last executing test programs: 6.25923347s ago: executing program 3 (id=7120): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket(0x11, 0x3, 0x2) getsockopt$auto(r0, 0x107, 0xc, 0x0, 0x0) r1 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cuse\x00', 0x400, 0x0) pread64$auto(r1, &(0x7f0000000000)='\x17d~v\apts/ptmx\x00', 0x10000000005, 0x6) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), 0xffffffffffffffff) r4 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000002c0), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'caif0\x00', 0x0}) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r5, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000000)={0x1c, r4, 0x101, 0x70bd2b, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x60040440}, 0x800) sendmsg$auto_NL802154_CMD_SET_CHANNEL(r2, &(0x7f0000001500)={&(0x7f0000000040), 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x13a0, r3, 0x2, 0x70bd2c, 0x25dfdbfb, {}, [@NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0x6}, @NL802154_ATTR_SCAN_CHANNELS={0x8, 0x21, 0x5}, @NL802154_ATTR_SEC_OUT_KEY_ID={0xa9, 0x2b, 0x0, 0x1, [@generic="d5920095ea156289433d08b212fbba9b1c73112a4d42c833094e7dc187c0f00f2a4c026a9c5727dd0eab3525615f5553301bfed919fe7b45266363869a09b03d482a575b6257dc57c9786c86499b32cb010f32e65c56ea65fab17d4305e817f9635d0b08be7f9ac4c80cdd39963634bbe4dee774c1e965d3c0e9113a66215a6dc93a87f5e8f0738679280b45e1074a280041c3f536ea5701879b75a9ac4cd3ef8cd0e4a380"]}, @NL802154_ATTR_WPAN_PHY_CAPS={0x122b, 0x18, 0x0, 0x1, [@generic="dc3cac1ddc46bd4b8a09c32a3a39156382a6bef1669d687f406a8c3fad6fe15b5c5e87", @typed={0x27, 0x1e, 0x0, 0x0, @binary="ab39d45316beec0c6a037e52b2b57d031890a74277cefbe1f8b93de1bbd93e175c0ac1"}, @nested={0x103, 0x11e, 0x0, 0x1, [@generic="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"]}, @typed={0x8, 0x5e, 0x0, 0x0, @uid=0xee00}, @typed={0x8, 0xf1, 0x0, 0x0, @u32=0xb}, @nested={0x10c8, 0x87, 0x0, 0x1, [@nested={0x4, 0x9}, @generic="2896e4ff783b696467db9a3900d17f174495a3fbeb73ccb2abf1517013b1edc12194fe24a84df7bc1e6402e3964cf6a599ca34ca75c6874e4c2ca1450953384aca33ea94547fff4010f2f525f449339cde6f1d87eccc04b1cf802dea1b967989260441f6125474b0eb90dd220d3fe3f13f8a63c50baf91ceea4b8f8bf12ec67632085824e2dd60e7f7901a9b991c7828947ee4f615a347a210704f17fdac9d02fd831d96c64c2a71e096ca717806ca23aefd18e246229837e7011a4659f95e437083f3c6c873e2964d763ef3dd88a06904d7e81d2f118b57a039c480d9c14cbaddfdb4339d388df54e2fa53c24f9b4274a0c4f17f1a1cefb8c78fe8c78a7423203f6f4684f47425b8a8ffc22b391a91dd78db159846495c9c99dec3c8806cd7e47b4a4780c9cbea2607f3b9890306b0f1d09464a0f2caa8e02019369178a9a8d1d05d1197a7b47d7479ab3954bc61d988991e46b1df53844d00e4df1120bf8de2b77d14e1697c5e20884f9c264cb8ebf458179859e50b152f2dd17feccb06d11cfe3221ba224d75d0fda01b1a83d1ee0624b17b1c0bf66b9d36c471ba3df9f85ee3f13e88259eb7e33c8c0e48053ed45ee082f7758f9f3b665eaaaa6f75e3e9606da44ff6837d34d903e37642de8b7a5b32f92103d9e300c8f8da292317d27355d8865123cc6dc199f6d0d70dc19c999ed1bc278c2986f7673edb91f36630531a8bf0fca118b16ac399624da0e755a799bc0fb3c10ac7f5618d6ad935b7e2d01c5893083376c227330ebf0271387180df8ca5e0963cc4a8c25f16b60faa0bc8b52caf76ac65804a48976ea9368d3be95a08d9cda7a1a2c98bc0d4383d0af43462f6e905ca6865a9f1f6b484ec392233c74ce72bdc2e24971d359f40c73528caf5444a521d3950dd0b6f5c1ae4bc35607dc03ae98e22a722389b1200a04e087e8134ce06c30c0ff76acc9923c64d67b7ef40cc600b4860bbaff60b2db7bfadc134a2ffe42cccdaade47420db8e6db507e21699f50aff905bd991fc92992f35eeaad0b5374ed9e85279ca9293caea9a6bcb4427e7ab58368ec8aef840b1d791bc71c0ab188c4ed0a4f0c3d5f32260187b32ec0a156eca9c3fead54dc7ed46cb9cafd8e87c3b0f243cccc57ca8b1bfbe832d8ada66095c2c3c3adf56ccae96041f50badfdfc42f0c199bccb2d905aaec80797a2e1e90c9453901d8802633aaa06c28c95f6ec22bd76b627b92ff6157acd1ad3e1c714c03c4f233d0ba8d05590106bf019477f5a8185a9f10ff2843dde62aab99b8fb44e7d230fd24a5ed838e650740cad1d28132a01babe3c476bd02279107af8b8fd616804d085fabba5485cb5a6f5c65bdd977a69133ff82317a609ba2295c3b59d927e1f9dbc5f41d96954ec1f6144854274865615989ad17166b1d4c036c5bd143354585994e4c5cc1b4e2e95fcc72a01d4a1029bb54ad4055e0abe09d04c820a82b8a46f3ab7e4579064988e8d73c0098ec0f6533ce4b80a668c116cfa909ec561e0fed25a6fe9fb09433145ba3dc0e32672dc6330bb6548e3b2f92e11ce26c095b167348676eb64f35fe070c6a76df27423408d26426210d99524a28388d20699a1138e8dd54d8b75427b92a40364fe80e3af800e2d32bc586d9e09364f23ab4ba40daa9a5c6fec25f96ab574b005550d5322ac86bcdec6acf77cf101a888974240c2bdc701c0171b1468a87e0a545e84bb08243ccd497e376c99297568841dbfe0ec3d6d3305966932b90e673ae58832a04ed6927d0d8d9cbf5bc82310dc686ce7aae0c6b8a4d652ee9ae80d1631edd433cb0423272129a397cc23a2c3c8df88df5b01fc67264fff3b1e0839cf8e4ed72c97ebb2476fca32e0e3b9f72dc46f03947d9073060e4bfec476be784e048c64e7089b7c84ab98a5afffe68739b875668e5f6652b4c683c1fe7a1639c356ebae9f017372e5a811657b130e3068fd5a9c3721eee103c0367d926022300a4b82f8dc6ee0e5586068875d7453404b64fac144a65c757bf71c1c9a62a9b6334b659b0d3dca76c7ecca9bed000158559a11e960e33f3489201971b2b90886f894aa54b9f6ea77f7f8d591e82f3c89461f159ad3de452fe49e9e0f48d78a42bde7de9e448add4c60b84275ccdd72a9f6ef340656b02021f0564673ed3367754038f0926da2681d0d2475f8cbff14e0c5149356d80451fedecd6986593ec2eafda06059f1f39bfa1f7fcc59b95eb3ccef6c21cdf7c9544af420d81e1eff44fd7d7039f65aaa152a447875fcd284ac84356238e0bc419d7f4151c7e6d444fbaeb13a8c16682a14b126b9248e80084a63bbcdd9a3520e3b2a573c3876fd09a182f1728c1a928b5ed39a0e26c28eff5ab2cfd0ad62f7afc94fce5469acb9a32f91002e8a6c9da7d717dbc3dbce16c97378dcf4e0170242c440612ce02a7b5dc7a8c5480e342aed0a81979af9af96543c9158fe2d4b684784c0c4836d180c7bd340ee459ff94a54ed7362a0f60bae510eda65683382acef243abb4cde3be0815123ae4bfc87280236ddffb7033eefdf3510fed77b30542b6a6add253f8961737d1e3424984e5efd411e475d05d51f82b32a6e1b5f41462e61cfffb6e8ff12c8c5eeb2789ec21bcd5cd25881bd9879e72255dae5dc20a03a70cecf1bca6396ba92c3b523366cacc064c4a06bf45eb3f8e7bf7690c26c726a277bd776b960ac884219f10aa5063b3dc1829a216f1959b701cf466076209822fe64e1e50deb394d77a8b75c34956b922c4dfb67f919ab9f2a6849759519cb04f98bde5f85d9492c0236cec8a27f1876b5aae973915b3d8a8e2fa61fe4465618cf0d42ce178c0fb88547dcdbf70aba482ddc202d0acb8d60bb1fa4e906e3a0a7c9686b7ebd916e57084125cb0441c07765ec2686e8cb3ce1d9a7bdc0355d6b6737bffe1928b6f7f8652da5a82c34273fa26162b2b628b89dfdc43d4abf6c2da42c26bde56c4dadaac571114cb9a4cb247ac187412cb5dd8571bbdee67ef4723cee4c299ff5abcce15d638dca774ac309587ef244149562aa9b58d748790f71fdbf43920af14e9c75e3e45fd6eab45f0d6446faa4cf73be5f55318513d79cd09088b5a373408e199eb47e3f7f56d0caae4d43dd56e1e070e5d1ad0bef3cf1d608126e9ec34dcd5ea74ddca3d68cfe43e0b5204502ed05e29490be04a86cf48e53a10ce722e98f65df0d80a2323a76d1b4eb691b6990a58b6a6a55178a3eeeba8398fb308ad9c36ebcf2bc4d2e56a48b77bfa52c464dd35ae2d0e53606e2078384b8c61807b06329038a9eefccf5604b75e9cf5af7c8be0b3489be2cd3f4947bacff67e4cfcbc3a38cddec09dd430ac01b178fc6b4f11a9fbb842bda45cf6693f05e360e667d0c362ea92007db6ea6f7a81aed032cdde48a01f25b3b09fbcc752d7335a431ce7509e0c9cf7d6f97d70cb21c07a097df11d1509f52ffbe1731e2c1dc63fde3a4e23b834e07a924d5f36a2c62e137610bba753cf38f641ca0f70b3b7c1c5ea7ba779b02a987d0425ce9b13bcdb3d9932101c64566c46d6642fe686a5b8d96ff639a8e24ad82c9aaafa7324fd63b2e563b434666af53e01852d299cf19cd4e2954caf3031322b14c1fa980e6d194632aa3856299253c32e34721a885039d04b12097005d199fadd886fb7e382ea139aa63eeedb83330bed3124b781a822c9d7183d777907b669923ddaedda8892094ef9b58245fab82d50fc1e3b18a84820e84455f72a8fdaaf7df868fddf8dd85bcf632b9ee10d667e13c38d90e2f6818072ce2d5ddf02f9703673d230b188fd5e85b5a861306a4061a3cdcc57b39d8d9ed0de58dbb96c1b19fb963e3555d8264a52a998168ac3f2cee2819482f58798c802d0cd79cd29f815adb66640063ba6e61733d1d22365a80d04951cde6717e5fbdcbe1be77a929c69a581aa20cccb15631667221fae3563395a0477f37bb0579af6ee455e2fbe5efd337e91d80e713f6233009c4afc4b01e11ee3df5b192556f57b0f8022db075c812bee18b015ea548a0f2b7022b901c1d4719cc154e1f4515c32339c8cefb38d563f84ae30064839e952d160f42e2e593f0d711983275a4baaa6eb20915171bf9b02bb44c5a7130b0c95c57a041428d33b0d9e60a1495bff58c6d5a5cbd78afc533d69c834ff7fec210cfebee0966ae5b6bf7fcb9cf0b8074a5b31efd13f1f3aee45d479de093c99f8ede28854840c29cf76e1ff6d3b39390ca2237cfaf11cd46075dce11f14a467db95e1296d98e2dda8a55a8dc9274995ea02fe946feeb05d8f067215e8003781ff79ddcb20e16fb2985b289fd63e830af3ad548ada548eb00586b94b1ac9a9c3ddaba295991d58a490b742ef458fc03719edea8a4c7594c81606ed7ef307f452e0378b2be479474e32f55bd49f65dec3c47038c4627d912e5c8f6c1ff65245b736cff677f2f7d4e19eeb6cbe4b31931d2c8eaf70a12550497e00f81917e030907e44ef415a23a534edcf84d5dd25e0e3462e9f358fe5ae13b0b37d465434337f9a0f05b4814f1a96d994522159dd2249b3493a7627e85cc487e49a6da62582b1564400c435cbe73c8bda541f8276415d823d43d9b2d45eab97b7efefdefb0384f87fcdc25e08678ae833f36dc415a624da99b34ef8709263042c878b4f5214982b9fab5fc4da3f21f15cc2d9d9758dd652cdc2a9849d0c89ae2e896de5ae54dd5d9d457b05ae574da2872b3c40925271d6ae792c52c3057e42572d82f58126b64e4dbfbcada22d91ccbb23cbe61afde02fae4372968715a0f3b49f7c916a7b41ea2ba25872a7d0ca8860f76f9ba6a9e0ae25054497a146c2251d7d34bcbc6105503d1afa7cec27316851e053323d37260b8dd5021c61802660dbe844fbc78a6ae261aec1fe91a782954d84c23858859fa1dd9b829434dc70d66e429227a2170bac94ba2e9446419bd208fe1d84f0713d583164a215a78b824f472f29c695715de347b747fddba799b9362881292afa6c5bde1589a9e8f4bab8420c386d43f1c721d95893d55356491283e8148bf7596ef35d8f8c8ee4051d67d5c690d3060f86b44556172d80b6cc00902df6992ed7618f710a306c1272c7c37f684a40e50a3e07c7c7e6c54590be13acd4f6aa3f2710c93ce21f9b6e0faca84ec10bcc1d9ced5a0d7974540649bdfc2c5465ab24756eff4eb67cbcf157d65141ac0239357a879c50baae51f055d78967fcc2c48ce38ae34ab7576011b44d4845c0e36b2690276d96b9c98b53afb32bbca087aada8b4eeb2b36013f8fcff402016d8b148e0fbc5fa8458e8a79267b5c332c8dd3cacf439a4c155b53e49fbfacda12160db590ff824782cec5baec6951d42cfc4fa788c78c828d473dabff585d268c7cc55caa846b5182a6d8b48fde5f1a7356158f9db5106c4f808c3227ee3dace19e3a1ea8bfa30421b548761090e7bbe55917246381c3f81f08fb8c3c5e83e07ffce1aca3dfd15d436848d3ad6afbb6ed3c5fe719d4c7cb06c05767a8a4da9b381458ced742a0749ca6e9ca8000f97b189a7159e3ffbb2ca6fe01609ff7ec858a4a13fff1c30c34b9bc2b044efa6d7c7deca48bb75136058d1d61676e982eb6fae243fb4331d892f764f98da370f86c11a6fe5906cfc5a109404091049377bb2941e2262c657a9d83a8a9104a58650960f921ce6ebde164eced3fc14b4b88d977d94a44c01f70a53692477b25f8018d2d445334ebac7d57599f2055e14d453a1928b3ca127b392b447bd8d52e94a5d1e8b4c54afc5c6206e426dbb5355", @typed={0x8, 0x86, 0x0, 0x0, @fd=r1}, @nested={0x4, 0x2c}, @nested={0x4, 0x33}, @generic="bfe988256d97b401ce49315e584ac71a927ec190fadf6d6ed413d9e65acf7ff4a8051be4bae205eec23bda0cb28c2bfb40bb23ddaa02ff12b8afed7e7d6b00bfb9080e0a8350143c48ec83c90880a7c2368eb618144067525deadc", @typed={0x4, 0xb}, @nested={0x4, 0x9a}, @nested={0x4, 0x124}, @generic="b4660cd4f156d568a5f00bfdc20c46657952ba4210a30aa00f6ab9a111baa3eac45fb1e9c033edd85a8d4b3859c3c663ddfb35a37fc96a3fbc87e3dd270886ae36c49433710d4f2d01"]}]}, @NL802154_ATTR_SEC_DEVICE={0x94, 0x2e, 0x0, 0x1, [@typed={0x8, 0xde, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x27}}, @nested={0x87, 0x3a, 0x0, 0x1, [@generic="77025766f15eec8568d7ad40941b83c2faace4873e67bf2393d6a340503255377500ed966c27db8e3fb731c01193705c2607461309dbfa1c10bed80205e04ca1e06ceb7fda0eb1e4b9bee781a50f9d2b461e0dec1d539a1ab8fcfa", @nested={0x4, 0x7e}, @typed={0xc, 0xeb, 0x0, 0x0, @u64=0x7}, @nested={0x4, 0xb6}, @typed={0x14, 0x7d, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x31}}]}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x2a, 0x8}]}, 0x13a0}, 0x1, 0x0, 0x0, 0x44055}, 0x0) 5.929014636s ago: executing program 3 (id=7124): mincore$auto(0x1ff, 0x2, &(0x7f0000000000)='\x00') socket(0x10, 0x2, 0xc) bind$auto(0x3, &(0x7f0000000000)=@generic={0x10, "a500acb75c9cedd1b5e9a0d76293"}, 0x68) r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0) close_range$auto(r0, r0, 0x0) close_range$auto(0x2, 0x8, 0x0) pidfd_send_signal$auto_SIGCONT(r0, 0x12, &(0x7f0000000040)={@_si_pad}, 0x3ff) getpgrp(0xffffffffffffffff) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r2 = socket(0x15, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) sendmsg$auto(r2, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x40000000c07) sendmsg$auto_ETHTOOL_MSG_LINKSTATE_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c000000ffbd03900ad365136c504e8f3ace8d45ae291f69b6b31ea837ac1748c5a6c913811ee46b9a85a8773aef7773f4605078450f6801d129ce71aa7189a9855d3a4044fcde9169c1b0a4e8f0d73abe182d406e9a889aef50ecb478d9794b40580f3a176dada17fdec3390beda30eeef24c20192cfadc9f91752e06b0df1d553e46e355767b034eccb21474e1cd10b942b8199b95911a78438c425c4ec996f7cc3b50a70a960275d4dddceb4e5d4ce92d09b4a4b273592c27eafd381865195c8bc6d62065fe50e91f6b322f7330d33a362fdcee0573", @ANYRES16, @ANYBLOB="01002dbd7000ffdbdf250600000018000180140002006c6f00"/38], 0x2c}, 0x1, 0x0, 0x0, 0x20004001}, 0x20c84) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/renderD128\x00', 0x100, 0x0) 4.754041735s ago: executing program 3 (id=7130): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/rose7/queues/rx-0/rps_cpus\x00', 0x1c1002, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, 0x0, 0x180b01, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_TIPC_NL_MON_GET(r0, 0x0, 0x4000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS0\x00', 0x1, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x48041, 0x0) write$auto_proc_reg_file_ops_compat_inode(r1, 0x0, 0x0) unshare$auto(0x40000080) socket(0xa, 0x1, 0x84) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) mmap$auto(0x0, 0x7, 0xffffffffffffffff, 0xeb2, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f00000000c0), 0x141401, 0x0) clock_adjtime$auto(0xfffffffffffffffb, 0x0) mmap$auto(0x0, 0x1000400008, 0xdf, 0x9b72, 0x2, 0x7ffe) open(0x0, 0x40, 0xa2) mbind$auto(0x1, 0xa091d4, 0x4, 0x0, 0x6, 0x0) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x100, 0x0) mmap$auto(0x0, 0x400008, 0xe3, 0x9b72, 0xffffffffffffffff, 0x7fff) pread64$auto(r2, 0x0, 0x40000000f42c, 0x585) write$auto(0x3, 0x0, 0xfffffdef) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x4, 0x8000) r3 = clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) r4 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0) read$auto(r4, 0x0, 0x80000000006) tkill$auto(r3, 0x9) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vbi11\x00', 0x69ce81, 0x0) unshare$auto(0x40000080) 4.204419127s ago: executing program 0 (id=7134): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x400000, 0x0) r1 = geteuid() r2 = setfsgid$auto(0xffffffffffffffff) statx$auto(0xffffffffffffffff, &(0x7f00000003c0)='}[,&*}\x00', 0xba, 0xa, &(0x7f00000005c0)={0x8, 0x1fc, 0x9, 0x8001, r1, r2, 0x200, 0x16, 0xfffffffffffffffb, 0x400, 0x29f333f3, 0x8000000000000000, {0x7, 0x2}, {0x6, 0x4000000}, {0x800, 0x10000000}, {0x7f, 0x6}, 0xbd9c, 0x6a9, 0x6, 0x5, 0x10001, 0xfffffffc, 0x2, 0xfffffffffffffffc, 0x3, 0xd0f, 0x100b7b15, 0x3, [0xc, 0x43a, 0x6, 0x1000, 0x40, 0xd, 0x401, 0x7fffffffffffffff, 0x80000001]}) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000000140)='\t', 0x1) r3 = fsopen$auto(0x0, 0x1) ioctl$auto_VHOST_SET_OWNER(r3, 0xaf01, 0x0) write$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffffff, &(0x7f0000000b40)="33e06908f7cef2ef9652d5e3d0f91cdb9aa7fcd4f56b3ae50e2e7a3fce17ad39061182af048f047adfa552adf5a64941ae9a2564ce32560a", 0x38) socket(0xa, 0x1, 0x84) r4 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/devices/virtual/tty/ttys4/power/runtime_status\x00', 0x220000, 0x0) write$auto(r6, 0x0, 0x81) write$auto(r6, &(0x7f0000000780)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xceI\x86\x9bw\xe4*\x8f\x9fo\xf9\xafF)\xf9\xb3\xfe\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5\x02\xfb\r/E\x9b.#\xa5\xe8\xe5\xe1~\xf4fp\xb8\xa39\xea{\xb9\x12P\xa4\xca\xe5l\xb9]R\xeem\xc6$F>\xa7\xb1\x85\xce\xfe\x96\v|\xa8\x00\xff\x1f@\xa3\xce`\xcc\x88\x0e[\x12\xaa\xb0\xba\xaf\xbd+!\xad\xc3\x99\xabr\x10\x8ay\x10h\x1ag\xb60\x13\xc45\xe4s\xbe>[Y{\xe3\xd5%\xc4\\\xc2&\xb0\xf8\x14\xbf\"\xc4^sX\xdcA&\xaa\x06\'=\x90\xca\xaf<*\xc1\x93l\xc6u$D\xca.\xc6\x85\xd3\xeb\xa8\x98\x9dR`\xb2b\xc5\xb5B\xb8\x82\xf3\x9f}\xe2\v\xda\x014\xe9t\bk\x01\x1d\x1d\xcc\xa8\xaa\xe0\x88\x8d\xbe\xa6\xc7\xf8\x1b\xa9\xe3\x83)0\xee\x1f\x15\x9a\xce\xe2uy\xe0\xcf\xb8\xfb\xab$\xea\xa4z\xa9\x186\x1a\xcd3\xc9\xa56>\xd7\xcbx;\x98\xfd\x1d\xb2 ', 0x98c7) r7 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x10003c, 0x3, 0x1ffe1, 0x7, 0x3, 0xf7fffffffffffffe, 0x9, 0x3, 0x6, 0x4, 0xb4, 0x9, 0x9, 0x10005, 0x82, 0x4, 0xffefffff, 0x7, 0x2000, 0x203, 0x0, 0x20e9d17d, 0x400300000000000, 0x0, 0x0, 0x80000000, 0xf04, [0xfffffffffffffffe, 0x0, 0x2, 0xfffffffffffffffd, 0x2, 0xfffffffffffffffe, 0x0, 0x20000000000007, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0xff5b, 0xc72, 0x0, 0x9, 0x0, 0x66, 0x2, 0x4, 0x0, 0x0, 0x80000, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, 0x8c]}, 0x2, 0xd) ioctl$auto_EVIOCGRAB(r7, 0x40044590, &(0x7f0000000000)=0x2) write$auto(r7, &(0x7f0000000040)='/dev/input/event1\x00', 0x10001) mmap$auto(0x10, 0x400008, 0xdf, 0x9b76, 0x2, 0x8000) ioctl$auto_XFS_IOC_SCRUBV_METADATA(r4, 0xc0285840, &(0x7f0000000380)={0x4, 0xd, 0x4, 0xc2b, 0x8001, 0x1000, 0x0, 0x7}) madvise$auto(0x0, 0x4, 0x15) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000180), r8) sendmsg$auto_OVS_DP_CMD_NEW(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000700)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010026bd7020f8dbdf2501000000080001004866520008000200", @ANYRES32=0x9, @ANYRES16=r8], 0x24}, 0x1, 0x0, 0x0, 0x801}, 0x4000080) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000080), 0xffffffffffffffff) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8003) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) 4.065147024s ago: executing program 2 (id=7135): sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="17000000", @ANYBLOB='v\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000380)='/sys/kernel/security/tomoyo/exception_policy\x00', 0x40802, 0x0) read$auto(r0, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0xffd8) r1 = socket(0x10, 0x2, 0x0) fsconfig$auto_FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x2, &(0x7f0000000000)='\x00', &(0x7f0000000380)="083a85aa217215b0bc64a6518a0ef48773c7fdd5abbabfd7d7b365786e0eb43bcef36e9d27d4a28fc832c7e414e0972172e5a0323cc4ee4a16aa8e7e7b7cf3b778da95607333a3579cc4f9e2928c6ac3f61eec2181c2a2eadb75623d7e9154db06176a997ccd3785a7c456e48e40bb2b47456140258bfdb00cd7cac95955120e82214e7b510e3f1e1953fdf08d118f9e3b0127162a268969eda86a34472a99b3643854fca98255a3b3151a34d09cf573d95d834fed25c3e174b64af1e295617d6f5866ab8219eca02c5cbe4e3059969c7199a3c999a835672c83258a57591aa53c06f3a71c", 0x80000000) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x8) 4.025571756s ago: executing program 1 (id=7136): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0) madvise$auto(0x0, 0xfffffffffffefffd, 0x17) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x8001, 0x2) read$auto_proc_pid_maps_operations_internal(r0, &(0x7f0000000900)=""/4096, 0x1000) unshare$auto(0x40000080) socket(0x11, 0x1, 0x87) unshare$auto(0x1) pread64$auto(0xffffffffffffffff, 0x0, 0x3c02, 0x100007) read$auto(0x3, 0x0, 0x7) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) syz_genetlink_get_family_id$auto_nfc(0x0, 0xffffffffffffffff) r1 = socket(0xa, 0x2, 0x0) setsockopt$auto(r1, 0x29, 0x30, 0x0, 0x20004) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x540b, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) r3 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) symlink$auto(&(0x7f0000000000)='.\x00', &(0x7f0000000040)='./file0\x00') rename$auto(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0/../file0\x00') ioctl$auto(r2, 0x541c, r3) bpf$auto_BPF_ITER_CREATE(0x21, &(0x7f0000000040)=@test={r0, 0x2edcdb21, 0x8000, 0x7, 0xc8d8, 0x4, 0x7, 0x8c, 0x3, 0x3, 0x8001, 0x3, 0x1, 0x5, 0xc642}, 0xffff3712) mmap$auto_proc_reg_file_ops_compat_inode(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x3000004, 0x4000010, r4, 0x7) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) statmount$auto(0x0, &(0x7f0000000380)={0x7, 0xfffffffe, 0x401bf, 0x7352, 0x43, 0x6, 0x1ffde, 0x7, 0x3, 0x2, 0x9, 0x3, 0x5, 0x4, 0x3000, 0x200, 0x6, 0x10003, 0x83, 0x7f, 0x0, 0x7, 0x1ffc, 0x203, 0x400, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, 0x1fe, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYRES16=r2, @ANYBLOB='p\x00', @ANYRES16=r2], 0x1ac}, 0x1, 0x0, 0x0, 0x24040840}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xb, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='*'], 0x1ac}}, 0x40000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 3.71853088s ago: executing program 2 (id=7137): arch_prctl$auto_ARCH_SET_FS(0x1001, 0x400000000000) arch_prctl$auto_ARCH_SET_FS(0x1001, 0x9) arch_prctl$auto_ARCH_SET_FS(0x1001, 0x1) arch_prctl$auto_ARCH_SET_FS(0x1001, 0xe8c1) ioctl$auto_USBDEVFS_DISCARDURB(0xffffffffffffffff, 0x550b, 0x0) arch_prctl$auto_ARCH_SET_FS(0x1001, 0x9) arch_prctl$auto_ARCH_SET_FS(0x1001, 0x4) r0 = openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/available_events\x00', 0x50000, 0x0) setsockopt$auto_SO_RCVLOWAT(r0, 0x85, 0x12, &(0x7f0000000040)='/proc/self/oom_adj\x00', 0x1) arch_prctl$auto_ARCH_SET_FS(0x1001, 0x40) fdatasync$auto(0xffffffffffffffff) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/oom_adj\x00', 0x10002, 0x0) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000240)='/dev/bus/usb/009/001\x00', 0x123001, 0x0) ioctl$auto_USBDEVFS_SETCONFIGURATION(r1, 0x80045505, &(0x7f0000000280)=0x80) 3.495732653s ago: executing program 2 (id=7138): mmap$auto(0x0, 0x88b, 0x2, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000340), r0) sendmsg$auto_NETDEV_CMD_NAPI_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="14006c0e9023dbfbf40000", @ANYRES16=r1, @ANYBLOB="01000abd7040fddbffff0f"], 0x14}, 0x1, 0x0, 0x0, 0x20008040}, 0x20000004) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) r3 = openat$auto_trace_clock_fops_trace(0xffffffffffffff9c, &(0x7f0000002840)='/sys/kernel/tracing/trace_clock\x00', 0x8000, 0x0) preadv$auto(r3, &(0x7f0000002940)={&(0x7f0000002880), 0xa93a}, 0xf, 0x1, 0x6) read$auto(r2, 0x0, 0x20) r4 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x0, 0x0) read$auto(r4, 0x0, 0x7fff) r5 = openat$auto_evm_key_ops_evm_secfs(0xffffffffffffff9c, &(0x7f00000000c0), 0x40802, 0x0) write$auto(r5, 0x0, 0x881) 3.344147515s ago: executing program 2 (id=7139): close_range$auto(0xffffffffffffffff, 0xfffffffffffff000, 0xc5) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) iopl$auto(0x3) clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9) socket(0x2, 0x1, 0x0) setsockopt$auto(0x3, 0x6, 0x15, 0x0, 0xfb3) sendmsg$auto_NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4000010}, 0x8811) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), 0xffffffffffffffff) r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0) read$auto_proc_iter_file_ops_compat_inode(r0, &(0x7f0000000180)=""/190, 0xbe) unshare$auto(0x40000080) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) mmap$auto(0x1, 0x6, 0xffffffffffffffff, 0x30000000010, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000) clone$auto(0x5, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x4) 3.194317102s ago: executing program 0 (id=7140): openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) setresuid$auto(0xffffffffffffffff, 0x0, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) acct$auto(&(0x7f0000000080)='/dev/dri/card0\x00') prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000200)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010031bd7000fddbdf250c0000201400038010000380090005805647f8223100000018000180140002006e657464657673696d30000000000000", @ANYRESHEX=0x0, @ANYRESDEC=r2], 0x40}, 0x1, 0x0, 0x0, 0x43}, 0x2004c000) madvise$auto(0x0, 0x200007, 0x17) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x1, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80800, 0x0) bpf$auto(0x2, &(0x7f0000000380)=@token_create={0x5315, r5}, 0x1) read$auto(0x3, 0x0, 0x84) r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/rpc/use-gss-proxy\x00', 0x48041, 0x0) write$auto(r6, 0x0, 0x6) r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0) unshare$auto(0x80) ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$auto_XFS_IOC_FSBULKSTAT(r1, 0xc0205865, &(0x7f00000002c0)={0x0, 0x10001, 0x0, &(0x7f0000000280)=0x2}) openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0) 2.488808236s ago: executing program 3 (id=7141): mmap$auto(0x0, 0x9, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/irq/6/smp_affinity_list\x00', 0xe0182, 0x0) readv$auto(r0, &(0x7f0000000140)={0x0, 0x8}, 0x200000000080003) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) madvise$auto(0x110c230000, 0x1, 0x9) r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0) ioctl$auto_FS_IOC_RESVSP(r3, 0x40305828, 0x4) futex$auto(0x0, 0xc, 0xffffffff, 0x0, 0x0, 0x4) read$auto_proc_iter_file_ops_compat_inode(r3, &(0x7f0000000180)=""/178, 0xb2) close_range$auto(r1, r2, 0x2) mmap$auto(0x0, 0x1000, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x87ffc) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9) recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0) mmap$auto(0x0, 0x7, 0x3, 0xeb2, 0xffffffffffffffff, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) socket(0x23, 0x800, 0x0) shmget$auto(0xffffffffffffffff, 0xb0d, 0xa7db6ba) unshare$auto(0x8000400) fchownat$auto(0x2, 0x0, 0x4, 0x8001, 0x1000) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001180), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c00", @ANYRES16=r5, @ANYRES16], 0x1c}, 0x1, 0x0, 0x0, 0x404c091}, 0x40000) 1.853266063s ago: executing program 1 (id=7142): openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_CREATE_VM(r0, 0xae80, 0x0) ioctl$auto(0x3, 0xae41, 0xffffffffffffffff) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptywf\x00', 0x1, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x11, 0x1, 0xb) (async) socket(0x11, 0x1, 0xb) mmap$auto(0xfffffffffffffffe, 0x580f, 0x112f4a03, 0x8000000008011, 0x3, 0x0) (async) mmap$auto(0xfffffffffffffffe, 0x580f, 0x112f4a03, 0x8000000008011, 0x3, 0x0) fadvise64$auto(r0, 0x0, 0xffffffff80000001, 0x8) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x1cd482, 0x0) close_range$auto(0x2, 0x8, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) r2 = semctl$auto_GETPID(0x4, 0x40, 0xb, 0x6) prctl$auto(0x0, 0x4, r2, 0xb7, 0x3) msgget$auto(0x0, 0x5) write$auto(0x3, 0x0, 0x1) write$auto(0x3, 0x0, 0xfdef) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/kernel/tracepoint_printk\x00', 0x101202, 0x0) (async) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/kernel/tracepoint_printk\x00', 0x101202, 0x0) mmap$auto(0x0, 0x99, 0xdf, 0xeb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0x99, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0xd, 0x0) (async) sysfs$auto(0x2, 0xd, 0x0) r3 = prctl$auto_PR_SET_MM_START_STACK(0x7, 0x5, r2, 0x0, 0x100000000) ioctl$auto_BTRFS_IOC_SUBVOL_SYNC_WAIT(r3, 0x40109441, &(0x7f0000000080)={0x1, 0x10, 0x30}) fsopen$auto(0x0, 0x1) fsconfig$auto(0xffffffffffffffff, 0xd, 0x0, 0x0, 0x0) (async) fsconfig$auto(0xffffffffffffffff, 0xd, 0x0, 0x0, 0x0) fsconfig$auto(0xffffffffffffffff, 0x8, 0x0, 0x0, 0x0) (async) fsconfig$auto(0xffffffffffffffff, 0x8, 0x0, 0x0, 0x0) mmap$auto(0x0, 0xe981, 0xdf, 0xeb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0xe981, 