last executing test programs: 8.816023011s ago: executing program 2 (id=313): pselect6$auto(0x3, 0x0, &(0x7f0000000340)={[0x9, 0x3, 0x40, 0x2f5, 0x1, 0x7fffffff, 0x4, 0x7, 0x4, 0x5, 0x4cb, 0x67a4ee2e, 0xc, 0x2000000007, 0x9, 0xb]}, 0x0, &(0x7f0000000240)={0x10000, 0x1}, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = io_uring_setup$auto(0x2, 0x0) fsconfig$auto_SHMEM_HUGE_NEVER(r0, 0x5, &(0x7f0000000000)='\x00', &(0x7f0000000040)="e639b019d9b3f33b9b78d7c460f93cd6e27882e4e4a30839ff6bf3cc7040f6d0df54587d1dc4ea80398c4932cb12b7c7c1f9284a5f94a439fc8c9a3dc79675e33987a81118f12adbae996cbb04a78ef37b94923b2ee488696f5b3938a7b9a1b8eb9bb64ad8ffe4f956e23b73417fa00050d565af56b2b2", 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) getcwd$auto(0x0, 0xffffffffffffffff) r1 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r1, 0x107, 0x9, 0x0, 0x20008004) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0x4, 0xa910, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0xa0681, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_LOCK(r2, 0x40405514, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_UNLOCK(r2, 0x40405515, 0x0) set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21) unshare$auto(0x40000080) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000480)='/dev/dmmidi2\x00', 0x202580, 0x0) msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000240)={{0x0, 0xffffffffffffffff, 0xee00, 0x9, 0x5, 0x8, 0x5}, &(0x7f00000001c0)=0x6, &(0x7f0000000200)=0x1, 0x1, 0xfff, 0x0, 0x7, 0x5, 0x4, 0x9, 0xf}) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r5 = socket(0xa, 0x5, 0x84) getsockopt$auto(r5, 0x84, 0x14, 0x0, 0x0) r6 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000300), r4) sendmsg$auto_TCP_METRICS_CMD_GET(r5, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000003c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="44000000510552666f8e5651a707088695876f6fe058af8e34dffe2f72ac04f3c3cb20c26c1c4dda494dd82ad04ad22eef8d86364bbd657384f01247f6a45cff0a4e6d134c32ba118399a0a616e3fbbde8185b18fb36", @ANYRES16=r6, @ANYBLOB="000126bd7000fbdbcb2501000000080001007f00000114000c00fe880000000000000000000000000101d6000200f4d4b396fe8000"/62], 0x44}, 0x1, 0x0, 0x0, 0x80}, 0xe57c91ee1bde9e58) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyxf\x00', 0x109401, 0x0) ioctl$auto(r7, 0x540a, 0x0) r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0) sendfile$auto(r8, r8, 0x0, 0x3) 7.556713712s ago: executing program 2 (id=317): r0 = socket(0x25, 0x1, 0x0) sendto$auto(r0, 0x0, 0x0, 0x0, 0x0, 0x3) r1 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000140), 0x180b03, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) fallocate$auto(r1, 0x1, 0x2, 0x6653) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x1, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x5, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x9, 0x554, 0x7, 0x1, 0x9, 0xf, 0x1]}, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) ioctl$auto(0x3, 0x2287, 0xffffffffffffffff) socket(0x23, 0x80805, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) write$auto_proc_mem_operations_base(r3, &(0x7f00000001c0)="bf82d25dc33a1fdfa60037b7", 0xc) madvise$auto(0x0, 0x20200, 0x15) prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) mmap$auto(0xfffffffffffffffc, 0x400008, 0xd0f, 0x80000010, r3, 0x8000) mremap$auto(0x1ff000, 0x100008, 0x843, 0x3, 0xfffff000) mmap$auto(0x2, 0x20009, 0x4000000000df, 0x40000000000e31, 0x401, 0x8003) r4 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x80042, 0x80, 0x31}, 0x18) close_range$auto(r4, r4, 0x6) socketpair$auto(0x1, 0x200002, 0x4, 0x0) close_range$auto(0x2, 0x8, 0x0) r5 = gettid() kexec_load$auto(0x5, 0x3, &(0x7f0000000040)={@buf=&(0x7f0000000240)="302c0082595d7cc980af7a91c3e11d3a1e7d5f13d473e38f4b3cdb65c4678b29bcb919849e92ff6c1a5433e7fbfb24c52b640293555bc37b8abf6520598a35df9c99f772876080e078c5d89d84f8c27a8c201de7d103e6c9dbbd245226b300b1900b6d5df4d8e52d4a8ab330819bd35ef56f3eee03c8b2379e033430ea600c31649163587cd709", 0x2, 0x4, 0xc000}, 0x3) kill$auto(r5, 0x11) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) 6.718316749s ago: executing program 1 (id=320): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000001900), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_GET_TXSC(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x14, r1, 0x186f202170196f7b, 0x70bd26, 0x25dfdbfb}, 0x14}, 0x1, 0x15, 0x0, 0x200008d0}, 0x40080c4) 6.471422898s ago: executing program 1 (id=322): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000240)='/dev/snd/midiC2D2\x00', 0x1, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/vhci_hcd.11/usb31/power/runtime_status\x00', 0x26083, 0x0) sendfile$auto(r1, r1, 0x0, 0xcd) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/slab/kmalloc-64/objects\x00', 0xd0800, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/ram1/queue/add_random\x00', 0x1a3842, 0x0) write$auto(r2, &(0x7f0000000000)='9\x00d1L\xff\x15\xba\xa17=(\xc1\xf8\xff\xff\v\xb5^\xa1/[', 0x4) mmap$auto(0x0, 0x40000a, 0xdd, 0x9b72, 0x2, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nbd10\x00', 0x1206c2, 0x0) write$auto(r4, &(0x7f0000000180)='@/\xf2\x009`2?#\x9a\x97\xc8\xc2M\x8b\xd1\xde\x17U\x9c\xc7\x8f{\xfa\xb4\x13\xbb\xb3\aB\xda\x97x\xa4W\xe8\x92d\xd6\xba\x903iF:\x81x\xf8L\r\xa3;\x8c\xd0\xb3uF\xe9\xd7\xe9I\xd6\xc1\xb4a\x13\xe3\x11`\xab-s\x920a\xf5Sa\xf6.\xaaL\x9acl\x82\x85\xec\xea;\x85\xca\xc9\xa1\x94\x9b]n\x15\\\xd8@\xe5\xb2\xa14]\xac\xe5\xc4\xceBE\xfd\xa7\x7f\xf1\xb3\xe01\xee\xeeI\xc7\xe9n\x9b', 0x4700000) ioctl$auto_BLKRRPART(r3, 0x125f, 0x0) r5 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sg0\x00', 0x20040, 0x0) ioctl$auto_SG_NEXT_CMD_LEN(r5, 0x2283, &(0x7f0000000140)) unshare$auto(0x40000080) mmap$auto(0xfffffffffffffffa, 0xe983, 0xdf, 0xeb1, r0, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ram6\x00', 0x0, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyw7\x00', 0x0, 0x0) ioctl$auto_TCFLSH2(r6, 0x5408, 0x0) openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f00000000c0), 0x200, 0x0) 6.313347175s ago: executing program 0 (id=323): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x1, 0x0) sendto$auto(0x3, 0x0, 0x13, 0x7, 0x0, 0x20) 6.052025761s ago: executing program 2 (id=324): semtimedop$auto(0x9, &(0x7f0000000080)={0x2, 0x0, 0xb}, 0x2, &(0x7f0000000280)={0x8, 0x8}) (async) mmap$auto(0x0, 0x6, 0xfffd, 0xeb1, 0xffffffffffffffff, 0x8000) (async) unshare$auto(0x40000080) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) (async) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event2\x00', 0x34db03, 0x0) (async) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$auto(0x3, 0xae60, 0x10000000000402) (async) ioctl$auto(0x3, 0xae41, 0xffffffffffffffff) ioctl$auto_FS_IOC_SETFSLABEL2(0xffffffffffffffff, 0x41009432, &(0x7f0000000180)="9ddd0f503b5e95d455c4aa4a9af0b1714e5bbe7882f39a286c4835416dd53fff5c80bf729070b0f5337f15226443ae5ea3509ee64d79ec2caae6fcf166e639a282c811c38013b2fca571e756577d4eedde98745c6549edcca74e0804793bb03e9d609791962aee6e68c3271bbac3bc4786e81da3a5b9ddfe8e44c9f36f3c79148c6d8a4a8d33a7f7da291d8929045b42a2b60e8c964f3c9295988b4b75d53f333c4365f9a44e67c18e6b7a2a1f65c9f0655d512e067e5db8e134e61e6e3b53ae06f75ddd4b5f76d8096a5969be535be2b6bb19c85e388f3e0095b3275f84527525a044aadc90b492bc146c4911b2501279fb27cf1f9184e0f07b8dc2cdbc0276") write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7ef) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0xd8200, 0x0) socket(0x21, 0x80000, 0x100) (async) pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0) write$auto(r2, 0x0, 0x0) (async) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/midiC2D3\x00', 0x1, 0x0) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) read$auto_hwsim_simulate_radar_(r4, 0x0, 0x0) (async) ioctl$auto_USB_RAW_IOCTL_EP_READ(0xffffffffffffffff, 0xc0085508, &(0x7f00000002c0)={0x7, 0xd, 0x3, "6312f0fad5585aab7a02f0571706fcd7de4a5833431ba6e9e735061f9fd1db3b0d4f7a729f9f3d4825f46d88d894ac"}) (async) close_range$auto(0x2, 0x8, 0x0) (async) r5 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000380), 0x82002, 0x0) ioctl$auto_RTC_AIE_OFF(r5, 0x7002, 0x0) (async) sendmsg$auto_NL802154_CMD_GET_SEC_DEV(0xffffffffffffffff, 0x0, 0x0) (async) read$auto(r0, 0x0, 0x1f40) r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/fail-nth\x00', 0x20802, 0x0) writev$auto(r6, &(0x7f0000000200)={0x0, 0x7}, 0x8) bpf$auto(0x0, 0x0, 0x6f3) (async) getsockopt$auto_SO_PASSCRED(0xffffffffffffffff, 0x1, 0x10, 0x0, 0x0) 5.742282034s ago: executing program 0 (id=325): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000000), r0) sendmsg$auto_IOAM6_CMD_ADD_SCHEMA(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000480)={0x20, r1, 0x1, 0x70bd2a, 0x25dfdbfb, {0x4, 0x0, 0x900}, [@IOAM6_ATTR_SC_DATA={0x4}, @IOAM6_ATTR_SC_ID={0x8, 0x4, 0x9}]}, 0x20}, 0x1, 0x3000700, 0x0, 0x1}, 0x8010) (fail_nth: 4) 5.359244912s ago: executing program 0 (id=326): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) lsm_list_modules$auto(0x0, 0x0, 0x0) r0 = socket(0x2, 0x801, 0x106) getsockopt$auto(r0, 0x11c, 0x3, 0x0, 0x0) close_range$auto(0x0, 0xffffffffffffffff, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) r2 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r1, 0x541c, r2) (fail_nth: 4) 5.228890372s ago: executing program 0 (id=327): statmount$auto(0x0, &(0x7f0000000180)={0x9, 0x3, 0x1ff, 0x1001, 0x5, 0x717e, 0x0, 0x7, 0x200000000000003, 0xd, 0x4, 0x7ffff, 0x4, 0x1ffffffffffd, 0xff, 0xfffffffffffffffe, 0x7, 0xfffe, 0x7f, 0x2a6, 0x4, 0xa, 0x22000, 0x200, 0x4, 0x84, 0x2, 0x0, 0x0, 0x0, 0x0, [0xe, 0x0, 0x0, 0x6, 0x400000000000000, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x4, 0x9, 0x0, 0x0, 0x4, 0x400, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0, 0x0, 0x81, 0x10, 0xffffffffffffffff, 0x0, 0x400, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0xffffffffffffffff, 0x100000000002]}, 0x1fe, 0xd) r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000003c0), 0x15c1, 0x0) r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r1, 0x4, 0x7ff) ptrace$auto_PTRACE_LISTEN(0x4208, r1, 0x3, 0x8001) lsm_list_modules$auto(&(0x7f0000000000)=0x7, &(0x7f0000000040), 0xee) ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffffffffffd03, &(0x7f00000001c0)) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x4000000, 0xffffffffffff0085, 0x1004) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder1\x00', 0x0, 0x0) dup$auto(r2) socket(0x2, 0x1, 0x106) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r3, &(0x7f0000000080)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x958b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x40008000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x10000]}, 0x0) unshare$auto(0x40000080) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/tty/tty0/active\x00', 0x103280, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x3, 0x5, 0x7, 0x0) socket(0xa, 0x1, 0x0) socket(0x2, 0x1, 0x84) connect$auto(0x3, 0x0, 0x55) listen$auto(0x3, 0x81) 4.296779416s ago: executing program 1 (id=330): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000) socket(0x23, 0x5, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) stat$auto(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x2, 0x9, 0x0, 0x7, 0xee01, 0xee00, 0x0, 0x7, 0x4, 0x0, 0x3, 0x5, 0x7, 0x400, 0x5, 0xa, 0x2}) r2 = setfsgid$auto(0xee00) r3 = fcntl$getown(r0, 0x9) shmctl$auto(0x7, 0x1, &(0x7f0000000380)={{0x6, r1, r2, 0x8001, 0x6, 0x10000, 0x3}, 0x9, 0x3, 0x0, 0x3, @raw=0x4, @inferred=r3, 0x8, 0x0, &(0x7f0000000280)="0c021ce4687f0948e70a1c8bbfbb88ac36e764fe6bec668af2f8d76390b954ffac2c2ec49246def1bfc7dc198e18fa67600163c1c292b3df4391b9a6315e", &(0x7f00000002c0)="3e29d446f5ccf157a9dfd6852fe0b29ab1bbcc2091138de99899789a738af5d6f937d0719bfae54f5db77debbcea0069c56022b8a2ff2dea23ed4ce17dd1d0f1fe7fd4eb4780efcaa2978049365b04e9ed4d7d17d7dc200527dd1ea33b0fafd38738b53a085f5d1768ee8391b71a4b5429f55effe5dbe5746f137969647f3febc3ba2d0c2107827558a80df99af314a3060d0699d50e4a4318cd0505c784771fd19e3f85"}) openat$auto_ima_ascii_measurements_ops_ima_fs(0xffffffffffffff9c, 0x0, 0x80, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x11, 0x80003, 0x300) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x20) openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000080)='/proc/kpageflags\x00', 0x2, 0x0) socket(0xa, 0x3, 0x100) socket(0x2, 0x3, 0xa) socketpair$auto(0x8, 0x7, 0x1, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) ioctl$auto_TCFLSH2(r4, 0x8926, 0x0) r5 = ioctl$auto_NS_GET_MNTNS_ID(0xffffffffffffffff, 0x8008b705, &(0x7f0000000000)) ioctl$auto_SG_GET_PACK_ID(r5, 0x227c, &(0x7f00000000c0)="cb78b2e80aa98461b0e4b5c447f2620948986802462fa7e463b817e68ffb3cf76e8cf6944f860ba5f5aa82e82f7c52c84d7a4cce3d7202dc5093a0ab6a11d69ee19276378bc85d742435285d9a297ffbff9577f15504fc87843b06d89768a8a8da8e6ff6c27a844bde6dde0dc06ce26ebcc79776bdd405937445c980f7") sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0xff, 0x0, 0x1, 0x3}, 0xed7138c}, 0xb, 0xf000000) 4.287172958s ago: executing program 2 (id=331): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) unshare$auto(0x40000080) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3) arch_prctl$auto_ARCH_SHSTK_UNLOCK(0x5004, 0xc) setgroups$auto(0xc00000000, 0xfffffffffffffffc) 4.151877063s ago: executing program 3 (id=332): r0 = epoll_create$auto(0x4) r1 = ioctl$auto_TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000000)=0x5) ioctl$auto_XFS_IOC_FD_TO_HANDLE(r1, 0xc038586a, &(0x7f0000000240)={r0, &(0x7f0000000040)="0108f7989fc7e0f603216ff219faed09a2fac254cf58016ebbdc83711248049f90ab3b088e67e57ebdec304c77484cf6dd036bc75cbb27ec3c4fec5c40177dada540fa0d93f780c0b6ba6c2ca2dcdfb87d720404831427a31e1b1dd9fd649a13087a4510d79e7bc892fba41d1d20bb3431973da24e349c851495dbcc20499cf7ddbb49148ebec00b71cef61d11b6876486d4839a0cef6c", 0xa, &(0x7f0000000100)="591fd9ca9664b191d12cb4086d4943044a063d8668e0ac33b8aeb4682b879d1e25ebd40bba1688de47f414211c99ea3892205c286c410141a5fd9cde6ef6241b8e3347d13e045e1c244c96a7e1166e", 0xf090, &(0x7f0000000280)="7ef423bc9f6cf119f492eb69db57453e53610544716eefa2f9f3180a59f05d8b618f95f262bcca3515ff411054b89649ec11445bc75ed74f4a87b0976d515014690df29fdb01ef275d0060096162abc577cc2c2caab1b2f45fc9790000000004bb747eee0d360740d27f4512388eb64735c79a2eea5ee9249e13d729fa38327d70130d015ccf49d800f93df69d832790a69338620e3b72a9ea56a8cbfeafefb8b1268b549db173af4c9153398f6aeb2500f840b7f4b066b4a5a77d133d0933cfbd6697aa371bd0030dec2c93a8856528d8d5ff19863b3158a3ef522c154ae72246d50bbba21d", &(0x7f0000000200)=0xfffffffd}) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r2 = openat$auto_evm_xattr_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000180), 0x20000, 0x0) ioctl$auto(0x3, 0xffffffff80088a02, r2) 3.964799594s ago: executing program 3 (id=333): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) unshare$auto(0x40000080) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3) arch_prctl$auto_ARCH_SHSTK_UNLOCK(0x5004, 0xc) socketpair$auto(0x1e, 0x9, 0x8000000000000000, 0x0) setgroups$auto(0xc00000000, 0xfffffffffffffffc) 3.920859702s ago: executing program 1 (id=334): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/security/tomoyo/stat\x00', 0x40802, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) r0 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000240), 0xa002, 0x0) writev$auto(r0, 0x0, 0x100) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0) unshare$auto(0x40000080) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/dummy0/mtu\x00', 0xe3542, 0x0) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) r2 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0) readv$auto(r2, &(0x7f0000000680)={&(0x7f0000000540), 0x40200}, 0x3) ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, 0x0) io_uring_register$auto(0x10, 0x7, 0xfffffffffffffffc, 0x1) ppoll$auto(&(0x7f0000000000)={r1, 0x40}, 0x2, 0x0, 0x0, 0x8) r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0) write$auto_console_fops_tty_io(r3, &(0x7f0000000e00)="51426572911c17e9dd66bf94ea32689283bb895dbc0a97721ed6e250c974356905898b7d48acecddf280cf6dd4ba18c1aa3928071c6585025ceab0e2f34f37ddec138ea587fc4def825608b0ab2a6ecac42062bd3c58ba606307b7471b20a40ffa168b91dde4727571c4ec94bfbde1df90ccb265ffda374c98ffb1ee22069af38a3f200532dbbe5e98f4455170e9a137517b9b7b8840359940ab00f37125c2bec0ac36606b6c69edb35967d723fb81a15faea2bd280d1581ad1ef597bb4dc09f6a5d53aaff1877b77c4e425761dc09d34498c1fce72c0ba1041a99b8748a37597b9567cda1de2cbf6962798e5ee11bf7cb2c70a9502f33c43b8e5dc54de743a2e24cb94c22d669b434888a7ce4cb16cd77b324258e07af32adc0cb38f8c622085783f6804edc3913fb9e98c55713fa0bf8101ad0f6f43407ce4be0001d1bb201bec283ade79ab23484c1076e703864629ac9a6031533dc956f705f89f0e0ef7d3109e46859d1f2ad1b8cb3cfcedf868a3be101e8b9acd75e39e6a27a541aa9fe86ad3119b7049c3fad2a901222eb948cabb4b5c3e5ba6ffc02a15bf7d550b00ab0f3dd3002924f7bd0701269ae293c4cb231b9127d1f6b38dd6fbb3429905384eed7eed9330a9c5e732bdd510169d9ca3e420ea2102be3770a0ab598c037b8f01e8910cf8b0942aafb156ac90724cf552df158a7f59c26e62f3fcf32d860c2259cb1b3118a773ff3cfbaf9c5b068dade5cd7778f1ea98700629b62534735fef3071c30afa6ea26f7e651ec140936c07d9e90f1c9faef3e05376b1e121af6a6691616c10e19fd4f16b1858b44d99e597908cda0e8fa8c21d8b700987d7723a4b5a4ff3c371f2d1cb9fb2f054abc58727239ba67a173f1431083fedc7c4304488c13c75e4995a58ac9de085377356ddc5338aeb44e7f3d06f82a5e0c846159c881a0395a3dbf32a9f2530a520721431a752b13b01a89bdf2b38387b72e8a533936623ec396f6ef94ddfcca047bf20a6fe450a03dedb36a57355e2519ff579b5c63095f48407ece8a7c6c4f5b2582616f0a6bba059810c0a28355fb08dceec9e290026452c3135f8ad93f9617f22e590122d43f6fdc1ea0f9ec12c551b5127108443bb081f7a89660034ea4f3c4305108428cc91918dbb28c2a117f09609e40903b13055e92a727afa767b1f97df335ee729686c0113e4cc18aa50f4ad82b1d403cc6c11ac3bf63415560417d7d488df01b69c925ca3fce60ca7ac767fd11df61caf62f3ab67dad043faf1cc334903e0f419c2e97553ecaad5814bf097192e76e9a16bc5c9be932718aba32cd7dbcc6bc634a463c6f709cc81963b39442e710c14c7e107b0aeb7b6a0e3f3757860d10dd741863277c43ce4dcec49f4558959b08f59182baf4f250aa045fee383ceaec280817bf222dfbeeca8c1ec8473176326c1ffd49ea072b5f3c73f36865b6052a1595c1bb76cfe37f976848fbcb408381ddeff9c318a2e6bbfe6c18ef16531fec3c47874a5391238c0d6b0e033db3fce94127cc9c98a4211e5d873f7b4810846d96be2d6cac532fce0ddee737e4d1ddb65b8b2449984a897e4090449ed4fb4006fb9d133e51396d4664a3f0c395c5b24781f8389979ccb565c6461b66db7134d15cff5ae8f935a5bcb23caace2edd2b37a726575e3cb0528de05edd9f03e30feb617767b6a557280a0a288b52af44a1607b6063867e5c9d8d56c44968fd509b5983fa06e6b1eefb2f8cee0c1cb49b8b569cf13b77adbc22ce972cd718167ac571ee41a446d13931f849d5636c729996b36ec84171fde260a4e01e9770cf687591a79833ae6473c51e12c0faab96ef093e6178d485526dbf775c94324c76bd4af2652e9036b1cc0d3df05c9232ee6eef7c4f46a6cf8ad160ad087aba6928bf156bf3ade1d135a965c4a2b283485737da67fe99227f2fbfb3baa74d75fe29122adfd82fcb9325b7ea826a52559654e76d494a374d9535facfcd4ab248e388c516bb8a0dc151b1557e418fd7c625c67ab1c50d6f05b97ba15c55631aeea44b21131aa93ead176f7bfd1418856e28782f004f272738827a64bb695f6b6a08cff8d1917be52a8851bd2bfd57d08bb0660e2ffc23792a419c2e9b006e3b0ad05044d99b97391fd2cceb86cf26acebe089a861340b04fd01e1baa70583032a30ea2e605217b80f7ee16d7e28be43d12bb2b67937dd26a8aeb84fef2f2d52f75232a400e7b279dcfc01953b0c46203477a50b5853e8f7b14b2ba31db742504bca6ed95b18846706c9fd85bf2a3a2642029b9ff2828bf0f7cbd96109a237961be8fe5c62f0fcc04c994f123f4a22f048403eac9308cfd2f2e4350c72e9ef83416ce973d3aa90d281a0275886dd3858b5869784ae58e257aa5af6d373dcc9cf520e364be748833adbb10daa6f6a334b51d27529d86ea5ce874562f9f93da45d244224b936fced3b658abbe7aa1f0d502fffce823f528ab47ea3540722f144733666229ae08cfc7e61247742ea4e3c180938ae7c7b81c1ee975c831f79672e044cefc49894c2ab73bba2580ac476cc0e56b6748b8edbb37a3f8dda7ffad4ec07abce7c4d10fc32e40d5a9db37f7b1e3a6eabedbefa9dd8eef189b92363d3391d384af26b7d47958d3d82845c9b668da5bcbd64058dc9e1c6d903ab5d2aa049d197116a11309a1abe9e5b3f9e7f1c623242b1d8089bc369d145a7070e8a9bdf543dbffe899ff9366009a3b0424a634681b530dad9ef23f136a10c7287068e57f3c2de45adf0a105c328e0035b97168f4c17aa4610b2e6e1a6ba0b71c06417b7a9497be4a009b19d7162adfd4d7b6490faf3782a920281333ad09b848ab5f4d15534b8c4e43dc9604b0630f8d349b2c80a98fde04693c31cbed7d460edfc0138dcc5d3974e682bbd555ac19625bf6e0607d8803391ec9c2dc41fc4e8bceae4f53507137324dd02914a067d52a577b812ddac4a34765c26a98839b3edb6290abff0c75991d6f8c1bd7540f38a7f25fec2f3539f894c938e1f3cf0ff1e6994d6a6ecc457a482f045ba712a85e8e31afd49c8e3480dc1c36d56ab2eceac6e5a847455d8ef4e3d45cd463c421bd1bce2ca57dd88f0e7ab3446cdfa8cb3914c240936f1738af7009e9131b240b59af55d7e38307b91fc8f00410cfdcfacaa341607a801afa63640091eb00b860700ea882878a8d9838f5597b970366be7d167ddebfe3c9253b5dbf7f30a67ee4d87dccb3c723c20200aa5fc036caf12811b19ce49c81ce328d7b24587353ecb99bafd327e33303cf447b36800d1bed8ee10df527d55c0d5f7506fb11cb1338074113579e665c6f3cffde5a8ee98a7bf3f8157986cf7c1c5dbdedaacbe3946b3d8809dec7387f006c062b93b6b481a806e5544ddeea7218fcc15c25a88164bfd0735e6290167cb2dbf4b4a317ba00b1fc27d203a6cff71ef8fe97a97d8e07af2ce1d0a0a2aa9ede7dd0572325075c83c2ecf866aa01654eff55ebe4e489e72152e6a3090e2348732704eb02997ffd23a63faabfbbbd1fb124cab606faed24a393058cea1c1286001ee5c0c1fa26b6a81ebdd4718a94cebdb45bfe812c771df398d3305da03d37ced9d0242b6da212dc9f5c14d7ff999bee20f6621792d1442e449eba8589a823e5e99c65fdffbaefe89e2e32406ec4cf574e335e2d288e4cdad56f4b1b57c364ed3e28809e480d6f410c7ebf43bd2a605d6a8c9facae6b7f8f2c56f792ae21fc0cc5dd9beae0cab3547ebb5467183c2f01bc315bd7bd191088886752dc5108093bdbc91348743440130f33d3dfa9c25490245e5fa904f8660e82253c826b7bea4e9a7a1c627e10c56d71878a644bd176016f29cf5398be14cc0fdec45c65e2b967aedb75212eed1eb05a44da62190009d1c08163b74813b82c27f1e6cd681a4b5150f967444b7bc930da68603fd706e96ba8663b2e50ef0a9b04e321a8a337b08fea7288a3fef5062c7e4c17ad3d490870d39c10b78a74eab25c993527e313a4f59d86de55aa9a8a63f734c2db556692fe993b0cd08e0ab5434c9ec02d5127354f55e6b5d5a7b61685d02edae21ece71d203abf7408211229a9ebbfdeffa2c0f38db274066d0706d80398c172e6daf4a0dce62c2287cbf0d30cfa313d7baf4e5caa18f594f0ab0d854f3cef76ff83e96fa49d0e0f8a47193b51a0a45aee2e1d9a5b372b8ee828f645a06979ec351d798480c7824e846028c02f58b5641acbae1e2079abd86182a662bb1642c9346d7fba628fb012da293acef33b8b76a8885c2e5d685348b6148c5b44409f58d8d5f29344fe8a2e4c2432ae622bb1912ea65d5574bff895025bd72cd780d59cbaa0886afd5d6676d2de6266903115525c075cc3f75ce9eba3787a890e1f758f0e502c4c9c0538dc942cf4e2d69742edeeddb66b1d459fcf6f744b2c40111104ab21fd4e99b4477e25cc5a9af59108c8b2f569d4ba227c754f294fdc1e6b383fd89861a203f4d4ee33814aeb21ee411a0d6918533aa2450b1e35c97ab6f01f3829c8a4c33fe0fbc81dd579bbdb44eda4f335d2bc512ca7f38f603c29033c94df2c9533f4422432f574a021e90a0fe3a4cf54de46e25986315b30956face49e26e8dcbcc9e1363627a9f38a2ee8304307dab4013d77f4c337551e2a6ac230788513cdd15e734263e4973c75757d9809c510977adc3be6c5b110597b09c7dad1f54e4506744710b53221e4a7982ac4c59bfae6370258b5af7864a4ca680addd736e35da579cc0e975e6cdefa3d082c8b4b10b205415c32797d9450c002895c9b405e5d7470f1800000f5ae502a5fbe5cf405", 