last executing test programs: 35.559653038s ago: executing program 2 (id=723): close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x2, 0x0) r0 = socket(0x848000000015, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xfd}}, 0x6b) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0xff, 0x0}}, 0x55) sendmsg$auto_NL80211_CMD_GET_MPATH(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0xd00000, 0x0, 0x20004000}, 0x100000) 34.459289187s ago: executing program 2 (id=728): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) dup$auto(r0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd15\x00', 0x60742, 0x0) madvise$auto(0x400, 0x0, 0x1) fstat$auto(r1, 0x0) r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x4610, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x1e, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x40000000009, 0x7, 0xffffffffffffffff, 0x3, 0x62, 0x7ffffffe, 0x7, 0x6d3f, 0x7, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r3, &(0x7f0000000080)='/de}/audio1\x00', 0x2100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r4 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec29\x00', 0x900, 0x0) ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r4, 0xc05c6104, &(0x7f0000000100)={"fda256c4", 0x3, 0x6, 0x4, 0x9b4, 0x9, "0800aafc241cd010c7543bfbca2ce1", "0200", '\x00\x00 \x00', "2ff43123", ['\x00', "f8ffffffffffffff00000001", "0004154db00b0004000400", "5fe10eedab2c4b353c392a92"]}) 33.05311437s ago: executing program 2 (id=735): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810008, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000004}, 0x7fffffffffffffff, 0x9, 0x4, 0x7) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x48000, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x40, 0x0) rseq$auto(0x0, 0xfffffff4, 0x0, 0x5) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x62040, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x13e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x1, 0x40009, 0xdf, 0x13, 0xffffffffffffffff, 0x10001) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0xfffffffffffffffd, 0x80000000, 0x1a) madvise$auto(0x0, 0x2003f2, 0x15) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) setrlimit$auto(0x1000000007, 0x0) socket(0x2a, 0x2, 0x0) madvise$auto(0x108000, 0x800032, 0x4) ioctl$auto(0xffffffffffffffff, 0x400064c8, 0xffffffffffffffff) setpriority$auto_PRIO_USER(0x2, 0x0, 0x3) 30.075471777s ago: executing program 2 (id=744): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) dup$auto(r0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd15\x00', 0x60742, 0x0) madvise$auto(0x400, 0x0, 0x1) fstat$auto(r1, 0x0) r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x4610, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x1e, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x40000000009, 0x7, 0xffffffffffffffff, 0x3, 0x62, 0x7ffffffe, 0x7, 0x6d3f, 0x7, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r3, &(0x7f0000000080)='/de}/audio1\x00', 0x2100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r4 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec29\x00', 0x900, 0x0) ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r4, 0xc05c6104, &(0x7f0000000100)={"fda256c4", 0x3, 0x6, 0x4, 0x9b4, 0x9, "0800aafc241cd010c7543bfbca2ce1", "0200", '\x00\x00 \x00', "2ff43123", ['\x00', "f8ffffffffffffff00000001", "0004154db00b0004000400", "5fe10eedab2c4b353c392a92"]}) 27.740726766s ago: executing program 2 (id=753): socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000) (async) mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x2) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[], 0x1ac}}, 0x40000) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[], 0x1ac}}, 0x40000) sendmsg$auto_IEEE802154_LLSEC_ADD_KEY(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000ffdbdf25270000000500280003000000140030002341c6cc737eff488e00000000f4ccf0060006000800000006001000060000000600080005"], 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x8001) socket(0x11, 0x2, 0x0) (async) r1 = socket(0x11, 0x2, 0x0) capset$auto(0x0, &(0x7f0000000000)={0x1, 0xd, 0x8}) sendmmsg$auto(r1, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f00000004c0), 0x49}, 0x4, &(0x7f0000000180), 0x5, 0x1000}, 0x5}, 0x2, 0x10100) landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0) landlock_restrict_self$auto(r0, 0x0) move_mount$auto(0x0, 0x0, 0xffffffffffffff9c, 0x0, 0x77) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x400c890}, 0x800) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x0, 0xffffffffffffffff, 0x801, 0x10008, 0x4f0d, 0x1000049, 0xffffffffffffffff, 0x20000000000804, 0x7}, 0x6f3) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0x154) fcntl$auto(r3, 0x400, 0x1) lsetxattr$auto(&(0x7f0000003080)='./file0\x00', &(0x7f00000030c0)='-\x00', &(0x7f0000003100), 0x7, 0x3) (async) lsetxattr$auto(&(0x7f0000003080)='./file0\x00', &(0x7f00000030c0)='-\x00', &(0x7f0000003100), 0x7, 0x3) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) ioctl$auto_EVIOCSMASK(r2, 0x40104593, &(0x7f0000000040)={0x6, 0x10, 0x80000000}) (async) ioctl$auto_EVIOCSMASK(r2, 0x40104593, &(0x7f0000000040)={0x6, 0x10, 0x80000000}) pidfd_open$auto(0x1, 0x0) (async) r4 = pidfd_open$auto(0x1, 0x0) socket$auto(0x1, 0x1, 0x401) open_by_handle_at$auto(r4, 0x0, 0x800) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x0, 0x0, 0x2000400) 27.080780221s ago: executing program 2 (id=757): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0xa802, 0x0) prctl$auto(0x18, 0xffffffffffffffff, 0x4, 0x10000, 0x7) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x11, 0x80003, 0x300) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x28, 0x0, 0x808) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), 0xffffffffffffffff) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) 11.783791691s ago: executing program 32 (id=757): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0xa802, 0x0) prctl$auto(0x18, 0xffffffffffffffff, 0x4, 0x10000, 0x7) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x11, 0x80003, 0x300) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x28, 0x0, 0x808) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), 0xffffffffffffffff) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) 11.502531114s ago: executing program 3 (id=793): r0 = openat$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000b00), 0x40042, 0x0) write$auto_safesetid_uid_file_fops_securityfs(r0, &(0x7f0000000b40)="33e06908f7cef2ef9652d5e3d0f91cdb9aa7fcd4f56b3ae50e2e7a3fce17ad39061182af048f047adfa552adf5a64941ae9a2564ce32560a", 0x38) socket(0xa, 0x1, 0x84) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r2, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) close_range$auto(0x0, 0xfffffffffffff000, 0x2) io_uring_setup$auto(0xd365, &(0x7f0000000000)={0x0, 0x10002, 0x7d, 0x5, 0x6, 0x5, 0xffffffffffffffff, [], {0x2, 0x4, 0x6, 0x2, 0x8, 0x0, 0x1000, 0x5, 0x80000000}, {0x7, 0xd, 0x7, 0x8, 0x80006b, 0x9, 0x0, 0xfffffffa, 0xb1}}) prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x4, 0xa5, 0x3, 0x9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0006, 0x17) r3 = ioctl$auto_TUNSETOWNER(0xffffffffffffffff, 0x400454cc, &(0x7f0000000040)=0x81) setsockopt$auto_SO_CNX_ADVICE(r3, 0x2, 0x35, 0x0, 0x81) write$auto(0x3, 0x0, 0xfdef) madvise$auto(0x8, 0xffffffffffff0005, 0x19) madvise$auto(0x1000, 0x400050, 0x9) statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/driver/nvram\x00', 0x40000, 0x0) munmap$auto(0x8000, 0xffffffff) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) socket(0x21, 0x1, 0x1) 9.451463421s ago: executing program 3 (id=799): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/default/forwarding\x00', 0x141241, 0x0) pwrite64$auto(r0, &(0x7f0000000000)='./cgroup/memory.pressure\x00', 0x6bc, 0x5) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = bpf$auto_BPF_BTF_LOAD(0x12, &(0x7f00000000c0)=@enable_stats, 0x5e7) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r2) sendmsg$auto_NL80211_CMD_REQ_SET_REG(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000002100)={&(0x7f00000003c0)=ANY=[@ANYRES16=r1, @ANYRES32, @ANYBLOB="01002abd7000467f4b5be2f4e44ab30108f778d64b44fedbdf251b000000"], 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x0) readahead$auto(r0, 0x4, 0x4) sysfs$auto(0x1007, 0x3fe, 0x2) unshare$auto(0x40000080) write$auto(r1, &(0x7f0000000200)='/de\xef\xe7a=v^\x951\x00\f\'\x8b\xd9\xfeN\xcd#)\x8c\x89>-o\xd7\x8f$\xac\xfc\xa2\xccm\x0e \xfb\xe5\xe9\x92\xaa\xef\x84$\x84Ia>6pV;{\'\xaa\xbeC\x14\xb6\xd2\xf6\xb7\xcd\xf6P\x05X\x1dK\x18\x99\x02\xb3\x0fY0\x80\x99\xe3\x0e\xa2D\xc0\xecE\x86\xd9J\x9c\xa8\x98\x02\xdb\xf1\x81TMpS\xc5\xab\xa1\x1bG\v>\x03\xf7\xe1\xaf\xe3\x04\xc3 ffF\x0f\xa6}\xa3\xa8\xd1\xe2\xd0QG\xa6\xa6\x8e7\x80\xd9\xd0\xdf\xad\xb1\x15\xca\xbb\xd5j\x94\xc6<\x18\x15\xcc\x8d\x14\xd8\xb8L\x03\xdd~\xe7%\xcb\xdd\xda!\xd45Z\xd0\xfc\x1b\xf0\xe1\xd6:\xd7\xe9N\xc1W\xe3\xae\xe9\xb27>k\xf8\xdf\xe1\xf9\xcc\xcb\v\x01D\xc3\xa9T\xb9UY\xaf\xa4\xe4\xfec\xa3\x9bI@\xb7w\xf8\x14\xc0\xd5\xd5\x95\a\xf5e\xfa\x94M\xb8%a\xa53fc\x95\'\xedc\xc5\xad\x7fM\xb4\xf39\x82\xdf8Y)\x8e\xa6\x0e[\xe1\x88\x1d\x0f[j\xe9\x83\x11\x1e\xca2\xba\xdb\xe4\b%\n\xcb\xbar\xf8\x84\xb0\x00$V\xa6`;\xfao\xe6A\x1b\xf2d\xfc\xb4}\xecP\x80h\xfb\x9f3e}\x8edq\x86\x00\xe0bb\x16\xb1kM\xc6GW#-\xf6\x17$BW\x83J\xd7g\xf1\xc0\xbf\x03>\xf2\xeb g\xb7\x14\xc6\xc7\xc9]\xce.\x82Y\x98\tg\v\x11a\v\xb4\xab\x12\xc7', 0x8) prlimit64$auto(0x0, 0x7, &(0x7f0000000cc0)={0xfff, 0xf1c6}, 0x0) poll$auto(&(0x7f0000000f80)={0xffffffffffffffff, 0xa06}, 0x3f8, 0x20) socket(0x2, 0x801, 0x100) mmap$auto(0x0, 0xdf33, 0xe2, 0xeb1, 0x405, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x1ff, 0xdf, 0x200000810, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0x200007, 0x19) madvise$auto(0x0, 0x2003f0, 0x15) write$auto(0x3, 0x0, 0x100082) io_uring_setup$auto(0x6, 0x0) madvise$auto(0x0, 0x200007, 0x19) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x29a02, 0x0) socket(0xa, 0x3, 0x403a) r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001080)='/dev/v4l-touch5\x00', 0x2040, 0x0) read$auto_v4l2_fops_v4l2_dev(r3, &(0x7f00000010c0)=""/22, 0x16) r4 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0) read$auto_proc_single_file_operations_base(r4, 0x0, 0x0) sendmsg$auto_TIPC_NL_PUBL_GET(0xffffffffffffffff, 0x0, 0x40001) 7.676681232s ago: executing program 0 (id=804): openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x48005, 0x0) r0 = socket(0x10, 0x2, 0x0) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_WOL_SET(r0, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000080)={0x18, r1, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@ETHTOOL_A_WOL_MODES={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x801}, 0x40) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/platform/dummy_udc.3/udc/dummy_udc.3/is_selfpowered\x00', 0x40, 0x0) close_range$auto(0x2, 0x8, 0x0) syz_clone3(&(0x7f00000004c0)={0x82000280, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0, 0x14}, 0x58) socket(0x2, 0x80002, 0x73) r2 = socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(r2, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) setsockopt$auto(0x3, 0x10000000084, 0x78, 0x0, 0x4) 7.013766852s ago: executing program 0 (id=805): mmap$auto(0x0, 0x1000000200004, 0x101, 0x111, 0xd, 0x300000000000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/mtd/mtd0/mtdblock0/queue/write_cache\x00', 0x182b02, 0x0) sendfile$auto(r0, r0, 0x0, 0xea) r1 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D1p\x00', 0x0, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_STATUS_EXT32(r1, 0xc06c4124, 0x0) openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cpu/0/msr\x00', 0x0, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00') sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16, @ANYBLOB="1b0026bd7000fddbdf250300000004000800100003800c000b8008001c"], 0x4c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000a80)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x40000, 0x0) select$auto(0x7, 0x0, &(0x7f0000000100)={[0x9, 0x5, 0x0, 0xfffffffffffffff6, 0x7, 0xfffffffffffdffff, 0xdffffffffffffff8, 0x2, 0x0, 0x10000005e58296f, 0x1e, 0x7, 0x3, 0x200, 0x1, 0x9]}, 0x0, 0x0) r2 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0xfffffffe, &(0x7f0000000100)={&(0x7f0000000080), 0xfbe}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) fstat$auto(r0, &(0x7f00000000c0)={0x9, 0x1, 0x100000000, 0x7, 0xffffffffffffffff, 0xee00, 0x0, 0x5, 0x3, 0x63, 0x7f, 0x1, 0x3, 0x78, 0xb7f, 0x54f, 0x5}) msgctl$auto_IPC_INFO(0x7, 0x3, &(0x7f0000000200)={{0x800, 0xee01, 0xee01, 0x703, 0xd1, 0x8, 0x400}, &(0x7f0000000040)=0x3, &(0x7f00000001c0)=0x2, 0x4b2d66d2, 0x54e, 0x3, 0x6, 0xcaa0, 0x0, 0x1, 0x7, @inferred=0xffffffffffffffff}) ioctl$auto_XFS_IOC_SWAPEXT(r0, 0xc0c0586d, &(0x7f0000000280)={0x7, @inferred=r1, @raw=0x2c748067, 0x6, 0x8000000000000000, '\x00', {0x7fff, 0x9, 0x0, r3, r4, 0x4, 0x8001, 0xfffffffffffffffb, {0x4, 0xa}, {0x100000001}, {0x5, 0x8}, 0x10001, 0x7, 0x64, 0x1000, 0xcb32, 0x6, 0x2, 0xff, 0x3, 0x2000, '\x00', 0x3, 0x0, 0x17, 0x9}}) 6.900805419s ago: executing program 1 (id=806): r0 = openat$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000b00), 0x40042, 0x0) write$auto_safesetid_uid_file_fops_securityfs(r0, &(0x7f0000000b40)="33e06908f7cef2ef9652d5e3d0f91cdb9aa7fcd4f56b3ae50e2e7a3fce17ad39061182af048f047adfa552adf5a64941ae9a2564ce32560a", 0x38) socket(0xa, 0x1, 0x84) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0xd365, &(0x7f0000000000)={0x0, 0x10002, 0x7d, 0x5, 0x6, 0x5, 0xffffffffffffffff, [], {0x2, 0x4, 0x6, 0x2, 0x8, 0x0, 0x1000, 0x5, 0x80000000}, {0x7, 0xd, 0x7, 0x8, 0x80006b, 0x9, 0x0, 0xfffffffa, 0xb1}}) prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x4, 0xa5, 0x3, 0x9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0006, 0x17) r3 = ioctl$auto_TUNSETOWNER(0xffffffffffffffff, 0x400454cc, &(0x7f0000000040)=0x81) setsockopt$auto_SO_CNX_ADVICE(r3, 0x2, 0x35, 0x0, 0x81) write$auto(0x3, 0x0, 0xfdef) madvise$auto(0x8, 0xffffffffffff0005, 0x19) madvise$auto(0x1000, 0x400050, 0x9) statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/driver/nvram\x00', 0x40000, 0x0) munmap$auto(0x8000, 0xffffffff) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) socket(0x21, 0x1, 0x1) 6.817369704s ago: executing program 0 (id=807): madvise$auto(0x0, 0x2000040080000004, 0xe) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = getpid() process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xffc}, 0x40000000001, &(0x7f0000000240)={&(0x7f0000000140), 0x5}, 0xa, 0x0) prctl$auto(0x3e, 0x1, r1, 0x1, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r2, 0x4b41, 0x7) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mkdir$auto(&(0x7f00000002c0)='./file0\x00', 0x3) mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x9) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r3 = fanotify_init$auto(0x602, 0x1) r4 = open(&(0x7f0000000000)='./file1\x00', 0x1652c2, 0xe1d2b27bdc14aa98) fanotify_mark$auto(0x400000000000, 0x105, 0xf2b, r4, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40342, 0x22) rename$auto(&(0x7f0000000280)='./file1/file0\x00', &(0x7f0000000040)='./file0/file0\x00') mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) open(&(0x7f0000000000)='.\x00', 0xc00, 0x409) fanotify_mark$auto(0x1000000000000, 0x65, 0x9, 0x1, 0x0) r5 = open(&(0x7f0000000100)='.\x00', 0x100, 0x0) getdents64$auto(r5, 0x0, 0x400) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) fchmodat$auto(r3, &(0x7f0000000380)='./file0\x00', 0x0) sendmsg$auto_NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000300)={&(0x7f0000000200)=ANY=[@ANYBLOB="40800000", @ANYRES16, @ANYBLOB="20002dbd7000fddbdf251200000008004200070000000b004f00c9549d06e03e890004fd53000e00000004000b000500d6000600000004002d01"], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x4000090) 5.631164498s ago: executing program 0 (id=808): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21) unshare$auto(0x40000080) r0 = socket(0xa, 0x5, 0x0) mmap$auto(0x1, 0x6, 0x1, 0x12, r0, 0x8000) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000240)={{0x0, 0xffffffffffffffff, 0xee00, 0x9, 0x5, 0x8, 0x5}, &(0x7f00000001c0)=0x6, &(0x7f0000000200)=0x1, 0x1, 0xfff, 0x0, 0x7, 0x9, 0x4, 0x9, 0xf}) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x40}, 0x8) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0) ioctl$auto(r3, 0x8001, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x2003f0, 0x15) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) ioctl$auto_TCSBRKP2(r3, 0x5425, &(0x7f0000000300)="cf7e4b97fd98bcbdd4e8d1b0b26ef9696402b9b08adc9d864bd019403fc88f30fbb0b252e415ac9aa58d95db47102df5c246223cba2dbb53af83771a241f0e80542b9f83de13c6152877fb0bb336412088968a42b0966afb261eb3f6151612d00e235f76f8badf8d331362323825e4cc23649dce250b9f527f71b486e3f5a2aa911ca4f3") madvise$auto(0xfffff7ffffffffff, 0xb, 0x4) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f00000002c0), r2) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x40010}, 0x800) mmap$auto(0x0, 0x1c41, 0xd9, 0xf3, 0xffffffffffffffff, 0x8000) r5 = socket$nl_generic(0x10, 0x3, 0x10) fcntl$auto(r5, 0x8, 0x1) r6 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fuse\x00', 0x88442, 0x0) writev$auto(r6, &(0x7f00000018c0)={0x0, 0x2}, 0x8) r7 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40002, 0x0) read$auto(r7, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0xffd8) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, 0x0, 0x24000044) 5.250899291s ago: executing program 1 (id=809): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xc0000, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0x1d, 0x2, 0x2) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/bridge/bridge-nf-pass-vlan-input-dev\x00', 0x202, 0x0) connect$auto(0x3, 0x0, 0x55) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0x5c8) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x2, 0x9, 0x3, 0x16, 0x940, 0x1ffe0, 0x3, 0x6, 0x2, 0x9, 0x4, 0xfff, 0x7, 0xb0, 0x10009, 0x8001, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ac7, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x7, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}, 0x1fe, 0x5e87) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x880}, 0x6, 0x44008) (fail_nth: 2) 5.129537528s ago: executing program 3 (id=810): unshare$auto(0x40000080) r0 = bpf$auto(0x11, 0xfffffffffffffffc, 0x0) socket(0x11, 0x1, 0x87) pread64$auto(0xffffffffffffffff, 0x0, 0x3c02, 0x100007) read$auto(0x3, 0x0, 0x7) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) syz_genetlink_get_family_id$auto_nfc(0x0, 0xffffffffffffffff) r1 = socket(0xa, 0x2, 0x0) ioctl$auto_USBDEVFS_BULK(r0, 0xc0185502, &(0x7f0000000040)={0x9, 0x6, 0xfffffff0, &(0x7f0000000000)="98324939aad8b695a9b48dc59c9f14e8f88218691d5162633abe8d4a2856af30a709e4"}) setsockopt$auto(r1, 0x29, 0x30, 0x0, 0x20004) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x540b, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/ieee80211/phy1/netdev:wlan1/uapsd_queues\x00', 0x2, 0x0) write$auto(0x3, 0x0, 0xfdef) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) r3 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r2, 0x541c, r3) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptyzf\x00', 0x180, 0x0) 4.768860616s ago: executing program 1 (id=811): getpgrp(0xffffffffffffffff) r0 = openat$auto_dfs_sched_itmt_fops_itmt(0xffffffffffffff9c, &(0x7f0000001440)='/sys/kernel/debug/netdevsim/netdevsim0/udp_ports_ipv4_only\x00', 0x1, 0x0) write$auto(r0, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_COLOR_CHANGE_REQUEST(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000040)={&(0x7f0000004480)={0x14, 0x0, 0x400, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4004854}, 0x8080) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) unshare$auto(0x20000080) syz_clone3(&(0x7f0000000300)={0x28020400, 0x0, 0x0, 0x0, {0x35}, 0x0, 0x0, 0x0, 0x0}, 0x58) 4.364882145s ago: executing program 1 (id=812): madvise$auto(0x0, 0x2000040080000004, 0xe) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = getpid() process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xffc}, 0x40000000001, &(0x7f0000000240)={&(0x7f0000000140), 0x5}, 0xa, 0x0) prctl$auto(0x3e, 0x1, r1, 0x1, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r2, 0x4b41, 0x7) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mkdir$auto(&(0x7f00000002c0)='./file0\x00', 0x3) mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x9) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r3 = fanotify_init$auto(0x602, 0x1) fanotify_mark$auto(0x400000000000, 0x105, 0xf2b, 0xffffffffffffffff, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40342, 0x22) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1/file0\x00', 0x101040, 0x20) rename$auto(&(0x7f0000000280)='./file1/file0\x00', &(0x7f0000000040)='./file0/file0\x00') mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) open(&(0x7f0000000000)='.