0xdf, 0xeb1, 0x401, 0x8000) 1.522255053s ago: executing program 1 (id=7143): mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x80002, 0x73) connect$auto(0x4, 0x0, 0x10) r0 = openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1c00, 0x0) r1 = getpid() openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/dri/vkms/clients\x00', 0x2100, 0x0) pipe2$auto(&(0x7f00000000c0), 0x0) process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) ioctl$auto(r0, 0x40246f4c, 0x38) 1.436533347s ago: executing program 0 (id=7144): arch_prctl$auto_ARCH_SET_FS(0x1001, 0x400000000000) arch_prctl$auto_ARCH_SET_FS(0x1001, 0x9) arch_prctl$auto_ARCH_SET_FS(0x1001, 0x1) arch_prctl$auto_ARCH_SET_FS(0x1001, 0x1) arch_prctl$auto_ARCH_SET_FS(0x1001, 0xe8c1) arch_prctl$auto_ARCH_SET_FS(0x1001, 0x1) ioctl$auto_USBDEVFS_DISCARDURB(0xffffffffffffffff, 0x550b, 0x0) arch_prctl$auto_ARCH_SET_FS(0x1001, 0x5) arch_prctl$auto_ARCH_SET_FS(0x1001, 0x9) arch_prctl$auto_ARCH_SET_FS(0x1001, 0x4) arch_prctl$auto_ARCH_SET_FS(0x1001, 0x42) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x40000000000001, 0x6) mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r0) ioctl$auto_HDIO_GETGEO(0xffffffffffffffff, 0x301, &(0x7f00000001c0)) sendmsg$auto_NL80211_CMD_GET_WIPHY(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000000)=ANY=[@ANYRESOCT=r1, @ANYRESHEX=r1], 0x18}, 0x1, 0x0, 0x0, 0x4000010}, 0x2004c015) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc0200, 0x0) mmap$auto(0x0, 0x2020409, 0x4, 0xeb1, r0, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x4, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) rt_sigprocmask$auto(0x4, 0x0, 0x0, 0x8) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x22, &(0x7f0000000000), 0x1) 1.384503491s ago: executing program 1 (id=7145): openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000080), 0x280902, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input0/id/version\x00', 0xa000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000000c0)=""/4096, 0x1000) openat$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000040), 0x204201, 0x0) socket(0x29, 0x2, 0x0) mmap$auto(0x0, 0x200, 0xffffffffffffffff, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) pipe2$auto(0x0, 0x0) io_uring_setup$auto(0x7e1b, 0x0) socket(0x2, 0x5, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/tty56\x00', 0xd2582, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) read$auto(r1, 0x0, 0x2) r2 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cuse\x00', 0x400, 0x0) pread64$auto(r2, &(0x7f00000012c0)='/d~v\apts/ptmx\x00', 0x10000000005, 0x8) 1.282508108s ago: executing program 2 (id=7146): mmap$auto(0x2000000000, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x40005, 0xdf, 0x9b72, 0x7, 0x28000) ioctl$auto_UI_SET_LEDBIT(0xffffffffffffffff, 0x40045569, 0x0) get_mempolicy$auto(0x0, &(0x7f00000000c0), 0xfffffffffffffffd, 0x7, 0x3) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = setfsuid$auto(0xee00) r2 = setfsuid$auto(0xee01) setresuid$auto(r1, r2, r2) shmctl$auto_IPC_INFO(0x4, 0x3, &(0x7f0000000040)={{0x2, 0x0, 0x0, 0x7, 0xe, 0x0, 0x200}, 0x2, 0x10, 0x8000, 0x8000000000000000, @inferred=0xffffffffffffffff, @inferred=0xffffffffffffffff, 0x8, 0x0, &(0x7f0000000440)="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", &(0x7f00000001c0)="9b608e8b4da98c9d027179ad9967e314028835980d49fad2ad7510f41d52dde852e1e3f58f02522f03e42ad4a694c73913a9549d297ea9f7e5b4ed6d471f5b9b6c600f867cad039a8d6d60719c3cd82c96170e37eb5aa277e00b6f1d3a2ab7da31c872a91d3b2444a1bbd5ce0ab2f4555bb5acb3180ec8aaa04fd21557d20e34a576869c02f356c0687e362d0d328276008033f908589d1459c2f5a36f192285"}) shmctl$auto_SHM_INFO(0x9, 0xe, &(0x7f0000001440)={{0x7, r1, r3, 0x1, 0x2, 0x5, 0x4}, 0x1, 0xfffffffffffffffa, 0x4, 0xffffffff, @raw=0x5, @raw, 0x2, 0x0, &(0x7f0000000280)="104b74470db780c9d8a7ba36f9fc1f83bab8cbb860c8afe1b46bce5f830e6c4a7943345a437c1cd83b7eddd4bc7e48277b38ea4ec167420865ca253f175ec609517b93409f6188a7480639b5d7cce7c159df44bb13f71c7227523a9cfd30c6cf7b503fd8098a4395d4ad2a8db784de84e5b97e93bd5a8f26", &(0x7f0000000300)="9f61a19339b039cf638f2647a8beb5c66805a305f8db0a4dcd56809e43f65075664f94d903976c8ddb4fd29b3c45d692222c52ec8250a5e15f1f52344926ee90a5132bc322b274ee838f3540fba52ccb0eb6cdaf430b12f4eeccb80848ac726270df6813dbc20f0535084cd9cf536a11f851be0655ca8b77264120a706702d544d1c38e5c5d71b4d40ab7037491b44b4c35d66e2573ccca125cc98d9720b5e8fa240a7e6cbc84b7936cb40fb3548b2f6cb959ad768c9bad8dc244b704d8fc3abdeb4e757269c40adf8e9"}) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72) socket(0x6, 0x2, 0x2) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x29, 0x2, 0x0) r4 = socket(0x10, 0x2, 0x0) sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x2000000}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(r4, 0x0, 0x40000) recvmmsg$auto(r4, 0x0, 0xfffffff9, 0x10, 0x0) madvise$auto(0x110c230000, 0x8031ca, 0x9) r5 = socket(0xa, 0x1, 0x84) setsockopt$auto(r5, 0x10000000084, 0x7, 0x0, 0x4007) 1.208731037s ago: executing program 1 (id=7147): mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb1, 0x401, 0x8000) socket(0x2, 0x801, 0x106) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/tty53\x00', 0x101c82, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) socketpair$auto(0x1, 0x4, 0x8000000000000000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/blkio.throttle.write_iops_device\x00', 0x121002, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x5, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000180)='ns/mnt\x00') openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/module/ib_srp/parameters/fast_io_fail_tmo\x00', 0x22000, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r0 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0) write$auto(r0, 0x0, 0xc3) 1.16530225s ago: executing program 0 (id=7148): mmap$auto(0x0, 0x88b, 0x2, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000340), r0) sendmsg$auto_NETDEV_CMD_NAPI_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="14006c0e9023dbfbf40000", @ANYRES16=r1, @ANYBLOB="01000abd7040fddbffff0f"], 0x14}, 0x1, 0x0, 0x0, 0x20008040}, 0x20000004) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) r2 = openat$auto_trace_clock_fops_trace(0xffffffffffffff9c, &(0x7f0000002840)='/sys/kernel/tracing/trace_clock\x00', 0x8000, 0x0) preadv$auto(r2, &(0x7f0000002940)={&(0x7f0000002880), 0xa93a}, 0xf, 0x1, 0x6) r3 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x0, 0x0) read$auto(r3, 0x0, 0x7fff) r4 = openat$auto_evm_key_ops_evm_secfs(0xffffffffffffff9c, &(0x7f00000000c0), 0x40802, 0x0) write$auto(r4, 0x0, 0x881) 987.162933ms ago: executing program 0 (id=7149): mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f00000002c0), 0x40, 0x0) readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x1}, 0x7) r2 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$auto_TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)=0xd43) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) connect$auto(0x3, 0x0, 0x55) close_range$auto(0x2, 0x8, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x3, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4000894}, 0x4000000) bpf$auto(0x4, &(0x7f00000001c0)=@bpf_attr_11={0xa, 0x10001, 0x2, 0x8, 0x8, 0x7, 0x82, r3}, 0x6f3) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYBLOB="010027bd"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x10, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0xe) bpf$auto_BPF_LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000480)=@bpf_attr_11={0x1, 0x80000001, 0x4c2, 0x5, 0x3f7efca3, 0x4, 0x2, r1}, 0x101) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x8, 0x0) chdir$auto(&(0x7f0000000000)='}[,&*}\x00') r4 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408) getdents64$auto(r4, 0x0, 0x6cf) socket(0x2, 0x5, 0x0) setsockopt$auto(0x3, 0x0, 0xd, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000440)={'netdevsim0\x00', 0x0}) bpf$auto(0x5, &(0x7f0000000300)=@bpf_attr_3={0x3, 0x4, 0xf, 0x63, 0x400, 0xfffffffd, 0x1, 0x80f0c8, 0x0, "38c1d5cbcb9f6b5e511f0cd8ed068f65", r5, 0x2, 0xffffffffffffffff, 0xe4, 0x2, 0x5, 0x3ad, 0x3, 0x0, 0x3, @attach_prog_fd, 0x6, 0xffff, 0x2, 0x81, 0xfffffffe}, 0x4a) ioctl$auto_XFS_IOC_INUMBERS(r4, 0x80405880, &(0x7f0000000180)=ANY=[@ANYBLOB="880800000000000009000000ff0f0000feffffff00000048050a00000000000000440000000000000200000000000000080000000000000001000000000000000100010000000000000000000000000000000000e806000000000000002c050000000000000500000000000000000000008000000008000000000000000e030000000000001b0b000000000000e3fd00"/160]) 965.344543ms ago: executing program 1 (id=7150): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0) madvise$auto(0x0, 0xfffffffffffefffd, 0x17) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x8001, 0x2) read$auto_proc_pid_maps_operations_internal(r0, &(0x7f0000000900)=""/4096, 0x1000) unshare$auto(0x40000080) socket(0x11, 0x1, 0x87) unshare$auto(0x1) pread64$auto(0xffffffffffffffff, 0x0, 0x3c02, 0x100007) read$auto(0x3, 0x0, 0x7) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) syz_genetlink_get_family_id$auto_nfc(0x0, 0xffffffffffffffff) r1 = socket(0xa, 0x2, 0x0) setsockopt$auto(r1, 0x29, 0x30, 0x0, 0x20004) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x540b, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) r3 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) symlink$auto(&(0x7f0000000000)='.\x00', &(0x7f0000000040)='./file0\x00') rename$auto(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0/../file0\x00') ioctl$auto(r2, 0x541c, r3) bpf$auto_BPF_ITER_CREATE(0x21, &(0x7f0000000040)=@test={r0, 0x2edcdb21, 0x8000, 0x7, 0xc8d8, 0x4, 0x7, 0x8c, 0x3, 0x3, 0x8001, 0x3, 0x1, 0x5, 0xc642}, 0xffff3712) mmap$auto_proc_reg_file_ops_compat_inode(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x3000004, 0x4000010, r4, 0x7) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) statmount$auto(0x0, &(0x7f0000000380)={0x7, 0xfffffffe, 0x401bf, 0x7352, 0x43, 0x6, 0x1ffde, 0x7, 0x3, 0x2, 0x9, 0x3, 0x5, 0x4, 0x3000, 0x200, 0x6, 0x10003, 0x83, 0x7f, 0x0, 0x7, 0x1ffc, 0x203, 0x400, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, 0x1fe, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYRES16=r2, @ANYBLOB='p\x00', @ANYRES16=r2], 0x1ac}, 0x1, 0x0, 0x0, 0x24040840}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xb, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='*'], 0x1ac}}, 0x40000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 783.865549ms ago: executing program 3 (id=7151): mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x80002, 0x73) connect$auto(0x4, 0x0, 0x10) r0 = openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1c00, 0x0) r1 = getpid() openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/dri/vkms/clients\x00', 0x2100, 0x0) pipe2$auto(&(0x7f00000000c0), 0x0) process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) ioctl$auto(r0, 0x40246f4c, 0x38) 527.850589ms ago: executing program 3 (id=7152): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0) madvise$auto(0x0, 0xfffffffffffefffd, 0x17) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x8001, 0x2) read$auto_proc_pid_maps_operations_internal(r0, &(0x7f0000000900)=""/4096, 0x1000) unshare$auto(0x40000080) socket(0x11, 0x1, 0x87) unshare$auto(0x1) pread64$auto(0xffffffffffffffff, 0x0, 0x3c02, 0x100007) read$auto(0x3, 0x0, 0x7) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) syz_genetlink_get_family_id$auto_nfc(0x0, 0xffffffffffffffff) r1 = socket(0xa, 0x2, 0x0) setsockopt$auto(r1, 0x29, 0x30, 0x0, 0x20004) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x540b, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) r3 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) symlink$auto(&(0x7f0000000000)='.\x00', &(0x7f0000000040)='./file0\x00') rename$auto(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0/../file0\x00') ioctl$auto(r2, 0x541c, r3) bpf$auto_BPF_ITER_CREATE(0x21, &(0x7f0000000040)=@test={r0, 0x2edcdb21, 0x8000, 0x7, 0xc8d8, 0x4, 0x7, 0x8c, 0x3, 0x3, 0x8001, 0x3, 0x1, 0x5, 0xc642}, 0xffff3712) mmap$auto_proc_reg_file_ops_compat_inode(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x3000004, 0x4000010, r4, 0x7) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) statmount$auto(0x0, &(0x7f0000000380)={0x7, 0xfffffffe, 0x401bf, 0x7352, 0x43, 0x6, 0x1ffde, 0x7, 0x3, 0x2, 0x9, 0x3, 0x5, 0x4, 0x3000, 0x200, 0x6, 0x10003, 0x83, 0x7f, 0x0, 0x7, 0x1ffc, 0x203, 0x400, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, 0x1fe, 0xd) r5 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xb, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='*'], 0x1ac}}, 0x40000) sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 91.80065ms ago: executing program 2 (id=7153): openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) setresuid$auto(0xffffffffffffffff, 0x0, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) acct$auto(&(0x7f0000000080)='/dev/dri/card0\x00') prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000200)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010031bd7000fddbdf250c0000201400038010000380090005805647f8223100000018000180140002006e657464657673696d30000000000000", @ANYRESHEX=0x0, @ANYRESDEC=r2], 0x40}, 0x1, 0x0, 0x0, 0x43}, 0x2004c000) madvise$auto(0x0, 0x200007, 0x17) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x1, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80800, 0x0) bpf$auto(0x2, &(0x7f0000000380)=@token_create={0x5315, r5}, 0x1) read$auto(0x3, 0x0, 0x84) r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/rpc/use-gss-proxy\x00', 0x48041, 0x0) write$auto(r6, 0x0, 0x6) r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0) unshare$auto(0x80) ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$auto_XFS_IOC_FSBULKSTAT(r1, 0xc0205865, &(0x7f00000002c0)={0x0, 0x10001, 0x0, &(0x7f0000000280)=0x2}) openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0) 0s ago: executing program 0 (id=7154): mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x80002, 0x73) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/rpc/auth.unix.ip/flush\x00', 0x40d81, 0x0) r0 = openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1c00, 0x0) r1 = getpid() openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/dri/vkms/clients\x00', 0x2100, 0x0) pipe2$auto(&(0x7f00000000c0), 0x0) process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) ioctl$auto(r0, 0x40246f4c, 0x38) kernel console output (not intermixed with test programs): _pfx_binder_open+0x10/0x10 [ 475.443838][T22190] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 475.443858][T22190] do_dentry_open+0x982/0x1530 [ 475.443876][T22190] ? __pfx_binder_open+0x10/0x10 [ 475.443897][T22190] vfs_open+0x82/0x3f0 [ 475.443919][T22190] path_openat+0x1de4/0x2cb0 [ 475.443941][T22190] ? __pfx_path_openat+0x10/0x10 [ 475.443962][T22190] do_filp_open+0x20b/0x470 [ 475.443978][T22190] ? __pfx_do_filp_open+0x10/0x10 [ 475.444008][T22190] ? alloc_fd+0x471/0x7d0 [ 475.444027][T22190] do_sys_openat2+0x11b/0x1d0 [ 475.444048][T22190] ? __pfx_do_sys_openat2+0x10/0x10 [ 475.444076][T22190] __x64_sys_openat+0x174/0x210 [ 475.444096][T22190] ? __pfx___x64_sys_openat+0x10/0x10 [ 475.444125][T22190] do_syscall_64+0xcd/0x4b0 [ 475.444144][T22190] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 475.444158][T22190] RIP: 0033:0x7fcab858eec9 [ 475.444170][T22190] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 475.444183][T22190] RSP: 002b:00007fcab9340038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 475.444197][T22190] RAX: ffffffffffffffda RBX: 00007fcab87e5fa0 RCX: 00007fcab858eec9 [ 475.444206][T22190] RDX: 0000000000189160 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 475.444215][T22190] RBP: 00007fcab8611f91 R08: 0000000000000000 R09: 0000000000000000 [ 475.444223][T22190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 475.444231][T22190] R13: 00007fcab87e6038 R14: 00007fcab87e5fa0 R15: 00007ffd9adf03a8 [ 475.444249][T22190] [ 475.846215][T16786] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 476.268390][T18733] Bluetooth: hci3: command tx timeout [ 476.720386][T22117] chnl_net:caif_netlink_parms(): no params data found [ 476.870654][T16786] bridge_slave_1: left allmulticast mode [ 476.912722][T16786] bridge_slave_1: left promiscuous mode [ 476.951647][T16786] bridge0: port 2(bridge_slave_1) entered disabled state [ 477.070550][T16786] bridge_slave_0: left allmulticast mode [ 477.076228][T16786] bridge_slave_0: left promiscuous mode [ 477.178235][T16786] bridge0: port 1(bridge_slave_0) entered disabled state [ 477.914807][T22404] Invalid ELF header magic: != ELF [ 478.328878][T18733] Bluetooth: hci3: command tx timeout [ 478.485560][T16786] tipc: Left network mode [ 478.937133][T22117] bridge0: port 1(bridge_slave_0) entered blocking state [ 478.982228][T22117] bridge0: port 1(bridge_slave_0) entered disabled state [ 479.027173][T22117] bridge_slave_0: entered allmulticast mode [ 479.081788][T22117] bridge_slave_0: entered promiscuous mode [ 479.261430][T22117] bridge0: port 2(bridge_slave_1) entered blocking state [ 479.322099][T22117] bridge0: port 2(bridge_slave_1) entered disabled state [ 479.377486][T22117] bridge_slave_1: entered allmulticast mode [ 479.422332][T22117] bridge_slave_1: entered promiscuous mode [ 479.694412][T22117] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 479.940364][T22117] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 480.281040][T22117] team0: Port device team_slave_0 added [ 480.394469][T16786] hsr_slave_0: left promiscuous mode [ 480.409270][T18733] Bluetooth: hci3: command tx timeout [ 480.455268][T16786] hsr_slave_1: left promiscuous mode [ 480.469063][T16786] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 480.501635][T16786] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 480.547089][T16786] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 480.587623][T16786] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 480.644329][T16786] veth1_vlan: left promiscuous mode [ 480.679117][T16786] veth0_vlan: left promiscuous mode [ 482.078843][T22770] random: crng reseeded on system resumption [ 482.186961][T16786] team0 (unregistering): Port device team_slave_1 removed [ 482.352084][T16786] team0 (unregistering): Port device team_slave_0 removed [ 482.490602][T18733] Bluetooth: hci3: command tx timeout [ 483.502413][T22117] team0: Port device team_slave_1 added [ 483.774314][T22117] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 483.792252][T22117] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 483.857321][T22117] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 483.920010][T22117] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 483.970271][T22117] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 484.080866][T22117] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 484.474513][T22117] hsr_slave_0: entered promiscuous mode [ 484.514093][T22117] hsr_slave_1: entered promiscuous mode [ 484.546437][T22117] debugfs: 'hsr0' already exists in 'hsr' [ 484.576473][T22117] Cannot create hsr debugfs directory [ 485.266418][T23059] netlink: 342 bytes leftover after parsing attributes in process `syz.2.3696'. [ 487.307134][T22117] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 487.385247][T22117] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 487.488492][T22117] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 487.542459][T22117] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 488.492333][T22117] 8021q: adding VLAN 0 to HW filter on device bond0 [ 488.567787][T22117] 8021q: adding VLAN 0 to HW filter on device team0 [ 488.742304][T16785] bridge0: port 1(bridge_slave_0) entered blocking state [ 488.749446][T16785] bridge0: port 1(bridge_slave_0) entered forwarding state [ 488.853215][T16785] bridge0: port 2(bridge_slave_1) entered blocking state [ 488.860519][T16785] bridge0: port 2(bridge_slave_1) entered forwarding state [ 488.995314][T23410] netlink: 268 bytes leftover after parsing attributes in process `syz.2.3751'. [ 490.000834][T23496] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3772'. [ 490.230037][T23505] hub 8-0:1.0: USB hub found [ 490.308783][T23505] hub 8-0:1.0: 1 port detected [ 490.805984][T22117] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 491.106009][T22117] veth0_vlan: entered promiscuous mode [ 491.181575][T22117] veth1_vlan: entered promiscuous mode [ 491.353202][T22117] veth0_macvtap: entered promiscuous mode [ 491.422899][T22117] veth1_macvtap: entered promiscuous mode [ 491.533535][T22117] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 491.604492][T22117] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 491.755756][ T9270] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 491.832470][ T9270] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 492.039364][ T9270] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 492.108733][ T9270] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 493.299265][ T9271] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 493.355221][ T9271] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 493.632860][T23779] nvme_fabrics: unknown parameter or missing value '7' in ctrl creation request [ 493.746171][ T9270] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 493.803500][ T9270] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 494.526653][T23842] netlink: 'syz.1.3839': attribute type 11 has an invalid length. [ 494.933848][T16785] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 495.029089][ T5856] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 495.037386][ T5856] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 495.046094][ T5856] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 495.054328][ T5856] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 495.062095][ T5856] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 495.256132][T16785] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 495.424097][T16785] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 495.534419][T16785] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 495.991530][T23954] netlink: 'syz.0.3844': attribute type 11 has an invalid length. [ 496.026592][T23954] netlink: 'syz.0.3844': attribute type 11 has an invalid length. [ 496.056858][T23954] netlink: 'syz.0.3844': attribute type 11 has an invalid length. [ 496.230378][T23996] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 496.341716][T16785] bridge_slave_1: left allmulticast mode [ 496.363489][T16785] bridge_slave_1: left promiscuous mode [ 496.384850][T16785] bridge0: port 2(bridge_slave_1) entered disabled state [ 496.414591][T16785] bridge_slave_0: left allmulticast mode [ 496.436289][T16785] bridge_slave_0: left promiscuous mode [ 496.465017][T16785] bridge0: port 1(bridge_slave_0) entered disabled state [ 497.128140][T18733] Bluetooth: hci1: command tx timeout [ 497.205118][T16785]  (unregistering): (slave bond_slave_0): Releasing backup interface [ 497.219491][T16785]  (unregistering): (slave bond_slave_1): Releasing backup interface [ 497.233671][T16785]  (unregistering): Released all slaves [ 497.367427][T16785] HfR: left promiscuous mode [ 497.422203][T23856] chnl_net:caif_netlink_parms(): no params data found [ 497.896943][T24164] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 498.033974][T23856] bridge0: port 1(bridge_slave_0) entered blocking state [ 498.077124][T23856] bridge0: port 1(bridge_slave_0) entered disabled state [ 498.119932][T23856] bridge_slave_0: entered allmulticast mode [ 498.156647][T23856] bridge_slave_0: entered promiscuous mode [ 498.350853][T23856] bridge0: port 2(bridge_slave_1) entered blocking state [ 498.395760][T23856] bridge0: port 2(bridge_slave_1) entered disabled state [ 498.433603][T23856] bridge_slave_1: entered allmulticast mode [ 498.472588][T23856] bridge_slave_1: entered promiscuous mode [ 498.620348][T16785] hsr_slave_0: left promiscuous mode [ 498.639595][T16785] hsr_slave_1: left promiscuous mode [ 498.659715][T16785] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 498.689009][T16785] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 498.720637][T16785] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 498.739748][T16785] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 498.804535][T16785] veth1_macvtap: left promiscuous mode [ 498.831836][T16785] veth0_macvtap: left promiscuous mode [ 498.837430][T16785] veth1_vlan: left promiscuous mode [ 498.869857][T16785] veth0_vlan: left promiscuous mode [ 499.209018][T18733] Bluetooth: hci1: command tx timeout [ 499.874207][T16785] team0 (unregistering): Port device team_slave_1 removed [ 499.948958][T16785] team0 (unregistering): Port device team_slave_0 removed [ 500.759249][T23856] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 500.839795][T23856] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 501.107882][T23856] team0: Port device team_slave_0 added [ 501.183854][T23856] team0: Port device team_slave_1 added [ 501.289011][T18733] Bluetooth: hci1: command tx timeout [ 501.379534][T23856] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 501.413701][T23856] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 501.534016][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.540396][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 501.589724][T23856] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 501.660354][T23856] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 501.700944][T23856] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 501.830413][T23856] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 501.961350][T24341] FAULT_INJECTION: forcing a failure. [ 501.961350][T24341] name failslab, interval 1, probability 0, space 0, times 0 [ 502.080829][T24341] CPU: 0 UID: 0 PID: 24341 Comm: syz.2.3851 Not tainted syzkaller #0 PREEMPT(full) [ 502.080852][T24341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 502.080861][T24341] Call Trace: [ 502.080866][T24341] [ 502.080872][T24341] dump_stack_lvl+0x16c/0x1f0 [ 502.080895][T24341] should_fail_ex+0x512/0x640 [ 502.080915][T24341] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 502.080934][T24341] should_failslab+0xc2/0x120 [ 502.080954][T24341] kmem_cache_alloc_noprof+0x75/0x6e0 [ 502.080969][T24341] ? key_alloc+0x3e0/0x1330 [ 502.080987][T24341] ? key_alloc+0x3e0/0x1330 [ 502.080999][T24341] key_alloc+0x3e0/0x1330 [ 502.081017][T24341] ? rcu_is_watching+0x12/0xc0 [ 502.081035][T24341] ? __pfx_key_alloc+0x10/0x10 [ 502.081048][T24341] ? lsm_blob_alloc+0x68/0x90 [ 502.081069][T24341] keyring_alloc+0x44/0xc0 [ 502.081086][T24341] install_thread_keyring_to_cred+0xc1/0x140 [ 502.081109][T24341] keyctl_set_reqkey_keyring+0xcf/0x1c0 [ 502.081130][T24341] __do_sys_keyctl+0x6d/0x590 [ 502.081151][T24341] do_syscall_64+0xcd/0x4b0 [ 502.081169][T24341] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 502.081183][T24341] RIP: 0033:0x7fce46d8eec9 [ 502.081195][T24341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 502.081208][T24341] RSP: 002b:00007fce47b6d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 