] Call Trace: [ 1031.654484][T18594] [ 1031.654497][T18594] dump_stack_lvl+0x116/0x1f0 [ 1031.654548][T18594] print_report+0xcd/0x630 [ 1031.654591][T18594] ? __virt_addr_valid+0x81/0x610 [ 1031.654633][T18594] ? __phys_addr+0xe8/0x180 [ 1031.654676][T18594] ? dvb_device_open+0x36a/0x3b0 [ 1031.654734][T18594] kasan_report+0xe0/0x110 [ 1031.654776][T18594] ? dvb_device_open+0x36a/0x3b0 [ 1031.654826][T18594] ? __pfx_dvb_device_open+0x10/0x10 [ 1031.654874][T18594] dvb_device_open+0x36a/0x3b0 [ 1031.654920][T18594] ? __pfx_dvb_device_open+0x10/0x10 [ 1031.654976][T18594] chrdev_open+0x234/0x6a0 [ 1031.655019][T18594] ? __pfx_apparmor_file_open+0x10/0x10 [ 1031.655056][T18594] ? __pfx_chrdev_open+0x10/0x10 [ 1031.655099][T18594] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1031.655142][T18594] do_dentry_open+0x982/0x1530 [ 1031.655182][T18594] ? __pfx_chrdev_open+0x10/0x10 [ 1031.655229][T18594] vfs_open+0x82/0x3f0 [ 1031.655280][T18594] path_openat+0x1de4/0x2cb0 [ 1031.655326][T18594] ? __pfx_path_openat+0x10/0x10 [ 1031.655370][T18594] do_filp_open+0x20b/0x470 [ 1031.655409][T18594] ? __pfx_do_filp_open+0x10/0x10 [ 1031.655463][T18594] ? alloc_fd+0x471/0x7d0 [ 1031.655503][T18594] do_sys_openat2+0x11b/0x1d0 [ 1031.655552][T18594] ? __pfx_do_sys_openat2+0x10/0x10 [ 1031.655605][T18594] ? __pfx___might_resched+0x10/0x10 [ 1031.655644][T18594] __x64_sys_openat+0x174/0x210 [ 1031.655696][T18594] ? __pfx___x64_sys_openat+0x10/0x10 [ 1031.655758][T18594] do_syscall_64+0xcd/0x490 [ 1031.655805][T18594] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1031.655838][T18594] RIP: 0033:0x7f86c438ebe9 [ 1031.655863][T18594] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1031.655895][T18594] RSP: 002b:00007f86c5256038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1031.655926][T18594] RAX: ffffffffffffffda RBX: 00007f86c45b5fa0 RCX: 00007f86c438ebe9 [ 1031.655948][T18594] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1031.655976][T18594] RBP: 00007f86c4411e19 R08: 0000000000000000 R09: 0000000000000000 [ 1031.656015][T18594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1031.656049][T18594] R13: 00007f86c45b6038 R14: 00007f86c45b5fa0 R15: 00007ffd94aafff8 [ 1031.656081][T18594] [ 1031.656092][T18594] [ 1031.907230][T18594] Allocated by task 1: [ 1031.911310][T18594] kasan_save_stack+0x33/0x60 [ 1031.916016][T18594] kasan_save_track+0x14/0x30 [ 1031.920716][T18594] __kasan_kmalloc+0xaa/0xb0 [ 1031.925324][T18594] dvb_register_device+0x1e4/0x2370 [ 1031.930548][T18594] dvb_register_frontend+0x5a6/0x880 [ 1031.935858][T18594] vidtv_bridge_probe+0x459/0xa90 [ 1031.940906][T18594] platform_probe+0x106/0x1d0 [ 1031.945605][T18594] really_probe+0x23e/0xa90 [ 1031.950138][T18594] __driver_probe_device+0x1de/0x440 [ 1031.955449][T18594] driver_probe_device+0x4c/0x1b0 [ 1031.960499][T18594] __driver_attach+0x283/0x580 [ 1031.965288][T18594] bus_for_each_dev+0x13b/0x1d0 [ 1031.970155][T18594] bus_add_driver+0x2e9/0x690 [ 1031.974865][T18594] driver_register+0x15c/0x4b0 [ 1031.979655][T18594] vidtv_bridge_init+0x45/0x80 [ 1031.984454][T18594] do_one_initcall+0x120/0x6e0 [ 1031.989240][T18594] kernel_init_freeable+0x5c2/0x910 [ 1031.994455][T18594] kernel_init+0x1c/0x2b0 [ 1031.998796][T18594] ret_from_fork+0x5d4/0x6f0 [ 1032.003417][T18594] ret_from_fork_asm+0x1a/0x30 [ 1032.008206][T18594] [ 1032.010546][T18594] Freed by task 18532: [ 