last executing test programs: 9m10.561551428s ago: executing program 3 (id=762): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x2, 0x3, 0xa) (async) socket(0x2, 0x3, 0xa) clone3$auto(0x0, 0x9) (async) r0 = clone3$auto(0x0, 0x9) socketpair$auto(0x1, 0x0, 0xfffffffc, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) socket(0x2a, 0x2, 0x0) getpeername$auto(0x3, 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/sctp/remaddr\x00', 0x101d00, 0x0) (async) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/sctp/remaddr\x00', 0x101d00, 0x0) socketpair$auto(0x1e, 0x0, 0x7, 0x0) (async) socketpair$auto(0x1e, 0x0, 0x7, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0xa042, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0xc7f16bff2a10ba01, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x10000000000002f, 0x0) fsopen$auto(0x0, 0x1) (async) fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/ptp/ptp0/n_vclocks\x00', 0x8502, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/neigh/wlan1/mcast_solicit\x00', 0x2000, 0x0) setrlimit$auto(0x0, &(0x7f0000000000)={0x0, 0x3ff}) (async) setrlimit$auto(0x0, &(0x7f0000000000)={0x0, 0x3ff}) read$auto(r4, 0x0, 0x1ff) write$auto(r3, 0x0, 0x2) r5 = prctl$auto_PR_TIMER_CREATE_RESTORE_IDS_OFF(0x4, 0x0, r0, 0x4, 0x1) read$auto_proc_pid_maps_operations_internal(r5, &(0x7f0000000140), 0x0) 9m9.709605502s ago: executing program 3 (id=765): unshare$auto(0x40000080) openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x82802, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x8081, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) pipe$auto(0x0) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000001c0), 0x40100, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000180)='/dev/admmidi2\x00', 0x88042, 0x0) read$auto(r0, 0x0, 0x20) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101080, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_CREATE_VM(r1, 0x4048aecb, 0x0) 9m7.892733542s ago: executing program 3 (id=770): sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f00000013c0)={0x0, 0x0, &(0x7f0000001380)={&(0x7f0000000300)={0x58, 0x0, 0x400, 0x70bd28, 0x25dfdbfc, {}, [@OVS_VPORT_ATTR_NETNSID={0x8, 0x9, 0x80}, @OVS_VPORT_ATTR_UPCALL_PID={0xe, 0x5, "eecd71556377220471e7"}, @OVS_VPORT_ATTR_UPCALL_PID={0x2a, 0x5, "5416cf27fe10900ee223ed9f86da74b8a5140f6cc777764fb8f8c059d5a197525eeecd672128"}]}, 0x58}, 0x1, 0x0, 0x0, 0x40000}, 0x400c994) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="00010000", @ANYRES16=0x0, @ANYRES32], 0x100}, 0x1, 0x0, 0x0, 0x8000}, 0x20004842) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x15) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000"], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 9m7.582610831s ago: executing program 3 (id=771): r0 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/tracing/dynamic_events\x00', 0x80442, 0x0) write$auto_dynamic_events_ops_trace_dynevent(r0, &(0x7f0000000000)="7ede0ee384fa08612b61868feeac9820efcec056e48ea6995df761f7ace9b4daa34b3bbf76f5e10a4b8935516a317f526b8cfd8cb6098221396ec6f699cff545008ee82dd20bc71d6263563e52f2cc3c47585b3076cdafa6f3f705a65e910f159b734a", 0x63) r1 = syz_genetlink_get_family_id$auto_thermal(&(0x7f00000000c0), 0xffffffffffffffff) r2 = geteuid() r3 = getpid() sendmsg$auto_THERMAL_GENL_CMD_THRESHOLD_ADD(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000200)={0x3b4, r1, 0x400, 0x70bd2b, 0x25dfdbfe, {}, [@THERMAL_GENL_ATTR_TZ={0x396, 0x1, 0x0, 0x1, [@generic="da583bd299c2ad519ec346025b1422fd0b5cfb0a63ec77987aa5f92733c1d301c874f7250c2b053f7bfb0dd2a30ec55889a6fa490ba2b16fd386c6e71c145327ea4a7d8833f8da91d287f21d5fd31e98692a6499c7d52c6661ca1662c8edc522b74ae5f96fd32270bec9540dc5a269ec44dae5ca0b0e7ba3c4f49bcdf7ba2d876e35c6bbd55cdfd942f9ab9948ac3d106fde9b467bfa9063934504adc0fc13e9a56c6b", @nested={0x18, 0xc3, 0x0, 0x1, [@nested={0x4, 0xaf}, @typed={0xc, 0xcf, 0x0, 0x0, @u64}, @nested={0x4, 0x90}]}, @nested={0x20, 0xa2, 0x0, 0x1, [@typed={0x8, 0x9c, 0x0, 0x0, @uid=r2}, @typed={0x14, 0xdb, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @remote}}]}, @typed={0x8, 0x14a, 0x0, 0x0, @pid=r3}, @nested={0xe6, 0xb5, 0x0, 0x1, [@generic="11", @generic="3602d219c03bb069a36b904bcda31c588accb3dbe3bbab0e8cd5677e05d1e137f5c1d7120afa9a542c9e0665dce29480f52b333ed144795b98d4ab11a30e6973ec147836cc53d6312845b5dffbd00925632ebd7f537cd9db6dcce4bce8ec56b4406068c00224becb4e2bf7010b3b91d4e401982ba54dc7a3cae5763ad772c167fa5d8ed0eb499cab59f4e17b281283fd681a7ad357e82dca04c601ba782bc3b5ad6d77e2d89116e42e64602953093998f5294e13c9b36bad1c80f76c8a71ecf7ee76394a641879d1e5c1184aaea9d8e725", @nested={0x4, 0x3b}, @typed={0xc, 0x98, 0x0, 0x0, @u64=0x10001}]}, @generic="9e7b0065ec7271dde54bbed4d705970050c861fe65b919e8c800ada1f5fcd879a8ad7e8cef8dbed6fbd9749e981a2c860579a862e32cfb19b364e6d0dad01a13e5a3bc48a6cb614d6738f7b77e01872f493431f1f31379a538d6d03c74b4886f5cd97fdc71a340c2b29edfce7decd5b7c95f1e8a4a4152aba30501aadb2babe548361d995c20b2e91e6a0eaf6c4e2cfcc56d23f30a2caf8d9c9f5f8689b2a774ca5a1dbf1c17bd3688edb4ede9adf5609e62f6a86ec8ba9c8770e5f13d1ba23e9eaeeef6be715e", @nested={0xff, 0x7c, 0x0, 0x1, [@generic="11afc5fc194a6e00e094e3a4d82bed73aaffbec9471b2347cad84f0b3425b5e7a8279ed0a397bfd80ed8ce0003392d68b9451d7ead2f06c16e89cd6835c0e077da37c37503e79f6518dc692192f4db184f92055f6a72d2a2c67f6514cdc53e347a88728625a04b7c49ab932d35f2d07bf443df6b8f78efb2a318c445bb24b1f4cd89cb69cb6d0955db05dfcc631330a293f9148ba232a7063e46ce49aa0c43224701ef0e65cff7699b31c8b973746dab5fb1bf587c853cf76cb23db5dfe38a4a3763858fcbb2eb03dba08cfd413ec8bcc7b63d539b05124c9b01e874c7a08c4505d1f7b9069213171ca62c48dc773e64745285a389de242652a5dc"]}]}, @THERMAL_GENL_ATTR_CPU_CAPABILITY_ID={0x8, 0x15, 0x8}]}, 0x3b4}, 0x1, 0x0, 0x0, 0x10}, 0x20008040) madvise$auto(0x1, 0x4, 0x4) 9m7.161077929s ago: executing program 3 (id=773): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x82002, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x8000000002000, 0x128009, 0x8000000000000001, 0x200000eb1, r0, 0x20000018000) socket(0x21, 0x2, 0x2) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) mmap$auto(0x0, 0x7ffffffff000, 0x8004, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x7fffffff, 0x7f, 0x2eb1, 0x401, 0x2000000000008000) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_percpu_stats_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x40040, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7000fddbdf250800030008000300", @ANYRES32=r3], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097d751f33e}, 0x80) r4 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x183041, 0x0) write$auto(r4, &(0x7f0000000200)='ev_\x00\x00\x00\x00\x00`F\xfa\x89\x1a?\xba\x98\xba\xda\x93\xd7\x87\x88\rR\a\x94\a\xc5pd[\xdc\x05c!\xa6\xcc\xb5\xbeoTx\xf1\x96\xc0\x80\xbb\"\x00\xc2\'s\xdd\'\xd0\xc1i\a\xca\x0e\xf8\xc55C_\xfd\xe1\xa3\xeb\xc3\xdd0xee00, 0xee00, 0x83a, 0x8, 0xfffffff7, 0x4335}, &(0x7f0000000300)=0x1, &(0x7f0000000340)=0x9, 0xff4, 0x8, 0x0, 0xde, 0x7, 0x9, 0x100, 0x6, @inferred, @raw=0x10}) sendmsg$auto_MACSEC_CMD_DEL_RXSA(r1, &(0x7f0000000b40)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000b00)={&(0x7f0000000400)={0x6d4, r2, 0x100, 0x70bd29, 0x25dfdbff, {}, [@MACSEC_ATTR_SA_CONFIG={0x306, 0x3, 0x0, 0x1, [@generic="536ed5f5d6f2bda1008623e64ffbe396f555ca511d", @generic="cf7b9ce6bfed26244245fbbdbe82a2856f6636a51ecff6affec668cb4f09e5ddd694c3af3cd9b4868f38180af19fdda055f99e738887f9df5bef338f8c4fa960eb1fb6d18aade7ca9f60cbb2a0619291b9e7b7ca286abc8ba8a1dda1278cc6f44abe3b2fbbbfa689f9b33b69b277fc0fbf346ed2eecec6f617b6642eee4157418d67a66efe8009fc2dd143f994c21ebdd6940f1edf9481a62d6bc2308cae3bc32bec384f984caadbbedc2e3d204b750f7c6a282895810e3382e5cfe4fdd6cb089e0735411122e0518824556e24c4", @typed={0x8, 0x7, 0x0, 0x0, @fd=r0}, @typed={0x7, 0xf0, 0x0, 0x0, @str='%.\x00'}, @nested={0x183, 0x13, 0x0, 0x1, [@typed={0x77, 0x3f, 0x0, 0x0, @binary="2dbc8a1ed5a389303bbc9dd9c28f8f78250750a6b20fb0467962289c0fe260e30705914b9b86235fd0eb51334c04fb9b28a7bcf93fe782a847edb1fe47bb70f99b81926eac124919e7a13047ce2d94a248e5a2c224c11ebb57f1d77ab70da5b73ad7425de083eb4ae9faa8130ce56e36d6c380"}, @generic="c4f1837f12341906715c61b745f1c1ef51ba7d91b5b2d7e0d85b5fdfd120935da1fd2597ff18111ef655c599a3c45e41c71fbb9f59f8cb23e73531f18d2cb04b62c7ec43403af2384337a4a00b1d0fac4c741631c41a4946f09c807c138cbecb189ce88b7d2578b6d7aca56b541c8d0b3929f3880ad55e82a67973d642c790cafb3b0129a07ecff8c93f833fe24f639b916057ee8dc71820ee411671cc22a6a46dd8f19524aecc0428d4d725588b0d55c85d6eb92bd97fc7128a406d067a7473678e564acb42cfb17b1691ee16d93f4a4773d4e497b6539090d65cc0c9ce00e7b61ccc", @typed={0x8, 0x18, 0x0, 0x0, @uid=r3}, @nested={0x4, 0x117}, @nested={0x4, 0x17}, @typed={0x4, 0x146}, @typed={0x8, 0x88, 0x0, 0x0, @str='+\xd0\'\x00'}, @generic, @typed={0x8, 0x88, 0x0, 0x0, @pid=r4}]}, @generic="375af3977132e36143fc1720ddc82f6d06186315b6e02f979b74ede06d9c4c3c6cc7b9a6edf7d776b78f89640539912d6b45ed4f954747efd47cc7c0eeb3ddad595dc190d6c4124c8349784046ba0b28fb5a581ce8f37903c543da7fcfaa6f3ef61a96a41ad90dc68f10fd781aeab372b94dd856c9b6bd434ab1511049c1e7c959bbad545235361ca3288a"]}, @MACSEC_ATTR_RXSC_CONFIG={0xcc, 0x2, 0x0, 0x1, [@typed={0x17, 0x1c, 0x0, 0x0, @str='/proc/self/cmdline\x00'}, @typed={0x8, 0x117, 0x0, 0x0, @pid=r5}, @generic="6c0968a61daf79c7ec0635eb4961c275c5df793604d262978abd757387cb96fb28dfc1aca6cc40782078add815e98c824962aab3e1c87c28c73d0a4b872975fdb134358397206228eaaeb7991c162e822b0139aead6eee5b8bb1eaa1f434dabf8c778760bcaf144e554b80378050c96e8f748081500ddff17c70aa9b51c97bde43a4cf590e64b439e20d6051", @typed={0x8, 0x88, 0x0, 0x0, @u32=0x7fff}, @typed={0xc, 0xba, 0x0, 0x0, @u64=0xf8a}, @typed={0x8, 0x14, 0x0, 0x0, @uid=r6}]}, @MACSEC_ATTR_OFFLOAD={0x2eb, 0x9, 0x0, 0x1, [@generic="c17ac2220c5129c751f7091303d817fa63e407773e2c14eef8dc34b3ee335862e3cd9e3abe24df23747459e323ac1d622f244c89ae23d212344cd82ec5dc36ed6349c9a2c7afd1942f223a943e1c5d41aeef3292748e688baca4318ec124923d5c4e5ddfec98e236235dd0bbd3362a8fc5aad7486b1d1daecf2334f3929351edff2acd4478018030ed013d409a13d11826036943b6bb5fef7ae3fde7be232e5d8c37eaadcba6971cebfc52996b4b18d3a5797e35ae0f9c4fd79c23", @generic="26c58bf708b7c4841128fb7d182ce024d50270221d535ea55fb89401d63b1c903317b8dba50d1f258ee6c6910bccda74acf6703705fd7f85a2a4670d0b7c375fc77b5d32820a39f90de5c576a65847b6d067b7a3e4139653478135007d3f1b636a715dd731eb60ca981d579ff9e32db5205e97ce16fffd33eabf9daa782c45ba36dad8a2ab1720a94bb1d4e1f3a46f3dfdae9a3b5fb22e4af9333ee304031066e39b4bfa765c0771", @typed={0x4, 0x97}, @nested={0x17e, 0xbe, 0x0, 0x1, [@nested={0x4, 0xc1}, @nested={0x4, 0x94}, @nested={0x4, 0xba}, @typed={0xc, 0x73, 0x0, 0x0, @u64=0x3}, @generic="91506469b54cdbf152c82e6166f1cd7b7494af527cb1cba10fb578baf85c8329ca5825d5f8755d8510007462b5244f74ac148e154a36d2a9d531d57b2de9df8bb68833dde0023bc70ee806d9f15c6cd452135116cb815e97ba0a71bcbdd11c874c", @nested={0x4, 0x69}, @generic="0512576433d59e2344b7a97c5e01ccb8a5453086a960d068cc183eeef03ac06cc341d7ebcde8a3b03136ed07a6bc40a8592220a5611210749d04b9e4f8be285d5d6c0358114a2b48f608db2861477f5271b5881b603979f5e42a85494cf10e93302999ed923757cab42debc791f000c6f14c2ff53ddee10f5ea5c03dce4be736d972cde07ac118eb0390667ecc3f31f554c9c22720aca8f062b4862e36618b1bbd5ef9738788c68608af277d57f40b3d39389892437e76b0a45d3560a277e5c6a1fb2b4b8913d636b5f899e1199a661f6805300c0409f9481d91cc048e62b21896aa314ea41ed9339ba61326bbac536f911ae3ef6228b2eef6", @nested={0x4, 0x7}]}]}]}, 0x6d4}, 0x1, 0x0, 0x0, 0x200000a0}, 0x881) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mremap$auto(0x0, 0xffffffffffffffff, 0x524e, 0x3, 0x7fffffffb000) r7 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r7, &(0x7f0000000840)="4cea6ed1dc1f91f3c388b5622a274610e10800ca08ba7aa1995d92e1d0ae2ef23f241bb2bfd9800e9b3b6d", 0x2b) r8 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) ioctl$auto_FS_IOC_GETFLAGS(r8, 0x80086601, 0x8000000000000001) sendmsg$auto_NL80211_CMD_DEL_NAN_FUNCTION(r8, &(0x7f0000001f00)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000001ec0)={&(0x7f0000000c00)={0x1290, 0x0, 0x610, 0x70bd28, 0x25dfdbff, {}, [@NL80211_ATTR_STA_AID={0x6, 0x10, 0x3}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0xe}, @NL80211_ATTR_MAC_HINT={0x1004, 0xc8, "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"}, @NL80211_ATTR_KEY_DATA={0x1b, 0x7, "12491caeb6952bae915f81f3e0006d6a6fc260f1387498"}, @NL80211_ATTR_VENDOR_DATA={0xd4, 0xc5, "2378c57139e99a68d452ad98575566ac4c1d71a0782a0ae8f20e7d8cd5e1dfe8c2c21b4af1a585ce18e498997a0bbd8c2db49ccdd9c69fe02ca4c0815799f44d83a93a82742d0f52c65b1c80c2f96c6fd3c351d7cefdb03c3d015ff8aa854d243796312323fee718c36086ce84e49596a7b32fc55935da5aa7267de7d53605152229d4a1c81d3d936ad38595fe0317a795ec9c28ebbfb80e73340246c6a7b3f89cde632197f96c2d6070aaab588ad09bf2eccf5f173d1f1b6ef2532b9273418e9b369792b562a18e7c07a8c188f5ed2a"}, @NL80211_ATTR_4ADDR={0x5, 0x53, 0x7}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x10}, @NL80211_ATTR_BSSID={0xbf, 0xf5, "8300e12050b1ce509ca950d2d3ad7fac95f31a7a7170e202ce9b64c5c2ffd032b3cd408b9b4f6da8a2da8e263d825315eb7991231c76fef50bb4f113e1aeeacce33e40a5cacb7ecaad9a395d78a190f0e9e27952e57f57b1ba25f61bf84d92acaea20b3d89be724ee23558d848dbe6f3fd1d6322b9c211c638550c2a2d608e6460283a4e3de5ca6ae5e33047bb4eeb626280d562182409a6222f6b9817a8a0670fc1c1824603aa4a68f0e71632bf256de74dfbf81a592ef19c538d"}, @NL80211_ATTR_BSSID={0xa5, 0xf5, "8fec0c4a2a3478cd8f98433a851f01d1a0d8b624d3798eab0fa574585704034f2ad5b8abc72e7cf748f2235fc47381e4b935b74c4035741693adf6524c3d284b4eeed5f5f7aa1011a731cfd0001849f7d8e0b5f06d4007634eb196b9098418868a3d4ca7c8fb6872cfaf365a86781cecd7b36d24df790201141a73520d630eaed5c1b5807f1c406ae4f5f7d587d981fe01ce081acf9c5998e0ad82792658251c98"}]}, 0x1290}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) r9 = prctl$auto(0x23, 0x200000000000009, 0x7fffffffefff, 0x0, 0x0) r10 = openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/cmdline\x00', 0x60502, 0x0) waitid$auto_P_ALL(0x0, 0x66fb, &(0x7f0000000100)={@siginfo_0_0={0x4, 0x6, 0x1ff, @_sigpoll={0x21, r9}}}, 0x86, &(0x7f0000000200)={{0x3, 0x1}, {0x3, 0x2}, 0x0, 0x100000000, 0x1, 0xcbc, 0x10000, 0x1, 0x913, 0x7, 0xff, 0x3, 0x2, 0x9, 0x8, 0xfffffffffffffff8}) madvise$auto(0x9, 0x7, 0xc6b) read$auto_proc_pid_cmdline_ops_base(r10, &(0x7f0000000040)=""/159, 0x9f) 8m40.680800737s ago: executing program 0 (id=841): migrate_pages$auto(0x0, 0x99, 0x0, &(0x7f00000001c0)=0x7b) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f00000001c0)) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SYNC(r1, 0x5001, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0x100082) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xf, 0x3, 0x2) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) r3 = socket(0x2, 0x2, 0x0) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20c01, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001fb, 0x7, 0x3, 0x1, 0x9687, 0x100000000000003, 0x95f4da0a, 0x3, 0x9, 0x62, 0x8, 0x807, 0x6d3f, 0x9, 0x6, 0xfffffffffffffffe]}, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x4, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x8000000000000000, 0x2, 0x6d3c, 0x9, 0x2, 0x8000000000000006]}, 0x0) process_vm_readv$auto(0x0, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, 0x0, 0xa, 0x0) r4 = openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, 0x0, 0x1, 0x0) gettid() mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/trace_pipe\x00', 0x41, 0x0) r5 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x100e42, 0x0) write$auto_sg_fops_sg(r5, &(0x7f0000000080)="3731bf5b0001240000a6c7581afff6578d2f5f520f687f316ba709037c0ae2c7000000000000000000000000000000000000341fd403b8c94fc7487e48c9a5fbcd7f08781c0075685a8dcd402d83354afc6e4620da34c7740485d30a3d6676d9974475f0a114370225123540c46fcc6703f87b48faa8f2448331bb31ea", 0x7d) ioctl$auto_SG_GET_REQUEST_TABLE(r5, 0x2286, &(0x7f0000000040)) bind$auto(r4, &(0x7f00000000c0)=@sco={0x1f, @none}, 0x0) socket(0xa, 0x1, 0x84) writev$auto(r4, &(0x7f0000000200)={&(0x7f0000000140)="1f13358a85c3dda45154e8e54992fabb5b01461b4ad2598af845d8db7983b94f16e8b5f9cf515bb551f9c248f13c10f53884b7907c43490468b534425c688e38312164f085060e"}, 0x10) readv$auto(0xffffffffffffffff, 0x0, 0x3) close_range$auto(r3, 0x8, 0x0) 8m38.584077458s ago: executing program 0 (id=844): socket(0x2, 0x3, 0xa) (async) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) sendfile$auto(0x1, 0xffffffffffffffff, 0x0, 0x7ffff000) (async) recvmmsg$auto(0x3, 0x0, 0x10000, 0x5, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000) (async) close_range$auto(0x2, 0x8, 0x0) (async) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x184) (async) ioctl$auto(0xffffffffffffffff, 0x1, 0xffffffffffffffff) (async) openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000080)='/proc/kpageflags\x00', 0x2, 0x0) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r0 = socket(0x2, 0x1, 0x106) open(&(0x7f0000000080)='./file0\x00', 0x22ac2, 0x5d745cb200ae4d7b) utimes$auto(&(0x7f0000000000)='./file0\x00', &(0x7f0000000300)={0xa, 0x8001}) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) (async) capget$auto(0x0, 0xfffffffffffffffe) (async) capset$auto(0x0, &(0x7f0000000000)={0x3, 0x7, 0x2}) (async) r1 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000340)='/proc/self/pagemap\x00', 0x80800, 0x0) read$auto(r1, 0x0, 0x39b8) preadv$auto(0x3, &(0x7f0000000040)={0x0, 0x8000000}, 0x3, 0xf8, 0x10) (async) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0x200fffffffd}, 0x10006, 0x7fffffff, 0x2) getsockopt$auto(r0, 0x29, 0x4b, 0x0, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x401, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) socketpair$auto(0x11e, 0x1, 0x8000000000000000, 0x0) r2 = socket(0x11, 0x3, 0xfffff958) ioctl$sock_SIOCGIFINDEX(r2, 0x8954, 0x0) 8m23.198237561s ago: executing program 33 (id=844): socket(0x2, 0x3, 0xa) (async) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) sendfile$auto(0x1, 0xffffffffffffffff, 0x0, 0x7ffff000) (async) recvmmsg$auto(0x3, 0x0, 0x10000, 0x5, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000) (async) close_range$auto(0x2, 0x8, 0x0) (async) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x184) (async) ioctl$auto(0xffffffffffffffff, 0x1, 0xffffffffffffffff) (async) openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000080)='/proc/kpageflags\x00', 0x2, 0x0) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r0 = socket(0x2, 0x1, 0x106) open(&(0x7f0000000080)='./file0\x00', 0x22ac2, 0x5d745cb200ae4d7b) utimes$auto(&(0x7f0000000000)='./file0\x00', &(0x7f0000000300)={0xa, 0x8001}) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) (async) capget$auto(0x0, 0xfffffffffffffffe) (async) capset$auto(0x0, &(0x7f0000000000)={0x3, 0x7, 0x2}) (async) r1 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000340)='/proc/self/pagemap\x00', 0x80800, 0x0) read$auto(r1, 0x0, 0x39b8) preadv$auto(0x3, &(0x7f0000000040)={0x0, 0x8000000}, 0x3, 0xf8, 0x10) (async) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0x200fffffffd}, 0x10006, 0x7fffffff, 0x2) getsockopt$auto(r0, 0x29, 0x4b, 0x0, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x401, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) socketpair$auto(0x11e, 0x1, 0x8000000000000000, 0x0) r2 = socket(0x11, 0x3, 0xfffff958) ioctl$sock_SIOCGIFINDEX(r2, 0x8954, 0x0) 5.850501004s ago: executing program 1 (id=2620): bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_4={0x800000000012, 0x4, 0x80000001, 0x8}, 0x6f4) mmap$auto(0x0, 0xa00006, 0x400001, 0x40eff, 0x602, 0xffffffffffff8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) keyctl$auto(0x1, 0x7, 0x100, 0x8, 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$dir(0xffffffffffffff9c, 0x0, 0x4d0000, 0xeb) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0x2, 0x1, 0x84) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x103800, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x84040, 0x22, 0x12}, 0x18) openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0x1, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0) r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto(r2, 0x8008af83, r2) 4.300724168s ago: executing program 2 (id=2626): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r1, 0x8, 0x70bd29, 0x25dfdbfc, {}, [@NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x80000001}, @NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x4041) capget$auto(&(0x7f0000000140)={0x7ce, 0x0}, &(0x7f0000000180)={0x3, 0x6, 0x1}) r3 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/pcmC1D0p\x00', 0x0, 0x0) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/oom_adj\x00', 0x2c4680, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/platform/vhci_hcd.6/usb21/avoid_reset_quirk\x00', 0x84000, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000280)='/dev/tty6\x00', 0x600000, 0x0) r5 = gettid() r6 = prctl$auto(0x3ff, 0xffffffff, r5, 0x3, 0x800) readv$auto(r3, &(0x7f0000000380)={&(0x7f00000002c0)="b3c90861bc2f4fab4849dca4836f24b6dbfeb02c622e026dd1c4a1d0ed6c3fd03d0be893bea1f641e3c36993c74a280c2267584b5907abfacf0854b2e94fb1dde062c30500ce538a8492015f0c4de1c3088998509f202c794476a58b9413be23e96539dd7e61cea7d5b895d8288abe748f410120d508ad663d8862dea66be3dd3f8a1a05209b854bc2bb69ef0e4ef7b4", 0x3d}, 0x9) ioctl$auto_KVM_GET_MSRS(r6, 0xc008ae88, &(0x7f00000003c0)={0x6, 0x0, [{0x6ca, 0x3}, {0x2, 0x3, 0x8}, {0x8, 0x5, 0x80}]}) landlock_create_ruleset$auto(&(0x7f0000000400)={0x50, 0x0, 0x9}, 0x10, 0x8) shmctl$auto_IPC_INFO(0x2, 0x3, &(0x7f00000005c0)={{0xfffffffc, 0xffffffffffffffff, 0x0, 0x5, 0x8000, 0x3, 0x7}, 0x6, 0x1, 0x6, 0xa, @inferred=r2, @inferred=r5, 0x6, 0x0, &(0x7f0000000440)="511913735058087def8d62d0f562293bd47e38c178d408f3ec6e898fa08d0df6a00b997c84eb6eeafc9b2e11e355270ea0f50cdec3af5705290c62898e039e1c4a07c36f07b13784ffacd53235b46158431f4c8278d3512ac568d7bb0169b3d1f9ac8eca0c00cd15507df4848a9aea803567c53d009cf1287d0b5088d8c43df3c90f71bd8d7fe75e24d456d4e84127ea4fad30a0512820c61a165148d793a2a566eb15f1916adb201b798ef1111e9ada4d59333a14f3ae444420ad37657b019b1cbf1079eb67d50eddf3a5a54c435bca5b5f1d3c04f9155a63d412", &(0x7f0000000540)="9c898840bf28a57d905134b4f3ed6b91bc43c4d9f6cdb9208715be702bb39b89fb4aa14232f29b1245953e8fd9600bb540a5aac3e5d7b469923ccbe78355adf8018491931fd7406d73a410489e57d841"}) msgctl$auto_IPC_RMID(0xf0000000, 0x0, &(0x7f00000006c0)={{0x4e, r7, 0xee01, 0x4, 0x751bb5e0, 0x8, 0x6}, &(0x7f0000000640)=0x8, &(0x7f0000000680)=0x9, 0x7, 0xb, 0x7, 0x7, 0x7, 0x6, 0x7f8, 0x101, @raw=0xab5, @inferred=r5}) write$auto_proc_reg_file_ops_compat_inode(r6, &(0x7f0000000740)="a6ff1bb68286c167a81cd638382fc9f2c6771f8207884c70cab6a105c9c1c78c3b06a60f6f1236375438df5f549bcbcc6077be604a60ac405a2c82a3d54e7814fee58866249b44c08c384041026b664c344b6ccd1d63835ea1a33588e01a6d47cacac7e4f00dcc87bc36b4719784e2af6fefd8390d87e66801bd44833797c2d9f78755413f8dec787dcd9446276398313a9b34cfdff784683c4f02804376e73544a3f73018c1ecec9639644114026cf0862afc404a2a0fdee78d3e1d699bd77d452c757d7ca8cac11ae4182192266d2a38d2fd481533aed1acd54949867b5015bf42bf24ad516f99a34d6985f0514c5fae", 0xf1) r10 = openat$auto_fops_x16_ro_(0xffffffffffffff9c, &(0x7f0000000840)='/sys/kernel/debug/x86/boot_params/version\x00', 0x40, 0x0) recvmmsg$auto(r10, &(0x7f0000000b40)={{&(0x7f0000000880)="d5b5898280e705c903eb42d0c5838e3e872b1a7a1682c7033bc9c0dbc89d768b12e65b4beb08ca06c2637e6384b15ff7eafb744702eed011284ab4be9c92b71f48ee68457c2fd4769fa134c5009fb86d73d863319f2b57f3fcd1275567e55c0f75a2f97cf08fbc1b2e60f50f0fe892277247885752738111704a857dccccdeb2d32ac4cc19a3a1749bbcef52eb2953e3dd8901050d546fcce029826e4f27bd4a8941ac0029f94dfd966f4b031323e3b44be837377c9733af15b286c4b9d6a156e04f83925124f51e056ab91013", 0xa, &(0x7f0000000a80)={&(0x7f0000000980)="d293e0cf491b9c9fee742d3e1d8eef55ed4a5f86c02d1bcc2a4415f754f55b191c5c89537c6ff609dd0cfc8d928f8672aa897feb9a6d92c4a1be7ff92cdce5dd5af9e2fc1c5d6992d2dd66d45767154ef154938d485a0728ba0751afeb2e5e927b5e807bda67bf6efce8070f5909deb78485f705f72b3632b947722b31fdc2bbec6746a0507b822579d41cf4396ad85a20e6c34847d76e6ea8803f599a81ba5083a86a679c1e7efac95fc78068b7a60e4cded0c143de172c8bf32d56466feff21a889aa178b910c598a369c242470fc0d6181574ef3c6d8b41a92be4e2890a13ba44613913e70330b03b071eeba8141b165f85a15ffec75d88", 