0xd55) modify_ldt$auto(0x1, 0x0, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0xc0000, 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(r5, 0x0, 0x20000080) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x40, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x20000000007, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) unshare$auto(0x40000080) 3.36485585s ago: executing program 2 (id=335): mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4) lstat$auto(&(0x7f0000000200)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) nanosleep$auto(&(0x7f0000000180)={0x2, 0x44d4}, 0x0) getpid() clock_nanosleep$auto(0x9, 0x0, 0x0, 0x0) socket$nl_generic(0x11, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0) sendmsg$auto_NL80211_CMD_ABORT_SCAN(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000009c0)=ANY=[@ANYBLOB="000428bd7000fddbdf2572000000d5074801df1af0ebe5aff861f90fef1cd29caf556101167b1ccb2741bde9cc96d71b7295da0b178f3145eaa4a00a4fa9fcb281c65c30c1430b48e6f91275f00ee96d06f7e6bd05c1af7b9c0ee013ca8dc3e82a4f7efb413a0b9cd35763b92ded7ee1b9336e0bc7d12d0f26083a168c6a2ee064b2d0f1ae837a4f045fc61d947670f450a56dcff9232275db4c9bdfa9497da2c52e0bf4761f0c22b4a637f951ae926928aa18a8b30cc0c74aecb71862892bac4bf26d65323f9a420a2b0a08b7ae78d2b6c8ab635ddc019192eecf0609683042ca1b7f925fb94234d9a499ac22ca7fb11491478430dfcd6d86fff6598161d76b7688b3af1608daa3de12cffc0dfbfc732073ffd2d967b6a291a471822d0b8c681a370cbb192ac9c7e8f7b2b4119a6549a60dfb08b96f50b9b4143460618f0747ce7330fd6cdc4f79bd47e9420972292f97e72501e07fbf574ddb144caf67a5105d344c669dfa56ee1fd9d0b3c98c72eb8c6c942f9aab5830f2c719947168f101b599369e682da9ba5d3c6019ed6c6c6c376e41e3357455077aa8c321e40f034c6f81eb69767672c53adbfe236c5a49a15ddea8a657a818a8e8ea921fdc11d6034e40ab2afc5e2919de79af646f82d79ca078372f3f1328b25e0718e7f64be83d58a4cbe12ffe3505307434554c96d7095051a6704101a23fb2baf5b81401da72b5213552a7cb54ee801d26f6efb25c3d20c03768e9ffb6b50546735f5d1b553f73d5f8c36a5aa5ab5a5d4e08b910e6f29a52e77d53e27c4827b5bc154c11e8f2625d0c5d8e15a138a0fd72c9458d72bd8be57afa648a003f5d909c0a7aa1062546407f019695df71228ee704c4fe870bca3c4f3d5183aa4f4f19e9bfcf9b282241ee6eabaab6777f72b0b1e52a498464978fa44e2d9a73935efe46b0c3e91fee32949f032740bd3b018c1eb330ce7d0a44553ff12a25f20ed41aefc8b12f4374f1dcdaeae16345ec004ba3bf0d5bf39037bd4b73fb2a6d5022198f3bcf9d623c4f706ae5b3ba632c112424ad5d673f38e3c673c50552731151cb53dd9ec9699d375b451d8f4e2457e5eab34766a66b031dcdcae85e67939edb373588801a5ea82f8d266aa78341c0e1104f2b0dd5ee0c081f3855a06bec389a29645871ea53b10e19e44737951756ecc062dedfccc3fd84aae13d3c5c8328379756f42b1cf8e9453e9491033f2ede522c8daa0577152799451358694c3771169411150f5066a243d6f869671a4a924602cdfa5a35e4cf303cf7271afb702c93a6101275319153d7c88c112b7d1331db47415023ec18b7d558967f82e7970b1616d8cd1bd5deda3f90bcddec801412e8a4ceb854241bcfe0850c7495399338b41ae01528fe5da8296d5cb4a0a5e4ca8c82327da83c0999ab91549f5a08c1ded5d54509bc60b3afbace2fea3c7817aeed4fefc038e86bc77be0029dc5a8f70d41770990583da9b943c9f7c646888171188a9ca40b58b7ff2066bc657dcf369fc8faf74576f61347b0d4016854d5701cacce7eb0ee48f3a302b5892649dad4c910e27976e0ba3f781fb9fc8908904b03455d8d45a6875a18a97da67e91b9f43424c58ceac55ab788fd91097db30ef891cf659dca25f64300f52b544b4be462724803171a0c4328472c3c9a863dbb331029066f55a0e8ef1c3852c3f19c2bbd71c17852bcf22a125ff854592c146258ba99fe1a9dcca3e1a9178ecd0d6096d0642bd1639d547d475dbe4e30b62a0db806e865000b5fac63f537cebc8a4f133843c9d333f566c82a3b2e4a947be01743c36af38975d7396bf804fabf5a102e86ebc9dc18a0f07b5c5ca355cae4000b95f759e53717ec4ccee0778f3cf3f1b3d8a38aa7c56b416d94066f8a4c6f1fe1fc48c4eda755adb52ef60d249a07bac8e7c2e800ac1c7a57e52aff48d219746d31bab3c429e01c4bbd5d46e9a15af19b2f263b7ae60e60052f89a6d0e74e02d27ad64474f19abfb467bfa835e7a9e89f4792bb33bd0eb478a7521ad9728ce1623a4f32aae2f7e7cf41acf10d79d7e2c0e36ba780fa9a7299d1355bcde4c630cb0a0e9e4e2257330751aba40badc2784cd46e4fab142aee3346248010f83527ab291667f9ccbed3394c7799b5764bb29b394c"], 0x7ec}, 0x1, 0x0, 0x0, 0x40040}, 0xc000) write$auto_tty_fops_tty_io(0xffffffffffffffff, &(0x7f0000000580)="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", 0x395) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, 0x0, 0x10004010) ioctl$auto_KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0xd5) write$auto(0xca, &(0x7f0000000140)='\x04>\x01\x01\x00\x00\x00\x00\x01_\x9e\x99:\x06F\x96\b\'\x02\xb0\x93l\xeb\x87\r\b\x87\x14\xf8e6\x9c%\xb6\x9a\\S\xa2(Q\xcc', 0x7f) r0 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000003640)='/proc/self/numa_maps\x00', 0x40080, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xc, 0x800008000) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) lseek$auto(r0, 0x7ff, 0x1) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/midiC2D0\x00', 0x201, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x27fff) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dri/card2\x00', 0x20300, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000fc0)={0x9, 0x10000, 0x8000000000000000, 0x8, 0xe, 0x6da, 0x1, 0x1, 0x6, 0xb, 0x4, 0x2, 0x8, 0xd3, 0x200000000008, 0xdd2, 0x5, 0xe91, 0xfffffff9, 0x81, 0x0, 0x401, 0x0, 0x0, 0x3, 0x8000000, 0x7, 0x2, 0x4, 0x0, 0x3, [0x0, 0xfffffffffffffffe, 0x0, 0x8, 0x0, 0x0, 0x0, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4f3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x17, 0x0, 0x0, 0x5, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffffe], "4e20a4b470fc7be2c85849f1acbb899156537ca3bdcfbec40766e0f02078a211ec770bc9105663ee83bfcb2526250ddbf2574b51f63078f5a35a053edbd62e18346fbdc740d64532051a7b3315feb8bd3d60c62e39f921173836286dcb23d388533dab5c73d6cfb6c43106415467a7131e45ff83f9496efb87ae287649830a5fb71a6a6b387a3f62"}, 0x7, 0x80000001) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00022abd7000fbdbdf25020000000800021d00020000080003"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x800) 3.279411022s ago: executing program 3 (id=336): r0 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x29, 0x7, 0x3e, 0xfffffffffffffffa, 0x1ffda, 0x0, 0xa, 0x2, 0x9, 0x9, 0x9, 0x4, 0xfffffffffffffff8, 0x9, 0x2, 0x10000, 0x7c, 0x7, 0x0, 0x7, 0x2000, 0x1, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0xadd, 0xe9, 0x0, 0x0, 0x7, 0x8, 0x0, 0x7ff, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x10000000000000, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x1, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0xfffffffffffffffa, 0xfffffffffffffffd]}, 0x1ff, 0x200d) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df"], 0x1ac}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0xfff0}, 0x40000) 2.682340531s ago: executing program 3 (id=337): r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram10/queue/max_sectors_kb\x00', 0xe3102, 0x0) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.init/flush\x00', 0x48041, 0x0) write$auto(r2, 0x0, 0x6) sendfile$auto(r0, r1, 0x0, 0x9) 2.490307883s ago: executing program 0 (id=338): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/neigh/ipvlan1/retrans_time\x00', 0x2242, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001200)='/proc/thread-self/net/ip6_flowlabel\x00', 0x280, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x400000, 0x0) pidfd_open$auto(0x0, 0x82) r1 = openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/trace_pipe\x00', 0x20c01, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/devices/platform/dummy_hcd.1/usb2/bNumInterfaces\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000040)=""/4096, 0x1000) select$auto(0x40a, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x2000000948d, 0xffffffffffffffff, 0x95f4da0a, 0xfffffffffffffff7, 0x3, 0x62, 0x80000000, 0x8001, 0x6d41, 0xa7c, 0x1, 0xfffffffffffffffe]}, 0x0) bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_ADD_RXSC(r3, &(0x7f0000004100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000001040)=ANY=[@ANYBLOB="480042e5", @ANYRES16=r1, @ANYBLOB="010026bd7000fcdbdf25010000001800028014000100fe88000000000000000000000000000108000100", @ANYRES32=0x0, @ANYBLOB="bd7566aeabc3011c3485e1468419519ef1258760656600"/33], 0x34}, 0x1, 0x0, 0x0, 0x20040801}, 0x4040080) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) io_uring_register$auto_IORING_REGISTER_CLOCK(r1, 0x1d, &(0x7f0000001100)="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", 0x2) openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x1, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) mmap$auto(0x0, 0x9, 0xdf, 0x1000000eb1, 0x401, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) mmap$auto(0x0, 0xf4, 0xdf, 0xeb1, 0x69a5, 0xa800000000000000) mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000) close_range$auto(0x0, 0xffffffffffffffff, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) socket(0x2, 0x80002, 0x73) r5 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r4, 0x4b72, r5) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) 2.408824294s ago: executing program 3 (id=339): sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) r0 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/devices\x00', 0x600, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0) readv$auto(0x3, 0x0, 0x1) mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) madvise$auto(0x110c230000, 0x1, 0x9) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x28c000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/0/msr\x00', 0x181f82, 0x0) mmap$auto(0x0, 0x20009, 0xe0, 0xeb1, 0xffffffffffffffff, 0x4) write$auto(r1, 0x0, 0x8000000000000001) readv$auto(r2, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x0, 0x0) r3 = syz_genetlink_get_family_id$auto_ovs_vport(0x0, 0xffffffffffffffff) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f00000041c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010028bd7000fbdbdf25020000000800"/26, @ANYRES32=0x0, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x40800}, 0x80) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mmap$auto(0x100000000000000, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0xa901, 0x0) preadv$auto(r0, &(0x7f0000000080)={0x0}, 0x6, 0x22, 0xffc) inotify_init1$auto(0x5) 2.200474648s ago: executing program 0 (id=340): mmap$auto(0xffffffffffffffff, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_5={@target_fd=0x5, 0x7f, 0x9c, 0x7b2, 0x1, @relative_fd=0x2, 0x80}, 0x96) bpf$auto(0x2, 0x0, 0xb) bpf$auto(0x15, 0x0, 0x0) open(0x0, 0x26240, 0x155) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2b, 0x1, 0x0) setsockopt$auto(0x3, 0x1, 0x10, 0x0, 0x9) unshare$auto(0x40000080) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x0, 0x0, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/tty19\x00', 0x800, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) socketpair$auto(0x20004, 0x1, 0x1, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket(0xa, 0x2, 0x3a) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r1, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYRES32=r0], 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x8090) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) futex$auto(&(0x7f00000023c0)=0xf6, 0x3, 0x2, 0x0, &(0x7f0000002440)=0x8, 0x71a8dce0) mmap$auto(0x0, 0x5, 0x4000000000e2, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) 1.914761987s ago: executing program 2 (id=341): mmap$auto(0x0, 0x2020009, 0x8000000003, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0) write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f0000000040)="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", 0xfe04) r1 = openat$auto_trace_options_core_fops_trace(0xffffffffffffff9c, &(0x7f0000000500)='/sys/kernel/debug/tracing/options/stacktrace\x00', 0x10002, 0x0) socket(0x2, 0x1, 0x106) bind$auto(0x3, 0x0, 0x6c) socket(0x1f, 0x80000, 0x1) r2 = io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x44000003, 0x7, 0x9b72, r2, 0x8008) io_uring_setup$auto(0x1, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000540)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r4, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) clock_gettime$auto(0x80000000, 0x0) socket(0x1e, 0x5, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd3/queue/rq_affinity\x00', 0x10b042, 0x0) mmap$auto(0x10000000000000, 0x3, 0xdf, 0xeb1, 0x40000000000a5, 0x80000008002) r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000b80)='/proc/sys/kernel/kptr_restrict\x00', 0x202, 0x0) read$auto(r5, 0x0, 0xb5) r6 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x640, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/020/001\x00', 0x40, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto_MON_IOCG_STATS(r6, 0x80089203, 0x0) ioctl$auto_FIDEDUPERANGE(r1, 0xc0189436, 0x4) mmap$auto(0x0, 0x4000b, 0x27b, 0x9b72, 0x7, 0x28000) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x10b040, 0x0) syslog$auto_SYSLOG_ACTION_READ_CLEAR(0x4, 0xffffffffffffffff, 0x226) 1.0369309s ago: executing program 1 (id=342): socket(0x2, 0x1, 0x106) r0 = socket(0x10, 0x2, 0xc) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x200, 0x1) r1 = socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000340)=ANY=[@ANYBLOB="18000000", @ANYRES16=0x0, @ANYBLOB="0100"], 0x18}, 0x1, 0x0, 0x0, 0x801}, 0x4044) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="1800f5ff", @ANYRES8=r0, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x80) 868.00021ms ago: executing program 1 (id=343): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) bind$auto(0x3, 0x0, 0x6a) setpgid$auto(0x0, 0xffffffffffffffff) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) syz_clone(0x2360411, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/irq/2/name\x00', 0x800, 0x0) read$auto(r2, 0x0, 0x1) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x9, 0x1f, 0x940, 0x1ffde, 0x3, 0x6, 0x8000003, 0x9, 0x6, 0x0, 0x4, 0xb0, 0x7, 0x200, 0x3, 0x205, 0x7, 0x0, 0x3ffff, 0x0, 0x3, 0x7069, 0x0, 0x0, 0x0, 0x0, 0x6, 0x3, [0x0, 0x0, 0x0, 0x8, 0x5, 0x8000004, 0x0, 0x100000000000000, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x100000000, 0x0, 0x8000000000000001, 0x0, 0x1, 0x0, 0x0, 0xfff, 0x4, 0x0, 0x0, 0x2000000000000000]}, 0x203, 0x7d) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000180)=ANY=[], 0x3c}}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) r3 = socket(0x10, 0x2, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000000), r4) sendmsg$auto_IOAM6_CMD_ADD_SCHEMA(r4, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000480)={0x20, r5, 0x1, 0x70bd2a, 0x25dfdbfb, {0x4, 0x0, 0x900}, [@IOAM6_ATTR_SC_DATA={0x4}, @IOAM6_ATTR_SC_ID={0x8, 0x4, 0x9}]}, 0x20}, 0x1, 0x3000700, 0x0, 0x1}, 0x8010) sendmsg$auto_IOAM6_CMD_DEL_NAMESPACE(r3, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r5, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IOAM6_ATTR_NS_ID={0x6, 0x1, 0xf}, @IOAM6_ATTR_NS_ID={0x6, 0x1, 0x81}]}, 0x24}}, 0x4000000) sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x0, 0x33, 0x0, 0x4) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) 0s ago: executing program 3 (id=344): write$auto(0xffffffffffffffff, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) select$auto(0x3, 0x0, 0x0, 0x0, 0x0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r0, 0x0, 0x4) r1 = bpf$auto_BPF_LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000040)=@bpf_attr_7={@btf_id=0x6, 0x101, 0x100, r0}, 0x6) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) open(&(0x7f0000000100)='./file0\x00', 0x40000, 0x188) sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(r1, &(0x7f0000000680)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000640)={&(0x7f00000006c0)=ANY=[@ANYBLOB="1c000000f9047cd8b1eb41daed2f8a55aecc6247173efbc9e4fa46c940a702fec0e3afd6ebd1f24f53e30cc9c5346d1fd882442e54d5828dc1294714ad692a93b681721d256104dccaa2", @ANYBLOB="000125bd7000ffdbdf2503000000080006"], 0x1c}, 0x1, 0x0, 0x0, 0x20000080}, 0x4000000) r4 = ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000380), r1) sendmsg$auto_NL80211_CMD_SET_BSS(r4, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB="18000002f1585af5c875e66ff0e777bc389d4eca681164cdf77e3cd477979abf6164524c778864115555c7a10fd036dfd3c56bb806cb40e20a5ddff53d98ba189f4f5ba655d1836a3e4083908a792c6eb8eb0f5c2cba634bd4358d6157ba5dcffa760fa99d13e0ff476a71e42ad3e256ba0b8cf6c1010496e0f163ff09b85666d69d65d223927139612981772271e4f02a3d7b83699185f5a5d601427b4acc41d755300255dd739d028c877f758e1e92e82b6177a2fb67cfb6d7b61c13149870e4a0ec", @ANYRES16=r5, @ANYBLOB="030028bd7000ffdbdf251900000004008b00"], 0x18}}, 0x4010) clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) write$auto_tomoyo_operations_securityfs_if(0xffffffffffffffff, 0x0, 0x0) select$auto(0x5, &(0x7f00000005c0)={[0x7ffffffe, 0x81, 0x6, 0x66, 0x0, 0x0, 0x3fffffffbffffff, 0x0, 0x7f, 0x7, 0xffffffffffff8001, 0x52bc9707, 0xc, 0xf, 0xa7b, 0xc748]}, &(0x7f00000001c0)={[0x96, 0x4, 0x2, 0x8000, 0x6, 0x7, 0x5, 0x3, 0x2, 0xc, 0xfffffffffffffffb, 0x1000, 0xfffffffffffff800, 0x0, 0x0, 0x8]}, &(0x7f0000000280)={[0xd, 0x9, 0xfffffffffffffff7, 0x6, 0x2, 0x1, 0x8000000000000003, 0x9, 0x6, 0x2, 0xfffffffffffffffe, 0x20000001, 0xf800000000000000, 0x101, 0x8, 0x7]}, &(0x7f0000000300)={0x0, 0x5}) mmap$auto(0xffffffffffffffff, 0x40000b, 0x8, 0x1001d, r2, 0xfff) r6 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_clone3(&(0x7f0000001280)={0x120020480, 0x0, 0x0, 0x0, {0x30}, 0x0, 0x0, 0x0, 0x0, 0x0, {r1}}, 0x58) ioctl$auto_IMADDTIMER(r6, 0x80044940, 0x0) kernel console output (not intermixed with test programs): unexpected cc 0x1001 length: 249 > 9 [ 102.563557][ T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 102.571694][ T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 