1032.014633][T18594] kasan_save_stack+0x33/0x60 [ 1032.019359][T18594] kasan_save_track+0x14/0x30 [ 1032.024057][T18594] kasan_save_free_info+0x3b/0x60 [ 1032.029116][T18594] __kasan_slab_free+0x60/0x70 [ 1032.033906][T18594] kfree+0x2b4/0x4d0 [ 1032.037818][T18594] dvb_device_put.part.0+0x60/0x90 [ 1032.042960][T18594] dvb_device_open+0x2a4/0x3b0 [ 1032.047753][T18594] chrdev_open+0x234/0x6a0 [ 1032.052192][T18594] do_dentry_open+0x982/0x1530 [ 1032.056989][T18594] vfs_open+0x82/0x3f0 [ 1032.061088][T18594] path_openat+0x1de4/0x2cb0 [ 1032.065705][T18594] do_filp_open+0x20b/0x470 [ 1032.070229][T18594] do_sys_openat2+0x11b/0x1d0 [ 1032.074938][T18594] __x64_sys_openat+0x174/0x210 [ 1032.079819][T18594] do_syscall_64+0xcd/0x490 [ 1032.084347][T18594] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1032.090258][T18594] [ 1032.092590][T18594] The buggy address belongs to the object at ffff88814739be00 [ 1032.092590][T18594] which belongs to the cache kmalloc-256 of size 256 [ 1032.106658][T18594] The buggy address is located 24 bytes inside of [ 1032.106658][T18594] freed 256-byte region [ffff88814739be00, ffff88814739bf00) [ 1032.120388][T18594] [ 1032.122724][T18594] The buggy address belongs to the physical page: [ 1032.129141][T18594] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x14739a [ 1032.138006][T18594] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 1032.146543][T18594] flags: 0x57ff00000000040(head|node=1|zone=2|lastcpupid=0x7ff) [ 1032.154200][T18594] page_type: f5(slab) [ 1032.158205][T18594] raw: 057ff00000000040 ffff88801b841b40 dead000000000122 0000000000000000 [ 1032.166801][T18594] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 1032.175403][T18594] head: 057ff00000000040 ffff88801b841b40 dead000000000122 0000000000000000 [ 1032.184091][T18594] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 1032.192787][T18594] head: 057ff00000000001 ffffea00051ce681 00000000ffffffff 00000000ffffffff [ 1032.201474][T18594] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 1032.210148][T18594] page dumped because: kasan: bad access detected [ 1032.216566][T18594] page_owner tracks the page as allocated [ 1032.222291][T18594] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 25001964662, free_ts 0 [ 1032.242026][T18594] post_alloc_hook+0x1c0/0x230 [ 1032.246810][T18594] get_page_from_freelist+0x132b/0x38e0 [ 1032.252379][T18594] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 1032.258321][T18594] alloc_pages_mpol+0x1fb/0x550 [ 1032.263194][T18594] new_slab+0x247/0x330 [ 1032.267366][T18594] ___slab_alloc+0xcf2/0x1740 [ 1032.272058][T18594] __slab_alloc.constprop.0+0x56/0xb0 [ 1032.277443][T18594] __kmalloc_cache_noprof+0xfb/0x3e0 [ 1032.282766][T18594] bus_add_driver+0x92/0x690 [ 1032.287377][T18594] driver_register+0x15c/0x4b0 [ 1032.292186][T18594] usb_register_driver+0x216/0x4d0 [ 1032.297328][T18594] do_one_initcall+0x120/0x6e0 [ 1032.302112][T18594] kernel_init_freeable+0x5c2/0x910 [ 1032.307329][T18594] kernel_init+0x1c/0x2b0 [ 1032.311673][T18594] ret_from_fork+0x5d4/0x6f0 [ 1032.316294][T18594] ret_from_fork_asm+0x1a/0x30 [ 1032.321082][T18594] page_owner free stack trace missing [ 1032.326452][T18594] [ 1032.328784][T18594] Memory state around the buggy address: [ 1032.334424][T18594] ffff88814739bd00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 1032.342500][T18594] ffff88814739bd80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 