0x6}, 0x0, &(0x7f0000000ac0)="5386bfa11f99daf3a09a9103ce7c0318fa942456b17d419ed2663d238f037df045dcb916db4f5c96095d860de3b34fbdb92119bbf389ccb0f8224a28ceab6017ea3b8f63d863114e6e0b4a8532b5fa6473", 0x4, 0x1082}, 0x2}, 0x2, 0x3, &(0x7f0000000b80)={0x9, 0x4}) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000bc0)='/dev/vcsa1\x00', 0x2000, 0x0) r11 = openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000c00)='/sys/kernel/debug/tracing/per_cpu/cpu1/trace\x00', 0x0, 0x0) fcntl$auto_F_DUPFD_CLOEXEC(r11, 0x406, r4) getsockopt$auto_SO_ERROR(r10, 0x6, 0x4, &(0x7f0000000c40)='/sys/kernel/debug/x86/boot_params/version\x00', &(0x7f0000000c80)) shmctl$auto_SHM_LOCK(0x1, 0xb, &(0x7f0000000dc0)={{0x3, r8, r9, 0xdc2, 0x4, 0xef9, 0xc}, 0x2, 0xffff, 0x2, 0x89, @raw=0x2, @raw=0x2, 0x8, 0x0, &(0x7f0000000cc0)="74e850dd38a5366348a324a62f636c7bba863dcb2ad6441d6503b1a63bebd0fcac6e9216a0d3fa27a14d12ccf4c9b9723894a76d265f1001693f86daf0a61627b4e2dfbf59ea13dc5ba985dc4947419f2b547cd09704", &(0x7f0000000d40)="e1a7cb0df6dbdbff8dd3036839329eae4cff94748a3c0c682d88b3b24cac90b62a0ad0f4b839b307d4cab952ac0ec28768fdd190f65d86a1d4c773cf66dc9e147945fd1f0923302977eff9180d0901d23ec7b9a334c71f93610135aabc7a5eedd32d18610e0c3d2f9c8aba94084f"}) r12 = seccomp$auto(0xb, 0x8001, &(0x7f0000000e40)="6440063ac8bee980f088434a4341fd403d3c298fc2c8cead82d58fc7f6428a6a782c16176d76035c2227e18557686d5f08c91d165ed186f1166009edfe3ddacd0ae66cb6ef3985902f757939b617ee4949e53bb1") r13 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000ec0)='/dev/loop5\x00', 0x342c3, 0x0) ioctl$auto_BLKTRACESETUP(r13, 0xc0481273, &(0x7f0000000f00)={"e4d8446ea75795ca2b28b8c3eb23459d7433fe6a020bc44945f24979fda9959d", 0x4, 0x3, 0x3, 0xe, 0x6, r2}) clone$auto(0x100000000, 0x8, &(0x7f0000000f80)=0x7fff, &(0x7f0000000fc0)=0x6, 0xa) sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(r12, &(0x7f00000010c0)={&(0x7f0000001000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001080)={&(0x7f0000001040)={0x38, 0x0, 0x4, 0x70bd2c, 0x25dfdbfd, {}, [@NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x6}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x10e}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0xfff}]}, 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x40048004) lsm_list_modules$auto(&(0x7f0000001100)=0x10001, &(0x7f0000001140)=0x9, 0xff9) shmctl$auto_IPC_STAT(0x9, 0x2, &(0x7f0000001340)={{0xb, r7, r9, 0x12, 0x2b3d, 0x8, 0x9000}, 0x8, 0x0, 0x8001, 0x10001, @raw=0x1, @inferred=r2, 0x4, 0x0, &(0x7f0000001180)="1ba5dcc68ba9b718022c95341054aaab05ccc2155f7cd0b48bd191b1bf2c42e000352ae13f9fc93834ad1d365b97264cafe19dd1a892db3e629148c283fe0886e98f055b4788207f19197b9b46960fa08525143d706811f6b018e0889dc9db8c925c92aa0ed5a920a71504c639b486584371709148cae9512cdcb565bc8c12216fa61cc9a32cd04f3e558d53b3f738ce19ae1849a63f45245ff77336cfdff427a647065b0af86323dccd76eb1c15a21aafb3d325e6f4e8577e7128132311fc3f8c51a3156ff0c24025ad3983fd92d7a0", &(0x7f0000001280)="d882cfc5ef77317d1b799d53d047aaad3e6e3c22d13dbe288c4bb945afa77e94beee625d3592866e766c668b9f9843a76bc6a9148fcaf292580041028515b91910c4f6abc2dc4b72887e8a515340a39ed35f4e984efaf8a5f619446c3a9ac94b2d43c152fe1bd73b58a8f582a097ef7edfb561e9aa6a49fdf041ac4fa06cd43fae858b87e4db1b8c21f9f20767d85e7828df9c3f2f3ab54756a073f91cff3ae8299f7c500491cfae15848892d7ff"}) 4.144212688s ago: executing program 5 (id=2630): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) (async) socket(0x2, 0x2, 0x0) r0 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0) write$auto(r0, &(0x7f0000000c40)='gthtool\x00', 0x5) (async) write$auto(r0, &(0x7f0000000c40)='gthtool\x00', 0x5) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/bdi/43:288/max_bytes\x00', 0x82942, 0x0) sendfile$auto(r1, r1, 0x0, 0x441) memfd_secret$auto(0x0) socket(0x1a, 0x1, 0x0) (async) socket(0x1a, 0x1, 0x0) epoll_create$auto(0x9) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0) (async) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, 0x0, 0x3) (async) writev$auto(r3, 0x0, 0x3) listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1) socket(0x2b, 0x1, 0x0) (async) socket(0x2b, 0x1, 0x0) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) (async) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) mlock$auto(0x112, 0x80006) (async) mlock$auto(0x112, 0x80006) mlockall$auto(0x800000000000005) madvise$auto(0x0, 0x200007, 0x19) msgrcv$auto(0x0, 0x0, 0xff9, 0xfffffffffffffffc, 0xb4) 3.973637967s ago: executing program 1 (id=2631): r0 = socket(0x25, 0x1, 0x0) sendto$auto(r0, 0x0, 0x0, 0x0, 0x0, 0x3) r1 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000140), 0x180b03, 0x0) ioctl$auto_SNAPSHOT_ALLOC_SWAP_PAGE(r1, 0x80083314, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) fallocate$auto(r1, 0x1, 0x2, 0x6653) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x1, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x5, 0xd, 0x9, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x9, 0x80000001, 0x0, 0x1, 0x8, 0xffffffffffffffff, 0x1]}, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) ioctl$auto(0x3, 0x2287, 0xffffffffffffffff) socket(0x23, 0x80805, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) write$auto_proc_mem_operations_base(r3, &(0x7f0000001680)="a7", 0x80000) madvise$auto(0x0, 0x20200, 0x15) prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mremap$auto(0x1ff000, 0x100008, 0x843, 0x3, 0xfffff000) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/pagemap\x00', 0x2, 0x0) msgctl$auto(0x7, 0xa3, &(0x7f0000000240)={{0x8, 0xee00, 0xee01, 0x5, 0xa, 0x0, 0xfe01}, 0x0, 0x0, 0x6, 0xd, 0x6, 0x31f4, 0x51c, 0x3, 0x1, 0x3, @inferred=0xffffffffffffffff, @raw=0x8}) r4 = getpid() process_vm_readv$auto(r4, &(0x7f0000000000)={0x0, 0x1002}, 0x1, &(0x7f0000000280)={0x0, 0x401}, 0x6, 0x0) 3.972865173s ago: executing program 2 (id=2632): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) r0 = socket(0x10, 0x2, 0x4) sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYBLOB="010027bd"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) read$auto(0x4, 0x0, 0xfdef) setsockopt$auto(0x3, 0x10000000084, 0x76, 0x0, 0x8) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/asound/card1/pcm0c/sub3/hw_params\x00', 0x0, 0x0) write$auto(r1, &(0x7f0000000040)='..+*@sys\x00', 0x2) r2 = socket(0x10, 0x2, 0xf) r3 = bpf$auto(0x0, &(0x7f0000000080)=@bpf_attr_4={0x1e, r2, 0xffffffff}, 0xd) bpf$auto(0x2, &(0x7f0000000080)=@iter_create={r3, 0x98}, 0xa8) socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @rand_addr=0x64010102}, 0x54) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/cpumask\x00', 0x2, 0x0) r6 = socket(0x2, 0x1, 0x0) sendmmsg$auto(r6, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) r7 = syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r6, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000380)=ANY=[@ANYBLOB="c5bb3133597e4846fffd4442b3e38ef4c72f16a43bddbf2d6a490f6507a2b7fafdf97b7e0e33c210c1c438f25d00a859b7bbae6382738ed3ceff39754909e54b4e0300aa6abbe7c462c9f2580f22c73657f7adcab3ab6ffe28c2cc13a300655f31eb186bc7690e4a9cc8d320db45be5c6e3544803f33a4e581cc3d5a317a082c61aa52ae89a27d151c93abf7a6e0a478a90a456edc72511e94ae60b45ceb3afdc1cf2f22a32475cb7df192c80abdbaaac914bc521f9cac25aef123a4a0627c24655373fc10a00ad10748bc180869d31e29de213bf4993e6f35b260689c51117403c8c79e11afa08ee69f75ad1e7c5121844518af198bec0c8c73b2", @ANYRES16=r7, @ANYBLOB="000326bd7000ffdbdf2588000000"], 0x14}, 0x1, 0x0, 0x0, 0x24000000}, 0x400c080) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r4, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB="000228bd7000fddbdf257e0000000600100003000000b1017c20"], 0x1c}, 0x1, 0x0, 0x0, 0x848}, 0x4008000) write$auto(r5, &(0x7f0000000180)='1\x00\\\xa0\x04|\x9d$\xdcM)\xb9\xdd\xd6', 0x5) prctl$auto(0x35, 0x1, 0x2, 0x0, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) setreuid$auto(0x8, 0x9d7) fsetxattr$auto(0x1, &(0x7f0000000000)='%\x175\xc0\x8d\xbb\x04\xb3\x97\xd8\xf4\xf6', 0x0, 0x0, 0x2) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 3.786673453s ago: executing program 4 (id=2633): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x400008000) r0 = socket(0x2, 0x2, 0x0) r1 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, 0x0, 0x20201, 0x0) write$auto(r1, &(0x7f0000000c40)='gthtool\x00', 0x5) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r2 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(r2, 0x0, 0x8, 0x7, 0x0) socketpair$auto(0x1, 0x8001, 0x8000000000000000, 0x0) sendmmsg$auto(r2, 0x0, 0x9a6, 0x7000000) init_module$auto(&(0x7f0000000000)="810d0bfc3f02b160206e33b099dd74b29b64b54ab4c96b1d6b17333a3140c7e91b12c56cf004e546212e70080b1621b8f18bd39d4c0426eaf1a2008b38348f18d5e6cd00b1dc56240f7c05d88b5f0ef0bd66332479b26587fb96a567c12f71bb565dae15fc2238263e8d78dc838c8f", 0x0, &(0x7f00000000c0)='gthtool\x00') socket(0x2c, 0x1, 0x4003) read$auto(r0, 0x0, 0x7) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0xfffffffffffffffb) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9) getsockopt$auto(r1, 0xffffef0e, 0x48, 0x0, 0x0) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) r3 = socket(0x23, 0x2, 0x0) bind$auto(0x3, 0x0, 0x6a) connect$auto(r3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) shmctl$auto(0xa0000000, 0x6, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) execve$auto(0x0, 0x0, 0x0) r4 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f00000000c0), 0x109002, 0x0) sendfile$auto(r4, r4, 0x0, 0x10000800000003) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) 3.073706078s ago: executing program 5 (id=2634): madvise$auto(0x0, 0x2000040080000004, 0xe) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) madvise$auto_MADV_DODUMP(0x8, 0x5, 0x11) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000001c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\xb33.O\xab\"4\x8a\xbbYS@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r2 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r1, 0x80085610, r2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/igmp\x00', 0x100, 0x0) pread64$auto(r3, 0x0, 0x40000000f42c, 0x80002) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) madvise$auto(0x0, 0x200007, 0x19) syslog$auto(0x3, 0x0, 0x5) poll$auto(0x0, 0x7f, 0x9) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) ioctl$auto_IOC_PR_PREEMPT_ABORT(0xffffffffffffffff, 0x401870cc, &(0x7f0000000000)={0x1, 0x10000003, 0x1000025}) ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) ioctl$auto_SNDRV_RAWMIDI_IOCTL_USER_PVERSION(r4, 0x40045702, 0x0) ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(r4, 0xc0305710, &(0x7f00000000c0)={0x1, 0xaa, 0xb, 0x1, 0x5, "e7227115127a1e8f00"}) socket(0x25, 0x5, 0x6) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) 2.738138138s ago: executing program 2 (id=2635): mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) (async) prctl$auto(0x3e, 0x5, 0x0, 0x7, 0x0) (async) write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async) socket(0x11, 0x800, 0x35) (async) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0x5, 0x0) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyae\x00', 0x8274a51a71dbf4dc, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) (async) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r0, 0x541c, r1) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) clock_nanosleep$auto(0x8000a, 0x0, 0x0, 0x0) (async) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) (async) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0xfffffffffffffffe, 0x20948b, 0x2, 0x95f4da0a, 0x10001, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) (async) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/bus/scsi/drivers/st/debug_flag\x00', 0xa000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f00000000c0)=""/4085, 0xff5) (async) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000680), 0xffffffffffffffff) (async) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/tasks\x00', 0x63102, 0x0) (async) r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/vrf/strict_mode\x00', 0x80202, 0x0) sendfile$auto(r5, 0x3, 0x0, 0x400000000008) (async) close_range$auto(r4, r5, 0x101) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x8, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) socket(0x29, 0x2, 0x0) (async) socket(0x10, 0x3, 0x0) 2.689857551s ago: executing program 4 (id=2636): mmap$auto(0x0, 0x1, 0x8001, 0x40eb1, 0x602, 0x300000000000) (async) close_range$auto(0x2, 0x8, 0x0) (async) io_uring_setup$auto(0x6, 0x0) (async) r0 = socket(0x2, 0x1, 0x0) (async) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x4, 0x100b}, 0xfff}, 0x4, 0x311) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) socketpair$auto(0xfffffffd, 0x5, 0x9, 0x0) (async) unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) (async) setsockopt$auto_SO_BROADCAST(0xffffffffffffffff, 0x0, 0x6, 0x0, 0x8000) (async) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) (async) io_uring_setup$auto(0x6, 0x0) (async) setsockopt$auto(0x3, 0x1, 0x7, 0x0, 0x8) ioctl$auto(0x3, 0x8906, 0xd) close_range$auto(0x2, 0x8, 0x0) (async) socket(0x1d, 0x5, 0x0) (async) prctl$auto(0x29, 0x17000000, 0x0, 0x0, 0x0) prctl$auto(0x64, 0x7, 0x0, 0xe6, 0x6) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async) r1 = clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) (async) r2 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer1\x00', 0x2800, 0x0) fcntl$auto_F_SETOWN(r2, 0x8, r1) (async) fcntl$getown(r2, 0x9) (async) get_robust_list$auto(r1, 0x0, 0x0) (async) r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000040), 0x8006, 0x0) ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0) ioctl$auto_PPPIOCSFLAGS(r3, 0x40047459, 0x0) (async) pread64$auto(r3, 0x0, 0x8001, 0x2325) 2.619176511s ago: executing program 5 (id=2637): r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video3\x00', 0x2aa01, 0x0) socket(0x2, 0x2, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x482b01, 0x0) openat$auto_force_suspend_fops_hci_vhci(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/bluetooth/hci0/force_suspend\x00', 0x400002, 0x0) r1 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0) mmap$auto(0x0, 0x400008, 0xde, 0x9b72, r1, 0x8000) mmap$auto(0xa, 0xb0400000000001, 0x2, 0x8000000000000010, 0x1000000002, 0x8000) futex$auto(&(0x7f0000000080)=0x2948, 0x0, 0x2948, &(0x7f00000000c0)={0x225c17d03}, 0x0, 0x5) futex$auto(0x0, 0x5, 0x4, 0x0, &(0x7f0000000080)=0x9, 0x4000000) ioctl$auto_SNDRV_PCM_IOCTL_HW_PARAMS_OLD2(0xffffffffffffffff, 0xc1004111, 0x0) r2 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0040, 0x0) pread64$auto(r2, 0x0, 0x7ff, 0x400) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x5, 0x1, 0x0, 0x1, 0xfffffffffffffffd) mkdir$auto(&(0x7f0000000000)='}[,&*}\x00', 0xc001) mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x10001, 0x0) mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', 0x0, 0x44020, 0x0) select$auto(0xf, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x2d, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x7, 0x40, 0x3, 0x1, 0x9, 0x1, 0xffffffdffffffffe]}, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) unshare$auto(0x40000080) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/neigh/ipvlan1/retrans_time\x00', 0x242, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/clients\x00', 0x280, 0x0) socket(0xf, 0x3, 0x2) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0x1a, 0x5, 0xfffffffd) mq_getsetattr$auto(r0, &(0x7f00000000c0)={0x18a65f3b, 0x4, 0x0, 0xbaa}, &(0x7f0000000100)={0xf5, 0x4000000000004, 0x5, 0x9}) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x20000000001ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x6, 0xfffffffffffffffd, 0x10001, 0xaa9, 0x7ffffffd, 0x3, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffa]}, 0x0) write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) 1.80760608s ago: executing program 1 (id=2638): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/firmware/acpi/hotplug/force_remove\x00', 0x101000, 0x0) (async) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/firmware/acpi/hotplug/force_remove\x00', 0x101000, 0x0) read$auto(r0, &(0x7f0000000b40)='^+\x00', 0x4) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_UPD_RXSC(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x20, r2, 0x1, 0x70bd2a, 0x25dfdbfe, {}, [@MACSEC_ATTR_IFINDEX={0x8}, @MACSEC_ATTR_RXSC_CONFIG={0x4}]}, 0x20}}, 0x40050) (async) sendmsg$auto_MACSEC_CMD_UPD_RXSC(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x20, r2, 0x1, 0x70bd2a, 0x25dfdbfe, {}, [@MACSEC_ATTR_IFINDEX={0x8}, @MACSEC_ATTR_RXSC_CONFIG={0x4}]}, 0x20}}, 0x40050) r3 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) (async) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(r4, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x2c, r3, 0x100, 0x70bd2b, 0x25dfdbfd, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x9}, @BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_BANDWIDTH_UP={0x8, 0x1b, 0xffffff22}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40800}, 0x40000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'bridge_slave_0\x00'}) (async) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'bridge_slave_0\x00', 0x0}) sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x68, r3, 0x100, 0x70bd25, 0x25dfdbff, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x88}, @BATADV_ATTR_TPMETER_RESULT={0x5}, @BATADV_ATTR_ROUTER={0xa, 0x1d, @random="8ee0e6626482"}, @BATADV_ATTR_BANDWIDTH_UP={0x8, 0x1b, 0xb}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_BLA_BACKBONE={0xa, 0x21, @random="fd8784e732ff"}, @BATADV_ATTR_THROUGHPUT={0x8, 0x1a, 0x1}, @BATADV_ATTR_BLA_ADDRESS={0xa, 0x1f, @remote}]}, 0x68}, 0x1, 0x0, 0x0, 0x880}, 0x24000000) (async) sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x68, r3, 0x100, 0x70bd25, 0x25dfdbff, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x88}, @BATADV_ATTR_TPMETER_RESULT={0x5}, @BATADV_ATTR_ROUTER={0xa, 0x1d, @random="8ee0e6626482"}, @BATADV_ATTR_BANDWIDTH_UP={0x8, 0x1b, 0xb}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_BLA_BACKBONE={0xa, 0x21, @random="fd8784e732ff"}, @BATADV_ATTR_THROUGHPUT={0x8, 0x1a, 0x1}, @BATADV_ATTR_BLA_ADDRESS={0xa, 0x1f, @remote}]}, 0x68}, 0x1, 0x0, 0x0, 0x880}, 0x24000000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xe0182, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r6 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) (async) r7 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async) r8 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) r9 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x45cac0, 0x0) r10 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r10, 0x5522, 0xf15) ioctl$auto_KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$auto(r7, 0xae41, r6) ioctl$auto_KVM_GET_MSRS(r8, 0x4008ae89, &(0x7f0000000080)={0x2, 0x0, [{0x4b564d07, 0x403, 0xe8}]}) 1.747936157s ago: executing program 5 (id=2639): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) socket(0x2, 0x80002, 0x73) (async) socket(0xa, 0x1, 0x84) io_uring_setup$auto(0x7, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa101, 0x0) (async) socket(0x10, 0x2, 0x0) io_uring_setup$auto(0x4, 0x0) openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/events/vmalloc/free_vmap_area_noflush/enable\x00', 0x0, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x109500, 0x0) (async) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) io_uring_setup$auto(0x85, 0x0) socket(0x1d, 0x2, 0x7) socketpair$auto(0x4004, 0x7, 0x4, 0x0) (async) openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/mac80211_hwsim/hwsim15\x00', 0x90800, 0x0) (async) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) (async) ioctl$auto_TCFLSH2(r0, 0x800455cc, 0x0) 1.541649983s ago: executing program 5 (id=2640): bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_4={0x800000000012, 0x4, 0x80000001, 0x8}, 0x6f4) mmap$auto(0x0, 0xa00006, 0x400001, 0x40eff, 0x602, 0xffffffffffff8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) keyctl$auto(0x1, 0x7, 0x100, 0x8, 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$dir(0xffffffffffffff9c, 0x0, 0x4d0000, 0xeb) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0x2, 0x1, 0x84) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x103800, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x84040, 0x22, 0x12}, 0x18) openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0x1, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0) r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto(r2, 0x8008af83, r2) 1.374144661s ago: executing program 4 (id=2641): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r1, 0x0, 0x48004) write$auto(0xffffffffffffffff, 0x0, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9) r2 = bpf$auto(0x14, &(0x7f00000000c0)=@enable_stats={0x1}, 0x7) pivot_root$auto(0x0, 0x0) kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x220002, 0x0) r3 = socket(0x18, 0x80000, 0x1) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socket(0x5f, 0x4, 0x1) sendmsg$auto_NL802154_CMD_NEW_INTERFACE(r1, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x108401}, 0xc, &(0x7f0000000240)={&(0x7f0000000380)=ANY=[@ANYBLOB="98010000", @ANYRES16=0x0, @ANYBLOB="00022cbd7000ffdbdf250740100008000300", @ANYRES32=0x0, @ANYBLOB="05001f00060000000c000600020000000000000008000c007a00000008000b000180ffff08000e000c000000050024000500000047012b80027a374566de14580d7ba195a8a1e8c15ae24a3210a1d96d91b6085a9f5f42686732888a24bcc36865f95f3ef270d1e364055a4fd56490e685528e72fa1b2b278e20c7d425951a165549cc852cdb17b0a696ca1253221e840a53f7e7c92ad4728da321d596dc1a7f4a9f92265e4b3baeed9830b719b98d7364c852c4e057e30c785951b55a3f70f44619f3be57c742dae467ab8753e3b9740df340a933c71d072c102e7e2f603483e8420ee16072431c004a8008001c00", @ANYRES32=0x0, @ANYBLOB="0c00bf00010100000000000004003e807500e38014001b00000000000000000000000000000000000c000b00050000000000000090cd5a2d768900d4b7a2fac2094e1979d4cc92dc62c6a2df7e5dbbb023e3bdf09d6ccfbdb851fe91e0bf474cbb629c8f52b6e2a229455e734a4dc8c6672f67e2501a0629015f3991b843f317ed7e5ca1f700000000"], 0x198}, 0x1, 0x0, 0x0, 0x14}, 0x4) ioctl$sock_SIOCGIFINDEX(r3, 0x80487436, 0x0) mmap$auto(0x0, 0x40000c, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x7ffffffffa, 0xfffffffffffffffb, 0x3, 0xdba, 0xffffffffffffffff, 0x4) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x1a1000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x7, 0x5, 0x1) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) gettid() msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) ioprio_set$auto(0x2, 0x800000000, 0x8) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) waitid$auto_P_ALL(0x0, 0x3, 0x0, 0x3, 0x0) ioctl$auto_PROCMAP_QUERY(r2, 0xc0686611, &(0x7f0000000180)={0x40000008, 0x3f, 0x4, 0x5, 0x80000000007, 0x1, 0x6, 0xff, 0x5, 0x7a, 0x2, 0xfff, 0x7fb, 0xffffffffffffffff, 0x200d}) 1.371861941s ago: executing program 2 (id=2649): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x31, 0x65f, 0x1ffde, 0x7, 0x3, 0x20000002, 0x9, 0x3, 0x100000006, 0x4, 0xb4, 0x9, 0x6, 0x10003, 0x80, 0x4, 0x0, 0x7, 0x2000, 0x8, 0x200000, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, 0x1ff, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x3, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xe}}, 0x6, 0x4008) 1.370613937s ago: executing program 1 (id=2642): sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x4000804) lstat$auto(0x0, &(0x7f0000000180)={0xf, 0x2, 0x3, 0x66, 0x0, 0x0, 0x0, 0x1000000006, 0xfffffffffffffffe, 0x7ffffffffffffffd, 0x5, 0x80000000, 0x6, 0x7, 0x7, 0x61, 0x40000103}) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r1, 0xfffffffffffff000, 0x2) r2 = landlock_create_ruleset$auto(&(0x7f0000000000)={0xff, 0x400000000000401, 0x9}, 0x9, 0x0) landlock_restrict_self$auto(r1, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r3 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0x0, 0x401, 0x7}, 0x9, 0x0) landlock_restrict_self$auto(r3, 0x0) r4 = geteuid() keyctl$auto(0x1e, r4, r4, 0x5, 0x8) statx$auto(r2, &(0x7f0000000080)='./file0\x00', 