last executing test programs: 1m31.513558484s ago: executing program 1 (id=366): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) write$auto(0x3, 0x0, 0xfffffdef) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x200000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = io_uring_setup$auto(0x1, 0x0) socketpair$auto(0x10, 0xf, 0xffffffff, 0x0) r2 = socket(0xa, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'bridge_slave_1\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r3, 0xffffffffffffffff, 0x4, 0x1ff, r2, @relative_id=0x13, 0xe600}, 0xf) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) ioctl$auto_RNDADDENTROPY2(r1, 0x40085203, 0x0) close_range$auto(0x2, 0x8, 0x0) 1m30.753793966s ago: executing program 1 (id=368): socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_async\x00', 0x183941, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sys/net/netfilter/nf_conntrack_buckets\x00', 0x101000, 0x0) write$auto(0x3, 0x0, 0xfdef) ioctl$auto_RNDCLEARPOOL(0xffffffffffffffff, 0x5206, 0x0) close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0x1d, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [0x100, 0x0, 0x43], {0x2, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x6}, {0x100, 0x1, 0x52, 0x85, 0x10, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}}) unlink$auto(&(0x7f0000000000)='.\x00') r1 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0) ioctl$auto_tracing_buffers_fops_trace(r1, 0x5220, 0x0) poll$auto(&(0x7f0000000040)={r0, 0x1, 0x40}, 0x8, 0x8000) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x280, 0x0) ioctl$auto(0x3, 0xc038563b, 0x38) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x0, 0x0) socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r4 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) select$auto(0xd, 0x0, 0x0, 0x0, 0x0) write$auto(r3, &(0x7f0000000080)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) syslog$auto(0x4, 0x0, 0x0) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), r4) mmap$auto(0x69, 0x6, 0x9, 0x91, r2, 0xfffffffffffffff7) read$auto(0xffffffffffffffff, &(0x7f0000000000)='/sys/devices/platform/vhci_hcd.11/usb31/31-0:1.0/bInterfaceNumber\x00', 0x8) close_range$auto(0x2, 0x8, 0x0) 1m29.41547244s ago: executing program 1 (id=375): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) ioctl$auto(r1, 0x400454ca, 0x38) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x182800, 0x0) openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, 0x0, 0x20a01, 0x0) ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0) mmap$auto(0xb2, 0x14, 0xffb, 0x1b, r3, 0x7fff) write$auto(r1, 0x0, 0x6) io_uring_setup$auto(0x3501, &(0x7f0000000080)={0x80, 0x1000, 0x8, 0x5, 0x3, 0xfffffff1, r0, [0xbc, 0xffff, 0x40], {0x81, 0x9, 0x0, 0x80000000, 0x3, 0x101, 0xffff, 0x0, 0x6}, {0x7, 0xa, 0xf, 0x7fff, 0x3, 0x0, 0x0, 0xfffffffa, 0xc}}) ioctl$auto_BLKTRACETEARDOWN(r2, 0x1276, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x11, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) mmap$auto(0x0, 0x2020009, 0x9, 0xeb5, 0xfffffffffffffffa, 0x6) r6 = socket(0xa, 0x3, 0x3c) r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty48\x00', 0x880, 0x0) ioctl$auto(r7, 0x5609, r6) madvise$auto(0x0, 0x20499d, 0x9) open_tree$auto(0xffffffffffffffff, 0x0, 0x74ee) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) ioctl$auto_NS_GET_PID_FROM_PIDNS(r4, 0x8004b706, &(0x7f0000000180)=0x4) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xfffffffffffffe7f, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="000229bd0080fbdbdf350a0000000800fbffffffff"], 0x24}, 0x1, 0x0, 0x0, 0x20000050}, 0x400c0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0xc0) 1m27.415224596s ago: executing program 1 (id=381): r0 = socket(0x10, 0x2, 0x4) write$auto(r0, &(0x7f0000000000)='-\x00', 0x2fb) (async) r1 = socket(0xa, 0x2, 0x3a) setsockopt$auto(r1, 0x29, 0x4e, 0x0, 0x10000110) (async) bpf$auto_BPF_PROG_LOAD(0x5, &(0x7f0000000180)=@bpf_attr_4={0xa, 0xffffffffffffffff, 0x7fff}, 0x40) bpf$auto_BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000340)=@link_update={r0, @new_prog_fd=r1, 0x101, @old_prog_fd=r2}, 0x9) (async) socket(0xa, 0x1, 0x100) (async) pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400) (async) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) r4 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x6, 0x7, 0x8000000000004, 0x8fd6, 0x948b, 0xfffffffffffffff7, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) (async) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000022, 0x7, 0x6d3e, 0x800000000c, 0x2, 0x6]}, 0x0) (async) mmap$auto(0xc, 0x20009, 0x5, 0xeb1, 0x405, 0x8000) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x8800) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) (async) msync$auto(0x4, 0x1800000000000fc, 0x7fffffff) (async) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) (async) ioctl$auto(0x3, 0x2287, 0xffffffffffffffff) (async) mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000) (async) openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) r5 = openat$auto_l2cap_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x280, 0x0) read$auto_l2cap_debugfs_fops_(r5, &(0x7f0000000040)=""/160, 0xa0) ioperm$auto(0x3, 0xe, 0x2000000000000149) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(r2, r4, 0x4000000000002) (async) getcwd$auto(0x0, 0xffffffffffffffff) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) 1m27.055304378s ago: executing program 1 (id=384): setrlimit$auto(0x7, &(0x7f0000001380)={0x5, 0x6}) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129800, 0x0) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x2, 0x0) ioctl$auto_SNDCTL_DSP_GETOPTR(r0, 0x800c5012, &(0x7f0000001340)) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/sctp/rto_max\x00', 0x101201, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r1, 0x0, 0x0) socket(0x2, 0xa, 0x106) fanotify_init$auto(0x5, 0x2000000000002) 1m26.727737043s ago: executing program 1 (id=387): close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/v4l-subdev3\x00', 0x0, 0x0) r0 = gettid() r1 = getpid() rt_tgsigqueueinfo$auto(r1, r0, 0x1, &(0x7f0000000600)={@siginfo_0_0={0xffffff88, 0x1, 0x40, @_rt={0x0, 0xee01, @sival_int=0x9ae}}}) move_pages$auto(r1, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x2) ioctl$auto(0x3, 0xc0305602, 0x38) 1m11.604456115s ago: executing program 32 (id=387): close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/v4l-subdev3\x00', 0x0, 0x0) r0 = gettid() r1 = getpid() rt_tgsigqueueinfo$auto(r1, r0, 0x1, &(0x7f0000000600)={@siginfo_0_0={0xffffff88, 0x1, 0x40, @_rt={0x0, 0xee01, @sival_int=0x9ae}}}) move_pages$auto(r1, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x2) ioctl$auto(0x3, 0xc0305602, 0x38) 1m7.046755674s ago: executing program 0 (id=449): syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000180), 0x10b080, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';') socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0x7fff, 0xfffffffffffffffa, 0x8001) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x42c883, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) r2 = socket(0x10, 0x2, 0x14) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14af"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51) sendmmsg$auto(r2, &(0x7f0000000080)={{0x0, 0x8001c01, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x1}, 0x7}, 0x3d55, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0) read$auto(r3, 0x0, 0x20) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) unshare$auto(0x40000080) msgrcv$auto(0x71, &(0x7f0000000040)={0x4, 0x7}, 0x0, 0x7fffffffffffffff, 0x5) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x5) msgget$auto(0x0, 0x5) msgsnd$auto(0x0, &(0x7f0000000080)={0x1, 0x6}, 0x8, 0x7) 1m4.729606623s ago: executing program 0 (id=454): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff) r2 = getpgrp(0x0) sendmsg$auto_TIPC_NL_SOCK_GET(r0, &(0x7f0000001380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000001340)={&(0x7f0000000080)={0x1288, r1, 0x2, 0x70bd2d, 0x25dfdbfc, {}, [@TIPC_NLA_PUBL={0x1272, 0x3, 0x0, 0x1, [@typed={0xa, 0xc1, 0x0, 0x0, @str='-#+[#\x00'}, @typed={0x7a, 0x9, 0x0, 0x0, @binary="f7c239846ef7b01c08079a7f96a3d5f62d5dcf1b2f8f95452e68b06434afbdf8e0646d3d5e6ba02301dadee94b58f0d599e3f332e1205db9985dbbc376990caf45e96ed6b9909622703833609fa3d2530daf94a70bf960f51ba028e03275e12f6a59ff13653f7baf085f4d7111bcdaf2f3f771374d6c"}, @typed={0x8, 0x14e, 0x0, 0x0, @ipv4=@rand_addr=0x64010102}, @generic="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", @generic="e98f1017ac1344989c0eb30dd7bf98563be470c2b667e7e7d88e8f89300759e821cdc3c81e5eedab40bc5198366d15eb448704d4eb90a294ffa2b38880e000878373638e1a1ad7a51913900770a1c631f5d32da1ca1ded3ccab025045eedca39b6c233253a6f1e3c81108f3a0db619fa72201bb588c00dff6b7b716110b5aa665d2b61366d89557d515ffd015ececdce1a1da2fd66670c96c5604115b583efcfa6f15eb0a43c18a54474070821bcf488321762b404b44ce90416ef5ec5f43af2f8d77beaeeb5973a024fe33e5fba55e07ebd216572f8cbd6c3d29ae0", @typed={0x8, 0xf1, 0x0, 0x0, @pid=r2}, @typed={0xdd, 0xf5, 0x0, 0x0, @binary="4952310f19d0a8f3a59ab098261638feff3df05dd3739aa29be9b3d676b2b3430e49bc9c12eb22b631098511d4f14a0b8b649b89db2c985a10f7bed826232c24b306b6015b6811764f71fac9681f90cf22cf68a240f88692d85525f8579932d27795e5bf22e3b2ee51683129bc1e033e25161475c1207b1228196d06d048b71472597611b6ad69d929a5f96bec414d3abf3b0fdfaf1c5a355288881fd139f6b1c55b41b0c6b0f7917402745989eef1425788e9f67bb40794da231c09fd9cc7d30797ac211e1444ea63929d4006a5d5ba0caa2e520161545971"}, @generic="5f6e953c97862902c03b00df02bde53dd6a0", @typed={0x8, 0x14d, 0x0, 0x0, @u32=0x10001}]}]}, 0x1288}, 0x1, 0x0, 0x0, 0x40001}, 0x20040014) sendmsg$auto_NFC_CMD_GET_SE(r0, &(0x7f0000001480)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000001440)={&(0x7f0000001400)={0x38, 0x0, 0x0, 0x70bd2d, 0x25dfdbfd, {}, [@NFC_ATTR_DEVICE_NAME={0x6, 0x2, '.^'}, @NFC_ATTR_FIRMWARE_NAME={0x9, 0x14, '{}\\^}'}, @NFC_ATTR_LLC_PARAM_MIUX={0x6, 0x11, 0x1}, @NFC_ATTR_COMM_MODE={0x5, 0xa, 0x3}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x20000001) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000014c0)='/dev/audio1\x00', 0x20002, 0x0) capset$auto(&(0x7f0000002680)={0x200, r2}, &(0x7f00000026c0)={0x9, 0x9, 0x4}) r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000002740)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) syz_clone3(&(0x7f0000002780)={0x0, &(0x7f0000001500)=0xffffffffffffffff, &(0x7f0000001540), &(0x7f0000001580)=0x0, {0x2a}, &(0x7f00000015c0)=""/4096, 0x1000, &(0x7f00000025c0)=""/174, &(0x7f0000002700)=[r4, r2, r2, r2, r2, r2, r2], 0x7, {r5}}, 0x58) mmap$auto(0x7, 0x2, 0x1000, 0xffffffffffffff1a, r0, 0x1) mmap$auto(0xf, 0x7, 0xffffffffffffffff, 0x13, r3, 0xffffffffffffffff) r8 = socketpair$auto(0x2, 0x8000, 0x5e4e, &(0x7f0000002800)=0x3) ioctl$auto_EXT4_IOC_SETFSUUID(r8, 0x4008662c, &(0x7f0000002840)={0x10001, 0x401, "f3aa1d59f26473ba4fb5534eacfe0cc649d773db4a25fb02563399e208db61dae0f8912eefebd1ef4694f43788a023aa30d1c66494a3189e6fec9d8262038bd9a583c97523853b6535b8fc384caf1b37e2a32ae08bfb5e0ded1766439783c034c1035a70ff30e6d2a0492e003248ccab12f372a4dc7e4a09b1c5217f96bfa9d898ea4a6be76f2758b2d6cc6fed2907acbb9b6c9ca120935441527b4286b99fcffbce12f7d025ea62f2b262a0a8f1084d5c705b20eddf8d66b9784689dcaf95c6526c5e2504e3400a54d0be"}) r9 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000002980), r0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000029c0)={'bond0\x00', 0x0}) sendmsg$auto_BATADV_CMD_TP_METER(r8, &(0x7f0000002ac0)={&(0x7f0000002940)={0x10, 0x0, 0x0, 0x4461000a}, 0xc, &(0x7f0000002a80)={&(0x7f0000002a00)={0x48, r9, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@BATADV_ATTR_VERSION={0x6, 0x1, '-$'}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_BLA_BACKBONE={0xa, 0x21, @remote}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r10}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0xfffffff7}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x6}]}, 0x48}}, 0x4000) r11 = openat$auto_stat_fops_(0xffffffffffffff9c, &(0x7f0000002b00), 0x48000, 0x0) ioctl$auto_BTRFS_IOC_SUBVOL_CREATE(r8, 0x5000940e, &(0x7f0000002b40)={@inferred=r11, "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"}) sendmsg$auto_NL802154_CMD_GET_SEC_DEV(r6, &(0x7f0000003c00)={&(0x7f0000003b40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000003bc0)={&(0x7f0000003b80)={0x1c, 0x0, 0x100, 0x70bd27, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x779f3774}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4880}, 0x95) r13 = openat$auto_proc_pid_set_timerslack_ns_operations_base(0xffffffffffffff9c, &(0x7f0000003c40), 0x412001, 0x0) close_range$auto(r13, r0, 0x7fffffff) fsconfig$auto_SHMEM_HUGE_WITHIN_SIZE(r13, 0x8, &(0x7f0000003c80)='-$', &(0x7f0000003cc0)="8d96c1134e2a5711edef7296d965c5dcecc9788c9901188d9a7f456c8298ceb0f810e00a6cb2bfc4edb2308881d664e93f74e99e71f6f114dd57eace7e76ae486b1e81f45d7b37642d6d1193db03717e70f11cdb6aaa592670df47c0638aa4996ffd7c0cfd0cbd6f2ad7c219d6b4487add2d307d8a", 0x2) r14 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000003d40)='/proc/self/environ\x00', 0x12200, 0x0) setsockopt$auto_SO_DONTROUTE(r14, 0x89, 0x5, &(0x7f0000003d80)='batadv\x00', 0x1) io_uring_register$auto_IORING_REGISTER_NAPI(r12, 0x1b, &(0x7f0000003dc0)="754bb05fe5a031a10302743fff7e8dc9828f096950c15d0a8504351f074bf775c30e5b66c8ab991208eb2659ac8e68d377816f26d3baa40bfdf8b4eb86e073151f367df6a21bb3ddb1015063a7d33cd8e0aecdd2d36402c4103f441546d74f9d3c00b5972802002fd7ad0f682f66beaaa91ba2984d21bf53bb7315dfe5681dcd0d6920b1c3cdd4b4b45aff077756d8698025601ef01dd73958e7d227951d378f5d502c1c1a0c5b789c4fafa141b6ec93e0fe", 0x484) socketpair$auto(0x3, 0x1, 0x9, &(0x7f0000003e80)=0xfffff695) capset$auto(&(0x7f0000003ec0)={0x660, r7}, &(0x7f0000003f00)={0x0, 0x8, 0x7}) unshare$auto(0x2) migrate_pages$auto(r7, 0x30b7, &(0x7f0000003f40)=0xe, &(0x7f0000003f80)=0x2) open(&(0x7f0000003fc0)='./file0\x00', 0x2, 0x40) 1m3.895323542s ago: executing program 0 (id=456): r0 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000140)='/proc/version\x00', 0x800, 0x0) read$auto_proc_mountinfo_operations_mnt_namespace(r0, &(0x7f0000001100)=""/4096, 0x1000) (async) mmap$auto(0x0, 0xffffffffffffc928, 0x4000000000db, 0xeb1, r0, 0x8004) (async) r1 = socket(0x8, 0x1, 0x5) (async) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="b95ed411", @ANYRES16=0x0, @ANYBLOB="02002cbd7000fbdbdf2502000000080003008000400008000200"], 0x24}, 0x1, 0x0, 0x0, 0x20008010}, 0x400d0) (async) r2 = landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x9, 0x0) r3 = ioctl$auto_TUNGETIFF2(r2, 0x800454d2, 0x0) getsockopt$auto_SO_OOBINLINE(r3, 0x7, 0xa, 0x0, &(0x7f0000000100)=0x10000) (async) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000380), r1) sendmsg$auto_NL80211_CMD_SET_BSS(r3, &(0x7f00000004c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000480)={&(0x7f00000003c0)={0x8c, r4, 0x100, 0x70bd2d, 0x8, {}, [@NL80211_ATTR_OBSS_COLOR_BITMAP={0xc, 0x12e, 0xf}, @NL80211_ATTR_DISABLE_HT={0x4}, @NL80211_ATTR_DISABLE_HT={0x4}, @NL80211_ATTR_HT_CAPABILITY={0x63, 0x1f, "1c2ab66474fd4bd0b40753d2688c8c04267dcaf4aa1088bb1ab82777a8f0dd14a06d14c4ba6a9e79646a88f7350ca3d78e1497e011b65430a1bd6d0ea46175126e4a77e248842a2ea16c3986f378b9ef337cbabea8935d2aae77a77ccf06b3"}]}, 0x8c}, 0x1, 0x0, 0x0, 0x20000845}, 0x4008842) (async) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="10002cbd70000000000080"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x8810) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000002440), r5) sendmsg$auto_NL80211_CMD_GET_SURVEY(r5, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000002740)={&(0x7f0000000040)={0x14, r6, 0x73d, 0x70bd25, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0xf0}, 0x8010) (async) sendmsg$auto_NL80211_CMD_STOP_SCHED_SCAN(r1, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x20, r6, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [@NL80211_ATTR_STA_TX_POWER_SETTING={0x5, 0x113, 0x6}, @NL80211_ATTR_TDLS_EXTERNAL_SETUP={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x5) (async) r7 = socket(0x15, 0x5, 0x0) getsockopt$auto(r7, 0x114, 0x271b, 0xfffffffffffffffc, 0x0) 1m3.341159971s ago: executing program 0 (id=458): socket$nl_generic(0x10, 0x3, 0x10) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002ec0), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000040)={0x34, r1, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0xa}, @ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x278e18a297a8387c}, 0x24000802) 1m3.112709494s ago: executing program 0 (id=459): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) capget$auto(&(0x7f0000000000)={0x19980330}, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000002500), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x2c, r3, 0x1, 0x2070bd26, 0x25dfdbf8, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, 'HfR\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}]}, 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x80) r4 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_DP_CMD_DEL(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000200)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002abd7000fedbdf2502"], 0x38}, 0x1, 0x0, 0x0, 0x20040011}, 0x20000000) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000500)={'gretap0\x00', 0x0}) socket(0xa, 0x23af690fef30229, 0x9) sendmsg$auto_BATADV_CMD_SET_MESH(0xffffffffffffffff, 0x0, 0x140080e4) ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x2e, 0x1, 0x44f, 0x807, 0x5, 0x7181, 0x1ffde, 0x7, 0x3, 0x8, 0x9, 0x80003, 0x4, 0x200000000001, 0x384, 0x9, 0x8, 0x10006, 0x400007f, 0x7, 0x0, 0xe, 0x22000, 0x200, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, 0xb, 0xa1b) r8 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000000c0), 0x2802, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r9 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(r9, r9, 0x0) r10 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vbi3\x00', 0x2aa01, 0x0) ioctl$auto(r10, 0xc0585611, r10) ioctl$auto__ctl_fops_dm_ioctl(r8, 0x2, &(0x7f0000000380)="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") ioctl$auto__ctl_fops_dm_ioctl(r8, 0xfffffff7effffd05, &(0x7f00000001c0)) sendmsg$auto_OVS_DP_CMD_GET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c7addd6", @ANYRES16=r1, @ANYBLOB="050029bd7000fcdbdf250300000008000900", @ANYRES32=r7, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x4000c000}, 0x4000024) 1m2.408699862s ago: executing program 0 (id=461): mmap$auto(0x0, 0xdb33, 0xe2, 0xeb1, 0x405, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x109000, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x401, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) r1 = socket(0xa, 0x5, 0x84) sendto$auto(r1, 0x0, 0x1000, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe80fffe00"}, 0x1c) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zram0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r2 = epoll_create1$auto(0xf32) ioctl$auto_SNDRV_PCM_IOCTL_HW_REFINE_OLD(r2, 0xc1004110, &(0x7f0000000140)={0x1, [0x401, 0x984, 0x5], [{0x2, 0x1, 0x0, 0x0, 0x1, 0x1}, {0x7, 0x4, 0x1, 0x1, 0x1, 0x1}, {0x4, 0x8, 0x0, 0x1, 0x1}, {0x80000001, 0x4, 0x0, 0x1, 0x1}, {0x16d5, 0x5, 0x0, 0x0, 0x1}, {0x2, 0x0, 0x0, 0x0, 0x1, 0x1}, {0x2, 0x80000004, 0x0, 0x1}, {0x32f, 0x4, 0x1, 0x1, 0x0, 0x1}, {0xd, 0x8}, {0xb17, 0x9, 0x1, 0x1, 0x0, 0x1}, {0x5a2, 0xfffffd4c, 0x0, 0x1, 0x1}, {0x0, 0x1, 0x0, 0x0, 0x1, 0x1}], 0x4, 0x7, 0x84, 0x6, 0x4, 0x9ee, 0x27, "f1848a773b24242bd964aad07e45f5af6403e6f26288f254844b08b07b102b8c2e5cecbc96707a2373f849d97fffa7f366e722ae29f855c73ee53337b24b3de4"}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x40009, 0x800000df, 0x9b72, r0, 0x100080002) socket(0x1d, 0x2, 0x2) connect$auto(0x3, 0x0, 0x55) socket(0x10, 0x3, 0x6) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0x5c8) write$auto(0x3, 0x0, 0xffd8) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xff7f}, 0x5) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x6, 0x38) mprotect$auto(0x0, 0x8000000000000001, 0x8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) write$auto(r3, 0x0, 0x8587) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) 47.126626029s ago: executing program 33 (id=461): mmap$auto(0x0, 0xdb33, 0xe2, 0xeb1, 0x405, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x109000, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x401, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) r1 = socket(0xa, 0x5, 0x84) sendto$auto(r1, 0x0, 0x1000, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe80fffe00"}, 0x1c) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zram0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r2 = epoll_create1$auto(0xf32) ioctl$auto_SNDRV_PCM_IOCTL_HW_REFINE_OLD(r2, 0xc1004110, &(0x7f0000000140)={0x1, [0x401, 0x984, 0x5], [{0x2, 0x1, 0x0, 0x0, 0x1, 0x1}, {0x7, 0x4, 0x1, 0x1, 0x1, 0x1}, {0x4, 0x8, 0x0, 0x1, 0x1}, {0x80000001, 0x4, 0x0, 0x1, 0x1}, {0x16d5, 0x5, 0x0, 0x0, 0x1}, {0x2, 0x0, 0x0, 0x0, 0x1, 0x1}, {0x2, 0x80000004, 0x0, 0x1}, {0x32f, 0x4, 0x1, 0x1, 0x0, 0x1}, {0xd, 0x8}, {0xb17, 0x9, 0x1, 0x1, 0x0, 0x1}, {0x5a2, 0xfffffd4c, 0x0, 0x1, 0x1}, {0x0, 0x1, 0x0, 0x0, 0x1, 0x1}], 0x4, 0x7, 0x84, 0x6, 0x4, 0x9ee, 0x27, "f1848a773b24242bd964aad07e45f5af6403e6f26288f254844b08b07b102b8c2e5cecbc96707a2373f849d97fffa7f366e722ae29f855c73ee53337b24b3de4"}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x40009, 0x800000df, 0x9b72, r0, 0x100080002) socket(0x1d, 0x2, 0x2) connect$auto(0x3, 0x0, 0x55) socket(0x10, 0x3, 0x6) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0x5c8) write$auto(0x3, 0x0, 0xffd8) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xff7f}, 0x5) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x6, 0x38) mprotect$auto(0x0, 0x8000000000000001, 0x8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) write$auto(r3, 0x0, 0x8587) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) 10.539000478s ago: executing program 3 (id=564): sysfs$auto(0xb, 0x3ff, 0xfffffffffffffffe) r0 = socket(0x27, 0x800, 0xa5) sendmsg$auto_NL80211_CMD_GET_REG(r0, 0x0, 0x2404c804) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.unix.ip/channel\x00', 0x48041, 0x0) write$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000200)="64e6502de27190bacfcc5203ff9d554f15c060ed622e1135b10f0d3deb606ffbe13844081b17ce09b536c3e3", 0x2c) r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x40040, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) ptrace$auto_PTRACE_SETREGS(0xd, 0xffffffffffffffff, 0x1, 0xfffffffffffffffe) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3b, 0x4, 0x0, 0x1, 0xffffffffffffffff) write$auto(r2, &(0x7f0000000040)='\xb8\x90\xe5\xa2\xe7\xce\x9e\x9c\xf9r1\n\xc1\\\'[\xcfJ\x8a\xf9', 