last executing test programs: 4.068888676s ago: executing program 2 (id=97): openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self', 0x800, 0x0) 3.967828404s ago: executing program 2 (id=103): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nvme-fabrics', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nvme-fabrics', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nvme-fabrics', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nvme-fabrics', 0x800, 0x0) 3.865765286s ago: executing program 2 (id=107): socket$nl_crypto(0x10, 0x3, 0x15) 3.742390026s ago: executing program 2 (id=110): vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0) 3.664432167s ago: executing program 2 (id=114): rt_sigreturn() 3.593212952s ago: executing program 0 (id=117): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 3.474319275s ago: executing program 1 (id=120): pivot_root(&(0x7f0000000000), &(0x7f0000000000)) 3.474053012s ago: executing program 0 (id=121): clock_getres(0x0, &(0x7f0000000000)) 3.463214994s ago: executing program 1 (id=122): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhci', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhci', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vhci', 0x800, 0x0) 3.354409187s ago: executing program 0 (id=124): syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) 3.35409298s ago: executing program 1 (id=126): fchownat(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0, 0x0) 3.307970188s ago: executing program 0 (id=128): openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/reclaim', 0x1, 0x0) 3.234507229s ago: executing program 1 (id=130): readv(0xffffffffffffffff, &(0x7f0000000000), 0x0) 3.214719417s ago: executing program 0 (id=133): capget(&(0x7f0000000000), &(0x7f0000000000)) 3.146292565s ago: executing program 3 (id=134): openat(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/damon/target_ids', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/damon/target_ids', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/damon/target_ids', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/damon/target_ids', 0x800, 0x0) 3.146175286s ago: executing program 1 (id=135): openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card0/oss_mixer', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/card0/oss_mixer', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/asound/card0/oss_mixer', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/card0/oss_mixer', 0x800, 0x0) 2.10295282s ago: executing program 3 (id=137): mmap(&(0x7efffffff000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x1000000)=nil, 0x1000000, 0x7, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0001000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) 1.392952484s ago: executing program 0 (id=138): mmap(&(0x7efffffff000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x1000000)=nil, 0x1000000, 0x7, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0001000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) 1.128063584s ago: executing program 1 (id=139): mmap(&(0x7efffffff000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x1000000)=nil, 0x1000000, 0x7, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0001000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) 982.47415ms ago: executing program 4 (id=156): epoll_create1(0x0) 917.390973ms ago: executing program 4 (id=157): openat(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/damon/schemes', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/damon/schemes', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/damon/schemes', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/damon/schemes', 0x800, 0x0) 881.500498ms ago: executing program 3 (id=148): pwritev(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0, 0x0) 811.865069ms ago: executing program 3 (id=159): lstat(&(0x7f0000000000), &(0x7f0000000000)) 767.319712ms ago: executing program 4 (id=160): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cdrom', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cdrom', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cdrom', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cdrom', 0x800, 0x0) 