102.697486][ T5841] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 102.738747][ T5841] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 102.748918][ T5841] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 102.760225][ T5841] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 102.779704][ T5841] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 102.787166][ T5846] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 102.796638][ T5846] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 102.807115][ T5156] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 102.816656][ T5156] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 102.825560][ T5156] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 102.853099][ T51] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 102.862061][ T51] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 102.870632][ T51] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 102.880248][ T51] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 102.889453][ T51] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 102.976202][ T5839] chnl_net:caif_netlink_parms(): no params data found [ 103.216597][ T5839] bridge0: port 1(bridge_slave_0) entered blocking state [ 103.224635][ T5839] bridge0: port 1(bridge_slave_0) entered disabled state [ 103.232497][ T5839] bridge_slave_0: entered allmulticast mode [ 103.240399][ T5839] bridge_slave_0: entered promiscuous mode [ 103.255132][ T5839] bridge0: port 2(bridge_slave_1) entered blocking state [ 103.262357][ T5839] bridge0: port 2(bridge_slave_1) entered disabled state [ 103.269939][ T5839] bridge_slave_1: entered allmulticast mode [ 103.277491][ T5839] bridge_slave_1: entered promiscuous mode [ 103.353570][ T5839] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 103.383334][ T5839] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 103.463043][ T5839] team0: Port device team_slave_0 added [ 103.507834][ T5839] team0: Port device team_slave_1 added [ 103.592698][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 103.600013][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 103.626842][ T5839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 103.639341][ T5851] chnl_net:caif_netlink_parms(): no params data found [ 103.684095][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 103.691187][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 103.717837][ T5839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 103.774467][ T5843] chnl_net:caif_netlink_parms(): no params data found [ 103.906161][ T5839] hsr_slave_0: entered promiscuous mode [ 103.912932][ T5839] hsr_slave_1: entered promiscuous mode [ 103.953732][ T5844] chnl_net:caif_netlink_parms(): no params data found [ 104.015534][ T5851] bridge0: port 1(bridge_slave_0) entered blocking state [ 104.024491][ T5851] bridge0: port 1(bridge_slave_0) entered disabled state [ 104.031827][ T5851] bridge_slave_0: entered allmulticast mode [ 104.039520][ T5851] bridge_slave_0: entered promiscuous mode [ 104.077152][ T5851] bridge0: port 2(bridge_slave_1) entered blocking state [ 104.084418][ T5851] bridge0: port 2(bridge_slave_1) entered disabled state [ 104.091788][ T5851] bridge_slave_1: entered allmulticast mode [ 104.099440][ T5851] bridge_slave_1: entered promiscuous mode [ 104.182838][ T5843] bridge0: port 1(bridge_slave_0) entered blocking state [ 104.190075][ T5843] bridge0: port 1(bridge_slave_0) entered disabled state [ 104.197603][ T5843] bridge_slave_0: entered allmulticast mode [ 104.205795][ T5843] bridge_slave_0: entered promiscuous mode [ 104.239125][ T5843] bridge0: port 2(bridge_slave_1) entered blocking state [ 104.246281][ T5843] bridge0: port 2(bridge_slave_1) entered disabled state [ 104.254179][ T5843] bridge_slave_1: entered allmulticast mode [ 104.262194][ T5843] bridge_slave_1: entered promiscuous mode [ 104.279705][ T5851] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 104.324621][ T5851] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 104.384772][ T5844] bridge0: port 1(bridge_slave_0) entered blocking state [ 104.392121][ T5844] bridge0: port 1(bridge_slave_0) entered disabled state [ 104.399557][ T5844] bridge_slave_0: entered allmulticast mode [ 104.406965][ T5844] bridge_slave_0: entered promiscuous mode [ 104.417441][ T5843] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 104.446806][ T5844] bridge0: port 2(bridge_slave_1) entered blocking state [ 104.454331][ T5844] bridge0: port 2(bridge_slave_1) entered disabled state [ 104.461663][ T5844] bridge_slave_1: entered allmulticast mode [ 104.469694][ T5844] bridge_slave_1: entered promiscuous mode [ 104.479048][ T5843] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 104.503440][ T5851] team0: Port device team_slave_0 added [ 104.545876][ T5851] team0: Port device team_slave_1 added [ 104.588389][ T5843] team0: Port device team_slave_0 added [ 104.610927][ T5844] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 104.629041][ T5843] team0: Port device team_slave_1 added [ 104.651515][ T5844] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 104.680195][ T5841] Bluetooth: hci0: command tx timeout [ 104.705598][ T5851] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 104.713060][ T5851] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 104.739540][ T5851] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 104.753343][ T5851] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 104.760599][ T5851] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 104.786592][ T5851] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 104.826491][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 104.834002][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 104.839330][ T5841] Bluetooth: hci1: command tx timeout [ 104.860409][ T51] Bluetooth: hci2: command tx timeout [ 104.867428][ T5843] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 104.892492][ T5844] team0: Port device team_slave_0 added [ 104.912215][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 104.919295][ T51] Bluetooth: hci3: command tx timeout [ 104.925043][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 104.952268][ T5843] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 104.965485][ T5844] team0: Port device team_slave_1 added [ 105.067287][ T5851] hsr_slave_0: entered promiscuous mode [ 105.074303][ T5851] hsr_slave_1: entered promiscuous mode [ 105.080957][ T5851] debugfs: 'hsr0' already exists in 'hsr' [ 105.086806][ T5851] Cannot create hsr debugfs directory [ 105.102897][ T5844] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 105.110226][ T5844] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 105.136625][ T5844] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 105.180704][ T5839] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 105.194980][ T5844] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 105.202393][ T5844] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 105.228719][ T5844] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 105.267764][ T5843] hsr_slave_0: entered promiscuous mode [ 105.274432][ T5843] hsr_slave_1: entered promiscuous mode [ 105.281111][ T5843] debugfs: 'hsr0' already exists in 'hsr' [ 105.286899][ T5843] Cannot create hsr debugfs directory [ 105.293225][ T5839] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 105.305225][ T5839] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 105.317212][ T5839] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 105.430344][ T5844] hsr_slave_0: entered promiscuous mode [ 105.436876][ T5844] hsr_slave_1: entered promiscuous mode [ 105.443551][ T5844] debugfs: 'hsr0' already exists in 'hsr' [ 105.449910][ T5844] Cannot create hsr debugfs directory [ 105.816194][ T5851] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 105.836719][ T5851] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 105.848322][ T5851] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 105.864576][ T5851] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 105.964004][ T5844] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 105.998388][ T5844] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 106.010957][ T5844] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 106.022571][ T5844] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 106.112008][ T5839] 8021q: adding VLAN 0 to HW filter on device bond0 [ 106.127502][ T5843] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 106.139944][ T5843] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 106.154376][ T5843] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 106.165333][ T5843] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 106.234835][ T5839] 8021q: adding VLAN 0 to HW filter on device team0 [ 106.261200][ T3492] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.268483][ T3492] bridge0: port 1(bridge_slave_0) entered forwarding state [ 106.293442][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.301132][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 106.340451][ T5851] 8021q: adding VLAN 0 to HW filter on device bond0 [ 106.410673][ T5851] 8021q: adding VLAN 0 to HW filter on device team0 [ 106.431352][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.438479][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 106.480013][ T3068] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.487184][ T3068] bridge0: port 2(bridge_slave_1) entered forwarding state [ 106.502159][ T5844] 8021q: adding VLAN 0 to HW filter on device bond0 [ 106.590996][ T5843] 8021q: adding VLAN 0 to HW filter on device bond0 [ 106.607202][ T5844] 8021q: adding VLAN 0 to HW filter on device team0 [ 106.664044][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.671369][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 106.733320][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.740569][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 106.757052][ T5843] 8021q: adding VLAN 0 to HW filter on device team0 [ 106.766560][ T51] Bluetooth: hci0: command tx timeout [ 106.791605][ T3068] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.798888][ T3068] bridge0: port 1(bridge_slave_0) entered forwarding state [ 106.827324][ T3068] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.834501][ T3068] bridge0: port 2(bridge_slave_1) entered forwarding state [ 106.854131][ T5839] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 106.919616][ T51] Bluetooth: hci2: command tx timeout [ 106.925086][ T5841] Bluetooth: hci1: command tx timeout [ 106.999222][ T5841] Bluetooth: hci3: command tx timeout [ 107.092693][ T5839] veth0_vlan: entered promiscuous mode [ 107.124639][ T5839] veth1_vlan: entered promiscuous mode [ 107.221408][ T5839] veth0_macvtap: entered promiscuous mode [ 107.244113][ T5839] veth1_macvtap: entered promiscuous mode [ 107.310154][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 107.361958][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 107.397112][ T3068] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.421759][ T5851] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 107.437587][ T3068] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.448376][ T3068] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.475903][ T3068] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.502161][ T5844] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 107.621635][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.634283][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.704459][ T5844] veth0_vlan: entered promiscuous mode [ 107.716457][ T5843] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 107.721593][ T1145] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.737351][ T1145] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.748086][ T5851] veth0_vlan: entered promiscuous mode [ 107.770051][ T5844] veth1_vlan: entered promiscuous mode [ 107.787564][ T5851] veth1_vlan: entered promiscuous mode [ 107.841082][ T5839] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 107.902898][ T5844] veth0_macvtap: entered promiscuous mode [ 107.953911][ T5923] netlink: 'syz.0.1': attribute type 4 has an invalid length. [ 107.954912][ T5844] veth1_macvtap: entered promiscuous mode [ 107.971101][ T5923] netlink: 314 bytes leftover after parsing attributes in process `syz.0.1'. [ 108.006961][ T5851] veth0_macvtap: entered promiscuous mode [ 108.017670][ T5843] veth0_vlan: entered promiscuous mode [ 108.056607][ T5851] veth1_macvtap: entered promiscuous mode [ 108.076291][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 108.089778][ T5843] veth1_vlan: entered promiscuous mode [ 108.116925][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 108.150082][ T5851] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 108.164506][ T36] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.183421][ T5851] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 108.199668][ T36] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.210089][ T36] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.224823][ T36] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.262648][ T36] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.286033][ T36] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.317049][ T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.330436][ T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.382652][ T30] audit: type=1800 audit(1759517567.493:2): pid=5927 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.5" name="discovery_nqn" dev="configfs" ino=7171 res=0 errno=0 [ 108.447004][ T5843] veth0_macvtap: entered promiscuous mode [ 108.549726][ T5843] veth1_macvtap: entered promiscuous mode [ 108.572389][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.600721][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.772048][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 108.785724][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.803162][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.845181][ T5841] Bluetooth: hci0: command tx timeout [ 108.847414][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 108.946225][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.974632][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.988478][ T3068] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.997447][ T3068] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.008300][ T51] Bluetooth: hci2: command tx timeout [ 109.013820][ T5841] Bluetooth: hci1: command tx timeout [ 109.042000][ T3068] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.051131][ T3068] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.087969][ T3492] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.089514][ T5841] Bluetooth: hci3: command tx timeout [ 109.102333][ T3492] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.318486][ T3068] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.318513][ T3068] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.363126][ T5938] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 5 [ 109.509811][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.509842][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.729844][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 109.848816][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 110.496796][ T5953] mmap: syz.0.8 (5953) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 110.699373][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 110.709012][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 110.918753][ T5841] Bluetooth: hci0: command tx timeout [ 110.920025][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 111.012697][ T5955] sock: sock_timestamping_bind_phc: sock not bind to device [ 111.088986][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 111.097727][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 111.098062][ T5841] Bluetooth: hci1: command tx timeout [ 111.109857][ T51] Bluetooth: hci2: command tx timeout [ 111.160933][ T51] Bluetooth: hci3: command tx timeout [ 112.505045][ T5970] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 113.268411][ T5990] FAULT_INJECTION: forcing a failure. [ 113.268411][ T5990] name failslab, interval 1, probability 0, space 0, times 1 [ 113.289873][ T5990] CPU: 0 UID: 0 PID: 5990 Comm: syz.1.15 Not tainted syzkaller #0 PREEMPT(full) [ 113.289917][ T5990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 113.289940][ T5990] Call Trace: [ 113.289952][ T5990] [ 113.289965][ T5990] dump_stack_lvl+0x16c/0x1f0 [ 113.290010][ T5990] should_fail_ex+0x512/0x640 [ 113.290049][ T5990] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 113.290104][ T5990] should_failslab+0xc2/0x120 [ 113.290169][ T5990] kmem_cache_alloc_noprof+0x75/0x6e0 [ 113.290207][ T5990] ? prepare_creds+0x2c/0x7d0 [ 113.290258][ T5990] ? prepare_creds+0x2c/0x7d0 [ 113.290289][ T5990] prepare_creds+0x2c/0x7d0 [ 113.290326][ T5990] set_current_groups+0x15/0xd0 [ 113.290380][ T5990] __do_sys_setgroups+0x3e0/0x4f0 [ 113.290433][ T5990] ? 0xffffffffff600000 [ 113.290464][ T5990] do_syscall_64+0xcd/0x4b0 [ 113.290502][ T5990] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.290536][ T5990] RIP: 0033:0x7fb773d8eec9 [ 113.290561][ T5990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 113.290593][ T5990] RSP: 002b:00007fb774bbd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000074 [ 113.290624][ T5990] RAX: ffffffffffffffda RBX: 00007fb773fe6090 RCX: 00007fb773d8eec9 [ 113.290645][ T5990] RDX: 0000000000000000 RSI: ffffffffff600000 RDI: 0000000c00000000 [ 113.290664][ T5990] RBP: 00007fb773e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 113.290682][ T5990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 113.290700][ T5990] R13: 00007fb773fe6128 R14: 00007fb773fe6090 R15: 00007ffdda85e788 [ 113.290732][ T5990] ? 