0x100000a3d6) mmap$auto(0x0, 0x80000000, 0x2, 0x15, 0xffffffffffffffff, 0x3) r4 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$auto_RTC_UIE_ON(r4, 0x7003, 0x0) ioctl$auto_RTC_SET_TIME(r4, 0x4024700a, &(0x7f0000000000)={0x1f, 0x7, 0x0, 0x5, 0x2, 0x1000, 0xce, 0x6c35, 0x5}) msync$auto(0x1ffff000, 0x1800000ff010000, 0x400000004) socket(0x15, 0x5, 0x5) socket(0xb, 0x5, 0x10001) bind$auto(r1, &(0x7f0000000100)=@can, 0x6a) connect$auto(0xffffffffffffffff, &(0x7f0000000240)=@generic={0x28, "adb9700001dcd8e680ca18052494"}, 0x80b) mmap$auto(0x0, 0x6, 0xfffc, 0x16, 0x401, 0x80000000004) ioperm$auto(0x7, 0x8001, 0x2000000000000149) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/loop12/io-timeout-fail\x00', 0x129000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000b40)=""/4096, 0x1000) mmap$auto(0x0, 0x4020009, 0xe2, 0xcb1, 0xffffffffffffffff, 0x9) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) open(&(0x7f00000001c0)='./file0\x00', 0x4d0603, 0xc0) mkdirat$auto(r3, &(0x7f0000000280)='./file0\x00', 0x8) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000140), 0x20000, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc0c9}, 0x2000c80c) 9.45195496s ago: executing program 5 (id=568): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) statmount$auto(0x0, &(0x7f0000000180)={0x315, 0xfffffffd, 0x401bf, 0x7352, 0x3c, 0x65f, 0x1ffde, 0x6, 0x3, 0x2, 0x9, 0x2, 0x4000006, 0x4, 0xb6, 0x80000000009, 0x6, 0x10003, 0xb, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84}, 0x1fe, 0xd) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf25030000000600070008000000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060006004000000006000600070000000a0010"], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0xffffffff, &(0x7f00000003c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/gss_krb5_enctypes\x00', 0x1c9180, 0x0) read$auto_tracing_stats_fops_trace(r0, 0x0, 0x0) r1 = socket(0x2c, 0x3, 0x0) bind$auto(r1, &(0x7f0000000080)=@xdp={0x2c, 0x5, 0x0, 0x10000031}, 0x6b) r2 = openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000003dc0)='/sys/kernel/tracing/events/vmalloc/free_vmap_area_noflush/filter\x00', 0x161141, 0x0) write$auto_ftrace_event_filter_fops_trace_events(r2, 0x0, 0x0) getsockopt$auto_SO_INCOMING_CPU(r1, 0x3, 0x31, &(0x7f0000000000)=']),-@^\x00', &(0x7f0000000040)=0x2) io_uring_setup$auto(0xc, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x0) socket(0xa, 0x2, 0x3a) r3 = fanotify_init$auto(0x5, 0x0) setuid$auto(0x1f) fanotify_mark$auto(r3, 0x205, 0xa, 0x4, 0x0) r4 = socket(0xa, 0x5, 0x0) getsockopt$auto(r4, 0x84, 0x6d, 0x0, 0x0) mmap$auto(0x3, 0x2020009, 0x3, 0x9c00000000000010, 0xffffffffffffffff, 0x8000) r5 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000100), 0x40, 0x0) ioctl$auto_UI_SET_FFBIT(r5, 0x4004556b, &(0x7f0000000380)=0x93) 8.148835389s ago: executing program 5 (id=571): open(&(0x7f0000000300)='./file0\x00', 0x7ffd, 0x12) socket(0xa, 0x1, 0x84) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/xfrm0/router_solicitations\x00', 0x42202, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/audio1\x00', 0x101001, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x0) r1 = socket(0x10, 0x2, 0x4) membarrier$auto_MEMBARRIER_CMD_REGISTER_GLOBAL_EXPEDITED(0x4, 0x60, 0xea) statmount$auto(&(0x7f0000000000)={0x0, @inferred=r0, 0x9, 0x0, 0x4}, 0x0, 0x7ffffffff000, 0x4020000) close_range$auto(r1, 0x8, 0x0) socket(0x11, 0x3, 0x9) r2 = socket(0x10, 0x2, 0xc) sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000003740)={&(0x7f0000000000)=ANY=[@ANYBLOB="b1000000", @ANYRES16, @ANYBLOB="01002dbd7000fddbdf25030000000c0001"], 0x20}, 0x1, 0x0, 0x0, 0x41}, 0x40080) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r2, @ANYRES8=r0], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050) write$auto(r1, &(0x7f0000000000)='-\x00', 0xfdef) mmap$auto(0x1f88, 0x2020009, 0x3, 0x19, 0xfffffffffffffffa, 0x8000) r3 = pidfd_open$auto(0x0, 0x5) openat2$auto(r3, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)={0xf4, 0x8, 0x1ff}, 0xff) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) mmap$auto(0x0, 0x400008, 0xdf, 0x10, 0x2, 0x8000) r4 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x364f9cefc8a2a83, 0x0) openat$auto_nsim_dev_take_snapshot_fops_dev(0xffffffffffffff9c, 0x0, 0x2001, 0x0) io_uring_setup$auto(0x1, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) kexec_load$auto(0x0, 0x4, 0x0, 0x1) ioctl$auto_tracing_buffers_fops_trace(r4, 0x5220, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000) 7.476277736s ago: executing program 5 (id=573): move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) epoll_create$auto(0x4) madvise$auto_MADV_WILLNEED(0x800, 0xec, 0x3) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x101, 0x0) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x6) ioctl$auto_IOCTL_VMCI_NOTIFICATIONS_RECEIVE(r0, 0x7a6, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x3ff, 0x0, 0x3, 0x5f, 0x0, 0x3}, 0x6f3) r2 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/1/msr\x00', 0xf82, 0x0) readv$auto(r2, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400) mmap$auto(0x20fff, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) setsockopt$auto_SO_OOBINLINE(r1, 0x3, 0xa, &(0x7f0000000080)='nlctrl\x00', 0x2) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9) mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) r3 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7) flock$auto(r3, 0x10000) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) 7.271696165s ago: executing program 3 (id=575): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) prctl$auto(0x23, 0x7, 0x2008, 0x0, 0x0) socket(0xa, 0x1, 0x100) r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x101100, 0x0) ioctl$auto_SW_SYNC_GET_DEADLINE(r0, 0xc0105702, &(0x7f0000000000)={0x0, 0x0, r0}) ioperm$auto(0x7, 0x1, 0x7) modify_ldt$auto(0x1000, 0x0, 0xd) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioperm$auto(0x7, 0x6, 0x2) rt_sigaction$auto(0x1, &(0x7f00000001c0)={&(0x7f0000000080)=0x0, 0x7fffffffffffffff, 0x0, {0x5}}, 0x0, 0x8) rt_sigaction$auto(0x4, &(0x7f0000000300)={&(0x7f0000000240)=0x0, 0x0, 0x0, {0x1}}, 0x0, 0x8) r1 = gettid() rt_sigqueueinfo$auto(r1, 0x1, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r2 = socket(0x26, 0xa, 0x7) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r3, &(0x7f0000003280)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) syz_genetlink_get_family_id$auto_psample(&(0x7f00000001c0), r2) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)={0x14, r4, 0x1, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x0) 6.442194402s ago: executing program 2 (id=577): r0 = mq_open$auto(&(0x7f00000000c0)='\x12\xe6D\b\x9e\x00\x80\x8d\f\xb9w-\xbd!\x9eb\xed\xfb\x0f\xe5\x9dZ\xc2\xd1\x01wBV\x91\x8f_\xc0.\x84\xfe\x84\xd1se\x01\x06\x00\xb3\x13_Y&\xa9\x88\xe4\xa2\xb0V\x85\x92<\xb6\xdcT \\\xf2\v\xb1\xe2\xd8\xfa\xd8V\xe5\x00\xfa\xe9!\xc5<\xce\x18=\x06\xdagq\xb5\r\t\xb2\xde\x99\xd50\xbb\x192\x1c4\x86\xc0\xc1-\xd5\x10\xc3\xfc*[8\x89h\xc5\xba\xff\xc8u50x0}) sendmsg$auto_BATADV_CMD_SET_MESH(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010028bd7000d9dbdf250f00000008000300", @ANYRES32=r5, @ANYBLOB="08002b00ff0f0000"], 0x24}, 0x1, 0x0, 0x0, 0x44010}, 0x0) read$auto(r1, 0x0, 0x20) r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r6, &(0x7f0000000200)={0x0, 0x7}, 0x3) ioctl$auto_SNDCTL_DSP_GETODELAY(r0, 0x80045017, &(0x7f0000000240)="35cf3ee58b1a26db9c561c8e6ad9d58796d6cb21f9e495f35bb6c0160233377f6eb1565620f44e2192fe47a9da930eecdbea0d7f66c79d0ad94d3ee820311f3c15edd6fd3934546768c51b0e") cachestat$auto(0xffffffffffffffff, 0x0, 0x0, 0x7) unshare$auto(0x40000080) socket$nl_generic(0x10, 0x3, 0x10) unshare$auto(0x8000000000000001) ioperm$auto(0xe4, 0x82f0, 0x942) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) r7 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000640)='/dev/snd/controlC0\x00', 0x80, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r7, 0xc4c85513, &(0x7f0000000700)={{@raw=0xb, 0x7f, 0x2, 0x5, "26cb83211ffd7f6567850e138dd717bfeb7ab5c55e35d9811b26db6e6f8c5d7d57cdda7ca056a2a31e5dfe27"}, 0x0, @bytes=@data_ptr=&(0x7f00000001c0)='\x00', "1cd4f43065c34bdcb5fa6160f24c5f3eb5328361438ff4cd82ad2e9771421debdad4d39a52fc70b9012aff448a8b4a75e7c5126dc116dd8f5751e93614151d5a4f55a63e9ba1ad1e6542796d2a1cd644b0d756001b66abab0c0fd3b4287befd247e5410bef4c186120b5bed4ab64ffeb4b7c5a69166021a8814332515a657e93"}) r8 = socket(0xa, 0x2, 0x3a) openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/block/loop14/hctx0/tags_bitmap\x00', 0x101480, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/devices\x00', 0x400, 0x0) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) statx$auto(0x2, 0x0, 0x1000, 0xbdfa, 0x0) setsockopt$auto(r8, 0x29, 0x14, 0x0, 0x56b) close_range$auto(0x2, 0x8, 0x0) 6.097092051s ago: executing program 4 (id=578): mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000) r0 = socket(0x2, 0x80002, 0x73) bind$auto(0x3, 0x0, 0x8001) connect$auto(r0, 0x0, 0x54) sysfs$auto(0x2, 0x0, 0x0) r1 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0) read$auto_l2cap_debugfs_fops_(r1, &(0x7f0000000240)=""/177, 0xb1) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x410000, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) move_pages$auto(0x0, 0x5, 0x0, 0x0, 0x0, 0x2) sendmmsg$auto(r1, 0x0, 0x2, 0x0) r3 = socketpair$auto(0xfffffffd, 0x5, 0xffffffff, 0x0) unshare$auto(0x40000080) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) write$auto(0xffffffffffffffff, 0x0, 0x8001) epoll_create$auto(0x1) read$auto_proc_pid_smaps_operations_internal(r3, &(0x7f0000000000)=""/24, 0x18) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x280200, 0x0) 5.347522177s ago: executing program 3 (id=579): mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000) (async) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0xc0000, 0x0) (async) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0x81, 0x8fd6, 0x948b, 0x400, 0x15f4da0a, 0x3, 0x3, 0x5f, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async) select$auto(0xf, 0x0, 0x0, &(0x7f00000002c0)={[0x5, 0x7, 0x2, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) (async) futimesat$auto(r1, &(0x7f0000000280)='./file0\x00', &(0x7f0000000340)={0x1ff, 0x1}) (async) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000180), r2) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_TP_METER(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x1c, r3, 0x77bed28568c43d3b, 0x70bd2c, 0x25dfdbfc, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r4}]}, 0x1c}, 0x1, 0x100000000000000, 0x0, 0x2019}, 0x8080) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, 0x0, 0x28082, 0x0) (async) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1cb842, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) r6 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) (async) io_uring_setup$auto(0x6, 0x0) (async) lsm_list_modules$auto(0x0, 0x0, 0x0) (async) dup2$auto(0x5, 0x4) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="100026bd7000fedbdf2503000000080004000800000006000700f083880c22a3c989", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a000100aaaaaaaaaabb00000a000500aaaaaaaaaa370000080004001000000008000300faffffff08000400b7000000"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) (async) r7 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, 0x0) bpf$auto(0x3, &(0x7f00000003c0)=@bpf_attr_0={0x9879, 0x200, 0xfffffc3d, 0x1, 0x0, r6, 0x7, "d4b9b39c7f4b0d3288aefb8954dcca94", 0x0, r0, 0x8, 0x800, 0x3, 0x27, r5, r2}, 0x4) (async) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) (async) socket(0x10, 0x2, 0x0) msgsnd$auto(0x2, &(0x7f0000000380)={0x4, 0x9c}, 0x10001, 0x80000001) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) 4.804708032s ago: executing program 2 (id=580): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) ioctl$auto(r0, 0x400454ca, 0x38) openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, 0x0, 0x20a01, 0x0) ioctl$auto_BLKFLSBUF(0xffffffffffffffff, 0x1261, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0) mmap$auto(0xb2, 0x14, 0xffb, 0x1b, r1, 0x7fff) write$auto(r0, 0x0, 0x6) 4.204426108s ago: executing program 3 (id=581): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bond0/bonding/resend_igmp\x00', 0x1e2142, 0x0) sendfile$auto(r0, r0, 0x0, 0x7fff) unshare$auto(0x40000080) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb1\x00', 0x0, 0x0) ioctl$auto_FBIOPUT_VSCREENINFO(r1, 0x4601, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/cgroup.max.depth\x00', 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) read$auto(0x3, 0x0, 0x80) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f00000001c0), 0x1cb803, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x80100, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0xa, 0x0) write$auto(r2, 0x0, 0xa3d9) unshare$auto(0x40001080) socket(0x2b, 0x1, 0x1) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bond0/bonding/resend_igmp\x00', 0x1e2142, 0x0) (async) sendfile$auto(r0, r0, 0x0, 0x7fff) (async) unshare$auto(0x40000080) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) (async) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb1\x00', 0x0, 0x0) (async) ioctl$auto_FBIOPUT_VSCREENINFO(r1, 0x4601, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/cgroup.max.depth\x00', 0x0, 0x0) (async) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async) read$auto(0x3, 0x0, 0x80) (async) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async) openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f00000001c0), 0x1cb803, 0x0) (async) lsm_list_modules$auto(0x0, 0x0, 0x0) (async) lsm_list_modules$auto(0x0, 0x0, 0x0) (async) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x80100, 0x0) (async) unshare$auto(0x40000080) (async) close_range$auto(0x2, 0xa, 0x0) (async) write$auto(r2, 0x0, 0xa3d9) (async) unshare$auto(0x40001080) (async) socket(0x2b, 0x1, 0x1) (async) 3.393383715s ago: executing program 4 (id=582): socket(0x11, 0x80003, 0x300) close_range$auto(0x2, 0x8, 0x0) memfd_secret$auto(0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) mmap$auto(0x0, 0x8, 0x8, 0x13, 0x3, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x58400, 0x22) fchmod$auto(r0, 0xc) setreuid$auto(0x4, 0x8) mkdir$auto(&(0x7f0000000040)='./file0\x00', 0xfef) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_CREATE_VM(r1, 0x5000aea5, 0x20) socket(0xa, 0x3, 0x3b) setsockopt$auto(0x4, 0x29, 0x35, 0x0, 0x2) 3.366958099s ago: executing program 5 (id=583): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x4000000, 0x60005, 0xff, 0x15, 0x401, 0x3c8) r1 = socket(0xa, 0x2, 0x73) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1, 0x2, 0xfffffffc, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) r2 = eventfd$auto(0x80) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) setreuid$auto(0xffffffffffffffff, 0x8) r3 = socket(0xa, 0x1, 0x84) getsockopt$auto(r3, 0x0, 0x53, 0x0, 0x0) readv$auto(r2, &(0x7f0000000380)={0x0, 0x8}, 0x4) socket(0x2b, 0x1, 0x1) getsockopt$auto(0xffffffffffffffff, 0x40000000029, 0x20, 0xfffffffffffffffe, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) ioctl$auto(0x3, 0x6f43, 0xffffffffffffffff) sendto$auto(r1, 0x0, 0x402, 0x0, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x19) r4 = syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) getcwd$auto(0x0, 0xffffffffffffffff) renameat$auto(0x6, 0x0, 0x5, 0x0) sendmsg$auto_KSMBD_EVENT_LOGIN_RESPONSE_EXT(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r4, 0x201, 0x70bd2d, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x4000810) 3.065566505s ago: executing program 4 (id=584): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) (async) fanotify_init$auto(0x65, 0x2) (async) socket(0x1d, 0x2, 0x2) (async) r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/manager\x00', 0x2, 0x0) write$auto_tomoyo_operations_securityfs_if(r0, 0x0, 0x0) (async) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0xfffffffd, 0x401bf, 0x7, 0x3c, 0x65f, 0x1ffde, 0x5, 0x3, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb2, 0x80000000009, 0x6, 0xdec3, 0xb, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x3, 0x0, 0x0, 0x185c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x1fe, 0xd) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf25030000000600070008000000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060006004000"], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket(0x2, 0x3, 0x100) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x403, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket(0x2, 0x801, 0x100) (async) socketpair$auto(0x3, 0x7, 0x8000000000000000, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(0x0, 0x22240, 0x55) (async) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (async) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$auto(0x3, 0x52, r1) (async) socket(0x10, 0x2, 0x0) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x44801) (async) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 3.055795275s ago: executing program 5 (id=585): io_uring_setup$auto(0x1, 0x0) r0 = getpid() ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0) unshare$auto(0x40000080) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) r2 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0) readv$auto(r2, &(0x7f0000000680)={&(0x7f0000000540), 0x40200}, 0x3) ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, 0x0) ppoll$auto(&(0x7f0000000000)={r1, 0x40}, 0x2, 0x0, 0x0, 0x8) ioctl$auto_SNDCTL_DSP_SYNC(r1, 0x5001, 0xfffffffffffffffc) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) setresgid$auto(0xffffffffffffffff, 0x28000000000000, 0x7) socket(0x2b, 0x3, 0xfffeffff) ioperm$auto(0x7, 0x5ad2, 0x8) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0) r3 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0x0, 0x0) pread64$auto(r3, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{W\xed>\xe7l\xcb\x90\\/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x400) keyctl$auto(0x45, 0xffffffffffffffff, 0x9, 0x6, 0x80000003) keyctl$auto(0x7, 0xdfffffffffffffff, 0x7fffffffffffffff, 0x7, 0xbcc) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0x21, 0x3, 0x9) syz_open_procfs$namespace(r0, &(0x7f0000000080)='ns/cgroup\x00') getpid() prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fd, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x4000000000006d3e, 0x9, 0x2, 0x6]}, 0x0) mmap$auto(0xc, 0x20009, 0x5, 0xeb1, 0x405, 0x8000) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) 2.872706335s ago: executing program 2 (id=586): r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_async\x00', 0x183941, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sys/net/netfilter/nf_conntrack_buckets\x00', 0x101000, 0x0) write$auto(0x3, 0x0, 0xfdef) ioctl$auto_RNDCLEARPOOL(0xffffffffffffffff, 0x5206, 0x0) sendmsg$auto_NL80211_CMD_EXTERNAL_AUTH(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, 0x0, 0x20, 0x70bd2b, 0x25dfdbfc, {}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x1a, 0x13, "cc0e50b01cf0619784c0e463f882b08e0ac4fee7254a"}]}, 0x30}, 0x1, 0x0, 0x0, 0x20008000}, 0x800) close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0x1d, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [0x100, 0x0, 0x43], {0x2, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x6}, {0x100, 0x1, 0x52, 0x85, 0x10, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}}) unlink$auto(&(0x7f0000000000)='.\x00') r2 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0) ioctl$auto_tracing_buffers_fops_trace(r2, 0x5220, 0x0) poll$auto(&(0x7f0000000040)={r1, 0x1, 0x40}, 0x8, 0x8000) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x280, 0x0) ioctl$auto(0x3, 0xc038563b, 0x38) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x0, 0x0) socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r5 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) select$auto(0xd, 0x0, 0x0, &(0x7f00000002c0)={[0x800000000001ff, 0x4000008, 0x6, 0xfff, 0x948b, 0xffffffffffffffff, 0x95f4da0a, 0x3, 0x3, 0x62, 0x80000004, 0x200000003fa2cfb9, 0x6d41, 0x4, 0x5, 0x2]}, 0x0) write$auto(r4, &(0x7f0000000080)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) syslog$auto(0x4, 0x0, 0x0) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), r5) mmap$auto(0x69, 0x6, 0x9, 0x91, r3, 0xfffffffffffffff7) read$auto(0xffffffffffffffff, &(0x7f0000000000)='/sys/devices/platform/vhci_hcd.11/usb31/31-0:1.0/bInterfaceNumber\x00', 0x8) close_range$auto(0x2, 0x8, 0x0) 2.740553588s ago: executing program 4 (id=587): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x244000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x10000000000002c, 0x0) fsopen$auto(0x0, 0x1) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) r3 = prctl$auto(0x8, 0x5, r2, 0x3, 0x4b) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r3, @ANYRESDEC=r1], 0x58}, 0x1, 0x0, 0x0, 0x24040800}, 0x8018880) 2.203308468s ago: executing program 4 (id=588): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x8, 0x1, 0x13, r0, 0x110100000) getrandom$auto(&(0x7f0000000000)='\'!