\x00', 0xc00, 0x409) fanotify_mark$auto(0x1000000000000, 0x65, 0x9, 0x1, 0x0) r4 = open(&(0x7f0000000100)='.\x00', 0x100, 0x0) getdents64$auto(r4, 0x0, 0x400) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) fchmodat$auto(r3, &(0x7f0000000380)='./file0\x00', 0x0) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000300)={&(0x7f0000000200)=ANY=[@ANYBLOB="40800000", @ANYRES16=r5, @ANYBLOB="20002dbd7000fddbdf251200000008004200070000000b004f00c9549d06e03e890004fd53000e00000004000b000500d6000600000004002d01"], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x4000090) 4.234211907s ago: executing program 3 (id=813): r0 = openat$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000b00), 0x40042, 0x0) write$auto_safesetid_uid_file_fops_securityfs(r0, &(0x7f0000000b40)="33e06908f7cef2ef9652d5e3d0f91cdb9aa7fcd4f56b3ae50e2e7a3fce17ad39061182af048f047adfa552adf5a64941ae9a2564ce32560a", 0x38) socket(0xa, 0x1, 0x84) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0xd365, &(0x7f0000000000)={0x0, 0x10002, 0x7d, 0x5, 0x6, 0x5, 0xffffffffffffffff, [], {0x2, 0x4, 0x6, 0x2, 0x8, 0x0, 0x1000, 0x5, 0x80000000}, {0x7, 0xd, 0x7, 0x8, 0x80006b, 0x9, 0x0, 0xfffffffa, 0xb1}}) prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x4, 0xa5, 0x3, 0x9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0006, 0x17) r3 = ioctl$auto_TUNSETOWNER(0xffffffffffffffff, 0x400454cc, &(0x7f0000000040)=0x81) setsockopt$auto_SO_CNX_ADVICE(r3, 0x2, 0x35, 0x0, 0x81) write$auto(0x3, 0x0, 0xfdef) madvise$auto(0x8, 0xffffffffffff0005, 0x19) madvise$auto(0x1000, 0x400050, 0x9) statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/driver/nvram\x00', 0x40000, 0x0) munmap$auto(0x8000, 0xffffffff) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) socket(0x21, 0x1, 0x1) 3.10716122s ago: executing program 1 (id=814): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0x2, 0x1d3c, 0x3, 0x4, 0x15f4da0e, 0x6, 0x9, 0x100000000000000c, 0x8, 0x4, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) r1 = socket(0x10, 0x2, 0x0) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000180)=ANY=[@ANYBLOB="18040000", @ANYRES16=r2, @ANYBLOB="cb5b2cbd7000ffdbdf251f00000004000180"], 0x18}, 0x1, 0x0, 0x0, 0x84}, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) recvmmsg$auto(r1, 0x0, 0x7, 0x6, 0x0) socket(0x2c, 0x1, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) prctl$auto(0x400, 0x7fff, 0x0, 0x10000, 0x100000000000007) madvise$auto(0x0, 0xffffffffffff0005, 0x19) bind$auto(0x3, 0x0, 0x6a) mmap$auto(0x0, 0xfffffffffffffff7, 0x5, 0x19, r0, 0x7) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x7f, 0x0) close_range$auto(0x2, 0xa, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x1000) 2.464717996s ago: executing program 3 (id=815): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xc0000, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0x1d, 0x2, 0x2) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/bridge/bridge-nf-pass-vlan-input-dev\x00', 0x202, 0x0) connect$auto(0x3, 0x0, 0x55) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0x5c8) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x2, 0x9, 0x3, 0x16, 0x940, 0x1ffe0, 0x3, 0x6, 0x2, 0x9, 0x4, 0xfff, 0x7, 0xb0, 0x10009, 0x8001, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ac7, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x7, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}, 0x1fe, 0x5e87) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00'], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x880}, 0x6, 0x44008) 2.433367983s ago: executing program 0 (id=822): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder1\x00', 0x0, 0x0) dup$auto(r0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd15\x00', 0x60742, 0x0) madvise$auto(0x400, 0x0, 0x1) fstat$auto(r1, 0x0) r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x4610, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x1e, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x40000000009, 0x7, 0xffffffffffffffff, 0x3, 0x62, 0x7ffffffe, 0x7, 0x6d3f, 0x7, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r3, &(0x7f0000000080)='/de}/audio1\x00', 0x2100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r4 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec29\x00', 0x900, 0x0) ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r4, 0xc05c6104, &(0x7f0000000100)={"fda256c4", 0x3, 0x6, 0x4, 0x9b4, 0x9, "0800aafc241cd010c7543bfbca2ce1", "0200", '\x00\x00 \x00', "2ff43123", ['\x00', "f8ffffffffffffff00000001", "0004154db00b0004000400", "5fe10eedab2c4b353c392a92"]}) 1.814619928s ago: executing program 3 (id=816): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0x2, 0x1d2c, 0x3, 0x4, 0x15f4da0e, 0x6, 0x9, 0x100000000000000c, 0xe8, 0x4, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) r1 = socket(0x10, 0x2, 0x0) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000180)={0x18, r2, 0xb77b02080cac5bcb, 0x70bd2c, 0x25dfdbff, {}, [@ETHTOOL_A_MODULE_EEPROM_HEADER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x84}, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) recvmmsg$auto(r1, 0x0, 0x7, 0x6, 0x0) socket(0x2c, 0x1, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) prctl$auto(0x400, 0x7fff, 0x0, 0x10000, 0x100000000000007) madvise$auto(0x0, 0xffffffffffff0005, 0x19) bind$auto(0x3, 0x0, 0x6a) mmap$auto(0x0, 0xfffffffffffffff7, 0x5, 0x19, r0, 0x7) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x7f, 0x0) close_range$auto(0x2, 0xa, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x1000) 30.588294ms ago: executing program 0 (id=817): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/nbd15/queue/iosched/front_merges\x00', 0x8502, 0x0) mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f0000000080)={0x0, 0xf000, &(0x7f0000000040)={&(0x7f0000000240)={0x24, r1, 0x13, 0x70bd26, 0x25dfdbdd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r3}, @NL80211_ATTR_WIPHY_TX_POWER_SETTING={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x4004080}, 0x20040894) socketpair$auto(0x1, 0x967a, 0x6, &(0x7f0000000940)=0x4) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r4, 0x0, 0x20) close_range$auto(0x0, r4, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) r6 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r5, 0x541c, r6) write$auto(r0, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0x4) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) write$auto_tty_fops_tty_io(r7, &(0x7f0000000580)="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", 0x392) r8 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) r9 = ioctl$auto_userfaultfd_dev_fops_userfaultfd(r6, 0x2, &(0x7f0000000280)="ea463af6ed02372add4f0b5d12673a6383002a749ff57433ed1f6b9a6ce4038baac02a0e7e03b75d62aa93fcf142bcb96b618ddcaaaac7e0514f49b82b79cabbbfeb5f0843d6684bcf0639929d49757269037c6b6f10ee74f5fe312fdb91344f5505f37f55a8dd2c8bfd6fb6d9b1bb44ccf5aff53cc44ea03433e91203928d043ebc2d4acef0c878dddd6bf74992fd76ec87cf2c2d02f7ec8aea18e695de3889ad646a8a5598601e312dbbcb646705e9af8172b041e9ec49f8c0094f44585a02bcc235ac3d01cc5b77666cb45067310171f55cae2b39986cd095772572b9d03123cc30938945") r10 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfc(&(0x7f00000000c0), r10) r11 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), r10) sendmsg$auto_MACSEC_CMD_UPD_TXSA(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002ec0)={0x14, r11, 0x1, 0x70bd2d, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x400c8d4) sendmsg$auto_MACSEC_CMD_DEL_RXSC(r9, &(0x7f0000000500)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000200)={&(0x7f0000000380)={0x144, r11, 0x302, 0x70bd2a, 0x25dfdbff, {}, [@MACSEC_ATTR_RXSC_CONFIG={0xa3, 0x2, 0x0, 0x1, [@typed={0xc, 0x34, 0x0, 0x0, @u64=0x5c2}, @typed={0xc, 0x48, 0x0, 0x0, @u64=0x3}, @generic="0a5a9cc6a3b714f976accbdbebb9579601d3e6ebec454d922649727dd2a2929949f40072dbab1ed812e777b15ece23920977fb4dfc02e2afc28540745f51e9f55769c231a36bcdb5b37e58305813cd2b2e4906ef53e2ed61e004b5854a66bb4fb2f4d86468d44a53be0032ac98252b7e4c82c7b83e9417ba220a9dadf134fe1d7d6743bcc757ac"]}, @MACSEC_ATTR_OFFLOAD={0x79, 0x9, 0x0, 0x1, [@generic="c05ef321e7695c307c625f5120d3a90dd1523de4c24e4cdf879a43a7e108eebbfc6e6a5e842537eefbab73aeff8bfb6aa5c5d68ef1701f0ee5c58d87d0ee7d870967a78a8070ab39aa7bb2db0583e4b131f25e5422540742eb21d566802ff099949460f4ce", @typed={0x8, 0x5e, 0x0, 0x0, @u32=0x9}, @generic="2ce249f026f511cf"]}, @MACSEC_ATTR_IFINDEX={0x8, 0x1, r3}, @MACSEC_ATTR_IFINDEX={0x8, 0x1, r3}]}, 0x144}, 0x1, 0x0, 0x0, 0x40800}, 0x8000) ioctl$auto_TIOCSTI2(r8, 0x5412, &(0x7f0000000840)="1291") r12 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x0, 0x0) ioctl$auto_OSS_GETVERSION2(r12, 0x80044d76, 0x0) 0s ago: executing program 1 (id=818): ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000000140)={{0x0, 0x2, 0x200800, 0x1, 0xfffffffb}, "0dd7fd004929347eeeccdf0732f77b1f6de0d6d51768a257a97ca5e1ca6300ea"}) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyx3\x00', 0x42880, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x10b842, 0x0) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/veth0/accept_ra_pinfo\x00', 0x2000, 0x0) read$auto(r0, 0x0, 0x1ff) write$auto(0x3, 0x0, 0x7) (fail_nth: 3) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.184' (ED25519) to the list of known hosts. [ 86.647445][ T5855] cgroup: Unknown subsys name 'net' [ 86.815243][ T5855] cgroup: Unknown subsys name 'cpuset' [ 86.824123][ T5855] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 88.591557][ T5855] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 90.903649][ T5877] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 90.912386][ T5877] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 90.917459][ T5879] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 90.920500][ T5877] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 90.929419][ T5879] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 90.934853][ T5877] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 90.942827][ T5879] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 90.948805][ T5877] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 90.955596][ T5879] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 90.962372][ T5877] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 90.969517][ T5879] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 90.977146][ T5877] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 90.983097][ T5879] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 90.990975][ T5877] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 91.005747][ T5877] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 91.013787][ T5877] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 91.015074][ T5882] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 91.022951][ T5877] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 91.036216][ T5882] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 91.044632][ T5187] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 91.659191][ T5867] chnl_net:caif_netlink_parms(): no params data found [ 91.699910][ T5864] chnl_net:caif_netlink_parms(): no params data found [ 91.791042][ T5866] chnl_net:caif_netlink_parms(): no params data found [ 91.855173][ T5865] chnl_net:caif_netlink_parms(): no params data found [ 91.970885][ T5867] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.978159][ T5867] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.986185][ T5867] bridge_slave_0: entered allmulticast mode [ 91.995141][ T5867] bridge_slave_0: entered promiscuous mode [ 92.027487][ T5867] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.035040][ T5867] bridge0: port 2(bridge_slave_1) entered disabled state [ 92.046912][ T5867] bridge_slave_1: entered allmulticast mode [ 92.055644][ T5867] bridge_slave_1: entered promiscuous mode [ 92.090682][ T5864] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.098207][ T5864] bridge0: port 1(bridge_slave_0) entered disabled state [ 92.109474][ T5864] bridge_slave_0: entered allmulticast mode [ 92.117971][ T5864] bridge_slave_0: entered promiscuous mode [ 92.201390][ T5864] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.213768][ T5864] bridge0: port 2(bridge_slave_1) entered disabled state [ 92.221163][ T5864] bridge_slave_1: entered allmulticast mode [ 92.234072][ T5864] bridge_slave_1: entered promiscuous mode [ 92.295105][ T5867] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 92.334784][ T5866] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.345862][ T5866] bridge0: port 1(bridge_slave_0) entered disabled state [ 92.353829][ T5866] bridge_slave_0: entered allmulticast mode [ 92.365869][ T5866] bridge_slave_0: entered promiscuous mode [ 92.400492][ T5867] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 92.421359][ T5866] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.428819][ T5866] bridge0: port 2(bridge_slave_1) entered disabled state [ 92.436570][ T5866] bridge_slave_1: entered allmulticast mode [ 92.445035][ T5866] bridge_slave_1: entered promiscuous mode [ 92.452761][ T5865] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.459904][ T5865] bridge0: port 1(bridge_slave_0) entered disabled state [ 92.467421][ T5865] bridge_slave_0: entered allmulticast mode [ 92.474716][ T5865] bridge_slave_0: entered promiscuous mode [ 92.483230][ T5865] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.490375][ T5865] bridge0: port 2(bridge_slave_1) entered disabled state [ 92.497673][ T5865] bridge_slave_1: entered allmulticast mode [ 92.505385][ T5865] bridge_slave_1: entered promiscuous mode [ 92.528927][ T5864] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 92.580074][ T5864] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 92.628208][ T5867] team0: Port device team_slave_0 added [ 92.650507][ T5866] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 92.664382][ T5865] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 92.675853][ T5867] team0: Port device team_slave_1 added [ 92.697416][ T5864] team0: Port device team_slave_0 added [ 92.706779][ T5864] team0: Port device team_slave_1 added [ 92.715829][ T5866] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 92.727677][ T5865] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 92.802217][ T5867] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 92.809220][ T5867] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 92.835962][ T5867] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 92.877896][ T5865] team0: Port device team_slave_0 added [ 92.884824][ T5867] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 92.892330][ T5867] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 92.918928][ T5867] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 92.938498][ T5864] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 92.945527][ T5864] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 92.971672][ T5864] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 92.985054][ T5866] team0: Port device team_slave_0 added [ 92.992156][ T5864] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 92.999212][ T5864] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 93.025312][ T5864] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 93.039579][ T5865] team0: Port device team_slave_1 added [ 93.072492][ T5869] Bluetooth: hci1: command tx timeout [ 93.073835][ T5866] team0: Port device team_slave_1 added [ 93.078313][ T51] Bluetooth: hci0: command tx timeout [ 93.089682][ T5869] Bluetooth: hci3: command tx timeout [ 93.110478][ T5865] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 93.117609][ T5865] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 93.143684][ T5865] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 93.154341][ T5869] Bluetooth: hci2: command tx timeout [ 93.156974][ T5865] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 93.167616][ T5865] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 93.193907][ T5865] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 93.254981][ T5866] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 93.262298][ T5866] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 93.288421][ T5866] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 93.334692][ T5864] hsr_slave_0: entered promiscuous mode [ 93.341112][ T5864] hsr_slave_1: entered promiscuous mode [ 93.349816][ T5866] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 93.357065][ T5866] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 93.384075][ T5866] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 93.400132][ T5867] hsr_slave_0: entered promiscuous mode [ 93.406606][ T5867] hsr_slave_1: entered promiscuous mode [ 93.413117][ T5867] debugfs: 'hsr0' already exists in 'hsr' [ 93.418920][ T5867] Cannot create hsr debugfs directory [ 93.467561][ T5865] hsr_slave_0: entered promiscuous mode [ 93.473949][ T5865] hsr_slave_1: entered promiscuous mode [ 93.480021][ T5865] debugfs: 'hsr0' already exists in 'hsr' [ 93.486754][ T5865] Cannot create hsr debugfs directory [ 93.580805][ T5866] hsr_slave_0: entered promiscuous mode [ 93.587244][ T5866] hsr_slave_1: entered promiscuous mode [ 93.593984][ T5866] debugfs: 'hsr0' already exists in 'hsr' [ 93.599727][ T5866] Cannot create hsr debugfs directory [ 94.064345][ T5864] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 94.083190][ T5864] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 94.096403][ T5864] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 94.118745][ T5864] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 94.191867][ T5867] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 94.217043][ T5867] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 94.227796][ T5867] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 94.239107][ T5867] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 94.329162][ T5866] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 94.350272][ T5866] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 94.368577][ T5866] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 94.395795][ T5866] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 94.486446][ T5865] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 94.506816][ T5865] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 94.517442][ T5865] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 94.530610][ T5865] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 94.593889][ T5864] 8021q: adding VLAN 0 to HW filter on device bond0 [ 94.630218][ T5867] 8021q: adding VLAN 0 to HW filter on device bond0 [ 94.683075][ T5864] 8021q: adding VLAN 0 to HW filter on device team0 [ 94.708933][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.716227][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 94.729548][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.736948][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 94.753197][ T5867] 8021q: adding VLAN 0 to HW filter on device team0 [ 94.818636][ T5864] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 94.840713][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.847911][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 94.878235][ T78] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.885449][ T78] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.038423][ T5866] 8021q: adding VLAN 0 to HW filter on device bond0 [ 95.063749][ T5865] 8021q: adding VLAN 0 to HW filter on device bond0 [ 95.155964][ T5869] Bluetooth: hci3: command tx timeout [ 95.161841][ T51] Bluetooth: hci0: command tx timeout [ 95.162105][ T5876] Bluetooth: hci1: command tx timeout [ 95.180435][ T5865] 8021q: adding VLAN 0 to HW filter on device team0 [ 95.220193][ T5866] 8021q: adding VLAN 0 to HW filter on device team0 [ 95.232905][ T5876] Bluetooth: hci2: command tx timeout [ 95.258208][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.265454][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.289251][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.296484][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.326831][ T78] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.334029][ T78] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.360562][ T78] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.367833][ T78] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.391295][ T5864] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 95.651290][ T5864] veth0_vlan: entered promiscuous mode [ 95.674616][ T5867] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 95.727909][ T5864] veth1_vlan: entered promiscuous mode [ 95.845653][ T5864] veth0_macvtap: entered promiscuous mode [ 95.893928][ T5864] veth1_macvtap: entered promiscuous mode [ 95.909625][ T5867] veth0_vlan: entered promiscuous mode [ 95.946476][ T5867] veth1_vlan: entered promiscuous mode [ 95.965508][ T5864] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 96.016896][ T5864] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 96.050881][ T1010] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.074127][ T78] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.088669][ T5867] veth0_macvtap: entered promiscuous mode [ 96.103629][ T78] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.114309][ T78] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.138336][ T5867] veth1_macvtap: entered promiscuous mode [ 96.201087][ T5866] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 96.228983][ T5867] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 96.264388][ T5865] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 96.306502][ T5867] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 96.335853][ T3004] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.345726][ T3004] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.372119][ T36] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.383196][ T1010] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.412679][ T1010] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.423984][ T1010] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.459299][ T1010] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.472921][ T1010] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.537262][ T5866] veth0_vlan: entered promiscuous mode [ 96.558710][ T5865] veth0_vlan: entered promiscuous mode [ 96.586333][ T5866] veth1_vlan: entered promiscuous mode [ 96.619654][ T5865] veth1_vlan: entered promiscuous mode [ 96.640428][ T5864] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 96.657835][ T1010] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.672611][ T1010] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.826933][ T1010] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.839820][ T1010] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.853252][ T5866] veth0_macvtap: entered promiscuous mode [ 96.902959][ T5865] veth0_macvtap: entered promiscuous mode [ 96.952593][ T5866] veth1_macvtap: entered promiscuous mode [ 97.022311][ T5865] veth1_macvtap: entered promiscuous mode [ 97.105729][ T5866] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 97.120199][ T5865] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 97.147561][ T5865] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 97.165371][ T949] cfg80211: failed to load regulatory.db [ 97.196570][ T5866] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 97.231954][ T5876] Bluetooth: hci1: command tx timeout [ 97.232778][ T5869] Bluetooth: hci3: command tx timeout [ 97.238363][ T5876] Bluetooth: hci0: command tx timeout [ 97.287611][ T49] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.312473][ T5876] Bluetooth: hci2: command tx timeout [ 97.378641][ T49] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.394082][ T49] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.469410][ T49] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.595577][ T49] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.626966][ T49] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.670119][ T49] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.693887][ T49] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.719706][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.757402][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.978274][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.003086][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.129491][ T1010] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.164457][ T1010] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.176992][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 98.185862][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 98.195027][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 98.305671][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.349103][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.334774][ T5876] Bluetooth: hci3: command tx timeout [ 99.335708][ T5869] Bluetooth: hci1: command tx timeout [ 99.340245][ T5876] Bluetooth: hci0: command tx timeout [ 99.392327][ T5869] Bluetooth: hci2: command tx timeout [ 99.469168][ T5985] Zero length message leads to an empty skb [ 99.651988][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 99.660534][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 99.669343][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 100.111858][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 100.242190][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 100.611708][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 100.922114][ T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!! [ 103.163474][ T6032] FAULT_INJECTION: forcing a failure. [ 103.163474][ T6032] name failslab, interval 1, probability 0, space 0, times 1 [ 103.170365][ T6031] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input5 [ 103.178080][ T6032] CPU: 0 UID: 0 PID: 6032 Comm: syz.2.14 Not tainted syzkaller #0 PREEMPT(full) [ 103.178115][ T6032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 103.178130][ T6032] Call Trace: [ 103.178139][ T6032] [ 103.178149][ T6032] dump_stack_lvl+0x16c/0x1f0 [ 103.178195][ T6032] should_fail_ex+0x512/0x640 [ 103.178234][ T6032] ? fs_reclaim_acquire+0xae/0x150 [ 103.178276][ T6032] should_failslab+0xc2/0x120 [ 103.178310][ T6032] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 103.178344][ T6032] ? security_inode_alloc+0x3b/0x2b0 [ 103.178380][ T6032] security_inode_alloc+0x3b/0x2b0 [ 103.178411][ T6032] inode_init_always_gfp+0xce4/0x1030 [ 103.178447][ T6032] alloc_inode+0x86/0x240 [ 103.178483][ T6032] sock_alloc+0x40/0x280 [ 103.178510][ T6032] __sock_create+0xc1/0x8d0 [ 103.178547][ T6032] __sys_socket+0x14d/0x260 [ 103.178586][ T6032] ? __pfx___sys_socket+0x10/0x10 [ 103.178617][ T6032] ? xfd_validate_state+0x61/0x180 [ 103.178654][ T6032] ? __pfx_ksys_write+0x10/0x10 [ 103.178693][ T6032] __x64_sys_socket+0x72/0xb0 [ 103.178722][ T6032] ? lockdep_hardirqs_on+0x7c/0x110 [ 103.178760][ T6032] do_syscall_64+0xcd/0x490 [ 103.178802][ T6032] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 103.178828][ T6032] RIP: 0033:0x7fa830b8ebe9 [ 103.178851][ T6032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 103.178875][ T6032] RSP: 002b:00007fa8319a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 103.178901][ T6032] RAX: ffffffffffffffda RBX: 00007fa830dc5fa0 RCX: 00007fa830b8ebe9 [ 103.178919][ T6032] RDX: 0000000000000002 RSI: 0000000000000003 RDI: 000000000000000f [ 103.178933][ T6032] RBP: 00007fa830c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 103.178949][ T6032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 103.178964][ T6032] R13: 00007fa830dc6038 R14: 00007fa830dc5fa0 R15: 00007ffc6114c338 [ 103.178998][ T6032] [ 103.179165][ T6032] socket: no more sockets [ 104.518916][ T6054] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7fe02 [ 104.531526][ T6054] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 104.581088][ T6054] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 104.619049][ T6054] page_type: f5(slab) [ 104.623694][ T6054] raw: 00fff00000000040 ffff88801b841b40 dead000000000122 0000000000000000 [ 104.653783][ T6054] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 104.668946][ T6054] head: 00fff00000000040 ffff88801b841b40 dead000000000122 0000000000000000 [ 104.678043][ T6054] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 104.686887][ T6054] head: 00fff00000000001 ffffea0001ff8081 00000000ffffffff 00000000ffffffff [ 104.737282][ T6054] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 104.747169][ T6054] page dumped because: unmovable page [ 104.874957][ T6054] page_owner tracks the page as allocated [ 104.886772][ T6054] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5867, tgid 5867 (syz-executor), ts 95855690814, free_ts 95848097018 [ 104.909402][ T6054] post_alloc_hook+0x1c0/0x230 [ 104.917610][ T6054] get_page_from_freelist+0x132b/0x38e0 [ 104.924775][ T6054] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 104.931039][ T6054] alloc_pages_mpol+0x1fb/0x550 [ 104.936732][ T6054] new_slab+0x247/0x330 [ 104.951930][ T6054] ___slab_alloc+0xcf2/0x1750 [ 105.027967][ T6054] __slab_alloc.constprop.0+0x56/0xb0 [ 105.068627][ T6054] __kmalloc_noprof+0x2f2/0x510 [ 105.093793][ T6054] fib_create_info+0x53f/0x46b0 [ 105.258341][ T6054] fib_table_insert+0x177/0x1c40 [ 105.271083][ T6054] fib_magic+0x4d4/0x5c0 [ 105.275950][ T6054] fib_add_ifaddr+0x16d/0x580 [ 105.391597][ T6054] fib_inetaddr_event+0x147/0x270 [ 105.417475][ T6054] notifier_call_chain+0xb9/0x410 [ 105.459855][ T6054] blocking_notifier_call_chain+0x69/0xa0 [ 105.515669][ T6054] __inet_insert_ifa+0x925/0xcd0 [ 105.520700][ T6054] page last free pid 5945 tgid 5945 stack trace: [ 105.548847][ T6054] __free_frozen_pages+0x7d5/0x10f0 [ 105.641549][ T6054] __mmdrop+0xd5/0x580 [ 105.645715][ T6054] __mmput+0x374/0x410 [ 105.659938][ T6054] mmput+0x62/0x70 [ 105.668649][ T6054] do_exit+0x7c7/0x2bf0 [ 105.678777][ T6054] do_group_exit+0xd3/0x2a0 [ 105.688910][ T6054] __x64_sys_exit_group+0x3e/0x50 [ 105.713130][ T6054] x64_sys_call+0x14fa/0x1720 [ 105.738510][ T6054] do_syscall_64+0xcd/0x490 [ 105.792834][ T6054] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 106.135441][ T6060] netlink: 28 bytes leftover after parsing attributes in process `syz.2.19'. [ 106.931595][ T6076] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 106.936824][ T6074] block nbd9: NBD_DISCONNECT [ 108.014955][ T6088] __vm_enough_memory: pid: 6088, comm: syz.0.25, bytes: 4398046511104 not enough memory for the allocation [ 108.384181][ T6087] FAULT_INJECTION: forcing a failure. [ 108.384181][ T6087] name failslab, interval 1, probability 0, space 0, times 0 [ 108.471013][ T6087] CPU: 1 UID: 0 PID: 6087 Comm: syz.0.25 Not tainted syzkaller #0 PREEMPT(full) [ 108.471041][ T6087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 108.471052][ T6087] Call Trace: [ 108.471058][ T6087] [ 108.471065][ T6087] dump_stack_lvl+0x16c/0x1f0 [ 108.471099][ T6087] should_fail_ex+0x512/0x640 [ 108.471129][ T6087] ? __kmalloc_noprof+0xbf/0x510 [ 108.471152][ T6087] ? __do_sys_futex_waitv+0x127/0x2c0 [ 108.471177][ T6087] should_failslab+0xc2/0x120 [ 108.471201][ T6087] __kmalloc_noprof+0xd2/0x510 [ 108.471228][ T6087] __do_sys_futex_waitv+0x127/0x2c0 [ 108.471253][ T6087] ? __pfx___do_sys_futex_waitv+0x10/0x10 [ 108.471283][ T6087] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 108.471318][ T6087] do_syscall_64+0xcd/0x490 [ 108.471347][ T6087] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 108.471366][ T6087] RIP: 0033:0x7f58e8f8ebe9 [ 108.471380][ T6087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 108.471408][ T6087] RSP: 002b:00007f58e9d32038 EFLAGS: 00000246 ORIG_RAX: 00000000000001c1 [ 108.471434][ T6087] RAX: ffffffffffffffda RBX: 00007f58e91c5fa0 RCX: 00007f58e8f8ebe9 [ 108.471453][ T6087] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000200000000300 [ 108.471470][ T6087] RBP: 00007f58e9011e19 R08: 0000000000000000 R09: 0000000000000000 [ 108.471482][ T6087] R10: 0000200000000340 R11: 0000000000000246 R12: 0000000000000000 [ 108.471493][ T6087] R13: 00007f58e91c6038 R14: 00007f58e91c5fa0 R15: 00007ffe1793eae8 [ 108.471523][ T6087] [ 109.150603][ T6097] random: crng reseeded on system resumption [ 110.645186][ T6108] mkiss: ax0: crc mode is auto. [ 110.673467][ T6110] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 110.974680][ T6116] random: crng reseeded on system resumption [ 111.052923][ T6118] netlink: 342 bytes leftover after parsing attributes in process `syz.0.32'. [ 111.126224][ T6118] netlink: 342 bytes leftover after parsing attributes in process `syz.0.32'. [ 111.240959][ T6118] netlink: 342 bytes leftover after parsing attributes in process `syz.0.32'. [ 111.325544][ T6126] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 111.505708][ T6126] rtc_cmos 00:00: Alarms can be up to one day in the future [ 113.137913][ T6142] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 113.735352][ T6160] random: crng reseeded on system resumption [ 115.716610][ T6178] ubi0: attaching mtd0 [ 115.758594][ T6178] ubi0: scanning is finished [ 115.764435][ T6178] ubi0: empty MTD device detected [ 116.146421][ T6178] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 116.231345][ T6178] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 116.301775][ T6178] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 116.330492][ T6178] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 116.339512][ T6178] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 116.349523][ T6178] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 116.358944][ T6178] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 3459676511 [ 116.369351][ T6178] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 116.422698][ T6184] ubi0: background thread "ubi_bgt0d" started, PID 6184 [ 117.366285][ T6197] MTRR 1 not used [ 124.708192][ T6303] netlink: 186 bytes leftover after parsing attributes in process `syz.0.59'. [ 125.349323][ T6310] netlink: 'syz.2.63': attribute type 1 has an invalid length. [ 125.433822][ T6312] random: crng reseeded on system resumption [ 134.749460][ T6423] random: crng reseeded on system resumption [ 135.079243][ T6429] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input6 [ 136.851447][ T6454] capability: warning: `syz.1.87' uses 32-bit capabilities (legacy support in use) [ 137.910624][ T6467] ICMPv6: process `syz.0.90' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 138.117874][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.125785][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 139.764878][ T6477] process 'syz.1.91' launched './file0' with NULL argv: empty string added [ 140.953647][ T6500] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7 [ 141.633662][ T6501] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8 [ 141.924329][ T6513] binder: 6511:6513 unknown command 2608 [ 141.934283][ T6513] binder: 6511:6513 ioctl c0306201 0 returned -22 [ 142.925648][ T6523] : Can't lookup blockdev [ 143.639449][ T6536] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9 [ 144.619941][ T6540] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10 [ 145.920207][ T6564] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11 [ 146.508445][ T6565] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12 [ 147.571895][ T6581] __vm_enough_memory: pid: 6581, comm: syz.3.113, bytes: 4398046511104 not enough memory for the allocation [ 147.866238][ T6581] FAULT_INJECTION: forcing a failure. [ 147.866238][ T6581] name failslab, interval 1, probability 0, space 0, times 0 [ 147.934697][ T6581] CPU: 0 UID: 0 PID: 6581 Comm: syz.3.113 Not tainted syzkaller #0 PREEMPT(full) [ 147.934742][ T6581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 147.934760][ T6581] Call Trace: [ 147.934770][ T6581] [ 147.934782][ T6581] dump_stack_lvl+0x16c/0x1f0 [ 147.934833][ T6581] should_fail_ex+0x512/0x640 [ 147.934879][ T6581] ? __kmalloc_noprof+0xbf/0x510 [ 147.934919][ T6581] ? __do_sys_futex_waitv+0x127/0x2c0 [ 147.934970][ T6581] should_failslab+0xc2/0x120 [ 147.935011][ T6581] __kmalloc_noprof+0xd2/0x510 [ 147.935056][ T6581] __do_sys_futex_waitv+0x127/0x2c0 [ 147.935096][ T6581] ? __pfx___do_sys_futex_waitv+0x10/0x10 [ 147.935142][ T6581] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 147.935201][ T6581] do_syscall_64+0xcd/0x490 [ 147.935251][ T6581] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 147.935281][ T6581] RIP: 0033:0x7f733138ebe9 [ 147.935305][ T6581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 147.935333][ T6581] RSP: 002b:00007f733219a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001c1 [ 147.935362][ T6581] RAX: ffffffffffffffda RBX: 00007f73315c6090 RCX: 00007f733138ebe9 [ 147.935381][ T6581] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000200000000300 [ 147.935398][ T6581] RBP: 00007f7331411e19 R08: 0000000000000000 R09: 0000000000000000 [ 147.935415][ T6581] R10: 0000200000000340 R11: 0000000000000246 R12: 0000000000000000 [ 147.935433][ T6581] R13: 00007f73315c6128 R14: 00007f73315c6090 R15: 00007ffe63d0b2b8 [ 147.935473][ T6581] [ 148.262684][ T6587] : Can't lookup blockdev [ 148.520849][ T6591] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 148.852528][ T6594] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88807fe02600 pfn:0x7fe02 [ 148.881971][ T6594] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 148.890843][ T6594] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff) [ 148.899503][ T6594] page_type: f5(slab) [ 148.903681][ T6594] raw: 00fff00000000240 ffff88801b841b40 ffffea0000a8fa10 ffffea00014b1d10 [ 148.912966][ T6594] raw: ffff88807fe02600 000000000010000e 00000000f5000000 0000000000000000 [ 148.982851][ T6594] head: 00fff00000000240 ffff88801b841b40 ffffea0000a8fa10 ffffea00014b1d10 [ 149.005699][ T6594] head: ffff88807fe02600 000000000010000e 00000000f5000000 0000000000000000 [ 149.029047][ T6594] head: 00fff00000000001 ffffea0001ff8081 00000000ffffffff 00000000ffffffff [ 149.038322][ T6594] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 149.047836][ T6594] page dumped because: unmovable page [ 149.053384][ T6594] page_owner tracks the page as allocated [ 149.061618][ T6594] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5867, tgid 5867 (syz-executor), ts 95855690814, free_ts 95848097018 [ 149.091934][ T6594] post_alloc_hook+0x1c0/0x230 [ 149.097277][ T6594] get_page_from_freelist+0x132b/0x38e0 [ 149.103057][ T6594] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 149.109524][ T6594] alloc_pages_mpol+0x1fb/0x550 [ 149.114627][ T6594] new_slab+0x247/0x330 [ 149.119315][ T6594] ___slab_alloc+0xcf2/0x1750 [ 149.124125][ T6594] __slab_alloc.constprop.0+0x56/0xb0 [ 149.130322][ T6594] __kmalloc_noprof+0x2f2/0x510 [ 149.135314][ T6594] fib_create_info+0x53f/0x46b0 [ 149.141281][ T6594] fib_table_insert+0x177/0x1c40 [ 149.146637][ T6594] fib_magic+0x4d4/0x5c0 [ 149.151046][ T6594] fib_add_ifaddr+0x16d/0x580 [ 149.155948][ T6594] fib_inetaddr_event+0x147/0x270 [ 149.164093][ T6594] notifier_call_chain+0xb9/0x410 [ 149.169633][ T6594] blocking_notifier_call_chain+0x69/0xa0 [ 149.175552][ T6594] __inet_insert_ifa+0x925/0xcd0 [ 149.181083][ T6594] page last free pid 5945 tgid 5945 stack trace: [ 149.187899][ T6594] __free_frozen_pages+0x7d5/0x10f0 [ 149.193302][ T6594] __mmdrop+0xd5/0x580 [ 149.198105][ T6594] __mmput+0x374/0x410 [ 149.202336][ T6594] mmput+0x62/0x70 [ 149.206242][ T6594] do_exit+0x7c7/0x2bf0 [ 149.211189][ T6594] do_group_exit+0xd3/0x2a0 [ 149.215850][ T6594] __x64_sys_exit_group+0x3e/0x50 [ 149.221643][ T6594] x64_sys_call+0x14fa/0x1720 [ 149.240989][ T6594] do_syscall_64+0xcd/0x490 [ 149.247005][ T6594] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 150.151369][ T6615] openvswitch: netlink: Key type 152 is out of range max 32 [ 150.683729][ T6627] random: crng reseeded on system resumption [ 155.564432][ T6679] mmap: syz.0.135 (6679) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 156.620358][ T6692] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13 [ 157.039992][ T6695] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input14 [ 158.229127][ T6709] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15 [ 158.721277][ T6726] nbd: illegal input index -5 [ 159.509054][ T6712] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16 [ 160.901137][ T6748] i2c i2c-0: delete_device: Can't parse I2C address [ 164.682004][ T6788] syz.3.156 uses obsolete (PF_INET,SOCK_PACKET) [ 164.823863][ T6795] mkiss: ax0: crc mode is auto. [ 165.151099][ T6798] FAULT_INJECTION: forcing a failure. [ 165.151099][ T6798] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 165.221089][ T6798] CPU: 0 UID: 0 PID: 6798 Comm: syz.2.159 Not tainted syzkaller #0 PREEMPT(full) [ 165.221116][ T6798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 165.221126][ T6798] Call Trace: [ 165.221132][ T6798] [ 165.221139][ T6798] dump_stack_lvl+0x16c/0x1f0 [ 165.221171][ T6798] should_fail_ex+0x512/0x640 [ 165.221204][ T6798] _copy_to_user+0x32/0xd0 [ 165.221226][ T6798] simple_read_from_buffer+0xcb/0x170 [ 165.221246][ T6798] proc_fail_nth_read+0x197/0x240 [ 165.221267][ T6798] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 165.221288][ T6798] ? rw_verify_area+0xcf/0x6c0 [ 165.221305][ T6798] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 165.221325][ T6798] vfs_read+0x1e4/0xcf0 [ 165.221348][ T6798] ? __pfx___mutex_lock+0x10/0x10 [ 165.221377][ T6798] ? __pfx_vfs_read+0x10/0x10 [ 165.221403][ T6798] ? __fget_files+0x20e/0x3c0 [ 165.221429][ T6798] ksys_read+0x12a/0x250 [ 165.221449][ T6798] ? __pfx_ksys_read+0x10/0x10 [ 165.221476][ T6798] do_syscall_64+0xcd/0x490 [ 165.221504][ T6798] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.221522][ T6798] RIP: 0033:0x7fa830b8d5fc [ 165.221537][ T6798] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 165.221554][ T6798] RSP: 002b:00007fa8319a7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 165.221572][ T6798] RAX: ffffffffffffffda RBX: 00007fa830dc5fa0 RCX: 00007fa830b8d5fc [ 165.221583][ T6798] RDX: 000000000000000f RSI: 00007fa8319a70a0 RDI: 0000000000000004 [ 165.221593][ T6798] RBP: 00007fa8319a7090 R08: 0000000000000000 R09: 0000000000000000 [ 165.221603][ T6798] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 165.221613][ T6798] R13: 00007fa830dc6038 R14: 00007fa830dc5fa0 R15: 00007ffc6114c338 [ 165.221636][ T6798] [ 165.930551][ T6812] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17 [ 167.288352][ T6813] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18 [ 167.382311][ T6819] netlink: 28 bytes leftover after parsing attributes in process `syz.0.162'. [ 170.918532][ T6864] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input19 [ 171.414082][ T6868] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input20 [ 172.362898][ T6869] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input21 [ 172.794146][ T6871] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input22 [ 173.508013][ T6894] random: crng reseeded on system resumption [ 173.690104][ T6901] input: f¬ as /devices/virtual/input/input23 [ 176.016544][ T6937] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input24 [ 178.011838][ T6966] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input25 [ 179.857714][ T7000] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 181.378847][ T7019] random: crng reseeded on system resumption [ 181.421387][ T7014] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 188.580010][ T7094] nbd: illegal input index -5 [ 190.258759][ T7113] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input26 [ 190.928524][ T7116] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input27 [ 192.541666][ T7144] nbd: illegal input index -5 [ 193.522832][ T7164] ptm ptm4: ldisc open failed (-12), clearing slot 4 [ 194.168398][ T7181] : Can't lookup blockdev [ 194.516399][ T7189] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 195.009232][ T7192] netlink: 8 bytes leftover after parsing attributes in process `syz.1.236'. [ 195.143588][ T7196] nbd: illegal input index -5 [ 196.493797][ T7207] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input28 [ 196.910478][ T7211] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input29 [ 197.326169][ T7192] random: crng reseeded on system resumption [ 197.767783][ T7227] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input30 [ 198.339306][ T7228] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input31 [ 199.587229][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.593822][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 201.257632][ T7284] mkiss: ax0: crc mode is auto. [ 202.589053][ T7312] block nbd9: NBD_DISCONNECT [ 202.827861][ T7316] FAULT_INJECTION: forcing a failure. [ 202.827861][ T7316] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 202.894123][ T7316] CPU: 1 UID: 0 PID: 7316 Comm: syz.2.264 Not tainted syzkaller #0 PREEMPT(full) [ 202.894161][ T7316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 202.894176][ T7316] Call Trace: [ 202.894184][ T7316] [ 202.894195][ T7316] dump_stack_lvl+0x16c/0x1f0 [ 202.894242][ T7316] should_fail_ex+0x512/0x640 [ 202.894293][ T7316] should_fail_alloc_page+0xe7/0x130 [ 202.894333][ T7316] prepare_alloc_pages+0x3c2/0x610 [ 202.894372][ T7316] ? rcu_is_watching+0x12/0xc0 [ 202.894401][ T7316] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 202.894436][ T7316] ? __lock_acquire+0x62e/0x1ce0 [ 202.894478][ T7316] ? css_rstat_updated+0x1c2/0x510 [ 202.894505][ T7316] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 202.894540][ T7316] ? rcu_is_watching+0x12/0xc0 [ 202.894573][ T7316] ? __lock_acquire+0x62e/0x1ce0 [ 202.894603][ T7316] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 202.894640][ T7316] ? policy_nodemask+0xea/0x4e0 [ 202.894674][ T7316] alloc_pages_mpol+0x1fb/0x550 [ 202.894707][ T7316] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 202.894740][ T7316] ? filemap_get_entry+0x1a7/0x3b0 [ 202.894776][ T7316] folio_alloc_noprof+0x20/0x2d0 [ 202.894813][ T7316] filemap_alloc_folio_noprof+0x3a1/0x470 [ 202.894839][ T7316] ? __pfx_filemap_alloc_folio_noprof+0x10/0x10 [ 202.894872][ T7316] __filemap_get_folio+0x5e1/0xc30 [ 202.894911][ T7316] ioctx_alloc+0x761/0x2120 [ 202.894953][ T7316] ? __pfx_ioctx_alloc+0x10/0x10 [ 202.894978][ T7316] ? __might_fault+0x13b/0x190 [ 202.895014][ T7316] __x64_sys_io_setup+0xc9/0x210 [ 202.895044][ T7316] do_syscall_64+0xcd/0x490 [ 202.895082][ T7316] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.895106][ T7316] RIP: 0033:0x7fa830b8ebe9 [ 202.895124][ T7316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 202.895147][ T7316] RSP: 002b:00007fa831986038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 202.895256][ T7316] RAX: ffffffffffffffda RBX: 00007fa830dc6090 RCX: 00007fa830b8ebe9 [ 202.895272][ T7316] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000401 [ 202.895285][ T7316] RBP: 00007fa831986090 R08: 0000000000000000 R09: 0000000000000000 [ 202.895299][ T7316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 202.895312][ T7316] R13: 00007fa830dc6128 R14: 00007fa830dc6090 R15: 00007ffc6114c338 [ 202.895358][ T7316] [ 203.139105][ C1] vkms_vblank_simulate: vblank timer overrun [ 205.209145][ T7354] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input32 [ 206.126888][ T7356] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input33 [ 206.157334][ T7371] FAULT_INJECTION: forcing a failure. [ 206.157334][ T7371] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 206.189224][ T7371] CPU: 1 UID: 0 PID: 7371 Comm: syz.2.280 Not tainted syzkaller #0 PREEMPT(full) [ 206.189256][ T7371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 206.189267][ T7371] Call Trace: [ 206.189274][ T7371] [ 206.189281][ T7371] dump_stack_lvl+0x16c/0x1f0 [ 206.189316][ T7371] should_fail_ex+0x512/0x640 [ 206.189348][ T7371] _copy_to_user+0x32/0xd0 [ 206.189370][ T7371] copy_siginfo_to_user+0x27/0xc0 [ 206.189395][ T7371] x64_setup_rt_frame+0x811/0xcf0 [ 206.189425][ T7371] ? __pfx_x64_setup_rt_frame+0x10/0x10 [ 206.189450][ T7371] ? do_send_specific+0x15c/0x370 [ 206.189475][ T7371] arch_do_signal_or_restart+0x5b4/0x790 [ 206.189499][ T7371] ? __task_pid_nr_ns+0x186/0x500 [ 206.189523][ T7371] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 206.189566][ T7371] exit_to_user_mode_loop+0x84/0x110 [ 206.189595][ T7371] do_syscall_64+0x3f6/0x490 [ 206.189624][ T7371] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 206.189642][ T7371] RIP: 0033:0x7fa830b8ebe9 [ 206.189657][ T7371] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 206.189675][ T7371] RSP: 002b:00007fa8319a7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c8 [ 206.189693][ T7371] RAX: 0000000000000000 RBX: 00007fa830dc5fa0 RCX: 00007fa830b8ebe9 [ 206.189705][ T7371] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000135 [ 206.189715][ T7371] RBP: 00007fa830c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 206.189725][ T7371] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 206.189735][ T7371] R13: 00007fa830dc6038 R14: 00007fa830dc5fa0 R15: 00007ffc6114c338 [ 206.189757][ T7371] [ 206.362480][ C1] vkms_vblank_simulate: vblank timer overrun [ 206.909256][ T7381] FAULT_INJECTION: forcing a failure. [ 206.909256][ T7381] name failslab, interval 1, probability 0, space 0, times 0 [ 206.976558][ T7381] CPU: 1 UID: 0 PID: 7381 Comm: syz.3.282 Not tainted syzkaller #0 PREEMPT(full) [ 206.976587][ T7381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 206.976598][ T7381] Call Trace: [ 206.976604][ T7381] [ 206.976615][ T7381] dump_stack_lvl+0x16c/0x1f0 [ 206.976649][ T7381] should_fail_ex+0x512/0x640 [ 206.976680][ T7381] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 206.976705][ T7381] should_failslab+0xc2/0x120 [ 206.976731][ T7381] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 206.976753][ T7381] ? __kernfs_new_node+0xd2/0x8e0 [ 206.976780][ T7381] __kernfs_new_node+0xd2/0x8e0 [ 206.976807][ T7381] ? __pfx___kernfs_new_node+0x10/0x10 [ 206.976837][ T7381] ? find_held_lock+0x2b/0x80 [ 206.976856][ T7381] ? kernfs_root+0xee/0x2a0 [ 206.976883][ T7381] kernfs_new_node+0x13c/0x1e0 [ 206.976920][ T7381] __kernfs_create_file+0x53/0x350 [ 206.976942][ T7381] sysfs_add_file_mode_ns+0x207/0x3c0 [ 206.976971][ T7381] internal_create_group+0x578/0xf30 [ 206.977001][ T7381] ? __pfx_internal_create_group+0x10/0x10 [ 206.977036][ T7381] ? kernfs_create_link+0x1bd/0x240 [ 206.977058][ T7381] internal_create_groups+0x9d/0x150 [ 206.977085][ T7381] device_add+0x6d1/0x1aa0 [ 206.977108][ T7381] ? __pfx_device_add+0x10/0x10 [ 206.977128][ T7381] ? lockdep_init_map_type+0x5c/0x280 [ 206.977154][ T7381] ? __init_waitqueue_head+0xca/0x150 [ 206.977189][ T7381] netdev_register_kobject+0x1a9/0x3d0 [ 206.977213][ T7381] register_netdevice+0x13dc/0x2270 [ 206.977237][ T7381] ? __pfx_register_netdevice+0x10/0x10 [ 206.977256][ T7381] ? dev_addr_mod+0x316/0x540 [ 206.977282][ T7381] __tun_chr_ioctl+0x1ed9/0x48b0 [ 206.977303][ T7381] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 206.977337][ T7381] ? __pfx___tun_chr_ioctl+0x10/0x10 [ 206.977368][ T7381] ? hook_file_ioctl_common+0x145/0x410 [ 206.977399][ T7381] ? __fget_files+0x20e/0x3c0 [ 206.977424][ T7381] ? __pfx_tun_chr_ioctl+0x10/0x10 [ 206.977446][ T7381] __x64_sys_ioctl+0x18e/0x210 [ 206.977479][ T7381] do_syscall_64+0xcd/0x490 [ 206.977510][ T7381] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 206.977529][ T7381] RIP: 0033:0x7f733138ebe9 [ 206.977545][ T7381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 206.977563][ T7381] RSP: 002b:00007f73321bb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 206.977587][ T7381] RAX: ffffffffffffffda RBX: 00007f73315c5fa0 RCX: 00007f733138ebe9 [ 206.977599][ T7381] RDX: 0000000000000038 RSI: 00000000400454ca RDI: 0000000000000003 [ 206.977612][ T7381] RBP: 00007f7331411e19 R08: 0000000000000000 R09: 0000000000000000 [ 206.977624][ T7381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 206.977635][ T7381] R13: 00007f73315c6038 R14: 00007f73315c5fa0 R15: 00007ffe63d0b2b8 [ 206.977658][ T7381] [ 207.259297][ C1] vkms_vblank_simulate: vblank timer overrun [ 209.769107][ T7425] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input34 [ 210.320498][ T7427] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input35 [ 210.807192][ T30] audit: type=1400 audit(1757380113.381:2): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=7438 comm="syz.2.298" [ 213.330845][ T7509] nbd: illegal input index -5 [ 213.761755][ T7516] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input36 [ 214.481619][ T7517] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input37 [ 214.898387][ T7546] netlink: 8 bytes leftover after parsing attributes in process `syz.1.316'. [ 216.020049][ T7569] nbd: illegal input index -5 [ 217.032510][ T5882] Bluetooth: hci3: command 0x0406 tx timeout [ 217.033008][ T5877] Bluetooth: hci1: command 0x0406 tx timeout [ 217.038638][ T5882] Bluetooth: hci0: command 0x0406 tx timeout [ 217.047620][ T5880] Bluetooth: hci2: command 0x0406 tx timeout [ 217.496947][ T7590] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input38 [ 217.949110][ T7591] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input39 [ 218.646701][ T7616] mkiss: ax0: crc mode is auto. [ 220.594121][ T7645] : Can't lookup blockdev [ 221.082501][ T7652] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input40 [ 221.529435][ T7660] mkiss: ax0: crc mode is auto. [ 221.577092][ T7654] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input41 [ 222.652817][ T30] audit: type=1800 audit(1757382179.167:3): pid=7671 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.348" name="features" dev="configfs" ino=15533 res=0 errno=0 [ 223.150049][ T7690] : Can't lookup blockdev [ 223.519175][ T7700] FAULT_INJECTION: forcing a failure. [ 223.519175][ T7700] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 223.570089][ T7698] sp0: Synchronizing with TNC [ 223.635696][ T7700] CPU: 1 UID: 0 PID: 7700 Comm: syz.0.353 Not tainted syzkaller #0 PREEMPT(full) [ 223.635732][ T7700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 223.635748][ T7700] Call Trace: [ 223.635758][ T7700] [ 223.635769][ T7700] dump_stack_lvl+0x16c/0x1f0 [ 223.635817][ T7700] should_fail_ex+0x512/0x640 [ 223.635866][ T7700] _copy_from_user+0x2e/0xd0 [ 223.635900][ T7700] snd_pcm_oss_write2+0x1c2/0x410 [ 223.635936][ T7700] ? __pfx_snd_pcm_oss_write2+0x10/0x10 [ 223.635966][ T7700] ? snd_pcm_kernel_ioctl+0x267/0x2e0 [ 223.636013][ T7700] snd_pcm_oss_write+0x711/0xa10 [ 223.636052][ T7700] ? security_file_permission+0x71/0x210 [ 223.636100][ T7700] ? __pfx_snd_pcm_oss_write+0x10/0x10 [ 223.636135][ T7700] vfs_write+0x29d/0x11d0 [ 223.636188][ T7700] ? __pfx_vfs_write+0x10/0x10 [ 223.636220][ T7700] ? find_held_lock+0x2b/0x80 [ 223.636251][ T7700] ? __fget_files+0x204/0x3c0 [ 223.636289][ T7700] ? __fget_files+0x20e/0x3c0 [ 223.636335][ T7700] ksys_write+0x12a/0x250 [ 223.636368][ T7700] ? __pfx_ksys_write+0x10/0x10 [ 223.636414][ T7700] do_syscall_64+0xcd/0x490 [ 223.636461][ T7700] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 223.636489][ T7700] RIP: 0033:0x7f58e8f8ebe9 [ 223.636513][ T7700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 223.636540][ T7700] RSP: 002b:00007f58e71f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 223.636568][ T7700] RAX: ffffffffffffffda RBX: 00007f58e91c6090 RCX: 00007f58e8f8ebe9 [ 223.636587][ T7700] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003 [ 223.636603][ T7700] RBP: 00007f58e71f6090 R08: 0000000000000000 R09: 0000000000000000 [ 223.636619][ T7700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 223.636636][ T7700] R13: 00007f58e91c6128 R14: 00007f58e91c6090 R15: 00007ffe1793eae8 [ 223.636677][ T7700] [ 223.832803][ C1] vkms_vblank_simulate: vblank timer overrun [ 224.205858][ T7708] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input42 [ 224.510074][ T7711] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input43 [ 225.881852][ T7731] : Can't lookup blockdev [ 226.653476][ T7745] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input44 [ 228.022329][ T7752] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input45 [ 229.133804][ T7787] : Can't lookup blockdev [ 231.679599][ T7823] : Can't lookup blockdev [ 231.753196][ T7828] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input46 [ 232.170992][ T7829] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input47 [ 235.883045][ T7880] netlink: 28 bytes leftover after parsing attributes in process `syz.2.398'. [ 238.960875][ T7914] : Can't lookup blockdev [ 239.175570][ T7891] netlink: 268 bytes leftover after parsing attributes in process `syz.1.400'. [ 240.419403][ T7891] syz.1.400 (7891) used greatest stack depth: 19752 bytes left [ 241.119848][ T7945] : Can't lookup blockdev [ 241.215584][ T7949] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input48 [ 241.484556][ T7953] netlink: 4 bytes leftover after parsing attributes in process `syz.0.417'. [ 242.175503][ T7956] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input49 [ 243.440457][ T7983] netlink: 'syz.2.422': attribute type 1 has an invalid length. [ 244.550396][ T7999] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input50 [ 245.162874][ T8000] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input51 [ 246.465575][ T8039] __vm_enough_memory: pid: 8039, comm: syz.1.437, bytes: 4398046511104 not enough memory for the allocation [ 246.752064][ T8046] : Can't lookup blockdev [ 247.219576][ T8056] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input52 [ 247.704112][ T8059] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input53 [ 247.749766][ T8062] Invalid ELF header magic: != ELF [ 249.913671][ T8095] : Can't lookup blockdev [ 250.352156][ T8101] ICMPv6: process `syz.3.452' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 250.382155][ T8109] random: crng reseeded on system resumption [ 252.008041][ T8132] random: crng reseeded on system resumption [ 253.161450][ T8152] : Can't lookup blockdev [ 253.768192][ T8168] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input54 [ 254.089954][ T8171] FAULT_INJECTION: forcing a failure. [ 254.089954][ T8171] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 254.090011][ T8171] CPU: 1 UID: 0 PID: 8171 Comm: syz.3.468 Not tainted syzkaller #0 PREEMPT(full) [ 254.090032][ T8171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 254.090042][ T8171] Call Trace: [ 254.090048][ T8171] [ 254.090054][ T8171] dump_stack_lvl+0x16c/0x1f0 [ 254.090086][ T8171] should_fail_ex+0x512/0x640 [ 254.090118][ T8171] _copy_from_iter+0x29f/0x1720 [ 254.090139][ T8171] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 254.090169][ T8171] ? __pfx__copy_from_iter+0x10/0x10 [ 254.090189][ T8171] ? alloc_pages_mpol+0x25a/0x550 [ 254.090227][ T8171] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 254.090255][ T8171] copy_page_from_iter+0xde/0x180 [ 254.090277][ T8171] anon_pipe_write+0xbe7/0x1a90 [ 254.090309][ T8171] ? __pfx_anon_pipe_write+0x10/0x10 [ 254.090332][ T8171] ? common_file_perm+0x1a9/0x340 [ 254.090357][ T8171] ? bpf_lsm_file_permission+0x9/0x10 [ 254.090383][ T8171] ? security_file_permission+0x71/0x210 [ 254.090409][ T8171] ? rw_verify_area+0xcf/0x6c0 [ 254.090430][ T8171] vfs_write+0x7d0/0x11d0 [ 254.090451][ T8171] ? __pfx_anon_pipe_write+0x10/0x10 [ 254.090476][ T8171] ? __pfx_vfs_write+0x10/0x10 [ 254.090495][ T8171] ? find_held_lock+0x2b/0x80 [ 254.090527][ T8171] ksys_write+0x1f8/0x250 [ 254.090547][ T8171] ? __pfx_ksys_write+0x10/0x10 [ 254.090575][ T8171] do_syscall_64+0xcd/0x490 [ 254.090604][ T8171] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 254.090622][ T8171] RIP: 0033:0x7f733138ebe9 [ 254.090636][ T8171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 254.090654][ T8171] RSP: 002b:00007f73321bb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 254.090671][ T8171] RAX: ffffffffffffffda RBX: 00007f73315c5fa0 RCX: 00007f733138ebe9 [ 254.090682][ T8171] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 254.090692][ T8171] RBP: 00007f73321bb090 R08: 0000000000000000 R09: 0000000000000000 [ 254.090703][ T8171] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 254.090713][ T8171] R13: 00007f73315c6038 R14: 00007f73315c5fa0 R15: 00007ffe63d0b2b8 [ 254.090735][ T8171] [ 254.211457][ T8173] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input55 [ 255.724706][ T8200] : Can't lookup blockdev [ 257.040029][ T8223] binder: 8220:8223 ioctl 40046210 0 returned -14 [ 257.106566][ T8223] binder: 8220:8223 ioctl 40046210 0 returned -14 [ 257.188055][ T8223] binder: 8220:8223 ioctl 40046210 0 returned -14 [ 257.628343][ T8243] : Can't lookup blockdev [ 258.962007][ T8265] FAULT_INJECTION: forcing a failure. [ 258.962007][ T8265] name failslab, interval 1, probability 0, space 0, times 0 [ 259.037407][ T8265] CPU: 0 UID: 0 PID: 8265 Comm: syz.1.492 Not tainted syzkaller #0 PREEMPT(full) [ 259.037452][ T8265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 259.037470][ T8265] Call Trace: [ 259.037480][ T8265] [ 259.037492][ T8265] dump_stack_lvl+0x16c/0x1f0 [ 259.037546][ T8265] should_fail_ex+0x512/0x640 [ 259.037593][ T8265] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 259.037635][ T8265] should_failslab+0xc2/0x120 [ 259.037675][ T8265] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 259.037709][ T8265] ? __proc_create+0xc3/0x8e0 [ 259.037750][ T8265] ? __proc_create+0x2ce/0x8e0 [ 259.037798][ T8265] __proc_create+0x2ce/0x8e0 [ 259.037857][ T8265] ? __pfx___proc_create+0x10/0x10 [ 259.037909][ T8265] ? __pfx_can_rcvlist_sff_proc_show+0x10/0x10 [ 259.037964][ T8265] _proc_mkdir+0xb9/0x210 [ 259.038009][ T8265] ? __pfx__proc_mkdir+0x10/0x10 [ 259.038059][ T8265] ? can_init_proc+0x37f/0x4d0 [ 259.038104][ T8265] ? __pfx_canbcm_pernet_init+0x10/0x10 [ 259.038152][ T8265] canbcm_pernet_init+0x4d/0xa0 [ 259.038200][ T8265] ops_init+0x1df/0x5f0 [ 259.038253][ T8265] setup_net+0x10f/0x380 [ 259.038277][ T8265] ? lockdep_init_map_type+0x5c/0x280 [ 259.038321][ T8265] ? __pfx_setup_net+0x10/0x10 [ 259.038357][ T8265] ? debug_mutex_init+0x37/0x70 [ 259.038394][ T8265] copy_net_ns+0x2a6/0x5f0 [ 259.038431][ T8265] create_new_namespaces+0x3ea/0xa90 [ 259.038477][ T8265] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 259.038517][ T8265] ksys_unshare+0x45b/0xa40 [ 259.038560][ T8265] ? __pfx_ksys_unshare+0x10/0x10 [ 259.038604][ T8265] ? xfd_validate_state+0x61/0x180 [ 259.038662][ T8265] __x64_sys_unshare+0x31/0x40 [ 259.038702][ T8265] do_syscall_64+0xcd/0x490 [ 259.038753][ T8265] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 259.038783][ T8265] RIP: 0033:0x7fe6ce38ebe9 [ 259.038808][ T8265] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 259.038844][ T8265] RSP: 002b:00007fe6cc5ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 259.038873][ T8265] RAX: ffffffffffffffda RBX: 00007fe6ce5c5fa0 RCX: 00007fe6ce38ebe9 [ 259.038892][ T8265] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 259.038910][ T8265] RBP: 00007fe6ce411e19 R08: 0000000000000000 R09: 0000000000000000 [ 259.038928][ T8265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 259.038945][ T8265] R13: 00007fe6ce5c6038 R14: 00007fe6ce5c5fa0 R15: 00007ffe2242e9d8 [ 259.038987][ T8265] [ 259.284844][ C0] vkms_vblank_simulate: vblank timer overrun [ 259.815749][ T8279] : Can't lookup blockdev [ 260.377321][ T8295] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input56 [ 260.700023][ T8296] FAULT_INJECTION: forcing a failure. [ 260.700023][ T8296] name failslab, interval 1, probability 0, space 0, times 0 [ 260.727604][ T8296] CPU: 0 UID: 0 PID: 8296 Comm: syz.3.498 Not tainted syzkaller #0 PREEMPT(full) [ 260.727644][ T8296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 260.727660][ T8296] Call Trace: [ 260.727669][ T8296] [ 260.727680][ T8296] dump_stack_lvl+0x16c/0x1f0 [ 260.727729][ T8296] should_fail_ex+0x512/0x640 [ 260.727773][ T8296] ? __kmalloc_noprof+0xbf/0x510 [ 260.727810][ T8296] ? kernfs_fop_write_iter+0x237/0x510 [ 260.727831][ T8296] should_failslab+0xc2/0x120 [ 260.727866][ T8296] __kmalloc_noprof+0xd2/0x510 [ 260.727902][ T8296] kernfs_fop_write_iter+0x237/0x510 [ 260.727936][ T8296] vfs_write+0x7d0/0x11d0 [ 260.727971][ T8296] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 260.727994][ T8296] ? __pfx___mutex_lock+0x10/0x10 [ 260.728033][ T8296] ? __pfx_vfs_write+0x10/0x10 [ 260.728103][ T8296] ksys_write+0x12a/0x250 [ 260.728137][ T8296] ? __pfx_ksys_write+0x10/0x10 [ 260.728181][ T8296] do_syscall_64+0xcd/0x490 [ 260.728228][ T8296] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 260.728257][ T8296] RIP: 0033:0x7f733138ebe9 [ 260.728281][ T8296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 260.728308][ T8296] RSP: 002b:00007f7332179038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 260.728335][ T8296] RAX: ffffffffffffffda RBX: 00007f73315c6180 RCX: 00007f733138ebe9 [ 260.728355][ T8296] RDX: 0000000000000081 RSI: 00002000000002c0 RDI: 0000000000000005 [ 260.728372][ T8296] RBP: 00007f7332179090 R08: 0000000000000000 R09: 0000000000000000 [ 260.728388][ T8296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 260.728404][ T8296] R13: 00007f73315c6218 R14: 00007f73315c6180 R15: 00007ffe63d0b2b8 [ 260.728444][ T8296] [ 260.907982][ C0] vkms_vblank_simulate: vblank timer overrun [ 261.117206][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 261.132633][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 261.494347][ T8299] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input57 [ 262.163659][ T8313] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input58 [ 262.565785][ T8323] netlink: 12 bytes leftover after parsing attributes in process `syz.2.504'. [ 262.832710][ T8327] block nbd9: NBD_DISCONNECT [ 262.874149][ T8322] ======================================================= [ 262.874149][ T8322] WARNING: The mand mount option has been deprecated and [ 262.874149][ T8322] and is ignored by this kernel. Remove the mand [ 262.874149][ T8322] option from the mount to silence this warning. [ 262.874149][ T8322] ======================================================= [ 262.909311][ C0] vkms_vblank_simulate: vblank timer overrun [ 262.944705][ T8328] FAULT_INJECTION: forcing a failure. [ 262.944705][ T8328] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 262.963507][ T8328] CPU: 0 UID: 0 PID: 8328 Comm: syz.3.506 Not tainted syzkaller #0 PREEMPT(full) [ 262.963534][ T8328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 262.963544][ T8328] Call Trace: [ 262.963550][ T8328] [ 262.963557][ T8328] dump_stack_lvl+0x16c/0x1f0 [ 262.963590][ T8328] should_fail_ex+0x512/0x640 [ 262.963623][ T8328] should_fail_alloc_page+0xe7/0x130 [ 262.963650][ T8328] prepare_alloc_pages+0x3c2/0x610 [ 262.963678][ T8328] ? rcu_is_watching+0x12/0xc0 [ 262.963699][ T8328] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 262.963725][ T8328] ? __lock_acquire+0x62e/0x1ce0 [ 262.963751][ T8328] ? css_rstat_updated+0x1c2/0x510 [ 262.963772][ T8328] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 262.963798][ T8328] ? rcu_is_watching+0x12/0xc0 [ 262.963823][ T8328] ? __lock_acquire+0x62e/0x1ce0 [ 262.963846][ T8328] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 262.963874][ T8328] ? policy_nodemask+0xea/0x4e0 [ 262.963915][ T8328] alloc_pages_mpol+0x1fb/0x550 [ 262.963940][ T8328] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 262.963966][ T8328] ? filemap_get_entry+0x1a7/0x3b0 [ 262.963993][ T8328] folio_alloc_noprof+0x20/0x2d0 [ 262.964021][ T8328] filemap_alloc_folio_noprof+0x3a1/0x470 [ 262.964041][ T8328] ? __pfx_filemap_alloc_folio_noprof+0x10/0x10 [ 262.964066][ T8328] __filemap_get_folio+0x5e1/0xc30 [ 262.964096][ T8328] ioctx_alloc+0x761/0x2120 [ 262.964127][ T8328] ? __pfx_ioctx_alloc+0x10/0x10 [ 262.964146][ T8328] ? __might_fault+0x13b/0x190 [ 262.964173][ T8328] __x64_sys_io_setup+0xc9/0x210 [ 262.964195][ T8328] do_syscall_64+0xcd/0x490 [ 262.964224][ T8328] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 262.964242][ T8328] RIP: 0033:0x7f733138ebe9 [ 262.964257][ T8328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 262.964274][ T8328] RSP: 002b:00007f733219a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 262.964292][ T8328] RAX: ffffffffffffffda RBX: 00007f73315c6090 RCX: 00007f733138ebe9 [ 262.964304][ T8328] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000401 [ 262.964314][ T8328] RBP: 00007f733219a090 R08: 0000000000000000 R09: 0000000000000000 [ 262.964324][ T8328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 262.964334][ T8328] R13: 00007f73315c6128 R14: 00007f73315c6090 R15: 00007ffe63d0b2b8 [ 262.964356][ T8328] [ 263.208448][ C0] vkms_vblank_simulate: vblank timer overrun [ 263.665454][ T8314] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input59 [ 263.756826][ T8331] netlink: 'syz.2.508': attribute type 11 has an invalid length. [ 263.798833][ T8331] netlink: 'syz.2.508': attribute type 11 has an invalid length. [ 264.124616][ T8337] : Can't lookup blockdev [ 265.747221][ T8365] nbd: must specify at least one socket [ 266.935052][ T8385] FAULT_INJECTION: forcing a failure. [ 266.935052][ T8385] name failslab, interval 1, probability 0, space 0, times 0 [ 266.948088][ T8385] CPU: 0 UID: 0 PID: 8385 Comm: syz.2.520 Not tainted syzkaller #0 PREEMPT(full) [ 266.948121][ T8385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 266.948133][ T8385] Call Trace: [ 266.948140][ T8385] [ 266.948147][ T8385] dump_stack_lvl+0x16c/0x1f0 [ 266.948180][ T8385] should_fail_ex+0x512/0x640 [ 266.948211][ T8385] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 266.948236][ T8385] should_failslab+0xc2/0x120 [ 266.948261][ T8385] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 266.948284][ T8385] ? __kernfs_new_node+0xd2/0x8e0 [ 266.948311][ T8385] __kernfs_new_node+0xd2/0x8e0 [ 266.948338][ T8385] ? __pfx___kernfs_new_node+0x10/0x10 [ 266.948368][ T8385] ? find_held_lock+0x2b/0x80 [ 266.948387][ T8385] ? kernfs_root+0xee/0x2a0 [ 266.948414][ T8385] kernfs_new_node+0x13c/0x1e0 [ 266.948445][ T8385] __kernfs_create_file+0x53/0x350 [ 266.948466][ T8385] sysfs_add_file_mode_ns+0x207/0x3c0 [ 266.948495][ T8385] internal_create_group+0x578/0xf30 [ 266.948525][ T8385] ? __pfx_internal_create_group+0x10/0x10 [ 266.948553][ T8385] ? kernfs_create_link+0x1bd/0x240 [ 266.948576][ T8385] internal_create_groups+0x9d/0x150 [ 266.948603][ T8385] device_add+0x6d1/0x1aa0 [ 266.948626][ T8385] ? __pfx_device_add+0x10/0x10 [ 266.948646][ T8385] ? lockdep_init_map_type+0x5c/0x280 [ 266.948673][ T8385] ? __init_waitqueue_head+0xca/0x150 [ 266.948707][ T8385] netdev_register_kobject+0x1a9/0x3d0 [ 266.948732][ T8385] register_netdevice+0x13dc/0x2270 [ 266.948756][ T8385] ? __pfx_register_netdevice+0x10/0x10 [ 266.948775][ T8385] ? dev_addr_mod+0x316/0x540 [ 266.948803][ T8385] __tun_chr_ioctl+0x1ed9/0x48b0 [ 266.948825][ T8385] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 