last executing test programs: 6.743826856s ago: executing program 3 (id=380): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x20b42, 0x0) write$auto(r0, 0x0, 0x40000001) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty60\x00', 0x42880, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x10b842, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_tw_reuse\x00', 0x80400, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rpc/nfsd.export/channel\x00', 0x8f3b7a51b8162d21, 0x0) close_range$auto(0xffffffffffffffff, 0xfffffffffffff000, 0x2) getrandom$auto(&(0x7f0000000040)='/proc/sys/net/ipv4/tcp_tw_reuse\x00', 0x3, 0x7) r2 = landlock_create_ruleset$auto(&(0x7f0000000140)={0x5, 0x3, 0x9}, 0x9, 0x0) landlock_restrict_self$auto(r1, 0xfffffff9) write$auto(0x3, 0x0, 0x7) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/025/001\x00', 0xa901, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) ioctl$auto_USBDEVFS_SUBMITURB(r2, 0x8038550a, 0x0) mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) read$auto(r3, 0x0, 0x20) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x4) r5 = seccomp$auto(0x401, 0x10, 0x0) unshare$auto(0x40000080) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x8) close_range$auto(0x2, 0x8, 0x0) unshare$auto(0x40000080) ioctl$auto_SNDCTL_DSP_GETOSPACE(r0, 0x8010500c, &(0x7f0000000040)) r6 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000100), r2) sendmsg$auto_L2TP_CMD_TUNNEL_DELETE(r5, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="8795dd6a48f905a375afbd48348b0a4fe8d4792cf177151dbc042a279717db40d17463094887b5d9052e2d2554cc55b8c1cf7a648c", @ANYRES16=r6, @ANYBLOB="000227bd7000fcdbdf250200000044000000d1555ad212d6a15ca89f49cbf872c7ab249d4e34e16925c8d1e62778e4a1a726cf093522227de48a6b11b66f7246a0b1580453d91df7f6237b13dddb28b6856c0600020008000000"], 0x60}, 0x1, 0x0, 0x0, 0x8000}, 0x11) 4.718025052s ago: executing program 1 (id=382): pread64$auto(0xffffffffffffffff, 0x0, 0x200000000000c, 0x800084) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/011/001\x00', 0x100, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = open(&(0x7f00000000c0)='./file0\x00', 0x22240, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = io_uring_setup$auto(0x20, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0) r5 = socket(0x10, 0x5, 0x4) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'dummy0\x00'}) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYRESDEC=r1], 0x2c}, 0x1, 0x0, 0x0, 0x20000040}, 0x2404c044) write$auto(r5, 0x0, 0x2fb) write$auto(0x3, 0x0, 0xfdef) ioctl$auto(0x3, 0x5402, r2) io_submit$auto(0x1, 0x3, 0x0) fcntl$auto_F_DUPFD(0xffffffffffffffff, 0x0, r3) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, r4, 0x8000) 4.526352294s ago: executing program 2 (id=383): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000700)='/sys/devices/platform/dummy_hcd.5/usb6/maxchild\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) r1 = open(&(0x7f00000001c0)='./cgroup.cpu/cgroup.procs\x00', 0x2c00, 0xb5d1af1605322df2) syz_clone3(&(0x7f00000003c0)={0x383201180, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, 0x0, 0x0, {r1}}, 0x58) 4.348725705s ago: executing program 2 (id=384): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc4c85512, &(0x7f0000000100)={{@raw=0xb, 0x3, 0xd0, 0x88, "16a0d89bf208384515b5375a677609aa1bc737276563c3d5a2fca999d5797ab7a10a4d2bc341c4bd369ae535", @inferred=0x0}, 0x1, @integer=@value=[0x6d, 0x7, 0x0, 0xbb, 0x4, 0x80000000, 0x1, 0x10001, 0x1, 0x9, 0xc4, 0x8, 0x6, 0x4, 0x3, 0x6, 0x1, 0x3, 0x4, 0x401, 0x6, 0x0, 0xa0, 0x5, 0x2, 0x9, 0x5, 0xa, 0x8, 0x1, 0x8, 0x7f, 0xffffffffffffdb78, 0x100000000, 0x3, 0x7, 0x7fffffffffffffff, 0x1, 0xd, 0x3, 0x71, 0x0, 0x8, 0x2, 0x3, 0xffffffffffffffbb, 0x2d7, 0x1, 0x1, 0x6, 0x2, 0x800000000, 0x6, 0x7, 0x0, 0x6, 0x4, 0x3, 0x40a, 0x9, 0x3ff, 0x8, 0x7, 0xffff, 0x50ce0885, 0x3d9, 0x5, 0x2, 0xd8f, 0x80000000, 0x0, 0x7, 0x46e, 0xa5cf, 0x8, 0x7, 0xc16b, 0x1, 0x9, 0x6, 0x2, 0x6, 0x1, 0x3, 0x3, 0xfffffffffffff16a, 0x6, 0xffffffffffff0001, 0x100000000, 0x4, 0x6, 0x4, 0x2, 0x3, 0xfffffffffffffffe, 0x20007cf9, 0x40, 0x2, 0x7, 0x100, 0x14b, 0x2, 0x45f3, 0x0, 0x0, 0x4, 0x0, 0x8001, 0x0, 0x1, 0x7, 0xcf4, 0x1, 0x3, 0x0, 0x4, 0x6, 0x9, 0x25e2, 0xc9a, 0xd09, 0x40, 0x2, 0xffffffffffffff00, 0x4, 0x9, 0xfffffffffffffffb, 0x40], "f3fadb90a56b67d92a5b28b4b23f332550b1e5454e2027fb1a37efe81bbc27deaf7c3100aab088cdb3b40dad335c9174f18934845ac3152fef1e0f42b42471efc0225a4ebe7e05ce3d4ab429805d5921633ffbce8f1a82ff9dec6c288f431cb7005b85ca8633c55d49bbdf4bd9cac1046064001bca7ba37e4b5eacf1940c9a78"}) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) r1 = socket(0xa, 0x801, 0x84) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) open_by_handle_at$auto(r2, 0x0, 0x7d) read$auto_regulator_summary_fops_(r2, &(0x7f0000000600)=""/4096, 0x1000) getsockopt$auto(r1, 0x84, 0x71, 0x0, 0x0) io_uring_register$auto(0x2, 0xf, 0x0, 0x20) sendmsg$auto_NL802154_CMD_SET_CHANNEL(0xffffffffffffffff, 0x0, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, 0x0, 0x24004000) socket(0x2, 0x3, 0x73) bind$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x4) r3 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x101802, 0x0) ioctl$auto_VHOST_GET_BACKEND_FEATURES2(r3, 0x8008af26, &(0x7f0000000340)=0x4) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x3}, 0x3ef3}, 0x3, 0x0) prctl$auto_PR_SCHED_CORE_CREATE(0x7f, 0x1, r0, 0x7fffffff, 0x8) unshare$auto(0x40000080) r4 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r4, 0x0, 0x1f40) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) prctl$auto(0x6, 0x1, 0x0, 0x0, 0x6) r5 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) mount$auto(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='nfs\x00\"p\x17\x9b\xdd\xb4\xed\xb9\xb0\xc7@\xd0_\xf9\xa1\x17tP\x86\xb1,\x93\x87\xae\x03\x8a\xc4\xb5q\xd4\x8c\xc3\xa2?\xe7\xf4\xb2\xd4\xe1\x93A+\xe9\x8d\xc9\xac9|\xc7\t\xff\'\xaa\xac|\xaa\x85\xa9\xd4j\x12\xca\xfe', 0x6, &(0x7f00000004c0)="77bec3605f85e082fbcf491e2b3b12fde18109d1f64859f820ba86bbb7abcf4c75f53e3ecb7fd57568812ae0e9433c2b0bb0f0c0db3d") ioctl$auto_FBIOPUT_VSCREENINFO(r5, 0x4601, &(0x7f0000000140)="58fcb282bcbc38bfaef257e019406ea6c445cd4f7f7662ac0f8834baa918d5b3cea133243c4f2b9a39e536b67f5a1a2bfdf589da2b1c980e1ce53883444996d1721d7f3ae627c6c604000000000000007910fbc02d899ab93d002d849884a5377ff11be2ed012110f2f520") write$auto(0xffffffffffffffff, &(0x7f0000000000)='-\x00', 0xfdef) 3.963796755s ago: executing program 0 (id=385): close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) (async) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80800, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32) mmap$auto(0x0, 0xb, 0x6, 0xeb1, 0x3ff, 0x8000) (async, rerun: 32) r1 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0) ioctl$auto(r1, 0xc0184d15, 0xd3) io_uring_setup$auto(0x406, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) (async, rerun: 32) getrandom$auto(0x0, 0x6000000, 0x3) (rerun: 32) io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) 3.836491546s ago: executing program 3 (id=386): sendmsg$auto_VDPA_CMD_DEV_VSTATS_GET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000800}, 0x4048000) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) socket(0x2, 0x3, 0x6) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) write$auto_console_fops_tty_io(0xffffffffffffffff, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) madvise$auto(0x0, 0x81a4, 0xf) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, 0x0, 0x283f4, 0x0) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x4, 0xe}, 0x800009}, 0x5, 0x20000000) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x20040010}, 0xc0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) socket(0x2, 0x1, 0x0) socketpair$auto(0x1e, 0x3, 0xfffffffe, 0x0) r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x20401, 0x0) write$auto_fb_fops_fb_chrdev(r1, 0x0, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) r2 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec8\x00', 0x101901, 0x0) ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r2, 0xc05c6104, &(0x7f0000000100)={'\x00', 0xffff, 0x6, 0x2, 0x9b4, 0x9, "ce7009002ce100", '\x00', "0201ccb7", '\x00', ["00000f0008b330ac007abfc1", "70d900001100", "0800000000000000000000ec", "00deff1000"]}) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x3}, 0x7}, 0x3, 0xcad7) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) write$auto(0x3, 0x0, 0x100085) 3.592036538s ago: executing program 1 (id=387): r0 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/netdevsim/netdevsim1/ports/3/pp_hold\x00', 0x101001, 0x0) fanotify_init$auto(0x5, 0x2000000000002) mmap$auto(0x0, 0x400008, 0x2, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto_KVM_GET_MSRS(0xffffffffffffffff, 0x4008ae90, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r2 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000400), 0x80001, 0x0) mmap$auto(0x0, 0x5, 0xffb, 0x8000000008011, 0x3, 0x0) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0) write$auto(r3, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(0x3, 0x0, 0x100082) ioctl$auto(r2, 0x3b8e, r0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/apparmor/parameters/mode\x00', 0x121102, 0x0) 3.455082391s ago: executing program 3 (id=388): r0 = socket(0x15, 0x5, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000) r1 = socket(0x15, 0x5, 0x0) r2 = getsockopt$auto(r1, 0x118, 0x5, 0xfffffffffffffffc, 0x0) r3 = syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f0000000100), r1) sendmsg$auto_NLBL_UNLABEL_C_STATICLIST(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x3c, r3, 0x20, 0x70bd2b, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private1}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'nicvf0\x00'}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8880}, 0x80) keyctl$auto_KEYCTL_PKEY_QUERY(0x18, 0x8, 0xe, 0xe, 0x0) pwrite64$auto(0xc8, &(0x7f0000000200)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\x00^\x0fo\x97\xfc\x89\v\xea\xc2\x95\xafQ;C>\x15L\x90\xad\xa4\x1648W\t\x00\x00\x001\x00\x00\x00@X\xb9_\xdd\xa6\xa2E\xd8?\'\x8dg\x81h*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&%`_[\xde\x7f\xde8\xf7\xc1\x94\xf2\xc1\"\xact\xee\xc9\x00\x00\x00\x00\x00\x00\x00\x00\xee\xa9\x0eX\x01\xa3g\xba\x9cc\x90\xe3\xae\xa9\xde\x00\x00\x00B\xb4\xf2&\x00\xe2\xead\xd0\"\x16\x84v\n\xcdN\xb6\xa4\xe0\xb7e\x97 ?\xb5\xa1E=t\x96\xbd\xfd\xc5\xebn\xb7\n\xc2\xbc\xa2\xa8\x04#\x84\xa7R|\xed\x8f\x03\x01\x10wLT\vay\x12\xb63\x9e\a\x8e\xbd\x18y<\xb3\v\x14\x82\x97&\xfcm\x86\x10o\xdc\xf3x\xfd\x06\x87t\xb9$\x94,f\x9b0\xcd\xd3\r\xb1e\'\x19\xc1\xe7>*\xad\xa5+\xa8\x1c\x88\xa1\x0e[\x99\xb6LKZ\x9e\r\xd0r\xe2Ct\xc1\x99\x1b/\xc5P.aUdq\x97\x94\xb9\xa8qU\xae*g\x86\xc9\xa4\xe7\n\vh-v\"o.\xbf6\x13\tFK\x8e\xc6&&\x13\x81\x00\x8c7PS\x9c\xa3\xfb\x1d\xa9\x98\xd47\n\xa7\xd1\x10\xb3i\xd2\xa8\x18f\xb3K\x9b\x9b\x8c\xe8\x84\xa3,5-\xd6\xae\xbd\x1d\xf2o\x99\x02\x1azw9\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x04\bl\x042\x935\x9e\xeeH\x87\xda\x10\x8f^1\x89L`\xf4[\x06\xf6\xc7\xd0#\xdb\xb1\\\xc3\xb1\xb8\xe8\xde2\xbb\xf8I\x9c\x17KI\x8c\f\x1d\xaa\xa0\xdb\xc7\x9e\x81\x90CTe\xfa\x8dq&\x17\x908\xc9T\xffm\x930\x1d\x91\xf8|t\xfd\x18\xd5\xb0\xcbH\xa7\xb6T\n\x11%\xba\x16o\r\xf6\x90k\xfb\a\xa1\x15\x0e\xe1\xce0Q\xd0\x00\xc1\x1a\x1f\xaa8\xfbo)rtYK\"c\xe2c\xbeM\x9bT\x05\xf3\xccC\x8c\x00\xdf\x8c\x1b+\xca\x80', 0x84, 0xe83) read$auto_proc_pid_set_timerslack_ns_operations_base(r2, &(0x7f0000000000)=""/133, 0x85) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000480), 0x201, 0x0) 3.201306794s ago: executing program 2 (id=389): socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f00000000c0), 0x642, 0x0) write$auto(0x3, 0x0, 0xffd8) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0x8, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) preadv$auto(0x3, &(0x7f0000000040)={0x0, 0x5}, 0x3, 0xf8, 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) r0 = syz_genetlink_get_family_id$auto_ovs_flow(0x0, 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)={0x128, r0, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x10c, 0x1, 0x0, 0x1, [@nested={0x108, 0x10, 0x0, 0x1, [@nested={0x104, 0x8, 0x0, 0x1, [@generic="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"]}]}]}, @OVS_FLOW_ATTR_PROBE={0x4}]}, 0x128}, 0x1, 0x0, 0x0, 0x24040071}, 0x800) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r3) ioctl$auto_KVM_CREATE_VM(r2, 0xae80, 0x0) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto(0x3, 0xae41, r4) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x200000) 3.134711994s ago: executing program 3 (id=390): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x1, 0x20009, 0x8, 0x40000000000eb1, 0x401, 0x8000) r0 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64) fchdir$auto(r0) mkdir$auto(&(0x7f00000001c0)='./cgroup\x00', 0xa) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup/cgroup.type\x00', 0x103042, 0x0) rmdir$auto(&(0x7f0000000080)='./cgroup\x00') close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@ethernet={0x306, @random="f261822142ff"}, 0x62) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0x2, 0x1d2c, 0x3, 0x4, 0x15f4da0e, 0x6, 0xb, 0x100000000000000c, 0x8, 0x4, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0) utimes$auto(&(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000000)={0x3, 0xd}) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) socket(0x2c, 0x1, 0x3) recvmmsg$auto(0x3, 0x0, 0x10000, 0xfffffffd, 0x0) r2 = openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000080)='/dev/etherd/discover\x00', 0x82, 0x0) write$auto(r2, 0x0, 0xd3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mmap$auto(0x8000000000, 0x8b, 0x5, 0x16, r1, 0x8000) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) 2.573983519s ago: executing program 0 (id=391): mmap$auto(0x0, 0x8, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x106) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) pipe$auto(0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0x4048aec9, r0) unshare$auto(0x40000080) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/tty53\x00', 0x200, 0x0) syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000000), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000009c0), 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_SET_SERVICE(r3, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010028bd7000fcdbdf2502000000180001800c00048008007d00", @ANYRES32=0x0, @ANYBLOB="0800010004000280"], 0x2c}, 0x1, 0x0, 0x0, 0x4050}, 0x20008004) io_uring_setup$auto(0x9, &(0x7f0000000540)={0x1, 0x4203, 0x4, 0x0, 0xf7d, 0x7fffffff, r2, [0x7ff], {0x6, 0x8, 0x1, 0x6, 0x0, 0x3f29, 0x8, 0x8, 0x8}, {0x3, 0x62ec, 0x80000000, 0xfffff800, 0x40, 0x80, 0x6228, 0x0, 0x2c9}}) r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x7, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x0, 0x1, 0x2, 0x3, 0x95f4da0a, 0xefffffffffffffff, 0x3, 0x62, 0x80000001, 0x10000000000004, 0x6d40, 0x1, 0x2, 0xfffffffffffffffe]}, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r6 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mtd0ro\x00', 