\'#\xf9&\x00', 0x39e, 0xff) ioctl$auto_BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f0000000040)={"940334500beab60f042fd820ed841511", 0xb, 0xaedd, {0x5, 0xc}, {0x81, 0x100}, 0x5, [0x0, 0x7f81, 0x3, 0xffffffffffffff7f, 0x3, 0x7ff, 0x7, 0x81, 0x2, 0xffffffffffffff81, 0x9, 0x9760000000000000, 0x100000000, 0x5, 0x7, 0x100000000]}) 2.013111981s ago: executing program 4 (id=589): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) keyctl$auto(0xe, 0xfffffffffffff800, 0x0, 0x5eaf, 0x800) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = openat$auto_generic(0xffffffffffffff9c, 0x0, 0x1, 0x0) mmap$auto(0xd, 0x2020009, 0x6, 0xeb1, r0, 0x8000) r1 = socket(0x2, 0x3, 0xa) connect$auto(r1, &(0x7f00000000c0), 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x9fe) ustat$auto(0x20000801, &(0x7f0000000000)={0xbff, 0x2, "be5705f65205", "064885ca64ad"}) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r1, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000100)=ANY=[@ANYRESDEC], 0xa8}}, 0xc2) sigaltstack$auto(&(0x7f0000000080)={0x0, 0x80000002}, 0x0) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rt_cache\x00', 0x10b402, 0x0) pread64$auto(r2, 0x0, 0x100000001, 0xd00) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x80000001, 0x4000e) unshare$auto(0x40000080) madvise$auto(0x110c230000, 0x8031ca, 0x9) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_netdev(&(0x7f0000003900), r3) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r4 = socket(0x23, 0x80805, 0x0) openat$auto_rfkill_fops_core(0xffffffffffffff9c, 0x0, 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4460, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x0, 0x5, 0x2]}, 0x0) sendmsg$auto_NL802154_CMD_SET_PAN_ID(r4, 0x0, 0x840) io_getevents$auto(0x1, 0x401, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) 1.591381921s ago: executing program 2 (id=590): socket$nl_generic(0x10, 0x3, 0x10) (async) openat$auto_sync_info_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x204042, 0x0) unshare$auto(0x20000080) (async) syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), 0xffffffffffffffff) (async, rerun: 64) keyctl$auto(0x2, 0xffffeffffffffffe, 0x107, 0x803, 0x800000000000c) (async, rerun: 64) r0 = openat$auto_trace_time_stamp_mode_fops_trace(0xffffffffffffff9c, &(0x7f0000008300)='/sys/kernel/tracing/timestamp_mode\x00', 0x300, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x640, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6c, 0x0, 0x7, 0xfffffffffffffffd, 0xd4, 0x4, 0x28c, 0x0, 0x3, 0x368e, 0x9, {0xfffffffe, 0x10000}, 0x8, 0x3, 0xfffffffffff7fffd, 0x1007ffd, 0x0, 0xfe, 0x81, 0xffffffffffff628e, 0x3d, 0xdeb1, 0x803}) (async) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x2) close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async, rerun: 32) landlock_create_ruleset$auto(&(0x7f0000000000)={0x4, 0x8000000000001, 0xffff}, 0x9, 0x0) (rerun: 32) landlock_restrict_self$auto(0xffffffffffffffff, 0x0) (async) mkdir$auto(&(0x7f0000004440)='./file0\x00', 0x1) (async) mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x8) (async, rerun: 64) rename$auto(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='./file1\x00') (rerun: 64) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) (async, rerun: 64) openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, 0x0, 0x100, 0x0) (async, rerun: 64) socket$nl_generic(0x10, 0x3, 0x10) write$auto(0xffffffffffffffff, 0x0, 0x0) (async) open(&(0x7f00000003c0)='./file0\x00', 0x14d443, 0x100) (async) mount$auto(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='xfs\x00', 0x5, 0x0) shmctl$auto_SHM_INFO(0x0, 0xe, &(0x7f0000000440)={{0xffffff1b, 0x0, 0xee01, 0x5, 0x9, 0xca82857c, 0x99f8}, 0x84, 0x5, 0x8, 0x3, @inferred, @raw=0x53b, 0x2, 0x0, &(0x7f0000000280)="261061700e33c3342b7606b4a93e9e955c8d790c5b20b4a28af4e4a7f260b4d0ef32deaa08eae5b45677c68ff021acf329731f3fd7a08ff3d1bd762abb50c975f42c1ab6c6ef2e01c078af108ace089b8a8f66e49c35f2aded658dc2d02bd7451553cebe7d9780", &(0x7f00000005c0)="dae536d504bd88537506478a3326857c9d83be26e035ad1d4146ed9a5f5d01f4b322e67d724c6eea280a31ecaa0cc7344f7b08e44ec28742ecd95d73bbb1867d3347cfed11df57d53b998c4df251080e60f59d2f4bbaef735201366bb8a16fc32adf0640af92af5cc225199b6451ac4533e80bd22dc543eedb1134a03816b42628cde091"}) rt_sigqueueinfo$auto(0x0, 0x1, &(0x7f0000000680)={@siginfo_0_0={0xfffffff7, 0x5, 0x9, @_sigchld={0x0, r2, 0x4, 0xcad, 0x5}}}) (async) openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async, rerun: 64) select$auto(0xe, 0x0, 0x0, &(0x7f0000000700)={[0x1a, 0x1, 0xd3e, 0x1, 0x948b, 0x0, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x8, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) (rerun: 64) read$auto_trace_time_stamp_mode_fops_trace(r0, &(0x7f0000008340)=""/88, 0x58) 1.213163542s ago: executing program 2 (id=591): mmap$auto(0x0, 0xa00006, 0x2, 0x13, 0x602, 0x300000000000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x11, 0x3, 0x6) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ptype\x00', 0x101000, 0x0) setreuid$auto(0x0, 0x0) statx$auto(0xffffffffffffffff, 0x0, 0x4, 0x2, &(0x7f0000000180)={0x5, 0xf, 0x5, 0x7, 0x0, 0xffffffffffffffff, 0x7, 0xa1c9, 0x8, 0x1ff, 0x8a3a, 0x6, {0xffff, 0x80}, {0x2, 0x1}, {0x7, 0xfffffc00}, {0x5, 0x2}, 0x1000011, 0xdfa, 0x7, 0x2, 0x4, 0x855a, 0x7f, 0xfffffffffffffff8, 0x4, 0x8000, 0x2aba8a13, 0x5, [0x8, 0x42d52, 0x8, 0x8000000000000001, 0xff, 0x9, 0xfffffffffffffffc, 0x1, 0x3391]}) pread64$auto(r0, 0x0, 0x8, 0xffff) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mlock$auto(0x102, 0x80006) mlockall$auto(0x800000000000005) madvise$auto(0x0, 0x200007, 0x19) mlockall$auto(0x7) read$auto(0xffffffffffffffff, &(0x7f0000000080)='\x00', 0x80) socket(0xa, 0x806, 0x0) r1 = pipe$auto(0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000003680)={'wlan0\x00'}) sendmsg$auto_NL80211_CMD_NEW_KEY(r3, &(0x7f00000048c0)={0x0, 0x0, &(0x7f0000004880)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x890) dup2$auto(0x5, 0x4) ioctl$auto_IOCTL_VMCI_VERSION(r1, 0x79f, 0x4) migrate_pages$auto(0x0, 0x3, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capset$auto(&(0x7f0000000180)={0x19980330}, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyc6\x00', 0x208240, 0x0) ioctl$auto(r4, 0x4b3c, 0xffffffffffffffff) unshare$auto(0x40000080) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0) 1.077893553s ago: executing program 3 (id=592): alarm$auto(0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000002b40)={0x28, r1, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@HWSIM_ATTR_PMSR_SUPPORT={0x14, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_TYPE_CAPA={0x10, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x4}]}]}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x4008040}, 0x4000800) mmap$auto(0x0, 0x22009, 0x4000000000df, 0xeb1, 0x401, 0x1) socket(0xa, 0x3, 0x100) sendmsg$auto_ETHTOOL_MSG_RSS_GET(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000580)={&(0x7f0000000600)=ANY=[@ANYBLOB="8c010000", @ANYRES16=0x0, @ANYBLOB="00012bbd7000fbdbdf252600000008000200080000000800020013000000080002004b000000180001801400020076657468315f766c616e0000000000008800018008000100", @ANYRES32=0x0, @ANYBLOB="14000200726f7365300000000000000000000000140002007465616d3000000000000000000000001400020067656e6576653100000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="08000300cc000000140002006970766c616e3000000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="140002007465616d3000000000000000000000004000018008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYRES8, @ANYRES32=0x0, @ANYBLOB="14000200776c616e300000000000000000000000080003004c3c000008000700ffffffff480001800800030059050000080003000800000008000100", @ANYRES32=0x0, @ANYBLOB="140000006970766c616e300000000000f2b146b71d5b242c4dba1cb4534479f95c39697573c34ccbcc3c3d98d91e48624e57deed38ccb396f3fc0d2b95ef3a2145353e6e6d4c2929c98ffcf54180b985c86e56cba53c476bc9d04bcc37ebe840c909379c3b1a46a2ea2a0a7c74b2ca930660e225f71ec94c5a982a663e41619c0f200d1672af62a2c68824a580c1a9", @ANYRES32=0x0, @ANYBLOB="08000300fa00000008000300010100003000018008000100", @ANYRES32=0x0, @ANYBLOB="1400020070696d7265673100000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="0800030003000000"], 0x18c}, 0x1, 0x0, 0x0, 0x40001}, 0x44000) ioperm$auto(0x7, 0x5ad2, 0x8) modify_ldt$auto(0x1, 0x0, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\x05\x00\x00\x00\x00\x00\x00\x00Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/usb/drivers/qmi_wwan/uevent\x00', 0x3e9e81, 0x0) read$auto(r3, &(0x7f0000000240)='/\x00', 0x100000001) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) write$auto(0x3, 0x0, 0xfffffffffffffff7) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x8800) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x48b41, 0x0) openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x20c00, 0x0) r4 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) mincore$auto(0x1000, 0x8001, 0x0) read$auto(r4, 0x0, 0x400000006) close_range$auto(0x2, 0x8, 0x0) ptrace$auto(0x4206, 0x1, 0x0, 0x200005) alarm$auto(0x80000000) 214.114036ms ago: executing program 5 (id=593): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x100480, 0x0) ioctl$auto_TIOCGICOUNT2(r0, 0x545d, &(0x7f0000000440)) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/fs/cifs/LinuxExtensionsEnabled\x00', 0x842, 0x0) mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video0\x00', 0x341100, 0x0) bind$auto(r1, &(0x7f0000000040)=@phonet={0x23, 0x7, 0x1, 0x3}, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x200000000007, 0xd, 0x1, 0x948b, 0x3, 0x7f, 0x3, 0x3, 0x9, 0x80000001, 0x7, 0x6d3f, 0x9, 0x9, 0xfffffffffffffffd]}, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) ioctl$auto_USBDEVFS_ALLOC_STREAMS(0xffffffffffffffff, 0x8008551c, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) 189.095629ms ago: executing program 2 (id=594): mmap$auto(0x0, 0x1, 0x3, 0x1a, 0xfffffffffffffffa, 0x8000) r0 = socket(0x10, 0x5, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = socket(0x2, 0x801, 0x106) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) getsockopt$auto(r1, 0x0, 0x1, 0x0, 0x0) prctl$auto_PR_LOCK_SHADOW_STACK_STATUS(0x4c, 0x95b6, 0x0, 0x0, 0x0) setsockopt$auto(r0, 0x114, 0x5, 0x0, 0x8000) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="100025bd7000fbdbdf251f0000000d00e8002714b6aa9c9dda2119000000080062000900000008007e004902000006004f010000000004008700"], 0x40}, 0x1, 0x0, 0x0, 0x20000885}, 0x20048881) syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000140), r0) mbind$auto(0xa, 0x6, 0x4, &(0x7f0000000180)=0xda, 0x7, 0x6) mmap$auto(0x7ff, 0x254, 0x40, 0x18, r0, 0x6) 0s ago: executing program 3 (id=595): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/addr_prefs\x00', 0x102, 0x0) writev$auto(r0, &(0x7f00000001c0)={&(0x7f0000000040)="658f3a8cee169ca7cf41a0da55ffa9af49b911f4ebe067c90b7a2c1c9e3017cf2873a2fa974000b3875f3bec726bd1e4f69a780e5a7847ff45c8e5940723789c7ba8e95ed6c64a08628eba3ff9f3afa8650370ad33614cc23ded4d96bf0785294deaf54c93541c2c77f334a6231c0a", 0x5}, 0x10) kernel console output (not intermixed with test programs): LAN 0 to HW filter on device team0 [ 105.722368][ T5833] Bluetooth: hci1: command tx timeout [ 105.729945][ T5833] Bluetooth: hci3: command tx timeout [ 105.761188][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.768494][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 105.798355][ T5839] Bluetooth: hci2: command tx timeout [ 105.859629][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.866891][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 106.083576][ T5834] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 106.130743][ T5831] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 106.252000][ T5834] veth0_vlan: entered promiscuous mode [ 106.327872][ T5834] veth1_vlan: entered promiscuous mode [ 106.383382][ T5841] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 106.434664][ T5831] veth0_vlan: entered promiscuous mode [ 106.473661][ T5831] veth1_vlan: entered promiscuous mode [ 106.514132][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 106.530470][ T5834] veth0_macvtap: entered promiscuous mode [ 106.553362][ T5834] veth1_macvtap: entered promiscuous mode [ 106.584309][ T5841] veth0_vlan: entered promiscuous mode [ 106.607902][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 106.627624][ T5831] veth0_macvtap: entered promiscuous mode [ 106.637250][ T5841] veth1_vlan: entered promiscuous mode [ 106.655241][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 106.675249][ T5831] veth1_macvtap: entered promiscuous mode [ 106.693922][ T5834] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.703269][ T5834] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.712169][ T5834] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.720948][ T5834] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.758604][ T5835] veth0_vlan: entered promiscuous mode [ 106.780651][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 106.794776][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 106.807889][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 106.832468][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 106.843683][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 106.857270][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 106.866482][ T5841] veth0_macvtap: entered promiscuous mode [ 106.880283][ T5835] veth1_vlan: entered promiscuous mode [ 106.897849][ T5831] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.906716][ T5831] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.915445][ T5831] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.927996][ T5831] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.959164][ T5841] veth1_macvtap: entered promiscuous mode [ 107.079929][ T64] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.084695][ T5835] veth0_macvtap: entered promiscuous mode [ 107.098407][ T64] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.107864][ T5841] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 107.124154][ T5841] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.134084][ T5841] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 107.144588][ T5841] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.156927][ T5841] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 107.194107][ T5835] veth1_macvtap: entered promiscuous mode [ 107.221983][ T5841] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 107.232663][ T5841] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.244489][ T5841] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 107.255075][ T5841] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.268302][ T5841] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 107.280007][ T5841] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.289136][ T5841] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.298437][ T5841] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.307350][ T5841] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.322186][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.341266][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.378037][ T3447] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.394944][ T3447] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.402312][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 107.402358][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.402374][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 107.402395][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.402411][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 107.402432][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.404176][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 107.445922][ T3447] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.480958][ T3447] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.560510][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 107.567877][ T5834] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 107.572092][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.598290][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 107.610671][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.620612][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 107.631655][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.644987][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 107.662602][ T5835] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.672676][ T5835] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.685309][ T5835] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.695021][ T5835] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.717800][ T5839] Bluetooth: hci0: command tx timeout [ 107.795831][ T5833] Bluetooth: hci1: command tx timeout [ 107.801364][ T5839] Bluetooth: hci3: command tx timeout [ 107.875884][ T5839] Bluetooth: hci2: command tx timeout [ 107.919200][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.945725][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.111191][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.134496][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.185709][ T3447] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.197947][ T3447] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.350753][ T1147] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.382854][ T1147] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.686613][ T5909] Invalid ELF header magic: != ELF [ 108.751077][ T5918] mmap: syz.1.7 (5918) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 108.847095][ T5920] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3'. [ 108.858968][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 109.109287][ T5917] zswap: compressor not available [ 109.566248][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 109.758850][ T5934] Zero length message leads to an empty skb [ 109.799925][ T5839] Bluetooth: hci0: command tx timeout [ 109.876793][ T5839] Bluetooth: hci3: command tx timeout [ 109.883768][ T5833] Bluetooth: hci1: command tx timeout [ 109.955892][ T5839] Bluetooth: hci2: command tx timeout [ 110.777025][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 110.787198][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 110.797330][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 110.807466][ T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!! [ 111.783853][ T5961] netlink: 'syz.3.16': attribute type 11 has an invalid length. [ 111.823947][ T5961] netlink: 'syz.3.16': attribute type 11 has an invalid length. [ 111.865342][ T5961] netlink: 'syz.3.16': attribute type 11 has an invalid length. [ 112.031129][ T30] audit: type=1800 audit(1746874372.904:2): pid=5966 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.17" name="lu_gp_id" dev="configfs" ino=6853 res=0 errno=0 [ 112.646847][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 112.655461][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 112.799177][ T5981] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 112.870198][ T5968] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 112.916304][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 113.056282][ T0] NOHZ tick-stop error: local softirq work is pending, handler #142!!! [ 113.110584][ T5982] smc: net device syz_tun applied user defined pnetid ETHTOOL [ 113.902243][ T5990] tty tty39: ldisc open failed (-12), clearing slot 38 [ 114.151785][ T5991] vivid-009: ================= START STATUS ================= [ 114.199660][ T5991] vivid-009: Enable Output Cropping: true grabbed [ 114.224176][ T5991] vivid-009: Enable Output Composing: true grabbed [ 114.231414][ T5991] vivid-009: Enable Output Scaler: true grabbed [ 114.246278][ T5991] vivid-009: Tx RGB Quantization Range: Automatic grabbed [ 114.276700][ T5991] vivid-009: Transmit Mode: HDMI grabbed [ 114.287305][ T5991] vivid-009: Hotplug Present: 0x00000000 [ 114.293898][ T5991] vivid-009: RxSense Present: 0x00000000 [ 114.307394][ T5991] vivid-009: EDID Present: 0x00000000 [ 114.317974][ T5991] vivid-009: ================== END STATUS ================== [ 114.859827][ T6012] random: crng reseeded on system resumption [ 115.132878][ T6021] vhci_hcd: invalid port number 255 [ 116.216327][ T6039] [U]  [ 116.219302][ T6039] [U] [ 116.222011][ T6039] [U] [ 116.224719][ T6039] [U] [ 116.245816][ T6039] [U] [ 116.248615][ T6039] [U] [ 116.251343][ T6039] [U] [ 116.254059][ T6039] [U] [ 116.293473][ T6039] [U] [ 116.296283][ T6039] [U] [ 116.299046][ T6039] [U] [ 116.301806][ T6039] [U] [ 116.304985][ T6039] [U] [ 116.307758][ T6039] [U] [ 116.310511][ T6039] [U] [ 116.313287][ T6039] [U] [ 116.344669][ T6039] [U] [ 116.347472][ T6039] [U] [ 116.350255][ T6039] [U] [ 116.353012][ T6039] [U] [ 116.374793][ T6039] [U] [ 116.377607][ T6039] [U] [ 116.380368][ T6039] [U] [ 116.383106][ T6039] [U] [ 116.426219][ T6039] [U] [ 116.429026][ T6039] [U] [ 116.431801][ T6039] [U] [ 116.434555][ T6039] [U] [ 116.465374][ T6039] [U] [ 116.468192][ T6039] [U] [ 116.470951][ T6039] [U] [ 116.473713][ T6039] [U] [ 116.566088][ T6039] [U] [ 116.568907][ T6039] [U] [ 116.571673][ T6039] [U] [ 116.574428][ T6039] [U] [ 116.672405][ T6039] [U] [ 116.675218][ T6039] [U] [ 116.677973][ T6039] [U] [ 116.680729][ T6039] [U] [ 116.769782][ T6039] [U] [ 116.772589][ T6039] [U] [ 116.775347][ T6039] [U] [ 116.778110][ T6039] [U] [ 116.805859][ T6039] [U] [ 116.808660][ T6039] [U] [ 116.811495][ T6039] [U] [ 116.814285][ T6039] [U] [ 116.829815][ T6039] [U] [ 118.985644][ T6076] cougar: G6 mapped to F18 [ 119.309531][ T6085] Invalid ELF header magic: != ELF [ 120.420896][ T6095] netlink: 28 bytes leftover after parsing attributes in process `syz.3.46'. [ 120.481777][ T6095] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 120.489514][ T6095] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 120.502996][ T6095] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 120.562369][ T6098] netlink: 28 bytes leftover after parsing attributes in process `syz.2.47'. [ 120.591610][ T6095] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 121.107668][ T6098] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 121.209696][ T6098] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 121.276787][ T6098] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 121.284277][ T6098] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 121.383627][ T6106] [U]  [ 121.386468][ T6106] [U] [ 121.389184][ T6106] [U] [ 121.391896][ T6106] [U] [ 121.394870][ T6106] [U] [ 121.397592][ T6106] [U] [ 121.400308][ T6106] [U] [ 121.403019][ T6106] [U] [ 121.418650][ T6106] [U] [ 121.421406][ T6106] [U] [ 121.424114][ T6106] [U] [ 121.426841][ T6106] [U] [ 121.497273][ T6106] [U] [ 121.500063][ T6106] [U] [ 121.502811][ T6106] [U] [ 121.505564][ T6106] [U] [ 121.521318][ T6106] [U] [ 121.524100][ T6106] [U] [ 121.526851][ T6106] [U] [ 121.529608][ T6106] [U] [ 121.536994][ T6106] [U] [ 121.539746][ T6106] [U] [ 121.542450][ T6106] [U] [ 121.545155][ T6106] [U] [ 121.576131][ T6106] [U] [ 121.578918][ T6106] [U] [ 121.581649][ T6106] [U] [ 121.584382][ T6106] [U] [ 121.635942][ T6106] [U] [ 121.638746][ T6106] [U] [ 121.641498][ T6106] [U] [ 121.644235][ T6106] [U] [ 121.716766][ T6112] Invalid ELF header magic: != ELF [ 121.722391][ T6106] [U] [ 121.725114][ T6106] [U] [ 121.727816][ T6106] [U] [ 121.730513][ T6106] [U] [ 121.771287][ T6106] [U] [ 121.774033][ T6106] [U] [ 121.776758][ T6106] [U] [ 121.779478][ T6106] [U] [ 121.832693][ T6106] [U] [ 121.835507][ T6106] [U] [ 121.838240][ T6106] [U] [ 121.840958][ T6106] [U] [ 121.844690][ T6106] [U] [ 121.847469][ T6106] [U] [ 121.850208][ T6106] [U] [ 121.852966][ T6106] [U] [ 121.858707][ T6106] [U] [ 121.861448][ T6106] [U] [ 121.864167][ T6106] [U] [ 121.866885][ T6106] [U] [ 121.893978][ T6106] [U] [ 121.896746][ T6106] [U] [ 121.899492][ T6106] [U] [ 121.902324][ T6106] [U] [ 121.976194][ T6106] [U] [ 121.978972][ T6106] [U] [ 121.981707][ T6106] [U] [ 121.984432][ T6106] [U] [ 122.016753][ T6106] [U] [ 122.019560][ T6106] [U] [ 122.022316][ T6106] [U] [ 122.025072][ T6106] [U] [ 122.066241][ T6106] [U] [ 122.069047][ T6106] [U] [ 122.071814][ T6106] [U] [ 122.074576][ T6106] [U] [ 122.145826][ T6106] [U] [ 124.044489][ T6150] netlink: 4 bytes leftover