502.081222][T24341] RAX: ffffffffffffffda RBX: 00007fce46fe5fa0 RCX: 00007fce46d8eec9 [ 502.081231][T24341] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000e [ 502.081239][T24341] RBP: 00007fce46e11f91 R08: 0000000000000008 R09: 0000000000000000 [ 502.081248][T24341] R10: 0000000000005eaf R11: 0000000000000246 R12: 0000000000000000 [ 502.081256][T24341] R13: 00007fce46fe6038 R14: 00007fce46fe5fa0 R15: 00007ffd746d39e8 [ 502.081274][T24341] [ 502.521668][T23856] hsr_slave_0: entered promiscuous mode [ 502.555534][T23856] hsr_slave_1: entered promiscuous mode [ 503.159133][T24501] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3853'. [ 503.375992][T18733] Bluetooth: hci1: command tx timeout [ 504.087934][T23856] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 504.183585][T23856] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 504.239106][T18733] Bluetooth: hci2: unexpected subevent 0x12 length: 123 > 5 [ 504.251819][T23856] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 504.291963][T23856] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 504.471714][T18733] Bluetooth: hci2: unexpected event 0x3e length: 509 > 260 [ 504.471738][T18733] Bluetooth: hci2: unexpected subevent 0x02 length: 508 > 260 [ 504.486781][T18733] Bluetooth: hci2: Dropping invalid advertising data [ 504.494112][T18733] Bluetooth: hci2: Dropping invalid advertising data [ 504.502232][T18733] Bluetooth: hci2: Dropping invalid advertising data [ 504.510048][T18733] Bluetooth: hci2: unknown advertising packet type: 0xbd [ 504.510070][T18733] Bluetooth: hci2: unknown advertising packet type: 0x20 [ 504.517079][T18733] Bluetooth: hci2: Malformed LE Event: 0x02 [ 505.025192][T23856] 8021q: adding VLAN 0 to HW filter on device bond0 [ 505.301320][T23856] 8021q: adding VLAN 0 to HW filter on device team0 [ 505.407209][ T9271] bridge0: port 1(bridge_slave_0) entered blocking state [ 505.414348][ T9271] bridge0: port 1(bridge_slave_0) entered forwarding state [ 505.496540][ T9271] bridge0: port 2(bridge_slave_1) entered blocking state [ 505.503682][ T9271] bridge0: port 2(bridge_slave_1) entered forwarding state [ 506.519257][T24675] FAULT_INJECTION: forcing a failure. [ 506.519257][T24675] name failslab, interval 1, probability 0, space 0, times 0 [ 506.594604][T24675] CPU: 0 UID: 0 PID: 24675 Comm: syz.1.3864 Not tainted syzkaller #0 PREEMPT(full) [ 506.594627][T24675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 506.594636][T24675] Call Trace: [ 506.594641][T24675] [ 506.594648][T24675] dump_stack_lvl+0x16c/0x1f0 [ 506.594671][T24675] should_fail_ex+0x512/0x640 [ 506.594691][T24675] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 506.594711][T24675] should_failslab+0xc2/0x120 [ 506.594731][T24675] __kvmalloc_node_noprof+0x141/0x9c0 [ 506.594749][T24675] ? trace_kmalloc+0x2b/0xd0 [ 506.594766][T24675] ? __kvmalloc_node_noprof+0x3c0/0x9c0 [ 506.594782][T24675] ? io_alloc_cache_init+0x38/0x170 [ 506.594804][T24675] ? io_alloc_cache_init+0x38/0x170 [ 506.594822][T24675] io_alloc_cache_init+0x38/0x170 [ 506.594842][T24675] io_rsrc_cache_init+0x26/0x50 [ 506.594860][T24675] io_uring_setup+0x68e/0x20e0 [ 506.594878][T24675] ? __pfx_io_uring_setup+0x10/0x10 [ 506.594893][T24675] ? do_futex+0x122/0x350 [ 506.594914][T24675] ? __pfx_do_futex+0x10/0x10 [ 506.594933][T24675] ? __fput+0x68d/0xb70 [ 506.594952][T24675] ? __pfx___might_resched+0x10/0x10 [ 506.594977][T24675] ? xfd_validate_state+0x61/0x180 [ 506.594989][T24675] ? __pfx___do_sys_close_range+0x10/0x10 [ 506.595010][T24675] __x64_sys_io_uring_setup+0xc2/0x170 [ 506.595026][T24675] do_syscall_64+0xcd/0x4b0 [ 506.595045][T24675] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 506.595059][T24675] RIP: 0033:0x7fcab858eec9 [ 506.595080][T24675] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 506.595095][T24675] RSP: 002b:00007fcab9340038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 506.595109][T24675] RAX: ffffffffffffffda RBX: 00007fcab87e5fa0 RCX: 00007fcab858eec9 [ 506.595119][T24675] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 506.595127][T24675] RBP: 00007fcab8611f91 R08: 0000000000000000 R09: 0000000000000000 [ 506.595135][T24675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 506.595144][T24675] R13: 00007fcab87e6038 R14: 00007fcab87e5fa0 R15: 00007ffd9adf03a8 [ 506.595162][T24675] [ 507.229197][T24697] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 507.292065][T24691] netlink: 268 bytes leftover after parsing attributes in process `syz.1.3865'. [ 507.617638][T23856] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 507.843094][T23856] veth0_vlan: entered promiscuous mode [ 507.914404][T23856] veth1_vlan: entered promiscuous mode [ 508.143640][T23856] veth0_macvtap: entered promiscuous mode [ 508.211773][T24755] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 508.232628][T23856] veth1_macvtap: entered promiscuous mode [ 508.297264][T23856] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 508.375992][T23856] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 508.430487][T24755] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3867'. [ 508.454614][T24741] sp0: Synchronizing with TNC [ 508.469147][T16785] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 508.504398][T24748] sp0: Found TNC [ 508.521558][ T9270] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 508.563214][ T9270] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 508.704342][ T9270] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 509.099355][T18733] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 509.099381][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.115764][T18733] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 509.115785][T18733] Bluetooth: hci2: adv larger than maximum supported [ 509.122890][T18733] Bluetooth: hci2: adv larger than maximum supported [ 509.133102][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.149233][T18733] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 509.149253][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.165622][T18733] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 509.165640][T18733] Bluetooth: hci2: adv larger than maximum supported [ 509.173401][T18733] Bluetooth: hci2: adv larger than maximum supported [ 509.180133][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.198250][T18733] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 509.198270][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.214793][T18733] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 509.214811][T18733] Bluetooth: hci2: adv larger than maximum supported [ 509.221884][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.234671][T18733] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 509.234688][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.249629][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.255610][T18733] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 509.255627][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.272179][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.280316][T18733] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 509.280335][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.297932][T16785] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 509.306637][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.313783][T18733] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 509.313802][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.329251][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.335231][T18733] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 509.335247][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.350581][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.356589][T18733] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 509.356608][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.375477][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.382214][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.389800][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.395859][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.403790][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.409872][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.418363][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.424401][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.432271][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.438292][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.445742][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.455646][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.463480][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.469840][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.481173][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.487127][T18733] bt_warn_ratelimited: 7 callbacks suppressed [ 509.487137][T18733] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 509.499453][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.515443][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.523139][T18733] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 509.523157][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.537902][T18733] bt_err_ratelimited: 43 callbacks suppressed [ 509.537913][T18733] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 509.544092][T18733] Bluetooth: hci2: adv larger than maximum supported [ 509.551187][T18733] Bluetooth: hci2: adv larger than maximum supported [ 509.557842][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.578541][T18733] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 509.578560][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.593795][T18733] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 509.593812][T18733] Bluetooth: hci2: adv larger than maximum supported [ 509.602945][T18733] Bluetooth: hci2: adv larger than maximum supported [ 509.610816][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.626897][T18733] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 509.626915][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.641632][T18733] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 509.641648][T18733] Bluetooth: hci2: adv larger than maximum supported [ 509.648791][T18733] Bluetooth: hci2: adv larger than maximum supported [ 509.655479][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.668658][T18733] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 509.668675][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.683340][T18733] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 509.683365][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.696791][T18733] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 509.696809][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.711569][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.717485][T18733] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 509.717500][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.733846][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.739829][T18733] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 509.739845][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.759800][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.766131][T18733] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 509.766149][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.781424][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.787337][T18733] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 509.787353][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.804394][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.810418][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.817873][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.823850][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.833266][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.839927][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.847384][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.854215][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.861708][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.867625][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.875185][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.881139][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.888627][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.894538][T18733] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 509.902596][T18733] Bluetooth: hci2: Malformed LE Event: 0x0d [ 509.927329][T16785] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 510.334517][ T9271] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 510.384017][ T9271] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 511.083182][T24921] ptrace attach of "./syz-executor exec"[24922] was attempted by "./syz-executor exec"[24921] [ 511.143063][T24903] random: crng reseeded on system resumption [ 511.231508][T24903] blktrace: Concurrent blktraces are not allowed on loop12 getty: ttyS0: read error: Resource temporarily unavailable [ 513.965098][T25116] zswap: compressor =Îèn.hÞ}Wùoˆ ˆ[±=Ðvü3$z#7×뚥>˜|¢®k©'lm not available [ 514.034656][T25130] zswap: compressor @ not available [ 514.899042][T25167] FAULT_INJECTION: forcing a failure. [ 514.899042][T25167] name failslab, interval 1, probability 0, space 0, times 0 [ 515.036686][T25167] CPU: 0 UID: 0 PID: 25167 Comm: syz.0.3893 Not tainted syzkaller #0 PREEMPT(full) [ 515.036709][T25167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 515.036718][T25167] Call Trace: [ 515.036723][T25167] [ 515.036729][T25167] dump_stack_lvl+0x16c/0x1f0 [ 515.036751][T25167] should_fail_ex+0x512/0x640 [ 515.036771][T25167] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 515.036789][T25167] should_failslab+0xc2/0x120 [ 515.036809][T25167] kmem_cache_alloc_noprof+0x75/0x6e0 [ 515.036825][T25167] ? sk_prot_alloc+0x60/0x2a0 [ 515.036843][T25167] ? sk_prot_alloc+0x60/0x2a0 [ 515.036856][T25167] sk_prot_alloc+0x60/0x2a0 [ 515.036871][T25167] sk_alloc+0x36/0xc20 [ 515.036890][T25167] rds_create+0x9e/0x5f0 [ 515.036904][T25167] __sock_create+0x335/0x8d0 [ 515.036923][T25167] __sys_socket+0x14d/0x260 [ 515.036939][T25167] ? __pfx___sys_socket+0x10/0x10 [ 515.036955][T25167] ? xfd_validate_state+0x61/0x180 [ 515.036968][T25167] ? __pfx_ksys_write+0x10/0x10 [ 515.036988][T25167] __x64_sys_socket+0x72/0xb0 [ 515.037004][T25167] ? lockdep_hardirqs_on+0x7c/0x110 [ 515.037020][T25167] do_syscall_64+0xcd/0x4b0 [ 515.037038][T25167] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 515.037052][T25167] RIP: 0033:0x7fd25b78eec9 [ 515.037063][T25167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 515.037077][T25167] RSP: 002b:00007fd25c593038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 515.037091][T25167] RAX: ffffffffffffffda RBX: 00007fd25b9e6090 RCX: 00007fd25b78eec9 [ 515.037100][T25167] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000015 [ 515.037108][T25167] RBP: 00007fd25b811f91 R08: 0000000000000000 R09: 0000000000000000 [ 515.037117][T25167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 515.037125][T25167] R13: 00007fd25b9e6128 R14: 00007fd25b9e6090 R15: 00007ffd04fcf468 [ 515.037143][T25167] [ 515.229408][ C0] vkms_vblank_simulate: vblank timer overrun [ 515.253815][T25189] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3895'. [ 516.217278][T25293] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 517.077353][T25319] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 517.269028][T25323] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 519.426796][T25413] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 519.566500][T25410] netlink: 268 bytes leftover after parsing attributes in process `syz.2.3908'. [ 519.596084][T25424] ======================================================= [ 519.596084][T25424] WARNING: The mand mount option has been deprecated and [ 519.596084][T25424] and is ignored by this kernel. Remove the mand [ 519.596084][T25424] option from the mount to silence this warning. [ 519.596084][T25424] ======================================================= [ 521.246813][T25478] FAULT_INJECTION: forcing a failure. [ 521.246813][T25478] name failslab, interval 1, probability 0, space 0, times 0 [ 521.321132][T25478] CPU: 0 UID: 0 PID: 25478 Comm: syz.2.3917 Not tainted syzkaller #0 PREEMPT(full) [ 521.321155][T25478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 521.321164][T25478] Call Trace: [ 521.321169][T25478] [ 521.321175][T25478] dump_stack_lvl+0x16c/0x1f0 [ 521.321197][T25478] should_fail_ex+0x512/0x640 [ 521.321217][T25478] ? __kmalloc_noprof+0xca/0x880 [ 521.321234][T25478] should_failslab+0xc2/0x120 [ 521.321254][T25478] __kmalloc_noprof+0xdd/0x880 [ 521.321268][T25478] ? binder_open+0x168/0xde0 [ 521.321289][T25478] ? binder_open+0x168/0xde0 [ 521.321304][T25478] binder_open+0x168/0xde0 [ 521.321322][T25478] ? __pfx_apparmor_file_open+0x10/0x10 [ 521.321343][T25478] ? __pfx_binder_open+0x10/0x10 [ 521.321362][T25478] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 521.321382][T25478] do_dentry_open+0x982/0x1530 [ 521.321399][T25478] ? __pfx_binder_open+0x10/0x10 [ 521.321421][T25478] vfs_open+0x82/0x3f0 [ 521.321444][T25478] path_openat+0x1de4/0x2cb0 [ 521.321467][T25478] ? __pfx_path_openat+0x10/0x10 [ 521.321487][T25478] do_filp_open+0x20b/0x470 [ 521.321504][T25478] ? __pfx_do_filp_open+0x10/0x10 [ 521.321533][T25478] ? alloc_fd+0x471/0x7d0 [ 521.321553][T25478] do_sys_openat2+0x11b/0x1d0 [ 521.321573][T25478] ? __pfx_do_sys_openat2+0x10/0x10 [ 521.321601][T25478] __x64_sys_openat+0x174/0x210 [ 521.321622][T25478] ? __pfx___x64_sys_openat+0x10/0x10 [ 521.321650][T25478] do_syscall_64+0xcd/0x4b0 [ 521.321669][T25478] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 521.321683][T25478] RIP: 0033:0x7fce46d8eec9 [ 521.321695][T25478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 521.321709][T25478] RSP: 002b:00007fce47b6d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 521.321743][T25478] RAX: ffffffffffffffda RBX: 00007fce46fe5fa0 RCX: 00007fce46d8eec9 [ 521.321753][T25478] RDX: 0000000000189160 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 521.321762][T25478] RBP: 00007fce46e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 521.321771][T25478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 521.321779][T25478] R13: 00007fce46fe6038 R14: 00007fce46fe5fa0 R15: 00007ffd746d39e8 [ 521.321799][T25478] [ 521.614223][T25450] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 522.120811][T25530] tipc: Started in network mode [ 522.131056][T25530] tipc: Node identity fe820562, cluster identity 4711 [ 522.150286][T25530] tipc: Node number set to 4269933922 syzkaller syzkaller login: [ 524.417779][T25612] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 526.167076][T16784] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 526.873298][T25705] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 527.804983][T25779] netlink: 'syz.1.3943': attribute type 10 has an invalid length. [ 527.841485][T25779] netlink: 230 bytes leftover after parsing attributes in process `syz.1.3943'. [ 527.910860][T25779] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 528.208961][T25794] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18 [ 528.282305][T25792] sd 0:0:1:0: PR command failed: 1026 [ 528.312730][T25792] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 528.414834][T25792] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 528.680978][T16784] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 528.843422][T16784] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 528.932753][T16784] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 529.124379][T16784] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 529.813590][T25897] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3954'. [ 529.910502][T16784] bridge_slave_1: left allmulticast mode [ 529.916160][T16784] bridge_slave_1: left promiscuous mode [ 529.991625][T16784] bridge0: port 2(bridge_slave_1) entered disabled state [ 530.004020][ T5856] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 530.017719][ T5856] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 530.026638][ T5856] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 530.034818][ T5856] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 530.046118][ T5856] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 530.173859][T16784] bridge_slave_0: left allmulticast mode [ 530.173901][T16784] bridge_slave_0: left promiscuous mode [ 530.174059][T16784] bridge0: port 1(bridge_slave_0) entered disabled state [ 531.048888][T16784] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 531.070322][T16784] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 531.090651][T16784] bond0 (unregistering): Released all slaves [ 531.153578][T16784] tipc: Left network mode [ 531.679810][T26006] binder: 25984:26006 ioctl 8933 2000000000c0 returned -22 [ 531.741754][T26007] binder: 25984:26007 ioctl 8933 2000000000c0 returned -22 [ 531.964933][T26038] netlink: 280 bytes leftover after parsing attributes in process `syz.2.3958'. [ 532.100115][T18733] Bluetooth: hci3: command tx timeout [ 532.883468][T25910] chnl_net:caif_netlink_parms(): no params data found [ 533.039423][T16784] hsr_slave_0: left promiscuous mode [ 533.052237][T16784] hsr_slave_1: left promiscuous mode [ 533.082795][T16784] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 533.126590][T16784] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 533.155628][T16784] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 533.187684][T16784] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 533.250512][T16784] veth1_macvtap: left promiscuous mode [ 533.273375][T16784] veth0_macvtap: left promiscuous mode [ 533.299830][T16784] veth1_vlan: left promiscuous mode [ 533.325580][T16784] veth0_vlan: left promiscuous mode [ 534.175748][T18733] Bluetooth: hci3: command tx timeout [ 534.280758][T16784] team0 (unregistering): Port device team_slave_1 removed [ 534.364490][T16784] team0 (unregistering): Port device team_slave_0 removed [ 534.500164][T26181] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 534.627273][T26184] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 535.213474][T26237] block2mtd: Using custom MTD label '' for dev [ 535.258875][T26237] block2mtd: error: cannot open device [ 535.355762][T26267] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 535.427437][T25910] bridge0: port 1(bridge_slave_0) entered blocking state [ 535.447282][T25910] bridge0: port 1(bridge_slave_0) entered disabled state [ 535.504421][T25910] bridge_slave_0: entered allmulticast mode [ 535.534577][T25910] bridge_slave_0: entered promiscuous mode [ 535.606798][T25910] bridge0: port 2(bridge_slave_1) entered blocking state [ 535.630448][T25910] bridge0: port 2(bridge_slave_1) entered disabled state [ 535.666482][T25910] bridge_slave_1: entered allmulticast mode [ 535.679164][T25910] bridge_slave_1: entered promiscuous mode [ 535.958237][T25910] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 536.094161][T25910] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 536.249739][ T5856] Bluetooth: hci3: command tx timeout [ 536.336030][T25910] team0: Port device team_slave_0 added [ 536.375666][T25910] team0: Port device team_slave_1 added [ 536.519134][T25910] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 536.549525][T25910] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 536.614312][T25910] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 536.672260][T25910] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 536.698862][T25910] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 536.775765][T25910] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 536.940840][T25910] hsr_slave_0: entered promiscuous mode [ 536.963719][T25910] hsr_slave_1: entered promiscuous mode [ 536.988654][T25910] debugfs: 'hsr0' already exists in 'hsr' [ 537.004591][T25910] Cannot create hsr debugfs directory [ 537.821265][T25910] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 537.852899][T25910] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 537.870970][T25910] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 537.891449][T25910] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 538.051634][T25910] 8021q: adding VLAN 0 to HW filter on device bond0 [ 538.082727][T25910] 8021q: adding VLAN 0 to HW filter on device team0 [ 538.113970][T16785] bridge0: port 1(bridge_slave_0) entered blocking state [ 538.121131][T16785] bridge0: port 1(bridge_slave_0) entered forwarding state [ 538.159340][T16785] bridge0: port 2(bridge_slave_1) entered blocking state [ 538.166475][T16785] bridge0: port 2(bridge_slave_1) entered forwarding state [ 538.331120][ T5856] Bluetooth: hci3: command tx timeout [ 538.408329][T26319] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 538.416934][ T5856] Bluetooth: hci0: command 0x0c1a tx timeout [ 538.424542][T26319] Bluetooth: hci0: Opcode 0x0406 failed: -110 [ 538.487627][T25910] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 538.565372][T25910] veth0_vlan: entered promiscuous mode [ 538.600637][T25910] veth1_vlan: entered promiscuous mode [ 538.659004][T25910] veth0_macvtap: entered promiscuous mode [ 538.677700][T25910] veth1_macvtap: entered promiscuous mode [ 538.729165][T25910] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 538.752100][T25910] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 538.783075][ T9270] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 538.807522][ T9270] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 538.833272][ T9270] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 538.865306][ T9270] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 539.016536][T26319] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 539.031311][T26319] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 539.052221][T26319] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 539.071777][T26319] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 539.091543][T26319] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 539.105675][T26319] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 539.120622][T26319] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 539.153028][T26319] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 539.168682][T26319] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 539.188382][T26319] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 539.214182][T26383] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR [ 539.369482][ T9270] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 539.377315][ T9270] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 539.559276][ T9270] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 539.596890][ T9270] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 540.488412][ T5856] Bluetooth: hci0: command 0x0c1a tx timeout [ 541.052009][ T5856] Bluetooth: hci2: command 0x0c1a tx timeout [ 541.090305][T26656] could not allocate digest TFM handle [ 541.129304][ T5856] Bluetooth: hci1: command 0x0c1a tx timeout [ 541.209410][ T5856] Bluetooth: hci3: command 0x0c1a tx timeout [ 541.641090][T26727] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 541.692341][T26724] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 542.062704][T26754] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 542.359889][T26771] vhci_hcd: invalid port number 23 [ 542.569139][ T5856] Bluetooth: hci0: command 0x0c1a tx timeout [ 542.738962][T26780] openvswitch: netlink: Key type 14827 is out of range max 32 [ 543.130172][ T5856] Bluetooth: hci2: command 0x0c1a tx timeout [ 543.209435][ T5856] Bluetooth: hci1: command 0x0c1a tx timeout [ 543.288056][ T5856] Bluetooth: hci3: command 0x0c1a tx timeout [ 543.321277][T26824] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 543.759062][T26848] zswap: compressor not available [ 544.043241][T26868] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 544.218170][T26868] netlink: 268 bytes leftover after parsing attributes in process `syz.1.3991'. [ 544.905901][T26894] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 545.092569][ T30] audit: type=1806 audit(4294967479.020:7): xattr=B7639E3EF18E49CBA2DC14F658ED7AC54D2A6A0557B834FC424ADD66F2E57AC9C89A44C9A2E57322AF6A443F4343917637DCB9 res=-22 [ 545.170329][ T30] audit: type=1326 audit(4294967479.050:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26906 comm="syz.3.4001" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f122338eec9 code=0x0 [ 545.211101][ T5856] Bluetooth: hci2: command 0x0c1a tx timeout [ 545.239406][T26912] FAULT_INJECTION: forcing a failure. [ 545.239406][T26912] name failslab, interval 1, probability 0, space 0, times 0 [ 545.310656][ T5856] Bluetooth: hci1: command 0x0c1a tx timeout [ 545.329143][T26912] CPU: 0 UID: 0 PID: 26912 Comm: syz.3.4001 Not tainted syzkaller #0 PREEMPT(full) [ 545.329164][T26912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 545.329172][T26912] Call Trace: [ 545.329178][T26912] [ 545.329184][T26912] dump_stack_lvl+0x16c/0x1f0 [ 545.329206][T26912] should_fail_ex+0x512/0x640 [ 545.329226][T26912] ? __kmalloc_cache_noprof+0x5f/0x780 [ 545.329244][T26912] should_failslab+0xc2/0x120 [ 545.329264][T26912] __kmalloc_cache_noprof+0x72/0x780 [ 545.329279][T26912] ? snd_pcm_oss_change_params_locked+0x1db/0x3a30 [ 545.329298][T26912] ? snd_pcm_oss_change_params_locked+0x1db/0x3a30 [ 545.329313][T26912] snd_pcm_oss_change_params_locked+0x1db/0x3a30 [ 545.329330][T26912] ? trace_contention_end+0xdd/0x130 [ 545.329354][T26912] ? __mutex_lock+0x1c5/0x1060 [ 545.329373][T26912] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 545.329390][T26912] ? __pfx___mutex_lock+0x10/0x10 [ 545.329411][T26912] ? __fsnotify_parent+0x24b/0xc40 [ 545.329434][T26912] snd_pcm_oss_make_ready+0xe6/0x1b0 [ 545.329450][T26912] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 545.329464][T26912] snd_pcm_oss_sync+0x1de/0x840 [ 545.329480][T26912] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 545.329494][T26912] snd_pcm_oss_release+0x28b/0x310 [ 545.329510][T26912] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 545.329523][T26912] __fput+0x3ff/0xb70 [ 545.329547][T26912] task_work_run+0x14d/0x240 [ 545.329563][T26912] ? __pfx_task_work_run+0x10/0x10 [ 545.329578][T26912] ? __pfx___do_sys_close_range+0x10/0x10 [ 545.329598][T26912] exit_to_user_mode_loop+0xec/0x130 [ 545.329614][T26912] do_syscall_64+0x419/0x4b0 [ 545.329632][T26912] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 545.329646][T26912] RIP: 0033:0x7f122338eec9 [ 545.329658][T26912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 545.329672][T26912] RSP: 002b:00007f122426a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 545.329694][T26912] RAX: 0000000000000000 RBX: 00007f12235e6090 RCX: 00007f122338eec9 [ 545.329704][T26912] RDX: 0000000000000000 RSI: fffffffffffff000 RDI: 0000000000000000 [ 545.329713][T26912] RBP: 00007f1223411f91 R08: 0000000000000000 R09: 0000000000000000 [ 545.329721][T26912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 545.329730][T26912] R13: 00007f12235e6128 R14: 00007f12235e6090 R15: 00007ffd25dd4248 [ 545.329749][T26912] [ 545.739849][ T5856] Bluetooth: hci3: command 0x0c1a tx timeout [ 546.105195][T26946] binder: 26940:26946 ioctl c018620c 0 returned -1 [ 546.216021][T26946] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4005'. [ 546.238652][T26952] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 547.067767][T26971] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 547.109203][T26972] FAULT_INJECTION: forcing a failure. [ 547.109203][T26972] name failslab, interval 1, probability 0, space 0, times 0 [ 547.180182][T26972] CPU: 0 UID: 0 PID: 26972 Comm: syz.1.4009 Not tainted syzkaller #0 PREEMPT(full) [ 547.180204][T26972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 547.180213][T26972] Call Trace: [ 547.180219][T26972] [ 547.180225][T26972] dump_stack_lvl+0x16c/0x1f0 [ 547.180248][T26972] should_fail_ex+0x512/0x640 [ 547.180268][T26972] ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0 [ 547.180292][T26972] should_failslab+0xc2/0x120 [ 547.180312][T26972] __kmalloc_node_track_caller_noprof+0xde/0x8a0 [ 547.180331][T26972] ? append_filter_err+0x3d6/0x610 [ 547.180354][T26972] ? kmemdup_nul+0x49/0xf0 [ 547.180368][T26972] kmemdup_nul+0x49/0xf0 [ 547.180385][T26972] append_filter_err+0x3d6/0x610 [ 547.180408][T26972] apply_subsystem_event_filter+0x75a/0x17e0 [ 547.180437][T26972] ? __pfx_apply_subsystem_event_filter+0x10/0x10 [ 547.180462][T26972] ? _copy_from_user+0x59/0xd0 [ 547.180485][T26972] subsystem_filter_write+0x95/0x120 [ 547.180507][T26972] ? __pfx_subsystem_filter_write+0x10/0x10 [ 547.180527][T26972] vfs_write+0x2a0/0x11d0 [ 547.180557][T26972] ? __pfx___mutex_lock+0x10/0x10 [ 547.180576][T26972] ? __pfx_vfs_write+0x10/0x10 [ 547.180598][T26972] ? __fget_files+0x20e/0x3c0 [ 547.180620][T26972] ksys_write+0x12a/0x250 [ 547.180636][T26972] ? __pfx_ksys_write+0x10/0x10 [ 547.180658][T26972] do_syscall_64+0xcd/0x4b0 [ 547.180676][T26972] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 547.180691][T26972] RIP: 0033:0x7fcab858eec9 [ 547.180703][T26972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 547.180716][T26972] RSP: 002b:00007fcab9340038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 547.180730][T26972] RAX: ffffffffffffffda RBX: 00007fcab87e5fa0 RCX: 00007fcab858eec9 [ 547.180740][T26972] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000009 [ 547.180748][T26972] RBP: 00007fcab8611f91 R08: 0000000000000000 R09: 0000000000000000 [ 547.180756][T26972] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 547.180764][T26972] R13: 00007fcab87e6038 R14: 00007fcab87e5fa0 R15: 00007ffd9adf03a8 [ 547.180783][T26972] [ 548.087731][T26998] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(424206980.290643515.64131978), cmd(3) [ 548.164422][ T9] Process accounting resumed [ 548.313833][T27004] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 548.536258][T26981] netlink: 268 bytes leftover after parsing attributes in process `syz.3.4008'. [ 554.873361][T27347] random: crng reseeded on system resumption [ 558.156081][T27538] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4053'. [ 560.370053][T27709] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4066'. [ 560.418946][T27709] netlink: 'syz.1.4066': attribute type 11 has an invalid length. [ 561.548481][T27807] WARNING! power/level is deprecated; use power/control instead [ 561.587851][T27809] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input19 [ 561.863800][T27840] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 562.973099][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 562.979539][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 565.182608][T28111] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 565.654417][T28123] sp0: Synchronizing with TNC [ 565.900784][T28148] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4101'. [ 566.920679][T28197] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4105'. [ 567.905752][T28221] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4107'. [ 567.956761][T28221] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 568.325369][T28283] netlink: 334 bytes leftover after parsing attributes in process `syz.1.4112'. [ 568.448471][T28292] netlink: 334 bytes leftover after parsing attributes in process `syz.1.4112'. [ 569.269655][T28304] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4115'. [ 569.316244][T28304] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 569.358157][T28304] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 569.439133][T28312] nbd: socks must be embedded in a SOCK_ITEM attr [ 569.601040][T28304] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 569.687079][T28304] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 569.739482][T28319] usb usb28: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 569.771299][T28322] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 569.929907][T28331] sctp: [Deprecated]: syz.2.4120 (pid 28331) Use of int in maxseg socket option. [ 569.929907][T28331] Use struct sctp_assoc_value instead [ 570.550244][T28369] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 572.426175][T28436] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 572.822943][T28433] netlink: 268 bytes leftover after parsing attributes in process `syz.3.4126'. [ 573.897532][T28547] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 574.112382][T28577] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 574.462649][T28601] FAULT_INJECTION: forcing a failure. [ 574.462649][T28601] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 574.612640][T28601] CPU: 0 UID: 0 PID: 28601 Comm: syz.2.4131 Not tainted syzkaller #0 PREEMPT(full) [ 574.612662][T28601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 574.612671][T28601] Call Trace: [ 574.612676][T28601] [ 574.612682][T28601] dump_stack_lvl+0x16c/0x1f0 [ 574.612703][T28601] should_fail_ex+0x512/0x640 [ 574.612727][T28601] should_fail_alloc_page+0xe7/0x130 [ 574.612748][T28601] prepare_alloc_pages+0x3c2/0x610 [ 574.612771][T28601] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 574.612787][T28601] ? __lock_acquire+0x62e/0x1ce0 [ 574.612816][T28601] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 574.612844][T28601] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 574.612860][T28601] ? policy_nodemask+0xea/0x4e0 [ 574.612881][T28601] alloc_pages_mpol+0x1fb/0x550 [ 574.612901][T28601] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 574.612925][T28601] alloc_pages_noprof+0x131/0x390 [ 574.612945][T28601] __pmd_alloc+0x3b/0x8b0 [ 574.612967][T28601] __handle_mm_fault+0xada/0x2aa0 [ 574.612983][T28601] ? mt_find+0x3e2/0xa20 [ 574.613001][T28601] ? __pfx___handle_mm_fault+0x10/0x10 [ 574.613013][T28601] ? __pfx_mt_find+0x10/0x10 [ 574.613041][T28601] ? find_vma+0xbf/0x140 [ 574.613058][T28601] ? __pfx_find_vma+0x10/0x10 [ 574.613076][T28601] handle_mm_fault+0x589/0xd10 [ 574.613090][T28601] ? trace_raw_output_exceptions+0x141/0x150 [ 574.613107][T28601] do_user_addr_fault+0x7a6/0x1370 [ 574.613124][T28601] ? rcu_is_watching+0x12/0xc0 [ 574.613144][T28601] exc_page_fault+0x5c/0xb0 [ 574.613160][T28601] asm_exc_page_fault+0x26/0x30 [ 574.613174][T28601] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 574.613195][T28601] Code: 23 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 574.613214][T28601] RSP: 0018:ffffc9000413fe98 EFLAGS: 00050206 [ 574.613226][T28601] RAX: 0000000000000001 RBX: 0000000000000107 RCX: 0000000000000803 [ 574.613235][T28601] RDX: ffffed100b813d00 RSI: 0000000000000107 RDI: ffff88805c09e000 [ 574.613243][T28601] RBP: 0000000000000803 R08: 0000000000000001 R09: ffffed100b813d00 [ 574.613252][T28601] R10: 0000000000000002 R11: 0000000000000000 R12: 0000000000000000 [ 574.613260][T28601] R13: ffff88805c09e000 R14: 000800000000000c R15: 0000000000000000 [ 574.613279][T28601] _copy_from_user+0x98/0xd0 [ 574.613300][T28601] keyctl_update_key+0x101/0x160 [ 574.613320][T28601] __do_sys_keyctl+0x14b/0x590 [ 574.613342][T28601] do_syscall_64+0xcd/0x4b0 [ 574.613359][T28601] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 574.613373][T28601] RIP: 0033:0x7fce46d8eec9 [ 574.613384][T28601] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 574.613397][T28601] RSP: 002b:00007fce47b6d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 574.613409][T28601] RAX: ffffffffffffffda RBX: 00007fce46fe5fa0 RCX: 00007fce46d8eec9 [ 574.613418][T28601] RDX: 0000000000000107 RSI: ffffeffffffffffe RDI: 0000000000000002 [ 574.613427][T28601] RBP: 00007fce47b6d090 R08: 000800000000000c R09: 0000000000000000 [ 574.613435][T28601] R10: 0000000000000803 R11: 0000000000000246 R12: 0000000000000001 [ 574.613443][T28601] R13: 00007fce46fe6038 R14: 00007fce46fe5fa0 R15: 00007ffd746d39e8 [ 574.613462][T28601] [ 575.558112][T28614] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 575.902204][T28622] nvme_fabrics: missing parameter 'transport=%s' [ 575.928910][T28622] nvme_fabrics: missing parameter 'nqn=%s' [ 576.115032][T28634] FAULT_INJECTION: forcing a failure. [ 576.115032][T28634] name failslab, interval 1, probability 0, space 0, times 0 [ 576.184235][T28634] CPU: 0 UID: 0 PID: 28634 Comm: syz.0.4140 Not tainted syzkaller #0 PREEMPT(full) [ 576.184258][T28634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 576.184267][T28634] Call Trace: [ 576.184272][T28634] [ 576.184278][T28634] dump_stack_lvl+0x16c/0x1f0 [ 576.184301][T28634] should_fail_ex+0x512/0x640 [ 576.184323][T28634] ? __kmalloc_noprof+0xca/0x880 [ 576.184340][T28634] should_failslab+0xc2/0x120 [ 576.184361][T28634] __kmalloc_noprof+0xdd/0x880 [ 576.184374][T28634] ? binder_open+0x168/0xde0 [ 576.184396][T28634] ? binder_open+0x168/0xde0 [ 576.184412][T28634] binder_open+0x168/0xde0 [ 576.184430][T28634] ? __pfx_apparmor_file_open+0x10/0x10 [ 576.184450][T28634] ? __pfx_binder_open+0x10/0x10 [ 576.184468][T28634] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 576.184489][T28634] do_dentry_open+0x982/0x1530 [ 576.184507][T28634] ? __pfx_binder_open+0x10/0x10 [ 576.184529][T28634] vfs_open+0x82/0x3f0 [ 576.184551][T28634] path_openat+0x1de4/0x2cb0 [ 576.184573][T28634] ? __pfx_path_openat+0x10/0x10 [ 576.184594][T28634] do_filp_open+0x20b/0x470 [ 576.184611][T28634] ? __pfx_do_filp_open+0x10/0x10 [ 576.184641][T28634] ? alloc_fd+0x471/0x7d0 [ 576.184660][T28634] do_sys_openat2+0x11b/0x1d0 [ 576.184681][T28634] ? __pfx_do_sys_openat2+0x10/0x10 [ 576.184708][T28634] __x64_sys_openat+0x174/0x210 [ 576.184729][T28634] ? __pfx___x64_sys_openat+0x10/0x10 [ 576.184758][T28634] do_syscall_64+0xcd/0x4b0 [ 576.184777][T28634] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 576.184791][T28634] RIP: 0033:0x7f118f78eec9 [ 576.184802][T28634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 576.184816][T28634] RSP: 002b:00007f1190677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 576.184830][T28634] RAX: ffffffffffffffda RBX: 00007f118f9e5fa0 RCX: 00007f118f78eec9 [ 576.184840][T28634] RDX: 0000000000189160 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 576.184848][T28634] RBP: 00007f118f811f91 R08: 0000000000000000 R09: 0000000000000000 [ 576.184857][T28634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 576.184865][T28634] R13: 00007f118f9e6038 R14: 00007f118f9e5fa0 R15: 00007ffc6c912878 [ 576.184883][T28634] [ 578.738968][T28771] FAULT_INJECTION: forcing a failure. [ 578.738968][T28771] name failslab, interval 1, probability 0, space 0, times 0 [ 578.801990][T28771] CPU: 0 UID: 0 PID: 28771 Comm: syz.1.4150 Not tainted syzkaller #0 PREEMPT(full) [ 578.802013][T28771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 578.802021][T28771] Call Trace: [ 578.802027][T28771] [ 578.802033][T28771] dump_stack_lvl+0x16c/0x1f0 [ 578.802055][T28771] should_fail_ex+0x512/0x640 [ 578.802075][T28771] ? __kmalloc_cache_noprof+0x5f/0x780 [ 578.802092][T28771] should_failslab+0xc2/0x120 [ 578.802113][T28771] __kmalloc_cache_noprof+0x72/0x780 [ 578.802128][T28771] ? binder_open+0x148/0xde0 [ 578.802149][T28771] ? binder_open+0x148/0xde0 [ 578.802166][T28771] binder_open+0x148/0xde0 [ 578.802183][T28771] ? __pfx_apparmor_file_open+0x10/0x10 [ 578.802205][T28771] ? __pfx_binder_open+0x10/0x10 [ 578.802223][T28771] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 578.802243][T28771] do_dentry_open+0x982/0x1530 [ 578.802261][T28771] ? __pfx_binder_open+0x10/0x10 [ 578.802283][T28771] vfs_open+0x82/0x3f0 [ 578.802305][T28771] path_openat+0x1de4/0x2cb0 [ 578.802327][T28771] ? __pfx_path_openat+0x10/0x10 [ 578.802348][T28771] do_filp_open+0x20b/0x470 [ 578.802365][T28771] ? __pfx_do_filp_open+0x10/0x10 [ 578.802394][T28771] ? alloc_fd+0x471/0x7d0 [ 578.802414][T28771] do_sys_openat2+0x11b/0x1d0 [ 578.802434][T28771] ? __pfx_do_sys_openat2+0x10/0x10 [ 578.802462][T28771] __x64_sys_openat+0x174/0x210 [ 578.802483][T28771] ? __pfx___x64_sys_openat+0x10/0x10 [ 578.802512][T28771] do_syscall_64+0xcd/0x4b0 [ 578.802530][T28771] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 578.802545][T28771] RIP: 0033:0x7fcab858eec9 [ 578.802556][T28771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 578.802569][T28771] RSP: 002b:00007fcab9340038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 578.802583][T28771] RAX: ffffffffffffffda RBX: 00007fcab87e5fa0 RCX: 00007fcab858eec9 [ 578.802593][T28771] RDX: 0000000000189160 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 578.802602][T28771] RBP: 00007fcab8611f91 R08: 0000000000000000 R09: 0000000000000000 [ 578.802610][T28771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 578.802618][T28771] R13: 00007fcab87e6038 R14: 00007fcab87e5fa0 R15: 00007ffd9adf03a8 [ 578.802636][T28771] [ 579.372275][T28720] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 579.509956][T28776] FAULT_INJECTION: forcing a failure. [ 579.509956][T28776] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 579.578026][T28776] CPU: 0 UID: 0 PID: 28776 Comm: syz.3.4152 Not tainted syzkaller #0 PREEMPT(full) [ 579.578047][T28776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 579.578056][T28776] Call Trace: [ 579.578061][T28776] [ 579.578067][T28776] dump_stack_lvl+0x16c/0x1f0 [ 579.578095][T28776] should_fail_ex+0x512/0x640 [ 579.578118][T28776] should_fail_alloc_page+0xe7/0x130 [ 579.578140][T28776] prepare_alloc_pages+0x3c2/0x610 [ 579.578163][T28776] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 579.578179][T28776] ? stack_trace_save+0x8e/0xc0 [ 579.578198][T28776] ? __pfx_stack_trace_save+0x10/0x10 [ 579.578216][T28776] ? stack_depot_save_flags+0x29/0x9c0 [ 579.578235][T28776] ? trace_mm_page_alloc+0x11f/0x1a0 [ 579.578256][T28776] ? kasan_save_stack+0x42/0x60 [ 579.578273][T28776] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 579.578287][T28776] ? kmem_cache_alloc_noprof+0x250/0x6e0 [ 579.578301][T28776] ? __handle_mm_fault+0xada/0x2aa0 [ 579.578314][T28776] ? do_user_addr_fault+0x7a6/0x1370 [ 579.578329][T28776] ? exc_page_fault+0x5c/0xb0 [ 579.578343][T28776] ? asm_exc_page_fault+0x26/0x30 [ 579.578360][T28776] ? rep_movs_alternative+0x4a/0x90 [ 579.578380][T28776] ? _copy_from_user+0x98/0xd0 [ 579.578398][T28776] ? keyctl_update_key+0x101/0x160 [ 579.578416][T28776] ? __do_sys_keyctl+0x14b/0x590 [ 579.578442][T28776] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 579.578458][T28776] ? policy_nodemask+0xea/0x4e0 [ 579.578480][T28776] alloc_pages_mpol+0x1fb/0x550 [ 579.578500][T28776] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 579.578524][T28776] alloc_pages_noprof+0x131/0x390 [ 579.578544][T28776] pte_alloc_one+0x1e/0x350 [ 579.578562][T28776] do_pte_missing+0x1acf/0x3ba0 [ 579.578576][T28776] ? __thp_vma_allowable_orders+0x1c8/0xcd0 [ 579.578598][T28776] ? __pmd_alloc+0x64f/0x8b0 [ 579.578619][T28776] __handle_mm_fault+0x1556/0x2aa0 [ 579.578635][T28776] ? mt_find+0x3e2/0xa20 [ 579.578653][T28776] ? __pfx___handle_mm_fault+0x10/0x10 [ 579.578665][T28776] ? __pfx_mt_find+0x10/0x10 [ 579.578693][T28776] ? find_vma+0xbf/0x140 [ 579.578710][T28776] ? __pfx_find_vma+0x10/0x10 [ 579.578733][T28776] handle_mm_fault+0x589/0xd10 [ 579.578747][T28776] ? trace_raw_output_exceptions+0x141/0x150 [ 579.578763][T28776] do_user_addr_fault+0x7a6/0x1370 [ 579.578780][T28776] ? rcu_is_watching+0x12/0xc0 [ 579.578799][T28776] exc_page_fault+0x5c/0xb0 [ 579.578815][T28776] asm_exc_page_fault+0x26/0x30 [ 579.578827][T28776] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 579.578848][T28776] Code: 23 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 579.578861][T28776] RSP: 0018:ffffc90003db7e98 EFLAGS: 00050206 [ 579.578873][T28776] RAX: 0000000000000001 RBX: 0000000000000107 RCX: 0000000000000803 [ 579.578881][T28776] RDX: ffffed1009355100 RSI: 0000000000000107 RDI: ffff888049aa8000 [ 579.578890][T28776] RBP: 0000000000000803 R08: 0000000000000001 R09: ffffed1009355100 [ 579.578898][T28776] R10: 0000000000000002 R11: 0000000000000000 R12: 0000000000000000 [ 579.578907][T28776] R13: ffff888049aa8000 R14: 000800000000000c R15: 0000000000000000 [ 579.578925][T28776] _copy_from_user+0x98/0xd0 [ 579.578945][T28776] keyctl_update_key+0x101/0x160 [ 579.578965][T28776] __do_sys_keyctl+0x14b/0x590 [ 579.578985][T28776] do_syscall_64+0xcd/0x4b0 [ 579.579003][T28776] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 579.579016][T28776] RIP: 0033:0x7f122338eec9 [ 579.579027][T28776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 579.579040][T28776] RSP: 002b:00007f122428b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 579.579052][T28776] RAX: ffffffffffffffda RBX: 00007f12235e5fa0 RCX: 00007f122338eec9 [ 579.579061][T28776] RDX: 0000000000000107 RSI: ffffeffffffffffe RDI: 0000000000000002 [ 579.579070][T28776] RBP: 00007f122428b090 R08: 000800000000000c R09: 0000000000000000 [ 579.579078][T28776] R10: 0000000000000803 R11: 0000000000000246 R12: 0000000000000001 [ 579.579086][T28776] R13: 00007f12235e6038 R14: 00007f12235e5fa0 R15: 00007ffd25dd4248 [ 579.579105][T28776] [ 580.778208][T28785] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 580.909942][T18733] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 580.917595][T18733] Bluetooth: hci3: Invalid handle: 0x3a4a > 0x0eff [ 580.959735][T28789] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 582.345777][T28884] netlink: 25 bytes leftover after parsing attributes in process `syz.1.4164'. [ 582.391535][T28883] ima: policy update failed [ 582.418191][ T30] audit: type=1802 audit(4294967516.340:9): pid=28883 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.4164" res=0 errno=0 [ 582.979297][T28907] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 583.520545][T28948] random: crng reseeded on system resumption [ 583.919241][T28980] netlink: 148 bytes leftover after parsing attributes in process `syz.0.4172'. [ 584.439269][T29013] FAULT_INJECTION: forcing a failure. [ 584.439269][T29013] name failslab, interval 1, probability 0, space 0, times 0 [ 584.589850][T29013] CPU: 0 UID: 0 PID: 29013 Comm: syz.3.4177 Not tainted syzkaller #0 PREEMPT(full) [ 584.589872][T29013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 584.589881][T29013] Call Trace: [ 584.589887][T29013] [ 584.589893][T29013] dump_stack_lvl+0x16c/0x1f0 [ 584.589916][T29013] should_fail_ex+0x512/0x640 [ 584.589936][T29013] ? __kmalloc_noprof+0xca/0x880 [ 584.589953][T29013] should_failslab+0xc2/0x120 [ 584.589973][T29013] __kmalloc_noprof+0xdd/0x880 [ 584.589987][T29013] ? binder_open+0x168/0xde0 [ 584.590008][T29013] ? binder_open+0x168/0xde0 [ 584.590023][T29013] binder_open+0x168/0xde0 [ 584.590041][T29013] ? __pfx_apparmor_file_open+0x10/0x10 [ 584.590062][T29013] ? __pfx_binder_open+0x10/0x10 [ 584.590085][T29013] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 584.590106][T29013] do_dentry_open+0x982/0x1530 [ 584.590123][T29013] ? __pfx_binder_open+0x10/0x10 [ 584.590146][T29013] vfs_open+0x82/0x3f0 [ 584.590169][T29013] path_openat+0x1de4/0x2cb0 [ 584.590192][T29013] ? __pfx_path_openat+0x10/0x10 [ 584.590213][T29013] do_filp_open+0x20b/0x470 [ 584.590230][T29013] ? __pfx_do_filp_open+0x10/0x10 [ 584.590259][T29013] ? alloc_fd+0x471/0x7d0 [ 584.590279][T29013] do_sys_openat2+0x11b/0x1d0 [ 584.590300][T29013] ? __pfx_do_sys_openat2+0x10/0x10 [ 584.590327][T29013] __x64_sys_openat+0x174/0x210 [ 584.590354][T29013] ? __pfx___x64_sys_openat+0x10/0x10 [ 584.590384][T29013] do_syscall_64+0xcd/0x4b0 [ 584.590403][T29013] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 584.590418][T29013] RIP: 0033:0x7f122338eec9 [ 584.590430][T29013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 584.590445][T29013] RSP: 002b:00007f122428b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 584.590459][T29013] RAX: ffffffffffffffda RBX: 00007f12235e5fa0 RCX: 00007f122338eec9 [ 584.590470][T29013] RDX: 0000000000189160 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 584.590478][T29013] RBP: 00007f1223411f91 R08: 0000000000000000 R09: 0000000000000000 [ 584.590487][T29013] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 584.590495][T29013] R13: 00007f12235e6038 R14: 00007f12235e5fa0 R15: 00007ffd25dd4248 [ 584.590513][T29013] [ 584.915494][T29038] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 585.508351][T29057] Invalid ELF header magic: != ELF [ 585.757284][T29069] FAULT_INJECTION: forcing a failure. [ 585.757284][T29069] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 585.822006][T29069] CPU: 0 UID: 0 PID: 29069 Comm: syz.1.4186 Not tainted syzkaller #0 PREEMPT(full) [ 585.822027][T29069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 585.822036][T29069] Call Trace: [ 585.822041][T29069] [ 585.822047][T29069] dump_stack_lvl+0x16c/0x1f0 [ 585.822068][T29069] should_fail_ex+0x512/0x640 [ 585.822091][T29069] should_fail_alloc_page+0xe7/0x130 [ 585.822112][T29069] prepare_alloc_pages+0x3c2/0x610 [ 585.822135][T29069] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 585.822157][T29069] ? __lock_acquire+0x62e/0x1ce0 [ 585.822186][T29069] ? __lock_acquire+0x62e/0x1ce0 [ 585.822207][T29069] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 585.822231][T29069] ? find_held_lock+0x2b/0x80 [ 585.822247][T29069] ? is_bpf_text_address+0x8a/0x1a0 [ 585.822268][T29069] ? bpf_ksym_find+0x124/0x1c0 [ 585.822282][T29069] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 585.822299][T29069] ? policy_nodemask+0xea/0x4e0 [ 585.822320][T29069] alloc_pages_mpol+0x1fb/0x550 [ 585.822340][T29069] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 585.822364][T29069] folio_alloc_mpol_noprof+0x36/0x2f0 [ 585.822386][T29069] shmem_alloc_folio+0x135/0x160 [ 585.822409][T29069] shmem_alloc_and_add_folio+0x499/0xc20 [ 585.822428][T29069] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 585.822444][T29069] ? shmem_allowable_huge_orders+0xd4/0x3f0 [ 585.822464][T29069] shmem_get_folio_gfp+0x67f/0x1610 [ 585.822483][T29069] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 585.822498][T29069] ? filemap_map_pages+0xe01/0x1b70 [ 585.822517][T29069] shmem_fault+0x1fe/0xa30 [ 