0x4aa482, 0x0) ioctl$auto(r6, 0x40104d14, r6) ioctl$auto(0xffffffffffffffff, 0x5522, 0xf15) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) r7 = dup$auto(r6) io_uring_register$auto_IORING_REGISTER_FILES2(r7, 0xd, &(0x7f0000000340)="11dcf516bcfedced6a0e0fbf3e7ee726063e579579aed58d960014c54238df9faee3755bbc17871349b671d9b82bed8746945b856e62057b5b688d42d133c2fca1dc09846e94c0a99a6d54115bb8f664d8ef75497d69165f96ebe086c347c50769d8a6", 0xab) ioctl$auto_XFS_IOC_COMMIT_RANGE(r5, 0x40585883, &(0x7f0000000440)={r3, 0x0, 0x1, 0x8, 0x9, 0x2, [0x16d, 0x4, 0x2, 0x3, 0x7fff, 0xd]}) 2.043461768s ago: executing program 1 (id=392): mmap$auto(0x0, 0x2020006, 0x4, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_KVM_GET_SUPPORTED_CPUID(r0, 0xc008ae05, &(0x7f0000000100)={0x3ff, 0x0, [{0x0, 0xffff5a9a, 0x7fffffff, 0x3, 0xf, 0xe3, 0x6000}]}) (async, rerun: 64) r1 = openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, &(0x7f0000000080), 0x20540, 0x0) (rerun: 64) ioctl$auto(r1, 0x40046103, 0x81) 1.981515293s ago: executing program 2 (id=393): mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x200000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f000000c380)={0x63, 0x0, 0xbde, 0x7fffffffefff, 0xfffffffffffffffe, 0x9702, 0x0, 0x50b301a, 0x4, 0x5f, 0x0, 0x8}) write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01042bbd7000fcdbdf2504000000040010"], 0x20}, 0x1, 0x0, 0x0, 0x24048040}, 0x10804) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(r0, 0x8, 0x0) brk$auto(0xffffffffffffff66) r3 = socket(0x15, 0x5, 0x0) ioctl$auto(0x3, 0x89e1, 0x2000000000000093) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000001c00)=""/4111, 0x100f) mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/time_for_children\x00') capset$auto(0x0, &(0x7f0000000000)={0x1, 0x5, 0x48}) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000006c0)={{0x0, 0x5, &(0x7f00000000c0)={&(0x7f0000000080)="4c0300006bba861b000004000000a3245789589707", 0x49}, 0x2, 0x0, 0x5, 0x1}, 0x5}, 0x2, 0x100) r5 = getpid() sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4000084}, 0x800) fsconfig$auto_SHMEM_HUGE_DENY(r3, 0x9, 0x0, 0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$auto(r6, 0x0, 0x7) socket$nl_generic(0x10, 0x3, 0x10) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="00000040f0abe0c4247fbedad340dfb2e7969e298a52881caaf6b542f6d2911c42c470c6c41fa6cd7d3200cbe5ab76f9162effc724d22bfacaff95f2459f2aeef8ec710a4df75e1016dd6a68203a6c8a35188a219f5d57f11e0a7f4f384094f33bca21fc210ada48d5ea714b2611783a875a940781919058f34f994d0ec091e51f9b5f59551cacb6a5d401e674a50ab822fde2994130c5a37dce7055cb23698b18d20d6a630f9781cd9cb6730d92d8b9c7a11835285135f9cddfe254b14edbab1efbe1f294c346c803ad8ab939055e927795bfccd650bb9e329b", @ANYRES16=r8, @ANYBLOB="01032cb57000fbdbdf250a000000"], 0x14}, 0x1, 0x0, 0x0, 0x400c01d}, 0x0) process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000180)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000200), 0xe0080, 0x0) 1.632483316s ago: executing program 1 (id=394): mmap$auto(0x0, 0x400006, 0xde, 0x17, 0x2, 0x8) mseal$auto(0x0, 0x7dda, 0x0) 1.590019255s ago: executing program 0 (id=395): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) (async) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x0, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x40000000c07) (async) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) (async, rerun: 32) mmap$auto(0x0, 0x20009, 0xffffffffffffffff, 0xeb1, 0x401, 0x8000) (async, rerun: 32) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r1, 0x0, 0x9a28) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000180)='/dev/admmidi2\x00', 0x88042, 0x0) (async) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x8000, 0x0, 0x9, 0x0, 0x1f, 0x104}, 0x8}, 0x7, 0x20020000) (async) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) (async) write$auto(0x3, 0x0, 0x7fffffff) (async) setsockopt$auto(0x3, 0x1, 0x2, 0x0, 0x8) (async, rerun: 32) shutdown$auto(0x200000003, 0x2) (async, rerun: 32) sendfile$auto(0x1, 0x3, 0x0, 0x40000000c07) 1.405132166s ago: executing program 1 (id=396): pread64$auto(0xffffffffffffffff, 0x0, 0x200000000000c, 0x800084) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/011/001\x00', 0x100, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = open(&(0x7f00000000c0)='./file0\x00', 0x22240, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = io_uring_setup$auto(0x20, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0) r5 = socket(0x10, 0x5, 0x4) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'dummy0\x00'}) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYRESDEC=r1], 0x2c}, 0x1, 0x0, 0x0, 0x20000040}, 0x2404c044) write$auto(r5, 0x0, 0x2fb) write$auto(0x3, 0x0, 0xfdef) ioctl$auto(0x3, 0x5402, r2) io_submit$auto(0x1, 0x3, 0x0) fcntl$auto_F_DUPFD(0xffffffffffffffff, 0x0, r3) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, r4, 0x8000) 1.14438245s ago: executing program 0 (id=397): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/cpu/cpu0/cache/index2/level\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000380)=""/166, 0xa6) 1.053782398s ago: executing program 2 (id=398): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x400, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = open(0x0, 0x22240, 0x55) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) socket(0xf, 0x3, 0x2) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) bpf$auto(0x0, 0x0, 0x6f4) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) io_uring_setup$auto(0x6, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) statx$auto(r0, 0x0, 0x1003, 0x4005, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) socketpair$auto(0x1, 0x5, 0xfffffffd, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) recvfrom$auto(0x3, 0x0, 0x800000000e, 0xfffff4a4, 0x0, 0xfffffffffffffffd) r1 = socket(0xa, 0x2, 0x3a) setsockopt$auto(r1, 0x0, 0x13, 0x0, 0x0) unshare$auto(0x200) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000100)='ns/mnt\x00') setns(r2, 0x0) umount2$auto(&(0x7f0000000080)='.\x00', 0x6) ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)="f093c469636271082c6611c4003d52d31284bf5555b9612ea0be7f17d37dd93385be1ae82fde0176f9347c14864034707139cf40cf975e882bf6d9c6d2e41178") openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/loginuid\x00', 0x309c02, 0x0) bpf$auto(0x5, &(0x7f0000000100)=@task_fd_query={0x2, 0x2, 0x4, 0x0, 0x85, 0x7, 0x9, 0x4, 0x8001}, 0x101) 970.853408ms ago: executing program 0 (id=399): fcntl$auto_F_RDLCK(0xffffffffffffffff, 0x86, 0x0) r0 = socket(0x11, 0xa, 0x9) bind$auto(r0, &(0x7f0000000140), 0x10) unshare$auto(0x40000080) mmap$auto(0x0, 0x20007, 0x7, 0x100000011, 0xffffffffffffffff, 0xf46) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r1, &(0x7f0000001bc0)="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", 0xd4f) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x7fffffff, 0x20000002020009, 0x3, 0x85b5, r2, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/block/zram0/queue/fua\x00', 0x63102, 0x0) sendfile$auto(0xffffffffffffffff, 0x3, 0x0, 0x400000000008) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x9, 0x8, 0x20000000007, 0x939f, 0x0, 0xee01, 0x0, 0x6, 0x3, 0x80000000000005, 0xc0f, 0x1, 0x7fd, 0x92b8, 0x7, 0x8000000000800, 0x7}) mmap$auto(0x0, 0x8, 0x80000000000000df, 0x10004000eb1, 0x8, 0x8000008000) sysfs$auto(0x2, 0x100000000000027, 0x0) fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TEMP(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="770e0000", @ANYRES16=0x0, @ANYBLOB], 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x405b) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000336bd7000fedbdf2502"], 0x24}, 0x1, 0x0, 0x0, 0xc005}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYRES16=r3, @ANYRES32=r3, @ANYRES32=r6, @ANYRESHEX=r5, @ANYRESDEC=r4], 0x1ac}}, 0x48000) r7 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4) sendmmsg$auto(r7, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa507}, 0x800}, 0x7, 0x8) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0xfffffffffffffffd, 0x40000b, 0x20000df, 0x10, 0xffffffffffffffff, 0xb9) openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kpagecount\x00', 0x0, 0x0) openat$auto_trace_time_stamp_mode_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/timestamp_mode\x00', 0x200, 0x0) 649.909967ms ago: executing program 3 (id=400): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) getpeername$auto(0x3, 0x0, 0x0) mmap$auto(0x0, 0x4, 0xffffffffffffffff, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) openat$auto_bm_entry_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x400, 0x0) unshare$auto(0x40000080) setsockopt$auto(0x400000000000003, 0x2d, 0x1c, 0x0, 0x3) r0 = socket(0x10, 0x2, 0xc) r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) r2 = socket(0x10, 0x2, 0xc) r3 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x24, r3, 0x10, 0x70bd2c, 0x25dfdbfa, {0xa, 0x0, 0xa00}, [@CTRL_ATTR_FAMILY_NAME={0x0, 0x2, '%/\x00\xe2\xa8\\A\xe7Z\x02q[\xcb\xc0\xb0N\\\xdc\xdf(\xff\xfee\xc3\x17py\x9f\xda\xb88\xaa\xf6q*\x82\xe6(\xc9\xe6B\x9aJ82\v-i(c\x92{\xd7D\xb4\xf7\xb4\t\xb2\x98b\xd3%vu\xd4\xfd\t\xd7J\x83\x19)\xb1\x00[\xdd(\xef?\xc5\xae(\x84\xefjx\xfe\xdb\xeb\xbceaAw\x1eW\x12Bh\xc3y2\xc9\x0e\xc9\x99#\x92j\x97\xbbDOi\x03\xa4\x11\x02F 1 [ 85.009459][ T5839] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 85.017130][ T5839] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 85.017344][ T5838] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 85.025800][ T5839] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 85.037000][ T5838] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 85.039057][ T5839] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 85.046121][ T5838] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 85.053246][ T5839] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 85.060577][ T5838] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 85.076100][ T5838] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 85.083800][ T5838] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 85.091037][ T5839] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 85.092967][ T5838] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 85.116156][ T5839] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 85.126356][ T5842] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 85.136382][ T5842] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 85.144536][ T5842] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 85.155123][ T5840] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 85.172017][ T5842] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 85.702810][ T5825] chnl_net:caif_netlink_parms(): no params data found [ 85.828363][ T5826] chnl_net:caif_netlink_parms(): no params data found [ 85.840288][ T5827] chnl_net:caif_netlink_parms(): no params data found [ 85.918415][ T5828] chnl_net:caif_netlink_parms(): no params data found [ 85.940326][ T5825] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.947568][ T5825] bridge0: port 1(bridge_slave_0) entered disabled state [ 85.956113][ T5825] bridge_slave_0: entered allmulticast mode [ 85.963175][ T5825] bridge_slave_0: entered promiscuous mode [ 85.998883][ T5825] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.006175][ T5825] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.013302][ T5825] bridge_slave_1: entered allmulticast mode [ 86.020514][ T5825] bridge_slave_1: entered promiscuous mode [ 86.101448][ T5825] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 86.147111][ T5825] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 86.203679][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.211018][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.218746][ T5826] bridge_slave_0: entered allmulticast mode [ 86.226111][ T5826] bridge_slave_0: entered promiscuous mode [ 86.233643][ T5827] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.240797][ T5827] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.248126][ T5827] bridge_slave_0: entered allmulticast mode [ 86.256004][ T5827] bridge_slave_0: entered promiscuous mode [ 86.284571][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.291935][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.299158][ T5826] bridge_slave_1: entered allmulticast mode [ 86.306360][ T5826] bridge_slave_1: entered promiscuous mode [ 86.313250][ T5827] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.320593][ T5827] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.328493][ T5827] bridge_slave_1: entered allmulticast mode [ 86.335671][ T5827] bridge_slave_1: entered promiscuous mode [ 86.344515][ T5825] team0: Port device team_slave_0 added [ 86.351111][ T5828] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.358573][ T5828] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.365804][ T5828] bridge_slave_0: entered allmulticast mode [ 86.372818][ T5828] bridge_slave_0: entered promiscuous mode [ 86.406679][ T5825] team0: Port device team_slave_1 added [ 86.412650][ T5828] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.420035][ T5828] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.427297][ T5828] bridge_slave_1: entered allmulticast mode [ 86.434708][ T5828] bridge_slave_1: entered promiscuous mode [ 86.486913][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 86.498989][ T5827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 86.534046][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 86.546805][ T5827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 86.557179][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 86.564130][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 86.590365][ T5825] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 86.604606][ T5828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 86.642502][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 86.649867][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 86.676886][ T5825] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 86.690295][ T5828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 86.753847][ T5826] team0: Port device team_slave_0 added [ 86.762361][ T5827] team0: Port device team_slave_0 added [ 86.770955][ T5827] team0: Port device team_slave_1 added [ 86.778613][ T5828] team0: Port device team_slave_0 added [ 86.787874][ T5826] team0: Port device team_slave_1 added [ 86.862477][ T5828] team0: Port device team_slave_1 added [ 86.913102][ T5825] hsr_slave_0: entered promiscuous mode [ 86.919906][ T5825] hsr_slave_1: entered promiscuous mode [ 86.948751][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 86.955815][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 86.984919][ T5827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 87.037395][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 87.044364][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 87.070983][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 87.101813][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 87.109757][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 