last executing test programs: 38.105290531s ago: executing program 0 (id=194): r0 = socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) setsockopt$auto(0x3, 0x10000000084, 0x2, 0x0, 0x8) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) shmget$auto(0x14, 0x2, 0xe64) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000080), 0x80000, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) r2 = ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto(r2, 0x4008ae6a, r3) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/set_event\x00', 0x200, 0x0) read$auto_fops_u64_(r2, &(0x7f0000000180)=""/138, 0x8a) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x84) 37.565709141s ago: executing program 0 (id=196): gettid() close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) getcwd$auto(0x0, 0xffffffffffffffff) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x5, 0x0) inotify_init1$auto(0x3000000000000) inotify_add_watch$auto(0x4, 0x0, 0xe6e) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x9) open(&(0x7f0000000000)='./file0\x00', 0x101800, 0x181) pipe2$auto(0x0, 0x0) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x121940, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x1, 0x0) mmap$auto(0x0, 0x9, 0xdf, 0x1000000eb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) socket(0x1e, 0x4, 0x0) open(0x0, 0x2ac41, 0x0) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x7, 0x0) open(0x0, 0x505543, 0x4) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40000, 0x0) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC2\x00', 0x8000, 0x0) ioctl$auto(r1, 0xc10c5541, r0) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710, @host}, 0x55) 37.448351887s ago: executing program 0 (id=197): r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto_proc_uid_map_operations_base(0xffffffffffffffff, 0x0, 0x0) io_uring_setup$auto(0x1d48, &(0x7f0000000340)={0x7ffffffc, 0xd, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [0x0, 0x3f], {0x6, 0x8, 0x1, 0x80000000, 0x100, 0x2000083, 0x101, 0x3, 0x8000000000000001}, {0x100, 0x2, 0x52, 0x5, 0x11, 0x101, 0x876c5, 0x80c9, 0x3}}) 36.914135375s ago: executing program 0 (id=200): openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f00000000c0), 0xe003, 0x0) pwrite64$auto(0xffffffffffffffff, &(0x7f0000000000)='./cgroup/memory.pressure\x00', 0x6bc, 0x6) mmap$auto(0x7, 0x2000b, 0x4000000000dc, 0xeb1, 0x401, 0x8000) socket(0x11, 0x3, 0x400) pwrite64$auto(0xc8, 0x0, 0xfdef, 0x500000000000) openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bluetooth/hci5/force_devcoredump\x00', 0x101000, 0x0) (async) r0 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bluetooth/hci5/force_devcoredump\x00', 0x101000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x13, r0, 0x8000) (async) mmap$auto(0x0, 0x2020009, 0x3, 0x13, r0, 0x8000) openat$auto_ftrace_event_format_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/format\x00', 0x42841, 0x0) get_mempolicy$auto(0x0, 0x0, 0x8, 0xfffffffffffffffc, 0x2) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyx3\x00', 0x42880, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x10b842, 0x0) fsetxattr$auto(0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0) (async) fsetxattr$auto(0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/veth0/accept_ra_pinfo\x00', 0x2000, 0x0) read$auto(r1, 0x0, 0x1ff) (async) read$auto(r1, 0x0, 0x1ff) write$auto(0x3, 0x0, 0x7) (async) write$auto(0x3, 0x0, 0x7) prctl$auto_PR_SET_MM_ARG_END(0xfffffffe, 0x9, 0xffffffffffffffff, 0x6, 0x10001) mmap$auto(0x0, 0xe983, 0xdf, 0x17, r0, 0x208000) close_range$auto(0x2, 0x8, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) (async) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCGPTPEER2(r2, 0x5441, 0x0) (async) ioctl$auto_TIOCGPTPEER2(r2, 0x5441, 0x0) socket(0x1e, 0x4, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000001140), r3) sendmsg$auto_WG_CMD_SET_DEVICE(r3, &(0x7f00000028c0)={0x0, 0x0, &(0x7f0000002880)={&(0x7f0000002900)={0x30, r4, 0x21, 0x70bd27, 0x25dfdc00, {}, [@WGDEVICE_A_FLAGS={0x8, 0x5, 0x1}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0x30}}, 0xc0) 36.490253311s ago: executing program 0 (id=204): openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0xc0000, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x300, 0x0) set_mempolicy$auto(0x6, &(0x7f0000000000)=0x3, 0x21) io_uring_register$auto(0xffffffffffffffff, 0x1f, &(0x7f0000000040)="78298dc7", 0x1) r1 = openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/attr/current\x00', 0x1, 0x0) write$auto(r1, 0x0, 0x5) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) tkill$auto(0x1, 0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) r2 = getsockopt$auto(0xffffffffffffffff, 0x29, 0xce, 0x0, 0x0) write$auto(r0, 0x0, 0x1) r3 = ioctl$auto_NS_GET_TGID_IN_PIDNS(r2, 0x8004b709, &(0x7f0000000140)=0x6) move_pages$auto(r3, 0x4, &(0x7f0000000280)=&(0x7f0000000180)="06ff2e078da93e08555e27d0b3d8cfabf75c59", &(0x7f00000002c0), &(0x7f0000000300)=0x9, 0xd4e5) select$auto(0x0, 0x0, 0x0, 0x0, 0x0) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r4, &(0x7f0000000080)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) socket(0x2, 0x801, 0x84) close_range$auto(0x0, 0xfffffffffffff000, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x5, 0xb8, 0x10, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0xf) symlink$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') symlink$auto(&(0x7f0000000500)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', &(0x7f0000000580)='./file0\x00') creat$auto(&(0x7f0000000000)='./file0\x00', 0x1) close_range$auto(0x2, 0x8, 0x0) socket(0x1d, 0x2, 0x6) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x15, 0x5, 0x0) socketpair$auto(0x101, 0x9, 0xfffffffc, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) 36.063228566s ago: executing program 0 (id=206): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0x2, 0x80802, 0x0) setsockopt$auto(0x3, 0x1, 0x8, 0x0, 0x4) 35.635221791s ago: executing program 32 (id=206): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0x2, 0x80802, 0x0) setsockopt$auto(0x3, 0x1, 0x8, 0x0, 0x4) 6.222252185s ago: executing program 2 (id=341): mmap$auto(0x0, 0x400008, 0x401, 0x12, 0x2, 0x3b) fallocate$auto(0x1, 0x8, 0x0, 0x5) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x80502, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) socket(0xa, 0x3, 0x3b) pread64$auto(0xffffffffffffffff, 0x0, 0x682c3390, 0xcff) r0 = timerfd_create$auto_CLOCK_MONOTONIC(0x1, 0x6166) read$auto_o2hb_debug_fops_heartbeat(r0, &(0x7f0000001200)=""/252, 0xfc) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x2e241, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8\xe7\x9f9-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc>\xcd\x14W', 0x80000120000a3d9) close_range$auto(0x2, 0x8, 0x0) syz_genetlink_get_family_id$auto_gtp(0x0, 0xffffffffffffffff) socket(0xa, 0x2, 0x73) setsockopt$auto(0x4, 0x29, 0x1, 0x0, 0x8) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0x0, 0x0) openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/fail_io_timeout/probability\x00', 0x20000, 0x0) read$auto(0x3, 0x0, 0x80) r2 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0) write$auto(r2, 0x0, 0x9) r3 = openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bluetooth/hci1/rfkill6\x00', 0x10000, 0x0) ioctl$auto_BTRFS_IOC_RM_DEV_V2(r3, 0x5000943a, &(0x7f0000000200)={@raw=0x40, 0xeb0f, 0xffffffff, @unused, @subvolid=0x7}) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r4 = open(&(0x7f0000001bc0)='./file0\x00', 0x4140, 0x0) fanotify_mark$auto(0x0, 0x105, 0x8009, r4, 0x0) r5 = open(&(0x7f0000001bc0)='./file0\x00', 0x4140, 0x0) fanotify_mark$auto(0x0, 0x102, 0x7, r5, 0x0) close_range$auto(0x2, 0x8, 0x0) 5.274164748s ago: executing program 2 (id=347): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x2, 0x0) socket(0xa, 0x3, 0x3c) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop12\x00', 0x24040, 0x0) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) socket(0x1e, 0x1, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0xd, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x1, 0x0) r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x1, 0x0) ioctl$auto(r0, 0x4018620d, 0x9) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) socket(0x10, 0x2, 0x6) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) write$auto(0x3, 0x0, 0x800) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) setrlimit$auto(0xb, 0x0) 4.615681921s ago: executing program 1 (id=348): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x20000008000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x80000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x6) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x802, 0x0) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x42c00, 0x0) ppoll$auto(&(0x7f0000000040)={r0, 0x5, 0xf}, 0x4, 0x0, 0x0, 0x8) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000380)='/dev/bus/usb/020/001\x00', 0xe0482, 0x0) openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000100), 0x40800, 0x0) socket(0x25, 0x1, 0x3) mknod$auto(&(0x7f00000000c0)='./file0\x00', 0x1001, 0x804) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0xa8200, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x3, 0x8) r1 = socket(0x1d, 0x2, 0x7) r2 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'ipvlan0\x00', 0x0}) ioctl$auto_SW_SYNC_IOC_INC(0xffffffffffffffff, 0x40045701, 0x0) bind$auto(r1, &(0x7f0000000000)=@can={0x1d, r3}, 0x6a) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0xe, 0x940, 0x801ffde, 0x3, 0x2000000000000006, 0x3, 0x8, 0x5, 0x6, 0x7, 0x1, 0x9, 0x2, 0x3, 0x5, 0xfffffffffffffffa, 0x0, 0x0, 0x0, 0x0, 0x3bc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0xffffffff00000000, 0x0, 0x200, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x2, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc]}, 0x5, 0x2) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x0) r4 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x18, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0xffffff9e}, 0x40000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x140242, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) 4.291873661s ago: executing program 2 (id=350): unshare$auto(0x40000080) msgctl$auto_IPC_RMID(0x4, 0x0, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x60002, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28002) socket(0x11, 0x80003, 0x300) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) fcntl$auto(0x0, 0x408, 0x100000) setsockopt$auto_SO_OOBINLINE(0xffffffffffffffff, 0x3, 0xa, &(0x7f0000000080)='nlctrl\x00', 0x2) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff50000fff500"}, 0x55) 4.157706141s ago: executing program 1 (id=352): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/rpc/nfs4.idtoname/channel\x00', 0x8f3b7a51b80ebd01, 0x0) write$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000040)="20ed20d1027e0dc0023af10e9bfa1babfa3a3753ca9a20370a", 0x19) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) syz_clone(0x8088b680, 0x0, 0x0, 0x0, 0x0, 0x0) madvise$auto(0x0, 0x200007, 0x19) madvise$auto(0xffffffeffffffffb, 0x9, 0x5) 4.032524676s ago: executing program 3 (id=353): socket(0x1d, 0x4, 0x5) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) readv$auto(0xffffffffffffffff, 0x0, 0x3) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000140)) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc0202, 0x0) pread64$auto(0xffffffffffffffff, 0x0, 0x682c3390, 0xcff) mmap$auto(0xfffffffffffffffc, 0x9, 0xb9af, 0x40eb2, 0x401, 0x4) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x2e241, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) close_range$auto(0x2, 0x8, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0x0, 0x0) openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/fail_io_timeout/probability\x00', 0x20000, 0x0) read$auto(0x3, 0x0, 0x80) r2 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0) write$auto(r2, 0x0, 0x9) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r3) sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\n\x00\x00', @ANYRES16=r4, @ANYBLOB="010027bd7000fddbdf251900000018000180140002006d6163766c616e300000000000000000"], 0x2c}, 0x1, 0x0, 0x0, 0x20040840}, 0x40000) readv$auto(0x3, 0x0, 0x1) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x10000000, 0x1004, 0x10e3, 0xf030, 0xffffffffffffffff, 0x7) io_uring_setup$auto(0x401, 0x0) close_range$auto(0x2, 0x8, 0x0) 3.758322121s ago: executing program 2 (id=354): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r0, 0x560e, r1) 3.758016086s ago: executing program 1 (id=355): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0xffffffffffffffff, 0xeb1, 0x401, 0x8000) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC2\x00', 0x8100, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x5) read$auto(r0, 0x0, 0x800) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f0000000580)={{@raw=0x7fffffff, 0xf0ee, 0x20009, 0x3, "790eaa00ffff8eac2cdafc1f64010043eeb0b053030001ffff000e00", @raw=0x1}, 0x4, 0x966, 0x3, @raw=0x404, @integer={0x800000000000400e, 0x2000000b752, 0x1}, "6cc1294d63a4f1b4285854c5368de438f8cc142ef6df12bf3373a1183bedbd31b642b4051b078fa1c1c61c329794e5311121c760cb9611c78e6947a99807bcc1"}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x400c000) socket(0x1e, 0x4, 0x0) socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) statmount$auto(0x0, 0x0, 0x81, 0x968e) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/adsp1\x00', 0x101142, 0x0) socket(0x10, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0xffffffffffffffff) ioctl$auto(0x3, 0xc018aec0, 0x38) r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r3, 0x0, 0x9a28) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) read$auto_proc_fail_nth_operations_base(r4, 0x0, 0x0) mmap$auto(0x0, 0xa00006, 0x4001fd, 0x40eb1, 0x602, 0x300000000000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/protocols\x00', 0x16b280, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0xfff, 0x7fffffff, 0x1) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/pcrypt/pencrypt/serial_cpumask\x00', 0xa001, 0x0) 3.358816924s ago: executing program 2 (id=356): socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x7) io_uring_register$auto(0x2, 0x1, 0x0, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x400c890}, 0x800) openat$auto_l2cap_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) bpf$auto(0x0, 0x0, 0x6f3) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/controlC1\x00', 0x143000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0) bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_5={@target_ifindex, 0xffffffffffffffff, 0x9c, 0x1, 0x1, @relative_fd, 0x5}, 0x96) ioctl$auto_SNDRV_CTL_IOCTL_TLV_WRITE(r0, 0xc008551b, &(0x7f0000000200)={0x3, 0x61}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) r2 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0) write$auto(r2, 0x0, 0xe) landlock_create_ruleset$auto(&(0x7f0000000100)={0x6, 0x3, 0x100000000}, 0x2000000000009b, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 3.200205974s ago: executing program 4 (id=357): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fs/cifs/SecurityFlags\x00', 0x48041, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/fail-nth\x00', 0x902, 0x0) socket(0xa, 0x2, 0x88) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/mac80211_hwsim/hwsim1/net/wlan1/mtu\x00', 0x10b042, 0x0) openat$auto_drm_connector_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000b80)='/sys/kernel/debug/dri/vkms/Writeback-1/force\x00', 0x2, 0x0) mmap$auto(0x0, 0x400008, 0x4, 0x40009b72, 0x2, 0x8000) r0 = io_uring_setup$auto(0x89, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffff9}, 0x6, 0xe27c, 0x8) r1 = socket(0x2b, 0x1, 0x1) r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) mmap$auto(0x0, 0x2020009, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001480)={'veth0_virt_wifi\x00'}) ioctl$auto_SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000040)="b38fc65a6042f2dc99df8ce9af2a56fcfe744238519bceaee0") munmap$auto(0x8000, 0xffffffff) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x19, 0x4, 0x4, 0x880b, 0x8, 0xd, 0x66b, 0x4, 0x7ff}, 0x6f4) ioctl$auto(0x4000000000000c8, 0x400454d9, 0x3) socket(0x10, 0x2, 0x4) 2.914189941s ago: executing program 3 (id=358): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/dummy_hcd.3/usb4/4-0:1.0/supports_autosuspend\x00', 0x28000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0xb) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r2 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) ioctl$auto_SNDRV_PCM_IOCTL_RESUME2(r1, 0x4147, 0x0) recvmmsg$auto(r3, &(0x7f0000000140)={{0x0, 0x1, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0) write$auto_proc_clear_refs_operations_internal(r2, 0x0, 0xffffff4b) io_uring_setup$auto(0x6, 0x0) r4 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0xc00, 