0x2, 0x5, &(0x7f0000000240)={0x800, 0x4, 0xffffffffffffffff, 0x2, r4, r0, 0x2, 0x1000, 0x4, 0x2, 0xf9, 0x6, {0xb, 0x6}, {0x7, 0x80}, {0x10, 0x2}, {0x10001, 0x1000}, 0x3, 0xfffffff7, 0xad, 0x10000, 0x80000001, 0x3e19, 0x1, 0x0, 0x9, 0x46fb, 0x7ff, 0x9, [0x7, 0x8, 0x9, 0x3, 0xfffffffffffffffe, 0x5, 0xd3, 0x400, 0x56]}) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) 1.233269754s ago: executing program 2 (id=2643): r0 = io_uring_setup$auto(0x55, &(0x7f0000000080)={0x7fffffff, 0x1d, 0x3000, 0x6, 0x7, 0x400b, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x2}, {0x100, 0x1, 0x52, 0x81, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}}) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ptyyf\x00', 0x40842, 0x0) io_uring_register$auto(r0, 0x7, 0x0, 0x4) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/shm_next_id\x00', 0x88000, 0x0) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x8000000401, 0x8000) r2 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x2, 0x3) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x2, 0x8000) fchdir$auto(r2) futex$auto(&(0x7f0000000000)=0xe68, 0x8, 0x8, &(0x7f0000000100)={0x6, 0xffffffff}, &(0x7f0000000140)=0x2, 0x6) epoll_create$auto(0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) socket(0x2, 0x1, 0x106) openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000200)='/dev/input/mouse0\x00', 0x800, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_GTP_CMD_NEWPDP(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010027bd7000fedbdf2500000000060006000900000008000100ffe3ffff0c00030007000000000000000800020000000000"], 0x38}, 0x1, 0x0, 0x0, 0x20040850}, 0x4048040) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000440)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="13002cbd7040450e531c87abd4f908000300", @ANYRES32=r7, @ANYBLOB="0800610002000000080062"], 0x2c}, 0x1, 0x0, 0x0, 0x24004080}, 0x20040894) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="affc13c6f8db4b06ad54c974abbd480f9d3f3f323370541b5d4bc48d1740d900cde4103cebe34c42c481609bffd1c7ad74", @ANYRES16=r5, @ANYBLOB="050429bd7000fcdbdf251f00000005001c0002000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000040}, 0x1) openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0) mmap$auto(0x0, 0x8, 0x3, 0xeb1, r1, 0x8000) r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd15/queue/scheduler\x00', 0x103a42, 0x0) sendfile$auto(r8, r8, 0x0, 0x9) madvise$auto(0x2, 0x0, 0x9d65) r9 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vbi17\x00', 0x280, 0x0) ioctl$auto(r9, 0xc0905664, 0x38) 1.185288872s ago: executing program 1 (id=2644): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup/pids.peak\x00', 0x8000, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9) mmap$auto(0x0, 0x9644, 0xdf, 0x9b72, 0x2, 0x2d4a29c0) pivot_root$auto(0x0, 0x0) r1 = open(0x0, 0x7ffd, 0x12) kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x2000040080000000, 0xe) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_UPD_RXSA(r2, &(0x7f0000006200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)={0x38, r3, 0x23, 0x70bd27, 0x25dfdbfc, {}, [@MACSEC_ATTR_SA_CONFIG={0x18, 0x3, 0x0, 0x1, [@nested={0x5, 0x1, 0x0, 0x1, [@generic="03"]}, @typed={0xc, 0x8, 0x0, 0x0, @u64=0xfffffffffffffffe}]}, @MACSEC_ATTR_RXSC_CONFIG={0x4}, @MACSEC_ATTR_IFINDEX={0x8}]}, 0x38}, 0x1, 0x0, 0x0, 0x4008000}, 0x0) mmap$auto(0x7f, 0x82020009, 0x3, 0xeb1, 0xffffffffffffffff, 0xfff) connect$auto(0x3, 0x0, 0x10) unshare$auto(0x40000080) r4 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000100), 0x80840, 0x0) lseek$auto(r4, 0x0, 0x2) readv$auto(r4, &(0x7f0000000a80)={0x0, 0x5b54}, 0x1) r5 = getsockopt$auto(0xffffffffffffffff, 0x1, 0x4, &(0x7f0000000040)='/dev/cec27\x00', 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop5\x00', 0x60742, 0x0) close_range$auto(r5, r1, 0xffffffff) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) open(&(0x7f0000000100)='./cgroup\x00', 0x50800, 0x412) 757.892497ms ago: executing program 4 (id=2645): r0 = open(&(0x7f0000000080)='./file0\x00', 0x22ac2, 0x5d745cb200ae4d7b) msgctl$auto_IPC_RMID(0xb9, 0x0, &(0x7f00000000c0)={{0x92, 0xffffffffffffffff, 0x0, 0xffffffff, 0x7f, 0xfffffffb}, &(0x7f0000000000)=0x6, &(0x7f0000000040)=0xa, 0x100000000, 0x8000, 0xffffffffffffffff, 0xef0, 0x8, 0x1ff, 0x7, 0x6, @raw=0x7}) msgctl$auto_IPC_SET(0x0, 0x1, &(0x7f00000001c0)={{0x6, 0xee00, 0x0, 0xb, 0x8, 0x5, 0x4}, &(0x7f0000000140)=0x7, &(0x7f0000000180)=0x10, 0xd, 0x7, 0x5, 0x4, 0x1, 0x7fff, 0x8, 0x40, @inferred, @raw=0x8000}) fstat$auto(r0, &(0x7f0000000240)={0xf854, 0x1, 0x1, 0x4, r1, r2, 0x0, 0xa58, 0x7, 0x8, 0xff, 0x6, 0x5, 0x7fffffff, 0x497c1604, 0x3, 0x5}) fchown$auto(r0, 0xe5a, 0x5) 582.784258ms ago: executing program 4 (id=2646): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyya\x00', 0x30442, 0x0) ioctl$auto_TIOCSPGRP2(r0, 0x5410, &(0x7f0000000040)="569bef1baca73cb3c3e38bc0b89d88a7f78195600f5547673a3d6901f46b4c38b5c80e65f51c6464974b1c092daf0499521e5dad7762b5e6e3b79baff778b8bbfbe15b79ec") r1 = openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/bluetooth/hci1/rfkill6\x00', 0x1a080, 0x0) ioctl$auto_FS_IOC_GETFSLABEL(r1, 0x81009431, &(0x7f0000000100)="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") io_uring_register$auto(r1, 0x0, &(0x7f0000000200)="ed40edf8d2cc02dda227206d48d4e9eec8692da806357dff6012b18ea42a7554bacfb8f4e6d726cfc2a831f5367537ea8274010f1fb898406a39be3ba3922a5691b789a6ae762ee2d874380c94d37cfcef75f741388a34d26ce286d7ce8d61723822ee56c17a6df708b94d2b8c1b17155349e3cc156ee1e7069764a1d0c480c6d59b1e3dca6a03e294f7950c97c6e994fe2157e259587cc587d3309268c84bebcc4691e7fe0b5a49b2ef4ada15b84ebf38cc47cd224969cd7cee19d5a7d6aecb900e46d8c40331490c98a2402a8d05c7aed44a2f71541c9d590e7e45", 0x1) ioctl$auto_BTRFS_IOC_QGROUP_CREATE(r1, 0x4010942a, &(0x7f0000000300)={0x0, 0x4de}) r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000380), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x14, r2, 0x400, 0x70bd27, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x4000) r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000480)='/dev/bus/usb/003/001\x00', 0x0, 0x0) ioctl$auto_USBDEVFS_CLAIMINTERFACE(r3, 0x8004550f, &(0x7f00000004c0)=0x9) r4 = bpf$auto(0x1, &(0x7f0000000500)=@link_create={@map_fd=r1, @target_ifindex, 0x6, 0x800}, 0xe3eb) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000005c0), r5) write$auto(r0, &(0x7f0000000600)='{**}}$&\xfa\x00', 0x3) ioctl$auto_FS_IOC_ENABLE_VERITY(0xffffffffffffffff, 0x40806685, &(0x7f0000000640)={0x4, 0xa895, 0x7858, 0x7, 0x1, 0x8762, 0x0, 0x5}) r6 = openat$auto_gpiolib_fops_(0xffffffffffffff9c, &(0x7f00000006c0), 0x2000, 0x0) r7 = eventfd2$auto(0x8, 0x77) ioctl$auto_XFS_IOC_FSGEOMETRY_V1(r7, 0x80705864, &(0x7f0000000700)={0x10, 0x2, 0x8, 0x9e, 0x5, 0xbef, 0x401, 0x8, 0x3, 0x6, 0x3641446, 0x4, "6a23ab088566ad312013e778cd2d7c05", 0x5, 0x4a, 0x40000, 0x2, 0x3, 0x7f, 0x5}) openat$auto_regulator_summary_fops_(0xffffffffffffff9c, &(0x7f0000000780), 0x42d00, 0x0) waitid$auto_P_PID(0x1, 0x0, &(0x7f00000007c0)={@siginfo_0_0={0x6d5, 0xfffffffa, 0xff, @_sigchld={0x0, 0xffffffffffffffff, 0x2, 0xfffffffffffffff9}}}, 0x8, &(0x7f0000000840)={{0x4}, {0x49, 0x9}, 0x8, 0x9, 0x6, 0x8000000000000000, 0x7fffffffffffffff, 0x2, 0x8001, 0x9, 0x2, 0x8, 0xb481, 0x2, 0xfff, 0x9}) kcmp$auto_KCMP_EPOLL_TFD(r8, 0x0, 0x7, 0xffffffffffffffff, 0x22c2) ioctl$auto_SNDCTL_SEQ_THRESHOLD(r5, 0x4004510d, &(0x7f0000000900)="e6") epoll_wait$auto(r6, &(0x7f0000000940)={0x3, 0xb}, 0x8100000, 0x5) ioctl$auto_BLKTRACETEARDOWN(r5, 0x1276, 0x0) ioctl$auto_BTRFS_IOC_SUBVOL_SYNC_WAIT(r7, 0x40109441, &(0x7f0000000980)={0x6, 0x361f, 0x4}) r9 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000a00), r0) sendmsg$auto_NL80211_CMD_SET_KEY(r4, &(0x7f0000000ac0)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x34, r9, 0x300, 0x70bd25, 0x25dfdbfc, {}, [@NL80211_ATTR_BSS_DUMP_INCLUDE_USE_DATA={0x4}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0xac}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}, @NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x66a7}]}, 0x34}, 0x1, 0x0, 0x0, 0x885c1c7b78edccb1}, 0x0) setsockopt$auto_SO_BSDCOMPAT(r1, 0x2f8, 0xe, &(0x7f0000000b00)='&*\x00', 0x41) r10 = openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f0000000b40), 0x2000, 0x0) read$auto_vga_arb_device_fops_vgaarb(r10, &(0x7f0000000b80)=""/101, 0x65) getsockopt$auto_SO_PROTOCOL(r10, 0x6f9d, 0x26, &(0x7f0000000c00)='\x00', &(0x7f0000000c40)=0x200) 539.809552ms ago: executing program 5 (id=2647): r0 = socket(0x25, 0x1, 0x0) sendto$auto(r0, 0x0, 0x0, 0x0, 0x0, 0x3) r1 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000140), 0x180b03, 0x0) ioctl$auto_SNAPSHOT_ALLOC_SWAP_PAGE(r1, 0x80083314, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) fallocate$auto(r1, 0x1, 0x2, 0x6653) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x1, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x5, 0xd, 0x9, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x9, 0x80000001, 0x0, 0x1, 0x8, 0xffffffffffffffff, 0x1]}, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) ioctl$auto(0x3, 0x2287, 0xffffffffffffffff) socket(0x23, 0x80805, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) write$auto_proc_mem_operations_base(r3, &(0x7f0000001680)="a7", 0x80000) madvise$auto(0x0, 0x20200, 0x15) prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mremap$auto(0x1ff000, 0x100008, 0x843, 0x3, 0xfffff000) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/pagemap\x00', 0x2, 0x0) msgctl$auto(0x7, 0xa3, &(0x7f0000000240)={{0x8, 0xee00, 0xee01, 0x5, 0xa, 0x0, 0xfe01}, 0x0, 0x0, 0x6, 0xd, 0x6, 0x31f4, 0x51c, 0x3, 0x1, 0x3, @inferred=0xffffffffffffffff, @raw=0x8}) r4 = getpid() process_vm_readv$auto(r4, &(0x7f0000000000)={0x0, 0x1002}, 0x1, &(0x7f0000000280)={0x0, 0x401}, 0x6, 0x0) 400.921414ms ago: executing program 4 (id=2648): r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video3\x00', 0x2aa01, 0x0) socket(0x2, 0x2, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x482b01, 0x0) openat$auto_force_suspend_fops_hci_vhci(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/bluetooth/hci0/force_suspend\x00', 0x400002, 0x0) r1 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0) mmap$auto(0x0, 0x400008, 0xde, 0x9b72, r1, 0x8000) mmap$auto(0xa, 0xb0400000000001, 0x2, 0x8000000000000010, 0x1000000002, 0x8000) futex$auto(&(0x7f0000000080)=0x2948, 0x0, 0x2948, &(0x7f00000000c0)={0x225c17d03}, 0x0, 0x5) futex$auto(0x0, 0x5, 0x4, 0x0, &(0x7f0000000080)=0x9, 0x4000000) ioctl$auto_SNDRV_PCM_IOCTL_HW_PARAMS_OLD2(0xffffffffffffffff, 0xc1004111, 0x0) r2 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0040, 0x0) pread64$auto(r2, 0x0, 0x7ff, 0x400) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x5, 0x1, 0x0, 0x1, 0xfffffffffffffffd) mkdir$auto(&(0x7f0000000000)='}[,&*}\x00', 0xc001) mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x10001, 0x0) mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', 0x0, 0x44020, 0x0) select$auto(0xf, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x2d, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x7, 0x40, 0x3, 0x1, 0x9, 0x1, 0xffffffdffffffffe]}, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) unshare$auto(0x40000080) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/neigh/ipvlan1/retrans_time\x00', 0x242, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/clients\x00', 0x280, 0x0) socket(0xf, 0x3, 0x2) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0x1a, 0x5, 0xfffffffd) mq_getsetattr$auto(r0, &(0x7f00000000c0)={0x18a65f3b, 0x4, 0x0, 0xbaa}, &(0x7f0000000100)={0xf5, 0x4000000000004, 0x5, 0x9}) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x20000000001ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x6, 0xfffffffffffffffd, 0x10001, 0xaa9, 0x7ffffffd, 0x3, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffa]}, 0x0) write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) 201.725707ms ago: executing program 1 (id=2650): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x0) r0 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_marker_raw\x00', 0xc05, 0x0) writev$auto(r1, &(0x7f0000000140)={0x0, 0x6}, 0x4) getsockopt$auto_SO_NETNS_COOKIE(r0, 0x8, 0x47, &(0x7f0000000300)='*]\x00', &(0x7f0000000340)=0xb4) sysfs$auto(0x2, 0xe, 0x0) mkdir$auto(0x0, 0x9) fcntl$auto(0x3, 0x8, 0x9ebfffffffffffff) timer_create$auto(0x3, 0x0, &(0x7f0000000380)=0x6) exit$auto(0x2) timer_settime$auto(0x0, 0x100, &(0x7f0000000200)={{0x3, 0x10007}, {0x9}}, 0x0) unshare$auto(0x40000080) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/cpu/smt/control\x00', 0x2ab42, 0x0) sendfile$auto(r2, r2, 0x0, 0x4f64a1d2) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r3 = socket(0x11, 0xa, 0x81) madvise$auto(0x9, 0x3, 0x1000) mmap$auto(0x0, 0x80000001, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r4 = openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/attr/current\x00', 0x8002, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_PROBE_CLIENT(r5, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0c009900f300000001000000"], 0x20}, 0x1, 0x0, 0x0, 0x26044000}, 0x48000) write$auto_proc_pid_attr_operations_base(r4, &(0x7f0000001240)="9d21d84deb9de6767364146595a8557089fe27b4795bf3db82d7739fbc8af9e6f4f90c4841e2f848d263bd0ff57a35e24d3cda8ec4e7eef1c29ab7f7f289c090e51acdd624c06e3ed6092ece468a2919950789f01b5a3b525575fe5ee5e5a23f76155627910e1b9d3f3b08f36c99df7bd9c0eea72f90b599b4bbf5237723f4a63e613c268907034101518a92d72111b08564a9ed05cf48ecd5fd76ea0377897e058af4e6b67760055918e78e9267e5de26d0b45d1f7d435a91c2d59157029b881aa8fc9f7d229689392cc65cd7b2650d07a888202c", 0xd5) r6 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) ioctl$auto_TIOCSBRK(r6, 0x5427, 0x0) getsockopt$auto(r3, 0x84, 0x7d, 0x0, &(0x7f0000000040)=0x9b) fcntl$auto_F_GETOWN(r0, 0x9, 0x0) 0s ago: executing program 2 (id=2651): mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0x4400000000df, 0xc157, 0x101000000000000, 0x7) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) socket(0x2, 0x1, 0x0) (async) epoll_create$auto(0x4) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x80000, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000000c0)={[0x1ff, 0x8, 0x11, 0x1, 0x948b, 0x9, 0x15f4da09, 0x20000000a, 0x3, 0x3, 0x80000001, 0x7, 0x6d3f, 0x8009, 0x2, 0x8000]}, 0x0) (async) ioctl$auto_XFS_IOC_ATTRMULTI_BY_HANDLE(r0, 0x4048587b, &(0x7f00000005c0)={{0xffffffffffffffff, &(0x7f0000000400), 0x3, 0x0, 0x0, 0x0, &(0x7f0000000280)=0x2}, 0x5a, &(0x7f0000000580)={0x9, 0x7, &(0x7f0000000880)="315b06ef34a097bb569c38083114e9597ee8f55cdcf624803bf63be79afc0228be8931bf65ee9f01020731c0ca92e0d37dafb31c3883082df773c1b6c4762f7c75805ef472cbba882fc8ead4e7256dc93db6918a7876b405683041080e9e9e53959281dd519ad5cf7fcc66f11c22aeae3d3e6a063311a00c312a7762c54f51b745f383aa215878ef5baace1ce3fe78d7697ad39de4ae854357448623495ec382a6fdb79d10db2a61982d8b94412881ce625de923f58c435bb27e27ebc1934048fa9939f2d894219ff05a14609ccc4c7a43eab8203a37fdb4338329bc700d964d6600540c265c66390c402537a145e17131769ef76af7454cb4cd842bbcee9dd47464cdefa20a6181b852fdf53090bcabbe117c6a94b6d7803aeaeb8191999c11149eb7e37ca0c5ef3f0f0f9630931a6663640656fb1d7165a3c1a3144f048cc64ba58f280b4129132ef87d452e37bb7207f82ff374b6ff0ef5d13b5eba4f721bef8f0eb729beb848554492fe7e6b83f608924dfb2830bd21fa17ba34cbe66e13db5ae3967969962c0cb9c252c0f454a3db16694938492f87df832b95d796e10b347c810bde1ad5f107c30c18a590017ed5390bfd1973772152bf911f4ecf2158a41b4b188939e008bbab7867773094278516c017948ce52882bce75c0ae7a75b0350ee711156e51e165d0cc9ce16ad9699192715364693cdcbd78391e317c3053557d8830a977f4c7f60e86d59a81bc70ca938b5fdc68b5c1ae488d1fdbbaacdd1e5b201ecf4c9efcc87bf4a25c7bd7d37ad1fb10b754bcdce34e11533a9349acb2ba313641d0a5d88c8a6f7e41eb307c695cf068f2aec630dd67392a50c4aeccd0de864940b7255ab2dd96d72a4a8f004e4eceaae4e3ff43e912c2dfa819342803952b3eac831bf292cd785c6abbaecc28e761c1982978d9fce7086c8f071c9233a0adc14f3d25f50c95813ba455f1ec1c506fa8292203e2248cb1ab744e4961156165d97ee42f7edb9b1ad41fd7e5f960e227f2a29461132320d3db7c8e7da1a08c0e2700d7c41d351d9ca5b83bf11d5d7edd31f969a3d629d8056289198549350b637f160a82cfb566cc5ba64e625631f7ace0f4ef232caa64ca90099f11660459c104a1e657cb72f44259e4936eeb78a06ec39e9a8fd72f5443057bb15237d8cba460e72ae570ef36c825b151b661069230d0baa6abe2a0cf462e581f2286c94847211f1aca5b50acba32261b809fe4a787d1a6b8bad3f96ae6a070eb6bd8fbbc7698b733d7e034e275cc014e7f7a786904dd15c2ed581cc4126895372059251b6815d4295c6861d149ebe836278c2532d7f921301c7318b2813622d614eadd07d30b83ada7583b5464a863a3bec285f523f8e54103d0fa7ee7c94b01059b97aa59be8c05553cbf584ce320b6cc3f08452f92c9f955bc5ffe6b1613c8ef48d57e2cceef588a1006fb626e629106e8d9f4dcfab6981fbec8c76ba95dbbc8b40af380308f056addd430ec3da95c1772c215d309c3047e8399e8b4f0d46a5393fa6fb18431f07bf5b7ebf12460551ae3ca4a1f08ca1407a2f91844f9a1e1b50bde9ec2da48af6e91e127a4d0b0149ffd2a44a81389d4ec7893edcc95fcd2e89efb04c6471e45b5834ffe1d332c48cee6aae6cd3ded6410cb3e4645b06f5afb2234a9af56bdbb9b69d28c425453d5b389a615846ab4aa5a29cfaafb9ab08703086aab7c28a0469adf40af99ab80b1e65339aba2c7ef82e1907afe241cb1a7dbb267b123c07c0143969e62cb5284e9cd3e72f96be1d804ef5223c7b4dbfa3d490fdfb6066ecfefee5251e12a1f6c15b50ba9351645e0e33aaeacb8a6d6bcac022c5a4fde4beee606fb49d3ab8b7133b529a622e622d4e0189e0eb81c58cc26fdb80ed04cd3e18711a391269e7d2cc577b112d791bafdd5c6a5ddcd4e7a4df5ae5fef2dc925135ce3bd19b573fb380437e6f38b7fb7b97bdc1906abc7be7fd18aa456eb494a09d1905f6ce637a1295bce614f69d854e19e2cd4d792f398e48e8097a25f47a468d2e4fff1f66bf70215bc01b4658a59fd599e4c2918baaa63866c7cd1ed3693757ef5bad689dd21a63116f7bfe27d22e16b1a943a37500a96ec8ad20fb03469fbc7632682f0ca356b3112442b7c8e39935959606aa0db6089a542e249db0f401b346d51236da39d1211b96e32b7af37aeec630704e3175cf5810092037c30a9f3984b660311510a8a6b7e98117e38b39cf2b6f16a21ace68c86cf5cc3ffd172282a2cd7e65b9b3d0f8865f60d2e6306dd374371a20c4ca2360c1e4d2f3f96810387e5dd91303bb11b44de8854cc287fbd330bac84855ec1b6f0b832da73bbfebd2459a049e2d9710a87444cba39e51c4e78553a3821e70c0b8cefc8c0f0ee0a455d93e4c0c8b763fe0f624ae1b15811c87085de1846e01dd8b7219aa0873fc3096bfb8f73cdf97acef38386b17a00c06851e79998931fc9f49ed0120c76398b7896ee6a92477a8c5355c335c8dcee21de0c82a16cc8b12980666346eddac33be52eb32bfcbd053f463d3ef907ce45c3ea756e3cfc1ef85424152a2419bee05f8e49bbb3a69e8e980edbd43a3db634202ce538b664272e12a2562de649354eb4b4e0995564357431d059b542463fd1b977177c409f9b27856a488845bc039d32f6cb89a552cc2ba8c7fb07b782458587644e2692863816e86d1d7128c823181755c42e45702000dff56c2a5e65c0a680eed5b26858563ba597f84f432cf70dc6a3502bf650d69f03d1833df29062bbebd01c0361a21f42f5599c6f5178aad67b6eac3d9f938c32281200ae1516103ef94ed574f22b3b8c694c4997da620ab40a9208a1548fd0444925c2f01f7bd4db1b29956bb5fd85e05f0ad3fd6585108156f4b2fc74a7d8cfc34f4c7827ac6824c085836aec44a75778b5a2aa00e64e61bb42e03034c6d930ae954b1cda1686d1c1baa8edf5eb06a9258499bde3ea62203fe7900bbbb72e5c9953b4aa4952c77ed20e0e4103f63f960dd7134c0f1d557ffcede468afae433839a723a6cafd5b4b4c1f59c29e887a191139c88d1b33b2ff792fafa429a3e732a143dba582a700e6a51a1cb598672d169d66c4b8fe4e4732debb0bbd98b3f3833b2dfdee4c61800ddafdf6d1cdf2ad88d51fefc05d3236e3bf63c5e994a1ddc05e4a3824b41da12a93ae6a58b214f25de928da438898d21efc1da885bed504ac86e0909652145716f282f732e97666dc5fc6159bb11059df2078cd7a3c8eb4f9de6e7d2edf26ed3249c77a9104cb97e6987a60d718aeec3b3e2c8102eeba3e22167c39296b8ae70eca1d2a79c8d7e6a3353d755d195040124a589903703d5592fc8b47cf76b0d883fe4c7a4178846857ed0fb70b881425f36400c13a3db0fb6eec3b161c53dd63296a724c2154bea6a75c5ed147b079edaac985db0d793d170227ed0df2bac177e32c6e58660850d209e4f761b1eec7e5b59b85a36219ddeb5ef6f71c070f3e2ff0b9e6375c4d33db78fd73b6339a5ffec2f4a687ac249a1e5640c0279752a2c7be47fd8a587fdcc8c63d6bcb60fce735c87057dcbfc8e225c253455338b9494f52fdd1d000de1500aa447f2fd3b359121dca52befd93b0156abdd2f4182c13cc35bf3c7c3f2c4bc1ba437acdcea789fd5890f5f51a2490fdb008a92885fd38ede58a1391732e1a36a76e5004138b663ef1a0c2be8ef9992c2fc9082d84c8ee2b6b4befc45f01061db49dc078bd5497322f88b148fee941443b972977eea7f048e688e76bad8ee51864248ee526f2923f1e6c4aa280e82dff453c976bab6e475baf557263c0e88fd63c96c1aae1ed2ce1a7dabc6a142d36bd6b6d9991bb14b636c7c3a9d6b7685973e9361a431b2464ae2ceeae4ed70a906c0510212a7130f59b3ae24e6916349eb33f80095d32cb059230dde7a1b40c671f6a1a19114e07fdcddad29d0d7516f608c339180e4177008c1e1e098f68b4c1a84bd8326d6c454356fd1bc1248ce03138ea8a9da3514a52f78ba9752610d10a1c10048b9f81ec48a481070b4eb73f16eed6d8d2fca11ecf47ea032299504832c6bd880ee66637e28d31849805a7f560757be5de93eea522cd4bd41969f0ddb5fffc130aef57d431c98bf703525dba7137ecb60800908d942b871319ea4a67cd073ed06da840a1d990f92b96c47b68cec13472a1e4850bae69a5f7fe85d40e4e12c2b7ee9121a2b5b0eff4450dd2a8959e9a7b14a529df3ab99ac884e4046853c850244c2696e8878e189f2acfa395a137b853e178eaeb1e9064c0bd4bd2434ba0eb2c8e0c080442f8be9f365dba14de70f4617bdb0005fdb3696085ff2742f244ffba451f0d7fa6f145f44555dc9c804a95bf8e7607cc44065b93a36d59170e8789baa234f5f402114f8923dd95ed99c0598bcffc8c79120124e8d3bb179964e9322c3c0bb5fa5e2235bbd333776558dd0b3cb7e2a9cf49f04794338599581acb234ee9e6bff271687c884048864caf604366e0d996d1d19a5a81ec1d76eea8313095de8dfdc97b79a59ab48d18649e64759ee48133b6e0db41cbea15ce1484fe9a3ca036bd733709b585bc5d86da2c02a09330abe5b8e4e549913d43e723fcc125c3e3035d1a18214282343262f980c7ecdf0963192927a5ea5341bbb7d184f6644fcf9cd72236bdf5e7248e3452298837acc77fe934f5eac37b094a7ae0c249de8e0336efb64cb58703373d5780b6db8b09fd6043722dc3efe4432c606d08956ab6e9ffa6fd678ee89a0cc9a1e7ca4e078307e5000b9642ef373ae7ea0cfd03da62ad0df48a46fce3b1f648d20da228124a2a7d82b6867c303f4b3bf8490d94a54d9a2427ed26471c18c8b075da90f545c0e23b3112fa0d01f1ae61299068cf64cef672b5df86629165d0a35c9dcd8f1a03928f9ccd01557cd83404d54b3b5bfc74855ab91634225fe9c1821b2e89f0e468c08eebd03082edceffbd3b4cda1825bb829870277270dc4ce38afe685bd9772dd47390e1459f445c6c8e9a2ff0bfa84a875a14e2ca20c18127bd148692b969163444a8759bdcb5f46d088c8264ec40263de922aef5e5ef0888dbe3007f6cb4f3332d062a7fe77e1bf74ba5bb49070fc7209458caf036630ab3e6b201a4b0f95c2fc4dac59dcc4fa5e5df0cfd98b56a959f1fe942f454e21584e4fcb87de165563dad13f24da05d69b11d8bd45291e2676937fd39b7cc60859527d87893a35433b391e07be371eacf7611d784522abff7f5d83f4324399635df444ec350b25b24bb82fbd7e0bb4b7520e84cb1870fab461f5879faef4711501bbb7a2e283688a4572f19f3168bb6837f6aea25f9bd4fce5f80715d38ad0b3e078609dabd1d8f0685197a51b1dcf2c86a6a69a6a98c7f45abd24d0c6afb39f8d974e33894664e9ccbcb10f5ce0becbb96f5c1a9752cf6094ce1b7df8f41627241f3e2b885158f70c2239207843f871c5c7fffdfc1a520a7f680472e4bb269b25e5a35268335d6193a39bd7060ea99a4c66bb846f80900b8f906f7118383b374342a313675c05222158854ef3db7dfeb600fd5cf024c7f689d1d6360b7c4b384a7089e32bfddabefd7bcaa2afd97a0a3a1f594d11dfe6a3e236a8f47fadc1be7892809a1c269bdc7dd05e3d5961360c11db9514bc73b14f832b01d32c4d47d31be02f5eee9a959d5c3920ef0772f866c8c03f487c2dd7", 0x0, 0x1, 0xce7}}) (async) mmap$auto(0x0, 0x8, 0x3, 0x9b72, 0x2, 0x8000) (async) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) (async) capget$auto(0x0, 0x0) r1 = signalfd$auto(0xffffffffffffffff, &(0x7f0000000000)={0x9}, 0x3) (async) mmap$auto(0x0, 0x7f, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x15, 0x5, 0x0) (async) openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/input/mice\x00', 0x22002, 0x0) (async) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) write$auto(0x3, 0x0, 0x70) syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff) (async) read$auto_uprobe_events_ops_trace_uprobe(r1, &(0x7f0000000400)=""/180, 0xb4) sendmsg$auto_L2TP_CMD_SESSION_GET(r1, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x11}, 0x1000) (async) bpf$auto_BPF_BTF_LOAD(0x12, &(0x7f0000000340)=@bpf_attr_11={0x5, 0xffffffff, 0x7fe, 0x4, 0x7, 0xf, 0xa, r0}, 0xf) (async) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) (async) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) kernel console output (not intermixed with test programs): g paused [ 637.565944][T13820] bridge0: port 3(bond0) entered blocking state [ 637.588652][T13820] bridge0: port 3(bond0) entered disabled state [ 637.595200][T13820] bond0: entered allmulticast mode [ 637.816990][T13820] bond_slave_0: entered allmulticast mode [ 637.830273][T13820] bond_slave_1: entered allmulticast mode [ 637.857346][T13820] bond0: entered