87.136106][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 87.168654][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 87.176505][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 87.185890][ T5837] Bluetooth: hci0: command tx timeout [ 87.202931][ T5842] Bluetooth: hci2: command tx timeout [ 87.208456][ T5837] Bluetooth: hci1: command tx timeout [ 87.214393][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 87.230687][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 87.237778][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 87.264253][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 87.275221][ T5837] Bluetooth: hci3: command tx timeout [ 87.282586][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 87.289616][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 87.315579][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 87.445852][ T5827] hsr_slave_0: entered promiscuous mode [ 87.452484][ T5827] hsr_slave_1: entered promiscuous mode [ 87.458921][ T5827] debugfs: 'hsr0' already exists in 'hsr' [ 87.465118][ T5827] Cannot create hsr debugfs directory [ 87.481633][ T5826] hsr_slave_0: entered promiscuous mode [ 87.488254][ T5826] hsr_slave_1: entered promiscuous mode [ 87.494707][ T5826] debugfs: 'hsr0' already exists in 'hsr' [ 87.500981][ T5826] Cannot create hsr debugfs directory [ 87.525563][ T5828] hsr_slave_0: entered promiscuous mode [ 87.532150][ T5828] hsr_slave_1: entered promiscuous mode [ 87.538435][ T5828] debugfs: 'hsr0' already exists in 'hsr' [ 87.544167][ T5828] Cannot create hsr debugfs directory [ 87.920800][ T5825] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 87.951349][ T5825] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 87.971650][ T5825] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 87.982646][ T5825] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 88.050725][ T5827] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 88.061616][ T5827] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 88.072969][ T5827] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 88.085736][ T5827] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 88.174691][ T5828] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 88.187105][ T5828] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 88.201975][ T5828] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 88.225849][ T5828] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 88.326110][ T5826] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 88.337459][ T5826] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 88.359169][ T5826] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 88.378387][ T5826] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 88.402815][ T5825] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.447533][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.466395][ T5825] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.492403][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.499641][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.529962][ T5827] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.543556][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.550750][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.587470][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.594621][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.627986][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.635176][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.683997][ T5825] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 88.702093][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.750943][ T5827] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 88.812260][ T5828] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.857435][ T1036] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.864623][ T1036] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.902054][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.915685][ T1036] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.922847][ T1036] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.976047][ T5826] 8021q: adding VLAN 0 to HW filter on device team0 [ 89.015412][ T5828] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 89.029366][ T5828] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 89.071528][ T1036] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.078728][ T1036] bridge0: port 1(bridge_slave_0) entered forwarding state [ 89.090799][ T1036] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.098002][ T1036] bridge0: port 2(bridge_slave_1) entered forwarding state [ 89.191894][ T5825] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.208332][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.244091][ T5826] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 89.266027][ T5837] Bluetooth: hci1: command tx timeout [ 89.266138][ T5840] Bluetooth: hci0: command tx timeout [ 89.277550][ T5842] Bluetooth: hci2: command tx timeout [ 89.344642][ T5827] veth0_vlan: entered promiscuous mode [ 89.356664][ T5842] Bluetooth: hci3: command tx timeout [ 89.383220][ T5827] veth1_vlan: entered promiscuous mode [ 89.430587][ T5825] veth0_vlan: entered promiscuous mode [ 89.468839][ T5825] veth1_vlan: entered promiscuous mode [ 89.547926][ T5825] veth0_macvtap: entered promiscuous mode [ 89.560503][ T5827] veth0_macvtap: entered promiscuous mode [ 89.580446][ T5827] veth1_macvtap: entered promiscuous mode [ 89.588516][ T5825] veth1_macvtap: entered promiscuous mode [ 89.610268][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.649033][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.658255][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 89.672596][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 89.686774][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 89.739144][ T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.755756][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 89.775790][ T5828] veth0_vlan: entered promiscuous mode [ 89.781680][ T61] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.790625][ T61] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.815701][ T61] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.867977][ T61] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.877005][ T61] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.888691][ T5828] veth1_vlan: entered promiscuous mode [ 89.910190][ T61] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.919831][ T61] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.980429][ T3515] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.995355][ T5826] veth0_vlan: entered promiscuous mode [ 90.012637][ T3515] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.063917][ T5826] veth1_vlan: entered promiscuous mode [ 90.077910][ T3515] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.087741][ T5828] veth0_macvtap: entered promiscuous mode [ 90.096964][ T3515] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.125855][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.130236][ T5828] veth1_macvtap: entered promiscuous mode [ 90.135348][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.176260][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.184117][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.214705][ T5826] veth0_macvtap: entered promiscuous mode [ 90.243592][ T5825] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 90.253106][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.272498][ T5826] veth1_macvtap: entered promiscuous mode [ 90.297361][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.331792][ T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.353203][ T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.391940][ T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.425600][ T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.490526][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.522150][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.571767][ T36] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.609330][ T36] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.647201][ T36] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.695411][ T5926] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 90.771886][ T36] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.794775][ T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.820315][ T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.841444][ T5842] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 90.912833][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.921292][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.145647][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 91.176769][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.184603][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.304246][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.331339][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.345519][ T5840] Bluetooth: hci2: command tx timeout [ 91.351007][ T5840] Bluetooth: hci0: command tx timeout [ 91.356731][ T5840] Bluetooth: hci1: command tx timeout [ 91.425910][ T5840] Bluetooth: hci3: command tx timeout [ 91.567077][ T5935] process 'syz.0.5' launched './file0' with NULL argv: empty string added [ 91.835473][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 91.843768][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 91.925614][ T24] cfg80211: failed to load regulatory.db [ 92.017346][ T5938] FAULT_INJECTION: forcing a failure. [ 92.017346][ T5938] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 92.045988][ T5938] CPU: 0 UID: 0 PID: 5938 Comm: syz.3.4 Not tainted syzkaller #0 PREEMPT(full) [ 92.046023][ T5938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 92.046042][ T5938] Call Trace: [ 92.046052][ T5938] [ 92.046062][ T5938] dump_stack_lvl+0x16c/0x1f0 [ 92.046100][ T5938] should_fail_ex+0x512/0x640 [ 92.046137][ T5938] _copy_from_user+0x2e/0xd0 [ 92.046171][ T5938] iommufd_fops_ioctl+0x2f5/0x540 [ 92.046213][ T5938] ? __pfx_iommufd_fops_ioctl+0x10/0x10 [ 92.046253][ T5938] ? hook_file_ioctl_common+0x145/0x410 [ 92.046311][ T5938] ? __pfx_iommufd_fops_ioctl+0x10/0x10 [ 92.046351][ T5938] __x64_sys_ioctl+0x18b/0x210 [ 92.046390][ T5938] do_syscall_64+0xcd/0xfa0 [ 92.046421][ T5938] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.046446][ T5938] RIP: 0033:0x7fb8ab98eec9 [ 92.046472][ T5938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 92.046497][ T5938] RSP: 002b:00007fb8ac827038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 92.046522][ T5938] RAX: ffffffffffffffda RBX: 00007fb8abbe5fa0 RCX: 00007fb8ab98eec9 [ 92.046540][ T5938] RDX: 0000000000000003 RSI: 0000000000003b8e RDI: 0000000000000006 [ 92.046556][ T5938] RBP: 00007fb8aba11f91 R08: 0000000000000000 R09: 0000000000000000 [ 92.046571][ T5938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 92.046586][ T5938] R13: 00007fb8abbe6038 R14: 00007fb8abbe5fa0 R15: 00007ffe83e48518 [ 92.046622][ T5938] [ 92.208158][ T0] NOHZ tick-stop error: local softirq work is pending, handler #48!!! [ 92.226399][ T5940] netlink: 268 bytes leftover after parsing attributes in process `syz.2.6'. [ 92.293288][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 92.302037][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 92.310840][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 92.395454][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 92.395863][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 92.693957][ T5940] syz.2.6 (5940) used greatest stack depth: 19704 bytes left [ 93.011821][ T5840] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 93.239265][ T5961] zram0: detected capacity change from 0 to 8 [ 93.401637][ T5840] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 93.419758][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 93.434742][ T5840] Bluetooth: hci1: command tx timeout [ 93.440193][ T5840] Bluetooth: hci2: command tx timeout [ 93.445638][ T5840] Bluetooth: hci0: command tx timeout [ 93.505373][ T5842] Bluetooth: hci3: command tx timeout [ 93.691808][ T5969] openvswitch: netlink: Geneve option length err (len 256, max 255). [ 94.328122][ T5973] zram: Cannot change disksize for initialized device [ 95.813462][ T6001] netlink: 268 bytes leftover after parsing attributes in process `syz.1.19'. [ 95.868070][ T5995] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 95.881467][ T5995] netlink: 20 bytes leftover after parsing attributes in process `syz.0.18'. [ 96.882410][ T6014] openvswitch: netlink: Geneve option length err (len 256, max 255). [ 97.171333][ T6018] Zero length message leads to an empty skb [ 97.831409][ T6030] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 100.823623][ T6077] [U] [ 100.826508][ T6077] [U] [ 100.829187][ T6077] [U] [ 100.831861][ T6077] [U] [ 100.853973][ T6077] [U] [ 100.856688][ T6077] [U] [ 100.859381][ T6077] [U] [ 100.862076][ T6077] [U] [ 100.904515][ T6077] [U] [ 100.907270][ T6077] [U] [ 100.909965][ T6077] [U] [ 100.912641][ T6077] [U] [ 100.915481][ T6077] [U] [ 100.918175][ T6077] [U] c [ 100.921040][ T6077] [U] {׹ah)AjwE ~w=lm#엸v,xTר忻G2c{f KÛ~Xt-r-f2 [ 100.931198][ T6077] [U] ȝ&PmE [ 100.935357][ T6077] [U] {O1i@"RlAQw2H̰!=N\1 [ 100.942201][ T6077] [U] $Tz [ 100.945587][ T6077] [U] i[zsRlTwNJ]3|XTŋ4O^F!w^mwX˼n*`3 }ëV,o [ 100.954961][ T6077] [U] :d1K5ǹ4'|3G61I]3Jd8s{R6P˓sk/l| [ 100.964330][ T6077] [U] !,@0cla@εdKW^wpҠR >D:+' ܌ [ 100.972045][ T6077] [U] w. [ 100.974986][ T6077] [U] л5לܳC/*†2lyB4B9ae]AƢc/2 [ 100.983486][ T6077] [U] +[j:e.^sMBz0-6*77lQN@'E[g;{VNr,hWcF-p+EEUJ%W [ 100.994336][ T6077] [U] #R]=) [ 100.997627][ T6077] [U] ں'`Ƕ_⠲Tw(݋ԝ|7 [ 101.010561][ T6077] [U] zbLvAvkU? [ 101.014899][ T6077] [U] M~5I|âG~mUL3Dy#š$2ЗrGa\^58<f]W6,z6 [ 101.023923][ T6077] [U] ؔO״zWNXBz+ʒ5gv|U'eſ:aG) [ 101.031386][ T6077] [U] %_V&1w yx!}D)WV"s [ 101.036670][ T6077] [U] H ZY Ssς [ 101.041167][ T6077] [U] Zc8Z!1N/cuN̿OZس"4 ?6,FAȾ&wB4# [ 101.049573][ T6077] [U] )eQ|{)qaџeQ5z5XUBf [ 101.200089][ T6077] [U] ΜteZ҂ԝ&bV=c :fƋU55 r9"gϚ1TnhClZ x?޲eCILˆ4͓3cB#[N*bB~9jkf9>r=ͰC=3_4RH7MG\Io ރs%)ϑ_gnӪd5pzV8Eo7pkeWuh#.Vi\ܘԏ<[$Bwe [ 101.227416][ T6077] [U] T97n!byTNjk J>M{lVm{LK;>? )_qiT]oģnsGAתL@"Cф [ 101.239469][ T6077] [U] νf詪ȌJ~1g]:+HFS,7\P9Ђ.~?29[?u ߰1~-eY8{"UObݻBr3.YNED#kz#Q [ 101.253693][ T6077] [U] KgXKgsސ,9F8`/qs+SJ/)ͷ,wt7 ã^mA?,!U{ [ 101.265915][ T6077] [U] E [ 101.269555][ T6077] [U] NC,*Uò QR>'мL7*7२;_C!U٩qdޔ<k~ [ 101.449756][ T6077] [U] $}󃂏es|$$D ɩ{|hZp֯.pjeϧl=IlI]f+_H [ 101.461310][ T6077] [U] "W+X0gZACn~d԰ [ 101.466702][ T6077] [U] K8ȷj&ejh8M(aDL7sމEl^nJLq(Yu[XU [ 101.475809][ T6077] [U] AK [ 101.479165][ T6077] [U] y-BSM.;x >NܼA}y{|P4yp`173ޕS.n 8AV~G]pI [ 101.498564][ T6077] [U] 8˭- [ 101.501743][ T6077] [U] 6Ș4"hA0cL=AQ.tKѿ#|ca܊D K׬zTd ˕nVE!Q"UAS|g)V] PFM-y)7d(Ua9%W0<9o4p.9@aFA+|ـGiNb [ 101.519513][ T6077] [U] M &I [ 101.523649][ T6077] [U] \xoWcmMΤW ;^k%<+ [ 101.529431][ T6077] [U] ZYn9)V DF )$b]1ōeUtKɒJW͗Xq>vX0rw [ 101.538007][ T6077] [U] Bp8>x9k;Ëz{J_0wf2[am2d9@ߚxAOXohޘ1m?":6>4}'blp*?