last executing test programs: 2m20.763074132s ago: executing program 2 (id=1608): write$auto(0x3, 0x0, 0xfffffdef) 2m20.600796692s ago: executing program 2 (id=1609): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x5, 0x0, 0x1f, 0x9}, 0x800009}, 0x3, 0x20000000) io_uring_setup$auto(0x6, 0x0) pwrite64$auto(0xc8, 0x0, 0x4e, 0x3) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) 2m19.91532186s ago: executing program 2 (id=1612): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x5, 0x0, 0x1f, 0x9}, 0x800009}, 0x3, 0x20000000) io_uring_setup$auto(0x6, 0x0) pwrite64$auto(0xc8, 0x0, 0x4e, 0x3) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) 2m19.56448379s ago: executing program 2 (id=1613): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e21, @empty}, 0x70) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000) io_uring_setup$auto(0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r0, 0x29, 0x6, 0x0, 0x50) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) unshare$auto(0x40000080) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x3f83, 0xfffffffb) openat$dir(0xffffffffffffff9c, 0x0, 0xc0100, 0x100) mmap$auto(0x0, 0x402000a, 0xdf, 0x10000000000eb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = socket(0xa, 0x2, 0x3a) socket(0x15, 0x5, 0x0) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_ALLOC(0xffffffffffffffff, 0x7a8, 0x0) bind$auto(r1, 0x0, 0x66) connect$auto(0x3, 0x0, 0x54) inotify_init1$auto(0x3000000000000) close_range$auto(0x2, 0x8, 0x0) 2m18.248333256s ago: executing program 2 (id=1616): socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x1, 0x100) r0 = eventfd2$auto(0x6af3, 0x800) socket(0x1e, 0x1, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) pipe2$auto(&(0x7f0000000040)=r0, 0x9) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000200)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x3, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7440, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x100000001f9, 0x8, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x7, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x10008000009, 0x2, 0x6]}, 0x0) preadv$auto(0xffffffffffffffff, &(0x7f0000003340)={&(0x7f0000003300), 0x40}, 0x9, 0x5, 0x100000001) ioperm$auto(0x7, 0x6, 0x1) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x500, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/flags\x00', 0x101142, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) execve$auto(0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) write$auto(0x3, 0x0, 0x100082) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x200, 0x1001, 0x0, 0xf, 0xffffffffffffffff, 0x1400000, 0x5}, 0x6f4) 2m17.208423164s ago: executing program 2 (id=1621): socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x1, 0x100) r0 = eventfd2$auto(0x6af3, 0x800) socket(0x1e, 0x1, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) pipe2$auto(&(0x7f0000000040)=r0, 0x9) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000200)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x3, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7440, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x100000001f9, 0x8, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x7, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x10008000009, 0x2, 0x6]}, 0x0) r2 = openat$auto_debug_help_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f00000032c0), 0x1000, 0x0) preadv$auto(r2, &(0x7f0000003340)={&(0x7f0000003300), 0x40}, 0x9, 0x5, 0x100000001) ioperm$auto(0x7, 0x6, 0x1) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/flags\x00', 0x101142, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) execve$auto(0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) write$auto(0x3, 0x0, 0x100082) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x200, 0x1001, 0x0, 0xf, 0xffffffffffffffff, 0x1400000, 0x5}, 0x6f4) 2m1.898195287s ago: executing program 32 (id=1621): socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x1, 0x100) r0 = eventfd2$auto(0x6af3, 0x800) socket(0x1e, 0x1, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) pipe2$auto(&(0x7f0000000040)=r0, 0x9) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000200)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x3, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7440, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x100000001f9, 0x8, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x7, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x10008000009, 0x2, 0x6]}, 0x0) r2 = openat$auto_debug_help_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f00000032c0), 0x1000, 0x0) preadv$auto(r2, &(0x7f0000003340)={&(0x7f0000003300), 0x40}, 0x9, 0x5, 0x100000001) ioperm$auto(0x7, 0x6, 0x1) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/flags\x00', 0x101142, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) execve$auto(0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) write$auto(0x3, 0x0, 0x100082) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x200, 0x1001, 0x0, 0xf, 0xffffffffffffffff, 0x1400000, 0x5}, 0x6f4) 1m24.499322981s ago: executing program 0 (id=1759): openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0) r0 = socket(0xa, 0x1, 0x100) getsockopt$auto_SO_RCVPRIORITY(r0, 0x2, 0x52, 0x0, &(0x7f0000000240)=0x7) open_by_handle_at$auto(0xffffff9c, 0xffffffffffffffff, 0x9658) socket(0x1e, 0x1, 0x5) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) process_mrelease$auto(0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) acct$auto(0x0) close_range$auto(0x2, 0x8, 0x0) r3 = ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$auto_CEC_RECEIVE(r2, 0xc0386106, &(0x7f0000000080)={0x2, 0x8, 0x1, 0x4f1330bf, 0x9, 0xffffff00, "b3b2551984016910823df347c47bd20e", 0x9, 0x6, 0x2, 0x5, 0x2, 0x6, 0x3}) ioctl$auto(0x3, 0xae41, 0xffffffffffffffff) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0x200007, 0x19) write$auto_ftrace_subsystem_filter_fops_trace_events(r3, &(0x7f0000000280)="0e2242fbc6500f8cf4f9031dc001d621af4553d8546728786544ae1e5fbd3d2908ff4b0abb32ac61cffa0aebbc55eac9e23d5a4c08b65c9277dfc55a0e2ddfe0ad8630c9b0bb4eaf65b9ef1f1e8ec167b32a1f95e606d8b4ea65cf501a39e1054b58df5f41256e637fd8c59ddd4b8da4a679fbfc1f933336fb981083aa69ea0c97ced3dbdb9fb42625f9d41884511cb4eec89f3f6b777fa5c359094ad041e22559a7be44b51bd7786ed625ac30ee15a86f436a19eeb57dd76b529ef9831945866710700ee9f96ab8a527af2e41ffec13a593181f3246652a05b5833d828849d5cf39a88ab6e519edd74c08185f40", 0xee) 1m22.108007313s ago: executing program 0 (id=1763): socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/mmap_min_addr\x00', 0x101302, 0x0) signalfd$auto(0xffffffff, 0x0, 0x8) socket(0x1d, 0x2, 0x7) io_uring_setup$auto(0x6, 0x0) io_uring_setup$auto(0x4, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) io_uring_setup$auto(0x2, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000100), 0x22100, 0x0) socket(0x2, 0x80002, 0x73) openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/events/vmalloc/free_vmap_area_noflush/enable\x00', 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/mem\x00', 0x109600, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x109500, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) io_uring_setup$auto(0x85, 0x0) socket(0x1d, 0x2, 0x7) socketpair$auto(0x4004, 0xf, 0x4, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101c80, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) ioctl$auto_TCFLSH2(r0, 0x40204706, 0x0) 1m19.999830663s ago: executing program 0 (id=1767): prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket$nl_generic(0x10, 0x3, 0x10) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51) socket(0xf, 0x3, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72) socket(0x2, 0x1, 0x0) socket(0x1e, 0x1, 0x0) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0x9) copy_file_range$auto(r1, 0x0, r1, 0x0, 0x2, 0x0) select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfff, 0x1, 0x5, 0x3, 0x95f4da2d, 0xc, 0x6, 0x62, 0x7, 0x7, 0x6d3f, 0xa, 0x4, 0x5]}, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x6, 0x1, 0xfffffffffffffff7, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x42, 0x80000021, 0x7, 0x6d3e, 0x7fff, 0x2, 0x6]}, 0x0) r2 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0) ioctl$auto_PROCMAP_QUERY(r2, 0xc0686611, &(0x7f0000000200)={0x7ff, 0xfffffffffffffffe, 0xfffffffffffffffb, 0x0, 0x8, 0x8001, 0x3, 0x9, 0x0, 0x200, 0xe21f, 0x80000000, 0x2000009, 0x7, 0x10000001000}) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x20b42, 0x0) write$auto(0x3, 0x0, 0x100082) close_range$auto(0x2, 0x8, 0x0) prctl$auto(0x4e, 0x1, 0x0, 0x1, 0x0) 1m18.876397028s ago: executing program 0 (id=1771): prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x801, 0x0) socket(0xf, 0x3, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72) socket(0x2, 0x1, 0x0) socket(0x1e, 0x1, 0x0) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0x9) copy_file_range$auto(r1, 0x0, r1, 0x0, 0x2, 0x0) select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfff, 0x1, 0x5, 0x3, 0x95f4da2d, 0xc, 0x6, 0x62, 0x7, 0x7, 0x6d3f, 0xa, 0x4, 0x5]}, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x6, 0x1, 0xfffffffffffffff7, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x42, 0x80000021, 0x7, 0x6d3e, 0x7fff, 0x2, 0x6]}, 0x0) r2 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0) ioctl$auto_PROCMAP_QUERY(r2, 0xc0686611, &(0x7f0000000200)={0x7ff, 0xfffffffffffffffe, 0xfffffffffffffffb, 0x0, 0x8, 0x8001, 0x3, 0x9, 0x0, 0x200, 0xe21f, 0x80000000, 0x2000009, 0x7, 0x10000001000}) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x20b42, 0x0) write$auto(0x3, 0x0, 0x100082) close_range$auto(0x2, 0x8, 0x0) prctl$auto(0x4e, 0x1, 0x0, 0x1, 0x0) 1m17.778301044s ago: executing program 0 (id=1774): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, 0x0, 0x70) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000) io_uring_setup$auto(0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r1, 0x29, 0x6, 0x0, 0x50) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) unshare$auto(0x40000080) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x3f83, 0xfffffffb) openat$dir(0xffffffffffffff9c, 0x0, 0xc0100, 0x100) mmap$auto(0x0, 0x402000a, 0xdf, 0x10000000000eb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = socket(0xa, 0x2, 0x3a) socket(0x15, 0x5, 0x0) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_ALLOC(0xffffffffffffffff, 0x7a8, 0x0) bind$auto(r2, 0x0, 0x66) connect$auto(0x3, 0x0, 0x54) inotify_init1$auto(0x3000000000000) close_range$auto(0x2, 0x8, 0x0) 1m16.595581092s ago: executing program 0 (id=1777): socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x1, 0x100) r0 = eventfd2$auto(0x6af3, 0x800) socket(0x1e, 0x1, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) pipe2$auto(&(0x7f0000000040)=r0, 0x9) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x100000001f9, 0x8, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x7, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x10008000009, 0x2, 0x6]}, 0x0) r2 = openat$auto_debug_help_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f00000032c0), 0x1000, 0x0) preadv$auto(r2, &(0x7f0000003340)={&(0x7f0000003300), 0x40}, 0x9, 0x5, 0x100000001) ioperm$auto(0x7, 0x6, 0x1) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x500, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/flags\x00', 0x101142, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) execve$auto(0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) write$auto(0x3, 0x0, 0x100082) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x200, 0x1001, 0x0, 0xf, 0xffffffffffffffff, 0x1400000, 0x5}, 0x6f4) 1m1.203823029s ago: executing program 33 (id=1777): socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x1, 0x100) r0 = eventfd2$auto(0x6af3, 0x800) socket(0x1e, 0x1, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) pipe2$auto(&(0x7f0000000040)=r0, 0x9) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x100000001f9, 0x8, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x7, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x10008000009, 0x2, 0x6]}, 0x0) r2 = openat$auto_debug_help_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f00000032c0), 0x1000, 0x0) preadv$auto(r2, &(0x7f0000003340)={&(0x7f0000003300), 0x40}, 0x9, 0x5, 0x100000001) ioperm$auto(0x7, 0x6, 0x1) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x500, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/flags\x00', 0x101142, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) execve$auto(0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) write$auto(0x3, 0x0, 0x100082) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x200, 0x1001, 0x0, 0xf, 0xffffffffffffffff, 0x1400000, 0x5}, 0x6f4) 41.542974543s ago: executing program 1 (id=1864): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x1a, 0x800, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) r0 = socket(0x2b, 0x1, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) socket(0x2, 0x1, 0x0) setsockopt$auto(0x3, 0x6, 0x13, 0x0, 0xfb3) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x5, 0x0, 0x1f, 0x9}, 0x800009}, 0x3, 0x20000000) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x2f, 0x0, 0x6) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendfile$auto(0x1, 0x3, 0x0, 0x0) mbind$auto(0x2000, 0x100000004, 0x5, 0x0, 0xffffffffffffff39, 0xffffffff) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) write$auto(0x3, 0x0, 0xfffffdef) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) mmap$auto(0x0, 0x7, 0x4000000000df, 0xeb1, 0x400, 0x8000) 40.563638402s ago: executing program 1 (id=1868): socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x1, 0x100) r0 = eventfd2$auto(0x6af3, 0x800) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) pipe2$auto(&(0x7f0000000040)=r0, 0x9) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000200)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x3, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7440, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x100000001f9, 0x8, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x7, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x10008000009, 0x2, 0x6]}, 0x0) r2 = openat$auto_debug_help_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f00000032c0), 0x1000, 0x0) preadv$auto(r2, &(0x7f0000003340)={&(0x7f0000003300), 0x40}, 0x9, 0x5, 0x100000001) ioperm$auto(0x7, 0x6, 0x1) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x500, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/flags\x00', 0x101142, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) execve$auto(0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) write$auto(0x3, 0x0, 0x100082) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x200, 0x1001, 0x0, 0xf, 0xffffffffffffffff, 0x1400000, 0x5}, 0x6f4) 39.43873582s ago: executing program 1 (id=1872): unshare$auto(0x40000080) socket(0x2, 0x801, 0x100) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)={0x1c, 0x0, 0xb11, 0x70bd27, 0x25dfdbfb, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4001}, 0x9800) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x11, 0x80003, 0x300) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) epoll_create$auto(0x4) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) write$auto_tty_fops_tty_io(r0, &(0x7f0000000580)="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", 0x975) mmap$auto(0xf, 0x40009, 0xe2, 0x7f8000000000013, 0xffffffffffffffff, 0x28000) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/ip_vs_conn\x00', 0x62240, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000240)=""/7, 0x7) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/zram0/io_stat\x00', 0x40100, 0x0) 38.148332964s ago: executing program 1 (id=1876): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x5, 0x0, 0x1f, 0x9}, 0x800009}, 0x3, 0x20000000) r1 = io_uring_setup$auto(0x6, 0x0) pwrite64$auto(0xc8, 0x0, 0x4e, 0x3) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) bind$auto(0x3, 0x0, 0x6a) setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0x9) write$auto(0xffffffffffffffff, &(0x7f0000000040)=',\x00^\xa2\x02\x00\x05\x00\x00\x00\xd8l\x00\x00\x00\x00\x00\x00\xb2s\x83\xbd\xc5_%\xc1\xa3\xd0\x95Hq\xf4zG\x01[{\x17\x05I\xe0\xb1d)\x06z8L\xe6&[\xa9X6\x7f\xec\x94\xdal\xa1\xbb\x86\x9c\xc2\xef\x02\r9%\x06\xc5\'b%m_\x96A\"\xdd\xe40\xa7\xc3\x9ah\xf3B\xc2\xec\xf8\r\f[\xe5\x9dK\xe1\x99\x86\xfc\xac\x9f\x8a', 0x1000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x183841, 0x0) write$auto(r2, 0x0, 0xc) close_range$auto(r1, 0xfffffffffffff000, 0x2) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) socket(0x2, 0x2, 0x1) mmap$auto(0x0, 0x9, 0xffffffff, 0x8000200008011, 0xffffffffffffffff, 0x8000) read$auto(0x3, 0x0, 0x80) write$auto(0x3, 0x0, 0xfffffdef) 37.377697525s ago: executing program 1 (id=1878): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x3, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4000894}, 0x800) bpf$auto(0x0, &(0x7f00000001c0)=@test={0xffffffffffffffff, 0xffff, 0xfffff0b6, 0xffff, 0x84, 0xac1, 0x2, 0x36242398, 0xfffff5b2, 0x3bb, 0x8000007, 0xffff, 0x6, 0x81, 0x68198}, 0x6f3) rt_tgsigqueueinfo$auto(0x3, 0x96, 0x3, &(0x7f0000000180)={@siginfo_0_0={0x80000000, 0x7, 0x8000, @_kill={0xffffffffffffffff}}}) sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYBLOB="010027bd"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc2}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x2, 0x0) r0 = open(&(0x7f0000000800)='./file0\x00', 0x62240, 0x154) r1 = prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) r2 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/mem\x00', 0x10b201, 0x0) r3 = ioctl$auto_TUNSETVNETHDRSZ2(r0, 0x400454d8, &(0x7f00000001c0)=0xf) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r1) setsockopt$auto_SO_DEVMEM_DONTNEED(r3, 0x1, 0x50, &(0x7f0000000280)='$[\x00', 0x0) sendmsg$auto_NL80211_CMD_DEL_PMK(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r4, 0x200, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_KEY_SEQ={0x7, 0xa, '3\v='}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x200488c5) mmap$auto(0x0, 0x2020009, 0x2000000000000081, 0xf8, 0xfffffffffffffffa, 0x8000) write$auto(r2, 0x0, 0x996) openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000300), 0x4001, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8402, 0x0) mmap$auto(0x0, 0x5810, 0xffb, 0x8000000008011, 0x3, 0x0) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) execveat$auto(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x11000) 36.869421376s ago: executing program 1 (id=1881): socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x1, 0x100) eventfd2$auto(0x6af3, 0x800) socket(0x1e, 0x1, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000200)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x3, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7440, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x100000001f9, 0x8, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x7, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x10008000009, 0x2, 0x6]}, 0x0) r1 = openat$auto_debug_help_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f00000032c0), 0x1000, 0x0) preadv$auto(r1, &(0x7f0000003340)={&(0x7f0000003300), 0x40}, 0x9, 0x5, 0x100000001) ioperm$auto(0x7, 0x6, 0x1) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x500, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/flags\x00', 0x101142, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) execve$auto(0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) write$auto(0x3, 0x0, 0x100082) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x200, 0x1001, 0x0, 0xf, 0xffffffffffffffff, 0x1400000, 0x5}, 0x6f4) 21.808740658s ago: executing program 34 (id=1881): socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x1, 0x100) eventfd2$auto(0x6af3, 0x800) socket(0x1e, 0x1, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000200)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x3, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7440, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x100000001f9, 0x8, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x7, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x10008000009, 0x2, 0x6]}, 0x0) r1 = openat$auto_debug_help_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f00000032c0), 0x1000, 0x0) preadv$auto(r1, &(0x7f0000003340)={&(0x7f0000003300), 0x40}, 0x9, 0x5, 0x100000001) ioperm$auto(0x7, 0x6, 0x1) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x500, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/flags\x00', 0x101142, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) execve$auto(0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) write$auto(0x3, 0x0, 0x100082) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x200, 0x1001, 0x0, 0xf, 0xffffffffffffffff, 0x1400000, 0x5}, 0x6f4) 12.610079683s ago: executing program 6 (id=1928): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x5, 0x0, 0x1f, 0x9}, 0x800009}, 0x3, 0x20000000) r1 = io_uring_setup$auto(0x6, 0x0) pwrite64$auto(0xc8, 0x0, 0x4e, 0x3) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) bind$auto(0x3, 0x0, 0x6a) setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0x9) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x183841, 0x0) sendmsg$auto_NL80211_CMD_DEL_TX_TS(0xffffffffffffffff, 0x0, 0x24000000) write$auto(r2, 0x0, 0xc) close_range$auto(r1, 0xfffffffffffff000, 0x2) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) socket(0x2, 0x2, 0x1) mmap$auto(0x0, 0x9, 0xffffffff, 0x8000200008011, 0xffffffffffffffff, 0x8000) read$auto(0x3, 0x0, 0x80) write$auto(0x3, 0x0, 0xfffffdef) 11.158990702s ago: executing program 6 (id=1933): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x1, 0x3) membarrier$auto(0x2, 0x0, 0x9) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0xc02, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) sendfile$auto(r1, r0, &(0x7f0000000040)=0x9, 0x0) connect$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x0, @rand_addr=0xfffffffe}, 0x55) listen$auto(0x3, 0x83) accept$auto(0x3, 0xffffffffffffffff, 0xfffffffffffffffd) r2 = socket(0x22, 0x3, 0x1) connect$auto(r2, 0x0, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) mmap$auto(0x200, 0x400008, 0x200, 0x9b72, 0xffffffffffffffff, 0x6) r3 = openat$auto_check_wx_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x400, 0x0) read$auto_check_wx_fops_(r3, &(0x7f0000000080)=""/228, 0xe4) write$auto_proc_mem_operations_base(0xffffffffffffffff, 0x0, 0x0) syz_clone3(&(0x7f0000000080)={0x123060000, 0x0, 0x0, 0x0, {0x14}, 0x0, 0x0, 0x0, &(0x7f00000011c0)=[0x0], 0x1}, 0x58) 7.487445628s ago: executing program 6 (id=1940): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0) ioctl$auto(r1, 