promiscuous mode [ 637.926519][T13820] bond_slave_0: entered promiscuous mode [ 637.936004][T13820] bond_slave_1: entered promiscuous mode [ 638.006470][T13820] bridge0: port 3(bond0) entered blocking state [ 638.012951][T13820] bridge0: port 3(bond0) entered forwarding state [ 639.145647][T13839] tipc: Started in network mode [ 639.150676][T13839] tipc: Node identity ffffffff, cluster identity 4711 [ 639.186384][T13839] tipc: Node number set to 4294967295 [ 640.421816][T13860] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma? [ 642.702930][T13905] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1576'. [ 643.604752][T13916] netlink: 'syz.5.1577': attribute type 1 has an invalid length. [ 645.818837][T13955] FAULT_INJECTION: forcing a failure. [ 645.818837][T13955] name failslab, interval 1, probability 0, space 0, times 0 [ 645.832153][T13955] CPU: 0 UID: 0 PID: 13955 Comm: syz.2.1586 Not tainted syzkaller #0 PREEMPT(full) [ 645.832211][T13955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 645.832232][T13955] Call Trace: [ 645.832243][T13955] [ 645.832256][T13955] dump_stack_lvl+0x16c/0x1f0 [ 645.832303][T13955] should_fail_ex+0x512/0x640 [ 645.832344][T13955] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 645.832385][T13955] should_failslab+0xc2/0x120 [ 645.832429][T13955] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 645.832463][T13955] ? set_normalized_timespec64+0x69/0xc0 [ 645.832506][T13955] ? __d_alloc+0x32/0xae0 [ 645.832552][T13955] ? __d_alloc+0x32/0xae0 [ 645.832587][T13955] __d_alloc+0x32/0xae0 [ 645.832631][T13955] d_alloc_pseudo+0x1c/0xc0 [ 645.832678][T13955] alloc_file_pseudo+0xcf/0x230 [ 645.832727][T13955] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 645.832777][T13955] ? hugetlbfs_get_inode+0x31f/0x730 [ 645.832820][T13955] hugetlb_file_setup+0x4ce/0x620 [ 645.832861][T13955] ksys_mmap_pgoff+0x189/0x5c0 [ 645.832910][T13955] __x64_sys_mmap+0x125/0x190 [ 645.832966][T13955] do_syscall_64+0xcd/0xfa0 [ 645.833007][T13955] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 645.833041][T13955] RIP: 0033:0x7f5eecb8eec9 [ 645.833067][T13955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 645.833101][T13955] RSP: 002b:00007f5eeda0b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 645.833134][T13955] RAX: ffffffffffffffda RBX: 00007f5eecde5fa0 RCX: 00007f5eecb8eec9 [ 645.833157][T13955] RDX: 00004000000000e3 RSI: 0000000000200004 RDI: 0000000000000000 [ 645.833189][T13955] RBP: 00007f5eecc11f91 R08: 000000000000000d R09: 0000300000000000 [ 645.833211][T13955] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000 [ 645.833231][T13955] R13: 00007f5eecde6038 R14: 00007f5eecde5fa0 R15: 00007ffeb47cf248 [ 645.833276][T13955] [ 646.405444][T13952] netlink: 36332 bytes leftover after parsing attributes in process `syz.5.1592'. [ 650.507561][T14039] netlink: 36332 bytes leftover after parsing attributes in process `syz.4.1598'. [ 652.074235][T14049] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 652.111506][T14049] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 652.141788][T14049] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 652.184809][T14049] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 653.176470][T13457] Bluetooth: hci0: command 0x0c1a tx timeout [ 654.126803][T13457] Bluetooth: hci3: command 0x0c1a tx timeout [ 654.216321][T13457] Bluetooth: hci1: command 0x0c1a tx timeout [ 654.222465][T13781] Bluetooth: hci4: command 0x0c1a tx timeout [ 654.405911][T14099] netlink: 36332 bytes leftover after parsing attributes in process `syz.2.1610'. [ 655.318415][T13781] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18 [ 656.062396][T14151] __vm_enough_memory: pid: 14151, comm: syz.1.1618, bytes: 4398046511104 not enough memory for the allocation [ 656.146950][T14151] __vm_enough_memory: pid: 14151, comm: syz.1.1618, bytes: 4398046511104 not enough memory for the allocation [ 657.000324][T14164] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1619'. [ 657.406938][T13781] Bluetooth: hci4: command 0x0c1a tx timeout [ 658.163942][T14191] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1625'. [ 658.185516][T14191] veth0_macvtap: left promiscuous mode [ 658.211941][T14191] macvtap0: entered promiscuous mode [ 658.228228][T14191] macvtap0: entered allmulticast mode [ 658.496304][T14202] netlink: 'syz.5.1628': attribute type 16 has an invalid length. [ 658.496337][T14202] netlink: 'syz.5.1628': attribute type 17 has an invalid length. [ 658.496360][T14202] netlink: 'syz.5.1628': attribute type 19 has an invalid length. [ 658.496385][T14202] netlink: 'syz.5.1628': attribute type 27 has an invalid length. [ 658.496407][T14202] netlink: 'syz.5.1628': attribute type 28 has an invalid length. [ 658.496428][T14202] netlink: 'syz.5.1628': attribute type 29 has an invalid length. [ 658.496450][T14202] netlink: 'syz.5.1628': attribute type 30 has an invalid length. [ 658.496470][T14202] netlink: 'syz.5.1628': attribute type 31 has an invalid length. [ 658.496491][T14202] netlink: 2 bytes leftover after parsing attributes in process `syz.5.1628'. [ 659.424554][T14221] misc userio: The device must be registered before sending interrupts [ 662.009243][T14272] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1642'. [ 662.053442][T14272] veth0_macvtap: left promiscuous mode [ 662.065174][T14272] macvtap0: entered promiscuous mode [ 662.065207][T14272] macvtap0: entered allmulticast mode [ 663.626073][T13781] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 664.721571][T14314] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1652'. [ 664.761421][T14314] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE r҄y*"l-y–L̓]' [ 664.787834][T14293] Process accounting paused [ 664.811941][T14314] CPU: 1 UID: 0 PID: 14314 Comm: syz.4.1652 Not tainted syzkaller #0 PREEMPT(full) [ 664.811981][T14314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 664.811996][T14314] Call Trace: [ 664.812004][T14314] [ 664.812013][T14314] dump_stack_lvl+0x16c/0x1f0 [ 664.812046][T14314] sysfs_warn_dup+0x7f/0xa0 [ 664.812076][T14314] sysfs_do_create_link_sd+0x124/0x140 [ 664.812109][T14314] sysfs_create_link+0x61/0xc0 [ 664.812138][T14314] device_add+0x62c/0x1aa0 [ 664.812173][T14314] ? __pfx_device_add+0x10/0x10 [ 664.812201][T14314] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 664.812244][T14314] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 664.812279][T14314] wiphy_register+0x1eb0/0x2b20 [ 664.812312][T14314] ? netdev_run_todo+0x864/0x1320 [ 664.812351][T14314] ? __pfx_wiphy_register+0x10/0x10 [ 664.812401][T14314] ieee80211_register_hw+0x253d/0x4120 [ 664.812446][T14314] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 664.812479][T14314] ? __pfx___debug_object_init+0x10/0x10 [ 664.812507][T14314] ? find_held_lock+0x2b/0x80 [ 664.812533][T14314] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 664.812574][T14314] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 664.812599][T14314] ? __hrtimer_setup+0x176/0x280 [ 664.812640][T14314] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 664.812695][T14314] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 664.812733][T14314] ? __asan_memcpy+0x3c/0x60 [ 664.812762][T14314] hwsim_new_radio_nl+0xba2/0x1330 [ 664.812800][T14314] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 664.812845][T14314] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 664.812883][T14314] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 664.812927][T14314] genl_family_rcv_msg_doit+0x209/0x2f0 [ 664.812965][T14314] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 664.813017][T14314] ? bpf_lsm_capable+0x9/0x10 [ 664.813049][T14314] ? security_capable+0x7e/0x260 [ 664.813082][T14314] ? ns_capable+0xd7/0x110 [ 664.813112][T14314] genl_rcv_msg+0x55c/0x800 [ 664.813150][T14314] ? __pfx_genl_rcv_msg+0x10/0x10 [ 664.813186][T14314] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 664.813232][T14314] netlink_rcv_skb+0x158/0x420 [ 664.813262][T14314] ? __pfx_genl_rcv_msg+0x10/0x10 [ 664.813298][T14314] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 664.813342][T14314] ? netlink_deliver_tap+0x1ae/0xd30 [ 664.813375][T14314] genl_rcv+0x28/0x40 [ 664.813405][T14314] netlink_unicast+0x5a7/0x870 [ 664.813440][T14314] ? __pfx_netlink_unicast+0x10/0x10 [ 664.813469][T14314] ? __pfx___might_resched+0x10/0x10 [ 664.813494][T14314] ? __lock_acquire+0xb97/0x1ce0 [ 664.813536][T14314] netlink_sendmsg+0x8c8/0xdd0 [ 664.813571][T14314] ? __pfx_netlink_sendmsg+0x10/0x10 [ 664.813606][T14314] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 664.813644][T14314] ____sys_sendmsg+0xa98/0xc70 [ 664.813681][T14314] ? copy_msghdr_from_user+0x10a/0x160 [ 664.813709][T14314] ? __pfx_____sys_sendmsg+0x10/0x10 [ 664.813752][T14314] ? __pfx_futex_wake_mark+0x10/0x10 [ 664.813795][T14314] ___sys_sendmsg+0x134/0x1d0 [ 664.813825][T14314] ? __pfx____sys_sendmsg+0x10/0x10 [ 664.813894][T14314] __sys_sendmsg+0x16d/0x220 [ 664.813923][T14314] ? __pfx___sys_sendmsg+0x10/0x10 [ 664.813950][T14314] ? __x64_sys_futex+0x1e0/0x4c0 [ 664.814010][T14314] do_syscall_64+0xcd/0xfa0 [ 664.814040][T14314] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 664.814066][T14314] RIP: 0033:0x7f42dc58eec9 [ 664.814085][T14314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 664.814110][T14314] RSP: 002b:00007f42dd343038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 664.814133][T14314] RAX: ffffffffffffffda RBX: 00007f42dc7e5fa0 RCX: 00007f42dc58eec9 [ 664.814148][T14314] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000006 [ 664.814163][T14314] RBP: 00007f42dc611f91 R08: 0000000000000000 R09: 0000000000000000 [ 664.814177][T14314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 664.814191][T14314] R13: 00007f42dc7e6038 R14: 00007f42dc7e5fa0 R15: 00007fffb24b1658 [ 664.814224][T14314] [ 665.649374][T13781] Bluetooth: hci0: command 0x0c1a tx timeout [ 665.807053][T14327] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1655'. [ 665.862604][T14327] veth0_macvtap: left promiscuous mode [ 665.880454][T14327] macvtap0: entered promiscuous mode [ 665.885948][T14327] macvtap0: entered allmulticast mode [ 665.968637][ T31] audit: type=1326 audit(4294986679.020:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14331 comm="syz.1.1656" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0b0eb8eec9 code=0x0 [ 666.929025][T14344] RDS: rds_bind could not find a transport for ::ffff:172.20.20.253, load rds_tcp or rds_rdma? [ 667.828484][T14338] Process accounting resumed [ 668.504146][T13781] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 668.863184][T14357] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1661'. [ 669.719165][T14357] bond0: entered allmulticast mode [ 669.725782][T14357] bond_slave_0: entered allmulticast mode [ 669.741480][T14357] bond_slave_1: entered allmulticast mode [ 670.356088][T14396] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1666'. [ 670.363332][T14395] Invalid ELF header magic: != ELF [ 670.456446][T14396] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE r҄y*"l-y–L̓]' [ 670.531948][T13457] Bluetooth: hci1: command 0x0c1a tx timeout [ 670.592422][T14396] CPU: 0 UID: 0 PID: 14396 Comm: syz.1.1666 Not tainted syzkaller #0 PREEMPT(full) [ 670.592471][T14396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 670.592491][T14396] Call Trace: [ 670.592502][T14396] [ 670.592515][T14396] dump_stack_lvl+0x16c/0x1f0 [ 670.592559][T14396] sysfs_warn_dup+0x7f/0xa0 [ 670.592601][T14396] sysfs_do_create_link_sd+0x124/0x140 [ 670.592647][T14396] sysfs_create_link+0x61/0xc0 [ 670.592690][T14396] device_add+0x62c/0x1aa0 [ 670.592739][T14396] ? __pfx_device_add+0x10/0x10 [ 670.592780][T14396] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 670.592841][T14396] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 670.592892][T14396] wiphy_register+0x1eb0/0x2b20 [ 670.592936][T14396] ? netdev_run_todo+0x864/0x1320 [ 670.592992][T14396] ? __pfx_wiphy_register+0x10/0x10 [ 670.593065][T14396] ieee80211_register_hw+0x253d/0x4120 [ 670.593135][T14396] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 670.593183][T14396] ? __pfx___debug_object_init+0x10/0x10 [ 670.593225][T14396] ? find_held_lock+0x2b/0x80 [ 670.593262][T14396] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 670.593334][T14396] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 670.593371][T14396] ? __hrtimer_setup+0x176/0x280 [ 670.593428][T14396] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 670.593506][T14396] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 670.593563][T14396] ? __asan_memcpy+0x3c/0x60 [ 670.593607][T14396] hwsim_new_radio_nl+0xba2/0x1330 [ 670.593663][T14396] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 670.593729][T14396] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 670.593783][T14396] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 670.593845][T14396] genl_family_rcv_msg_doit+0x209/0x2f0 [ 670.593901][T14396] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 670.593966][T14396] ? bpf_lsm_capable+0x9/0x10 [ 670.594010][T14396] ? security_capable+0x7e/0x260 [ 670.594057][T14396] ? ns_capable+0xd7/0x110 [ 670.594098][T14396] genl_rcv_msg+0x55c/0x800 [ 670.594153][T14396] ? __pfx_genl_rcv_msg+0x10/0x10 [ 670.594205][T14396] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 670.594271][T14396] netlink_rcv_skb+0x158/0x420 [ 670.594322][T14396] ? __pfx_genl_rcv_msg+0x10/0x10 [ 670.594375][T14396] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 670.594440][T14396] ? netlink_deliver_tap+0x1ae/0xd30 [ 670.594489][T14396] genl_rcv+0x28/0x40 [ 670.594531][T14396] netlink_unicast+0x5a7/0x870 [ 670.594592][T14396] ? __pfx_netlink_unicast+0x10/0x10 [ 670.594654][T14396] netlink_sendmsg+0x8c8/0xdd0 [ 670.594708][T14396] ? __pfx_netlink_sendmsg+0x10/0x10 [ 670.594759][T14396] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 670.594816][T14396] ____sys_sendmsg+0xa98/0xc70 [ 670.594869][T14396] ? copy_msghdr_from_user+0x10a/0x160 [ 670.594909][T14396] ? __pfx_____sys_sendmsg+0x10/0x10 [ 670.594970][T14396] ? __pfx_futex_wake_mark+0x10/0x10 [ 670.595032][T14396] ___sys_sendmsg+0x134/0x1d0 [ 670.595076][T14396] ? __pfx____sys_sendmsg+0x10/0x10 [ 670.595177][T14396] __sys_sendmsg+0x16d/0x220 [ 670.595218][T14396] ? __pfx___sys_sendmsg+0x10/0x10 [ 670.595258][T14396] ? __x64_sys_futex+0x1e0/0x4c0 [ 670.595341][T14396] do_syscall_64+0xcd/0xfa0 [ 670.595386][T14396] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 670.595421][T14396] RIP: 0033:0x7f0b0eb8eec9 [ 670.595449][T14396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 670.595483][T14396] RSP: 002b:00007f0b0f97f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 670.595517][T14396] RAX: ffffffffffffffda RBX: 00007f0b0ede5fa0 RCX: 00007f0b0eb8eec9 [ 670.595541][T14396] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000006 [ 670.595562][T14396] RBP: 00007f0b0ec11f91 R08: 0000000000000000 R09: 0000000000000000 [ 670.595583][T14396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 670.595603][T14396] R13: 00007f0b0ede6038 R14: 00007f0b0ede5fa0 R15: 00007ffd1faa4bb8 [ 670.595650][T14396] [ 674.366000][T14467] bond0: option all_slaves_active: invalid value () [ 674.918816][T14485] nbd: must specify an index to disconnect [ 675.795158][T14488] openvswitch: netlink: Geneve option length err (len 256, max 255). [ 675.937297][T14486] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 676.162394][T14486] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 676.556819][T14486] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 677.011008][T14486] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 679.047177][T14539] FAULT_INJECTION: forcing a failure. [ 679.047177][T14539] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 679.100501][T14539] CPU: 0 UID: 0 PID: 14539 Comm: syz.4.1696 Not tainted syzkaller #0 PREEMPT(full) [ 679.100542][T14539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 679.100560][T14539] Call Trace: [ 679.100570][T14539] [ 679.100582][T14539] dump_stack_lvl+0x16c/0x1f0 [ 679.100623][T14539] should_fail_ex+0x512/0x640 [ 679.100668][T14539] _copy_from_user+0x2e/0xd0 [ 679.100706][T14539] get_timespec64+0x8b/0x1b0 [ 679.100742][T14539] ? __pfx_get_timespec64+0x10/0x10 [ 679.100781][T14539] ? common_nsleep+0xa1/0xd0 [ 679.100821][T14539] __x64_sys_clock_nanosleep+0x1ce/0x4a0 [ 679.100854][T14539] ? __pfx___x64_sys_clock_nanosleep+0x10/0x10 [ 679.100895][T14539] do_syscall_64+0xcd/0xfa0 [ 679.100930][T14539] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 679.100959][T14539] RIP: 0033:0x7f42dc5c1785 [ 679.100981][T14539] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 54 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f 55 ff ff 48 8b 04 24 48 83 c4 28 f7 d8 [ 679.101008][T14539] RSP: 002b:00007fffb24b1750 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 679.101036][T14539] RAX: ffffffffffffffda RBX: 00007f42dc7e5fa0 RCX: 00007f42dc5c1785 [ 679.101054][T14539] RDX: 00007fffb24b1790 RSI: 0000000000000000 RDI: 0000000000000000 [ 679.101070][T14539] RBP: 00007f42dc7e7da0 R08: 0000000000000000 R09: 00007f42dd344000 [ 679.101087][T14539] R10: 0000000000000000 R11: 0000000000000293 R12: 00000000000a5dd3 [ 679.101102][T14539] R13: 00007f42dc7e6090 R14: ffffffffffffffff R15: 00007fffb24b18d0 [ 679.101146][T14539] getty: ttyS0: read error: Resource temporarily unavailable [ 679.892631][T14571] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1703'. [ 680.039359][T14571] debugfs: '!PjE r҄y*"l-y–L̓]' already exists in 'ieee80211' [ 681.648282][T14580] delete_channel: no stack [ 682.718342][T14609] aoe: could not set interface list: too many interfaces [ 682.747223][T14609] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1712'. [ 685.437638][T14666] FAULT_INJECTION: forcing a failure. [ 685.437638][T14666] name fail_futex, interval 1, probability 0, space 0, times 0 [ 685.503405][T14666] CPU: 1 UID: 0 PID: 14666 Comm: syz.4.1722 Not tainted syzkaller #0 PREEMPT(full) [ 685.503448][T14666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 685.503469][T14666] Call Trace: [ 685.503480][T14666] [ 685.503493][T14666] dump_stack_lvl+0x16c/0x1f0 [ 685.503540][T14666] should_fail_ex+0x512/0x640 [ 685.503589][T14666] get_futex_key+0x1d0/0x1560 [ 685.503644][T14666] ? __pfx_get_futex_key+0x10/0x10 [ 685.503705][T14666] futex_wake+0xea/0x530 [ 685.503773][T14666] ? __pfx_futex_wake+0x10/0x10 [ 685.503834][T14666] ? __pfx___might_resched+0x10/0x10 [ 685.503878][T14666] ? lockdep_init_map_type+0x5c/0x280 [ 685.503933][T14666] do_futex+0x1e3/0x350 [ 685.503981][T14666] ? __pfx_do_futex+0x10/0x10 [ 685.504028][T14666] ? file_init_path+0x4fe/0x760 [ 685.504083][T14666] __x64_sys_futex+0x1e0/0x4c0 [ 685.504137][T14666] ? __pfx___x64_sys_futex+0x10/0x10 [ 685.504202][T14666] do_syscall_64+0xcd/0xfa0 [ 685.504244][T14666] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 685.504276][T14666] RIP: 0033:0x7f42dc58eec9 [ 685.504303][T14666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 685.504335][T14666] RSP: 002b:00007f42dd3430e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 685.504368][T14666] RAX: ffffffffffffffda RBX: 00007f42dc7e5fa8 RCX: 00007f42dc58eec9 [ 685.504389][T14666] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f42dc7e5fac [ 685.504410][T14666] RBP: 00007f42dc7e5fa0 R08: 00007f42dd344000 R09: 0000000000000000 [ 685.504430][T14666] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 685.504450][T14666] R13: 00007f42dc7e6038 R14: 00007fffb24b1570 R15: 00007fffb24b1658 [ 685.504495][T14666] [ 685.505672][T14666] sg_write: process 951 (syz.4.1722) changed security contexts after opening file descriptor, this is not allowed. syzkaller syzkaller login: [ 690.907191][T14754] nbd: must specify a size in bytes for the device [ 691.349462][T14755] FAULT_INJECTION: forcing a failure. [ 691.349462][T14755] name failslab, interval 1, probability 0, space 0, times 0 [ 691.496746][T14755] CPU: 1 UID: 0 PID: 14755 Comm: syz.5.1738 Not tainted syzkaller #0 PREEMPT(full) [ 691.496790][T14755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 691.496810][T14755] Call Trace: [ 691.496821][T14755] [ 691.496834][T14755] dump_stack_lvl+0x16c/0x1f0 [ 691.496878][T14755] should_fail_ex+0x512/0x640 [ 691.496929][T14755] ? fs_reclaim_acquire+0xae/0x150 [ 691.496977][T14755] should_failslab+0xc2/0x120 [ 691.497022][T14755] __kmalloc_noprof+0xdd/0x880 [ 691.497078][T14755] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 691.497124][T14755] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 691.497159][T14755] tomoyo_realpath_from_path+0xc2/0x6e0 [ 691.497200][T14755] ? tomoyo_profile+0x47/0x60 [ 691.497245][T14755] tomoyo_path_perm+0x274/0x460 [ 691.497294][T14755] ? tomoyo_path_perm+0x260/0x460 [ 691.497348][T14755] ? __pfx_tomoyo_path_perm+0x10/0x10 [ 691.497457][T14755] ? __pfx_ima_file_check+0x10/0x10 [ 691.497499][T14755] ? hook_file_truncate+0xc7/0x250 [ 691.497541][T14755] security_file_truncate+0x84/0x1e0 [ 691.497580][T14755] path_openat+0xc10/0x2cb0 [ 691.497631][T14755] ? __pfx_path_openat+0x10/0x10 [ 691.497679][T14755] do_filp_open+0x20b/0x470 [ 691.497715][T14755] ? __pfx_do_filp_open+0x10/0x10 [ 691.497790][T14755] ? alloc_fd+0x471/0x7d0 [ 691.497835][T14755] do_sys_openat2+0x11b/0x1d0 [ 691.497889][T14755] ? __pfx_do_sys_openat2+0x10/0x10 [ 691.497934][T14755] ? fput+0x9b/0xd0 [ 691.497977][T14755] ? __sys_sendmsg+0x18c/0x220 [ 691.498027][T14755] __x64_sys_openat+0x174/0x210 [ 691.498076][T14755] ? __pfx___x64_sys_openat+0x10/0x10 [ 691.498159][T14755] do_syscall_64+0xcd/0xfa0 [ 691.498203][T14755] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 691.498249][T14755] RIP: 0033:0x7faee798eec9 [ 691.498275][T14755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 691.498307][T14755] RSP: 002b:00007faee8746038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 691.498338][T14755] RAX: ffffffffffffffda RBX: 00007faee7be6090 RCX: 00007faee798eec9 [ 691.498359][T14755] RDX: 0000000000000202 RSI: 0000200000000600 RDI: ffffffffffffff9c [ 691.498381][T14755] RBP: 00007faee7a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 691.498402][T14755] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 691.498421][T14755] R13: 00007faee7be6128 R14: 00007faee7be6090 R15: 00007ffe321af378 [ 691.498468][T14755] [ 691.498617][T14755] ERROR: Out of memory at tomoyo_realpath_from_path. [ 692.175211][T14768] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1742'. [ 694.434566][T14803] FAULT_INJECTION: forcing a failure. [ 694.434566][T14803] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 694.637162][T14803] CPU: 0 UID: 0 PID: 14803 Comm: syz.2.1753 Not tainted syzkaller #0 PREEMPT(full) [ 694.637205][T14803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 694.637224][T14803] Call Trace: [ 694.637234][T14803] [ 694.637246][T14803] dump_stack_lvl+0x16c/0x1f0 [ 694.637289][T14803] should_fail_ex+0x512/0x640 [ 694.637335][T14803] should_fail_alloc_page+0xe7/0x130 [ 694.637381][T14803] prepare_alloc_pages+0x3c2/0x610 [ 694.637442][T14803] ? rcu_is_watching+0x12/0xc0 [ 694.637482][T14803] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 694.637523][T14803] ? stack_trace_save+0x8e/0xc0 [ 694.637560][T14803] ? __pfx_stack_trace_save+0x10/0x10 [ 694.637596][T14803] ? is_bpf_text_address+0x94/0x1a0 [ 694.637643][T14803] ? stack_depot_save_flags+0x29/0x9c0 [ 694.637684][T14803] ? __kernel_text_address+0xd/0x40 [ 694.637720][T14803] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 694.637770][T14803] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 694.637816][T14803] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 694.637882][T14803] ? policy_nodemask+0xea/0x4e0 [ 694.637930][T14803] alloc_pages_mpol+0x1fb/0x550 [ 694.637976][T14803] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 694.638031][T14803] alloc_pages_noprof+0x131/0x390 [ 694.638075][T14803] alloc_pages_exact_noprof+0x37/0xe0 [ 