%VM.EN {[+b3o"mOGŕh> [ 101.582366][ T6077] [U] ᴏ׀TLʚuRR .- .H|x\hl?p f@KhLԋ>.|d7Ēgj|ȞË)Bcr|`&&M!>G~-FN!ct [ 101.633064][ T6077] [U] Yq [ 101.636769][ T6077] [U] }l [ 101.639955][ T6077] [U] &0Oj45版*悗Tp섩 JH$~-q [ 101.645999][ T6077] [U] (dL [ 101.688921][ T6077] [U] A#mcD\şρt4l"s 3XA"VL Y' m \x#am ~T Um_foOIE+wv:'t7@o!T"c2p'אfI [ 101.793943][ T6084] sp0: Synchronizing with TNC [ 101.919241][ T6057] tty tty12: ldisc open failed (-12), clearing slot 11 [ 102.459350][ T6111] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 102.886816][ T6118] netlink: 186 bytes leftover after parsing attributes in process `syz.0.38'. [ 103.620448][ T6131] netlink: 4 bytes leftover after parsing attributes in process `syz.1.41'. [ 107.715092][ T6107] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 107.724011][ T6107] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 109.072969][ T6195] openvswitch: netlink: Geneve option length err (len 256, max 255). [ 110.567298][ T6093] Bluetooth: hci1: unexpected event 0x1d length: 6 > 5 [ 111.218853][ T6219] FAULT_INJECTION: forcing a failure. [ 111.218853][ T6219] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 111.261599][ T6219] CPU: 0 UID: 0 PID: 6219 Comm: syz.1.59 Not tainted syzkaller #0 PREEMPT(full) [ 111.261635][ T6219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 111.261650][ T6219] Call Trace: [ 111.261659][ T6219] [ 111.261669][ T6219] dump_stack_lvl+0x16c/0x1f0 [ 111.261706][ T6219] should_fail_ex+0x512/0x640 [ 111.261743][ T6219] _copy_from_user+0x2e/0xd0 [ 111.261777][ T6219] iommufd_fops_ioctl+0x2f5/0x540 [ 111.261817][ T6219] ? __pfx_iommufd_fops_ioctl+0x10/0x10 [ 111.261856][ T6219] ? hook_file_ioctl_common+0x145/0x410 [ 111.261912][ T6219] ? __pfx_iommufd_fops_ioctl+0x10/0x10 [ 111.261951][ T6219] __x64_sys_ioctl+0x18b/0x210 [ 111.261991][ T6219] do_syscall_64+0xcd/0xfa0 [ 111.262022][ T6219] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.262047][ T6219] RIP: 0033:0x7fa77e58eec9 [ 111.262068][ T6219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 111.262100][ T6219] RSP: 002b:00007fa77f3ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 111.262125][ T6219] RAX: ffffffffffffffda RBX: 00007fa77e7e5fa0 RCX: 00007fa77e58eec9 [ 111.262143][ T6219] RDX: 0000000000000003 RSI: 0000000000003b8e RDI: 0000000000000006 [ 111.262157][ T6219] RBP: 00007fa77e611f91 R08: 0000000000000000 R09: 0000000000000000 [ 111.262172][ T6219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 111.262187][ T6219] R13: 00007fa77e7e6038 R14: 00007fa77e7e5fa0 R15: 00007fff44b3a758 [ 111.262224][ T6219] [ 111.677509][ T6093] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 113.708193][ T6107] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 113.715701][ T6107] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection [ 114.418597][ T6270] netlink: 334 bytes leftover after parsing attributes in process `syz.3.70'. [ 115.352451][ T6285] FAULT_INJECTION: forcing a failure. [ 115.352451][ T6285] name failslab, interval 1, probability 0, space 0, times 1 [ 115.366941][ T6285] CPU: 1 UID: 0 PID: 6285 Comm: syz.3.72 Not tainted syzkaller #0 PREEMPT(full) [ 115.366963][ T6285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 115.366971][ T6285] Call Trace: [ 115.366976][ T6285] [ 115.366982][ T6285] dump_stack_lvl+0x16c/0x1f0 [ 115.367004][ T6285] should_fail_ex+0x512/0x640 [ 115.367021][ T6285] ? __kmalloc_cache_noprof+0x5f/0x780 [ 115.367047][ T6285] should_failslab+0xc2/0x120 [ 115.367065][ T6285] __kmalloc_cache_noprof+0x72/0x780 [ 115.367088][ T6285] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 115.367104][ T6285] ? shrinker_alloc+0xf5/0xbf0 [ 115.367122][ T6285] ? shrinker_alloc+0xf5/0xbf0 [ 115.367136][ T6285] shrinker_alloc+0xf5/0xbf0 [ 115.367152][ T6285] ? mark_held_locks+0x49/0x80 [ 115.367171][ T6285] ? pcpu_memcg_post_alloc_hook+0x1e/0x690 [ 115.367189][ T6285] ? __pfx_shrinker_alloc+0x10/0x10 [ 115.367207][ T6285] ? lockdep_init_map_type+0x5c/0x280 [ 115.367226][ T6285] ? __raw_spin_lock_init+0x3a/0x110 [ 115.367247][ T6285] ? __init_rwsem+0x12d/0x1b0 [ 115.367269][ T6285] alloc_super+0x776/0xb60 [ 115.367288][ T6285] sget_fc+0x116/0xc20 [ 115.367302][ T6285] ? __pfx_set_anon_super_fc+0x10/0x10 [ 115.367324][ T6285] ? __pfx_mqueue_fill_super+0x10/0x10 [ 115.367342][ T6285] get_tree_nodev+0x28/0x190 [ 115.367366][ T6285] mqueue_get_tree+0xf1/0x130 [ 115.367384][ T6285] vfs_get_tree+0x8e/0x340 [ 115.367404][ T6285] fc_mount_longterm+0x1a/0x270 [ 115.367426][ T6285] mq_init_ns+0x426/0x620 [ 115.367448][ T6285] copy_ipcs+0x2d6/0x550 [ 115.367469][ T6285] create_new_namespaces+0x20a/0xa90 [ 115.367485][ T6285] ? security_capable+0x7e/0x260 [ 115.367505][ T6285] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 115.367523][ T6285] ksys_unshare+0x45b/0xa40 [ 115.367542][ T6285] ? __pfx_ksys_unshare+0x10/0x10 [ 115.367561][ T6285] ? xfd_validate_state+0x61/0x180 [ 115.367587][ T6285] __x64_sys_unshare+0x31/0x40 [ 115.367604][ T6285] do_syscall_64+0xcd/0xfa0 [ 115.367622][ T6285] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.367643][ T6285] RIP: 0033:0x7fb8ab98eec9 [ 115.367656][ T6285] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 115.367669][ T6285] RSP: 002b:00007fb8ac7e5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 115.367684][ T6285] RAX: ffffffffffffffda RBX: 00007fb8abbe6180 RCX: 00007fb8ab98eec9 [ 115.367693][ T6285] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000000 [ 115.367702][ T6285] RBP: 00007fb8aba11f91 R08: 0000000000000000 R09: 0000000000000000 [ 115.367710][ T6285] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 115.367719][ T6285] R13: 00007fb8abbe6218 R14: 00007fb8abbe6180 R15: 00007ffe83e48518 [ 115.367739][ T6285] [ 116.188339][ T6288] netlink: 268 bytes leftover after parsing attributes in process `syz.3.74'. [ 116.584856][ T6292] [U] [ 116.587668][ T6292] [U] [ 116.590340][ T6292] [U] [ 116.593021][ T6292] [U] [ 116.637805][ T6292] [U] [ 116.640527][ T6292] [U] [ 116.643205][ T6292] [U] [ 116.645882][ T6292] [U] [ 116.666914][ T6292] [U] [ 116.669630][ T6292] [U] [ 116.672337][ T6292] [U] [ 116.675048][ T6292] [U] [ 116.701623][ T6292] [U] [ 116.704332][ T6292] [U] [ 116.707010][ T6292] [U] [ 116.709684][ T6292] [U] [ 116.771797][ T6292] [U] [ 116.774535][ T6292] [U] [ 116.777249][ T6292] [U] [ 116.779963][ T6292] [U] [ 116.809587][ T6292] [U] [ 116.812341][ T6292] [U] [ 116.815051][ T6292] [U] [ 116.817769][ T6292] [U] [ 116.855213][ T6292] [U] [ 116.857959][ T6292] [U] [ 116.860639][ T6292] [U] [ 116.863312][ T6292] [U] [ 116.895221][ T6292] [U] [ 116.897930][ T6292] [U] [ 116.900607][ T6292] [U] [ 116.903275][ T6292] [U] [ 116.967717][ T6292] [U] [ 116.970453][ T6292] [U] [ 116.973134][ T6292] [U] [ 116.975809][ T6292] [U] [ 116.985586][ T6292] [U] [ 116.988314][ T6292] [U] [ 116.991020][ T6292] [U] [ 116.993726][ T6292] [U] [ 117.103627][ T6292] [U] [ 117.106383][ T6292] [U] [ 117.109101][ T6292] [U] [ 117.111813][ T6292] [U] [ 117.114943][ T6292] [U] [ 117.117661][ T6292] [U] [ 117.120373][ T6292] [U] [ 117.123095][ T6292] [U] [ 117.154580][ T6292] [U] [ 117.157321][ T6292] [U] [ 117.160018][ T6292] [U] [ 117.162701][ T6292] [U] [ 117.179473][ T6292] [U] [ 117.182261][ T6292] [U] [ 117.184972][ T6292] [U] [ 117.187674][ T6292] [U] [ 117.247745][ T6292] [U] [ 117.250496][ T6292] [U] [ 117.253195][ T6292] [U] [ 117.255871][ T6292] [U] [ 117.265158][ T6292] [U] [ 118.847014][ T6337] netlink: 342 bytes leftover after parsing attributes in process `syz.0.82'. [ 119.044311][ T6339] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 119.862516][ T6346] netlink: 4 bytes leftover after parsing attributes in process `syz.3.83'. [ 120.247019][ T5901] Process accounting resumed [ 122.555474][ T6382] random: crng reseeded on system resumption [ 122.577922][ T6382] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 122.668790][ T6384] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 123.411670][ T6398] zram: Cannot change disksize for initialized device [ 125.487999][ T6421] FAULT_INJECTION: forcing a failure. [ 125.487999][ T6421] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 125.513537][ T6421] CPU: 1 UID: 0 PID: 6421 Comm: syz.0.99 Not tainted syzkaller #0 PREEMPT(full) [ 125.513558][ T6421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 125.513566][ T6421] Call Trace: [ 125.513573][ T6421] [ 125.513580][ T6421] dump_stack_lvl+0x16c/0x1f0 [ 125.513601][ T6421] should_fail_ex+0x512/0x640 [ 125.513622][ T6421] _copy_from_user+0x2e/0xd0 [ 125.513643][ T6421] iommufd_fops_ioctl+0x2f5/0x540 [ 125.513666][ T6421] ? __pfx_iommufd_fops_ioctl+0x10/0x10 [ 125.513688][ T6421] ? hook_file_ioctl_common+0x145/0x410 [ 125.513720][ T6421] ? __pfx_iommufd_fops_ioctl+0x10/0x10 [ 125.513742][ T6421] __x64_sys_ioctl+0x18b/0x210 [ 125.513764][ T6421] do_syscall_64+0xcd/0xfa0 [ 125.513781][ T6421] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 125.513795][ T6421] RIP: 0033:0x7fcc3478eec9 [ 125.513807][ T6421] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 125.513821][ T6421] RSP: 002b:00007fcc3555b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 125.513835][ T6421] RAX: ffffffffffffffda RBX: 00007fcc349e5fa0 RCX: 00007fcc3478eec9 [ 125.513844][ T6421] RDX: 0000000000000003 RSI: 0000000000003b8e RDI: 0000000000000006 [ 125.513852][ T6421] RBP: 00007fcc34811f91 R08: 0000000000000000 R09: 0000000000000000 [ 125.513860][ T6421] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 125.513868][ T6421] R13: 00007fcc349e6038 R14: 00007fcc349e5fa0 R15: 00007ffef626dcd8 [ 125.513888][ T6421] [ 126.825786][ T6454] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 126.929623][ T6457] [U] [ 126.932461][ T6457] [U] [ 126.935166][ T6457] [U] [ 126.937848][ T6457] [U] [ 126.945727][ T6457] [U] [ 126.948436][ T6457] [U] [ 126.951161][ T6457] [U] [ 126.953879][ T6457] [U] [ 126.959752][ T6457] [U] [ 126.962519][ T6457] [U] [ 126.965239][ T6457] [U] [ 126.967962][ T6457] [U] [ 126.971369][ T6457] [U] [ 126.974076][ T6457] [U] [ 126.976777][ T6457] [U] [ 126.979475][ T6457] [U] [ 126.989653][ T6457] [U] [ 126.992377][ T6457] [U] [ 126.995094][ T6457] [U] [ 126.997806][ T6457] [U] [ 127.044534][ T6457] [U] [ 127.047281][ T6457] [U] [ 127.049997][ T6457] [U] [ 127.052708][ T6457] [U] [ 127.074016][ T6457] [U] [ 127.076741][ T6457] [U] [ 127.079428][ T6457] [U] [ 127.082098][ T6457] [U] [ 127.175322][ T6457] [U] [ 127.178050][ T6457] [U] S0L\ߠT [ 127.181783][ T6457] [U] ,ءE)z*E+}:qivVso7IF [ 127.189672][ T6457] [U] EjkGW Qz19Y<; [ 127.194948][ T6457] [U] t=̙dMne"d.!+nd:ZVr`@H\+gh~p*/aH&@{ݴ,9-<='GWk ^|$mCb@؇QHedt5 [ 127.208989][ T6457] [U] Ag`p ibNxq7{ui@ ˽0H<ѓJ$KxaYdw|rq4g(Z [ 127.218432][ T6457] [U] 6 7.uruD*5ȎK4ECU rsb_%ʵxFDph`ZzW+a[<V\n<uke.߁Ѿ AB/e)A0Zg| ҉Doe0k݆%dTWGxDLLI$R:8-D8 [ 127.239510][ T6457] [U] 0ߠԽh [ 127.243216][ T6457] [U] &#e [ 127.246740][ T6457] [U]  [ 127.249658][ T6457] [U] 1ص[YBPûk+CnwuFY{*nhe^Ubezq ̀WDkd+%4o [ 127.260404][ T6457] [U] 8tOQOK'#V@ӳ;s ".VE3)%T!NMq 7p>MTM` [ 127.269414][ T6457] [U] 6VkΝ*rcw^_E`$dh\ITMX>HV)ӳSi^yk:TzW/M%)W‰ [ 127.280771][ T6457] [U] *oSf[9OPYur1L)F@8ml64+ [ 127.287893][ T6457] [U] @_7[řH>&|{t[V(ç^4{(]I;@y+A(\oTݡE>ņE["MUBi:&Uxn)lV}9Xӛ9ʾ [ 127.300485][ T6457] [U] Evz|;|]GCôzhdޜ}q@+%HEg} G+06pnEL [ 127.362700][ T6457] [U] ݹyZ>FEXm4!1럦17­:+ۏԩd|8K|4[_ [ 127.370077][ T6457] [U] Z:C5Sr+L?n9PUF /LO@x3 [ 127.375831][ T6457] [U] o(?kCI=wdkG嬍J%&cQC8zs*(;"bJ)*&uYJ9KN+P؂DT ;inסB,1n4 # ؓB%L_fbʓDe[SJ*B*E]j?aX:5VpHb [ 127.393290][ T6457] [U] P [ 127.396049][ T6457] [U] $mv=eNAu`Xhp"sW1:eE Lۈ=@*܈_> )bD1z-/)ʃn-ҞעHh [ 127.408443][ T6457] [U] ֝(KDhFi a5A#2KEdZ [ 127.414315][ T6457] [U] oR0QdٚfbK|oQ1O|)ۉgHq.-FG&hw [ 127.423405][ T6457] [U] z]Oy]y9mf#XG*D\^о [ 127.429393][ T6457] [U] V}>;/e 2Mt9(?ڙ "B}7=CCGWv4-YLjT*kʥ{sHܺ/Z!aeס/ [ 127.439801][ T6457] [U] H#%Я)eTuJ_`U7?03ݸaUV |G]qKq5y,+*X"81b}*!۔1{3[U!k@cY<&m[NK6tA,CX FI>? [ 127.457511][ T6457] [U] {ThBD}a-']OJ [ 127.463647][ T6457] [U] k6 x*FO [ 127.467782][ T6457] [U] R1iU_kR+@* d *dE?Z񏝀َ')7 [ 127.474609][ T6457] [U] >FύSA}vIa);\a PFˢ҅qN3$B,N-WLJ!zHLTp+اmںS[paLtYJP)y.&<o@ZiS׺4nP v}^r}bOzݸRle$ [ 127.490825][ T6457] [U] {8ݶeO}qrZ4a7sLq  [ 127.496685][ C0] vkms_vblank_simulate: vblank timer overrun [ 127.520116][ T6457] [U] "4F(w=uRy_ϑ2Y]XޏҪcɼn4=Zj0%ʧN˚3k0F0 C}!*Drl 7\$HװT>J_)oPQ"Ooz&T@Z!RS W:zyXJ;R*dLm#\\6'6.NPd [ 127.545071][ T6457] [U] xJAtWtˬwיUL]G~WbT27X/!SO [ 127.551216][ T6457] [U] 2!\Q)42¶4Wcu8:EYCV@d:WԩfV D)\ikA+ V{bҾ Ƿ&` l'WbDcsGȾ]άWc [ 127.614462][ T6457] [U]  EDm76mH6" D :{ [ 127.621041][ T6457] [U] # 7~?pPpf8 [ 127.625891][ T6457] [U] 0+wI9dƲJ\^Q [ 127.630805][ T6457] [U] 4iUѦS%̓L\B Og,-XR2WS^B+y mBNc9D( Ԙ.>,d [ 127.643106][ T6457] [U] l [ 127.646112][ T6457] [U] i^pGHk8V׎ܯK0ᇤbY\.r|blA-~# [ 127.654154][ T6457] [U] fcsߥĘ%nhʺ:2iԮz3$J;,5~>P( [ 127.662203][ T6457] [U] +Lk*671閭n`(C{p)ndkv]YJ_mwõfPێp n3OGsk~? [^[1nzCN1 .Ր6ʁbM=4=^ۘ{ŋ?&v(CVJ{R6oPo+ [ 127.680683][ C0] vkms_vblank_simulate: vblank timer overrun [ 127.788094][ T6457] [U] '}ȴ+Y+G[X|kD>? [ 127.793890][ T6457] [U] S뛓wf'|)!vFӪzRB ${!:x:I>UzVeǃx?%RI/o7HBvpDMF*LsM>XGZpz_{yƵ"(Drp",(#au_x̔11:1͔q#A+,Rx&Zh?QG$d {J?=LFg| [ 127.816210][ T6457] [U] S{Mg֬)RP2pT_6yL%d֨@kL/ϋqtf1\emӥ@Dy+D5qטA::rc8Vϑà+>8ȎpcN [ 127.830616][ T6457] [U] w`(UKg`]eqbgqBt3J:gƗ,ޖHhG)=8_(in퉫*+w )=%;TpH&/\/.p1u@0O5w3H% [ 127.844400][ T6457] [U] if`It}S/6)FutA ƥt*5$rC1[ZPiz)T&rا":r r1rRl6V~A_WЅQ[0ur [ 127.858554][ T6457] [U] CJEj{ [ 127.862013][ T6457] [U] MycاYz:.sRi%6 [ 127.867203][ T6457] [U] V!3`1hL:TE,x|οD1nMq.!en)?EY5. 7cQʼ`lbº/FmsvV/5惬YhΧ$˱*-Eq){MԃZt-]lq ;wTpgl [ 127.886807][ T6457] [U] fAڹn+/m,Y-, [ 127.891807][ T6457] [U] 헖ؐBs_>w( 峐LC/_:$ TUsWI0(sڴfbfj9C?hRt~ښ¥;ѯ{DZ^[l74 [ 127.905238][ T6457] [U] WVNaeO &Du| P2l#ZSB>fxnP'p1" H+-z*wqY` :ee$O} }*7NVoФ)¸22֢,ƭeed]!â}hU=Y# khYxT[ʲu@*Ψpr֞W [ 127.925890][ C0] vkms_vblank_simulate: vblank timer overrun [ 127.969523][ T6457] [U] {Fp7Hۻ ϜK{=jcQ/޸)~~ [ 127.976599][ T6457] [U] {$V&.{L4+] `_@ʯߔnF1:`m+iIA\.a{&q֍rw#`AZ=w2H{-6hW4uhlQ}|^d$%`N# ]ܡ#F>y! [ 127.991813][ T6457] [U] ^&p!߰, [ 127.995828][ T6457] [U] p)zMv$5ͬ12v+ʽ.V/ܠ*ӌʖ(xn]#Jʜ ID#ړDQ>U9A̿"ϩ5f^_P]Fu%"Y/щ [ 128.011195][ T6457] [U] ЌHE=cm+GyHjǓd'oe6=BȠxSYd{ٽDN [ 128.020375][ T6457] [U] 3baqr v h@̐A ۜ [ 128.026161][ T6457] [U] B!S:I@@ C iGa [ 128.031249][ T6457] [U] &:Թ 1 [ 128.034860][ T6457] [U] G9΂8"-7)3FzG&8e 9HTaYi8j^xD|-a [ 128.044734][ T6457] [U] 'n?ߤdLzOn?+sTlMп4+^Lv@p^7ntj:. (JŰ5{ehFKphTؤ]gx؃OpZtn!Q^d-K$;: [ 128.059571][ C0] vkms_vblank_simulate: vblank timer overrun [ 128.228211][ T6467] [U] 4K“BEUg45L5#.7r%N\t'%'h4+UTy W8g৴9XtU;f27]NJX 'wvs9f,~//8UwHv\󓥈hx~ 7%n@oImHx6t\b+ jV SX!!