721.293175ms ago: executing program 3 (id=161): getresuid(&(0x7f0000000000), &(0x7f0000000000), &(0x7f0000000000)) 213.97729ms ago: executing program 3 (id=163): syz_open_dev$dricontrol(&(0x7f0000000040), 0x0, 0x0) syz_open_dev$dricontrol(&(0x7f0000000080), 0x0, 0x1) syz_open_dev$dricontrol(&(0x7f00000000c0), 0x0, 0x2) syz_open_dev$dricontrol(&(0x7f0000000100), 0x0, 0x800) syz_open_dev$dricontrol(&(0x7f0000000140), 0x1, 0x0) syz_open_dev$dricontrol(&(0x7f0000000180), 0x1, 0x1) syz_open_dev$dricontrol(&(0x7f00000001c0), 0x1, 0x2) syz_open_dev$dricontrol(&(0x7f0000000200), 0x1, 0x800) syz_open_dev$dricontrol(&(0x7f0000000240), 0x2, 0x0) syz_open_dev$dricontrol(&(0x7f0000000280), 0x2, 0x1) syz_open_dev$dricontrol(&(0x7f00000002c0), 0x2, 0x2) syz_open_dev$dricontrol(&(0x7f0000000300), 0x2, 0x800) syz_open_dev$dricontrol(&(0x7f0000000340), 0x3, 0x0) syz_open_dev$dricontrol(&(0x7f0000000380), 0x3, 0x1) syz_open_dev$dricontrol(&(0x7f00000003c0), 0x3, 0x2) syz_open_dev$dricontrol(&(0x7f0000000400), 0x3, 0x800) syz_open_dev$dricontrol(&(0x7f0000000440), 0x4, 0x0) syz_open_dev$dricontrol(&(0x7f0000000480), 0x4, 0x1) syz_open_dev$dricontrol(&(0x7f00000004c0), 0x4, 0x2) syz_open_dev$dricontrol(&(0x7f0000000500), 0x4, 0x800) 213.861678ms ago: executing program 4 (id=164): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fb1', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fb1', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb1', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb1', 0x800, 0x0) 205.249312ms ago: executing program 2 (id=165): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttynull', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttynull', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttynull', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ttynull', 0x800, 0x0) 104.33599ms ago: executing program 4 (id=166): tee(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) 0s ago: executing program 4 (id=168): syz_open_dev$usbfs(&(0x7f0000000040), 0x1, 0x0) syz_open_dev$usbfs(&(0x7f0000000080), 0x1, 0x1) syz_open_dev$usbfs(&(0x7f00000000c0), 0x1, 0x2) syz_open_dev$usbfs(&(0x7f0000000100), 0x1, 0x800) syz_open_dev$usbfs(&(0x7f0000000140), 0xb, 0x0) syz_open_dev$usbfs(&(0x7f0000000180), 0xb, 0x1) syz_open_dev$usbfs(&(0x7f00000001c0), 0xb, 0x2) syz_open_dev$usbfs(&(0x7f0000000200), 0xb, 0x800) syz_open_dev$usbfs(&(0x7f0000000240), 0x15, 0x0) syz_open_dev$usbfs(&(0x7f0000000280), 0x15, 0x1) syz_open_dev$usbfs(&(0x7f00000002c0), 0x15, 0x2) syz_open_dev$usbfs(&(0x7f0000000300), 0x15, 0x800) syz_open_dev$usbfs(&(0x7f0000000340), 0x1f, 0x0) syz_open_dev$usbfs(&(0x7f0000000380), 0x1f, 0x1) syz_open_dev$usbfs(&(0x7f00000003c0), 0x1f, 0x2) syz_open_dev$usbfs(&(0x7f0000000400), 0x1f, 0x800) syz_open_dev$usbfs(&(0x7f0000000440), 0x29, 0x0) syz_open_dev$usbfs(&(0x7f0000000480), 0x29, 0x1) syz_open_dev$usbfs(&(0x7f00000004c0), 0x29, 0x2) syz_open_dev$usbfs(&(0x7f0000000500), 0x29, 0x800) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.161' (ED25519) to the list of known hosts. [ 173.560857][ T5759] cgroup: Unknown subsys name 'net' [ 173.704784][ T5759] cgroup: Unknown subsys name 'cpuset' [ 173.720983][ T5759] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 218.769660][ T5759] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 219.271060][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 219.277896][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 224.858074][ T5906] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 225.926703][ T5935] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 225.939445][ T5935] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 226.026574][ T5935] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 226.066033][ T5930] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 226.087273][ T5935] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 226.105359][ T5935] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 226.122376][ T5935] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 228.505915][ T8] BUG: unable to handle page fault for address: 00006c656e72656b [ 228.513875][ T8] #PF: supervisor read access in kernel mode [ 228.520048][ T8] #PF: error_code(0x0000) - not-present