694.638120][T14803] ? __asan_memset+0x23/0x50 [ 694.638153][T14803] snd_pcm_attach_substream+0x4bb/0xd60 [ 694.638208][T14803] snd_pcm_open_substream+0x8d/0x17f0 [ 694.638250][T14803] ? __pfx_snd_pcm_open_substream+0x10/0x10 [ 694.638301][T14803] snd_pcm_oss_open+0x735/0x1400 [ 694.638367][T14803] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 694.638418][T14803] ? __lock_acquire+0xb97/0x1ce0 [ 694.638465][T14803] ? __pfx_default_wake_function+0x10/0x10 [ 694.638503][T14803] ? __lock_acquire+0xb97/0x1ce0 [ 694.638558][T14803] ? do_raw_spin_lock+0x12c/0x2b0 [ 694.638614][T14803] ? soundcore_open+0x35a/0x580 [ 694.638661][T14803] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 694.638712][T14803] soundcore_open+0x409/0x580 [ 694.638761][T14803] ? __pfx_soundcore_open+0x10/0x10 [ 694.638806][T14803] chrdev_open+0x234/0x6a0 [ 694.638851][T14803] ? __pfx_apparmor_file_open+0x10/0x10 [ 694.638899][T14803] ? __pfx_chrdev_open+0x10/0x10 [ 694.638941][T14803] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 694.638985][T14803] do_dentry_open+0x982/0x1530 [ 694.639024][T14803] ? __pfx_chrdev_open+0x10/0x10 [ 694.639073][T14803] vfs_open+0x82/0x3f0 [ 694.639123][T14803] path_openat+0x1de4/0x2cb0 [ 694.639174][T14803] ? __pfx_path_openat+0x10/0x10 [ 694.639223][T14803] do_filp_open+0x20b/0x470 [ 694.639267][T14803] ? __pfx_do_filp_open+0x10/0x10 [ 694.639335][T14803] ? alloc_fd+0x471/0x7d0 [ 694.639380][T14803] do_sys_openat2+0x11b/0x1d0 [ 694.639427][T14803] ? __pfx_do_sys_openat2+0x10/0x10 [ 694.639471][T14803] ? find_held_lock+0x2b/0x80 [ 694.639505][T14803] ? handle_mm_fault+0x2ab/0xd10 [ 694.639566][T14803] __x64_sys_openat+0x174/0x210 [ 694.639616][T14803] ? __pfx___x64_sys_openat+0x10/0x10 [ 694.639682][T14803] do_syscall_64+0xcd/0xfa0 [ 694.639723][T14803] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 694.639755][T14803] RIP: 0033:0x7f5eecb8eec9 [ 694.639780][T14803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 694.639811][T14803] RSP: 002b:00007f5eed9ea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 694.639850][T14803] RAX: ffffffffffffffda RBX: 00007f5eecde6090 RCX: 00007f5eecb8eec9 [ 694.639871][T14803] RDX: 0000000000008000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 694.639892][T14803] RBP: 00007f5eecc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 694.639912][T14803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 694.639931][T14803] R13: 00007f5eecde6128 R14: 00007f5eecde6090 R15: 00007ffeb47cf248 [ 694.639977][T14803] [ 695.017873][ C0] vkms_vblank_simulate: vblank timer overrun [ 695.581191][T14802] Process accounting resumed [ 695.920682][T14835] vhci_hcd: vhci_device speed not set [ 697.928330][T14853] Process accounting paused [ 699.146834][T14876] random: crng reseeded on system resumption [ 699.245072][T14876] vhci_hcd: invalid port number 23 [ 699.286127][T14876] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub. [ 700.197778][T14892] nbd: must specify an index to disconnect [ 701.961746][T14913] FAULT_INJECTION: forcing a failure. [ 701.961746][T14913] name failslab, interval 1, probability 0, space 0, times 0 [ 701.975449][T14913] CPU: 1 UID: 0 PID: 14913 Comm: syz.5.1781 Not tainted syzkaller #0 PREEMPT(full) [ 701.975491][T14913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 701.975511][T14913] Call Trace: [ 701.975522][T14913] [ 701.975534][T14913] dump_stack_lvl+0x16c/0x1f0 [ 701.975578][T14913] should_fail_ex+0x512/0x640 [ 701.975618][T14913] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 701.975658][T14913] should_failslab+0xc2/0x120 [ 701.975704][T14913] kmem_cache_alloc_noprof+0x75/0x6e0 [ 701.975735][T14913] ? __pfx___alloc_skb+0x10/0x10 [ 701.975770][T14913] ? sctp_chunkify+0x51/0x2d0 [ 701.975809][T14913] ? sctp_chunkify+0x51/0x2d0 [ 701.975838][T14913] sctp_chunkify+0x51/0x2d0 [ 701.975872][T14913] _sctp_make_chunk+0x148/0x270 [ 701.975909][T14913] sctp_make_datafrag_empty+0x16f/0x240 [ 701.975950][T14913] ? __pfx_sctp_make_datafrag_empty+0x10/0x10 [ 701.976011][T14913] sctp_datamsg_from_user+0x592/0x1330 [ 701.976091][T14913] sctp_sendmsg_to_asoc+0xae2/0x1bd0 [ 701.976154][T14913] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 701.976197][T14913] ? do_raw_spin_lock+0x12c/0x2b0 [ 701.976253][T14913] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 701.976318][T14913] ? sctp_sendmsg_check_sflags+0x176/0x320 [ 701.976365][T14913] sctp_sendmsg+0xe99/0x1e00 [ 701.976428][T14913] ? __pfx_sctp_sendmsg+0x10/0x10 [ 701.976475][T14913] ? __pfx___might_resched+0x10/0x10 [ 701.976508][T14913] ? __lock_acquire+0xb97/0x1ce0 [ 701.976560][T14913] ? aa_sk_perm+0x2f4/0xb10 [ 701.976596][T14913] ? __pfx_aa_sk_perm+0x10/0x10 [ 701.976623][T14913] ? import_ubuf+0x1b6/0x220 [ 701.976676][T14913] ? __pfx_sctp_sendmsg+0x10/0x10 [ 701.976729][T14913] inet_sendmsg+0x119/0x140 [ 701.976764][T14913] ____sys_sendmsg+0x973/0xc70 [ 701.976815][T14913] ? copy_msghdr_from_user+0x10a/0x160 [ 701.976854][T14913] ? __pfx_____sys_sendmsg+0x10/0x10 [ 701.976910][T14913] ? kfree+0x252/0x6d0 [ 701.976973][T14913] ___sys_sendmsg+0x134/0x1d0 [ 701.977022][T14913] ? __pfx____sys_sendmsg+0x10/0x10 [ 701.977105][T14913] ? __pfx___might_resched+0x10/0x10 [ 701.977152][T14913] __sys_sendmmsg+0x200/0x420 [ 701.977199][T14913] ? __pfx___sys_sendmmsg+0x10/0x10 [ 701.977253][T14913] ? __pfx_do_futex+0x10/0x10 [ 701.977327][T14913] ? xfd_validate_state+0x61/0x180 [ 701.977387][T14913] __x64_sys_sendmmsg+0x9c/0x100 [ 701.977425][T14913] ? lockdep_hardirqs_on+0x7c/0x110 [ 701.977462][T14913] do_syscall_64+0xcd/0xfa0 [ 701.977501][T14913] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 701.977534][T14913] RIP: 0033:0x7faee798eec9 [ 701.977559][T14913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 701.977591][T14913] RSP: 002b:00007faee8767038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 701.977620][T14913] RAX: ffffffffffffffda RBX: 00007faee7be5fa0 RCX: 00007faee798eec9 [ 701.977642][T14913] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 701.977662][T14913] RBP: 00007faee7a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 701.977682][T14913] R10: 000000000000e3a7 R11: 0000000000000246 R12: 0000000000000000 [ 701.977701][T14913] R13: 00007faee7be6038 R14: 00007faee7be5fa0 R15: 00007ffe321af378 [ 701.977747][T14913] [ 704.246321][T14946] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1779'. [ 704.296410][T14940] sg_write: data in/out 2359516/83 bytes for SCSI command 0x0-- guessing data in; [ 704.296410][T14940] program syz.5.1776 not setting count and/or reply_len properly [ 709.018365][T15009] CIFS: VFS: Invalid SecurityFlags: [ 710.084728][T15018] netlink: 'syz.1.1795': attribute type 33 has an invalid length. [ 710.101615][T15018] netlink: 322 bytes leftover after parsing attributes in process `syz.1.1795'. [ 710.262933][T15020] random: crng reseeded on system resumption [ 710.385121][T15020] vhci_hcd: invalid port number 23 [ 710.390303][T15020] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub. [ 715.009470][ T31] audit: type=1326 audit(4294967303.298:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15072 comm="syz.5.1804" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7faee798eec9 code=0x0 [ 715.113813][T15070] CIFS: VFS: Invalid SecurityFlags: [ 719.289292][T15141] CIFS: VFS: Invalid SecurityFlags: [ 720.014012][ T31] audit: type=1326 audit(4294967300.459:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15151 comm="syz.4.1820" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f42dc58eec9 code=0x0 [ 720.035772][ C1] vkms_vblank_simulate: vblank timer overrun [ 721.085630][T15168] bond0: option arp_interval: invalid value () [ 721.119980][T15168] bond0: option arp_interval: allowed values 0 - 2147483647 syzkaller syzkaller login: [ 724.980621][ T31] audit: type=1326 audit(4294967305.427:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15223 comm="syz.1.1833" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0b0eb8eec9 code=0x0 [ 725.896585][T15224] Process accounting paused [ 726.106705][T15248] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(2) [ 727.107549][T15256] FAULT_INJECTION: forcing a failure. [ 727.107549][T15256] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 727.270114][T15256] CPU: 0 UID: 0 PID: 15256 Comm: syz.4.1838 Not tainted syzkaller #0 PREEMPT(full) [ 727.270145][T15256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 727.270159][T15256] Call Trace: [ 727.270167][T15256] [ 727.270176][T15256] dump_stack_lvl+0x16c/0x1f0 [ 727.270206][T15256] should_fail_ex+0x512/0x640 [ 727.270240][T15256] _copy_from_user+0x2e/0xd0 [ 727.270271][T15256] get_timespec64+0x8b/0x1b0 [ 727.270301][T15256] ? __pfx_get_timespec64+0x10/0x10 [ 727.270335][T15256] ? common_nsleep+0xa1/0xd0 [ 727.270367][T15256] __x64_sys_clock_nanosleep+0x1ce/0x4a0 [ 727.270395][T15256] ? __pfx___x64_sys_clock_nanosleep+0x10/0x10 [ 727.270429][T15256] do_syscall_64+0xcd/0xfa0 [ 727.270458][T15256] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 727.270482][T15256] RIP: 0033:0x7f42dc5c1785 [ 727.270500][T15256] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 54 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f 55 ff ff 48 8b 04 24 48 83 c4 28 f7 d8 [ 727.270523][T15256] RSP: 002b:00007fffb24b1750 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 727.270544][T15256] RAX: ffffffffffffffda RBX: 00007f42dc7e5fa0 RCX: 00007f42dc5c1785 [ 727.270560][T15256] RDX: 00007fffb24b1790 RSI: 0000000000000000 RDI: 0000000000000000 [ 727.270573][T15256] RBP: 00007f42dc7e7da0 R08: 0000000000000000 R09: 00007f42dd344000 [ 727.270587][T15256] R10: 0000000000000000 R11: 0000000000000293 R12: 00000000000b197b [ 727.270601][T15256] R13: 00007f42dc7e6180 R14: ffffffffffffffff R15: 00007fffb24b18d0 [ 727.270632][T15256] [ 728.144416][T15089] Process accounting resumed [ 728.666035][T15279] [U] [ 728.669120][T15279] [U] [ 728.671921][T15279] [U] [ 728.674651][T15279] [U] [ 728.710385][T15284] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1844'. [ 728.718546][T15279] [U] [ 728.722097][T15279] [U] [ 728.724826][T15279] [U] [ 728.727539][T15279] [U] [ 728.773971][T15279] [U] [ 728.776913][T15279] [U] [ 728.779675][T15279] [U] [ 728.782386][T15279] [U] [ 728.827949][T15279] [U] [ 728.830811][T15279] [U] [ 728.833556][T15279] [U] [ 728.836296][T15279] [U] [ 728.871476][T15279] [U] [ 728.874334][T15279] [U] [ 728.877080][T15279] [U] [ 728.879836][T15279] [U] [ 728.884553][T15279] [U] [ 728.887289][T15279] [U] ?zY 9*h 0sh6Fod!nsȉG}D?8C=L*weD:nYNNjro}}K [ 728.897390][T15279] [U] ɬgDuI<ౡj_w(fkr:;{NNYpO9JJ1~QKv@˦qdC{-O(1a3;#c.9$}r>Z,Q%(L_5] O1W?ψ;^AhiW [ 728.913524][T15279] [U] |Qh`s.t*-cM<70m&?cbF?jZwl7M*l!{R$CTkLJlt,3E]Κ~xrwđ>/6}&:bxLj|˖L~+lBbQ9^ [ 728.927982][T15279] [U] a]ޢn^UJ^zw?+$ÛWQ(c_ռ&9끍J7>[)˫a [ 728.937656][T15279] [U] U [ 728.940486][T15279] [U] Xe$/=I^Cn_S guˎ0/TѣkaǁA"c ]?K֒S^hfU0d TlW w HS+X̥70pזm,~ [e|>F{pP?,[|i+MȴbZ*QyBo9=vEZ =~3 ~G{0+kr4J,B잓Pe@m & [ 728.965279][T15279] [U] L\EGb[x[ߩTcdzq7(U6LZ߬OEÛO91<ȌTXR}c/2^riZ [ 728.977281][T15279] [U] ~am8w+!A4vCb4i%~ܝJ Ά>٫vOoOCs_!2tBs'BFX=EMM K&03fο T0ICa[B^V+ţ䖚7j)-xq\]b|+pV6Pa_2y9s~QxM4 [ 728.994665][T15279] [U] ^+לnQ@; [ 728.998489][T15279] [U] hMH.hV]1. (.v[] WV [ 729.004385][T15279] [U] 1ڊXRb-Ie&3j [a 6-C19I. [ 729.010806][T15279] [U] _g}" [ 729.014135][T15279] [U] "@ [ 729.017597][T15279] [U] ?wǶ1YA0WȰFoA7g0x@(m>,(+pe8۴ׁ:=5aA= [ 729.061047][T15279] [U] {U 4)#BؘP҄"wbvf{q+l$~4)=>M햒AD!y#&Z3E9[`!^xl{^Os(xЀdJ/9> ]>laG:p{7 Z Fxqo#^ЈXRb%jI߇@> E ?ia6ZK [ 729.089898][T15279] [U] s#&5>q#yi/ b(ybE-z90ܼ]?m2~_B{nhd&͖\j<uߝUЉ!qxݹ~^-c֬?Te97@`թ7_[,%+ˮnu4Sc# чK]ɀ"{S+F@/I4]0lU(~~Z8>{"AT? d)tDY{wK֪J}}qG| [ 729.118846][T15279] [U] ɗ-kJɇg>8n(SC [ 729.123412][T15279] [U] [kQ%>.Q3 fuP+vi07> >(ҕcss/&a~4c:d/fz"N]Mcyk| [ 729.135102][T15279] [U] R%~'0;0y??ifXǖg@,:Qx-~dLAQH.cfNJfiHgJqc*#5߿ d=/ [ 729.146870][T15279] [U] ~V6F@t\ *u eG:YWl1@o.c`"To:}#0Y [ 729.155005][T15279] [U] gz6A$8L t 9{ڂD[ؒoţ+"Vm!{&h3%ōtNKdl#}iGP,Fg5;fr%)rG!WrAmE`tz(P E$^v@a [ 729.171990][T15279] [U] i03V"ïfܫɩ_(D8N$(v e<@E57F&qw@ĵ[ݐ@ \ٙg$N@eUy.g>jX [ 729.185584][T15279] [U] L<+zdkR|}x%^@J(_~zG/ :-_`9hBpR,."h(E\1G[G`, T: LYh P?;o]|˱4tse˝+ʩ fz)G|`e?_]JV+>DžW/,a/Aӟ8S]rr!NI ?3;7zX(F/q&UVSmJ;ZFٜ\vn p 06ݩEAoȆ)xcy2 [ 729.409611][T15279] [U] L.)Pn:ylb~VJxE ddYԫ5ҿU)u`'#e5pOod<2i  }?QbI7*Їqo%rƙT7VOtG61bJkY|n3s]FƁSZd Č K2UeKSLˊG(QyZfPXiQʾ t6 QU<gOq 2c\7WV$ҚJf [ 729.438551][T15279] [U] 05¦--]3```7bm{Z"-a.o\Ra* [ 729.446483][T15279] [U] +=-uY~U"rY\L'_R 2z7Hw1\#R(\E"nSh/a7/xg|Vy>s%vJ,hUX`naф{A~lc [ 729.459869][T15279] [U] y [ 729.508858][T15279] [U] =r"TߎȹaeԊLw1=mUn1Dԅ9LjpB {enrO{_ [ 735.908073][T15418] dump_stack_lvl+0x16c/0x1f0 [ 735.908119][T15418] should_fail_ex+0x512/0x640 [ 735.908159][T15418] ? fs_reclaim_acquire+0xae/0x150 [ 735.908207][T15418] should_failslab+0xc2/0x120 [ 735.908254][T15418] __kmalloc_cache_noprof+0x72/0x780 [ 735.908307][T15418] ? lockdep_init_map_type+0x5c/0x280 [ 735.908357][T15418] ? tomoyo_open_control+0x415/0xa30 [ 735.908407][T15418] ? tomoyo_open_control+0x415/0xa30 [ 735.908448][T15418] tomoyo_open_control+0x415/0xa30 [ 735.908496][T15418] do_dentry_open+0x982/0x1530 [ 735.908535][T15418] ? __pfx_tomoyo_open+0x10/0x10 [ 735.908580][T15418] vfs_open+0x82/0x3f0 [ 735.908632][T15418] path_openat+0x1de4/0x2cb0 [ 735.908684][T15418] ? __pfx_path_openat+0x10/0x10 [ 735.908733][T15418] do_filp_open+0x20b/0x470 [ 735.908771][T15418] ? __pfx_do_filp_open+0x10/0x10 [ 735.908840][T15418] ? alloc_fd+0x471/0x7d0 [ 735.908885][T15418] do_sys_openat2+0x11b/0x1d0 [ 735.908933][T15418] ? __pfx_do_sys_openat2+0x10/0x10 [ 735.909012][T15418] __x64_sys_openat+0x174/0x210 [ 735.909064][T15418] ? __pfx___x64_sys_openat+0x10/0x10 [ 735.909134][T15418] do_syscall_64+0xcd/0xfa0 [ 735.909177][T15418] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 735.909211][T15418] RIP: 0033:0x7f42dc58eec9 [ 735.909237][T15418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 735.909270][T15418] RSP: 002b:00007f42dd343038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 735.909303][T15418] RAX: ffffffffffffffda RBX: 00007f42dc7e5fa0 RCX: 00007f42dc58eec9 [ 735.909325][T15418] RDX: 00000000000c0802 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 735.909347][T15418] RBP: 00007f42dc611f91 R08: 0000000000000000 R09: 0000000000000000 [ 735.909368][T15418] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 735.909388][T15418] R13: 00007f42dc7e6038 R14: 00007f42dc7e5fa0 R15: 00007fffb24b1658 [ 735.909433][T15418] [ 736.542669][T15429] FAULT_INJECTION: forcing a failure. [ 736.542669][T15429] name failslab, interval 1, probability 0, space 0, times 0 [ 736.588699][T15429] CPU: 0 UID: 0 PID: 15429 Comm: syz.2.1875 Not tainted syzkaller #0 PREEMPT(full) [ 736.588732][T15429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 736.588746][T15429] Call Trace: [ 736.588754][T15429] [ 736.588762][T15429] dump_stack_lvl+0x16c/0x1f0 [ 736.588794][T15429] should_fail_ex+0x512/0x640 [ 736.588824][T15429] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 736.588851][T15429] should_failslab+0xc2/0x120 [ 736.588883][T15429] kmem_cache_alloc_noprof+0x75/0x6e0 [ 736.588907][T15429] ? __proc_create+0x2ce/0x8e0 [ 736.588948][T15429] ? __proc_create+0x2ce/0x8e0 [ 736.588981][T15429] __proc_create+0x2ce/0x8e0 [ 736.589016][T15429] ? __pfx___proc_create+0x10/0x10 [ 736.589049][T15429] ? __lock_acquire+0x62e/0x1ce0 [ 736.589093][T15429] proc_mkdir+0x81/0x170 [ 736.589128][T15429] ? __pfx_proc_mkdir+0x10/0x10 [ 736.589163][T15429] ? find_held_lock+0x2b/0x80 [ 736.589192][T15429] bond_create_proc_dir+0xa1/0x120 [ 736.589229][T15429] bond_net_init+0x170/0x360 [ 736.589264][T15429] ? __pfx_bond_net_init+0x10/0x10 [ 736.589298][T15429] ops_init+0x1df/0x5f0 [ 736.589330][T15429] setup_net+0x100/0x390 [ 736.589360][T15429] ? __pfx_setup_net+0x10/0x10 [ 736.589390][T15429] ? debug_mutex_init+0x37/0x70 [ 736.589418][T15429] copy_net_ns+0x2f8/0x690 [ 736.589453][T15429] create_new_namespaces+0x3ea/0xa90 [ 736.589488][T15429] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 736.589519][T15429] ksys_unshare+0x45b/0xa40 [ 736.589551][T15429] ? __pfx_ksys_unshare+0x10/0x10 [ 736.589585][T15429] ? xfd_validate_state+0x61/0x180 [ 736.589628][T15429] __x64_sys_unshare+0x31/0x40 [ 736.589669][T15429] do_syscall_64+0xcd/0xfa0 [ 736.589699][T15429] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 736.589723][T15429] RIP: 0033:0x7f5eecb8eec9 [ 736.589741][T15429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 736.589764][T15429] RSP: 002b:00007f5eed9ea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 736.589787][T15429] RAX: ffffffffffffffda RBX: 00007f5eecde6090 RCX: 00007f5eecb8eec9 [ 736.589802][T15429] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 736.589816][T15429] RBP: 00007f5eecc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 736.589831][T15429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 736.589845][T15429] R13: 00007f5eecde6128 R14: 00007f5eecde6090 R15: 00007ffeb47cf248 [ 736.589878][T15429] [ 736.589888][T15429] Warning: Cannot create /proc/net/bonding [ 737.188452][T15435] i2c i2c-0: delete_device: Can't parse I2C address [ 738.468140][T15474] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1883'. [ 738.823474][T15486] netlink: 'syz.2.1886': attribute type 27 has an invalid length. [ 738.856909][T15486] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1886'. [ 740.097190][T15518] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 740.097851][T15518] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 740.417704][T15529] i2c i2c-0: delete_device: Can't parse I2C address [ 748.108696][T15674] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1920'. [ 749.717796][T15706] FAULT_INJECTION: forcing a failure. [ 749.717796][T15706] name failslab, interval 1, probability 0, space 0, times 0 [ 749.750172][T15706] CPU: 1 UID: 0 PID: 15706 Comm: syz.5.1926 Not tainted syzkaller #0 PREEMPT(full) [ 749.750210][T15706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 749.750224][T15706] Call Trace: [ 749.750232][T15706] [ 749.750241][T15706] dump_stack_lvl+0x16c/0x1f0 [ 749.750273][T15706] should_fail_ex+0x512/0x640 [ 749.750303][T15706] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 749.750332][T15706] should_failslab+0xc2/0x120 [ 749.750363][T15706] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 749.750390][T15706] ? sock_alloc_inode+0x25/0x1c0 [ 749.750431][T15706] ? __pfx_sock_alloc_inode+0x10/0x10 [ 749.750463][T15706] ? sock_alloc_inode+0x25/0x1c0 [ 749.750493][T15706] sock_alloc_inode+0x25/0x1c0 [ 749.750525][T15706] alloc_inode+0x61/0x240 [ 749.750559][T15706] sock_alloc+0x40/0x280 [ 749.750590][T15706] sock_create_lite+0x82/0x120 [ 749.750624][T15706] __netlink_kernel_create+0xbd/0x750 [ 749.750656][T15706] ? __pfx___netlink_kernel_create+0x10/0x10 [ 749.750694][T15706] ? __pfx_crypto_netlink_init+0x10/0x10 [ 749.750728][T15706] crypto_netlink_init+0xb7/0x140 [ 749.750760][T15706] ? cpus_read_unlock+0x83/0x150 [ 749.750787][T15706] ? __pfx_crypto_netlink_init+0x10/0x10 [ 749.750819][T15706] ? __nf_register_net_hook+0x371/0x730 [ 749.750848][T15706] ? __pfx_crypto_netlink_rcv+0x10/0x10 [ 749.750882][T15706] ? nf_register_net_hook+0x117/0x160 [ 749.750911][T15706] ? nf_register_net_hooks+0xb1/0xd0 [ 749.750942][T15706] ops_init+0x1df/0x5f0 [ 749.750975][T15706] setup_net+0x100/0x390 [ 749.751004][T15706] ? __pfx_setup_net+0x10/0x10 [ 749.751035][T15706] ? debug_mutex_init+0x37/0x70 [ 749.751063][T15706] copy_net_ns+0x2f8/0x690 [ 749.751098][T15706] create_new_namespaces+0x3ea/0xa90 [ 749.751138][T15706] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 749.751176][T15706] ksys_unshare+0x45b/0xa40 [ 749.751210][T15706] ? __pfx_ksys_unshare+0x10/0x10 [ 749.751253][T15706] ? xfd_validate_state+0x61/0x180 [ 749.751311][T15706] __x64_sys_unshare+0x31/0x40 [ 749.751351][T15706] do_syscall_64+0xcd/0xfa0 [ 749.751382][T15706] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 749.751406][T15706] RIP: 0033:0x7faee798eec9 [ 749.751425][T15706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 749.751449][T15706] RSP: 002b:00007faee8746038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 749.751472][T15706] RAX: ffffffffffffffda RBX: 00007faee7be6090 RCX: 00007faee798eec9 [ 749.751488][T15706] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 749.751503][T15706] RBP: 00007faee7a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 749.751518][T15706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 749.751532][T15706] R13: 00007faee7be6128 R14: 00007faee7be6090 R15: 00007ffe321af378 [ 749.751567][T15706] [ 751.293936][T15740] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1934'. [ 751.308873][T15740] hsr0: entered allmulticast mode [ 751.321205][T15740] hsr_slave_0: entered allmulticast mode [ 751.348483][T15740] hsr_slave_1: entered allmulticast mode [ 753.421235][T15786] random: crng reseeded on system resumption [ 753.675630][T15790] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1946'. [ 753.685145][T15790] hsr0: entered allmulticast mode [ 753.690305][T15790] hsr_slave_0: entered allmulticast mode [ 753.710044][T15790] hsr_slave_1: entered allmulticast mode [ 754.202611][T15804] sd 0:0:1:0: PR command failed: 1026 [ 754.208345][T15804] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 754.215845][T15804] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 756.324889][T15840] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1956'. [ 756.334271][T15840] hsr0: entered allmulticast mode [ 756.345850][T15840] hsr_slave_0: entered allmulticast mode [ 756.354104][T15840] hsr_slave_1: entered allmulticast mode [ 756.701342][T15850] Process accounting resumed [ 756.808776][T15856] __vm_enough_memory: pid: 15856, comm: syz.1.1957, bytes: 4398046511104 not enough memory for the allocation [ 758.029809][T15886] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1967'. [ 758.106131][T15886] hsr0: entered allmulticast mode [ 758.111589][T15886] hsr_slave_0: entered allmulticast mode [ 758.118557][T15886] hsr_slave_1: entered allmulticast mode [ 759.268759][T15888] Process accounting paused [ 761.781857][T15954] zswap: compressor 000 not available [ 763.821886][T16008] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 763.827997][T16008] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 763.925782][T16008] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 763.926002][T16008] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 763.926085][T16008] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 764.164337][T16008] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 764.252421][T16008] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 764.654239][T13781] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 765.861994][T13457] Bluetooth: hci0: command 0x0c1a tx timeout [ 766.019489][T13457] Bluetooth: hci4: command 0x0c1a tx timeout [ 766.035536][T13457] Bluetooth: hci3: command 0x0c1a tx timeout [ 766.185103][T13781] Bluetooth: hci1: command 0x0c1a tx timeout [ 766.567465][T16033] FAULT_INJECTION: forcing a failure. [ 766.567465][T16033] name failslab, interval 1, probability 0, space 0, times 0 [ 766.680849][T16033] CPU: 0 UID: 0 PID: 16033 Comm: syz.4.1998 Not tainted syzkaller #0 PREEMPT(full) [ 766.680880][T16033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 766.680894][T16033] Call Trace: [ 766.680902][T16033] [ 766.680910][T16033] dump_stack_lvl+0x16c/0x1f0 [ 766.680942][T16033] should_fail_ex+0x512/0x640 [ 766.680970][T16033] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 766.681007][T16033] should_failslab+0xc2/0x120 [ 766.681050][T16033] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 766.681086][T16033] ? shmem_alloc_inode+0x25/0x50 [ 766.681129][T16033] ? __pfx_shmem_alloc_inode+0x10/0x10 [ 766.681157][T16033] ? shmem_alloc_inode+0x25/0x50 [ 766.681183][T16033] shmem_alloc_inode+0x25/0x50 [ 766.681213][T16033] alloc_inode+0x61/0x240 [ 766.681245][T16033] new_inode+0x22/0x1c0 [ 766.681278][T16033] shmem_get_inode+0x19a/0xfb0 [ 766.681317][T16033] shmem_tmpfile+0x58/0x180 [ 766.681351][T16033] vfs_tmpfile+0x2be/0x890 [ 766.681383][T16033] path_openat+0x1683/0x2cb0 [ 766.681418][T16033] ? __pfx_path_openat+0x10/0x10 [ 766.681445][T16033] ? __lock_acquire+0xb97/0x1ce0 [ 766.681487][T16033] do_filp_open+0x20b/0x470 [ 766.681513][T16033] ? __pfx_do_filp_open+0x10/0x10 [ 766.681561][T16033] ? _raw_spin_unlock+0x28/0x50 [ 766.681583][T16033] ? alloc_fd+0x471/0x7d0 [ 766.681614][T16033] do_sys_openat2+0x11b/0x1d0 [ 766.681657][T16033] ? __pfx_do_sys_openat2+0x10/0x10 [ 766.681722][T16033] __x64_sys_open+0x153/0x1e0 [ 766.681769][T16033] ? __pfx___x64_sys_open+0x10/0x10 [ 766.681826][T16033] ? rcu_is_watching+0x12/0xc0 [ 766.681864][T16033] do_syscall_64+0xcd/0xfa0 [ 766.681906][T16033] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 766.681930][T16033] RIP: 0033:0x7f42dc58eec9 [ 766.681948][T16033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 766.681971][T16033] RSP: 002b:00007f42dd343038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 766.681992][T16033] RAX: ffffffffffffffda RBX: 00007f42dc7e5fa0 RCX: 00007f42dc58eec9 [ 766.682008][T16033] RDX: 0000000000000408 RSI: 0000000000591002 RDI: 0000200000000100 [ 766.682022][T16033] RBP: 00007f42dc611f91 R08: 0000000000000000 R09: 0000000000000000 [ 766.682036][T16033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 766.682050][T16033] R13: 00007f42dc7e6038 R14: 00007f42dc7e5fa0 R15: 00007fffb24b1658 [ 766.682082][T16033] [ 767.943170][T13781] Bluetooth: hci0: command 0x0c1a tx timeout [ 768.095743][T16053] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2003'. [ 768.108391][T13781] Bluetooth: hci4: command 0x0c1a tx timeout [ 768.260752][T13781] Bluetooth: hci1: command 0x0c1a tx timeout [ 769.934282][T16103] __vm_enough_memory: pid: 16103, comm: syz.2.2010, bytes: 4398046511104 not enough memory for the allocation [ 770.759613][T16122] netlink: 330 bytes leftover after parsing attributes in process `syz.4.2015'. [ 771.205800][T16131] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2017'. [ 771.237428][T13781] Bluetooth: hci0: Malformed HCI Event [ 771.689669][T16138] netlink: 'syz.2.2019': attribute type 19 has an invalid length. [ 771.697706][T16138] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2019'. [ 774.951222][T16180] netlink: 330 bytes leftover after parsing attributes in process `syz.4.2029'. [ 777.918004][ T9943] Process accounting resumed [ 777.999559][ T24] Process accounting resumed [ 778.020220][ T24] Process accounting resumed [ 778.075178][ T24] Process accounting resumed [ 778.141796][ T24] Process accounting resumed [ 778.192224][ T9943] Process accounting resumed [ 778.212958][ T9943] Process accounting resumed [ 778.254322][ T9943] Process accounting resumed [ 778.275649][ T9943] Process accounting resumed [ 778.282424][ T9943] Process accounting resumed [ 778.291562][ T9943] Process accounting resumed [ 778.298725][ T9943] Process accounting resumed [ 778.305697][ T9943] Process accounting resumed [ 778.311463][ T9943] Process accounting resumed [ 778.317875][ T9943] Process accounting resumed [ 778.323681][ T9943] Process accounting resumed [ 778.334872][ T9943] Process accounting resumed [ 778.341237][ T9943] Process accounting resumed [ 778.349309][ T9942] Process accounting resumed [ 778.355060][ T9942] Process accounting resumed [ 778.378095][ T9943] Process accounting resumed [ 778.384639][ T9943] Process accounting resumed [ 778.394181][ T9943] Process accounting resumed [ 778.400547][ T24] Process accounting resumed [ 778.406165][ T24] Process accounting resumed [ 778.411634][ T24] Process accounting resumed [ 778.423383][ T24] Process accounting resumed [ 778.465615][ T24] Process accounting resumed [ 778.529061][ T5817] Process accounting resumed [ 778.534607][ T5817] Process accounting resumed [ 778.540759][ T5817] Process accounting resumed [ 778.546433][ T5817] Process accounting resumed [ 778.577670][T16240] Process accounting resumed [ 781.097186][T16318] netlink: ct family unspecified [ 781.378675][T16321] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2058'. [ 781.818022][T16336] FAULT_INJECTION: forcing a failure. [ 781.818022][T16336] name fail_futex, interval 1, probability 0, space 0, times 0 [ 781.871673][T16336] CPU: 1 UID: 0 PID: 16336 Comm: syz.4.2060 Not tainted syzkaller #0 PREEMPT(full) [ 781.871715][T16336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 781.871735][T16336] Call Trace: [ 781.871745][T16336] [ 781.871758][T16336] dump_stack_lvl+0x16c/0x1f0 [ 781.871803][T16336] should_fail_ex+0x512/0x640 [ 781.871851][T16336] get_futex_key+0x1d0/0x1560 [ 781.871902][T16336] ? __pfx_get_futex_key+0x10/0x10 [ 781.871950][T16336] ? __pick_eevdf+0x30a/0x670 [ 781.871998][T16336] futex_wait_setup+0x9d/0x550 [ 781.872067][T16336] __futex_wait+0x193/0x2f0 [ 781.872122][T16336] ? __pfx___futex_wait+0x10/0x10 [ 781.872173][T16336] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 781.872209][T16336] ? lockdep_hardirqs_on+0x7c/0x110 [ 781.872252][T16336] ? __pfx_futex_wake_mark+0x10/0x10 [ 781.872312][T16336] ? futex_private_hash_put+0x176/0x300 [ 781.872361][T16336] ? futex_private_hash_put+0x18a/0x300 [ 781.872409][T16336] futex_wait+0xe8/0x380 [ 781.872475][T16336] ? __pfx_futex_wait+0x10/0x10 [ 781.872539][T16336] ? kmem_cache_free+0x2d4/0x6c0 [ 781.872574][T16336] ? putname+0x154/0x1a0 [ 781.872625][T16336] do_futex+0x229/0x350 [ 781.872671][T16336] ? __pfx_do_futex+0x10/0x10 [ 781.872729][T16336] __x64_sys_futex+0x1e0/0x4c0 [ 781.872778][T16336] ? __x64_sys_openat+0x174/0x210 [ 781.872836][T16336] ? __pfx___x64_sys_futex+0x10/0x10 [ 781.872901][T16336] do_syscall_64+0xcd/0xfa0 [ 781.872942][T16336] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 781.872977][T16336] RIP: 0033:0x7f42dc58eec9 [ 781.873004][T16336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 781.873037][T16336] RSP: 002b:00007f42dd3430e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 781.873069][T16336] RAX: ffffffffffffffda RBX: 00007f42dc7e5fa8 RCX: 00007f42dc58eec9 [ 781.873092][T16336] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f42dc7e5fa8 [ 781.873113][T16336] RBP: 00007f42dc7e5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 781.873133][T16336] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 781.873154][T16336] R13: 00007f42dc7e6038 R14: 00007fffb24b1570 R15: 00007fffb24b1658 [ 781.873200][T16336] [ 782.299928][T16336] 0x000200000001-0xa29656a63616329 : "" [ 782.305557][T16336] mtd: partition "" is out of reach -- disabled [ 782.440959][T16336] ftl_cs: FTL header not found. [ 784.912291][T16389] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2070'. [ 785.723472][T13781] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 785.723519][T13781] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 785.738606][T13781] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 785.738666][T13781] Bluetooth: hci1: adv larger than maximum supported [ 786.162296][T13781] Bluetooth: hci1: adv larger than maximum supported [ 786.169038][T13781] Bluetooth: hci1: Malformed LE Event: 0x0d [ 786.511430][ C0] vcan0: j1939_xtp_rx_dpo: no connection found [ 786.517956][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 786.524715][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 786.812342][T16421] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2077'. [ 787.281659][ C0] vcan0: j1939_tp_rxtimer: 0xffff888028e80000: rx timeout, send abort [ 787.573889][T16416] kexec: Could not allocate control_code_buffer [ 787.791753][ C0] vcan0: j1939_tp_rxtimer: 0xffff888028e80000: abort rx timeout. Force session deactivation [ 787.819088][T16426] Process accounting paused [ 788.077195][T16437] FAULT_INJECTION: forcing a failure. [ 788.077195][T16437] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 788.104867][T16437] CPU: 0 UID: 0 PID: 16437 Comm: syz.4.2082 Not tainted syzkaller #0 PREEMPT(full) [ 788.104905][T16437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 788.104919][T16437] Call Trace: [ 788.104927][T16437] [ 788.104935][T16437] dump_stack_lvl+0x16c/0x1f0 [ 788.104967][T16437] should_fail_ex+0x512/0x640 [ 788.105002][T16437] should_fail_alloc_page+0xe7/0x130 [ 788.105038][T16437] prepare_alloc_pages+0x3c2/0x610 [ 788.105076][T16437] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 788.105101][T16437] ? stack_trace_save+0x8e/0xc0 [ 788.105129][T16437] ? __pfx_stack_trace_save+0x10/0x10 [ 788.105158][T16437] ? stack_depot_save_flags+0x29/0x9c0 [ 788.105186][T16437] ? trace_mm_page_alloc+0x11f/0x1a0 [ 788.105223][T16437] ? kasan_save_stack+0x42/0x60 [ 788.105262][T16437] ? kasan_save_stack+0x33/0x60 [ 788.105287][T16437] ? kasan_save_track+0x14/0x30 [ 788.105312][T16437] ? __kasan_slab_alloc+0x89/0x90 [ 788.105341][T16437] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 788.105364][T16437] ? copy_vma_and_data+0x24e/0x790 [ 788.105385][T16437] ? mremap_to+0x1b7/0x450 [ 788.105404][T16437] ? __do_sys_mremap+0x119/0x170 [ 788.105424][T16437] ? do_syscall_64+0xcd/0xfa0 [ 788.105448][T16437] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 788.105487][T16437] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 788.105528][T16437] ? policy_nodemask+0xea/0x4e0 [ 788.105561][T16437] alloc_pages_mpol+0x1fb/0x550 [ 788.105592][T16437] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 788.105632][T16437] alloc_pages_noprof+0x131/0x390 [ 788.105664][T16437] pte_alloc_one+0x1e/0x350 [ 788.105692][T16437] __pte_alloc+0x6d/0x380 [ 788.105719][T16437] ? __pfx___pte_alloc+0x10/0x10 [ 788.105747][T16437] ? _raw_spin_unlock+0x28/0x50 [ 788.105768][T16437] ? __pmd_alloc+0x64f/0x8b0 [ 788.105810][T16437] move_page_tables+0x2372/0x4230 [ 788.105839][T16437] ? __pfx_copy_vma+0x10/0x10 [ 788.105868][T16437] ? __pfx_move_page_tables+0x10/0x10 [ 788.105905][T16437] ? rcu_is_watching+0x12/0xc0 [ 788.105929][T16437] ? finish_task_switch.isra.0+0x221/0xc10 [ 788.105954][T16437] ? lockdep_hardirqs_on+0x7c/0x110 [ 788.105983][T16437] copy_vma_and_data+0x24e/0x790 [ 788.106009][T16437] ? __pfx_copy_vma_and_data+0x10/0x10 [ 788.106040][T16437] ? __vma_enter_locked+0x163/0x3f0 [ 788.106078][T16437] ? find_held_lock+0x2b/0x80 [ 788.106103][T16437] ? move_vma+0x52e/0x1770 [ 788.106122][T16437] ? __vm_enough_memory+0x184/0x3f0 [ 788.106160][T16437] move_vma+0x540/0x1770 [ 788.106187][T16437] ? __pfx_move_vma+0x10/0x10 [ 788.106232][T16437] ? mm_get_unmapped_area_vmflags+0x97/0xe0 [ 788.106264][T16437] ? cap_mmap_addr+0x4b/0x120 [ 788.106294][T16437] ? bpf_lsm_mmap_addr+0x9/0x10 [ 788.106321][T16437] ? security_mmap_addr+0x6c/0x1e0 [ 788.106344][T16437] ? __get_unmapped_area+0x267/0x440 [ 788.106377][T16437] ? vrm_set_new_addr+0x208/0x290 [ 788.106402][T16437] mremap_to+0x1b7/0x450 [ 788.106427][T16437] do_mremap+0x13a8/0x2020 [ 788.106451][T16437] ? futex_private_hash_put+0xf0/0x300 [ 788.106490][T16437] ? __pfx_do_mremap+0x10/0x10 [ 788.106520][T16437] ? ksys_write+0x190/0x250 [ 788.106553][T16437] __do_sys_mremap+0x119/0x170 [ 788.106575][T16437] ? __pfx___do_sys_mremap+0x10/0x10 [ 788.106607][T16437] ? __x64_sys_futex+0x1e0/0x4c0 [ 788.106659][T16437] do_syscall_64+0xcd/0xfa0 [ 788.106688][T16437] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 788.106712][T16437] RIP: 0033:0x7f42dc58eec9 [ 788.106730][T16437] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 788.106753][T16437] RSP: 002b:00007f42dd343038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 788.106779][T16437] RAX: ffffffffffffffda RBX: 00007f42dc7e5fa0 RCX: 00007f42dc58eec9 [ 788.106800][T16437] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200000000000 [ 788.106814][T16437] RBP: 00007f42dc611f91 R08: 0000000100000000 R09: 0000000000000000 [ 788.106829][T16437] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000 [ 788.106842][T16437] R13: 00007f42dc7e6038 R14: 00007f42dc7e5fa0 R15: 00007fffb24b1658 [ 788.106874][T16437] [ 789.869127][T16454] Process accounting resumed [ 791.609179][T16513] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2100'. [ 793.845606][T16560] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2112'. [ 794.146750][T16568] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2113'. [ 794.435369][T16576] random: crng reseeded on system resumption [ 794.561520][T16580] vivid-007: ================= START STATUS ================= [ 794.593946][T16580] vivid-007: Generate PTS: true [ 794.599254][T16580] vivid-007: Generate SCR: true [ 794.613832][T16580] tpg source WxH: 320x240 (Y'CbCr) [ 794.619222][T16580] tpg field: 1 [ 794.622634][T16580] tpg crop: (0,0)/320x240 [ 794.939619][T16580] tpg compose: (0,0)/320x240 [ 794.953649][T16580] tpg colorspace: 8 [ 794.989449][T16580] tpg transfer function: 0/0 [ 795.064344][T16580] tpg Y'CbCr encoding: 0/0 [ 795.068844][T16580] tpg quantization: 0/0 [ 795.073111][T16580] tpg RGB range: 0/2 [ 795.075780][T16583] FAULT_INJECTION: forcing a failure. [ 795.075780][T16583] name failslab, interval 1, probability 0, space 0, times 0 [ 795.077224][T16580] vivid-007: ================== END STATUS ================== [ 795.190495][T16583] CPU: 1 UID: 0 PID: 16583 Comm: syz.4.2116 Not tainted syzkaller #0 PREEMPT(full) [ 795.190532][T16583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 795.190547][T16583] Call Trace: [ 795.190555][T16583] [ 795.190568][T16583] dump_stack_lvl+0x16c/0x1f0 [ 795.190608][T16583] should_fail_ex+0x512/0x640 [ 795.190638][T16583] ? fs_reclaim_acquire+0xae/0x150 [ 795.190672][T16583] should_failslab+0xc2/0x120 [ 795.190704][T16583] __kmalloc_noprof+0xdd/0x880 [ 795.190743][T16583] ? tomoyo_encode2+0x100/0x3e0 [ 795.190772][T16583] ? tomoyo_encode2+0x100/0x3e0 [ 795.190794][T16583] tomoyo_encode2+0x100/0x3e0 [ 795.190822][T16583] tomoyo_encode+0x29/0x50 [ 795.190845][T16583] tomoyo_realpath_from_path+0x18f/0x6e0 [ 795.190879][T16583] tomoyo_check_open_permission+0x2ab/0x3c0 [ 795.190925][T16583] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 795.190995][T16583] ? do_raw_spin_lock+0x12c/0x2b0 [ 795.191043][T16583] tomoyo_file_open+0x6b/0x90 [ 795.191074][T16583] security_file_open+0x84/0x1e0 [ 795.191098][T16583] do_dentry_open+0x596/0x1530 [ 795.191136][T16583] vfs_open+0x82/0x3f0 [ 795.191174][T16583] path_openat+0x1de4/0x2cb0 [ 795.191211][T16583] ? __pfx_path_openat+0x10/0x10 [ 795.191245][T16583] do_filp_open+0x20b/0x470 [ 795.191278][T16583] ? __pfx_do_filp_open+0x10/0x10 [ 795.191327][T16583] ? alloc_fd+0x471/0x7d0 [ 795.191359][T16583] do_sys_openat2+0x11b/0x1d0 [ 795.191394][T16583] ? __pfx_do_sys_openat2+0x10/0x10 [ 795.191442][T16583] __x64_sys_openat+0x174/0x210 [ 795.191479][T16583] ? __pfx___x64_sys_openat+0x10/0x10 [ 795.191528][T16583] do_syscall_64+0xcd/0xfa0 [ 795.191557][T16583] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 795.191582][T16583] RIP: 0033:0x7f42dc58eec9 [ 795.191600][T16583] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 795.191624][T16583] RSP: 002b:00007f42da7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 795.191646][T16583] RAX: ffffffffffffffda RBX: 00007f42dc7e6090 RCX: 00007f42dc58eec9 [ 795.191662][T16583] RDX: 0000000000000040 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 795.191677][T16583] RBP: 00007f42dc611f91 R08: 0000000000000000 R09: 0000000000000000 [ 795.191697][T16583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 795.191711][T16583] R13: 00007f42dc7e6128 R14: 00007f42dc7e6090 R15: 00007fffb24b1658 [ 795.191755][T16583] [ 795.442890][T16583] ERROR: Out of memory at tomoyo_realpath_from_path. [ 796.527036][T16588] zswap: compressor not available [ 797.362194][T16619] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2123'. [ 800.160702][T16666] serio: Serial port pty6 [ 800.897752][T16685] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2139'. [ 801.087339][T16695] random: crng reseeded on system resumption [ 801.110148][T13781] Bluetooth: hci4: unexpected event 0x3d length: 726 > 14 [ 802.054480][T16710] vivid-007: ================= START STATUS ================= [ 802.115974][T16711] FAULT_INJECTION: forcing a failure. [ 802.115974][T16711] name failslab, interval 1, probability 0, space 0, times 0 [ 802.117558][T16710] vivid-007: Generate PTS: [ 802.128992][T16711] CPU: 0 UID: 0 PID: 16711 Comm: syz.2.2143 Not tainted syzkaller #0 PREEMPT(full) [ 802.129038][T16711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 802.129056][T16711] Call Trace: [ 802.129065][T16711] [ 802.129077][T16711] dump_stack_lvl+0x16c/0x1f0 [ 802.129120][T16711] should_fail_ex+0x512/0x640 [ 802.129160][T16711] ? fs_reclaim_acquire+0xae/0x150 [ 802.129209][T16711] should_failslab+0xc2/0x120 [ 802.129256][T16711] __kmalloc_noprof+0xdd/0x880 [ 802.129323][T16711] ? kfree+0x252/0x6d0 [ 802.129375][T16711] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 802.129423][T16711] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 802.129460][T16711] tomoyo_realpath_from_path+0xc2/0x6e0 [ 802.129509][T16711] tomoyo_check_open_permission+0x2ab/0x3c0 [ 802.129566][T16711] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 802.129664][T16711] ? do_raw_spin_lock+0x12c/0x2b0 [ 802.129731][T16711] tomoyo_file_open+0x6b/0x90 [ 802.129775][T16711] security_file_open+0x84/0x1e0 [ 802.129809][T16711] do_dentry_open+0x596/0x1530 [ 802.129858][T16711] vfs_open+0x82/0x3f0 [ 802.129911][T16711] path_openat+0x1de4/0x2cb0 [ 802.129963][T16711] ? __pfx_path_openat+0x10/0x10 [ 802.130012][T16711] do_filp_open+0x20b/0x470 [ 802.130050][T16711] ? __pfx_do_filp_open+0x10/0x10 [ 802.130121][T16711] ? alloc_fd+0x471/0x7d0 [ 802.130164][T16711] do_sys_openat2+0x11b/0x1d0 [ 802.130212][T16711] ? __pfx_do_sys_openat2+0x10/0x10 [ 802.130277][T16711] __x64_sys_openat+0x174/0x210 [ 802.130338][T16711] ? __pfx___x64_sys_openat+0x10/0x10 [ 802.130409][T16711] do_syscall_64+0xcd/0xfa0 [ 802.130451][T16711] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 802.130486][T16711] RIP: 0033:0x7f5eecb8eec9 [ 802.130514][T16711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 802.130547][T16711] RSP: 002b:00007f5eed9ea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 802.130580][T16711] RAX: ffffffffffffffda RBX: 00007f5eecde6090 RCX: 00007f5eecb8eec9 [ 802.130603][T16711] RDX: 0000000000000040 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 802.130626][T16711] RBP: 00007f5eecc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 802.130646][T16711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 802.130665][T16711] R13: 00007f5eecde6128 R14: 00007f5eecde6090 R15: 00007ffeb47cf248 [ 802.130708][T16711] [ 802.130722][T16711] ERROR: Out of memory at tomoyo_realpath_from_path. [ 802.267605][T16710] true [ 802.397006][T16710] vivid-007: Generate SCR: true [ 802.486855][T16710] tpg source WxH: 320x240 (Y'CbCr) [ 802.492610][T16710] tpg field: 1 [ 802.496220][T16710] tpg crop: (0,0)/320x240 [ 802.505481][T16710] tpg compose: (0,0)/320x240 [ 802.513675][T16710] tpg colorspace: 8 [ 802.518229][T16710] tpg transfer function: 0/0 [ 802.522943][T16710] tpg Y'CbCr encoding: 0/0 [ 802.527526][T16710] tpg quantization: 0/0 [ 802.598006][T16710] tpg RGB range: 0/2 [ 802.601986][T16710] vivid-007: ================== END STATUS ================== [ 802.670901][T16722] __vm_enough_memory: pid: 16722, comm: syz.4.2145, bytes: 4398046511104 not enough memory for the allocation [ 803.293082][T13781] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 803.293124][T13781] Bluetooth: hci1: unexpected subevent 0x0e length: 725 > 15 [ 803.309637][T13781] Bluetooth: hci1: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 803.385659][T16738] serio: Serial port pty6 [ 803.651868][T16750] Invalid ELF header magic: != ELF [ 804.721162][T16764] binder: BINDER_SET_CONTEXT_MGR already set [ 804.781948][T16764] binder: 16763:16764 ioctl 4018620d 9 returned -16 [ 806.879603][T16812] serio: Serial port pty6 [ 808.544321][T16838] CIFS: VFS: Invalid SecurityFlags: [ 808.856841][T16835] Process accounting paused [ 809.238910][T16842] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 811.017098][T16885] bond0: option all_slaves_active: invalid value () [ 811.373259][T16903] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2183'. [ 811.789119][T16908] ima: Unable to open file: /suritRy/integrity?iqa/policy (-2) [ 812.516995][T16908] ima: policy update failed [ 812.552078][ T31] audit: type=1802 audit(4294967374.021:29): pid=16908 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.2184" res=0 errno=0 [ 813.404832][T16946] FAULT_INJECTION: forcing a failure. [ 813.404832][T16946] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 813.440153][T16946] CPU: 1 UID: 0 PID: 16946 Comm: syz.5.2191 Not tainted syzkaller #0 PREEMPT(full) [ 813.440196][T16946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 813.440215][T16946] Call Trace: [ 813.440225][T16946] [ 813.440237][T16946] dump_stack_lvl+0x16c/0x1f0 [ 813.440279][T16946] should_fail_ex+0x512/0x640 [ 813.440325][T16946] _copy_to_user+0x32/0xd0 [ 813.440371][T16946] simple_read_from_buffer+0xcb/0x170 [ 813.440427][T16946] proc_fail_nth_read+0x197/0x240 [ 813.440463][T16946] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 813.440500][T16946] ? rw_verify_area+0xcf/0x6c0 [ 813.440529][T16946] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 813.440564][T16946] vfs_read+0x1e1/0xcf0 [ 813.440604][T16946] ? __pfx___mutex_lock+0x10/0x10 [ 813.440645][T16946] ? __pfx_vfs_read+0x10/0x10 [ 813.440691][T16946] ? __fget_files+0x20e/0x3c0 [ 813.440720][T16946] ? __print_lock_name+0x80/0xe0 [ 813.440766][T16946] ksys_read+0x12a/0x250 [ 813.440799][T16946] ? __pfx_ksys_read+0x10/0x10 [ 813.440846][T16946] do_syscall_64+0xcd/0xfa0 [ 813.440885][T16946] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 813.440917][T16946] RIP: 0033:0x7faee798d8dc [ 813.440943][T16946] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 813.440974][T16946] RSP: 002b:00007faee5bf6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 813.441004][T16946] RAX: ffffffffffffffda RBX: 00007faee7be6180 RCX: 00007faee798d8dc [ 813.441032][T16946] RDX: 000000000000000f RSI: 00007faee5bf60a0 RDI: 0000000000000007 [ 813.441052][T16946] RBP: 00007faee5bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 813.441071][T16946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 813.441091][T16946] R13: 00007faee7be6218 R14: 00007faee7be6180 R15: 00007ffe321af378 [ 813.441136][T16946] [ 813.807286][T16950] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE r҄y*"l-y–L̓]' [ 813.833345][T16950] CPU: 0 UID: 0 PID: 16950 Comm: syz.4.2193 Not tainted syzkaller #0 PREEMPT(full) [ 813.833389][T16950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 813.833410][T16950] Call Trace: [ 813.833420][T16950] [ 813.833433][T16950] dump_stack_lvl+0x16c/0x1f0 [ 813.833476][T16950] sysfs_warn_dup+0x7f/0xa0 [ 813.833519][T16950] sysfs_do_create_link_sd+0x124/0x140 [ 813.833567][T16950] sysfs_create_link+0x61/0xc0 [ 813.833610][T16950] device_add+0x62c/0x1aa0 [ 813.833659][T16950] ? __pfx_device_add+0x10/0x10 [ 813.833699][T16950] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 813.833759][T16950] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 813.833809][T16950] wiphy_register+0x1eb0/0x2b20 [ 813.833853][T16950] ? netdev_run_todo+0x864/0x1320 [ 813.833910][T16950] ? __pfx_wiphy_register+0x10/0x10 [ 813.833980][T16950] ieee80211_register_hw+0x253d/0x4120 [ 813.834052][T16950] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 813.834098][T16950] ? __pfx___debug_object_init+0x10/0x10 [ 813.834140][T16950] ? find_held_lock+0x2b/0x80 [ 813.834175][T16950] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 813.834235][T16950] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 813.834270][T16950] ? __hrtimer_setup+0x176/0x280 [ 813.834327][T16950] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 813.834404][T16950] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 813.834468][T16950] hwsim_new_radio_nl+0xba2/0x1330 [ 813.834523][T16950] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 