%a0_ wDc4 [ 128.852440][ T6495] kAFS: Invalid Command on /proc/fs/afs/cells file [ 128.917015][ T6502] syz.1.115 uses obsolete (PF_INET,SOCK_PACKET) [ 129.175870][ T6482] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 129.194284][ T6482] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 129.214056][ T6482] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 129.230849][ T6482] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 129.251009][ T6482] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 129.261657][ T6482] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 129.273843][ T6482] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 129.284610][ T6482] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 129.299558][ T6482] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 129.308345][ T6482] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 129.320086][ T6482] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 129.334427][ T6482] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 129.359070][ T6482] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 129.367089][ T6482] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 129.377615][ T6482] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 129.387354][ T6482] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 129.850476][ T6518] capability: warning: `syz.3.116' uses 32-bit capabilities (legacy support in use) [ 130.526870][ T6532] openvswitch: netlink: Geneve option length err (len 256, max 255). [ 130.708994][ T6107] Bluetooth: hci0: command 0x0c1a tx timeout [ 131.286329][ T6107] Bluetooth: hci1: command 0x0c1a tx timeout [ 131.349021][ T6107] Bluetooth: hci2: command 0x0c1a tx timeout [ 131.427877][ T6107] Bluetooth: hci3: command 0x0c1a tx timeout [ 131.848597][ T6573] netlink: 4 bytes leftover after parsing attributes in process `syz.1.131'. [ 131.863622][ T6573] openvswitch: netlink: Key type 251 is out of range max 32 [ 132.068824][ T6573] zswap: compressor 000 not available [ 132.101967][ T6573] ACPI: EC: Assuming SCI_EVT clearing on QR_EC writes [ 132.694506][ T6605] netlink: 334 bytes leftover after parsing attributes in process `syz.1.136'. [ 132.739783][ T6605] block2mtd: error: cannot open device /sys/module/block2mtd/parameters/block2mtd [ 132.785060][ T6107] Bluetooth: hci0: command 0x0c1a tx timeout [ 132.869379][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.876885][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.361109][ T6107] Bluetooth: hci1: command 0x0c1a tx timeout [ 133.407927][ T6625] netlink: 16 bytes leftover after parsing attributes in process `syz.2.141'. [ 133.425998][ T6107] Bluetooth: hci2: command 0x0c1a tx timeout [ 133.512449][ T6107] Bluetooth: hci3: command 0x0c1a tx timeout [ 133.524437][ T6625] FAULT_INJECTION: forcing a failure. [ 133.524437][ T6625] name fail_futex, interval 1, probability 0, space 0, times 1 [ 133.682508][ T6625] CPU: 0 UID: 0 PID: 6625 Comm: syz.2.141 Not tainted syzkaller #0 PREEMPT(full) [ 133.682531][ T6625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 133.682539][ T6625] Call Trace: [ 133.682544][ T6625] [ 133.682551][ T6625] dump_stack_lvl+0x16c/0x1f0 [ 133.682572][ T6625] should_fail_ex+0x512/0x640 [ 133.682594][ T6625] get_futex_key+0x1d0/0x1560 [ 133.682615][ T6625] ? __pfx_get_futex_key+0x10/0x10 [ 133.682634][ T6625] ? __pfx___schedule+0x10/0x10 [ 133.682647][ T6625] ? trace_sched_set_need_resched_tp+0xf3/0x150 [ 133.682665][ T6625] futex_wake+0xea/0x530 [ 133.682694][ T6625] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 133.682709][ T6625] ? __pfx_futex_wake+0x10/0x10 [ 133.682733][ T6625] ? preempt_schedule_thunk+0x16/0x30 [ 133.682754][ T6625] do_futex+0x1e3/0x350 [ 133.682773][ T6625] ? __pfx_do_futex+0x10/0x10 [ 133.682792][ T6625] ? __pfx_sched_core_share_pid+0x10/0x10 [ 133.682810][ T6625] __x64_sys_futex+0x1e0/0x4c0 [ 133.682831][ T6625] ? __pfx___x64_sys_futex+0x10/0x10 [ 133.682850][ T6625] ? __pfx___do_sys_prctl+0x10/0x10 [ 133.682877][ T6625] do_syscall_64+0xcd/0xfa0 [ 133.682894][ T6625] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 133.682908][ T6625] RIP: 0033:0x7f2bdbf8eec9 [ 133.682919][ T6625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 133.682935][ T6625] RSP: 002b:00007f2bda1d50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 133.682949][ T6625] RAX: ffffffffffffffda RBX: 00007f2bdc1e6098 RCX: 00007f2bdbf8eec9 [ 133.682959][ T6625] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f2bdc1e609c [ 133.682967][ T6625] RBP: 00007f2bdc1e6090 R08: 00007f2bdcd2b000 R09: 0000000000000000 [ 133.682976][ T6625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 133.682984][ T6625] R13: 00007f2bdc1e6128 R14: 00007ffff2a94da0 R15: 00007ffff2a94e88 [ 133.683004][ T6625] [ 134.877020][ T6107] Bluetooth: hci0: command 0x0c1a tx timeout [ 135.425327][ T6107] Bluetooth: hci1: command 0x0c1a tx timeout [ 135.504985][ T6107] Bluetooth: hci2: command 0x0c1a tx timeout [ 135.585003][ T6107] Bluetooth: hci3: command 0x0c1a tx timeout [ 136.007914][ T6657] mmap: syz.3.147 (6657) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 136.945324][ T6107] Bluetooth: hci0: command 0x0c1a tx timeout [ 137.505351][ T6107] Bluetooth: hci1: command 0x0c1a tx timeout [ 137.584984][ T6107] Bluetooth: hci2: command 0x0c1a tx timeout [ 137.665004][ T6107] Bluetooth: hci3: command 0x0c1a tx timeout [ 138.894166][ T6695] scsi_strcpy_devinfo: vendor string '/&c~n] | [ 138.894166][ T6695] M' is too long [ 138.944177][ T30] audit: type=1326 audit(4294967314.290:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6697 comm="syz.2.156" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2bdbf8eec9 code=0x0 [ 138.975239][ T6695] scsi_strcpy_devinfo: model string 'Dd5 K2b [ 138.975239][ T6695] W ' is too long [ 139.079343][ T6708] netlink: 28 bytes leftover after parsing attributes in process `syz.3.158'. [ 139.120533][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 139.127170][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 139.135550][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 139.143392][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 139.699294][ T6712] [U] [ 139.702091][ T6712] [U] [ 139.704803][ T6712] [U] [ 139.707494][ T6712] [U] [ 139.711210][ T6712] [U] [ 139.713894][ T6712] [U] [ 139.716566][ T6712] [U] [ 139.719261][ T6712] [U] [ 139.755487][ T6712] [U] [ 139.758199][ T6712] [U] [ 139.760874][ T6712] [U] [ 139.763546][ T6712] [U] [ 139.767116][ T6712] [U] [ 139.769807][ T6712] [U] [ 139.772479][ T6712] [U] [ 139.775169][ T6712] [U] [ 139.788318][ T6712] [U] [ 139.791059][ T6712] [U] [ 139.793777][ T6712] [U] [ 139.796489][ T6712] [U] [ 139.799445][ T6712] [U] [ 139.802129][ T6712] [U] n{w&Wg{We|h_9[|}F3"$0 [ 139.809248][ T6712] [U] pQǮQt)E!TQD$8Zr [ 139.816019][ T6712] [U] O yUVv0I [ 139.820351][ T6712] [U] dc( [ 139.823903][ T6712] [U] |e{ԊM}yƦg)FZ=jx*{W [ 139.829968][ T6712] [U] -߇\\D;*ee>rdN{֍v#Û̋J7p [ 139.837402][ T6712] [U]  [ 139.840409][ T6712] [U] v̥1OxIY_UOǁW$"<+=X [ 139.847233][ T6712] [U] j0&=¸-+y˨8k׿o&u [ 139.854240][ T6712] [U] *@aiYDӹ22tSI?sJVJch=Ipفz_"ʦPt*\PS.6'[Nf ;,J [ 139.865500][ T6712] [U] MTK [ 139.868689][ T6712] [U] X/[FVs2TJlcɡ* [ 139.873600][ T6712] [U] OAnKOĶmXs!ltJEM-e*H~ [ 139.881292][ T6712] [U] 2;+g<͵gG:J4$ [ 139.984581][ T6712] [U] TEWYA} 1ᛝ #f_=˘ CKM$Mr̩_ЂmJXl [ 140.065082][ T6712] [U] ԩL %\;OB报"]3a1 ەDĺ̞wMl~;a܍'d/9{$DOM, I'?Ky⬗4: sGeD1eTAbz&4[mQ%xe jyh`^ [ 140.081264][ T6712] [U] >wF]Aѻ0I/?Lș꩚ [ 140.086559][ T6712] [U] kVB^,, fSX:gM1BL~F\2Y2Wt8ԀGV褈uPC\#඄4Jך3L=#t?2cd˃[)%ZLDk5?Q7+'lCc*$!*Q [ 140.104886][ T6712] [U] j۹/h4,H9r`x)٬rr#3f:ѽM%6pްⲡ+HBY~k5Wo07M [ 140.178089][ T6712] [U] /TP2wE [ 140.182767][ T6712] [U] v/$U8AdU`?@կ\YC-@ԪcFkL d271C9gI!rFhf] ?%#n.X| OӼ(`\J| k"mIgdc% vji+% įBIUoiljgгZY']m1RWӉB;f-Ў[z(XyɜYG [ 140.208014][ T6712] [U] zB(T&&];ܖwwJUV [ 140.213913][ T6712] [U] g|Сg/3v  [ 140.218580][ T6712] [U] |boFح. dx&2Lux'2tEÜ<> nboBFq D2$7BP-5-#|wBtʍcKf|AڒaqO 2|*\ϼ=iK§MYv)qGT=N[Q.˴ [ 140.236277][ T6712] [U] 2ӿ4QGRM""ws}`&/^| [ 140.243553][ T6712] [U] #Z}jȉRKzAԅrJP!jJ [ 140.249786][ T6712] [U] jl#$Y* [ 140.254445][ T6712] [U] (I`le [ 140.258322][ T6712] [U] ig 7 [ 140.262205][ T6712] [U] vPudt2hGfk t5FͳyؾS+ԩB#qr`qgqtP<@ZHC{ƦY4Fq͘\Ry?B-7#NB `8>-P>RI{j0SֆM [ 140.401018][ T6712] [U] Kq䁧am4GLRf+Ag!ȗ;-_ܲI: =-P4lT*hV!B +`T]0`(&G~/sGy7d+П{H}Hrxra eT>-)GBLj먼K博Ԗ+4hķMT3j ЀH [ 140.519684][ T6712] [U] _IWK-@ eUD*NoV8-h3N&aI'Ұ~ʢg "{. [ 140.531387][ T6712] [U] K=Qx-c=KQ2C5+qp$Ыʬ<v[Qvvyذ~ MSܛk rզu* [ 140.541188][ T6712] [U] ~Rw*¦O1Ï γDiSrm)E@5ȿ_GftLP*GN~#;ͲL/l~5@>Uʱ [ 140.555525][ T6712] [U] |z50^(2̖D_YίT6+MC ݋-i:Rl9(X@t{ˀ7rO9!< }tcR [ 140.609618][ T6712] [U] Rq [ 140.613161][ T6712] [U] |oWz.ד:(FO&utE [ 140.617824][ T6712] [U] 1{A 9=9z#vV.*@qx&f-geeı]g1|X4{SRAppy$o/4G&Ǡ%z [ 140.629955][ T6712] [U] ¹£%4ۑClR [ 140.634352][ T6712] [U] x [ 140.637280][ T6712] [U] YÆ17\TH7bB}2RNOա{!qyeb4Ė&ܙ܍15DTj r褉,>s_!HW(݆ɮĦIKѐop_ [ 140.650904][ T6712] [U] Ikpgy45??̨A;\.Cg:Wrxh;2 wJ7%Xp.ݥDk1SyS*^;T otfiL׹{3%4jЦuKU1JvΓehyDeR8٘,E>akxSi+a$^'Y(>@ :Xk)9_dz-)?}+Q [ 140.674417][ T6712] [U] ȑ+,QH]"T3vg> [ 140.678821][ T6712] [U] 0VO9"}gcd|` .g`;E%Ď{_ [ 140.685828][ T6712] [U] 6gVK. [ 140.689181][ T6712] [U] FHC>v [ 140.692882][ T6712] [U] ؞S^>#̂lTE_1D#Yby [ 140.698505][ T6712] [U] ś֏E͋mΆGpK8ZKkr$4=d5$ 6JRQ(ؼuX!g[)"!ֺU;kʓ2-?4IJ\ĊXRh7&Zj]9 [ 140.715781][ T6712] [U] tźRp.RR8fDq:-T7W\z5 nuQht@E}*|/ç1iz1e?toW+#^Ss;eeRm=ZgTϝ'383{D2;SZ zGQ9"KGC81wH2&_BNIӝpĬRv [ 140.844126][ T6712] [U] 9f^iw3~ q(: [ 140.849590][ T6712] [U] R>WU֫4K [ 140.853575][ T6712] [U] WqCCEr1DJij\ [ 140.858928][ T6712] [U] fnV|ࡐ>q +s!csr(ųi#f1} [ 140.865936][ T6712] [U] )VwMCEπ!Hcd K"dPbG Wǖx!o$=vA [ 140.874944][ T6712] [U]  [ 140.877972][ T6712] [U] @)?O_rq 30-^E [ 140.883237][ T6712] [U] b&&,p%tΨEi,446.>ˣqSg7ik [ 140.890070][ T6712] [U] ܍z*!2t;+ޭ /O-P56hz?A19 [ 140.896298][ T6712] [U] HVQTHfxgB#0*2 )#l{" e0õ24Bu/poP~ ~ؿ2^e9BzD!KNuhq;jU<@I:%; [ 140.910166][ T6712] [U] !&,&❆g+&YXɑsSvx,PMbF6m9s^=AAC/\ [ 140.919613][ T6712] [U] A>Lw׆ u!}pר+ [ 140.925864][ T6712] [U] ̧Ȫ!OL{|]ʅJ巌pB8?OUKÙ'-0ӁK7 [ 140.933664][ T6712] [U] 9ެkMV p@?\ 2x2JI [ 140.939893][ T6712] [U] :*|hkKt㜔"qexoO!Q&m@*pK [ 141.025266][ T6712] [U] +m|󶚞 voۃOCQ?|pW5(~Ik,ۍF\Rj%O^rڑAy5j^=d/> !S5c3^KE9,H^mbnZLow%.1삣3~~G9 ~?;]q]:0e!3)W'ˎu [ 141.047531][ T6712] [U] BIQ*C#,faQ/xp [ 141.053615][ T6712] [U] @wɺ9e:jY@ѾkZ)߄Zlw}-"mQp5FLEu`Gѵ4"U65ŇhVkZ"B\G}{Ɲ [ 141.073624][ T6712] [U] =amq [ 141.077027][ T6712] [U] ހ?uϱhm.[<wITg- _F'6)wr1"^ [ 141.104376][ T6712] [U] s$j1-Llpo6B]?S'j٩ [ 141.109753][ T6712] [U] =k0%W=SDw&C*2d8,ŊK-QYFSq6>ؾc&~b$ (̈^G&`m~CKANMvY#hx |$/m/3I՛ܰ8P;β/@ºgt!UX^U6< Sp*N6~>/a\jڬ [ 141.130682][ T6712] [U] \.`LNڂ_rCL'oE-^b]>n$tYȞs>>n+Ndb)_1՚o:-\ scm].M`㴭'R6 [ 141.490858][ T6731] dump_stack_lvl+0x16c/0x1f0 [ 141.490885][ T6731] should_fail_ex+0x512/0x640 [ 141.490907][ T6731] should_fail_alloc_page+0xe7/0x130 [ 141.490927][ T6731] prepare_alloc_pages+0x3c2/0x610 [ 141.490946][ T6731] ? arch_stack_walk+0xa6/0x100 [ 141.490963][ T6731] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 141.490982][ T6731] ? stack_trace_save+0x8e/0xc0 [ 141.490998][ T6731] ? __pfx_stack_trace_save+0x10/0x10 [ 141.491014][ T6731] ? stack_depot_save_flags+0x29/0x9c0 [ 141.491031][ T6731] ? find_held_lock+0x2b/0x80 [ 141.491046][ T6731] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 141.491061][ T6731] ? kasan_save_stack+0x42/0x60 [ 141.491076][ T6731] ? kasan_save_stack+0x33/0x60 [ 141.491090][ T6731] ? kasan_save_track+0x14/0x30 [ 141.491103][ T6731] ? __kasan_slab_alloc+0x89/0x90 [ 141.491119][ T6731] ? kmem_cache_alloc_noprof+0x250/0x6e0 [ 141.491131][ T6731] ? security_inode_alloc+0x3b/0x2b0 [ 141.491150][ T6731] ? inode_init_always_gfp+0xce4/0x1030 [ 141.491165][ T6731] ? do_syscall_64+0xcd/0xfa0 [ 141.491180][ T6731] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 141.491198][ T6731] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 141.491222][ T6731] ? policy_nodemask+0xea/0x4e0 [ 141.491241][ T6731] alloc_pages_mpol+0x1fb/0x550 [ 141.491260][ T6731] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 141.491284][ T6731] ___kmalloc_large_node+0xed/0x160 [ 141.491305][ T6731] __kmalloc_large_node_noprof+0x1c/0x70 [ 141.491330][ T6731] __kmalloc_noprof.cold+0xc/0x62 [ 141.491354][ T6731] ? sk_prot_alloc+0x1a8/0x2a0 [ 141.491378][ T6731] ? sk_prot_alloc+0x1a8/0x2a0 [ 141.491395][ T6731] sk_prot_alloc+0x1a8/0x2a0 [ 141.491415][ T6731] sk_alloc+0x36/0xc20 [ 141.491431][ T6731] can_create+0x1e5/0x630 [ 141.491450][ T6731] __sock_create+0x338/0x8d0 [ 141.491474][ T6731] __sys_socket+0x14d/0x260 [ 141.491495][ T6731] ? __pfx___sys_socket+0x10/0x10 [ 141.491515][ T6731] ? xfd_validate_state+0x61/0x180 [ 141.491533][ T6731] ? __pfx_ksys_write+0x10/0x10 [ 141.491551][ T6731] __x64_sys_socket+0x72/0xb0 [ 141.491571][ T6731] ? lockdep_hardirqs_on+0x7c/0x110 [ 141.491586][ T6731] do_syscall_64+0xcd/0xfa0 [ 141.491603][ T6731] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 141.491616][ T6731] RIP: 0033:0x7f2bdbf8eec9 [ 141.491629][ T6731] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 141.491642][ T6731] RSP: 002b:00007f2bda1d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 141.491656][ T6731] RAX: ffffffffffffffda RBX: 00007f2bdc1e6090 RCX: 00007f2bdbf8eec9 [ 141.491665][ T6731] RDX: 0000000000000006 RSI: 0000000000000002 RDI: 000000000000001d [ 141.491673][ T6731] RBP: 00007f2bdc011f91 R08: 0000000000000000 R09: 0000000000000000 [ 141.491681][ T6731] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 141.491690][ T6731] R13: 00007f2bdc1e6128 R14: 00007f2bdc1e6090 R15: 00007ffff2a94e88 [ 141.491709][ T6731] [ 143.372078][ T6769] FAULT_INJECTION: forcing a failure. [ 143.372078][ T6769] name failslab, interval 1, probability 0, space 0, times 0 [ 143.434789][ T6769] CPU: 0 UID: 0 PID: 6769 Comm: syz.3.173 Not tainted syzkaller #0 PREEMPT(full) [ 143.434827][ T6769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 143.434842][ T6769] Call Trace: [ 143.434851][ T6769] [ 143.434861][ T6769] dump_stack_lvl+0x16c/0x1f0 [ 143.434895][ T6769] should_fail_ex+0x512/0x640 [ 143.434924][ T6769] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 143.434951][ T6769] should_failslab+0xc2/0x120 [ 143.434983][ T6769] kmem_cache_alloc_noprof+0x75/0x6e0 [ 143.435007][ T6769] ? security_file_alloc+0x34/0x2b0 [ 143.435037][ T6769] ? security_file_alloc+0x34/0x2b0 [ 143.435058][ T6769] security_file_alloc+0x34/0x2b0 [ 143.435082][ T6769] init_file+0x93/0x4c0 [ 143.435115][ T6769] alloc_empty_file+0x73/0x1e0 [ 143.435150][ T6769] path_openat+0xda/0x2cb0 [ 143.435187][ T6769] ? __pfx_path_openat+0x10/0x10 [ 143.435222][ T6769] do_filp_open+0x20b/0x470 [ 143.435248][ T6769] ? __pfx_do_filp_open+0x10/0x10 [ 143.435299][ T6769] ? alloc_fd+0x471/0x7d0 [ 143.435334][ T6769] do_sys_openat2+0x11b/0x1d0 [ 143.435368][ T6769] ? __pfx_do_sys_openat2+0x10/0x10 [ 143.435404][ T6769] ? find_held_lock+0x2b/0x80 [ 143.435440][ T6769] __x64_sys_openat+0x174/0x210 [ 143.435478][ T6769] ? __pfx___x64_sys_openat+0x10/0x10 [ 143.435531][ T6769] do_syscall_64+0xcd/0xfa0 [ 143.435563][ T6769] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 143.435589][ T6769] RIP: 0033:0x7fb8ab98eec9 [ 143.435610][ T6769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 143.435633][ T6769] RSP: 002b:00007fb8ac827038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 143.435665][ T6769] RAX: ffffffffffffffda RBX: 00007fb8abbe5fa0 RCX: 00007fb8ab98eec9 [ 143.435682][ T6769] RDX: 0000000000121102 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 143.435698][ T6769] RBP: 00007fb8aba11f91 R08: 