0x2000000000002) r5 = open(&(0x7f0000000000)='./file1\x00', 0x1652c2, 0xe1d2b27bdc14aa98) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x20540, 0x0) ioctl$auto(r6, 0x5424, 0xffffffffffffffff) fremovexattr$auto(r4, &(0x7f0000000280)='\x00') fanotify_mark$auto(0x400000000000, 0x105, 0xf2b, r5, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000040), 0xffffffffffffffff) read$auto_mon_fops_text_t_mon_text(r4, &(0x7f0000000180)=""/85, 0x55) r9 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/block/nbd3/hctx0/sched_tags_bitmap\x00', 0x0, 0x0) pread64$auto(r9, 0x0, 0x6c, 0xfc) sendmsg$auto_NETDEV_CMD_NAPI_SET(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r8, 0x1, 0x70bd29, 0x25dfdc00, {}, [@NETDEV_A_NAPI_ID={0x8, 0x2, 0x20009}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20008040}, 0x20008084) rename$auto(&(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='./file0\x00') read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000001340)=""/4101, 0x1005) 2.701427475s ago: executing program 2 (id=359): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r1, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x3, 0x0, 0x0, @u32=0x2000}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x40010}, 0x800) r3 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/tracing/dynamic_events\x00', 0x201, 0x0) write$auto_dynamic_events_ops_trace_dynevent(r3, &(0x7f00000002c0)="65507307ff6587a725ca87720ef9769f205b2e", 0x13) close_range$auto(r3, 0x8, 0x0) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x106) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) tkill$auto(0x1, 0x7) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r4) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0x2ff, 0x400, 0x2}]}) 2.660165974s ago: executing program 3 (id=360): bpf$auto(0x0, 0x0, 0x6f3) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_VHOST_SET_OWNER(0xffffffffffffffff, 0xaf01, 0x5) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0) landlock_restrict_self$auto(r0, 0x1) openat$auto_lockdown_ops_lockdown(0xffffffffffffff9c, 0x0, 0xa0042, 0x0) r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r1, 0x4, 0x7ff) 2.554358335s ago: executing program 1 (id=361): openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, 0x0, 0x800, 0x0) syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) kexec_load$auto(0xf, 0x0, &(0x7f00000000c0)={@buf=&(0x7f0000000580), 0x0, 0x4, 0x7d63fe82}, 0x80000001) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0) ioctl$auto_SNDCTL_DSP_GETTRIGGER(r0, 0x80045010, 0x0) openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy0/aqm\x00', 0x82, 0x0) r1 = getegid() r2 = landlock_create_ruleset$auto(0x0, 0x0, 0x2) write$auto_console_fops_tty_io(r2, &(0x7f0000000280)="40ecea0b5003551f9c8291baaba72e3a9e16", 0x12) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000) mkdir$auto(&(0x7f00000001c0)='}[,&*}\x00', 0xc001) statx$auto(0xffffffffffffff9c, &(0x7f0000000000)='}[,&*}\x00', 0x0, 0x45d9, 0x0) socket$nl_generic(0x10, 0x3, 0x10) msgctl$auto(0x8, 0x8, &(0x7f0000000180)={{0x8, 0xffffffffffffffff, r1, 0x7ff, 0x2, 0x4c4, 0x2}, 0x0, &(0x7f0000000140)=0x2, 0x8, 0x8000, 0x96e, 0x5, 0x8, 0x7, 0x6c, 0x3, @raw=0x9, @raw=0x7}) ioctl$auto_BLKTRACESETUP(r2, 0xc0481273, 0x0) shmctl$auto_IPC_STAT(0x5, 0x2, &(0x7f0000000380)={{0x0, r3, r1, 0x8, 0xc0000000, 0x81, 0xc}, 0x80000000, 0x4, 0x3, 0x7, @inferred, @raw=0x4, 0xfd8c, 0x0, &(0x7f00000002c0), 0x0}) mmap$auto(0x3, 0x400005, 0x5, 0x24f1, 0x2, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) madvise$auto(0x0, 0xffffffffffff0006, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) write$auto(0x3, 0x0, 0xfdeb) ioctl$auto_VHOST_SET_LOG_FD2(0xffffffffffffffff, 0x4004af07, 0x0) setsockopt$auto(0xffffffffffffffff, 0x1, 0x5, 0x0, 0xd) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x110) fallocate$auto(0x8000000000000003, 0x8000000, 0x9, 0x4cbd5d) lseek$auto(0x3, 0x2, 0x4) creat$auto(&(0x7f0000000100)='./file0\x00', 0x2b11) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, 0x0, 0x40) 2.48070461s ago: executing program 3 (id=362): socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x400c890}, 0x800) openat$auto_l2cap_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) bpf$auto(0x0, 0x0, 0x6f3) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/controlC1\x00', 0x143000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0) bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_5={@target_ifindex, 0xffffffffffffffff, 0x9c, 0x1, 0x1, @relative_fd, 0x5}, 0x96) ioctl$auto_SNDRV_CTL_IOCTL_TLV_WRITE(r0, 0xc008551b, &(0x7f0000000200)={0x3, 0x61}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (fail_nth: 11) 1.833780631s ago: executing program 3 (id=363): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async) socket(0xa, 0x3, 0x3b) (async) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x401, 0x8000) (async) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) r0 = socket(0xa, 0x2, 0x0) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000080), 0x2400, 0x0) (async) lseek$auto(0x3, 0x7fffffffffffffff, 0x0) (async, rerun: 32) mmap$auto(0x0, 0xa00006, 0x400002, 0x40ebe, r0, 0x300000000000) (async, rerun: 32) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/module/psmouse/parameters/proto\x00', 0x20a42, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000001080)=""/4076, 0xfec) (async) io_uring_setup$auto(0x6, 0x0) (async) close_range$auto(0x2, 0xa, 0x0) (async) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f) (async) sendmsg$auto_ETHTOOL_MSG_PSE_SET(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000881}, 0x0) (async, rerun: 32) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) (rerun: 32) write$auto(r2, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) (async) r3 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x20401, 0x0) write$auto_proc_mem_operations_base(r3, &(0x7f0000001680)="a7", 0x80000) 1.770656954s ago: executing program 4 (id=364): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r0, 0x560e, r1) 1.534117721s ago: executing program 1 (id=365): r0 = ioctl$auto_TUNSETPERSIST(0xffffffffffffffff, 0x400454cb, 0x0) r1 = bpf$auto(0x10000000, &(0x7f00000001c0)=@bpf_attr_0={0x6, 0xb8, 0x10, 0x4, 0x4, r0, 0x0, "2af0513ce63f00008000", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0xf) getsockopt$auto_SO_SNDTIMEO_NEW(r1, 0x1, 0x43, &(0x7f0000000000)='\x00', 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x801, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) open(0x0, 0x163340, 0x16e) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) unshare$auto(0x40000080) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r2, 0x0, 0x1f40) r3 = socket(0x2000000000000021, 0x2, 0x10000000000002) setsockopt$auto(r3, 0x110, 0x7, 0x0, 0x4) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2501, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv0\x00', 0x0}) r5 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000100)={0x24, r5, 0x1, 0x70bd2c, 0x25dfdbfa, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r4}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4004000}, 0x140000e4) 1.474234445s ago: executing program 4 (id=366): r0 = socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) getrandom$auto(0x0, 0xe06, 0x3) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) setsockopt$auto(0x3, 0x84, 0x17, 0x0, 0x70ed581b) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x1b, &(0x7f00000000c0), 0x1) r2 = pidfd_open$auto(0x1, 0x0) setns(r2, 0x60020000) setresuid$auto(0xffffffffffffffff, 0x0, 0x8000) sendmsg$auto_NET_SHAPER_CMD_CAP_GET(0xffffffffffffffff, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c000000", @ANYRES64, @ANYBLOB="01002dbd7000fbdbdf250500000008000100", @ANYRES64, @ANYRES16=r1], 0x1c}, 0x1, 0x0, 0x0, 0x20044080}, 0x20000000) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x89fc, 0x0) mmap$auto(0x4, 0x40000b, 0x0, 0x9b70, 0x2, 0x0) msgget$auto(0xc, 0x77d9) msgrcv$auto(0x0, 0x0, 0x5, 0xfffffffffffffffc, 0xb4) msgsnd$auto(0x0, &(0x7f0000000040)={0x1, 0x5}, 0x8, 0x9) mmap$auto(0x3, 0x8, 0xdf, 0x17, 0x2, 0x8000) close_range$auto(r0, 0x8, 0x4) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/interrupts\x00', 0x18b202, 0x0) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/net/afs/cells\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r4, &(0x7f0000000000)=""/65, 0x41) open(0x0, 0x161342, 0x0) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x80040, 0x40, 0xe}, 0x18) fremovexattr$auto(r0, &(0x7f0000000080)='sys-\x8e\xeeBte\x06\x00peccass\x00'/28) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) 1.259054601s ago: executing program 1 (id=367): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async) ioctl$auto_SNDCTL_DSP_GETTRIGGER(0xffffffffffffffff, 0x80045010, &(0x7f0000004440)) (async, rerun: 32) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (rerun: 32) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/neigh/virt_wifi0/gc_stale_time\x00', 0x88642, 0x0) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) (async, rerun: 32) mmap$auto(0x0, 0x402000a, 0xffffffffffffffff, 0x400eb1, 0x401, 0x8000) (async, rerun: 32) r2 = socket(0xa, 0x3, 0x3a) r3 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async) setsockopt$auto(0x400000000000003, 0x29, 0xca, 0x0, 0x565) (async) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f00000001c0), r2) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000200)={'bridge0\x00', 0x0}) sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f00000002c0)={&(0x7f0000000000), 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYRES32=r4, @ANYBLOB], 0x1c}}, 0x10) (async) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x103841, 0x0) write$auto(r5, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xabxo\xd9\x90\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xa5\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5Y\a\xc1\xe9(\x85R\x96\xe4\x86\\\x13\xa9\x1a&\x19\x8a9\x82\xf0\x83\f\xf7\xeb\x00\x00\x00\x00\x00\x00\x00\x00v\x920xffffffffffffffff) r3 = socket(0x2c, 0x80003, 0x0) setsockopt$auto(r3, 0x11b, 0x9, 0xffffffffffffffff, 0x18) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000840)='/proc/sys/vm/dirty_background_ratio\x00', 0x80000, 0x0) readv$auto(r3, 0x0, 0x3) vmsplice$auto(r2, &(0x7f0000000000)={0x0, 0x7}, 0x5, 0x1) socket(0x28, 0x800, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0xffffffffffffffff, 0x8000) sysfs$auto(0x5, 0x5, 0x3) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mlockall$auto(0x7) mmap$auto(0x6, 0x8e, 0xdf, 0x14, 0x2, 0xb) close_range$auto(0x2, 0x8, 0x0) prctl$auto_PR_SET_VMA_ANON_NAME(0x2, 0x0, r1, 0x10001, 0x8) socket(0x1e, 0x2, 0xa) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) ioctl$auto(0xffffffffffffffff, 0x5407, 0x38) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x6ab40, 0x0) 0s ago: executing program 3 (id=371): socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x400c890}, 0x800) openat$auto_l2cap_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) bpf$auto(0x0, 0x0, 0x6f3) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/controlC1\x00', 0x143000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0) bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_5={@target_ifindex, 0xffffffffffffffff, 0x9c, 0x1, 0x1, @relative_fd, 0x5}, 0x96) ioctl$auto_SNDRV_CTL_IOCTL_TLV_WRITE(r0, 0xc008551b, &(0x7f0000000200)={0x3, 0x61}) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/resume\x00', 0x1c9082, 0x0) sendfile$auto(r2, r2, 0x0, 0x3) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000180), 0x40403, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) r3 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) setsockopt$auto(r3, 0x10000000084, 0x7f, 0x0, 0xad4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) clone$auto(0x1002, 0x4, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x5) madvise$auto(0x0, 0x2003f0, 0x15) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.229' (ED25519) to the list of known hosts. [ 74.117896][ T5818] cgroup: Unknown subsys name 'net' [ 74.309828][ T5818] cgroup: Unknown subsys name 'cpuset' [ 74.318514][ T5818] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 75.773495][ T5818] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 77.799170][ T5832] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 77.808278][ T5832] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 77.817200][ T5832] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 77.825178][ T5832] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 77.832296][ T5840] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 77.840419][ T5832] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 77.848028][ T5832] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 77.856095][ T5832] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 77.857252][ T5840] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 77.870828][ T5832] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 77.873320][ T5840] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 77.879210][ T5843] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 77.894335][ T5840] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 77.905049][ T5840] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 77.912306][ T5836] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 77.921186][ T5836] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 77.928506][ T5845] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 77.928593][ T5843] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 77.945953][ T5843] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 77.957585][ T5843] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 78.473544][ T5828] chnl_net:caif_netlink_parms(): no params data found [ 78.525262][ T5830] chnl_net:caif_netlink_parms(): no params data found [ 78.622492][ T5829] chnl_net:caif_netlink_parms(): no params data found [ 78.643548][ T5827] chnl_net:caif_netlink_parms(): no params data found [ 78.750399][ T5830] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.757646][ T5830] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.765038][ T5830] bridge_slave_0: entered allmulticast mode [ 78.773938][ T5830] bridge_slave_0: entered promiscuous mode [ 78.807638][ T5830] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.814853][ T5830] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.822421][ T5830] bridge_slave_1: entered allmulticast mode [ 78.829827][ T5830] bridge_slave_1: entered promiscuous mode [ 78.837061][ T5828] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.844188][ T5828] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.851443][ T5828] bridge_slave_0: entered allmulticast mode [ 78.858413][ T5828] bridge_slave_0: entered promiscuous mode [ 78.895715][ T5828] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.902891][ T5828] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.910165][ T5828] bridge_slave_1: entered allmulticast mode [ 78.917129][ T5828] bridge_slave_1: entered promiscuous mode [ 78.953906][ T5830] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.982964][ T5827] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.990276][ T5827] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.997844][ T5827] bridge_slave_0: entered allmulticast mode [ 79.005135][ T5827] bridge_slave_0: entered promiscuous mode [ 79.014552][ T5830] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.049696][ T5827] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.057269][ T5827] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.064422][ T5827] bridge_slave_1: entered allmulticast mode [ 79.071712][ T5827] bridge_slave_1: entered promiscuous mode [ 79.091780][ T5828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.101672][ T5829] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.108926][ T5829] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.116271][ T5829] bridge_slave_0: entered allmulticast mode [ 79.123214][ T5829] bridge_slave_0: entered promiscuous mode [ 79.157973][ T5828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.167478][ T5829] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.174655][ T5829] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.182104][ T5829] bridge_slave_1: entered allmulticast mode [ 79.189227][ T5829] bridge_slave_1: entered promiscuous mode [ 79.208297][ T5830] team0: Port device team_slave_0 added [ 79.235017][ T5827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.246504][ T5830] team0: Port device team_slave_1 added [ 79.254628][ T5827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.309721][ T5828] team0: Port device team_slave_0 added [ 79.318378][ T5829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.350893][ T5828] team0: Port device team_slave_1 added [ 79.359225][ T5829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.370254][ T5827] team0: Port device team_slave_0 added [ 79.377823][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 79.384867][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 79.410895][ T5830] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 79.450776][ T5827] team0: Port device team_slave_1 added [ 79.470422][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 79.477678][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 79.503665][ T5830] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 79.555843][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 79.562818][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 79.589423][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 79.602345][ T5829] team0: Port device team_slave_0 added [ 79.610448][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 79.617491][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 79.643782][ T5827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 79.656794][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 79.663847][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 79.690174][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 79.701732][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 79.708809][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 79.734952][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 79.748098][ T5829] team0: Port device team_slave_1 added [ 79.814625][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 79.821905][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 79.848182][ T5829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 79.860990][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 79.868121][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 79.894073][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 79.909044][ T5830] hsr_slave_0: entered promiscuous mode [ 79.915563][ T5830] hsr_slave_1: entered promiscuous mode [ 80.006211][ T5845] Bluetooth: hci3: command tx timeout [ 80.006215][ T5842] Bluetooth: hci0: command tx timeout [ 80.016630][ T5843] Bluetooth: hci1: command tx timeout [ 80.017996][ T52] Bluetooth: hci2: command tx timeout [ 80.034570][ T5827] hsr_slave_0: entered promiscuous mode [ 80.041523][ T5827] hsr_slave_1: entered promiscuous mode [ 80.048021][ T5827] debugfs: 'hsr0' already exists in 'hsr' [ 80.053811][ T5827] Cannot create hsr debugfs directory [ 80.084440][ T5828] hsr_slave_0: entered promiscuous mode [ 80.090845][ T5828] hsr_slave_1: entered promiscuous mode [ 80.097326][ T5828] debugfs: 'hsr0' already exists in 'hsr' [ 80.103063][ T5828] Cannot create hsr debugfs directory [ 80.187935][ T5829] hsr_slave_0: entered promiscuous mode [ 80.194457][ T5829] hsr_slave_1: entered promiscuous mode [ 80.201158][ T5829] debugfs: 'hsr0' already exists in 'hsr' [ 80.207379][ T5829] Cannot create hsr debugfs directory [ 80.446575][ T5830] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 80.479228][ T5830] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 80.520602][ T5830] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 80.531174][ T5830] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 80.640057][ T5827] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 80.653182][ T5827] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 80.663613][ T5827] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 80.688922][ T5827] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 80.764970][ T5828] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 80.782351][ T5828] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 80.793303][ T5828] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 80.804044][ T5828] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 80.909196][ T5829] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 80.920939][ T5829] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 80.934545][ T5829] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 80.946426][ T5829] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 80.968679][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.015325][ T5830] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.039506][ T3498] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.046754][ T3498] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.070375][ T3498] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.077493][ T3498] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.142423][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.161963][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.196065][ T5827] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.220324][ T3522] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.227511][ T3522] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.253488][ T3498] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.260677][ T3498] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.278083][ T5828] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.312908][ T3522] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.320196][ T3522] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.350081][ T60] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.357210][ T60] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.381209][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.432790][ T5827] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 81.507203][ T5829] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.549226][ T60] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.556419][ T60] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.590893][ T60] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.598124][ T60] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.785022][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.847482][ T5830] veth0_vlan: entered promiscuous mode [ 81.864171][ T5830] veth1_vlan: entered promiscuous mode [ 81.942926][ T5830] veth0_macvtap: entered promiscuous mode [ 81.955065][ T5830] veth1_macvtap: entered promiscuous mode [ 81.987573][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 82.009883][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.047447][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.078321][ T3522] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.085766][ T52] Bluetooth: hci2: command tx timeout [ 82.090482][ T5845] Bluetooth: hci3: command tx timeout [ 82.092636][ T52] Bluetooth: hci1: command tx timeout [ 82.098299][ T5843] Bluetooth: hci0: command tx timeout [ 82.119627][ T3522] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.134527][ T3522] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.173902][ T3522] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.212276][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 82.228275][ T5827] veth0_vlan: entered promiscuous mode [ 82.291850][ T3564] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.304026][ T3564] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.319614][ T5827] veth1_vlan: entered promiscuous mode [ 82.354663][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 82.376742][ T3472] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.399678][ T3472] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.423218][ T5827] veth0_macvtap: entered promiscuous mode [ 82.461157][ T5827] veth1_macvtap: entered promiscuous mode [ 82.471363][ T5830] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 82.500030][ T5828] veth0_vlan: entered promiscuous mode [ 82.527789][ T5828] veth1_vlan: entered promiscuous mode [ 82.550256][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.563684][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.582721][ T5829] veth0_vlan: entered promiscuous mode [ 82.629398][ T5829] veth1_vlan: entered promiscuous mode [ 82.638062][ T3472] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.667083][ T3472] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.678657][ T3472] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.706193][ T3472] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.816945][ T5828] veth0_macvtap: entered promiscuous mode [ 82.840116][ T5829] veth0_macvtap: entered promiscuous mode [ 82.850259][ T5828] veth1_macvtap: entered promiscuous mode [ 82.872347][ T5829] veth1_macvtap: entered promiscuous mode [ 82.891758][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.927438][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.945095][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.010200][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.064454][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.081888][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.105808][ T3545] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.115170][ T3545] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.132781][ T3522] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.148859][ T3522] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.161084][ T3545] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.171238][ T3545] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.253471][ T3545] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.298141][ T3545] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.313262][ T3545] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.348135][ T3545] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.571023][ T3545] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.601975][ T3545] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.631550][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.652677][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.713726][ T3498] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.733057][ T3498] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.776575][ T3522] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.784428][ T3522] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.851638][ T5932] TCP: TCP_TX_DELAY enabled [ 84.136792][ T5942] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 84.149653][ T5940] bonding: no command found in bonding_masters - use +ifname or -ifname [ 84.166846][ T5843] Bluetooth: hci1: command tx timeout [ 84.172347][ T5843] Bluetooth: hci2: command tx timeout [ 84.179061][ T5845] Bluetooth: hci0: command tx timeout [ 84.184541][ T5845] Bluetooth: hci3: command tx timeout [ 84.616593][ T5942] mmap: syz.0.1 (5942) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 85.705933][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 85.747676][ T5960] netlink: 330 bytes leftover after parsing attributes in process `syz.0.13'. [ 85.756835][ T5960] mac80211_hwsim hwsim7 : renamed from wlan0 (while UP) [ 85.816385][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 85.825218][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 85.835484][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 85.891846][ T5960] Zero length message leads to an empty skb [ 86.171547][ T5963] Format for deleting device is "id" (uint). [ 86.199190][ T5972] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 86.257339][ T5843] Bluetooth: hci2: command tx timeout [ 86.262791][ T5843] Bluetooth: hci3: command tx timeout [ 86.268270][ T5843] Bluetooth: hci0: command tx timeout [ 86.273680][ T5843] Bluetooth: hci1: command tx timeout [ 86.905951][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 86.914272][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 86.923210][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 87.274971][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 87.528516][ T5997] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 87.946204][ T5979] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888078005c00 pfn:0x78004 [ 87.968779][ T5979] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 87.979099][ T5979] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff) [ 87.989244][ T5979] page_type: f5(slab) [ 87.994999][ T5979] raw: 00fff00000000240 ffff88801bec0a00 ffffea0001dd2990 ffffea0001ee5090 [ 88.004306][ T5979] raw: ffff888078005c00 0000000000120002 00000000f5000000 0000000000000000 [ 88.015130][ T5979] head: 00fff00000000240 ffff88801bec0a00 ffffea0001dd2990 ffffea0001ee5090 [ 88.039021][ T5979] head: ffff888078005c00 0000000000120002 00000000f5000000 0000000000000000 [ 88.050992][ T6005] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 88.078195][ T5979] head: 00fff00000000001 ffffea0001e00101 00000000ffffffff 00000000ffffffff [ 88.107284][ T5979] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 88.125696][ T5979] page dumped because: unmovable page [ 88.166231][ T5979] page_owner tracks the page as allocated [ 88.172143][ T5979] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5202, tgid 5202 (udevd), ts 34672557094, free_ts 28462098104 [ 88.265426][ T5979] post_alloc_hook+0x1c0/0x230 [ 88.270259][ T5979] get_page_from_freelist+0x10a3/0x3a30 [ 88.315241][ T5979] __alloc_frozen_pages_noprof+0x25f/0x2470 [ 88.327883][ T5979] alloc_pages_mpol+0x1fb/0x550 [ 88.345678][ T5979] new_slab+0x24a/0x360 [ 88.385834][ T5979] ___slab_alloc+0xdc4/0x1ae0 [ 88.390599][ T5979] __slab_alloc.constprop.0+0x63/0x110 [ 88.404826][ T5979] kmem_cache_alloc_noprof+0x43f/0x6e0 [ 88.425717][ T5979] alloc_empty_file+0x55/0x1e0 [ 88.430642][ T5979] path_openat+0xda/0x2cb0 [ 88.435257][ T5979] do_filp_open+0x20b/0x470 [ 88.440929][ T5979] do_sys_openat2+0x11b/0x1d0 [ 88.445932][ T5979] __x64_sys_openat+0x174/0x210 [ 88.450895][ T5979] do_syscall_64+0xcd/0xfa0 [ 88.455621][ T5979] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 88.461677][ T5979] page last free pid 1 tgid 1 stack trace: [ 88.467661][ T5979] __free_frozen_pages+0x7df/0x1160 [ 88.476390][ T5979] free_contig_range+0x183/0x4b0 [ 88.481755][ T5979] destroy_args+0xb69/0x12e0 [ 88.487594][ T5979] debug_vm_pgtable+0x1a32/0x3640 [ 88.493016][ T5979] do_one_initcall+0x123/0x6e0 [ 88.498320][ T5979] kernel_init_freeable+0x5c8/0x920 [ 88.504883][ T5979] kernel_init+0x1c/0x2b0 [ 88.509675][ T5979] ret_from_fork+0x675/0x7d0 [ 88.514502][ T5979] ret_from_fork_asm+0x1a/0x30 [ 88.655898][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 88.736380][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 89.060624][ T6028] netlink: 4 bytes leftover after parsing attributes in process `syz.1.21'. [ 90.233001][ T6040] binder: BINDER_SET_CONTEXT_MGR already set [ 90.284408][ T6040] binder: 6032:6040 ioctl 4018620d 9 returned -16 [ 90.808645][ T6061] netlink: 330 bytes leftover after parsing attributes in process `syz.1.31'. [ 90.844769][ T6061] mac80211_hwsim hwsim4 : renamed from wlan0 (while UP) [ 90.870830][ T6066] FAULT_INJECTION: forcing a failure. [ 90.870830][ T6066] name failslab, interval 1, probability 0, space 0, times 1 [ 90.918818][ T6066] CPU: 0 UID: 0 PID: 6066 Comm: syz.3.33 Not tainted syzkaller #0 PREEMPT(full) [ 90.918838][ T6066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 90.918849][ T6066] Call Trace: [ 90.918854][ T6066] [ 90.918859][ T6066] dump_stack_lvl+0x16c/0x1f0 [ 90.918886][ T6066] should_fail_ex+0x512/0x640 [ 90.918907][ T6066] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 90.918927][ T6066] should_failslab+0xc2/0x120 [ 90.918941][ T6066] kmem_cache_alloc_noprof+0x75/0x6e0 [ 90.918964][ T6066] ? __pmd_alloc+0xbf/0x8b0 [ 90.918981][ T6066] ? __pmd_alloc+0xbf/0x8b0 [ 90.918993][ T6066] __pmd_alloc+0xbf/0x8b0 [ 90.919008][ T6066] __handle_mm_fault+0xada/0x2aa0 [ 90.919025][ T6066] ? mt_find+0x3e2/0xa20 [ 90.919047][ T6066] ? __pfx___handle_mm_fault+0x10/0x10 [ 90.919061][ T6066] ? __pfx_mt_find+0x10/0x10 [ 90.919092][ T6066] ? find_vma+0xbf/0x140 [ 90.919111][ T6066] ? __pfx_find_vma+0x10/0x10 [ 90.919132][ T6066] handle_mm_fault+0x589/0xd10 [ 90.919148][ T6066] ? __pkru_allows_pkey+0x11/0xb0 [ 90.919166][ T6066] do_user_addr_fault+0x7a6/0x1370 [ 90.919185][ T6066] ? rcu_is_watching+0x12/0xc0 [ 90.919206][ T6066] exc_page_fault+0x64/0xc0 [ 90.919226][ T6066] asm_exc_page_fault+0x26/0x30 [ 90.919239][ T6066] RIP: 0010:rep_movs_alternative+0x30/0x90 [ 90.919255][ T6066] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 [ 90.919267][ T6066] RSP: 0018:ffffc90004dcfa48 EFLAGS: 00050206 [ 90.919279][ T6066] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000038 [ 90.919287][ T6066] RDX: fffff520009b9f5a RSI: 0000000000000000 RDI: ffffc90004dcfa98 [ 90.919295][ T6066] RBP: 0000000000000038 R08: 0000000000000001 R09: fffff520009b9f59 [ 90.919303][ T6066] R10: ffffc90004dcfacf R11: 0000000000000001 R12: 0000000000000000 [ 90.919312][ T6066] R13: ffffc90004dcfa98 R14: ffffc90004dcfb80 R15: ffffc90004dcfa98 [ 90.919330][ T6066] _copy_from_user+0x98/0xd0 [ 90.919344][ T6066] copy_msghdr_from_user+0x98/0x160 [ 90.919365][ T6066] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 90.919389][ T6066] ? __lock_acquire+0x622/0x1c90 [ 90.919406][ T6066] ___sys_recvmsg+0xdb/0x1a0 [ 90.919426][ T6066] ? __pfx____sys_recvmsg+0x10/0x10 [ 90.919447][ T6066] ? find_held_lock+0x2b/0x80 [ 90.919477][ T6066] do_recvmmsg+0x2fe/0x750 [ 90.919500][ T6066] ? __pfx_do_recvmmsg+0x10/0x10 [ 90.919523][ T6066] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 90.919550][ T6066] ? __fget_files+0x20e/0x3c0 [ 90.919572][ T6066] __x64_sys_recvmmsg+0x22a/0x280 [ 90.919594][ T6066] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 90.919620][ T6066] do_syscall_64+0xcd/0xfa0 [ 90.919641][ T6066] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 90.919653][ T6066] RIP: 0033:0x7fc64418eec9 [ 90.919668][ T6066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 90.919679][ T6066] RSP: 002b:00007fc645048038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 90.919691][ T6066] RAX: ffffffffffffffda RBX: 00007fc6443e5fa0 RCX: 00007fc64418eec9 [ 90.919700][ T6066] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 90.919710][ T6066] RBP: 00007fc645048090 R08: 0000000000000000 R09: 0000000000000000 [ 90.919718][ T6066] R10: 000000000001a000 R11: 0000000000000246 R12: 0000000000000001 [ 90.919726][ T6066] R13: 00007fc6443e6038 R14: 00007fc6443e5fa0 R15: 00007ffc9c503ba8 [ 90.919744][ T6066] [ 91.628339][ T6076] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 91.860933][ T980] cfg80211: failed to load regulatory.db [ 93.267179][ T6119] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 93.309351][ T6119] FAULT_INJECTION: forcing a failure. [ 93.309351][ T6119] name failslab, interval 1, probability 0, space 0, times 0 [ 93.326805][ T6122] netlink: 330 bytes leftover after parsing attributes in process `syz.2.45'. [ 93.334884][ T6119] CPU: 0 UID: 0 PID: 6119 Comm: syz.0.44 Not tainted syzkaller #0 PREEMPT(full) [ 93.334917][ T6119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 93.334937][ T6119] Call Trace: [ 93.334948][ T6119] [ 93.334958][ T6119] dump_stack_lvl+0x16c/0x1f0 [ 93.335001][ T6119] should_fail_ex+0x512/0x640 [ 93.335038][ T6119] ? fs_reclaim_acquire+0xae/0x150 [ 93.335065][ T6119] should_failslab+0xc2/0x120 [ 93.335089][ T6119] kmem_cache_alloc_noprof+0x75/0x6e0 [ 93.335123][ T6119] ? __kernfs_new_node+0xd2/0x8e0 [ 93.335167][ T6119] ? __kernfs_new_node+0xd2/0x8e0 [ 93.335202][ T6119] __kernfs_new_node+0xd2/0x8e0 [ 93.335243][ T6119] ? __pfx___kernfs_new_node+0x10/0x10 [ 93.335289][ T6119] ? find_held_lock+0x2b/0x80 [ 93.335322][ T6119] ? kernfs_root+0xee/0x2a0 [ 93.335356][ T6119] kernfs_new_node+0x13c/0x1e0 [ 93.335388][ T6119] __kernfs_create_file+0x53/0x350 [ 93.335424][ T6119] sysfs_add_file_mode_ns+0x207/0x3c0 [ 93.335468][ T6119] internal_create_group+0x578/0xf30 [ 93.335508][ T6119] ? __pfx_internal_create_group+0x10/0x10 [ 93.335539][ T6119] ? kernfs_create_link+0x1bd/0x240 [ 93.335579][ T6119] internal_create_groups+0x9d/0x150 [ 93.335607][ T6119] device_add+0x731/0x1aa0 [ 93.335635][ T6119] ? __pfx_device_add+0x10/0x10 [ 93.335655][ T6119] ? __pfx___might_resched+0x10/0x10 [ 93.335683][ T6119] ? lockdep_hardirqs_on+0x7c/0x110 [ 93.335724][ T6119] __add_disk+0x457/0xf00 [ 93.335763][ T6119] add_disk_fwnode+0x13f/0x5d0 [ 93.335800][ T6119] loop_add+0x903/0xb70 [ 93.335829][ T6119] ? __pfx_loop_add+0x10/0x10 [ 93.335880][ T6119] ? find_held_lock+0x2b/0x80 [ 93.335918][ T6119] loop_control_ioctl+0x13e/0x630 [ 93.335947][ T6119] ? __pfx_loop_control_ioctl+0x10/0x10 [ 93.335980][ T6119] ? __pfx_loop_control_ioctl+0x10/0x10 [ 93.336010][ T6119] __x64_sys_ioctl+0x18e/0x210 [ 93.336042][ T6119] do_syscall_64+0xcd/0xfa0 [ 93.336080][ T6119] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 93.336106][ T6119] RIP: 0033:0x7efea738eec9 [ 93.336127][ T6119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 93.336149][ T6119] RSP: 002b:00007efea82ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 93.336172][ T6119] RAX: ffffffffffffffda RBX: 00007efea75e5fa0 RCX: 00007efea738eec9 [ 93.336188][ T6119] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000009 [ 93.336201][ T6119] RBP: 00007efea7411f91 R08: 0000000000000000 R09: 0000000000000000 [ 93.336215][ T6119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 93.336229][ T6119] R13: 00007efea75e6038 R14: 00007efea75e5fa0 R15: 00007ffe8fe00648 [ 93.336264][ T6119] [ 93.604811][ T6122] mac80211_hwsim hwsim6 : renamed from wlan0 (while UP) [ 93.633250][ T6119] sd 0:0:1:0: device reset [ 96.017683][ T6191] syz.3.61 uses obsolete (PF_INET,SOCK_PACKET) [ 96.406078][ T6199] block2mtd: illegal erase size [ 96.940673][ T6219] netlink: 330 bytes leftover after parsing attributes in process `syz.0.67'. [ 98.796587][ T6279] FAULT_INJECTION: forcing a failure. [ 98.796587][ T6279] name failslab, interval 1, probability 0, space 0, times 0 [ 98.814243][ T6279] CPU: 0 UID: 0 PID: 6279 Comm: syz.2.75 Not tainted syzkaller #0 PREEMPT(full) [ 98.814278][ T6279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 98.814293][ T6279] Call Trace: [ 98.814303][ T6279] [ 98.814312][ T6279] dump_stack_lvl+0x16c/0x1f0 [ 98.814354][ T6279] should_fail_ex+0x512/0x640 [ 98.814389][ T6279] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 98.814424][ T6279] should_failslab+0xc2/0x120 [ 98.814445][ T6279] kmem_cache_alloc_noprof+0x75/0x6e0 [ 98.814471][ T6279] ? futex_wait+0xa0/0x380 [ 98.814497][ T6279] ? do_epoll_ctl+0x1170/0x3790 [ 98.814535][ T6279] ? do_epoll_ctl+0x1170/0x3790 [ 98.814566][ T6279] do_epoll_ctl+0x1170/0x3790 [ 98.814598][ T6279] ? lockdep_init_map_type+0x5c/0x280 [ 98.814637][ T6279] ? __pfx_do_epoll_ctl+0x10/0x10 [ 98.814668][ T6279] ? find_held_lock+0x2b/0x80 [ 98.814698][ T6279] ? __might_fault+0xe3/0x190 [ 98.814726][ T6279] ? __might_fault+0xe3/0x190 [ 98.814771][ T6279] ? __x64_sys_epoll_ctl+0x15c/0x1e0 [ 98.814802][ T6279] __x64_sys_epoll_ctl+0x15c/0x1e0 [ 98.814836][ T6279] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 98.814882][ T6279] do_syscall_64+0xcd/0xfa0 [ 98.814919][ T6279] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 98.814952][ T6279] RIP: 0033:0x7fc107b8eec9 [ 98.814974][ T6279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 98.815004][ T6279] RSP: 002b:00007fc108ab7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 98.815029][ T6279] RAX: ffffffffffffffda RBX: 00007fc107de5fa0 RCX: 00007fc107b8eec9 [ 98.815047][ T6279] RDX: 8000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 98.815063][ T6279] RBP: 00007fc107c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 98.815078][ T6279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 98.815092][ T6279] R13: 00007fc107de6038 R14: 00007fc107de5fa0 R15: 00007ffe0e66ad48 [ 98.815127][ T6279] [ 99.463327][ T6268] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888078002d80 pfn:0x78000 [ 99.494333][ T6268] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 99.514908][ T6268] ksm flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 99.534063][ T6268] page_type: f5(slab) [ 99.543684][ T6268] raw: 00fff00000000040 ffff888140aedc80 ffffea0001e01700 0000000000000003 [ 99.561402][ T6268] raw: ffff888078002d80 0000000000130000 00000000f5000000 0000000000000000 [ 99.588270][ T6268] head: 00fff00000000040 ffff888140aedc80 ffffea0001e01700 0000000000000003 [ 99.607898][ T6268] head: ffff888078002d80 0000000000130000 00000000f5000000 0000000000000000 [ 99.634748][ T6268] head: 00fff00000000002 ffffea0001e00001 00000000ffffffff 00000000ffffffff [ 99.671717][ T6268] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004 [ 99.703284][ T6268] page dumped because: unmovable page [ 99.713650][ T6268] page_owner tracks the page as allocated [ 99.723787][ T6268] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5922, tgid 5922 (syz.3.5), ts 88006631183, free_ts 80955787154 [ 99.758226][ T6268] post_alloc_hook+0x1c0/0x230 [ 99.763276][ T6268] get_page_from_freelist+0x10a3/0x3a30 [ 99.777975][ T6287] FAULT_INJECTION: forcing a failure. [ 99.777975][ T6287] name fail_futex, interval 1, probability 0, space 0, times 1 [ 99.791406][ T6287] CPU: 0 UID: 0 PID: 6287 Comm: syz.2.79 Not tainted syzkaller #0 PREEMPT(full) [ 99.791440][ T6287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 99.791456][ T6287] Call Trace: [ 99.791464][ T6287] [ 99.791474][ T6287] dump_stack_lvl+0x16c/0x1f0 [ 99.791518][ T6287] should_fail_ex+0x512/0x640 [ 99.791563][ T6287] get_futex_key+0x1d0/0x1560 [ 99.791608][ T6287] ? __pfx_get_futex_key+0x10/0x10 [ 99.791643][ T6287] ? rcu_is_watching+0x12/0xc0 [ 99.791678][ T6287] ? kfree+0x252/0x6d0 [ 99.791717][ T6287] futex_wake+0xea/0x530 [ 99.791750][ T6287] ? __pfx_futex_wake+0x10/0x10 [ 99.791780][ T6287] ? __pfx_vfs_writev+0x10/0x10 [ 99.791811][ T6287] ? __mutex_lock+0x1c5/0x1060 [ 99.791852][ T6287] ? do_writev+0x218/0x340 [ 99.791891][ T6287] do_futex+0x1e3/0x350 [ 99.791917][ T6287] ? __pfx_do_futex+0x10/0x10 [ 99.791939][ T6287] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 99.791988][ T6287] __x64_sys_futex+0x1e0/0x4c0 [ 99.792019][ T6287] ? __pfx___x64_sys_futex+0x10/0x10 [ 99.792047][ T6287] ? __pfx_do_writev+0x10/0x10 [ 99.792089][ T6287] do_syscall_64+0xcd/0xfa0 [ 99.792127][ T6287] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 99.792153][ T6287] RIP: 0033:0x7fc107b8eec9 [ 99.792181][ T6287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 99.792206][ T6287] RSP: 002b:00007fc108ab70e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 99.792232][ T6287] RAX: ffffffffffffffda RBX: 00007fc107de5fa8 RCX: 00007fc107b8eec9 [ 99.792250][ T6287] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc107de5fac [ 99.792266][ T6287] RBP: 00007fc107de5fa0 R08: 00007fc108ab8000 R09: 0000000000000000 [ 99.792283][ T6287] R10: 000000000000000f R11: 0000000000000246 R12: 0000000000000000 [ 99.792298][ T6287] R13: 00007fc107de6038 R14: 00007ffe0e66ac60 R15: 00007ffe0e66ad48 [ 99.792335][ T6287] [ 99.792415][ T6268] __alloc_frozen_pages_noprof+0x25f/0x2470 [ 100.006808][ T6268] alloc_pages_mpol+0x1fb/0x550 [ 100.012062][ T6268] new_slab+0x24a/0x360 [ 100.016326][ T6268] ___slab_alloc+0xdc4/0x1ae0 [ 100.021029][ T6268] __slab_alloc.constprop.0+0x63/0x110 [ 100.035420][ T6268] kmem_cache_alloc_node_noprof+0x43c/0x770 [ 100.041377][ T6268] kmalloc_reserve+0x18b/0x2c0 [ 100.086062][ T6268] __alloc_skb+0x166/0x380 [ 100.090556][ T6268] ndisc_alloc_skb+0xd8/0x530 [ 100.095263][ T6268] ndisc_send_rs+0x36b/0x670 [ 100.116286][ T6268] addrconf_rs_timer+0x40d/0x840 [ 100.121297][ T6268] call_timer_fn+0x19a/0x620 [ 100.132809][ T6268] __run_timers+0x6ef/0x960 [ 100.138417][ T6268] run_timer_base+0x114/0x190 [ 100.143142][ T6268] page last free pid 5829 tgid 5829 stack trace: [ 100.151120][ T6268] __free_frozen_pages+0x7df/0x1160 [ 100.158746][ T6268] qlist_free_all+0x4d/0x120 [ 100.163543][ T6268] kasan_quarantine_reduce+0x195/0x1e0 [ 100.198542][ T6268] __kasan_slab_alloc+0x69/0x90 [ 100.203471][ T6268] __kmalloc_cache_noprof+0x274/0x780 [ 100.209604][ T6268] netdevice_event+0x365/0x9d0 [ 100.214414][ T6268] notifier_call_chain+0xbc/0x410 [ 100.235473][ T6268] call_netdevice_notifiers_info+0xbe/0x140 [ 100.252820][ T6268] __dev_notify_flags+0x12c/0x2e0 [ 100.258332][ T6268] netif_change_flags+0x108/0x160 [ 100.265690][ T6268] do_setlink.constprop.0+0xb53/0x4380 [ 100.292554][ T6268] rtnl_newlink+0x1446/0x2000 [ 100.297823][ T6268] rtnetlink_rcv_msg+0x95e/0xe90 [ 100.325611][ T6268] netlink_rcv_skb+0x158/0x420 [ 100.338539][ T6268] netlink_unicast+0x5aa/0x870 [ 100.343378][ T6268] netlink_sendmsg+0x8c8/0xdd0 [ 100.797491][ T3564] netdevsim netdevsim15 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.038933][ T6329] binder: BINDER_SET_CONTEXT_MGR already set [ 101.045256][ T6329] binder: 6320:6329 ioctl 4018620d 9 returned -16 [ 101.076126][ T3564] netdevsim netdevsim15 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.134908][ T3564] netdevsim netdevsim15 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.182892][ T3564] netdevsim netdevsim15 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.229017][ T3564] netdevsim netdevsim15 eth4: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.652580][ T6335] netlink: 24 bytes leftover after parsing attributes in process `syz.3.89'. [ 101.966759][ T6335] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 101.993250][ T6335] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 102.062156][ T6335] bond0 (unregistering): Released all slaves [ 102.385816][ T6349] block2mtd: illegal erase size [ 103.611751][ T6364] zswap: compressor 000 not available [ 103.742926][ T6385] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input5 [ 105.607251][ T6428] netlink: 4 bytes leftover after parsing attributes in process `syz.3.100'. [ 107.702421][ T6489] binder: BINDER_SET_CONTEXT_MGR already set [ 107.708671][ T6489] binder: 6472:6489 ioctl 4018620d 9 returned -16 [ 110.307514][ T6554] binder: BINDER_SET_CONTEXT_MGR already set [ 110.313613][ T6554] binder: 6546:6554 ioctl 4018620d 9 returned -16 [ 110.348724][ T6558] FAULT_INJECTION: forcing a failure. [ 110.348724][ T6558] name failslab, interval 1, probability 0, space 0, times 0 [ 110.361779][ T6558] CPU: 0 UID: 0 PID: 6558 Comm: syz.0.122 Not tainted syzkaller #0 PREEMPT(full) [ 110.361801][ T6558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 110.361811][ T6558] Call Trace: [ 110.361818][ T6558] [ 110.361825][ T6558] dump_stack_lvl+0x16c/0x1f0 [ 110.361859][ T6558] should_fail_ex+0x512/0x640 [ 110.361886][ T6558] ? __kmalloc_cache_noprof+0x5f/0x780 [ 110.361906][ T6558] should_failslab+0xc2/0x120 [ 110.361925][ T6558] __kmalloc_cache_noprof+0x72/0x780 [ 110.361945][ T6558] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 110.361966][ T6558] ? sctp_endpoint_new+0xfc/0xb20 [ 110.361991][ T6558] ? sctp_endpoint_new+0xfc/0xb20 [ 110.362012][ T6558] sctp_endpoint_new+0xfc/0xb20 [ 110.362036][ T6558] ? __pfx_sctp_endpoint_new+0x10/0x10 [ 110.362058][ T6558] ? lockdep_init_map_type+0x5c/0x280 [ 110.362075][ T6558] ? lockdep_init_map_type+0x5c/0x280 [ 110.362093][ T6558] sctp_init_sock+0xe2b/0x12f0 [ 110.362117][ T6558] ? __pfx_sctp_init_sock+0x10/0x10 [ 110.362139][ T6558] inet_create+0x939/0x1040 [ 110.362158][ T6558] ? inet_create+0x93/0x1040 [ 110.362180][ T6558] __sock_create+0x338/0x8d0 [ 110.362200][ T6558] __sys_socket+0x14d/0x260 [ 110.362218][ T6558] ? __pfx___sys_socket+0x10/0x10 [ 110.362234][ T6558] ? xfd_validate_state+0x61/0x180 [ 110.362250][ T6558] ? __pfx_ksys_write+0x10/0x10 [ 110.362274][ T6558] __x64_sys_socket+0x72/0xb0 [ 110.362289][ T6558] ? lockdep_hardirqs_on+0x7c/0x110 [ 110.362310][ T6558] do_syscall_64+0xcd/0xfa0 [ 110.362333][ T6558] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 110.362348][ T6558] RIP: 0033:0x7efea738eec9 [ 110.362361][ T6558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 110.362374][ T6558] RSP: 002b:00007efea828c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 110.362388][ T6558] RAX: ffffffffffffffda RBX: 00007efea75e6090 RCX: 00007efea738eec9 [ 110.362397][ T6558] RDX: 0000000000000084 RSI: 0000000000000801 RDI: 0000000000000002 [ 110.362406][ T6558] RBP: 00007efea7411f91 R08: 0000000000000000 R09: 0000000000000000 [ 110.362414][ T6558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 110.362423][ T6558] R13: 00007efea75e6128 R14: 00007efea75e6090 R15: 00007ffe8fe00648 [ 110.362441][ T6558] [ 111.386665][ T6576] binder: BINDER_SET_CONTEXT_MGR already set [ 111.392667][ T6576] binder: 6562:6576 ioctl 4018620d 9 returned -16 [ 112.331942][ T6591] sd 0:0:1:0: device reset [ 112.732445][ T6605] FAULT_INJECTION: forcing a failure. [ 112.732445][ T6605] name failslab, interval 1, probability 0, space 0, times 0 [ 112.757733][ T6605] CPU: 1 UID: 0 PID: 6605 Comm: syz.1.133 Not tainted syzkaller #0 PREEMPT(full) [ 112.757765][ T6605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 112.757779][ T6605] Call Trace: [ 112.757786][ T6605] [ 112.757794][ T6605] dump_stack_lvl+0x16c/0x1f0 [ 112.757830][ T6605] should_fail_ex+0x512/0x640 [ 112.757863][ T6605] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 112.757907][ T6605] should_failslab+0xc2/0x120 [ 112.757930][ T6605] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 112.757960][ T6605] ? stack_trace_save+0x8e/0xc0 [ 112.757995][ T6605] ? __d_alloc+0x32/0xae0 [ 112.758034][ T6605] ? __d_alloc+0x32/0xae0 [ 112.758063][ T6605] __d_alloc+0x32/0xae0 [ 112.758099][ T6605] d_alloc_parallel+0x111/0x1510 [ 112.758136][ T6605] ? find_held_lock+0x2b/0x80 [ 112.758169][ T6605] ? __pfx_d_alloc_parallel+0x10/0x10 [ 112.758197][ T6605] ? __d_lookup+0x266/0x4a0 [ 112.758231][ T6605] lookup_open.isra.0+0x665/0x1580 [ 112.758266][ T6605] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 112.758301][ T6605] ? find_held_lock+0x2b/0x80 [ 112.758340][ T6605] ? __pfx_down_write+0x10/0x10 [ 112.758372][ T6605] path_openat+0x893/0x2cb0 [ 112.758416][ T6605] ? __pfx_path_openat+0x10/0x10 [ 112.758450][ T6605] ? __lock_acquire+0xb8a/0x1c90 [ 112.758480][ T6605] do_filp_open+0x20b/0x470 [ 112.758512][ T6605] ? __pfx_do_filp_open+0x10/0x10 [ 112.758573][ T6605] ? alloc_fd+0x471/0x7d0 [ 112.758610][ T6605] do_sys_openat2+0x11b/0x1d0 [ 112.758637][ T6605] ? __pfx_do_sys_openat2+0x10/0x10 [ 112.758674][ T6605] __x64_sys_openat+0x174/0x210 [ 112.758698][ T6605] ? __pfx___x64_sys_openat+0x10/0x10 [ 112.758737][ T6605] do_syscall_64+0xcd/0xfa0 [ 112.758770][ T6605] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.758793][ T6605] RIP: 0033:0x7f0df278eec9 [ 112.758811][ T6605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 112.758831][ T6605] RSP: 002b:00007f0df36cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 112.758853][ T6605] RAX: ffffffffffffffda RBX: 00007f0df29e5fa0 RCX: 00007f0df278eec9 [ 112.758869][ T6605] RDX: 000000000000a140 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 112.758884][ T6605] RBP: 00007f0df2811f91 R08: 0000000000000000 R09: 0000000000000000 [ 112.758906][ T6605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 112.758919][ T6605] R13: 00007f0df29e6038 R14: 00007f0df29e5fa0 R15: 00007ffd3ca53e58 [ 112.758954][ T6605] [ 113.007263][ C1] vkms_vblank_simulate: vblank timer overrun [ 113.021912][ T6611] sd 0:0:1:0: device reset [ 113.677593][ T6601] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000 [ 113.691876][ T6601] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 113.704759][ T6601] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 113.712554][ T6601] page_type: f5(slab) [ 113.716812][ T6601] raw: 00fff00000000040 ffff888140aedc80 ffffea0001edcf00 dead000000000004 [ 113.726800][ T6601] raw: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000 [ 113.737874][ T6601] head: 00fff00000000040 ffff888140aedc80 ffffea0001edcf00 dead000000000004 [ 113.747840][ T6601] head: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000 [ 113.756724][ T6601] head: 00fff00000000002 ffffea0001e00001 00000000ffffffff 00000000ffffffff [ 113.766282][ T6601] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004 [ 113.775255][ T6601] page dumped because: unmovable page [ 113.780823][ T6601] page_owner tracks the page as allocated [ 113.786926][ T6601] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5922, tgid 5922 (syz.3.5), ts 88006631183, free_ts 80955787154 [ 113.811871][ T6601] post_alloc_hook+0x1c0/0x230 [ 113.816820][ T6601] get_page_from_freelist+0x10a3/0x3a30 [ 113.822505][ T6601] __alloc_frozen_pages_noprof+0x25f/0x2470 [ 113.828679][ T6601] alloc_pages_mpol+0x1fb/0x550 [ 113.833659][ T6601] new_slab+0x24a/0x360 [ 113.837960][ T6601] ___slab_alloc+0xdc4/0x1ae0 [ 113.850431][ T6601] __slab_alloc.constprop.0+0x63/0x110 [ 113.861607][ T6601] kmem_cache_alloc_node_noprof+0x43c/0x770 [ 113.871220][ T6601] kmalloc_reserve+0x18b/0x2c0 [ 113.879424][ T6601] __alloc_skb+0x166/0x380 [ 113.888430][ T6601] ndisc_alloc_skb+0xd8/0x530 [ 113.896370][ T6601] ndisc_send_rs+0x36b/0x670 [ 113.902103][ T6601] addrconf_rs_timer+0x40d/0x840 [ 113.907552][ T6601] call_timer_fn+0x19a/0x620 [ 113.912421][ T6601] __run_timers+0x6ef/0x960 [ 113.917458][ T6601] run_timer_base+0x114/0x190 [ 113.922236][ T6601] page last free pid 5829 tgid 5829 stack trace: [ 113.965424][ T6601] __free_frozen_pages+0x7df/0x1160 [ 113.970773][ T6601] qlist_free_all+0x4d/0x120 [ 113.975801][ T6601] kasan_quarantine_reduce+0x195/0x1e0 [ 113.982498][ T6601] __kasan_slab_alloc+0x69/0x90 [ 113.987879][ T6601] __kmalloc_cache_noprof+0x274/0x780 [ 113.993370][ T6601] netdevice_event+0x365/0x9d0 [ 113.998687][ T6601] notifier_call_chain+0xbc/0x410 [ 114.004413][ T6601] call_netdevice_notifiers_info+0xbe/0x140 [ 114.010920][ T6601] __dev_notify_flags+0x12c/0x2e0 [ 114.016362][ T6601] netif_change_flags+0x108/0x160 [ 114.021448][ T6601] do_setlink.constprop.0+0xb53/0x4380 [ 114.027474][ T6601] rtnl_newlink+0x1446/0x2000 [ 114.032209][ T6601] rtnetlink_rcv_msg+0x95e/0xe90 [ 114.038464][ T6601] netlink_rcv_skb+0x158/0x420 [ 114.043347][ T6601] netlink_unicast+0x5aa/0x870 [ 114.048962][ T6601] netlink_sendmsg+0x8c8/0xdd0 [ 114.222554][ T6636] FAULT_INJECTION: forcing a failure. [ 114.222554][ T6636] name failslab, interval 1, probability 0, space 0, times 0 [ 114.265994][ T6636] CPU: 1 UID: 0 PID: 6636 Comm: syz.0.138 Not tainted syzkaller #0 PREEMPT(full) [ 114.266026][ T6636] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 114.266040][ T6636] Call Trace: [ 114.266048][ T6636] [ 114.266056][ T6636] dump_stack_lvl+0x16c/0x1f0 [ 114.266095][ T6636] should_fail_ex+0x512/0x640 [ 114.266129][ T6636] ? __kmalloc_noprof+0xca/0x880 [ 114.266160][ T6636] should_failslab+0xc2/0x120 [ 114.266184][ T6636] __kmalloc_noprof+0xdd/0x880 [ 114.266210][ T6636] ? lockdep_hardirqs_on+0x7c/0x110 [ 114.266243][ T6636] ? scsi_ioctl_reset+0x136/0x850 [ 114.266281][ T6636] ? scsi_ioctl_reset+0x136/0x850 [ 114.266310][ T6636] scsi_ioctl_reset+0x136/0x850 [ 114.266362][ T6636] scsi_ioctl+0xfa3/0x1830 [ 114.266389][ T6636] ? __pfx___might_resched+0x10/0x10 [ 114.266421][ T6636] ? tomoyo_path_number_perm+0x295/0x580 [ 114.266450][ T6636] ? __pfx_scsi_ioctl+0x10/0x10 [ 114.266483][ T6636] ? __pfx_scsi_block_when_processing_errors+0x10/0x10 [ 114.266514][ T6636] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 114.266544][ T6636] ? find_held_lock+0x2b/0x80 [ 114.266589][ T6636] sg_ioctl+0xb98/0x27f0 [ 114.266625][ T6636] ? __pfx_sg_ioctl+0x10/0x10 [ 114.266652][ T6636] ? find_held_lock+0x2b/0x80 [ 114.266682][ T6636] ? hook_file_ioctl_common+0x145/0x410 [ 114.266720][ T6636] ? __fget_files+0x20e/0x3c0 [ 114.266760][ T6636] ? __pfx_sg_ioctl+0x10/0x10 [ 114.266788][ T6636] __x64_sys_ioctl+0x18e/0x210 [ 114.266818][ T6636] do_syscall_64+0xcd/0xfa0 [ 114.266853][ T6636] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 114.266878][ T6636] RIP: 0033:0x7efea738eec9 [ 114.266897][ T6636] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 114.266919][ T6636] RSP: 002b:00007efea82ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 114.266942][ T6636] RAX: ffffffffffffffda RBX: 00007efea75e5fa0 RCX: 00007efea738eec9 [ 114.266958][ T6636] RDX: 0000000000000000 RSI: 0000000000002284 RDI: 0000000000000005 [ 114.266972][ T6636] RBP: 00007efea82ad090 R08: 0000000000000000 R09: 0000000000000000 [ 114.266986][ T6636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 114.266999][ T6636] R13: 00007efea75e6038 R14: 00007efea75e5fa0 R15: 00007ffe8fe00648 [ 114.267034][ T6636] [ 114.500899][ C1] vkms_vblank_simulate: vblank timer overrun [ 115.822541][ T6677] process 'syz.3.145' launched './file0' with NULL argv: empty string added [ 117.189931][ T6693] FAULT_INJECTION: forcing a failure. [ 117.189931][ T6693] name failslab, interval 1, probability 0, space 0, times 0 [ 117.316193][ T6701] zswap: compressor not available [ 117.420672][ T6693] CPU: 0 UID: 0 PID: 6693 Comm: syz.1.151 Not tainted syzkaller #0 PREEMPT(full) [ 117.420694][ T6693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 117.420703][ T6693] Call Trace: [ 117.420709][ T6693] [ 117.420715][ T6693] dump_stack_lvl+0x16c/0x1f0 [ 117.420740][ T6693] should_fail_ex+0x512/0x640 [ 117.420762][ T6693] ? __kmalloc_cache_noprof+0x5f/0x780 [ 117.420782][ T6693] should_failslab+0xc2/0x120 [ 117.420796][ T6693] __kmalloc_cache_noprof+0x72/0x780 [ 117.420813][ T6693] ? percpu_ref_init+0xec/0x410 [ 117.420835][ T6693] ? percpu_ref_init+0xec/0x410 [ 117.420852][ T6693] ? __pfx_io_ring_ctx_ref_free+0x10/0x10 [ 117.420865][ T6693] percpu_ref_init+0xec/0x410 [ 117.420885][ T6693] io_uring_setup+0x4a6/0x20e0 [ 117.420906][ T6693] ? __pfx_io_uring_setup+0x10/0x10 [ 117.420924][ T6693] ? do_futex+0x122/0x350 [ 117.420939][ T6693] ? __pfx_do_futex+0x10/0x10 [ 117.420962][ T6693] ? xfd_validate_state+0x61/0x180 [ 117.420976][ T6693] ? __pfx_ksys_write+0x10/0x10 [ 117.420999][ T6693] __x64_sys_io_uring_setup+0xc2/0x170 [ 117.421019][ T6693] do_syscall_64+0xcd/0xfa0 [ 117.421040][ T6693] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.421054][ T6693] RIP: 0033:0x7f0df278eec9 [ 117.421066][ T6693] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 117.421080][ T6693] RSP: 002b:00007f0df366c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 117.421094][ T6693] RAX: ffffffffffffffda RBX: 00007f0df29e6270 RCX: 00007f0df278eec9 [ 117.421103][ T6693] RDX: 0000000000000000 RSI: 0000200000000340 RDI: 0000000000001d48 [ 117.421111][ T6693] RBP: 00007f0df2811f91 R08: 0000000000000000 R09: 0000000000000000 [ 117.421119][ T6693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 117.421127][ T6693] R13: 00007f0df29e6308 R14: 00007f0df29e6270 R15: 00007ffd3ca53e58 [ 117.421146][ T6693] [ 118.446201][ T6730] netlink: 24 bytes leftover after parsing attributes in process `syz.1.156'. [ 119.481363][ T6724] can: request_module (can-proto-5) failed. [ 119.807724][ T6730] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 119.827392][ T6730] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 119.847256][ T6730] bond0 (unregistering): Released all slaves [ 120.623973][ T6766] netlink: 146 bytes leftover after parsing attributes in process `syz.0.165'. [ 121.828186][ T6802] netlink: 28 bytes leftover after parsing attributes in process `syz.3.173'. [ 122.297928][ T6813] ptrace attach of "./syz-executor exec"[5827] was attempted by ""[6813] [ 122.308064][ T6808] netlink: 28 bytes leftover after parsing attributes in process `syz.3.174'. [ 122.379272][ T6813] FAULT_INJECTION: forcing a failure. [ 122.379272][ T6813] name failslab, interval 1, probability 0, space 0, times 0 [ 122.433870][ T6813] CPU: 0 UID: 0 PID: 6813 Comm: syz.1.175 Not tainted syzkaller #0 PREEMPT(full) [ 122.433906][ T6813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 122.433921][ T6813] Call Trace: [ 122.433929][ T6813] [ 122.433940][ T6813] dump_stack_lvl+0x16c/0x1f0 [ 122.433980][ T6813] should_fail_ex+0x512/0x640 [ 122.434019][ T6813] ? __kmalloc_cache_noprof+0x5f/0x780 [ 122.434062][ T6813] should_failslab+0xc2/0x120 [ 122.434088][ T6813] __kmalloc_cache_noprof+0x72/0x780 [ 122.434122][ T6813] ? __do_sys_fanotify_init+0x584/0xc80 [ 122.434158][ T6813] ? __do_sys_fanotify_init+0x584/0xc80 [ 122.434186][ T6813] __do_sys_fanotify_init+0x584/0xc80 [ 122.434221][ T6813] do_syscall_64+0xcd/0xfa0 [ 122.434259][ T6813] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.434285][ T6813] RIP: 0033:0x7f0df278eec9 [ 122.434317][ T6813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 122.434343][ T6813] RSP: 002b:00007f0df36ae038 EFLAGS: 00000246 ORIG_RAX: 000000000000012c [ 122.434368][ T6813] RAX: ffffffffffffffda RBX: 00007f0df29e6090 RCX: 00007f0df278eec9 [ 122.434384][ T6813] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000000000ba [ 122.434400][ T6813] RBP: 00007f0df2811f91 R08: 0000000000000000 R09: 0000000000000000 [ 122.434415][ T6813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 122.434430][ T6813] R13: 00007f0df29e6128 R14: 00007f0df29e6090 R15: 00007ffd3ca53e58 [ 122.434465][ T6813] [ 124.255923][ T6844] FAULT_INJECTION: forcing a failure. [ 124.255923][ T6844] name failslab, interval 1, probability 0, space 0, times 0 [ 124.285411][ T6844] CPU: 1 UID: 0 PID: 6844 Comm: syz.1.183 Not tainted syzkaller #0 PREEMPT(full) [ 124.285445][ T6844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 124.285461][ T6844] Call Trace: [ 124.285469][ T6844] [ 124.285479][ T6844] dump_stack_lvl+0x16c/0x1f0 [ 124.285519][ T6844] should_fail_ex+0x512/0x640 [ 124.285564][ T6844] ? fs_reclaim_acquire+0xae/0x150 [ 124.285590][ T6844] should_failslab+0xc2/0x120 [ 124.285618][ T6844] __kmalloc_noprof+0xdd/0x880 [ 124.285650][ T6844] ? tomoyo_encode2+0x100/0x3e0 [ 124.285687][ T6844] ? tomoyo_encode2+0x100/0x3e0 [ 124.285715][ T6844] tomoyo_encode2+0x100/0x3e0 [ 124.285751][ T6844] tomoyo_encode+0x29/0x50 [ 124.285781][ T6844] tomoyo_realpath_from_path+0x18f/0x6e0 [ 124.285827][ T6844] tomoyo_mkdev_perm+0x22b/0x570 [ 124.285854][ T6844] ? tomoyo_mkdev_perm+0x217/0x570 [ 124.285884][ T6844] ? __pfx_tomoyo_mkdev_perm+0x10/0x10 [ 124.285914][ T6844] ? do_raw_spin_lock+0x12c/0x2b0 [ 124.285954][ T6844] ? do_raw_spin_unlock+0x172/0x230 [ 124.286004][ T6844] ? __pfx_current_check_access_path+0x10/0x10 [ 124.286041][ T6844] ? simple_lookup+0x105/0x1d0 [ 124.286080][ T6844] tomoyo_path_mknod+0x12a/0x190 [ 124.286114][ T6844] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 124.286149][ T6844] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 124.286188][ T6844] security_path_mknod+0x161/0x310 [ 124.286221][ T6844] do_mknodat+0x239/0x5d0 [ 124.286257][ T6844] ? __pfx_do_mknodat+0x10/0x10 [ 124.286289][ T6844] ? getname_flags.part.0+0x1c5/0x550 [ 124.286325][ T6844] __x64_sys_mknod+0x87/0xb0 [ 124.286361][ T6844] do_syscall_64+0xcd/0xfa0 [ 124.286399][ T6844] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 124.286426][ T6844] RIP: 0033:0x7f0df278eec9 [ 124.286448][ T6844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 124.286470][ T6844] RSP: 002b:00007f0df36cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 124.286495][ T6844] RAX: ffffffffffffffda RBX: 00007f0df29e5fa0 RCX: 00007f0df278eec9 [ 124.286512][ T6844] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 124.286536][ T6844] RBP: 00007f0df2811f91 R08: 0000000000000000 R09: 0000000000000000 [ 124.286552][ T6844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 124.286567][ T6844] R13: 00007f0df29e6038 R14: 00007f0df29e5fa0 R15: 00007ffd3ca53e58 [ 124.286606][ T6844] [ 124.286635][ T6844] ERROR: Out of memory at tomoyo_realpath_from_path. [ 125.659290][ T6860] FAULT_INJECTION: forcing a failure. [ 125.659290][ T6860] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 125.682465][ T6865] netlink: 330 bytes leftover after parsing attributes in process `syz.2.189'. [ 125.706638][ T6860] CPU: 0 UID: 0 PID: 6860 Comm: syz.3.188 Not tainted syzkaller #0 PREEMPT(full) [ 125.706676][ T6860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 125.706692][ T6860] Call Trace: [ 125.706701][ T6860] [ 125.706711][ T6860] dump_stack_lvl+0x16c/0x1f0 [ 125.706754][ T6860] should_fail_ex+0x512/0x640 [ 125.706798][ T6860] should_fail_alloc_page+0xe7/0x130 [ 125.706827][ T6860] prepare_alloc_pages+0x3c2/0x610 [ 125.706858][ T6860] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 125.706898][ T6860] ? __pfx_try_to_migrate_one+0x10/0x10 [ 125.706939][ T6860] ? __up_read+0x1f8/0x750 [ 125.706972][ T6860] ? __pfx___up_read+0x10/0x10 [ 125.707002][ T6860] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 125.707035][ T6860] ? rmap_walk_anon+0x503/0x710 [ 125.707095][ T6860] __folio_alloc_noprof+0x11/0x220 [ 125.707128][ T6860] alloc_migration_target+0x24a/0x660 [ 125.707167][ T6860] migrate_pages_batch+0x3bc/0x3bb0 [ 125.707202][ T6860] ? __pfx_alloc_migration_target+0x10/0x10 [ 125.707245][ T6860] ? __pfx_migrate_pages_batch+0x10/0x10 [ 125.707283][ T6860] ? __pfx_walk_pgd_range+0x10/0x10 [ 125.707322][ T6860] migrate_pages_sync+0x12d/0x8a0 [ 125.707352][ T6860] ? __pfx_alloc_migration_target+0x10/0x10 [ 125.707392][ T6860] ? queue_pages_test_walk+0x279/0x410 [ 125.707420][ T6860] ? __pfx_migrate_pages_sync+0x10/0x10 [ 125.707448][ T6860] ? walk_page_test+0x9b/0x180 [ 125.707481][ T6860] ? walk_page_range_mm+0x235/0xb40 [ 125.707520][ T6860] migrate_pages+0x1b5f/0x23a0 [ 125.707551][ T6860] ? __pfx_alloc_migration_target+0x10/0x10 [ 125.707587][ T6860] ? __pfx_migrate_pages+0x10/0x10 [ 125.707616][ T6860] ? queue_pages_range+0x11e/0x180 [ 125.707657][ T6860] ? __pfx___up_read+0x10/0x10 [ 125.707684][ T6860] ? do_migrate_pages+0x458/0x750 [ 125.707711][ T6860] do_migrate_pages+0x48e/0x750 [ 125.707740][ T6860] ? __pfx_do_migrate_pages+0x10/0x10 [ 125.707766][ T6860] ? rcu_is_watching+0x12/0xc0 [ 125.707803][ T6860] ? cap_capable+0xb3/0x250 [ 125.707824][ T6860] ? get_task_mm+0xc2/0xf0 [ 125.707857][ T6860] ? security_capable+0x250/0x260 [ 125.707883][ T6860] kernel_migrate_pages+0x55b/0x700 [ 125.707909][ T6860] ? __pfx_kernel_migrate_pages+0x10/0x10 [ 125.707934][ T6860] ? __pfx_do_writev+0x10/0x10 [ 125.707973][ T6860] __x64_sys_migrate_pages+0x96/0x100 [ 125.707997][ T6860] ? lockdep_hardirqs_on+0x7c/0x110 [ 125.708032][ T6860] do_syscall_64+0xcd/0xfa0 [ 125.708070][ T6860] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 125.708096][ T6860] RIP: 0033:0x7fc64418eec9 [ 125.708116][ T6860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 125.708138][ T6860] RSP: 002b:00007fc645048038 EFLAGS: 00000246 ORIG_RAX: 0000000000000100 [ 125.708162][ T6860] RAX: ffffffffffffffda RBX: 00007fc6443e5fa0 RCX: 00007fc64418eec9 [ 125.708179][ T6860] RDX: 0000200000000100 RSI: 000000000000000a RDI: 0000000000000000 [ 125.708194][ T6860] RBP: 00007fc644211f91 R08: 0000000000000000 R09: 0000000000000000 [ 125.708207][ T6860] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000000 [ 125.708222][ T6860] R13: 00007fc6443e6038 R14: 00007fc6443e5fa0 R15: 00007ffc9c503ba8 [ 125.708256][ T6860] [ 126.027470][ C0] vkms_vblank_simulate: vblank timer overrun [ 126.732592][ T6886] syz.3.192 (6886): /proc/6885/oom_adj is deprecated, please use /proc/6885/oom_score_adj instead. [ 126.837439][ T6890] netlink: 