0x400454ca, 0x38) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x80900, 0x0) ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0) mmap$auto(0xb2, 0x14, 0xffb, 0x8000000008015, r0, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x11, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0xa, 0x3, 0x3c) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x880, 0x0) madvise$auto(0x0, 0x20499d, 0x9) r4 = open_tree$auto(0xffffffffffffffff, 0x0, 0x74ee) ioctl$auto_NS_GET_PID_FROM_PIDNS(0xffffffffffffffff, 0x8004b706, &(0x7f0000000180)=0x4) r5 = openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0) ioctl$auto_TCSBRK2(r4, 0x5409, &(0x7f00000001c0)="f42b71beb4d801c432d749bc297208f81bd4cc0d5ea904e067981486b621a28bf5bf46e05f44eaeac01e30bc8f9fdbebdbdbc109130bc3aa922f07456d0fec2a18d30f870151428a4a293c10b1034d13d7c71c22408f87708abe93e0e3e1ab8ac33e779fc5bb72f677775990dce65c89c0f1f56934cb9f98df61bb3ce8ec3a3140ce12cae484ac9cd2d7223e6219c1ac4e6c4f5a8fc3e8faffeeafdca6260f9534c3817f4d272c293952ac05bafda166f45ce413d2168846e5c8481a791bf234b7b165a16bb9167a910fb4812b609a00d5add001c7dcdbbe551d4102a6395181893d78a2d7b83369cf05a02524") mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, r5, 0x2) write$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0x0) 7.362550674s ago: executing program 3 (id=1942): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x5, 0x0, 0x1f, 0x9}, 0x800009}, 0x3, 0x20000000) io_uring_setup$auto(0x6, 0x0) pwrite64$auto(0xc8, 0x0, 0x4e, 0x3) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) bind$auto(0x3, 0x0, 0x6a) setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0x9) mmap$auto(0x0, 0x9, 0xffffffff, 0x8000200008011, 0xffffffffffffffff, 0x8000) read$auto(0x3, 0x0, 0x80) write$auto(0x3, 0x0, 0xfffffdef) 6.284818561s ago: executing program 4 (id=1944): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x5, 0x0, 0x1f, 0x9}, 0x800009}, 0x3, 0x20000000) r1 = io_uring_setup$auto(0x6, 0x0) pwrite64$auto(0xc8, 0x0, 0x4e, 0x3) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) bind$auto(0x3, 0x0, 0x6a) setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0x9) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x183841, 0x0) sendmsg$auto_NL80211_CMD_DEL_TX_TS(0xffffffffffffffff, 0x0, 0x24000000) write$auto(r2, 0x0, 0xc) close_range$auto(r1, 0xfffffffffffff000, 0x2) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) socket(0x2, 0x2, 0x1) mmap$auto(0x0, 0x9, 0xffffffff, 0x8000200008011, 0xffffffffffffffff, 0x8000) read$auto(0x3, 0x0, 0x80) write$auto(0x3, 0x0, 0xfffffdef) 6.244326478s ago: executing program 3 (id=1945): socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000) prctl$auto(0x16, 0x2, 0x2, 0x4000000d, 0x100) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c0030e5", @ANYRES16=r1, @ANYBLOB="01002dbd7000f9dbdf25010000000500070058000000080009009c781e01060002000100000008001800030000000800190006000000"], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x48080) mmap$auto(0x1, 0x3, 0x1, 0xe31, 0xffffffffffffffff, 0xe0) socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0) socket(0x2, 0x5, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dmmidi2\x00', 0x101, 0x0) socket(0x10, 0x2, 0x0) close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x3, 0xa00006, 0x4, 0x40eb1, 0x602, 0x300000000000) ioprio_set$auto(0x2, 0x0, 0x208) 6.105337559s ago: executing program 5 (id=1947): mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) r0 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a4, 0xffff) mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000) syz_genetlink_get_family_id$auto_nl80211(0x0, r0) sendmsg$auto_NL80211_CMD_RADAR_DETECT(0xffffffffffffffff, 0x0, 0x4008000) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x2c, 0x80003, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0x80040, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x55) socket(0x2, 0x3, 0xa) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) r1 = socket(0x15, 0x5, 0x0) getsockopt$auto(r1, 0x114, 0x2721, 0xfffffffffffffffc, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) setresuid$auto(0x2, 0x7, 0x0) geteuid() adjtimex$auto(0x0) 5.13563966s ago: executing program 3 (id=1948): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x40040, 0x0) ioctl$auto_PPPIOCSNPMODE(r0, 0x4008744b, &(0x7f00000000c0)={0xf, 0x2}) mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) socket(0xa, 0x801, 0x84) fcntl$auto(0xffffffffffffffff, 0x7, 0xa553) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioperm$auto(0x7, 0x5ad2, 0x8) modify_ldt$auto(0xc, 0x0, 0x100000000) setsockopt$auto(0xffffffffffffffff, 0x2b, 0x43b696d3, 0x0, 0x56b) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyd1\x00', 0x40, 0x0) mmap$auto(0xffffffff, 0x20009, 0x5, 0xeb1, 0x405, 0x8000) openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$auto(0x3, 0x0, 0xffd8) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) process_mrelease$auto(0xffffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) mincore$auto(0x1000, 0x8001, 0x0) fcntl$auto(0x8000000000000001, 0x7, 0x8) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) fcntl$auto(0x8000000000000001, 0x26, 0x8) mincore$auto(0x7, 0xc, &(0x7f0000000000)='/dev/ptyd1\x00') close_range$auto(0x2, 0x8, 0x0) 5.0493398s ago: executing program 4 (id=1949): socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x1, 0x100) r0 = eventfd2$auto(0x6af3, 0x800) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) pipe2$auto(&(0x7f0000000040)=r0, 0x9) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000200)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x3, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7440, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x100000001f9, 0x8, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x7, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x10008000009, 0x2, 0x6]}, 0x0) r2 = openat$auto_debug_help_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f00000032c0), 0x1000, 0x0) preadv$auto(r2, &(0x7f0000003340)={&(0x7f0000003300), 0x40}, 0x9, 0x5, 0x100000001) ioperm$auto(0x7, 0x6, 0x1) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x500, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/flags\x00', 0x101142, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) execve$auto(0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) write$auto(0x3, 0x0, 0x100082) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x200, 0x1001, 0x0, 0xf, 0xffffffffffffffff, 0x1400000, 0x5}, 0x6f4) 4.863867675s ago: executing program 6 (id=1950): prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x66) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r0 = socket(0x10, 0x2, 0x0) mmap$auto(0x8000000000000, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000000000008000) madvise$auto(0x0, 0xffffffffffff0006, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x6, 0x40a7a9, 0x1) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x80010000, 0x400053, 0x9) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_IPVS_CMD_GET_SERVICE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x11e0}, 0x1, 0x0, 0x0, 0x90}, 0x0) recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) read$auto_null_fops_mem(0xffffffffffffffff, &(0x7f0000000100)=""/98, 0x62) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x56b583, 0x0) close_range$auto(r0, 0x8, 0xfffffffd) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), r2) mmap$auto(0x0, 0x8, 0x3, 0x10, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) setgroups$auto(0xe32, 0x0) 4.858250043s ago: executing program 5 (id=1958): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x5, 0x0, 0x1f, 0x9}, 0x800009}, 0x3, 0x20000000) r1 = io_uring_setup$auto(0x6, 0x0) pwrite64$auto(0xc8, 0x0, 0x4e, 0x3) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) bind$auto(0x3, 0x0, 0x6a) write$auto(0xffffffffffffffff, &(0x7f0000000040)=',\x00^\xa2\x02\x00\x05\x00\x00\x00\xd8l\x00\x00\x00\x00\x00\x00\xb2s\x83\xbd\xc5_%\xc1\xa3\xd0\x95Hq\xf4zG\x01[{\x17\x05I\xe0\xb1d)\x06z8L\xe6&[\xa9X6\x7f\xec\x94\xdal\xa1\xbb\x86\x9c\xc2\xef\x02\r9%\x06\xc5\'b%m_\x96A\"\xdd\xe40\xa7\xc3\x9ah\xf3B\xc2\xec\xf8\r\f[\xe5\x9dK\xe1\x99\x86\xfc\xac\x9f\x8a', 0x1000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x183841, 0x0) sendmsg$auto_NL80211_CMD_DEL_TX_TS(0xffffffffffffffff, 0x0, 0x24000000) write$auto(r2, 0x0, 0xc) close_range$auto(r1, 0xfffffffffffff000, 0x2) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) socket(0x2, 0x2, 0x1) mmap$auto(0x0, 0x9, 0xffffffff, 0x8000200008011, 0xffffffffffffffff, 0x8000) read$auto(0x3, 0x0, 0x80) write$auto(0x3, 0x0, 0xfffffdef) 4.12823132s ago: executing program 3 (id=1951): prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x801, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51) socket(0xf, 0x3, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = open(0x0, 0x14d27e, 0x72) socket(0x2, 0x1, 0x0) socket(0x1e, 0x1, 0x0) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0x9) copy_file_range$auto(r1, 0x0, r1, 0x0, 0x2, 0x0) select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfff, 0x1, 0x5, 0x3, 0x95f4da2d, 0xc, 0x6, 0x62, 0x7, 0x7, 0x6d3f, 0xa, 0x4, 0x5]}, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x6, 0x1, 0xfffffffffffffff7, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x42, 0x80000021, 0x7, 0x6d3e, 0x7fff, 0x2, 0x6]}, 0x0) r2 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0) ioctl$auto_PROCMAP_QUERY(r2, 0xc0686611, &(0x7f0000000200)={0x7ff, 0xfffffffffffffffe, 0xfffffffffffffffb, 0x0, 0x8, 0x8001, 0x3, 0x9, 0x0, 0x200, 0xe21f, 0x80000000, 0x2000009, 0x7, 0x10000001000}) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x20b42, 0x0) write$auto(0x3, 0x0, 0x100082) close_range$auto(0x2, 0x8, 0x0) prctl$auto(0x4e, 0x1, 0x0, 0x1, 0x0) 3.810424698s ago: executing program 5 (id=1952): r0 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) r1 = socket(0x3, 0x3, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sg0\x00', 0x40200, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/037/001\x00', 0x630001, 0x0) openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x100242, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x60800, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) setsockopt$auto(0xffffffffffffffff, 0x1, 0x1021, 0x0, 0xd) close_range$auto(0x2, 0xa, 0x0) ioctl$auto_CEC_DQEVENT(r0, 0xc0506107, &(0x7f0000000380)={0xfffffffffffffffe, 0x10001, 0x7, @state_change={0x8000, 0xd, 0xe}}) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) sendfile$auto(0xffffffffffffffff, r3, 0x0, 0x1000202) ioctl$auto(0x3, 0x541b, 0x38) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="01002dbd7000fddbdf250800030008000300", @ANYRES32], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097f751b33e}, 0x80) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="e883453f", @ANYRES16=0x0, @ANYBLOB="200026bd7000fedbdf251f00000075062d80cd00118023133bfb9095bb196bfc6545fc1bca5cc209df87266f25236e60bdac105038a428e2255ba4c9fbe82c111c4983c0f796c23286cacfbed49bf0dfed9d228feca9d0cecc3e4da4023383920b435ea36276ae3f1339a606da52634d85216324758370270e61bf9f7f5be77c510af60dc716115c383c7a585c7f943238f18113ed4a134b3adf80aaf246ab532ff24916a91f5a94d1653798b92bc4c46d04cbc9949c4ce29779d32ae39e1801178e1f6be6d56b332cf116532cc685bc79a7fa00341601fa8163a5c6eb35f5000000802b6df0a0d461880fa5e7f31e5214535b10e3e10c354665d757ef062d1500f6d2660edc4f0f7ceb6860847c25591e99ecba0b64e8e974b3dcea8087fe169c0393dcf40629817018d9549d52ab2d7d6874ab82278faedc7a5ec8eabb60ba0984ba9cb68189cfdaa70b7b9478b2139d04608ebbef9d588301348153796129953c55dbb8f78745ea5234554475bd641b3f8c719519c522580658dca2b7c5461f1970de722ca8c6c9272d4f2b20b727a71fba5e67f24e549ca529aff9369be42626b8d43724fb69c5779d7a9c32e309e2e6fe2a10411d73953646f955934c83393d36b99697df44a915cf947329cac7fd230de1d0a730747f22d79ce4595e307ec58c9d618db79fa3ec000efa3bf5bd9d4617c4274386bad62280aa1fe2a20a704b0471fb48b5a310f006f23479428d6f66239a3beafb43a5fcd9155a808031d48300cb5596554690668f3e011a800c00ba000900000000000000c88c6a67feb2ce25817a1cb254969c151e2b7521618b238f5ee6004bdca4899643843cd137e6707410f342509830700fd27f6dfbc79860dfafe004000d8015580a8449f24a8a1ec4125ea781f665f4554f46e0eb762c91d37fc702d931cb29ec57c9303fc868da1328db451cb0e9c0518e5dc73ed6b9acca697da1ad43d9bd91a012e9e93ab7dce6a5cf62074255808c7603e022f6931021b02f943eb029b7d348b4bda9e8ba9520698e0d5af435ff4288ebb18b869fb61df6017a1cde9a2fa389fc5f44c27cd6dc5e67a533a3c292e91ff863a33ea531ef175501e4d69b6f36c131669cab58d310ccafd07ba55ae7b19da1b07b3fd242e0045d5f6ab47f349932d91fbc95ce2a0d2e9a47b70d2fba8de1ff98d8aeb53502d837d9094b00d66c48668749f24008002c0064010101000004008e0012035680326216bf353de6024cd8507b623fef8ebb69bc1dde9229526ed6aafe86843e263e2f684e36d63c5a556b538020442f954e822fc3c0c6b3b72fbe48d9b210680608065df70927fcb4e87fc4577cc71f4209584b14bb6569fdeff8441e8221863432524c98ef40f3600f84a65f46c2cd990bb04385b3591453c63a6940095991104905292fa357b0a46391506ce3c51642164976867faa6338d0c378d00a88ab67ce4bc16c6ec1bc1e0ef5235b8762c2a768d0b6b9f130e1e87c2fac9cc05f877127b61d31caf578dd423dd587cb90825968ae8d4bcc2c039eac18b082e1ce0afa493b595b4f420bc37e52ea4aa25301dc81ce593750c555064b7e6c6705ba6300b9b93516470b3d87f4949810d5d9a783784b58cd44e84d232c1febd63312f73af3034f073a46b126422f0400d780b3c9832b9ad35f50aea9db0cc2b4073b243c2f2c1967aedeed6f1b52032f5fb0cea959f3c2d15b2545868e5555b82883e6ebfb995d0d986848d80144ef6c4be436006e97028951f0c88d16a5f4d924537ac13678b619673172f8d83d1a6671726377d537f345deb436a9613780848122b9c41ecbd05c581c61a4c0fea7faa6afe22754dd74643cc3466be65c7b2c412d3eac83781fc62ca5cb79af1be9eedc8081e30677e2e6833d3f4afc818d5d6a3a58718392ad7ddb75ee95400cece3bc3ebe242d2aa7354d8ed0839e75c2e04c97743455aab7c7e8f0a3290ad55fa249ce12ae10818dc34b2f398d4fd56d1f5f7800528a3a35ac5ad955a0d8452208ddd0178ea740b4a55c73f36304040007800800c100", @ANYRES32=0xee01, @ANYBLOB="efbe37145c7eee3ab86fd9fd2bffb7ae07251239c9c55ccf3f843356af42ec6b296595bd1a324c12b77c4546633db2d763e2c83f7e131171586eacc0bcdfbeee3983b9df903e59991a9fa6502fc5a204433ff9501e1cf5485d5405d0824d59ed71afc0608eb7e9f01d5abeac97e46d4a87d0bccd7e48f6cffc7b1e13ac395ac04697261cc0596c03e8a282cc45062e74c204d851dd6fe94937aab34f01103f43dc7fa190ed4e1931fdef3fbeb26b1aa46f7d0df6fca57d61d4f8b2e61c074d13340400088004004780000000000067003a0157970d528024196a280f0eddac3849694f7ae759f6b3e0c41092fc58bb44396856469b45b0c40812a8723ce8175ab54f80c9adc5f14a0c9672f289bfaa1fae5241e6a59b35b8e5f3f54367f4706da1f208a035ac9030907a82fbbb938907fa6b78d7140005003e0007000000930017008d9792767cb1eb649f1fa8f4fb09574889ef3fd9565eb7853d215e99f43dce328fede047c3e9e0a7b27e34ffb385bc37e80bbe4873e7e67a68c8d5b8397a1dacbe371ccf19629f0ea2ac49d90351c628e739e0cfa8ae368c4beef7a95a49a8bf226b315d15f42a125f9ce44cbaebf3995950f2f62cbd284b48db84149cd4f888cef73ba0f8451845b87a1691a6b9a70004008e00"], 0x794}}, 0x40100) 3.80669121s ago: executing program 4 (id=1953): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x5, 0x0, 0x1f, 0x9}, 0x800009}, 0x3, 0x20000000) r1 = io_uring_setup$auto(0x6, 0x0) pwrite64$auto(0xc8, 0x0, 0x4e, 0x3) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) bind$auto(0x3, 0x0, 0x6a) setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0x9) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x183841, 0x0) sendmsg$auto_NL80211_CMD_DEL_TX_TS(0xffffffffffffffff, 0x0, 0x24000000) write$auto(r2, 0x0, 0xc) close_range$auto(r1, 0xfffffffffffff000, 0x2) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) socket(0x2, 0x2, 0x1) mmap$auto(0x0, 0x9, 0xffffffff, 0x8000200008011, 0xffffffffffffffff, 0x8000) read$auto(0x3, 0x0, 0x80) write$auto(0x3, 0x0, 0xfffffdef) 2.706812483s ago: executing program 4 (id=1954): statmount$auto(0x0, &(0x7f0000000640)={0xa, 0x1, 0x1ff, 0x7, 0x1f, 0x394, 0x7, 0x7, 0x3, 0x9, 0x6, 0x3, 0x4, 0x1, 0xb4, 0x9, 0x8, 0x10003, 0x80, 0x4, 0x0, 0xa, 0x2, 0x200, 0x0, 0x3ff, 0x0, 0x1580, 0x0, 0x0, 0xfffffd66, [0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffd, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x80, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x9]}, 0x1fe, 0xd) r0 = socket(0x1d, 0x3, 0x1) fcntl$auto_F_GETOWNER_UIDS(r0, 0x11, 0xffffffffffffffff) mmap$auto(0xf, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xd, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) socket(0x1e, 0x1, 0x8) setsockopt$auto(0x3, 0x6, 0x100000000, 0xfffffffffffffffc, 0xa) getpid() mlockall$auto(0x1004) rt_sigprocmask$auto(0x26, &(0x7f0000000040)={0x80000000}, &(0x7f0000000080)={0x9}, 0x8) close_range$auto(0x2, 0x8, 0x0) writev$auto(0xc8, &(0x7f00000028c0)={&(0x7f00000000c0)="6542084a1459f5", 0x200}, 0x9) io_uring_setup$auto(0xffffff75, 0x0) unshare$auto(0x40000080) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) socket(0x1e, 0x4, 0x300) sendmmsg$auto(0x4, 0x0, 0x9a6, 0xa) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xa00) 2.70659742s ago: executing program 3 (id=1955): prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x801, 0x0) connect$auto(0x3, 0x0, 0x51) socket(0xf, 0x3, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72) socket(0x2, 0x1, 0x0) socket(0x1e, 0x1, 0x0) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0x9) copy_file_range$auto(r1, 0x0, r1, 0x0, 0x2, 0x0) select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfff, 0x1, 0x5, 0x3, 0x95f4da2d, 0xc, 0x6, 0x62, 0x7, 0x7, 0x6d3f, 0xa, 0x4, 0x5]}, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x6, 0x1, 0xfffffffffffffff7, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x42, 0x80000021, 0x7, 0x6d3e, 0x7fff, 0x2, 0x6]}, 0x0) r2 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0) ioctl$auto_PROCMAP_QUERY(r2, 0xc0686611, &(0x7f0000000200)={0x7ff, 0xfffffffffffffffe, 0xfffffffffffffffb, 0x0, 0x8, 0x8001, 0x3, 0x9, 0x0, 0x200, 0xe21f, 0x80000000, 0x2000009, 0x7, 0x10000001000}) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x20b42, 0x0) write$auto(0x3, 0x0, 0x100082) close_range$auto(0x2, 0x8, 0x0) prctl$auto(0x4e, 0x1, 0x0, 0x1, 0x0) 2.618127981s ago: executing program 5 (id=1956): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x5, 0x0, 0x1f, 0x9}, 0x800009}, 0x3, 0x20000000) r1 = io_uring_setup$auto(0x6, 0x0) pwrite64$auto(0xc8, 0x0, 0x4e, 0x3) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) bind$auto(0x3, 0x0, 0x6a) setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0x9) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x183841, 0x0) sendmsg$auto_NL80211_CMD_DEL_TX_TS(0xffffffffffffffff, 0x0, 0x24000000) write$auto(r2, 0x0, 0xc) close_range$auto(r1, 0xfffffffffffff000, 0x2) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) socket(0x2, 0x2, 0x1) mmap$auto(0x0, 0x9, 0xffffffff, 0x8000200008011, 0xffffffffffffffff, 0x8000) read$auto(0x3, 0x0, 0x80) write$auto(0x3, 0x0, 0xfffffdef) 2.245887882s ago: executing program 6 (id=1957): socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000) prctl$auto(0x16, 0x2, 0x2, 0x4000000d, 0x100) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c0030e5", @ANYRES16=r1, @ANYBLOB="01002dbd7000f9dbdf25010000000500070058000000080009009c781e01060002000100000008001800030000000800190006000000"], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x48080) mmap$auto(0x1, 0x3, 0x1, 0xe31, 0xffffffffffffffff, 0xe0) socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0) socket(0x2, 0x5, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dmmidi2\x00', 0x101, 0x0) socket(0x10, 0x2, 0x0) close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x3, 0xa00006, 0x4, 0x40eb1, 0x602, 0x300000000000) ioprio_set$auto(0x2, 0x0, 0x208) 1.480044173s ago: executing program 3 (id=1959): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/pcm0p/oss\x00', 0xaa102, 0x0) write$auto(r0, 0x0, 0x7ef) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82040, 0x0) socket(0xa, 0x1, 0x100) ioperm$auto(0x7, 0x5ad2, 0xc) modify_ldt$auto(0x1, 0x0, 0x10) r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) pread64$auto(r1, 0x0, 0x7ff, 0x400) socket(0x2, 0x1, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x12, 0x0, 0x0, &(0x7f0000000240)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x400000000000948f, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1]}, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0xa, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x20000003, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/kernel/kexec_load_disabled\x00', 0x202, 0x0) sendfile$auto(r4, r4, 0x0, 0x0) mmap$auto(0xc, 0x20009, 0x5, 0xeb1, 0x405, 0x8000) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0x8, 0x16) ioctl$auto_BLKTRACESETUP32(r3, 0xc0401273, 0x0) madvise$auto(0x0, 0x200007, 0x19) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) close_range$auto(0x2, 0x8, 0x0) 1.463296123s ago: executing program 5 (id=1960): r0 = socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(r0, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioperm$auto(0x3, 0x8001, 0x2000000000000149) kexec_load$auto(0xff, 0x2, 0x0, 0x4) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_IPVS_CMD_DEL_DAEMON(r2, 0x0, 0x0) shmctl$auto(0xa0000000, 0x6, &(0x7f00000002c0)={{0x3, 0x0, 0x0, 0x0, 0x7, 0xd, 0xff}, 0x2, 0xffffffff80000001, 0x3ff, 0x800, @raw=0x61a, @inferred=0xffffffffffffffff, 0x7, 0x0, 0x0, &(0x7f00000001c0)="63ad0499bc4977f5c857f114a97a0a323d1450f3bc957650e287219d3dbfc5c22d1e8cad2b19b9fe471af23ffd4234886e8037b407a8d8457941741f8fb4052615f610c10a631b6efb0560a794994c28760d4d2dca87682539b89e0237fd4de413c841b0a844a44dbb9f940dcb392120a711b745a24a7efd2023aa720ad74faa9f1ea2c6e3761a356ebd50314e152ff9c626dd32f6bc71f9c66a1ea155e1c9ed22fa39523ab8dc30d09aff280204cafb12b29d748618b665d1e70af168055e5af6a2c2cde6dbe2c9f1f352236de62aa2cc5a97acfc69"}) sendmsg$auto_IPVS_CMD_GET_DAEMON(r0, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={&(0x7f00000005c0)={0x2cec, 0x0, 0x100, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0x1a7, 0x3, 0x0, 0x1, [@typed={0x8, 0xc4, 0x0, 0x0, @fd=r1}, @typed={0x8, 0x3f80, 0x0, 0x0, @ipv4=@multicast2}, @nested={0x4, 0x130}, @nested={0x4, 0x139}, @typed={0xf, 0x127, 0x0, 0x0, @str='/dev/tty45\x00'}, @typed={0x8, 0x42, 0x0, 0x0, @fd=r1}, @generic="e586f35b368a87863e044a4cf63fea0800c0579a88607f450dc2d38a0ed51ec80fcc1034130627024cd88da0ef2fb90c81d6c6eb743b9749e77159ae93555036d2ddca5e10a40120996d922ebde93321d844191d38ee8864a61e7363271957f6dd4e04e3f8d097ac6fcc3a2751b85eb35d2cdcd51007e0f5d97637a650c1651bbd0487352e526b3c68ee708bb00db6a49f71e155d4b1dc14eddf8d419cd501c2a053", @generic="3749cdea6c5fd305171221785170bd50fdda0f5666858c9da5fffefdc7b3efb8e504be071c1b3cdc5ef2eaa58304405a5517a7b95ed2db7c872c3c3163b785b5257f406e062fd3f5b98533ddf4b422d47baa0ac902301a5ba27683cd7bf2928298d455c81494489bd1398e7d5cea10dd81faa4aed141570659f883b31947532028ace391d7d78b12154c4c922136b3130ba85e8de134b81bf7626481baaabc70c024c8d88c84ef1b03e35910ba38204dea1de7560eba47d357ce21b2374d2b808874a250664c275464a75a22925dd60f26"]}, @IPVS_CMD_ATTR_DAEMON={0x1309, 