0000000000000000 R09: 0000000000000000 [ 143.435714][ T6769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 143.435729][ T6769] R13: 00007fb8abbe6038 R14: 00007fb8abbe5fa0 R15: 00007ffe83e48518 [ 143.435766][ T6769] [ 144.188660][ T6773] netlink: 'syz.2.174': attribute type 1 has an invalid length. [ 144.595246][ T6800] netlink: 12 bytes leftover after parsing attributes in process `syz.0.179'. [ 145.348276][ T6811] netlink: 'syz.3.182': attribute type 11 has an invalid length. [ 145.356227][ T6811] netlink: 'syz.3.182': attribute type 11 has an invalid length. [ 145.363981][ T6811] netlink: 4 bytes leftover after parsing attributes in process `syz.3.182'. [ 145.373684][ T6811] netlink: 'syz.3.182': attribute type 11 has an invalid length. [ 145.391819][ T6811] netlink: 20 bytes leftover after parsing attributes in process `syz.3.182'. [ 145.419390][ T6811] netlink: 200 bytes leftover after parsing attributes in process `syz.3.182'. [ 145.576753][ T6819] netlink: 206 bytes leftover after parsing attributes in process `syz.1.184'. [ 145.893225][ T6825] FAULT_INJECTION: forcing a failure. [ 145.893225][ T6825] name failslab, interval 1, probability 0, space 0, times 0 [ 145.924816][ T6831] pci 0000:00:01.0: [8086:7110] type 00 class 0x060100 conventional PCI endpoint [ 145.954852][ T6825] CPU: 1 UID: 0 PID: 6825 Comm: syz.2.186 Not tainted syzkaller #0 PREEMPT(full) [ 145.954887][ T6825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 145.954901][ T6825] Call Trace: [ 145.954910][ T6825] [ 145.954920][ T6825] dump_stack_lvl+0x16c/0x1f0 [ 145.954953][ T6825] should_fail_ex+0x512/0x640 [ 145.954983][ T6825] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 145.955013][ T6825] should_failslab+0xc2/0x120 [ 145.955045][ T6825] kmem_cache_alloc_noprof+0x75/0x6e0 [ 145.955071][ T6825] ? getname_flags.part.0+0x4c/0x550 [ 145.955114][ T6825] ? getname_flags.part.0+0x4c/0x550 [ 145.955156][ T6825] getname_flags.part.0+0x4c/0x550 [ 145.955196][ T6825] getname_flags+0x93/0xf0 [ 145.955222][ T6825] do_sys_openat2+0xb8/0x1d0 [ 145.955257][ T6825] ? __pfx_do_sys_openat2+0x10/0x10 [ 145.955294][ T6825] ? find_held_lock+0x2b/0x80 [ 145.955330][ T6825] __x64_sys_openat+0x174/0x210 [ 145.955366][ T6825] ? __pfx___x64_sys_openat+0x10/0x10 [ 145.955417][ T6825] do_syscall_64+0xcd/0xfa0 [ 145.955448][ T6825] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 145.955473][ T6825] RIP: 0033:0x7f2bdbf8eec9 [ 145.955494][ T6825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 145.955518][ T6825] RSP: 002b:00007f2bda1f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 145.955542][ T6825] RAX: ffffffffffffffda RBX: 00007f2bdc1e5fa0 RCX: 00007f2bdbf8eec9 [ 145.955559][ T6825] RDX: 0000000000121102 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 145.955575][ T6825] RBP: 00007f2bdc011f91 R08: 0000000000000000 R09: 0000000000000000 [ 145.955590][ T6825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 145.955605][ T6825] R13: 00007f2bdc1e6038 R14: 00007f2bdc1e5fa0 R15: 00007ffff2a94e88 [ 145.955642][ T6825] [ 146.232838][ T6107] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 147.341576][ T6868] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 147.351653][ T6866] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 148.104108][ T6861] svc: failed to register nfsdv3 RPC service (errno 512). [ 148.144478][ T6861] svc: failed to register nfsaclv3 RPC service (errno 512). [ 148.304034][ T6889] FAULT_INJECTION: forcing a failure. [ 148.304034][ T6889] name failslab, interval 1, probability 0, space 0, times 0 [ 148.315303][ T6107] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 148.349947][ T6889] CPU: 1 UID: 0 PID: 6889 Comm: syz.0.200 Not tainted syzkaller #0 PREEMPT(full) [ 148.349981][ T6889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 148.349995][ T6889] Call Trace: [ 148.350004][ T6889] [ 148.350011][ T6889] dump_stack_lvl+0x16c/0x1f0 [ 148.350032][ T6889] should_fail_ex+0x512/0x640 [ 148.350050][ T6889] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 148.350067][ T6889] should_failslab+0xc2/0x120 [ 148.350085][ T6889] kmem_cache_alloc_noprof+0x75/0x6e0 [ 148.350099][ T6889] ? security_file_alloc+0x34/0x2b0 [ 148.350117][ T6889] ? security_file_alloc+0x34/0x2b0 [ 148.350129][ T6889] security_file_alloc+0x34/0x2b0 [ 148.350143][ T6889] init_file+0x93/0x4c0 [ 148.350161][ T6889] alloc_empty_file+0x73/0x1e0 [ 148.350180][ T6889] path_openat+0xda/0x2cb0 [ 148.350201][ T6889] ? __pfx_path_openat+0x10/0x10 [ 148.350221][ T6889] do_filp_open+0x20b/0x470 [ 148.350236][ T6889] ? __pfx_do_filp_open+0x10/0x10 [ 148.350265][ T6889] ? alloc_fd+0x471/0x7d0 [ 148.350284][ T6889] do_sys_openat2+0x11b/0x1d0 [ 148.350303][ T6889] ? __pfx_do_sys_openat2+0x10/0x10 [ 148.350323][ T6889] ? find_held_lock+0x2b/0x80 [ 148.350343][ T6889] __x64_sys_openat+0x174/0x210 [ 148.350363][ T6889] ? __pfx___x64_sys_openat+0x10/0x10 [ 148.350390][ T6889] do_syscall_64+0xcd/0xfa0 [ 148.350408][ T6889] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 148.350422][ T6889] RIP: 0033:0x7fcc3478eec9 [ 148.350434][ T6889] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 148.350447][ T6889] RSP: 002b:00007fcc3555b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 148.350461][ T6889] RAX: ffffffffffffffda RBX: 00007fcc349e5fa0 RCX: 00007fcc3478eec9 [ 148.350470][ T6889] RDX: 0000000000121102 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 148.350479][ T6889] RBP: 00007fcc34811f91 R08: 0000000000000000 R09: 0000000000000000 [ 148.350487][ T6889] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 148.350495][ T6889] R13: 00007fcc349e6038 R14: 00007fcc349e5fa0 R15: 00007ffef626dcd8 [ 148.350515][ T6889] [ 149.558041][ T6913] Process accounting resumed [ 149.732792][ T6904] zswap: compressor not available [ 149.945263][ T6932] mkiss: ax0: crc mode is auto. [ 150.109043][ T6225] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 150.122298][ T6225] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 152.332996][ T6988] netlink: 'syz.2.221': attribute type 11 has an invalid length. [ 152.341037][ T6988] netlink: 'syz.2.221': attribute type 11 has an invalid length. [ 152.353452][ T6988] netlink: 'syz.2.221': attribute type 11 has an invalid length. [ 152.712801][ T6988] sctp: [Deprecated]: syz.2.221 (pid 6988) Use of struct sctp_assoc_value in delayed_ack socket option. [ 152.712801][ T6988] Use struct sctp_sack_info instead [ 153.548749][ T7010] netlink: 330 bytes leftover after parsing attributes in process `syz.2.227'. [ 153.613783][ T6107] Bluetooth: hci3: unexpected event 0x36 length: 123 > 7 [ 153.613941][ T6107] Bluetooth: hci3: unexpected event 0x36 length: 123 > 7 [ 153.636037][ T6107] Bluetooth: hci3: unexpected event 0x36 length: 123 > 7 [ 153.643363][ T6107] Bluetooth: hci3: unexpected event 0x36 length: 123 > 7 [ 153.650797][ T6107] Bluetooth: hci3: unexpected event 0x36 length: 123 > 7 [ 153.659634][ T6107] Bluetooth: hci3: unexpected event 0x36 length: 123 > 7 [ 153.668063][ T6107] Bluetooth: hci3: unexpected event 0x36 length: 123 > 7 [ 153.675347][ T6107] Bluetooth: hci3: unexpected event 0x36 length: 123 > 7 [ 153.682497][ T6107] Bluetooth: hci3: unexpected event 0x36 length: 123 > 7 [ 153.689833][ T6107] Bluetooth: hci3: unexpected event 0x36 length: 123 > 7 [ 154.005833][ T7010] veth0_macvtap: left promiscuous mode [ 154.098601][ T116] smpboot: CPU 1 is now offline [ 155.691148][ T7063] FAULT_INJECTION: forcing a failure. [ 155.691148][ T7063] name fail_futex, interval 1, probability 0, space 0, times 0 [ 155.761350][ T7063] CPU: 0 UID: 0 PID: 7063 Comm: syz.2.237 Not tainted syzkaller #0 PREEMPT(full) [ 155.761371][ T7063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 155.761379][ T7063] Call Trace: [ 155.761384][ T7063] [ 155.761390][ T7063] dump_stack_lvl+0x16c/0x1f0 [ 155.761411][ T7063] should_fail_ex+0x512/0x640 [ 155.761431][ T7063] get_futex_key+0x1d0/0x1560 [ 155.761453][ T7063] ? __pfx_get_futex_key+0x10/0x10 [ 155.761470][ T7063] ? stack_trace_save+0x8e/0xc0 [ 155.761485][ T7063] ? __pfx_stack_trace_save+0x10/0x10 [ 155.761501][ T7063] ? stack_depot_save_flags+0x29/0x9c0 [ 155.761520][ T7063] futex_wait_setup+0x9d/0x550 [ 155.761548][ T7063] __futex_wait+0x193/0x2f0 [ 155.761570][ T7063] ? __pfx___futex_wait+0x10/0x10 [ 155.761594][ T7063] ? __pfx_futex_wake_mark+0x10/0x10 [ 155.761618][ T7063] ? futex_private_hash_put+0x176/0x300 [ 155.761638][ T7063] ? futex_private_hash_put+0x18a/0x300 [ 155.761657][ T7063] futex_wait+0xe8/0x380 [ 155.761677][ T7063] ? __pfx_futex_wait+0x10/0x10 [ 155.761702][ T7063] ? kmem_cache_free+0x2d4/0x6c0 [ 155.761716][ T7063] ? putname+0x154/0x1a0 [ 155.761737][ T7063] do_futex+0x229/0x350 [ 155.761756][ T7063] ? __pfx_do_futex+0x10/0x10 [ 155.761775][ T7063] ? find_held_lock+0x2b/0x80 [ 155.761792][ T7063] __x64_sys_futex+0x1e0/0x4c0 [ 155.761812][ T7063] ? __x64_sys_openat+0x174/0x210 [ 155.761831][ T7063] ? __pfx___x64_sys_futex+0x10/0x10 [ 155.761857][ T7063] do_syscall_64+0xcd/0xfa0 [ 155.761875][ T7063] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 155.761889][ T7063] RIP: 0033:0x7f2bdbf8eec9 [ 155.761901][ T7063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 155.761917][ T7063] RSP: 002b:00007f2bda1f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 155.761933][ T7063] RAX: ffffffffffffffda RBX: 00007f2bdc1e5fa8 RCX: 00007f2bdbf8eec9 [ 155.761942][ T7063] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2bdc1e5fa8 [ 155.761951][ T7063] RBP: 00007f2bdc1e5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 155.761960][ T7063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 155.761968][ T7063] R13: 00007f2bdc1e6038 R14: 00007ffff2a94da0 R15: 00007ffff2a94e88 [ 155.761987][ T7063] [ 155.987523][ C0] vkms_vblank_simulate: vblank timer overrun [ 156.399625][ T7070] netlink: 28 bytes leftover after parsing attributes in process `syz.3.238'. [ 156.606429][ T7074] netlink: 342 bytes leftover after parsing attributes in process `syz.2.240'. [ 156.693459][ T7070] macvlan0: entered allmulticast mode [ 156.726563][ T7070] veth1_vlan: entered allmulticast mode [ 157.932539][ T30] audit: type=1806 audit(4294967333.290:3): xattr="" res=-22 [ 158.088450][ T7104] sctp: [Deprecated]: syz.0.246 (pid 7104) Use of struct sctp_assoc_value in delayed_ack socket option. [ 158.088450][ T7104] Use struct sctp_sack_info instead [ 158.552080][ T6107] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 159.858094][ T7113] kexec: Could not allocate control_code_buffer [ 160.192964][ T7142] ima: policy update failed [ 160.231018][ T30] audit: type=1802 audit(4294967335.570:4): pid=7142 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.255" res=0 errno=0 [ 160.331052][ T7146] random: crng reseeded on system resumption [ 160.955207][ T30] audit: type=1800 audit(4294967336.300:5): pid=7158 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.259" name="free_buffer" dev="tracefs" ino=48 res=0 errno=0 [ 161.610564][ T7175] mmap: syz.2.262 (7175): VmData 45940736 exceed data ulimit 3. Update limits or use boot option ignore_rlimit_data. [ 161.725140][ T7175] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7 [ 162.037941][ T7183] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8 [ 162.403375][ T30] audit: type=1804 audit(4294967337.750:6): pid=7187 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.264" name="/newroot/71/file0" dev="tmpfs" ino=391 res=1 errno=0 [ 162.515027][ T30] audit: type=1800 audit(4294967337.780:7): pid=7201 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.268" name="features" dev="configfs" ino=15710 res=0 errno=0 [ 162.649569][ T30] audit: type=1804 audit(4294967337.780:8): pid=7187 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.264" name="/newroot/71/file0" dev="tmpfs" ino=391 res=1 errno=0 [ 163.718652][ T7228] FAULT_INJECTION: forcing a failure. [ 163.718652][ T7228] name failslab, interval 1, probability 0, space 0, times 0 [ 163.743930][ T7229] ima: policy update failed [ 163.787915][ T30] audit: type=1802 audit(4294967339.110:9): pid=7229 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.273" res=0 errno=0 [ 163.839348][ T7228] CPU: 0 UID: 0 PID: 7228 Comm: syz.0.274 Not tainted syzkaller #0 PREEMPT(full) [ 163.839370][ T7228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 163.839378][ T7228] Call Trace: [ 163.839383][ T7228] [ 163.839390][ T7228] dump_stack_lvl+0x16c/0x1f0 [ 163.839412][ T7228] should_fail_ex+0x512/0x640 [ 163.839430][ T7228] ? __kmalloc_noprof+0xca/0x880 [ 163.839454][ T7228] should_failslab+0xc2/0x120 [ 163.839473][ T7228] __kmalloc_noprof+0xdd/0x880 [ 163.839494][ T7228] ? __register_sysctl_table+0xb3/0x1900 [ 163.839518][ T7228] ? __register_sysctl_table+0xb3/0x1900 [ 163.839536][ T7228] __register_sysctl_table+0xb3/0x1900 [ 163.839556][ T7228] ? is_module_address+0x5f/0xf0 [ 163.839579][ T7228] ? __pfx___register_sysctl_table+0x10/0x10 [ 163.839598][ T7228] ? is_module_address+0x69/0xf0 [ 163.839616][ T7228] ? register_net_sysctl_sz+0x228/0x3e0 [ 163.839634][ T7228] ? __asan_memmove+0x30/0x60 [ 163.839648][ T7228] ? kmemdup_noprof+0x49/0x60 [ 163.839665][ T7228] ipv6_sysctl_net_init+0xe2/0x2b0 [ 163.839686][ T7228] ? __pfx_ipv6_sysctl_net_init+0x10/0x10 [ 163.839705][ T7228] ops_init+0x1e2/0x5f0 [ 163.839725][ T7228] setup_net+0x100/0x390 [ 163.839742][ T7228] ? __pfx_setup_net+0x10/0x10 [ 163.839759][ T7228] ? debug_mutex_init+0x37/0x70 [ 163.839776][ T7228] copy_net_ns+0x2f8/0x690 [ 163.839797][ T7228] create_new_namespaces+0x3ea/0xa90 [ 163.839818][ T7228] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 163.839836][ T7228] ksys_unshare+0x45b/0xa40 [ 163.839855][ T7228] ? __pfx_ksys_unshare+0x10/0x10 [ 163.839873][ T7228] ? xfd_validate_state+0x61/0x180 [ 163.839899][ T7228] __x64_sys_unshare+0x31/0x40 [ 163.839916][ T7228] do_syscall_64+0xcd/0xfa0 [ 163.839934][ T7228] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 163.839948][ T7228] RIP: 0033:0x7fcc3478eec9 [ 163.839959][ T7228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 163.839972][ T7228] RSP: 002b:00007fcc3555b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 163.839987][ T7228] RAX: ffffffffffffffda RBX: 00007fcc349e5fa0 RCX: 00007fcc3478eec9 [ 163.839996][ T7228] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 163.840005][ T7228] RBP: 00007fcc34811f91 R08: 0000000000000000 R09: 0000000000000000 [ 163.840013][ T7228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 163.840021][ T7228] R13: 00007fcc349e6038 R14: 00007fcc349e5fa0 R15: 00007ffef626dcd8 [ 163.840041][ T7228] [ 164.287916][ T7233] random: crng reseeded on system resumption [ 164.702558][ T7257] netlink: 93 bytes leftover after parsing attributes in process `syz.3.278'. [ 164.727337][ T7253] netlink: 'syz.3.278': attribute type 1 has an invalid length. [ 165.229718][ T7281] [U]  [ 165.232524][ T7281] [U] [ 165.235196][ T7281] [U] [ 165.237865][ T7281] [U] [ 165.326141][ T7281] [U] [ 165.328852][ T7281] [U] [ 165.331522][ T7281] [U] [ 165.334190][ T7281] [U] [ 165.401768][ T7281] [U] [ 165.960111][ T30] audit: type=1804 