338 bytes leftover after parsing attributes in process `syz.1.193'. [ 127.866648][ T6912] FAULT_INJECTION: forcing a failure. [ 127.866648][ T6912] name fail_futex, interval 1, probability 0, space 0, times 0 [ 127.913445][ T6912] CPU: 0 UID: 0 PID: 6912 Comm: syz.0.197 Not tainted syzkaller #0 PREEMPT(full) [ 127.913481][ T6912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 127.913495][ T6912] Call Trace: [ 127.913505][ T6912] [ 127.913515][ T6912] dump_stack_lvl+0x16c/0x1f0 [ 127.913556][ T6912] should_fail_ex+0x512/0x640 [ 127.913599][ T6912] get_futex_key+0x1d0/0x1560 [ 127.913643][ T6912] ? __pfx_get_futex_key+0x10/0x10 [ 127.913700][ T6912] futex_wait_setup+0x9d/0x550 [ 127.913743][ T6912] __futex_wait+0x193/0x2f0 [ 127.913773][ T6912] ? __pfx___futex_wait+0x10/0x10 [ 127.913810][ T6912] ? __pfx_futex_wake_mark+0x10/0x10 [ 127.913846][ T6912] ? futex_private_hash_put+0x176/0x300 [ 127.913888][ T6912] ? futex_private_hash_put+0x18a/0x300 [ 127.913926][ T6912] futex_wait+0xe8/0x380 [ 127.913956][ T6912] ? __pfx_futex_wait+0x10/0x10 [ 127.913995][ T6912] ? _copy_from_user+0x59/0xd0 [ 127.914016][ T6912] ? io_uring_setup+0x16e4/0x20e0 [ 127.914053][ T6912] do_futex+0x229/0x350 [ 127.914078][ T6912] ? __pfx_do_futex+0x10/0x10 [ 127.914110][ T6912] __x64_sys_futex+0x1e0/0x4c0 [ 127.914140][ T6912] ? __pfx___x64_sys_futex+0x10/0x10 [ 127.914176][ T6912] ? xfd_validate_state+0x61/0x180 [ 127.914206][ T6912] ? __pfx_ksys_write+0x10/0x10 [ 127.914251][ T6912] do_syscall_64+0xcd/0xfa0 [ 127.914291][ T6912] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 127.914316][ T6912] RIP: 0033:0x7efea738eec9 [ 127.914336][ T6912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 127.914359][ T6912] RSP: 002b:00007efea82ad0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 127.914382][ T6912] RAX: ffffffffffffffda RBX: 00007efea75e5fa8 RCX: 00007efea738eec9 [ 127.914398][ T6912] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007efea75e5fa8 [ 127.914412][ T6912] RBP: 00007efea75e5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 127.914427][ T6912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 127.914442][ T6912] R13: 00007efea75e6038 R14: 00007ffe8fe00560 R15: 00007ffe8fe00648 [ 127.914475][ T6912] [ 128.123917][ C0] vkms_vblank_simulate: vblank timer overrun [ 128.252678][ T6919] random: crng reseeded on system resumption [ 128.373086][ T6915] netlink: 28 bytes leftover after parsing attributes in process `syz.1.198'. [ 129.152112][ T60] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 129.281489][ T60] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 129.417007][ T60] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 129.600625][ T60] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 129.646944][ T6943] netlink: 338 bytes leftover after parsing attributes in process `syz.2.208'. [ 129.902548][ T60] bridge_slave_1: left allmulticast mode [ 129.915466][ T60] bridge_slave_1: left promiscuous mode [ 129.926856][ T60] bridge0: port 2(bridge_slave_1) entered disabled state [ 129.949146][ T60] bridge_slave_0: left allmulticast mode [ 129.954830][ T60] bridge_slave_0: left promiscuous mode [ 129.975918][ T60] bridge0: port 1(bridge_slave_0) entered disabled state [ 130.128855][ T6929] kexec: Could not allocate control_code_buffer [ 130.228561][ T5845] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 130.254087][ T5845] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 130.263543][ T5845] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 130.274867][ T5845] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 130.284268][ T5845] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 130.715087][ T60] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 130.745972][ T60] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 130.764878][ T60] bond0 (unregistering): Released all slaves [ 131.541225][ T6962] can: request_module (can-proto-5) failed. [ 131.572555][ T60] hsr_slave_0: left promiscuous mode [ 131.635648][ T60] hsr_slave_1: left promiscuous mode [ 131.674233][ T60] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 131.695249][ T60] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 131.718851][ T60] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 131.746683][ T60] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 131.778608][ T6975] FAULT_INJECTION: forcing a failure. [ 131.778608][ T6975] name failslab, interval 1, probability 0, space 0, times 0 [ 131.828344][ T6975] CPU: 1 UID: 0 PID: 6975 Comm: syz.2.213 Not tainted syzkaller #0 PREEMPT(full) [ 131.828362][ T60] veth1_macvtap: left promiscuous mode [ 131.828375][ T6975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 131.828387][ T6975] Call Trace: [ 131.828394][ T6975] [ 131.828403][ T6975] dump_stack_lvl+0x16c/0x1f0 [ 131.828437][ T6975] should_fail_ex+0x512/0x640 [ 131.828468][ T6975] should_failslab+0xc2/0x120 [ 131.828489][ T6975] __kmalloc_cache_noprof+0x72/0x780 [ 131.828512][ T6975] ? sdev_prefix_printk+0xe8/0x230 [ 131.828545][ T6975] ? sdev_prefix_printk+0xe8/0x230 [ 131.828575][ T6975] sdev_prefix_printk+0xe8/0x230 [ 131.828606][ T6975] ? __pfx_sdev_prefix_printk+0x10/0x10 [ 131.828639][ T6975] ? do_raw_spin_lock+0x12c/0x2b0 [ 131.828669][ T6975] ? find_held_lock+0x2b/0x80 [ 131.828709][ T6975] virtscsi_device_reset+0x71/0x320 [ 131.828736][ T6975] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 131.828769][ T6975] scsi_ioctl_reset+0x51d/0x850 [ 131.828797][ T6975] ? __pfx_virtscsi_device_reset+0x10/0x10 [ 131.828828][ T6975] scsi_ioctl+0xfa3/0x1830 [ 131.828853][ T6975] ? __pfx___might_resched+0x10/0x10 [ 131.828884][ T6975] ? tomoyo_path_number_perm+0x295/0x580 [ 131.828911][ T6975] ? __pfx_scsi_ioctl+0x10/0x10 [ 131.828943][ T6975] ? __pfx_scsi_block_when_processing_errors+0x10/0x10 [ 131.828974][ T6975] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 131.829002][ T6975] ? find_held_lock+0x2b/0x80 [ 131.829045][ T6975] sg_ioctl+0xb98/0x27f0 [ 131.829076][ T6975] ? __pfx_sg_ioctl+0x10/0x10 [ 131.829109][ T6975] ? find_held_lock+0x2b/0x80 [ 131.829138][ T6975] ? hook_file_ioctl_common+0x145/0x410 [ 131.829174][ T6975] ? __fget_files+0x20e/0x3c0 [ 131.829209][ T6975] ? __pfx_sg_ioctl+0x10/0x10 [ 131.829235][ T6975] __x64_sys_ioctl+0x18e/0x210 [ 131.829263][ T6975] do_syscall_64+0xcd/0xfa0 [ 131.829298][ T6975] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.829321][ T6975] RIP: 0033:0x7fc107b8eec9 [ 131.829340][ T6975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 131.829360][ T6975] RSP: 002b:00007fc108ab7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 131.829382][ T6975] RAX: ffffffffffffffda RBX: 00007fc107de5fa0 RCX: 00007fc107b8eec9 [ 131.829397][ T6975] RDX: 0000000000000000 RSI: 0000000000002284 RDI: 0000000000000005 [ 131.829411][ T6975] RBP: 00007fc108ab7090 R08: 0000000000000000 R09: 0000000000000000 [ 131.829425][ T6975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 131.829438][ T6975] R13: 00007fc107de6038 R14: 00007fc107de5fa0 R15: 00007ffe0e66ad48 [ 131.829471][ T6975] [ 132.091269][ T60] veth0_macvtap: left promiscuous mode [ 132.098243][ T60] veth1_vlan: left promiscuous mode [ 132.103886][ T60] veth0_vlan: left promiscuous mode [ 132.325889][ T5845] Bluetooth: hci2: command tx timeout [ 132.822133][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.831509][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.960958][ T60] team0 (unregistering): Port device team_slave_1 removed [ 132.991002][ T60] team0 (unregistering): Port device team_slave_0 removed [ 133.426586][ T6945] chnl_net:caif_netlink_parms(): no params data found [ 133.872341][ T6945] bridge0: port 1(bridge_slave_0) entered blocking state [ 133.880379][ T6945] bridge0: port 1(bridge_slave_0) entered disabled state [ 133.895809][ T6945] bridge_slave_0: entered allmulticast mode [ 133.907338][ T6945] bridge_slave_0: entered promiscuous mode [ 133.946972][ T6945] bridge0: port 2(bridge_slave_1) entered blocking state [ 133.972365][ T6945] bridge0: port 2(bridge_slave_1) entered disabled state [ 134.030749][ T6945] bridge_slave_1: entered allmulticast mode [ 134.038923][ T6945] bridge_slave_1: entered promiscuous mode [ 134.239085][ T6945] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 134.291954][ T6945] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 134.411540][ T5845] Bluetooth: hci2: command tx timeout [ 134.562409][ T6945] team0: Port device team_slave_0 added [ 134.597068][ T6945] team0: Port device team_slave_1 added [ 134.710343][ T6945] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 134.726419][ T6945] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 134.754409][ T6945] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 134.768434][ T6945] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 134.780938][ T6945] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 134.809631][ T6945] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 135.033320][ T6945] hsr_slave_0: entered promiscuous mode [ 135.049899][ T6945] hsr_slave_1: entered promiscuous mode [ 135.068678][ T6945] debugfs: 'hsr0' already exists in 'hsr' [ 135.092853][ T6945] Cannot create hsr debugfs directory [ 135.128987][ T7061] [U] [ 135.132014][ T7061] [U] [ 135.134735][ T7061] [U] [ 135.137459][ T7061] [U] [ 135.140174][ T7061] [U] [ 135.155222][ T7061] [U] [ 135.157976][ T7061] [U] [ 135.160689][ T7061] [U] [ 135.163402][ T7061] [U] [ 135.168194][ T7061] [U] [ 135.170922][ T7061] [U] [ 135.173636][ T7061] [U] [ 135.176475][ T7061] [U] [ 135.179701][ T7061] [U] [ 135.182422][ T7061] [U] [ 135.185135][ T7061] [U] [ 135.187852][ T7061] [U] [ 135.190948][ T7061] [U] [ 135.193665][ T7061] [U] [ 135.196380][ T7061] [U] [ 135.199111][ T7061] [U] [ 135.202362][ T7061] [U] [ 135.205082][ T7061] [U] [ 135.207796][ T7061] [U] [ 135.210519][ T7061] [U] [ 135.213831][ T7061] [U] [ 135.216637][ T7061] [U] [ 135.219345][ T7061] [U] [ 135.222053][ T7061] [U] [ 135.225162][ T7061] [U] [ 135.227881][ T7061] [U] [ 135.230592][ T7061] [U] [ 135.233301][ T7061] [U] [ 135.324565][ T7061] [U] [ 135.327327][ T7061] [U] [ 135.330153][ T7061] [U] [ 135.332872][ T7061] [U] [ 135.336881][ T7061] [U] [ 135.339616][ T7061] [U] [ 135.342327][ T7061] [U] [ 135.345041][ T7061] [U] [ 135.367979][ T7061] [U] [ 135.370743][ T7061] [U] [ 135.373461][ T7061] [U] [ 135.376179][ T7061] [U] [ 135.389246][ T7061] [U] [ 135.392002][ T7061] [U] [ 135.394760][ T7061] [U] [ 135.397479][ T7061] [U] [ 135.479029][ T7061] [U] [ 135.481782][ T7061] [U] [ 135.484502][ T7061] [U] [ 135.487299][ T7061] [U] [ 135.571894][ T7061] [U] [ 135.574736][ T7061] [U] [ 135.577554][ T7061] [U] [ 135.580535][ T7061] [U] [ 135.649393][ T7061] [U] [ 135.652145][ T7061] [U] [ 135.654839][ T7061] [U] [ 135.657531][ T7061] [U] [ 135.661158][ T7061] [U] [ 135.663919][ T7061] [U] [ 135.666630][ T7061] [U] [ 135.669350][ T7061] [U] [ 135.704749][ T7061] [U] [ 135.707521][ T7061] [U] [ 135.710245][ T7061] [U] [ 135.713047][ T7061] [U] [ 135.747119][ T7061] [U] [ 135.749881][ T7061] [U] [ 135.752873][ T7061] [U] [ 135.755573][ T7061] [U] [ 135.758912][ T7061] [U] [ 135.761635][ T7061] [U] [ 135.764344][ T7061] [U] [ 135.767213][ T7061] [U] [ 135.770588][ T7061] [U] [ 135.773312][ T7061] [U] [ 135.776020][ T7061] [U] [ 135.778742][ T7061] [U] [ 135.784218][ T7061] [U] [ 135.786960][ T7061] [U] [ 135.789669][ T7061] [U] [ 135.792380][ T7061] [U] [ 135.797984][ T7061] [U] [ 135.800888][ T7061] [U] [ 135.803601][ T7061] [U] [ 135.806317][ T7061] [U] [ 135.826894][ T7061] [U] [ 135.829640][ T7061] [U] [ 135.832348][ T7061] [U] [ 135.835047][ T7061] [U] [ 135.851156][ T7061] [U] [ 135.853941][ T7061] [U] [ 135.856657][ T7061] [U] [ 135.859385][ T7061] [U] [ 135.867716][ T7061] [U] [ 135.870455][ T7061] [U] [ 135.873165][ T7061] [U] [ 135.875870][ T7061] [U] [ 135.880289][ T7061] [U] [ 135.883033][ T7061] [U] [ 135.885748][ T7061] [U] [ 135.888452][ T7061] [U] [ 135.892110][ T7061] [U] [ 135.894838][ T7061] [U] [ 135.897554][ T7061] [U] [ 135.900274][ T7061] [U] [ 135.961719][ T7061] [U] [ 136.242071][ T6945] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 136.292254][ T6945] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 136.349961][ T6945] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 136.390562][ T6945] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 136.486837][ T5845] Bluetooth: hci2: command tx timeout [ 136.901753][ T6945] 8021q: adding VLAN 0 to HW filter on device bond0 [ 137.108051][ T6945] 8021q: adding VLAN 0 to HW filter on device team0 [ 137.166656][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 137.174426][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 137.213997][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 137.221517][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 138.258244][ T6945] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 138.568458][ T5845] Bluetooth: hci2: command tx timeout [ 139.069187][ T7140] syz.2.235 (7140) used greatest stack depth: 19720 bytes left [ 139.129844][ T6945] veth0_vlan: entered promiscuous mode [ 139.174907][ T6945] veth1_vlan: entered promiscuous mode [ 139.286989][ T6945] veth0_macvtap: entered promiscuous mode [ 139.314175][ T6945] veth1_macvtap: entered promiscuous mode [ 139.384124][ T6945] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 139.409318][ T6945] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 139.455177][ T3564] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 139.482730][ T3564] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 139.498146][ T3564] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 139.508643][ T3564] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 139.682328][ T3564] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 139.701751][ T3564] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 139.781070][ T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 139.806544][ T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 140.659357][ T7196] program syz.3.246 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 140.685066][ T7198] sd 0:0:1:0: device reset [ 141.463670][ T7218] FAULT_INJECTION: forcing a failure. [ 141.463670][ T7218] name failslab, interval 1, probability 0, space 0, times 0 [ 141.510534][ T7218] CPU: 1 UID: 0 PID: 7218 Comm: syz.4.253 Not tainted syzkaller #0 PREEMPT(full) [ 141.510572][ T7218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 141.510588][ T7218] Call Trace: [ 141.510597][ T7218] [ 141.510607][ T7218] dump_stack_lvl+0x16c/0x1f0 [ 141.510657][ T7218] should_fail_ex+0x512/0x640 [ 141.510698][ T7218] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 141.510736][ T7218] should_failslab+0xc2/0x120 [ 141.510762][ T7218] kmem_cache_alloc_noprof+0x75/0x6e0 [ 141.510796][ T7218] ? __kernfs_new_node+0xd2/0x8e0 [ 141.510843][ T7218] ? __kernfs_new_node+0xd2/0x8e0 [ 141.510881][ T7218] __kernfs_new_node+0xd2/0x8e0 [ 141.510936][ T7218] ? __pfx___kernfs_new_node+0x10/0x10 [ 141.510987][ T7218] ? find_held_lock+0x2b/0x80 [ 141.511024][ T7218] ? kernfs_root+0xee/0x2a0 [ 141.511060][ T7218] kernfs_new_node+0x13c/0x1e0 [ 141.511095][ T7218] __kernfs_create_file+0x53/0x350 [ 141.511134][ T7218] cgroup_addrm_files+0x546/0xc20 [ 141.511181][ T7218] ? __pfx_cgroup_addrm_files+0x10/0x10 [ 141.511230][ T7218] ? css_next_child+0xcf/0x2d0 [ 141.511259][ T7218] ? css_next_descendant_pre+0x58/0x1a0 [ 141.511292][ T7218] css_populate_dir+0x343/0x580 [ 141.511335][ T7218] cgroup_mkdir+0x5c4/0x12e0 [ 141.511372][ T7218] ? __pfx_cgroup_mkdir+0x10/0x10 [ 141.511406][ T7218] kernfs_iop_mkdir+0x111/0x190 [ 141.511431][ T7218] ? bpf_lsm_inode_mkdir+0x9/0x10 [ 141.511466][ T7218] vfs_mkdir+0x593/0x8c0 [ 141.511501][ T7218] do_mkdirat+0x304/0x3e0 [ 141.511545][ T7218] ? __pfx_do_mkdirat+0x10/0x10 [ 141.511584][ T7218] ? getname_flags.part.0+0x1c5/0x550 [ 141.511617][ T7218] __x64_sys_mkdir+0xef/0x140 [ 141.511654][ T7218] do_syscall_64+0xcd/0xfa0 [ 141.511693][ T7218] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 141.511719][ T7218] RIP: 0033:0x7f6ef7d8eec9 [ 141.511740][ T7218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 141.511764][ T7218] RSP: 002b:00007f6ef5fd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 141.511788][ T7218] RAX: ffffffffffffffda RBX: 00007f6ef7fe6090 RCX: 00007f6ef7d8eec9 [ 141.511806][ T7218] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000 [ 141.511822][ T7218] RBP: 00007f6ef7e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 141.511837][ T7218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 141.511852][ T7218] R13: 00007f6ef7fe6128 R14: 00007f6ef7fe6090 R15: 00007ffc7488ba38 [ 141.511890][ T7218] [ 141.577008][ T7218] cgroup: cgroup_addrm_files: failed to add notify_on_release, err=-12 [ 141.868083][ T7222] input: f as /devices/virtual/input/input6 [ 143.808814][ T7272] FAULT_INJECTION: forcing a failure. [ 143.808814][ T7272] name