0xffffffffff600000 [ 113.290762][ T5990] [ 113.650582][ T5993] syz.0.17 uses obsolete (PF_INET,SOCK_PACKET) [ 113.775390][ T5982] FAULT_INJECTION: forcing a failure. [ 113.775390][ T5982] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 113.791858][ T5982] CPU: 1 UID: 0 PID: 5982 Comm: syz.3.14 Not tainted syzkaller #0 PREEMPT(full) [ 113.791899][ T5982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 113.791918][ T5982] Call Trace: [ 113.791928][ T5982] [ 113.791939][ T5982] dump_stack_lvl+0x16c/0x1f0 [ 113.791979][ T5982] should_fail_ex+0x512/0x640 [ 113.792022][ T5982] _copy_from_user+0x2e/0xd0 [ 113.792064][ T5982] move_addr_to_kernel+0x65/0x170 [ 113.792116][ T5982] __copy_msghdr+0x386/0x470 [ 113.792153][ T5982] copy_msghdr_from_user+0xc1/0x160 [ 113.792190][ T5982] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 113.792238][ T5982] ? __pfx_futex_wake_mark+0x10/0x10 [ 113.792280][ T5982] ___sys_sendmsg+0xfe/0x1d0 [ 113.792318][ T5982] ? __pfx____sys_sendmsg+0x10/0x10 [ 113.792407][ T5982] __sys_sendmsg+0x16d/0x220 [ 113.792445][ T5982] ? __pfx___sys_sendmsg+0x10/0x10 [ 113.792481][ T5982] ? __x64_sys_futex+0x1e0/0x4c0 [ 113.792567][ T5982] do_syscall_64+0xcd/0x4b0 [ 113.792608][ T5982] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.792641][ T5982] RIP: 0033:0x7f915c98eec9 [ 113.792669][ T5982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 113.792701][ T5982] RSP: 002b:00007f915d7c0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 113.792732][ T5982] RAX: ffffffffffffffda RBX: 00007f915cbe5fa0 RCX: 00007f915c98eec9 [ 113.792754][ T5982] RDX: 0000000004000000 RSI: 0000200000000140 RDI: 0000000000000007 [ 113.792774][ T5982] RBP: 00007f915ca11f91 R08: 0000000000000000 R09: 0000000000000000 [ 113.792793][ T5982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 113.792811][ T5982] R13: 00007f915cbe6038 R14: 00007f915cbe5fa0 R15: 00007fff8232c9f8 [ 113.792854][ T5982] [ 114.004815][ T5982] Zero length message leads to an empty skb [ 114.594577][ T6005] process 'syz.3.18' launched ':,' with NULL argv: empty string added [ 114.742572][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 114.830703][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 115.046586][ T6008] tipc: Started in network mode [ 115.075868][ T6008] tipc: Node identity ee00, cluster identity 4711 [ 115.129235][ T6008] tipc: Node number set to 60928 [ 115.134251][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 115.769748][ T6007] Process accounting resumed [ 115.911013][ T6015] FAULT_INJECTION: forcing a failure. [ 115.911013][ T6015] name fail_futex, interval 1, probability 0, space 0, times 1 [ 115.939705][ T6015] CPU: 0 UID: 0 PID: 6015 Comm: syz.1.21 Not tainted syzkaller #0 PREEMPT(full) [ 115.939748][ T6015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 115.939767][ T6015] Call Trace: [ 115.939777][ T6015] [ 115.939789][ T6015] dump_stack_lvl+0x16c/0x1f0 [ 115.939841][ T6015] should_fail_ex+0x512/0x640 [ 115.939886][ T6015] get_futex_key+0x1d0/0x1560 [ 115.939937][ T6015] ? __pfx_get_futex_key+0x10/0x10 [ 115.939984][ T6015] ? futex_private_hash_put+0x176/0x300 [ 115.940055][ T6015] futex_wake+0xea/0x530 [ 115.940084][ T6015] ? futex_wait+0x120/0x380 [ 115.940119][ T6015] ? __pfx_futex_wait+0x10/0x10 [ 115.940154][ T6015] ? __pfx_futex_wake+0x10/0x10 [ 115.940190][ T6015] ? kmem_cache_free+0x2d4/0x6c0 [ 115.940229][ T6015] ? putname+0x154/0x1a0 [ 115.940282][ T6015] do_futex+0x1e3/0x350 [ 115.940331][ T6015] ? __pfx_do_futex+0x10/0x10 [ 115.940383][ T6015] ? __do_sys_statmount+0xf6/0x2140 [ 115.940422][ T6015] __x64_sys_futex+0x1e0/0x4c0 [ 115.940475][ T6015] ? __x64_sys_openat+0x174/0x210 [ 115.940506][ T6015] ? __pfx___x64_sys_futex+0x10/0x10 [ 115.940573][ T6015] do_syscall_64+0xcd/0x4b0 [ 115.940611][ T6015] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.940643][ T6015] RIP: 0033:0x7fb773d8eec9 [ 115.940670][ T6015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 115.940701][ T6015] RSP: 002b:00007fb774bde0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 115.940732][ T6015] RAX: ffffffffffffffda RBX: 00007fb773fe5fa8 RCX: 00007fb773d8eec9 [ 115.940754][ T6015] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb773fe5fac [ 115.940773][ T6015] RBP: 00007fb773fe5fa0 R08: 00007fb774bdf000 R09: 0000000000000000 [ 115.940793][ T6015] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 115.940812][ T6015] R13: 00007fb773fe6038 R14: 00007ffdda85e6a0 R15: 00007ffdda85e788 [ 115.940854][ T6015] [ 116.620889][ T6026] queue_state_write: operation too long [ 116.626641][ T6026] queue_state_write: use 'run', 'start' or 'kick' [ 116.872321][ T6033] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 117.021141][ T30] audit: type=1806 audit(1759517576.143:3): xattr="." res=0 [ 117.692262][ T6029] kAFS: No cell specified [ 118.036986][ T6048] netlink: 296 bytes leftover after parsing attributes in process `syz.2.29'. [ 118.985532][ T6060] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input5 [ 119.297086][ T6061] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 120.429957][ T6063] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input6 [ 120.694186][ T6062] netlink: 'syz.1.30': attribute type 1 has an invalid length. [ 121.766705][ T6079] netlink: 296 bytes leftover after parsing attributes in process `syz.0.34'. [ 122.609687][ T6101] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 5 [ 122.897393][ T6108] queue_state_write: operation too long [ 122.955326][ T6108] queue_state_write: use 'run', 'start' or 'kick' [ 123.711397][ T30] audit: type=1800 audit(4294967300.530:4): pid=6122 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.40" name="lu_gp_id" dev="configfs" ino=8072 res=0 errno=0 [ 125.272452][ T30] audit: type=1800 audit(4294967302.070:5): pid=6152 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.43" name="discovery_nqn" dev="configfs" ino=8096 res=0 errno=0 [ 127.975887][ T6175] FAULT_INJECTION: forcing a failure. [ 127.975887][ T6175] name failslab, interval 1, probability 0, space 0, times 0 [ 128.024162][ T6175] CPU: 0 UID: 0 PID: 6175 Comm: syz.1.47 Not tainted syzkaller #0 PREEMPT(full) [ 128.024208][ T6175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 128.024227][ T6175] Call Trace: [ 128.024239][ T6175] [ 128.024252][ T6175] dump_stack_lvl+0x16c/0x1f0 [ 128.024296][ T6175] should_fail_ex+0x512/0x640 [ 128.024347][ T6175] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 128.024391][ T6175] should_failslab+0xc2/0x120 [ 128.024441][ T6175] kmem_cache_alloc_noprof+0x75/0x6e0 [ 128.024479][ T6175] ? lock_acquire+0x179/0x350 [ 128.024527][ T6175] ? alloc_vfsmnt+0x23/0x6b0 [ 128.024577][ T6175] ? alloc_vfsmnt+0x23/0x6b0 [ 128.024619][ T6175] alloc_vfsmnt+0x23/0x6b0 [ 128.024663][ T6175] clone_mnt+0x6d/0xbf0 [ 128.024688][ T6175] ? copy_mnt_ns+0x1a9/0xa90 [ 128.024734][ T6175] copy_tree+0x31d/0xbd0 [ 128.024782][ T6175] copy_mnt_ns+0x1a9/0xa90 [ 128.024818][ T6175] ? rcu_is_watching+0x12/0xc0 [ 128.024870][ T6175] create_new_namespaces+0xd3/0xa90 [ 128.024910][ T6175] ? bpf_lsm_capable+0x9/0x10 [ 128.024954][ T6175] ? security_capable+0x7e/0x260 [ 128.025007][ T6175] copy_namespaces+0x468/0x560 [ 128.025050][ T6175] copy_process+0x2828/0x76a0 [ 128.025111][ T6175] ? __pfx_copy_process+0x10/0x10 [ 128.025154][ T6175] ? futex_private_hash_put+0x176/0x300 [ 128.025208][ T6175] ? futex_private_hash_put+0x18a/0x300 [ 128.025253][ T6175] kernel_clone+0xfc/0x930 [ 128.025294][ T6175] ? __pfx_kernel_clone+0x10/0x10 [ 128.025373][ T6175] __do_sys_clone+0xce/0x120 [ 128.025421][ T6175] ? __pfx___do_sys_clone+0x10/0x10 [ 128.025489][ T6175] ? xfd_validate_state+0x61/0x180 [ 128.025517][ T6175] ? __pfx_do_writev+0x10/0x10 [ 128.025564][ T6175] do_syscall_64+0xcd/0x4b0 [ 128.025603][ T6175] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.025637][ T6175] RIP: 0033:0x7fb773d8eec9 [ 128.025662][ T6175] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 128.025693][ T6175] RSP: 002b:00007fb774bddfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 128.025725][ T6175] RAX: ffffffffffffffda RBX: 00007fb773fe5fa0 RCX: 00007fb773d8eec9 [ 128.025746][ T6175] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411 [ 128.025765][ T6175] RBP: 00007fb773e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 128.025784][ T6175] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 128.025803][ T6175] R13: 00007fb773fe6038 R14: 00007fb773fe5fa0 R15: 00007ffdda85e788 [ 128.025853][ T6175] [ 130.685997][ T6205] syz.0.52 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 132.847981][ T6234] vivid-003: ================= START STATUS ================= [ 132.866289][ T6234] vivid-003: Radio HW Seek Mode: Bounded [ 132.873010][ T6234] vivid-003: Radio Programmable HW Seek: false [ 132.902063][ T6224] FAULT_INJECTION: forcing a failure. [ 132.902063][ T6224] name failslab, interval 1, probability 0, space 0, times 0 [ 132.904591][ T6234] vivid-003: RDS Rx I/O Mode: [ 132.950462][ T6224] CPU: 1 UID: 0 PID: 6224 Comm: syz.0.55 Not tainted syzkaller #0 PREEMPT(full) [ 132.950510][ T6224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 132.950529][ T6224] Call Trace: [ 132.950540][ T6224] [ 132.950552][ T6224] dump_stack_lvl+0x16c/0x1f0 [ 132.950603][ T6224] should_fail_ex+0x512/0x640 [ 132.950641][ T6224] ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0 [ 132.950689][ T6224] should_failslab+0xc2/0x120 [ 132.950737][ T6224] __kmalloc_node_track_caller_noprof+0xde/0x8a0 [ 132.950784][ T6224] ? kstrdup_const+0x63/0x80 [ 132.950830][ T6224] ? kstrdup+0x53/0x100 [ 132.950865][ T6224] kstrdup+0x53/0x100 [ 132.950903][ T6224] kstrdup_const+0x63/0x80 [ 132.950941][ T6224] alloc_vfsmnt+0xea/0x6b0 [ 132.950987][ T6224] clone_mnt+0x6d/0xbf0 [ 132.951014][ T6224] ? copy_mnt_ns+0x1a9/0xa90 [ 132.951063][ T6224] copy_tree+0x31d/0xbd0 [ 132.951111][ T6224] copy_mnt_ns+0x1a9/0xa90 [ 132.951149][ T6224] ? rcu_is_watching+0x12/0xc0 [ 132.951202][ T6224] create_new_namespaces+0xd3/0xa90 [ 132.951241][ T6224] ? bpf_lsm_capable+0x9/0x10 [ 132.951282][ T6224] ? security_capable+0x7e/0x260 [ 132.951317][ T6224] copy_namespaces+0x468/0x560 [ 132.951366][ T6224] copy_process+0x2828/0x76a0 [ 132.951437][ T6224] ? __pfx_copy_process+0x10/0x10 [ 132.951483][ T6224] ? futex_private_hash_put+0x176/0x300 [ 132.951548][ T6224] ? futex_private_hash_put+0x18a/0x300 [ 132.951610][ T6224] kernel_clone+0xfc/0x930 [ 132.951660][ T6224] ? __pfx_kernel_clone+0x10/0x10 [ 132.951750][ T6224] __do_sys_clone+0xce/0x120 [ 132.951801][ T6224] ? __pfx___do_sys_clone+0x10/0x10 [ 132.951850][ T6224] ? __pfx___might_resched+0x10/0x10 [ 132.951909][ T6224] ? xfd_validate_state+0x61/0x180 [ 132.951939][ T6224] ? __pfx_do_writev+0x10/0x10 [ 132.951988][ T6224] do_syscall_64+0xcd/0x4b0 [ 132.952026][ T6224] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 132.952060][ T6224] RIP: 0033:0x7f020398eec9 [ 132.952085][ T6224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 132.952118][ T6224] RSP: 002b:00007f02048e6fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 132.952147][ T6224] RAX: ffffffffffffffda RBX: 00007f0203be5fa0 RCX: 00007f020398eec9 [ 132.952172][ T6224] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411 [ 132.952190][ T6224] RBP: 00007f0203a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 132.952209][ T6224] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 132.952227][ T6224] R13: 00007f0203be6038 R14: 00007f0203be5fa0 R15: 00007ffe0935b0c8 [ 132.952264][ T6224] [ 132.957984][ T6234] Block I/O [ 133.282330][ T6234] vivid-003: Generate RBDS Instead of RDS: false [ 133.292551][ T6234] vivid-003: RDS Reception: true [ 133.348834][ T6234] vivid-003: RDS Program Type: 0 inactive [ 133.360412][ T6234] vivid-003: RDS PS Name: inactive [ 133.404997][ T6234] vivid-003: RDS Radio Text: inactive [ 133.411262][ T6234] vivid-003: RDS Traffic Announcement: false inactive [ 133.426820][ T6234] vivid-003: RDS Traffic Program: false inactive [ 133.434673][ T6234] vivid-003: RDS Music: false inactive [ 133.443717][ T6234] vivid-003: ================== END STATUS ================== [ 134.534831][ T6254] netlink: 296 bytes leftover after parsing attributes in process `syz.1.60'. [ 134.980868][ T30] audit: type=1800 audit(4294967311.800:6): pid=6262 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.62" name="discovery_nqn" dev="configfs" ino=9409 res=0 errno=0 [ 135.239000][ T6269] queue_state_write: operation too long [ 135.254992][ T6269] queue_state_write: use 'run', 'start' or 'kick' [ 136.830342][ T30] audit: type=1800 audit(4294967313.640:7): pid=6305 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.70" name="lu_gp_id" dev="configfs" ino=9522 res=0 errno=0 [ 137.046302][ T6305] ALUA LU Group already has a valid ID, ignoring request [ 137.056727][ T6305] random: crng reseeded on system resumption [ 137.316443][ T6315] netlink: 280 bytes leftover after parsing attributes in process `syz.1.71'. [ 138.971805][ T51] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 141.009982][ T51] Bluetooth: hci2: command tx timeout [ 141.463201][ T6371] netlink: 280 bytes leftover after parsing attributes in process `syz.1.81'. [ 142.642166][ T6392] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 5 [ 143.189681][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 143.196353][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 143.220687][ T6396] kAFS: No cell specified [ 143.905980][ T6408] WARNING! power/level is deprecated; use power/control instead [ 145.825982][ T6426] netlink: 280 bytes leftover after parsing attributes in process `syz.3.93'. [ 145.988169][ T6420] Process accounting paused [ 146.248140][ T6436] netlink: 342 bytes leftover after parsing attributes in process `syz.2.96'. [ 146.714194][ T6447] blktrace: Concurrent blktraces are not allowed on nbd3 [ 147.186062][ T6451] queue_state_write: operation too long [ 147.229296][ T6451] queue_state_write: use 'run', 'start' or 'kick' [ 148.450485][ T30] audit: type=1800 audit(4294967325.270:8): pid=6461 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.101" name="discovery_nqn" dev="configfs" ino=9782 res=0 errno=0 [ 148.637320][ T6463] queue_state_write: operation too long [ 148.718928][ T6463] queue_state_write: use 'run', 'start' or 'kick' [ 149.020327][ T6454] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 149.517039][ T6473] netlink: 280 bytes leftover after parsing attributes in process `syz.1.106'. [ 149.639572][ T6468] vcan0: tx drop: invalid da for name 0x000000000000003f [ 150.166287][ T6486] FAULT_INJECTION: forcing a failure. [ 150.166287][ T6486] name failslab, interval 1, probability 0, space 0, times 0 [ 150.180305][ T6486] CPU: 1 UID: 0 PID: 6486 Comm: syz.1.109 Not tainted syzkaller #0 PREEMPT(full) [ 150.180351][ T6486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 150.180370][ T6486] Call Trace: [ 150.180380][ T6486] [ 150.180392][ T6486] dump_stack_lvl+0x16c/0x1f0 [ 150.180434][ T6486] should_fail_ex+0x512/0x640 [ 150.180472][ T6486] ? __kmalloc_cache_noprof+0x5f/0x780 [ 150.180513][ T6486] should_failslab+0xc2/0x120 [ 150.180563][ T6486] __kmalloc_cache_noprof+0x72/0x780 [ 150.180600][ T6486] ? assoc_array_insert+0x10c/0x3970 [ 150.180654][ T6486] ? assoc_array_insert+0x10c/0x3970 [ 150.180699][ T6486] assoc_array_insert+0x10c/0x3970 [ 150.180747][ T6486] ? trace_contention_end+0xdd/0x130 [ 150.180802][ T6486] ? __mutex_lock+0x1c5/0x1060 [ 150.180853][ T6486] ? __pfx_assoc_array_insert+0x10/0x10 [ 150.180907][ T6486] ? down_write+0x14d/0x200 [ 150.180944][ T6486] ? __pfx_down_write+0x10/0x10 [ 150.180980][ T6486] ? do_raw_spin_lock+0x12c/0x2b0 [ 150.181013][ T6486] ? find_held_lock+0x2b/0x80 [ 150.181056][ T6486] __key_link_begin+0xf5/0x260 [ 150.181100][ T6486] key_instantiate_and_link+0x1fc/0x4b0 [ 150.181156][ T6486] ? __pfx_key_instantiate_and_link+0x10/0x10 [ 150.181236][ T6486] keyring_alloc+0x7a/0xc0 [ 150.181287][ T6486] keyctl_get_persistent+0x6a8/0x8c0 [ 150.181339][ T6486] ? __pfx_keyctl_get_persistent+0x10/0x10 [ 150.181396][ T6486] ? __x64_sys_futex+0x1e0/0x4c0 [ 150.181441][ T6486] ? __x64_sys_futex+0x1e9/0x4c0 [ 150.181499][ T6486] ? xfd_validate_state+0x61/0x180 [ 150.181528][ T6486] ? __pfx_do_writev+0x10/0x10 [ 150.181572][ T6486] __do_sys_keyctl+0x1a9/0x590 [ 150.181615][ T6486] do_syscall_64+0xcd/0x4b0 [ 150.181654][ T6486] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 150.181686][ T6486] RIP: 0033:0x7fb773d8eec9 [ 150.181712][ T6486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 150.181744][ T6486] RSP: 002b:00007fb774bde038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 150.181775][ T6486] RAX: ffffffffffffffda RBX: 00007fb773fe5fa0 RCX: 00007fb773d8eec9 [ 150.181796][ T6486] RDX: 00000000fffffffe RSI: ffffffffffffffff RDI: 2000000000000016 [ 150.181816][ T6486] RBP: 00007fb773e11f91 R08: 000000000000404e R09: 0000000000000000 [ 150.181836][ T6486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 150.181856][ T6486] R13: 00007fb773fe6038 R14: 00007fb773fe5fa0 R15: 00007ffdda85e788 [ 150.181901][ T6486] [ 150.916811][ T6497] queue_state_write: operation too long [ 150.943154][ T6497] queue_state_write: use 'run', 'start' or 'kick' [ 151.144373][ T6506] queue_state_write: operation too long [ 151.163279][ T6506] queue_state_write: use 'run', 'start' or 'kick' [ 152.142837][ T6510] FAULT_INJECTION: forcing a failure. [ 152.142837][ T6510] name failslab, interval 1, probability 0, space 0, times 0 [ 152.185561][ T6510] CPU: 0 UID: 0 PID: 6510 Comm: syz.0.116 Not tainted syzkaller #0 PREEMPT(full) [ 152.185603][ T6510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 152.185622][ T6510] Call Trace: [ 152.185633][ T6510] [ 152.185645][ T6510] dump_stack_lvl+0x16c/0x1f0 [ 152.185684][ T6510] should_fail_ex+0x512/0x640 [ 152.185721][ T6510] ? fs_reclaim_acquire+0xae/0x150 [ 152.185774][ T6510] should_failslab+0xc2/0x120 [ 152.185824][ T6510] __kmalloc_noprof+0xdd/0x880 [ 152.185860][ T6510] ? tomoyo_encode2+0x100/0x3e0 [ 152.185919][ T6510] ? tomoyo_encode2+0x100/0x3e0 [ 152.185965][ T6510] tomoyo_encode2+0x100/0x3e0 [ 152.186022][ T6510] tomoyo_encode+0x29/0x50 [ 152.186070][ T6510] tomoyo_realpath_from_path+0x18f/0x6e0 [ 152.186136][ T6510] tomoyo_check_open_permission+0x2ab/0x3c0 [ 152.186201][ T6510] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 152.186290][ T6510] ? do_raw_spin_lock+0x12c/0x2b0 [ 152.186337][ T6510] tomoyo_file_open+0x6b/0x90 [ 152.186373][ T6510] security_file_open+0x84/0x1e0 [ 152.186422][ T6510] do_dentry_open+0x596/0x1530 [ 152.186478][ T6510] vfs_open+0x82/0x3f0 [ 152.186534][ T6510] path_openat+0x1de4/0x2cb0 [ 152.186589][ T6510] ? __pfx_path_openat+0x10/0x10 [ 152.186641][ T6510] do_filp_open+0x20b/0x470 [ 152.186683][ T6510] ? __pfx_do_filp_open+0x10/0x10 [ 152.186756][ T6510] ? alloc_fd+0x471/0x7d0 [ 152.186804][ T6510] do_sys_openat2+0x11b/0x1d0 [ 152.186857][ T6510] ? __pfx_do_sys_openat2+0x10/0x10 [ 152.186927][ T6510] __x64_sys_openat+0x174/0x210 [ 152.186959][ T6510] ? __pfx___x64_sys_openat+0x10/0x10 [ 152.187007][ T6510] do_syscall_64+0xcd/0x4b0 [ 152.187046][ T6510] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 152.187079][ T6510] RIP: 0033:0x7f020398eec9 [ 152.187106][ T6510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 152.187138][ T6510] RSP: 002b:00007f02048e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 152.187177][ T6510] RAX: ffffffffffffffda RBX: 00007f0203be5fa0 RCX: 00007f020398eec9 [ 152.187199][ T6510] RDX: 0000000000000800 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 152.187219][ T6510] RBP: 00007f0203a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 152.187239][ T6510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 152.187259][ T6510] R13: 00007f0203be6038 R14: 00007f0203be5fa0 R15: 00007ffe0935b0c8 [ 152.187301][ T6510] [ 152.500915][ T6510] ERROR: Out of memory at tomoyo_realpath_from_path. [ 152.526134][ T6526] netlink: 280 bytes leftover after parsing attributes in process `syz.2.118'. [ 152.909693][ T6533] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 5 [ 153.445672][ T6542] FAULT_INJECTION: forcing a failure. [ 153.445672][ T6542] name failslab, interval 1, probability 0, space 0, times 0 [ 153.538399][ T6542] CPU: 0 UID: 0 PID: 6542 Comm: syz.1.122 Not tainted syzkaller #0 PREEMPT(full) [ 153.538431][ T6542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 153.538444][ T6542] Call Trace: [ 153.538452][ T6542] [ 153.538461][ T6542] dump_stack_lvl+0x16c/0x1f0 [ 153.538490][ T6542] should_fail_ex+0x512/0x640 [ 153.538528][ T6542] ? __kmalloc_cache_node_noprof+0x62/0x7a0 [ 153.538573][ T6542] should_failslab+0xc2/0x120 [ 153.538619][ T6542] __kmalloc_cache_node_noprof+0x75/0x7a0 [ 153.538659][ T6542] ? kasan_save_stack+0x33/0x60 [ 153.538698][ T6542] ? __get_vm_area_node+0x101/0x330 [ 153.538742][ T6542] ? __kasan_save_free_info+0x3b/0x60 [ 153.538797][ T6542] ? __kasan_slab_free+0x5f/0x80 [ 153.538841][ T6542] ? tty_ldisc_close+0x111/0x1a0 [ 153.538876][ T6542] ? __get_vm_area_node+0x101/0x330 [ 153.538922][ T6542] __get_vm_area_node+0x101/0x330 [ 153.538975][ T6542] __vmalloc_node_range_noprof+0x271/0x1480 [ 153.539038][ T6542] ? n_tty_open+0x1a/0x170 [ 153.539091][ T6542] ? n_tty_open+0x1a/0x170 [ 153.539144][ T6542] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 153.539205][ T6542] ? __pfx___might_resched+0x10/0x10 [ 153.539248][ T6542] ? n_tty_open+0x1a/0x170 [ 153.539289][ T6542] __vmalloc_node_noprof+0xad/0xf0 [ 153.539338][ T6542] ? n_tty_open+0x1a/0x170 [ 153.539379][ T6542] ? __pfx_n_tty_open+0x10/0x10 [ 153.539425][ T6542] n_tty_open+0x1a/0x170 [ 153.539465][ T6542] ? __pfx_n_tty_open+0x10/0x10 [ 153.539506][ T6542] tty_ldisc_open+0x9f/0x120 [ 153.539546][ T6542] tty_set_ldisc+0x32b/0x780 [ 153.539583][ T6542] tty_ioctl+0xc2d/0x1680 [ 153.539618][ T6542] ? __pfx_tty_ioctl+0x10/0x10 [ 153.539666][ T6542] ? find_held_lock+0x2b/0x80 [ 153.539702][ T6542] ? hook_file_ioctl_common+0x145/0x410 [ 153.539754][ T6542] ? __fget_files+0x20e/0x3c0 [ 153.539792][ T6542] ? __pfx_tty_ioctl+0x10/0x10 [ 153.539827][ T6542] __x64_sys_ioctl+0x18e/0x210 [ 153.539879][ T6542] do_syscall_64+0xcd/0x4b0 [ 153.539916][ T6542] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 153.539977][ T6542] RIP: 0033:0x7fb773d8eec9 [ 153.540002][ T6542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 153.540036][ T6542] RSP: 002b:00007fb774bde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 153.540063][ T6542] RAX: ffffffffffffffda RBX: 00007fb773fe5fa0 RCX: 00007fb773d8eec9 [ 153.540081][ T6542] RDX: 0000000000000000 RSI: 0000000000005423 RDI: 0000000000000004 [ 153.540098][ T6542] RBP: 00007fb774bde090 R08: 0000000000000000 R09: 0000000000000000 [ 153.540114][ T6542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 153.540130][ T6542] R13: 00007fb773fe6038 R14: 00007fb773fe5fa0 R15: 00007ffdda85e788 [ 153.540168][ T6542] [ 153.975245][ T6542] syz.1.122: vmalloc error: size 9128, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 154.159272][ T6542] CPU: 0 UID: 0 PID: 6542 Comm: syz.1.122 Not tainted syzkaller #0 PREEMPT(full) [ 154.159312][ T6542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 154.159329][ T6542] Call Trace: [ 154.159339][ T6542] [ 154.159350][ T6542] dump_stack_lvl+0x16c/0x1f0 [ 154.159388][ T6542] warn_alloc+0x248/0x3a0 [ 154.159425][ T6542] ? __pfx_warn_alloc+0x10/0x10 [ 154.159462][ T6542] ? rcu_is_watching+0x12/0xc0 [ 154.159504][ T6542] ? __kmalloc_cache_node_noprof+0x2df/0x7a0 [ 154.159547][ T6542] ? __kasan_save_free_info+0x3b/0x60 [ 154.159587][ T6542] ? __kasan_kmalloc+0x8a/0xb0 [ 154.159630][ T6542] ? __get_vm_area_node+0x208/0x330 [ 154.159689][ T6542] __vmalloc_node_range_noprof+0xaf5/0x1480 [ 154.159756][ T6542] ? n_tty_open+0x1a/0x170 [ 154.159819][ T6542] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 154.159881][ T6542] ? __pfx___might_resched+0x10/0x10 [ 154.159925][ T6542] ? n_tty_open+0x1a/0x170 [ 154.159966][ T6542] __vmalloc_node_noprof+0xad/0xf0 [ 154.160015][ T6542] ? n_tty_open+0x1a/0x170 [ 154.160056][ T6542] ? __pfx_n_tty_open+0x10/0x10 [ 154.160101][ T6542] n_tty_open+0x1a/0x170 [ 154.160142][ T6542] ? __pfx_n_tty_open+0x10/0x10 [ 154.160184][ T6542] tty_ldisc_open+0x9f/0x120 [ 154.160215][ T6542] tty_set_ldisc+0x32b/0x780 [ 154.160252][ T6542] tty_ioctl+0xc2d/0x1680 [ 154.160290][ T6542] ? __pfx_tty_ioctl+0x10/0x10 [ 154.160338][ T6542] ? find_held_lock+0x2b/0x80 [ 154.160374][ T6542] ? hook_file_ioctl_common+0x145/0x410 [ 154.160425][ T6542] ? __fget_files+0x20e/0x3c0 [ 154.160467][ T6542] ? __pfx_tty_ioctl+0x10/0x10 [ 154.160504][ T6542] __x64_sys_ioctl+0x18e/0x210 [ 154.160557][ T6542] do_syscall_64+0xcd/0x4b0 [ 154.160594][ T6542] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 154.160626][ T6542] RIP: 0033:0x7fb773d8eec9 [ 154.160651][ T6542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 154.160682][ T6542] RSP: 002b:00007fb774bde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 154.160711][ T6542] RAX: ffffffffffffffda RBX: 00007fb773fe5fa0 RCX: 00007fb773d8eec9 [ 154.160729][ T6542] RDX: 0000000000000000 RSI: 0000000000005423 RDI: 0000000000000004 [ 154.160748][ T6542] RBP: 00007fb774bde090 R08: 0000000000000000 R09: 0000000000000000 [ 154.160767][ T6542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 154.160786][ T6542] R13: 00007fb773fe6038 R14: 00007fb773fe5fa0 R15: 00007ffdda85e788 [ 154.160837][ T6542] [ 154.160890][ T6542] Mem-Info: [ 154.343466][ T6540] kAFS: No cell specified [ 154.449918][ T6542] active_anon:13258 inactive_anon:0 isolated_anon:0 [ 154.449918][ T6542] active_file:3805 inactive_file:39901 isolated_file:0 [ 154.449918][ T6542] unevictable:768 dirty:835 writeback:0 [ 154.449918][ T6542] slab_reclaimable:10602 slab_unreclaimable:91766 [ 154.449918][ T6542] mapped:29539 shmem:7817 pagetables:1181 [ 154.449918][ T6542] sec_pagetables:0 bounce:0 [ 154.449918][ T6542] kernel_misc_reclaimable:0 [ 154.449918][ T6542] free:1339769 free_pcp:15128 free_cma:0 [ 154.569467][ T6542] Node 0 active_anon:57132kB inactive_anon:0kB active_file:15220kB inactive_file:159400kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:121156kB dirty:3336kB writeback:0kB shmem:33832kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11444kB pagetables:4584kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 154.631956][ T6542] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 154.669153][ T6542] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 154.769510][ T6542] lowmem_reserve[]: 0 2488 2488 2488 2488 [ 154.778911][ T6542] Node 0 DMA32 free:1457044kB boost:0kB min:34152kB low:42688kB high:51224kB reserved_highatomic:0KB free_highatomic:0KB active_anon:57132kB inactive_anon:0kB active_file:15220kB inactive_file:159400kB unevictable:1536kB writepending:3336kB zspages:0kB present:3129332kB managed:2548284kB mlocked:0kB bounce:0kB free_pcp:34452kB local_pcp:19288kB free_cma:0kB [ 154.848672][ T6542] lowmem_reserve[]: 0 0 0 0 0 [ 154.874441][ T6542] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:108kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 155.166552][ T6542] lowmem_reserve[]: 0 0 0 0 0 [ 155.172167][ T6542] Node 1 Normal free:3886372kB boost:0kB min:55748kB low:69684kB high:83620kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:4kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:22688kB local_pcp:10048kB free_cma:0kB [ 155.206147][ T6542] lowmem_reserve[]: 0 0 0 0 0 [ 155.212214][ T6542] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 155.225479][ T6542] Node 0 DMA32: 3640*4kB (UM) 2764*8kB (UME) 829*16kB (UME) 209*32kB (UME) 190*64kB (UME) 62*128kB (UM) 19*256kB (UM) 2*512kB (UM) 9*1024kB (UME) 2*2048kB (UM) 329*4096kB (M) = 1443504kB [ 155.225877][ T6550] queue_state_write: operation too long [ 155.245292][ T6542] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 155.270259][ T6542] Node 1 Normal: 217*4kB (UM) 52*8kB (UME) 48*16kB (UME) 99*32kB (UME) 31*64kB (UME) 8*128kB (UME) 5*256kB (UME) 4*512kB (UME) 2*1024kB (UM) 1*2048kB (E) 945*4096kB (M) = 3886372kB [ 155.292005][ T6542] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 155.350998][ T6542] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 155.375057][ T6542] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 155.428600][ T6550] queue_state_write: use 'run', 'start' or 'kick' [ 155.512649][ T6542] Node 1 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 155.598714][ T6542] 59666 total pagecache pages [ 155.609116][ T6542] 6 pages in swap cache [ 155.613414][ T6542] Free swap = 124972kB [ 155.630440][ T6542] Total swap = 124996kB [ 155.634661][ T6542] 2097051 pages RAM [ 155.639171][ T6542] 0 pages HighMem/MovableOnly [ 155.644020][ T6542] 428338 pages reserved [ 155.659527][ T6542] 0 pages cma reserved [ 155.790019][ T6558] netlink: 306 bytes leftover after parsing attributes in process `syz.2.125'. [ 156.344325][ T6563] netlink: 504 bytes leftover after parsing attributes in process `syz.2.127'. [ 156.401843][ T6563] netlink: 504 bytes leftover after parsing attributes in process `syz.2.127'. [ 156.551882][ T30] audit: type=1800 audit(4294967333.370:9): pid=6566 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.128" name="discovery_nqn" dev="configfs" ino=10074 res=0 errno=0 [ 157.049170][ T51] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 157.121290][ T6568] FAULT_INJECTION: forcing a failure. [ 157.121290][ T6568] name failslab, interval 1, probability 0, space 0, times 0 [ 157.134087][ T6568] CPU: 0 UID: 0 PID: 6568 Comm: syz.3.129 Not tainted syzkaller #0 PREEMPT(full) [ 157.134132][ T6568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 157.134152][ T6568] Call Trace: [ 157.134164][ T6568] [ 157.134176][ T6568] dump_stack_lvl+0x16c/0x1f0 [ 157.134219][ T6568] should_fail_ex+0x512/0x640 [ 157.134258][ T6568] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 157.134306][ T6568] should_failslab+0xc2/0x120 [ 157.134356][ T6568] kmem_cache_alloc_noprof+0x75/0x6e0 [ 157.134394][ T6568] ? skb_clone+0x190/0x3f0 [ 157.134438][ T6568] ? skb_clone+0x190/0x3f0 [ 157.134471][ T6568] skb_clone+0x190/0x3f0 [ 157.134518][ T6568] netlink_deliver_tap+0xabd/0xd30 [ 157.134565][ T6568] netlink_unicast+0x64c/0x870 [ 157.134612][ T6568] ? __pfx_netlink_unicast+0x10/0x10 [ 157.134649][ T6568] ? __asan_memset+0x23/0x50 [ 157.134686][ T6568] ? __build_skb_around+0x278/0x3b0 [ 157.134737][ T6568] ? is_vmalloc_addr+0x86/0xa0 [ 157.134778][ T6568] netlink_sendmsg+0x8c8/0xdd0 [ 157.134824][ T6568] ? __pfx_netlink_sendmsg+0x10/0x10 [ 157.134870][ T6568] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 157.134917][ T6568] ____sys_sendmsg+0xa95/0xc70 [ 157.134968][ T6568] ? __pfx_____sys_sendmsg+0x10/0x10 [ 157.135021][ T6568] ? find_held_lock+0x2b/0x80 [ 157.135062][ T6568] ? futex_unqueue+0x133/0x2c0 [ 157.135118][ T6568] ___sys_sendmsg+0x134/0x1d0 [ 157.135157][ T6568] ? __pfx____sys_sendmsg+0x10/0x10 [ 157.135215][ T6568] ? find_held_lock+0x2b/0x80 [ 157.135289][ T6568] __sys_sendmmsg+0x200/0x420 [ 157.135333][ T6568] ? __pfx___sys_sendmmsg+0x10/0x10 [ 157.135384][ T6568] ? __pfx_do_futex+0x10/0x10 [ 157.135434][ T6568] ? fput+0x9b/0xd0 [ 157.135512][ T6568] ? xfd_validate_state+0x61/0x180 [ 157.135554][ T6568] __x64_sys_sendmmsg+0x9c/0x100 [ 157.135591][ T6568] ? lockdep_hardirqs_on+0x7c/0x110 [ 157.135624][ T6568] do_syscall_64+0xcd/0x4b0 [ 157.135665][ T6568] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 157.135699][ T6568] RIP: 0033:0x7f915c98eec9 [ 157.135727][ T6568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 157.135759][ T6568] RSP: 002b:00007f915d7c0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 157.135790][ T6568] RAX: ffffffffffffffda RBX: 00007f915cbe5fa0 RCX: 00007f915c98eec9 [ 157.135812][ T6568] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000007 [ 157.135833][ T6568] RBP: 00007f915ca11f91 R08: 0000000000000000 R09: 0000000000000000 [ 157.135853][ T6568] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000000 [ 157.135873][ T6568] R13: 00007f915cbe6038 R14: 00007f915cbe5fa0 R15: 00007fff8232c9f8 [ 157.135916][ T6568] [ 158.719845][ T6592] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 5 [ 159.080873][ T51] Bluetooth: hci0: command tx timeout [ 159.130794][ T6586] netlink: 334 bytes leftover after parsing attributes in process `syz.0.132'. [ 160.071028][ T6586] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 161.229779][ T6616] queue_state_write: operation too long [ 161.320798][ T6616] queue_state_write: use 'run', 'start' or 'kick' [ 166.321252][ T6671] queue_state_write: operation too long [ 166.326876][ T6671] queue_state_write: use 'run', 'start' or 'kick' [ 167.770837][ T6685] FAULT_INJECTION: forcing a failure. [ 167.770837][ T6685] name failslab, interval 1, probability 0, space 0, times 0 [ 167.795270][ T6685] CPU: 0 UID: 0 PID: 6685 Comm: syz.3.150 Not tainted syzkaller #0 PREEMPT(full) [ 167.795318][ T6685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 167.795336][ T6685] Call Trace: [ 167.795347][ T6685] [ 167.795358][ T6685] dump_stack_lvl+0x16c/0x1f0 [ 167.795397][ T6685] should_fail_ex+0x512/0x640 [ 167.795432][ T6685] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 167.795478][ T6685] should_failslab+0xc2/0x120 [ 167.795525][ T6685] __kvmalloc_node_noprof+0x141/0x9c0 [ 167.795566][ T6685] ? find_held_lock+0x2b/0x80 [ 167.795603][ T6685] ? seq_read_iter+0x830/0x12d0 [ 167.795634][ T6685] ? aa_file_perm+0x28f/0x12e0 [ 167.795690][ T6685] ? seq_read_iter+0x830/0x12d0 [ 167.795719][ T6685] seq_read_iter+0x830/0x12d0 [ 167.795760][ T6685] ? __pfx_aa_file_perm+0x10/0x10 [ 167.795817][ T6685] seq_read+0x3a3/0x570 [ 167.795855][ T6685] ? __pfx_seq_read+0x10/0x10 [ 167.795910][ T6685] ? rw_verify_area+0xcf/0x6c0 [ 167.795946][ T6685] ? __pfx_seq_read+0x10/0x10 [ 167.795978][ T6685] vfs_read+0x1e4/0xcf0 [ 167.796020][ T6685] ? __pfx___mutex_lock+0x10/0x10 [ 167.796055][ T6685] ? __pfx_vfs_read+0x10/0x10 [ 167.796104][ T6685] ? __fget_files+0x20e/0x3c0 [ 167.796153][ T6685] ksys_read+0x12a/0x250 [ 167.796191][ T6685] ? __pfx_ksys_read+0x10/0x10 [ 167.796242][ T6685] do_syscall_64+0xcd/0x4b0 [ 167.796278][ T6685] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 167.796311][ T6685] RIP: 0033:0x7f915c98eec9 [ 167.796336][ T6685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 167.796364][ T6685] RSP: 002b:00007f915d79f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 167.796394][ T6685] RAX: ffffffffffffffda RBX: 00007f915cbe6090 RCX: 00007f915c98eec9 [ 167.796414][ T6685] RDX: 0000000000000fe9 RSI: 00002000000000c0 RDI: 0000000000000003 [ 167.796434][ T6685] RBP: 00007f915d79f090 R08: 0000000000000000 R09: 0000000000000000 [ 167.796453][ T6685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 167.796472][ T6685] R13: 00007f915cbe6128 R14: 00007f915cbe6090 R15: 00007fff8232c9f8 [ 167.796513][ T6685] [ 170.719426][ T6716] FAULT_INJECTION: forcing a failure. [ 170.719426][ T6716] name fail_futex, interval 1, probability 0, space 0, times 0 [ 170.826010][ T6716] CPU: 1 UID: 0 PID: 6716 Comm: syz.3.156 Not tainted syzkaller #0 PREEMPT(full) [ 170.826055][ T6716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 170.826074][ T6716] Call Trace: [ 170.826084][ T6716] [ 170.826098][ T6716] dump_stack_lvl+0x16c/0x1f0 [ 170.826138][ T6716] should_fail_ex+0x512/0x640 [ 170.826183][ T6716] get_futex_key+0x1d0/0x1560 [ 170.826235][ T6716] ? __pfx_get_futex_key+0x10/0x10 [ 170.826308][ T6716] futex_wait_setup+0x9d/0x550 [ 170.826357][ T6716] __futex_wait+0x193/0x2f0 [ 170.826393][ T6716] ? __pfx___futex_wait+0x10/0x10 [ 170.826434][ T6716] ? __pfx_futex_wake_mark+0x10/0x10 [ 170.826475][ T6716] ? futex_private_hash_put+0x176/0x300 [ 170.826530][ T6716] ? futex_private_hash_put+0x18a/0x300 [ 170.826579][ T6716] futex_wait+0xe8/0x380 [ 170.826613][ T6716] ? __pfx_futex_wait+0x10/0x10 [ 170.826661][ T6716] ? ksys_read+0x190/0x250 [ 170.826713][ T6716] do_futex+0x229/0x350 [ 170.826765][ T6716] ? __pfx_do_futex+0x10/0x10 [ 170.826820][ T6716] ? __do_sys_statmount+0xf6/0x2140 [ 170.826859][ T6716] __x64_sys_futex+0x1e0/0x4c0 [ 170.826913][ T6716] ? fput+0x9b/0xd0 [ 170.826960][ T6716] ? __pfx___x64_sys_futex+0x10/0x10 [ 170.827027][ T6716] do_syscall_64+0xcd/0x4b0 [ 170.827066][ T6716] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.827099][ T6716] RIP: 0033:0x7f915c98eec9 [ 170.827125][ T6716] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 170.827156][ T6716] RSP: 002b:00007f915d79f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 170.827187][ T6716] RAX: ffffffffffffffda RBX: 00007f915cbe6098 RCX: 00007f915c98eec9 [ 170.827208][ T6716] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f915cbe6098 [ 170.827228][ T6716] RBP: 00007f915cbe6090 R08: 0000000000000000 R09: 0000000000000000 [ 170.827248][ T6716] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 170.827268][ T6716] R13: 00007f915cbe6128 R14: 00007fff8232c910 R15: 00007fff8232c9f8 [ 170.827318][ T6716] [ 171.031421][ C1] vkms_vblank_simulate: vblank timer overrun [ 171.690180][ T30] audit: type=1800 audit(4294967348.510:10): pid=6723 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.157" name="discovery_nqn" dev="configfs" ino=11263 res=0 errno=0 [ 173.921391][ T6741] FAULT_INJECTION: forcing a failure. [ 173.921391][ T6741] name failslab, interval 1, probability 0, space 0, times 0 [ 174.158650][ T6741] CPU: 0 UID: 0 PID: 6741 Comm: syz.1.161 Not tainted syzkaller #0 PREEMPT(full) [ 174.158683][ T6741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 174.158697][ T6741] Call Trace: [ 174.158705][ T6741] [ 174.158720][ T6741] dump_stack_lvl+0x16c/0x1f0 [ 174.158750][ T6741] should_fail_ex+0x512/0x640 [ 174.158781][ T6741] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 174.158814][ T6741] should_failslab+0xc2/0x120 [ 174.158850][ T6741] kmem_cache_alloc_noprof+0x75/0x6e0 [ 174.158878][ T6741] ? skb_clone+0x190/0x3f0 [ 174.158908][ T6741] ? skb_clone+0x190/0x3f0 [ 174.158931][ T6741] skb_clone+0x190/0x3f0 [ 174.158958][ T6741] netlink_deliver_tap+0xabd/0xd30 [ 174.158990][ T6741] netlink_unicast+0x64c/0x870 [ 174.159022][ T6741] ? __pfx_netlink_unicast+0x10/0x10 [ 174.159047][ T6741] ? __asan_memset+0x23/0x50 [ 174.159073][ T6741] ? __build_skb_around+0x278/0x3b0 [ 174.159109][ T6741] ? is_vmalloc_addr+0x86/0xa0 [ 174.159138][ T6741] netlink_sendmsg+0x8c8/0xdd0 [ 174.159170][ T6741] ? __pfx_netlink_sendmsg+0x10/0x10 [ 174.159201][ T6741] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 174.159234][ T6741] ____sys_sendmsg+0xa95/0xc70 [ 174.159277][ T6741] ? __pfx_____sys_sendmsg+0x10/0x10 [ 174.159314][ T6741] ? find_held_lock+0x2b/0x80 [ 174.159343][ T6741] ? futex_unqueue+0x133/0x2c0 [ 174.159382][ T6741] ___sys_sendmsg+0x134/0x1d0 [ 174.159409][ T6741] ? __pfx____sys_sendmsg+0x10/0x10 [ 174.159448][ T6741] ? find_held_lock+0x2b/0x80 [ 174.159495][ T6741] __sys_sendmmsg+0x200/0x420 [ 174.159524][ T6741] ? __pfx___sys_sendmmsg+0x10/0x10 [ 174.159558][ T6741] ? __pfx_do_futex+0x10/0x10 [ 174.159593][ T6741] ? fput+0x9b/0xd0 [ 174.159641][ T6741] ? xfd_validate_state+0x61/0x180 [ 174.159668][ T6741] __x64_sys_sendmmsg+0x9c/0x100 [ 174.159693][ T6741] ? lockdep_hardirqs_on+0x7c/0x110 [ 174.159715][ T6741] do_syscall_64+0xcd/0x4b0 [ 174.159742][ T6741] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 174.159766][ T6741] RIP: 0033:0x7fb773d8eec9 [ 174.159784][ T6741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 174.159806][ T6741] RSP: 002b:00007fb774bde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 174.159828][ T6741] RAX: ffffffffffffffda RBX: 00007fb773fe5fa0 RCX: 00007fb773d8eec9 [ 174.159843][ T6741] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000007 [ 174.159856][ T6741] RBP: 00007fb773e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 174.159870][ T6741] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000000 [ 174.159884][ T6741] R13: 00007fb773fe6038 R14: 00007fb773fe5fa0 R15: 00007ffdda85e788 [ 174.159913][ T6741] [ 174.452056][ T6747] FAULT_INJECTION: forcing a failure. [ 174.452056][ T6747] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 174.478206][ T6747] CPU: 0 UID: 0 PID: 6747 Comm: syz.3.162 Not tainted syzkaller #0 PREEMPT(full) [ 174.478239][ T6747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 174.478253][ T6747] Call Trace: [ 174.478260][ T6747] [ 174.478269][ T6747] dump_stack_lvl+0x16c/0x1f0 [ 174.478297][ T6747] should_fail_ex+0x512/0x640 [ 174.478328][ T6747] _copy_from_user+0x2e/0xd0 [ 174.478356][ T6747] snd_rawmidi_kernel_write1+0x50a/0x8a0 [ 174.478400][ T6747] snd_rawmidi_write+0x26e/0xc10 [ 174.478440][ T6747] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 174.478473][ T6747] ? common_file_perm+0x1a9/0x340 [ 174.478518][ T6747] ? bpf_lsm_file_permission+0x9/0x10 [ 174.478556][ T6747] ? security_file_permission+0x71/0x210 [ 174.478602][ T6747] ? rw_verify_area+0xcf/0x6c0 [ 174.478638][ T6747] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 174.478678][ T6747] vfs_write+0x2a0/0x11d0 [ 174.478723][ T6747] ? __pfx_vfs_write+0x10/0x10 [ 174.478757][ T6747] ? find_held_lock+0x2b/0x80 [ 174.478794][ T6747] ? __fget_files+0x204/0x3c0 [ 174.478834][ T6747] ? __fget_files+0x20e/0x3c0 [ 174.478878][ T6747] ksys_write+0x1f8/0x250 [ 174.478913][ T6747] ? __pfx_ksys_write+0x10/0x10 [ 174.478962][ T6747] do_syscall_64+0xcd/0x4b0 [ 174.479029][ T6747] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 174.479056][ T6747] RIP: 0033:0x7f915c98eec9 [ 174.479077][ T6747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 174.479102][ T6747] RSP: 002b:00007f915d7c0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 174.479126][ T6747] RAX: ffffffffffffffda RBX: 00007f915cbe5fa0 RCX: 00007f915c98eec9 [ 174.479144][ T6747] RDX: 000000100000a3d9 RSI: 0000200000000400 RDI: 0000000000000004 [ 174.479160][ T6747] RBP: 00007f915d7c0090 R08: 0000000000000000 R09: 0000000000000000 [ 174.479175][ T6747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 174.479191][ T6747] R13: 00007f915cbe6038 R14: 00007f915cbe5fa0 R15: 00007fff8232c9f8 [ 174.479225][ T6747] [ 175.798323][ T6753] cifs: Unknown parameter 'T.