585.822533][T29069] ? __pfx_shmem_fault+0x10/0x10 [ 585.822548][T29069] ? rcu_is_watching+0x12/0xc0 [ 585.822566][T29069] ? __pfx_filemap_map_pages+0x10/0x10 [ 585.822585][T29069] ? __pfx_filemap_map_pages+0x10/0x10 [ 585.822598][T29069] __do_fault+0x10a/0x490 [ 585.822615][T29069] ? __pfx_filemap_map_pages+0x10/0x10 [ 585.822628][T29069] do_pte_missing+0xf4a/0x3ba0 [ 585.822642][T29069] ? __thp_vma_allowable_orders+0x1c8/0xcd0 [ 585.822664][T29069] ? __pmd_alloc+0x64f/0x8b0 [ 585.822685][T29069] __handle_mm_fault+0x1556/0x2aa0 [ 585.822701][T29069] ? mt_find+0x3e2/0xa20 [ 585.822719][T29069] ? __pfx___handle_mm_fault+0x10/0x10 [ 585.822731][T29069] ? __pfx_mt_find+0x10/0x10 [ 585.822759][T29069] ? find_vma+0xbf/0x140 [ 585.822775][T29069] ? __pfx_find_vma+0x10/0x10 [ 585.822794][T29069] handle_mm_fault+0x589/0xd10 [ 585.822808][T29069] ? trace_raw_output_exceptions+0x141/0x150 [ 585.822825][T29069] do_user_addr_fault+0x7a6/0x1370 [ 585.822842][T29069] ? rcu_is_watching+0x12/0xc0 [ 585.822861][T29069] exc_page_fault+0x5c/0xb0 [ 585.822876][T29069] asm_exc_page_fault+0x26/0x30 [ 585.822890][T29069] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 585.822912][T29069] Code: 23 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 585.822926][T29069] RSP: 0018:ffffc9000c617e98 EFLAGS: 00050206 [ 585.822938][T29069] RAX: 0000000000000001 RBX: 0000000000000107 RCX: 0000000000000803 [ 585.822947][T29069] RDX: ffffed10067bed00 RSI: 0000000000000107 RDI: ffff888033df6000 [ 585.822956][T29069] RBP: 0000000000000803 R08: 0000000000000001 R09: ffffed10067bed00 [ 585.822964][T29069] R10: 0000000000000002 R11: 0000000000000000 R12: 0000000000000000 [ 585.822971][T29069] R13: ffff888033df6000 R14: 000800000000000c R15: 0000000000000000 [ 585.822990][T29069] _copy_from_user+0x98/0xd0 [ 585.823012][T29069] keyctl_update_key+0x101/0x160 [ 585.823032][T29069] __do_sys_keyctl+0x14b/0x590 [ 585.823053][T29069] do_syscall_64+0xcd/0x4b0 [ 585.823071][T29069] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 585.823085][T29069] RIP: 0033:0x7fcab858eec9 [ 585.823095][T29069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 585.823108][T29069] RSP: 002b:00007fcab9340038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 585.823120][T29069] RAX: ffffffffffffffda RBX: 00007fcab87e5fa0 RCX: 00007fcab858eec9 [ 585.823129][T29069] RDX: 0000000000000107 RSI: ffffeffffffffffe RDI: 0000000000000002 [ 585.823137][T29069] RBP: 00007fcab9340090 R08: 000800000000000c R09: 0000000000000000 [ 585.823145][T29069] R10: 0000000000000803 R11: 0000000000000246 R12: 0000000000000001 [ 585.823153][T29069] R13: 00007fcab87e6038 R14: 00007fcab87e5fa0 R15: 00007ffd9adf03a8 [ 585.823171][T29069] [ 587.289905][T29138] FAULT_INJECTION: forcing a failure. [ 587.289905][T29138] name failslab, interval 1, probability 0, space 0, times 0 [ 587.342740][T29138] CPU: 0 UID: 0 PID: 29138 Comm: syz.0.4190 Not tainted syzkaller #0 PREEMPT(full) [ 587.342762][T29138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 587.342771][T29138] Call Trace: [ 587.342776][T29138] [ 587.342782][T29138] dump_stack_lvl+0x16c/0x1f0 [ 587.342806][T29138] should_fail_ex+0x512/0x640 [ 587.342825][T29138] ? __kmalloc_noprof+0xca/0x880 [ 587.342842][T29138] should_failslab+0xc2/0x120 [ 587.342862][T29138] __kmalloc_noprof+0xdd/0x880 [ 587.342877][T29138] ? sk_prot_alloc+0x1a8/0x2a0 [ 587.342895][T29138] ? sk_prot_alloc+0x1a8/0x2a0 [ 587.342908][T29138] sk_prot_alloc+0x1a8/0x2a0 [ 587.342923][T29138] sk_alloc+0x36/0xc20 [ 587.342943][T29138] __netlink_create+0x5e/0x2c0 [ 587.342963][T29138] __netlink_kernel_create+0xed/0x750 [ 587.342986][T29138] ? __pfx___netlink_kernel_create+0x10/0x10 [ 587.343012][T29138] ? __pfx_genl_pernet_init+0x10/0x10 [ 587.343026][T29138] genl_pernet_init+0xbd/0x170 [ 587.343040][T29138] ? __pfx_genl_pernet_init+0x10/0x10 [ 587.343053][T29138] ? lockdep_init_map_type+0x5c/0x280 [ 587.343084][T29138] ? __pfx_genl_rcv+0x10/0x10 [ 587.343097][T29138] ? __pfx_genl_bind+0x10/0x10 [ 587.343109][T29138] ? __pfx_genl_unbind+0x10/0x10 [ 587.343121][T29138] ? __pfx_genl_release+0x10/0x10 [ 587.343136][T29138] ? debug_mutex_init+0x37/0x70 [ 587.343155][T29138] ops_init+0x1e2/0x5f0 [ 587.343179][T29138] setup_net+0x100/0x390 [ 587.343200][T29138] ? __pfx_setup_net+0x10/0x10 [ 587.343221][T29138] ? debug_mutex_init+0x37/0x70 [ 587.343240][T29138] copy_net_ns+0x2f8/0x690 [ 587.343256][T29138] create_new_namespaces+0x3ea/0xa90 [ 587.343279][T29138] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 587.343298][T29138] ksys_unshare+0x45b/0xa40 [ 587.343319][T29138] ? __pfx_ksys_unshare+0x10/0x10 [ 587.343339][T29138] ? xfd_validate_state+0x61/0x180 [ 587.343359][T29138] __x64_sys_unshare+0x31/0x40 [ 587.343379][T29138] do_syscall_64+0xcd/0x4b0 [ 587.343398][T29138] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 587.343412][T29138] RIP: 0033:0x7f118f78eec9 [ 587.343424][T29138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 587.343438][T29138] RSP: 002b:00007f1190677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 587.343453][T29138] RAX: ffffffffffffffda RBX: 00007f118f9e5fa0 RCX: 00007f118f78eec9 [ 587.343462][T29138] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 587.343470][T29138] RBP: 00007f118f811f91 R08: 0000000000000000 R09: 0000000000000000 [ 587.343479][T29138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 587.343487][T29138] R13: 00007f118f9e6038 R14: 00007f118f9e5fa0 R15: 00007ffc6c912878 [ 587.343506][T29138] [ 588.434145][T29171] FAULT_INJECTION: forcing a failure. [ 588.434145][T29171] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 588.492549][T29171] CPU: 0 UID: 0 PID: 29171 Comm: syz.0.4197 Not tainted syzkaller #0 PREEMPT(full) [ 588.492570][T29171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 588.492579][T29171] Call Trace: [ 588.492584][T29171] [ 588.492590][T29171] dump_stack_lvl+0x16c/0x1f0 [ 588.492611][T29171] should_fail_ex+0x512/0x640 [ 588.492634][T29171] _copy_to_user+0x32/0xd0 [ 588.492656][T29171] simple_read_from_buffer+0xcb/0x170 [ 588.492681][T29171] proc_fail_nth_read+0x197/0x240 [ 588.492697][T29171] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 588.492714][T29171] ? rw_verify_area+0xcf/0x6c0 [ 588.492728][T29171] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 588.492743][T29171] vfs_read+0x1e4/0xcf0 [ 588.492761][T29171] ? __pfx___mutex_lock+0x10/0x10 [ 588.492778][T29171] ? __pfx_vfs_read+0x10/0x10 [ 588.492799][T29171] ? __fget_files+0x20e/0x3c0 [ 588.492819][T29171] ksys_read+0x12a/0x250 [ 588.492834][T29171] ? __pfx_ksys_read+0x10/0x10 [ 588.492849][T29171] ? keyctl_update_key+0xae/0x160 [ 588.492866][T29171] ? keyctl_update_key+0xb3/0x160 [ 588.492888][T29171] do_syscall_64+0xcd/0x4b0 [ 588.492906][T29171] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 588.492921][T29171] RIP: 0033:0x7f118f78d8dc [ 588.492932][T29171] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 588.492945][T29171] RSP: 002b:00007f1190677030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 588.492959][T29171] RAX: ffffffffffffffda RBX: 00007f118f9e5fa0 RCX: 00007f118f78d8dc [ 588.492968][T29171] RDX: 000000000000000f RSI: 00007f11906770a0 RDI: 0000000000000004 [ 588.492976][T29171] RBP: 00007f1190677090 R08: 0000000000000000 R09: 0000000000000000 [ 588.492984][T29171] R10: 0000000000000803 R11: 0000000000000246 R12: 0000000000000001 [ 588.492993][T29171] R13: 00007f118f9e6038 R14: 00007f118f9e5fa0 R15: 00007ffc6c912878 [ 588.493012][T29171] [ 588.984510][T29182] FAULT_INJECTION: forcing a failure. [ 588.984510][T29182] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 589.013954][T29182] CPU: 0 UID: 0 PID: 29182 Comm: syz.0.4198 Not tainted syzkaller #0 PREEMPT(full) [ 589.013976][T29182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 589.013986][T29182] Call Trace: [ 589.013999][T29182] [ 589.014006][T29182] dump_stack_lvl+0x16c/0x1f0 [ 589.014028][T29182] should_fail_ex+0x512/0x640 [ 589.014052][T29182] should_fail_alloc_page+0xe7/0x130 [ 589.014075][T29182] prepare_alloc_pages+0x3c2/0x610 [ 589.014094][T29182] ? __pfx___might_resched+0x10/0x10 [ 589.014114][T29182] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 589.014130][T29182] ? process_measurement+0x4a6/0x23e0 [ 589.014149][T29182] ? down_write+0x14d/0x200 [ 589.014170][T29182] ? up_write+0x1b2/0x520 [ 589.014185][T29182] ? __lock_acquire+0xb97/0x1ce0 [ 589.014207][T29182] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 589.014227][T29182] ? __lock_acquire+0xb97/0x1ce0 [ 589.014250][T29182] ? find_held_lock+0x2b/0x80 [ 589.014269][T29182] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 589.014286][T29182] ? policy_nodemask+0xea/0x4e0 [ 589.014307][T29182] alloc_pages_mpol+0x1fb/0x550 [ 589.014328][T29182] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 589.014352][T29182] folio_alloc_mpol_noprof+0x36/0x2f0 [ 589.014375][T29182] shmem_alloc_folio+0x135/0x160 [ 589.014398][T29182] shmem_alloc_and_add_folio+0x499/0xc20 [ 589.014417][T29182] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 589.014433][T29182] ? shmem_allowable_huge_orders+0xd4/0x3f0 [ 589.014453][T29182] shmem_get_folio_gfp+0x67f/0x1610 [ 589.014473][T29182] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 589.014487][T29182] ? find_held_lock+0x2b/0x80 [ 589.014503][T29182] ? shmem_fallocate+0x522/0xf50 [ 589.014522][T29182] shmem_fallocate+0x794/0xf50 [ 589.014545][T29182] ? __pfx_shmem_fallocate+0x10/0x10 [ 589.014566][T29182] ? __lock_acquire+0xb97/0x1ce0 [ 589.014588][T29182] ? __lock_acquire+0x62e/0x1ce0 [ 589.014620][T29182] ? __pfx_shmem_fallocate+0x10/0x10 [ 589.014635][T29182] vfs_fallocate+0x5b4/0x10e0 [ 589.014655][T29182] ? __pfx_vfs_fallocate+0x10/0x10 [ 589.014678][T29182] __x64_sys_fallocate+0xd5/0x150 [ 589.014697][T29182] do_syscall_64+0xcd/0x4b0 [ 589.014716][T29182] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 589.014730][T29182] RIP: 0033:0x7f118f78eec9 [ 589.014742][T29182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 589.014756][T29182] RSP: 002b:00007f1190635038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 589.014769][T29182] RAX: ffffffffffffffda RBX: 00007f118f9e6180 RCX: 00007f118f78eec9 [ 589.014779][T29182] RDX: 0000000000000009 RSI: 0000000000000000 RDI: 8000000000000003 [ 589.014787][T29182] RBP: 00007f118f811f91 R08: 0000000000000000 R09: 0000000000000000 [ 589.014795][T29182] R10: 00000000004cbd5d R11: 0000000000000246 R12: 0000000000000000 [ 589.014804][T29182] R13: 00007f118f9e6218 R14: 00007f118f9e6180 R15: 00007ffc6c912878 [ 589.014824][T29182] [ 589.503355][T29193] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 592.294170][T29397] FAULT_INJECTION: forcing a failure. [ 592.294170][T29397] name failslab, interval 1, probability 0, space 0, times 0 [ 592.392709][T29397] CPU: 0 UID: 0 PID: 29397 Comm: syz.2.4210 Not tainted syzkaller #0 PREEMPT(full) [ 592.392733][T29397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 592.392742][T29397] Call Trace: [ 592.392747][T29397] [ 592.392753][T29397] dump_stack_lvl+0x16c/0x1f0 [ 592.392775][T29397] should_fail_ex+0x512/0x640 [ 592.392796][T29397] ? __kmalloc_noprof+0xca/0x880 [ 592.392812][T29397] should_failslab+0xc2/0x120 [ 592.392833][T29397] __kmalloc_noprof+0xdd/0x880 [ 592.392847][T29397] ? binder_open+0x168/0xde0 [ 592.392868][T29397] ? binder_open+0x168/0xde0 [ 592.392884][T29397] binder_open+0x168/0xde0 [ 592.392902][T29397] ? __pfx_apparmor_file_open+0x10/0x10 [ 592.392931][T29397] ? __pfx_binder_open+0x10/0x10 [ 592.392951][T29397] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 592.392972][T29397] do_dentry_open+0x982/0x1530 [ 592.392991][T29397] ? __pfx_binder_open+0x10/0x10 [ 592.393013][T29397] vfs_open+0x82/0x3f0 [ 592.393036][T29397] path_openat+0x1de4/0x2cb0 [ 592.393058][T29397] ? __pfx_path_openat+0x10/0x10 [ 592.393079][T29397] do_filp_open+0x20b/0x470 [ 592.393096][T29397] ? __pfx_do_filp_open+0x10/0x10 [ 592.393125][T29397] ? alloc_fd+0x471/0x7d0 [ 592.393145][T29397] do_sys_openat2+0x11b/0x1d0 [ 592.393165][T29397] ? __pfx_do_sys_openat2+0x10/0x10 [ 592.393193][T29397] __x64_sys_openat+0x174/0x210 [ 592.393214][T29397] ? __pfx___x64_sys_openat+0x10/0x10 [ 592.393243][T29397] do_syscall_64+0xcd/0x4b0 [ 592.393261][T29397] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 592.393275][T29397] RIP: 0033:0x7fce46d8eec9 [ 592.393287][T29397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 592.393301][T29397] RSP: 002b:00007fce47b6d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 592.393315][T29397] RAX: ffffffffffffffda RBX: 00007fce46fe5fa0 RCX: 00007fce46d8eec9 [ 592.393325][T29397] RDX: 0000000000189160 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 592.393334][T29397] RBP: 00007fce46e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 592.393342][T29397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 592.393350][T29397] R13: 00007fce46fe6038 R14: 00007fce46fe5fa0 R15: 00007ffd746d39e8 [ 592.393368][T29397] [ 592.619592][ C0] vkms_vblank_simulate: vblank timer overrun [ 593.619088][T29439] zswap: compressor not available [ 593.965255][T29491] FAULT_INJECTION: forcing a failure. [ 593.965255][T29491] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 594.038109][T29491] CPU: 0 UID: 0 PID: 29491 Comm: syz.1.4219 Not tainted syzkaller #0 PREEMPT(full) [ 594.038134][T29491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 594.038142][T29491] Call Trace: [ 594.038148][T29491] [ 594.038154][T29491] dump_stack_lvl+0x16c/0x1f0 [ 594.038176][T29491] should_fail_ex+0x512/0x640 [ 594.038199][T29491] _copy_to_user+0x32/0xd0 [ 594.038221][T29491] simple_read_from_buffer+0xcb/0x170 [ 594.038245][T29491] proc_fail_nth_read+0x197/0x240 [ 594.038262][T29491] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 594.038280][T29491] ? rw_verify_area+0xcf/0x6c0 [ 594.038293][T29491] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 594.038308][T29491] vfs_read+0x1e4/0xcf0 [ 594.038327][T29491] ? __pfx___mutex_lock+0x10/0x10 [ 594.038344][T29491] ? __pfx_vfs_read+0x10/0x10 [ 594.038364][T29491] ? __fget_files+0x20e/0x3c0 [ 594.038385][T29491] ksys_read+0x12a/0x250 [ 594.038400][T29491] ? __pfx_ksys_read+0x10/0x10 [ 594.038421][T29491] do_syscall_64+0xcd/0x4b0 [ 594.038440][T29491] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 594.038454][T29491] RIP: 0033:0x7fcab858d8dc [ 594.038472][T29491] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 594.038485][T29491] RSP: 002b:00007fcab9340030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 594.038499][T29491] RAX: ffffffffffffffda RBX: 00007fcab87e5fa0 RCX: 00007fcab858d8dc [ 594.038508][T29491] RDX: 000000000000000f RSI: 00007fcab93400a0 RDI: 0000000000000004 [ 594.038516][T29491] RBP: 00007fcab9340090 R08: 0000000000000000 R09: 0000000000000000 [ 594.038524][T29491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 594.038532][T29491] R13: 00007fcab87e6038 R14: 00007fcab87e5fa0 R15: 00007ffd9adf03a8 [ 594.038550][T29491] [ 594.226102][ C0] vkms_vblank_simulate: vblank timer overrun [ 594.548298][T29496] FAULT_INJECTION: forcing a failure. [ 594.548298][T29496] name failslab, interval 1, probability 0, space 0, times 0 [ 594.586809][T29496] CPU: 0 UID: 0 PID: 29496 Comm: syz.3.4221 Not tainted syzkaller #0 PREEMPT(full) [ 594.586832][T29496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 594.586841][T29496] Call Trace: [ 594.586846][T29496] [ 594.586852][T29496] dump_stack_lvl+0x16c/0x1f0 [ 594.586874][T29496] should_fail_ex+0x512/0x640 [ 594.586895][T29496] ? __kmalloc_cache_noprof+0x5f/0x780 [ 594.586913][T29496] should_failslab+0xc2/0x120 [ 594.586933][T29496] __kmalloc_cache_noprof+0x72/0x780 [ 594.586947][T29496] ? binder_open+0x148/0xde0 [ 594.586969][T29496] ? binder_open+0x148/0xde0 [ 594.586986][T29496] binder_open+0x148/0xde0 [ 594.587003][T29496] ? __pfx_apparmor_file_open+0x10/0x10 [ 594.587023][T29496] ? __pfx_binder_open+0x10/0x10 [ 594.587042][T29496] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 594.587061][T29496] do_dentry_open+0x982/0x1530 [ 594.587079][T29496] ? __pfx_binder_open+0x10/0x10 [ 594.587100][T29496] vfs_open+0x82/0x3f0 [ 594.587122][T29496] path_openat+0x1de4/0x2cb0 [ 594.587144][T29496] ? __pfx_path_openat+0x10/0x10 [ 594.587165][T29496] do_filp_open+0x20b/0x470 [ 594.587181][T29496] ? __pfx_do_filp_open+0x10/0x10 [ 594.587211][T29496] ? alloc_fd+0x471/0x7d0 [ 594.587231][T29496] do_sys_openat2+0x11b/0x1d0 [ 594.587251][T29496] ? __pfx_do_sys_openat2+0x10/0x10 [ 594.587279][T29496] __x64_sys_openat+0x174/0x210 [ 594.587300][T29496] ? __pfx___x64_sys_openat+0x10/0x10 [ 594.587329][T29496] do_syscall_64+0xcd/0x4b0 [ 594.587347][T29496] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 594.587362][T29496] RIP: 0033:0x7f122338eec9 [ 594.587373][T29496] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 594.587388][T29496] RSP: 002b:00007f122428b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 594.587402][T29496] RAX: ffffffffffffffda RBX: 00007f12235e5fa0 RCX: 00007f122338eec9 [ 594.587412][T29496] RDX: 0000000000189160 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 594.587421][T29496] RBP: 00007f1223411f91 R08: 0000000000000000 R09: 0000000000000000 [ 594.587429][T29496] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 594.587438][T29496] R13: 00007f12235e6038 R14: 00007f12235e5fa0 R15: 00007ffd25dd4248 [ 594.587455][T29496] [ 594.810500][ C0] vkms_vblank_simulate: vblank timer overrun [ 595.061262][T29499] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 596.151235][T29544] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(1073742850.0.7), cmd(3) [ 596.489788][T29554] binder: 29549:29554 ioctl c00c620f 200000000340 returned -22 [ 597.365686][T29603] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4231'. [ 597.421863][T29593] can: request_module (can-proto-0) failed. [ 597.519283][T29620] FAULT_INJECTION: forcing a failure. [ 597.519283][T29620] name failslab, interval 1, probability 0, space 0, times 0 [ 597.581718][T29620] CPU: 0 UID: 0 PID: 29620 Comm: syz.0.4234 Not tainted syzkaller #0 PREEMPT(full) [ 597.581741][T29620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 597.581749][T29620] Call Trace: [ 597.581754][T29620] [ 597.581761][T29620] dump_stack_lvl+0x16c/0x1f0 [ 597.581782][T29620] should_fail_ex+0x512/0x640 [ 597.581802][T29620] ? __kmalloc_noprof+0xca/0x880 [ 597.581819][T29620] should_failslab+0xc2/0x120 [ 597.581839][T29620] __kmalloc_noprof+0xdd/0x880 [ 597.581853][T29620] ? binder_open+0x168/0xde0 [ 597.581874][T29620] ? binder_open+0x168/0xde0 [ 597.581889][T29620] binder_open+0x168/0xde0 [ 597.581908][T29620] ? __pfx_apparmor_file_open+0x10/0x10 [ 597.581929][T29620] ? __pfx_binder_open+0x10/0x10 [ 597.581948][T29620] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 597.581968][T29620] do_dentry_open+0x982/0x1530 [ 597.581986][T29620] ? __pfx_binder_open+0x10/0x10 [ 597.582008][T29620] vfs_open+0x82/0x3f0 [ 597.582030][T29620] path_openat+0x1de4/0x2cb0 [ 597.582052][T29620] ? __pfx_path_openat+0x10/0x10 [ 597.582074][T29620] do_filp_open+0x20b/0x470 [ 597.582090][T29620] ? __pfx_do_filp_open+0x10/0x10 [ 597.582120][T29620] ? alloc_fd+0x471/0x7d0 [ 597.582140][T29620] do_sys_openat2+0x11b/0x1d0 [ 597.582160][T29620] ? __pfx_do_sys_openat2+0x10/0x10 [ 597.582196][T29620] __x64_sys_openat+0x174/0x210 [ 597.582219][T29620] ? __pfx___x64_sys_openat+0x10/0x10 [ 597.582248][T29620] do_syscall_64+0xcd/0x4b0 [ 597.582268][T29620] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 597.582282][T29620] RIP: 0033:0x7f118f78eec9 [ 597.582294][T29620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 597.582308][T29620] RSP: 002b:00007f1190677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 597.582322][T29620] RAX: ffffffffffffffda RBX: 00007f118f9e5fa0 RCX: 00007f118f78eec9 [ 597.582332][T29620] RDX: 0000000000189160 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 597.582341][T29620] RBP: 00007f118f811f91 R08: 0000000000000000 R09: 0000000000000000 [ 597.582349][T29620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 597.582358][T29620] R13: 00007f118f9e6038 R14: 00007f118f9e5fa0 R15: 00007ffc6c912878 [ 597.582377][T29620] [ 597.809546][ C0] vkms_vblank_simulate: vblank timer overrun [ 598.670187][T29680] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 599.198865][T29710] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 603.976228][T29861] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 609.286472][T29995] Setting dangerous option i915.mitigations - tainting kernel [ 610.388305][T30022] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4273'. [ 610.454941][T30033] random: crng reseeded on system resumption [ 610.676768][T30033] FAULT_INJECTION: forcing a failure. [ 610.676768][T30033] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 610.995229][T30033] CPU: 0 UID: 0 PID: 30033 Comm: syz.1.4274 Tainted: G U syzkaller #0 PREEMPT(full) [ 610.995259][T30033] Tainted: [U]=USER [ 610.995264][T30033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 610.995274][T30033] Call Trace: [ 610.995278][T30033] [ 610.995285][T30033] dump_stack_lvl+0x16c/0x1f0 [ 610.995307][T30033] should_fail_ex+0x512/0x640 [ 610.995331][T30033] should_fail_alloc_page+0xe7/0x130 [ 610.995353][T30033] prepare_alloc_pages+0x3c2/0x610 [ 610.995372][T30033] ? __kernel_text_address+0xd/0x40 [ 610.995391][T30033] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 610.995413][T30033] ? stack_trace_save+0x8e/0xc0 [ 610.995432][T30033] ? __pfx_stack_trace_save+0x10/0x10 [ 610.995451][T30033] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 610.995470][T30033] ? kasan_save_stack+0x42/0x60 [ 610.995488][T30033] ? kasan_save_stack+0x33/0x60 [ 610.995506][T30033] ? misc_open+0x26a/0x450 [ 610.995520][T30033] ? chrdev_open+0x234/0x6a0 [ 610.995536][T30033] ? do_dentry_open+0x982/0x1530 [ 610.995551][T30033] ? vfs_open+0x82/0x3f0 [ 610.995569][T30033] ? path_openat+0x1de4/0x2cb0 [ 610.995584][T30033] ? do_filp_open+0x20b/0x470 [ 610.995598][T30033] ? do_sys_openat2+0x11b/0x1d0 [ 610.995617][T30033] ? __x64_sys_openat+0x174/0x210 [ 610.995636][T30033] ? do_syscall_64+0xcd/0x4b0 [ 610.995652][T30033] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 610.995668][T30033] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 610.995685][T30033] ? policy_nodemask+0xea/0x4e0 [ 610.995706][T30033] alloc_pages_mpol+0x1fb/0x550 [ 610.995726][T30033] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 610.995751][T30033] alloc_pages_noprof+0x131/0x390 [ 610.995772][T30033] get_zeroed_page_noprof+0x18/0xb0 [ 610.995790][T30033] get_image_page+0x18/0x190 [ 610.995807][T30033] chain_alloc+0x8c/0xd0 [ 610.995825][T30033] memory_bm_create+0x30f/0x810 [ 610.995850][T30033] create_basic_memory_bitmaps+0x10b/0x320 [ 610.995871][T30033] snapshot_open+0x235/0x2b0 [ 610.995890][T30033] ? __pfx_snapshot_open+0x10/0x10 [ 610.995909][T30033] misc_open+0x26a/0x450 [ 610.995925][T30033] ? __pfx_misc_open+0x10/0x10 [ 610.995940][T30033] chrdev_open+0x234/0x6a0 [ 610.995957][T30033] ? __pfx_apparmor_file_open+0x10/0x10 [ 610.995977][T30033] ? __pfx_chrdev_open+0x10/0x10 [ 610.995995][T30033] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 610.996015][T30033] do_dentry_open+0x982/0x1530 [ 610.996033][T30033] ? __pfx_chrdev_open+0x10/0x10 [ 610.996054][T30033] vfs_open+0x82/0x3f0 [ 610.996086][T30033] path_openat+0x1de4/0x2cb0 [ 610.996109][T30033] ? __pfx_path_openat+0x10/0x10 [ 610.996132][T30033] do_filp_open+0x20b/0x470 [ 610.996149][T30033] ? __pfx_do_filp_open+0x10/0x10 [ 610.996181][T30033] ? alloc_fd+0x471/0x7d0 [ 610.996203][T30033] do_sys_openat2+0x11b/0x1d0 [ 610.996224][T30033] ? __pfx_do_sys_openat2+0x10/0x10 [ 610.996253][T30033] __x64_sys_openat+0x174/0x210 [ 610.996274][T30033] ? __pfx___x64_sys_openat+0x10/0x10 [ 610.996303][T30033] do_syscall_64+0xcd/0x4b0 [ 610.996321][T30033] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 610.996335][T30033] RIP: 0033:0x7fcab858eec9 [ 610.996348][T30033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 610.996361][T30033] RSP: 002b:00007fcab9340038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 610.996375][T30033] RAX: ffffffffffffffda RBX: 00007fcab87e5fa0 RCX: 00007fcab858eec9 [ 610.996385][T30033] RDX: 00000000001438bf RSI: 0000200000000000 RDI: ffffffffffffff9c [ 610.996395][T30033] RBP: 00007fcab8611f91 R08: 0000000000000000 R09: 0000000000000000 [ 610.996404][T30033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 610.996413][T30033] R13: 00007fcab87e6038 R14: 00007fcab87e5fa0 R15: 00007ffd9adf03a8 [ 610.996433][T30033] [ 613.200817][T30158] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4283'. [ 613.490996][T30165] hub 8-0:1.0: USB hub found [ 613.518650][T30181] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 613.540534][T30165] hub 8-0:1.0: 1 port detected [ 614.281468][T30206] FAULT_INJECTION: forcing a failure. [ 614.281468][T30206] name failslab, interval 1, probability 0, space 0, times 0 [ 614.343187][T30206] CPU: 0 UID: 0 PID: 30206 Comm: syz.3.4288 Tainted: G U syzkaller #0 PREEMPT(full) [ 614.343213][T30206] Tainted: [U]=USER [ 614.343218][T30206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 614.343226][T30206] Call Trace: [ 614.343232][T30206] [ 614.343237][T30206] dump_stack_lvl+0x16c/0x1f0 [ 614.343259][T30206] should_fail_ex+0x512/0x640 [ 614.343280][T30206] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 614.343299][T30206] should_failslab+0xc2/0x120 [ 614.343319][T30206] kmem_cache_alloc_noprof+0x75/0x6e0 [ 614.343333][T30206] ? __proc_create+0x2ce/0x8e0 [ 614.343358][T30206] ? __proc_create+0x2ce/0x8e0 [ 614.343377][T30206] __proc_create+0x2ce/0x8e0 [ 614.343398][T30206] ? __pfx___proc_create+0x10/0x10 [ 614.343421][T30206] ? __pfx___netlink_kernel_create+0x10/0x10 [ 614.343447][T30206] proc_create_reg+0x7d/0x180 [ 614.343461][T30206] proc_create_seq_private+0x8e/0x180 [ 614.343475][T30206] ? __pfx_proc_create_seq_private+0x10/0x10 [ 614.343489][T30206] ? __pfx_nl_fib_input+0x10/0x10 [ 614.343507][T30206] ? __pfx_ip_rt_do_proc_init+0x10/0x10 [ 614.343522][T30206] ip_rt_do_proc_init+0x57/0x1b0 [ 614.343537][T30206] ops_init+0x1e2/0x5f0 [ 614.343560][T30206] setup_net+0x100/0x390 [ 614.343581][T30206] ? __pfx_setup_net+0x10/0x10 [ 614.343602][T30206] ? debug_mutex_init+0x37/0x70 [ 614.343621][T30206] copy_net_ns+0x2f8/0x690 [ 614.343638][T30206] create_new_namespaces+0x3ea/0xa90 [ 614.343662][T30206] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 614.343681][T30206] ksys_unshare+0x45b/0xa40 [ 614.343703][T30206] ? __pfx_ksys_unshare+0x10/0x10 [ 614.343723][T30206] ? xfd_validate_state+0x61/0x180 [ 614.343743][T30206] __x64_sys_unshare+0x31/0x40 [ 614.343763][T30206] do_syscall_64+0xcd/0x4b0 [ 614.343782][T30206] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 614.343796][T30206] RIP: 0033:0x7f122338eec9 [ 614.343817][T30206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 614.343832][T30206] RSP: 002b:00007f122428b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 614.343847][T30206] RAX: ffffffffffffffda RBX: 00007f12235e5fa0 