266.948859][ T8385] ? __pfx___tun_chr_ioctl+0x10/0x10 [ 266.948883][ T8385] ? hook_file_ioctl_common+0x145/0x410 [ 266.948914][ T8385] ? __fget_files+0x20e/0x3c0 [ 266.948937][ T8385] ? __pfx_tun_chr_ioctl+0x10/0x10 [ 266.948960][ T8385] __x64_sys_ioctl+0x18e/0x210 [ 266.948991][ T8385] do_syscall_64+0xcd/0x490 [ 266.949022][ T8385] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 266.949042][ T8385] RIP: 0033:0x7fa830b8ebe9 [ 266.949068][ T8385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 266.949088][ T8385] RSP: 002b:00007fa8319a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 266.949108][ T8385] RAX: ffffffffffffffda RBX: 00007fa830dc5fa0 RCX: 00007fa830b8ebe9 [ 266.949121][ T8385] RDX: 0000000000000038 RSI: 00000000400454ca RDI: 0000000000000003 [ 266.949133][ T8385] RBP: 00007fa830c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 266.949144][ T8385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 266.949157][ T8385] R13: 00007fa830dc6038 R14: 00007fa830dc5fa0 R15: 00007ffc6114c338 [ 266.949182][ T8385] [ 270.085146][ T8420] : Can't lookup blockdev [ 270.590887][ T8436] FAULT_INJECTION: forcing a failure. [ 270.590887][ T8436] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 270.657686][ T8436] CPU: 1 UID: 0 PID: 8436 Comm: syz.0.536 Not tainted syzkaller #0 PREEMPT(full) [ 270.657725][ T8436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 270.657741][ T8436] Call Trace: [ 270.657751][ T8436] [ 270.657761][ T8436] dump_stack_lvl+0x16c/0x1f0 [ 270.657809][ T8436] should_fail_ex+0x512/0x640 [ 270.657858][ T8436] _copy_from_user+0x2e/0xd0 [ 270.657891][ T8436] __tun_chr_ioctl+0x1de/0x48b0 [ 270.657922][ T8436] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 270.657975][ T8436] ? __pfx___tun_chr_ioctl+0x10/0x10 [ 270.658011][ T8436] ? hook_file_ioctl_common+0x145/0x410 [ 270.658065][ T8436] ? __fget_files+0x20e/0x3c0 [ 270.658098][ T8436] ? __pfx_tun_chr_ioctl+0x10/0x10 [ 270.658119][ T8436] __x64_sys_ioctl+0x18e/0x210 [ 270.658149][ T8436] do_syscall_64+0xcd/0x490 [ 270.658178][ T8436] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 270.658196][ T8436] RIP: 0033:0x7f58e8f8ebe9 [ 270.658211][ T8436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 270.658228][ T8436] RSP: 002b:00007f58e9d32038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 270.658246][ T8436] RAX: ffffffffffffffda RBX: 00007f58e91c5fa0 RCX: 00007f58e8f8ebe9 [ 270.658257][ T8436] RDX: 0000000000000038 RSI: 00000000400454ca RDI: 0000000000000003 [ 270.658268][ T8436] RBP: 00007f58e9d32090 R08: 0000000000000000 R09: 0000000000000000 [ 270.658278][ T8436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 270.658288][ T8436] R13: 00007f58e91c6038 R14: 00007f58e91c5fa0 R15: 00007ffe1793eae8 [ 270.658310][ T8436] [ 271.038478][ T8441] nbd: illegal input index -5 [ 271.414575][ T8452] : Can't lookup blockdev [ 271.456826][ T8454] FAULT_INJECTION: forcing a failure. [ 271.456826][ T8454] name failslab, interval 1, probability 0, space 0, times 0 [ 271.534384][ T8454] CPU: 1 UID: 0 PID: 8454 Comm: syz.3.542 Not tainted syzkaller #0 PREEMPT(full) [ 271.534412][ T8454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 271.534424][ T8454] Call Trace: [ 271.534430][ T8454] [ 271.534437][ T8454] dump_stack_lvl+0x16c/0x1f0 [ 271.534471][ T8454] should_fail_ex+0x512/0x640 [ 271.534499][ T8454] ? __kmalloc_noprof+0xbf/0x510 [ 271.534523][ T8454] ? __do_sys_futex_waitv+0x127/0x2c0 [ 271.534548][ T8454] should_failslab+0xc2/0x120 [ 271.534574][ T8454] __kmalloc_noprof+0xd2/0x510 [ 271.534602][ T8454] __do_sys_futex_waitv+0x127/0x2c0 [ 271.534628][ T8454] ? __pfx___do_sys_futex_waitv+0x10/0x10 [ 271.534656][ T8454] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 271.534693][ T8454] do_syscall_64+0xcd/0x490 [ 271.534746][ T8454] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 271.534767][ T8454] RIP: 0033:0x7f733138ebe9 [ 271.534783][ T8454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 271.534801][ T8454] RSP: 002b:00007f73321bb038 EFLAGS: 00000246 ORIG_RAX: 00000000000001c1 [ 271.534818][ T8454] RAX: ffffffffffffffda RBX: 00007f73315c5fa0 RCX: 00007f733138ebe9 [ 271.534830][ T8454] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000200000000300 [ 271.534841][ T8454] RBP: 00007f7331411e19 R08: 0000000000000000 R09: 0000000000000000 [ 271.534856][ T8454] R10: 0000200000000340 R11: 0000000000000246 R12: 0000000000000000 [ 271.534867][ T8454] R13: 00007f73315c6038 R14: 00007f73315c5fa0 R15: 00007ffe63d0b2b8 [ 271.534890][ T8454] [ 273.560198][ T8486] : Can't lookup blockdev [ 273.975273][ T8488] FAULT_INJECTION: forcing a failure. [ 273.975273][ T8488] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 273.993351][ T8488] CPU: 0 UID: 0 PID: 8488 Comm: syz.0.550 Not tainted syzkaller #0 PREEMPT(full) [ 273.993392][ T8488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 273.993408][ T8488] Call Trace: [ 273.993417][ T8488] [ 273.993429][ T8488] dump_stack_lvl+0x16c/0x1f0 [ 273.993478][ T8488] should_fail_ex+0x512/0x640 [ 273.993529][ T8488] strncpy_from_user+0x3b/0x2e0 [ 273.993577][ T8488] getname_flags.part.0+0x8f/0x550 [ 273.993628][ T8488] __x64_sys_unlink+0xb0/0x110 [ 273.993665][ T8488] do_syscall_64+0xcd/0x490 [ 273.993713][ T8488] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 273.993752][ T8488] RIP: 0033:0x7f58e8f8ebe9 [ 273.993775][ T8488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 273.993803][ T8488] RSP: 002b:00007f58e71d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057 [ 273.993830][ T8488] RAX: ffffffffffffffda RBX: 00007f58e91c6180 RCX: 00007f58e8f8ebe9 [ 273.993849][ T8488] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 273.993865][ T8488] RBP: 00007f58e71d5090 R08: 0000000000000000 R09: 0000000000000000 [ 273.993882][ T8488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 273.993898][ T8488] R13: 00007f58e91c6218 R14: 00007f58e91c6180 R15: 00007ffe1793eae8 [ 273.993937][ T8488] [ 275.760675][ T8510] FAULT_INJECTION: forcing a failure. [ 275.760675][ T8510] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 275.801858][ T8510] CPU: 0 UID: 0 PID: 8510 Comm: syz.2.557 Not tainted syzkaller #0 PREEMPT(full) [ 275.801901][ T8510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 275.801919][ T8510] Call Trace: [ 275.801929][ T8510] [ 275.801941][ T8510] dump_stack_lvl+0x16c/0x1f0 [ 275.802002][ T8510] should_fail_ex+0x512/0x640 [ 275.802056][ T8510] _copy_from_user+0x2e/0xd0 [ 275.802092][ T8510] futex_parse_waitv+0x101/0x520 [ 275.802135][ T8510] ? __pfx_futex_wake_mark+0x10/0x10 [ 275.802183][ T8510] ? __pfx_futex_parse_waitv+0x10/0x10 [ 275.802228][ T8510] ? trace_kmalloc+0x2b/0xd0 [ 275.802269][ T8510] ? __kmalloc_noprof+0x242/0x510 [ 275.802315][ T8510] __do_sys_futex_waitv+0x14f/0x2c0 [ 275.802357][ T8510] ? __pfx___do_sys_futex_waitv+0x10/0x10 [ 275.802405][ T8510] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 275.802469][ T8510] do_syscall_64+0xcd/0x490 [ 275.802519][ T8510] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.802549][ T8510] RIP: 0033:0x7fa830b8ebe9 [ 275.802572][ T8510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 275.802600][ T8510] RSP: 002b:00007fa8319a7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001c1 [ 275.802629][ T8510] RAX: ffffffffffffffda RBX: 00007fa830dc5fa0 RCX: 00007fa830b8ebe9 [ 275.802649][ T8510] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000200000000300 [ 275.802667][ T8510] RBP: 00007fa830c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 275.802685][ T8510] R10: 0000200000000340 R11: 0000000000000246 R12: 0000000000000000 [ 275.802703][ T8510] R13: 00007fa830dc6038 R14: 00007fa830dc5fa0 R15: 00007ffc6114c338 [ 275.802743][ T8510] [ 275.980369][ T8512] nbd: illegal input index -5 [ 276.052046][ T8513] netlink: 20 bytes leftover after parsing attributes in process `syz.3.556'. [ 276.245857][ T8517] netlink: 342 bytes leftover after parsing attributes in process `syz.2.559'. [ 276.486172][ T8518] i2c i2c-0: new_device: Can't parse I2C address [ 276.992471][ T8527] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input60 [ 277.043437][ T8516] ima: policy update failed [ 277.049108][ T30] audit: type=1802 audit(1757382233.610:4): pid=8516 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.559" res=0 errno=0 [ 277.968777][ T8533] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input61 [ 278.294361][ T8531] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input62 [ 279.020725][ T8534] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input63 [ 280.131574][ T8584] nbd: illegal input index -5 [ 281.171911][ T8599] : Can't lookup blockdev [ 281.734928][ T8610] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 282.724525][ T8628] FAULT_INJECTION: forcing a failure. [ 282.724525][ T8628] name failslab, interval 1, probability 0, space 0, times 0 [ 282.790851][ T8628] CPU: 1 UID: 0 PID: 8628 Comm: syz.2.580 Not tainted syzkaller #0 PREEMPT(full) [ 282.790891][ T8628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 282.790908][ T8628] Call Trace: [ 282.790917][ T8628] [ 282.790929][ T8628] dump_stack_lvl+0x16c/0x1f0 [ 282.790977][ T8628] should_fail_ex+0x512/0x640 [ 282.791021][ T8628] ? __kmalloc_noprof+0xbf/0x510 [ 282.791058][ T8628] ? alloc_pipe_info+0x1ec/0x590 [ 282.791093][ T8628] should_failslab+0xc2/0x120 [ 282.791132][ T8628] __kmalloc_noprof+0xd2/0x510 [ 282.791175][ T8628] alloc_pipe_info+0x1ec/0x590 [ 282.791218][ T8628] splice_direct_to_actor+0x77d/0xa30 [ 282.791251][ T8628] ? __lock_acquire+0x62e/0x1ce0 [ 282.791287][ T8628] ? __pfx_direct_splice_actor+0x10/0x10 [ 282.791320][ T8628] ? __pfx_aa_file_perm+0x10/0x10 [ 282.791363][ T8628] ? find_held_lock+0x2b/0x80 [ 282.791397][ T8628] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 282.791425][ T8628] ? get_pid_task+0xfc/0x250 [ 282.791463][ T8628] do_splice_direct+0x174/0x240 [ 282.791482][ T8628] ? __pfx_do_splice_direct+0x10/0x10 [ 282.791501][ T8628] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 282.791520][ T8628] ? bpf_lsm_file_permission+0x9/0x10 [ 282.791546][ T8628] ? security_file_permission+0x71/0x210 [ 282.791572][ T8628] ? rw_verify_area+0xcf/0x6c0 [ 282.791592][ T8628] do_sendfile+0xb06/0xe50 [ 282.791616][ T8628] ? __pfx_do_sendfile+0x10/0x10 [ 282.791643][ T8628] ? __fget_files+0x20e/0x3c0 [ 282.791669][ T8628] __x64_sys_sendfile64+0x1d8/0x220 [ 282.791693][ T8628] ? ksys_write+0x1ac/0x250 [ 282.791713][ T8628] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 282.791745][ T8628] do_syscall_64+0xcd/0x490 [ 282.791774][ T8628] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 282.791792][ T8628] RIP: 0033:0x7fa830b8ebe9 [ 282.791806][ T8628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 282.791823][ T8628] RSP: 002b:00007fa8319a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 282.791841][ T8628] RAX: ffffffffffffffda RBX: 00007fa830dc5fa0 RCX: 00007fa830b8ebe9 [ 282.791852][ T8628] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 282.791862][ T8628] RBP: 00007fa8319a7090 R08: 0000000000000000 R09: 0000000000000000 [ 282.791875][ T8628] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001 [ 282.791885][ T8628] R13: 00007fa830dc6038 R14: 00007fa830dc5fa0 R15: 00007ffc6114c338 [ 282.791907][ T8628] [ 283.245312][ T8632] nbd: illegal input index -5 [ 287.205955][ T8682] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input65 [ 287.287299][ T8676] syz.1.593 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 287.812439][ T8685] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input66 [ 289.370019][ T8724] random: crng reseeded on system resumption [ 289.383358][ T8728] nbd: illegal input index -5 [ 290.734178][ T8742] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input67 [ 290.823078][ T8745] random: crng reseeded on system resumption [ 291.189235][ T8751] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input68 [ 291.529030][ T8749] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input69 [ 292.407876][ T8771] netlink: 12 bytes leftover after parsing attributes in process `syz.3.614'. [ 292.476408][ T8771] netlink: 12 bytes leftover after parsing attributes in process `syz.3.614'. [ 293.140958][ T8785] nbd: illegal input index -5 [ 293.183880][ T8778] FAULT_INJECTION: forcing a failure. [ 293.183880][ T8778] name failslab, interval 1, probability 0, space 0, times 0 [ 293.244560][ T8778] CPU: 1 UID: 0 PID: 8778 Comm: syz.3.615 Not tainted syzkaller #0 PREEMPT(full) [ 293.244604][ T8778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 293.244619][ T8778] Call Trace: [ 293.244630][ T8778] [ 293.244642][ T8778] dump_stack_lvl+0x16c/0x1f0 [ 293.244694][ T8778] should_fail_ex+0x512/0x640 [ 293.244743][ T8778] ? __kmalloc_noprof+0xbf/0x510 [ 293.244782][ T8778] ? lsm_blob_alloc+0x68/0x90 [ 293.244808][ T8778] should_failslab+0xc2/0x120 [ 293.244849][ T8778] __kmalloc_noprof+0xd2/0x510 [ 293.244903][ T8778] lsm_blob_alloc+0x68/0x90 [ 293.244932][ T8778] security_sk_alloc+0x30/0x270 [ 293.244969][ T8778] sk_prot_alloc+0x1c7/0x2a0 [ 293.245006][ T8778] sk_alloc+0x36/0xc20 [ 293.245052][ T8778] __netlink_create+0x5e/0x2c0 [ 293.245089][ T8778] ? __wake_up+0x3f/0x60 [ 293.245125][ T8778] netlink_create+0x39e/0x620 [ 293.245166][ T8778] ? __pfx_genl_bind+0x10/0x10 [ 293.245194][ T8778] ? __pfx_genl_unbind+0x10/0x10 [ 293.245220][ T8778] ? __pfx_genl_release+0x10/0x10 [ 293.245256][ T8778] __sock_create+0x335/0x8d0 [ 293.245299][ T8778] __sys_socket+0x14d/0x260 [ 293.245336][ T8778] ? __pfx___sys_socket+0x10/0x10 [ 293.245375][ T8778] ? do_user_addr_fault+0x843/0x1370 [ 293.245432][ T8778] __x64_sys_socket+0x72/0xb0 [ 293.245468][ T8778] ? lockdep_hardirqs_on+0x7c/0x110 [ 293.245512][ T8778] do_syscall_64+0xcd/0x490 [ 293.245562][ T8778] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 293.245592][ T8778] RIP: 0033:0x7f7331390b07 [ 293.245616][ T8778] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 293.245644][ T8778] RSP: 002b:00007f7332198fa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 293.245674][ T8778] RAX: ffffffffffffffda RBX: 00007f73315c6090 RCX: 00007f7331390b07 [ 293.245694][ T8778] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 293.245712][ T8778] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 293.245730][ T8778] R10: 0000200000000180 R11: 0000000000000286 R12: 0000000000000000 [ 293.245747][ T8778] R13: 00007f73315c6128 R14: 00007f73315c6090 R15: 00007ffe63d0b2b8 [ 293.245788][ T8778] [ 293.463212][ C1] vkms_vblank_simulate: vblank timer overrun [ 294.546174][ T8811] block nbd9: NBD_DISCONNECT [ 295.386131][ T8833] nbd: illegal input index -5 [ 296.232346][ T8844] usb usb28: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 296.304038][ T8843] FAULT_INJECTION: forcing a failure. [ 296.304038][ T8843] name failslab, interval 1, probability 0, space 0, times 0 [ 296.377069][ T8843] CPU: 0 UID: 0 PID: 8843 Comm: syz.3.631 Not tainted syzkaller #0 PREEMPT(full) [ 296.377095][ T8843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 296.377106][ T8843] Call Trace: [ 296.377112][ T8843] [ 296.377118][ T8843] dump_stack_lvl+0x16c/0x1f0 [ 296.377150][ T8843] should_fail_ex+0x512/0x640 [ 296.377178][ T8843] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 296.377199][ T8843] should_failslab+0xc2/0x120 [ 296.377223][ T8843] __kmalloc_cache_noprof+0x6a/0x3e0 [ 296.377242][ T8843] ? nexthop_net_init+0x73/0x140 [ 296.377268][ T8843] ? __pfx_nexthop_net_init+0x10/0x10 [ 296.377293][ T8843] nexthop_net_init+0x73/0x140 [ 296.377316][ T8843] ? tcf_net_init+0x55/0x150 [ 296.377340][ T8843] ops_init+0x1df/0x5f0 [ 296.377371][ T8843] setup_net+0x10f/0x380 [ 296.377385][ T8843] ? lockdep_init_map_type+0x5c/0x280 [ 296.377411][ T8843] ? __pfx_setup_net+0x10/0x10 [ 296.377428][ T8843] ? debug_mutex_init+0x37/0x70 [ 296.377449][ T8843] copy_net_ns+0x2a6/0x5f0 [ 296.377470][ T8843] create_new_namespaces+0x3ea/0xa90 [ 296.377496][ T8843] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 296.377519][ T8843] ksys_unshare+0x45b/0xa40 [ 296.377545][ T8843] ? __pfx_ksys_unshare+0x10/0x10 [ 296.377570][ T8843] ? xfd_validate_state+0x61/0x180 [ 296.377604][ T8843] __x64_sys_unshare+0x31/0x40 [ 296.377628][ T8843] do_syscall_64+0xcd/0x490 [ 296.377657][ T8843] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 296.377675][ T8843] RIP: 0033:0x7f733138ebe9 [ 296.377689][ T8843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 296.377706][ T8843] RSP: 002b:00007f73321bb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 296.377724][ T8843] RAX: ffffffffffffffda RBX: 00007f73315c5fa0 RCX: 00007f733138ebe9 [ 296.377735][ T8843] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 296.377745][ T8843] RBP: 00007f7331411e19 R08: 0000000000000000 R09: 0000000000000000 [ 296.377756][ T8843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 296.377766][ T8843] R13: 00007f73315c6038 R14: 00007f73315c5fa0 R15: 00007ffe63d0b2b8 [ 296.377794][ T8843] [ 296.641554][ T8849] FAULT_INJECTION: forcing a failure. [ 296.641554][ T8849] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 296.660575][ T8849] CPU: 0 UID: 0 PID: 8849 Comm: syz.1.633 Not tainted syzkaller #0 PREEMPT(full) [ 296.660606][ T8849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 296.660618][ T8849] Call Trace: [ 296.660625][ T8849] [ 296.660632][ T8849] dump_stack_lvl+0x16c/0x1f0 [ 296.660665][ T8849] should_fail_ex+0x512/0x640 [ 296.660699][ T8849] strncpy_from_user+0x3b/0x2e0 [ 296.660728][ T8849] getname_flags.part.0+0x8f/0x550 [ 296.660760][ T8849] getname_flags+0x93/0xf0 [ 296.660781][ T8849] do_sys_openat2+0xb8/0x1d0 [ 296.660815][ T8849] ? __pfx_do_sys_openat2+0x10/0x10 [ 296.660851][ T8849] __x64_sys_openat+0x174/0x210 [ 296.660880][ T8849] ? __pfx___x64_sys_openat+0x10/0x10 [ 296.660917][ T8849] do_syscall_64+0xcd/0x490 [ 296.660946][ T8849] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 296.660965][ T8849] RIP: 0033:0x7fe6ce38ebe9 [ 296.660980][ T8849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 296.660997][ T8849] RSP: 002b:00007fe6cc5ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 296.661015][ T8849] RAX: ffffffffffffffda RBX: 00007fe6ce5c5fa0 RCX: 00007fe6ce38ebe9 [ 296.661026][ T8849] RDX: 0000000000000200 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 296.661037][ T8849] RBP: 00007fe6ce411e19 R08: 0000000000000000 R09: 0000000000000000 [ 296.661047][ T8849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 296.661058][ T8849] R13: 00007fe6ce5c6038 R14: 00007fe6ce5c5fa0 R15: 00007ffe2242e9d8 [ 296.661079][ T8849] [ 297.021243][ T8849] kmem.limit_in_bytes is deprecated and will be removed. Writing any value to this file has no effect. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 297.101610][ T8849] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 297.192569][ T8856] mkiss: ax0: crc mode is auto. [ 297.295917][ T8858] sd 0:0:1:0: PR command failed: 1026 [ 297.312833][ T8861] mkiss: ax0: crc mode is auto. [ 297.332995][ T8858] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 297.350563][ T8858] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 299.641002][ T8902] kAFS: No cell specified [ 299.650305][ T30] audit: type=1804 audit(1757382256.189:5): pid=8902 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.647" name="/newroot/165/file0" dev="tmpfs" ino=896 res=1 errno=0 [ 299.712129][ T30] audit: type=1800 audit(1757382256.189:6): pid=8902 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.647" name="file0" dev="tmpfs" ino=896 res=0 errno=0 [ 300.149390][ T5187] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 301.864410][ T8920] kexec: Could not allocate control_code_buffer [ 302.550234][ T8945] netlink: 186 bytes leftover after parsing attributes in process `syz.1.655'. [ 303.727883][ T8960] FAULT_INJECTION: forcing a failure. [ 303.727883][ T8960] name failslab, interval 1, probability 0, space 0, times 0 [ 303.798575][ T8960] CPU: 1 UID: 0 PID: 8960 Comm: syz.2.661 Not tainted syzkaller #0 PREEMPT(full) [ 303.798616][ T8960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 303.798633][ T8960] Call Trace: [ 303.798642][ T8960] [ 303.798653][ T8960] dump_stack_lvl+0x16c/0x1f0 [ 303.798701][ T8960] should_fail_ex+0x512/0x640 [ 303.798743][ T8960] ? __kmalloc_noprof+0xbf/0x510 [ 303.798788][ T8960] ? copy_splice_read+0x1a8/0xc20 [ 303.798813][ T8960] should_failslab+0xc2/0x120 [ 303.798849][ T8960] __kmalloc_noprof+0xd2/0x510 [ 303.798889][ T8960] copy_splice_read+0x1a8/0xc20 [ 303.798928][ T8960] ? __pfx_copy_splice_read+0x10/0x10 [ 303.798961][ T8960] ? look_up_lock_class+0x59/0x150 [ 303.799009][ T8960] ? lockdep_init_map_type+0x5c/0x280 [ 303.799050][ T8960] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 303.799085][ T8960] ? __pfx_copy_splice_read+0x10/0x10 [ 303.799111][ T8960] do_splice_read+0x282/0x370 [ 303.799143][ T8960] splice_direct_to_actor+0x2a1/0xa30 [ 303.799173][ T8960] ? __pfx_direct_splice_actor+0x10/0x10 [ 303.799209][ T8960] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 303.799236][ T8960] ? get_pid_task+0xfc/0x250 [ 303.799282][ T8960] do_splice_direct+0x174/0x240 [ 303.799311][ T8960] ? __pfx_do_splice_direct+0x10/0x10 [ 303.799339][ T8960] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 303.799369][ T8960] ? bpf_lsm_file_permission+0x9/0x10 [ 303.799407][ T8960] ? security_file_permission+0x71/0x210 [ 303.799444][ T8960] ? rw_verify_area+0xcf/0x6c0 [ 303.799475][ T8960] do_sendfile+0xb06/0xe50 [ 303.799512][ T8960] ? __pfx_do_sendfile+0x10/0x10 [ 303.799543][ T8960] ? __fget_files+0x20e/0x3c0 [ 303.799589][ T8960] __x64_sys_sendfile64+0x1d8/0x220 [ 303.799625][ T8960] ? ksys_write+0x1ac/0x250 [ 303.799654][ T8960] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 303.799702][ T8960] do_syscall_64+0xcd/0x490 [ 303.799745][ T8960] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 303.799779][ T8960] RIP: 0033:0x7fa830b8ebe9 [ 303.799801][ T8960] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 303.799833][ T8960] RSP: 002b:00007fa8319a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 303.799860][ T8960] RAX: ffffffffffffffda RBX: 00007fa830dc5fa0 RCX: 00007fa830b8ebe9 [ 303.799879][ T8960] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 303.799895][ T8960] RBP: 00007fa8319a7090 R08: 0000000000000000 R09: 0000000000000000 [ 303.799912][ T8960] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001 [ 303.799929][ T8960] R13: 00007fa830dc6038 R14: 00007fa830dc5fa0 R15: 00007ffc6114c338 [ 303.799968][ T8960] [ 304.159673][ T8962] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input70 [ 305.434483][ T8989] netlink: 12 bytes leftover after parsing attributes in process `syz.2.667'. [ 305.478865][ T8989] netlink: 12 bytes leftover after parsing attributes in process `syz.2.667'. [ 306.206325][ T9009] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input71 [ 307.233578][ T9011] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input72 [ 307.272392][ T9010] zswap: compressor not available [ 307.988598][ T9030] netlink: 12 bytes leftover after parsing attributes in process `syz.3.677'. [ 308.235208][ T9007] kexec: Could not allocate control_code_buffer [ 310.583954][ T9072] netlink: 12 bytes leftover after parsing attributes in process `syz.0.686'. [ 310.919935][ T9075] FAULT_INJECTION: forcing a failure. [ 310.919935][ T9075] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 311.023635][ T9075] CPU: 0 UID: 0 PID: 9075 Comm: syz.2.685 Not tainted syzkaller #0 PREEMPT(full) [ 311.023674][ T9075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 311.023691][ T9075] Call Trace: [ 311.023700][ T9075] [ 311.023712][ T9075] dump_stack_lvl+0x16c/0x1f0 [ 311.023761][ T9075] should_fail_ex+0x512/0x640 [ 311.023812][ T9075] _copy_from_user+0x2e/0xd0 [ 311.023844][ T9075] copy_msghdr_from_user+0x98/0x160 [ 311.023889][ T9075] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 311.023938][ T9075] ? __pfx__kstrtoull+0x10/0x10 [ 311.023986][ T9075] ___sys_sendmsg+0xfe/0x1d0 [ 311.024030][ T9075] ? __pfx____sys_sendmsg+0x10/0x10 [ 311.024093][ T9075] ? find_held_lock+0x2b/0x80 [ 311.024149][ T9075] __sys_sendmmsg+0x200/0x420 [ 311.024196][ T9075] ? __pfx___sys_sendmmsg+0x10/0x10 [ 311.024237][ T9075] ? __schedule+0x11a3/0x5de0 [ 311.024286][ T9075] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 311.024352][ T9075] ? preempt_schedule_notrace_thunk+0x16/0x30 [ 311.024402][ T9075] __x64_sys_sendmmsg+0x9c/0x100 [ 311.024454][ T9075] ? lockdep_hardirqs_on+0x7c/0x110 [ 311.024493][ T9075] do_syscall_64+0xcd/0x490 [ 311.024540][ T9075] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 311.024569][ T9075] RIP: 0033:0x7fa830b8ebe9 [ 311.024591][ T9075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 311.024618][ T9075] RSP: 002b:00007fa8319a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 311.024645][ T9075] RAX: ffffffffffffffda RBX: 00007fa830dc5fa0 RCX: 00007fa830b8ebe9 [ 311.024669][ T9075] RDX: 0000000000000006 RSI: 0000200000000200 RDI: 0000000000000007 [ 311.024686][ T9075] RBP: 00007fa8319a7090 R08: 0000000000000000 R09: 0000000000000000 [ 311.024703][ T9075] R10: 0000000000044008 R11: 0000000000000246 R12: 0000000000000001 [ 311.024719][ T9075] R13: 00007fa830dc6038 R14: 00007fa830dc5fa0 R15: 00007ffc6114c338 [ 311.024757][ T9075] [ 311.219075][ C0] vkms_vblank_simulate: vblank timer overrun [ 311.895102][ T9086] netlink: 28 bytes leftover after parsing attributes in process `syz.3.689'. [ 314.501383][ T9116] netlink: 12 bytes leftover after parsing attributes in process `syz.1.695'. [ 316.428834][ T9139] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input73 [ 316.436287][ T9136] nbd: illegal input index -5 [ 317.066631][ T9142] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input74 [ 317.668801][ T9149] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input75 [ 318.053104][ T9160] netlink: 12 bytes leftover after parsing attributes in process `syz.1.705'. [ 318.360909][ T9150] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input76 [ 318.918604][ T9162] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input77 [ 319.471409][ T9166] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input78 [ 320.110776][ T9186] nbd: illegal input index -5 [ 322.289576][ T9222] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input79 [ 322.519834][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.526418][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 322.824054][ T9226] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input80 [ 323.951269][ T9241] nbd: illegal input index -5 [ 324.202954][ T9251] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input81 [ 324.399995][ T9254] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input82 [ 324.979179][ T9263] block nbd0: Unsupported socket: shutdown callout must be supported. [ 325.020767][ T9253] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input83 [ 325.352763][ T9255] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input84 [ 326.341787][ T9286] FAULT_INJECTION: forcing a failure. [ 326.341787][ T9286] name failslab, interval 1, probability 0, space 0, times 0 [ 326.375818][ T9286] CPU: 1 UID: 0 PID: 9286 Comm: syz.0.737 Not tainted syzkaller #0 PREEMPT(full) [ 326.375844][ T9286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 326.375854][ T9286] Call Trace: [ 326.375861][ T9286] [ 326.375867][ T9286] dump_stack_lvl+0x16c/0x1f0 [ 326.375899][ T9286] should_fail_ex+0x512/0x640 [ 326.375927][ T9286] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 326.375951][ T9286] should_failslab+0xc2/0x120 [ 326.375975][ T9286] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 326.375997][ T9286] ? sock_alloc_inode+0x25/0x1c0 [ 326.376019][ T9286] ? __pfx_sock_alloc_inode+0x10/0x10 [ 326.376036][ T9286] sock_alloc_inode+0x25/0x1c0 [ 326.376053][ T9286] alloc_inode+0x61/0x240 [ 326.376080][ T9286] sock_alloc+0x40/0x280 [ 326.376097][ T9286] __sock_create+0xc1/0x8d0 [ 326.376117][ T9286] ? lockdep_init_map_type+0x5c/0x280 [ 326.376145][ T9286] smc_create+0x15d/0x2a0 [ 326.376169][ T9286] __sock_create+0x335/0x8d0 [ 326.376193][ T9286] __sys_socket+0x14d/0x260 [ 326.376215][ T9286] ? __pfx___sys_socket+0x10/0x10 [ 326.376236][ T9286] ? xfd_validate_state+0x61/0x180 [ 326.376262][ T9286] ? __pfx_ksys_write+0x10/0x10 [ 326.376287][ T9286] __x64_sys_socket+0x72/0xb0 [ 326.376308][ T9286] ? lockdep_hardirqs_on+0x7c/0x110 [ 326.376342][ T9286] do_syscall_64+0xcd/0x490 [ 326.376371][ T9286] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 326.376389][ T9286] RIP: 0033:0x7f58e8f8ebe9 [ 326.376403][ T9286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 326.376420][ T9286] RSP: 002b:00007f58e9d32038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 326.376439][ T9286] RAX: ffffffffffffffda RBX: 00007f58e91c5fa0 RCX: 00007f58e8f8ebe9 [ 326.376450][ T9286] RDX: 0000000000000001 RSI: 0000000000000001 RDI: 000000000000002b [ 326.376460][ T9286] RBP: 00007f58e9011e19 R08: 0000000000000000 R09: 0000000000000000 [ 326.376471][ T9286] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 326.376481][ T9286] R13: 00007f58e91c6038 R14: 00007f58e91c5fa0 R15: 00007ffe1793eae8 [ 326.376502][ T9286] [ 326.376510][ T9286] socket: no more sockets [ 326.788132][ T9293] Console: switching to colour VGA+ 80x25 [ 326.831869][ T9282] random: crng reseeded on system resumption [ 327.171379][ T9300] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input85 [ 327.801564][ T9302] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input86 [ 328.551499][ T9314] FAULT_INJECTION: forcing a failure. [ 328.551499][ T9314] name failslab, interval 1, probability 0, space 0, times 0 [ 328.624486][ T9314] CPU: 1 UID: 0 PID: 9314 Comm: syz.0.740 Not tainted syzkaller #0 PREEMPT(full) [ 328.624529][ T9314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 328.624547][ T9314] Call Trace: [ 328.624557][ T9314] [ 328.624569][ T9314] dump_stack_lvl+0x16c/0x1f0 [ 328.624624][ T9314] should_fail_ex+0x512/0x640 [ 328.624668][ T9314] ? __kvmalloc_node_noprof+0x124/0x620 [ 328.624708][ T9314] should_failslab+0xc2/0x120 [ 328.624749][ T9314] __kvmalloc_node_noprof+0x137/0x620 [ 328.624782][ T9314] ? stack_depot_save_flags+0x29/0x9c0 [ 328.624830][ T9314] ? v4l2_ctrl_new+0x97d/0x2180 [ 328.624868][ T9314] ? v4l2_ctrl_new+0x97d/0x2180 [ 328.624892][ T9314] v4l2_ctrl_new+0x97d/0x2180 [ 328.624923][ T9314] ? vfs_open+0x40/0x3f0 [ 328.624978][ T9314] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 328.625021][ T9314] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 328.625073][ T9314] v4l2_ctrl_new_std+0x1be/0x290 [ 328.625117][ T9314] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 328.625153][ T9314] ? rcu_is_watching+0x12/0xc0 [ 328.625184][ T9314] ? trace_kmalloc+0x2b/0xd0 [ 328.625224][ T9314] ? __kvmalloc_node_noprof+0x298/0x620 [ 328.625268][ T9314] ? v4l2_ctrl_handler_init_class+0x1fc/0x340 [ 328.625323][ T9314] ? media_request_object_init+0x100/0x180 [ 328.625365][ T9314] vicodec_open+0x1d0/0xf90 [ 328.625416][ T9314] v4l2_open+0x225/0x490 [ 328.625460][ T9314] ? __pfx_v4l2_open+0x10/0x10 [ 328.625499][ T9314] chrdev_open+0x231/0x6a0 [ 328.625536][ T9314] ? __pfx_apparmor_file_open+0x10/0x10 [ 328.625570][ T9314] ? __pfx_chrdev_open+0x10/0x10 [ 328.625611][ T9314] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 328.625647][ T9314] do_dentry_open+0x97f/0x1530 [ 328.625676][ T9314] ? __pfx_chrdev_open+0x10/0x10 [ 328.625714][ T9314] vfs_open+0x82/0x3f0 [ 328.625754][ T9314] path_openat+0x1de4/0x2cb0 [ 328.625794][ T9314] ? __pfx_path_openat+0x10/0x10 [ 328.625832][ T9314] do_filp_open+0x20b/0x470 [ 328.625861][ T9314] ? __pfx_do_filp_open+0x10/0x10 [ 328.625916][ T9314] ? alloc_fd+0x471/0x7d0 [ 328.625951][ T9314] do_sys_openat2+0x11b/0x1d0 [ 328.625987][ T9314] ? __pfx_do_sys_openat2+0x10/0x10 [ 328.626037][ T9314] __x64_sys_openat+0x174/0x210 [ 328.626074][ T9314] ? __pfx___x64_sys_openat+0x10/0x10 [ 328.626125][ T9314] do_syscall_64+0xcd/0x490 [ 328.626164][ T9314] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 328.626187][ T9314] RIP: 0033:0x7f58e8f8ebe9 [ 328.626207][ T9314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 328.626229][ T9314] RSP: 002b:00007f58e9d32038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 328.626261][ T9314] RAX: ffffffffffffffda RBX: 00007f58e91c5fa0 RCX: 00007f58e8f8ebe9 [ 328.626277][ T9314] RDX: 0000000000080002 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 328.626292][ T9314] RBP: 00007f58e9011e19 R08: 0000000000000000 R09: 0000000000000000 [ 328.626307][ T9314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 328.626321][ T9314] R13: 00007f58e91c6038 R14: 00007f58e91c5fa0 R15: 00007ffe1793eae8 [ 328.626352][ T9314] [ 329.337087][ T9323] block nbd9: NBD_DISCONNECT [ 329.770744][ T9334] FAULT_INJECTION: forcing a failure. [ 329.770744][ T9334] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 329.772061][ T9325] Console: switching to colour frame buffer device 128x48 [ 329.772551][ T9334] CPU: 0 UID: 0 PID: 9334 Comm: syz.3.741 Not tainted syzkaller #0 PREEMPT(full) [ 329.772585][ T9334] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 329.772601][ T9334] Call Trace: [ 329.772611][ T9334] [ 329.772622][ T9334] dump_stack_lvl+0x16c/0x1f0 [ 329.772669][ T9334] should_fail_ex+0x512/0x640 [ 329.772720][ T9334] _copy_to_user+0x32/0xd0 [ 329.772756][ T9334] simple_read_from_buffer+0xcb/0x170 [ 329.772790][ T9334] proc_fail_nth_read+0x197/0x240 [ 329.772823][ T9334] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 329.772858][ T9334] ? rw_verify_area+0xcf/0x6c0 [ 329.772888][ T9334] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 329.772920][ T9334] vfs_read+0x1e4/0xcf0 [ 329.772960][ T9334] ? __pfx___mutex_lock+0x10/0x10 [ 329.773004][ T9334] ? __pfx_vfs_read+0x10/0x10 [ 329.773049][ T9334] ? __fget_files+0x20e/0x3c0 [ 329.773093][ T9334] ksys_read+0x12a/0x250 [ 329.773124][ T9334] ? __pfx_ksys_read+0x10/0x10 [ 329.773170][ T9334] do_syscall_64+0xcd/0x490 [ 329.773217][ T9334] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 329.773245][ T9334] RIP: 0033:0x7f733138d5fc [ 329.773269][ T9334] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 329.773296][ T9334] RSP: 002b:00007f7332158030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 329.773323][ T9334] RAX: ffffffffffffffda RBX: 00007f73315c6270 RCX: 00007f733138d5fc [ 329.773342][ T9334] RDX: 000000000000000f RSI: 00007f73321580a0 RDI: 0000000000000007 [ 329.773360][ T9334] RBP: 00007f7332158090 R08: 0000000000000000 R09: 0000000000000000 [ 329.773377][ T9334] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 329.773393][ T9334] R13: 00007f73315c6308 R14: 00007f73315c6270 R15: 00007ffe63d0b2b8 [ 329.773433][ T9334] [ 332.807303][ T9384] netlink: 186 bytes leftover after parsing attributes in process `syz.1.756'. [ 332.923178][ T9392] FAULT_INJECTION: forcing a failure. [ 332.923178][ T9392] name failslab, interval 1, probability 0, space 0, times 0 [ 332.962287][ T9392] CPU: 0 UID: 0 PID: 9392 Comm: syz.0.758 Not tainted syzkaller #0 PREEMPT(full) [ 332.962314][ T9392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 332.962325][ T9392] Call Trace: [ 332.962331][ T9392] [ 332.962338][ T9392] dump_stack_lvl+0x16c/0x1f0 [ 332.962377][ T9392] should_fail_ex+0x512/0x640 [ 332.962406][ T9392] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 332.962431][ T9392] should_failslab+0xc2/0x120 [ 332.962462][ T9392] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 332.962485][ T9392] ? __d_alloc+0x32/0xae0 [ 332.962511][ T9392] __d_alloc+0x32/0xae0 [ 332.962536][ T9392] d_alloc_parallel+0x111/0x1480 [ 332.962568][ T9392] ? __lock_acquire+0x62e/0x1ce0 [ 332.962597][ T9392] ? __pfx_d_alloc_parallel+0x10/0x10 [ 332.962628][ T9392] ? lockdep_init_map_type+0x5c/0x280 [ 332.962654][ T9392] ? lockdep_init_map_type+0x5c/0x280 [ 332.962683][ T9392] __lookup_slow+0x193/0x460 [ 332.962712][ T9392] ? __pfx___lookup_slow+0x10/0x10 [ 332.962743][ T9392] ? perf_trace_mm_compaction_suitable_template+0xd0/0x5e0 [ 332.962776][ T9392] ? perf_trace_mm_compaction_suitable_template+0xd0/0x5e0 [ 332.962804][ T9392] ? d_lookup+0xe7/0x190 [ 332.962835][ T9392] lookup_noperm+0xe1/0x110 [ 332.962864][ T9392] simple_start_creating+0xd1/0x1b0 [ 332.962886][ T9392] start_creating.part.0+0x82/0x190 [ 332.962908][ T9392] __debugfs_create_file+0xa7/0x6b0 [ 332.962933][ T9392] debugfs_create_file_full+0x41/0x60 [ 332.962957][ T9392] ? __pfx_tun_setup+0x10/0x10 [ 332.962973][ T9392] ref_tracker_dir_debugfs+0x19d/0x290 [ 332.962992][ T9392] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 332.963027][ T9392] ? __kvmalloc_node_noprof.cold+0x60/0x65 [ 332.963053][ T9392] ? rcu_is_watching+0x12/0xc0 [ 332.963073][ T9392] ? lockdep_init_map_type+0x5c/0x280 [ 332.963102][ T9392] alloc_netdev_mqs+0x30f/0x1530 [ 332.963136][ T9392] __tun_chr_ioctl+0x1959/0x48b0 [ 332.963155][ T9392] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 332.963188][ T9392] ? __pfx___tun_chr_ioctl+0x10/0x10 [ 332.963213][ T9392] ? hook_file_ioctl_common+0x145/0x410 [ 332.963245][ T9392] ? __fget_files+0x20e/0x3c0 [ 332.963281][ T9392] ? __pfx_tun_chr_ioctl+0x10/0x10 [ 332.963316][ T9392] __x64_sys_ioctl+0x18e/0x210 [ 332.963363][ T9392] do_syscall_64+0xcd/0x490 [ 332.963410][ T9392] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 332.963439][ T9392] RIP: 0033:0x7f58e8f8ebe9 [ 332.963467][ T9392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 332.963484][ T9392] RSP: 002b:00007f58e9d32038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 332.963502][ T9392] RAX: ffffffffffffffda RBX: 00007f58e91c5fa0 RCX: 00007f58e8f8ebe9 [ 332.963513][ T9392] RDX: 0000000000000038 RSI: 00000000400454ca RDI: 0000000000000003 [ 332.963523][ T9392] RBP: 00007f58e9d32090 R08: 0000000000000000 R09: 0000000000000000 [ 332.963533][ T9392] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 332.963543][ T9392] R13: 00007f58e91c6038 R14: 00007f58e91c5fa0 R15: 00007ffe1793eae8 [ 332.963566][ T9392] [ 333.261809][ C0] vkms_vblank_simulate: vblank timer overrun [ 333.994672][ T9401] nbd: illegal input index -5 [ 334.864717][ T9414] mkiss: ax0: crc mode is auto. [ 339.600684][ T9458] vhci_hcd: invalid port number 23 [ 342.187642][ T9483] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input87 [ 342.955482][ T9485] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input88 [ 346.193633][ T9528] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input89 [ 346.845872][ T9529] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input90 [ 346.983734][ T9523] netlink: 268 bytes leftover after parsing attributes in process `syz.3.788'. [ 348.078038][ T9544] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input91 [ 348.420362][ T9546] : Can't lookup blockdev [ 348.495632][ T9548] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input92 [ 348.745878][ T5187] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 348.755207][ T5187] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 348.776102][ T5187] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 348.798743][ T5187] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 348.808200][ T5187] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 349.530423][ T9559] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input93 [ 349.846863][ T9552] chnl_net:caif_netlink_parms(): no params data found [ 350.268110][ T9560] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input94 [ 350.839322][ T9552] bridge0: port 1(bridge_slave_0) entered blocking state [ 350.856985][ T5187] Bluetooth: hci4: command tx timeout [ 350.864970][ T9552] bridge0: port 1(bridge_slave_0) entered disabled state [ 350.872392][ T9552] bridge_slave_0: entered allmulticast mode [ 350.882335][ T9552] bridge_slave_0: entered promiscuous mode [ 350.893000][ T9552] bridge0: port 2(bridge_slave_1) entered blocking state [ 350.900260][ T9552] bridge0: port 2(bridge_slave_1) entered disabled state [ 350.907567][ T9552] bridge_slave_1: entered allmulticast mode [ 350.914809][ T9552] bridge_slave_1: entered promiscuous mode [ 351.150904][ T9552] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 351.236804][ T9552] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 351.373068][ T9584] netlink: 25 bytes leftover after parsing attributes in process `syz.0.802'. [ 351.495966][ T9552] team0: Port device team_slave_0 added [ 351.572728][ T9552] team0: Port device team_slave_1 added [ 351.876827][ T9552] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 351.925949][ T9552] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 352.132799][ T9552] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 352.246764][ T9552] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 352.278084][ T9552] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 352.351589][ T9552] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 352.528453][ T9552] hsr_slave_0: entered promiscuous mode [ 352.578865][ T9552] hsr_slave_1: entered promiscuous mode [ 352.591184][ T9603] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input95 [ 352.603366][ T9552] debugfs: 'hsr0' already exists in 'hsr' [ 352.609717][ T9552] Cannot create hsr debugfs directory [ 352.911584][ T5187] Bluetooth: hci4: command tx timeout [ 354.099107][ T9612] FAULT_INJECTION: forcing a failure. [ 354.099107][ T9612] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 354.121774][ T9612] CPU: 1 UID: 0 PID: 9612 Comm: syz.1.809 Not tainted syzkaller #0 PREEMPT(full) [ 354.121820][ T9612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 354.121837][ T9612] Call Trace: [ 354.121846][ T9612] [ 354.121857][ T9612] dump_stack_lvl+0x16c/0x1f0 [ 354.121906][ T9612] should_fail_ex+0x512/0x640 [ 354.121958][ T9612] _copy_from_user+0x2e/0xd0 [ 354.121991][ T9612] ____sys_sendmsg+0x607/0xc70 [ 354.122038][ T9612] ? __pfx_____sys_sendmsg+0x10/0x10 [ 354.122078][ T9612] ? __pfx__kstrtoull+0x10/0x10 [ 354.122126][ T9612] ___sys_sendmsg+0x134/0x1d0 [ 354.122172][ T9612] ? __pfx____sys_sendmsg+0x10/0x10 [ 354.122235][ T9612] ? find_held_lock+0x2b/0x80 [ 354.122289][ T9612] __sys_sendmmsg+0x200/0x420 [ 354.122338][ T9612] ? __pfx___sys_sendmmsg+0x10/0x10 [ 354.122397][ T9612] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 354.122458][ T9612] ? fput+0x9b/0xd0 [ 354.122498][ T9612] ? ksys_write+0x1ac/0x250 [ 354.122530][ T9612] ? __pfx_ksys_write+0x10/0x10 [ 354.122572][ T9612] __x64_sys_sendmmsg+0x9c/0x100 [ 354.122614][ T9612] ? lockdep_hardirqs_on+0x7c/0x110 [ 354.122655][ T9612] do_syscall_64+0xcd/0x490 [ 354.122702][ T9612] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 354.122730][ T9612] RIP: 0033:0x7fe6ce38ebe9 [ 354.122753][ T9612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 354.122780][ T9612] RSP: 002b:00007fe6cc5ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 354.122809][ T9612] RAX: ffffffffffffffda RBX: 00007fe6ce5c5fa0 RCX: 00007fe6ce38ebe9 [ 354.122828][ T9612] RDX: 0000000000000006 RSI: 0000200000000200 RDI: 0000000000000007 [ 354.122845][ T9612] RBP: 00007fe6cc5ee090 R08: 0000000000000000 R09: 0000000000000000 [ 354.122862][ T9612] R10: 0000000000044008 R11: 0000000000000246 R12: 0000000000000001 [ 354.122878][ T9612] R13: 00007fe6ce5c6038 R14: 00007fe6ce5c5fa0 R15: 00007ffe2242e9d8 [ 354.122917][ T9612] [ 355.007879][ T5187] Bluetooth: hci4: command tx timeout [ 355.154854][ T9552] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 355.234904][ T9552] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 355.286933][ T9552] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 355.408055][ T9552] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 356.146766][ T9552] 8021q: adding VLAN 0 to HW filter on device bond0 [ 356.205772][ T9552] 8021q: adding VLAN 0 to HW filter on device team0 [ 356.356864][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 356.364105][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 356.454600][ T3022] bridge0: port 2(bridge_slave_1) entered blocking state [ 356.461796][ T3022] bridge0: port 2(bridge_slave_1) entered forwarding state [ 357.071229][ T5187] Bluetooth: hci4: command tx timeout [ 358.410498][ T9552] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 359.363989][ T9679] FAULT_INJECTION: forcing a failure. [ 359.363989][ T9679] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 359.364050][ T9679] CPU: 1 UID: 0 PID: 9679 Comm: syz.1.818 Not tainted syzkaller #0 PREEMPT(full) [ 359.364083][ T9679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 359.364099][ T9679] Call Trace: [ 359.364108][ T9679] [ 359.364119][ T9679] dump_stack_lvl+0x16c/0x1f0 [ 359.364166][ T9679] should_fail_ex+0x512/0x640 [ 359.364215][ T9679] should_fail_alloc_page+0xe7/0x130 [ 359.364268][ T9679] prepare_alloc_pages+0x3c2/0x610 [ 359.364317][ T9679] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 359.364366][ T9679] ? __lock_acquire+0x62e/0x1ce0 [ 359.364408][ T9679] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 359.364458][ T9679] ? find_held_lock+0x2b/0x80 [ 359.364489][ T9679] ? is_bpf_text_address+0x8a/0x1a0 [ 359.364525][ T9679] ? bpf_ksym_find+0x124/0x1c0 [ 359.364553][ T9679] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 359.364587][ T9679] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 359.364630][ T9679] ? policy_nodemask+0xea/0x4e0 [ 359.364670][ T9679] alloc_pages_mpol+0x1fb/0x550 [ 359.364708][ T9679] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 359.364756][ T9679] ? vc_do_resize+0x1de/0x10e0 [ 359.364791][ T9679] ___kmalloc_large_node+0xed/0x160 [ 359.364838][ T9679] ? vc_do_resize+0x1de/0x10e0 [ 359.364873][ T9679] __kmalloc_large_node_noprof+0x1c/0x70 [ 359.364921][ T9679] __kmalloc_noprof.cold+0xc/0x61 [ 359.364963][ T9679] ? __lock_acquire+0xb97/0x1ce0 [ 359.365007][ T9679] vc_do_resize+0x1de/0x10e0 [ 359.365051][ T9679] ? fb_match_mode+0x2a1/0x350 [ 359.365099][ T9679] ? __pfx_fb_match_mode+0x10/0x10 [ 359.365149][ T9679] ? __pfx_vc_do_resize+0x10/0x10 [ 359.365186][ T9679] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 359.365263][ T9679] fbcon_modechanged+0x334/0x700 [ 359.365312][ T9679] rotate_store+0x258/0x2f0 [ 359.365353][ T9679] ? __pfx_rotate_store+0x10/0x10 [ 359.365391][ T9679] dev_attr_store+0x58/0x80 [ 359.365421][ T9679] ? __pfx_dev_attr_store+0x10/0x10 [ 359.365449][ T9679] sysfs_kf_write+0xf2/0x150 [ 359.365486][ T9679] kernfs_fop_write_iter+0x354/0x510 [ 359.365512][ T9679] ? __pfx_sysfs_kf_write+0x10/0x10 [ 359.365549][ T9679] vfs_write+0x7d0/0x11d0 [ 359.365585][ T9679] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 359.365616][ T9679] ? __pfx___mutex_lock+0x10/0x10 [ 359.365661][ T9679] ? __pfx_vfs_write+0x10/0x10 [ 359.365726][ T9679] ksys_write+0x12a/0x250 [ 359.365759][ T9679] ? __pfx_ksys_write+0x10/0x10 [ 359.365806][ T9679] do_syscall_64+0xcd/0x490 [ 359.365870][ T9679] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 359.365899][ T9679] RIP: 0033:0x7fe6ce38ebe9 [ 359.365923][ T9679] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 359.365949][ T9679] RSP: 002b:00007fe6cc5ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 359.365976][ T9679] RAX: ffffffffffffffda RBX: 00007fe6ce5c5fa0 RCX: 00007fe6ce38ebe9 [ 359.365994][ T9679] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000003 [ 359.366010][ T9679] RBP: 00007fe6cc5ee090 R08: 0000000000000000 R09: 0000000000000000 [ 359.366027][ T9679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 359.366045][ T9679] R13: 00007fe6ce5c6038 R14: 00007fe6ce5c5fa0 R15: 00007ffe2242e9d8 [ 359.366087][ T9679] [ 359.387136][ T9679] ================================================================== [ 359.387149][ T9679] BUG: KASAN: vmalloc-out-of-bounds in sys_imageblit+0x1a6f/0x1e60 [ 359.387178][ T9679] Write of size 8 at addr ffffc90003f89fc0 by task syz.1.818/9679 [ 359.387192][ T9679] [ 359.387201][ T9679] CPU: 1 UID: 0 PID: 9679 Comm: syz.1.818 Not tainted syzkaller #0 PREEMPT(full) [ 359.387222][ T9679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 359.387233][ T9679] Call Trace: [ 359.387239][ T9679] [ 359.387254][ T9679] dump_stack_lvl+0x116/0x1f0 [ 359.387282][ T9679] print_report+0xcd/0x630 [ 359.387305][ T9679] ? __virt_addr_valid+0x81/0x610 [ 359.387328][ T9679] ? sys_imageblit+0x1a6f/0x1e60 [ 359.387347][ T9679] kasan_report+0xe0/0x110 [ 359.387370][ T9679] ? sys_imageblit+0x1a6f/0x1e60 [ 359.387391][ T9679] sys_imageblit+0x1a6f/0x1e60 [ 359.387413][ T9679] ? __pfx_sys_imageblit+0x10/0x10 [ 359.387432][ T9679] ? __mutex_trylock_common+0xe9/0x250 [ 359.387457][ T9679] ? __pfx___mutex_trylock_common+0x10/0x10 [ 359.387482][ T9679] ? __pfx___might_resched+0x10/0x10 [ 359.387501][ T9679] ? rcu_is_watching+0x12/0xc0 [ 359.387519][ T9679] ? trace_contention_end+0xdd/0x130 [ 359.387544][ T9679] ? drm_fb_helper_setcmap+0x117/0x1010 [ 359.387567][ T9679] drm_fbdev_shmem_defio_imageblit+0x20/0x130 [ 359.387594][ T9679] cw_putcs+0x917/0xbb0 [ 359.387620][ T9679] ? __pfx_cw_putcs+0x10/0x10 [ 359.387638][ T9679] ? fb_get_color_depth+0x120/0x250 [ 359.387663][ T9679] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 359.387691][ T9679] ? __pfx_cw_putcs+0x10/0x10 [ 359.387706][ T9679] fbcon_putcs+0x384/0x4a0 [ 359.387731][ T9679] do_update_region+0x2e6/0x3f0 [ 359.387752][ T9679] redraw_screen+0x63f/0x760 [ 359.387777][ T9679] ? __pfx_redraw_screen+0x10/0x10 [ 359.387801][ T9679] ? fbcon_set_palette+0x401/0x640 [ 359.387826][ T9679] fbcon_modechanged+0x456/0x700 [ 359.387852][ T9679] rotate_store+0x258/0x2f0 [ 359.387875][ T9679] ? __pfx_rotate_store+0x10/0x10 [ 359.387899][ T9679] dev_attr_store+0x58/0x80 [ 359.387915][ T9679] ? __pfx_dev_attr_store+0x10/0x10 [ 359.387932][ T9679] sysfs_kf_write+0xf2/0x150 [ 359.387952][ T9679] kernfs_fop_write_iter+0x354/0x510 [ 359.387969][ T9679] ? __pfx_sysfs_kf_write+0x10/0x10 [ 359.387989][ T9679] vfs_write+0x7d0/0x11d0 [ 359.388009][ T9679] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 359.388027][ T9679] ? __pfx___mutex_lock+0x10/0x10 [ 359.388055][ T9679] ? __pfx_vfs_write+0x10/0x10 [ 359.388080][ T9679] ksys_write+0x12a/0x250 [ 359.388100][ T9679] ? __pfx_ksys_write+0x10/0x10 [ 359.388123][ T9679] do_syscall_64+0xcd/0x490 [ 359.388151][ T9679] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 359.388170][ T9679] RIP: 0033:0x7fe6ce38ebe9 [ 359.388184][ T9679] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 359.388202][ T9679] RSP: 002b:00007fe6cc5ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 359.388220][ T9679] RAX: ffffffffffffffda RBX: 00007fe6ce5c5fa0 RCX: 00007fe6ce38ebe9 [ 359.388231][ T9679] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000003 [ 359.388242][ T9679] RBP: 00007fe6cc5ee090 R08: 0000000000000000 R09: 0000000000000000 [ 359.388259][ T9679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 359.388270][ T9679] R13: 00007fe6ce5c6038 R14: 00007fe6ce5c5fa0 R15: 00007ffe2242e9d8 [ 359.388286][ T9679] [ 359.388292][ T9679] [ 359.388297][ T9679] The buggy address belongs to a vmalloc virtual mapping [ 359.388310][ T9679] Memory state around the buggy address: [ 359.388319][ T9679] ffffc90003f89e80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 359.388332][ T9679] ffffc90003f89f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 359.388344][ T9679] >ffffc90003f89f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 359.388353][ T9679] ^ [ 359.388364][ T9679] ffffc90003f8a000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 359.388376][ T9679] ffffc90003f8a080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 359.388386][ T9679] ================================================================== [ 359.388478][ T9679] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 359.388491][ T9679] CPU: 1 UID: 0 PID: 9679 Comm: syz.1.818 Not tainted syzkaller #0 PREEMPT(full) [ 359.388512][ T9679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 359.388523][ T9679] Call Trace: [ 359.388528][ T9679] [ 359.388535][ T9679] dump_stack_lvl+0x3d/0x1f0 [ 359.388561][ T9679] vpanic+0x6e8/0x7a0 [ 359.388587][ T9679] ? __pfx_vpanic+0x10/0x10 [ 359.388614][ T9679] ? sys_imageblit+0x1a6f/0x1e60 [ 359.388633][ T9679] panic+0xca/0xd0 [ 359.388657][ T9679] ? __pfx_panic+0x10/0x10 [ 359.388682][ T9679] ? sys_imageblit+0x1a6f/0x1e60 [ 359.388701][ T9679] ? preempt_schedule_common+0x44/0xc0 [ 359.388727][ T9679] ? preempt_schedule_thunk+0x16/0x30 [ 359.388753][ T9679] ? check_panic_on_warn+0x1f/0xb0 [ 359.388780][ T9679] check_panic_on_warn+0xab/0xb0 [ 359.388807][ T9679] end_report+0x107/0x170 [ 359.388828][ T9679] kasan_report+0xee/0x110 [ 359.388851][ T9679] ? sys_imageblit+0x1a6f/0x1e60 [ 359.388873][ T9679] sys_imageblit+0x1a6f/0x1e60 [ 359.388895][ T9679] ? __pfx_sys_imageblit+0x10/0x10 [ 359.388914][ T9679] ? __mutex_trylock_common+0xe9/0x250 [ 359.388939][ T9679] ? __pfx___mutex_trylock_common+0x10/0x10 [ 359.388964][ T9679] ? __pfx___might_resched+0x10/0x10 [ 359.388982][ T9679] ? rcu_is_watching+0x12/0xc0 [ 359.389000][ T9679] ? trace_contention_end+0xdd/0x130 [ 359.389025][ T9679] ? drm_fb_helper_setcmap+0x117/0x1010 [ 359.389047][ T9679] drm_fbdev_shmem_defio_imageblit+0x20/0x130 [ 359.389074][ T9679] cw_putcs+0x917/0xbb0 [ 359.389095][ T9679] ? __pfx_cw_putcs+0x10/0x10 [ 359.389113][ T9679] ? fb_get_color_depth+0x120/0x250 [ 359.389138][ T9679] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 359.389166][ T9679] ? __pfx_cw_putcs+0x10/0x10 [ 359.389182][ T9679] fbcon_putcs+0x384/0x4a0 [ 359.389207][ T9679] do_update_region+0x2e6/0x3f0 [ 359.389237][ T9679] redraw_screen+0x63f/0x760 [ 359.389268][ T9679] ? __pfx_redraw_screen+0x10/0x10 [ 359.389293][ T9679] ? fbcon_set_palette+0x401/0x640 [ 359.389318][ T9679] fbcon_modechanged+0x456/0x700 [ 359.389344][ T9679] rotate_store+0x258/0x2f0 [ 359.389368][ T9679] ? __pfx_rotate_store+0x10/0x10 [ 359.389392][ T9679] dev_attr_store+0x58/0x80 [ 359.389408][ T9679] ? __pfx_dev_attr_store+0x10/0x10 [ 359.389425][ T9679] sysfs_kf_write+0xf2/0x150 [ 359.389444][ T9679] kernfs_fop_write_iter+0x354/0x510 [ 359.389461][ T9679] ? __pfx_sysfs_kf_write+0x10/0x10 [ 359.389481][ T9679] vfs_write+0x7d0/0x11d0 [ 359.389501][ T9679] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 359.389519][ T9679] ? __pfx___mutex_lock+0x10/0x10 [ 359.389546][ T9679] ? __pfx_vfs_write+0x10/0x10 [ 359.389572][ T9679] ksys_write+0x12a/0x250 [ 359.389592][ T9679] ? __pfx_ksys_write+0x10/0x10 [ 359.389615][ T9679] do_syscall_64+0xcd/0x490 [ 359.389643][ T9679] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 359.389660][ T9679] RIP: 0033:0x7fe6ce38ebe9 [ 359.389674][ T9679] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 359.389691][ T9679] RSP: 002b:00007fe6cc5ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 359.389708][ T9679] RAX: ffffffffffffffda RBX: 00007fe6ce5c5fa0 RCX: 00007fe6ce38ebe9 [ 359.389719][ T9679] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000003 [ 359.389730][ T9679] RBP: 00007fe6cc5ee090 R08: 0000000000000000 R09: 0000000000000000 [ 359.389741][ T9679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 359.389752][ T9679] R13: 00007fe6ce5c6038 R14: 00007fe6ce5c5fa0 R15: 00007ffe2242e9d8 [ 359.389768][ T9679] [ 359.389950][ T9679] Kernel Offset: disabled