0x3, 0x0, 0x1, [@nested={0x122, 0xf, 0x0, 0x1, [@generic="3798029b3619276dfe68c2fadaa010fe44e66ce6d355665d9cdd3f77e4582925df90c85c828060f87498e29e2b10c7d722f03562916191c1594176ee915136b44d30629d4e7b993083bf689758c4f445f3580142398f99d52c2c2a9563d29a6904189548ea71dfca7c0b3dad32f52470fd5360726d0c064555e0b7996a8ca055758589080cab4e36a4c8124fc0affa637cd629a27dbc7add2d2e065332e3223b858c46b6a71c797612b87cd03b71d9b715fdf5528db9b9e0c5adec6bc0d2ca4003b743cc1ffa200ab74236969af7f26d196a6d40", @generic="f74b4491d75fae2e6ffc727944cd63a6e3fd5eedfc2ef04be5583c801693d773bbbbaad98604a0f8cb1455f644e981a0626aabc0ee9823a3ef3abe923eb49eda4dd6db2247f7575cb0b7"]}, @nested={0x11a6, 0x7b, 0x0, 0x1, [@typed={0xfd, 0xe5, 0x0, 0x0, @binary="5d067a7a94a94de9d3063c81fbe95e380e041793109e6098af80ca45ca4e3200ceef3d05f6724c619b6c8770f83c671cdca1c2bb6cc331035b24098055ef83ef1c010a079732df4f58d738cf5662fe7ddefb0f14319aaffb0ee60d44e4d0b974884f8b72ae78c99761bf519b3c0229d09afc3af6e6674e41326325c76d7182058266b60062404ab52adad60245f878ed5f20b0bf69f8b825ad33af52ab8bf91c982e8630c91a72443562792d6d69764254409bf704b0d16386d2904c943c7239bde3db38253549cae215728e7a67ed3b31cadf90ef81138fe35d0b1849c53fd5503a3dbd368da1e786e521af6ac3eb7d835cd1aefd09e8a75a"}, @generic="bbe085554a2aafc08af82ac767f315b5dcdfc9ed4dcffa07eac7127e21d9240f3ec9d76199137096d530911ff556922554f00452ce678733a5a2115b19c22ef1b54d3f3f103606f4b4c3c4bc61444a3576481e44439730070b7c836d9ca1f1cc03957344fa8511642c074c943f3a0940b6c7e8c1f97fb5bd1e771958bc27dc579f56240547a2349df30945b3e67667d5ffdcac0833bcdc1d77e3302e08e66734fd79a6d758dce26ecadd2903eac384430f198d8013e983fa37f2", @nested={0x4, 0x92}, @nested={0x4, 0x11b}, @generic="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"]}, @generic="6bc0d0b3c76fdce4b0be5c7fa50483a21d08ac7fbbed18ea35379e490c0dc849853f5c741c7505d61fe745e3a85961f1a94239b9f49e0985fe"]}, @IPVS_CMD_ATTR_DAEMON={0x184, 0x3, 0x0, 0x1, [@generic="b772096eb8396cf137ea9758e8850cd1b6374e2573cd2dd8584a910095478c682d4c83ddc9e8445de5dc19263e4c9da2a689a934e7a19b257ed5d7db3aaa290d1d579c040aae8c016ea7e7961bc4d66a1dc4b2a4a159c9a6eb6b3b40ec884b6d7f9f266143b1a79db0a09a8e26ca09bcd6c9c4777f5950fe1b0eb11feca8ce292b4ebcf997e5638ccf20df03f6c3149e7afa9ba20430a4ec9e08e51bf6c472adbacec8eb10c781", @generic="0d589617ce02a8c45fdb2dd4b544731dd0cc23b72c091dac6ec6d4c76b032a9e1236bd756b6a4ca9466e171ff20db949e46a072a686badcf943cd81b65e8996890642007d74b9d18224b30aec6f035faf1aee93bc4a83ba524a5aea75c6b55328ca70ccd277dfe105970a9a189735cefcfef6f747e5ffac92869bcdb05b7209adddf73293ad4624638ffc29c61321220fd90220038d1784975466ebd3d3702952c4ed7950853b8bf66534139e2cf66ef316d332b8bfc39490c69872e4f8db479ac2c922787b8a2372c287dad7e3f55d5c7", @typed={0x8, 0xba, 0x0, 0x0, @uid=r3}]}, @IPVS_CMD_ATTR_DAEMON={0x1698, 0x3, 0x0, 0x1, [@nested={0x3b, 0xdd, 0x0, 0x1, [@generic="af8691931fefe73f9c0b91b3479cfedb7c3f56a1b65e31e78faaa5e6cec7f27f084d935322935bcb8af24469a4b192b5bce5202ed7ecbc"]}, @typed={0x4, 0x12b}, @generic="3c6b2742b525ed6baff3f1fb3d25d79372f41d8318ff1e0598780de2c26fe4cb8b65cd1d9473104da655efbdb3385401247f0e33d6baeeca1f0a0583", @nested={0xc, 0xcd, 0x0, 0x1, [@nested={0x4, 0xa4}, @nested={0x4, 0x99}]}, @typed={0x8, 0xcd, 0x0, 0x0, @ipv4=@remote}, @nested={0xe0c, 0xba, 0x0, 0x1, [@generic="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", @nested={0x4, 0x129}, @nested={0x4, 0x72}]}, @generic="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"]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x6}]}, 0x2cec}, 0x1, 0x0, 0x0, 0x24008000}, 0x20000000) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) execve$auto(0x0, 0x0, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffff7fffffffffd, 0xd1, 0x3, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x31, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000440)={'bridge_slave_0\x00'}) sendmsg$auto_ILA_CMD_ADD(r2, &(0x7f0000003fc0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000003f80)={&(0x7f0000000140)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="04002bbd7000ffdbdf2501070001000000086b786fedac8a5e000400beed133f2e71804c2f8f4d345d577e5a62574ba2ea9613104f257a08ccd0f028c80979391cde814260e56df748298630d200"/90, @ANYRES32=0x0, @ANYBLOB="05000800e9000000"], 0x34}}, 0x4000010) socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0) read$auto_proc_pid_maps_operations_internal(0xffffffffffffffff, 0x0, 0x0) timer_settime$auto(0x0, 0x8, 0x0, &(0x7f0000000100)={{0xa01, 0x4}, {0x1009000, 0x800}}) sendfile$auto(r4, r4, 0x0, 0x10000800000003) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mprotect$auto(0xb4aa, 0x9b, 0x4) 1.429740753s ago: executing program 4 (id=1961): socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x1, 0x100) r0 = eventfd2$auto(0x6af3, 0x800) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) pipe2$auto(&(0x7f0000000040)=r0, 0x9) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000200)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x3, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7440, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x100000001f9, 0x8, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x7, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x10008000009, 0x2, 0x6]}, 0x0) r2 = openat$auto_debug_help_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f00000032c0), 0x1000, 0x0) preadv$auto(r2, &(0x7f0000003340)={&(0x7f0000003300), 0x40}, 0x9, 0x5, 0x100000001) ioperm$auto(0x7, 0x6, 0x1) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x500, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/flags\x00', 0x101142, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) execve$auto(0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) write$auto(0x3, 0x0, 0x100082) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x200, 0x1001, 0x0, 0xf, 0xffffffffffffffff, 0x1400000, 0x5}, 0x6f4) 281.220339ms ago: executing program 6 (id=1962): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x5, 0x0, 0x1f, 0x9}, 0x800009}, 0x3, 0x20000000) r1 = io_uring_setup$auto(0x6, 0x0) pwrite64$auto(0xc8, 0x0, 0x4e, 0x3) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) bind$auto(0x3, 0x0, 0x6a) write$auto(0xffffffffffffffff, &(0x7f0000000040)=',\x00^\xa2\x02\x00\x05\x00\x00\x00\xd8l\x00\x00\x00\x00\x00\x00\xb2s\x83\xbd\xc5_%\xc1\xa3\xd0\x95Hq\xf4zG\x01[{\x17\x05I\xe0\xb1d)\x06z8L\xe6&[\xa9X6\x7f\xec\x94\xdal\xa1\xbb\x86\x9c\xc2\xef\x02\r9%\x06\xc5\'b%m_\x96A\"\xdd\xe40\xa7\xc3\x9ah\xf3B\xc2\xec\xf8\r\f[\xe5\x9dK\xe1\x99\x86\xfc\xac\x9f\x8a', 0x1000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x183841, 0x0) sendmsg$auto_NL80211_CMD_DEL_TX_TS(0xffffffffffffffff, 0x0, 0x24000000) write$auto(r2, 0x0, 0xc) close_range$auto(r1, 0xfffffffffffff000, 0x2) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) socket(0x2, 0x2, 0x1) mmap$auto(0x0, 0x9, 0xffffffff, 0x8000200008011, 0xffffffffffffffff, 0x8000) read$auto(0x3, 0x0, 0x80) write$auto(0x3, 0x0, 0xfffffdef) 110.62495ms ago: executing program 4 (id=1963): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x5, 0x0, 0x1f, 0x9}, 0x800009}, 0x3, 0x20000000) r1 = io_uring_setup$auto(0x6, 0x0) pwrite64$auto(0xc8, 0x0, 0x4e, 0x3) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) bind$auto(0x3, 0x0, 0x6a) setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0x9) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x183841, 0x0) sendmsg$auto_NL80211_CMD_DEL_TX_TS(0xffffffffffffffff, 0x0, 0x24000000) write$auto(r2, 0x0, 0xc) close_range$auto(r1, 0xfffffffffffff000, 0x2) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) socket(0x2, 0x2, 0x1) mmap$auto(0x0, 0x9, 0xffffffff, 0x8000200008011, 0xffffffffffffffff, 0x8000) read$auto(0x3, 0x0, 0x80) write$auto(0x3, 0x0, 0xfffffdef) 0s ago: executing program 5 (id=1964): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) rseq$auto(0x0, 0xfffffff4, 0x0, 0x5) sysfs$auto(0x2, 0x10000000000002a, 0x0) socket(0x27, 0x800, 0xa5) r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$auto_VHOST_SET_BACKEND_FEATURES(r0, 0x4008af25, &(0x7f0000000000)=0x7) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x40040, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, r1, 0x27fff) msync$auto(0x1ffff000, 0x1800000ff010000, 0x400000004) socket(0x15, 0xa, 0x5) syz_clone(0x40000000, 0x0, 0x25, 0x0, 0x0, 0x0) ioperm$auto(0x3, 0x8001, 0x2000000000000149) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) kexec_load$auto(0xff, 0x2, &(0x7f0000000080)={@kbuf=0x0, 0x2, 0x8000, 0x3000}, 0x4) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) kernel console output (not intermixed with test programs): 3907][ T9070] __x64_sys_unshare+0x31/0x40 [ 364.773946][ T9070] do_syscall_64+0xcd/0x490 [ 364.773995][ T9070] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 364.774025][ T9070] RIP: 0033:0x7f7c6f18e929 [ 364.774048][ T9070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 364.774075][ T9070] RSP: 002b:00007f7c700a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 364.774105][ T9070] RAX: ffffffffffffffda RBX: 00007f7c6f3b5fa0 RCX: 00007f7c6f18e929 [ 364.774124][ T9070] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 364.774143][ T9070] RBP: 00007f7c6f210b39 R08: 0000000000000000 R09: 0000000000000000 [ 364.774162][ T9070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 364.774179][ T9070] R13: 0000000000000000 R14: 00007f7c6f3b5fa0 R15: 00007ffe61f1ce78 [ 364.774219][ T9070] [ 366.378229][ T9073] GUP no longer grows the stack in syz.0.611 (9073): 14000-401000 (4000) [ 366.438582][ T9073] CPU: 1 UID: 0 PID: 9073 Comm: syz.0.611 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 366.438628][ T9073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 366.438648][ T9073] Call Trace: [ 366.438659][ T9073] [ 366.438671][ T9073] dump_stack_lvl+0x16c/0x1f0 [ 366.438723][ T9073] gup_vma_lookup+0x1d2/0x220 [ 366.438759][ T9073] __get_user_pages+0x271/0x3b80 [ 366.438807][ T9073] ? process_vm_rw_core.constprop.0+0x1d8/0x9a0 [ 366.438856][ T9073] ? kasan_save_stack+0x42/0x60 [ 366.438901][ T9073] ? __pfx___get_user_pages+0x10/0x10 [ 366.438935][ T9073] ? register_lock_class+0x41/0x4c0 [ 366.438973][ T9073] ? __x64_sys_process_vm_readv+0xe2/0x1c0 [ 366.439020][ T9073] ? do_syscall_64+0xcd/0x490 [ 366.439077][ T9073] __gup_longterm_locked+0x20d/0x1840 [ 366.439113][ T9073] ? __lock_acquire+0xb8a/0x1c90 [ 366.439157][ T9073] ? __pfx___gup_longterm_locked+0x10/0x10 [ 366.439212][ T9073] pin_user_pages_remote+0xed/0x140 [ 366.439252][ T9073] ? __pfx_pin_user_pages_remote+0x10/0x10 [ 366.439284][ T9073] ? mm_access+0x22d/0x2e0 [ 366.439334][ T9073] process_vm_rw_core.constprop.0+0x41b/0x9a0 [ 366.439418][ T9073] ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10 [ 366.439468][ T9073] ? iovec_from_user+0xbb/0x140 [ 366.439537][ T9073] ? iovec_from_user+0xbb/0x140 [ 366.439590][ T9073] process_vm_rw+0x216/0x2c0 [ 366.439638][ T9073] ? __pfx_process_vm_rw+0x10/0x10 [ 366.439698][ T9073] ? io_uring_setup+0x1789/0x2080 [ 366.439778][ T9073] ? xfd_validate_state+0x61/0x180 [ 366.439824][ T9073] __x64_sys_process_vm_readv+0xe2/0x1c0 [ 366.439874][ T9073] ? do_syscall_64+0x91/0x490 [ 366.439917][ T9073] ? lockdep_hardirqs_on+0x7c/0x110 [ 366.439961][ T9073] do_syscall_64+0xcd/0x490 [ 366.440010][ T9073] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 366.440041][ T9073] RIP: 0033:0x7f67dc78e929 [ 366.440066][ T9073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 366.440096][ T9073] RSP: 002b:00007f67da5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136 [ 366.440128][ T9073] RAX: ffffffffffffffda RBX: 00007f67dc9b5fa0 RCX: 00007f67dc78e929 [ 366.440148][ T9073] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 00000000000002bd [ 366.440167][ T9073] RBP: 00007f67dc810b39 R08: 0000000000000003 R09: 0000000000000000 [ 366.440185][ T9073] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000 [ 366.440203][ T9073] R13: 0000000000000000 R14: 00007f67dc9b5fa0 R15: 00007fffa93914c8 [ 366.440244][ T9073] [ 369.004899][ T5844] Bluetooth: hci0: unexpected event 0x3d length: 726 > 14 [ 369.265960][ T9120] ima: policy update failed [ 369.335545][ T30] audit: type=1802 audit(4294967569.685:10): pid=9120 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.620" res=0 errno=0 [ 369.385523][ T9120] netlink: 25 bytes leftover after parsing attributes in process `syz.0.620'. [ 369.965774][ T9131] sd 0:0:1:0: PR command failed: 1026 [ 369.971354][ T9131] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 369.978169][ T9131] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 371.991963][ T30] audit: type=1804 audit(4294967572.345:11): pid=9150 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.624" name="/newroot/152/file0" dev="tmpfs" ino=817 res=1 errno=0 [ 372.029831][ T30] audit: type=1800 audit(4294967572.345:12): pid=9150 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.624" name="file0" dev="tmpfs" ino=817 res=0 errno=0 [ 372.417310][ T9151] netlink: 350 bytes leftover after parsing attributes in process `syz.3.625'. [ 376.394068][ T9197] Invalid ELF header magic: != ELF [ 378.551228][ T9204] kexec: Could not allocate control_code_buffer [ 378.573618][ T9226] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17 [ 378.808942][ T9229] netlink: 'syz.1.642': attribute type 1 has an invalid length. [ 378.856956][ T9229] netlink: 33 bytes leftover after parsing attributes in process `syz.1.642'. [ 383.147764][ T9250] kexec: Could not allocate control_code_buffer [ 384.019186][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 384.026260][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 386.286480][ T9275] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 386.292923][ T9275] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 386.299315][ T9275] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 386.305553][ T9275] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 386.653631][ T5844] Bluetooth: hci0: command 0x0406 tx timeout [ 388.334784][ T5844] Bluetooth: hci3: command 0x0406 tx timeout [ 388.334834][ T5833] Bluetooth: hci2: command 0x0406 tx timeout [ 388.340855][ T5844] Bluetooth: hci1: command 0x0406 tx timeout [ 388.709914][ T9330] netlink: 'syz.2.659': attribute type 2 has an invalid length. [ 389.048795][ T9334] hub 8-0:1.0: USB hub found [ 389.055316][ T9334] hub 8-0:1.0: 1 port detected [ 390.896433][ T30] audit: type=1800 audit(4294967591.255:13): pid=9357 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.665" name="members" dev="configfs" ino=47228 res=0 errno=0 [ 393.816056][ T9374] kafs: addr_prefs: Invalid Command [ 395.925757][ T9363] Process accounting paused [ 396.084294][ T9398] netlink: 28 bytes leftover after parsing attributes in process `syz.3.674'. [ 396.310880][ T9398] bond0: (slave bond_slave_0): Releasing backup interface [ 396.753685][ T9408] netlink: 4 bytes leftover after parsing attributes in process `syz.2.677'. [ 396.795271][ T9408] netlink: 354 bytes leftover after parsing attributes in process `syz.2.677'. [ 397.223904][ T9411] netlink: 28 bytes leftover after parsing attributes in process `syz.2.678'. [ 397.241521][ T9411] bridge_slave_1: left allmulticast mode [ 397.285557][ T9411] bridge_slave_1: left promiscuous mode [ 397.319618][ T9411] bridge0: port 2(bridge_slave_1) entered disabled state [ 397.435461][ T9411] bridge_slave_0: left allmulticast mode [ 397.486515][ T9411] bridge_slave_0: left promiscuous mode [ 397.545299][ T9411] bridge0: port 1(bridge_slave_0) entered disabled state [ 398.798965][ T9423] netlink: 28 bytes leftover after parsing attributes in process `syz.0.680'. [ 398.885120][ T9413] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 398.892983][ T9413] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 398.900130][ T9413] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 398.906730][ T9413] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 398.948760][ T9423] team_slave_0: entered allmulticast mode [ 399.374567][ T5844] Bluetooth: hci0: command 0x0406 tx timeout [ 400.903919][ T5844] Bluetooth: hci1: command 0x0406 tx timeout [ 400.973648][ T5844] Bluetooth: hci3: command 0x0406 tx timeout [ 400.979745][ T5844] Bluetooth: hci2: command 0x0406 tx timeout [ 403.407742][ T9470] netlink: 342 bytes leftover after parsing attributes in process `syz.3.689'. [ 403.431564][ T9470] netlink: 174 bytes leftover after parsing attributes in process `syz.3.689'. [ 408.616620][ T9513] netlink: 20 bytes leftover after parsing attributes in process `syz.1.697'. [ 409.188788][ T9518] delete_channel: no stack [ 409.465323][ T9513] hsr_slave_0 (unregistering): left promiscuous mode [ 409.709563][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 409.716804][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 409.724799][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 409.731424][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 409.748050][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 409.755709][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 409.772062][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 409.788894][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 413.689069][ T9569] [U] [ 413.692324][ T9569] [U] [ 413.695068][ T9569] [U] [ 413.697792][ T9569] [U] [ 413.744498][ T9569] [U] [ 413.747291][ T9569] [U] [ 413.750043][ T9569] [U] [ 413.752799][ T9569] [U] [ 413.758081][ T9569] [U] [ 413.760823][ T9569] [U] [ 413.763530][ T9569] [U] [ 413.766234][ T9569] [U] [ 413.775113][ T9569] [U] [ 413.777895][ T9569] [U] [ 413.780654][ T9569] [U] [ 413.783408][ T9569] [U] [ 413.808131][ T9569] [U] [ 413.810910][ T9569] [U] [ 413.813667][ T9569] [U] [ 413.816454][ T9569] [U] [ 413.903280][ T9569] [U] [ 413.906027][ T9569] [U] [ 413.908726][ T9569] [U] [ 413.911454][ T9569] [U] [ 413.943378][ T9569] [U] [ 413.946176][ T9569] [U] [ 413.948924][ T9569] [U] [ 413.951671][ T9569] [U] [ 413.992994][ T9569] [U] [ 413.995790][ T9569] [U] [ 413.998542][ T9569] [U] [ 414.001300][ T9569] [U] [ 414.021685][ T9569] [U] [ 414.024478][ T9569] [U] [ 414.027234][ T9569] [U] [ 414.029996][ T9569] [U] [ 414.049361][ T9569] [U] [ 414.052166][ T9569] [U] [ 414.054914][ T9569] [U] [ 414.057669][ T9569] [U] [ 414.061808][ T9569] [U] [ 414.064568][ T9569] [U] [ 414.067316][ T9569] [U] [ 414.070075][ T9569] [U] [ 414.100639][ T9569] [U] [ 414.103433][ T9569] [U] [ 414.106183][ T9569] [U] [ 414.108931][ T9569] [U] [ 414.141419][ T9569] [U] [ 414.144217][ T9569] [U] [ 414.146962][ T9569] [U] [ 414.149713][ T9569] [U] [ 414.176596][ T9569] [U] [ 414.179372][ T9569] [U] [ 414.182121][ T9569] [U] [ 414.184866][ T9569] [U] [ 414.199105][ T9569] [U] [ 414.201872][ T9569] [U] [ 414.204622][ T9569] [U] [ 414.207377][ T9569] [U] [ 414.221161][ T9569] [U] [ 414.223933][ T9569] [U] [ 414.226674][ T9569] [U] [ 414.229419][ T9569] [U] [ 414.244405][ T9569] [U] [ 414.247186][ T9569] [U] [ 414.249933][ T9569] [U] [ 414.252683][ T9569] [U] [ 414.264351][ T9569] [U] [ 414.267125][ T9569] [U] [ 414.269871][ T9569] [U] [ 414.272622][ T9569] [U] [ 414.284627][ T9569] [U] [ 414.287412][ T9569] [U] [ 414.290175][ T9569] [U] [ 414.292917][ T9569] [U] [ 414.407393][ T9569] [U] [ 414.410200][ T9569] [U] [ 414.412950][ T9569] [U] [ 414.415703][ T9569] [U] [ 414.474515][ T9569] [U] [ 414.477309][ T9569] [U] [ 414.480063][ T9569] [U] [ 414.482822][ T9569] [U] [ 414.554793][ T9569] [U] [ 414.557589][ T9569] [U] [ 414.560335][ T9569] [U] [ 414.563080][ T9569] [U] [ 414.706771][ T9569] [U] [ 414.709579][ T9569] [U] [ 414.712338][ T9569] [U] [ 414.715098][ T9569] [U] [ 414.822691][ T9569] [U] [ 417.970424][ T9608] FAULT_INJECTION: forcing a failure. [ 417.970424][ T9608] name failslab, interval 1, probability 0, space 0, times 0 [ 418.106066][ T9608] CPU: 0 UID: 0 PID: 9608 Comm: syz.2.714 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 418.106113][ T9608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 418.106129][ T9608] Call Trace: [ 418.106137][ T9608] [ 418.106147][ T9608] dump_stack_lvl+0x16c/0x1f0 [ 418.106189][ T9608] should_fail_ex+0x512/0x640 [ 418.106223][ T9608] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 418.106258][ T9608] should_failslab+0xc2/0x120 [ 418.106282][ T9608] __kmalloc_cache_noprof+0x6a/0x3e0 [ 418.106315][ T9608] ? cuse_channel_open+0x1de/0x7f0 [ 418.106353][ T9608] cuse_channel_open+0x1de/0x7f0 [ 418.106383][ T9608] ? __pfx_cuse_channel_open+0x10/0x10 [ 418.106415][ T9608] misc_open+0x35d/0x420 [ 418.106444][ T9608] ? __pfx_misc_open+0x10/0x10 [ 418.106472][ T9608] chrdev_open+0x231/0x6a0 [ 418.106506][ T9608] ? __pfx_apparmor_file_open+0x10/0x10 [ 418.106535][ T9608] ? __pfx_chrdev_open+0x10/0x10 [ 418.106573][ T9608] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 418.106611][ T9608] do_dentry_open+0x744/0x1c10 [ 418.106645][ T9608] ? __pfx_chrdev_open+0x10/0x10 [ 418.106686][ T9608] vfs_open+0x82/0x3f0 [ 418.106715][ T9608] path_openat+0x1de4/0x2cb0 [ 418.106760][ T9608] ? __pfx_path_openat+0x10/0x10 [ 418.106796][ T9608] ? __lock_acquire+0xb8a/0x1c90 [ 418.106830][ T9608] do_filp_open+0x20b/0x470 [ 418.106864][ T9608] ? __pfx_do_filp_open+0x10/0x10 [ 418.106921][ T9608] ? alloc_fd+0x471/0x7d0 [ 418.106962][ T9608] do_sys_openat2+0x11b/0x1d0 [ 418.106987][ T9608] ? __pfx_do_sys_openat2+0x10/0x10 [ 418.107026][ T9608] __x64_sys_openat+0x174/0x210 [ 418.107061][ T9608] ? __pfx___x64_sys_openat+0x10/0x10 [ 418.107104][ T9608] do_syscall_64+0xcd/0x490 [ 418.107142][ T9608] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 418.107165][ T9608] RIP: 0033:0x7f47d438e929 [ 418.107185][ T9608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 418.107209][ T9608] RSP: 002b:00007f47d5194038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 418.107233][ T9608] RAX: ffffffffffffffda RBX: 00007f47d45b6080 RCX: 00007f47d438e929 [ 418.107250][ T9608] RDX: 00000000001c1041 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 418.107265][ T9608] RBP: 00007f47d4410b39 R08: 0000000000000000 R09: 0000000000000000 [ 418.107280][ T9608] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 418.107294][ T9608] R13: 0000000000000000 R14: 00007f47d45b6080 R15: 00007fff3c33c938 [ 418.107326][ T9608] [ 420.812831][ T9636] random: crng reseeded on system resumption [ 421.094151][ T9636] netlink: zone id is out of range [ 421.124240][ T9636] netlink: zone id is out of range [ 421.140626][ T9636] netlink: zone id is out of range [ 421.295678][ T9636] netlink: zone id is out of range [ 421.494386][ T9636] netlink: zone id is out of range [ 421.545701][ T9636] netlink: zone id is out of range [ 421.597743][ T9636] netlink: zone id is out of range [ 421.629090][ T9636] netlink: zone id is out of range [ 421.772805][ T9636] netlink: zone id is out of range [ 421.831653][ T9636] netlink: zone id is out of range [ 422.247383][ T9646] can: request_module (can-proto-0) failed. [ 422.317537][ T9646] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input18 [ 423.232383][ T9653] FAULT_INJECTION: forcing a failure. [ 423.232383][ T9653] name failslab, interval 1, probability 0, space 0, times 0 [ 423.264901][ T9653] CPU: 0 UID: 0 PID: 9653 Comm: syz.3.722 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 423.264947][ T9653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 423.264965][ T9653] Call Trace: [ 423.264976][ T9653] [ 423.264989][ T9653] dump_stack_lvl+0x16c/0x1f0 [ 423.265038][ T9653] should_fail_ex+0x512/0x640 [ 423.265081][ T9653] ? __kmalloc_noprof+0xbf/0x510 [ 423.265131][ T9653] ? query_regdb+0x26b/0xca0 [ 423.265159][ T9653] should_failslab+0xc2/0x120 [ 423.265189][ T9653] __kmalloc_noprof+0xd2/0x510 [ 423.265244][ T9653] query_regdb+0x26b/0xca0 [ 423.265289][ T9653] query_regdb_file+0xb0/0x140 [ 423.265319][ T9653] reg_process_hint+0x291/0x1410 [ 423.265354][ T9653] ? kasan_save_track+0x14/0x30 [ 423.265403][ T9653] reg_reload_regdb+0x38d/0x460 [ 423.265439][ T9653] ? __pfx_reg_reload_regdb+0x10/0x10 [ 423.265477][ T9653] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 423.265520][ T9653] ? nl80211_pre_doit+0x1b0/0xb10 [ 423.265572][ T9653] genl_family_rcv_msg_doit+0x209/0x2f0 [ 423.265617][ T9653] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 423.265652][ T9653] ? rcu_is_watching+0x12/0xc0 [ 423.265701][ T9653] ? bpf_lsm_capable+0x9/0x10 [ 423.265737][ T9653] ? security_capable+0x7e/0x260 [ 423.265801][ T9653] genl_rcv_msg+0x55c/0x800 [ 423.265842][ T9653] ? __pfx_genl_rcv_msg+0x10/0x10 [ 423.265882][ T9653] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 423.265918][ T9653] ? __pfx_nl80211_reload_regdb+0x10/0x10 [ 423.265937][ T9653] ? __pfx_nl80211_post_doit+0x10/0x10 [ 423.265972][ T9653] netlink_rcv_skb+0x158/0x420 [ 423.265991][ T9653] ? __pfx_genl_rcv_msg+0x10/0x10 [ 423.266017][ T9653] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 423.266046][ T9653] ? netlink_deliver_tap+0x1ae/0xd30 [ 423.266067][ T9653] genl_rcv+0x28/0x40 [ 423.266086][ T9653] netlink_unicast+0x53a/0x7f0 [ 423.266108][ T9653] ? __pfx_netlink_unicast+0x10/0x10 [ 423.266134][ T9653] netlink_sendmsg+0x8d1/0xdd0 [ 423.266157][ T9653] ? __pfx_netlink_sendmsg+0x10/0x10 [ 423.266185][ T9653] ____sys_sendmsg+0xa98/0xc70 [ 423.266206][ T9653] ? copy_msghdr_from_user+0x10a/0x160 [ 423.266233][ T9653] ? __pfx_____sys_sendmsg+0x10/0x10 [ 423.266259][ T9653] ? __pfx_futex_wake_mark+0x10/0x10 [ 423.266288][ T9653] ___sys_sendmsg+0x134/0x1d0 [ 423.266316][ T9653] ? __pfx____sys_sendmsg+0x10/0x10 [ 423.266342][ T9653] ? __lock_acquire+0x622/0x1c90 [ 423.266394][ T9653] __sys_sendmsg+0x16d/0x220 [ 423.266421][ T9653] ? __pfx___sys_sendmsg+0x10/0x10 [ 423.266448][ T9653] ? __x64_sys_futex+0x1e0/0x4c0 [ 423.266484][ T9653] do_syscall_64+0xcd/0x490 [ 423.266514][ T9653] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 423.266532][ T9653] RIP: 0033:0x7f7c6f18e929 [ 423.266548][ T9653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 423.266566][ T9653] RSP: 002b:00007f7c700a4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 423.266585][ T9653] RAX: ffffffffffffffda RBX: 00007f7c6f3b5fa0 RCX: 00007f7c6f18e929 [ 423.266596][ T9653] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000007 [ 423.266607][ T9653] RBP: 00007f7c6f210b39 R08: 0000000000000000 R09: 0000000000000000 [ 423.266618][ T9653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 423.266628][ T9653] R13: 0000000000000000 R14: 00007f7c6f3b5fa0 R15: 00007ffe61f1ce78 [ 423.266651][ T9653] [ 424.699715][ T9674] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 426.699428][ T9668] Process accounting resumed [ 427.506355][ T9691] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 430.373868][ T9725] FAULT_INJECTION: forcing a failure. [ 430.373868][ T9725] name failslab, interval 1, probability 0, space 0, times 0 [ 430.513456][ T9725] CPU: 1 UID: 0 PID: 9725 Comm: syz.2.737 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 430.513486][ T9725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 430.513497][ T9725] Call Trace: [ 430.513504][ T9725] [ 430.513511][ T9725] dump_stack_lvl+0x16c/0x1f0 [ 430.513543][ T9725] should_fail_ex+0x512/0x640 [ 430.513570][ T9725] ? __kmalloc_noprof+0xbf/0x510 [ 430.513598][ T9725] ? lsm_blob_alloc+0x68/0x90 [ 430.513624][ T9725] should_failslab+0xc2/0x120 [ 430.513642][ T9725] __kmalloc_noprof+0xd2/0x510 [ 430.513673][ T9725] lsm_blob_alloc+0x68/0x90 [ 430.513701][ T9725] security_sk_alloc+0x30/0x270 [ 430.513729][ T9725] sk_prot_alloc+0xfb/0x2a0 [ 430.513751][ T9725] sk_alloc+0x36/0xc20 [ 430.513777][ T9725] qrtr_create+0x84/0x1d0 [ 430.513795][ T9725] __sock_create+0x338/0x8d0 [ 430.513820][ T9725] __sys_socket+0x14d/0x260 [ 430.513842][ T9725] ? __pfx___sys_socket+0x10/0x10 [ 430.513864][ T9725] ? xfd_validate_state+0x61/0x180 [ 430.513887][ T9725] ? __task_pid_nr_ns+0x17c/0x500 [ 430.513915][ T9725] __x64_sys_socket+0x72/0xb0 [ 430.513935][ T9725] ? lockdep_hardirqs_on+0x7c/0x110 [ 430.513961][ T9725] do_syscall_64+0xcd/0x490 [ 430.513989][ T9725] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 430.514008][ T9725] RIP: 0033:0x7f47d438e929 [ 430.514022][ T9725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 430.514040][ T9725] RSP: 002b:00007f47d51b5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 430.514058][ T9725] RAX: ffffffffffffffda RBX: 00007f47d45b5fa0 RCX: 00007f47d438e929 [ 430.514070][ T9725] RDX: 0000000000000001 RSI: 0000000000000002 RDI: 000000000000002a [ 430.514080][ T9725] RBP: 00007f47d4410b39 R08: 0000000000000000 R09: 0000000000000000 [ 430.514090][ T9725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 430.514101][ T9725] R13: 0000000000000000 R14: 00007f47d45b5fa0 R15: 00007fff3c33c938 [ 430.514123][ T9725] [ 432.245726][ T9740] netlink: 28 bytes leftover after parsing attributes in process `syz.0.739'. [ 432.351616][ T9740] veth1_macvtap: left promiscuous mode [ 432.879239][ T9748] can: request_module (can-proto-3) failed. [ 443.225249][ T9833] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[9833] [ 443.728487][ T9828] netlink: 28 bytes leftover after parsing attributes in process `syz.0.754'. [ 443.777873][ T9828] vcan0: entered promiscuous mode [ 444.533632][ T9853] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 444.629426][ T9855] ima: policy update failed [ 444.637860][ T9855] netlink: 25 bytes leftover after parsing attributes in process `syz.2.760'. [ 444.643194][ T30] audit: type=1802 audit(4294967644.995:14): pid=9855 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.760" res=0 errno=0 [ 445.392237][ T5841] Bluetooth: hci2: ACL packet for unknown connection handle 0 [ 445.465973][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.472292][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 446.445669][ T9868] FAULT_INJECTION: forcing a failure. [ 446.445669][ T9868] name failslab, interval 1, probability 0, space 0, times 0 [ 446.464403][ T9868] CPU: 0 UID: 0 PID: 9868 Comm: syz.1.763 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 446.464447][ T9868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 446.464465][ T9868] Call Trace: [ 446.464476][ T9868] [ 446.464489][ T9868] dump_stack_lvl+0x16c/0x1f0 [ 446.464538][ T9868] should_fail_ex+0x512/0x640 [ 446.464579][ T9868] ? __kvmalloc_node_noprof+0x124/0x620 [ 446.464629][ T9868] should_failslab+0xc2/0x120 [ 446.464660][ T9868] __kvmalloc_node_noprof+0x137/0x620 [ 446.464700][ T9868] ? do_setup+0x2bd/0x3a0 [ 446.464732][ T9868] ? alloc_netdev_mqs+0xb5b/0x1570 [ 446.464799][ T9868] ? alloc_netdev_mqs+0xb5b/0x1570 [ 446.464845][ T9868] alloc_netdev_mqs+0xb5b/0x1570 [ 446.464894][ T9868] ? ovs_vport_alloc+0x2a0/0x3d0 [ 446.464929][ T9868] internal_dev_create+0x8a/0x520 [ 446.464964][ T9868] ovs_vport_add+0x144/0x4d0 [ 446.465017][ T9868] new_vport+0x16/0x1d0 [ 446.465059][ T9868] ovs_dp_cmd_new+0x6ba/0xe60 [ 446.465116][ T9868] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 446.465170][ T9868] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 446.465209][ T9868] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 446.465261][ T9868] genl_family_rcv_msg_doit+0x209/0x2f0 [ 446.465303][ T9868] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 446.465341][ T9868] ? trace_cap_capable+0x18d/0x200 [ 446.465383][ T9868] ? bpf_lsm_capable+0x9/0x10 [ 446.465419][ T9868] ? security_capable+0x7e/0x260 [ 446.465468][ T9868] ? ns_capable+0xd7/0x110 [ 446.465504][ T9868] genl_rcv_msg+0x55c/0x800 [ 446.465547][ T9868] ? __pfx_genl_rcv_msg+0x10/0x10 [ 446.465585][ T9868] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 446.465643][ T9868] netlink_rcv_skb+0x158/0x420 [ 446.465676][ T9868] ? __pfx_genl_rcv_msg+0x10/0x10 [ 446.465710][ T9868] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 446.465767][ T9868] ? netlink_deliver_tap+0x1ae/0xd30 [ 446.465805][ T9868] genl_rcv+0x28/0x40 [ 446.465838][ T9868] netlink_unicast+0x53a/0x7f0 [ 446.465877][ T9868] ? __pfx_netlink_unicast+0x10/0x10 [ 446.465924][ T9868] netlink_sendmsg+0x8d1/0xdd0 [ 446.465968][ T9868] ? __pfx_netlink_sendmsg+0x10/0x10 [ 446.466020][ T9868] ____sys_sendmsg+0xa98/0xc70 [ 446.466058][ T9868] ? copy_msghdr_from_user+0x10a/0x160 [ 446.466103][ T9868] ? __pfx_____sys_sendmsg+0x10/0x10 [ 446.466134][ T9868] ? preempt_schedule_thunk+0x16/0x30 [ 446.466182][ T9868] ? try_to_wake_up+0xa2f/0x1680 [ 446.466223][ T9868] ___sys_sendmsg+0x134/0x1d0 [ 446.466272][ T9868] ? __pfx____sys_sendmsg+0x10/0x10 [ 446.466314][ T9868] ? __lock_acquire+0x622/0x1c90 [ 446.466420][ T9868] __sys_sendmsg+0x16d/0x220 [ 446.466468][ T9868] ? __pfx___sys_sendmsg+0x10/0x10 [ 446.466511][ T9868] ? __x64_sys_futex+0x1e0/0x4c0 [ 446.466579][ T9868] do_syscall_64+0xcd/0x490 [ 446.466630][ T9868] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 446.466661][ T9868] RIP: 0033:0x7f1bb118e929 [ 446.466686][ T9868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 446.466716][ T9868] RSP: 002b:00007f1bb1f79038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 446.466746][ T9868] RAX: ffffffffffffffda RBX: 00007f1bb13b5fa0 RCX: 00007f1bb118e929 [ 446.466777][ T9868] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000008 [ 446.466796][ T9868] RBP: 00007f1bb1210b39 R08: 0000000000000000 R09: 0000000000000000 [ 446.466814][ T9868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 446.466832][ T9868] R13: 0000000000000000 R14: 00007f1bb13b5fa0 R15: 00007ffd11926c78 [ 446.466880][ T9868] [ 449.859811][ T9899] vivid-009: ================= START STATUS ================= [ 449.948674][ T9899] vivid-009: Enable Output Cropping: true grabbed [ 450.049628][ T9899] vivid-009: Enable Output Composing: true grabbed [ 450.081214][ T9904] block nbd7: not configured, cannot reconfigure [ 450.099865][ T9899] vivid-009: Enable Output Scaler: true grabbed [ 450.274744][ T9899] vivid-009: Tx RGB Quantization Range: Automatic grabbed [ 450.282793][ T9899] vivid-009: Transmit Mode: HDMI grabbed [ 450.423155][ T9899] vivid-009: Hotplug Present: 0x00000000 [ 450.428943][ T9899] vivid-009: RxSense Present: 0x00000000 [ 450.516843][ T9899] vivid-009: EDID Present: 0x00000000 [ 450.522339][ T9899] vivid-009: ================== END STATUS ================== [ 450.818798][ T9914] ima: policy update failed [ 450.846169][ T30] audit: type=1802 audit(4294967651.205:15): pid=9914 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.772" res=0 errno=0 [ 450.854765][ T9914] netlink: 25 bytes leftover after parsing attributes in process `syz.1.772'. [ 456.401964][ T9962] netlink: 28 bytes leftover after parsing attributes in process `syz.2.780'. [ 457.923991][ T9975] FAULT_INJECTION: forcing a failure. [ 457.923991][ T9975] name failslab, interval 1, probability 0, space 0, times 0 [ 457.939951][ T9975] CPU: 0 UID: 0 PID: 9975 Comm: syz.2.782 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 457.939998][ T9975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 457.940018][ T9975] Call Trace: [ 457.940029][ T9975] [ 457.940041][ T9975] dump_stack_lvl+0x16c/0x1f0 [ 457.940093][ T9975] should_fail_ex+0x512/0x640 [ 457.940138][ T9975] ? __kmalloc_noprof+0xbf/0x510 [ 457.940186][ T9975] ? snd_pcm_plugin_build+0x64/0x650 [ 457.940222][ T9975] should_failslab+0xc2/0x120 [ 457.940251][ T9975] __kmalloc_noprof+0xd2/0x510 [ 457.940294][ T9975] ? __mutex_unlock_slowpath+0x91/0x6a0 [ 457.940348][ T9975] snd_pcm_plugin_build+0x64/0x650 [ 457.940386][ T9975] snd_pcm_plugin_build_rate+0x27c/0x760 [ 457.940432][ T9975] ? __pfx_snd_pcm_plugin_build_rate+0x10/0x10 [ 457.940480][ T9975] ? snd_pcm_hw_params+0xcd/0x1b40 [ 457.940522][ T9975] snd_pcm_plug_format_plugins+0x866/0x1430 [ 457.940563][ T9975] ? __pfx_snd_pcm_plug_format_plugins+0x10/0x10 [ 457.940620][ T9975] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 457.940669][ T9975] snd_pcm_oss_change_params_locked+0x2dec/0x3a30 [ 457.940744][ T9975] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 457.940823][ T9975] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 457.940867][ T9975] snd_pcm_oss_ioctl+0x21e9/0x37a0 [ 457.940905][ T9975] ? hook_file_ioctl_common+0x145/0x410 [ 457.940940][ T9975] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 457.940980][ T9975] ? __fget_files+0x20e/0x3c0 [ 457.941027][ T9975] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 457.941065][ T9975] __x64_sys_ioctl+0x18b/0x210 [ 457.941104][ T9975] do_syscall_64+0xcd/0x490 [ 457.941154][ T9975] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 457.941185][ T9975] RIP: 0033:0x7f47d438e929 [ 457.941213][ T9975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 457.941244][ T9975] RSP: 002b:00007f47d5194038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 457.941274][ T9975] RAX: ffffffffffffffda RBX: 00007f47d45b6080 RCX: 00007f47d438e929 [ 457.941295][ T9975] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008 [ 457.941314][ T9975] RBP: 00007f47d4410b39 R08: 0000000000000000 R09: 0000000000000000 [ 457.941334][ T9975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 457.941351][ T9975] R13: 0000000000000000 R14: 00007f47d45b6080 R15: 00007fff3c33c938 [ 457.941392][ T9975] [ 458.420261][ T9952] Process accounting paused [ 459.021071][ T5841] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 459.261079][ T9991] netlink: 296 bytes leftover after parsing attributes in process `syz.0.785'. [ 461.618660][ T5841] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 472.514744][T10120] hub 8-0:1.0: USB hub found [ 472.527874][T10120] hub 8-0:1.0: 1 port detected [ 475.064457][T10128] random: crng reseeded on system resumption [ 475.125274][T10145] netlink: 342 bytes leftover after parsing attributes in process `syz.2.811'. [ 475.207426][T10145] netlink: 102 bytes leftover after parsing attributes in process `syz.2.811'. [ 476.067388][T10158] netlink: 20 bytes leftover after parsing attributes in process `syz.0.813'. [ 476.507559][T10158] hsr_slave_0 (unregistering): left promiscuous mode [ 478.760627][T10184] can: request_module (can-proto-3) failed. [ 483.208506][T10227] FAULT_INJECTION: forcing a failure. [ 483.208506][T10227] name failslab, interval 1, probability 0, space 0, times 0 [ 483.277825][T10227] CPU: 1 UID: 0 PID: 10227 Comm: syz.2.829 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 483.277869][T10227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 483.277886][T10227] Call Trace: [ 483.277895][T10227] [ 483.277907][T10227] dump_stack_lvl+0x16c/0x1f0 [ 483.277957][T10227] should_fail_ex+0x512/0x640 [ 483.277997][T10227] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 483.278043][T10227] should_failslab+0xc2/0x120 [ 483.278070][T10227] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 483.278122][T10227] ? lockdep_init_map_type+0x5c/0x280 [ 483.278162][T10227] ? seq_open+0x55/0x170 [ 483.278198][T10227] seq_open+0x55/0x170 [ 483.278231][T10227] kernfs_fop_open+0x59f/0xda0 [ 483.278262][T10227] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 483.278305][T10227] do_dentry_open+0x744/0x1c10 [ 483.278346][T10227] ? __pfx_kernfs_fop_open+0x10/0x10 [ 483.278383][T10227] vfs_open+0x82/0x3f0 [ 483.278418][T10227] path_openat+0x1de4/0x2cb0 [ 483.278472][T10227] ? __pfx_path_openat+0x10/0x10 [ 483.278512][T10227] ? __lock_acquire+0xb8a/0x1c90 [ 483.278552][T10227] do_filp_open+0x20b/0x470 [ 483.278590][T10227] ? __pfx_do_filp_open+0x10/0x10 [ 483.278660][T10227] ? alloc_fd+0x471/0x7d0 [ 483.278710][T10227] do_sys_openat2+0x11b/0x1d0 [ 483.278740][T10227] ? __pfx_do_sys_openat2+0x10/0x10 [ 483.278788][T10227] __x64_sys_openat+0x174/0x210 [ 483.278820][T10227] ? __pfx___x64_sys_openat+0x10/0x10 [ 483.278869][T10227] do_syscall_64+0xcd/0x490 [ 483.278914][T10227] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 483.278943][T10227] RIP: 0033:0x7f47d438e929 [ 483.278966][T10227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 483.278992][T10227] RSP: 002b:00007f47d51b5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 483.279019][T10227] RAX: ffffffffffffffda RBX: 00007f47d45b5fa0 RCX: 00007f47d438e929 [ 483.279038][T10227] RDX: 0000000000001182 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 483.279057][T10227] RBP: 00007f47d4410b39 R08: 0000000000000000 R09: 0000000000000000 [ 483.279082][T10227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 483.279099][T10227] R13: 0000000000000000 R14: 00007f47d45b5fa0 R15: 00007fff3c33c938 [ 483.279139][T10227] [ 485.771873][T10257] random: crng reseeded on system resumption [ 485.989110][T10260] Invalid ELF header magic: != ELF [ 486.163755][T10260] net_ratelimit: 7 callbacks suppressed [ 486.163780][T10260] netlink: zone id is out of range [ 486.376127][T10260] netlink: zone id is out of range [ 486.381331][T10260] netlink: zone id is out of range [ 486.387076][T10260] netlink: zone id is out of range [ 486.392238][T10260] netlink: zone id is out of range [ 486.898611][T10266] FAULT_INJECTION: forcing a failure. [ 486.898611][T10266] name failslab, interval 1, probability 0, space 0, times 0 [ 487.013566][T10266] CPU: 0 UID: 0 PID: 10266 Comm: syz.0.834 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 487.013615][T10266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 487.013633][T10266] Call Trace: [ 487.013643][T10266] [ 487.013654][T10266] dump_stack_lvl+0x16c/0x1f0 [ 487.013705][T10266] should_fail_ex+0x512/0x640 [ 487.013743][T10266] ? __kmalloc_noprof+0xbf/0x510 [ 487.013791][T10266] ? xfrm_hash_alloc+0xd1/0x100 [ 487.013830][T10266] should_failslab+0xc2/0x120 [ 487.013860][T10266] __kmalloc_noprof+0xd2/0x510 [ 487.013906][T10266] ? xfrm_nat_keepalive_net_init+0xb1/0x140 [ 487.013945][T10266] xfrm_hash_alloc+0xd1/0x100 [ 487.013985][T10266] xfrm_state_init+0x11e/0x630 [ 487.014030][T10266] ? __pfx_xfrm_net_init+0x10/0x10 [ 487.014083][T10266] xfrm_net_init+0x210/0xcc0 [ 487.014135][T10266] ? __pfx_xfrm_net_init+0x10/0x10 [ 487.014179][T10266] ops_init+0x1df/0x5f0 [ 487.014232][T10266] setup_net+0x1ff/0x510 [ 487.014257][T10266] ? lockdep_init_map_type+0x5c/0x280 [ 487.014298][T10266] ? __pfx_setup_net+0x10/0x10 [ 487.014328][T10266] ? debug_mutex_init+0x37/0x70 [ 487.014361][T10266] copy_net_ns+0x2a6/0x5f0 [ 487.014397][T10266] create_new_namespaces+0x3ea/0xa90 [ 487.014439][T10266] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 487.014476][T10266] ksys_unshare+0x45b/0xa40 [ 487.014516][T10266] ? __pfx_ksys_unshare+0x10/0x10 [ 487.014559][T10266] ? syscall_user_dispatch+0x78/0x140 [ 487.014616][T10266] __x64_sys_unshare+0x31/0x40 [ 487.014653][T10266] do_syscall_64+0xcd/0x490 [ 487.014700][T10266] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 487.014732][T10266] RIP: 0033:0x7f67dc78e929 [ 487.014758][T10266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 487.014786][T10266] RSP: 002b:00007f67da5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 487.014816][T10266] RAX: ffffffffffffffda RBX: 00007f67dc9b5fa0 RCX: 00007f67dc78e929 [ 487.014837][T10266] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 487.014856][T10266] RBP: 00007f67dc810b39 R08: 0000000000000000 R09: 0000000000000000 [ 487.014875][T10266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 487.014893][T10266] R13: 0000000000000000 R14: 00007f67dc9b5fa0 R15: 00007fffa93914c8 [ 487.014934][T10266] [ 489.133191][T10291] Process accounting resumed [ 489.245415][T10297] netlink: 504 bytes leftover after parsing attributes in process `syz.2.839'. [ 489.295922][T10297] netlink: 350 bytes leftover after parsing attributes in process `syz.2.839'. [ 492.854083][T10334] random: crng reseeded on system resumption [ 494.195512][T10346] Invalid ELF header magic: != ELF [ 494.236533][T10346] netlink: zone id is out of range [ 494.241731][T10346] netlink: zone id is out of range [ 494.337201][T10346] netlink: zone id is out of range [ 494.342393][T10346] netlink: zone id is out of range [ 494.384738][T10346] netlink: zone id is out of range [ 496.442862][T10373] netlink: 504 bytes leftover after parsing attributes in process `syz.3.851'. [ 496.577102][T10376] can: request_module (can-proto-3) failed. [ 496.748947][T10373] netlink: 350 bytes leftover after parsing attributes in process `syz.3.851'. [ 504.066620][T10441] can: request_module (can-proto-3) failed. [ 504.397911][T10448] Invalid ELF header magic: != ELF [ 504.496878][T10448] netlink: zone id is out of range [ 504.503191][T10448] netlink: zone id is out of range [ 504.508486][T10448] netlink: zone id is out of range [ 504.514304][T10448] netlink: zone id is out of range [ 504.519641][T10448] netlink: zone id is out of range [ 506.938716][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.951243][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 syzkaller syzkaller login: [ 510.225022][T10491] FAULT_INJECTION: forcing a failure. [ 510.225022][T10491] name failslab, interval 1, probability 0, space 0, times 0 [ 510.323415][T10491] CPU: 1 UID: 0 PID: 10491 Comm: syz.0.878 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 510.323463][T10491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 510.323482][T10491] Call Trace: [ 510.323492][T10491] [ 510.323504][T10491] dump_stack_lvl+0x16c/0x1f0 [ 510.323557][T10491] should_fail_ex+0x512/0x640 [ 510.323602][T10491] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 510.323648][T10491] should_failslab+0xc2/0x120 [ 510.323679][T10491] __kmalloc_cache_noprof+0x6a/0x3e0 [ 510.323722][T10491] ? cuse_channel_open+0x1de/0x7f0 [ 510.323773][T10491] cuse_channel_open+0x1de/0x7f0 [ 510.323814][T10491] ? __pfx_cuse_channel_open+0x10/0x10 [ 510.323858][T10491] misc_open+0x35d/0x420 [ 510.323897][T10491] ? __pfx_misc_open+0x10/0x10 [ 510.323934][T10491] chrdev_open+0x231/0x6a0 [ 510.323981][T10491] ? __pfx_apparmor_file_open+0x10/0x10 [ 510.324020][T10491] ? __pfx_chrdev_open+0x10/0x10 [ 510.324081][T10491] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 510.324132][T10491] do_dentry_open+0x744/0x1c10 [ 510.324180][T10491] ? __pfx_chrdev_open+0x10/0x10 [ 510.324238][T10491] vfs_open+0x82/0x3f0 [ 510.324280][T10491] path_openat+0x1de4/0x2cb0 [ 510.324342][T10491] ? __pfx_path_openat+0x10/0x10 [ 510.324392][T10491] ? __lock_acquire+0xb8a/0x1c90 [ 510.324440][T10491] do_filp_open+0x20b/0x470 [ 510.324486][T10491] ? __pfx_do_filp_open+0x10/0x10 [ 510.324567][T10491] ? alloc_fd+0x471/0x7d0 [ 510.324624][T10491] do_sys_openat2+0x11b/0x1d0 [ 510.324659][T10491] ? __pfx_do_sys_openat2+0x10/0x10 [ 510.324713][T10491] __x64_sys_openat+0x174/0x210 [ 510.324750][T10491] ? __pfx___x64_sys_openat+0x10/0x10 [ 510.324805][T10491] do_syscall_64+0xcd/0x490 [ 510.324856][T10491] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 510.324889][T10491] RIP: 0033:0x7f67dc78e929 [ 510.324916][T10491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 510.324946][T10491] RSP: 002b:00007f67da5d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 510.324976][T10491] RAX: ffffffffffffffda RBX: 00007f67dc9b6080 RCX: 00007f67dc78e929 [ 510.324997][T10491] RDX: 00000000001c1041 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 510.325016][T10491] RBP: 00007f67dc810b39 R08: 0000000000000000 R09: 0000000000000000 [ 510.325035][T10491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 510.325061][T10491] R13: 0000000000000000 R14: 00007f67dc9b6080 R15: 00007fffa93914c8 [ 510.325105][T10491] [ 513.038202][T10520] netlink: 28 bytes leftover after parsing attributes in process `syz.0.874'. [ 513.104327][T10520] bridge_slave_1: left allmulticast mode [ 513.110067][T10520] bridge_slave_1: left promiscuous mode [ 513.186238][T10520] bridge0: port 2(bridge_slave_1) entered disabled state [ 513.368287][T10520] bridge_slave_0: left allmulticast mode [ 513.375540][T10520] bridge_slave_0: left promiscuous mode [ 513.423578][T10520] bridge0: port 1(bridge_slave_0) entered disabled state [ 514.515187][ T5841] Bluetooth: hci3: unexpected event 0x3d length: 726 > 14 [ 518.078632][T10579] can: request_module (can-proto-3) failed. [ 529.218090][T10675] can: request_module (can-proto-3) failed. [ 531.983645][T10706] vivid-009: ================= START STATUS ================= [ 532.075938][T10706] vivid-009: Enable Output Cropping: true grabbed [ 532.143406][T10706] vivid-009: Enable Output Composing: true grabbed [ 532.150055][T10706] vivid-009: Enable Output Scaler: true grabbed [ 532.203295][T10706] vivid-009: Tx RGB Quantization Range: Automatic grabbed [ 532.223741][T10706] vivid-009: Transmit Mode: HDMI grabbed [ 532.229490][T10706] vivid-009: Hotplug Present: 0x00000000 [ 532.322892][T10706] vivid-009: RxSense Present: 0x00000000 [ 532.396082][T10706] vivid-009: EDID Present: 0x00000000 [ 532.509896][T10706] vivid-009: ================== END STATUS ================== [ 532.596437][T10709] block nbd7: not configured, cannot reconfigure [ 532.610209][T10707] input: 00 [ 532.610209][T10707] as /devices/virtual/input/input26 [ 532.669554][T10707] FAULT_INJECTION: forcing a failure. [ 532.669554][T10707] name failslab, interval 1, probability 0, space 0, times 0 [ 532.698945][T10716] FAULT_INJECTION: forcing a failure. [ 532.698945][T10716] name failslab, interval 1, probability 0, space 0, times 0 [ 532.713010][T10716] CPU: 1 UID: 0 PID: 10716 Comm: syz.3.904 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 532.713059][T10716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 532.713077][T10716] Call Trace: [ 532.713087][T10716] [ 532.713099][T10716] dump_stack_lvl+0x16c/0x1f0 [ 532.713152][T10716] should_fail_ex+0x512/0x640 [ 532.713195][T10716] ? fs_reclaim_acquire+0xae/0x150 [ 532.713233][T10716] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 532.713279][T10716] should_failslab+0xc2/0x120 [ 532.713306][T10716] __kmalloc_noprof+0xd2/0x510 [ 532.713348][T10716] ? kmem_cache_free+0x2d1/0x4d0 [ 532.713391][T10716] tomoyo_realpath_from_path+0xc2/0x6e0 [ 532.713442][T10716] tomoyo_realpath_nofollow+0xdb/0xf0 [ 532.713482][T10716] ? __pfx_tomoyo_realpath_nofollow+0x10/0x10 [ 532.713517][T10716] ? tomoyo_domain+0xbb/0x150 [ 532.713561][T10716] ? tomoyo_init_request_info+0x101/0x370 [ 532.713595][T10716] tomoyo_find_next_domain+0x2a8/0x20b0 [ 532.713642][T10716] ? __pfx_tomoyo_find_next_domain+0x10/0x10 [ 532.713689][T10716] tomoyo_bprm_check_security+0x12e/0x1d0 [ 532.713733][T10716] ? tomoyo_bprm_check_security+0x120/0x1d0 [ 532.713788][T10716] security_bprm_check+0x1b9/0x1e0 [ 532.713818][T10716] bprm_execve+0x810/0x1650 [ 532.713867][T10716] ? __pfx_bprm_execve+0x10/0x10 [ 532.713905][T10716] ? copy_string_kernel+0x444/0x510 [ 532.713956][T10716] do_execveat_common.isra.0+0x4a5/0x610 [ 532.714006][T10716] __x64_sys_execve+0x8e/0xb0 [ 532.714048][T10716] do_syscall_64+0xcd/0x490 [ 532.714097][T10716] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 532.714128][T10716] RIP: 0033:0x7f7c6f18e929 [ 532.714152][T10716] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 532.714181][T10716] RSP: 002b:00007f7c70083038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 532.714211][T10716] RAX: ffffffffffffffda RBX: 00007f7c6f3b6080 RCX: 00007f7c6f18e929 [ 532.714232][T10716] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000 [ 532.714252][T10716] RBP: 00007f7c6f210b39 R08: 0000000000000000 R09: 0000000000000000 [ 532.714270][T10716] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 532.714298][T10716] R13: 0000000000000000 R14: 00007f7c6f3b6080 R15: 00007ffe61f1ce78 [ 532.714339][T10716] [ 532.981210][T10716] ERROR: Out of memory at tomoyo_realpath_from_path. [ 533.004773][T10707] CPU: 1 UID: 0 PID: 10707 Comm: syz.2.903 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 533.004817][T10707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 533.004834][T10707] Call Trace: [ 533.004844][T10707] [ 533.004855][T10707] dump_stack_lvl+0x16c/0x1f0 [ 533.004905][T10707] should_fail_ex+0x512/0x640 [ 533.004948][T10707] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 533.004997][T10707] should_failslab+0xc2/0x120 [ 533.005025][T10707] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 533.005069][T10707] ? __kernfs_new_node+0xd2/0x8e0 [ 533.005115][T10707] __kernfs_new_node+0xd2/0x8e0 [ 533.005162][T10707] ? __pfx___kernfs_new_node+0x10/0x10 [ 533.005211][T10707] ? find_held_lock+0x2b/0x80 [ 533.005241][T10707] ? kernfs_root+0xee/0x2a0 [ 533.005275][T10707] kernfs_new_node+0x13c/0x1e0 [ 533.005307][T10707] __kernfs_create_file+0x53/0x350 [ 533.005330][T10707] sysfs_add_file_mode_ns+0x207/0x3c0 [ 533.005359][T10707] sysfs_create_file_ns+0x13d/0x1d0 [ 533.005382][T10707] ? __pfx_sysfs_create_file_ns+0x10/0x10 [ 533.005408][T10707] ? mark_held_locks+0x49/0x80 [ 533.005435][T10707] device_create_file+0xf2/0x1e0 [ 533.005458][T10707] device_add+0xa2b/0x1a70 [ 533.005478][T10707] ? __pfx_device_add+0x10/0x10 [ 533.005495][T10707] ? __pfx_exact_lock+0x10/0x10 [ 533.005533][T10707] ? kobject_get+0xbb/0x150 [ 533.005563][T10707] cdev_device_add+0xc2/0x1e0 [ 533.005592][T10707] evdev_connect+0x3a4/0x4c0 [ 533.005620][T10707] input_attach_handler.isra.0+0x181/0x260 [ 533.005648][T10707] input_register_device+0xa84/0x1130 [ 533.005676][T10707] uinput_ioctl_handler.isra.0+0x1357/0x1df0 [ 533.005697][T10707] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 533.005721][T10707] ? find_held_lock+0x2b/0x80 [ 533.005749][T10707] ? __pfx_uinput_ioctl+0x10/0x10 [ 533.005766][T10707] __x64_sys_ioctl+0x18b/0x210 [ 533.005789][T10707] do_syscall_64+0xcd/0x490 [ 533.005817][T10707] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 533.005836][T10707] RIP: 0033:0x7f47d438e929 [ 533.005851][T10707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 533.005868][T10707] RSP: 002b:00007f47d51b5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 533.005886][T10707] RAX: ffffffffffffffda RBX: 00007f47d45b5fa0 RCX: 00007f47d438e929 [ 533.005898][T10707] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000007 [ 533.005909][T10707] RBP: 00007f47d4410b39 R08: 0000000000000000 R09: 0000000000000000 [ 533.005919][T10707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 533.005930][T10707] R13: 0000000000000000 R14: 00007f47d45b5fa0 R15: 00007fff3c33c938 [ 533.005952][T10707] [ 533.757772][ C1] sd 0:0:1:0: [sda] tag#6158 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 533.768236][ C1] sd 0:0:1:0: [sda] tag#6158 CDB: Read(6) 08 00 00 00 09 00 00 00 00 00 00 00 [ 533.782473][T10707] input: failed to attach handler evdev to device input26, error: -12 [ 536.476354][T10749] can: request_module (can-proto-3) failed. [ 537.828980][ T5841] Bluetooth: hci2: unexpected event 0x1d length: 10 > 5 [ 538.148243][T10768] FAULT_INJECTION: forcing a failure. [ 538.148243][T10768] name failslab, interval 1, probability 0, space 0, times 0 [ 538.221133][T10768] CPU: 0 UID: 0 PID: 10768 Comm: syz.3.914 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 538.221179][T10768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 538.221198][T10768] Call Trace: [ 538.221208][T10768] [ 538.221220][T10768] dump_stack_lvl+0x16c/0x1f0 [ 538.221273][T10768] should_fail_ex+0x512/0x640 [ 538.221322][T10768] should_failslab+0xc2/0x120 [ 538.221352][T10768] __kmalloc_cache_noprof+0x6a/0x3e0 [ 538.221389][T10768] ? __pfx___might_resched+0x10/0x10 [ 538.221419][T10768] ? __hw_addr_add_ex+0x3c9/0x7c0 [ 538.221458][T10768] __hw_addr_add_ex+0x3c9/0x7c0 [ 538.221497][T10768] ? __pfx___hw_addr_add_ex+0x10/0x10 [ 538.221533][T10768] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 538.221586][T10768] ? __pfx_do_setup+0x10/0x10 [ 538.221611][T10768] dev_addr_init+0x161/0x250 [ 538.221649][T10768] ? __pfx_dev_addr_init+0x10/0x10 [ 538.221703][T10768] alloc_netdev_mqs+0x3d2/0x1570 [ 538.221763][T10768] ? ovs_vport_alloc+0x2a0/0x3d0 [ 538.221797][T10768] internal_dev_create+0x8a/0x520 [ 538.221831][T10768] ovs_vport_add+0x144/0x4d0 [ 538.221883][T10768] new_vport+0x16/0x1d0 [ 538.221924][T10768] ovs_dp_cmd_new+0x6ba/0xe60 [ 538.221980][T10768] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 538.222033][T10768] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 538.222073][T10768] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 538.222123][T10768] genl_family_rcv_msg_doit+0x209/0x2f0 [ 538.222165][T10768] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 538.222204][T10768] ? trace_cap_capable+0x18d/0x200 [ 538.222245][T10768] ? bpf_lsm_capable+0x9/0x10 [ 538.222282][T10768] ? security_capable+0x7e/0x260 [ 538.222333][T10768] ? ns_capable+0xd7/0x110 [ 538.222369][T10768] genl_rcv_msg+0x55c/0x800 [ 538.222411][T10768] ? __pfx_genl_rcv_msg+0x10/0x10 [ 538.222449][T10768] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 538.222506][T10768] netlink_rcv_skb+0x158/0x420 [ 538.222538][T10768] ? __pfx_genl_rcv_msg+0x10/0x10 [ 538.222578][T10768] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 538.222629][T10768] ? netlink_deliver_tap+0x1ae/0xd30 [ 538.222669][T10768] genl_rcv+0x28/0x40 [ 538.222700][T10768] netlink_unicast+0x53a/0x7f0 [ 538.222747][T10768] ? __pfx_netlink_unicast+0x10/0x10 [ 538.222794][T10768] netlink_sendmsg+0x8d1/0xdd0 [ 538.222836][T10768] ? __pfx_netlink_sendmsg+0x10/0x10 [ 538.222892][T10768] ____sys_sendmsg+0xa98/0xc70 [ 538.222930][T10768] ? copy_msghdr_from_user+0x10a/0x160 [ 538.222977][T10768] ? __pfx_____sys_sendmsg+0x10/0x10 [ 538.223010][T10768] ? preempt_schedule_thunk+0x16/0x30 [ 538.223062][T10768] ? try_to_wake_up+0xa2f/0x1680 [ 538.223099][T10768] ___sys_sendmsg+0x134/0x1d0 [ 538.223144][T10768] ? __pfx____sys_sendmsg+0x10/0x10 [ 538.223185][T10768] ? __lock_acquire+0x622/0x1c90 [ 538.223277][T10768] __sys_sendmsg+0x16d/0x220 [ 538.223320][T10768] ? __pfx___sys_sendmsg+0x10/0x10 [ 538.223364][T10768] ? __x64_sys_futex+0x1e0/0x4c0 [ 538.223424][T10768] do_syscall_64+0xcd/0x490 [ 538.223472][T10768] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 538.223501][T10768] RIP: 0033:0x7f7c6f18e929 [ 538.223524][T10768] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 538.223548][T10768] RSP: 002b:00007f7c700a4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 538.223573][T10768] RAX: ffffffffffffffda RBX: 00007f7c6f3b5fa0 RCX: 00007f7c6f18e929 [ 538.223590][T10768] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000008 [ 538.223604][T10768] RBP: 00007f7c6f210b39 R08: 0000000000000000 R09: 0000000000000000 [ 538.223619][T10768] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 538.223633][T10768] R13: 0000000000000000 R14: 00007f7c6f3b5fa0 R15: 00007ffe61f1ce78 [ 538.223665][T10768] [ 540.356943][T10793] netlink: 28 bytes leftover after parsing attributes in process `syz.2.919'. [ 541.183389][T10793] team0: Port device team_slave_1 removed [ 541.306660][T10792] FAULT_INJECTION: forcing a failure. [ 541.306660][T10792] name failslab, interval 1, probability 0, space 0, times 0 [ 541.333256][T10792] CPU: 0 UID: 0 PID: 10792 Comm: syz.3.927 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 541.333303][T10792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 541.333322][T10792] Call Trace: [ 541.333332][T10792] [ 541.333344][T10792] dump_stack_lvl+0x16c/0x1f0 [ 541.333396][T10792] should_fail_ex+0x512/0x640 [ 541.333438][T10792] ? __kmalloc_noprof+0xbf/0x510 [ 541.333485][T10792] ? ops_init+0x77/0x5f0 [ 541.333528][T10792] should_failslab+0xc2/0x120 [ 541.333558][T10792] __kmalloc_noprof+0xd2/0x510 [ 541.333615][T10792] ops_init+0x77/0x5f0 [ 541.333667][T10792] setup_net+0x1ff/0x510 [ 541.333692][T10792] ? lockdep_init_map_type+0x5c/0x280 [ 541.333744][T10792] ? __pfx_setup_net+0x10/0x10 [ 541.333777][T10792] ? debug_mutex_init+0x37/0x70 [ 541.333813][T10792] copy_net_ns+0x2a6/0x5f0 [ 541.333852][T10792] create_new_namespaces+0x3ea/0xa90 [ 541.333899][T10792] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 541.333937][T10792] ksys_unshare+0x45b/0xa40 [ 541.333979][T10792] ? __pfx_ksys_unshare+0x10/0x10 [ 541.334022][T10792] ? xfd_validate_state+0x61/0x180 [ 541.334077][T10792] __x64_sys_unshare+0x31/0x40 [ 541.334115][T10792] do_syscall_64+0xcd/0x490 [ 541.334163][T10792] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 541.334194][T10792] RIP: 0033:0x7f7c6f18e929 [ 541.334218][T10792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 541.334247][T10792] RSP: 002b:00007f7c70083038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 541.334276][T10792] RAX: ffffffffffffffda RBX: 00007f7c6f3b6080 RCX: 00007f7c6f18e929 [ 541.334296][T10792] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 541.334313][T10792] RBP: 00007f7c6f210b39 R08: 0000000000000000 R09: 0000000000000000 [ 541.334330][T10792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 541.334347][T10792] R13: 0000000000000000 R14: 00007f7c6f3b6080 R15: 00007ffe61f1ce78 [ 541.334394][T10792] [ 541.543984][ C0] vkms_vblank_simulate: vblank timer overrun [ 543.110987][T10823] FAULT_INJECTION: forcing a failure. [ 543.110987][T10823] name failslab, interval 1, probability 0, space 0, times 0 [ 543.125493][T10823] CPU: 0 UID: 0 PID: 10823 Comm: syz.2.924 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 543.125539][T10823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 543.125559][T10823] Call Trace: [ 543.125571][T10823] [ 543.125584][T10823] dump_stack_lvl+0x16c/0x1f0 [ 543.125635][T10823] should_fail_ex+0x512/0x640 [ 543.125677][T10823] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 543.125723][T10823] should_failslab+0xc2/0x120 [ 543.125754][T10823] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 543.125799][T10823] ? ptlock_alloc+0x1f/0x70 [ 543.125844][T10823] ptlock_alloc+0x1f/0x70 [ 543.125882][T10823] pte_alloc_one+0x82/0x3a0 [ 543.125929][T10823] __pte_alloc+0x6d/0x3c0 [ 543.125959][T10823] ? __pfx___pte_alloc+0x10/0x10 [ 543.125986][T10823] ? __pfx___might_resched+0x10/0x10 [ 543.126017][T10823] ? copy_page_range+0x13f0/0x5740 [ 543.126062][T10823] copy_page_range+0x1aed/0x5740 [ 543.126116][T10823] ? __lock_acquire+0x622/0x1c90 [ 543.126189][T10823] ? __pfx_copy_page_range+0x10/0x10 [ 543.126239][T10823] ? __pfx___might_resched+0x10/0x10 [ 543.126270][T10823] ? __vma_enter_locked+0x163/0x3f0 [ 543.126312][T10823] ? dup_mmap+0xe38/0x21d0 [ 543.126343][T10823] ? down_write+0x14d/0x200 [ 543.126376][T10823] ? up_write+0x1b2/0x520 [ 543.126441][T10823] dup_mmap+0xe88/0x21d0 [ 543.126503][T10823] ? __pfx_dup_mmap+0x10/0x10 [ 543.126574][T10823] copy_process+0x4081/0x76a0 [ 543.126612][T10823] ? __pfx___futex_wait+0x10/0x10 [ 543.126653][T10823] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 543.126710][T10823] ? __pfx_copy_process+0x10/0x10 [ 543.126769][T10823] kernel_clone+0xfc/0x960 [ 543.126809][T10823] ? __pfx_kernel_clone+0x10/0x10 [ 543.126871][T10823] __do_sys_clone+0xce/0x120 [ 543.126907][T10823] ? __pfx___do_sys_clone+0x10/0x10 [ 543.126942][T10823] ? ksys_unshare+0x687/0xa40 [ 543.127000][T10823] ? xfd_validate_state+0x61/0x180 [ 543.127051][T10823] do_syscall_64+0xcd/0x490 [ 543.127095][T10823] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 543.127124][T10823] RIP: 0033:0x7f47d438e929 [ 543.127148][T10823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 543.127177][T10823] RSP: 002b:00007f47d5172fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 543.127206][T10823] RAX: ffffffffffffffda RBX: 00007f47d45b6160 RCX: 00007f47d438e929 [ 543.127226][T10823] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411 [ 543.127244][T10823] RBP: 00007f47d4410b39 R08: 0000000000000000 R09: 0000000000000000 [ 543.127264][T10823] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 543.127281][T10823] R13: 0000000000000000 R14: 00007f47d45b6160 R15: 00007fff3c33c938 [ 543.127323][T10823] [ 543.401893][ C0] vkms_vblank_simulate: vblank timer overrun [ 546.058759][ T5841] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 546.342022][ T5841] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 549.863168][ T5841] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 555.787471][T10917] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input29 [ 564.822035][T10985] netlink: 28 bytes leftover after parsing attributes in process `syz.2.957'. [ 568.373762][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 568.380156][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 572.160177][T11060] netlink: 4 bytes leftover after parsing attributes in process `syz.3.976'. syzkaller syzkaller login: [ 578.721182][ T5841] Bluetooth: hci1: unexpected event 0x1d length: 10 > 5 [ 580.191700][T11162] Invalid ELF header magic: != ELF [ 580.268859][T11162] netlink: zone id is out of range [ 580.282416][T11162] netlink: zone id is out of range [ 580.308405][T11162] netlink: zone id is out of range [ 580.363374][T11162] netlink: zone id is out of range [ 580.368542][T11162] netlink: zone id is out of range [ 584.705814][ T5841] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 586.022877][ T5841] Bluetooth: hci2: unexpected event 0x1d length: 10 > 5 [ 588.993002][ T5841] Bluetooth: hci2: unexpected event 0x1d length: 10 > 5 [ 592.564769][ T5841] Bluetooth: hci2: unexpected event 0x1d length: 10 > 5 [ 592.574695][ T5841] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 592.773737][ T5841] Bluetooth: hci3: unexpected event 0x1d length: 10 > 5 [ 595.208423][T11326] FAULT_INJECTION: forcing a failure. [ 595.208423][T11326] name failslab, interval 1, probability 0, space 0, times 0 [ 595.270815][T11326] CPU: 0 UID: 0 PID: 11326 Comm: syz.3.1024 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 595.270861][T11326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 595.270881][T11326] Call Trace: [ 595.270890][T11326] [ 595.270902][T11326] dump_stack_lvl+0x16c/0x1f0 [ 595.270954][T11326] should_fail_ex+0x512/0x640 [ 595.270996][T11326] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 595.271042][T11326] should_failslab+0xc2/0x120 [ 595.271081][T11326] __kmalloc_cache_noprof+0x6a/0x3e0 [ 595.271122][T11326] ? x509_cert_parse+0x9a/0x900 [ 595.271159][T11326] ? kasan_save_track+0x14/0x30 [ 595.271210][T11326] x509_cert_parse+0x9a/0x900 [ 595.271245][T11326] ? kasan_save_stack+0x42/0x60 [ 595.271286][T11326] ? kasan_save_stack+0x33/0x60 [ 595.271327][T11326] ? kasan_save_track+0x14/0x30 [ 595.271374][T11326] pkcs7_extract_cert+0xa4/0x320 [ 595.271423][T11326] asn1_ber_decoder+0xc5f/0x1df0 [ 595.271489][T11326] ? __pfx_asn1_ber_decoder+0x10/0x10 [ 595.271567][T11326] pkcs7_parse_message+0x288/0x720 [ 595.271615][T11326] verify_pkcs7_signature+0x30/0xa0 [ 595.271651][T11326] valid_regdb+0x215/0x590 [ 595.271686][T11326] ? __pfx___mutex_lock+0x10/0x10 [ 595.271732][T11326] ? __pfx_valid_regdb+0x10/0x10 [ 595.271774][T11326] reg_reload_regdb+0x11e/0x460 [ 595.271811][T11326] ? __pfx_reg_reload_regdb+0x10/0x10 [ 595.271849][T11326] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 595.271891][T11326] ? nl80211_pre_doit+0x1b0/0xb10 [ 595.271942][T11326] genl_family_rcv_msg_doit+0x209/0x2f0 [ 595.271985][T11326] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 595.272022][T11326] ? rcu_is_watching+0x12/0xc0 [ 595.272075][T11326] ? bpf_lsm_capable+0x9/0x10 [ 595.272110][T11326] ? security_capable+0x7e/0x260 [ 595.272169][T11326] genl_rcv_msg+0x55c/0x800 [ 595.272213][T11326] ? __pfx_genl_rcv_msg+0x10/0x10 [ 595.272252][T11326] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 595.272290][T11326] ? __pfx_nl80211_reload_regdb+0x10/0x10 [ 595.272320][T11326] ? __pfx_nl80211_post_doit+0x10/0x10 [ 595.272378][T11326] netlink_rcv_skb+0x158/0x420 [ 595.272408][T11326] ? __pfx_genl_rcv_msg+0x10/0x10 [ 595.272446][T11326] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 595.272499][T11326] ? netlink_deliver_tap+0x1ae/0xd30 [ 595.272538][T11326] genl_rcv+0x28/0x40 [ 595.272571][T11326] netlink_unicast+0x53a/0x7f0 [ 595.272610][T11326] ? __pfx_netlink_unicast+0x10/0x10 [ 595.272657][T11326] netlink_sendmsg+0x8d1/0xdd0 [ 595.272699][T11326] ? __pfx_netlink_sendmsg+0x10/0x10 [ 595.272751][T11326] ____sys_sendmsg+0xa98/0xc70 [ 595.272789][T11326] ? copy_msghdr_from_user+0x10a/0x160 [ 595.272833][T11326] ? __pfx_____sys_sendmsg+0x10/0x10 [ 595.272881][T11326] ? __pfx_futex_wake_mark+0x10/0x10 [ 595.272931][T11326] ___sys_sendmsg+0x134/0x1d0 [ 595.272981][T11326] ? __pfx____sys_sendmsg+0x10/0x10 [ 595.273022][T11326] ? __lock_acquire+0x622/0x1c90 [ 595.273121][T11326] __sys_sendmsg+0x16d/0x220 [ 595.273163][T11326] ? __pfx___sys_sendmsg+0x10/0x10 [ 595.273201][T11326] ? __x64_sys_futex+0x1e0/0x4c0 [ 595.273259][T11326] do_syscall_64+0xcd/0x490 [ 