failslab, interval 1, probability 0, space 0, times 0 [ 143.823887][ T7272] CPU: 0 UID: 0 PID: 7272 Comm: syz.4.267 Not tainted syzkaller #0 PREEMPT(full) [ 143.823920][ T7272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 143.823934][ T7272] Call Trace: [ 143.823942][ T7272] [ 143.823951][ T7272] dump_stack_lvl+0x16c/0x1f0 [ 143.823977][ T7272] should_fail_ex+0x512/0x640 [ 143.823998][ T7272] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 143.824025][ T7272] should_failslab+0xc2/0x120 [ 143.824038][ T7272] kmem_cache_alloc_noprof+0x75/0x6e0 [ 143.824055][ T7272] ? __kernfs_new_node+0xd2/0x8e0 [ 143.824080][ T7272] ? __kernfs_new_node+0xd2/0x8e0 [ 143.824100][ T7272] __kernfs_new_node+0xd2/0x8e0 [ 143.824123][ T7272] ? __pfx___kernfs_new_node+0x10/0x10 [ 143.824148][ T7272] ? find_held_lock+0x2b/0x80 [ 143.824167][ T7272] ? kernfs_root+0xee/0x2a0 [ 143.824184][ T7272] kernfs_new_node+0x13c/0x1e0 [ 143.824201][ T7272] __kernfs_create_file+0x53/0x350 [ 143.824221][ T7272] sysfs_add_file_mode_ns+0x207/0x3c0 [ 143.824247][ T7272] internal_create_group+0x578/0xf30 [ 143.824264][ T7272] ? __pfx_internal_create_group+0x10/0x10 [ 143.824281][ T7272] ? kernfs_create_link+0x1bd/0x240 [ 143.824301][ T7272] internal_create_groups+0x9d/0x150 [ 143.824316][ T7272] device_add+0xf30/0x1aa0 [ 143.824331][ T7272] ? __pfx_device_add+0x10/0x10 [ 143.824343][ T7272] ? lockdep_init_map_type+0x5c/0x280 [ 143.824359][ T7272] ? __init_waitqueue_head+0xca/0x150 [ 143.824380][ T7272] netdev_register_kobject+0x1a9/0x3d0 [ 143.824398][ T7272] register_netdevice+0x13dc/0x2270 [ 143.824417][ T7272] ? __pfx_register_netdevice+0x10/0x10 [ 143.824449][ T7272] slip_open+0xb86/0x1150 [ 143.824492][ T7272] ? __pfx_slip_open+0x10/0x10 [ 143.824524][ T7272] ? down_write+0x14d/0x200 [ 143.824549][ T7272] ? __pfx_slip_open+0x10/0x10 [ 143.824581][ T7272] tty_ldisc_open+0x9f/0x120 [ 143.824605][ T7272] tty_set_ldisc+0x32b/0x780 [ 143.824632][ T7272] tty_ioctl+0xc2d/0x1680 [ 143.824660][ T7272] ? __pfx_tty_ioctl+0x10/0x10 [ 143.824697][ T7272] ? find_held_lock+0x2b/0x80 [ 143.824727][ T7272] ? hook_file_ioctl_common+0x145/0x410 [ 143.824765][ T7272] ? __fget_files+0x20e/0x3c0 [ 143.824801][ T7272] ? __pfx_tty_ioctl+0x10/0x10 [ 143.824829][ T7272] __x64_sys_ioctl+0x18e/0x210 [ 143.824860][ T7272] do_syscall_64+0xcd/0xfa0 [ 143.824897][ T7272] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 143.824921][ T7272] RIP: 0033:0x7f6ef7d8eec9 [ 143.824946][ T7272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 143.824968][ T7272] RSP: 002b:00007f6ef5fd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 143.824991][ T7272] RAX: ffffffffffffffda RBX: 00007f6ef7fe6090 RCX: 00007f6ef7d8eec9 [ 143.825013][ T7272] RDX: 0000000000000000 RSI: 0000000000005423 RDI: 0000000000000007 [ 143.825028][ T7272] RBP: 00007f6ef7e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 143.825042][ T7272] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 143.825055][ T7272] R13: 00007f6ef7fe6128 R14: 00007f6ef7fe6090 R15: 00007ffc7488ba38 [ 143.825092][ T7272] [ 145.228299][ T7307] FAULT_INJECTION: forcing a failure. [ 145.228299][ T7307] name failslab, interval 1, probability 0, space 0, times 0 [ 145.327106][ T7307] CPU: 1 UID: 0 PID: 7307 Comm: syz.4.277 Not tainted syzkaller #0 PREEMPT(full) [ 145.327138][ T7307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 145.327152][ T7307] Call Trace: [ 145.327160][ T7307] [ 145.327175][ T7307] dump_stack_lvl+0x16c/0x1f0 [ 145.327214][ T7307] should_fail_ex+0x512/0x640 [ 145.327248][ T7307] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 145.327283][ T7307] should_failslab+0xc2/0x120 [ 145.327306][ T7307] kmem_cache_alloc_noprof+0x75/0x6e0 [ 145.327337][ T7307] ? taskstats_exit+0x654/0xbe0 [ 145.327372][ T7307] ? taskstats_exit+0x654/0xbe0 [ 145.327397][ T7307] ? acct_update_integrals+0x2ce/0x4a0 [ 145.327423][ T7307] taskstats_exit+0x654/0xbe0 [ 145.327454][ T7307] ? __pfx_taskstats_exit+0x10/0x10 [ 145.327486][ T7307] ? exit_signals+0x38e/0xb40 [ 145.327524][ T7307] do_exit+0x5dc/0x2bf0 [ 145.327554][ T7307] ? __pfx_do_exit+0x10/0x10 [ 145.327584][ T7307] ? do_raw_spin_lock+0x12c/0x2b0 [ 145.327612][ T7307] ? find_held_lock+0x2b/0x80 [ 145.327649][ T7307] do_group_exit+0xd3/0x2a0 [ 145.327676][ T7307] get_signal+0x2671/0x26d0 [ 145.327711][ T7307] ? _copy_from_user+0x59/0xd0 [ 145.327732][ T7307] ? io_uring_setup+0x16e4/0x20e0 [ 145.327771][ T7307] ? __pfx_get_signal+0x10/0x10 [ 145.327804][ T7307] ? do_futex+0x122/0x350 [ 145.327828][ T7307] ? __pfx_do_futex+0x10/0x10 [ 145.327855][ T7307] arch_do_signal_or_restart+0x8f/0x790 [ 145.327892][ T7307] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 145.327937][ T7307] ? xfd_validate_state+0x61/0x180 [ 145.327971][ T7307] exit_to_user_mode_loop+0x85/0x130 [ 145.328000][ T7307] do_syscall_64+0x426/0xfa0 [ 145.328036][ T7307] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 145.328065][ T7307] RIP: 0033:0x7f6ef7d8eec9 [ 145.328084][ T7307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 145.328104][ T7307] RSP: 002b:00007f6ef5ff60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 145.328130][ T7307] RAX: fffffffffffffe00 RBX: 00007f6ef7fe5fa8 RCX: 00007f6ef7d8eec9 [ 145.328146][ T7307] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6ef7fe5fa8 [ 145.328160][ T7307] RBP: 00007f6ef7fe5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 145.328174][ T7307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 145.328187][ T7307] R13: 00007f6ef7fe6038 R14: 00007ffc7488b950 R15: 00007ffc7488ba38 [ 145.328221][ T7307] [ 145.591452][ T7301] ima: policy update failed [ 145.607320][ T7309] FAULT_INJECTION: forcing a failure. [ 145.607320][ T7309] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 145.621140][ T7309] CPU: 1 UID: 0 PID: 7309 Comm: syz.1.278 Not tainted syzkaller #0 PREEMPT(full) [ 145.621159][ T7309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 145.621167][ T7309] Call Trace: [ 145.621172][ T7309] [ 145.621177][ T7309] dump_stack_lvl+0x16c/0x1f0 [ 145.621201][ T7309] should_fail_ex+0x512/0x640 [ 145.621225][ T7309] _copy_to_user+0x32/0xd0 [ 145.621239][ T7309] generic_map_update_batch+0x50d/0x610 [ 145.621263][ T7309] ? __pfx_generic_map_update_batch+0x10/0x10 [ 145.621283][ T7309] ? __pfx_generic_map_update_batch+0x10/0x10 [ 145.621301][ T7309] bpf_map_do_batch+0x5be/0x680 [ 145.621317][ T7309] __sys_bpf+0x482c/0x4980 [ 145.621337][ T7309] ? __pfx___sys_bpf+0x10/0x10 [ 145.621354][ T7309] ? find_held_lock+0x2b/0x80 [ 145.621376][ T7309] ? find_held_lock+0x2b/0x80 [ 145.621398][ T7309] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 145.621429][ T7309] ? fput+0x9b/0xd0 [ 145.621443][ T7309] ? ksys_write+0x1ac/0x250 [ 145.621462][ T7309] ? __pfx_ksys_write+0x10/0x10 [ 145.621483][ T7309] __x64_sys_bpf+0x78/0xc0 [ 145.621501][ T7309] ? lockdep_hardirqs_on+0x7c/0x110 [ 145.621526][ T7309] do_syscall_64+0xcd/0xfa0 [ 145.621547][ T7309] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 145.621561][ T7309] RIP: 0033:0x7f0df278eec9 [ 145.621574][ T7309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 145.621586][ T7309] RSP: 002b:00007f0df36cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 145.621599][ T7309] RAX: ffffffffffffffda RBX: 00007f0df29e5fa0 RCX: 00007f0df278eec9 [ 145.621608][ T7309] RDX: 0000000000000092 RSI: 0000200000000380 RDI: 000000000000001a [ 145.621616][ T7309] RBP: 00007f0df36cf090 R08: 0000000000000000 R09: 0000000000000000 [ 145.621624][ T7309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 145.621632][ T7309] R13: 00007f0df29e6038 R14: 00007f0df29e5fa0 R15: 00007ffd3ca53e58 [ 145.621650][ T7309] [ 145.850088][ T30] audit: type=1802 audit(1760666404.592:2): pid=7301 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.271" res=0 errno=0 [ 146.274522][ T7323] FAULT_INJECTION: forcing a failure. [ 146.274522][ T7323] name failslab, interval 1, probability 0, space 0, times 0 [ 146.289960][ T7323] CPU: 1 UID: 0 PID: 7323 Comm: syz.3.281 Not tainted syzkaller #0 PREEMPT(full) [ 146.289996][ T7323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 146.290011][ T7323] Call Trace: [ 146.290019][ T7323] [ 146.290028][ T7323] dump_stack_lvl+0x16c/0x1f0 [ 146.290067][ T7323] should_fail_ex+0x512/0x640 [ 146.290100][ T7323] ? __kmalloc_cache_noprof+0x5f/0x780 [ 146.290132][ T7323] should_failslab+0xc2/0x120 [ 146.290157][ T7323] __kmalloc_cache_noprof+0x72/0x780 [ 146.290190][ T7323] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 146.290223][ T7323] ? sctp_endpoint_new+0xfc/0xb20 [ 146.290266][ T7323] ? sctp_endpoint_new+0xfc/0xb20 [ 146.290301][ T7323] sctp_endpoint_new+0xfc/0xb20 [ 146.290341][ T7323] ? __pfx_sctp_endpoint_new+0x10/0x10 [ 146.290379][ T7323] ? lockdep_init_map_type+0x5c/0x280 [ 146.290410][ T7323] ? lockdep_init_map_type+0x5c/0x280 [ 146.290455][ T7323] sctp_init_sock+0xe2b/0x12f0 [ 146.290493][ T7323] ? __pfx_sctp_init_sock+0x10/0x10 [ 146.290531][ T7323] inet_create+0x939/0x1040 [ 146.290565][ T7323] ? inet_create+0x93/0x1040 [ 146.290603][ T7323] __sock_create+0x338/0x8d0 [ 146.290639][ T7323] __sys_socket+0x14d/0x260 [ 146.290669][ T7323] ? __pfx___sys_socket+0x10/0x10 [ 146.290696][ T7323] ? ksys_write+0x1ac/0x250 [ 146.290730][ T7323] ? __pfx_ksys_write+0x10/0x10 [ 146.290771][ T7323] __x64_sys_socket+0x72/0xb0 [ 146.290799][ T7323] ? lockdep_hardirqs_on+0x7c/0x110 [ 146.290835][ T7323] do_syscall_64+0xcd/0xfa0 [ 146.290873][ T7323] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 146.290899][ T7323] RIP: 0033:0x7fc64418eec9 [ 146.290920][ T7323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 146.290945][ T7323] RSP: 002b:00007fc645027038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 146.290971][ T7323] RAX: ffffffffffffffda RBX: 00007fc6443e6090 RCX: 00007fc64418eec9 [ 146.290989][ T7323] RDX: 0000000000000084 RSI: 0000000000000801 RDI: 0000000000000002 [ 146.291005][ T7323] RBP: 00007fc644211f91 R08: 0000000000000000 R09: 0000000000000000 [ 146.291021][ T7323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 146.291037][ T7323] R13: 00007fc6443e6128 R14: 00007fc6443e6090 R15: 00007ffc9c503ba8 [ 146.291074][ T7323] [ 147.227305][ T7334] FAULT_INJECTION: forcing a failure. [ 147.227305][ T7334] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 147.270662][ T7334] CPU: 1 UID: 0 PID: 7334 Comm: syz.2.283 Not tainted syzkaller #0 PREEMPT(full) [ 147.270694][ T7334] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 147.270708][ T7334] Call Trace: [ 147.270716][ T7334] [ 147.270726][ T7334] dump_stack_lvl+0x16c/0x1f0 [ 147.270764][ T7334] should_fail_ex+0x512/0x640 [ 147.270804][ T7334] _copy_from_iter+0x29f/0x1720 [ 147.270845][ T7334] ? __alloc_skb+0x200/0x380 [ 147.270878][ T7334] ? __pfx__copy_from_iter+0x10/0x10 [ 147.270916][ T7334] ? __pfx___might_resched+0x10/0x10 [ 147.270949][ T7334] ? __lock_acquire+0xb8a/0x1c90 [ 147.270983][ T7334] netlink_sendmsg+0x820/0xdd0 [ 147.271026][ T7334] ? __pfx_netlink_sendmsg+0x10/0x10 [ 147.271066][ T7334] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 147.271098][ T7334] ____sys_sendmsg+0xa98/0xc70 [ 147.271126][ T7334] ? copy_msghdr_from_user+0x10a/0x160 [ 147.271160][ T7334] ? __pfx_____sys_sendmsg+0x10/0x10 [ 147.271192][ T7334] ? kfree+0x252/0x6d0 [ 147.271216][ T7334] ? __pfx__kstrtoull+0x10/0x10 [ 147.271253][ T7334] ___sys_sendmsg+0x134/0x1d0 [ 147.271287][ T7334] ? __pfx____sys_sendmsg+0x10/0x10 [ 147.271352][ T7334] ? __pfx___might_resched+0x10/0x10 [ 147.271389][ T7334] __sys_sendmmsg+0x200/0x420 [ 147.271435][ T7334] ? __pfx___sys_sendmmsg+0x10/0x10 [ 147.271477][ T7334] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 147.271526][ T7334] ? fput+0x9b/0xd0 [ 147.271550][ T7334] ? ksys_write+0x1ac/0x250 [ 147.271581][ T7334] ? __pfx_ksys_write+0x10/0x10 [ 147.271618][ T7334] __x64_sys_sendmmsg+0x9c/0x100 [ 147.271652][ T7334] ? lockdep_hardirqs_on+0x7c/0x110 [ 147.271684][ T7334] do_syscall_64+0xcd/0xfa0 [ 147.271720][ T7334] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 147.271744][ T7334] RIP: 0033:0x7fc107b8eec9 [ 147.271764][ T7334] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 147.271785][ T7334] RSP: 002b:00007fc108a96038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 147.271809][ T7334] RAX: ffffffffffffffda RBX: 00007fc107de6090 RCX: 00007fc107b8eec9 [ 147.271824][ T7334] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 147.271839][ T7334] RBP: 00007fc108a96090 R08: 0000000000000000 R09: 0000000000000000 [ 147.271852][ T7334] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 147.271865][ T7334] R13: 00007fc107de6128 R14: 00007fc107de6090 R15: 00007ffe0e66ad48 [ 147.271900][ T7334] [ 148.902783][ T7373] sd 0:0:1:0: device reset [ 151.319576][ T7450] FAULT_INJECTION: forcing a failure. [ 151.319576][ T7450] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 151.334289][ T7450] CPU: 0 UID: 0 PID: 7450 Comm: syz.4.305 Not tainted syzkaller #0 PREEMPT(full) [ 151.334320][ T7450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 151.334332][ T7450] Call Trace: [ 151.334340][ T7450] [ 151.334348][ T7450] dump_stack_lvl+0x16c/0x1f0 [ 151.334382][ T7450] should_fail_ex+0x512/0x640 [ 151.334420][ T7450] _copy_to_user+0x32/0xd0 [ 151.334445][ T7450] simple_read_from_buffer+0xcb/0x170 [ 151.334476][ T7450] proc_fail_nth_read+0x197/0x240 [ 151.334505][ T7450] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 151.334537][ T7450] ? rw_verify_area+0xcf/0x6c0 [ 151.334564][ T7450] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 151.334596][ T7450] vfs_read+0x1e4/0xcf0 [ 151.334630][ T7450] ? __pfx___mutex_lock+0x10/0x10 [ 151.334664][ T7450] ? __pfx_vfs_read+0x10/0x10 [ 151.334705][ T7450] ? __fget_files+0x20e/0x3c0 [ 151.334746][ T7450] ksys_read+0x12a/0x250 [ 151.334776][ T7450] ? __pfx_ksys_read+0x10/0x10 [ 151.334818][ T7450] do_syscall_64+0xcd/0xfa0 [ 151.334855][ T7450] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 151.334880][ T7450] RIP: 0033:0x7f6ef7d8d8dc [ 151.334899][ T7450] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 151.334920][ T7450] RSP: 002b:00007f6ef5ff6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 151.334949][ T7450] RAX: ffffffffffffffda RBX: 00007f6ef7fe5fa0 RCX: 00007f6ef7d8d8dc [ 151.334964][ T7450] RDX: 000000000000000f RSI: 00007f6ef5ff60a0 RDI: 0000000000000001 [ 151.334979][ T7450] RBP: 00007f6ef5ff6090 R08: 0000000000000000 R09: 0000000000000000 [ 151.334993][ T7450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 151.335007][ T7450] R13: 00007f6ef7fe6038 R14: 00007f6ef7fe5fa0 R15: 00007ffc7488ba38 [ 151.335044][ T7450] [ 151.775667][ T7459] capability: warning: `syz.4.306' uses 32-bit capabilities (legacy support in use) [ 151.931270][ T7463] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 153.039551][ T7491] netlink: 4 bytes leftover after parsing attributes in process `syz.1.312'. [ 154.076536][ T7512] FAULT_INJECTION: forcing a failure. [ 154.076536][ T7512] name failslab, interval 1, probability 0, space 0, times 0 [ 154.116991][ T7512] CPU: 0 UID: 0 PID: 7512 Comm: syz.3.315 Not tainted syzkaller #0 PREEMPT(full) [ 154.117022][ T7512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 154.117034][ T7512] Call Trace: [ 154.117042][ T7512] [ 154.117050][ T7512] dump_stack_lvl+0x16c/0x1f0 [ 154.117088][ T7512] should_fail_ex+0x512/0x640 [ 154.117120][ T7512] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 154.117145][ T7512] should_failslab+0xc2/0x120 [ 154.117166][ T7512] kmem_cache_alloc_noprof+0x75/0x6e0 [ 154.117195][ T7512] ? skb_clone+0x190/0x3f0 [ 154.117232][ T7512] ? skb_clone+0x190/0x3f0 [ 154.117262][ T7512] skb_clone+0x190/0x3f0 [ 154.117297][ T7512] netlink_deliver_tap+0xabd/0xd30 [ 154.117339][ T7512] netlink_unicast+0x64c/0x870 [ 154.117379][ T7512] ? __pfx_netlink_unicast+0x10/0x10 [ 154.117414][ T7512] ? __pfx___might_resched+0x10/0x10 [ 154.117456][ T7512] netlink_sendmsg+0x8c8/0xdd0 [ 154.117494][ T7512] ? __pfx_netlink_sendmsg+0x10/0x10 [ 154.117530][ T7512] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 154.117562][ T7512] ____sys_sendmsg+0xa98/0xc70 [ 154.117589][ T7512] ? copy_msghdr_from_user+0x10a/0x160 [ 154.117623][ T7512] ? __pfx_____sys_sendmsg+0x10/0x10 [ 154.117655][ T7512] ? kfree+0x252/0x6d0 [ 154.117679][ T7512] ? __pfx__kstrtoull+0x10/0x10 [ 154.117724][ T7512] ___sys_sendmsg+0x134/0x1d0 [ 154.117761][ T7512] ? __pfx____sys_sendmsg+0x10/0x10 [ 154.117830][ T7512] ? __pfx___might_resched+0x10/0x10 [ 154.117873][ T7512] __sys_sendmmsg+0x200/0x420 [ 154.117911][ T7512] ? __pfx___sys_sendmmsg+0x10/0x10 [ 154.117957][ T7512] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 154.118008][ T7512] ? fput+0x9b/0xd0 [ 154.118033][ T7512] ? ksys_write+0x1ac/0x250 [ 154.118065][ T7512] ? __pfx_ksys_write+0x10/0x10 [ 154.118104][ T7512] __x64_sys_sendmmsg+0x9c/0x100 [ 154.118138][ T7512] ? lockdep_hardirqs_on+0x7c/0x110 [ 154.118171][ T7512] do_syscall_64+0xcd/0xfa0 [ 154.118207][ T7512] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 154.118231][ T7512] RIP: 0033:0x7fc64418eec9 [ 154.118251][ T7512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 154.118273][ T7512] RSP: 002b:00007fc645027038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 154.118296][ T7512] RAX: ffffffffffffffda RBX: 00007fc6443e6090 RCX: 00007fc64418eec9 [ 154.118312][ T7512] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 154.118326][ T7512] RBP: 00007fc645027090 R08: 0000000000000000 R09: 0000000000000000 [ 154.118341][ T7512] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 154.118354][ T7512] R13: 00007fc6443e6128 R14: 00007fc6443e6090 R15: 00007ffc9c503ba8 [ 154.118389][ T7512] [ 155.993493][ T7555] input: jJ-9%vlQ J86 as /devices/virtual/input/input7 [ 158.085719][ T7597] kfence: disabled [ 158.277505][ T7599] netlink: 20 bytes leftover after parsing attributes in process `syz.4.337'. [ 158.492421][ T7599] mac80211_hwsim hwsim12 wlan1: entered allmulticast mode [ 159.300688][ T7628] FAULT_INJECTION: forcing a failure. [ 159.300688][ T7628] name failslab, interval 1, probability 0, space 0, times 0 [ 159.316421][ T7628] CPU: 0 UID: 0 PID: 7628 Comm: syz.1.343 Not tainted syzkaller #0 PREEMPT(full) [ 159.316490][ T7628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 159.316505][ T7628] Call Trace: [ 159.316514][ T7628] [ 159.316524][ T7628] dump_stack_lvl+0x16c/0x1f0 [ 159.316571][ T7628] should_fail_ex+0x512/0x640 [ 159.316609][ T7628] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 159.316650][ T7628] should_failslab+0xc2/0x120 [ 159.316676][ T7628] __kvmalloc_node_noprof+0x141/0x9c0 [ 159.316716][ T7628] ? io_alloc_cache_init+0x38/0x170 [ 159.316749][ T7628] ? io_alloc_cache_init+0x38/0x170 [ 159.316772][ T7628] io_alloc_cache_init+0x38/0x170 [ 159.316800][ T7628] io_uring_setup+0x62f/0x20e0 [ 159.316839][ T7628] ? __pfx_io_uring_setup+0x10/0x10 [ 159.316872][ T7628] ? do_futex+0x122/0x350 [ 159.316899][ T7628] ? __pfx_do_futex+0x10/0x10 [ 159.316943][ T7628] ? xfd_validate_state+0x61/0x180 [ 159.316965][ T7628] ? __pfx_ksys_write+0x10/0x10 [ 159.317008][ T7628] __x64_sys_io_uring_setup+0xc2/0x170 [ 159.317041][ T7628] do_syscall_64+0xcd/0xfa0 [ 159.317079][ T7628] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 159.317105][ T7628] RIP: 0033:0x7f0df278eec9 [ 159.317126][ T7628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 159.317150][ T7628] RSP: 002b:00007f0df36cf038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 159.317176][ T7628] RAX: ffffffffffffffda RBX: 00007f0df29e5fa0 RCX: 00007f0df278eec9 [ 159.317191][ T7628] RDX: 0000000000000000 RSI: 0000200000000340 RDI: 0000000000001d48 [ 159.317207][ T7628] RBP: 00007f0df2811f91 R08: 0000000000000000 R09: 0000000000000000 [ 159.317222][ T7628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 159.317238][ T7628] R13: 00007f0df29e6038 R14: 00007f0df29e5fa0 R15: 00007ffd3ca53e58 [ 159.317274][ T7628] [ 159.733159][ T7633] netlink: 8 bytes leftover after parsing attributes in process `syz.1.344'. [ 160.814284][ T7655] netlink: 28 bytes leftover after parsing attributes in process `syz.1.348'. [ 160.932434][ T7630] kexec: Could not allocate control_code_buffer [ 161.204374][ T5845] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 161.325544][ T7672] can: request_module (can-proto-5) failed. [ 162.621972][ T7699] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 162.799303][ T7710] FAULT_INJECTION: forcing a failure. [ 162.799303][ T7710] name failslab, interval 1, probability 0, space 0, times 0 [ 162.828228][ T7710] CPU: 0 UID: 0 PID: 7710 Comm: syz.3.362 Not tainted syzkaller #0 PREEMPT(full) [ 162.828261][ T7710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 162.828275][ T7710] Call Trace: [ 162.828283][ T7710] [ 162.828292][ T7710] dump_stack_lvl+0x16c/0x1f0 [ 162.828330][ T7710] should_fail_ex+0x512/0x640 [ 162.828364][ T7710] ? __kmalloc_cache_noprof+0x5f/0x780 [ 162.828401][ T7710] should_failslab+0xc2/0x120 [ 162.828425][ T7710] __kmalloc_cache_noprof+0x72/0x780 [ 162.828454][ T7710] ? __inet_diag_dump_start+0x8f/0x960 [ 162.828485][ T7710] ? __inet_diag_dump_start+0x8f/0x960 [ 162.828507][ T7710] __inet_diag_dump_start+0x8f/0x960 [ 162.828541][ T7710] __netlink_dump_start+0x60e/0x990 [ 162.828582][ T7710] inet_diag_rcv_msg_compat+0x275/0x2d0 [ 162.828608][ T7710] ? __pfx_inet_diag_rcv_msg_compat+0x10/0x10 [ 162.828633][ T7710] ? __pfx_inet_diag_dump_start_compat+0x10/0x10 [ 162.828657][ T7710] ? __pfx_inet_diag_dump_compat+0x10/0x10 [ 162.828679][ T7710] ? __pfx_inet_diag_dump_done+0x10/0x10 [ 162.828708][ T7710] ? sock_diag_rcv_msg+0x315/0x790 [ 162.828745][ T7710] sock_diag_rcv_msg+0x34d/0x790 [ 162.828780][ T7710] netlink_rcv_skb+0x158/0x420 [ 162.828802][ T7710] ? __pfx_sock_diag_rcv_msg+0x10/0x10 [ 162.828835][ T7710] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 162.828870][ T7710] ? netlink_deliver_tap+0x1ae/0xd30 [ 162.828910][ T7710] netlink_unicast+0x5aa/0x870 [ 162.828950][ T7710] ? __pfx_netlink_unicast+0x10/0x10 [ 162.828985][ T7710] ? __pfx___might_resched+0x10/0x10 [ 162.829029][ T7710] netlink_sendmsg+0x8c8/0xdd0 [ 162.829070][ T7710] ? __pfx_netlink_sendmsg+0x10/0x10 [ 162.829109][ T7710] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 162.829147][ T7710] ____sys_sendmsg+0xa98/0xc70 [ 162.829179][ T7710] ? copy_msghdr_from_user+0x10a/0x160 [ 162.829212][ T7710] ? __pfx_____sys_sendmsg+0x10/0x10 [ 162.829243][ T7710] ? kfree+0x252/0x6d0 [ 162.829267][ T7710] ? __pfx__kstrtoull+0x10/0x10 [ 162.829303][ T7710] ___sys_sendmsg+0x134/0x1d0 [ 162.829339][ T7710] ? __pfx____sys_sendmsg+0x10/0x10 [ 162.829405][ T7710] ? __pfx___might_resched+0x10/0x10 [ 162.829443][ T7710] __sys_sendmmsg+0x200/0x420 [ 162.829481][ T7710] ? __pfx___sys_sendmmsg+0x10/0x10 [ 162.829527][ T7710] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 162.829576][ T7710] ? fput+0x9b/0xd0 [ 162.829599][ T7710] ? ksys_write+0x1ac/0x250 [ 162.829630][ T7710] ? __pfx_ksys_write+0x10/0x10 [ 162.829667][ T7710] __x64_sys_sendmmsg+0x9c/0x100 [ 162.829700][ T7710] ? lockdep_hardirqs_on+0x7c/0x110 [ 162.829733][ T7710] do_syscall_64+0xcd/0xfa0 [ 162.829766][ T7710] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 162.829789][ T7710] RIP: 0033:0x7fc64418eec9 [ 162.829808][ T7710] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 162.829829][ T7710] RSP: 002b:00007fc645027038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 162.829852][ T7710] RAX: ffffffffffffffda RBX: 00007fc6443e6090 RCX: 00007fc64418eec9 [ 162.829868][ T7710] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 162.829882][ T7710] RBP: 00007fc645027090 R08: 0000000000000000 R09: 0000000000000000 [ 162.829895][ T7710] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 162.829909][ T7710] R13: 00007fc6443e6128 R14: 00007fc6443e6090 R15: 00007ffc9c503ba8 [ 162.829943][ T7710] [ 163.286623][ T5843] Bluetooth: hci2: command tx timeout [ 164.279550][ T7716] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 164.299991][ T7716] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 164.346667][ T7716] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 164.530544][ T7716] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 164.537557][ T7716] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 164.553962][ T7716] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 164.576867][ T7737] zswap: compressor not available [ 164.671629][ T7716] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 164.679976][ T7716] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 164.847490][ T7716] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 164.888116][ T7716] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 164.904477][ T7716] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 164.936158][ T7716] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 164.965620][ T7716] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 165.272927][ T7699] ------------[ cut here ]------------ [ 165.278911][ T7699] ODEBUG: free active (active state 0) object: ffff888033111368 object type: timer_list hint: hci_devcd_timeout+0x0/0x2e0 [ 165.309595][ T7699] WARNING: CPU: 1 PID: 7699 at lib/debugobjects.c:612 debug_print_object+0x1a2/0x2b0 [ 165.319925][ T7699] Modules linked in: [ 165.323936][ T7699] CPU: 1 UID: 0 PID: 7699 Comm: syz.2.359 Not tainted syzkaller #0 PREEMPT(full) [ 165.333191][ T7699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 165.343463][ T7699] RIP: 0010:debug_print_object+0x1a2/0x2b0 [ 165.349337][ T7699] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd a0 f9 f1 8b 4c 89 e6 48 c7 c7 20 ee f1 8b e8 ff 71 ca fc 90 <0f> 0b 90 90 58 83 05 76 d5 d2 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d [ 165.369162][ T7699] RSP: 0018:ffffc9000ecf7738 EFLAGS: 00010286 [ 165.375380][ T7699] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817b2e58 [ 165.383379][ T7699] RDX: ffff88802f805ac0 RSI: ffffffff817b2e65 RDI: 0000000000000001 [ 165.391389][ T7699] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 165.399538][ T7699] R10: 0000000000000001 R11: 0000000000000001 R12: ffffffff8bf1f4c0 [ 165.407826][ T7699] R13: ffffffff8b901fe0 R14: ffffffff8a6c9630 R15: ffffc9000ecf7838 [ 165.416085][ T7699] FS: 0000000000000000(0000) GS:ffff888124ae0000(0000) knlGS:0000000000000000 [ 165.425231][ T7699] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 165.432005][ T7699] CR2: 00007fc645047f98 CR3: 0000000073b14000 CR4: 00000000003526f0 [ 165.440077][ T7699] Call Trace: [ 165.443372][ T7699] [ 165.446659][ T7699] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 165.452167][ T7699] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 165.458230][ T7699] debug_check_no_obj_freed+0x4b7/0x600 [ 165.463937][ T7699] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 165.470149][ T7699] kfree+0x291/0x6d0 [ 165.474229][ T7699] ? hci_release_dev+0x4ef/0x610 [ 165.479235][ T7699] ? kfree_skbmem+0x1a4/0x1f0 [ 165.483939][ T7699] ? hci_release_dev+0x4ef/0x610 [ 165.488955][ T7699] hci_release_dev+0x4ef/0x610 [ 165.493749][ T7699] ? __pfx_hci_release_dev+0x10/0x10 [ 165.499150][ T7699] ? rcu_is_watching+0x12/0xc0 [ 165.503947][ T7699] ? kfree+0x252/0x6d0 [ 165.508449][ T7699] bt_host_release+0x6a/0xb0 [ 165.513125][ T7699] ? __pfx_bt_host_release+0x10/0x10 [ 165.518726][ T7699] device_release+0xa4/0x240 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 165.523532][ T7699] kobject_put+0x1e7/0x5a0 [ 165.528048][ T7699] put_device+0x1f/0x30 [ 165.532232][ T7699] vhci_release+0x185/0x230 [ 165.536816][ T7699] ? __pfx_vhci_release+0x10/0x10 [ 165.541873][ T7699] __fput+0x402/0xb70 [ 165.545980][ T7699] task_work_run+0x150/0x240 [ 165.550597][ T7699] ? __pfx_task_work_run+0x10/0x10 [ 165.555816][ T7699] do_exit+0x86f/0x2bf0 [ 165.560004][ T7699] ? __pfx_do_exit+0x10/0x10 [ 165.564623][ T7699] ? do_raw_spin_lock+0x12c/0x2b0 [ 165.569748][ T7699] ? find_held_lock+0x2b/0x80 [ 165.574463][ T7699] do_group_exit+0xd3/0x2a0 [ 165.579019][ T7699] get_signal+0x2671/0x26d0 [ 165.583532][ T7699] ? fd_install+0x225/0x750 [ 165.588106][ T7699] ? __pfx_get_signal+0x10/0x10 [ 165.593055][ T7699] ? kvm_dev_ioctl+0x6cb/0x1a80 [ 165.598013][ T7699] arch_do_signal_or_restart+0x8f/0x790 [ 165.603667][ T7699] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 165.609844][ T7699] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 165.615418][ T7699] exit_to_user_mode_loop+0x85/0x130 [ 165.620729][ T7699] do_syscall_64+0x426/0xfa0 [ 165.625808][ T7699] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.631753][ T7699] RIP: 0033:0x7fc107b8eec9 [ 165.636223][ T7699] Code: Unable to access opcode bytes at 0x7fc107b8ee9f. [ 165.643234][ T7699] RSP: 002b:00007fc108ab7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 165.651701][ T7699] RAX: 0000000000000009 RBX: 00007fc107de5fa0 RCX: 00007fc107b8eec9 [ 165.659729][ T7699] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 165.667748][ T7699] RBP: 00007fc107c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 165.675749][ T7699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 165.683741][ T7699] R13: 00007fc107de6038 R14: 00007fc107de5fa0 R15: 00007ffe0e66ad48 [ 165.691860][ T7699] [ 165.694875][ T7699] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 165.702147][ T7699] CPU: 1 UID: 0 PID: 7699 Comm: syz.2.359 Not tainted syzkaller #0 PREEMPT(full) [ 165.711332][ T7699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 165.721384][ T7699] Call Trace: [ 165.724661][ T7699] [ 165.727581][ T7699] dump_stack_lvl+0x3d/0x1f0 [ 165.732172][ T7699] vpanic+0x640/0x6f0 [ 165.736144][ T7699] ? debug_print_object+0x1a2/0x2b0 [ 165.741335][ T7699] panic+0xca/0xd0 [ 165.745045][ T7699] ? __pfx_panic+0x10/0x10 [ 165.749453][ T7699] ? check_panic_on_warn+0x1f/0xb0 [ 165.754563][ T7699] check_panic_on_warn+0xab/0xb0 [ 165.759503][ T7699] __warn+0xf6/0x3c0 [ 165.763835][ T7699] ? debug_print_object+0x1a2/0x2b0 [ 165.769040][ T7699] report_bug+0x3c3/0x580 [ 165.773457][ T7699] ? debug_print_object+0x1a2/0x2b0 [ 165.778657][ T7699] handle_bug+0x184/0x210 [ 165.782990][ T7699] exc_invalid_op+0x17/0x50 [ 165.787499][ T7699] asm_exc_invalid_op+0x1a/0x20 [ 165.792370][ T7699] RIP: 0010:debug_print_object+0x1a2/0x2b0 [ 165.798171][ T7699] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd a0 f9 f1 8b 4c 89 e6 48 c7 c7 20 ee f1 8b e8 ff 71 ca fc 90 <0f> 0b 90 90 58 83 05 76 d5 d2 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d [ 165.817767][ T7699] RSP: 0018:ffffc9000ecf7738 EFLAGS: 00010286 [ 165.823827][ T7699] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817b2e58 [ 165.831875][ T7699] RDX: ffff88802f805ac0 RSI: ffffffff817b2e65 RDI: 0000000000000001 [ 165.839835][ T7699] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 165.847894][ T7699] R10: 0000000000000001 R11: 0000000000000001 R12: ffffffff8bf1f4c0 [ 165.855870][ T7699] R13: ffffffff8b901fe0 R14: ffffffff8a6c9630 R15: ffffc9000ecf7838 [ 165.863836][ T7699] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 165.869382][ T7699] ? __warn_printk+0x198/0x350 [ 165.874135][ T7699] ? __warn_printk+0x1a5/0x350 [ 165.879058][ T7699] ? debug_print_object+0x1a1/0x2b0 [ 165.884261][ T7699] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 165.889718][ T7699] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 165.895532][ T7699] debug_check_no_obj_freed+0x4b7/0x600 [ 165.901092][ T7699] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 165.907160][ T7699] kfree+0x291/0x6d0 [ 165.911046][ T7699] ? hci_release_dev+0x4ef/0x610 [ 165.915975][ T7699] ? kfree_skbmem+0x1a4/0x1f0 [ 165.920644][ T7699] ? hci_release_dev+0x4ef/0x610 [ 165.925609][ T7699] hci_release_dev+0x4ef/0x610 [ 165.930392][ T7699] ? __pfx_hci_release_dev+0x10/0x10 [ 165.935670][ T7699] ? rcu_is_watching+0x12/0xc0 [ 165.940595][ T7699] ? kfree+0x252/0x6d0 [ 165.944705][ T7699] bt_host_release+0x6a/0xb0 [ 165.949313][ T7699] ? __pfx_bt_host_release+0x10/0x10 [ 165.954731][ T7699] device_release+0xa4/0x240 [ 165.959398][ T7699] kobject_put+0x1e7/0x5a0 [ 165.963925][ T7699] put_device+0x1f/0x30 [ 165.968142][ T7699] vhci_release+0x185/0x230 [ 165.972667][ T7699] ? __pfx_vhci_release+0x10/0x10 [ 165.977685][ T7699] __fput+0x402/0xb70 [ 165.981666][ T7699] task_work_run+0x150/0x240 [ 165.986254][ T7699] ? __pfx_task_work_run+0x10/0x10 [ 165.991372][ T7699] do_exit+0x86f/0x2bf0 [ 165.995531][ T7699] ? __pfx_do_exit+0x10/0x10 [ 166.000109][ T7699] ? do_raw_spin_lock+0x12c/0x2b0 [ 166.005162][ T7699] ? find_held_lock+0x2b/0x80 [ 166.009836][ T7699] do_group_exit+0xd3/0x2a0 [ 166.014336][ T7699] get_signal+0x2671/0x26d0 [ 166.018838][ T7699] ? fd_install+0x225/0x750 [ 166.023428][ T7699] ? __pfx_get_signal+0x10/0x10 [ 166.028276][ T7699] ? kvm_dev_ioctl+0x6cb/0x1a80 [ 166.033124][ T7699] arch_do_signal_or_restart+0x8f/0x790 [ 166.038674][ T7699] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 166.044816][ T7699] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 166.049925][ T7699] exit_to_user_mode_loop+0x85/0x130 [ 166.055201][ T7699] do_syscall_64+0x426/0xfa0 [ 166.059783][ T7699] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 166.065695][ T7699] RIP: 0033:0x7fc107b8eec9 [ 166.070099][ T7699] Code: Unable to access opcode bytes at 0x7fc107b8ee9f. [ 166.077095][ T7699] RSP: 002b:00007fc108ab7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 166.085501][ T7699] RAX: 0000000000000009 RBX: 00007fc107de5fa0 RCX: 00007fc107b8eec9 [ 166.093571][ T7699] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 166.101529][ T7699] RBP: 00007fc107c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 166.109493][ T7699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 166.117455][ T7699] R13: 00007fc107de6038 R14: 00007fc107de5fa0 R15: 00007ffe0e66ad48 [ 166.125434][ T7699] [ 166.128677][ T7699] Kernel Offset: disabled [ 166.132988][ T7699] Rebooting in 86400 seconds..