after parsing attributes in process `syz.2.57'. [ 124.255002][ T6157] netlink: 8 bytes leftover after parsing attributes in process `syz.3.58'. [ 125.376828][ T6181] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input6 [ 126.779818][ T6206] syz.1.69 (6206) used greatest stack depth: 17512 bytes left [ 134.198989][ T6336] tipc: Started in network mode [ 134.204015][ T6336] tipc: Node identity ee00, cluster identity 4711 [ 134.215718][ T6336] tipc: Node number set to 60928 [ 134.600162][ T6345] FAULT_INJECTION: forcing a failure. [ 134.600162][ T6345] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 134.623985][ T6345] CPU: 1 UID: 0 PID: 6345 Comm: syz.3.96 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 134.624028][ T6345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 134.624046][ T6345] Call Trace: [ 134.624056][ T6345] [ 134.624080][ T6345] dump_stack_lvl+0x16c/0x1f0 [ 134.624128][ T6345] should_fail_ex+0x512/0x640 [ 134.624179][ T6345] _copy_to_user+0x32/0xd0 [ 134.624231][ T6345] simple_read_from_buffer+0xcb/0x170 [ 134.624286][ T6345] proc_fail_nth_read+0x197/0x270 [ 134.624332][ T6345] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 134.624379][ T6345] ? rw_verify_area+0xcf/0x680 [ 134.624424][ T6345] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 134.624468][ T6345] vfs_read+0x1de/0xc70 [ 134.624503][ T6345] ? __pfx___mutex_lock+0x10/0x10 [ 134.624547][ T6345] ? __pfx_vfs_read+0x10/0x10 [ 134.624587][ T6345] ? __fget_files+0x20e/0x3c0 [ 134.624648][ T6345] ksys_read+0x12a/0x240 [ 134.624678][ T6345] ? __pfx_ksys_read+0x10/0x10 [ 134.624719][ T6345] do_syscall_64+0xcd/0x230 [ 134.624767][ T6345] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 134.624799][ T6345] RIP: 0033:0x7fa0c438d37c [ 134.624824][ T6345] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 134.624857][ T6345] RSP: 002b:00007fa0c5222030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 134.624886][ T6345] RAX: ffffffffffffffda RBX: 00007fa0c45b5fa0 RCX: 00007fa0c438d37c [ 134.624907][ T6345] RDX: 000000000000000f RSI: 00007fa0c52220a0 RDI: 0000000000000004 [ 134.624932][ T6345] RBP: 00007fa0c5222090 R08: 0000000000000000 R09: 0000000000000000 [ 134.624950][ T6345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 134.624969][ T6345] R13: 0000000000000000 R14: 00007fa0c45b5fa0 R15: 00007ffe807223d8 [ 134.625009][ T6345] [ 134.625218][ T6345] aoe: can't write to that file. [ 134.830897][ T6345] aoe: can't write to that file. [ 136.566606][ T6369] syz.2.104 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 137.961888][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 137.968903][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 140.020025][ T6431] bridge0: port 3(bond0) entered blocking state [ 140.026508][ T6431] bridge0: port 3(bond0) entered disabled state [ 140.033111][ T6431] bond0: entered allmulticast mode [ 140.047044][ T6431] bond_slave_0: entered allmulticast mode [ 140.052819][ T6431] bond_slave_1: entered allmulticast mode [ 140.103099][ T6431] bond0: entered promiscuous mode [ 140.123108][ T6431] bond_slave_0: entered promiscuous mode [ 140.174034][ T6431] bond_slave_1: entered promiscuous mode [ 140.183161][ T6431] bridge0: port 3(bond0) entered blocking state [ 140.189853][ T6431] bridge0: port 3(bond0) entered forwarding state [ 140.220879][ T6434] Invalid ELF header magic: != ELF [ 143.158592][ T6473] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 143.167464][ T6473] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 143.181302][ T6473] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 143.191116][ T6473] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 143.197982][ T6473] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 143.205270][ T6473] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 143.215170][ T6473] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 143.221723][ T6473] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 143.229800][ T6473] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 143.238018][ T6473] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 143.244126][ T6473] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 143.253417][ T6473] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 144.439313][ T5839] Bluetooth: hci0: command 0x0c1a tx timeout [ 144.559513][ T6513] can0: slcan on ttyS2. [ 144.716850][ T6512] can0 (unregistered): slcan off ttyS2. [ 144.886014][ T6523] syz.2.136 uses obsolete (PF_INET,SOCK_PACKET) [ 145.031393][ T6523] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8 [ 145.240172][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout [ 145.240182][ T5833] Bluetooth: hci1: command 0x0c1a tx timeout [ 145.316388][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout [ 145.637821][ T6548] netlink: 504 bytes leftover after parsing attributes in process `syz.3.139'. [ 145.933114][ T6549] netlink: 504 bytes leftover after parsing attributes in process `syz.3.139'. [ 146.517347][ T5839] Bluetooth: hci0: command 0x0c1a tx timeout [ 146.604741][ T6563] [U]  [ 146.607632][ T6563] [U] [ 146.610383][ T6563] [U] [ 146.613135][ T6563] [U] [ 146.646712][ T6563] [U] [ 146.649586][ T6563] [U] [ 146.652347][ T6563] [U] [ 146.655105][ T6563] [U] [ 146.688772][ T6563] [U] [ 146.691569][ T6563] [U] [ 146.694338][ T6563] [U] [ 146.697091][ T6563] [U] [ 146.742292][ T6563] [U] [ 146.745092][ T6563] [U] [ 146.747853][ T6563] [U] [ 146.750615][ T6563] [U] [ 146.766337][ T6563] [U] [ 146.769136][ T6563] [U] [ 146.771892][ T6563] [U] [ 146.774656][ T6563] [U] [ 146.825965][ T6563] [U] [ 146.828757][ T6563] [U] [ 146.831509][ T6563] [U] [ 146.834277][ T6563] [U] [ 146.886072][ T6563] [U] [ 146.888863][ T6563] [U] [ 146.891615][ T6563] [U] [ 146.894392][ T6563] [U] [ 146.917605][ T6563] [U] [ 146.920389][ T6563] [U] [ 146.923157][ T6563] [U] [ 146.925925][ T6563] [U] [ 147.014177][ T6563] [U] [ 147.016975][ T6563] [U] [ 147.019741][ T6563] [U] [ 147.022490][ T6563] [U] [ 147.086824][ T6563] [U] [ 147.089638][ T6563] [U] [ 147.092402][ T6563] [U] [ 147.095167][ T6563] [U] [ 147.193732][ T6563] [U] [ 147.196538][ T6563] [U] [ 147.199303][ T6563] [U] [ 147.202071][ T6563] [U] [ 147.241984][ T6563] [U] [ 147.244790][ T6563] [U] [ 147.247574][ T6563] [U] [ 147.250333][ T6563] [U] [ 147.294503][ T6563] [U] [ 147.297310][ T6563] [U] [ 147.300075][ T6563] [U] [ 147.302853][ T6563] [U] [ 147.316445][ T5833] Bluetooth: hci1: command 0x0c1a tx timeout [ 147.323259][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout [ 147.395488][ T6563] [U] [ 147.398261][ T6563] [U] [ 147.400969][ T6563] [U] [ 147.403695][ T6563] [U] [ 147.407362][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout [ 147.419852][ T6563] [U] [ 147.422633][ T6563] [U] [ 147.425406][ T6563] [U] [ 147.428163][ T6563] [U] [ 147.536915][ T6563] [U] [ 147.539723][ T6563] [U] [ 147.542492][ T6563] [U] [ 147.545243][ T6563] [U] [ 147.603261][ T6563] [U] [ 148.105916][ T6599] program syz.0.148 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 148.595766][ T5839] Bluetooth: hci0: command 0x0c1a tx timeout [ 149.235475][ T6625] FAULT_INJECTION: forcing a failure. [ 149.235475][ T6625] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 149.259972][ T6625] CPU: 1 UID: 0 PID: 6625 Comm: syz.1.152 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 149.260014][ T6625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 149.260031][ T6625] Call Trace: [ 149.260041][ T6625] [ 149.260052][ T6625] dump_stack_lvl+0x16c/0x1f0 [ 149.260099][ T6625] should_fail_ex+0x512/0x640 [ 149.260172][ T6625] should_fail_alloc_page+0xe7/0x130 [ 149.260213][ T6625] prepare_alloc_pages+0x3c2/0x610 [ 149.260268][ T6625] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 149.260326][ T6625] ? copy_splice_read+0x1a8/0xba0 [ 149.260369][ T6625] ? stack_trace_save+0x8e/0xc0 [ 149.260401][ T6625] ? __pfx_stack_trace_save+0x10/0x10 [ 149.260432][ T6625] ? stack_depot_save_flags+0x28/0xa50 [ 149.260487][ T6625] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 149.260521][ T6625] ? kasan_save_stack+0x33/0x60 [ 149.260553][ T6625] ? __kasan_kmalloc+0xaa/0xb0 [ 149.260582][ T6625] ? copy_splice_read+0x1a8/0xba0 [ 149.260623][ T6625] ? do_splice_read+0x282/0x370 [ 149.260664][ T6625] ? splice_direct_to_actor+0x2a1/0xa30 [ 149.260708][ T6625] ? do_splice_direct+0x174/0x240 [ 149.260758][ T6625] ? do_sendfile+0xafd/0xe50 [ 149.260803][ T6625] ? __x64_sys_sendfile64+0x1d8/0x220 [ 149.260838][ T6625] ? do_syscall_64+0xcd/0x230 [ 149.260910][ T6625] alloc_pages_bulk_noprof+0x703/0x13b0 [ 149.260960][ T6625] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 149.261007][ T6625] ? trace_kmalloc+0x2b/0xd0 [ 149.261046][ T6625] ? __kmalloc_noprof+0x242/0x510 [ 149.261091][ T6625] copy_splice_read+0x1e1/0xba0 [ 149.261145][ T6625] ? __pfx_copy_splice_read+0x10/0x10 [ 149.261204][ T6625] ? find_held_lock+0x2b/0x80 [ 149.261241][ T6625] ? __pfx_copy_splice_read+0x10/0x10 [ 149.261287][ T6625] do_splice_read+0x282/0x370 [ 149.261336][ T6625] splice_direct_to_actor+0x2a1/0xa30 [ 149.261385][ T6625] ? __pfx_direct_splice_actor+0x10/0x10 [ 149.261440][ T6625] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 149.261485][ T6625] ? get_pid_task+0xfc/0x250 [ 149.261539][ T6625] do_splice_direct+0x174/0x240 [ 149.261586][ T6625] ? __pfx_do_splice_direct+0x10/0x10 [ 149.261632][ T6625] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 149.261685][ T6625] ? rw_verify_area+0xcf/0x680 [ 149.261734][ T6625] do_sendfile+0xafd/0xe50 [ 149.261794][ T6625] ? __pfx_do_sendfile+0x10/0x10 [ 149.261842][ T6625] ? __fget_files+0x20e/0x3c0 [ 149.261911][ T6625] __x64_sys_sendfile64+0x1d8/0x220 [ 149.261945][ T6625] ? ksys_write+0x1b9/0x240 [ 149.261972][ T6625] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 149.262007][ T6625] ? rcu_is_watching+0x12/0xc0 [ 149.262043][ T6625] do_syscall_64+0xcd/0x230 [ 149.262088][ T6625] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.262117][ T6625] RIP: 0033:0x7f61a138e969 [ 149.262140][ T6625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 149.262166][ T6625] RSP: 002b:00007f61a22aa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 149.262193][ T6625] RAX: ffffffffffffffda RBX: 00007f61a15b6080 RCX: 00007f61a138e969 [ 149.262209][ T6625] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004 [ 149.262225][ T6625] RBP: 00007f61a22aa090 R08: 0000000000000000 R09: 0000000000000000 [ 149.262243][ T6625] R10: 0000000000000048 R11: 0000000000000246 R12: 0000000000000001 [ 149.262260][ T6625] R13: 0000000000000000 R14: 00007f61a15b6080 R15: 00007ffc9ef511d8 [ 149.262296][ T6625] [ 149.358466][ T6630] [U]  [ 149.602378][ T6630] [U] [ 149.605105][ T6630] [U] [ 149.607914][ T6630] [U] [ 149.621786][ T6630] [U] [ 149.624663][ T6630] [U] [ 149.627417][ T6630] [U] [ 149.630166][ T6630] [U] [ 149.643680][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout [ 149.654704][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout [ 149.661017][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout [ 149.661244][ T6630] [U] [ 149.669804][ T6630] [U] [ 149.672550][ T6630] [U] [ 149.675297][ T6630] [U] [ 149.692522][ T6630] [U] [ 149.695321][ T6630] [U] [ 149.698080][ T6630] [U] [ 149.700831][ T6630] [U] [ 149.706562][ T6630] [U] [ 149.709319][ T6630] [U] [ 149.712058][ T6630] [U] [ 149.714813][ T6630] [U] [ 149.721905][ T6630] [U] [ 149.724677][ T6630] [U] [ 149.727421][ T6630] [U] [ 149.730178][ T6630] [U] [ 149.735254][ T6630] [U] [ 149.738032][ T6630] [U] [ 149.740786][ T6630] [U] [ 149.743537][ T6630] [U] [ 149.747529][ T6630] [U] [ 149.750315][ T6630] [U] [ 149.753071][ T6630] [U] [ 149.755822][ T6630] [U] [ 149.760192][ T6630] [U] [ 149.762964][ T6630] [U] [ 149.765708][ T6630] [U] [ 149.768460][ T6630] [U] [ 149.772518][ T6630] [U] [ 149.775284][ T6630] [U] [ 149.778035][ T6630] [U] [ 149.780796][ T6630] [U] [ 149.785309][ T6630] [U] [ 149.788082][ T6630] [U] [ 149.790849][ T6630] [U] [ 149.793603][ T6630] [U] [ 149.797290][ T6624] process 'syz.2.153' launched ':,' with NULL argv: empty string added [ 149.806591][ T6630] [U] [ 149.809364][ T6630] [U] [ 149.812113][ T6630] [U] [ 149.814844][ T6630] [U] [ 149.819298][ T6630] [U] [ 149.822070][ T6630] [U] [ 149.824830][ T6630] [U] [ 149.827589][ T6630] [U] [ 149.835447][ T6630] [U] [ 149.838234][ T6630] [U] [ 149.841005][ T6630] [U] [ 149.843745][ T6630] [U] [ 149.847753][ T6630] [U] [ 149.850546][ T6630] [U] [ 149.853293][ T6630] [U] [ 149.856045][ T6630] [U] [ 149.859928][ T6630] [U] [ 149.862695][ T6630] [U] [ 149.865453][ T6630] [U] [ 149.868193][ T6630] [U] [ 149.886870][ T6630] [U] [ 149.889671][ T6630] [U] [ 149.892429][ T6630] [U] [ 149.895175][ T6630] [U] [ 149.930529][ T6630] [U] [ 149.933326][ T6630] [U] [ 149.936074][ T6630] [U] [ 149.938834][ T6630] [U] [ 149.959547][ T6630] [U] [ 149.962335][ T6630] [U] [ 149.965084][ T6630] [U] [ 149.967851][ T6630] [U] [ 149.982718][ T6630] [U] [ 149.985511][ T6630] [U] [ 149.988268][ T6630] [U] [ 149.991018][ T6630] [U] [ 150.036132][ T6630] [U] [ 150.038928][ T6630] [U] [ 150.041680][ T6630] [U] [ 150.044431][ T6630] [U] [ 150.085142][ T6630] [U] [ 150.087939][ T6630] [U] [ 150.090666][ T6630] [U] [ 150.093391][ T6630] [U] [ 150.127977][ T6630] [U] [ 150.130780][ T6630] [U] [ 150.133543][ T6630] [U] [ 150.136302][ T6630] [U] [ 150.173445][ T6630] [U] [ 150.657994][ T6658] FAULT_INJECTION: forcing a failure. [ 150.657994][ T6658] name failslab, interval 1, probability 0, space 0, times 1 [ 150.695577][ T6658] CPU: 1 UID: 0 PID: 6658 Comm: syz.1.165 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 150.695621][ T6658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 150.695638][ T6658] Call Trace: [ 150.695647][ T6658] [ 150.695665][ T6658] dump_stack_lvl+0x16c/0x1f0 [ 150.695714][ T6658] should_fail_ex+0x512/0x640 [ 150.695758][ T6658] ? __kvmalloc_node_noprof+0x122/0x600 [ 150.695795][ T6658] should_failslab+0xc2/0x120 [ 150.695833][ T6658] __kvmalloc_node_noprof+0x135/0x600 [ 150.695867][ T6658] ? __pfx_net_ctl_permissions+0x10/0x10 [ 150.695914][ T6658] ? proc_sys_call_handler+0x2a6/0x5c0 [ 150.695946][ T6658] ? ns_capable_noaudit+0xda/0x110 [ 150.695987][ T6658] ? proc_sys_call_handler+0x2a6/0x5c0 [ 150.696019][ T6658] proc_sys_call_handler+0x2a6/0x5c0 [ 150.696055][ T6658] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 150.696092][ T6658] ? trace_kmalloc+0x2b/0xd0 [ 150.696143][ T6658] copy_splice_read+0x615/0xba0 [ 150.696197][ T6658] ? __pfx_copy_splice_read+0x10/0x10 [ 150.696255][ T6658] ? find_held_lock+0x2b/0x80 [ 150.696292][ T6658] ? __pfx_copy_splice_read+0x10/0x10 [ 150.696337][ T6658] do_splice_read+0x282/0x370 [ 150.696400][ T6658] splice_direct_to_actor+0x2a1/0xa30 [ 150.696448][ T6658] ? __pfx_direct_splice_actor+0x10/0x10 [ 150.696501][ T6658] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 150.696541][ T6658] ? get_pid_task+0xfc/0x250 [ 150.696586][ T6658] do_splice_direct+0x174/0x240 [ 150.696632][ T6658] ? __pfx_do_splice_direct+0x10/0x10 [ 150.696706][ T6658] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 150.696759][ T6658] ? rw_verify_area+0xcf/0x680 [ 150.696808][ T6658] do_sendfile+0xafd/0xe50 [ 150.696863][ T6658] ? __pfx_do_sendfile+0x10/0x10 [ 150.696912][ T6658] ? __fget_files+0x20e/0x3c0 [ 150.696971][ T6658] __x64_sys_sendfile64+0x1d8/0x220 [ 150.697007][ T6658] ? ksys_write+0x1b9/0x240 [ 150.697036][ T6658] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 150.697072][ T6658] ? rcu_is_watching+0x12/0xc0 [ 150.697112][ T6658] do_syscall_64+0xcd/0x230 [ 150.697160][ T6658] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 150.697191][ T6658] RIP: 0033:0x7f61a138e969 [ 150.697215][ T6658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 150.697242][ T6658] RSP: 002b:00007f61a22cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 150.697270][ T6658] RAX: ffffffffffffffda RBX: 00007f61a15b5fa0 RCX: 00007f61a138e969 [ 150.697288][ T6658] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004 [ 150.697305][ T6658] RBP: 00007f61a22cb090 R08: 0000000000000000 R09: 0000000000000000 [ 150.697322][ T6658] R10: 0000000000000048 R11: 0000000000000246 R12: 0000000000000002 [ 150.697340][ T6658] R13: 0000000000000000 R14: 00007f61a15b5fa0 R15: 00007ffc9ef511d8 [ 150.697380][ T6658] [ 151.606721][ T6676] [U]  [ 151.609637][ T6676] [U] [ 151.612417][ T6676] [U] [ 151.615168][ T6676] [U] [ 151.674176][ T6676] [U] [ 151.676982][ T6676] [U] [ 151.679741][ T6676] [U] [ 151.682537][ T6676] [U] [ 151.757578][ T6676] [U] [ 151.760380][ T6676] [U] [ 151.763140][ T6676] [U] [ 151.765905][ T6676] [U] [ 151.822556][ T6676] [U] [ 151.825355][ T6676] [U] [ 151.828114][ T6676] [U] [ 151.830864][ T6676] [U] [ 151.856447][ T6676] [U] [ 151.859242][ T6676] [U] [ 151.862012][ T6676] [U] [ 151.864763][ T6676] [U] [ 151.869985][ T6676] [U] [ 151.872761][ T6676] [U] [ 151.875514][ T6676] [U] [ 151.878274][ T6676] [U] [ 151.884106][ T6676] [U] [ 151.886881][ T6676] [U] [ 151.889636][ T6676] [U] [ 151.892425][ T6676] [U] [ 151.898526][ T6676] [U] [ 151.901304][ T6676] [U] [ 151.904060][ T6676] [U] [ 151.906809][ T6676] [U] [ 151.910695][ T6676] [U] [ 151.913463][ T6676] [U] [ 151.916217][ T6676] [U] [ 151.918966][ T6676] [U] [ 151.922763][ T6676] [U] [ 151.925533][ T6676] [U] [ 151.928295][ T6676] [U] [ 151.931045][ T6676] [U] [ 151.978796][ T6676] [U] [ 151.981677][ T6676] [U] [ 151.984432][ T6676] [U] [ 151.987193][ T6676] [U] [ 151.990378][ T6676] [U] [ 151.993131][ T6676] [U] [ 151.995858][ T6676] [U] [ 151.998583][ T6676] [U] [ 152.001702][ T6676] [U] [ 152.004470][ T6676] [U] [ 152.007226][ T6676] [U] [ 152.009979][ T6676] [U] [ 152.013057][ T6676] [U] [ 152.015816][ T6676] [U] [ 152.018569][ T6676] [U] [ 152.021327][ T6676] [U] [ 152.024510][ T6676] [U] [ 152.027266][ T6676] [U] [ 152.030020][ T6676] [U] [ 152.032780][ T6676] [U] [ 152.035849][ T6676] [U] [ 152.038615][ T6676] [U] [ 152.041375][ T6676] [U] [ 152.044132][ T6676] [U] [ 152.112220][ T6676] [U] [ 152.115012][ T6676] [U] [ 152.117782][ T6676] [U] [ 152.120529][ T6676] [U] [ 152.124712][ T6676] [U] [ 152.127485][ T6676] [U] [ 152.130234][ T6676] [U] [ 152.133004][ T6676] [U] [ 152.196045][ T6676] [U] [ 152.198842][ T6676] [U] [ 152.201591][ T6676] [U] [ 152.204346][ T6676] [U] [ 152.207871][ T6676] [U] [ 152.210642][ T6676] [U] [ 152.213393][ T6676] [U] [ 152.216149][ T6676] [U] [ 152.219446][ T6676] [U] [ 152.222202][ T6676] [U] [ 152.224951][ T6676] [U] [ 152.227706][ T6676] [U] [ 152.230805][ T6676] [U] [ 152.233558][ T6676] [U] [ 152.236330][ T6676] [U] [ 152.239085][ T6676] [U] [ 152.287836][ T6676] [U] [ 152.290621][ T6676] [U] [ 152.293341][ T6676] [U] [ 152.296051][ T6676] [U] [ 152.316012][ T6676] [U] [ 152.318756][ T6676] [U] [ 152.321490][ T6676] [U] [ 152.324251][ T6676] [U] [ 152.366707][ T6676] [U] [ 152.369500][ T6676] [U] [ 152.372253][ T6676] [U] [ 152.375017][ T6676] [U] [ 152.378830][ T6676] [U] [ 152.381598][ T6676] [U] [ 152.384372][ T6676] [U] [ 152.387106][ T6676] [U] [ 152.390663][ T6676] [U] [ 152.393430][ T6676] [U] [ 152.396182][ T6676] [U] [ 152.398938][ T6676] [U] [ 152.550584][ T6676] [U] [ 153.630940][ T6702] FAULT_INJECTION: forcing a failure. [ 153.630940][ T6702] name failslab, interval 1, probability 0, space 0, times 0 [ 153.705753][ T6702] CPU: 1 UID: 0 PID: 6702 Comm: syz.3.174 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 153.705804][ T6702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 153.705823][ T6702] Call Trace: [ 153.705833][ T6702] [ 153.705846][ T6702] dump_stack_lvl+0x16c/0x1f0 [ 153.705898][ T6702] should_fail_ex+0x512/0x640 [ 153.705943][ T6702] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 153.706000][ T6702] should_failslab+0xc2/0x120 [ 153.706040][ T6702] __kmalloc_cache_noprof+0x6a/0x3e0 [ 153.706111][ T6702] ? snd_pcm_oss_change_params_locked+0x247/0x3b40 [ 153.706163][ T6702] ? kasan_save_track+0x14/0x30 [ 153.706201][ T6702] snd_pcm_oss_change_params_locked+0x247/0x3b40 [ 153.706256][ T6702] ? rcu_is_watching+0x12/0xc0 [ 153.706290][ T6702] ? __mutex_lock+0x1ca/0xb90 [ 153.706332][ T6702] ? lockdep_hardirqs_on+0x7c/0x110 [ 153.706380][ T6702] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 153.706428][ T6702] ? __pfx___mutex_lock+0x10/0x10 [ 153.706481][ T6702] ? tomoyo_path_number_perm+0x295/0x580 [ 153.706532][ T6702] ? __lock_acquire+0xaa4/0x1ba0 [ 153.706587][ T6702] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 153.706645][ T6702] snd_pcm_oss_get_formats+0x7e/0x340 [ 153.706692][ T6702] ? find_held_lock+0x2b/0x80 [ 153.706723][ T6702] ? __pfx_snd_pcm_oss_get_formats+0x10/0x10 [ 153.706769][ T6702] ? __might_fault+0x13b/0x190 [ 153.706817][ T6702] snd_pcm_oss_ioctl+0x2efb/0x37a0 [ 153.706866][ T6702] ? find_held_lock+0x2b/0x80 [ 153.706896][ T6702] ? hook_file_ioctl_common+0x145/0x410 [ 153.706934][ T6702] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 153.706988][ T6702] ? __fget_files+0x20e/0x3c0 [ 153.707045][ T6702] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 153.707097][ T6702] __x64_sys_ioctl+0x190/0x200 [ 153.707146][ T6702] do_syscall_64+0xcd/0x230 [ 153.707196][ T6702] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 153.707230][ T6702] RIP: 0033:0x7fa0c438e969 [ 153.707257][ T6702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 153.707289][ T6702] RSP: 002b:00007fa0c51e0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 153.707333][ T6702] RAX: ffffffffffffffda RBX: 00007fa0c45b6160 RCX: 00007fa0c438e969 [ 153.707354][ T6702] RDX: 0000000000000000 RSI: 00000000c0045005 RDI: 0000000000000006 [ 153.707373][ T6702] RBP: 00007fa0c4410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 153.707392][ T6702] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 153.707411][ T6702] R13: 0000000000000000 R14: 00007fa0c45b6160 R15: 00007ffe807223d8 [ 153.707459][ T6702] [ 154.342811][ T5833] Bluetooth: hci3: unexpected event 0x3e length: 1020 > 260 [ 154.342855][ T5833] Bluetooth: hci3: unexpected subevent 0x01 length: 1019 > 18 [ 155.906586][ T6729] netlink: 28 bytes leftover after parsing attributes in process `syz.2.181'. [ 155.940817][ T6729] bridge0: port 2(bridge_slave_1) entered disabled state [ 156.060794][ T6729] bridge_slave_1 (unregistering): left allmulticast mode [ 156.070331][ T6729] bridge_slave_1 (unregistering): left promiscuous mode [ 156.085763][ T6729] bridge0: port 2(bridge_slave_1) entered disabled state [ 157.000743][ T6756] program syz.1.187 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 158.373858][ T6791] [U]  [ 158.376752][ T6791] [U] [ 158.380525][ T6791] [U] [ 158.380591][ T6791] [U] [ 158.392345][ T6791] [U] [ 158.395109][ T6791] [U] [ 158.397885][ T6791] [U] [ 158.400642][ T6791] [U] [ 