żc[$⁍)UÑnE-ʙl- -_5Z omfwYh*/xDlݩgkǐA79Xa/f_ARxM vp$^;q3n-6+ek 18 [ 177.057648][ T51] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:0' [ 177.068310][ T51] CPU: 1 UID: 0 PID: 51 Comm: kworker/u9:0 Not tainted syzkaller #0 PREEMPT(full) [ 177.068352][ T51] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 177.068374][ T51] Workqueue: hci2 hci_rx_work [ 177.068411][ T51] Call Trace: [ 177.068422][ T51] [ 177.068434][ T51] dump_stack_lvl+0x16c/0x1f0 [ 177.068473][ T51] sysfs_warn_dup+0x7f/0xa0 [ 177.068523][ T51] sysfs_create_dir_ns+0x24b/0x2b0 [ 177.068567][ T51] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 177.068607][ T51] ? find_held_lock+0x2b/0x80 [ 177.068645][ T51] ? do_raw_spin_unlock+0x172/0x230 [ 177.068673][ T51] kobject_add_internal+0x2c4/0x9b0 [ 177.068707][ T51] kobject_add+0x16e/0x240 [ 177.068735][ T51] ? __pfx_kobject_add+0x10/0x10 [ 177.068765][ T51] ? do_raw_spin_unlock+0x172/0x230 [ 177.068799][ T51] ? kobject_put+0xab/0x5a0 [ 177.068834][ T51] device_add+0x288/0x1aa0 [ 177.068856][ T51] ? __pfx_dev_set_name+0x10/0x10 [ 177.068881][ T51] ? __pfx_device_add+0x10/0x10 [ 177.068919][ T51] ? mgmt_send_event_skb+0x2fb/0x460 [ 177.068966][ T51] hci_conn_add_sysfs+0x17e/0x230 [ 177.068993][ T51] le_conn_complete_evt+0x1260/0x2150 [ 177.069050][ T51] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 177.069088][ T51] ? bt_warn+0xe4/0x120 [ 177.069121][ T51] ? __pfx_bt_warn+0x10/0x10 [ 177.069163][ T51] hci_le_conn_complete_evt+0x23c/0x370 [ 177.069209][ T51] hci_le_meta_evt+0x354/0x5e0 [ 177.069232][ T51] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 177.069275][ T51] hci_event_packet+0x685/0x11c0 [ 177.069313][ T51] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 177.069339][ T51] ? __pfx_hci_event_packet+0x10/0x10 [ 177.069381][ T51] ? kcov_remote_start+0x3c9/0x6d0 [ 177.069406][ T51] ? lockdep_hardirqs_on+0x7c/0x110 [ 177.069435][ T51] hci_rx_work+0x2c5/0x16b0 [ 177.069461][ T51] ? rcu_is_watching+0x12/0xc0 [ 177.069494][ T51] process_one_work+0x9cc/0x1b70 [ 177.069531][ T51] ? __pfx_process_one_work+0x10/0x10 [ 177.069565][ T51] ? assign_work+0x1a0/0x250 [ 177.069590][ T51] worker_thread+0x6c8/0xf10 [ 177.069627][ T51] ? __pfx_worker_thread+0x10/0x10 [ 177.069652][ T51] kthread+0x3c5/0x780 [ 177.069674][ T51] ? __pfx_kthread+0x10/0x10 [ 177.069698][ T51] ? rcu_is_watching+0x12/0xc0 [ 177.069727][ T51] ? __pfx_kthread+0x10/0x10 [ 177.069750][ T51] ret_from_fork+0x56d/0x730 [ 177.069772][ T51] ? __pfx_kthread+0x10/0x10 [ 177.069800][ T51] ret_from_fork_asm+0x1a/0x30 [ 177.069847][ T51] [ 177.311810][ T51] kobject: kobject_add_internal failed for hci2:0 with -EEXIST, don't try to register things with the same name in the same directory. [ 177.325731][ T51] Bluetooth: hci2: failed to register connection device [ 177.633885][ T6751] Process accounting resumed [ 178.216168][ T6777] FAULT_INJECTION: forcing a failure. [ 178.216168][ T6777] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 178.337368][ T6776] netlink: 334 bytes leftover after parsing attributes in process `syz.1.165'. [ 178.368848][ T6777] CPU: 1 UID: 0 PID: 6777 Comm: syz.2.167 Not tainted syzkaller #0 PREEMPT(full) [ 178.368893][ T6777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 178.368912][ T6777] Call Trace: [ 178.368922][ T6777] [ 178.368933][ T6777] dump_stack_lvl+0x16c/0x1f0 [ 178.368990][ T6777] should_fail_ex+0x512/0x640 [ 178.369034][ T6777] strncpy_from_user+0x3b/0x2e0 [ 178.369072][ T6777] getname_flags.part.0+0x8f/0x550 [ 178.369129][ T6777] getname_flags+0x93/0xf0 [ 178.369166][ T6777] do_sys_openat2+0xb8/0x1d0 [ 178.369214][ T6777] ? __pfx_do_sys_openat2+0x10/0x10 [ 178.369265][ T6777] ? __pfx___might_resched+0x10/0x10 [ 178.369308][ T6777] __x64_sys_openat+0x174/0x210 [ 178.369333][ T6777] ? __pfx___x64_sys_openat+0x10/0x10 [ 178.369373][ T6777] do_syscall_64+0xcd/0x4b0 [ 178.369404][ T6777] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 178.369431][ T6777] RIP: 0033:0x7fe9b438eec9 [ 178.369452][ T6777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 178.369478][ T6777] RSP: 002b:00007fe9b5288038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 178.369503][ T6777] RAX: ffffffffffffffda RBX: 00007fe9b45e6090 RCX: 00007fe9b438eec9 [ 178.369520][ T6777] RDX: 0000000000000800 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 178.369537][ T6777] RBP: 00007fe9b4411f91 R08: 0000000000000000 R09: 0000000000000000 [ 178.369553][ T6777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 178.369569][ T6777] R13: 00007fe9b45e6128 R14: 00007fe9b45e6090 R15: 00007fff1b6704f8 [ 178.369602][ T6777] [ 179.407661][ T5841] Bluetooth: hci2: command tx timeout [ 180.295323][ T6790] kAFS: No cell specified [ 181.149865][ T6805] netlink: 342 bytes leftover after parsing attributes in process `syz.3.173'. [ 181.438958][ T6814] queue_state_write: operation too long [ 181.456931][ T6814] queue_state_write: use 'run', 'start' or 'kick' [ 181.719841][ T6820] FAULT_INJECTION: forcing a failure. [ 181.719841][ T6820] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 181.785179][ T6820] CPU: 0 UID: 0 PID: 6820 Comm: syz.2.177 Not tainted syzkaller #0 PREEMPT(full) [ 181.785228][ T6820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 181.785246][ T6820] Call Trace: [ 181.785256][ T6820] [ 181.785268][ T6820] dump_stack_lvl+0x16c/0x1f0 [ 181.785314][ T6820] should_fail_ex+0x512/0x640 [ 181.785366][ T6820] strncpy_from_user+0x3b/0x2e0 [ 181.785415][ T6820] getname_flags.part.0+0x8f/0x550 [ 181.785483][ T6820] getname_flags+0x93/0xf0 [ 181.785521][ T6820] do_sys_openat2+0xb8/0x1d0 [ 181.785594][ T6820] ? __pfx_do_sys_openat2+0x10/0x10 [ 181.785653][ T6820] ? __pfx___might_resched+0x10/0x10 [ 181.785706][ T6820] __x64_sys_openat+0x174/0x210 [ 181.785737][ T6820] ? __pfx___x64_sys_openat+0x10/0x10 [ 181.785790][ T6820] do_syscall_64+0xcd/0x4b0 [ 181.785830][ T6820] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.785876][ T6820] RIP: 0033:0x7fe9b438eec9 [ 181.785904][ T6820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 181.785936][ T6820] RSP: 002b:00007fe9b5288038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 181.785974][ T6820] RAX: ffffffffffffffda RBX: 00007fe9b45e6090 RCX: 00007fe9b438eec9 [ 181.785995][ T6820] RDX: 0000000000000800 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 181.786016][ T6820] RBP: 00007fe9b4411f91 R08: 0000000000000000 R09: 0000000000000000 [ 181.786043][ T6820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 181.786063][ T6820] R13: 00007fe9b45e6128 R14: 00007fe9b45e6090 R15: 00007fff1b6704f8 [ 181.786105][ T6820] [ 182.819353][ T6831] netlink: 280 bytes leftover after parsing attributes in process `syz.1.181'. [ 185.010190][ T30] audit: type=1800 audit(4294967361.830:11): pid=6856 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.184" name="discovery_nqn" dev="configfs" ino=12501 res=0 errno=0 [ 187.320891][ T6890] queue_state_write: operation too long [ 187.379362][ T6890] queue_state_write: use 'run', 'start' or 'kick' [ 187.574797][ T6882] FAULT_INJECTION: forcing a failure. [ 187.574797][ T6882] name failslab, interval 1, probability 0, space 0, times 0 [ 187.580921][ T6897] netlink: 342 bytes leftover after parsing attributes in process `syz.2.188'. [ 187.607656][ T6882] CPU: 1 UID: 0 PID: 6882 Comm: syz.0.187 Not tainted syzkaller #0 PREEMPT(full) [ 187.607699][ T6882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 187.607717][ T6882] Call Trace: [ 187.607728][ T6882] [ 187.607739][ T6882] dump_stack_lvl+0x16c/0x1f0 [ 187.607781][ T6882] should_fail_ex+0x512/0x640 [ 187.607826][ T6882] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 187.607875][ T6882] should_failslab+0xc2/0x120 [ 187.607939][ T6882] kmem_cache_alloc_noprof+0x75/0x6e0 [ 187.607980][ T6882] ? skb_clone+0x190/0x3f0 [ 187.608023][ T6882] ? skb_clone+0x190/0x3f0 [ 187.608057][ T6882] skb_clone+0x190/0x3f0 [ 187.608096][ T6882] netlink_deliver_tap+0xabd/0xd30 [ 187.608143][ T6882] netlink_unicast+0x64c/0x870 [ 187.608189][ T6882] ? __pfx_netlink_unicast+0x10/0x10 [ 187.608226][ T6882] ? __asan_memset+0x23/0x50 [ 187.608263][ T6882] ? __build_skb_around+0x278/0x3b0 [ 187.608316][ T6882] ? is_vmalloc_addr+0x86/0xa0 [ 187.608357][ T6882] netlink_sendmsg+0x8c8/0xdd0 [ 187.608403][ T6882] ? __pfx_netlink_sendmsg+0x10/0x10 [ 187.608448][ T6882] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 187.608494][ T6882] ____sys_sendmsg+0xa95/0xc70 [ 187.608541][ T6882] ? __pfx_____sys_sendmsg+0x10/0x10 [ 187.608591][ T6882] ? find_held_lock+0x2b/0x80 [ 187.608633][ T6882] ? futex_unqueue+0x133/0x2c0 [ 187.608689][ T6882] ___sys_sendmsg+0x134/0x1d0 [ 187.608728][ T6882] ? __pfx____sys_sendmsg+0x10/0x10 [ 187.608786][ T6882] ? find_held_lock+0x2b/0x80 [ 187.608853][ T6882] __sys_sendmmsg+0x200/0x420 [ 187.608897][ T6882] ? __pfx___sys_sendmmsg+0x10/0x10 [ 187.608956][ T6882] ? __pfx_do_futex+0x10/0x10 [ 187.609007][ T6882] ? fput+0x9b/0xd0 [ 187.609078][ T6882] ? xfd_validate_state+0x61/0x180 [ 187.609119][ T6882] __x64_sys_sendmmsg+0x9c/0x100 [ 187.609156][ T6882] ? lockdep_hardirqs_on+0x7c/0x110 [ 187.609190][ T6882] do_syscall_64+0xcd/0x4b0 [ 187.609229][ T6882] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.609263][ T6882] RIP: 0033:0x7f020398eec9 [ 187.609291][ T6882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 187.609322][ T6882] RSP: 002b:00007f02048e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 187.609364][ T6882] RAX: ffffffffffffffda RBX: 00007f0203be5fa0 RCX: 00007f020398eec9 [ 187.609386][ T6882] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000007 [ 187.609407][ T6882] RBP: 00007f0203a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 187.609427][ T6882] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000000 [ 187.609448][ T6882] R13: 00007f0203be6038 R14: 00007f0203be5fa0 R15: 00007ffe0935b0c8 [ 187.609491][ T6882] [ 188.636423][ T6907] netlink: 280 bytes leftover after parsing attributes in process `syz.3.191'. [ 189.087453][ T6911] FAULT_INJECTION: forcing a failure. [ 189.087453][ T6911] name failslab, interval 1, probability 0, space 0, times 0 [ 189.118723][ T6911] CPU: 1 UID: 0 PID: 6911 Comm: syz.1.192 Not tainted syzkaller #0 PREEMPT(full) [ 189.118762][ T6911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 189.118776][ T6911] Call Trace: [ 189.118783][ T6911] [ 189.118792][ T6911] dump_stack_lvl+0x16c/0x1f0 [ 189.118821][ T6911] should_fail_ex+0x512/0x640 [ 189.118847][ T6911] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 189.118877][ T6911] should_failslab+0xc2/0x120 [ 189.118913][ T6911] kmem_cache_alloc_noprof+0x75/0x6e0 [ 189.118939][ T6911] ? vm_area_dup+0x27/0x8d0 [ 189.118968][ T6911] ? vm_area_dup+0x27/0x8d0 [ 189.118989][ T6911] vm_area_dup+0x27/0x8d0 [ 189.119014][ T6911] dup_mmap+0x86f/0x2280 [ 189.119071][ T6911] ? __pfx_dup_mmap+0x10/0x10 [ 189.119127][ T6911] copy_process+0x3f0c/0x76a0 [ 189.119160][ T6911] ? __pfx___futex_wait+0x10/0x10 [ 189.119196][ T6911] ? __pfx_copy_process+0x10/0x10 [ 189.119229][ T6911] ? futex_private_hash_put+0x176/0x300 [ 189.119267][ T6911] ? futex_private_hash_put+0x18a/0x300 [ 189.119305][ T6911] kernel_clone+0xfc/0x930 [ 189.119340][ T6911] ? __pfx_kernel_clone+0x10/0x10 [ 189.119391][ T6911] __do_sys_clone+0xce/0x120 [ 189.119424][ T6911] ? __pfx___do_sys_clone+0x10/0x10 [ 189.119471][ T6911] ? xfd_validate_state+0x61/0x180 [ 189.119491][ T6911] ? __pfx_do_writev+0x10/0x10 [ 189.119526][ T6911] do_syscall_64+0xcd/0x4b0 [ 189.119553][ T6911] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 189.119577][ T6911] RIP: 0033:0x7fb773d8eec9 [ 189.119595][ T6911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 189.119617][ T6911] RSP: 002b:00007fb774bddfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 189.119639][ T6911] RAX: ffffffffffffffda RBX: 00007fb773fe5fa0 RCX: 00007fb773d8eec9 [ 189.119654][ T6911] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411 [ 189.119668][ T6911] RBP: 00007fb773e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 189.119682][ T6911] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 189.119695][ T6911] R13: 00007fb773fe6038 R14: 00007fb773fe5fa0 R15: 00007ffdda85e788 [ 189.119724][ T6911] [ 189.765086][ T6929] queue_state_write: operation too long [ 189.796103][ T6929] queue_state_write: use 'run', 'start' or 'kick' [ 191.280155][ T30] audit: type=1800 audit(4294967368.100:12): pid=6948 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.198" name="discovery_nqn" dev="configfs" ino=12623 res=0 errno=0 [ 191.333879][ T6950] netlink: 280 bytes leftover after parsing attributes in process `syz.3.199'. [ 191.959533][ T6956] netlink: 280 bytes leftover after parsing attributes in process `syz.3.200'. [ 193.283636][ T6968] syz.3.203 (6968) used greatest stack depth: 19720 bytes left [ 194.586326][ T7006] cifs: Unknown parameter 'T.żc[$⁍)UÑnE-ʙl- -_5Z omfwYh*/xDlݩgkǐA79Xa/f_ARxM vp$^;q3n-6+ek [ 194.672143][ T6993] dump_stack_lvl+0x16c/0x1f0 [ 194.672186][ T6993] should_fail_ex+0x512/0x640 [ 194.672231][ T6993] _copy_from_user+0x2e/0xd0 [ 194.672273][ T6993] copy_msghdr_from_user+0x98/0x160 [ 194.672311][ T6993] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 194.672354][ T6993] ? kfree+0x252/0x6d0 [ 194.672398][ T6993] ___sys_sendmsg+0xfe/0x1d0 [ 194.672435][ T6993] ? __pfx____sys_sendmsg+0x10/0x10 [ 194.672519][ T6993] ? __pfx___might_resched+0x10/0x10 [ 194.672569][ T6993] __sys_sendmmsg+0x200/0x420 [ 194.672612][ T6993] ? __pfx___sys_sendmmsg+0x10/0x10 [ 194.672662][ T6993] ? __pfx_do_futex+0x10/0x10 [ 194.672711][ T6993] ? fput+0x9b/0xd0 [ 194.672780][ T6993] ? xfd_validate_state+0x61/0x180 [ 194.672820][ T6993] __x64_sys_sendmmsg+0x9c/0x100 [ 194.672857][ T6993] ? lockdep_hardirqs_on+0x7c/0x110 [ 194.672890][ T6993] do_syscall_64+0xcd/0x4b0 [ 194.672928][ T6993] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 194.672962][ T6993] RIP: 0033:0x7fb773d8eec9 [ 194.672989][ T6993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 194.673021][ T6993] RSP: 002b:00007fb774bde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 194.673052][ T6993] RAX: ffffffffffffffda RBX: 00007fb773fe5fa0 RCX: 00007fb773d8eec9 [ 194.673074][ T6993] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000007 [ 194.673094][ T6993] RBP: 00007fb773e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 194.673114][ T6993] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000000 [ 194.673133][ T6993] R13: 00007fb773fe6038 R14: 00007fb773fe5fa0 R15: 00007ffdda85e788 [ 194.673176][ T6993] [ 197.616623][ T7034] __vm_enough_memory: pid: 7034, comm: syz.2.215, bytes: 4398046511104 not enough memory for the allocation [ 197.712611][ T7034] HfR: entered promiscuous mode [ 198.458705][ T5841] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 199.113620][ T7049] netlink: 334 bytes leftover after parsing attributes in process `syz.2.217'. [ 199.560733][ T7061] FAULT_INJECTION: forcing a failure. [ 199.560733][ T7061] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 199.574186][ T7061] CPU: 1 UID: 0 PID: 7061 Comm: syz.0.220 Not tainted syzkaller #0 PREEMPT(full) [ 199.574230][ T7061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 199.574250][ T7061] Call Trace: [ 199.574262][ T7061] [ 199.574275][ T7061] dump_stack_lvl+0x16c/0x1f0 [ 199.574318][ T7061] should_fail_ex+0x512/0x640 [ 199.574365][ T7061] _copy_from_iter+0x463/0x1720 [ 199.574417][ T7061] ? __pfx__copy_from_iter+0x10/0x10 [ 199.574459][ T7061] ? __asan_memset+0x23/0x50 [ 199.574498][ T7061] ? __build_skb_around+0x278/0x3b0 [ 199.574549][ T7061] ? is_vmalloc_addr+0x86/0xa0 [ 199.574591][ T7061] netlink_sendmsg+0x820/0xdd0 [ 199.574640][ T7061] ? __pfx_netlink_sendmsg+0x10/0x10 [ 199.574685][ T7061] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 199.574732][ T7061] ____sys_sendmsg+0xa95/0xc70 [ 199.574812][ T7061] ? __pfx_____sys_sendmsg+0x10/0x10 [ 199.574875][ T7061] ? find_held_lock+0x2b/0x80 [ 199.574918][ T7061] ? futex_unqueue+0x133/0x2c0 [ 199.574975][ T7061] ___sys_sendmsg+0x134/0x1d0 [ 199.575015][ T7061] ? __pfx____sys_sendmsg+0x10/0x10 [ 199.575073][ T7061] ? find_held_lock+0x2b/0x80 [ 199.575140][ T7061] __sys_sendmmsg+0x200/0x420 [ 199.575182][ T7061] ? __pfx___sys_sendmmsg+0x10/0x10 [ 199.575232][ T7061] ? __pfx_do_futex+0x10/0x10 [ 199.575282][ T7061] ? fput+0x9b/0xd0 [ 199.575359][ T7061] ? xfd_validate_state+0x61/0x180 [ 199.575399][ T7061] __x64_sys_sendmmsg+0x9c/0x100 [ 199.575437][ T7061] ? lockdep_hardirqs_on+0x7c/0x110 [ 199.575471][ T7061] do_syscall_64+0xcd/0x4b0 [ 199.575510][ T7061] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 199.575544][ T7061] RIP: 0033:0x7f020398eec9 [ 199.575571][ T7061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 199.575605][ T7061] RSP: 002b:00007f02048e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 199.575635][ T7061] RAX: ffffffffffffffda RBX: 00007f0203be5fa0 RCX: 00007f020398eec9 [ 199.575658][ T7061] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000007 [ 199.575678][ T7061] RBP: 00007f0203a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 199.575698][ T7061] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000000 [ 199.575717][ T7061] R13: 00007f0203be6038 R14: 00007f0203be5fa0 R15: 00007ffe0935b0c8 [ 199.575759][ T7061] [ 200.532646][ T51] Bluetooth: hci3: command tx timeout [ 200.688646][ T7087] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 201.775772][ T7093] FAULT_INJECTION: forcing a failure. [ 201.775772][ T7093] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 201.798872][ T7093] CPU: 0 UID: 0 PID: 7093 Comm: syz.3.225 Not tainted syzkaller #0 PREEMPT(full) [ 201.798918][ T7093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 201.798936][ T7093] Call Trace: [ 201.798946][ T7093] [ 201.798959][ T7093] dump_stack_lvl+0x16c/0x1f0 [ 201.799000][ T7093] should_fail_ex+0x512/0x640 [ 201.799046][ T7093] _copy_from_iter+0x463/0x1720 [ 201.799104][ T7093] ? __pfx__copy_from_iter+0x10/0x10 [ 201.799147][ T7093] ? __asan_memset+0x23/0x50 [ 201.799187][ T7093] ? __build_skb_around+0x278/0x3b0 [ 201.799240][ T7093] ? is_vmalloc_addr+0x86/0xa0 [ 201.799282][ T7093] netlink_sendmsg+0x820/0xdd0 [ 201.799330][ T7093] ? __pfx_netlink_sendmsg+0x10/0x10 [ 201.799376][ T7093] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 201.799422][ T7093] ____sys_sendmsg+0xa95/0xc70 [ 201.799474][ T7093] ? __pfx_____sys_sendmsg+0x10/0x10 [ 201.799525][ T7093] ? find_held_lock+0x2b/0x80 [ 201.799567][ T7093] ? futex_unqueue+0x133/0x2c0 [ 201.799622][ T7093] ___sys_sendmsg+0x134/0x1d0 [ 201.799676][ T7093] ? __pfx____sys_sendmsg+0x10/0x10 [ 201.799735][ T7093] ? find_held_lock+0x2b/0x80 [ 201.799804][ T7093] __sys_sendmmsg+0x200/0x420 [ 201.799848][ T7093] ? __pfx___sys_sendmmsg+0x10/0x10 [ 201.799897][ T7093] ? __pfx_do_futex+0x10/0x10 [ 201.799948][ T7093] ? fput+0x9b/0xd0 [ 201.800036][ T7093] ? xfd_validate_state+0x61/0x180 [ 201.800077][ T7093] __x64_sys_sendmmsg+0x9c/0x100 [ 201.800115][ T7093] ? lockdep_hardirqs_on+0x7c/0x110 [ 201.800148][ T7093] do_syscall_64+0xcd/0x4b0 [ 201.800187][ T7093] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 201.800221][ T7093] RIP: 0033:0x7f915c98eec9 [ 201.800248][ T7093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 201.800281][ T7093] RSP: 002b:00007f915d7c0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 201.800313][ T7093] RAX: ffffffffffffffda RBX: 00007f915cbe5fa0 RCX: 00007f915c98eec9 [ 201.800335][ T7093] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000007 [ 201.800355][ T7093] RBP: 00007f915ca11f91 R08: 0000000000000000 R09: 0000000000000000 [ 201.800376][ T7093] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000000 [ 201.800396][ T7093] R13: 00007f915cbe6038 R14: 00007f915cbe5fa0 R15: 00007fff8232c9f8 [ 201.800438][ T7093] [ 203.598321][ T5841] Bluetooth: hci3: unexpected event 0x01 length: 5 > 1 [ 203.881674][ T7098] netlink: 'syz.0.226': attribute type 1 has an invalid length. [ 204.602999][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 204.615350][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 205.551857][ T7135] vivid-003: ================= START STATUS ================= [ 205.598817][ T7135] vivid-003: Radio HW Seek Mode: Bounded [ 205.604576][ T7135] vivid-003: Radio Programmable HW Seek: false [ 205.683300][ T7135] vivid-003: RDS Rx I/O Mode: Block I/O [ 205.724740][ T7135] vivid-003: Generate RBDS Instead of RDS: false [ 205.763816][ T7135] vivid-003: RDS Reception: true [ 205.785520][ T7135] vivid-003: RDS Program Type: 0 inactive [ 205.837627][ T7135] vivid-003: RDS PS Name: inactive [ 205.856871][ T7135] vivid-003: RDS Radio Text: inactive [ 205.862850][ T7135] vivid-003: RDS Traffic Announcement: false inactive [ 205.887307][ T7135] vivid-003: RDS Traffic Program: false inactive [ 205.988580][ T7135] vivid-003: RDS Music: false inactive [ 206.088463][ T7135] vivid-003: ================== END STATUS ================== [ 206.272167][ T7149] netlink: 4 bytes leftover after parsing attributes in process `syz.2.233'. [ 206.700957][ T7154] netlink: 280 bytes leftover after parsing attributes in process `syz.2.234'. [ 207.552408][ T7171] queue_state_write: operation too long [ 207.577490][ T7171] queue_state_write: use 'run', 'start' or 'kick' [ 208.104377][ T7179] Process accounting paused [ 208.391533][ T7188] netlink: 280 bytes leftover after parsing attributes in process `syz.2.240'. [ 211.937160][ T7222] kexec: Could not allocate control_code_buffer [ 212.334573][ T7234] queue_state_write: operation too long [ 212.340468][ T7234] queue_state_write: use 'run', 'start' or 'kick' [ 212.950167][ T7255] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 5 [ 213.105395][ T7248] netlink: 280 bytes leftover after parsing attributes in process `syz.0.252'. [ 214.246214][ T7281] FAULT_INJECTION: forcing a failure. [ 214.246214][ T7281] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 214.330537][ T7281] CPU: 0 UID: 0 PID: 7281 Comm: syz.3.253 Not tainted syzkaller #0 PREEMPT(full) [ 214.330577][ T7281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 214.330595][ T7281] Call Trace: [ 214.330605][ T7281] [ 214.330617][ T7281] dump_stack_lvl+0x16c/0x1f0 [ 214.330657][ T7281] should_fail_ex+0x512/0x640 [ 214.330700][ T7281] _copy_from_user+0x2e/0xd0 [ 214.330741][ T7281] copy_msghdr_from_user+0x98/0x160 [ 214.330778][ T7281] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 214.330831][ T7281] ? __pfx__kstrtoull+0x10/0x10 [ 214.330887][ T7281] ___sys_sendmsg+0xfe/0x1d0 [ 214.330923][ T7281] ? __pfx____sys_sendmsg+0x10/0x10 [ 214.330978][ T7281] ? find_held_lock+0x2b/0x80 [ 214.331042][ T7281] __sys_sendmmsg+0x200/0x420 [ 214.331081][ T7281] ? __pfx___sys_sendmmsg+0x10/0x10 [ 214.331132][ T7281] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 214.331184][ T7281] ? fput+0x9b/0xd0 [ 214.331232][ T7281] ? ksys_write+0x1ac/0x250 [ 214.331270][ T7281] ? __pfx_ksys_write+0x10/0x10 [ 214.331316][ T7281] __x64_sys_sendmmsg+0x9c/0x100 [ 214.331352][ T7281] ? lockdep_hardirqs_on+0x7c/0x110 [ 214.331382][ T7281] do_syscall_64+0xcd/0x4b0 [ 214.331418][ T7281] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 214.331449][ T7281] RIP: 0033:0x7f915c98eec9 [ 214.331474][ T7281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 214.331502][ T7281] RSP: 002b:00007f915d79f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 214.331530][ T7281] RAX: ffffffffffffffda RBX: 00007f915cbe6090 RCX: 00007f915c98eec9 [ 214.331555][ T7281] RDX: 000000000000000b RSI: 0000200000000080 RDI: 0000000000000003 [ 214.331573][ T7281] RBP: 00007f915d79f090 R08: 0000000000000000 R09: 0000000000000000 [ 214.331590][ T7281] R10: 000000000f000000 R11: 0000000000000246 R12: 0000000000000001 [ 214.331607][ T7281] R13: 00007f915cbe6128 R14: 00007f915cbe6090 R15: 00007fff8232c9f8 [ 214.331658][ T7281] [ 214.357692][ T7285] netlink: 342 bytes leftover after parsing attributes in process `syz.2.256'. [ 214.357891][ C0] vkms_vblank_simulate: vblank timer overrun [ 214.548660][ C0] vkms_vblank_simulate: vblank timer overrun [ 215.282909][ T7297] FAULT_INJECTION: forcing a failure. [ 215.282909][ T7297] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 215.349688][ T7297] CPU: 0 UID: 0 PID: 7297 Comm: syz.1.260 Not tainted syzkaller #0 PREEMPT(full) [ 215.349730][ T7297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 215.349749][ T7297] Call Trace: [ 215.349759][ T7297] [ 215.349770][ T7297] dump_stack_lvl+0x16c/0x1f0 [ 215.349809][ T7297] should_fail_ex+0x512/0x640 [ 215.349853][ T7297] _copy_from_user+0x2e/0xd0 [ 215.349894][ T7297] set_selection_user+0x83/0x140 [ 215.349925][ T7297] ? __pfx_set_selection_user+0x10/0x10 [ 215.349960][ T7297] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 215.349998][ T7297] tioclinux+0x2b1/0x640 [ 215.350037][ T7297] vt_ioctl+0x1fdf/0x30a0 [ 215.350082][ T7297] ? lockdep_hardirqs_on+0x7c/0x110 [ 215.350118][ T7297] ? __pfx_vt_ioctl+0x10/0x10 [ 215.350167][ T7297] ? tomoyo_path_number_perm+0x295/0x580 [ 215.350217][ T7297] ? tomoyo_path_number_perm+0x18d/0x580 [ 215.350264][ T7297] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 215.350309][ T7297] ? find_held_lock+0x2b/0x80 [ 215.350349][ T7297] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 215.350387][ T7297] ? tty_jobctrl_ioctl+0x152/0xe00 [ 215.350441][ T7297] ? __pfx_vt_ioctl+0x10/0x10 [ 215.350483][ T7297] tty_ioctl+0x661/0x1680 [ 215.350520][ T7297] ? __pfx_tty_ioctl+0x10/0x10 [ 215.350568][ T7297] ? find_held_lock+0x2b/0x80 [ 215.350605][ T7297] ? hook_file_ioctl_common+0x145/0x410 [ 215.350659][ T7297] ? __fget_files+0x20e/0x3c0 [ 215.350707][ T7297] ? __pfx_tty_ioctl+0x10/0x10 [ 215.350745][ T7297] __x64_sys_ioctl+0x18e/0x210 [ 215.350799][ T7297] do_syscall_64+0xcd/0x4b0 [ 215.350837][ T7297] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 215.350869][ T7297] RIP: 0033:0x7fb773d8eec9 [ 215.350893][ T7297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 215.350923][ T7297] RSP: 002b:00007fb774bde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 215.350952][ T7297] RAX: ffffffffffffffda RBX: 00007fb773fe5fa0 RCX: 00007fb773d8eec9 [ 215.350972][ T7297] RDX: 0000000000000000 RSI: 000000000000541c RDI: 0000000000000001 [ 215.350989][ T7297] RBP: 00007fb774bde090 R08: 0000000000000000 R09: 0000000000000000 [ 215.351006][ T7297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 215.351023][ T7297] R13: 00007fb773fe6038 R14: 00007fb773fe5fa0 R15: 00007ffdda85e788 [ 215.351063][ T7297] [ 215.590249][ C0] vkms_vblank_simulate: vblank timer overrun [ 215.900477][ T7307] queue_state_write: operation too long [ 215.906107][ T7307] queue_state_write: use 'run', 'start' or 'kick' [ 216.440941][ T7318] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 216.806333][ T7322] netlink: 342 bytes leftover after parsing attributes in process `syz.0.266'. [ 218.182427][ T7329] FAULT_INJECTION: forcing a failure. [ 218.182427][ T7329] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 218.195890][ T7329] CPU: 0 UID: 0 PID: 7329 Comm: syz.0.268 Not tainted syzkaller #0 PREEMPT(full) [ 218.195947][ T7329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 218.195962][ T7329] Call Trace: [ 218.195972][ T7329] [ 218.195982][ T7329] dump_stack_lvl+0x16c/0x1f0 [ 218.196011][ T7329] should_fail_ex+0x512/0x640 [ 218.196044][ T7329] _copy_from_iter+0x463/0x1720 [ 218.196080][ T7329] ? __pfx__copy_from_iter+0x10/0x10 [ 218.196109][ T7329] ? __asan_memset+0x23/0x50 [ 218.196137][ T7329] ? __build_skb_around+0x278/0x3b0 [ 218.196174][ T7329] ? is_vmalloc_addr+0x86/0xa0 [ 218.196203][ T7329] netlink_sendmsg+0x820/0xdd0 [ 218.196250][ T7329] ? __pfx_netlink_sendmsg+0x10/0x10 [ 218.196294][ T7329] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 218.196337][ T7329] ____sys_sendmsg+0xa95/0xc70 [ 218.196387][ T7329] ? __pfx_____sys_sendmsg+0x10/0x10 [ 218.196436][ T7329] ? find_held_lock+0x2b/0x80 [ 218.196476][ T7329] ? futex_unqueue+0x133/0x2c0 [ 218.196531][ T7329] ___sys_sendmsg+0x134/0x1d0 [ 218.196567][ T7329] ? __pfx____sys_sendmsg+0x10/0x10 [ 218.196625][ T7329] ? find_held_lock+0x2b/0x80 [ 218.196693][ T7329] __sys_sendmmsg+0x200/0x420 [ 218.196733][ T7329] ? __pfx___sys_sendmmsg+0x10/0x10 [ 218.196783][ T7329] ? __pfx_do_futex+0x10/0x10 [ 218.196832][ T7329] ? fput+0x9b/0xd0 [ 218.196902][ T7329] ? xfd_validate_state+0x61/0x180 [ 218.196941][ T7329] __x64_sys_sendmmsg+0x9c/0x100 [ 218.196976][ T7329] ? lockdep_hardirqs_on+0x7c/0x110 [ 218.197009][ T7329] do_syscall_64+0xcd/0x4b0 [ 218.197047][ T7329] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 218.197081][ T7329] RIP: 0033:0x7f020398eec9 [ 218.197109][ T7329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 218.197142][ T7329] RSP: 002b:00007f02048e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 218.197174][ T7329] RAX: ffffffffffffffda RBX: 00007f0203be5fa0 RCX: 00007f020398eec9 [ 218.197195][ T7329] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000007 [ 218.197225][ T7329] RBP: 00007f0203a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 218.197246][ T7329] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000000 [ 218.197266][ T7329] R13: 00007f0203be6038 R14: 00007f0203be5fa0 R15: 00007ffe0935b0c8 [ 218.197309][ T7329] [ 218.435819][ T7346] FAULT_INJECTION: forcing a failure. [ 218.435819][ T7346] name failslab, interval 1, probability 0, space 0, times 0 [ 218.456450][ T7346] CPU: 1 UID: 0 PID: 7346 Comm: syz.2.271 Not tainted syzkaller #0 PREEMPT(full) [ 218.456521][ T7346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 218.456542][ T7346] Call Trace: [ 218.456553][ T7346] [ 218.456566][ T7346] dump_stack_lvl+0x16c/0x1f0 [ 218.456610][ T7346] should_fail_ex+0x512/0x640 [ 218.456651][ T7346] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 218.456694][ T7346] should_failslab+0xc2/0x120 [ 218.456745][ T7346] kmem_cache_alloc_noprof+0x75/0x6e0 [ 218.456782][ T7346] ? prepare_creds+0x2c/0x7d0 [ 218.456823][ T7346] ? prepare_creds+0x2c/0x7d0 [ 218.456853][ T7346] prepare_creds+0x2c/0x7d0 [ 218.456890][ T7346] set_current_groups+0x15/0xd0 [ 218.456944][ T7346] __do_sys_setgroups+0x3e0/0x4f0 [ 218.456997][ T7346] ? 0xffffffffff600000 [ 218.457029][ T7346] do_syscall_64+0xcd/0x4b0 [ 218.457068][ T7346] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 218.457102][ T7346] RIP: 0033:0x7fe9b438eec9 [ 218.457127][ T7346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 218.457159][ T7346] RSP: 002b:00007fe9b5288038 EFLAGS: 00000246 ORIG_RAX: 0000000000000074 [ 218.457191][ T7346] RAX: ffffffffffffffda RBX: 00007fe9b45e6090 RCX: 00007fe9b438eec9 [ 218.457212][ T7346] RDX: 0000000000000000 RSI: ffffffffff600000 RDI: 0000000c00000000 [ 218.457233][ T7346] RBP: 00007fe9b4411f91 R08: 0000000000000000 R09: 0000000000000000 [ 218.457252][ T7346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 218.457271][ T7346] R13: 00007fe9b45e6128 R14: 00007fe9b45e6090 R15: 00007fff1b6704f8 [ 218.457306][ T7346] ? 0xffffffffff600000 [ 218.457335][ T7346] [ 219.004595][ T7350] queue_state_write: operation too long [ 219.024102][ T7350] queue_state_write: use 'run', 'start' or 'kick' [ 219.466678][ T7365] FAULT_INJECTION: forcing a failure. [ 219.466678][ T7365] name failslab, interval 1, probability 0, space 0, times 0 [ 219.515849][ T7365] CPU: 1 UID: 0 PID: 7365 Comm: syz.3.274 Not tainted syzkaller #0 PREEMPT(full) [ 219.515895][ T7365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 219.515915][ T7365] Call Trace: [ 219.515927][ T7365] [ 219.515939][ T7365] dump_stack_lvl+0x16c/0x1f0 [ 219.515982][ T7365] should_fail_ex+0x512/0x640 [ 219.516021][ T7365] ? __kmalloc_cache_noprof+0x5f/0x780 [ 219.516063][ T7365] should_failslab+0xc2/0x120 [ 219.516115][ T7365] __kmalloc_cache_noprof+0x72/0x780 [ 219.516151][ T7365] ? do_raw_spin_lock+0x12c/0x2b0 [ 219.516186][ T7365] ? alloc_fdtable+0xbd/0x2d0 [ 219.516227][ T7365] ? alloc_fdtable+0xbd/0x2d0 [ 219.516259][ T7365] alloc_fdtable+0xbd/0x2d0 [ 219.516297][ T7365] dup_fd+0x83b/0xb90 [ 219.516350][ T7365] __do_sys_close_range+0x4ca/0x730 [ 219.516395][ T7365] ? __pfx___do_sys_close_range+0x10/0x10 [ 219.516460][ T7365] do_syscall_64+0xcd/0x4b0 [ 219.516501][ T7365] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 219.516535][ T7365] RIP: 0033:0x7f915c98eec9 [ 219.516562][ T7365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 219.516594][ T7365] RSP: 002b:00007f915d7c0038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 219.516624][ T7365] RAX: ffffffffffffffda RBX: 00007f915cbe5fa0 RCX: 00007f915c98eec9 [ 219.516646][ T7365] RDX: 0000000000000006 RSI: ffffffffffffffff RDI: 0000000000000000 [ 219.516666][ T7365] RBP: 00007f915ca11f91 R08: 0000000000000000 R09: 0000000000000000 [ 219.516686][ T7365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 219.516705][ T7365] R13: 00007f915cbe6038 R14: 00007f915cbe5fa0 R15: 00007fff8232c9f8 [ 219.516748][ T7365] [ 220.103104][ T7377] vcan0: tx drop: invalid da for name 0x000000000000003f [ 221.039565][ T7381] zswap: compressor not available [ 221.478699][ T7401] queue_state_write: operation too long [ 221.499095][ T7401] queue_state_write: use 'run', 'start' or 'kick' [ 222.048916][ T30] audit: type=1800 audit(4294967315.540:13): pid=7412 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.285" name="discovery_nqn" dev="configfs" ino=14061 res=0 errno=0 [ 222.764045][ T7420] FAULT_INJECTION: forcing a failure. [ 222.764045][ T7420] name failslab, interval 1, probability 0, space 0, times 0 [ 222.799279][ T7420] CPU: 0 UID: 0 PID: 7420 Comm: syz.1.287 Not tainted syzkaller #0 PREEMPT(full) [ 222.799327][ T7420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 222.799347][ T7420] Call Trace: [ 222.799357][ T7420] [ 222.799379][ T7420] dump_stack_lvl+0x16c/0x1f0 [ 222.799422][ T7420] should_fail_ex+0x512/0x640 [ 222.799461][ T7420] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 222.799510][ T7420] should_failslab+0xc2/0x120 [ 222.799561][ T7420] kmem_cache_alloc_noprof+0x75/0x6e0 [ 222.799601][ T7420] ? skb_clone+0x190/0x3f0 [ 222.799645][ T7420] ? skb_clone+0x190/0x3f0 [ 222.799678][ T7420] skb_clone+0x190/0x3f0 [ 222.799717][ T7420] netlink_deliver_tap+0xabd/0xd30 [ 222.799764][ T7420] netlink_unicast+0x64c/0x870 [ 222.799809][ T7420] ? __pfx_netlink_unicast+0x10/0x10 [ 222.799846][ T7420] ? __asan_memset+0x23/0x50 [ 222.799883][ T7420] ? __build_skb_around+0x278/0x3b0 [ 222.799936][ T7420] ? is_vmalloc_addr+0x86/0xa0 [ 222.799976][ T7420] netlink_sendmsg+0x8c8/0xdd0 [ 222.800023][ T7420] ? __pfx_netlink_sendmsg+0x10/0x10 [ 222.800080][ T7420] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 222.800129][ T7420] ____sys_sendmsg+0xa95/0xc70 [ 222.800183][ T7420] ? __pfx_____sys_sendmsg+0x10/0x10 [ 222.800234][ T7420] ? find_held_lock+0x2b/0x80 [ 222.800277][ T7420] ? futex_unqueue+0x133/0x2c0 [ 222.800332][ T7420] ___sys_sendmsg+0x134/0x1d0 [ 222.800372][ T7420] ? __pfx____sys_sendmsg+0x10/0x10 [ 222.800428][ T7420] ? find_held_lock+0x2b/0x80 [ 222.800496][ T7420] __sys_sendmmsg+0x200/0x420 [ 222.800539][ T7420] ? __pfx___sys_sendmmsg+0x10/0x10 [ 222.800589][ T7420] ? __pfx_do_futex+0x10/0x10 [ 222.800639][ T7420] ? fput+0x9b/0xd0 [ 222.800708][ T7420] ? xfd_validate_state+0x61/0x180 [ 222.800748][ T7420] __x64_sys_sendmmsg+0x9c/0x100 [ 222.800785][ T7420] ? lockdep_hardirqs_on+0x7c/0x110 [ 222.800819][ T7420] do_syscall_64+0xcd/0x4b0 [ 222.800859][ T7420] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 222.800894][ T7420] RIP: 0033:0x7fb773d8eec9 [ 222.800921][ T7420] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 222.800954][ T7420] RSP: 002b:00007fb774bde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 222.800985][ T7420] RAX: ffffffffffffffda RBX: 00007fb773fe5fa0 RCX: 00007fb773d8eec9 [ 222.801006][ T7420] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000007 [ 222.801026][ T7420] RBP: 00007fb773e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 222.801045][ T7420] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000000 [ 222.801080][ T7420] R13: 00007fb773fe6038 R14: 00007fb773fe5fa0 R15: 00007ffdda85e788 [ 222.801123][ T7420] [ 223.896101][ T7439] netlink: 28 bytes leftover after parsing attributes in process `syz.2.289'. [ 223.985505][ T7439] veth0_macvtap: left promiscuous mode [ 224.022400][ T7439] macvtap0: entered promiscuous mode [ 224.027796][ T7439] macvtap0: entered allmulticast mode [ 225.607515][ T7454] netlink: 280 bytes leftover after parsing attributes in process `syz.0.294'. [ 227.162027][ T5848] Bluetooth: hci0: command 0x0406 tx timeout [ 227.170812][ T5848] Bluetooth: hci3: command 0x0406 tx timeout [ 227.176896][ T5848] Bluetooth: hci1: command 0x0406 tx timeout [ 227.183104][ T5848] Bluetooth: hci2: command 0x0406 tx timeout [ 227.295615][ T7480] random: crng reseeded on system resumption [ 228.951561][ T7465] kexec: Could not allocate control_code_buffer [ 230.584318][ T7509] vivid-003: ================= START STATUS ================= [ 230.592240][ T7509] vivid-003: Radio HW Seek Mode: Bounded [ 230.598023][ T7509] vivid-003: Radio Programmable HW Seek: false [ 230.604330][ T7509] vivid-003: RDS Rx I/O Mode: Block I/O [ 230.708996][ T7509] vivid-003: Generate RBDS Instead of RDS: false [ 230.806272][ T7509] vivid-003: RDS Reception: true [ 230.822109][ T7509] vivid-003: RDS Program Type: 0 inactive [ 230.859866][ T7509] vivid-003: RDS PS Name: inactive [ 230.865176][ T7509] vivid-003: RDS Radio Text: inactive [ 230.941935][ T7509] vivid-003: RDS Traffic Announcement: false inactive [ 230.960000][ T7509] vivid-003: RDS Traffic Program: false inactive [ 231.013113][ T7509] vivid-003: RDS Music: false inactive [ 231.020227][ T7509] vivid-003: ================== END STATUS ================== [ 231.028950][ T7514] vivid-003: ================= START STATUS ================= [ 231.062722][ T7514] vivid-003: Radio HW Seek Mode: Bounded [ 231.084587][ T7514] vivid-003: Radio Programmable HW Seek: false [ 231.098774][ T7514] vivid-003: RDS Rx I/O Mode: Block I/O [ 231.104527][ T7514] vivid-003: Generate RBDS Instead of RDS: false [ 231.118733][ T7514] vivid-003: RDS Reception: true [ 231.142130][ T7514] vivid-003: RDS Program Type: 0 inactive [ 231.233736][ T7514] vivid-003: RDS PS Name: inactive [ 231.262550][ T7514] vivid-003: RDS Radio Text: inactive [ 231.292485][ T7514] vivid-003: RDS Traffic Announcement: false inactive [ 231.320625][ T7514] vivid-003: RDS Traffic Program: false inactive [ 231.383119][ T7514] vivid-003: RDS Music: false inactive [ 231.414187][ T7514] vivid-003: ================== END STATUS ================== [ 232.452819][ T7545] queue_state_write: operation too long [ 232.502927][ T7545] queue_state_write: use 'run', 'start' or 'kick' [ 233.382592][ T7543] svc: failed to register nfsdv3 RPC service (errno 111). [ 233.405400][ T7543] svc: failed to register nfsaclv3 RPC service (errno 111). [ 233.868267][ T7551] svc: failed to register nfsdv3 RPC service (errno 111). [ 233.951707][ T7551] svc: failed to register nfsaclv3 RPC service (errno 512). [ 234.419575][ T7575] blktrace: Concurrent blktraces are not allowed on nbd3 [ 234.627037][ T7579] random: crng reseeded on system resumption [ 236.228456][ T7583] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000 [ 236.271961][ T7583] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 236.293382][ T7583] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 236.309133][ T7583] page_type: f5(slab) [ 236.313406][ T7583] raw: 00fff00000000040 ffff88801b027140 ffffea000087a600 dead000000000002 [ 236.322869][ T7583] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 236.332987][ T7583] head: 00fff00000000040 ffff88801b027140 ffffea000087a600 dead000000000002 [ 236.342318][ T7583] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 236.353654][ T7583] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff [ 236.372168][ T7583] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 236.396008][ T7615] FAULT_INJECTION: forcing a failure. [ 236.396008][ T7615] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 236.424883][ T7615] CPU: 1 UID: 0 PID: 7615 Comm: syz.0.325 Not tainted syzkaller #0 PREEMPT(full) [ 236.424925][ T7615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 236.424937][ T7583] page dumped because: unmovable page [ 236.424953][ T7615] Call Trace: [ 236.424964][ T7615] [ 236.424976][ T7615] dump_stack_lvl+0x16c/0x1f0 [ 236.425014][ T7615] should_fail_ex+0x512/0x640 [ 236.425062][ T7615] _copy_from_iter+0x29f/0x1720 [ 236.425116][ T7615] ? __alloc_skb+0x200/0x380 [ 236.425152][ T7615] ? __pfx__copy_from_iter+0x10/0x10 [ 236.425201][ T7615] ? __pfx___might_resched+0x10/0x10 [ 236.425247][ T7615] ? __lock_acquire+0xb97/0x1ce0 [ 236.425316][ T7615] netlink_sendmsg+0x820/0xdd0 [ 236.425368][ T7615] ? __pfx_netlink_sendmsg+0x10/0x10 [ 236.425416][ T7615] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 236.425467][ T7615] ____sys_sendmsg+0xa95/0xc70 [ 236.425520][ T7615] ? copy_msghdr_from_user+0x10a/0x160 [ 236.425559][ T7615] ? __pfx_____sys_sendmsg+0x10/0x10 [ 236.425633][ T7615] ___sys_sendmsg+0x134/0x1d0 [ 236.425674][ T7615] ? __pfx____sys_sendmsg+0x10/0x10 [ 236.425769][ T7615] __sys_sendmsg+0x16d/0x220 [ 236.425809][ T7615] ? __pfx___sys_sendmsg+0x10/0x10 [ 236.425885][ T7615] do_syscall_64+0xcd/0x4b0 [ 236.425927][ T7615] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 236.425973][ T7615] RIP: 0033:0x7f020398eec9 [ 236.426002][ T7615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 236.426036][ T7615] RSP: 002b:00007f02048e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 236.426070][ T7615] RAX: ffffffffffffffda RBX: 00007f0203be5fa0 RCX: 00007f020398eec9 [ 236.426093][ T7615] RDX: 0000000000008010 RSI: 0000200000000900 RDI: 0000000000000003 [ 236.426116][ T7615] RBP: 00007f02048e7090 R08: 0000000000000000 R09: 0000000000000000 [ 236.426137][ T7615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 236.426158][ T7615] R13: 00007f0203be6038 R14: 00007f0203be5fa0 R15: 00007ffe0935b0c8 [ 236.426205][ T7615] [ 236.718753][ T7583] page_owner tracks the page as allocated [ 236.734627][ T7583] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 59, tgid 59 (kworker/u8:4), ts 183331306289, free_ts 183205845628 [ 236.766180][ T7618] selection: kmalloc() failed [ 236.806009][ T7583] post_alloc_hook+0x1c0/0x230 [ 236.818644][ T7583] get_page_from_freelist+0x10a3/0x3a30 [ 236.824367][ T7583] __alloc_frozen_pages_noprof+0x25f/0x2470 [ 236.835488][ T7583] alloc_pages_mpol+0x1fb/0x550 [ 236.841781][ T7583] new_slab+0x24a/0x360 [ 236.848831][ T7583] ___slab_alloc+0xdc4/0x1ae0 [ 236.853601][ T7583] __slab_alloc.constprop.0+0x63/0x110 [ 236.878108][ T7583] __kmalloc_node_track_caller_noprof+0x4db/0x8a0 [ 236.888578][ T7583] kmalloc_reserve+0xef/0x2c0 [ 236.893364][ T7583] __alloc_skb+0x166/0x380 [ 236.897861][ T7583] nsim_dev_trap_report_work+0x2b1/0xcf0 [ 236.912444][ T7583] process_one_work+0x9cc/0x1b70 [ 236.934856][ T7583] worker_thread+0x6c8/0xf10 [ 236.944958][ T7583] kthread+0x3c5/0x780 [ 236.960320][ T7583] ret_from_fork+0x56d/0x730 [ 236.971706][ T7583] ret_from_fork_asm+0x1a/0x30 [ 236.990116][ T7583] page last free pid 6842 tgid 6842 stack trace: [ 237.000703][ T7583] __free_frozen_pages+0x7df/0x1160 [ 237.005978][ T7583] qlist_free_all+0x4d/0x120 [ 237.033985][ T7583] kasan_quarantine_reduce+0x195/0x1e0 [ 237.040707][ T7583] __kasan_slab_alloc+0x69/0x90 [ 237.048915][ T7583] __kmalloc_noprof+0x2e8/0x880 [ 237.053865][ T7583] tomoyo_realpath_from_path+0xc2/0x6e0 [ 237.059667][ T7583] tomoyo_path_perm+0x274/0x460 [ 237.068621][ T7583] security_inode_getattr+0x116/0x290 [ 237.075435][ T7583] vfs_fstat+0x4b/0xe0 [ 237.084186][ T7583] __do_sys_newfstat+0x87/0x100 [ 237.094361][ T7583] do_syscall_64+0xcd/0x4b0 [ 237.099414][ T7583] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 237.655406][ T7630] netlink: 280 bytes leftover after parsing attributes in process `syz.3.329'. [ 237.974053][ T7635] sp0: Synchronizing with TNC [ 238.282621][ T7640] FAULT_INJECTION: forcing a failure. [ 238.282621][ T7640] name fail_futex, interval 1, probability 0, space 0, times 0 [ 238.295958][ T7640] CPU: 1 UID: 0 PID: 7640 Comm: syz.2.331 Not tainted syzkaller #0 PREEMPT(full) [ 238.295988][ T7640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 238.296001][ T7640] Call Trace: [ 238.296009][ T7640] [ 238.296017][ T7640] dump_stack_lvl+0x16c/0x1f0 [ 238.296046][ T7640] should_fail_ex+0x512/0x640 [ 238.296076][ T7640] get_futex_key+0xff0/0x1560 [ 238.296113][ T7640] ? __pfx_get_futex_key+0x10/0x10 [ 238.296145][ T7640] ? __mutex_trylock_common+0xe9/0x250 [ 238.296190][ T7640] futex_wake+0xea/0x530 [ 238.296216][ T7640] ? __pfx_futex_wake+0x10/0x10 [ 238.296251][ T7640] do_futex+0x1e3/0x350 [ 238.296286][ T7640] ? __pfx_do_futex+0x10/0x10 [ 238.296318][ T7640] ? __might_fault+0xe3/0x190 [ 238.296351][ T7640] mm_release+0x24e/0x300 [ 238.296381][ T7640] do_exit+0x68e/0x2bf0 [ 238.296406][ T7640] ? __pfx_do_exit+0x10/0x10 [ 238.296426][ T7640] ? do_raw_spin_lock+0x12c/0x2b0 [ 238.296449][ T7640] ? find_held_lock+0x2b/0x80 [ 238.296481][ T7640] do_group_exit+0xd3/0x2a0 [ 238.296510][ T7640] get_signal+0x2671/0x26d0 [ 238.296552][ T7640] ? __pfx_get_signal+0x10/0x10 [ 238.296582][ T7640] ? do_futex+0x122/0x350 [ 238.296616][ T7640] ? __pfx_do_futex+0x10/0x10 [ 238.296652][ T7640] arch_do_signal_or_restart+0x8f/0x790 [ 238.296687][ T7640] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 238.296728][ T7640] ? xfd_validate_state+0x61/0x180 [ 238.296756][ T7640] exit_to_user_mode_loop+0x85/0x130 [ 238.296783][ T7640] do_syscall_64+0x419/0x4b0 [ 238.296809][ T7640] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.296832][ T7640] RIP: 0033:0x7fe9b438eec9 [ 238.296850][ T7640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 238.296872][ T7640] RSP: 002b:00007fe9b52880e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 238.296893][ T7640] RAX: fffffffffffffe00 RBX: 00007fe9b45e6098 RCX: 00007fe9b438eec9 [ 238.296908][ T7640] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fe9b45e6098 [ 238.296921][ T7640] RBP: 00007fe9b45e6090 R08: 0000000000000000 R09: 0000000000000000 [ 238.296934][ T7640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 238.296947][ T7640] R13: 00007fe9b45e6128 R14: 00007fff1b670410 R15: 00007fff1b6704f8 [ 238.296976][ T7640] [ 238.682899][ T7636] Process accounting resumed [ 238.899396][ T5156] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 238.916574][ T5156] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:0' [ 238.930002][ T5156] CPU: 0 UID: 0 PID: 5156 Comm: kworker/u9:1 Not tainted syzkaller #0 PREEMPT(full) [ 238.930048][ T5156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 238.930065][ T5156] Workqueue: hci3 hci_rx_work [ 238.930093][ T5156] Call Trace: [ 238.930101][ T5156] [ 238.930110][ T5156] dump_stack_lvl+0x16c/0x1f0 [ 238.930139][ T5156] sysfs_warn_dup+0x7f/0xa0 [ 238.930174][ T5156] sysfs_create_dir_ns+0x24b/0x2b0 [ 238.930208][ T5156] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 238.930240][ T5156] ? find_held_lock+0x2b/0x80 [ 238.930276][ T5156] ? do_raw_spin_unlock+0x172/0x230 [ 238.930305][ T5156] kobject_add_internal+0x2c4/0x9b0 [ 238.930341][ T5156] kobject_add+0x16e/0x240 [ 238.930370][ T5156] ? __pfx_kobject_add+0x10/0x10 [ 238.930402][ T5156] ? do_raw_spin_unlock+0x172/0x230 [ 238.930428][ T5156] ? kobject_put+0xab/0x5a0 [ 238.930464][ T5156] device_add+0x288/0x1aa0 [ 238.930487][ T5156] ? __pfx_dev_set_name+0x10/0x10 [ 238.930522][ T5156] ? __pfx_device_add+0x10/0x10 [ 238.930561][ T5156] ? mgmt_send_event_skb+0x2fb/0x460 [ 238.930610][ T5156] hci_conn_add_sysfs+0x17e/0x230 [ 238.930639][ T5156] le_conn_complete_evt+0x1260/0x2150 [ 238.930687][ T5156] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 238.930726][ T5156] ? bt_warn+0xe4/0x120 [ 238.930763][ T5156] ? __pfx_bt_warn+0x10/0x10 [ 238.930807][ T5156] hci_le_conn_complete_evt+0x23c/0x370 [ 238.930865][ T5156] hci_le_meta_evt+0x354/0x5e0 [ 238.930901][ T5156] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 238.930961][ T5156] hci_event_packet+0x685/0x11c0 [ 238.931002][ T5156] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 238.931029][ T5156] ? __pfx_hci_event_packet+0x10/0x10 [ 238.931072][ T5156] ? kcov_remote_start+0x3c9/0x6d0 [ 238.931098][ T5156] ? lockdep_hardirqs_on+0x7c/0x110 [ 238.931129][ T5156] hci_rx_work+0x2c5/0x16b0 [ 238.931156][ T5156] ? rcu_is_watching+0x12/0xc0 [ 238.931204][ T5156] process_one_work+0x9cc/0x1b70 [ 238.931240][ T5156] ? __pfx_process_one_work+0x10/0x10 [ 238.931274][ T5156] ? assign_work+0x1a0/0x250 [ 238.931299][ T5156] worker_thread+0x6c8/0xf10 [ 238.931332][ T5156] ? __kthread_parkme+0x19e/0x250 [ 238.931367][ T5156] ? __pfx_worker_thread+0x10/0x10 [ 238.931416][ T5156] kthread+0x3c5/0x780 [ 238.931438][ T5156] ? __pfx_kthread+0x10/0x10 [ 238.931463][ T5156] ? rcu_is_watching+0x12/0xc0 [ 238.931496][ T5156] ? __pfx_kthread+0x10/0x10 [ 238.931520][ T5156] ret_from_fork+0x56d/0x730 [ 238.931542][ T5156] ? __pfx_kthread+0x10/0x10 [ 238.931564][ T5156] ret_from_fork_asm+0x1a/0x30 [ 238.931611][ T5156] [ 238.931647][ T5156] kobject: kobject_add_internal failed for hci3:0 with -EEXIST, don't try to register things with the same name in the same directory. [ 239.219810][ T5156] Bluetooth: hci3: failed to register connection device [ 239.674043][ T7658] netlink: 334 bytes leftover after parsing attributes in process `syz.2.335'. [ 240.781101][ T7683] FAULT_INJECTION: forcing a failure. [ 240.781101][ T7683] name failslab, interval 1, probability 0, space 0, times 0 [ 240.797277][ T7683] CPU: 1 UID: 0 PID: 7683 Comm: syz.2.341 Not tainted syzkaller #0 PREEMPT(full) [ 240.797308][ T7683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 240.797323][ T7683] Call Trace: [ 240.797331][ T7683] [ 240.797339][ T7683] dump_stack_lvl+0x16c/0x1f0 [ 240.797368][ T7683] should_fail_ex+0x512/0x640 [ 240.797395][ T7683] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 240.797425][ T7683] should_failslab+0xc2/0x120 [ 240.797461][ T7683] kmem_cache_alloc_noprof+0x75/0x6e0 [ 240.797487][ T7683] ? sk_prot_alloc+0x60/0x2a0 [ 240.797523][ T7683] ? sk_prot_alloc+0x60/0x2a0 [ 240.797558][ T7683] sk_prot_alloc+0x60/0x2a0 [ 240.797591][ T7683] sk_alloc+0x36/0xc20 [ 240.797615][ T7683] tipc_sk_create+0xcf/0x21a0 [ 240.797657][ T7683] ? find_held_lock+0x2b/0x80 [ 240.797687][ T7683] ? __sock_create+0x2f2/0x8d0 [ 240.797724][ T7683] __sock_create+0x335/0x8d0 [ 240.797762][ T7683] __sys_socket+0x14d/0x260 [ 240.797796][ T7683] ? __pfx___sys_socket+0x10/0x10 [ 240.797830][ T7683] ? xfd_validate_state+0x61/0x180 [ 240.797859][ T7683] __x64_sys_socket+0x72/0xb0 [ 240.797891][ T7683] ? lockdep_hardirqs_on+0x7c/0x110 [ 240.797914][ T7683] do_syscall_64+0xcd/0x4b0 [ 240.797941][ T7683] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 240.797964][ T7683] RIP: 0033:0x7fe9b438eec9 [ 240.797982][ T7683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 240.798005][ T7683] RSP: 002b:00007fe9b5267038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 240.798027][ T7683] RAX: ffffffffffffffda RBX: 00007fe9b45e6180 RCX: 00007fe9b438eec9 [ 240.798042][ T7683] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 000000000000001e [ 240.798056][ T7683] RBP: 00007fe9b4411f91 R08: 0000000000000000 R09: 0000000000000000 [ 240.798070][ T7683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 240.798083][ T7683] R13: 00007fe9b45e6218 R14: 00007fe9b45e6180 R15: 00007fff1b6704f8 [ 240.798112][ T7683] [ 241.248587][ T5156] Bluetooth: hci3: command 0x0406 tx timeout [ 241.559833][ T7689] FAULT_INJECTION: forcing a failure. [ 241.559833][ T7689] name failslab, interval 1, probability 0, space 0, times 0 [ 241.580552][ T7689] CPU: 1 UID: 0 PID: 7689 Comm: syz.1.343 Not tainted syzkaller #0 PREEMPT(full) [ 241.580600][ T7689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 241.580619][ T7689] Call Trace: [ 241.580629][ T7689] [ 241.580640][ T7689] dump_stack_lvl+0x16c/0x1f0 [ 241.580680][ T7689] should_fail_ex+0x512/0x640 [ 241.580719][ T7689] ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0 [ 241.580771][ T7689] should_failslab+0xc2/0x120 [ 241.580820][ T7689] __kmalloc_node_track_caller_noprof+0xde/0x8a0 [ 241.580867][ T7689] ? kstrdup_const+0x63/0x80 [ 241.580914][ T7689] ? kstrdup+0x53/0x100 [ 241.580949][ T7689] kstrdup+0x53/0x100 [ 241.580988][ T7689] kstrdup_const+0x63/0x80 [ 241.581024][ T7689] alloc_vfsmnt+0xea/0x6b0 [ 241.581073][ T7689] clone_mnt+0x6d/0xbf0 [ 241.581099][ T7689] ? copy_mnt_ns+0x1a9/0xa90 [ 241.581146][ T7689] copy_tree+0x31d/0xbd0 [ 241.581210][ T7689] copy_mnt_ns+0x1a9/0xa90 [ 241.581251][ T7689] ? rcu_is_watching+0x12/0xc0 [ 241.581303][ T7689] create_new_namespaces+0xd3/0xa90 [ 241.581345][ T7689] ? bpf_lsm_capable+0x9/0x10 [ 241.581391][ T7689] ? security_capable+0x7e/0x260 [ 241.581432][ T7689] copy_namespaces+0x468/0x560 [ 241.581476][ T7689] copy_process+0x2828/0x76a0 [ 241.581541][ T7689] ? __pfx_copy_process+0x10/0x10 [ 241.581583][ T7689] ? futex_private_hash_put+0x176/0x300 [ 241.581632][ T7689] ? futex_private_hash_put+0x18a/0x300 [ 241.581688][ T7689] kernel_clone+0xfc/0x930 [ 241.581739][ T7689] ? __pfx_kernel_clone+0x10/0x10 [ 241.581810][ T7689] __do_sys_clone+0xce/0x120 [ 241.581857][ T7689] ? __pfx___do_sys_clone+0x10/0x10 [ 241.581904][ T7689] ? __pfx___might_resched+0x10/0x10 [ 241.581959][ T7689] ? xfd_validate_state+0x61/0x180 [ 241.581986][ T7689] ? __pfx_do_writev+0x10/0x10 [ 241.582036][ T7689] do_syscall_64+0xcd/0x4b0 [ 241.582074][ T7689] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 241.582107][ T7689] RIP: 0033:0x7fb773d8eec9 [ 241.582134][ T7689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 241.582177][ T7689] RSP: 002b:00007fb774bddfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 241.582209][ T7689] RAX: ffffffffffffffda RBX: 00007fb773fe5fa0 RCX: 00007fb773d8eec9 [ 241.582231][ T7689] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411 [ 241.582251][ T7689] RBP: 00007fb773e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 241.582271][ T7689] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 241.582290][ T7689] R13: 00007fb773fe6038 R14: 00007fb773fe5fa0 R15: 00007ffdda85e788 [ 241.582333][ T7689] [ 241.945951][ T7273] ------------[ cut here ]------------ [ 241.952430][ T7273] ida_free called for id=1108 which is not allocated. [ 242.070384][ T7273] WARNING: CPU: 0 PID: 7273 at lib/idr.c:592 ida_free+0x1f9/0x2e0 [ 242.078328][ T7273] Modules linked in: [ 242.082667][ T7273] CPU: 0 UID: 0 PID: 7273 Comm: kworker/u8:9 Not tainted syzkaller #0 PREEMPT(full) [ 242.092256][ T7273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 242.103710][ T7273] Workqueue: netns cleanup_net [ 242.109864][ T7273] RIP: 0010:ida_free+0x1f9/0x2e0 [ 242.114895][ T7273] Code: 7c f6 41 83 fe 3e 76 72 e8 d4 44 7c f6 48 8b 7c 24 28 4c 89 ee e8 77 01 0d 00 90 48 c7 c7 c0 73 cf 8c 89 ee e8 a8 1a 3b f6 90 <0f> 0b 90 90 e8 ae 44 7c f6 48 b8 00 00 00 00 00 fc ff df 48 01 c3 [ 242.134746][ T7273] RSP: 0018:ffffc90018ce78e0 EFLAGS: 00010282 [ 242.141247][ T7273] RAX: 0000000000000000 RBX: 1ffff9200319cf1d RCX: ffffffff81797ce8 [ 242.149363][ T7273] RDX: ffff888032c1dac0 RSI: ffffffff81797cf5 RDI: 0000000000000001 [ 242.157411][ T7273] RBP: 0000000000000454 R08: 0000000000000001 R09: 0000000000000000 [ 242.165685][ T7273] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88802fc6f000 [ 242.173867][ T7273] R13: 0000000000000293 R14: 0000000000000054 R15: ffff88802fc6f008 [ 242.182068][ T7273] FS: 0000000000000000(0000) GS:ffff888124e8c000(0000) knlGS:0000000000000000 [ 242.191445][ T7273] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 242.199590][ T7273] CR2: 00007ffd8d6edf90 CR3: 000000000df82000 CR4: 00000000003526f0 [ 242.207724][ T7273] Call Trace: [ 242.212946][ T7273] [ 242.215957][ T7273] ? __pfx_ida_free+0x10/0x10 [ 242.220763][ T7273] ? __pfx_proc_entry_rundown+0x10/0x10 [ 242.226401][ T7273] ? xen_error_entry+0x30/0x60 [ 242.231313][ T7273] ? remove_proc_entry+0x380/0x530 [ 242.236502][ T7273] pde_put+0xa9/0x1d0 [ 242.240693][ T7273] remove_proc_entry+0x2d3/0x530 [ 242.245916][ T7273] ? __pfx_remove_proc_entry+0x10/0x10 [ 242.251535][ T7273] ? __pfx___might_resched+0x10/0x10 [ 242.256993][ T7273] proc_net_ns_exit+0x3f/0x80 [ 242.261790][ T7273] ? __pfx_proc_net_ns_exit+0x10/0x10 [ 242.267222][ T7273] ops_undo_list+0x2ee/0xab0 [ 242.272198][ T7273] ? __pfx_ops_undo_list+0x10/0x10 [ 242.277535][ T7273] ? cleanup_net+0x347/0x8b0 [ 242.282342][ T7273] ? idr_destroy+0x62/0x2e0 [ 242.287031][ T7273] cleanup_net+0x41b/0x8b0 [ 242.292124][ T7273] ? __pfx_cleanup_net+0x10/0x10 [ 242.297143][ T7273] ? rcu_is_watching+0x12/0xc0 [ 242.302583][ T7273] process_one_work+0x9cc/0x1b70 [ 242.307874][ T7273] ? __pfx_cleanup_net+0x10/0x10 [ 242.314797][ T7273] ? __pfx_process_one_work+0x10/0x10 [ 242.321869][ T7273] ? assign_work+0x1a0/0x250 [ 242.326557][ T7273] worker_thread+0x6c8/0xf10 [ 242.332751][ T7273] ? __pfx_worker_thread+0x10/0x10 [ 242.338043][ T7273] kthread+0x3c5/0x780 [ 242.342441][ T7273] ? __pfx_kthread+0x10/0x10 [ 242.347120][ T7273] ? rcu_is_watching+0x12/0xc0 [ 242.352140][ T7273] ? __pfx_kthread+0x10/0x10 [ 242.356794][ T7273] ret_from_fork+0x56d/0x730 [ 242.361615][ T7273] ? __pfx_kthread+0x10/0x10 [ 242.366312][ T7273] ret_from_fork_asm+0x1a/0x30 [ 242.371278][ T7273] [ 242.374337][ T7273] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 242.381669][ T7273] CPU: 0 UID: 0 PID: 7273 Comm: kworker/u8:9 Not tainted syzkaller #0 PREEMPT(full) [ 242.391164][ T7273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 242.401249][ T7273] Workqueue: netns cleanup_net [ 242.406061][ T7273] Call Trace: [ 242.409363][ T7273] [ 242.412323][ T7273] dump_stack_lvl+0x3d/0x1f0 [ 242.416956][ T7273] vpanic+0x640/0x6f0 [ 242.420978][ T7273] ? ida_free+0x1f9/0x2e0 [ 242.425352][ T7273] panic+0xca/0xd0 [ 242.429112][ T7273] ? __pfx_panic+0x10/0x10 [ 242.433580][ T7273] ? check_panic_on_warn+0x1f/0xb0 [ 242.438812][ T7273] check_panic_on_warn+0xab/0xb0 [ 242.443800][ T7273] __warn+0xf6/0x3c0 [ 242.447726][ T7273] ? preempt_schedule_notrace+0x62/0xe0 [ 242.453324][ T7273] ? ida_free+0x1f9/0x2e0 [ 242.457689][ T7273] report_bug+0x3c3/0x580 [ 242.462080][ T7273] ? ida_free+0x1f9/0x2e0 [ 242.466458][ T7273] handle_bug+0x184/0x210 [ 242.470857][ T7273] exc_invalid_op+0x17/0x50 [ 242.475399][ T7273] asm_exc_invalid_op+0x1a/0x20 [ 242.480286][ T7273] RIP: 0010:ida_free+0x1f9/0x2e0 [ 242.485457][ T7273] Code: 7c f6 41 83 fe 3e 76 72 e8 d4 44 7c f6 48 8b 7c 24 28 4c 89 ee e8 77 01 0d 00 90 48 c7 c7 c0 73 cf 8c 89 ee e8 a8 1a 3b f6 90 <0f> 0b 90 90 e8 ae 44 7c f6 48 b8 00 00 00 00 00 fc ff df 48 01 c3 [ 242.505202][ T7273] RSP: 0018:ffffc90018ce78e0 EFLAGS: 00010282 [ 242.511313][ T7273] RAX: 0000000000000000 RBX: 1ffff9200319cf1d RCX: ffffffff81797ce8 [ 242.519536][ T7273] RDX: ffff888032c1dac0 RSI: ffffffff81797cf5 RDI: 0000000000000001 [ 242.527548][ T7273] RBP: 0000000000000454 R08: 0000000000000001 R09: 0000000000000000 [ 242.535569][ T7273] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88802fc6f000 [ 242.543579][ T7273] R13: 0000000000000293 R14: 0000000000000054 R15: ffff88802fc6f008 [ 242.551667][ T7273] ? __warn_printk+0x198/0x350 [ 242.556488][ T7273] ? __warn_printk+0x1a5/0x350 [ 242.561324][ T7273] ? __pfx_ida_free+0x10/0x10 [ 242.566049][ T7273] ? __pfx_proc_entry_rundown+0x10/0x10 [ 242.571751][ T7273] ? xen_error_entry+0x30/0x60 [ 242.576566][ T7273] ? remove_proc_entry+0x380/0x530 [ 242.581715][ T7273] pde_put+0xa9/0x1d0 [ 242.585728][ T7273] remove_proc_entry+0x2d3/0x530 [ 242.590709][ T7273] ? __pfx_remove_proc_entry+0x10/0x10 [ 242.596225][ T7273] ? __pfx___might_resched+0x10/0x10 [ 242.601600][ T7273] proc_net_ns_exit+0x3f/0x80 [ 242.606314][ T7273] ? __pfx_proc_net_ns_exit+0x10/0x10 [ 242.611718][ T7273] ops_undo_list+0x2ee/0xab0 [ 242.616412][ T7273] ? __pfx_ops_undo_list+0x10/0x10 [ 242.621703][ T7273] ? cleanup_net+0x347/0x8b0 [ 242.626404][ T7273] ? idr_destroy+0x62/0x2e0 [ 242.630972][ T7273] cleanup_net+0x41b/0x8b0 [ 242.635434][ T7273] ? __pfx_cleanup_net+0x10/0x10 [ 242.640426][ T7273] ? rcu_is_watching+0x12/0xc0 [ 242.645279][ T7273] process_one_work+0x9cc/0x1b70 [ 242.650320][ T7273] ? __pfx_cleanup_net+0x10/0x10 [ 242.655333][ T7273] ? __pfx_process_one_work+0x10/0x10 [ 242.661209][ T7273] ? assign_work+0x1a0/0x250 [ 242.665842][ T7273] worker_thread+0x6c8/0xf10 [ 242.670501][ T7273] ? __pfx_worker_thread+0x10/0x10 [ 242.675653][ T7273] kthread+0x3c5/0x780 [ 242.679764][ T7273] ? __pfx_kthread+0x10/0x10 [ 242.684388][ T7273] ? rcu_is_watching+0x12/0xc0 [ 242.689322][ T7273] ? __pfx_kthread+0x10/0x10 [ 242.693991][ T7273] ret_from_fork+0x56d/0x730 [ 242.698649][ T7273] ? __pfx_kthread+0x10/0x10 [ 242.703290][ T7273] ret_from_fork_asm+0x1a/0x30 [ 242.708127][ T7273] [ 242.736748][ T7273] Kernel Offset: disabled [ 242.741134][ T7273] Rebooting in 86400 seconds..