1032.350572][T18594] >ffff88814739be00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 1032.358645][T18594] ^ [ 1032.363509][T18594] ffff88814739be80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 1032.371597][T18594] ffff88814739bf00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 1032.379670][T18594] ================================================================== [ 1032.537072][T18594] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 1032.544342][T18594] CPU: 0 UID: 0 PID: 18594 Comm: syz.0.1985 Tainted: G U syzkaller #0 PREEMPT(full) [ 1032.555328][T18594] Tainted: [U]=USER [ 1032.559159][T18594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1032.569245][T18594] Call Trace: [ 1032.572549][T18594] [ 1032.575504][T18594] dump_stack_lvl+0x3d/0x1f0 [ 1032.580149][T18594] vpanic+0x6e8/0x7a0 [ 1032.584182][T18594] ? __pfx_vpanic+0x10/0x10 [ 1032.588738][T18594] ? __pfx_vprintk_emit+0x10/0x10 [ 1032.593806][T18594] ? dvb_device_open+0x36a/0x3b0 [ 1032.598797][T18594] panic+0xca/0xd0 [ 1032.602574][T18594] ? __pfx_panic+0x10/0x10 [ 1032.607045][T18594] ? dvb_device_open+0x36a/0x3b0 [ 1032.612037][T18594] ? preempt_schedule_common+0x44/0xc0 [ 1032.617566][T18594] ? preempt_schedule_thunk+0x16/0x30 [ 1032.622998][T18594] check_panic_on_warn+0xab/0xb0 [ 1032.627995][T18594] end_report+0x107/0x170 [ 1032.632387][T18594] kasan_report+0xee/0x110 [ 1032.636865][T18594] ? dvb_device_open+0x36a/0x3b0 [ 1032.641884][T18594] ? __pfx_dvb_device_open+0x10/0x10 [ 1032.647256][T18594] dvb_device_open+0x36a/0x3b0 [ 1032.652090][T18594] ? __pfx_dvb_device_open+0x10/0x10 [ 1032.657434][T18594] chrdev_open+0x234/0x6a0 [ 1032.661926][T18594] ? __pfx_apparmor_file_open+0x10/0x10 [ 1032.667547][T18594] ? __pfx_chrdev_open+0x10/0x10 [ 1032.672543][T18594] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1032.678910][T18594] do_dentry_open+0x982/0x1530 [ 1032.683708][T18594] ? __pfx_chrdev_open+0x10/0x10 [ 1032.688680][T18594] vfs_open+0x82/0x3f0 [ 1032.692786][T18594] path_openat+0x1de4/0x2cb0 [ 1032.697406][T18594] ? __pfx_path_openat+0x10/0x10 [ 1032.702403][T18594] do_filp_open+0x20b/0x470 [ 1032.706936][T18594] ? __pfx_do_filp_open+0x10/0x10 [ 1032.712003][T18594] ? alloc_fd+0x471/0x7d0 [ 1032.716355][T18594] do_sys_openat2+0x11b/0x1d0 [ 1032.721063][T18594] ? __pfx_do_sys_openat2+0x10/0x10 [ 1032.726304][T18594] ? __pfx___might_resched+0x10/0x10 [ 1032.731614][T18594] __x64_sys_openat+0x174/0x210 [ 1032.736508][T18594] ? __pfx___x64_sys_openat+0x10/0x10 [ 1032.741921][T18594] do_syscall_64+0xcd/0x490 [ 1032.746457][T18594] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1032.752369][T18594] RIP: 0033:0x7f86c438ebe9 [ 1032.756796][T18594] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1032.776425][T18594] RSP: 002b:00007f86c5256038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1032.784864][T18594] RAX: ffffffffffffffda RBX: 00007f86c45b5fa0 RCX: 00007f86c438ebe9 [ 1032.792860][T18594] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1032.800853][T18594] RBP: 00007f86c4411e19 R08: 0000000000000000 R09: 0000000000000000 [ 1032.808843][T18594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1032.816831][T18594] R13: 00007f86c45b6038 R14: 00007f86c45b5fa0 R15: 00007ffd94aafff8 [ 1032.824834][T18594] [ 1032.828208][T18594] Kernel Offset: disabled [ 1032.832549][T18594] Rebooting in 86400 seconds..