RCX: 00007f122338eec9 [ 614.343857][T30206] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 614.343866][T30206] RBP: 00007f1223411f91 R08: 0000000000000000 R09: 0000000000000000 [ 614.343875][T30206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 614.343883][T30206] R13: 00007f12235e6038 R14: 00007f12235e5fa0 R15: 00007ffd25dd4248 [ 614.343902][T30206] [ 614.597866][ C0] vkms_vblank_simulate: vblank timer overrun [ 615.640817][T30254] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 615.818830][T30261] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 615.839071][T30262] FAULT_INJECTION: forcing a failure. [ 615.839071][T30262] name failslab, interval 1, probability 0, space 0, times 0 [ 615.931395][T30262] CPU: 0 UID: 0 PID: 30262 Comm: syz.3.4297 Tainted: G U syzkaller #0 PREEMPT(full) [ 615.931421][T30262] Tainted: [U]=USER [ 615.931426][T30262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 615.931435][T30262] Call Trace: [ 615.931440][T30262] [ 615.931446][T30262] dump_stack_lvl+0x16c/0x1f0 [ 615.931469][T30262] should_fail_ex+0x512/0x640 [ 615.931490][T30262] ? __kmalloc_cache_noprof+0x5f/0x780 [ 615.931507][T30262] should_failslab+0xc2/0x120 [ 615.931527][T30262] __kmalloc_cache_noprof+0x72/0x780 [ 615.931542][T30262] ? device_add+0xccc/0x1aa0 [ 615.931562][T30262] ? device_add+0xccc/0x1aa0 [ 615.931577][T30262] device_add+0xccc/0x1aa0 [ 615.931592][T30262] ? dev_set_name+0xc7/0x100 [ 615.931609][T30262] ? __pfx_dev_set_name+0x10/0x10 [ 615.931633][T30262] ? __pfx_device_add+0x10/0x10 [ 615.931650][T30262] ? lockdep_init_map_type+0x5c/0x280 [ 615.931674][T30262] ? __init_waitqueue_head+0xca/0x150 [ 615.931694][T30262] netdev_register_kobject+0x1a9/0x3d0 [ 615.931713][T30262] register_netdevice+0x13dc/0x2270 [ 615.931731][T30262] ? __pfx_register_netdevice+0x10/0x10 [ 615.931750][T30262] internal_dev_create+0x2d3/0x520 [ 615.931771][T30262] ovs_vport_add+0x147/0x4d0 [ 615.931790][T30262] new_vport+0x16/0x1d0 [ 615.931804][T30262] ovs_dp_cmd_new+0x6ba/0xe60 [ 615.931825][T30262] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 615.931844][T30262] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 615.931860][T30262] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 615.931880][T30262] genl_family_rcv_msg_doit+0x206/0x2f0 [ 615.931897][T30262] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 615.931919][T30262] ? bpf_lsm_capable+0x9/0x10 [ 615.931938][T30262] ? security_capable+0x7e/0x260 [ 615.931957][T30262] ? ns_capable+0xd7/0x110 [ 615.931976][T30262] genl_rcv_msg+0x55c/0x800 [ 615.931993][T30262] ? __pfx_genl_rcv_msg+0x10/0x10 [ 615.932009][T30262] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 615.932031][T30262] netlink_rcv_skb+0x158/0x420 [ 615.932052][T30262] ? __pfx_genl_rcv_msg+0x10/0x10 [ 615.932068][T30262] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 615.932097][T30262] ? netlink_deliver_tap+0x1ae/0xd30 [ 615.932120][T30262] genl_rcv+0x28/0x40 [ 615.932133][T30262] netlink_unicast+0x5a7/0x870 [ 615.932157][T30262] ? __pfx_netlink_unicast+0x10/0x10 [ 615.932186][T30262] netlink_sendmsg+0x8c8/0xdd0 [ 615.932210][T30262] ? __pfx_netlink_sendmsg+0x10/0x10 [ 615.932234][T30262] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 615.932257][T30262] ____sys_sendmsg+0xa95/0xc70 [ 615.932274][T30262] ? copy_msghdr_from_user+0x10a/0x160 [ 615.932294][T30262] ? __pfx_____sys_sendmsg+0x10/0x10 [ 615.932314][T30262] ? __pfx_futex_wake_mark+0x10/0x10 [ 615.932331][T30262] ___sys_sendmsg+0x134/0x1d0 [ 615.932353][T30262] ? __pfx____sys_sendmsg+0x10/0x10 [ 615.932402][T30262] __sys_sendmsg+0x16d/0x220 [ 615.932423][T30262] ? __pfx___sys_sendmsg+0x10/0x10 [ 615.932443][T30262] ? __x64_sys_futex+0x1e0/0x4c0 [ 615.932477][T30262] do_syscall_64+0xcd/0x4b0 [ 615.932495][T30262] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 615.932510][T30262] RIP: 0033:0x7f122338eec9 [ 615.932522][T30262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 615.932536][T30262] RSP: 002b:00007f122426a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 615.932550][T30262] RAX: ffffffffffffffda RBX: 00007f12235e6090 RCX: 00007f122338eec9 [ 615.932560][T30262] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000007 [ 615.932568][T30262] RBP: 00007f1223411f91 R08: 0000000000000000 R09: 0000000000000000 [ 615.932577][T30262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 615.932585][T30262] R13: 00007f12235e6128 R14: 00007f12235e6090 R15: 00007ffd25dd4248 [ 615.932606][T30262] [ 616.302359][ C0] vkms_vblank_simulate: vblank timer overrun [ 616.917715][T30279] FAULT_INJECTION: forcing a failure. [ 616.917715][T30279] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 616.948892][T30279] CPU: 0 UID: 0 PID: 30279 Comm: syz.2.4300 Tainted: G U syzkaller #0 PREEMPT(full) [ 616.948918][T30279] Tainted: [U]=USER [ 616.948923][T30279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 616.948931][T30279] Call Trace: [ 616.948937][T30279] [ 616.948943][T30279] dump_stack_lvl+0x16c/0x1f0 [ 616.948964][T30279] should_fail_ex+0x512/0x640 [ 616.948990][T30279] __fpu_restore_sig+0xfe/0x13a0 [ 616.949013][T30279] ? __lock_acquire+0xb97/0x1ce0 [ 616.949035][T30279] ? __pfx___fpu_restore_sig+0x10/0x10 [ 616.949066][T30279] ? __might_fault+0xe3/0x190 [ 616.949081][T30279] ? __might_fault+0x13b/0x190 [ 616.949099][T30279] fpu__restore_sig+0x151/0x190 [ 616.949120][T30279] restore_sigcontext+0x4c9/0x6a0 [ 616.949140][T30279] ? __pfx_restore_sigcontext+0x10/0x10 [ 616.949172][T30279] ? __pfx_restore_altstack+0x10/0x10 [ 616.949195][T30279] ? _raw_spin_unlock_irq+0x23/0x50 [ 616.949209][T30279] ? lockdep_hardirqs_on+0x7c/0x110 [ 616.949227][T30279] __do_sys_rt_sigreturn+0x1bb/0x230 [ 616.949247][T30279] ? __pfx___do_sys_rt_sigreturn+0x10/0x10 [ 616.949273][T30279] do_syscall_64+0xcd/0x4b0 [ 616.949291][T30279] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 616.949305][T30279] RIP: 0033:0x7fce46d8eec9 [ 616.949316][T30279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 616.949331][T30279] RSP: 002b:00007fce47b6d038 EFLAGS: 00000246 [ 616.949343][T30279] RAX: 0000000000000000 RBX: 00007fce46fe5fa0 RCX: 00007fce46d8eec9 [ 616.949352][T30279] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 000000000000021e [ 616.949360][T30279] RBP: 00007fce46e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 616.949369][T30279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 616.949377][T30279] R13: 00007fce46fe6038 R14: 00007fce46fe5fa0 R15: 00007ffd746d39e8 [ 616.949395][T30279] [ 617.147814][ C0] vkms_vblank_simulate: vblank timer overrun [ 617.294404][T30278] zswap: compressor @ not available [ 618.340698][T30259] random: crng reseeded on system resumption [ 618.361083][T30347] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4305'. [ 618.432474][T30351] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input21 [ 620.633178][T30478] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 620.668181][ T5856] bt_warn_ratelimited: 7 callbacks suppressed [ 620.668196][ T5856] Bluetooth: hci2: unexpected event 0x02 length: 726 > 260 [ 620.733668][T30467] zswap: compressor not available [ 620.811279][T30478] netlink: 268 bytes leftover after parsing attributes in process `syz.1.4315'. [ 621.109869][T30500] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 621.176715][ T5856] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 621.176739][ T5856] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 621.192687][ T5856] bt_err_ratelimited: 38 callbacks suppressed [ 621.192699][ T5856] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 621.199725][ T5856] Bluetooth: hci2: adv larger than maximum supported [ 621.206758][ T5856] Bluetooth: hci2: Malformed LE Event: 0x0d [ 623.373184][T30621] netlink: 'syz.0.4326': attribute type 1 has an invalid length. [ 624.414454][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.424029][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 624.434167][T30724] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4330'. [ 624.608182][ T5856] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 624.869307][T30752] netlink: 13 bytes leftover after parsing attributes in process `syz.2.4333'. [ 625.969495][T30823] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 626.174845][T30834] nfs: Unknown parameter 'ÍÖÞ©iìèÊŸó‚b¢y¨7Jü ÅØ€ºªV{° [ 626.174845][T30834] —\§ãßÂ9-*;#rÈÑRcF‡äGL¥Ö*æ(ê•Ü¦)5®&yAlãj Lp‘í%¯Zøwò}ÍGSιÜk†' [ 626.250463][T30822] netlink: 268 bytes leftover after parsing attributes in process `syz.3.4337'. [ 626.331200][T30844] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 626.607089][T30837] netlink: 268 bytes leftover after parsing attributes in process `syz.1.4340'. [ 627.352396][T30897] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 627.703846][T30917] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 628.123854][T30912] netlink: 268 bytes leftover after parsing attributes in process `syz.0.4345'. [ 629.298751][T31014] usb usb34: usbfs: process 31014 (syz.1.4351) did not claim interface 0 before use [ 629.389388][T31018] usb usb34: usbfs: process 31018 (syz.1.4351) did not claim interface 0 before use [ 629.658562][T31032] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 629.753990][T31030] zram: Added device: zram1 [ 629.854199][T31025] netlink: 268 bytes leftover after parsing attributes in process `syz.0.4352'. [ 630.893007][ T5856] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 630.985319][T31077] usb usb28: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 631.404602][T31100] Invalid ELF header magic: != ELF [ 631.575005][T31115] FAULT_INJECTION: forcing a failure. [ 631.575005][T31115] name failslab, interval 1, probability 0, space 0, times 0 [ 631.656238][T31115] CPU: 0 UID: 0 PID: 31115 Comm: syz.0.4362 Tainted: G U syzkaller #0 PREEMPT(full) [ 631.656296][T31115] Tainted: [U]=USER [ 631.656301][T31115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 631.656310][T31115] Call Trace: [ 631.656315][T31115] [ 631.656321][T31115] dump_stack_lvl+0x16c/0x1f0 [ 631.656344][T31115] should_fail_ex+0x512/0x640 [ 631.656364][T31115] ? __kmalloc_cache_noprof+0x5f/0x780 [ 631.656381][T31115] should_failslab+0xc2/0x120 [ 631.656402][T31115] __kmalloc_cache_noprof+0x72/0x780 [ 631.656416][T31115] ? binder_open+0x148/0xde0 [ 631.656437][T31115] ? binder_open+0x148/0xde0 [ 631.656454][T31115] binder_open+0x148/0xde0 [ 631.656472][T31115] ? __pfx_apparmor_file_open+0x10/0x10 [ 631.656494][T31115] ? __pfx_binder_open+0x10/0x10 [ 631.656513][T31115] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 631.656533][T31115] do_dentry_open+0x982/0x1530 [ 631.656551][T31115] ? __pfx_binder_open+0x10/0x10 [ 631.656572][T31115] vfs_open+0x82/0x3f0 [ 631.656594][T31115] path_openat+0x1de4/0x2cb0 [ 631.656617][T31115] ? __pfx_path_openat+0x10/0x10 [ 631.656637][T31115] do_filp_open+0x20b/0x470 [ 631.656657][T31115] ? __pfx_do_filp_open+0x10/0x10 [ 631.656687][T31115] ? alloc_fd+0x471/0x7d0 [ 631.656707][T31115] do_sys_openat2+0x11b/0x1d0 [ 631.656727][T31115] ? __pfx_do_sys_openat2+0x10/0x10 [ 631.656755][T31115] __x64_sys_openat+0x174/0x210 [ 631.656776][T31115] ? __pfx___x64_sys_openat+0x10/0x10 [ 631.656805][T31115] do_syscall_64+0xcd/0x4b0 [ 631.656824][T31115] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 631.656838][T31115] RIP: 0033:0x7f118f78eec9 [ 631.656850][T31115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 631.656864][T31115] RSP: 002b:00007f1190677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 631.656878][T31115] RAX: ffffffffffffffda RBX: 00007f118f9e5fa0 RCX: 00007f118f78eec9 [ 631.656887][T31115] RDX: 0000000000189160 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 631.656896][T31115] RBP: 00007f118f811f91 R08: 0000000000000000 R09: 0000000000000000 [ 631.656905][T31115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 631.656913][T31115] R13: 00007f118f9e6038 R14: 00007f118f9e5fa0 R15: 00007ffc6c912878 [ 631.656932][T31115] [ 632.473750][T31147] FAULT_INJECTION: forcing a failure. [ 632.473750][T31147] name failslab, interval 1, probability 0, space 0, times 0 [ 632.517127][T31147] CPU: 0 UID: 0 PID: 31147 Comm: syz.1.4365 Tainted: G U syzkaller #0 PREEMPT(full) [ 632.517153][T31147] Tainted: [U]=USER [ 632.517158][T31147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 632.517166][T31147] Call Trace: [ 632.517171][T31147] [ 632.517177][T31147] dump_stack_lvl+0x16c/0x1f0 [ 632.517200][T31147] should_fail_ex+0x512/0x640 [ 632.517220][T31147] ? __kmalloc_cache_noprof+0x5f/0x780 [ 632.517238][T31147] should_failslab+0xc2/0x120 [ 632.517263][T31147] __kmalloc_cache_noprof+0x72/0x780 [ 632.517279][T31147] ? resv_map_alloc+0x7e/0x400 [ 632.517304][T31147] ? resv_map_alloc+0x7e/0x400 [ 632.517323][T31147] resv_map_alloc+0x7e/0x400 [ 632.517344][T31147] hugetlbfs_get_inode+0x33f/0x730 [ 632.517360][T31147] ? security_capable+0x7e/0x260 [ 632.517381][T31147] hugetlb_file_setup+0x38d/0x620 [ 632.517400][T31147] newseg+0xa74/0xe60 [ 632.517418][T31147] ? __pfx_newseg+0x10/0x10 [ 632.517430][T31147] ? find_held_lock+0x2b/0x80 [ 632.517448][T31147] ? ipcget+0xa98/0xfa0 [ 632.517466][T31147] ipcget+0xaf0/0xfa0 [ 632.517486][T31147] ? __pfx___might_resched+0x10/0x10 [ 632.517503][T31147] ? __pfx_ipcget+0x10/0x10 [ 632.517518][T31147] ? __x64_sys_futex+0x1e0/0x4c0 [ 632.517538][T31147] ? __x64_sys_futex+0x1e9/0x4c0 [ 632.517560][T31147] __x64_sys_shmget+0x13b/0x1b0 [ 632.517576][T31147] ? __pfx___x64_sys_shmget+0x10/0x10 [ 632.517593][T31147] ? rcu_is_watching+0x12/0xc0 [ 632.517612][T31147] do_syscall_64+0xcd/0x4b0 [ 632.517631][T31147] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 632.517645][T31147] RIP: 0033:0x7fcab858eec9 [ 632.517657][T31147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 632.517670][T31147] RSP: 002b:00007fcab67f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 632.517685][T31147] RAX: ffffffffffffffda RBX: 00007fcab87e6090 RCX: 00007fcab858eec9 [ 632.517694][T31147] RDX: 000000000000ffff RSI: 0000000000000006 RDI: 0000000000000004 [ 632.517702][T31147] RBP: 00007fcab8611f91 R08: 0000000000000000 R09: 0000000000000000 [ 632.517711][T31147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 632.517719][T31147] R13: 00007fcab87e6128 R14: 00007fcab87e6090 R15: 00007ffd9adf03a8 [ 632.517738][T31147] [ 633.389660][T31163] FAULT_INJECTION: forcing a failure. [ 633.389660][T31163] name failslab, interval 1, probability 0, space 0, times 0 [ 633.408182][T31163] CPU: 0 UID: 0 PID: 31163 Comm: syz.0.4366 Tainted: G U syzkaller #0 PREEMPT(full) [ 633.408207][T31163] Tainted: [U]=USER [ 633.408212][T31163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 633.408222][T31163] Call Trace: [ 633.408228][T31163] [ 633.408233][T31163] dump_stack_lvl+0x16c/0x1f0 [ 633.408257][T31163] should_fail_ex+0x512/0x640 [ 633.408277][T31163] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 633.408295][T31163] should_failslab+0xc2/0x120 [ 633.408316][T31163] kmem_cache_alloc_noprof+0x75/0x6e0 [ 633.408332][T31163] ? __kernfs_new_node+0xd2/0x8e0 [ 633.408355][T31163] ? __kernfs_new_node+0xd2/0x8e0 [ 633.408372][T31163] __kernfs_new_node+0xd2/0x8e0 [ 633.408393][T31163] ? __pfx___kernfs_new_node+0x10/0x10 [ 633.408417][T31163] ? find_held_lock+0x2b/0x80 [ 633.408434][T31163] ? kernfs_root+0xee/0x2a0 [ 633.408456][T31163] kernfs_new_node+0x13c/0x1e0 [ 633.408480][T31163] __kernfs_create_file+0x53/0x350 [ 633.408498][T31163] sysfs_add_file_mode_ns+0x207/0x3c0 [ 633.408521][T31163] sysfs_merge_group+0x1aa/0x340 [ 633.408541][T31163] ? __pfx_sysfs_merge_group+0x10/0x10 [ 633.408563][T31163] ? __pfx_dev_add_physical_location+0x10/0x10 [ 633.408580][T31163] ? bus_to_subsys+0x131/0x160 [ 633.408601][T31163] dpm_sysfs_add+0x237/0x280 [ 633.408617][T31163] device_add+0x9a6/0x1aa0 [ 633.408637][T31163] ? __pfx_device_add+0x10/0x10 [ 633.408653][T31163] ? lockdep_init_map_type+0x5c/0x280 [ 633.408675][T31163] ? __init_waitqueue_head+0xca/0x150 [ 633.408695][T31163] rfkill_register+0x1ad/0xb40 [ 633.408712][T31163] nfc_register_device+0x11f/0x3c0 [ 633.408732][T31163] nci_register_device+0x7f1/0xb80 [ 633.408748][T31163] ? __pfx_nci_register_device+0x10/0x10 [ 633.408766][T31163] ? lockdep_init_map_type+0x5c/0x280 [ 633.408792][T31163] virtual_ncidev_open+0x141/0x220 [ 633.408813][T31163] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 633.408832][T31163] misc_open+0x26a/0x450 [ 633.408848][T31163] ? __pfx_misc_open+0x10/0x10 [ 633.408863][T31163] chrdev_open+0x234/0x6a0 [ 633.408881][T31163] ? __pfx_apparmor_file_open+0x10/0x10 [ 633.408901][T31163] ? __pfx_chrdev_open+0x10/0x10 [ 633.408920][T31163] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 633.408941][T31163] do_dentry_open+0x982/0x1530 [ 633.408958][T31163] ? __pfx_chrdev_open+0x10/0x10 [ 633.408980][T31163] vfs_open+0x82/0x3f0 [ 633.409003][T31163] path_openat+0x1de4/0x2cb0 [ 633.409026][T31163] ? __pfx_path_openat+0x10/0x10 [ 633.409048][T31163] do_filp_open+0x20b/0x470 [ 633.409065][T31163] ? __pfx_do_filp_open+0x10/0x10 [ 633.409096][T31163] ? alloc_fd+0x471/0x7d0 [ 633.409117][T31163] do_sys_openat2+0x11b/0x1d0 [ 633.409145][T31163] ? __pfx_do_sys_openat2+0x10/0x10 [ 633.409176][T31163] __x64_sys_openat+0x174/0x210 [ 633.409198][T31163] ? __pfx___x64_sys_openat+0x10/0x10 [ 633.409229][T31163] do_syscall_64+0xcd/0x4b0 [ 633.409248][T31163] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 633.409263][T31163] RIP: 0033:0x7f118f78eec9 [ 633.409276][T31163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 633.409289][T31163] RSP: 002b:00007f1190677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 633.409303][T31163] RAX: ffffffffffffffda RBX: 00007f118f9e5fa0 RCX: 00007f118f78eec9 [ 633.409312][T31163] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 633.409322][T31163] RBP: 00007f118f811f91 R08: 0000000000000000 R09: 0000000000000000 [ 633.409331][T31163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 633.409339][T31163] R13: 00007f118f9e6038 R14: 00007f118f9e5fa0 R15: 00007ffc6c912878 [ 633.409359][T31163] [ 634.700797][T31255] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 634.965653][T31274] FAULT_INJECTION: forcing a failure. [ 634.965653][T31274] name failslab, interval 1, probability 0, space 0, times 0 [ 635.035857][T31274] CPU: 0 UID: 0 PID: 31274 Comm: syz.2.4371 Tainted: G U syzkaller #0 PREEMPT(full) [ 635.035883][T31274] Tainted: [U]=USER [ 635.035889][T31274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 635.035897][T31274] Call Trace: [ 635.035902][T31274] [ 635.035908][T31274] dump_stack_lvl+0x16c/0x1f0 [ 635.035930][T31274] should_fail_ex+0x512/0x640 [ 635.035951][T31274] ? __kmalloc_cache_noprof+0x5f/0x780 [ 635.035968][T31274] should_failslab+0xc2/0x120 [ 635.035989][T31274] __kmalloc_cache_noprof+0x72/0x780 [ 635.036004][T31274] ? binder_open+0x148/0xde0 [ 635.036025][T31274] ? binder_open+0x148/0xde0 [ 635.036048][T31274] binder_open+0x148/0xde0 [ 635.036067][T31274] ? __pfx_apparmor_file_open+0x10/0x10 [ 635.036088][T31274] ? __pfx_binder_open+0x10/0x10 [ 635.036107][T31274] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 635.036129][T31274] do_dentry_open+0x982/0x1530 [ 635.036146][T31274] ? __pfx_binder_open+0x10/0x10 [ 635.036170][T31274] vfs_open+0x82/0x3f0 [ 635.036192][T31274] path_openat+0x1de4/0x2cb0 [ 635.036215][T31274] ? __pfx_path_openat+0x10/0x10 [ 635.036236][T31274] do_filp_open+0x20b/0x470 [ 635.036252][T31274] ? __pfx_do_filp_open+0x10/0x10 [ 635.036282][T31274] ? alloc_fd+0x471/0x7d0 [ 635.036301][T31274] do_sys_openat2+0x11b/0x1d0 [ 635.036322][T31274] ? __pfx_do_sys_openat2+0x10/0x10 [ 635.036350][T31274] __x64_sys_openat+0x174/0x210 [ 635.036371][T31274] ? __pfx___x64_sys_openat+0x10/0x10 [ 635.036399][T31274] do_syscall_64+0xcd/0x4b0 [ 635.036418][T31274] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 635.036432][T31274] RIP: 0033:0x7fce46d8eec9 [ 635.036444][T31274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 635.036458][T31274] RSP: 002b:00007fce47b6d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 635.036472][T31274] RAX: ffffffffffffffda RBX: 00007fce46fe5fa0 RCX: 00007fce46d8eec9 [ 635.036482][T31274] RDX: 0000000000189160 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 635.036491][T31274] RBP: 00007fce46e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 635.036499][T31274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 635.036506][T31274] R13: 00007fce46fe6038 R14: 00007fce46fe5fa0 R15: 00007ffd746d39e8 [ 635.036524][T31274] [ 637.160162][T31360] syz.0.4380 (31360) used obsolete PPPIOCDETACH ioctl [ 637.346192][T31373] sysfs_service_op_show: Client not running :-5: [ 637.602891][T31382] FAULT_INJECTION: forcing a failure. [ 637.602891][T31382] name failslab, interval 1, probability 0, space 0, times 0 [ 637.678133][T31382] CPU: 0 UID: 0 PID: 31382 Comm: syz.0.4382 Tainted: G U syzkaller #0 PREEMPT(full) [ 637.678160][T31382] Tainted: [U]=USER [ 637.678165][T31382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 637.678175][T31382] Call Trace: [ 637.678180][T31382] [ 637.678186][T31382] dump_stack_lvl+0x16c/0x1f0 [ 637.678208][T31382] should_fail_ex+0x512/0x640 [ 637.678228][T31382] ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0 [ 637.678251][T31382] should_failslab+0xc2/0x120 [ 637.678270][T31382] __kmalloc_node_track_caller_noprof+0xde/0x8a0 [ 637.678290][T31382] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 637.678305][T31382] ? fib_notifier_ops_register+0x32/0x270 [ 637.678326][T31382] ? lockdep_hardirqs_on+0x7c/0x110 [ 637.678345][T31382] ? kmemdup_noprof+0x29/0x60 [ 637.678360][T31382] kmemdup_noprof+0x29/0x60 [ 637.678376][T31382] fib_notifier_ops_register+0x32/0x270 [ 637.678400][T31382] fib4_notifier_init+0x4f/0xd0 [ 637.678423][T31382] fib_net_init+0xbf/0x3f0 [ 637.678435][T31382] ? __pfx___register_sysctl_table+0x10/0x10 [ 637.678458][T31382] ? __pfx_fib_net_init+0x10/0x10 [ 637.678471][T31382] ? lockdep_init_map_type+0x5c/0x280 [ 637.678494][T31382] ? do_init_timer+0xc9/0x110 [ 637.678515][T31382] ? devinet_init_net+0x5c2/0x910 [ 637.678532][T31382] ? __pfx_fib_net_init+0x10/0x10 [ 637.678544][T31382] ops_init+0x1e2/0x5f0 [ 637.678567][T31382] setup_net+0x100/0x390 [ 637.678588][T31382] ? __pfx_setup_net+0x10/0x10 [ 637.678610][T31382] ? debug_mutex_init+0x37/0x70 [ 637.678629][T31382] copy_net_ns+0x2f8/0x690 [ 637.678645][T31382] create_new_namespaces+0x3ea/0xa90 [ 637.678667][T31382] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 637.678688][T31382] ksys_unshare+0x45b/0xa40 [ 637.678709][T31382] ? __pfx_ksys_unshare+0x10/0x10 [ 637.678731][T31382] ? xfd_validate_state+0x61/0x180 [ 637.678749][T31382] __x64_sys_unshare+0x31/0x40 [ 637.678769][T31382] do_syscall_64+0xcd/0x4b0 [ 637.678787][T31382] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 637.678801][T31382] RIP: 0033:0x7f118f78eec9 [ 637.678821][T31382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 637.678836][T31382] RSP: 002b:00007f1190656038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 637.678851][T31382] RAX: ffffffffffffffda RBX: 00007f118f9e6090 RCX: 00007f118f78eec9 [ 637.678861][T31382] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 637.678870][T31382] RBP: 00007f118f811f91 R08: 0000000000000000 R09: 0000000000000000 [ 637.678880][T31382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 637.678889][T31382] R13: 00007f118f9e6128 R14: 00007f118f9e6090 R15: 00007ffc6c912878 [ 637.678909][T31382] [ 640.414446][T31523] random: crng reseeded on system resumption [ 640.610150][T31544] FAULT_INJECTION: forcing a failure. [ 640.610150][T31544] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 640.725558][T31544] CPU: 0 UID: 0 PID: 31544 Comm: syz.0.4389 Tainted: G U syzkaller #0 PREEMPT(full) [ 640.725583][T31544] Tainted: [U]=USER [ 640.725587][T31544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 640.725595][T31544] Call Trace: [ 640.725600][T31544] [ 640.725606][T31544] dump_stack_lvl+0x16c/0x1f0 [ 640.725628][T31544] should_fail_ex+0x512/0x640 [ 640.725651][T31544] _copy_from_user+0x2e/0xd0 [ 640.725672][T31544] generic_map_update_batch+0x38a/0x610 [ 640.725693][T31544] ? __pfx_generic_map_update_batch+0x10/0x10 [ 640.725712][T31544] ? __pfx_generic_map_update_batch+0x10/0x10 [ 640.725728][T31544] bpf_map_do_batch+0x5be/0x680 [ 640.725750][T31544] __sys_bpf+0x482c/0x4980 [ 640.725768][T31544] ? __pfx___sys_bpf+0x10/0x10 [ 640.725782][T31544] ? find_held_lock+0x2b/0x80 [ 640.725803][T31544] ? find_held_lock+0x2b/0x80 [ 640.725824][T31544] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 640.725852][T31544] ? fput+0x9b/0xd0 [ 640.725872][T31544] ? ksys_write+0x1ac/0x250 [ 640.725887][T31544] ? __pfx_ksys_write+0x10/0x10 [ 640.725906][T31544] __x64_sys_bpf+0x78/0xc0 [ 640.725921][T31544] ? lockdep_hardirqs_on+0x7c/0x110 [ 640.725936][T31544] do_syscall_64+0xcd/0x4b0 [ 640.725955][T31544] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 640.725968][T31544] RIP: 0033:0x7f118f78eec9 [ 640.725979][T31544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 640.725993][T31544] RSP: 002b:00007f1190677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 640.726006][T31544] RAX: ffffffffffffffda RBX: 00007f118f9e5fa0 RCX: 00007f118f78eec9 [ 640.726015][T31544] RDX: 0000000000000090 RSI: 0000200000000380 RDI: 000000000000001a [ 640.726024][T31544] RBP: 00007f1190677090 R08: 0000000000000000 R09: 0000000000000000 [ 640.726032][T31544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 640.726040][T31544] R13: 00007f118f9e6038 R14: 00007f118f9e5fa0 R15: 00007ffc6c912878 [ 640.726058][T31544] [ 641.835456][T31581] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 642.018617][T31599] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 642.177693][T31615] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 642.264530][T31591] netlink: 268 bytes leftover after parsing attributes in process `syz.2.4396'. [ 642.385038][T31607] netlink: 268 bytes leftover after parsing attributes in process `syz.1.4397'. [ 643.203530][T31630] FAULT_INJECTION: forcing a failure. [ 643.203530][T31630] name failslab, interval 1, probability 0, space 0, times 0 [ 643.268415][T31630] CPU: 0 UID: 0 PID: 31630 Comm: syz.0.4400 Tainted: G U syzkaller #0 PREEMPT(full) [ 643.268441][T31630] Tainted: [U]=USER [ 643.268447][T31630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 643.268455][T31630] Call Trace: [ 643.268461][T31630] [ 643.268468][T31630] dump_stack_lvl+0x16c/0x1f0 [ 643.268491][T31630] should_fail_ex+0x512/0x640 [ 643.268511][T31630] ? __kmalloc_noprof+0xca/0x880 [ 643.268527][T31630] should_failslab+0xc2/0x120 [ 643.268548][T31630] __kmalloc_noprof+0xdd/0x880 [ 643.268562][T31630] ? binder_open+0x168/0xde0 [ 643.268583][T31630] ? binder_open+0x168/0xde0 [ 643.268599][T31630] binder_open+0x168/0xde0 [ 643.268616][T31630] ? __pfx_apparmor_file_open+0x10/0x10 [ 643.268638][T31630] ? __pfx_binder_open+0x10/0x10 [ 643.268657][T31630] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 643.268677][T31630] do_dentry_open+0x982/0x1530 [ 643.268694][T31630] ? __pfx_binder_open+0x10/0x10 [ 643.268715][T31630] vfs_open+0x82/0x3f0 [ 643.268738][T31630] path_openat+0x1de4/0x2cb0 [ 643.268760][T31630] ? __pfx_path_openat+0x10/0x10 [ 643.268781][T31630] do_filp_open+0x20b/0x470 [ 643.268797][T31630] ? __pfx_do_filp_open+0x10/0x10 [ 643.268827][T31630] ? alloc_fd+0x471/0x7d0 [ 643.268847][T31630] do_sys_openat2+0x11b/0x1d0 [ 643.268868][T31630] ? __pfx_do_sys_openat2+0x10/0x10 [ 643.268895][T31630] __x64_sys_openat+0x174/0x210 [ 643.268917][T31630] ? __pfx___x64_sys_openat+0x10/0x10 [ 643.268945][T31630] do_syscall_64+0xcd/0x4b0 [ 643.268967][T31630] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 643.268983][T31630] RIP: 0033:0x7f118f78eec9 [ 643.268995][T31630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 643.269010][T31630] RSP: 002b:00007f1190677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 643.269032][T31630] RAX: ffffffffffffffda RBX: 00007f118f9e5fa0 RCX: 00007f118f78eec9 [ 643.269042][T31630] RDX: 0000000000189160 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 643.269051][T31630] RBP: 00007f118f811f91 R08: 0000000000000000 R09: 0000000000000000 [ 643.269060][T31630] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 643.269069][T31630] R13: 00007f118f9e6038 R14: 00007f118f9e5fa0 R15: 00007ffc6c912878 [ 643.269088][T31630] [ 643.587307][T31635] program syz.2.4402 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 646.318820][T31716] random: crng reseeded on system resumption [ 646.718106][T31724] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4409'. [ 647.412343][T31735] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 648.361177][T31749] deleting an unspecified loop device is not supported. [ 648.710295][T31771] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4418'. [ 648.769121][T31771] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4418'. [ 648.917626][T31780] FAULT_INJECTION: forcing a failure. [ 648.917626][T31780] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 649.014265][T31780] CPU: 0 UID: 0 PID: 31780 Comm: syz.3.4417 Tainted: G U syzkaller #0 PREEMPT(full) [ 649.014292][T31780] Tainted: [U]=USER [ 649.014298][T31780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 649.014306][T31780] Call Trace: [ 649.014311][T31780] [ 649.014318][T31780] dump_stack_lvl+0x16c/0x1f0 [ 649.014343][T31780] should_fail_ex+0x512/0x640 [ 649.014367][T31780] should_fail_alloc_page+0xe7/0x130 [ 649.014389][T31780] prepare_alloc_pages+0x3c2/0x610 [ 649.014409][T31780] ? arch_stack_walk+0xa6/0x100 [ 649.014427][T31780] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 649.014447][T31780] ? stack_trace_save+0x8e/0xc0 [ 649.014469][T31780] ? __pfx_stack_trace_save+0x10/0x10 [ 649.014488][T31780] ? stack_depot_save_flags+0x29/0x9c0 [ 649.014510][T31780] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 649.014527][T31780] ? kasan_save_stack+0x42/0x60 [ 649.014543][T31780] ? kasan_save_stack+0x33/0x60 [ 649.014558][T31780] ? kasan_save_track+0x14/0x30 [ 649.014574][T31780] ? __kasan_slab_alloc+0x89/0x90 [ 649.014590][T31780] ? kmem_cache_alloc_noprof+0x250/0x6e0 [ 649.014604][T31780] ? security_inode_alloc+0x3b/0x2b0 [ 649.014623][T31780] ? inode_init_always_gfp+0xce4/0x1030 [ 649.014640][T31780] ? do_syscall_64+0xcd/0x4b0 [ 649.014656][T31780] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 649.014675][T31780] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 649.014691][T31780] ? policy_nodemask+0xea/0x4e0 [ 649.014712][T31780] alloc_pages_mpol+0x1fb/0x550 [ 649.014732][T31780] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 649.014756][T31780] ___kmalloc_large_node+0xed/0x160 [ 649.014779][T31780] __kmalloc_large_node_noprof+0x1c/0x70 [ 649.014809][T31780] __kmalloc_noprof.cold+0xc/0x62 [ 649.014830][T31780] ? sk_prot_alloc+0x1a8/0x2a0 [ 649.014849][T31780] ? sk_prot_alloc+0x1a8/0x2a0 [ 649.014863][T31780] sk_prot_alloc+0x1a8/0x2a0 [ 649.014879][T31780] sk_alloc+0x36/0xc20 [ 649.014899][T31780] can_create+0x1e5/0x630 [ 649.014920][T31780] __sock_create+0x335/0x8d0 [ 649.014939][T31780] __sys_socket+0x14d/0x260 [ 649.014956][T31780] ? __pfx___sys_socket+0x10/0x10 [ 649.014972][T31780] ? xfd_validate_state+0x61/0x180 [ 649.014984][T31780] ? __pfx_ksys_write+0x10/0x10 [ 649.015004][T31780] __x64_sys_socket+0x72/0xb0 [ 649.015019][T31780] ? lockdep_hardirqs_on+0x7c/0x110 [ 649.015035][T31780] do_syscall_64+0xcd/0x4b0 [ 649.015053][T31780] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 649.015066][T31780] RIP: 0033:0x7f122338eec9 [ 649.015079][T31780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 649.015092][T31780] RSP: 002b:00007f1224249038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 649.015107][T31780] RAX: ffffffffffffffda RBX: 00007f12235e6180 RCX: 00007f122338eec9 [ 649.015116][T31780] RDX: 0000000000000006 RSI: 0000000000000002 RDI: 000000000000001d [ 649.015124][T31780] RBP: 00007f1223411f91 R08: 0000000000000000 R09: 0000000000000000 [ 649.015133][T31780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 649.015141][T31780] R13: 00007f12235e6218 R14: 00007f12235e6180 R15: 00007ffd25dd4248 [ 649.015160][T31780] [ 649.501654][T31790] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4420'. [ 649.512826][T31790] netlink: 75 bytes leftover after parsing attributes in process `syz.1.4420'. [ 651.359818][T31901] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 651.674153][T31898] netlink: 268 bytes leftover after parsing attributes in process `syz.1.4431'. [ 652.002602][T31918] Invalid ELF header magic: != ELF [ 652.834733][T31945] overlayfs: missing 'lowerdir' [ 653.489445][T31971] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 653.648886][T31968] netlink: 268 bytes leftover after parsing attributes in process `syz.2.4446'. [ 653.827453][T31984] netlink: 40 bytes leftover after parsing attributes in process `syz.0.4449'. [ 653.885257][T31984] FAULT_INJECTION: forcing a failure. [ 653.885257][T31984] name fail_futex, interval 1, probability 0, space 0, times 0 [ 653.945220][T31984] CPU: 0 UID: 0 PID: 31984 Comm: syz.0.4449 Tainted: G U syzkaller #0 PREEMPT(full) [ 653.945247][T31984] Tainted: [U]=USER [ 653.945252][T31984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 653.945261][T31984] Call Trace: [ 653.945266][T31984] [ 653.945272][T31984] dump_stack_lvl+0x16c/0x1f0 [ 653.945295][T31984] should_fail_ex+0x512/0x640 [ 653.945319][T31984] get_futex_key+0x1d0/0x1560 [ 653.945348][T31984] ? __pfx_get_futex_key+0x10/0x10 [ 653.945368][T31984] ? do_raw_spin_lock+0x12c/0x2b0 [ 653.945384][T31984] ? find_held_lock+0x2b/0x80 [ 653.945405][T31984] futex_wait_setup+0x9d/0x550 [ 653.945426][T31984] __futex_wait+0x193/0x2f0 [ 653.945441][T31984] ? __pfx___futex_wait+0x10/0x10 [ 653.945454][T31984] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 653.945469][T31984] ? lockdep_hardirqs_on+0x7c/0x110 [ 653.945486][T31984] ? __pfx_futex_wake_mark+0x10/0x10 [ 653.945503][T31984] ? futex_private_hash_put+0x176/0x300 [ 653.945525][T31984] ? futex_private_hash_put+0x18a/0x300 [ 653.945545][T31984] futex_wait+0xe8/0x380 [ 653.945558][T31984] ? __pfx_futex_wait+0x10/0x10 [ 653.945576][T31984] ? get_filter+0x146/0x1b0 [ 653.945598][T31984] ? __pfx_get_filter+0x10/0x10 [ 653.945622][T31984] do_futex+0x229/0x350 [ 653.945642][T31984] ? __pfx_do_futex+0x10/0x10 [ 653.945667][T31984] __x64_sys_futex+0x1e0/0x4c0 [ 653.945692][T31984] ? __pfx___x64_sys_futex+0x10/0x10 [ 653.945712][T31984] ? __sys_getsockopt+0x144/0x1b0 [ 653.945738][T31984] do_syscall_64+0xcd/0x4b0 [ 653.945757][T31984] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 653.945772][T31984] RIP: 0033:0x7f118f78eec9 [ 653.945784][T31984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 653.945797][T31984] RSP: 002b:00007f11906770e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 653.945811][T31984] RAX: ffffffffffffffda RBX: 00007f118f9e5fa8 RCX: 00007f118f78eec9 [ 653.945821][T31984] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f118f9e5fa8 [ 653.945829][T31984] RBP: 00007f118f9e5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 653.945837][T31984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 653.945845][T31984] R13: 00007f118f9e6038 R14: 00007ffc6c912790 R15: 00007ffc6c912878 [ 653.945864][T31984] [ 654.278137][T31996] FAULT_INJECTION: forcing a failure. [ 654.278137][T31996] name failslab, interval 1, probability 0, space 0, times 0 [ 654.290844][T31996] CPU: 0 UID: 0 PID: 31996 Comm: syz.2.4451 Tainted: G U syzkaller #0 PREEMPT(full) [ 654.290869][T31996] Tainted: [U]=USER [ 654.290874][T31996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 654.290882][T31996] Call Trace: [ 654.290890][T31996] [ 654.290897][T31996] dump_stack_lvl+0x16c/0x1f0 [ 654.290921][T31996] should_fail_ex+0x512/0x640 [ 654.290942][T31996] ? __kmalloc_cache_noprof+0x5f/0x780 [ 654.290960][T31996] should_failslab+0xc2/0x120 [ 654.290980][T31996] __kmalloc_cache_noprof+0x72/0x780 [ 654.290995][T31996] ? binder_open+0x148/0xde0 [ 654.291016][T31996] ? binder_open+0x148/0xde0 [ 654.291033][T31996] binder_open+0x148/0xde0 [ 654.291051][T31996] ? __pfx_apparmor_file_open+0x10/0x10 [ 654.291072][T31996] ? __pfx_binder_open+0x10/0x10 [ 654.291091][T31996] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 654.291111][T31996] do_dentry_open+0x982/0x1530 [ 654.291129][T31996] ? __pfx_binder_open+0x10/0x10 [ 654.291149][T31996] vfs_open+0x82/0x3f0 [ 654.291172][T31996] path_openat+0x1de4/0x2cb0 [ 654.291194][T31996] ? __pfx_path_openat+0x10/0x10 [ 654.291215][T31996] do_filp_open+0x20b/0x470 [ 654.291231][T31996] ? __pfx_do_filp_open+0x10/0x10 [ 654.291261][T31996] ? alloc_fd+0x471/0x7d0 [ 654.291281][T31996] do_sys_openat2+0x11b/0x1d0 [ 654.291301][T31996] ? __pfx_do_sys_openat2+0x10/0x10 [ 654.291330][T31996] __x64_sys_openat+0x174/0x210 [ 654.291363][T31996] ? __pfx___x64_sys_openat+0x10/0x10 [ 654.291392][T31996] do_syscall_64+0xcd/0x4b0 [ 654.291414][T31996] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 654.291428][T31996] RIP: 0033:0x7fce46d8eec9 [ 654.291441][T31996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 654.291455][T31996] RSP: 002b:00007fce47b6d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 654.291470][T31996] RAX: ffffffffffffffda RBX: 00007fce46fe5fa0 RCX: 00007fce46d8eec9 [ 654.291480][T31996] RDX: 0000000000189160 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 654.291489][T31996] RBP: 00007fce46e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 654.291497][T31996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 654.291506][T31996] R13: 00007fce46fe6038 R14: 00007fce46fe5fa0 R15: 00007ffd746d39e8 [ 654.291525][T31996] [ 655.252042][T32033] netlink: 338 bytes leftover after parsing attributes in process `syz.0.4455'. [ 655.350438][T32033] ipvlan1: entered allmulticast mode [ 655.404172][T32033] veth0_vlan: entered allmulticast mode [ 655.987029][T32064] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 656.200991][T32055] netlink: 268 bytes leftover after parsing attributes in process `syz.2.4459'. [ 656.228819][T32072] FAULT_INJECTION: forcing a failure. [ 656.228819][T32072] name failslab, interval 1, probability 0, space 0, times 0 [ 656.290070][T32072] CPU: 0 UID: 0 PID: 32072 Comm: syz.0.4462 Tainted: G U syzkaller #0 PREEMPT(full) [ 656.290099][T32072] Tainted: [U]=USER [ 656.290104][T32072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 656.290113][T32072] Call Trace: [ 656.290118][T32072] [ 656.290146][T32072] dump_stack_lvl+0x16c/0x1f0 [ 656.290169][T32072] should_fail_ex+0x512/0x640 [ 656.290194][T32072] ? __kmalloc_cache_noprof+0x5f/0x780 [ 656.290212][T32072] should_failslab+0xc2/0x120 [ 656.290232][T32072] __kmalloc_cache_noprof+0x72/0x780 [ 656.290246][T32072] ? binder_open+0x148/0xde0 [ 656.290267][T32072] ? binder_open+0x148/0xde0 [ 656.290283][T32072] binder_open+0x148/0xde0 [ 656.290301][T32072] ? __pfx_apparmor_file_open+0x10/0x10 [ 656.290322][T32072] ? __pfx_binder_open+0x10/0x10 [ 656.290341][T32072] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 656.290360][T32072] do_dentry_open+0x982/0x1530 [ 656.290378][T32072] ? __pfx_binder_open+0x10/0x10 [ 656.290399][T32072] vfs_open+0x82/0x3f0 [ 656.290421][T32072] path_openat+0x1de4/0x2cb0 [ 656.290444][T32072] ? __pfx_path_openat+0x10/0x10 [ 656.290465][T32072] do_filp_open+0x20b/0x470 [ 656.290481][T32072] ? __pfx_do_filp_open+0x10/0x10 [ 656.290510][T32072] ? alloc_fd+0x471/0x7d0 [ 656.290531][T32072] do_sys_openat2+0x11b/0x1d0 [ 656.290551][T32072] ? __pfx_do_sys_openat2+0x10/0x10 [ 656.290579][T32072] __x64_sys_openat+0x174/0x210 [ 656.290601][T32072] ? __pfx___x64_sys_openat+0x10/0x10 [ 656.290630][T32072] do_syscall_64+0xcd/0x4b0 [ 656.290649][T32072] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 656.290663][T32072] RIP: 0033:0x7f118f78eec9 [ 656.290675][T32072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 656.290689][T32072] RSP: 002b:00007f1190677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 656.290703][T32072] RAX: ffffffffffffffda RBX: 00007f118f9e5fa0 RCX: 00007f118f78eec9 [ 656.290712][T32072] RDX: 0000000000189160 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 656.290721][T32072] RBP: 00007f118f811f91 R08: 0000000000000000 R09: 0000000000000000 [ 656.290729][T32072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 656.290737][T32072] R13: 00007f118f9e6038 R14: 00007f118f9e5fa0 R15: 00007ffc6c912878 [ 656.290756][T32072] [ 656.968681][T32113] FAULT_INJECTION: forcing a failure. [ 656.968681][T32113] name failslab, interval 1, probability 0, space 0, times 0 [ 657.023032][T32113] CPU: 0 UID: 0 PID: 32113 Comm: syz.2.4466 Tainted: G U syzkaller #0 PREEMPT(full) [ 657.023059][T32113] Tainted: [U]=USER [ 657.023068][T32113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 657.023077][T32113] Call Trace: [ 657.023082][T32113] [ 657.023088][T32113] dump_stack_lvl+0x16c/0x1f0 [ 657.023111][T32113] should_fail_ex+0x512/0x640 [ 657.023131][T32113] ? __kmalloc_cache_noprof+0x5f/0x780 [ 657.023150][T32113] should_failslab+0xc2/0x120 [ 657.023170][T32113] __kmalloc_cache_noprof+0x72/0x780 [ 657.023186][T32113] ? binder_open+0x148/0xde0 [ 657.023207][T32113] ? binder_open+0x148/0xde0 [ 657.023224][T32113] binder_open+0x148/0xde0 [ 657.023243][T32113] ? __pfx_apparmor_file_open+0x10/0x10 [ 657.023264][T32113] ? __pfx_binder_open+0x10/0x10 [ 657.023283][T32113] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 657.023304][T32113] do_dentry_open+0x982/0x1530 [ 657.023330][T32113] ? __pfx_binder_open+0x10/0x10 [ 657.023352][T32113] vfs_open+0x82/0x3f0 [ 657.023375][T32113] path_openat+0x1de4/0x2cb0 [ 657.023399][T32113] ? __pfx_path_openat+0x10/0x10 [ 657.023421][T32113] do_filp_open+0x20b/0x470 [ 657.023439][T32113] ? __pfx_do_filp_open+0x10/0x10 [ 657.023470][T32113] ? alloc_fd+0x471/0x7d0 [ 657.023491][T32113] do_sys_openat2+0x11b/0x1d0 [ 657.023511][T32113] ? __pfx_do_sys_openat2+0x10/0x10 [ 657.023540][T32113] __x64_sys_openat+0x174/0x210 [ 657.023561][T32113] ? __pfx___x64_sys_openat+0x10/0x10 [ 657.023590][T32113] do_syscall_64+0xcd/0x4b0 [ 657.023609][T32113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 657.023623][T32113] RIP: 0033:0x7fce46d8eec9 [ 657.023636][T32113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 657.023650][T32113] RSP: 002b:00007fce47b6d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 657.023664][T32113] RAX: ffffffffffffffda RBX: 00007fce46fe5fa0 RCX: 00007fce46d8eec9 [ 657.023674][T32113] RDX: 0000000000189160 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 657.023684][T32113] RBP: 00007fce46e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 657.023692][T32113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 657.023701][T32113] R13: 00007fce46fe6038 R14: 00007fce46fe5fa0 R15: 00007ffd746d39e8 [ 657.023719][T32113] [ 657.871423][T32156] netlink: 'syz.2.4473': attribute type 19 has an invalid length. [ 657.950693][T32156] netlink: 226 bytes leftover after parsing attributes in process `syz.2.4473'. [ 658.156675][T32183] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 658.275424][T32187] random: crng reseeded on system resumption [ 658.332145][T32179] netlink: 268 bytes leftover after parsing attributes in process `syz.0.4474'. [ 662.374255][T32351] FAULT_INJECTION: forcing a failure. [ 662.374255][T32351] name failslab, interval 1, probability 0, space 0, times 0 [ 662.587326][T32351] CPU: 0 UID: 0 PID: 32351 Comm: syz.3.4496 Tainted: G U syzkaller #0 PREEMPT(full) [ 662.587355][T32351] Tainted: [U]=USER [ 662.587361][T32351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 662.587371][T32351] Call Trace: [ 662.587376][T32351] [ 662.587383][T32351] dump_stack_lvl+0x16c/0x1f0 [ 662.587406][T32351] should_fail_ex+0x512/0x640 [ 662.587428][T32351] ? __kmalloc_noprof+0xca/0x880 [ 662.587448][T32351] should_failslab+0xc2/0x120 [ 662.587469][T32351] __kmalloc_noprof+0xdd/0x880 [ 662.587484][T32351] ? binder_open+0x168/0xde0 [ 662.587506][T32351] ? binder_open+0x168/0xde0 [ 662.587522][T32351] binder_open+0x168/0xde0 [ 662.587540][T32351] ? __pfx_apparmor_file_open+0x10/0x10 [ 662.587562][T32351] ? __pfx_binder_open+0x10/0x10 [ 662.587581][T32351] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 662.587602][T32351] do_dentry_open+0x982/0x1530 [ 662.587627][T32351] ? __pfx_binder_open+0x10/0x10 [ 662.587649][T32351] vfs_open+0x82/0x3f0 [ 662.587674][T32351] path_openat+0x1de4/0x2cb0 [ 662.587699][T32351] ? __pfx_path_openat+0x10/0x10 [ 662.587720][T32351] do_filp_open+0x20b/0x470 [ 662.587737][T32351] ? __pfx_do_filp_open+0x10/0x10 [ 662.587767][T32351] ? alloc_fd+0x471/0x7d0 [ 662.587787][T32351] do_sys_openat2+0x11b/0x1d0 [ 662.587808][T32351] ? __pfx_do_sys_openat2+0x10/0x10 [ 662.587837][T32351] __x64_sys_openat+0x174/0x210 [ 662.587859][T32351] ? __pfx___x64_sys_openat+0x10/0x10 [ 662.587888][T32351] do_syscall_64+0xcd/0x4b0 [ 662.587907][T32351] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 662.587921][T32351] RIP: 0033:0x7f122338eec9 [ 662.587935][T32351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 662.587948][T32351] RSP: 002b:00007f122428b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 662.587962][T32351] RAX: ffffffffffffffda RBX: 00007f12235e5fa0 RCX: 00007f122338eec9 [ 662.587972][T32351] RDX: 0000000000189160 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 662.587981][T32351] RBP: 00007f1223411f91 R08: 0000000000000000 R09: 0000000000000000 [ 662.587990][T32351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 662.587999][T32351] R13: 00007f12235e6038 R14: 00007f12235e5fa0 R15: 00007ffd25dd4248 [ 662.588019][T32351] [ 663.510861][ T30] audit: type=1800 audit(1626.280:10): pid=32358 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.4497" name="dbroot" dev="configfs" ino=76426 res=0 errno=0 [ 663.976473][T32382] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 664.112756][T32380] netlink: 268 bytes leftover after parsing attributes in process `syz.1.4501'. [ 665.508628][T32443] FAULT_INJECTION: forcing a failure. [ 665.508628][T32443] name failslab, interval 1, probability 0, space 0, times 0 [ 665.580013][T32458] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 665.631803][T32443] CPU: 0 UID: 0 PID: 32443 Comm: syz.1.4507 Tainted: G U syzkaller #0 PREEMPT(full) [ 665.631830][T32443] Tainted: [U]=USER [ 665.631836][T32443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 665.631846][T32443] Call Trace: [ 665.631851][T32443] [ 665.631858][T32443] dump_stack_lvl+0x16c/0x1f0 [ 665.631880][T32443] should_fail_ex+0x512/0x640 [ 665.631901][T32443] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 665.631921][T32443] should_failslab+0xc2/0x120 [ 665.631942][T32443] kmem_cache_alloc_node_noprof+0x78/0x770 [ 665.631958][T32443] ? __alloc_skb+0x2b2/0x380 [ 665.631982][T32443] ? __alloc_skb+0x2b2/0x380 [ 665.631999][T32443] __alloc_skb+0x2b2/0x380 [ 665.632018][T32443] ? __pfx___alloc_skb+0x10/0x10 [ 665.632040][T32443] ? common_file_perm+0x1a9/0x340 [ 665.632058][T32443] vhci_write+0xc1/0x480 [ 665.632076][T32443] vfs_write+0x7d0/0x11d0 [ 665.632094][T32443] ? __pfx_vhci_write+0x10/0x10 [ 665.632112][T32443] ? __pfx_vfs_write+0x10/0x10 [ 665.632126][T32443] ? find_held_lock+0x2b/0x80 [ 665.632156][T32443] ksys_write+0x12a/0x250 [ 665.632172][T32443] ? __pfx_ksys_write+0x10/0x10 [ 665.632193][T32443] do_syscall_64+0xcd/0x4b0 [ 665.632212][T32443] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 665.632227][T32443] RIP: 0033:0x7fcab858eec9 [ 665.632239][T32443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 665.632254][T32443] RSP: 002b:00007fcab9340038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 665.632268][T32443] RAX: ffffffffffffffda RBX: 00007fcab87e5fa0 RCX: 00007fcab858eec9 [ 665.632277][T32443] RDX: 00000000000002db RSI: 0000000000000000 RDI: 00000000000000ca [ 665.632286][T32443] RBP: 00007fcab8611f91 R08: 0000000000000000 R09: 0000000000000000 [ 665.632294][T32443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 665.632303][T32443] R13: 00007fcab87e6038 R14: 00007fcab87e5fa0 R15: 00007ffd9adf03a8 [ 665.632321][T32443] [ 665.835319][ C0] vkms_vblank_simulate: vblank timer overrun [ 666.233964][T32458] netlink: 268 bytes leftover after parsing attributes in process `syz.3.4508'. [ 668.865448][T32551] FAULT_INJECTION: forcing a failure. [ 668.865448][T32551] name failslab, interval 1, probability 0, space 0, times 0 [ 669.191003][T32551] CPU: 0 UID: 0 PID: 32551 Comm: syz.2.4516 Tainted: G U syzkaller #0 PREEMPT(full) [ 669.191036][T32551] Tainted: [U]=USER [ 669.191042][T32551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 669.191054][T32551] Call Trace: [ 669.191060][T32551] [ 669.191066][T32551] dump_stack_lvl+0x16c/0x1f0 [ 669.191090][T32551] should_fail_ex+0x512/0x640 [ 669.191111][T32551] ? __kmalloc_cache_noprof+0x5f/0x780 [ 669.191128][T32551] should_failslab+0xc2/0x120 [ 669.191149][T32551] __kmalloc_cache_noprof+0x72/0x780 [ 669.191164][T32551] ? __do_sys_memfd_create+0x17b/0x8a0 [ 669.191190][T32551] ? __do_sys_memfd_create+0x17b/0x8a0 [ 669.191210][T32551] __do_sys_memfd_create+0x17b/0x8a0 [ 669.191234][T32551] do_syscall_64+0xcd/0x4b0 [ 669.191252][T32551] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 669.191267][T32551] RIP: 0033:0x7fce46d8eec9 [ 669.191279][T32551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 669.191293][T32551] RSP: 002b:00007fce44ff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 669.191307][T32551] RAX: ffffffffffffffda RBX: 00007fce46fe6180 RCX: 00007fce46d8eec9 [ 669.191317][T32551] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000000 [ 669.191326][T32551] RBP: 00007fce46e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 669.191334][T32551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 669.191342][T32551] R13: 00007fce46fe6218 R14: 00007fce46fe6180 R15: 00007ffd746d39e8 [ 669.191361][T32551] [ 669.355350][ C0] vkms_vblank_simulate: vblank timer overrun [ 669.877248][T32595] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 669.953102][T32595] netlink: 268 bytes leftover after parsing attributes in process `syz.3.4525'. [ 670.365786][T32588] Setting dangerous option i915.mitigations - tainting kernel [ 671.031520][T32601] [U]  [ 671.505576][T32647] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(1073742850.0.7), cmd(3) [ 672.557863][T32666] FAULT_INJECTION: forcing a failure. [ 672.557863][T32666] name failslab, interval 1, probability 0, space 0, times 0 [ 672.619121][T32666] CPU: 0 UID: 0 PID: 32666 Comm: syz.0.4535 Tainted: G U syzkaller #0 PREEMPT(full) [ 672.619149][T32666] Tainted: [U]=USER [ 672.619154][T32666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 672.619163][T32666] Call Trace: [ 672.619169][T32666] [ 672.619176][T32666] dump_stack_lvl+0x16c/0x1f0 [ 672.619199][T32666] should_fail_ex+0x512/0x640 [ 672.619220][T32666] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 672.619240][T32666] should_failslab+0xc2/0x120 [ 672.619260][T32666] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 672.619287][T32666] ? __d_alloc+0x32/0xae0 [ 672.619310][T32666] ? __d_alloc+0x32/0xae0 [ 672.619325][T32666] __d_alloc+0x32/0xae0 [ 672.619341][T32666] ? bpf_lsm_inode_permission+0x9/0x10 [ 672.619362][T32666] d_alloc+0x4a/0x1e0 [ 672.619380][T32666] vfs_tmpfile+0x148/0x890 [ 672.619402][T32666] path_openat+0x1683/0x2cb0 [ 672.619425][T32666] ? __pfx_path_openat+0x10/0x10 [ 672.619442][T32666] ? __lock_acquire+0xb97/0x1ce0 [ 672.619466][T32666] do_filp_open+0x20b/0x470 [ 672.619484][T32666] ? __pfx_do_filp_open+0x10/0x10 [ 672.619521][T32666] ? _raw_spin_unlock+0x28/0x50 [ 672.619535][T32666] ? alloc_fd+0x471/0x7d0 [ 672.619555][T32666] do_sys_openat2+0x11b/0x1d0 [ 672.619578][T32666] ? __pfx_do_sys_openat2+0x10/0x10 [ 672.619607][T32666] __x64_sys_open+0x153/0x1e0 [ 672.619628][T32666] ? __pfx___x64_sys_open+0x10/0x10 [ 672.619653][T32666] ? rcu_is_watching+0x12/0xc0 [ 672.619673][T32666] do_syscall_64+0xcd/0x4b0 [ 672.619692][T32666] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 672.619706][T32666] RIP: 0033:0x7f118f78eec9 [ 672.619719][T32666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 672.619741][T32666] RSP: 002b:00007f1190677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 672.619762][T32666] RAX: ffffffffffffffda RBX: 00007f118f9e5fa0 RCX: 00007f118f78eec9 [ 672.619772][T32666] RDX: 0000000000000408 RSI: 0000000000591002 RDI: 0000200000000100 [ 672.619782][T32666] RBP: 00007f118f811f91 R08: 0000000000000000 R09: 0000000000000000 [ 672.619791][T32666] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 672.619800][T32666] R13: 00007f118f9e6038 R14: 00007f118f9e5fa0 R15: 00007ffc6c912878 [ 672.619820][T32666] [ 673.508307][T32702] random: crng reseeded on system resumption [ 674.153809][T32737] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4541'. [ 674.873254][T32758] FAULT_INJECTION: forcing a failure. [ 674.873254][T32758] name failslab, interval 1, probability 0, space 0, times 0 [ 674.915716][T32758] CPU: 0 UID: 0 PID: 32758 Comm: syz.0.4545 Tainted: G U syzkaller #0 PREEMPT(full) [ 674.915745][T32758] Tainted: [U]=USER [ 674.915750][T32758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 674.915759][T32758] Call Trace: [ 674.915764][T32758] [ 674.915771][T32758] dump_stack_lvl+0x16c/0x1f0 [ 674.915795][T32758] should_fail_ex+0x512/0x640 [ 674.915817][T32758] ? __kmalloc_noprof+0xca/0x880 [ 674.915834][T32758] should_failslab+0xc2/0x120 [ 674.915855][T32758] __kmalloc_noprof+0xdd/0x880 [ 674.915869][T32758] ? process_vm_rw_core.constprop.0+0x1d8/0x970 [ 674.915891][T32758] ? process_vm_rw_core.constprop.0+0x1d8/0x970 [ 674.915908][T32758] process_vm_rw_core.constprop.0+0x1d8/0x970 [ 674.915934][T32758] ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10 [ 674.915962][T32758] ? iovec_from_user+0xbb/0x140 [ 674.915985][T32758] process_vm_rw+0x216/0x2c0 [ 674.916003][T32758] ? __pfx_process_vm_rw+0x10/0x10 [ 674.916024][T32758] ? do_writev+0x218/0x340 [ 674.916048][T32758] ? cap_task_prctl+0x2af/0xa80 [ 674.916075][T32758] ? arch_syscall_is_vdso_sigreturn+0xb6/0x230 [ 