audit(4294967341.310:10): pid=7301 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.281" name="/newroot/74/file0" dev="tmpfs" ino=408 res=1 errno=0 [ 166.024505][ T7310] ptrace attach of "./syz-executor exec"[5825] was attempted by ""[7310] [ 167.142096][ T6107] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 167.150344][ T6107] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 168.333488][ T6107] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 169.098825][ T7387] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 169.105471][ T7387] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 169.157232][ T7393] FAULT_INJECTION: forcing a failure. [ 169.157232][ T7393] name failslab, interval 1, probability 0, space 0, times 0 [ 169.257327][ T7393] CPU: 0 UID: 0 PID: 7393 Comm: syz.3.297 Not tainted syzkaller #0 PREEMPT(full) [ 169.257347][ T7393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 169.257355][ T7393] Call Trace: [ 169.257360][ T7393] [ 169.257366][ T7393] dump_stack_lvl+0x16c/0x1f0 [ 169.257386][ T7393] should_fail_ex+0x512/0x640 [ 169.257403][ T7393] ? fs_reclaim_acquire+0xae/0x150 [ 169.257422][ T7393] should_failslab+0xc2/0x120 [ 169.257440][ T7393] __kmalloc_noprof+0xdd/0x880 [ 169.257461][ T7393] ? kfree+0x252/0x6d0 [ 169.257480][ T7393] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 169.257498][ T7393] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 169.257512][ T7393] tomoyo_realpath_from_path+0xc2/0x6e0 [ 169.257532][ T7393] tomoyo_check_open_permission+0x2ab/0x3c0 [ 169.257554][ T7393] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 169.257595][ T7393] ? do_raw_spin_lock+0x12c/0x2b0 [ 169.257622][ T7393] tomoyo_file_open+0x6b/0x90 [ 169.257639][ T7393] security_file_open+0x84/0x1e0 [ 169.257659][ T7393] do_dentry_open+0x596/0x1530 [ 169.257681][ T7393] vfs_open+0x82/0x3f0 [ 169.257702][ T7393] path_openat+0x1de4/0x2cb0 [ 169.257724][ T7393] ? __pfx_path_openat+0x10/0x10 [ 169.257744][ T7393] do_filp_open+0x20b/0x470 [ 169.257759][ T7393] ? __pfx_do_filp_open+0x10/0x10 [ 169.257788][ T7393] ? alloc_fd+0x471/0x7d0 [ 169.257807][ T7393] do_sys_openat2+0x11b/0x1d0 [ 169.257826][ T7393] ? __pfx_do_sys_openat2+0x10/0x10 [ 169.257853][ T7393] __x64_sys_openat+0x174/0x210 [ 169.257873][ T7393] ? __pfx___x64_sys_openat+0x10/0x10 [ 169.257901][ T7393] do_syscall_64+0xcd/0xfa0 [ 169.257918][ T7393] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 169.257932][ T7393] RIP: 0033:0x7fb8ab98eec9 [ 169.257944][ T7393] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 169.257956][ T7393] RSP: 002b:00007fb8ac827038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 169.257971][ T7393] RAX: ffffffffffffffda RBX: 00007fb8abbe5fa0 RCX: 00007fb8ab98eec9 [ 169.257980][ T7393] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 169.257988][ T7393] RBP: 00007fb8aba11f91 R08: 0000000000000000 R09: 0000000000000000 [ 169.257996][ T7393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 169.258004][ T7393] R13: 00007fb8abbe6038 R14: 00007fb8abbe5fa0 R15: 00007ffe83e48518 [ 169.258024][ T7393] [ 169.258379][ T7393] ERROR: Out of memory at tomoyo_realpath_from_path. [ 170.920356][ T6107] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 170.928342][ T6107] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection [ 171.215685][ T7455] netlink: 342 bytes leftover after parsing attributes in process `syz.0.309'. [ 172.643509][ T7470] zswap: compressor not available [ 176.008597][ T7579] random: crng reseeded on system resumption [ 176.297251][ T6225] bt_warn_ratelimited: 55 callbacks suppressed [ 176.297265][ T6225] Bluetooth: hci1: unexpected event 0x36 length: 123 > 7 [ 177.051564][ T7596] netlink: 'syz.1.328': attribute type 1 has an invalid length. [ 177.760160][ T7610] overlayfs: missing 'lowerdir' [ 179.354381][ T7647] netlink: 334 bytes leftover after parsing attributes in process `syz.2.339'. [ 180.130459][ T7639] Process accounting paused [ 180.568620][ T7673] netlink: zone id is out of range [ 180.641298][ T7673] netlink: zone id is out of range [ 180.697713][ T7673] netlink: zone id is out of range [ 180.743905][ T7673] netlink: zone id is out of range [ 180.753673][ T7673] netlink: zone id is out of range [ 180.806846][ T7673] netlink: zone id is out of range [ 180.832683][ T7673] netlink: zone id is out of range [ 180.860626][ T7683] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(3) [ 180.871720][ T7673] netlink: zone id is out of range [ 180.890220][ T7673] netlink: zone id is out of range [ 180.917391][ T7673] netlink: zone id is out of range [ 181.553732][ T7687] svc: failed to register nfsdv3 RPC service (errno 111). [ 181.603069][ T7687] svc: failed to register nfsaclv3 RPC service (errno 111). [ 181.722146][ T7714] netlink: 4 bytes leftover after parsing attributes in process `syz.2.355'. [ 181.758671][ T7715] netlink: 4 bytes leftover after parsing attributes in process `syz.2.355'. [ 181.795699][ T7714] netlink: 25 bytes leftover after parsing attributes in process `syz.2.355'. [ 182.495786][ T7727] FAULT_INJECTION: forcing a failure. [ 182.495786][ T7727] name failslab, interval 1, probability 0, space 0, times 0 [ 182.548419][ T7727] CPU: 0 UID: 0 PID: 7727 Comm: syz.2.358 Not tainted syzkaller #0 PREEMPT(full) [ 182.548440][ T7727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 182.548448][ T7727] Call Trace: [ 182.548453][ T7727] [ 182.548459][ T7727] dump_stack_lvl+0x16c/0x1f0 [ 182.548479][ T7727] should_fail_ex+0x512/0x640 [ 182.548496][ T7727] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 182.548513][ T7727] should_failslab+0xc2/0x120 [ 182.548531][ T7727] kmem_cache_alloc_noprof+0x75/0x6e0 [ 182.548544][ T7727] ? __lock_acquire+0x62e/0x1ce0 [ 182.548561][ T7727] ? alloc_empty_file+0x55/0x1e0 [ 182.548583][ T7727] ? alloc_empty_file+0x55/0x1e0 [ 182.548600][ T7727] alloc_empty_file+0x55/0x1e0 [ 182.548619][ T7727] path_openat+0xda/0x2cb0 [ 182.548640][ T7727] ? __pfx_path_openat+0x10/0x10 [ 182.548660][ T7727] do_filp_open+0x20b/0x470 [ 182.548675][ T7727] ? __pfx_do_filp_open+0x10/0x10 [ 182.548704][ T7727] ? alloc_fd+0x471/0x7d0 [ 182.548723][ T7727] do_sys_openat2+0x11b/0x1d0 [ 182.548743][ T7727] ? __pfx_do_sys_openat2+0x10/0x10 [ 182.548769][ T7727] __x64_sys_openat+0x174/0x210 [ 182.548789][ T7727] ? __pfx___x64_sys_openat+0x10/0x10 [ 182.548816][ T7727] do_syscall_64+0xcd/0xfa0 [ 182.548834][ T7727] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 182.548847][ T7727] RIP: 0033:0x7f2bdbf8d710 [ 182.548859][ T7727] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 69 95 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 bc 95 02 00 8b 44 [ 182.548871][ T7727] RSP: 002b:00007f2bda1f5fe0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 182.548885][ T7727] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f2bdbf8d710 [ 182.548894][ T7727] RDX: 0000000000000002 RSI: 00007f2bdc01224b RDI: 00000000ffffff9c [ 182.548902][ T7727] RBP: 00007f2bdc01224b R08: 0000000000000000 R09: 00007f2bdcd2b000 [ 182.548910][ T7727] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 182.548917][ T7727] R13: 00007f2bdc1e6038 R14: 00007f2bdc1e5fa0 R15: 00007ffff2a94e88 [ 182.548937][ T7727] [ 182.826643][ T7732] FAULT_INJECTION: forcing a failure. [ 182.826643][ T7732] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 182.839764][ T7732] CPU: 0 UID: 0 PID: 7732 Comm: syz.3.359 Not tainted syzkaller #0 PREEMPT(full) [ 182.839784][ T7732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 182.839793][ T7732] Call Trace: [ 182.839799][ T7732] [ 182.839805][ T7732] dump_stack_lvl+0x16c/0x1f0 [ 182.839826][ T7732] should_fail_ex+0x512/0x640 [ 182.839847][ T7732] _copy_from_user+0x2e/0xd0 [ 182.839867][ T7732] iommufd_fops_ioctl+0x2f5/0x540 [ 182.839890][ T7732] ? __pfx_iommufd_fops_ioctl+0x10/0x10 [ 182.839913][ T7732] ? hook_file_ioctl_common+0x145/0x410 [ 182.839944][ T7732] ? __pfx_iommufd_fops_ioctl+0x10/0x10 [ 182.839965][ T7732] __x64_sys_ioctl+0x18b/0x210 [ 182.839987][ T7732] do_syscall_64+0xcd/0xfa0 [ 182.840004][ T7732] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 182.840018][ T7732] RIP: 0033:0x7fb8ab98eec9 [ 182.840030][ T7732] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 182.840044][ T7732] RSP: 002b:00007fb8ac827038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 182.840058][ T7732] RAX: ffffffffffffffda RBX: 00007fb8abbe5fa0 RCX: 00007fb8ab98eec9 [ 182.840066][ T7732] RDX: 0000000000000003 RSI: 0000000000003b8e RDI: 0000000000000006 [ 182.840075][ T7732] RBP: 00007fb8aba11f91 R08: 0000000000000000 R09: 0000000000000000 [ 182.840083][ T7732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 182.840091][ T7732] R13: 00007fb8abbe6038 R14: 00007fb8abbe5fa0 R15: 00007ffe83e48518 [ 182.840110][ T7732] [ 183.222827][ T7738] sctp: [Deprecated]: syz.0.360 (pid 7738) Use of int in maxseg socket option. [ 183.222827][ T7738] Use struct sctp_assoc_value instead [ 183.304417][ T7743] sctp: [Deprecated]: syz.0.360 (pid 7743) Use of int in maxseg socket option. [ 183.304417][ T7743] Use struct sctp_assoc_value instead [ 183.651835][ T7749] binder: 7748:7749 ioctl c0306201 200000000240 returned -14 [ 183.690591][ T7751] netlink: 8 bytes leftover after parsing attributes in process `syz.3.362'. [ 185.444655][ T7780] [U] [ 185.447464][ T7780] [U] [ 185.450134][ T7780] [U] [ 185.452803][ T7780] [U] [ 185.472884][ T7780] [U] [ 185.475615][ T7780] [U] [ 185.478293][ T7780] [U] [ 185.480965][ T7780] [U] [ 185.507120][ T7780] [U] [ 185.509828][ T7780] [U] [ 185.512498][ T7780] [U] [ 185.515173][ T7780] [U] [ 185.661365][ T7780] [U] [ 185.664080][ T7780] [U] [ 185.666751][ T7780] [U] [ 185.669418][ T7780] [U] [ 185.679802][ T7787] FAULT_INJECTION: forcing a failure. [ 185.679802][ T7787] name fail_futex, interval 1, probability 0, space 0, times 0 [ 185.742313][ T7780] [U] [ 185.745065][ T7780] [U] [ 185.747734][ T7780] [U] [ 185.750402][ T7780] [U] [ 185.841932][ T7791] FAULT_INJECTION: forcing a failure. [ 185.841932][ T7791] name failslab, interval 1, probability 0, space 0, times 0 [ 185.861609][ T7780] [U] [ 185.864309][ T7780] [U] [ 185.866988][ T7780] [U] [ 185.869655][ T7780] [U] [ 185.909570][ T7780] [U] [ 185.912278][ T7780] [U] [ 185.914961][ T7780] [U] [ 185.917660][ T7780] [U] [ 185.927694][ T7787] CPU: 0 UID: 0 PID: 7787 Comm: syz.0.371 Not tainted syzkaller #0 PREEMPT(full) [ 185.927715][ T7787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 185.927724][ T7787] Call Trace: [ 185.927729][ T7787] [ 185.927735][ T7787] dump_stack_lvl+0x16c/0x1f0 [ 185.927757][ T7787] should_fail_ex+0x512/0x640 [ 185.927777][ T7787] get_futex_key+0x1d0/0x1560 [ 185.927797][ T7787] ? kasan_quarantine_put+0x10a/0x240 [ 185.927813][ T7787] ? __pfx_get_futex_key+0x10/0x10 [ 185.927831][ T7787] ? look_up_lock_class+0x59/0x150 [ 185.927848][ T7787] ? register_lock_class+0x41/0x4c0 [ 185.927867][ T7787] ? tomoyo_check_open_permission+0x1d8/0x3c0 [ 185.927898][ T7787] futex_wake+0xea/0x530 [ 185.927922][ T7787] ? __pfx_futex_wake+0x10/0x10 [ 185.927952][ T7787] do_futex+0x1e3/0x350 [ 185.927971][ T7787] ? __pfx_do_futex+0x10/0x10 [ 185.927990][ T7787] ? _raw_spin_unlock+0x28/0x50 [ 185.928002][ T7787] ? do_fcntl+0x1eb/0x15a0 [ 185.928022][ T7787] __x64_sys_futex+0x1e0/0x4c0 [ 185.928043][ T7787] ? __pfx___x64_sys_futex+0x10/0x10 [ 185.928062][ T7787] ? tomoyo_file_fcntl+0xa5/0xc0 [ 185.928084][ T7787] do_syscall_64+0xcd/0xfa0 [ 185.928101][ T7787] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.928115][ T7787] RIP: 0033:0x7fcc3478eec9 [ 185.928127][ T7787] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 185.928140][ T7787] RSP: 002b:00007fcc3555b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 185.928153][ T7787] RAX: ffffffffffffffda RBX: 00007fcc349e5fa8 RCX: 00007fcc3478eec9 [ 185.928163][ T7787] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fcc349e5fac [ 185.928171][ T7787] RBP: 00007fcc349e5fa0 R08: 00007fcc3555c000 R09: 0000000000000000 [ 185.928179][ T7787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 185.928187][ T7787] R13: 00007fcc349e6038 R14: 00007ffef626dbf0 R15: 00007ffef626dcd8 [ 185.928206][ T7787] [ 186.194167][ T7780] [U] [ 186.597405][ T7791] CPU: 0 UID: 0 PID: 7791 Comm: syz.0.371 Not tainted syzkaller #0 PREEMPT(full) [ 186.597427][ T7791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 186.597436][ T7791] Call Trace: [ 186.597441][ T7791] [ 186.597447][ T7791] dump_stack_lvl+0x16c/0x1f0 [ 186.597469][ T7791] should_fail_ex+0x512/0x640 [ 186.597486][ T7791] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 186.597503][ T7791] should_failslab+0xc2/0x120 [ 186.597522][ T7791] kmem_cache_alloc_noprof+0x75/0x6e0 [ 186.597539][ T7791] ? getname_flags.part.0+0x4c/0x550 [ 186.597562][ T7791] ? getname_flags.part.0+0x4c/0x550 [ 186.597580][ T7791] getname_flags.part.0+0x4c/0x550 [ 186.597602][ T7791] getname_flags+0x93/0xf0 [ 186.597616][ T7791] do_sys_openat2+0xb8/0x1d0 [ 186.597636][ T7791] ? __pfx_do_sys_openat2+0x10/0x10 [ 186.597656][ T7791] ? find_held_lock+0x2b/0x80 [ 186.597676][ T7791] __x64_sys_openat+0x174/0x210 [ 186.597696][ T7791] ? __pfx___x64_sys_openat+0x10/0x10 [ 186.597723][ T7791] do_syscall_64+0xcd/0xfa0 [ 186.597740][ T7791] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 186.597754][ T7791] RIP: 0033:0x7fcc3478eec9 [ 186.597766][ T7791] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 186.597779][ T7791] RSP: 002b:00007fcc329f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 186.597793][ T7791] RAX: ffffffffffffffda RBX: 00007fcc349e6090 RCX: 00007fcc3478eec9 [ 186.597802][ T7791] RDX: 0000000000121102 RSI: 0000200000000300 RDI: ffffffffffffff9c [ 186.597810][ T7791] RBP: 00007fcc34811f91 R08: 0000000000000000 R09: 0000000000000000 [ 186.597818][ T7791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 186.597826][ T7791] R13: 00007fcc349e6128 R14: 00007fcc349e6090 R15: 00007ffef626dcd8 [ 186.597846][ T7791] [ 187.745109][ T7822] FAULT_INJECTION: forcing a failure. [ 187.745109][ T7822] name failslab, interval 1, probability 0, space 0, times 0 [ 187.814187][ T7822] CPU: 0 UID: 0 PID: 7822 Comm: syz.3.380 Not tainted syzkaller #0 PREEMPT(full) [ 187.814209][ T7822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 187.814217][ T7822] Call Trace: [ 187.814222][ T7822] [ 187.814228][ T7822] dump_stack_lvl+0x16c/0x1f0 [ 187.814249][ T7822] should_fail_ex+0x512/0x640 [ 187.814267][ T7822] ? __kmalloc_noprof+0xca/0x880 [ 187.814291][ T7822] should_failslab+0xc2/0x120 [ 187.814310][ T7822] __kmalloc_noprof+0xdd/0x880 [ 187.814330][ T7822] ? __register_sysctl_table+0xb3/0x1900 [ 187.814354][ T7822] ? __register_sysctl_table+0xb3/0x1900 [ 187.814373][ T7822] __register_sysctl_table+0xb3/0x1900 [ 187.814393][ T7822] ? is_module_address+0x5f/0xf0 [ 187.814416][ T7822] ? __pfx___register_sysctl_table+0x10/0x10 [ 187.814435][ T7822] ? is_module_address+0x69/0xf0 [ 187.814453][ T7822] ? register_net_sysctl_sz+0x228/0x3e0 [ 187.814473][ T7822] ? __asan_memcpy+0x3c/0x60 [ 187.814489][ T7822] sysctl_route_net_init+0x15e/0x2c0 [ 187.814510][ T7822] ? __pfx_sysctl_route_net_init+0x10/0x10 [ 187.814530][ T7822] ops_init+0x1e2/0x5f0 [ 187.814550][ T7822] setup_net+0x100/0x390 [ 187.814567][ T7822] ? __pfx_setup_net+0x10/0x10 [ 187.814584][ T7822] ? debug_mutex_init+0x37/0x70 [ 187.814601][ T7822] copy_net_ns+0x2f8/0x690 [ 187.814622][ T7822] create_new_namespaces+0x3ea/0xa90 [ 187.814642][ T7822] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 187.814660][ T7822] ksys_unshare+0x45b/0xa40 [ 187.814678][ T7822] ? __pfx_ksys_unshare+0x10/0x10 [ 187.814697][ T7822] ? xfd_validate_state+0x61/0x180 [ 187.814731][ T7822] __x64_sys_unshare+0x31/0x40 [ 187.814749][ T7822] do_syscall_64+0xcd/0xfa0 [ 187.814767][ T7822] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.814782][ T7822] RIP: 0033:0x7fb8ab98eec9 [ 187.814794][ T7822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 187.814807][ T7822] RSP: 002b:00007fb8ac806038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 187.814820][ T7822] RAX: ffffffffffffffda RBX: 00007fb8abbe6090 RCX: 00007fb8ab98eec9 [ 187.814829][ T7822] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 187.814837][ T7822] RBP: 00007fb8aba11f91 R08: 0000000000000000 R09: 0000000000000000 [ 187.814845][ T7822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 187.814853][ T7822] R13: 00007fb8abbe6128 R14: 00007fb8abbe6090 R15: 00007ffe83e48518 [ 187.814873][ T7822] [ 188.060543][ C0] vkms_vblank_simulate: vblank timer overrun [ 188.636524][ T7836] FAULT_INJECTION: forcing a failure. [ 188.636524][ T7836] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 188.683886][ T7836] CPU: 0 UID: 0 PID: 7836 Comm: syz.2.381 Not tainted syzkaller #0 PREEMPT(full) [ 188.683907][ T7836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 188.683915][ T7836] Call Trace: [ 188.683920][ T7836] [ 188.683926][ T7836] dump_stack_lvl+0x16c/0x1f0 [ 188.683946][ T7836] should_fail_ex+0x512/0x640 [ 188.683966][ T7836] should_fail_alloc_page+0xe7/0x130 [ 188.683986][ T7836] prepare_alloc_pages+0x3c2/0x610 [ 188.684004][ T7836] ? rcu_is_watching+0x12/0xc0 [ 188.684021][ T7836] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 188.684035][ T7836] ? kasan_save_stack+0x33/0x60 [ 188.684049][ T7836] ? css_rstat_updated+0x1c2/0x510 [ 188.684066][ T7836] ? __pfx_css_rstat_updated+0x10/0x10 [ 188.684082][ T7836] ? __lock_acquire+0x62e/0x1ce0 [ 188.684104][ T7836] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 188.684126][ T7836] ? __lock_acquire+0x62e/0x1ce0 [ 188.684146][ T7836] ? __lock_acquire+0x62e/0x1ce0 [ 188.684163][ T7836] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 188.684186][ T7836] ? policy_nodemask+0xea/0x4e0 [ 188.684206][ T7836] alloc_pages_mpol+0x1fb/0x550 [ 188.684224][ T7836] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 188.684244][ T7836] ? __lock_acquire+0x62e/0x1ce0 [ 188.684264][ T7836] folio_alloc_mpol_noprof+0x36/0x2f0 [ 188.684285][ T7836] vma_alloc_folio_noprof+0xed/0x1e0 [ 188.684305][ T7836] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 188.684331][ T7836] do_pte_missing+0x2202/0x3ba0 [ 188.684352][ T7836] ? find_held_lock+0x2b/0x80 [ 188.684371][ T7836] __handle_mm_fault+0x1556/0x2aa0 [ 188.684398][ T7836] ? __pfx___handle_mm_fault+0x10/0x10 [ 188.684419][ T7836] ? __pte_offset_map_lock+0x174/0x310 [ 188.684436][ T7836] ? find_held_lock+0x2b/0x80 [ 188.684456][ T7836] ? follow_page_pte+0x5cf/0x1390 [ 188.684478][ T7836] handle_mm_fault+0x589/0xd10 [ 188.684503][ T7836] __get_user_pages+0x54e/0x3530 [ 188.684530][ T7836] ? __pfx___get_user_pages+0x10/0x10 [ 188.684554][ T7836] populate_vma_page_range+0x267/0x3f0 [ 188.684574][ T7836] ? __pfx_populate_vma_page_range+0x10/0x10 [ 188.684592][ T7836] ? __pfx_find_vma_intersection+0x10/0x10 [ 188.684610][ T7836] ? do_mmap+0x69c/0x1210 [ 188.684628][ T7836] __mm_populate+0x1d8/0x380 [ 188.684654][ T7836] ? __pfx___mm_populate+0x10/0x10 [ 188.684674][ T7836] ? up_write+0x1b2/0x520 [ 188.684696][ T7836] vm_mmap_pgoff+0x37f/0x470 [ 188.684716][ T7836] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 188.684738][ T7836] ? __x64_sys_futex+0x1e0/0x4c0 [ 188.684755][ T7836] ? __x64_sys_futex+0x1e9/0x4c0 [ 188.684775][ T7836] ksys_mmap_pgoff+0x7d/0x5c0 [ 188.684791][ T7836] ? xfd_validate_state+0x61/0x180 [ 188.684814][ T7836] __x64_sys_mmap+0x125/0x190 [ 188.684836][ T7836] do_syscall_64+0xcd/0xfa0 [ 188.684854][ T7836] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 188.684868][ T7836] RIP: 0033:0x7f2bdbf8eec9 [ 188.684879][ T7836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 188.684892][ T7836] RSP: 002b:00007f2bda1b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 188.684905][ T7836] RAX: ffffffffffffffda RBX: 00007f2bdc1e6180 RCX: 00007f2bdbf8eec9 [ 188.684914][ T7836] RDX: 00000000000040df RSI: 0000000000400005 RDI: 0000000000000000 [ 188.684922][ T7836] RBP: 00007f2bdc011f91 R08: ffffffffffffffff R09: 0000000000008000 [ 188.684931][ T7836] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 188.684938][ T7836] R13: 00007f2bdc1e6218 R14: 00007f2bdc1e6180 R15: 00007ffff2a94e88 [ 188.684958][ T7836] [ 189.024460][ C0] vkms_vblank_simulate: vblank timer overrun [ 189.673105][ T7840] [U] [ 189.675912][ T7840] [U] [ 189.678586][ T7840] [U] [ 189.681255][ T7840] [U] [ 189.717618][ T7840] [U] [ 189.720354][ T7840] [U] [ 189.723029][ T7840] [U] [ 189.725700][ T7840] [U] [ 189.830274][ T7840] [U] [ 189.832986][ T7840] [U] [ 189.835660][ T7840] [U] [ 189.838330][ T7840] [U] [ 189.877108][ T7840] [U] [ 189.879822][ T7840] [U] [ 189.882498][ T7840] [U] [ 189.885171][ T7840] [U] [ 189.939806][ T7840] [U] [ 189.942521][ T7840] [U] [ 189.945194][ T7840] [U] [ 189.947864][ T7840] [U] [ 189.987903][ T7840] [U] [ 189.990613][ T7840] [U] [ 189.993282][ T7840] [U] [ 189.995947][ T7840] [U] [ 190.020378][ T7840] [U] [ 190.023086][ T7840] [U] [ 190.025756][ T7840] [U] [ 190.028423][ T7840] [U] [ 190.063690][ T7840] [U] [ 190.066392][ T7840] [U] [ 190.069061][ T7840] [U] [ 190.071726][ T7840] [U] [ 190.141132][ T7840] [U] [ 190.143846][ T7840] [U] [ 190.146517][ T7840] [U] [ 190.149189][ T7840] [U] [ 190.336281][ T7840] [U] [ 191.073848][ T7858] FAULT_INJECTION: forcing a failure. [ 191.073848][ T7858] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 191.173545][ T7858] CPU: 0 UID: 0 PID: 7858 Comm: syz.1.387 Not tainted syzkaller #0 PREEMPT(full) [ 191.173569][ T7858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 191.173579][ T7858] Call Trace: [ 191.173584][ T7858] [ 191.173590][ T7858] dump_stack_lvl+0x16c/0x1f0 [ 191.173612][ T7858] should_fail_ex+0x512/0x640 [ 191.173634][ T7858] _copy_from_user+0x2e/0xd0 [ 191.173653][ T7858] iommufd_fops_ioctl+0x2f5/0x540 [ 191.173677][ T7858] ? __pfx_iommufd_fops_ioctl+0x10/0x10 [ 191.173701][ T7858] ? hook_file_ioctl_common+0x145/0x410 [ 191.173733][ T7858] ? __pfx_iommufd_fops_ioctl+0x10/0x10 [ 191.173761][ T7858] __x64_sys_ioctl+0x18b/0x210 [ 191.173786][ T7858] do_syscall_64+0xcd/0xfa0 [ 191.173805][ T7858] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 191.173820][ T7858] RIP: 0033:0x7fa77e58eec9 [ 191.173833][ T7858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 191.173847][ T7858] RSP: 002b:00007fa77f3ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 191.173861][ T7858] RAX: ffffffffffffffda RBX: 00007fa77e7e5fa0 RCX: 00007fa77e58eec9 [ 191.173870][ T7858] RDX: 0000000000000003 RSI: 0000000000003b8e RDI: 0000000000000006 [ 191.173879][ T7858] RBP: 00007fa77e611f91 R08: 0000000000000000 R09: 0000000000000000 [ 191.173887][ T7858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 191.173896][ T7858] R13: 00007fa77e7e6038 R14: 00007fa77e7e5fa0 R15: 00007fff44b3a758 [ 191.173916][ T7858] [ 191.333629][ C0] vkms_vblank_simulate: vblank timer overrun [ 191.900069][ T7872] netlink: 'syz.0.391': attribute type 4 has an invalid length. [ 191.937611][ T7872] netlink: 'syz.0.391': attribute type 1 has an invalid length. [ 192.252889][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 192.262684][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 192.303817][ T7878] netlink: 8 bytes leftover after parsing attributes in process `syz.2.393'. [ 192.927104][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 192.933480][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 193.386163][ T7897] [U] [ 193.388946][ T7897] [U] [ 193.391614][ T7897] [U] [ 193.394283][ T7897] [U] [ 193.573291][ T7897] [U] [ 193.575981][ T7897] [U] [ 193.578650][ T7897] [U] [ 193.581322][ T7897] [U] [ 193.689909][ T7912] netlink: 16 bytes leftover after parsing attributes in process `syz.3.400'. [ 193.708814][ T7897] [U] [ 193.711522][ T7897] [U] [ 193.714213][ T7897] [U] [ 193.716885][ T7897] [U] [ 193.772711][ T7912] netlink: 93 bytes leftover after parsing attributes in process `syz.3.400'. [ 193.837783][ T7897] [U] [ 194.249338][ T7920] ------------[ cut here ]------------ [ 194.254982][ T7920] memcpy: detected field-spanning write (size 5) of single field "&entry->id" at kernel/trace/trace.c:7458 (size 4) [ 194.267317][ T7920] WARNING: CPU: 0 PID: 7920 at kernel/trace/trace.c:7458 write_raw_marker_to_buffer.isra.0+0x2d4/0x330 [ 194.279210][ T7920] Modules linked in: [ 194.283217][ T7920] CPU: 0 UID: 0 PID: 7920 Comm: syz.2.403 Not tainted syzkaller #0 PREEMPT(full) [ 194.293202][ T7920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 194.303383][ T7920] RIP: 0010:write_raw_marker_to_buffer.isra.0+0x2d4/0x330 [ 194.310634][ T7920] Code: ff e8 30 74 fa ff c6 05 74 82 aa 0e 01 90 b9 04 00 00 00 48 c7 c2 e0 1e 93 8b 4c 89 e6 48 c7 c7 40 1f 93 8b e8 6d fc b8 ff 90 <0f> 0b 90 90 e9 d7 fe ff ff e8 6e 04 62 00 e9 da fd ff ff e8 64 04 [ 194.330278][ T7920] RSP: 0018:ffffc90004adfc40 EFLAGS: 00010282 [ 194.336446][ T7920] RAX: 0000000000000000 RBX: ffff88807d4a0014 RCX: ffffffff817a5e58 [ 194.344450][ T7920] RDX: ffff888056631e40 RSI: ffffffff817a5e65 RDI: 0000000000000001 [ 194.352450][ T7920] RBP: ffff88807d4a0010 R08: 0000000000000001 R09: 0000000000000000 [ 194.360587][ T7920] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000005 [ 194.368592][ T7920] R13: ffff88813ff18c00 R14: 0000000000000000 R15: 0000000000000000 [ 194.376633][ T7920] FS: 00007f2bda1f66c0(0000) GS:ffff8881249e4000(0000) knlGS:0000000000000000 [ 194.386379][ T7920] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 194.392948][ T7920] CR2: 0000000000000000 CR3: 000000007b53e000 CR4: 00000000003526f0 [ 194.401603][ T7920] Call Trace: [ 194.404864][ T7920] [ 194.407811][ T7920] tracing_mark_raw_write+0x2da/0x4a0 [ 194.413166][ T7920] ? __pfx_tracing_mark_raw_write+0x10/0x10 [ 194.419103][ T7920] ? __pfx_tracing_mark_raw_write+0x10/0x10 [ 194.424976][ T7920] vfs_write+0x2a0/0x11d0 [ 194.429320][ T7920] ? __pfx_vfs_write+0x10/0x10 [ 194.434064][ T7920] ? find_held_lock+0x2b/0x80 [ 194.438763][ T7920] ? __fget_files+0x204/0x3c0 [ 194.443422][ T7920] ? __fget_files+0x20e/0x3c0 [ 194.448101][ T7920] ksys_write+0x1f8/0x250 [ 194.452410][ T7920] ? __pfx_ksys_write+0x10/0x10 [ 194.457283][ T7920] do_syscall_64+0xcd/0xfa0 [ 194.461774][ T7920] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 194.467669][ T7920] RIP: 0033:0x7f2bdbf8eec9 [ 194.472064][ T7920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 194.492541][ T7920] RSP: 002b:00007f2bda1f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 194.501613][ T7920] RAX: ffffffffffffffda RBX: 00007f2bdc1e5fa0 RCX: 00007f2bdbf8eec9 [ 194.509628][ T7920] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000005 [ 194.517622][ T7920] RBP: 00007f2bdc011f91 R08: 0000000000000000 R09: 0000000000000000 [ 194.525603][ T7920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 194.533573][ T7920] R13: 00007f2bdc1e6038 R14: 00007f2bdc1e5fa0 R15: 00007ffff2a94e88 [ 194.541656][ T7920] [ 194.544659][ T7920] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 194.551917][ T7920] CPU: 0 UID: 0 PID: 7920 Comm: syz.2.403 Not tainted syzkaller #0 PREEMPT(full) [ 194.561096][ T7920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 194.571140][ T7920] Call Trace: [ 194.574400][ T7920] [ 194.577335][ T7920] dump_stack_lvl+0x3d/0x1f0 [ 194.581919][ T7920] vpanic+0x640/0x6f0 [ 194.585895][ T7920] ? write_raw_marker_to_buffer.isra.0+0x2d4/0x330 [ 194.592380][ T7920] panic+0xca/0xd0 [ 194.596093][ T7920] ? __pfx_panic+0x10/0x10 [ 194.600498][ T7920] ? check_panic_on_warn+0x1f/0xb0 [ 194.605596][ T7920] check_panic_on_warn+0xab/0xb0 [ 194.610522][ T7920] __warn+0xf6/0x3c0 [ 194.614401][ T7920] ? __pfx_vprintk_emit+0x10/0x10 [ 194.619409][ T7920] ? write_raw_marker_to_buffer.isra.0+0x2d4/0x330 [ 194.625892][ T7920] report_bug+0x3c3/0x580 [ 194.630204][ T7920] ? write_raw_marker_to_buffer.isra.0+0x2d4/0x330 [ 194.636688][ T7920] handle_bug+0x184/0x210 [ 194.641003][ T7920] exc_invalid_op+0x17/0x50 [ 194.645494][ T7920] asm_exc_invalid_op+0x1a/0x20 [ 194.650340][ T7920] RIP: 0010:write_raw_marker_to_buffer.isra.0+0x2d4/0x330 [ 194.657437][ T7920] Code: ff e8 30 74 fa ff c6 05 74 82 aa 0e 01 90 b9 04 00 00 00 48 c7 c2 e0 1e 93 8b 4c 89 e6 48 c7 c7 40 1f 93 8b e8 6d fc b8 ff 90 <0f> 0b 90 90 e9 d7 fe ff ff e8 6e 04 62 00 e9 da fd ff ff e8 64 04 [ 194.677034][ T7920] RSP: 0018:ffffc90004adfc40 EFLAGS: 00010282 [ 194.683084][ T7920] RAX: 0000000000000000 RBX: ffff88807d4a0014 RCX: ffffffff817a5e58 [ 194.691038][ T7920] RDX: ffff888056631e40 RSI: ffffffff817a5e65 RDI: 0000000000000001 [ 194.698986][ T7920] RBP: ffff88807d4a0010 R08: 0000000000000001 R09: 0000000000000000 [ 194.706942][ T7920] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000005 [ 194.714891][ T7920] R13: ffff88813ff18c00 R14: 0000000000000000 R15: 0000000000000000 [ 194.722848][ T7920] ? __warn_printk+0x198/0x350 [ 194.727597][ T7920] ? __warn_printk+0x1a5/0x350 [ 194.732353][ T7920] tracing_mark_raw_write+0x2da/0x4a0 [ 194.737715][ T7920] ? __pfx_tracing_mark_raw_write+0x10/0x10 [ 194.743596][ T7920] ? __pfx_tracing_mark_raw_write+0x10/0x10 [ 194.749488][ T7920] vfs_write+0x2a0/0x11d0 [ 194.753805][ T7920] ? __pfx_vfs_write+0x10/0x10 [ 194.758547][ T7920] ? find_held_lock+0x2b/0x80 [ 194.763205][ T7920] ? __fget_files+0x204/0x3c0 [ 194.767864][ T7920] ? __fget_files+0x20e/0x3c0 [ 194.772534][ T7920] ksys_write+0x1f8/0x250 [ 194.776844][ T7920] ? __pfx_ksys_write+0x10/0x10 [ 194.781681][ T7920] do_syscall_64+0xcd/0xfa0 [ 194.786277][ T7920] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 194.792152][ T7920] RIP: 0033:0x7f2bdbf8eec9 [ 194.796550][ T7920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 194.816140][ T7920] RSP: 002b:00007f2bda1f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 194.824528][ T7920] RAX: ffffffffffffffda RBX: 00007f2bdc1e5fa0 RCX: 00007f2bdbf8eec9 [ 194.832478][ T7920] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000005 [ 194.840517][ T7920] RBP: 00007f2bdc011f91 R08: 0000000000000000 R09: 0000000000000000 [ 194.848465][ T7920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 194.856499][ T7920] R13: 00007f2bdc1e6038 R14: 00007f2bdc1e5fa0 R15: 00007ffff2a94e88 [ 194.864458][ T7920] [ 194.867510][ T7920] Kernel Offset: disabled [ 194.871818][ T7920] Rebooting in 86400 seconds..