page [ 228.526234][ T8] PGD 0 P4D 0 [ 228.529899][ T8] Oops: Oops: 0000 [#1] PREEMPT SMP PTI [ 228.535781][ T8] CPU: 0 UID: 0 PID: 8 Comm: kworker/0:0 Not tainted 6.13.0-syzkaller-09338-g05dbaf8dd8bf #0 [ 228.546204][ T8] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 228.556538][ T8] Workqueue: events free_ipc [ 228.561480][ T8] RIP: 0010:strlen+0x38/0x90 [ 228.566524][ T8] Code: 41 54 53 48 89 fb 49 c7 c6 ff ff ff ff e8 d0 68 5c f2 49 89 c7 41 b4 01 eb 0b 48 ff c3 49 ff c6 45 84 ed 74 31 45 84 e4 74 23 <44> 0f b6 2b 48 89 df e8 6c 5a 5c f2 0f b6 00 84 c0 74 dd f6 d0 44 [ 228.586586][ T8] RSP: 0018:ffff888100273858 EFLAGS: 00010202 [ 228.592931][ T8] RAX: ffff88810025ac08 RBX: 00006c656e72656b RCX: 0000000000000000 [ 228.601319][ T8] RDX: ffff88801d513538 RSI: ffff88813fffaaf0 RDI: 00006c656e72656b [ 228.609616][ T8] RBP: ffff888100273880 R08: ffffea000000000f R09: ffffffff82d145f0 [ 228.617907][ T8] R10: 0000000000000002 R11: ffff88810025a0c0 R12: 0000000000000001 [ 228.626073][ T8] R13: 0000000000000000 R14: ffffffffffffffff R15: ffff88810025ac08 [ 228.634335][ T8] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 228.643478][ T8] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 228.650258][ T8] CR2: 00006c656e72656b CR3: 00000000134c8000 CR4: 00000000003526f0 [ 228.658434][ T8] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 228.666599][ T8] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 228.674768][ T8] Call Trace: [ 228.678216][ T8] [ 228.681304][ T8] ? show_trace_log_lvl+0x268/0x3d0 [ 228.686882][ T8] ? put_links+0x226/0x9d0 [ 228.691581][ T8] ? __die_body+0xce/0x1a0 [ 228.696273][ T8] ? __die+0x22a/0x290 [ 228.700601][ T8] ? page_fault_oops+0xe58/0xfb0 [ 228.705814][ T8] ? exc_page_fault+0x56c/0x700 [ 228.710926][ T8] ? asm_exc_page_fault+0x2b/0x30 [ 228.716199][ T8] ? put_links+0x680/0x9d0 [ 228.720839][ T8] ? strlen+0x38/0x90 [ 228.725025][ T8] ? strlen+0x20/0x90 [ 228.729216][ T8] put_links+0x226/0x9d0 [ 228.733807][ T8] drop_sysctl_table+0x10d/0x4f0 [ 228.739162][ T8] ? kvfree_call_rcu+0xcdc/0xea0 [ 228.744467][ T8] ? rb_erase+0x20e/0x23b0 [ 228.749143][ T8] drop_sysctl_table+0x4b6/0x4f0 [ 228.754325][ T8] unregister_sysctl_table+0x48/0x70 [ 228.759843][ T8] retire_ipc_sysctls+0x67/0xc0 [ 228.764965][ T8] free_ipc+0x1d6/0x4c0 [ 228.769350][ T8] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 228.775465][ T8] ? __pfx_free_ipc+0x10/0x10 [ 228.780409][ T8] process_scheduled_works+0xae0/0x1c40 [ 228.786409][ T8] worker_thread+0xea7/0x14f0 [ 228.791443][ T8] kthread+0x6b9/0xef0 [ 228.795756][ T8] ? __pfx_worker_thread+0x10/0x10 [ 228.801213][ T8] ? __pfx_kthread+0x10/0x10 [ 228.806133][ T8] ret_from_fork+0x6d/0x90 [ 228.810920][ T8] ? __pfx_kthread+0x10/0x10 [ 228.816030][ T8] ret_from_fork_asm+0x1a/0x30 [ 228.821071][ T8] [ 228.824335][ T8] Modules linked in: [ 228.828557][ T8] CR2: 00006c656e72656b [ 228.832871][ T8] ---[ end trace 0000000000000000 ]--- [ 228.838583][ T8] RIP: 0010:strlen+0x38/0x90 [ 228.843407][ T8] Code: 41 54 53 48 89 fb 49 c7 c6 ff ff ff ff e8 d0 68 5c f2 49 89 c7 41 b4 01 eb 0b 48 ff c3 49 ff c6 45 84 ed 74 31 45 84 e4 74 23 <44> 0f b6 2b 48 89 df e8 6c 5a 5c f2 0f b6 00 84 c0 74 dd f6 d0 44 [ 228.863307][ T8] RSP: 0018:ffff888100273858 EFLAGS: 00010202 [ 228.869908][ T8] RAX: ffff88810025ac08 RBX: 00006c656e72656b RCX: 0000000000000000 [ 228.878076][ T8] RDX: ffff88801d513538 RSI: ffff88813fffaaf0 RDI: 00006c656e72656b [ 228.886296][ T8] RBP: ffff888100273880 R08: ffffea000000000f R09: ffffffff82d145f0 [ 228.894498][ T8] R10: 0000000000000002 R11: ffff88810025a0c0 R12: 0000000000000001 [ 228.902660][ T8] R13: 0000000000000000 R14: ffffffffffffffff R15: ffff88810025ac08 [ 228.910840][ T8] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 228.919991][ T8] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 228.926945][ T8] CR2: 00006c656e72656b CR3: 00000000134c8000 CR4: 00000000003526f0 [ 228.935126][ T8] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 228.943289][ T8] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 228.951466][ T8] Kernel panic - not syncing: Fatal exception [ 228.958168][ T8] Kernel Offset: disabled [ 228.962644][ T8] Rebooting in 86400 seconds..