674.916100][T32758] __x64_sys_process_vm_readv+0xe2/0x1c0 [ 674.916118][T32758] ? syscall_trace_enter+0x5e/0x240 [ 674.916135][T32758] do_syscall_64+0xcd/0x4b0 [ 674.916154][T32758] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 674.916169][T32758] RIP: 0033:0x7f118f78eec9 [ 674.916181][T32758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 674.916195][T32758] RSP: 002b:00007f1190677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136 [ 674.916209][T32758] RAX: ffffffffffffffda RBX: 00007f118f9e5fa0 RCX: 00007f118f78eec9 [ 674.916219][T32758] RDX: 0000040000000001 RSI: 0000200000000080 RDI: 000000000000022b [ 674.916232][T32758] RBP: 00007f118f811f91 R08: 000000000000000a R09: 0000000000000000 [ 674.916241][T32758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 674.916250][T32758] R13: 00007f118f9e6038 R14: 00007f118f9e5fa0 R15: 00007ffc6c912878 [ 674.916268][T32758] [ 676.350850][ T361] netlink: 334 bytes leftover after parsing attributes in process `syz.2.4549'. [ 676.646573][ T369] FAULT_INJECTION: forcing a failure. [ 676.646573][ T369] name fail_futex, interval 1, probability 0, space 0, times 0 [ 676.726122][ T369] CPU: 0 UID: 0 PID: 369 Comm: syz.3.4551 Tainted: G U syzkaller #0 PREEMPT(full) [ 676.726148][ T369] Tainted: [U]=USER [ 676.726153][ T369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 676.726162][ T369] Call Trace: [ 676.726167][ T369] [ 676.726174][ T369] dump_stack_lvl+0x16c/0x1f0 [ 676.726196][ T369] should_fail_ex+0x512/0x640 [ 676.726219][ T369] get_futex_key+0x1d0/0x1560 [ 676.726241][ T369] ? find_held_lock+0x2b/0x80 [ 676.726258][ T369] ? __pfx_get_futex_key+0x10/0x10 [ 676.726280][ T369] ? tomoyo_path_number_perm+0x18d/0x580 [ 676.726305][ T369] futex_wake+0xea/0x530 [ 676.726321][ T369] ? __pfx_futex_wake+0x10/0x10 [ 676.726339][ T369] ? do_vfs_ioctl+0x128/0x14f0 [ 676.726363][ T369] do_futex+0x1e3/0x350 [ 676.726383][ T369] ? __pfx_do_futex+0x10/0x10 [ 676.726410][ T369] ? find_held_lock+0x2b/0x80 [ 676.726425][ T369] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 676.726443][ T369] __x64_sys_futex+0x1e0/0x4c0 [ 676.726465][ T369] ? __fget_files+0x20e/0x3c0 [ 676.726480][ T369] ? __pfx___x64_sys_futex+0x10/0x10 [ 676.726502][ T369] ? fput+0x9b/0xd0 [ 676.726525][ T369] do_syscall_64+0xcd/0x4b0 [ 676.726543][ T369] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 676.726558][ T369] RIP: 0033:0x7f122338eec9 [ 676.726570][ T369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 676.726584][ T369] RSP: 002b:00007f122426a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 676.726598][ T369] RAX: ffffffffffffffda RBX: 00007f12235e6098 RCX: 00007f122338eec9 [ 676.726607][ T369] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f12235e609c [ 676.726616][ T369] RBP: 00007f12235e6090 R08: 00007f122428c000 R09: 0000000000000000 [ 676.726625][ T369] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 676.726634][ T369] R13: 00007f12235e6128 R14: 00007ffd25dd4160 R15: 00007ffd25dd4248 [ 676.726652][ T369] [ 677.022627][ T376] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4552'. [ 677.845982][ T430] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 678.137722][ T429] netlink: 268 bytes leftover after parsing attributes in process `syz.1.4556'. [ 678.364760][ T30] audit: type=1800 audit(1641.190:11): pid=361 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.4549" name="dbroot" dev="configfs" ino=77785 res=0 errno=0 [ 679.977594][ T519] random: crng reseeded on system resumption [ 680.364628][ T537] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 680.612953][ T535] netlink: 268 bytes leftover after parsing attributes in process `syz.2.4568'. [ 680.909609][ T549] usb usb37: usbfs: process 549 (syz.1.4570) did not claim interface 0 before use [ 681.389483][ T568] FAULT_INJECTION: forcing a failure. [ 681.389483][ T568] name failslab, interval 1, probability 0, space 0, times 0 [ 681.560129][ T568] CPU: 0 UID: 0 PID: 568 Comm: syz.1.4572 Tainted: G U syzkaller #0 PREEMPT(full) [ 681.560162][ T568] Tainted: [U]=USER [ 681.560170][ T568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 681.560179][ T568] Call Trace: [ 681.560185][ T568] [ 681.560192][ T568] dump_stack_lvl+0x16c/0x1f0 [ 681.560216][ T568] should_fail_ex+0x512/0x640 [ 681.560236][ T568] ? __kmalloc_cache_noprof+0x5f/0x780 [ 681.560254][ T568] should_failslab+0xc2/0x120 [ 681.560276][ T568] __kmalloc_cache_noprof+0x72/0x780 [ 681.560291][ T568] ? ptp_open+0xe4/0x550 [ 681.560314][ T568] ? ptp_open+0xe4/0x550 [ 681.560331][ T568] ptp_open+0xe4/0x550 [ 681.560353][ T568] ? __pfx_ptp_open+0x10/0x10 [ 681.560377][ T568] ? __pfx_ptp_open+0x10/0x10 [ 681.560396][ T568] posix_clock_open+0x178/0x290 [ 681.560416][ T568] ? __pfx_posix_clock_open+0x10/0x10 [ 681.560434][ T568] chrdev_open+0x234/0x6a0 [ 681.560452][ T568] ? __pfx_apparmor_file_open+0x10/0x10 [ 681.560472][ T568] ? __pfx_chrdev_open+0x10/0x10 [ 681.560491][ T568] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 681.560512][ T568] do_dentry_open+0x982/0x1530 [ 681.560530][ T568] ? __pfx_chrdev_open+0x10/0x10 [ 681.560551][ T568] vfs_open+0x82/0x3f0 [ 681.560574][ T568] path_openat+0x1de4/0x2cb0 [ 681.560597][ T568] ? __pfx_path_openat+0x10/0x10 [ 681.560619][ T568] do_filp_open+0x20b/0x470 [ 681.560636][ T568] ? __pfx_do_filp_open+0x10/0x10 [ 681.560666][ T568] ? alloc_fd+0x471/0x7d0 [ 681.560687][ T568] do_sys_openat2+0x11b/0x1d0 [ 681.560708][ T568] ? __pfx_do_sys_openat2+0x10/0x10 [ 681.560737][ T568] __x64_sys_openat+0x174/0x210 [ 681.560759][ T568] ? __pfx___x64_sys_openat+0x10/0x10 [ 681.560788][ T568] do_syscall_64+0xcd/0x4b0 [ 681.560807][ T568] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 681.560822][ T568] RIP: 0033:0x7fcab858eec9 [ 681.560834][ T568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 681.560848][ T568] RSP: 002b:00007fcab67f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 681.560863][ T568] RAX: ffffffffffffffda RBX: 00007fcab87e6090 RCX: 00007fcab858eec9 [ 681.560873][ T568] RDX: 0000000000000440 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 681.560882][ T568] RBP: 00007fcab8611f91 R08: 0000000000000000 R09: 0000000000000000 [ 681.560890][ T568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 681.560899][ T568] R13: 00007fcab87e6128 R14: 00007fcab87e6090 R15: 00007ffd9adf03a8 [ 681.560919][ T568] [ 682.506853][ T630] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 682.648817][ T619] netlink: 268 bytes leftover after parsing attributes in process `syz.2.4576'. [ 682.870764][ T639] ima: policy update failed [ 682.897649][ T30] audit: type=1802 audit(1645.710:12): pid=639 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.4577" res=0 errno=0 [ 683.574370][ T659] FAULT_INJECTION: forcing a failure. [ 683.574370][ T659] name failslab, interval 1, probability 0, space 0, times 0 [ 683.761828][ T659] CPU: 0 UID: 0 PID: 659 Comm: syz.3.4580 Tainted: G U syzkaller #0 PREEMPT(full) [ 683.761855][ T659] Tainted: [U]=USER [ 683.761861][ T659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 683.761870][ T659] Call Trace: [ 683.761875][ T659] [ 683.761882][ T659] dump_stack_lvl+0x16c/0x1f0 [ 683.761904][ T659] should_fail_ex+0x512/0x640 [ 683.761925][ T659] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 683.761944][ T659] should_failslab+0xc2/0x120 [ 683.761965][ T659] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 683.761983][ T659] ? __d_alloc+0x32/0xae0 [ 683.762004][ T659] ? __d_alloc+0x32/0xae0 [ 683.762021][ T659] __d_alloc+0x32/0xae0 [ 683.762037][ T659] ? bpf_lsm_inode_permission+0x9/0x10 [ 683.762056][ T659] d_alloc+0x4a/0x1e0 [ 683.762074][ T659] vfs_tmpfile+0x148/0x890 [ 683.762095][ T659] path_openat+0x1683/0x2cb0 [ 683.762121][ T659] ? __pfx_path_openat+0x10/0x10 [ 683.762139][ T659] ? __lock_acquire+0xb97/0x1ce0 [ 683.762163][ T659] do_filp_open+0x20b/0x470 [ 683.762180][ T659] ? __pfx_do_filp_open+0x10/0x10 [ 683.762211][ T659] ? _raw_spin_unlock+0x28/0x50 [ 683.762226][ T659] ? alloc_fd+0x471/0x7d0 [ 683.762247][ T659] do_sys_openat2+0x11b/0x1d0 [ 683.762268][ T659] ? __pfx_do_sys_openat2+0x10/0x10 [ 683.762297][ T659] __x64_sys_open+0x153/0x1e0 [ 683.762318][ T659] ? __pfx___x64_sys_open+0x10/0x10 [ 683.762343][ T659] ? rcu_is_watching+0x12/0xc0 [ 683.762363][ T659] do_syscall_64+0xcd/0x4b0 [ 683.762381][ T659] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 683.762396][ T659] RIP: 0033:0x7f122338eec9 [ 683.762408][ T659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 683.762422][ T659] RSP: 002b:00007f122428b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 683.762436][ T659] RAX: ffffffffffffffda RBX: 00007f12235e5fa0 RCX: 00007f122338eec9 [ 683.762446][ T659] RDX: 0000000000000408 RSI: 0000000000591002 RDI: 0000200000000100 [ 683.762455][ T659] RBP: 00007f1223411f91 R08: 0000000000000000 R09: 0000000000000000 [ 683.762464][ T659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 683.762472][ T659] R13: 00007f12235e6038 R14: 00007f12235e5fa0 R15: 00007ffd25dd4248 [ 683.762491][ T659] [ 684.773806][ T725] random: crng reseeded on system resumption [ 685.855088][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 685.861507][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 686.142850][ T758] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 687.100686][ T820] FAULT_INJECTION: forcing a failure. [ 687.100686][ T820] name failslab, interval 1, probability 0, space 0, times 0 [ 687.169338][ T820] CPU: 0 UID: 0 PID: 820 Comm: syz.1.4597 Tainted: G U syzkaller #0 PREEMPT(full) [ 687.169365][ T820] Tainted: [U]=USER [ 687.169371][ T820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 687.169379][ T820] Call Trace: [ 687.169385][ T820] [ 687.169391][ T820] dump_stack_lvl+0x16c/0x1f0 [ 687.169414][ T820] should_fail_ex+0x512/0x640 [ 687.169434][ T820] ? __kmalloc_cache_noprof+0x5f/0x780 [ 687.169452][ T820] should_failslab+0xc2/0x120 [ 687.169472][ T820] __kmalloc_cache_noprof+0x72/0x780 [ 687.169487][ T820] ? binder_open+0x148/0xde0 [ 687.169509][ T820] ? binder_open+0x148/0xde0 [ 687.169526][ T820] binder_open+0x148/0xde0 [ 687.169550][ T820] ? __pfx_apparmor_file_open+0x10/0x10 [ 687.169571][ T820] ? __pfx_binder_open+0x10/0x10 [ 687.169590][ T820] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 687.169612][ T820] do_dentry_open+0x982/0x1530 [ 687.169631][ T820] ? __pfx_binder_open+0x10/0x10 [ 687.169653][ T820] vfs_open+0x82/0x3f0 [ 687.169676][ T820] path_openat+0x1de4/0x2cb0 [ 687.169699][ T820] ? __pfx_path_openat+0x10/0x10 [ 687.169720][ T820] do_filp_open+0x20b/0x470 [ 687.169737][ T820] ? __pfx_do_filp_open+0x10/0x10 [ 687.169766][ T820] ? alloc_fd+0x471/0x7d0 [ 687.169787][ T820] do_sys_openat2+0x11b/0x1d0 [ 687.169807][ T820] ? __pfx_do_sys_openat2+0x10/0x10 [ 687.169836][ T820] __x64_sys_openat+0x174/0x210 [ 687.169857][ T820] ? __pfx___x64_sys_openat+0x10/0x10 [ 687.169885][ T820] do_syscall_64+0xcd/0x4b0 [ 687.169905][ T820] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 687.169919][ T820] RIP: 0033:0x7fcab858eec9 [ 687.169932][ T820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 687.169947][ T820] RSP: 002b:00007fcab9340038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 687.169961][ T820] RAX: ffffffffffffffda RBX: 00007fcab87e5fa0 RCX: 00007fcab858eec9 [ 687.169971][ T820] RDX: 0000000000189160 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 687.169980][ T820] RBP: 00007fcab8611f91 R08: 0000000000000000 R09: 0000000000000000 [ 687.169989][ T820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 687.169998][ T820] R13: 00007fcab87e6038 R14: 00007fcab87e5fa0 R15: 00007ffd9adf03a8 [ 687.170016][ T820] [ 687.905728][ T842] FAULT_INJECTION: forcing a failure. [ 687.905728][ T842] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 687.935874][ T842] CPU: 0 UID: 0 PID: 842 Comm: syz.1.4598 Tainted: G U syzkaller #0 PREEMPT(full) [ 687.935899][ T842] Tainted: [U]=USER [ 687.935904][ T842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 687.935913][ T842] Call Trace: [ 687.935918][ T842] [ 687.935925][ T842] dump_stack_lvl+0x16c/0x1f0 [ 687.935946][ T842] should_fail_ex+0x512/0x640 [ 687.935970][ T842] should_fail_alloc_page+0xe7/0x130 [ 687.935992][ T842] prepare_alloc_pages+0x3c2/0x610 [ 687.936014][ T842] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 687.936034][ T842] ? __lock_acquire+0x62e/0x1ce0 [ 687.936060][ T842] ? __lock_acquire+0x62e/0x1ce0 [ 687.936080][ T842] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 687.936105][ T842] ? find_held_lock+0x2b/0x80 [ 687.936122][ T842] ? is_bpf_text_address+0x8a/0x1a0 [ 687.936143][ T842] ? bpf_ksym_find+0x124/0x1c0 [ 687.936158][ T842] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 687.936175][ T842] ? policy_nodemask+0xea/0x4e0 [ 687.936196][ T842] alloc_pages_mpol+0x1fb/0x550 [ 687.936216][ T842] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 687.936241][ T842] folio_alloc_mpol_noprof+0x36/0x2f0 [ 687.936264][ T842] shmem_alloc_folio+0x135/0x160 [ 687.936288][ T842] shmem_alloc_and_add_folio+0x499/0xc20 [ 687.936307][ T842] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 687.936324][ T842] ? shmem_allowable_huge_orders+0xd4/0x3f0 [ 687.936344][ T842] shmem_get_folio_gfp+0x67f/0x1610 [ 687.936363][ T842] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 687.936379][ T842] ? filemap_map_pages+0xe01/0x1b70 [ 687.936398][ T842] shmem_fault+0x1fe/0xa30 [ 687.936414][ T842] ? __pfx_shmem_fault+0x10/0x10 [ 687.936431][ T842] ? rcu_is_watching+0x12/0xc0 [ 687.936448][ T842] ? __pfx_filemap_map_pages+0x10/0x10 [ 687.936468][ T842] ? __pfx_filemap_map_pages+0x10/0x10 [ 687.936486][ T842] __do_fault+0x10a/0x490 [ 687.936504][ T842] ? __pfx_filemap_map_pages+0x10/0x10 [ 687.936517][ T842] do_pte_missing+0xf4a/0x3ba0 [ 687.936531][ T842] ? __thp_vma_allowable_orders+0x1c8/0xcd0 [ 687.936554][ T842] ? __pmd_alloc+0x64f/0x8b0 [ 687.936575][ T842] __handle_mm_fault+0x1556/0x2aa0 [ 687.936591][ T842] ? mt_find+0x3e2/0xa20 [ 687.936610][ T842] ? __pfx___handle_mm_fault+0x10/0x10 [ 687.936622][ T842] ? __pfx_mt_find+0x10/0x10 [ 687.936650][ T842] ? find_vma+0xbf/0x140 [ 687.936667][ T842] ? __pfx_find_vma+0x10/0x10 [ 687.936686][ T842] handle_mm_fault+0x589/0xd10 [ 687.936701][ T842] ? trace_raw_output_exceptions+0x141/0x150 [ 687.936719][ T842] do_user_addr_fault+0x7a6/0x1370 [ 687.936734][ T842] ? __pfx___schedule+0x10/0x10 [ 687.936750][ T842] ? rcu_is_watching+0x12/0xc0 [ 687.936769][ T842] exc_page_fault+0x5c/0xb0 [ 687.936785][ T842] asm_exc_page_fault+0x26/0x30 [ 687.936798][ T842] RIP: 0010:copy_iovec_from_user+0x84/0x170 [ 687.936820][ T842] Code: e8 a1 b6 1d fd 4d 85 ff 0f 85 e5 00 00 00 e8 e3 bb 1d fd 0f 01 cb 0f ae e8 49 bf 00 00 00 00 00 fc ff df e8 ce bb 1d fd 31 db <48> 8b 45 08 31 ff 89 de 49 89 c6 e8 fc b6 1d fd 85 db 0f 85 aa 00 [ 687.936834][ T842] RSP: 0018:ffffc9000c5b7b38 EFLAGS: 00050246 [ 687.936845][ T842] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff849cd6ef [ 687.936855][ T842] RDX: ffff888021755ac0 RSI: ffffffff849cd712 RDI: 0000000000000006 [ 687.936864][ T842] RBP: 0000000000000000 R08: 0000000000000006 R09: 0000000000000000 [ 687.936872][ T842] R10: 0000000000000050 R11: 0000000000000000 R12: ffffc9000c5b7d70 [ 687.936881][ T842] R13: 0000000000000005 R14: 00007ffffffff000 R15: dffffc0000000000 [ 687.936895][ T842] ? copy_iovec_from_user+0x5f/0x170 [ 687.936914][ T842] ? copy_iovec_from_user+0x82/0x170 [ 687.936936][ T842] ? copy_iovec_from_user+0x82/0x170 [ 687.936957][ T842] iovec_from_user+0xa2/0x140 [ 687.936981][ T842] __import_iovec+0x88/0x650 [ 687.937006][ T842] import_iovec+0x86/0xb0 [ 687.937028][ T842] vfs_writev+0x19b/0xde0 [ 687.937049][ T842] ? __pfx_vfs_writev+0x10/0x10 [ 687.937078][ T842] ? __fget_files+0x20e/0x3c0 [ 687.937099][ T842] ? do_pwritev+0x1a6/0x270 [ 687.937113][ T842] do_pwritev+0x1a6/0x270 [ 687.937128][ T842] ? __pfx_do_pwritev+0x10/0x10 [ 687.937149][ T842] do_syscall_64+0xcd/0x4b0 [ 687.937167][ T842] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 687.937181][ T842] RIP: 0033:0x7fcab858eec9 [ 687.937193][ T842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 687.937205][ T842] RSP: 002b:00007fcab9340038 EFLAGS: 00000246 ORIG_RAX: 0000000000000128 [ 687.937218][ T842] RAX: ffffffffffffffda RBX: 00007fcab87e5fa0 RCX: 00007fcab858eec9 [ 687.937227][ T842] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 687.937235][ T842] RBP: 00007fcab8611f91 R08: 0000000000000009 R09: 0000000000000000 [ 687.937244][ T842] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 687.937252][ T842] R13: 00007fcab87e6038 R14: 00007fcab87e5fa0 R15: 00007ffd9adf03a8 [ 687.937271][ T842] [ 689.276409][ T926] FAULT_INJECTION: forcing a failure. [ 689.276409][ T926] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 689.352885][ T926] CPU: 0 UID: 0 PID: 926 Comm: syz.3.4605 Tainted: G U syzkaller #0 PREEMPT(full) [ 689.352911][ T926] Tainted: [U]=USER [ 689.352916][ T926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 689.352924][ T926] Call Trace: [ 689.352929][ T926] [ 689.352935][ T926] dump_stack_lvl+0x16c/0x1f0 [ 689.352957][ T926] should_fail_ex+0x512/0x640 [ 689.352980][ T926] should_fail_alloc_page+0xe7/0x130 [ 689.353002][ T926] prepare_alloc_pages+0x3c2/0x610 [ 689.353021][ T926] ? find_held_lock+0x2b/0x80 [ 689.353040][ T926] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 689.353059][ T926] ? up_write+0x1b2/0x520 [ 689.353075][ T926] ? process_measurement+0x1e6/0x23e0 [ 689.353097][ T926] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 689.353125][ T926] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 689.353142][ T926] ? policy_nodemask+0xea/0x4e0 [ 689.353164][ T926] alloc_pages_mpol+0x1fb/0x550 [ 689.353185][ T926] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 689.353213][ T926] alloc_pages_noprof+0x131/0x390 [ 689.353233][ T926] __pmd_alloc+0x3b/0x8b0 [ 689.353255][ T926] __handle_mm_fault+0xada/0x2aa0 [ 689.353271][ T926] ? mt_find+0x3e2/0xa20 [ 689.353291][ T926] ? __pfx___handle_mm_fault+0x10/0x10 [ 689.353303][ T926] ? __pfx_mt_find+0x10/0x10 [ 689.353331][ T926] ? find_vma+0xbf/0x140 [ 689.353348][ T926] ? __pfx_find_vma+0x10/0x10 [ 689.353374][ T926] handle_mm_fault+0x589/0xd10 [ 689.353388][ T926] ? trace_raw_output_exceptions+0x141/0x150 [ 689.353406][ T926] do_user_addr_fault+0x7a6/0x1370 [ 689.353423][ T926] ? rcu_is_watching+0x12/0xc0 [ 689.353443][ T926] exc_page_fault+0x5c/0xb0 [ 689.353460][ T926] asm_exc_page_fault+0x26/0x30 [ 689.353474][ T926] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 689.353496][ T926] Code: c4 10 e9 04 24 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 cd 23 04 00 66 66 [ 689.353510][ T926] RSP: 0018:ffffc9000c3d7d70 EFLAGS: 00050202 [ 689.353522][ T926] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000004 [ 689.353531][ T926] RDX: fffff5200187afbc RSI: 0000000000000000 RDI: ffffc9000c3d7de0 [ 689.353540][ T926] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff5200187afbc [ 689.353549][ T926] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000 [ 689.353557][ T926] R13: ffffc9000c3d7de0 R14: 0000000000000000 R15: 0000000000000000 [ 689.353575][ T926] _copy_from_user+0x98/0xd0 [ 689.353597][ T926] do_sock_getsockopt+0x3ca/0x440 [ 689.353614][ T926] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 689.353628][ T926] ? __fget_files+0x204/0x3c0 [ 689.353652][ T926] __sys_getsockopt+0x123/0x1b0 [ 689.353676][ T926] __x64_sys_getsockopt+0xbd/0x160 [ 689.353694][ T926] ? do_syscall_64+0x91/0x4b0 [ 689.353711][ T926] ? lockdep_hardirqs_on+0x7c/0x110 [ 689.353726][ T926] do_syscall_64+0xcd/0x4b0 [ 689.353744][ T926] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 689.353758][ T926] RIP: 0033:0x7f122338eec9 [ 689.353769][ T926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 689.353782][ T926] RSP: 002b:00007f122428b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 689.353794][ T926] RAX: ffffffffffffffda RBX: 00007f12235e5fa0 RCX: 00007f122338eec9 [ 689.353803][ T926] RDX: 0000000000000012 RSI: 0000000000000084 RDI: 0000000000000003 [ 689.353812][ T926] RBP: 00007f122428b090 R08: 0000000000000000 R09: 0000000000000000 [ 689.353820][ T926] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 689.353828][ T926] R13: 00007f12235e6038 R14: 00007f12235e5fa0 R15: 00007ffd25dd4248 [ 689.353847][ T926] [ 693.108930][ T1163] random: crng reseeded on system resumption [ 694.409644][ T1210] netlink: 334 bytes leftover after parsing attributes in process `syz.3.4620'. [ 696.295973][ T30] audit: type=1800 audit(4294967304.610:13): pid=1281 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.4624" name="dbroot" dev="configfs" ino=79580 res=0 errno=0 [ 696.540593][ T1289] FAULT_INJECTION: forcing a failure. [ 696.540593][ T1289] name failslab, interval 1, probability 0, space 0, times 0 [ 696.709749][ T1289] CPU: 0 UID: 0 PID: 1289 Comm: syz.1.4628 Tainted: G U syzkaller #0 PREEMPT(full) [ 696.709776][ T1289] Tainted: [U]=USER [ 696.709782][ T1289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 696.709792][ T1289] Call Trace: [ 696.709798][ T1289] [ 696.709804][ T1289] dump_stack_lvl+0x16c/0x1f0 [ 696.709827][ T1289] should_fail_ex+0x512/0x640 [ 696.709848][ T1289] ? __kmalloc_noprof+0xca/0x880 [ 696.709865][ T1289] should_failslab+0xc2/0x120 [ 696.709885][ T1289] __kmalloc_noprof+0xdd/0x880 [ 696.709900][ T1289] ? binder_open+0x168/0xde0 [ 696.709921][ T1289] ? binder_open+0x168/0xde0 [ 696.709937][ T1289] binder_open+0x168/0xde0 [ 696.709955][ T1289] ? __pfx_apparmor_file_open+0x10/0x10 [ 696.709976][ T1289] ? __pfx_binder_open+0x10/0x10 [ 696.710003][ T1289] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 696.710024][ T1289] do_dentry_open+0x982/0x1530 [ 696.710044][ T1289] ? __pfx_binder_open+0x10/0x10 [ 696.710066][ T1289] vfs_open+0x82/0x3f0 [ 696.710092][ T1289] path_openat+0x1de4/0x2cb0 [ 696.710115][ T1289] ? __pfx_path_openat+0x10/0x10 [ 696.710137][ T1289] do_filp_open+0x20b/0x470 [ 696.710153][ T1289] ? __pfx_do_filp_open+0x10/0x10 [ 696.710183][ T1289] ? alloc_fd+0x471/0x7d0 [ 696.710203][ T1289] do_sys_openat2+0x11b/0x1d0 [ 696.710224][ T1289] ? __pfx_do_sys_openat2+0x10/0x10 [ 696.710252][ T1289] __x64_sys_openat+0x174/0x210 [ 696.710274][ T1289] ? __pfx___x64_sys_openat+0x10/0x10 [ 696.710303][ T1289] do_syscall_64+0xcd/0x4b0 [ 696.710322][ T1289] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 696.710337][ T1289] RIP: 0033:0x7fcab858eec9 [ 696.710349][ T1289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 696.710364][ T1289] RSP: 002b:00007fcab9340038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 696.710378][ T1289] RAX: ffffffffffffffda RBX: 00007fcab87e5fa0 RCX: 00007fcab858eec9 [ 696.710388][ T1289] RDX: 0000000000189160 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 696.710397][ T1289] RBP: 00007fcab8611f91 R08: 0000000000000000 R09: 0000000000000000 [ 696.710406][ T1289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 696.710415][ T1289] R13: 00007fcab87e6038 R14: 00007fcab87e5fa0 R15: 00007ffd9adf03a8 [ 696.710433][ T1289] [ 700.303640][ T1494] zswap: compressor 000 not available [ 701.829425][ T1578] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 702.176820][ T1578] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4640'. [ 702.236155][ T1586] netlink: 13 bytes leftover after parsing attributes in process `syz.2.4640'. [ 702.604577][ T1545] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4638'. [ 703.728298][ T30] audit: type=1800 audit(4294967312.040:14): pid=1650 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.4649" name="members" dev="configfs" ino=80259 res=0 errno=0 [ 703.811806][ T1650] netlink: 252 bytes leftover after parsing attributes in process `syz.1.4649'. [ 703.891787][ T1650] netlink: 252 bytes leftover after parsing attributes in process `syz.1.4649'. [ 705.084644][ T1708] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4656'. [ 705.117525][ T1708] netlink: 354 bytes leftover after parsing attributes in process `syz.0.4656'. [ 705.924380][ T1770] FAULT_INJECTION: forcing a failure. [ 705.924380][ T1770] name failslab, interval 1, probability 0, space 0, times 0 [ 705.968837][ T1770] CPU: 0 UID: 0 PID: 1770 Comm: syz.0.4660 Tainted: G U syzkaller #0 PREEMPT(full) [ 705.968865][ T1770] Tainted: [U]=USER [ 705.968870][ T1770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 705.968880][ T1770] Call Trace: [ 705.968885][ T1770] [ 705.968892][ T1770] dump_stack_lvl+0x16c/0x1f0 [ 705.968921][ T1770] should_fail_ex+0x512/0x640 [ 705.968942][ T1770] ? __kmalloc_noprof+0xca/0x880 [ 705.968959][ T1770] should_failslab+0xc2/0x120 [ 705.968981][ T1770] __kmalloc_noprof+0xdd/0x880 [ 705.968995][ T1770] ? binder_open+0x168/0xde0 [ 705.969017][ T1770] ? binder_open+0x168/0xde0 [ 705.969033][ T1770] binder_open+0x168/0xde0 [ 705.969051][ T1770] ? __pfx_apparmor_file_open+0x10/0x10 [ 705.969072][ T1770] ? __pfx_binder_open+0x10/0x10 [ 705.969091][ T1770] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 705.969111][ T1770] do_dentry_open+0x982/0x1530 [ 705.969130][ T1770] ? __pfx_binder_open+0x10/0x10 [ 705.969151][ T1770] vfs_open+0x82/0x3f0 [ 705.969174][ T1770] path_openat+0x1de4/0x2cb0 [ 705.969197][ T1770] ? __pfx_path_openat+0x10/0x10 [ 705.969218][ T1770] do_filp_open+0x20b/0x470 [ 705.969235][ T1770] ? __pfx_do_filp_open+0x10/0x10 [ 705.969265][ T1770] ? alloc_fd+0x471/0x7d0 [ 705.969285][ T1770] do_sys_openat2+0x11b/0x1d0 [ 705.969306][ T1770] ? __pfx_do_sys_openat2+0x10/0x10 [ 705.969334][ T1770] __x64_sys_openat+0x174/0x210 [ 705.969360][ T1770] ? __pfx___x64_sys_openat+0x10/0x10 [ 705.969391][ T1770] do_syscall_64+0xcd/0x4b0 [ 705.969411][ T1770] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 705.969426][ T1770] RIP: 0033:0x7f118f78eec9 [ 705.969439][ T1770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 705.969453][ T1770] RSP: 002b:00007f1190677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 705.969467][ T1770] RAX: ffffffffffffffda RBX: 00007f118f9e5fa0 RCX: 00007f118f78eec9 [ 705.969477][ T1770] RDX: 0000000000189160 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 705.969487][ T1770] RBP: 00007f118f811f91 R08: 0000000000000000 R09: 0000000000000000 [ 705.969495][ T1770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 705.969504][ T1770] R13: 00007f118f9e6038 R14: 00007f118f9e5fa0 R15: 00007ffc6c912878 [ 705.969523][ T1770] [ 705.972097][ T1775] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 707.385251][ T30] audit: type=1800 audit(4294967315.700:15): pid=1768 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.4659" name="lu_gp_id" dev="configfs" ino=80593 res=0 errno=0 [ 707.545901][ T1773] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 707.570696][ T1773] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 707.603965][ T1773] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 707.636064][ T1773] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 707.693159][ T1773] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 707.797348][ T1771] netlink: 268 bytes leftover after parsing attributes in process `syz.1.4657'.