595.273305][T11326] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 595.273332][T11326] RIP: 0033:0x7f7c6f18e929 [ 595.273355][T11326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 595.273382][T11326] RSP: 002b:00007f7c700a4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 595.273411][T11326] RAX: ffffffffffffffda RBX: 00007f7c6f3b5fa0 RCX: 00007f7c6f18e929 [ 595.273430][T11326] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000004 [ 595.273447][T11326] RBP: 00007f7c6f210b39 R08: 0000000000000000 R09: 0000000000000000 [ 595.273465][T11326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 595.273482][T11326] R13: 0000000000000000 R14: 00007f7c6f3b5fa0 R15: 00007ffe61f1ce78 [ 595.273519][T11326] [ 596.038837][ T5841] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 596.666007][ T5841] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 597.076162][ T5841] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 600.959030][ T5841] Bluetooth: hci3: unexpected event 0x1d length: 10 > 5 [ 601.682219][ T5841] Bluetooth: hci2: unexpected event 0x1d length: 10 > 5 [ 602.683893][T11418] random: crng reseeded on system resumption [ 603.349343][T11424] random: crng reseeded on system resumption [ 604.546212][T11434] sd 0:0:1:0: PR command failed: 1026 [ 604.551693][T11434] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 604.563370][T11434] sd 0:0:1:0: Add. Sense: Invalid command operation code syzkaller syzkaller login: [ 607.605904][ T5841] Bluetooth: hci2: unexpected event 0x1d length: 10 > 5 [ 612.015935][ T5841] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 612.033553][ T5841] Bluetooth: hci2: unexpected event 0x1d length: 10 > 5 [ 612.156325][T11520] FAULT_INJECTION: forcing a failure. [ 612.156325][T11520] name failslab, interval 1, probability 0, space 0, times 0 [ 612.225856][T11520] CPU: 0 UID: 0 PID: 11520 Comm: syz.1.1054 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 612.225916][T11520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 612.225936][T11520] Call Trace: [ 612.225945][T11520] [ 612.225958][T11520] dump_stack_lvl+0x16c/0x1f0 [ 612.226011][T11520] should_fail_ex+0x512/0x640 [ 612.226068][T11520] ? __kmalloc_noprof+0xbf/0x510 [ 612.226117][T11520] ? mpi_alloc_limb_space+0x31/0x60 [ 612.226152][T11520] should_failslab+0xc2/0x120 [ 612.226182][T11520] __kmalloc_noprof+0xd2/0x510 [ 612.226241][T11520] mpi_alloc_limb_space+0x31/0x60 [ 612.226276][T11520] mpihelp_mul_karatsuba_case+0x116/0xc20 [ 612.226319][T11520] ? mpihelp_divrem+0x66e/0x1420 [ 612.226355][T11520] ? __pfx_mpihelp_mul_karatsuba_case+0x10/0x10 [ 612.226400][T11520] mpi_powm+0xf63/0x1bf0 [ 612.226449][T11520] ? __pfx_mpi_powm+0x10/0x10 [ 612.226483][T11520] ? kfree+0x2b4/0x4d0 [ 612.226517][T11520] ? __phys_addr+0xe8/0x180 [ 612.226555][T11520] ? mpi_free+0xe1/0x160 [ 612.226595][T11520] rsa_enc+0x1fe/0x3b0 [ 612.226641][T11520] ? __pfx_rsa_enc+0x10/0x10 [ 612.226681][T11520] ? __virt_addr_valid+0x81/0x610 [ 612.226710][T11520] ? __phys_addr+0xe8/0x180 [ 612.226739][T11520] ? sg_init_one+0xf5/0x1b0 [ 612.226776][T11520] rsassa_pkcs1_verify+0x502/0xb60 [ 612.226821][T11520] ? __pfx_rsassa_pkcs1_verify+0x10/0x10 [ 612.226875][T11520] ? rsa_max_size+0xd/0x70 [ 612.226926][T11520] ? rsassa_pkcs1_set_pub_key+0x17d/0x1f0 [ 612.226964][T11520] public_key_verify_signature+0x672/0x970 [ 612.227009][T11520] ? __pfx_public_key_verify_signature+0x10/0x10 [ 612.227047][T11520] ? crypto_destroy_tfm+0x14d/0x2b0 [ 612.227110][T11520] pkcs7_verify+0x32f/0x1b20 [ 612.227168][T11520] verify_pkcs7_message_sig+0xdd/0x250 [ 612.227200][T11520] ? __pfx_verify_pkcs7_message_sig+0x10/0x10 [ 612.227229][T11520] ? kfree+0x2b4/0x4d0 [ 612.227261][T11520] ? public_key_signature_free+0xda/0x110 [ 612.227295][T11520] ? pkcs7_parse_message+0x531/0x720 [ 612.227345][T11520] ? pkcs7_parse_message+0x536/0x720 [ 612.227388][T11520] verify_pkcs7_signature+0x6d/0xa0 [ 612.227422][T11520] valid_regdb+0x215/0x590 [ 612.227454][T11520] ? __pfx___mutex_lock+0x10/0x10 [ 612.227499][T11520] ? __pfx_valid_regdb+0x10/0x10 [ 612.227540][T11520] reg_reload_regdb+0x11e/0x460 [ 612.227575][T11520] ? __pfx_reg_reload_regdb+0x10/0x10 [ 612.227608][T11520] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 612.227645][T11520] ? nl80211_pre_doit+0x1b0/0xb10 [ 612.227693][T11520] genl_family_rcv_msg_doit+0x209/0x2f0 [ 612.227735][T11520] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 612.227771][T11520] ? rcu_is_watching+0x12/0xc0 [ 612.227816][T11520] ? bpf_lsm_capable+0x9/0x10 [ 612.227852][T11520] ? security_capable+0x7e/0x260 [ 612.227919][T11520] genl_rcv_msg+0x55c/0x800 [ 612.227961][T11520] ? __pfx_genl_rcv_msg+0x10/0x10 [ 612.227997][T11520] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 612.228036][T11520] ? __pfx_nl80211_reload_regdb+0x10/0x10 [ 612.228069][T11520] ? __pfx_nl80211_post_doit+0x10/0x10 [ 612.228127][T11520] netlink_rcv_skb+0x158/0x420 [ 612.228158][T11520] ? __pfx_genl_rcv_msg+0x10/0x10 [ 612.228196][T11520] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 612.228243][T11520] ? netlink_deliver_tap+0x1ae/0xd30 [ 612.228279][T11520] genl_rcv+0x28/0x40 [ 612.228310][T11520] netlink_unicast+0x53a/0x7f0 [ 612.228345][T11520] ? __pfx_netlink_unicast+0x10/0x10 [ 612.228388][T11520] netlink_sendmsg+0x8d1/0xdd0 [ 612.228428][T11520] ? __pfx_netlink_sendmsg+0x10/0x10 [ 612.228478][T11520] ____sys_sendmsg+0xa98/0xc70 [ 612.228511][T11520] ? copy_msghdr_from_user+0x10a/0x160 [ 612.228550][T11520] ? __pfx_____sys_sendmsg+0x10/0x10 [ 612.228591][T11520] ? __pfx_futex_wake_mark+0x10/0x10 [ 612.228637][T11520] ___sys_sendmsg+0x134/0x1d0 [ 612.228682][T11520] ? __pfx____sys_sendmsg+0x10/0x10 [ 612.228723][T11520] ? __lock_acquire+0x622/0x1c90 [ 612.228813][T11520] __sys_sendmsg+0x16d/0x220 [ 612.228860][T11520] ? __pfx___sys_sendmsg+0x10/0x10 [ 612.228914][T11520] ? __x64_sys_futex+0x1e0/0x4c0 [ 612.228976][T11520] do_syscall_64+0xcd/0x490 [ 612.229027][T11520] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 612.229059][T11520] RIP: 0033:0x7f1bb118e929 [ 612.229085][T11520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 612.229114][T11520] RSP: 002b:00007f1bb1f79038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 612.229144][T11520] RAX: ffffffffffffffda RBX: 00007f1bb13b5fa0 RCX: 00007f1bb118e929 [ 612.229165][T11520] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000004 [ 612.229184][T11520] RBP: 00007f1bb1210b39 R08: 0000000000000000 R09: 0000000000000000 [ 612.229202][T11520] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 612.229220][T11520] R13: 0000000000000000 R14: 00007f1bb13b5fa0 R15: 00007ffd11926c78 [ 612.229261][T11520] [ 612.843646][ T5841] Bluetooth: hci2: unexpected event 0x1d length: 10 > 5 [ 612.884114][T11521] Invalid ELF header magic: != ELF [ 616.113597][T11564] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input31 [ 618.482197][ T5841] Bluetooth: hci1: unexpected event 0x1d length: 10 > 5 [ 618.491635][ T5841] Bluetooth: hci3: unexpected event 0x1d length: 10 > 5 syzkaller syzkaller login: [ 618.935180][ T5841] Bluetooth: hci1: unexpected event 0x1d length: 10 > 5 [ 620.120659][ T5841] Bluetooth: hci1: unexpected event 0x1d length: 10 > 5 [ 621.008084][T11623] random: crng reseeded on system resumption [ 622.853673][ T5841] Bluetooth: hci2: unexpected event 0x1d length: 10 > 5 [ 622.963238][T11643] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input32 [ 623.534657][T11645] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input33 syzkaller syzkaller login: [ 629.779167][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 629.786274][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 syzkaller syzkaller login: [ 631.729593][T11723] random: crng reseeded on system resumption [ 636.838301][ T5841] Bluetooth: hci2: unexpected event 0x1d length: 10 > 5 [ 640.049777][T11814] random: crng reseeded on system resumption [ 642.753744][T11851] sd 0:0:1:0: PR command failed: 1026 [ 643.047070][T11851] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 643.142446][T11851] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 643.560008][ T5841] Bluetooth: hci2: unexpected event 0x1d length: 10 > 5 [ 643.933350][ T5841] Bluetooth: hci2: unexpected event 0x1d length: 10 > 5 [ 648.353305][ T5841] Bluetooth: hci3: unexpected event 0x1d length: 10 > 5 [ 649.609508][ T5841] Bluetooth: hci3: unexpected event 0x1d length: 10 > 5 [ 650.048480][T11930] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input34 [ 650.612644][T11931] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input35 [ 651.980301][T11929] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 652.022915][T11929] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 652.221332][T11929] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 652.340514][T11929] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 652.973223][ T5841] Bluetooth: hci0: command 0x0406 tx timeout [ 653.142235][T11968] FAULT_INJECTION: forcing a failure. [ 653.142235][T11968] name failslab, interval 1, probability 0, space 0, times 0 [ 653.186170][T11968] CPU: 0 UID: 0 PID: 11968 Comm: syz.0.1143 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 653.186218][T11968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 653.186237][T11968] Call Trace: [ 653.186247][T11968] [ 653.186260][T11968] dump_stack_lvl+0x16c/0x1f0 [ 653.186315][T11968] should_fail_ex+0x512/0x640 [ 653.186357][T11968] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 653.186406][T11968] should_failslab+0xc2/0x120 [ 653.186437][T11968] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 653.186493][T11968] ? lockdep_init_map_type+0x5c/0x280 [ 653.186532][T11968] ? seq_open+0x55/0x170 [ 653.186568][T11968] seq_open+0x55/0x170 [ 653.186602][T11968] kernfs_fop_open+0x59f/0xda0 [ 653.186636][T11968] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 653.186687][T11968] do_dentry_open+0x744/0x1c10 [ 653.186732][T11968] ? __pfx_kernfs_fop_open+0x10/0x10 [ 653.186774][T11968] vfs_open+0x82/0x3f0 [ 653.186813][T11968] path_openat+0x1de4/0x2cb0 [ 653.186869][T11968] ? __pfx_path_openat+0x10/0x10 [ 653.186917][T11968] ? __lock_acquire+0xb8a/0x1c90 [ 653.186960][T11968] do_filp_open+0x20b/0x470 [ 653.187004][T11968] ? __pfx_do_filp_open+0x10/0x10 [ 653.187081][T11968] ? alloc_fd+0x471/0x7d0 [ 653.187138][T11968] do_sys_openat2+0x11b/0x1d0 [ 653.187170][T11968] ? __pfx_do_sys_openat2+0x10/0x10 [ 653.187224][T11968] __x64_sys_openat+0x174/0x210 [ 653.187258][T11968] ? __pfx___x64_sys_openat+0x10/0x10 [ 653.187313][T11968] do_syscall_64+0xcd/0x490 [ 653.187361][T11968] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 653.187392][T11968] RIP: 0033:0x7f67dc78e929 [ 653.187419][T11968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 653.187449][T11968] RSP: 002b:00007f67da5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 653.187488][T11968] RAX: ffffffffffffffda RBX: 00007f67dc9b5fa0 RCX: 00007f67dc78e929 [ 653.187509][T11968] RDX: 0000000000001182 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 653.187528][T11968] RBP: 00007f67dc810b39 R08: 0000000000000000 R09: 0000000000000000 [ 653.187546][T11968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 653.187564][T11968] R13: 0000000000000000 R14: 00007f67dc9b5fa0 R15: 00007fffa93914c8 [ 653.187605][T11968] [ 654.093256][ T5841] Bluetooth: hci1: command 0x0406 tx timeout [ 654.263150][ T5841] Bluetooth: hci2: command 0x0406 tx timeout [ 654.416527][ T5841] Bluetooth: hci3: command 0x0406 tx timeout [ 658.458151][ T5841] Bluetooth: hci2: unexpected event 0x1d length: 10 > 5 [ 658.666454][ T5841] Bluetooth: hci2: unexpected event 0x1d length: 10 > 5 [ 659.840560][ T30] audit: type=1804 audit(4294967860.195:16): pid=12042 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1157" name="/newroot/301/file0" dev="tmpfs" ino=1614 res=1 errno=0 [ 659.870622][ T30] audit: type=1800 audit(4294967860.195:17): pid=12042 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1157" name="file0" dev="tmpfs" ino=1614 res=0 errno=0 [ 660.071038][ T5841] Bluetooth: hci3: ACL packet for unknown connection handle 0 [ 661.326255][T12069] random: crng reseeded on system resumption [ 662.387722][ T5841] Bluetooth: hci2: unexpected event 0x1d length: 10 > 5 [ 662.387845][ T5841] Bluetooth: hci3: unexpected event 0x1d length: 10 > 5 [ 664.656784][T12113] random: crng reseeded on system resumption [ 666.021969][ T5841] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 666.143283][ T5841] Bluetooth: hci1: unexpected event 0x1d length: 10 > 5 [ 672.131060][T12180] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 672.173805][T12180] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 672.180718][T12180] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 672.203927][T12180] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 673.401538][ T5844] Bluetooth: hci0: command 0x0406 tx timeout [ 674.253426][ T5844] Bluetooth: hci3: command 0x0406 tx timeout [ 674.259649][ T5841] Bluetooth: hci2: command 0x0406 tx timeout [ 674.265937][ T5841] Bluetooth: hci1: command 0x0406 tx timeout [ 679.917966][T12259] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input36 [ 680.151964][T12265] netlink: 'syz.2.1208': attribute type 1 has an invalid length. [ 680.205249][T12265] netlink: 33 bytes leftover after parsing attributes in process `syz.2.1208'. [ 683.363573][T12208] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 684.082680][T12208] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 684.978621][T12310] sd 0:0:1:0: PR command failed: 1026 [ 684.993396][T12310] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 685.303303][T12310] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 688.901945][T12316] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 688.964179][T12316] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 688.987230][T12316] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 689.029468][T12316] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 689.543249][T12208] Bluetooth: hci0: command 0x0406 tx timeout [ 691.043183][T12208] Bluetooth: hci1: command 0x0406 tx timeout [ 691.054796][T12208] Bluetooth: hci3: command 0x0406 tx timeout [ 691.060974][T12208] Bluetooth: hci2: command 0x0406 tx timeout [ 691.219846][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 691.241450][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 697.739988][T12418] kexec: Could not allocate control_code_buffer [ 698.162871][T12437] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1231'. [ 698.436297][T12437] bond0: (slave bond_slave_0): Releasing backup interface [ 700.978513][ T5833] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 709.059947][ T5833] Bluetooth: hci1: unexpected event 0x1d length: 10 > 5 [ 712.897672][T12570] hub 8-0:1.0: USB hub found [ 712.930633][T12570] hub 8-0:1.0: 1 port detected [ 714.046511][T12580] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1257'. [ 714.055659][T12580] bridge_slave_1: left allmulticast mode [ 714.061615][T12580] bridge_slave_1: left promiscuous mode [ 714.167724][T12580] bridge0: port 2(bridge_slave_1) entered disabled state [ 714.345365][T12580] bridge_slave_0: left allmulticast mode [ 714.351180][T12580] bridge_slave_0: left promiscuous mode [ 714.382833][T12580] bridge0: port 1(bridge_slave_0) entered disabled state [ 727.664605][T12675] random: crng reseeded on system resumption [ 730.653580][ T30] audit: type=1800 audit(4294967931.005:18): pid=12703 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1276" name="members" dev="configfs" ino=136177 res=0 errno=0 [ 738.167024][T12767] random: crng reseeded on system resumption [ 742.468143][T12818] snd_virmidi snd_virmidi.0: control 5:9:1:IA>/[k 5 [ 743.940537][T12842] delete_channel: no stack [ 752.658841][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 752.668513][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 753.484316][ T30] audit: type=1800 audit(4294967953.835:19): pid=12938 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1317" name="members" dev="configfs" ino=142263 res=0 errno=0 [ 755.684829][ T5833] Bluetooth: hci3: unexpected event 0x1d length: 10 > 5 [ 765.320887][T13068] random: crng reseeded on system resumption [ 765.833849][T13071] netlink: zone id is out of range [ 765.966851][T13071] netlink: zone id is out of range [ 766.001843][T13071] netlink: zone id is out of range [ 766.007261][T13071] netlink: zone id is out of range [ 766.012420][T13071] netlink: zone id is out of range [ 766.043502][T13071] netlink: zone id is out of range [ 766.131053][T13071] netlink: zone id is out of range [ 766.136516][T13071] netlink: zone id is out of range [ 766.141903][T13071] netlink: zone id is out of range [ 766.160416][T13071] netlink: zone id is out of range [ 777.776173][T13212] zswap: compressor not available [ 781.690426][T13279] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1374'. [ 782.235903][T13279] hsr_slave_0 (unregistering): left promiscuous mode [ 785.619410][T13300] ptrace attach of "./syz-executor exec"[5836] was attempted by "./syz-executor exec"[13300] [ 787.530884][T13337] scsi_strcpy_devinfo: vendor string '/&c~n] | [ 787.530884][T13337] M' is too long [ 787.549564][T13337] scsi_strcpy_devinfo: model string 'Dd5 K2b [ 787.549564][T13337] W ' is too long [ 810.058924][T13540] ptrace attach of "./syz-executor exec"[5829] was attempted by "./syz-executor exec"[13540] [ 810.192122][T13560] delete_channel: no stack [ 814.101292][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 814.108020][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 816.085197][ T5833] Bluetooth: hci1: unexpected event 0x1d length: 10 > 5 [ 820.221806][ T5833] Bluetooth: hci3: unexpected event 0x1d length: 10 > 5 [ 821.830963][ T5833] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 822.168064][ T5833] Bluetooth: hci3: unexpected event 0x1d length: 10 > 5 [ 826.308746][ T5833] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 826.926579][ T5833] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 830.783826][ T5833] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 841.248925][ T5833] Bluetooth: hci1: unexpected event 0x1d length: 10 > 5 [ 845.981516][ T5833] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 849.043785][ T5833] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 850.041011][ T5833] Bluetooth: hci2: unexpected event 0x1d length: 10 > 5 [ 853.663904][ T5833] Bluetooth: hci3: unexpected event 0x1d length: 10 > 5 [ 861.059767][ T5833] Bluetooth: hci1: unexpected event 0x1d length: 10 > 5 [ 862.046228][ T5833] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 866.538147][ T5833] Bluetooth: hci1: unexpected event 0x1d length: 10 > 5 [ 875.536163][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 875.553252][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 880.993941][ T5833] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 883.671128][T14441] sd 0:0:1:0: PR command failed: 1026 [ 883.693413][T14441] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 883.700255][T14441] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 894.721495][T14613] FAULT_INJECTION: forcing a failure. [ 894.721495][T14613] name failslab, interval 1, probability 0, space 0, times 0 [ 894.735377][T14613] CPU: 0 UID: 0 PID: 14613 Comm: syz.3.1622 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 894.735405][T14613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 894.735416][T14613] Call Trace: [ 894.735422][T14613] [ 894.735429][T14613] dump_stack_lvl+0x16c/0x1f0 [ 894.735463][T14613] should_fail_ex+0x512/0x640 [ 894.735500][T14613] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 894.735527][T14613] should_failslab+0xc2/0x120 [ 894.735546][T14613] __kmalloc_cache_noprof+0x6a/0x3e0 [ 894.735571][T14613] ? ring_buffer_read_prepare+0x101/0x320 [ 894.735594][T14613] ? lockdep_init_map_type+0x5c/0x280 [ 894.735623][T14613] ring_buffer_read_prepare+0x101/0x320 [ 894.735647][T14613] tracing_open+0xbe8/0xf90 [ 894.735672][T14613] do_dentry_open+0x744/0x1c10 [ 894.735699][T14613] ? __pfx_tracing_open+0x10/0x10 [ 894.735723][T14613] vfs_open+0x82/0x3f0 [ 894.735745][T14613] path_openat+0x1de4/0x2cb0 [ 894.735779][T14613] ? __pfx_path_openat+0x10/0x10 [ 894.735806][T14613] ? __lock_acquire+0xb8a/0x1c90 [ 894.735833][T14613] do_filp_open+0x20b/0x470 [ 894.735859][T14613] ? __pfx_do_filp_open+0x10/0x10 [ 894.735901][T14613] ? alloc_fd+0x471/0x7d0 [ 894.735932][T14613] do_sys_openat2+0x11b/0x1d0 [ 894.735952][T14613] ? __pfx_do_sys_openat2+0x10/0x10 [ 894.735980][T14613] __x64_sys_openat+0x174/0x210 [ 894.736001][T14613] ? __pfx___x64_sys_openat+0x10/0x10 [ 894.736031][T14613] do_syscall_64+0xcd/0x490 [ 894.736061][T14613] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 894.736080][T14613] RIP: 0033:0x7f7c6f18e929 [ 894.736095][T14613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 894.736113][T14613] RSP: 002b:00007f7c70083038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 894.736132][T14613] RAX: ffffffffffffffda RBX: 00007f7c6f3b6080 RCX: 00007f7c6f18e929 [ 894.736143][T14613] RDX: 0000000000000002 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 894.736155][T14613] RBP: 00007f7c6f210b39 R08: 0000000000000000 R09: 0000000000000000 [ 894.736165][T14613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 894.736176][T14613] R13: 0000000000000000 R14: 00007f7c6f3b6080 R15: 00007ffe61f1ce78 [ 894.736198][T14613] [ 895.714896][T14434] Bluetooth: hci2: unexpected event 0x1d length: 10 > 5 [ 897.548372][T14666] ptrace attach of "./syz-executor exec"[5836] was attempted by "./syz-executor exec"[14666] syzkaller syzkaller login: [ 899.677799][T14697] ubi0: attaching mtd0 [ 899.699163][T14697] ubi0: scanning is finished [ 899.722978][T14697] ubi0: empty MTD device detected [ 900.146814][T14697] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 900.175504][T14697] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 900.205455][T14697] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 900.213360][T14697] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 900.224724][T14697] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 900.231545][T14697] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 900.276014][T14697] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 579472745 [ 900.336403][T14697] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 900.378194][T14712] ubi0: background thread "ubi_bgt0d" started, PID 14712 [ 902.700431][T14749] FAULT_INJECTION: forcing a failure. [ 902.700431][T14749] name failslab, interval 1, probability 0, space 0, times 0 [ 902.713544][T14749] CPU: 0 UID: 0 PID: 14749 Comm: syz.0.1649 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 