158.414314][ T6791] [U] [ 158.417117][ T6791] [U] [ 158.419880][ T6791] [U] [ 158.422641][ T6791] [U] [ 158.447082][ T6791] [U] [ 158.449895][ T6791] [U] [ 158.452658][ T6791] [U] [ 158.455414][ T6791] [U] [ 158.490638][ T6791] [U] [ 158.493437][ T6791] [U] [ 158.496194][ T6791] [U] [ 158.498961][ T6791] [U] [ 158.550564][ T6791] [U] [ 158.553381][ T6791] [U] [ 158.556149][ T6791] [U] [ 158.558920][ T6791] [U] [ 158.586079][ T6791] [U] [ 158.588887][ T6791] [U] [ 158.591635][ T6791] [U] [ 158.594384][ T6791] [U] [ 158.616576][ T6791] [U] [ 158.619456][ T6791] [U] [ 158.622223][ T6791] [U] [ 158.624973][ T6791] [U] [ 158.631220][ T6791] [U] [ 158.634091][ T6791] [U] [ 158.636847][ T6791] [U] [ 158.639605][ T6791] [U] [ 158.653081][ T6791] [U] [ 158.655963][ T6791] [U] [ 158.658722][ T6791] [U] [ 158.661471][ T6791] [U] [ 158.712060][ T6791] [U] [ 158.714958][ T6791] [U] [ 158.717714][ T6791] [U] [ 158.720475][ T6791] [U] [ 158.746048][ T6791] [U] [ 158.748849][ T6791] [U] [ 158.751617][ T6791] [U] [ 158.754381][ T6791] [U] [ 158.776830][ T6791] [U] [ 158.779633][ T6791] [U] [ 158.782405][ T6791] [U] [ 158.785173][ T6791] [U] [ 158.825857][ T6791] [U] [ 158.828753][ T6791] [U] [ 158.831514][ T6791] [U] [ 158.834271][ T6791] [U] [ 158.855953][ T6791] [U] [ 158.858835][ T6791] [U] [ 158.861617][ T6791] [U] [ 158.864387][ T6791] [U] [ 158.915895][ T6791] [U] [ 158.918703][ T6791] [U] [ 158.921480][ T6791] [U] [ 158.924240][ T6791] [U] [ 158.931645][ T6791] [U] [ 158.934514][ T6791] [U] [ 158.937280][ T6791] [U] [ 158.940047][ T6791] [U] [ 158.965858][ T6791] [U] [ 158.968742][ T6791] [U] [ 158.971498][ T6791] [U] [ 158.974345][ T6791] [U] [ 158.996612][ T6791] [U] [ 158.999418][ T6791] [U] [ 159.002178][ T6791] [U] [ 159.005026][ T6791] [U] [ 159.054253][ T6791] [U] [ 159.057060][ T6791] [U] [ 159.059821][ T6791] [U] [ 159.062572][ T6791] [U] [ 159.108303][ T6791] [U] [ 159.111113][ T6791] [U] [ 159.113870][ T6791] [U] [ 159.116628][ T6791] [U] [ 159.120134][ T6791] [U] [ 159.122912][ T6791] [U] [ 159.125659][ T6791] [U] [ 159.128409][ T6791] [U] [ 159.134123][ T6791] [U] [ 159.136909][ T6791] [U] [ 159.139657][ T6791] [U] [ 159.142411][ T6791] [U] [ 159.148039][ T6791] [U] [ 159.150821][ T6791] [U] [ 159.153569][ T6791] [U] [ 159.156322][ T6791] [U] [ 159.161080][ T6791] [U] [ 159.163855][ T6791] [U] [ 159.166624][ T6791] [U] [ 159.169367][ T6791] [U] [ 159.172730][ T6791] [U] [ 159.175489][ T6791] [U] [ 159.178327][ T6791] [U] [ 159.181164][ T6791] [U] [ 159.226533][ T6791] [U] [ 159.229325][ T6791] [U] [ 159.232067][ T6791] [U] [ 159.234828][ T6791] [U] [ 159.238653][ T6791] [U] [ 159.241420][ T6791] [U] [ 159.244166][ T6791] [U] [ 159.246917][ T6791] [U] [ 159.250220][ T6791] [U] [ 159.252987][ T6791] [U] [ 159.255738][ T6791] [U] [ 159.258490][ T6791] [U] [ 159.262329][ T6791] [U] [ 159.265095][ T6791] [U] [ 159.267868][ T6791] [U] [ 159.270609][ T6791] [U] [ 159.273942][ T6791] [U] [ 159.276709][ T6791] [U] [ 159.279464][ T6791] [U] [ 159.282205][ T6791] [U] [ 159.285309][ T6791] [U] [ 159.288063][ T6791] [U] [ 159.290808][ T6791] [U] [ 159.359077][ T6790] [U] [ 159.372550][ T6799] Console: switching to colour VGA+ 80x25 [ 159.394500][ T6799] FAULT_INJECTION: forcing a failure. [ 159.394500][ T6799] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 159.409312][ T6799] CPU: 0 UID: 0 PID: 6799 Comm: syz.3.197 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 159.409356][ T6799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 159.409375][ T6799] Call Trace: [ 159.409385][ T6799] [ 159.409398][ T6799] dump_stack_lvl+0x16c/0x1f0 [ 159.409450][ T6799] should_fail_ex+0x512/0x640 [ 159.409504][ T6799] should_fail_alloc_page+0xe7/0x130 [ 159.409547][ T6799] prepare_alloc_pages+0x3c2/0x610 [ 159.409597][ T6799] ? rcu_is_watching+0x12/0xc0 [ 159.409632][ T6799] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 159.409680][ T6799] ? __lock_acquire+0x5ca/0x1ba0 [ 159.409749][ T6799] ? xas_create+0x1d7/0x1460 [ 159.409801][ T6799] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 159.409838][ T6799] ? cgroup_rstat_updated+0x2a/0xb20 [ 159.409907][ T6799] ? __lock_acquire+0x5ca/0x1ba0 [ 159.409948][ T6799] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 159.410002][ T6799] ? policy_nodemask+0xea/0x4e0 [ 159.410047][ T6799] alloc_pages_mpol+0x1fb/0x550 [ 159.410089][ T6799] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 159.410133][ T6799] ? filemap_get_entry+0x1a7/0x3b0 [ 159.410185][ T6799] folio_alloc_noprof+0x20/0x2d0 [ 159.410232][ T6799] filemap_alloc_folio_noprof+0x3a1/0x470 [ 159.410271][ T6799] ? __pfx_filemap_alloc_folio_noprof+0x10/0x10 [ 159.410307][ T6799] ? rcu_is_watching+0x12/0xc0 [ 159.410346][ T6799] __filemap_get_folio+0x5e9/0xc10 [ 159.410402][ T6799] ioctx_alloc+0x761/0x2060 [ 159.410470][ T6799] ? __pfx_ioctx_alloc+0x10/0x10 [ 159.410515][ T6799] ? __might_fault+0x13b/0x190 [ 159.410564][ T6799] __x64_sys_io_setup+0xc9/0x210 [ 159.410616][ T6799] do_syscall_64+0xcd/0x230 [ 159.410665][ T6799] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 159.410698][ T6799] RIP: 0033:0x7fa0c438e969 [ 159.410724][ T6799] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 159.410758][ T6799] RSP: 002b:00007fa0c5222038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 159.410789][ T6799] RAX: ffffffffffffffda RBX: 00007fa0c45b5fa0 RCX: 00007fa0c438e969 [ 159.410810][ T6799] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff [ 159.410830][ T6799] RBP: 00007fa0c4410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 159.410849][ T6799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 159.410868][ T6799] R13: 0000000000000000 R14: 00007fa0c45b5fa0 R15: 00007ffe807223d8 [ 159.410910][ T6799] [ 159.809216][ T6809] netlink: 'syz.1.199': attribute type 1 has an invalid length. [ 159.889481][ T6806] FAULT_INJECTION: forcing a failure. [ 159.889481][ T6806] name failslab, interval 1, probability 0, space 0, times 0 [ 159.907187][ T6806] CPU: 0 UID: 0 PID: 6806 Comm: syz.0.198 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 159.907232][ T6806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 159.907250][ T6806] Call Trace: [ 159.907260][ T6806] [ 159.907272][ T6806] dump_stack_lvl+0x16c/0x1f0 [ 159.907324][ T6806] should_fail_ex+0x512/0x640 [ 159.907369][ T6806] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 159.907427][ T6806] should_failslab+0xc2/0x120 [ 159.907466][ T6806] __kmalloc_cache_noprof+0x6a/0x3e0 [ 159.907532][ T6806] ? kernfs_fop_open+0xa3a/0xda0 [ 159.907578][ T6806] kernfs_fop_open+0xa3a/0xda0 [ 159.907620][ T6806] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 159.907676][ T6806] do_dentry_open+0x741/0x1c10 [ 159.907710][ T6806] ? __pfx_kernfs_fop_open+0x10/0x10 [ 159.907757][ T6806] vfs_open+0x82/0x3f0 [ 159.907804][ T6806] path_openat+0x1e5e/0x2d40 [ 159.907851][ T6806] ? __pfx_path_openat+0x10/0x10 [ 159.907884][ T6806] ? __lock_acquire+0xaa4/0x1ba0 [ 159.907953][ T6806] do_filp_open+0x20b/0x470 [ 159.907985][ T6806] ? __pfx_do_filp_open+0x10/0x10 [ 159.908064][ T6806] ? _raw_spin_unlock+0x28/0x50 [ 159.908102][ T6806] ? alloc_fd+0x471/0x7d0 [ 159.908165][ T6806] do_sys_openat2+0x11b/0x1d0 [ 159.908208][ T6806] ? __pfx_do_sys_openat2+0x10/0x10 [ 159.908268][ T6806] __x64_sys_open+0x153/0x1e0 [ 159.908310][ T6806] ? __pfx___x64_sys_open+0x10/0x10 [ 159.908364][ T6806] ? rcu_is_watching+0x12/0xc0 [ 159.908399][ T6806] do_syscall_64+0xcd/0x230 [ 159.908462][ T6806] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 159.908494][ T6806] RIP: 0033:0x7f53eff8e969 [ 159.908519][ T6806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 159.908550][ T6806] RSP: 002b:00007f53f0e2c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 159.908578][ T6806] RAX: ffffffffffffffda RBX: 00007f53f01b5fa0 RCX: 00007f53eff8e969 [ 159.908598][ T6806] RDX: 0000000000000007 RSI: 0000000000101800 RDI: 0000200000000000 [ 159.908617][ T6806] RBP: 00007f53f0010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 159.908637][ T6806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 159.908655][ T6806] R13: 0000000000000000 R14: 00007f53f01b5fa0 R15: 00007ffdaa83ba68 [ 159.908697][ T6806] [ 160.423419][ T30] audit: type=1806 audit(1033.470:3): xattr=2EC7871B res=-22 [ 160.616756][ T6812] netlink: 8 bytes leftover after parsing attributes in process `syz.2.200'. [ 160.652715][ T6812] netlink: 8 bytes leftover after parsing attributes in process `syz.2.200'. [ 162.260355][ T6850] [U]  [ 162.263229][ T6850] [U] [ 162.265947][ T6850] [U] [ 162.268660][ T6850] [U] [ 162.305885][ T6850] [U] [ 162.308695][ T6850] [U] [ 162.311462][ T6850] [U] [ 162.314235][ T6850] [U] [ 162.358705][ T6850] [U] [ 162.361516][ T6850] [U] [ 162.364291][ T6850] [U] [ 162.367098][ T6850] [U] [ 162.407976][ T6850] [U] [ 162.410785][ T6850] [U] [ 162.413546][ T6850] [U] [ 162.416303][ T6850] [U] [ 162.547909][ T6850] [U] [ 162.550696][ T6850] [U] [ 162.553473][ T6850] [U] [ 162.556227][ T6850] [U] [ 162.606000][ T6850] [U] [ 162.608797][ T6850] [U] [ 162.611556][ T6850] [U] [ 162.614316][ T6850] [U] [ 162.668005][ T6850] [U] [ 162.670806][ T6850] [U] [ 162.673561][ T6850] [U] [ 162.676341][ T6850] [U] [ 162.782183][ T6850] [U] [ 162.784988][ T6850] [U] [ 162.787794][ T6850] [U] [ 162.790572][ T6850] [U] [ 162.858002][ T6850] [U] [ 162.860831][ T6850] [U] [ 162.863605][ T6850] [U] [ 162.866370][ T6850] [U] [ 162.898232][ T6850] [U] [ 162.901040][ T6850] [U] [ 162.903797][ T6850] [U] [ 162.906556][ T6850] [U] [ 162.975972][ T6850] [U] [ 162.978789][ T6850] [U] [ 162.981554][ T6850] [U] [ 162.984325][ T6850] [U] [ 163.015855][ T6850] [U] [ 163.018656][ T6850] [U] [ 163.021424][ T6850] [U] [ 163.024201][ T6850] [U] [ 163.034683][ T6850] [U] [ 163.037503][ T6850] [U] [ 163.040266][ T6850] [U] [ 163.043032][ T6850] [U] [ 163.075369][ T6850] [U] [ 163.078227][ T6850] [U] [ 163.081004][ T6850] [U] [ 163.083764][ T6850] [U] [ 163.107714][ T6850] [U] [ 163.302268][ T6867] netlink: 4 bytes leftover after parsing attributes in process `syz.3.213'. [ 163.333070][ T6867] netlink: 354 bytes leftover after parsing attributes in process `syz.3.213'. [ 163.360527][ T6870] openvswitch: netlink: IP tunnel dst address not specified [ 163.369476][ T6867] netlink: 4 bytes leftover after parsing attributes in process `syz.3.213'. [ 163.387530][ T6867] netlink: 354 bytes leftover after parsing attributes in process `syz.3.213'. [ 163.416605][ T6871] input: jJǸ-¶š9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input9 [ 166.263331][ T6897] netlink: 8 bytes leftover after parsing attributes in process `syz.2.219'. [ 166.634278][ T6900] netlink: 28 bytes leftover after parsing attributes in process `syz.0.218'. [ 167.480284][ T6911] [U]  [ 167.483178][ T6911] [U] [ 167.485913][ T6911] [U] [ 167.488625][ T6911] [U] [ 167.500295][ T6911] [U] [ 167.503073][ T6911] [U] [ 167.505804][ T6911] [U] [ 167.508514][ T6911] [U] [ 167.536247][ T6911] [U] [ 167.538997][ T6911] [U] [ 167.541707][ T6911] [U] [ 167.544414][ T6911] [U] [ 167.564671][ T6911] [U] [ 167.567476][ T6911] [U] [ 167.570224][ T6911] [U] [ 167.572956][ T6911] [U] [ 167.576279][ T6911] [U] [ 167.579057][ T6911] [U] [ 167.581812][ T6911] [U] [ 167.584557][ T6911] [U] [ 167.587923][ T6911] [U] [ 167.590669][ T6911] [U] [ 167.593384][ T6911] [U] [ 167.596097][ T6911] [U] [ 167.606035][ T6911] [U] [ 167.608821][ T6911] [U] [ 167.611583][ T6911] [U] [ 167.614342][ T6911] [U] [ 167.627570][ T6911] [U] [ 167.630371][ T6911] [U] [ 167.633132][ T6911] [U] [ 167.635891][ T6911] [U] [ 167.666086][ T6911] [U] [ 167.668886][ T6911] [U] [ 167.671651][ T6911] [U] [ 167.674431][ T6911] [U] [ 167.761717][ T6911] [U] [ 167.764523][ T6911] [U] [ 167.767283][ T6911] [U] [ 167.770046][ T6911] [U] [ 167.801577][ T6911] [U] [ 167.804385][ T6911] [U] [ 167.807147][ T6911] [U] [ 167.809903][ T6911] [U] [ 167.842989][ T6911] [U] [ 167.845791][ T6911] [U] [ 167.848554][ T6911] [U] [ 167.851314][ T6911] [U] [ 167.891097][ T6911] [U] [ 167.893912][ T6911] [U] [ 167.896681][ T6911] [U] [ 167.899433][ T6911] [U] [ 167.936116][ T6911] [U] [ 167.938918][ T6911] [U] [ 167.941676][ T6911] [U] [ 167.944440][ T6911] [U] [ 167.985245][ T6911] [U] [ 167.988080][ T6911] [U] [ 167.990844][ T6911] [U] [ 167.993594][ T6911] [U] [ 168.015879][ T6911] [U] [ 168.018682][ T6911] [U] [ 168.021442][ T6911] [U] [ 168.024197][ T6911] [U] [ 168.153867][ T6911] [U] [ 168.156665][ T6911] [U] [ 168.159418][ T6911] [U] [ 168.162170][ T6911] [U] [ 168.226949][ T6911] [U] [ 168.229759][ T6911] [U] [ 168.232509][ T6911] [U] [ 168.235258][ T6911] [U] [ 168.286809][ T6911] [U] [ 168.289615][ T6911] [U] [ 168.292380][ T6911] [U] [ 168.295141][ T6911] [U] [ 168.428104][ T6911] [U] [ 168.428152][ T6911] [U] [ 168.428192][ T6911] [U] [ 168.428231][ T6911] [U] [ 168.428497][ T6911] [U] [ 168.428538][ T6911] [U] [ 168.428578][ T6911] [U] [ 168.428618][ T6911] [U] [ 168.428803][ T6911] [U] [ 168.428843][ T6911] [U] [ 168.428883][ T6911] [U] [ 168.428923][ T6911] [U] [ 168.429221][ T6911] [U] [ 168.429263][ T6911] [U] [ 168.429305][ T6911] [U] [ 168.429346][ T6911] [U] [ 168.429537][ T6911] [U] [ 168.429579][ T6911] [U] [ 168.429621][ T6911] [U] [ 168.429662][ T6911] [U] [ 168.429916][ T6911] [U] [ 168.429959][ T6911] [U] [ 168.430000][ T6911] [U] [ 168.430048][ T6911] [U] [ 168.430239][ T6911] [U] [ 168.430281][ T6911] [U] [ 168.430322][ T6911] [U] [ 168.430364][ T6911] [U] [ 168.430619][ T6911] [U] [ 168.430661][ T6911] [U] [ 168.430703][ T6911] [U] [ 168.430745][ T6911] [U] [ 168.430936][ T6911] [U] [ 168.430977][ T6911] [U] [ 168.431023][ T6911] [U] [ 168.431065][ T6911] [U] [ 168.431321][ T6911] [U] [ 168.431364][ T6911] [U] [ 168.431406][ T6911] [U] [ 168.431447][ T6911] [U] [ 168.471709][ T6911] [U] [ 168.575637][ T6911] [U] [ 168.578397][ T6911] [U] [ 168.581155][ T6911] [U] [ 168.592768][ T6911] [U] [ 169.315029][ T6940] block2mtd: illegal erase size [ 169.999773][ T6958] netlink: 16 bytes leftover after parsing attributes in process `syz.2.226'. [ 170.039637][ T6963] input: f¬ as /devices/virtual/input/input10 [ 171.822523][ T7000] Invalid ELF header magic: != ELF [ 172.213624][ T7009] netlink: 8 bytes leftover after parsing attributes in process `syz.1.239'. [ 172.672363][ T7024] input: jJǸ-¶š9ã%vø“û¨lÐQ  J8fi‘ as /devices/virtual/input/input11 [ 175.273514][ T7063] synth uevent: /bus/hid/drivers/zeroplus: unknown uevent action string [ 178.212311][ T7125] input: f¬ as /devices/virtual/input/input13 [ 178.785968][ T7130] vivid-003: ================= START STATUS ================= [ 178.814193][ T7130] vivid-003: Radio HW Seek Mode: Bounded [ 178.876845][ T7130] vivid-003: Radio Programmable HW Seek: false [ 178.920455][ T7130] vivid-003: RDS Rx I/O Mode: Block I/O [ 178.927536][ T7130] vivid-003: Generate RBDS Instead of RDS: false [ 178.939676][ T7130] vivid-003: RDS Reception: true [ 178.945055][ T7130] vivid-003: RDS Program Type: 0 inactive [ 178.951262][ T7130] vivid-003: RDS PS Name: inactive [ 178.958045][ T7130] vivid-003: RDS Radio Text: inactive [ 178.963629][ T7130] vivid-003: RDS Traffic Announcement: false inactive [ 178.972113][ T7130] vivid-003: RDS Traffic Program: false inactive [ 179.027645][ T7130] vivid-003: RDS Music: false inactive [ 179.054685][ T7130] vivid-003: ================== END STATUS ================== [ 179.822971][ T7147] netlink: 8 bytes leftover after parsing attributes in process `syz.0.268'. [ 179.895821][ T7149] FAULT_INJECTION: forcing a failure. [ 179.895821][ T7149] name failslab, interval 1, probability 0, space 0, times 0 [ 179.929047][ T7149] CPU: 1 UID: 0 PID: 7149 Comm: syz.0.268 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 179.929094][ T7149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 179.929119][ T7149] Call Trace: [ 179.929129][ T7149] [ 179.929141][ T7149] dump_stack_lvl+0x16c/0x1f0 [ 179.929191][ T7149] should_fail_ex+0x512/0x640 [ 179.929235][ T7149] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 179.929275][ T7149] ? __pfx_orangefs_debug_help_open+0x10/0x10 [ 179.929328][ T7149] should_failslab+0xc2/0x120 [ 179.929368][ T7149] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 179.929406][ T7149] ? seq_open+0x55/0x170 [ 179.929445][ T7149] ? __pfx___debugfs_file_get+0x10/0x10 [ 179.929482][ T7149] ? __pfx_orangefs_debug_help_open+0x10/0x10 [ 179.929536][ T7149] seq_open+0x55/0x170 [ 179.929576][ T7149] orangefs_debug_help_open+0x82/0x1c0 [ 179.929631][ T7149] full_proxy_open_regular+0x1b6/0x360 [ 179.929675][ T7149] do_dentry_open+0x741/0x1c10 [ 179.929709][ T7149] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 179.929759][ T7149] vfs_open+0x82/0x3f0 [ 179.929806][ T7149] path_openat+0x1e5e/0x2d40 [ 179.929852][ T7149] ? __pfx_path_openat+0x10/0x10 [ 179.929896][ T7149] do_filp_open+0x20b/0x470 [ 179.929927][ T7149] ? __pfx_do_filp_open+0x10/0x10 [ 179.929988][ T7149] ? alloc_fd+0x471/0x7d0 [ 179.930049][ T7149] do_sys_openat2+0x11b/0x1d0 [ 179.930091][ T7149] ? __pfx_do_sys_openat2+0x10/0x10 [ 179.930157][ T7149] __x64_sys_openat+0x174/0x210 [ 179.930200][ T7149] ? __pfx___x64_sys_openat+0x10/0x10 [ 179.930246][ T7149] ? rcu_is_watching+0x12/0xc0 [ 179.930287][ T7149] do_syscall_64+0xcd/0x230 [ 179.930335][ T7149] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.930368][ T7149] RIP: 0033:0x7f53eff8e969 [ 179.930393][ T7149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 179.930423][ T7149] RSP: 002b:00007f53f0dea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 179.930452][ T7149] RAX: ffffffffffffffda RBX: 00007f53f01b6160 RCX: 00007f53eff8e969 [ 179.930473][ T7149] RDX: 0000000000020801 RSI: 00002000000003c0 RDI: ffffffffffffff9c [ 179.930491][ T7149] RBP: 00007f53f0010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 179.930509][ T7149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 179.930527][ T7149] R13: 0000000000000000 R14: 00007f53f01b6160 R15: 00007ffdaa83ba68 [ 179.930566][ T7149] [ 180.836401][ T7158] FAULT_INJECTION: forcing a failure. [ 180.836401][ T7158] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 180.911561][ T7158] CPU: 1 UID: 0 PID: 7158 Comm: syz.2.269 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 180.911605][ T7158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 180.911624][ T7158] Call Trace: [ 180.911633][ T7158] [ 180.911645][ T7158] dump_stack_lvl+0x16c/0x1f0 [ 180.911695][ T7158] should_fail_ex+0x512/0x640 [ 180.911745][ T7158] _copy_to_iter+0x2a4/0x15a0 [ 180.911798][ T7158] ? chacha_block_generic+0x189/0x260 [ 180.911842][ T7158] ? __pfx__copy_to_iter+0x10/0x10 [ 180.911899][ T7158] ? __pfx___might_resched+0x10/0x10 [ 180.911932][ T7158] ? crng_make_state+0x48e/0x6d0 [ 180.911981][ T7158] get_random_bytes_user+0x17f/0x3c0 [ 180.912029][ T7158] ? __pfx_get_random_bytes_user+0x10/0x10 [ 180.912069][ T7158] ? do_writev+0x218/0x330 [ 180.912124][ T7158] ? do_futex+0x122/0x350 [ 180.912168][ T7158] ? import_ubuf+0x1b6/0x220 [ 180.912216][ T7158] __x64_sys_getrandom+0x183/0x290 [ 180.912264][ T7158] ? __pfx___x64_sys_getrandom+0x10/0x10 [ 180.912320][ T7158] ? xfd_validate_state+0x5d/0x180 [ 180.912374][ T7158] ? rcu_is_watching+0x12/0xc0 [ 180.912414][ T7158] do_syscall_64+0xcd/0x230 [ 180.912460][ T7158] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.912491][ T7158] RIP: 0033:0x7f326f98e969 [ 180.912515][ T7158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 180.912544][ T7158] RSP: 002b:00007f32707f5038 EFLAGS: 00000246 ORIG_RAX: 000000000000013e [ 180.912573][ T7158] RAX: ffffffffffffffda RBX: 00007f326fbb5fa0 RCX: 00007f326f98e969 [ 180.912593][ T7158] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000 [ 180.912611][ T7158] RBP: 00007f326fa10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 180.912630][ T7158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 180.912648][ T7158] R13: 0000000000000000 R14: 00007f326fbb5fa0 R15: 00007ffc9363aee8 [ 180.912688][ T7158] [ 181.128689][ T7158] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 181.140602][ T7158] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 181.745185][ T7171] netlink: 'syz.3.272': attribute type 5 has an invalid length. [ 182.470632][ T7182] Invalid ELF header magic: != ELF [ 183.227299][ T7193] ima: policy update failed [ 183.234568][ T30] audit: type=1802 audit(4294967306.103:4): pid=7193 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.278" res=0 errno=0 [ 186.623248][ T7249] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 186.629957][ T7249] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 186.667640][ T7249] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 186.692875][ T7249] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 187.141581][ T7261] netlink: 186 bytes leftover after parsing attributes in process `syz.1.289'. [ 187.679958][ T7275] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input14 [ 188.672486][ T5833] Bluetooth: hci2: command 0x0c1a tx timeout [ 188.672575][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout [ 188.678549][ T5833] Bluetooth: hci0: command 0x0c1a tx timeout [ 188.749829][ T5833] Bluetooth: hci3: command 0x0c1a tx timeout [ 189.020515][ T7288] Invalid ELF header magic: != ELF [ 191.924367][ T7334] ucma_write: process 352 (syz.3.304) changed security contexts after opening file descriptor, this is not allowed. [ 193.342192][ T7356] ima: policy update failed [ 193.371169][ T30] audit: type=1802 audit(4294967316.258:5): pid=7356 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.309" res=0 errno=0 [ 195.369684][ T7386] netlink: 504 bytes leftover after parsing attributes in process `syz.3.315'. [ 195.463736][ T7386] [U]  [ 195.466619][ T7386] [U] [ 195.469384][ T7386] [U] [ 195.472165][ T7386] [U] [ 195.496607][ T7386] [U] [ 195.499410][ T7386] [U] [ 195.502183][ T7386] [U] [ 195.504942][ T7386] [U] [ 195.646792][ T7386] [U] [ 195.649623][ T7386] [U] [ 195.652381][ T7386] [U] [ 195.655138][ T7386] [U] [ 195.774482][ T7403] openvswitch: netlink: Geneve option length err (len 256, max 255). [ 195.897337][ T7386] [U] [ 195.900087][ T7386] [U] [ 195.902799][ T7386] [U] [ 195.905506][ T7386] [U] [ 195.921680][ T7386] [U] [ 195.924423][ T7386] [U] [ 195.927145][ T7386] [U] [ 195.929858][ T7386] [U] [ 196.040007][ T7386] [U] [ 196.042816][ T7386] [U] [ 196.045590][ T7386] [U] [ 196.048350][ T7386] [U] [ 196.111363][ T7386] [U] [ 196.114112][ T7386] [U] [ 196.116852][ T7386] [U] [ 196.119610][ T7386] [U] [ 196.246648][ T7386] [U] [ 197.804081][ T7439] FAULT_INJECTION: forcing a failure. [ 197.804081][ T7439] name fail_futex, interval 1, probability 0, space 0, times 1 [ 197.858929][ T7439] CPU: 0 UID: 0 PID: 7439 Comm: syz.0.328 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 197.858993][ T7439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 197.859024][ T7439] Call Trace: [ 197.859033][ T7439] [ 197.859044][ T7439] dump_stack_lvl+0x16c/0x1f0 [ 197.859091][ T7439] should_fail_ex+0x512/0x640 [ 197.859134][ T7439] ? register_lock_class+0x41/0x4c0 [ 197.859179][ T7439] get_futex_key+0x49e/0x1000 [ 197.859213][ T7439] ? __pfx_get_futex_key+0x10/0x10 [ 197.859257][ T7439] futex_wait_setup+0x78/0x290 [ 197.859306][ T7439] __futex_wait+0x266/0x3c0 [ 197.859349][ T7439] ? __pfx___futex_wait+0x10/0x10 [ 197.859397][ T7439] ? __pfx_futex_wake_mark+0x10/0x10 [ 197.859446][ T7439] ? rcu_is_watching+0x12/0xc0 [ 197.859479][ T7439] futex_wait+0xe8/0x380 [ 197.859519][ T7439] ? __pfx_futex_wait+0x10/0x10 [ 197.859573][ T7439] ? wake_up_q+0xb0/0x160 [ 197.859603][ T7439] do_futex+0x229/0x350 [ 197.859634][ T7439] ? __pfx_do_futex+0x10/0x10 [ 197.859665][ T7439] ? __do_sys_prctl+0x1470/0x24a0 [ 197.859708][ T7439] ? down_write+0x14d/0x200 [ 197.859758][ T7439] __x64_sys_futex+0x1e0/0x4c0 [ 197.859796][ T7439] ? __pfx___x64_sys_futex+0x10/0x10 [ 197.859831][ T7439] ? rcu_is_watching+0x12/0xc0 [ 197.859869][ T7439] do_syscall_64+0xcd/0x230 [ 197.859916][ T7439] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 197.859946][ T7439] RIP: 0033:0x7f53eff8e969 [ 197.859969][ T7439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 197.859995][ T7439] RSP: 002b:00007f53f0e2c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 197.860034][ T7439] RAX: ffffffffffffffda RBX: 00007f53f01b5fa8 RCX: 00007f53eff8e969 [ 197.860052][ T7439] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f53f01b5fa8 [ 197.860071][ T7439] RBP: 00007f53f01b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 197.860088][ T7439] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f53f01b5fac [ 197.860106][ T7439] R13: 0000000000000000 R14: 00007ffdaa83b980 R15: 00007ffdaa83ba68 [ 197.860144][ T7439] [ 198.074540][ C0] vkms_vblank_simulate: vblank timer overrun [ 198.179260][ T7439] netlink: 28 bytes leftover after parsing attributes in process `syz.0.328'. [ 198.195979][ T7439] netlink: 28 bytes leftover after parsing attributes in process `syz.0.328'. [ 198.301672][ T7439] netlink: 28 bytes leftover after parsing attributes in process `syz.0.328'. [ 198.379631][ T7451] [U]  [ 198.382525][ T7451] [U] [ 198.385284][ T7451] [U] [ 198.388045][ T7451] [U] [ 198.416882][ T7451] [U] [ 198.419692][ T7451] [U] [ 198.422452][ T7451] [U] [ 198.425210][ T7451] [U] [ 198.476462][ T7451] [U] [ 198.479267][ T7451] [U] [ 198.482020][ T7451] [U] [ 198.484785][ T7451] [U] [ 198.534642][ T7451] [U] [ 198.537451][ T7451] [U] [ 198.540206][ T7451] [U] [ 198.542967][ T7451] [U] [ 198.619630][ T7451] [U] [ 198.622437][ T7451] [U] [ 198.625202][ T7451] [U] [ 198.627975][ T7451] [U] [ 198.661989][ T7451] [U] [ 198.664790][ T7451] [U] [ 198.667549][ T7451] [U] [ 198.670301][ T7451] [U] [ 198.700933][ T7451] [U] [ 198.703748][ T7451] [U] [ 198.706504][ T7451] [U] [ 198.709264][ T7451] [U] [ 198.735037][ T7451] [U] [ 198.737842][ T7451] [U] [ 198.740594][ T7451] [U] [ 198.743358][ T7451] [U] [ 198.765081][ T7451] [U] [ 198.767900][ T7451] [U] [ 198.770662][ T7451] [U] [ 198.773414][ T7451] [U] [ 198.789423][ T7451] [U] [ 198.792202][ T7451] [U] [ 198.794934][ T7451] [U] [ 198.797664][ T7451] [U] [ 198.865131][ T7451] [U] [ 198.867929][ T7451] [U] [ 198.870686][ T7451] [U] [ 198.873450][ T7451] [U] [ 198.914006][ T7451] [U] [ 198.916764][ T7451] [U] [ 198.919476][ T7451] [U] [ 198.922187][ T7451] [U] [ 198.966843][ T7451] [U] [ 198.969601][ T7451] [U] [ 198.972314][ T7451] [U] [ 198.975064][ T7451] [U] [ 199.015007][ T7451] [U] [ 199.017806][ T7451] [U] [ 199.020563][ T7451] [U] [ 199.023325][ T7451] [U] [ 199.066720][ T7451] [U] [ 199.069529][ T7451] [U] [ 199.072309][ T7451] [U] [ 199.075075][ T7451] [U] [ 199.145976][ T7451] [U] [ 199.405041][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.421179][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 199.638932][ T7472] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 199.665030][ C0] vkms_vblank_simulate: vblank timer overrun [ 199.714880][ T7472] CIFS mount error: No usable UNC path provided in device string! [ 199.714880][ T7472] [ 199.725322][ T7472] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 200.967781][ T7481] netlink: 12 bytes leftover after parsing attributes in process `syz.1.335'. [ 202.613121][ T7523] openvswitch: netlink: Flow key attribute not present in set flow. [ 202.629399][ T7518] sctp: [Deprecated]: syz.0.340 (pid 7518) Use of struct sctp_assoc_value in delayed_ack socket option. [ 202.629399][ T7518] Use struct sctp_sack_info instead [ 202.762140][ T7518] FAULT_INJECTION: forcing a failure. [ 202.762140][ T7518] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 202.802789][ T7518] CPU: 1 UID: 0 PID: 7518 Comm: syz.0.340 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 202.802839][ T7518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 202.802858][ T7518] Call Trace: [ 202.802869][ T7518] [ 202.802881][ T7518] dump_stack_lvl+0x16c/0x1f0 [ 202.802935][ T7518] should_fail_ex+0x512/0x640 [ 202.802987][ T7518] should_fail_alloc_page+0xe7/0x130 [ 202.803031][ T7518] prepare_alloc_pages+0x3c2/0x610 [ 202.803079][ T7518] ? rcu_is_watching+0x12/0xc0 [ 202.803115][ T7518] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 202.803161][ T7518] ? lock_acquire+0x179/0x350 [ 202.803202][ T7518] ? find_held_lock+0x2b/0x80 [ 202.803241][ T7518] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 202.803281][ T7518] ? finish_task_switch.isra.0+0x221/0xc10 [ 202.803317][ T7518] ? rcu_is_watching+0x12/0xc0 [ 202.803352][ T7518] ? __lock_acquire+0x5ca/0x1ba0 [ 202.803397][ T7518] ? __lock_acquire+0x5ca/0x1ba0 [ 202.803439][ T7518] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 202.803487][ T7518] ? policy_nodemask+0xea/0x4e0 [ 202.803530][ T7518] alloc_pages_mpol+0x1fb/0x550 [ 202.803572][ T7518] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 202.803621][ T7518] ? __lock_acquire+0x5ca/0x1ba0 [ 202.803666][ T7518] folio_alloc_mpol_noprof+0x36/0x2f0 [ 202.803714][ T7518] vma_alloc_folio_noprof+0xed/0x1e0 [ 202.803759][ T7518] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 202.803819][ T7518] do_pte_missing+0x223d/0x3fb0 [ 202.803866][ T7518] __handle_mm_fault+0x103d/0x2a40 [ 202.803912][ T7518] ? __pfx___handle_mm_fault+0x10/0x10 [ 202.803943][ T7518] ? __pte_offset_map_lock+0x155/0x2f0 [ 202.803990][ T7518] ? find_held_lock+0x2b/0x80 [ 202.804019][ T7518] ? find_held_lock+0x2b/0x80 [ 202.804077][ T7518] handle_mm_fault+0x3fe/0xad0 [ 202.804118][ T7518] __get_user_pages+0x771/0x36f0 [ 202.804180][ T7518] ? __pfx_mt_find+0x10/0x10 [ 202.804231][ T7518] ? __pfx___get_user_pages+0x10/0x10 [ 202.804298][ T7518] populate_vma_page_range+0x278/0x3a0 [ 202.804333][ T7518] ? __pfx_populate_vma_page_range+0x10/0x10 [ 202.804363][ T7518] ? __pfx_find_vma_intersection+0x10/0x10 [ 202.804414][ T7518] ? do_mmap+0x69c/0x11b0 [ 202.804466][ T7518] __mm_populate+0x1d8/0x380 [ 202.804499][ T7518] ? __pfx___mm_populate+0x10/0x10 [ 202.804533][ T7518] ? up_write+0x1b2/0x520 [ 202.804585][ T7518] vm_mmap_pgoff+0x362/0x450 [ 202.804649][ T7518] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 202.804706][ T7518] ? __x64_sys_futex+0x1e0/0x4c0 [ 202.804739][ T7518] ? __x64_sys_futex+0x1e9/0x4c0 [ 202.804780][ T7518] ksys_mmap_pgoff+0x7d/0x5c0 [ 202.804828][ T7518] ? rcu_is_watching+0x12/0xc0 [ 202.804862][ T7518] __x64_sys_mmap+0x125/0x190 [ 202.804900][ T7518] do_syscall_64+0xcd/0x230 [ 202.804949][ T7518] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.804983][ T7518] RIP: 0033:0x7f53eff8e969 [ 202.805009][ T7518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 202.805041][ T7518] RSP: 002b:00007f53f0e2c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 202.805071][ T7518] RAX: ffffffffffffffda RBX: 00007f53f01b5fa0 RCX: 00007f53eff8e969 [ 202.805093][ T7518] RDX: 00000000000000df RSI: 0000000000400108 RDI: 0000000000000000 [ 202.805112][ T7518] RBP: 00007f53f0010ab1 R08: 0000000000000002 R09: 0000000000008000 [ 202.805132][ T7518] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 202.805151][ T7518] R13: 0000000000000000 R14: 00007f53f01b5fa0 R15: 00007ffdaa83ba68 [ 202.805194][ T7518] [ 203.311394][ T7531] FAULT_INJECTION: forcing a failure. [ 203.311394][ T7531] name failslab, interval 1, probability 0, space 0, times 0 [ 203.389413][ T7531] CPU: 0 UID: 0 PID: 7531 Comm: syz.2.343 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 203.389458][ T7531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 203.389475][ T7531] Call Trace: [ 203.389484][ T7531] [ 203.389495][ T7531] dump_stack_lvl+0x16c/0x1f0 [ 203.389541][ T7531] should_fail_ex+0x512/0x640 [ 203.389584][ T7531] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 203.389625][ T7531] should_failslab+0xc2/0x120 [ 203.389661][ T7531] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 203.389700][ T7531] ? kasprintf+0xc7/0x100 [ 203.389751][ T7531] kvasprintf+0xbc/0x160 [ 203.389794][ T7531] ? __pfx_kvasprintf+0x10/0x10 [ 203.389841][ T7531] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 203.389877][ T7531] ? lockdep_hardirqs_on+0x7c/0x110 [ 203.389917][ T7531] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 203.389960][ T7531] kasprintf+0xc7/0x100 [ 203.390004][ T7531] ? __pfx_kasprintf+0x10/0x10 [ 203.390058][ T7531] ? __pfx_sta_info_cleanup+0x10/0x10 [ 203.390106][ T7531] ieee80211_alloc_led_names+0x11b/0x420 [ 203.390155][ T7531] ieee80211_alloc_hw_nm+0x1941/0x2260 [ 203.390209][ T7531] mac80211_hwsim_new_radio+0x1d4/0x54d0 [ 203.390273][ T7531] ? __asan_memset+0x23/0x50 [ 203.390329][ T7531] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 203.390387][ T7531] hwsim_new_radio_nl+0xb51/0x12c0 [ 203.390435][ T7531] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 203.390494][ T7531] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 203.390540][ T7531] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 203.390593][ T7531] genl_family_rcv_msg_doit+0x206/0x2f0 [ 203.390640][ T7531] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 203.390682][ T7531] ? trace_cap_capable+0x18d/0x200 [ 203.390721][ T7531] ? bpf_lsm_capable+0x9/0x10 [ 203.390751][ T7531] ? security_capable+0x7e/0x260 [ 203.390781][ T7531] ? ns_capable+0xd7/0x110 [ 203.390814][ T7531] genl_rcv_msg+0x55c/0x800 [ 203.390861][ T7531] ? __pfx_genl_rcv_msg+0x10/0x10 [ 203.390901][ T7531] ? __pfx___dev_queue_xmit+0x10/0x10 [ 203.390957][ T7531] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 203.391001][ T7531] ? __lock_acquire+0xaa4/0x1ba0 [ 203.391044][ T7531] netlink_rcv_skb+0x16a/0x440 [ 203.391079][ T7531] ? __pfx_genl_rcv_msg+0x10/0x10 [ 203.391120][ T7531] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 203.391173][ T7531] ? __pfx_down_read+0x10/0x10 [ 203.391217][ T7531] ? netlink_deliver_tap+0x1ae/0xd30 [ 203.391254][ T7531] genl_rcv+0x28/0x40 [ 203.391295][ T7531] netlink_unicast+0x53a/0x7f0 [ 203.391335][ T7531] ? __pfx_netlink_unicast+0x10/0x10 [ 203.391368][ T7531] ? __lock_acquire+0xaa4/0x1ba0 [ 203.391412][ T7531] netlink_sendmsg+0x8d1/0xdd0 [ 203.391453][ T7531] ? __pfx_netlink_sendmsg+0x10/0x10 [ 203.391501][ T7531] ____sys_sendmsg+0xa95/0xc70 [ 203.391541][ T7531] ? copy_msghdr_from_user+0x10a/0x160 [ 203.391573][ T7531] ? __pfx_____sys_sendmsg+0x10/0x10 [ 203.391630][ T7531] ___sys_sendmsg+0x134/0x1d0 [ 203.391662][ T7531] ? __pfx____sys_sendmsg+0x10/0x10 [ 203.391740][ T7531] __sys_sendmsg+0x16d/0x220 [ 203.391772][ T7531] ? __pfx___sys_sendmsg+0x10/0x10 [ 203.391802][ T7531] ? __x64_sys_futex+0x1e0/0x4c0 [ 203.391842][ T7531] ? rcu_is_watching+0x12/0xc0 [ 203.391879][ T7531] do_syscall_64+0xcd/0x230 [ 203.391939][ T7531] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.391968][ T7531] RIP: 0033:0x7f326f98e969 [ 203.391992][ T7531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 203.392021][ T7531] RSP: 002b:00007f32707f5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 203.392049][ T7531] RAX: ffffffffffffffda RBX: 00007f326fbb5fa0 RCX: 00007f326f98e969 [ 203.392067][ T7531] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000007 [ 203.392086][ T7531] RBP: 00007f326fa10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 203.392103][ T7531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 203.392120][ T7531] R13: 0000000000000000 R14: 00007f326fbb5fa0 R15: 00007ffc9363aee8 [ 203.392158][ T7531] [ 203.918527][ T7534] FAULT_INJECTION: forcing a failure. [ 203.918527][ T7534] name failslab, interval 1, probability 0, space 0, times 0 [ 203.952286][ T7534] CPU: 0 UID: 0 PID: 7534 Comm: syz.1.345 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 203.952335][ T7534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 203.952354][ T7534] Call Trace: [ 203.952365][ T7534] [ 203.952377][ T7534] dump_stack_lvl+0x16c/0x1f0 [ 203.952424][ T7534] should_fail_ex+0x512/0x640 [ 203.952467][ T7534] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 203.952524][ T7534] should_failslab+0xc2/0x120 [ 203.952563][ T7534] __kmalloc_cache_noprof+0x6a/0x3e0 [ 203.952614][ T7534] ? pty_common_install+0x10e/0xb30 [ 203.952650][ T7534] pty_common_install+0x10e/0xb30 [ 203.952679][ T7534] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 203.952731][ T7534] ? __pfx_pty_unix98_install+0x10/0x10 [ 203.952764][ T7534] tty_init_dev.part.0+0x99/0x500 [ 203.952807][ T7534] tty_init_dev+0x60/0x80 [ 203.952846][ T7534] ? __pfx_ptmx_open+0x10/0x10 [ 203.952873][ T7534] ptmx_open+0x10d/0x360 [ 203.952901][ T7534] ? __pfx_ptmx_open+0x10/0x10 [ 203.952929][ T7534] chrdev_open+0x231/0x6a0 [ 203.952961][ T7534] ? __pfx_apparmor_file_open+0x10/0x10 [ 203.953001][ T7534] ? __pfx_chrdev_open+0x10/0x10 [ 203.953038][ T7534] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 203.953094][ T7534] do_dentry_open+0x741/0x1c10 [ 203.953126][ T7534] ? __pfx_chrdev_open+0x10/0x10 [ 203.953168][ T7534] vfs_open+0x82/0x3f0 [ 203.953214][ T7534] path_openat+0x1e5e/0x2d40 [ 203.953260][ T7534] ? __pfx_path_openat+0x10/0x10 [ 203.953307][ T7534] do_filp_open+0x20b/0x470 [ 203.953339][ T7534] ? __pfx_do_filp_open+0x10/0x10 [ 203.953400][ T7534] ? alloc_fd+0x471/0x7d0 [ 203.953459][ T7534] do_sys_openat2+0x11b/0x1d0 [ 203.953501][ T7534] ? __pfx_do_sys_openat2+0x10/0x10 [ 203.953560][ T7534] __x64_sys_openat+0x174/0x210 [ 203.953603][ T7534] ? __pfx___x64_sys_openat+0x10/0x10 [ 203.953646][ T7534] ? rcu_is_watching+0x12/0xc0 [ 203.953687][ T7534] do_syscall_64+0xcd/0x230 [ 203.953736][ T7534] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.953767][ T7534] RIP: 0033:0x7f61a138e969 [ 203.953793][ T7534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 203.953823][ T7534] RSP: 002b:00007f61a22cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 203.953853][ T7534] RAX: ffffffffffffffda RBX: 00007f61a15b5fa0 RCX: 00007f61a138e969 [ 203.953873][ T7534] RDX: 0000000000002200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 203.953893][ T7534] RBP: 00007f61a1410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 203.953912][ T7534] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 203.953930][ T7534] R13: 0000000000000000 R14: 00007f61a15b5fa0 R15: 00007ffc9ef511d8 [ 203.953971][ T7534] [ 204.825202][ T7546] ovs_: entered promiscuous mode [ 205.285533][ T7561] capability: warning: `syz.3.346' uses 32-bit capabilities (legacy support in use) [ 206.134367][ T30] audit: type=1326 audit(4294967329.024:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7584 comm="syz.3.355" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa0c438e969 code=0x0 [ 206.155791][ C1] vkms_vblank_simulate: vblank timer overrun [ 207.392299][ T7601] netlink: 4 bytes leftover after parsing attributes in process `syz.3.359'. [ 207.425295][ T7601] netlink: 13 bytes leftover after parsing attributes in process `syz.3.359'. [ 207.739992][ T7610] FAULT_INJECTION: forcing a failure. [ 207.739992][ T7610] name failslab, interval 1, probability 0, space 0, times 0 [ 207.761056][ T7610] CPU: 1 UID: 0 PID: 7610 Comm: syz.1.362 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 207.761102][ T7610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 207.761120][ T7610] Call Trace: [ 207.761131][ T7610] [ 207.761143][ T7610] dump_stack_lvl+0x16c/0x1f0 [ 207.761204][ T7610] should_fail_ex+0x512/0x640 [ 207.761260][ T7610] ? __kmalloc_noprof+0xbf/0x510 [ 207.761319][ T7610] ? drm_atomic_state_init+0x17b/0x320 [ 207.761363][ T7610] should_failslab+0xc2/0x120 [ 207.761402][ T7610] __kmalloc_noprof+0xd2/0x510 [ 207.761449][ T7610] drm_atomic_state_init+0x17b/0x320 [ 207.761492][ T7610] ? __kasan_kmalloc+0xaa/0xb0 [ 207.761539][ T7610] drm_atomic_state_alloc+0xd3/0x120 [ 207.761583][ T7610] drm_client_modeset_commit_atomic+0xcc/0x7e0 [ 207.761625][ T7610] ? __pfx___might_resched+0x10/0x10 [ 207.761661][ T7610] ? rcu_is_watching+0x12/0xc0 [ 207.761690][ T7610] ? trace_contention_end+0xdd/0x130 [ 207.761732][ T7610] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 207.761818][ T7610] drm_client_modeset_commit_locked+0x14d/0x580 [ 207.761867][ T7610] drm_client_modeset_commit+0x4f/0x80 [ 207.761909][ T7610] __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200 [ 207.761947][ T7610] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 207.761992][ T7610] drm_fbdev_client_restore+0x2c/0x40 [ 207.762039][ T7610] drm_client_dev_restore+0x1f3/0x2a0 [ 207.762084][ T7610] drm_release+0x2c4/0x360 [ 207.762124][ T7610] ? __pfx_drm_release+0x10/0x10 [ 207.762158][ T7610] __fput+0x3ff/0xb70 [ 207.762213][ T7610] task_work_run+0x14d/0x240 [ 207.762264][ T7610] ? __pfx_task_work_run+0x10/0x10 [ 207.762314][ T7610] ? __pfx___do_sys_close_range+0x10/0x10 [ 207.762343][ T7610] ? rcu_is_watching+0x12/0xc0 [ 207.762381][ T7610] syscall_exit_to_user_mode+0x27b/0x2a0 [ 207.762430][ T7610] do_syscall_64+0xda/0x230 [ 207.762476][ T7610] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 207.762508][ T7610] RIP: 0033:0x7f61a138e969 [ 207.762533][ T7610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 207.762563][ T7610] RSP: 002b:00007f61a22cb038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 207.762592][ T7610] RAX: 0000000000000000 RBX: 00007f61a15b5fa0 RCX: 00007f61a138e969 [ 207.762613][ T7610] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 207.762631][ T7610] RBP: 00007f61a1410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 207.762650][ T7610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 207.762668][ T7610] R13: 0000000000000000 R14: 00007f61a15b5fa0 R15: 00007ffc9ef511d8 [ 207.762711][ T7610] [ 208.031908][ C1] vkms_vblank_simulate: vblank timer overrun [ 208.106568][ T7617] program syz.1.362 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 208.114104][ T7616] random: crng reseeded on system resumption [ 209.543649][ T5833] Bluetooth: hci1: Unable to find connection for big 0xd2 [ 212.758051][ T7719] netlink: 28 bytes leftover after parsing attributes in process `syz.3.385'. [ 213.947830][ T7739] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16 [ 216.773921][ T7785] ICMPv6: process `syz.2.397' is using deprecated sysctl (syscall) net.ipv6.neigh.veth0_to_bridge.base_reachable_time - use net.ipv6.neigh.veth0_to_bridge.base_reachable_time_ms instead [ 219.068853][ T7816] could not allocate digest TFM handle [ 219.320419][ T7828] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 221.324732][ T7859] sctp: [Deprecated]: syz.3.412 (pid 7859) Use of struct sctp_assoc_value in delayed_ack socket option. [ 221.324732][ T7859] Use struct sctp_sack_info instead [ 221.382281][ T7862] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7fe00 [ 221.426471][ T7862] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 221.474803][ T7862] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 221.484772][ T7864] ceph: Failed to parse sending metrics switch value 'P^' [ 221.503860][ T7862] page_type: f5(slab) [ 221.508257][ T7862] raw: 00fff00000000040 ffff88801b442140 dead000000000122 0000000000000000 [ 221.550163][ T7863] ceph: Failed to parse sending metrics switch value 'P^' [ 221.567752][ T7862] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 221.576740][ T7862] head: 00fff00000000040 ffff88801b442140 dead000000000122 0000000000000000 [ 221.586343][ T7862] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 221.595291][ T7862] head: 00fff00000000003 ffffea0001ff8001 00000000ffffffff 00000000ffffffff [ 221.604223][ T7862] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 221.623907][ T7869] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17 [ 221.690080][ T7864] Invalid ELF header magic: != ELF [ 221.706191][ T7862] page dumped because: unmovable page [ 221.709868][ T7863] Invalid ELF header magic: != ELF [ 221.739091][ T7862] page_owner tracks the page as freed [ 221.807124][ T7862] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 7211, tgid 7211 (kworker/u8:14), ts 221802616062, free_ts 221658420194 [ 221.838284][ T7865] could not allocate digest TFM handle [ 221.851037][ T7862] post_alloc_hook+0x181/0x1b0 [ 221.855883][ T7862] get_page_from_freelist+0x135c/0x3920 [ 221.862113][ T7862] __alloc_frozen_pages_noprof+0x263/0x23a0 [ 221.868074][ T7862] alloc_pages_mpol+0x1fb/0x550 [ 221.873453][ T7862] new_slab+0x244/0x340 [ 221.877685][ T7862] ___slab_alloc+0xd9c/0x1940 [ 221.882841][ T7862] __slab_alloc.constprop.0+0x56/0xb0 [ 221.888389][ T7862] __kmalloc_node_track_caller_noprof+0x2ee/0x510 [ 221.904255][ T7862] kmalloc_reserve+0xef/0x2c0 [ 221.921729][ T7862] __alloc_skb+0x166/0x380 [ 221.926471][ T7862] nsim_dev_trap_report_work+0x2b1/0xcf0 [ 221.932295][ T7862] process_one_work+0x9cc/0x1b70 [ 221.937415][ T7862] worker_thread+0x6c8/0xf10 [ 221.942200][ T7862] kthread+0x3c2/0x780 [ 221.946402][ T7862] ret_from_fork+0x45/0x80 [ 221.954486][ T7862] ret_from_fork_asm+0x1a/0x30 [ 221.959405][ T7862] page last free pid 5825 tgid 5825 stack trace: [ 221.967087][ T7862] __free_frozen_pages+0x69d/0xff0 [ 221.972519][ T7862] __put_partials+0x16d/0x1c0 [ 221.978952][ T7862] qlist_free_all+0x4e/0x120 [ 221.983738][ T7862] kasan_quarantine_reduce+0x195/0x1e0 [ 221.989429][ T7862] __kasan_slab_alloc+0x69/0x90 [ 221.995389][ T7862] kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 222.001747][ T7862] getname_flags.part.0+0x4c/0x550 [ 222.006981][ T7862] getname_flags+0x93/0xf0 [ 222.011584][ T7862] do_readlinkat+0xb4/0x3a0 [ 222.016254][ T7862] __x64_sys_readlink+0x78/0xc0 [ 222.021802][ T7862] do_syscall_64+0xcd/0x230 [ 222.026531][ T7862] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 223.094100][ T7888] netlink: 8 bytes leftover after parsing attributes in process `syz.3.417'. [ 223.260479][ T7898] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 223.282685][ T7898] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 223.315752][ T7898] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 223.335994][ T7898] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 225.300023][ T5833] Bluetooth: hci1: command 0x0c1a tx timeout [ 225.303383][ T5843] Bluetooth: hci0: command 0x0c1a tx timeout [ 225.390307][ T5843] Bluetooth: hci3: command 0x0c1a tx timeout [ 225.397287][ T5843] Bluetooth: hci2: command 0x0c1a tx timeout [ 227.623092][ T7957] syz.2.429 (7957): attempted to duplicate a private mapping with mremap. This is not supported. [ 227.771525][ T7957] svc: failed to register nfsdv3 RPC service (errno 111). [ 227.804551][ T7957] svc: failed to register nfsaclv3 RPC service (errno 111). [ 228.199294][ T7985] netlink: 20 bytes leftover after parsing attributes in process `syz.3.436'. [ 228.979655][ T7958] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 229.010505][ T5833] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 229.019955][ T5833] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 229.027996][ T5833] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 229.043833][ T5833] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 229.052197][ T5833] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 230.137964][ T7991] chnl_net:caif_netlink_parms(): no params data found [ 230.484712][ T7991] bridge0: port 1(bridge_slave_0) entered blocking state [ 230.492085][ T7991] bridge0: port 1(bridge_slave_0) entered disabled state [ 230.526558][ T7991] bridge_slave_0: entered allmulticast mode [ 230.551942][ T7991] bridge_slave_0: entered promiscuous mode [ 230.586801][ T7991] bridge0: port 2(bridge_slave_1) entered blocking state [ 230.603853][ T7991] bridge0: port 2(bridge_slave_1) entered disabled state [ 230.618602][ T7991] bridge_slave_1: entered allmulticast mode [ 230.627002][ T7991] bridge_slave_1: entered promiscuous mode [ 230.753594][ T7991] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 230.795971][ T7991] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 230.874500][ T7991] team0: Port device team_slave_0 added [ 230.887303][ T7991] team0: Port device team_slave_1 added [ 231.045554][ T7991] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 231.059822][ T7991] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 231.140985][ T5843] Bluetooth: hci4: command tx timeout [ 231.147368][ T7991] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 231.183301][ T7991] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 231.191201][ T7991] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 231.259834][ T7991] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 231.271659][ T8026] FAULT_INJECTION: forcing a failure. [ 231.271659][ T8026] name failslab, interval 1, probability 0, space 0, times 0 [ 231.306294][ T8026] CPU: 1 UID: 0 PID: 8026 Comm: syz.2.446 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 231.306342][ T8026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 231.306360][ T8026] Call Trace: [ 231.306371][ T8026] [ 231.306382][ T8026] dump_stack_lvl+0x16c/0x1f0 [ 231.306435][ T8026] should_fail_ex+0x512/0x640 [ 231.306490][ T8026] should_failslab+0xc2/0x120 [ 231.306531][ T8026] __kmalloc_cache_noprof+0x6a/0x3e0 [ 231.306587][ T8026] ? __pfx_sctp_get_port_local+0x10/0x10 [ 231.306634][ T8026] ? sctp_bind_addr_match+0x193/0x300 [ 231.306675][ T8026] ? sctp_add_bind_addr+0xae/0x3f0 [ 231.306722][ T8026] sctp_add_bind_addr+0xae/0x3f0 [ 231.306770][ T8026] sctp_do_bind+0x2d6/0x700 [ 231.306811][ T8026] sctp_inet_listen+0x60b/0xaf0 [ 231.306847][ T8026] ? __pfx_sctp_inet_listen+0x10/0x10 [ 231.306886][ T8026] ? __pfx_aa_sk_perm+0x10/0x10 [ 231.306930][ T8026] ? __fget_files+0x20e/0x3c0 [ 231.306989][ T8026] __sys_listen_socket+0x114/0x160 [ 231.307043][ T8026] __sys_listen+0xa3/0x110 [ 231.307102][ T8026] __x64_sys_listen+0x53/0x80 [ 231.307156][ T8026] do_syscall_64+0xcd/0x230 [ 231.307208][ T8026] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 231.307241][ T8026] RIP: 0033:0x7f326f98e969 [ 231.307266][ T8026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 231.307297][ T8026] RSP: 002b:00007f32707f5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000032 [ 231.307327][ T8026] RAX: ffffffffffffffda RBX: 00007f326fbb5fa0 RCX: 00007f326f98e969 [ 231.307349][ T8026] RDX: 0000000000000000 RSI: 0000000000000081 RDI: 0000000000000003 [ 231.307367][ T8026] RBP: 00007f326fa10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 231.307386][ T8026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 231.307405][ T8026] R13: 0000000000000000 R14: 00007f326fbb5fa0 R15: 00007ffc9363aee8 [ 231.307446][ T8026] [ 231.895970][ T7991] hsr_slave_0: entered promiscuous mode [ 231.922382][ T7991] hsr_slave_1: entered promiscuous mode [ 231.929556][ T7991] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 231.952010][ T7991] Cannot create hsr debugfs directory [ 232.911262][ T8044] netlink: 4 bytes leftover after parsing attributes in process `syz.0.449'. [ 232.989089][ T8044] netlink: 354 bytes leftover after parsing attributes in process `syz.0.449'. [ 233.024068][ T8047] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18 [ 233.204609][ T7991] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 233.221957][ T5843] Bluetooth: hci4: command tx timeout [ 233.321157][ T7991] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 233.408639][ T7991] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 233.436654][ T8052] FAULT_INJECTION: forcing a failure. [ 233.436654][ T8052] name failslab, interval 1, probability 0, space 0, times 0 [ 233.481913][ T7991] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 233.521705][ T8052] CPU: 0 UID: 0 PID: 8052 Comm: syz.0.449 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 233.521749][ T8052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 233.521767][ T8052] Call Trace: [ 233.521776][ T8052] [ 233.521787][ T8052] dump_stack_lvl+0x16c/0x1f0 [ 233.521832][ T8052] should_fail_ex+0x512/0x640 [ 233.521873][ T8052] ? __kmalloc_noprof+0xbf/0x510 [ 233.521906][ T8052] ? ops_init+0x77/0x5f0 [ 233.521936][ T8052] should_failslab+0xc2/0x120 [ 233.521972][ T8052] __kmalloc_noprof+0xd2/0x510 [ 233.522021][ T8052] ? debug_mutex_init+0x37/0x70 [ 233.522054][ T8052] ops_init+0x77/0x5f0 [ 233.522093][ T8052] setup_net+0x21e/0x850 [ 233.522128][ T8052] ? __pfx_setup_net+0x10/0x10 [ 233.522156][ T8052] ? lockdep_init_map_type+0x5c/0x280 [ 233.522200][ T8052] ? __pfx_down_read_killable+0x10/0x10 [ 233.522244][ T8052] ? debug_mutex_init+0x37/0x70 [ 233.522270][ T8052] copy_net_ns+0x2a6/0x5f0 [ 233.522329][ T8052] create_new_namespaces+0x3ea/0xad0 [ 233.522369][ T8052] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 233.522404][ T8052] ksys_unshare+0x45b/0xa40 [ 233.522442][ T8052] ? __pfx_ksys_unshare+0x10/0x10 [ 233.522478][ T8052] ? xfd_validate_state+0x5d/0x180 [ 233.522525][ T8052] ? rcu_is_watching+0x12/0xc0 [ 233.522560][ T8052] __x64_sys_unshare+0x31/0x40 [ 233.522597][ T8052] do_syscall_64+0xcd/0x230 [ 233.522640][ T8052] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 233.522668][ T8052] RIP: 0033:0x7f53eff8e969 [ 233.522689][ T8052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 233.522716][ T8052] RSP: 002b:00007f53f0dea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 233.522742][ T8052] RAX: ffffffffffffffda RBX: 00007f53f01b6160 RCX: 00007f53eff8e969 [ 233.522760][ T8052] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 233.522776][ T8052] RBP: 00007f53f0010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 233.522792][ T8052] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 233.522808][ T8052] R13: 0000000000000000 R14: 00007f53f01b6160 R15: 00007ffdaa83ba68 [ 233.522843][ T8052] [ 233.744419][ C0] vkms_vblank_simulate: vblank timer overrun [ 234.292756][ T7991] 8021q: adding VLAN 0 to HW filter on device bond0 [ 234.309029][ T8056] random: crng reseeded on system resumption [ 234.396412][ T7991] 8021q: adding VLAN 0 to HW filter on device team0 [ 234.460563][ T7637] bridge0: port 1(bridge_slave_0) entered blocking state [ 234.467791][ T7637] bridge0: port 1(bridge_slave_0) entered forwarding state [ 234.494986][ T7205] bridge0: port 2(bridge_slave_1) entered blocking state [ 234.502257][ T7205] bridge0: port 2(bridge_slave_1) entered forwarding state [ 235.238232][ T8062] Unrecognized hibernate image header format! [ 235.266671][ T8062] PM: hibernation: Image mismatch: architecture specific data [ 235.303563][ T5843] Bluetooth: hci4: command tx timeout [ 235.471572][ T7991] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 235.719553][ T8079] ceph: Failed to parse sending metrics switch value 'P^' [ 235.976903][ T8079] Invalid ELF header magic: != ELF [ 236.408874][ T7991] veth0_vlan: entered promiscuous mode [ 236.487881][ T7991] veth1_vlan: entered promiscuous mode [ 236.576301][ T7991] veth0_macvtap: entered promiscuous mode [ 236.606735][ T7991] veth1_macvtap: entered promiscuous mode [ 236.707518][ T7991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 236.729866][ T7991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 236.756436][ T7991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 236.799993][ T7991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 236.827391][ T7991] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 236.862555][ T8102] netlink: 12 bytes leftover after parsing attributes in process `syz.0.459'. [ 236.896520][ T8101] HfR: entered promiscuous mode [ 236.930021][ T8104] device-mapper: ioctl: Unable to rename non-existent device,  to „ [ 236.950705][ T7991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 236.970084][ T7991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 236.989873][ T7991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 237.009831][ T7991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.041541][ T7991] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 237.064028][ T8102] HfR: left promiscuous mode [ 237.287015][ T7991] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 237.308438][ T7991] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 237.344394][ T7991] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 237.369961][ T7991] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 237.380348][ T5843] Bluetooth: hci4: command tx timeout [ 237.516957][ T8111] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input19 [ 238.287351][ T7211] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 238.309827][ T7211] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 238.437942][ T7640] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 238.462455][ T7640] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 238.833809][ T8129] netlink: 342 bytes leftover after parsing attributes in process `syz.4.435'. [ 239.166164][ T30] audit: type=1800 audit(4294967364.059:7): pid=8134 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.466" name="trigger" dev="tracefs" ino=19680823 res=0 errno=0 [ 240.248279][ T8148] FAULT_INJECTION: forcing a failure. [ 240.248279][ T8148] name failslab, interval 1, probability 0, space 0, times 0 [ 240.318378][ T8148] CPU: 0 UID: 0 PID: 8148 Comm: syz.3.468 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 240.318421][ T8148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 240.318436][ T8148] Call Trace: [ 240.318443][ T8148] [ 240.318451][ T8148] dump_stack_lvl+0x16c/0x1f0 [ 240.318487][ T8148] should_fail_ex+0x512/0x640 [ 240.318518][ T8148] ? __kmalloc_noprof+0xbf/0x510 [ 240.318544][ T8148] ? lsm_blob_alloc+0x68/0x90 [ 240.318576][ T8148] should_failslab+0xc2/0x120 [ 240.318603][ T8148] __kmalloc_noprof+0xd2/0x510 [ 240.318632][ T8148] lsm_blob_alloc+0x68/0x90 [ 240.318666][ T8148] security_prepare_creds+0x30/0x270 [ 240.318705][ T8148] prepare_creds+0x56f/0x7d0 [ 240.318740][ T8148] __sys_setregid+0x101/0x910 [ 240.318761][ T8148] ? rcu_is_watching+0x12/0xc0 [ 240.318784][ T8148] do_syscall_64+0xcd/0x230 [ 240.318818][ T8148] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 240.318841][ T8148] RIP: 0033:0x7fa0c438e969 [ 240.318858][ T8148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 240.318878][ T8148] RSP: 002b:00007fa0c5222038 EFLAGS: 00000246 ORIG_RAX: 0000000000000072 [ 240.318898][ T8148] RAX: ffffffffffffffda RBX: 00007fa0c45b5fa0 RCX: 00007fa0c438e969 [ 240.318912][ T8148] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 240.318925][ T8148] RBP: 00007fa0c4410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 240.318937][ T8148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 240.318950][ T8148] R13: 0000000000000000 R14: 00007fa0c45b5fa0 R15: 00007ffe807223d8 [ 240.318976][ T8148] [ 242.083500][ T8163] netlink: 28 bytes leftover after parsing attributes in process `syz.4.471'. syzkaller syzkaller login: [ 244.455867][ T8186] i2c i2c-0: delete_device: Can't find device in list [ 246.225804][ T8201] FAULT_INJECTION: forcing a failure. [ 246.225804][ T8201] name failslab, interval 1, probability 0, space 0, times 0 [ 246.239091][ T8201] CPU: 0 UID: 0 PID: 8201 Comm: syz.2.479 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 246.239129][ T8201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 246.239146][ T8201] Call Trace: [ 246.239154][ T8201] [ 246.239166][ T8201] dump_stack_lvl+0x16c/0x1f0 [ 246.239206][ T8201] should_fail_ex+0x512/0x640 [ 246.239239][ T8201] ? fs_reclaim_acquire+0xae/0x150 [ 246.239276][ T8201] should_failslab+0xc2/0x120 [ 246.239305][ T8201] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 246.239332][ T8201] ? security_inode_alloc+0x3b/0x2b0 [ 246.239362][ T8201] security_inode_alloc+0x3b/0x2b0 [ 246.239388][ T8201] inode_init_always_gfp+0xce4/0x1030 [ 246.239430][ T8201] alloc_inode+0x86/0x240 [ 246.239457][ T8201] new_inode+0x22/0x1c0 [ 246.239488][ T8201] simple_fill_super+0x306/0x720 [ 246.239528][ T8201] ? __pfx_nfsd_fill_super+0x10/0x10 [ 246.239566][ T8201] nfsd_fill_super+0x90/0x530 [ 246.239602][ T8201] ? __pfx_set_anon_super_fc+0x10/0x10 [ 246.239637][ T8201] ? __pfx_nfsd_fill_super+0x10/0x10 [ 246.239673][ T8201] get_tree_keyed+0x10b/0x1d0 [ 246.239711][ T8201] vfs_get_tree+0x8b/0x340 [ 246.239743][ T8201] path_mount+0x14d4/0x1f20 [ 246.239778][ T8201] ? kmem_cache_free+0x2d4/0x4d0 [ 246.239811][ T8201] ? __pfx_path_mount+0x10/0x10 [ 246.239850][ T8201] ? putname+0x154/0x1a0 [ 246.239891][ T8201] __x64_sys_mount+0x28d/0x310 [ 246.239926][ T8201] ? __pfx___x64_sys_mount+0x10/0x10 [ 246.239950][ T8201] ? rcu_is_watching+0x12/0xc0 [ 246.239989][ T8201] do_syscall_64+0xcd/0x230 [ 246.240026][ T8201] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 246.240049][ T8201] RIP: 0033:0x7f326f98e969 [ 246.240068][ T8201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 246.240090][ T8201] RSP: 002b:00007f32707f5038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 246.240111][ T8201] RAX: ffffffffffffffda RBX: 00007f326fbb5fa0 RCX: 00007f326f98e969 [ 246.240126][ T8201] RDX: 00002000000005c0 RSI: 0000000000000000 RDI: 0000000000000000 [ 246.240139][ T8201] RBP: 00007f326fa10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 246.240153][ T8201] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000 [ 246.240166][ T8201] R13: 0000000000000000 R14: 00007f326fbb5fa0 R15: 00007ffc9363aee8 [ 246.240195][ T8201] [ 254.194018][ T8286] FAULT_INJECTION: forcing a failure. [ 254.194018][ T8286] name failslab, interval 1, probability 0, space 0, times 0 [ 254.369948][ T8286] CPU: 0 UID: 0 PID: 8286 Comm: syz.3.499 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 254.369992][ T8286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 254.370011][ T8286] Call Trace: [ 254.370021][ T8286] [ 254.370034][ T8286] dump_stack_lvl+0x16c/0x1f0 [ 254.370090][ T8286] should_fail_ex+0x512/0x640 [ 254.370134][ T8286] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 254.370174][ T8286] should_failslab+0xc2/0x120 [ 254.370215][ T8286] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 254.370253][ T8286] ? security_file_alloc+0x34/0x2b0 [ 254.370300][ T8286] security_file_alloc+0x34/0x2b0 [ 254.370345][ T8286] init_file+0x93/0x4c0 [ 254.370385][ T8286] alloc_empty_file+0x73/0x1e0 [ 254.370429][ T8286] path_openat+0xe0/0x2d40 [ 254.370455][ T8286] ? __x64_sys_openat+0x174/0x210 [ 254.370497][ T8286] ? do_syscall_64+0xcd/0x230 [ 254.370542][ T8286] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 254.370589][ T8286] ? __pfx_path_openat+0x10/0x10 [ 254.370638][ T8286] do_filp_open+0x20b/0x470 [ 254.370671][ T8286] ? __pfx_do_filp_open+0x10/0x10 [ 254.370731][ T8286] ? alloc_fd+0x471/0x7d0 [ 254.370793][ T8286] do_sys_openat2+0x11b/0x1d0 [ 254.370836][ T8286] ? __pfx_do_sys_openat2+0x10/0x10 [ 254.370896][ T8286] __x64_sys_openat+0x174/0x210 [ 254.370940][ T8286] ? __pfx___x64_sys_openat+0x10/0x10 [ 254.370988][ T8286] ? rcu_is_watching+0x12/0xc0 [ 254.371030][ T8286] do_syscall_64+0xcd/0x230 [ 254.371079][ T8286] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 254.371112][ T8286] RIP: 0033:0x7fa0c438d2d0 [ 254.371135][ T8286] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 254.371166][ T8286] RSP: 002b:00007fa0c519df10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 254.371196][ T8286] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fa0c438d2d0 [ 254.371217][ T8286] RDX: 0000000000000002 RSI: 00007fa0c519dfa0 RDI: 00000000ffffff9c [ 254.371237][ T8286] RBP: 00007fa0c519dfa0 R08: 0000000000000000 R09: 0000000000000000 [ 254.371256][ T8286] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 254.371275][ T8286] R13: 0000000000000000 R14: 00007fa0c45b6320 R15: 00007ffe807223d8 [ 254.371317][ T8286] [ 255.497667][ T8276] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 255.540723][ T5843] Bluetooth: hci0: command 0x0c1a tx timeout [ 255.631187][ T8276] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 255.637484][ T8276] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 255.660237][ T8276] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 255.686488][ T8276] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 255.710458][ T8276] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 255.841819][ T8276] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 255.936486][ T5833] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 255.954681][ T5833] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 255.962807][ T5833] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 255.971276][ T5833] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 255.979134][ T5833] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 257.700135][ T5843] Bluetooth: hci4: command 0x0c1a tx timeout [ 257.700381][ T5833] Bluetooth: hci3: command 0x0c1a tx timeout [ 257.706205][ T5843] Bluetooth: hci2: command 0x0c1a tx timeout [ 257.714783][ T5833] Bluetooth: hci1: command 0x0c1a tx timeout [ 258.020385][ T5833] Bluetooth: hci5: command tx timeout [ 258.634094][ T8291] chnl_net:caif_netlink_parms(): no params data found [ 258.886519][ T8322] [U]  [ 258.889413][ T8322] [U] [ 258.892176][ T8322] [U] [ 258.894938][ T8322] [U] [ 258.928117][ T8322] [U] [ 258.930929][ T8322] [U] [ 258.933687][ T8322] [U] [ 258.936439][ T8322] [U] [ 258.962873][ T8322] [U] [ 258.965691][ T8322] [U] [ 258.968462][ T8322] [U] [ 258.971245][ T8322] [U] [ 258.991169][ T8322] [U] [ 258.993964][ T8322] [U] [ 258.996741][ T8322] [U] [ 258.999495][ T8322] [U] [ 259.003025][ T8322] [U] [ 259.005804][ T8322] [U] [ 259.008569][ T8322] [U] [ 259.011331][ T8322] [U] [ 259.042942][ T8322] [U] [ 259.045751][ T8322] [U] [ 259.048508][ T8322] [U] [ 259.051266][ T8322] [U] [ 259.055927][ T8322] [U] [ 259.058713][ T8322] [U] [ 259.061484][ T8322] [U] [ 259.064244][ T8322] [U] [ 259.068714][ T8322] [U] [ 259.071503][ T8322] [U] [ 259.074276][ T8322] [U] [ 259.077043][ T8322] [U] [ 259.120567][ T8322] [U] [ 259.123371][ T8322] [U] [ 259.126132][ T8322] [U] [ 259.128893][ T8322] [U] [ 259.201280][ T8322] [U] [ 259.204168][ T8322] [U] [ 259.206952][ T8322] [U] [ 259.209709][ T8322] [U] [ 259.242080][ T8322] [U] [ 259.244896][ T8322] [U] [ 259.247650][ T8322] [U] [ 259.250406][ T8322] [U] [ 259.315360][ T8322] [U] [ 259.318166][ T8322] [U] [ 259.320951][ T8322] [U] [ 259.323696][ T8322] [U] [ 259.401451][ T8322] [U] [ 259.404285][ T8322] [U] [ 259.407052][ T8322] [U] [ 259.409802][ T8322] [U] [ 259.423877][ T8322] [U] [ 259.426679][ T8322] [U] [ 259.429433][ T8322] [U] [ 259.430065][ T8328] could not allocate digest TFM handle binfmt_misc [ 259.432160][ T8322] [U] [ 259.444832][ T8322] [U] [ 259.447609][ T8322] [U] [ 259.450357][ T8322] [U] [ 259.453127][ T8322] [U] [ 259.456515][ T8322] [U] [ 259.459273][ T8322] [U] [ 259.462027][ T8322] [U] [ 259.464779][ T8322] [U] [ 259.479070][ T8322] [U] [ 259.481866][ T8322] [U] [ 259.484633][ T8322] [U] [ 259.487384][ T8322] [U] [ 259.491400][ T8322] [U] [ 259.494175][ T8322] [U] [ 259.496934][ T8322] [U] [ 259.499694][ T8322] [U] [ 259.504092][ T8322] [U] [ 259.506859][ T8322] [U] [ 259.509633][ T8322] [U] [ 259.512388][ T8322] [U] [ 259.516017][ T8322] [U] [ 259.518775][ T8322] [U] [ 259.521520][ T8322] [U] [ 259.524271][ T8322] [U] [ 259.610581][ T8322] [U] [ 259.613381][ T8322] [U] [ 259.616133][ T8322] [U] [ 259.618884][ T8322] [U] [ 259.687532][ T8322] [U] [ 259.690344][ T8322] [U] [ 259.693113][ T8322] [U] [ 259.695863][ T8322] [U] [ 259.786842][ T5833] Bluetooth: hci4: command 0x0c1a tx timeout [ 259.860969][ T8322] [U] [ 259.863770][ T8322] [U] [ 259.866522][ T8322] [U] [ 259.869271][ T8322] [U] [ 260.105689][ T5833] Bluetooth: hci5: command tx timeout [ 260.204492][ T8322] [U] [ 260.770657][ T8291] bridge0: port 1(bridge_slave_0) entered blocking state [ 260.795707][ T8291] bridge0: port 1(bridge_slave_0) entered disabled state [ 260.835675][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 260.838512][ T8291] bridge_slave_0: entered allmulticast mode [ 260.842406][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 260.871890][ T8291] bridge_slave_0: entered promiscuous mode [ 260.994164][ T8291] bridge0: port 2(bridge_slave_1) entered blocking state [ 261.030010][ T8291] bridge0: port 2(bridge_slave_1) entered disabled state [ 261.047538][ T8291] bridge_slave_1: entered allmulticast mode [ 261.073075][ T8291] bridge_slave_1: entered promiscuous mode [ 261.465488][ T8291] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 261.526060][ T8291] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 261.860310][ T5833] Bluetooth: hci4: command 0x0c1a tx timeout [ 262.112471][ T8291] team0: Port device team_slave_0 added [ 262.154111][ T8291] team0: Port device team_slave_1 added [ 