813.834587][T16950] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 813.834640][T16950] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 813.834702][T16950] genl_family_rcv_msg_doit+0x209/0x2f0 [ 813.834757][T16950] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 813.834824][T16950] ? bpf_lsm_capable+0x9/0x10 [ 813.834868][T16950] ? security_capable+0x7e/0x260 [ 813.834915][T16950] ? ns_capable+0xd7/0x110 [ 813.834956][T16950] genl_rcv_msg+0x55c/0x800 [ 813.835016][T16950] ? __pfx_genl_rcv_msg+0x10/0x10 [ 813.835066][T16950] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 813.835120][T16950] ? __lock_acquire+0x62e/0x1ce0 [ 813.835175][T16950] netlink_rcv_skb+0x158/0x420 [ 813.835217][T16950] ? __pfx_genl_rcv_msg+0x10/0x10 [ 813.835266][T16950] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 813.835328][T16950] ? netlink_deliver_tap+0x1ae/0xd30 [ 813.835376][T16950] genl_rcv+0x28/0x40 [ 813.835418][T16950] netlink_unicast+0x5a7/0x870 [ 813.835467][T16950] ? __pfx_netlink_unicast+0x10/0x10 [ 813.835509][T16950] ? __pfx___might_resched+0x10/0x10 [ 813.835543][T16950] ? __lock_acquire+0xb97/0x1ce0 [ 813.835602][T16950] netlink_sendmsg+0x8c8/0xdd0 [ 813.835652][T16950] ? __pfx_netlink_sendmsg+0x10/0x10 [ 813.835700][T16950] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 813.835756][T16950] ____sys_sendmsg+0xa98/0xc70 [ 813.835808][T16950] ? copy_msghdr_from_user+0x10a/0x160 [ 813.835847][T16950] ? __pfx_____sys_sendmsg+0x10/0x10 [ 813.835909][T16950] ? __pfx_futex_wake_mark+0x10/0x10 [ 813.835970][T16950] ___sys_sendmsg+0x134/0x1d0 [ 813.836021][T16950] ? __pfx____sys_sendmsg+0x10/0x10 [ 813.836121][T16950] __sys_sendmsg+0x16d/0x220 [ 813.836162][T16950] ? __pfx___sys_sendmsg+0x10/0x10 [ 813.836202][T16950] ? __x64_sys_futex+0x1e0/0x4c0 [ 813.836277][T16950] do_syscall_64+0xcd/0xfa0 [ 813.836318][T16950] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 813.836353][T16950] RIP: 0033:0x7f42dc58eec9 [ 813.836379][T16950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 813.836413][T16950] RSP: 002b:00007f42dd343038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 813.836447][T16950] RAX: ffffffffffffffda RBX: 00007f42dc7e5fa0 RCX: 00007f42dc58eec9 [ 813.836470][T16950] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003 [ 813.836490][T16950] RBP: 00007f42dc611f91 R08: 0000000000000000 R09: 0000000000000000 [ 813.836512][T16950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 813.836532][T16950] R13: 00007f42dc7e6038 R14: 00007f42dc7e5fa0 R15: 00007fffb24b1658 [ 813.836580][T16950] [ 818.548968][T17014] Process accounting resumed [ 819.809340][T17050] Invalid ELF header magic: != ELF [ 820.885047][T17069] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2216'. [ 820.895728][T17051] Process accounting paused [ 823.837461][T17110] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 824.492754][T17136] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [32767]. [ 826.165936][T13781] Bluetooth: hci3: unexpected subevent 0x01 length: 126 > 18 [ 828.211326][T13457] Bluetooth: hci3: command 0x0c1a tx timeout [ 830.786821][ T31] audit: type=1804 audit(4294967392.242:30): pid=17269 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2257" name="/newroot/361/file0" dev="tmpfs" ino=1904 res=1 errno=0 [ 830.845611][ T31] audit: type=1804 audit(4294967392.252:31): pid=17270 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.2257" name="/newroot/361/file0" dev="tmpfs" ino=1904 res=1 errno=0 [ 830.948400][T17260] zswap: compressor not available [ 831.777967][ T31] audit: type=1806 audit(4294967393.231:32): xattr="" res=-22 [ 835.833622][T17325] netlink: 346 bytes leftover after parsing attributes in process `syz.5.2270'. [ 836.071655][T17334] syz.1.2271(17334): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 836.280259][T17332] can: request_module (can-proto-0) failed. [ 836.401155][T17341] random: crng reseeded on system resumption [ 839.519283][T17355] Process accounting resumed [ 842.785142][T13457] Bluetooth: hci4: unexpected event 0x20 length: 123 > 7 [ 846.817293][T17465] zswap: compressor not available [ 847.469570][T17488] CIFS: VFS: Invalid SecurityFlags: [ 848.535969][T17510] can: request_module (can-proto-5) failed. [ 850.649220][T17502] Process accounting paused [ 852.365686][T13781] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 852.400116][T13781] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 852.429187][T13781] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 852.438983][T13781] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 852.446943][T13781] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 853.313530][T15496] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 853.608831][T15496] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 853.976362][T15496] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 854.098246][T15496] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 854.543010][T17549] chnl_net:caif_netlink_parms(): no params data found [ 854.554007][T13781] Bluetooth: hci0: command tx timeout [ 854.715026][T15496] gretap0: left allmulticast mode [ 854.720315][T15496] gretap0: left promiscuous mode [ 854.749385][T15496] bridge0: port 3(gretap0) entered disabled state [ 854.818514][T15496] bridge_slave_1: left allmulticast mode [ 854.878066][T15496] bridge_slave_1: left promiscuous mode [ 854.892228][T15496] bridge0: port 2(bridge_slave_1) entered disabled state [ 854.948151][T15496] bridge_slave_0: left allmulticast mode [ 854.998629][T15496] bridge_slave_0: left promiscuous mode [ 855.033080][T15496] bridge0: port 1(bridge_slave_0) entered disabled state [ 856.019450][T13781] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 856.118313][T17638] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2333'. [ 856.637397][T13457] Bluetooth: hci0: command tx timeout [ 856.745409][T17642] netlink: 'syz.2.2333': attribute type 27 has an invalid length. [ 856.781368][T17642] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2333'. [ 857.038547][T15496] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 857.067475][T15496] bond_slave_0: left allmulticast mode [ 857.157670][T15496] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 857.175677][T15496] bond_slave_1: left allmulticast mode [ 857.196692][T15496] bond0 (unregistering): Released all slaves [ 857.416364][T17627] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12 [ 857.480555][T17627] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12 [ 857.530629][T15496] 4fRd: left promiscuous mode [ 857.545523][T17627] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 858.012433][T17662] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2336'. [ 858.065684][T13457] Bluetooth: hci1: command 0x0c1a tx timeout [ 858.111051][T17549] bridge0: port 1(bridge_slave_0) entered blocking state [ 858.139377][T17549] bridge0: port 1(bridge_slave_0) entered disabled state [ 858.179163][T17549] bridge_slave_0: entered allmulticast mode [ 858.234805][T17549] bridge_slave_0: entered promiscuous mode [ 858.266515][T15496] tipc: Left network mode [ 858.272638][T17549] bridge0: port 2(bridge_slave_1) entered blocking state [ 858.299178][T17549] bridge0: port 2(bridge_slave_1) entered disabled state [ 858.325738][T17549] bridge_slave_1: entered allmulticast mode [ 858.337494][T17549] bridge_slave_1: entered promiscuous mode [ 858.608129][T17549] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 858.706419][T13457] Bluetooth: hci0: command tx timeout [ 858.768658][T17549] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 859.247998][T17549] team0: Port device team_slave_0 added [ 859.285909][T17549] team0: Port device team_slave_1 added [ 859.991388][T17549] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 860.013217][T17549] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 860.077654][T17549] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 860.403113][T17549] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 860.414087][T17549] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 860.442647][T17549] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 860.559837][T15496] hsr_slave_0: left promiscuous mode [ 860.586733][T15496] hsr_slave_1: left promiscuous mode [ 860.610679][T15496] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 860.628085][T15496] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 860.656874][T15496] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 860.667571][T15496] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 860.717779][T15496] veth1_macvtap: left promiscuous mode [ 860.723630][T15496] veth0_macvtap: left promiscuous mode [ 860.732725][T15496] veth1_vlan: left promiscuous mode [ 860.741762][T15496] veth0_vlan: left promiscuous mode [ 860.787675][T13457] Bluetooth: hci0: command tx timeout [ 861.204161][T17702] ptrace attach of "./syz-executor exec"[10134] was attempted by ",o]y G\x0b3P~ՆWo-'=.^6wI<*;Ġinr; qQ\x0azHjJ:lYLڠ}|-Y}i_%3?/#EM@PLi\x1bӟFLn{QiCs\x22LUSsc0T\x0d?H+FZK]Xalla{қBƁZN]ʪܬ(#]{[\x073)lS[nݓ֞q|+w(\x0dV3X\x07Ii1a*WBek\x07sIoo\x1bM$L&$sWW7EvLf2ٺ0 U\x1b|g:RoN7;i'•\x5cY'I2p?1`(N-s 7C[d7tYŖ]cU]%g#C\x0cٗ֩F}KCuIcΌۨgݖ34|ϛ$32(VMqJ,?:K#\x0a%Bmn..u=\x5cr!ƴYoyXy/''~BE`IY]OH\x22;Rg;:k0Kf\x22C\x1bī*K\x0b\x5cXqozL޼tpo2O(\x0dtbҵ҂r$h)t,qGWkJd\x0d [ 861.691779][T15496] team0 (unregistering): Port device team_slave_0 removed [ 862.381378][T17549] hsr_slave_0: entered promiscuous mode [ 862.408990][T17549] hsr_slave_1: entered promiscuous mode [ 863.869839][T17549] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 863.913843][T17549] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 863.967612][T17549] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 864.023313][T17549] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 864.447459][T17549] 8021q: adding VLAN 0 to HW filter on device bond0 [ 864.505990][T17549] 8021q: adding VLAN 0 to HW filter on device team0 [ 864.545007][T15510] bridge0: port 1(bridge_slave_0) entered blocking state [ 864.552298][T15510] bridge0: port 1(bridge_slave_0) entered forwarding state [ 864.660468][T15510] bridge0: port 2(bridge_slave_1) entered blocking state [ 864.667746][T15510] bridge0: port 2(bridge_slave_1) entered forwarding state [ 865.688810][T17549] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 865.762924][T17549] veth0_vlan: entered promiscuous mode [ 865.781712][T17549] veth1_vlan: entered promiscuous mode [ 865.827014][T17549] veth0_macvtap: entered promiscuous mode [ 865.843436][T17549] veth1_macvtap: entered promiscuous mode [ 865.874562][T17549] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 865.894966][T17549] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 865.918014][T15496] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 865.938866][T15496] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 865.967000][T15512] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 866.006592][T15512] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 866.072570][T15512] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 866.090066][T15512] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 866.128613][T15512] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 866.144622][T15512] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 866.297218][T17803] FAULT_INJECTION: forcing a failure. [ 866.297218][T17803] name failslab, interval 1, probability 0, space 0, times 0 [ 866.331941][T17803] CPU: 0 UID: 0 PID: 17803 Comm: syz.1.2314 Not tainted syzkaller #0 PREEMPT(full) [ 866.331990][T17803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 866.332009][T17803] Call Trace: [ 866.332020][T17803] [ 866.332032][T17803] dump_stack_lvl+0x16c/0x1f0 [ 866.332075][T17803] should_fail_ex+0x512/0x640 [ 866.332114][T17803] ? fs_reclaim_acquire+0xae/0x150 [ 866.332160][T17803] should_failslab+0xc2/0x120 [ 866.332204][T17803] __kmalloc_noprof+0xdd/0x880 [ 866.332257][T17803] ? tomoyo_encode2+0x100/0x3e0 [ 866.332297][T17803] ? tomoyo_encode2+0x100/0x3e0 [ 866.332329][T17803] tomoyo_encode2+0x100/0x3e0 [ 866.332369][T17803] tomoyo_encode+0x29/0x50 [ 866.332401][T17803] tomoyo_realpath_from_path+0x18f/0x6e0 [ 866.332440][T17803] ? tomoyo_profile+0x47/0x60 [ 866.332483][T17803] tomoyo_path_number_perm+0x245/0x580 [ 866.332532][T17803] ? tomoyo_path_number_perm+0x237/0x580 [ 866.332583][T17803] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 866.332636][T17803] ? find_held_lock+0x2b/0x80 [ 866.332707][T17803] ? find_held_lock+0x2b/0x80 [ 866.332740][T17803] ? hook_file_ioctl_common+0x145/0x410 [ 866.332802][T17803] ? __fget_files+0x20e/0x3c0 [ 866.332843][T17803] security_file_ioctl+0x9b/0x240 [ 866.332895][T17803] __x64_sys_ioctl+0xb7/0x210 [ 866.332945][T17803] do_syscall_64+0xcd/0xfa0 [ 866.332995][T17803] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 866.333027][T17803] RIP: 0033:0x7fb7b218eec9 [ 866.333054][T17803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 866.333084][T17803] RSP: 002b:00007fb7b2faf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 866.333115][T17803] RAX: ffffffffffffffda RBX: 00007fb7b23e5fa0 RCX: 00007fb7b218eec9 [ 866.333135][T17803] RDX: 0000200000000180 RSI: 00000000c0686611 RDI: 0000000000000007 [ 866.333155][T17803] RBP: 00007fb7b2faf090 R08: 0000000000000000 R09: 0000000000000000 [ 866.333174][T17803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 866.333193][T17803] R13: 00007fb7b23e6038 R14: 00007fb7b23e5fa0 R15: 00007ffea6f719a8 [ 866.333228][T17803] [ 866.333256][T17803] ERROR: Out of memory at tomoyo_realpath_from_path. [ 868.198395][T17857] FAULT_INJECTION: forcing a failure. [ 868.198395][T17857] name failslab, interval 1, probability 0, space 0, times 0 [ 868.217550][T17857] CPU: 1 UID: 0 PID: 17857 Comm: syz.1.2367 Not tainted syzkaller #0 PREEMPT(full) [ 868.217630][T17857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 868.217652][T17857] Call Trace: [ 868.217662][T17857] [ 868.217685][T17857] dump_stack_lvl+0x16c/0x1f0 [ 868.217747][T17857] should_fail_ex+0x512/0x640 [ 868.217787][T17857] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 868.217826][T17857] should_failslab+0xc2/0x120 [ 868.217870][T17857] kmem_cache_alloc_noprof+0x75/0x6e0 [ 868.217904][T17857] ? sk_prot_alloc+0x60/0x2a0 [ 868.217957][T17857] ? sk_prot_alloc+0x60/0x2a0 [ 868.217999][T17857] sk_prot_alloc+0x60/0x2a0 [ 868.218045][T17857] sk_alloc+0x36/0xc20 [ 868.218082][T17857] rds_create+0x9e/0x5f0 [ 868.218140][T17857] __sock_create+0x338/0x8d0 [ 868.218198][T17857] __sys_socket+0x14d/0x260 [ 868.218250][T17857] ? __pfx___sys_socket+0x10/0x10 [ 868.218300][T17857] ? xfd_validate_state+0x61/0x180 [ 868.218347][T17857] ? __pfx_ksys_write+0x10/0x10 [ 868.218393][T17857] __x64_sys_socket+0x72/0xb0 [ 868.218443][T17857] ? lockdep_hardirqs_on+0x7c/0x110 [ 868.218483][T17857] do_syscall_64+0xcd/0xfa0 [ 868.218524][T17857] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 868.218557][T17857] RIP: 0033:0x7fb7b218eec9 [ 868.218584][T17857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 868.218618][T17857] RSP: 002b:00007fb7b2faf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 868.218651][T17857] RAX: ffffffffffffffda RBX: 00007fb7b23e5fa0 RCX: 00007fb7b218eec9 [ 868.218673][T17857] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000015 [ 868.218700][T17857] RBP: 00007fb7b2211f91 R08: 0000000000000000 R09: 0000000000000000 [ 868.218721][T17857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 868.218740][T17857] R13: 00007fb7b23e6038 R14: 00007fb7b23e5fa0 R15: 00007ffea6f719a8 [ 868.218786][T17857] [ 868.455347][T17862] FAULT_INJECTION: forcing a failure. [ 868.455347][T17862] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 868.468563][T17862] CPU: 1 UID: 0 PID: 17862 Comm: syz.2.2368 Not tainted syzkaller #0 PREEMPT(full) [ 868.468603][T17862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 868.468623][T17862] Call Trace: [ 868.468634][T17862] [ 868.468646][T17862] dump_stack_lvl+0x16c/0x1f0 [ 868.468696][T17862] should_fail_ex+0x512/0x640 [ 868.468744][T17862] _copy_from_user+0x2e/0xd0 [ 868.468788][T17862] do_procmap_query+0x13a/0x1080 [ 868.468832][T17862] ? __pfx_do_procmap_query+0x10/0x10 [ 868.468878][T17862] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 868.468936][T17862] ? do_vfs_ioctl+0x128/0x14f0 [ 868.469018][T17862] ? __fget_files+0x20e/0x3c0 [ 868.469059][T17862] procfs_procmap_ioctl+0x9d/0xe0 [ 868.469098][T17862] ? __pfx_procfs_procmap_ioctl+0x10/0x10 [ 868.469139][T17862] __x64_sys_ioctl+0x18b/0x210 [ 868.469190][T17862] do_syscall_64+0xcd/0xfa0 [ 868.469231][T17862] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 868.469265][T17862] RIP: 0033:0x7f5eecb8eec9 [ 868.469291][T17862] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 868.469323][T17862] RSP: 002b:00007f5eeda0b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 868.469354][T17862] RAX: ffffffffffffffda RBX: 00007f5eecde5fa0 RCX: 00007f5eecb8eec9 [ 868.469376][T17862] RDX: 0000200000000180 RSI: 00000000c0686611 RDI: 0000000000000007 [ 868.469395][T17862] RBP: 00007f5eeda0b090 R08: 0000000000000000 R09: 0000000000000000 [ 868.469415][T17862] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 868.469435][T17862] R13: 00007f5eecde6038 R14: 00007f5eecde5fa0 R15: 00007ffeb47cf248 [ 868.469481][T17862] [ 869.611264][T17885] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 869.916932][T17897] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2375'. [ 869.942164][T17897] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2375'. [ 870.024111][T17897] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2375'. [ 870.035413][T17897] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2375'. [ 870.144332][T17897] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2375'. [ 870.245210][T17900] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2377'. [ 870.870323][T17910] FAULT_INJECTION: forcing a failure. [ 870.870323][T17910] name fail_futex, interval 1, probability 0, space 0, times 0 [ 870.961894][T17910] CPU: 0 UID: 0 PID: 17910 Comm: syz.1.2380 Not tainted syzkaller #0 PREEMPT(full) [ 870.961937][T17910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 870.961956][T17910] Call Trace: [ 870.961966][T17910] [ 870.961979][T17910] dump_stack_lvl+0x16c/0x1f0 [ 870.962023][T17910] should_fail_ex+0x512/0x640 [ 870.962071][T17910] get_futex_key+0x1d0/0x1560 [ 870.962113][T17910] ? get_pid_task+0x106/0x250 [ 870.962158][T17910] ? __pfx_get_futex_key+0x10/0x10 [ 870.962203][T17910] ? rcu_is_watching+0x12/0xc0 [ 870.962238][T17910] ? kfree+0x252/0x6d0 [ 870.962299][T17910] futex_wake+0xea/0x530 [ 870.962352][T17910] ? __pfx_futex_wake+0x10/0x10 [ 870.962417][T17910] ? __pfx_vfs_writev+0x10/0x10 [ 870.962445][T17910] ? __mutex_lock+0x1c5/0x1060 [ 870.962489][T17910] ? do_writev+0x218/0x340 [ 870.962527][T17910] do_futex+0x1e3/0x350 [ 870.962573][T17910] ? __pfx_do_futex+0x10/0x10 [ 870.962612][T17910] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 870.962658][T17910] __x64_sys_futex+0x1e0/0x4c0 [ 870.962710][T17910] ? __pfx___x64_sys_futex+0x10/0x10 [ 870.962759][T17910] ? __pfx_do_writev+0x10/0x10 [ 870.962804][T17910] do_syscall_64+0xcd/0xfa0 [ 870.962846][T17910] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 870.962881][T17910] RIP: 0033:0x7fb7b218eec9 [ 870.962908][T17910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 870.962942][T17910] RSP: 002b:00007fb7b2f8e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 870.962974][T17910] RAX: ffffffffffffffda RBX: 00007fb7b23e6098 RCX: 00007fb7b218eec9 [ 870.962996][T17910] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb7b23e609c [ 870.963018][T17910] RBP: 00007fb7b23e6090 R08: 00007fb7b2fb0000 R09: 0000000000000000 [ 870.963039][T17910] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000 [ 870.963059][T17910] R13: 00007fb7b23e6128 R14: 00007ffea6f718c0 R15: 00007ffea6f719a8 [ 870.963103][T17910] [ 876.331902][T17986] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 876.338063][T17986] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 876.418082][T17986] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 876.424350][T17986] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 876.431356][T17991] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2396'. [ 876.440818][T17991] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 876.450029][T17942] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 876.558070][T17986] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 876.679252][T17986] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 876.748301][T17991] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 876.766866][T17986] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 876.841998][T17994] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2397'. [ 876.906525][T17986] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 878.155677][T13457] Bluetooth: hci3: command 0x0c1a tx timeout [ 878.476645][T13457] Bluetooth: hci1: command 0x0c1a tx timeout [ 878.482746][T13457] Bluetooth: hci4: command 0x0c1a tx timeout [ 878.719042][T13457] Bluetooth: hci0: command 0x0c1a tx timeout [ 879.437086][T18025] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 880.238657][T13457] Bluetooth: hci3: command 0x0c1a tx timeout [ 880.559149][T13457] Bluetooth: hci1: command 0x0c1a tx timeout [ 880.800541][T13457] Bluetooth: hci0: command 0x0c1a tx timeout [ 881.252896][T13781] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 881.284422][T13781] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 881.294077][T13781] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 881.302716][T13781] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 881.313711][T13781] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 881.407988][T18055] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2408'. [ 881.998437][T15498] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 882.295334][T15498] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 882.494694][T15498] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 882.679616][T15498] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 882.879391][T13781] Bluetooth: hci0: command 0x0c1a tx timeout [ 883.235836][T18054] chnl_net:caif_netlink_parms(): no params data found [ 883.362892][T13781] Bluetooth: hci2: command tx timeout [ 883.436833][T18085] delete_channel: no stack [ 884.029074][T18054] bridge0: port 1(bridge_slave_0) entered blocking state [ 884.038584][T18054] bridge0: port 1(bridge_slave_0) entered disabled state [ 884.046300][T18054] bridge_slave_0: entered allmulticast mode [ 884.054912][T18054] bridge_slave_0: entered promiscuous mode [ 884.086836][T18054] bridge0: port 2(bridge_slave_1) entered blocking state [ 884.120926][T18054] bridge0: port 2(bridge_slave_1) entered disabled state [ 884.128264][T18054] bridge_slave_1: entered allmulticast mode [ 884.161527][T18054] bridge_slave_1: entered promiscuous mode [ 884.180109][T15498] gretap0: left allmulticast mode [ 884.188627][T15498] gretap0: left promiscuous mode [ 884.205978][T15498] bridge0: port 3(gretap0) entered disabled state [ 884.272649][T15498] bridge_slave_1: left allmulticast mode [ 884.278496][T15498] bridge_slave_1: left promiscuous mode [ 884.284284][T15498] bridge0: port 2(bridge_slave_1) entered disabled state [ 884.324842][T15498] bridge_slave_0: left allmulticast mode [ 884.331073][T15498] bridge_slave_0: left promiscuous mode [ 884.339032][T15498] bridge0: port 1(bridge_slave_0) entered disabled state [ 885.789102][T13781] Bluetooth: hci2: command tx timeout [ 886.050216][T15498]  (unregistering): (slave bond_slave_0): Releasing backup interface [ 886.089685][T15498]  (unregistering): (slave bond_slave_1): Releasing backup interface [ 886.108552][T15498]  (unregistering): Released all slaves [ 886.281612][T15498] 4fRd: left promiscuous mode [ 886.409226][T18054] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 886.471191][T15498] tipc: Left network mode [ 886.587032][T18054] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 886.928025][T18121] netlink: 93 bytes leftover after parsing attributes in process `syz.1.2422'. [ 886.975297][T18054] team0: Port device team_slave_0 added [ 887.127143][T18054] team0: Port device team_slave_1 added [ 887.253609][T18054] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 887.282578][T18054] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 887.352338][T18054] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 887.584612][T18054] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 887.617254][T18054] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 887.695095][T18054] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 887.841562][T13781] Bluetooth: hci2: command tx timeout [ 888.315023][T18054] hsr_slave_0: entered promiscuous mode [ 888.328754][T18054] hsr_slave_1: entered promiscuous mode [ 888.344313][T18054] debugfs: 'hsr0' already exists in 'hsr' [ 888.366305][T18054] Cannot create hsr debugfs directory [ 889.404376][T15498] hsr_slave_0: left promiscuous mode [ 889.438833][T15498] hsr_slave_1: left promiscuous mode [ 889.449276][T15498] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 889.461398][T15498] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 889.475115][T15498] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 889.488901][T15498] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 889.588364][T15498] veth1_macvtap: left promiscuous mode [ 889.925918][T13781] Bluetooth: hci2: command tx timeout [ 892.554942][T15498] team0 (unregistering): Port device team_slave_0 removed [ 895.216488][T18054] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 895.242334][T18054] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 895.274251][T18054] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 895.302965][T18054] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 895.626946][T18054] 8021q: adding VLAN 0 to HW filter on device bond0 [ 895.743750][T18054] 8021q: adding VLAN 0 to HW filter on device team0 [ 895.811462][T18255] FAULT_INJECTION: forcing a failure. [ 895.811462][T18255] name failslab, interval 1, probability 0, space 0, times 0 [ 895.828799][T17967] bridge0: port 1(bridge_slave_0) entered blocking state [ 895.836027][T17967] bridge0: port 1(bridge_slave_0) entered forwarding state [ 895.848638][T18255] CPU: 0 UID: 0 PID: 18255 Comm: syz.1.2444 Not tainted syzkaller #0 PREEMPT(full) [ 895.848688][T18255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 895.848708][T18255] Call Trace: [ 895.848718][T18255] [ 895.848729][T18255] dump_stack_lvl+0x16c/0x1f0 [ 895.848773][T18255] should_fail_ex+0x512/0x640 [ 895.848812][T18255] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 895.848850][T18255] should_failslab+0xc2/0x120 [ 895.848895][T18255] kmem_cache_alloc_noprof+0x75/0x6e0 [ 895.848930][T18255] ? sk_prot_alloc+0x60/0x2a0 [ 895.848983][T18255] ? sk_prot_alloc+0x60/0x2a0 [ 895.849025][T18255] ? find_held_lock+0x2b/0x80 [ 895.849058][T18255] sk_prot_alloc+0x60/0x2a0 [ 895.849108][T18255] sk_alloc+0x36/0xc20 [ 895.849146][T18255] inet6_create+0x381/0x12b0 [ 895.849192][T18255] ? inet6_create+0x7f/0x12b0 [ 895.849238][T18255] __sock_create+0x338/0x8d0 [ 895.849298][T18255] __sys_socket+0x14d/0x260 [ 895.849362][T18255] ? __pfx___sys_socket+0x10/0x10 [ 895.849410][T18255] ? xfd_validate_state+0x61/0x180 [ 895.849453][T18255] ? __pfx___do_sys_prctl+0x10/0x10 [ 895.849513][T18255] __x64_sys_socket+0x72/0xb0 [ 895.849560][T18255] ? lockdep_hardirqs_on+0x7c/0x110 [ 895.849597][T18255] do_syscall_64+0xcd/0xfa0 [ 895.849642][T18255] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 895.849674][T18255] RIP: 0033:0x7fb7b218eec9 [ 895.849699][T18255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 895.849730][T18255] RSP: 002b:00007fb7b2faf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 895.849759][T18255] RAX: ffffffffffffffda RBX: 00007fb7b23e5fa0 RCX: 00007fb7b218eec9 [ 895.849780][T18255] RDX: 0000000000000100 RSI: 0000000000000001 RDI: 000000000000000a [ 895.849798][T18255] RBP: 00007fb7b2211f91 R08: 0000000000000000 R09: 0000000000000000 [ 895.849817][T18255] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 895.849836][T18255] R13: 00007fb7b23e6038 R14: 00007fb7b23e5fa0 R15: 00007ffea6f719a8 [ 895.849880][T18255] [ 896.105491][T13455] bridge0: port 2(bridge_slave_1) entered blocking state [ 896.112756][T13455] bridge0: port 2(bridge_slave_1) entered forwarding state [ 896.722718][T18054] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 896.928766][T18054] veth0_vlan: entered promiscuous mode [ 896.992005][T18054] veth1_vlan: entered promiscuous mode [ 897.153901][T13781] Bluetooth: hci0: unexpected event 0x23 length: 127 > 13 [ 897.156469][T18054] veth0_macvtap: entered promiscuous mode [ 897.491507][T18054] veth1_macvtap: entered promiscuous mode [ 897.605420][T18276] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2445'. [ 897.699760][T18054] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 897.781669][T18054] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 897.822497][T17968] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 897.905100][T17968] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 897.952377][T17968] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 897.975400][T17968] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 898.377592][T17968] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 898.402076][T17968] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 898.461000][T13455] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 898.474235][T13455] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 900.231053][T18372] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2465'. [ 900.699215][T18372] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 900.728797][T18386] EXT4-fs error (device sda1): trigger_test_error:129: comm syz.1.2467: 7 [ 902.598810][T18424] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2476'. [ 902.655464][T18424] netlink: 5 bytes leftover after parsing attributes in process `syz.1.2476'. [ 902.694396][T18424] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2476'. [ 903.025676][T13781] Bluetooth: hci4: unexpected event 0x23 length: 127 > 13 [ 903.259294][T18440] qrtr: Invalid version 0 [ 903.313678][T18440] FAULT_INJECTION: forcing a failure. [ 903.313678][T18440] name failslab, interval 1, probability 0, space 0, times 0 [ 903.330102][T18440] CPU: 0 UID: 0 PID: 18440 Comm: syz.1.2482 Not tainted syzkaller #0 PREEMPT(full) [ 903.330135][T18440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 903.330150][T18440] Call Trace: [ 903.330157][T18440] [ 903.330168][T18440] dump_stack_lvl+0x16c/0x1f0 [ 903.330200][T18440] should_fail_ex+0x512/0x640 [ 903.330230][T18440] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 903.330257][T18440] should_failslab+0xc2/0x120 [ 903.330289][T18440] kmem_cache_alloc_noprof+0x75/0x6e0 [ 903.330313][T18440] ? is_bpf_text_address+0x8a/0x1a0 [ 903.330346][T18440] ? __kernfs_new_node+0xd2/0x8e0 [ 903.330382][T18440] ? __kernfs_new_node+0xd2/0x8e0 [ 903.330409][T18440] __kernfs_new_node+0xd2/0x8e0 [ 903.330448][T18440] ? unwind_get_return_address+0x59/0xa0 [ 903.330476][T18440] ? __pfx___kernfs_new_node+0x10/0x10 [ 903.330514][T18440] ? find_held_lock+0x2b/0x80 [ 903.330540][T18440] ? kernfs_root+0xee/0x2a0 [ 903.330576][T18440] kernfs_new_node+0x13c/0x1e0 [ 903.330616][T18440] kernfs_create_dir_ns+0x4c/0x1a0 [ 903.330655][T18440] sysfs_create_dir_ns+0x13a/0x2b0 [ 903.330685][T18440] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 903.330712][T18440] ? find_held_lock+0x2b/0x80 [ 903.330741][T18440] ? nfs_netns_namespace+0xd/0x40 [ 903.330775][T18440] kobject_add_internal+0x2c4/0x9b0 [ 903.330812][T18440] kobject_init_and_add+0x11b/0x190 [ 903.330846][T18440] ? __pfx_kobject_init_and_add+0x10/0x10 [ 903.330896][T18440] nfs_netns_sysfs_setup+0xf9/0x1f0 [ 903.330932][T18440] nfs_net_init+0x10a/0x340 [ 903.330965][T18440] ? __pfx_nfs_net_init+0x10/0x10 [ 903.330996][T18440] ops_init+0x1df/0x5f0 [ 903.331028][T18440] setup_net+0x100/0x390 [ 903.331062][T18440] ? __pfx_setup_net+0x10/0x10 [ 903.331093][T18440] ? debug_mutex_init+0x37/0x70 [ 903.331121][T18440] copy_net_ns+0x2f8/0x690 [ 903.331157][T18440] create_new_namespaces+0x3ea/0xa90 [ 903.331192][T18440] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 903.331223][T18440] ksys_unshare+0x45b/0xa40 [ 903.331253][T18440] ? native_tss_update_io_bitmap+0x3e1/0x770 [ 903.331292][T18440] ? __pfx_ksys_unshare+0x10/0x10 [ 903.331326][T18440] ? xfd_validate_state+0x61/0x180 [ 903.331369][T18440] __x64_sys_unshare+0x31/0x40 [ 903.331400][T18440] do_syscall_64+0xcd/0xfa0 [ 903.331436][T18440] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 903.331460][T18440] RIP: 0033:0x7fb7b218eec9 [ 903.331479][T18440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 903.331503][T18440] RSP: 002b:00007fb7b2faf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 903.331526][T18440] RAX: ffffffffffffffda RBX: 00007fb7b23e5fa0 RCX: 00007fb7b218eec9 [ 903.331542][T18440] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 903.331556][T18440] RBP: 00007fb7b2211f91 R08: 0000000000000000 R09: 0000000000000000 [ 903.331571][T18440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 903.331585][T18440] R13: 00007fb7b23e6038 R14: 00007fb7b23e5fa0 R15: 00007ffea6f719a8 [ 903.331617][T18440] [ 903.331666][T18440] kobject: kobject_add_internal failed for net (error: -12 parent: nfs) [ 903.787251][T18444] usb usb36: usbfs: process 18444 (syz.2.2483) did not claim interface 0 before use [ 903.889923][T18444] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2483'. [ 904.950084][T18487] bond0: option fail_over_mac: invalid value () [ 905.014764][T18488] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2493'. [ 906.333548][T13781] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18 [ 906.794883][T18516] openvswitch: netlink: Message has 4 unknown bytes. [ 908.412206][T13457] Bluetooth: hci4: command 0x0c1a tx timeout [ 908.516111][T13457] Bluetooth: hci1: unexpected event 0x23 length: 127 > 13 [ 909.044151][T18583] netlink: 186 bytes leftover after parsing attributes in process `syz.2.2517'. [ 909.087156][T18583] netlink: 186 bytes leftover after parsing attributes in process `syz.2.2517'. [ 912.188763][T18637] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2527'. [ 912.254283][T18637] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2527'. [ 912.707294][T18657] FAULT_INJECTION: forcing a failure. [ 912.707294][T18657] name failslab, interval 1, probability 0, space 0, times 0 [ 912.720580][T18657] CPU: 1 UID: 0 PID: 18657 Comm: syz.1.2533 Not tainted syzkaller #0 PREEMPT(full) [ 912.720626][T18657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 912.720649][T18657] Call Trace: [ 912.720660][T18657] [ 912.720673][T18657] dump_stack_lvl+0x16c/0x1f0 [ 912.720717][T18657] should_fail_ex+0x512/0x640 [ 912.720759][T18657] ? __kmalloc_noprof+0xca/0x880 [ 912.720817][T18657] should_failslab+0xc2/0x120 [ 912.720863][T18657] __kmalloc_noprof+0xdd/0x880 [ 912.720918][T18657] ? lsm_blob_alloc+0x68/0x90 [ 912.720965][T18657] ? lsm_blob_alloc+0x68/0x90 [ 912.721002][T18657] lsm_blob_alloc+0x68/0x90 [ 912.721041][T18657] security_sk_alloc+0x30/0x270 [ 912.721091][T18657] sk_prot_alloc+0xfb/0x2a0 [ 912.721168][T18657] sk_alloc+0x36/0xc20 [ 912.721205][T18657] inet_create+0x3a1/0x1040 [ 912.721240][T18657] ? inet_create+0x93/0x1040 [ 912.721280][T18657] __sock_create+0x338/0x8d0 [ 912.721344][T18657] smc_create+0x15d/0x2a0 [ 912.721381][T18657] __sock_create+0x338/0x8d0 [ 912.721440][T18657] __sys_socket+0x14d/0x260 [ 912.721499][T18657] ? __pfx___sys_socket+0x10/0x10 [ 912.721550][T18657] ? xfd_validate_state+0x61/0x180 [ 912.721598][T18657] ? __pfx_do_writev+0x10/0x10 [ 912.721641][T18657] __x64_sys_socket+0x72/0xb0 [ 912.721691][T18657] ? lockdep_hardirqs_on+0x7c/0x110 [ 912.721729][T18657] do_syscall_64+0xcd/0xfa0 [ 912.721771][T18657] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 912.721805][T18657] RIP: 0033:0x7fb7b218eec9 [ 912.721831][T18657] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 912.721865][T18657] RSP: 002b:00007fb7b2faf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 912.721897][T18657] RAX: ffffffffffffffda RBX: 00007fb7b23e5fa0 RCX: 00007fb7b218eec9 [ 912.721919][T18657] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000002b [ 912.721939][T18657] RBP: 00007fb7b2211f91 R08: 0000000000000000 R09: 0000000000000000 [ 912.721959][T18657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 912.721979][T18657] R13: 00007fb7b23e6038 R14: 00007fb7b23e5fa0 R15: 00007ffea6f719a8 [ 912.722026][T18657] [ 912.937413][ C1] vkms_vblank_simulate: vblank timer overrun [ 913.008768][T18660] netlink: 346 bytes leftover after parsing attributes in process `syz.4.2534'. [ 913.169290][T18664] __vm_enough_memory: pid: 18664, comm: syz.1.2536, bytes: 4398046511104 not enough memory for the allocation [ 913.190685][T18664] kafs: addr_prefs: Too many elements in string [ 914.007507][T18688] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2540'. [ 914.020136][T18688] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2540'. [ 914.030651][T18688] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2540'. [ 914.041985][T18688] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2540'. [ 914.051832][T18688] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2540'. [ 914.069094][T18688] netlink: 'syz.1.2540': attribute type 2 has an invalid length. [ 914.079982][T18688] netlink: 'syz.1.2540': attribute type 3 has an invalid length. [ 914.088112][T18688] netlink: 154 bytes leftover after parsing attributes in process `syz.1.2540'. [ 914.143474][ T31] audit: type=1804 audit(4294967353.091:33): pid=18688 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2540" name="/newroot/46/file0" dev="tmpfs" ino=260 res=1 errno=0 [ 914.164660][ C1] vkms_vblank_simulate: vblank timer overrun [ 914.794714][T18715] FAULT_INJECTION: forcing a failure. [ 914.794714][T18715] name failslab, interval 1, probability 0, space 0, times 0 [ 914.818187][T18702] __vm_enough_memory: pid: 18702, comm: syz.1.2543, bytes: 4398046511104 not enough memory for the allocation [ 914.849687][T18715] CPU: 0 UID: 0 PID: 18715 Comm: syz.2.2545 Not tainted syzkaller #0 PREEMPT(full) [ 914.849724][T18715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 914.849739][T18715] Call Trace: [ 914.849746][T18715] [ 914.849755][T18715] dump_stack_lvl+0x16c/0x1f0 [ 914.849796][T18715] should_fail_ex+0x512/0x640 [ 914.849826][T18715] ? fs_reclaim_acquire+0xae/0x150 [ 914.849860][T18715] should_failslab+0xc2/0x120 [ 914.849892][T18715] __kmalloc_noprof+0xdd/0x880 [ 914.849931][T18715] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 914.849964][T18715] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 914.849989][T18715] tomoyo_realpath_from_path+0xc2/0x6e0 [ 914.850017][T18715] ? tomoyo_profile+0x47/0x60 [ 914.850049][T18715] tomoyo_path_number_perm+0x245/0x580 [ 914.850094][T18715] ? tomoyo_path_number_perm+0x237/0x580 [ 914.850134][T18715] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 914.850170][T18715] ? futex_wake+0x1ad/0x530 [ 914.850238][T18715] ? find_held_lock+0x2b/0x80 [ 914.850263][T18715] ? hook_file_ioctl_common+0x145/0x410 [ 914.850310][T18715] ? __fget_files+0x20e/0x3c0 [ 914.850339][T18715] security_file_ioctl+0x9b/0x240 [ 914.850379][T18715] __x64_sys_ioctl+0xb7/0x210 [ 914.850417][T18715] do_syscall_64+0xcd/0xfa0 [ 914.850446][T18715] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 914.850471][T18715] RIP: 0033:0x7f5daa18eec9 [ 914.850489][T18715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 914.850513][T18715] RSP: 002b:00007f5dab0ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 914.850536][T18715] RAX: ffffffffffffffda RBX: 00007f5daa3e5fa0 RCX: 00007f5daa18eec9 [ 914.850551][T18715] RDX: ffffffffffffffff RSI: 0000000080000201 RDI: 000000000000000a [ 914.850566][T18715] RBP: 00007f5daa211f91 R08: 0000000000000000 R09: 0000000000000000 [ 914.850580][T18715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 914.850594][T18715] R13: 00007f5daa3e6038 R14: 00007f5daa3e5fa0 R15: 00007ffd81421a58 [ 914.850626][T18715] [ 914.850635][T18715] ERROR: Out of memory at tomoyo_realpath_from_path. [ 916.206985][ T31] audit: type=1326 audit(4294967355.160:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18738 comm="syz.2.2552" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5daa18eec9 code=0x0 [ 918.909549][T18783] erspan0: entered allmulticast mode [ 921.009123][T18817] QAT: Stopping all acceleration devices. [ 921.240794][T18825] input input16: cannot allocate more than FF_MAX_EFFECTS effects [ 922.302559][T18849] sd 0:0:1:0: PR command failed: 1026 [ 922.320359][T18849] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 922.328148][T18849] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 922.352504][T18849] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2580'. [ 922.396348][T18849] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2580'. [ 924.202409][T18891] ptrace attach of "./syz-executor exec"[9771] was attempted by "./syz-executor exec"[18891] [ 926.022370][T18947] QAT: Stopping all acceleration devices. [ 927.018086][T18963] netlink: 146 bytes leftover after parsing attributes in process `syz.4.2603'. [ 927.238269][T18963] netlink: 334 bytes leftover after parsing attributes in process `syz.4.2603'. [ 930.629697][T19032] random: crng reseeded on system resumption [ 935.432358][T19136] netlink: 'syz.1.2644': attribute type 8 has an invalid length. [ 936.497534][T19156] ------------[ cut here ]------------ [ 936.503385][T19156] memcpy: detected field-spanning write (size 6) of single field "&entry->id" at kernel/trace/trace.c:7458 (size 4) [ 936.516245][T19156] WARNING: CPU: 1 PID: 19156 at kernel/trace/trace.c:7458 write_raw_marker_to_buffer.isra.0+0x2d4/0x330 [ 936.527527][T19156] Modules linked in: [ 936.531674][T19156] CPU: 1 UID: 0 PID: 19156 Comm: syz.1.2650 Not tainted syzkaller #0 PREEMPT(full) [ 936.541105][T19156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 936.551786][T19156] RIP: 0010:write_raw_marker_to_buffer.isra.0+0x2d4/0x330 [ 936.559732][T19156] Code: ff e8 30 74 fa ff c6 05 b4 7e aa 0e 01 90 b9 04 00 00 00 48 c7 c2 e0 1e 93 8b 4c 89 e6 48 c7 c7 40 1f 93 8b e8 6d fc b8 ff 90 <0f> 0b 90 90 e9 d7 fe ff ff e8 6e 04 62 00 e9 da fd ff ff e8 64 04 [ 936.579457][T19156] RSP: 0018:ffffc9000ac17b98 EFLAGS: 00010286 [ 936.585755][T19156] RAX: 0000000000000000 RBX: ffff8880788e30a8 RCX: ffffc90010388000 [ 936.593766][T19156] RDX: 0000000000080000 RSI: ffffffff817a5e65 RDI: 0000000000000001 [ 936.601967][T19156] RBP: ffff8880788e309c R08: 0000000000000001 R09: 0000000000000000 [ 936.610396][T19156] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000006 [ 936.618684][T19156] R13: ffff88813ff18c00 R14: 0000000000000000 R15: 0000000000000000 [ 936.626728][T19156] FS: 00007fb7b2faf6c0(0000) GS:ffff888124ae6000(0000) knlGS:0000000000000000 [ 936.635749][T19156] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 936.642370][T19156] CR2: 00007f5daa3b4198 CR3: 000000007b88e000 CR4: 00000000003526f0 [ 936.650869][T19156] Call Trace: [ 936.654184][T19156] [ 936.657521][T19156] tracing_mark_raw_write+0x2da/0x4a0 [ 936.662967][T19156] ? __pfx_tracing_mark_raw_write+0x10/0x10 [ 936.668969][T19156] ? __pfx_tracing_mark_raw_write+0x10/0x10 [ 936.674970][T19156] vfs_writev+0x5dc/0xde0 [ 936.679333][T19156] ? __pfx_vfs_writev+0x10/0x10 [ 936.684213][T19156] ? kmem_cache_free+0x2d4/0x6c0 [ 936.689230][T19156] ? putname+0x154/0x1a0 [ 936.693568][T19156] ? __fget_files+0x20e/0x3c0 [ 936.698429][T19156] ? do_writev+0x28c/0x340 [ 936.702903][T19156] do_writev+0x28c/0x340 [ 936.707275][T19156] ? __pfx_do_writev+0x10/0x10 [ 936.712098][T19156] do_syscall_64+0xcd/0xfa0 [ 936.716717][T19156] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 936.722672][T19156] RIP: 0033:0x7fb7b218eec9 [ 936.727192][T19156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 936.747037][T19156] RSP: 002b:00007fb7b2faf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 936.755885][T19156] RAX: ffffffffffffffda RBX: 00007fb7b23e5fa0 RCX: 00007fb7b218eec9 [ 936.763887][T19156] RDX: 0000000000000004 RSI: 0000200000000140 RDI: 0000000000000004 [ 936.772274][T19156] RBP: 00007fb7b2211f91 R08: 0000000000000000 R09: 0000000000000000 [ 936.780479][T19156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 936.788519][T19156] R13: 00007fb7b23e6038 R14: 00007fb7b23e5fa0 R15: 00007ffea6f719a8 [ 936.796604][T19156] [ 936.799669][T19156] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 936.807009][T19156] CPU: 1 UID: 0 PID: 19156 Comm: syz.1.2650 Not tainted syzkaller #0 PREEMPT(full) [ 936.816489][T19156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 936.826577][T19156] Call Trace: [ 936.829898][T19156] [ 936.832883][T19156] dump_stack_lvl+0x3d/0x1f0 [ 936.837554][T19156] vpanic+0x640/0x6f0 [ 936.841616][T19156] ? write_raw_marker_to_buffer.isra.0+0x2d4/0x330 [ 936.848146][T19156] panic+0xca/0xd0 [ 936.851914][T19156] ? __pfx_panic+0x10/0x10 [ 936.856475][T19156] check_panic_on_warn+0xab/0xb0 [ 936.861488][T19156] __warn+0xf6/0x3c0 [ 936.865534][T19156] ? write_raw_marker_to_buffer.isra.0+0x2d4/0x330 [ 936.872074][T19156] report_bug+0x3c3/0x580 [ 936.876448][T19156] ? write_raw_marker_to_buffer.isra.0+0x2d4/0x330 [ 936.883002][T19156] handle_bug+0x184/0x210 [ 936.887374][T19156] exc_invalid_op+0x17/0x50 [ 936.891923][T19156] asm_exc_invalid_op+0x1a/0x20 [ 936.896805][T19156] RIP: 0010:write_raw_marker_to_buffer.isra.0+0x2d4/0x330 [ 936.903983][T19156] Code: ff e8 30 74 fa ff c6 05 b4 7e aa 0e 01 90 b9 04 00 00 00 48 c7 c2 e0 1e 93 8b 4c 89 e6 48 c7 c7 40 1f 93 8b e8 6d fc b8 ff 90 <0f> 0b 90 90 e9 d7 fe ff ff e8 6e 04 62 00 e9 da fd ff ff e8 64 04 [ 936.923624][T19156] RSP: 0018:ffffc9000ac17b98 EFLAGS: 00010286 [ 936.929880][T19156] RAX: 0000000000000000 RBX: ffff8880788e30a8 RCX: ffffc90010388000 [ 936.938057][T19156] RDX: 0000000000080000 RSI: ffffffff817a5e65 RDI: 0000000000000001 [ 936.946059][T19156] RBP: ffff8880788e309c R08: 0000000000000001 R09: 0000000000000000 [ 936.954084][T19156] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000006 [ 936.962093][T19156] R13: ffff88813ff18c00 R14: 0000000000000000 R15: 0000000000000000 [ 936.970118][T19156] ? __warn_printk+0x1a5/0x350 [ 936.974931][T19156] ? write_raw_marker_to_buffer.isra.0+0x2d3/0x330 [ 936.981472][T19156] tracing_mark_raw_write+0x2da/0x4a0 [ 936.986877][T19156] ? __pfx_tracing_mark_raw_write+0x10/0x10 [ 936.992805][T19156] ? __pfx_tracing_mark_raw_write+0x10/0x10 [ 936.998720][T19156] vfs_writev+0x5dc/0xde0 [ 937.003093][T19156] ? __pfx_vfs_writev+0x10/0x10 [ 937.008060][T19156] ? kmem_cache_free+0x2d4/0x6c0 [ 937.013032][T19156] ? putname+0x154/0x1a0 [ 937.017425][T19156] ? __fget_files+0x20e/0x3c0 [ 937.022149][T19156] ? do_writev+0x28c/0x340 [ 937.026593][T19156] do_writev+0x28c/0x340 [ 937.030865][T19156] ? __pfx_do_writev+0x10/0x10 [ 937.035654][T19156] do_syscall_64+0xcd/0xfa0 [ 937.040176][T19156] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 937.046096][T19156] RIP: 0033:0x7fb7b218eec9 [ 937.050520][T19156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 937.070156][T19156] RSP: 002b:00007fb7b2faf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 937.078588][T19156] RAX: ffffffffffffffda RBX: 00007fb7b23e5fa0 RCX: 00007fb7b218eec9 [ 937.086568][T19156] RDX: 0000000000000004 RSI: 0000200000000140 RDI: 0000000000000004 [ 937.094632][T19156] RBP: 00007fb7b2211f91 R08: 0000000000000000 R09: 0000000000000000 [ 937.102612][T19156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 937.110595][T19156] R13: 00007fb7b23e6038 R14: 00007fb7b23e5fa0 R15: 00007ffea6f719a8 [ 937.118629][T19156] [ 937.122054][T19156] Kernel Offset: disabled [ 937.126416][T19156] Rebooting in 86400 seconds..