902.713587][T14749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 902.713606][T14749] Call Trace: [ 902.713616][T14749] [ 902.713629][T14749] dump_stack_lvl+0x16c/0x1f0 [ 902.713693][T14749] should_fail_ex+0x512/0x640 [ 902.713737][T14749] ? __kmalloc_cache_node_noprof+0x5a/0x420 [ 902.713787][T14749] should_failslab+0xc2/0x120 [ 902.713817][T14749] __kmalloc_cache_node_noprof+0x6d/0x420 [ 902.713862][T14749] ? sbitmap_init_node+0x2ca/0x770 [ 902.713893][T14749] ? sbitmap_queue_init_node+0x341/0x560 [ 902.713933][T14749] sbitmap_queue_init_node+0x341/0x560 [ 902.713974][T14749] blk_mq_init_tags+0x12d/0x2b0 [ 902.714024][T14749] blk_mq_alloc_map_and_rqs+0x237/0xf60 [ 902.714070][T14749] ? blk_mq_map_queues+0x211/0x410 [ 902.714113][T14749] __blk_mq_alloc_map_and_rqs+0x128/0x1f0 [ 902.714161][T14749] blk_mq_alloc_tag_set+0x778/0x1260 [ 902.714217][T14749] loop_add+0x3b9/0xb70 [ 902.714249][T14749] ? do_vfs_ioctl+0x523/0x1a60 [ 902.714285][T14749] ? __pfx_loop_add+0x10/0x10 [ 902.714315][T14749] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 902.714378][T14749] ? find_held_lock+0x2b/0x80 [ 902.714414][T14749] loop_control_ioctl+0x13e/0x630 [ 902.714451][T14749] ? __pfx_loop_control_ioctl+0x10/0x10 [ 902.714493][T14749] ? __pfx_loop_control_ioctl+0x10/0x10 [ 902.714530][T14749] __x64_sys_ioctl+0x18b/0x210 [ 902.714569][T14749] do_syscall_64+0xcd/0x490 [ 902.714619][T14749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 902.714659][T14749] RIP: 0033:0x7f67dc78e929 [ 902.714684][T14749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 902.714714][T14749] RSP: 002b:00007f67da5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 902.714744][T14749] RAX: ffffffffffffffda RBX: 00007f67dc9b5fa0 RCX: 00007f67dc78e929 [ 902.714764][T14749] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000005 [ 902.714784][T14749] RBP: 00007f67dc810b39 R08: 0000000000000000 R09: 0000000000000000 [ 902.714803][T14749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 902.714821][T14749] R13: 0000000000000000 R14: 00007f67dc9b5fa0 R15: 00007fffa93914c8 [ 902.714862][T14749] [ 902.715073][T14749] blk-mq: reduced tag depth (128 -> 64) [ 903.145844][T14757] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 903.156104][T14757] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 903.164384][T14757] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 903.172717][T14757] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 903.180677][T14757] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 903.446268][T14756] chnl_net:caif_netlink_parms(): no params data found [ 903.900216][T14756] bridge0: port 1(bridge_slave_0) entered blocking state [ 903.943483][T14756] bridge0: port 1(bridge_slave_0) entered disabled state [ 903.953295][T14756] bridge_slave_0: entered allmulticast mode [ 903.975418][T14756] bridge_slave_0: entered promiscuous mode [ 904.075224][T14756] bridge0: port 2(bridge_slave_1) entered blocking state [ 904.314417][T14756] bridge0: port 2(bridge_slave_1) entered disabled state [ 904.322549][T14756] bridge_slave_1: entered allmulticast mode [ 904.331533][T14756] bridge_slave_1: entered promiscuous mode [ 904.487429][T14756] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 904.506147][T14756] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 904.885780][T14756] team0: Port device team_slave_0 added [ 904.908634][T14756] team0: Port device team_slave_1 added [ 905.064993][T14756] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 905.093699][T14756] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 905.176775][T14756] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 905.214651][T14757] Bluetooth: hci3: command tx timeout [ 905.261164][T14756] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 905.283130][T14756] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 905.391553][T14756] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 905.557186][T14756] hsr_slave_0: entered promiscuous mode [ 905.575677][T14756] hsr_slave_1: entered promiscuous mode [ 906.061177][T14756] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 906.181205][T14756] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 906.371110][T14756] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 906.458738][T14756] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 906.739243][T14756] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 906.761420][T14756] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 906.797420][T14756] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 906.817649][T14756] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 907.186269][T14756] 8021q: adding VLAN 0 to HW filter on device bond0 [ 907.294539][T14757] Bluetooth: hci3: command tx timeout [ 907.641339][T14756] 8021q: adding VLAN 0 to HW filter on device team0 [ 907.682028][T14812] bridge0: port 1(bridge_slave_0) entered blocking state [ 907.689217][T14812] bridge0: port 1(bridge_slave_0) entered forwarding state [ 907.765090][T14452] bridge0: port 2(bridge_slave_1) entered blocking state [ 907.772270][T14452] bridge0: port 2(bridge_slave_1) entered forwarding state [ 908.077675][T14821] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 908.292263][T14756] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 908.379027][T14756] veth0_vlan: entered promiscuous mode [ 908.407224][T14756] veth1_vlan: entered promiscuous mode [ 908.544708][T14756] veth0_macvtap: entered promiscuous mode [ 908.677545][T14756] veth1_macvtap: entered promiscuous mode [ 908.825168][T14756] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 908.858211][T14756] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 908.912360][T14756] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 908.961883][T14756] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 908.982817][T14756] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 909.002290][T14756] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 909.237183][T14422] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 909.252259][T14422] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 909.310191][T14422] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 909.322815][T14434] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 909.335839][T14434] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 909.344692][T14434] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 909.353608][T14422] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 909.362841][T14434] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 909.371588][T14434] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 909.380244][T14434] Bluetooth: hci3: command tx timeout [ 909.696873][T14838] chnl_net:caif_netlink_parms(): no params data found [ 909.821771][T14838] bridge0: port 1(bridge_slave_0) entered blocking state [ 909.829954][T14838] bridge0: port 1(bridge_slave_0) entered disabled state [ 909.837821][T14838] bridge_slave_0: entered allmulticast mode [ 909.847062][T14838] bridge_slave_0: entered promiscuous mode [ 909.867831][T14838] bridge0: port 2(bridge_slave_1) entered blocking state [ 909.875548][T14838] bridge0: port 2(bridge_slave_1) entered disabled state [ 909.882946][T14838] bridge_slave_1: entered allmulticast mode [ 909.892637][T14838] bridge_slave_1: entered promiscuous mode [ 909.935641][T14838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 909.951272][T14838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 909.998572][T14838] team0: Port device team_slave_0 added [ 910.008600][T14838] team0: Port device team_slave_1 added [ 910.042260][T14838] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 910.049870][T14838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 910.079609][T14838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 910.100365][T14838] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 910.107636][T14838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 910.135837][T14838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 910.192879][T14838] hsr_slave_0: entered promiscuous mode [ 910.200038][T14838] hsr_slave_1: entered promiscuous mode [ 910.207062][T14838] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 910.216371][T14838] Cannot create hsr debugfs directory [ 910.421034][T14854] snd_virmidi snd_virmidi.0: control 5:9:1:IA>/[k 1 [ 918.960764][T14434] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 918.969787][T14434] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 918.980891][T14434] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 918.990347][T14434] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 919.164429][T14985] chnl_net:caif_netlink_parms(): no params data found [ 919.238151][T14985] bridge0: port 1(bridge_slave_0) entered blocking state [ 919.245556][T14985] bridge0: port 1(bridge_slave_0) entered disabled state [ 919.252783][T14985] bridge_slave_0: entered allmulticast mode [ 919.261069][T14985] bridge_slave_0: entered promiscuous mode [ 919.270258][T14985] bridge0: port 2(bridge_slave_1) entered blocking state [ 919.277609][T14985] bridge0: port 2(bridge_slave_1) entered disabled state [ 919.285031][T14985] bridge_slave_1: entered allmulticast mode [ 919.292154][T14985] bridge_slave_1: entered promiscuous mode [ 919.324095][T14985] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 919.336111][T14985] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 919.375797][T14985] team0: Port device team_slave_0 added [ 919.384927][T14985] team0: Port device team_slave_1 added [ 919.412934][T14985] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 919.419994][T14985] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 919.446560][T14985] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 919.459918][T14985] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 919.467282][T14985] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 919.494174][T14985] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 919.538408][T14985] hsr_slave_0: entered promiscuous mode [ 919.545600][T14985] hsr_slave_1: entered promiscuous mode [ 919.551693][T14985] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 919.559375][T14985] Cannot create hsr debugfs directory [ 919.686472][T14985] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 919.781005][T14985] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 919.878331][T14985] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 919.967234][T14985] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 920.112430][T14985] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 920.122391][T14985] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 920.132702][T14985] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 920.142529][T14985] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 920.173286][T14985] bridge0: port 2(bridge_slave_1) entered blocking state [ 920.180567][T14985] bridge0: port 2(bridge_slave_1) entered forwarding state [ 920.189012][T14985] bridge0: port 1(bridge_slave_0) entered blocking state [ 920.196153][T14985] bridge0: port 1(bridge_slave_0) entered forwarding state [ 920.207764][T14425] bridge0: port 1(bridge_slave_0) entered disabled state [ 920.215763][T14425] bridge0: port 2(bridge_slave_1) entered disabled state [ 920.279053][T14985] 8021q: adding VLAN 0 to HW filter on device bond0 [ 920.301569][T14985] 8021q: adding VLAN 0 to HW filter on device team0 [ 920.314991][T14548] bridge0: port 1(bridge_slave_0) entered blocking state [ 920.322112][T14548] bridge0: port 1(bridge_slave_0) entered forwarding state [ 920.339543][T14548] bridge0: port 2(bridge_slave_1) entered blocking state [ 920.346755][T14548] bridge0: port 2(bridge_slave_1) entered forwarding state [ 920.558147][T14985] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 920.794366][T14985] veth0_vlan: entered promiscuous mode [ 920.809579][T14985] veth1_vlan: entered promiscuous mode [ 920.846287][T14985] veth0_macvtap: entered promiscuous mode [ 920.856219][T14985] veth1_macvtap: entered promiscuous mode [ 920.880055][T14985] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 920.894999][T14985] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 920.910511][T14985] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 920.919444][T14985] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 920.929227][T14985] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 920.938141][T14985] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 921.020180][T14422] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 921.028166][T14422] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 921.054125][T14757] Bluetooth: hci4: command tx timeout [ 921.073862][T14452] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 921.084865][T14452] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 921.744623][T15017] snd_virmidi snd_virmidi.0: control 5:9:1:IA>/[k [ 930.619964][T15153] dump_stack_lvl+0x16c/0x1f0 [ 930.620013][T15153] should_fail_ex+0x512/0x640 [ 930.620052][T15153] ? __kvmalloc_node_noprof+0x124/0x620 [ 930.620099][T15153] should_failslab+0xc2/0x120 [ 930.620126][T15153] __kvmalloc_node_noprof+0x137/0x620 [ 930.620181][T15153] ? sbitmap_init_node+0x1ca/0x770 [ 930.620218][T15153] ? sbitmap_init_node+0x1ca/0x770 [ 930.620248][T15153] sbitmap_init_node+0x1ca/0x770 [ 930.620288][T15153] sbitmap_queue_init_node+0x41/0x560 [ 930.620328][T15153] blk_mq_init_tags+0x12d/0x2b0 [ 930.620376][T15153] blk_mq_alloc_map_and_rqs+0x237/0xf60 [ 930.620417][T15153] ? blk_mq_map_queues+0x211/0x410 [ 930.620454][T15153] __blk_mq_alloc_map_and_rqs+0x128/0x1f0 [ 930.620497][T15153] blk_mq_alloc_tag_set+0x778/0x1260 [ 930.620550][T15153] loop_add+0x3b9/0xb70 [ 930.620580][T15153] ? do_vfs_ioctl+0x523/0x1a60 [ 930.620613][T15153] ? __pfx_loop_add+0x10/0x10 [ 930.620640][T15153] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 930.620700][T15153] ? find_held_lock+0x2b/0x80 [ 930.620734][T15153] loop_control_ioctl+0x13e/0x630 [ 930.620767][T15153] ? __pfx_loop_control_ioctl+0x10/0x10 [ 930.620806][T15153] ? __pfx_loop_control_ioctl+0x10/0x10 [ 930.620840][T15153] __x64_sys_ioctl+0x18b/0x210 [ 930.620883][T15153] do_syscall_64+0xcd/0x490 [ 930.620929][T15153] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 930.620957][T15153] RIP: 0033:0x7f7c6f18e929 [ 930.620981][T15153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 930.621009][T15153] RSP: 002b:00007f7c700a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 930.621037][T15153] RAX: ffffffffffffffda RBX: 00007f7c6f3b5fa0 RCX: 00007f7c6f18e929 [ 930.621056][T15153] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000005 [ 930.621073][T15153] RBP: 00007f7c6f210b39 R08: 0000000000000000 R09: 0000000000000000 [ 930.621091][T15153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 930.621107][T15153] R13: 0000000000000000 R14: 00007f7c6f3b5fa0 R15: 00007ffe61f1ce78 [ 930.621152][T15153] [ 930.621325][T15153] blk-mq: reduced tag depth (128 -> 64) [ 930.753235][ T30] audit: type=1800 audit(4294968131.085:20): pid=15162 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1716" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0 [ 932.168609][T15181] ubi: mtd0 is already attached to ubi0 syzkaller syzkaller login: [ 936.981185][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 936.993221][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 syzkaller syzkaller login: [ 945.470351][T15367] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1755'. [ 946.319056][T15377] ubi: mtd0 is already attached to ubi0 [ 950.601332][T15420] sd 0:0:1:0: PR command failed: 1026 [ 950.650271][T15420] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 950.713935][T15420] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 956.424911][T15488] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 961.073035][T15550] FAULT_INJECTION: forcing a failure. [ 961.073035][T15550] name failslab, interval 1, probability 0, space 0, times 0 [ 961.090021][T15550] CPU: 1 UID: 0 PID: 15550 Comm: syz.1.1799 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 961.090050][T15550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 961.090061][T15550] Call Trace: [ 961.090068][T15550] [ 961.090075][T15550] dump_stack_lvl+0x16c/0x1f0 [ 961.090107][T15550] should_fail_ex+0x512/0x640 [ 961.090135][T15550] ? __kmalloc_cache_node_noprof+0x5a/0x420 [ 961.090165][T15550] should_failslab+0xc2/0x120 [ 961.090183][T15550] __kmalloc_cache_node_noprof+0x6d/0x420 [ 961.090210][T15550] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 961.090238][T15550] ? __alloc_disk_node+0x5a/0x630 [ 961.090267][T15550] __alloc_disk_node+0x5a/0x630 [ 961.090296][T15550] __blk_mq_alloc_disk+0x89/0x120 [ 961.090323][T15550] nbd_dev_add+0x4a0/0xbc0 [ 961.090350][T15550] ? __pfx_nbd_dev_add+0x10/0x10 [ 961.090389][T15550] ? bpf_lsm_capable+0x9/0x10 [ 961.090413][T15550] ? __radix_tree_lookup+0x21f/0x2c0 [ 961.090442][T15550] nbd_genl_connect+0x8b0/0x1c20 [ 961.090474][T15550] ? __pfx_nbd_genl_connect+0x10/0x10 [ 961.090502][T15550] ? __nla_parse+0x40/0x60 [ 961.090522][T15550] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 961.090547][T15550] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 961.090575][T15550] genl_family_rcv_msg_doit+0x209/0x2f0 [ 961.090599][T15550] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 961.090622][T15550] ? genl_get_cmd+0x194/0x580 [ 961.090654][T15550] ? __radix_tree_lookup+0x21f/0x2c0 [ 961.090686][T15550] genl_rcv_msg+0x55c/0x800 [ 961.090715][T15550] ? __pfx_genl_rcv_msg+0x10/0x10 [ 961.090738][T15550] ? __pfx_nbd_genl_connect+0x10/0x10 [ 961.090773][T15550] netlink_rcv_skb+0x158/0x420 [ 961.090792][T15550] ? __pfx_genl_rcv_msg+0x10/0x10 [ 961.090815][T15550] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 961.090844][T15550] ? netlink_deliver_tap+0x1ae/0xd30 [ 961.090872][T15550] genl_rcv+0x28/0x40 [ 961.090893][T15550] netlink_unicast+0x53a/0x7f0 [ 961.090915][T15550] ? __pfx_netlink_unicast+0x10/0x10 [ 961.090939][T15550] netlink_sendmsg+0x8d1/0xdd0 [ 961.090963][T15550] ? __pfx_netlink_sendmsg+0x10/0x10 [ 961.090991][T15550] ____sys_sendmsg+0xa98/0xc70 [ 961.091014][T15550] ? copy_msghdr_from_user+0x10a/0x160 [ 961.091042][T15550] ? __pfx_____sys_sendmsg+0x10/0x10 [ 961.091068][T15550] ? __pfx_futex_wake_mark+0x10/0x10 [ 961.091098][T15550] ___sys_sendmsg+0x134/0x1d0 [ 961.091129][T15550] ? __pfx____sys_sendmsg+0x10/0x10 [ 961.091154][T15550] ? __lock_acquire+0x622/0x1c90 [ 961.091204][T15550] __sys_sendmsg+0x16d/0x220 [ 961.091231][T15550] ? __pfx___sys_sendmsg+0x10/0x10 [ 961.091258][T15550] ? __x64_sys_futex+0x1e0/0x4c0 [ 961.091293][T15550] do_syscall_64+0xcd/0x490 [ 961.091322][T15550] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 961.091341][T15550] RIP: 0033:0x7fec50d8e929 [ 961.091356][T15550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 961.091373][T15550] RSP: 002b:00007fec51b5d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 961.091391][T15550] RAX: ffffffffffffffda RBX: 00007fec50fb6080 RCX: 00007fec50d8e929 [ 961.091403][T15550] RDX: 0000000000008880 RSI: 0000200000001e00 RDI: 0000000000000005 [ 961.091413][T15550] RBP: 00007fec50e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 961.091424][T15550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 961.091434][T15550] R13: 0000000000000000 R14: 00007fec50fb6080 R15: 00007fffd95abf58 [ 961.091456][T15550] [ 961.558506][T15555] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1792'. [ 961.805271][T15550] nbd: failed to add new device [ 962.050846][T15555] hsr_slave_0 (unregistering): left promiscuous mode [ 970.188778][T14434] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 970.198214][T14434] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 970.207000][T14434] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 970.217941][T14434] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 970.225415][T14434] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 970.793855][T15663] chnl_net:caif_netlink_parms(): no params data found [ 971.207092][T15663] bridge0: port 1(bridge_slave_0) entered blocking state [ 971.228823][T15663] bridge0: port 1(bridge_slave_0) entered disabled state [ 971.264081][T15663] bridge_slave_0: entered allmulticast mode [ 971.290395][T15663] bridge_slave_0: entered promiscuous mode [ 971.309790][T15663] bridge0: port 2(bridge_slave_1) entered blocking state [ 971.340831][T15663] bridge0: port 2(bridge_slave_1) entered disabled state [ 971.371144][T15663] bridge_slave_1: entered allmulticast mode [ 971.392627][T15663] bridge_slave_1: entered promiscuous mode [ 971.507820][T15663] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 971.543994][T15663] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 971.689830][T15663] team0: Port device team_slave_0 added [ 971.725078][T15663] team0: Port device team_slave_1 added [ 971.795722][T15663] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 971.813734][T15663] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 971.839640][ C0] vkms_vblank_simulate: vblank timer overrun [ 971.848065][T15663] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 971.869661][T15663] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 971.877153][T15663] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 971.903882][T15663] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 971.965105][T15663] hsr_slave_0: entered promiscuous mode [ 971.974102][T15663] hsr_slave_1: entered promiscuous mode [ 971.980326][T15663] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 971.988753][T15663] Cannot create hsr debugfs directory [ 972.142651][T15663] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 972.152916][T15663] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 972.163744][T15663] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 972.182967][T15663] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 972.253705][T14434] Bluetooth: hci5: command tx timeout [ 972.268503][T15663] 8021q: adding VLAN 0 to HW filter on device bond0 [ 972.294350][T15663] 8021q: adding VLAN 0 to HW filter on device team0 [ 972.307201][T14548] bridge0: port 1(bridge_slave_0) entered blocking state [ 972.314358][T14548] bridge0: port 1(bridge_slave_0) entered forwarding state [ 972.331898][T14452] bridge0: port 2(bridge_slave_1) entered blocking state [ 972.339064][T14452] bridge0: port 2(bridge_slave_1) entered forwarding state [ 972.550181][T15663] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 972.787333][T15663] veth0_vlan: entered promiscuous mode [ 972.800967][T15663] veth1_vlan: entered promiscuous mode [ 972.836372][T15663] veth0_macvtap: entered promiscuous mode [ 972.847122][T15663] veth1_macvtap: entered promiscuous mode [ 972.866245][T15663] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 