262.190550][ T5833] Bluetooth: hci5: command tx timeout [ 262.444406][ T8291] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 262.472429][ T8291] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 262.580925][ T8291] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 262.635589][ T8291] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 262.648081][ T8291] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 262.726073][ T8291] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 263.352410][ T8291] hsr_slave_0: entered promiscuous mode [ 263.359169][ T8291] hsr_slave_1: entered promiscuous mode [ 263.386758][ T8291] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 263.406912][ T8291] Cannot create hsr debugfs directory [ 264.260327][ T5833] Bluetooth: hci5: command tx timeout [ 264.639133][ T8396] netlink: 4 bytes leftover after parsing attributes in process `syz.2.517'. [ 264.734238][ T8396] netlink: 25 bytes leftover after parsing attributes in process `syz.2.517'. [ 265.099700][ T8291] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 265.193799][ T8291] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 265.298434][ T8291] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 265.374771][ T8291] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 265.682487][ T8403] netlink: 1132 bytes leftover after parsing attributes in process `syz.4.519'. [ 265.901503][ T8291] 8021q: adding VLAN 0 to HW filter on device bond0 [ 266.026471][ T8291] 8021q: adding VLAN 0 to HW filter on device team0 [ 266.097733][ T7205] bridge0: port 1(bridge_slave_0) entered blocking state [ 266.104986][ T7205] bridge0: port 1(bridge_slave_0) entered forwarding state [ 266.185854][ T7205] bridge0: port 2(bridge_slave_1) entered blocking state [ 266.193073][ T7205] bridge0: port 2(bridge_slave_1) entered forwarding state [ 266.929107][ T8419] Invalid ELF header magic: != ELF [ 267.932396][ T8291] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 268.474090][ T8442] delete_channel: no stack [ 268.512282][ T8424] delete_channel: no stack [ 268.714007][ T7205] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 269.226224][ T7205] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 269.713515][ T7205] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 270.292614][ T7205] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 270.575068][ T8464] busy [ 270.859909][ T8291] veth0_vlan: entered promiscuous mode [ 270.888528][ T8291] veth1_vlan: entered promiscuous mode [ 271.438047][ T8438] batman_adv: batadv0: adding TT local entry 00:00:01:00:00:00 to non-existent VLAN 16 [ 271.623534][ T8291] veth0_macvtap: entered promiscuous mode [ 271.702000][ T8291] veth1_macvtap: entered promiscuous mode [ 271.973867][ T8291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 272.030054][ T8291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 272.050492][ T8291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 272.079864][ T8291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 272.103749][ T8291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 272.129839][ T8291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 272.174151][ T8291] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 272.224482][ T8291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 272.257424][ T8291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 272.323153][ T8291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 272.340266][ T8291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 272.360906][ T8291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 272.396970][ T8291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 272.425596][ T8291] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 272.457270][ T7205] bridge_slave_1: left allmulticast mode [ 272.464541][ T7205] bridge_slave_1: left promiscuous mode [ 272.478966][ T8472] netlink: 8 bytes leftover after parsing attributes in process `syz.2.530'. [ 272.499732][ T7205] bridge0: port 2(bridge_slave_1) entered disabled state [ 272.622909][ T7205] bridge_slave_0: left allmulticast mode [ 272.636148][ T7205] bridge_slave_0: left promiscuous mode [ 272.662588][ T7205] bridge0: port 1(bridge_slave_0) entered disabled state [ 274.203482][ T7205] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 274.310905][ T7205] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 274.346683][ T7205] bond0 (unregistering): Released all slaves [ 274.410207][ T8291] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 274.439351][ T8291] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 274.459079][ T8291] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 274.473132][ T8291] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 276.089584][ T3447] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 276.140413][ T3447] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 276.418200][ T7205] hsr_slave_0: left promiscuous mode [ 276.514782][ T7205] hsr_slave_1: left promiscuous mode [ 276.551934][ T7205] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 276.592514][ T7205] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 276.665616][ T7205] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 276.696320][ T7205] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 276.904213][ T7205] veth1_macvtap: left promiscuous mode [ 276.927549][ T7205] veth0_macvtap: left promiscuous mode [ 276.940683][ T7205] veth1_vlan: left promiscuous mode [ 276.950488][ T7205] veth0_vlan: left promiscuous mode [ 278.357350][ T7205] team0 (unregistering): Port device team_slave_1 removed [ 278.458216][ T7205] team0 (unregistering): Port device team_slave_0 removed [ 279.863371][ T3447] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 279.909249][ T3447] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 282.657617][ T8582] FAULT_INJECTION: forcing a failure. [ 282.657617][ T8582] name failslab, interval 1, probability 0, space 0, times 0 [ 282.743173][ T8582] CPU: 1 UID: 0 PID: 8582 Comm: syz.2.546 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 282.743211][ T8582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 282.743225][ T8582] Call Trace: [ 282.743232][ T8582] [ 282.743240][ T8582] dump_stack_lvl+0x16c/0x1f0 [ 282.743279][ T8582] should_fail_ex+0x512/0x640 [ 282.743312][ T8582] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 282.743366][ T8582] should_failslab+0xc2/0x120 [ 282.743395][ T8582] __kmalloc_cache_noprof+0x6a/0x3e0 [ 282.743433][ T8582] ? kasan_save_track+0x14/0x30 [ 282.743457][ T8582] ? snd_info_text_entry_open+0xfb/0x2a0 [ 282.743495][ T8582] snd_info_text_entry_open+0xfb/0x2a0 [ 282.743528][ T8582] ? __pfx_snd_info_text_entry_open+0x10/0x10 [ 282.743560][ T8582] ? trace_kmem_cache_alloc+0x28/0xc0 [ 282.743591][ T8582] ? __pfx_apparmor_file_open+0x10/0x10 [ 282.743621][ T8582] ? proc_reg_open+0x21d/0x610 [ 282.743644][ T8582] ? __pfx_snd_info_text_entry_open+0x10/0x10 [ 282.743678][ T8582] proc_reg_open+0x286/0x610 [ 282.743702][ T8582] do_dentry_open+0x741/0x1c10 [ 282.743725][ T8582] ? __pfx_proc_reg_open+0x10/0x10 [ 282.743753][ T8582] vfs_open+0x82/0x3f0 [ 282.743786][ T8582] path_openat+0x1e5e/0x2d40 [ 282.743819][ T8582] ? __pfx_path_openat+0x10/0x10 [ 282.743848][ T8582] do_filp_open+0x20b/0x470 [ 282.743870][ T8582] ? __pfx_do_filp_open+0x10/0x10 [ 282.743913][ T8582] ? alloc_fd+0x471/0x7d0 [ 282.743957][ T8582] do_sys_openat2+0x11b/0x1d0 [ 282.743988][ T8582] ? __pfx_do_sys_openat2+0x10/0x10 [ 282.744030][ T8582] __x64_sys_openat+0x174/0x210 [ 282.744062][ T8582] ? __pfx___x64_sys_openat+0x10/0x10 [ 282.744095][ T8582] ? rcu_is_watching+0x12/0xc0 [ 282.744125][ T8582] do_syscall_64+0xcd/0x230 [ 282.744161][ T8582] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 282.744185][ T8582] RIP: 0033:0x7f326f98e969 [ 282.744204][ T8582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 282.744228][ T8582] RSP: 002b:00007f32707d4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 282.744250][ T8582] RAX: ffffffffffffffda RBX: 00007f326fbb6080 RCX: 00007f326f98e969 [ 282.744266][ T8582] RDX: 0000000000000400 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 282.744281][ T8582] RBP: 00007f326fa10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 282.744295][ T8582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 282.744309][ T8582] R13: 0000000000000000 R14: 00007f326fbb6080 R15: 00007ffc9363aee8 [ 282.744344][ T8582] [ 284.514576][ T8598] cougar: G6 mapped to space [ 285.794425][ T8626] ima: policy update failed [ 285.817277][ T30] audit: type=1802 audit(4294967410.709:8): pid=8626 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.553" res=0 errno=0 [ 285.842338][ T8608] can: request_module (can-proto-0) failed. [ 287.886374][ T8648] can0: slcan on pty238. [ 288.201984][ T8646] can0 (unregistered): slcan off pty238. [ 290.579188][ T8720] netlink: 'syz.5.568': attribute type 16 has an invalid length. [ 290.656457][ T8720] netlink: 326 bytes leftover after parsing attributes in process `syz.5.568'. [ 290.932709][ T8720] veth1_macvtap: left promiscuous mode [ 291.373873][ T8735] netlink: 28 bytes leftover after parsing attributes in process `syz.4.569'. [ 291.693702][ T8735] bond0: (slave bond_slave_0): Releasing backup interface [ 291.792325][ T8745] netlink: 4 bytes leftover after parsing attributes in process `syz.5.571'. [ 292.755132][ T8769] bridge0: port 3(bond0) entered blocking state [ 292.817030][ T8769] bridge0: port 3(bond0) entered disabled state [ 292.851381][ T8769] bond0: entered allmulticast mode [ 292.887981][ T8769] bond_slave_1: entered allmulticast mode [ 292.913336][ T8769] bond0: entered promiscuous mode [ 292.943531][ T8769] bond_slave_1: entered promiscuous mode [ 292.964967][ T8769] bridge0: port 3(bond0) entered blocking state [ 292.971465][ T8769] bridge0: port 3(bond0) entered forwarding state [ 293.628569][ T8784] FAULT_INJECTION: forcing a failure. [ 293.628569][ T8784] name failslab, interval 1, probability 0, space 0, times 0 [ 293.660040][ T8784] CPU: 1 UID: 0 PID: 8784 Comm: syz.2.577 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 293.660088][ T8784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 293.660107][ T8784] Call Trace: [ 293.660118][ T8784] [ 293.660129][ T8784] dump_stack_lvl+0x16c/0x1f0 [ 293.660181][ T8784] should_fail_ex+0x512/0x640 [ 293.660226][ T8784] ? __kmalloc_noprof+0xbf/0x510 [ 293.660273][ T8784] ? __register_sysctl_table+0xb3/0x1900 [ 293.660309][ T8784] should_failslab+0xc2/0x120 [ 293.660348][ T8784] __kmalloc_noprof+0xd2/0x510 [ 293.660393][ T8784] __register_sysctl_table+0xb3/0x1900 [ 293.660429][ T8784] ? is_module_address+0x5f/0xf0 [ 293.660478][ T8784] ? __pfx___register_sysctl_table+0x10/0x10 [ 293.660513][ T8784] ? is_module_address+0x69/0xf0 [ 293.660554][ T8784] ? register_net_sysctl_sz+0x228/0x3e0 [ 293.660606][ T8784] ? __asan_memcpy+0x3c/0x60 [ 293.660638][ T8784] mptcp_net_init+0x499/0x620 [ 293.660683][ T8784] ? __pfx_mptcp_net_init+0x10/0x10 [ 293.660718][ T8784] ops_init+0x1df/0x5f0 [ 293.660759][ T8784] setup_net+0x21e/0x850 [ 293.660801][ T8784] ? __pfx_setup_net+0x10/0x10 [ 293.660836][ T8784] ? lockdep_init_map_type+0x5c/0x280 [ 293.660879][ T8784] ? __pfx_down_read_killable+0x10/0x10 [ 293.660934][ T8784] ? debug_mutex_init+0x37/0x70 [ 293.660968][ T8784] copy_net_ns+0x2a6/0x5f0 [ 293.661015][ T8784] create_new_namespaces+0x3ea/0xad0 [ 293.661061][ T8784] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 293.661100][ T8784] ksys_unshare+0x45b/0xa40 [ 293.661143][ T8784] ? __pfx_ksys_unshare+0x10/0x10 [ 293.661182][ T8784] ? xfd_validate_state+0x5d/0x180 [ 293.661233][ T8784] ? rcu_is_watching+0x12/0xc0 [ 293.661297][ T8784] __x64_sys_unshare+0x31/0x40 [ 293.661342][ T8784] do_syscall_64+0xcd/0x230 [ 293.661394][ T8784] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 293.661426][ T8784] RIP: 0033:0x7f326f98e969 [ 293.661452][ T8784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 293.661484][ T8784] RSP: 002b:00007f32707d4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 293.661515][ T8784] RAX: ffffffffffffffda RBX: 00007f326fbb6080 RCX: 00007f326f98e969 [ 293.661537][ T8784] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 293.661557][ T8784] RBP: 00007f326fa10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 293.661576][ T8784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 293.661596][ T8784] R13: 0000000000000000 R14: 00007f326fbb6080 R15: 00007ffc9363aee8 [ 293.661638][ T8784] [ 295.746857][ T30] audit: type=1800 audit(4294967420.639:9): pid=8823 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.581" name="dummy_udc" dev="gadgetfs" ino=5974 res=0 errno=0 [ 295.842632][ T30] audit: type=1800 audit(4294967420.739:10): pid=8830 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.581" name="dummy_udc" dev="gadgetfs" ino=5974 res=0 errno=0 [ 299.288849][ T8882] ptrace attach of "./syz-executor exec"[5841] was attempted by "./syz-executor exec"[8882] [ 299.982499][ T8902] ================================================================== [ 299.990636][ T8902] BUG: KASAN: slab-out-of-bounds in afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 299.999384][ T8902] Read of size 1 at addr ffff88801e6e04c6 by task syz.3.595/8902 [ 300.007144][ T8902] [ 300.009500][ T8902] CPU: 1 UID: 0 PID: 8902 Comm: syz.3.595 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 300.009544][ T8902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 300.009564][ T8902] Call Trace: [ 300.009575][ T8902] [ 300.009587][ T8902] dump_stack_lvl+0x116/0x1f0 [ 300.009636][ T8902] print_report+0xc3/0x670 [ 300.009672][ T8902] ? __virt_addr_valid+0x5e/0x590 [ 300.009712][ T8902] ? __phys_addr+0xc6/0x150 [ 300.009759][ T8902] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 300.009799][ T8902] kasan_report+0xe0/0x110 [ 300.009836][ T8902] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 300.009882][ T8902] afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 300.009929][ T8902] ? __pfx_afs_proc_addr_prefs_write+0x10/0x10 [ 300.009973][ T8902] ? find_held_lock+0x2b/0x80 [ 300.010002][ T8902] ? __might_fault+0xe3/0x190 [ 300.010036][ T8902] ? __might_fault+0xe3/0x190 [ 300.010069][ T8902] ? __might_fault+0x13b/0x190 [ 300.010113][ T8902] ? proc_simple_write+0x114/0x1b0 [ 300.010150][ T8902] proc_simple_write+0x114/0x1b0 [ 300.010189][ T8902] ? __pfx_proc_simple_write+0x10/0x10 [ 300.010229][ T8902] proc_reg_write+0x23d/0x330 [ 300.010261][ T8902] ? __pfx_proc_reg_write+0x10/0x10 [ 300.010293][ T8902] vfs_writev+0x6c4/0xdc0 [ 300.010339][ T8902] ? __pfx___mutex_trylock_common+0x10/0x10 [ 300.010388][ T8902] ? __pfx_vfs_writev+0x10/0x10 [ 300.010436][ T8902] ? __mutex_lock+0x1ca/0xb90 [ 300.010478][ T8902] ? kmem_cache_free+0x2d4/0x4d0 [ 300.010514][ T8902] ? __pfx___mutex_lock+0x10/0x10 [ 300.010565][ T8902] ? __fget_files+0x20e/0x3c0 [ 300.010619][ T8902] ? do_writev+0x132/0x330 [ 300.010665][ T8902] do_writev+0x132/0x330 [ 300.010710][ T8902] ? __pfx_do_writev+0x10/0x10 [ 300.010785][ T8902] ? rcu_is_watching+0x12/0xc0 [ 300.010820][ T8902] do_syscall_64+0xcd/0x230 [ 300.010867][ T8902] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 300.010901][ T8902] RIP: 0033:0x7fa0c438e969 [ 300.010927][ T8902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 300.010959][ T8902] RSP: 002b:00007fa0c5222038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 300.010989][ T8902] RAX: ffffffffffffffda RBX: 00007fa0c45b5fa0 RCX: 00007fa0c438e969 [ 300.011010][ T8902] RDX: 0000000000000010 RSI: 00002000000001c0 RDI: 0000000000000003 [ 300.011030][ T8902] RBP: 00007fa0c4410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 300.011050][ T8902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 300.011068][ T8902] R13: 0000000000000000 R14: 00007fa0c45b5fa0 R15: 00007ffe807223d8 [ 300.011097][ T8902] [ 300.011108][ T8902] [ 300.270984][ T8902] Allocated by task 8902: [ 300.275325][ T8902] kasan_save_stack+0x33/0x60 [ 300.280025][ T8902] kasan_save_track+0x14/0x30 [ 300.284720][ T8902] __kasan_kmalloc+0xaa/0xb0 [ 300.289333][ T8902] __kmalloc_node_track_caller_noprof+0x221/0x510 [ 300.295771][ T8902] memdup_user_nul+0x2b/0x120 [ 300.300476][ T8902] proc_simple_write+0xc7/0x1b0 [ 300.305352][ T8902] proc_reg_write+0x23d/0x330 [ 300.310049][ T8902] vfs_writev+0x6c4/0xdc0 [ 300.314407][ T8902] do_writev+0x132/0x330 [ 300.318695][ T8902] do_syscall_64+0xcd/0x230 [ 300.323251][ T8902] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 300.329163][ T8902] [ 300.331496][ T8902] The buggy address belongs to the object at ffff88801e6e04c0 [ 300.331496][ T8902] which belongs to the cache kmalloc-8 of size 8 [ 300.345219][ T8902] The buggy address is located 0 bytes to the right of [ 300.345219][ T8902] allocated 6-byte region [ffff88801e6e04c0, ffff88801e6e04c6) [ 300.359555][ T8902] [ 300.361892][ T8902] The buggy address belongs to the physical page: [ 300.368312][ T8902] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1e6e0 [ 300.377085][ T8902] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 300.384207][ T8902] page_type: f5(slab) [ 300.388205][ T8902] raw: 00fff00000000000 ffff88801b441500 dead000000000100 dead000000000122 [ 300.396802][ T8902] raw: 0000000000000000 0000000080800080 00000000f5000000 0000000000000000 [ 300.405393][ T8902] page dumped because: kasan: bad access detected [ 300.411813][ T8902] page_owner tracks the page as allocated [ 300.417532][ T8902] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 1, tgid 1 (swapper/0), ts 3191993042, free_ts 3085123052 [ 300.435877][ T8902] post_alloc_hook+0x181/0x1b0 [ 300.440665][ T8902] get_page_from_freelist+0x135c/0x3920 [ 300.446235][ T8902] __alloc_frozen_pages_noprof+0x263/0x23a0 [ 300.452145][ T8902] alloc_pages_mpol+0x1fb/0x550 [ 300.457019][ T8902] new_slab+0x244/0x340 [ 300.461209][ T8902] ___slab_alloc+0xd9c/0x1940 [ 300.465918][ T8902] __slab_alloc.constprop.0+0x56/0xb0 [ 300.471343][ T8902] __kmalloc_noprof+0x2f2/0x510 [ 300.476210][ T8902] acpi_ns_internalize_name+0x144/0x220 [ 300.481795][ T8902] acpi_ns_get_node_unlocked+0x163/0x310 [ 300.487444][ T8902] acpi_ns_get_node+0x4c/0x70 [ 300.492133][ T8902] acpi_get_handle+0x105/0x270 [ 300.496929][ T8902] acpi_has_method+0x7a/0xc0 [ 300.501551][ T8902] acpi_is_video_device+0xaa/0x210 [ 300.506688][ T8902] acpi_init_device_object+0x115d/0x1970 [ 300.512358][ T8902] acpi_add_single_object+0xea/0x1b80 [ 300.517757][ T8902] page last free pid 1 tgid 1 stack trace: [ 300.523574][ T8902] __free_frozen_pages+0x69d/0xff0 [ 300.528723][ T8902] __kmem_cache_do_shrink+0x30b/0x380 [ 300.534116][ T8902] acpi_os_purge_cache+0x15/0x20 [ 300.539113][ T8902] acpi_purge_cached_objects+0x86/0x100 [ 300.544682][ T8902] acpi_initialize_objects+0x47/0xa0 [ 300.549999][ T8902] acpi_init+0x168/0xb80 [ 300.554257][ T8902] do_one_initcall+0x120/0x6e0 [ 300.559047][ T8902] kernel_init_freeable+0x5c2/0x900 [ 300.564273][ T8902] kernel_init+0x1c/0x2b0 [ 300.568624][ T8902] ret_from_fork+0x45/0x80 [ 300.573072][ T8902] ret_from_fork_asm+0x1a/0x30 [ 300.577882][ T8902] [ 300.580215][ T8902] Memory state around the buggy address: [ 300.585857][ T8902] ffff88801e6e0380: 05 fc fc fc 05 fc fc fc 05 fc fc fc fa fc fc fc [ 300.593935][ T8902] ffff88801e6e0400: fa fc fc fc 00 fc fc fc fa fc fc fc fa fc fc fc [ 300.602009][ T8902] >ffff88801e6e0480: fa fc fc fc 06 fc fc fc 06 fc fc fc fa fc fc fc [ 300.610081][ T8902] ^ [ 300.616237][ T8902] ffff88801e6e0500: fa fc fc fc fa fc fc fc 00 fc fc fc fa fc fc fc [ 300.624309][ T8902] ffff88801e6e0580: 00 fc fc fc fa fc fc fc fa fc fc fc 06 fc fc fc [ 300.632385][ T8902] ================================================================== [ 300.671685][ T8902] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 300.678946][ T8902] CPU: 0 UID: 0 PID: 8902 Comm: syz.3.595 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 300.690897][ T8902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 300.701002][ T8902] Call Trace: [ 300.704306][ T8902] [ 300.707262][ T8902] dump_stack_lvl+0x3d/0x1f0 [ 300.711914][ T8902] panic+0x71c/0x800 [ 300.715879][ T8902] ? __pfx_panic+0x10/0x10 [ 300.720353][ T8902] ? mark_held_locks+0x49/0x80 [ 300.725170][ T8902] ? preempt_schedule_thunk+0x16/0x30 [ 300.730603][ T8902] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 300.736633][ T8902] ? preempt_schedule_common+0x44/0xc0 [ 300.742156][ T8902] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 300.748192][ T8902] check_panic_on_warn+0xab/0xb0 [ 300.753221][ T8902] end_report+0x107/0x170 [ 300.757601][ T8902] kasan_report+0xee/0x110 [ 300.762068][ T8902] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 300.768109][ T8902] afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 300.773983][ T8902] ? __pfx_afs_proc_addr_prefs_write+0x10/0x10 [ 300.780202][ T8902] ? find_held_lock+0x2b/0x80 [ 300.784923][ T8902] ? __might_fault+0xe3/0x190 [ 300.789661][ T8902] ? __might_fault+0xe3/0x190 [ 300.794393][ T8902] ? __might_fault+0x13b/0x190 [ 300.799221][ T8902] ? proc_simple_write+0x114/0x1b0 [ 300.804406][ T8902] proc_simple_write+0x114/0x1b0 [ 300.809395][ T8902] ? __pfx_proc_simple_write+0x10/0x10 [ 300.814901][ T8902] proc_reg_write+0x23d/0x330 [ 300.819625][ T8902] ? __pfx_proc_reg_write+0x10/0x10 [ 300.824877][ T8902] vfs_writev+0x6c4/0xdc0 [ 300.829277][ T8902] ? __pfx___mutex_trylock_common+0x10/0x10 [ 300.835237][ T8902] ? __pfx_vfs_writev+0x10/0x10 [ 300.840153][ T8902] ? __mutex_lock+0x1ca/0xb90 [ 300.844886][ T8902] ? kmem_cache_free+0x2d4/0x4d0 [ 300.849876][ T8902] ? __pfx___mutex_lock+0x10/0x10 [ 300.854978][ T8902] ? __fget_files+0x20e/0x3c0 [ 300.859722][ T8902] ? do_writev+0x132/0x330 [ 300.864199][ T8902] do_writev+0x132/0x330 [ 300.868509][ T8902] ? __pfx_do_writev+0x10/0x10 [ 300.873332][ T8902] ? rcu_is_watching+0x12/0xc0 [ 300.878150][ T8902] do_syscall_64+0xcd/0x230 [ 300.882721][ T8902] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 300.888661][ T8902] RIP: 0033:0x7fa0c438e969 [ 300.893116][ T8902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 300.912779][ T8902] RSP: 002b:00007fa0c5222038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 300.921246][ T8902] RAX: ffffffffffffffda RBX: 00007fa0c45b5fa0 RCX: 00007fa0c438e969 [ 300.929269][ T8902] RDX: 0000000000000010 RSI: 00002000000001c0 RDI: 0000000000000003 [ 300.937289][ T8902] RBP: 00007fa0c4410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 300.945312][ T8902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 300.953345][ T8902] R13: 0000000000000000 R14: 00007fa0c45b5fa0 R15: 00007ffe807223d8 [ 300.961375][ T8902] [ 300.964691][ T8902] Kernel Offset: disabled [ 300.969035][ T8902] Rebooting in 86400 seconds..