972.882304][T15663] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 972.899076][T15663] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 972.908100][T15663] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 972.917220][T15663] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 972.927274][T15663] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 973.005029][T14548] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 973.015203][T14548] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 973.050869][T14548] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 973.059705][T14548] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 974.338937][T14434] Bluetooth: hci5: command tx timeout [ 974.463449][T15723] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1817'. [ 974.774757][T15723] hsr_slave_0 (unregistering): left promiscuous mode [ 976.414405][T14434] Bluetooth: hci5: command tx timeout [ 978.505000][T14434] Bluetooth: hci5: command tx timeout [ 978.619360][T15762] ptrace attach of "./syz-executor exec"[5829] was attempted by "./syz-executor exec"[15762] [ 979.922879][ T30] audit: type=1800 audit(4294968180.255:21): pid=15784 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1840" name="lu_gp_id" dev="configfs" ino=187835 res=0 errno=0 [ 980.113610][T15784] ALUA LU Group already has a valid ID, ignoring request [ 983.380843][T15834] random: crng reseeded on system resumption [ 983.789196][T15840] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 984.323905][T15834] Restarting kernel threads ... [ 984.333966][T15834] Done restarting kernel threads. [ 985.964335][T15884] FAULT_INJECTION: forcing a failure. [ 985.964335][T15884] name failslab, interval 1, probability 0, space 0, times 0 [ 986.044204][T15884] CPU: 1 UID: 0 PID: 15884 Comm: syz.3.1852 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 986.044251][T15884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 986.044269][T15884] Call Trace: [ 986.044279][T15884] [ 986.044291][T15884] dump_stack_lvl+0x16c/0x1f0 [ 986.044343][T15884] should_fail_ex+0x512/0x640 [ 986.044384][T15884] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 986.044431][T15884] should_failslab+0xc2/0x120 [ 986.044460][T15884] __kmalloc_cache_noprof+0x6a/0x3e0 [ 986.044501][T15884] ? nfc_llcp_register_device+0x4b/0xa60 [ 986.044563][T15884] nfc_llcp_register_device+0x4b/0xa60 [ 986.044613][T15884] nfc_register_device+0x6d/0x3c0 [ 986.044667][T15884] nci_register_device+0x7f1/0xb80 [ 986.044717][T15884] ? __pfx_nci_register_device+0x10/0x10 [ 986.044763][T15884] ? lockdep_init_map_type+0x5c/0x280 [ 986.044810][T15884] virtual_ncidev_open+0x141/0x220 [ 986.044846][T15884] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 986.044879][T15884] misc_open+0x35d/0x420 [ 986.044917][T15884] ? __pfx_misc_open+0x10/0x10 [ 986.044952][T15884] chrdev_open+0x231/0x6a0 [ 986.044997][T15884] ? __pfx_apparmor_file_open+0x10/0x10 [ 986.045035][T15884] ? __pfx_chrdev_open+0x10/0x10 [ 986.045084][T15884] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 986.045132][T15884] do_dentry_open+0x744/0x1c10 [ 986.045177][T15884] ? __pfx_chrdev_open+0x10/0x10 [ 986.045228][T15884] vfs_open+0x82/0x3f0 [ 986.045266][T15884] path_openat+0x1de4/0x2cb0 [ 986.045325][T15884] ? __pfx_path_openat+0x10/0x10 [ 986.045369][T15884] ? __lock_acquire+0xb8a/0x1c90 [ 986.045414][T15884] do_filp_open+0x20b/0x470 [ 986.045457][T15884] ? __pfx_do_filp_open+0x10/0x10 [ 986.045540][T15884] ? alloc_fd+0x471/0x7d0 [ 986.045597][T15884] do_sys_openat2+0x11b/0x1d0 [ 986.045630][T15884] ? __pfx_do_sys_openat2+0x10/0x10 [ 986.045685][T15884] __x64_sys_openat+0x174/0x210 [ 986.045720][T15884] ? __pfx___x64_sys_openat+0x10/0x10 [ 986.045771][T15884] do_syscall_64+0xcd/0x490 [ 986.045818][T15884] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 986.045849][T15884] RIP: 0033:0x7f7c6f18e929 [ 986.045874][T15884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 986.045903][T15884] RSP: 002b:00007f7c700a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 986.045933][T15884] RAX: ffffffffffffffda RBX: 00007f7c6f3b5fa0 RCX: 00007f7c6f18e929 [ 986.045953][T15884] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 986.045971][T15884] RBP: 00007f7c6f210b39 R08: 0000000000000000 R09: 0000000000000000 [ 986.045988][T15884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 986.046006][T15884] R13: 0000000000000000 R14: 00007f7c6f3b5fa0 R15: 00007ffe61f1ce78 [ 986.046046][T15884] [ 986.050255][T15884] nfc: nfc_register_device: Could not register llcp device [ 986.791428][T15882] llcp: nfc_llcp_remove_local: Shutting down device not found [ 992.748780][T14434] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 996.892655][T14757] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18 [ 998.431668][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 998.438130][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 1002.155663][T14757] Bluetooth: hci5: unexpected subevent 0x01 length: 123 > 18 syzkaller syzkaller login: [ 1009.421820][T14757] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 1009.439564][T14757] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 1009.447584][T14757] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 1009.458626][T14757] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 1009.466918][T14757] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 1009.958428][T16228] chnl_net:caif_netlink_parms(): no params data found [ 1010.121125][T16228] bridge0: port 1(bridge_slave_0) entered blocking state [ 1010.132253][T16228] bridge0: port 1(bridge_slave_0) entered disabled state [ 1010.140127][T16228] bridge_slave_0: entered allmulticast mode [ 1010.164144][T16228] bridge_slave_0: entered promiscuous mode [ 1010.176407][T16228] bridge0: port 2(bridge_slave_1) entered blocking state [ 1010.183841][T16228] bridge0: port 2(bridge_slave_1) entered disabled state [ 1010.191070][T16228] bridge_slave_1: entered allmulticast mode [ 1010.198994][T16228] bridge_slave_1: entered promiscuous mode [ 1010.237042][T16228] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1010.249149][T16228] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1010.287061][T16228] team0: Port device team_slave_0 added [ 1010.295908][T16228] team0: Port device team_slave_1 added [ 1010.326545][T16228] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1010.334178][T16228] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1010.360760][T16228] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1010.375227][T16228] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1010.382228][T16228] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1010.409602][T16228] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1010.454428][T16228] hsr_slave_0: entered promiscuous mode [ 1010.461110][T16228] hsr_slave_1: entered promiscuous mode [ 1010.467669][T16228] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1010.475752][T16228] Cannot create hsr debugfs directory [ 1010.632896][T16228] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 1010.643764][T16228] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 1010.654635][T16228] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 1010.666673][T16228] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 1010.702351][T16228] bridge0: port 2(bridge_slave_1) entered blocking state [ 1010.709550][T16228] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1010.717058][T16228] bridge0: port 1(bridge_slave_0) entered blocking state [ 1010.724387][T16228] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1010.790624][T16228] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1010.811381][T14548] bridge0: port 1(bridge_slave_0) entered disabled state [ 1010.820625][T14548] bridge0: port 2(bridge_slave_1) entered disabled state [ 1010.840531][T16228] 8021q: adding VLAN 0 to HW filter on device team0 [ 1010.856179][T14422] bridge0: port 1(bridge_slave_0) entered blocking state [ 1010.863363][T14422] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1010.877600][T14548] bridge0: port 2(bridge_slave_1) entered blocking state [ 1010.884774][T14548] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1011.101335][T16228] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1011.339153][T16228] veth0_vlan: entered promiscuous mode [ 1011.351743][T16228] veth1_vlan: entered promiscuous mode [ 1011.385403][T16228] veth0_macvtap: entered promiscuous mode [ 1011.396604][T16228] veth1_macvtap: entered promiscuous mode [ 1011.417815][T16228] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1011.434235][T16228] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1011.447299][T16228] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1011.456894][T16228] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1011.465813][T16228] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1011.474652][T16228] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1011.534563][T14757] Bluetooth: hci6: command tx timeout [ 1011.559138][T14548] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1011.567384][T14548] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1011.605878][T14452] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1011.615903][T14452] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1013.389528][T14757] Bluetooth: hci6: unexpected subevent 0x01 length: 123 > 18 [ 1013.625614][T14757] Bluetooth: hci6: command tx timeout [ 1015.743295][T14757] Bluetooth: hci6: command tx timeout [ 1016.779554][T16324] random: crng reseeded on system resumption [ 1017.790711][T14757] Bluetooth: hci6: command tx timeout [ 1018.821517][T16324] Restarting kernel threads ... [ 1018.851146][T16324] Done restarting kernel threads. [ 1022.481193][T16360] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 1026.094024][T14840] Bluetooth: hci3: command 0x0406 tx timeout [ 1030.413783][ T31] INFO: task kworker/u10:3:14433 blocked for more than 143 seconds. SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 1030.524074][ T31] Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 [ 1030.531985][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1030.613512][ T31] task:kworker/u10:3 state:D stack:26952 pid:14433 tgid:14433 ppid:2 task_flags:0x4208060 flags:0x00004000 [ 1030.695808][ T31] Workqueue: netns cleanup_net [ 1030.700773][ T31] Call Trace: [ 1030.704616][ T31] [ 1030.707634][ T31] __schedule+0x116a/0x5de0 [ 1030.713569][ T31] ? __lock_acquire+0x622/0x1c90 [ 1030.718594][ T31] ? __pfx___schedule+0x10/0x10 [ 1030.733925][ T31] ? find_held_lock+0x2b/0x80 [ 1030.738849][ T31] ? schedule+0x2d7/0x3a0 [ 1030.764269][ T31] schedule+0xe7/0x3a0 [ 1030.772824][ T31] schedule_timeout+0x257/0x290 [ 1030.829812][ T31] ? __pfx_schedule_timeout+0x10/0x10 [ 1030.843293][ T31] ? mark_held_locks+0x49/0x80 [ 1030.857184][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 1030.872042][ T31] __wait_for_common+0x2ff/0x4e0 [ 1030.887621][ T31] ? __pfx_schedule_timeout+0x10/0x10 [ 1030.943190][ T31] ? __pfx___wait_for_common+0x10/0x10 [ 1030.987411][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 1031.010463][ T31] ? flush_workqueue_prep_pwqs+0x2e9/0x510 [ 1031.022998][ T31] __flush_workqueue+0x3e2/0x1230 [ 1031.031809][ T31] ? __pfx___flush_workqueue+0x10/0x10 [ 1031.113248][ T31] ? reacquire_held_locks+0xcd/0x1f0 [ 1031.120669][ T31] ? __pfx_sock_def_readable+0x10/0x10 [ 1031.150766][ T31] ? __pfx_sock_def_readable+0x10/0x10 [ 1031.194463][ T31] rds_tcp_listen_stop+0x104/0x150 [ 1031.236263][ T31] ? __pfx_rds_tcp_exit_net+0x10/0x10 [ 1031.261096][ T31] rds_tcp_exit_net+0xcb/0x810 [ 1031.327399][ T31] ? __pfx_rds_tcp_exit_net+0x10/0x10 [ 1031.349895][ T31] ? __pfx___might_resched+0x10/0x10 [ 1031.360011][ T31] ? __pfx_rds_tcp_exit_net+0x10/0x10 [ 1031.374276][ T31] ops_undo_list+0x2eb/0xab0 [ 1031.379166][ T31] ? __pfx_ops_undo_list+0x10/0x10 [ 1031.385365][ T31] ? __local_bh_enable_ip+0xa4/0x120 [ 1031.393488][ T31] cleanup_net+0x408/0x890 [ 1031.398773][ T31] ? __pfx_cleanup_net+0x10/0x10 [ 1031.408948][ T31] ? rcu_is_watching+0x12/0xc0 [ 1031.429185][ T31] process_one_work+0x9cc/0x1b70 [ 1031.439573][ T31] ? __pfx_process_one_work+0x10/0x10 [ 1031.503186][ T31] ? assign_work+0x1a0/0x250 [ 1031.515082][ T31] worker_thread+0x6c8/0xf10 [ 1031.519752][ T31] ? __kthread_parkme+0x19e/0x250 [ 1031.526515][ T31] ? __pfx_worker_thread+0x10/0x10 [ 1031.551281][ T31] kthread+0x3c5/0x780 [ 1031.594072][ T31] ? __pfx_kthread+0x10/0x10 [ 1031.627335][ T31] ? rcu_is_watching+0x12/0xc0 [ 1031.652673][ T31] ? __pfx_kthread+0x10/0x10 [ 1031.667913][ T31] ret_from_fork+0x5d4/0x6f0 [ 1031.683210][ T31] ? __pfx_kthread+0x10/0x10 [ 1031.696122][ T31] ret_from_fork_asm+0x1a/0x30 [ 1031.701106][ T31] [ 1031.706352][ T31] [ 1031.706352][ T31] Showing all locks held in the system: [ 1031.714267][ T31] 3 locks held by ksoftirqd/1/23: [ 1031.719365][ T31] #0: ffff8880b843a418 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130 [ 1031.730139][ T31] #1: ffff8880b8524088 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x2c1/0x8e0 [ 1031.741767][ T31] #2: ffffffff8e5c47c0 (rcu_read_lock){....}-{1:3}, at: unwind_next_frame+0xbd/0x20a0 [ 1031.754340][ T31] 1 lock held by khungtaskd/31: [ 1031.759258][ T31] #0: ffffffff8e5c47c0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0 [ 1031.843192][ T31] 2 locks held by sshd-session/5818: [ 1031.860783][ T31] 5 locks held by syz-executor/5829: [ 1031.913379][ T31] #0: ffff888032f50d80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_dev_do_close+0x26/0x90 [ 1031.939004][ T31] #1: ffff888032f50078 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x3ae/0x11d0 [ 1031.973183][ T31] #2: ffffffff905bf988 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_hash_flush+0xbb/0x260 [ 1031.993646][ T31] #3: ffff888029e25b38 (&conn->lock#2){+.+.}-{4:4}, at: l2cap_conn_del+0x80/0x730 [ 1032.023228][ T31] #4: ffffffff8e5cfdb8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x1a3/0x3c0 [ 1032.049540][ T31] 2 locks held by kworker/u10:0/14422: [ 1032.082033][ T31] #0: ffff888140533148 ((wq_completion)iou_exit){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 [ 1032.112110][ T31] #1: ffffc90003517d10 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70 [ 1032.130363][ T31] 3 locks held by kworker/u10:3/14433: [ 1032.136324][ T31] #0: ffff88801c6fe148 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 [ 1032.147252][ T31] #1: ffffc9000ead7d10 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70 [ 1032.157307][ T31] #2: ffffffff90338250 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xad/0x890 [ 1032.166770][ T31] 1 lock held by syz.2.1621/14606: [ 1032.171883][ T31] #0: ffffffff90338250 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x286/0x5f0 [ 1032.181978][ T31] 2 locks held by kworker/u10:7/14883: [ 1032.187892][ T31] #0: ffff888140533148 ((wq_completion)iou_exit){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 [ 1032.198678][ T31] #1: ffffc90004707d10 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70 [ 1032.210315][ T31] 1 lock held by syz.0.1777/15469: [ 1032.216153][ T31] #0: ffffffff90338250 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x286/0x5f0 [ 1032.225731][ T31] 1 lock held by syz.1.1881/16042: [ 1032.230880][ T31] #0: ffffffff90338250 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x286/0x5f0 [ 1032.240444][ T31] 2 locks held by getty/16183: [ 1032.245292][ T31] #0: ffff88814c64b0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 1032.255519][ T31] #1: ffffc900032622f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0 [ 1032.265777][ T31] 1 lock held by syz.4.1963/16514: [ 1032.270918][ T31] #0: ffffffff8e5cfdb8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x1a3/0x3c0 [ 1032.281119][ T31] [ 1032.287946][ T31] ============================================= [ 1032.287946][ T31] [ 1032.296568][ T31] NMI backtrace for cpu 1 [ 1032.296589][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 1032.296624][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1032.296646][ T31] Call Trace: [ 1032.296655][ T31] [ 1032.296667][ T31] dump_stack_lvl+0x116/0x1f0 [ 1032.296713][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 1032.296743][ T31] ? _raw_spin_unlock_irqrestore+0x61/0x80 [ 1032.296784][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 1032.296822][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 1032.296860][ T31] watchdog+0xf70/0x12c0 [ 1032.296912][ T31] ? __pfx_watchdog+0x10/0x10 [ 1032.296950][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 1032.296995][ T31] ? __kthread_parkme+0x19e/0x250 [ 1032.297030][ T31] ? __pfx_watchdog+0x10/0x10 [ 1032.297071][ T31] kthread+0x3c5/0x780 [ 1032.297112][ T31] ? __pfx_kthread+0x10/0x10 [ 1032.297155][ T31] ? rcu_is_watching+0x12/0xc0 [ 1032.297184][ T31] ? __pfx_kthread+0x10/0x10 [ 1032.297225][ T31] ret_from_fork+0x5d4/0x6f0 [ 1032.297273][ T31] ? __pfx_kthread+0x10/0x10 [ 1032.297314][ T31] ret_from_fork_asm+0x1a/0x30 [ 1032.297367][ T31] [ 1032.297378][ T31] Sending NMI from CPU 1 to CPUs 0: [ 1032.424673][ C0] NMI backtrace for cpu 0 [ 1032.424693][ C0] CPU: 0 UID: 0 PID: 16514 Comm: syz.4.1963 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 1032.424721][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1032.424734][ C0] RIP: 0010:unwind_next_frame+0xb6e/0x20a0 [ 1032.424770][ C0] Code: db b6 00 e9 e3 f5 ff ff 4c 89 f7 e8 ec da b6 00 e9 0f f6 ff ff 49 8d 76 f8 ba 08 00 00 00 4d 8d 7d 34 4c 89 ef 4c 89 44 24 28 <48> 89 4c 24 20 48 89 74 24 18 e8 73 f2 ff ff 84 c0 0f 84 fd f7 ff [ 1032.424791][ C0] RSP: 0018:ffffc90019bef220 EFLAGS: 00000246 [ 1032.424810][ C0] RAX: 0000000000000002 RBX: 0000000000000001 RCX: ffffffff91481da0 [ 1032.424824][ C0] RDX: 0000000000000008 RSI: ffffc90019bef6a0 RDI: ffffc90019bef290 [ 1032.424839][ C0] RBP: ffffc90019bef2d8 R08: ffffffff91481da4 R09: 0000000000000000 [ 1032.424853][ C0] R10: 0000000000000000 R11: 000000000000f6cb R12: ffffc90019bef2e0 [ 1032.424867][ C0] R13: ffffc90019bef290 R14: ffffc90019bef6a8 R15: ffffc90019bef2c4 [ 1032.424882][ C0] FS: 0000000000000000(0000) GS:ffff888124760000(0000) knlGS:0000000000000000 [ 1032.424904][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1032.424919][ C0] CR2: 0000200000510000 CR3: 000000000e382000 CR4: 00000000003526f0 [ 1032.424933][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1032.424946][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1032.424960][ C0] Call Trace: [ 1032.424967][ C0] [ 1032.424975][ C0] ? folios_put_refs+0x56f/0x740 [ 1032.425016][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 1032.425042][ C0] arch_stack_walk+0x94/0x100 [ 1032.425076][ C0] ? folios_put_refs+0x56f/0x740 [ 1032.425109][ C0] stack_trace_save+0x8e/0xc0 [ 1032.425131][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 1032.425155][ C0] ? __lock_acquire+0x622/0x1c90 [ 1032.425186][ C0] save_stack+0x160/0x1f0 [ 1032.425214][ C0] ? __pfx_save_stack+0x10/0x10 [ 1032.425241][ C0] ? free_unref_folios+0xa65/0x1800 [ 1032.425269][ C0] ? folios_put_refs+0x56f/0x740 [ 1032.425304][ C0] ? page_ext_put+0x3e/0xd0 [ 1032.425336][ C0] __reset_page_owner+0x84/0x1a0 [ 1032.425367][ C0] free_unref_folios+0xa65/0x1800 [ 1032.425398][ C0] ? mark_held_locks+0x49/0x80 [ 1032.425426][ C0] folios_put_refs+0x56f/0x740 [ 1032.425458][ C0] ? __pfx_folios_put_refs+0x10/0x10 [ 1032.425495][ C0] free_pages_and_swap_cache+0x245/0x4a0 [ 1032.425524][ C0] ? __pfx_free_pages_and_swap_cache+0x10/0x10 [ 1032.425573][ C0] ? __pfx___might_resched+0x10/0x10 [ 1032.425599][ C0] __tlb_batch_free_encoded_pages+0xf9/0x290 [ 1032.425630][ C0] tlb_finish_mmu+0x168/0x7c0 [ 1032.425659][ C0] exit_mmap+0x403/0xb90 [ 1032.425685][ C0] ? __pfx_exit_mmap+0x10/0x10 [ 1032.425728][ C0] __mmput+0x12a/0x410 [ 1032.425751][ C0] mmput+0x62/0x70 [ 1032.425773][ C0] do_exit+0x7c4/0x2bd0 [ 1032.425798][ C0] ? __pfx___might_resched+0x10/0x10 [ 1032.425822][ C0] ? __pfx_do_exit+0x10/0x10 [ 1032.425847][ C0] ? do_raw_spin_lock+0x12c/0x2b0 [ 1032.425876][ C0] ? find_held_lock+0x2b/0x80 [ 1032.425898][ C0] do_group_exit+0xd3/0x2a0 [ 1032.425926][ C0] get_signal+0x2673/0x26d0 [ 1032.425948][ C0] ? __pfx_do_mbind+0x10/0x10 [ 1032.425971][ C0] ? vfs_write+0x15d/0x1150 [ 1032.426000][ C0] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 1032.426041][ C0] ? __pfx_get_signal+0x10/0x10 [ 1032.426070][ C0] arch_do_signal_or_restart+0x8f/0x790 [ 1032.426095][ C0] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1032.426125][ C0] ? __pfx_kernel_mbind+0x10/0x10 [ 1032.426154][ C0] exit_to_user_mode_loop+0x84/0x110 [ 1032.426185][ C0] do_syscall_64+0x3f6/0x490 [ 1032.426218][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1032.426240][ C0] RIP: 0033:0x7f38e978e929 [ 1032.426255][ C0] Code: Unable to access opcode bytes at 0x7f38e978e8ff. [ 1032.426266][ C0] RSP: 002b:00007f38ea5aa038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 1032.426287][ C0] RAX: 0000000000000000 RBX: 00007f38e99b5fa0 RCX: 00007f38e978e929 [ 1032.426301][ C0] RDX: 0000000100000000 RSI: 0000000100000004 RDI: 0000000000002000 [ 1032.426315][ C0] RBP: 00007f38e9810b39 R08: 0000000000000005 R09: 0000000000000002 [ 1032.426327][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1032.426341][ C0] R13: 0000000000000000 R14: 00007f38e99b5fa0 R15: 00007fff40ff2d78 [ 1032.426366][ C0] [ 1032.884224][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 1032.891159][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 1032.903021][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1032.913147][ T31] Call Trace: [ 1032.916463][ T31] [ 1032.919433][ T31] dump_stack_lvl+0x3d/0x1f0 [ 1032.924097][ T31] panic+0x71c/0x800 [ 1032.928047][ T31] ? __pfx_panic+0x10/0x10 [ 1032.932521][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 1032.937955][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 1032.944000][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 1032.949427][ T31] ? watchdog+0xdda/0x12c0 [ 1032.953902][ T31] ? watchdog+0xdcd/0x12c0 [ 1032.958387][ T31] watchdog+0xdeb/0x12c0 [ 1032.962700][ T31] ? __pfx_watchdog+0x10/0x10 [ 1032.967436][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 1032.972699][ T31] ? __kthread_parkme+0x19e/0x250 [ 1032.977778][ T31] ? __pfx_watchdog+0x10/0x10 [ 1032.982513][ T31] kthread+0x3c5/0x780 [ 1032.986645][ T31] ? __pfx_kthread+0x10/0x10 [ 1032.991289][ T31] ? rcu_is_watching+0x12/0xc0 [ 1032.996105][ T31] ? __pfx_kthread+0x10/0x10 [ 1033.000759][ T31] ret_from_fork+0x5d4/0x6f0 [ 1033.005406][ T31] ? __pfx_kthread+0x10/0x10 [ 1033.010058][ T31] ret_from_fork_asm+0x1a/0x30 [ 1033.014893][ T31] [ 1033.018240][ T31] Kernel Offset: disabled [ 1033.022574][ T31] Rebooting in 86400 seconds..