last executing test programs: 6.605562896s ago: executing program 2 (id=2743): mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_SET(r1, &(0x7f0000005380)={0x0, 0x0, &(0x7f0000005340)={0x0, 0x14}, 0x1, 0x0, 0x0, 0xc000}, 0x20000000) r2 = openat$auto_binder_ctl_fops_binderfs(0xffffffffffffff9c, &(0x7f0000000000), 0x82c00, 0x0) ioctl$auto_BINDER_CTL_ADD(r2, 0xc1086201, 0x0) r3 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x341f42, 0x100) write$auto(r0, &(0x7f0000000000)='\x00\x00', 0x5) unshare$auto(0x40000080) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tomoyo_self_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000180), 0x283, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000600), 0xffffffffffffffff) fstat$auto(r0, &(0x7f0000000280)={0x1, 0xa, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0xfffffffffffffeff, 0x8000000000000001, 0x1000000000101, 0xffffffffffff0003, 0x10000, 0x80000000, 0x0, 0x83a0000000000000, 0x5}) r6 = syz_clone(0x40180000, &(0x7f0000000340)="b884e1e0f7241600b54c4f841de24a2d53ff0546c2076b77bccc0f4edde92b363fa74711d7fc54fc200bd2700e4fe438fb7737fb3622809d42c06f5c04fe02e4943ff040b5fead443c131aa4cd37fdd6", 0x50, &(0x7f0000000080), &(0x7f0000000100), &(0x7f00000003c0)="28ef09f6816597c490071beef5f9fccd49eb91a16c8ef3edc919b78bf6b2bb46e41ca85a64b25a94d0e2783ca0958a4669f3723f4fea0e9853ac32214cdf19f0313513cffc4d35a5aee6de83f26cd12694e4603fdac7470ce5319e6368b5b56d9e9398c0a9c0dda595504b7afe191638501ba30294fd6adf378014a9c4ced070288e04f326441844bf89a128b447438bce4908308b23970e8d2dfa8ddb9b4979e32ee7956640f04d6b9ef040b4ccdd") shmctl$auto_IPC_INFO(0x5, 0x3, &(0x7f0000000500)={{0x200003, 0xee01, 0xffffffffffffffff, 0x4, 0xe401, 0x32d0, 0x8}, 0x5, 0x4, 0xffffffffffffffff, 0x7, @raw=0x80, @raw=0x3e3c, 0xa, 0x0, &(0x7f0000000480), &(0x7f00000004c0)="12a20bdf6e4f0141f584a3a1ae9af85628487a7d6e70c52b0323d7ea2e"}) sendmsg$auto_OVS_FLOW_CMD_SET(r4, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000680)=ANY=[@ANYBLOB="d4010000", @ANYRES16=r5, @ANYBLOB="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", @ANYRES32=r3, @ANYBLOB="00006c00d0805e0008800800ba00", @ANYRES32=r0, @ANYBLOB="0400448008001a00ffffffff8958cc7a440ad7ae118332b7ba55d168e4a112976e315e0b5021fa9d9f64b8494a61a7a8993523c0e1115bea47835c37c6ef723d8f6216de87885fd1031d08002200", @ANYRES32=r6, @ANYBLOB="00000800cf00", @ANYRES32=r7, @ANYBLOB="000000040002800500090008000000"], 0x1d4}}, 0x40000) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r8 = socket(0x1d, 0x2, 0x6) getsockopt$auto(r8, 0x6a, 0x5, 0x0, 0x0) umount2$auto(&(0x7f0000000040)='.\x00', 0x4) umount2$auto(&(0x7f0000000000)='.\x00', 0x4) r9 = open(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x101840, 0x33903f3ada88772b) unshare$auto(0x1) read$auto(r9, 0x0, 0x1) r10 = openat$auto_trace_options_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/options/blk_cgname\x00', 0x5, 0x0) write$auto(r10, 0x0, 0x6) 6.309948866s ago: executing program 1 (id=2744): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0xa585}, 0x5111305c}, 0x4, 0x4008) r0 = socket(0x8, 0x2, 0x8) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[], 0x2c}}, 0x400c000) getsockname$auto(0xffffffffffffffff, &(0x7f0000000000)=@tipc=@nameseq={0x1e, 0x1, 0x3, {0x42, 0x1, 0x1}}, 0x0) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2c, 0x4, 0x10000) socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000003c0)=""/192, 0xc0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/card1/pcm0p/sub0/hw_params\x00', 0x1c1282, 0x0) read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000300)=""/62, 0x3e) (fail_nth: 1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000) sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x2) mmap$auto(0x0, 0x2020009, 0x10, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x23, 0x8, 0x2008, 0x0, 0x0) mmap$auto(0x1ff, 0x104020009, 0x6, 0xeb1, r1, 0x8000) write$auto(0xffffffffffffffff, &(0x7f00000001c0)='/proc/asound/card1/pcm0p/sub0/hw_params\x00', 0x3d5) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) syz_clone3(&(0x7f0000000400)={0x9840100, 0x0, 0x0, 0x0, {0x31}, 0x0, 0x0, 0x0, 0x0}, 0x58) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x2, 0x0) 5.575939541s ago: executing program 1 (id=2745): close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) close_range$auto(0x0, 0xfffffffffffff000, 0x2) syz_open_procfs$namespace(0x0, 0x0) socket(0x2, 0xa, 0x1) statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0) ioctl$auto(0x1, 0x890c, 0x8) 4.878062334s ago: executing program 1 (id=2750): mmap$auto(0x0, 0x2020009, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000) 4.742281797s ago: executing program 2 (id=2751): add_key$auto_KEY_SPEC_USER_KEYRING(&(0x7f0000000000)=']\\$', &(0x7f0000000080)='/sys/bus/usb/drivers/usbip-host/match_busid\x00', &(0x7f0000000140)="d8a82a8b4962efa8ec166c7101f14aa29c2e5d5264d9a35d68ca4ffade4912df6dbbc2395082adba076828ac92fc924b10cd85abeda28df21e3bef6c649783a258beb37a616068f63211deb1d4fbf9335a42efb5e6f3bc9cad59443b692d06a883ab9542a93960e692c15aa9e55f8256459d32603eb1ca6cf32932b000fe62d644ff", 0x7fffffffffffffff, 0xfffffffffffffffc) r0 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon8\x00', 0x881, 0x0) ioctl$auto_MON_IOCX_GETX(r0, 0x4018920a, &(0x7f00000000c0)={0x0, 0x0, 0x4}) add_key$auto_KEY_SPEC_USER_KEYRING(&(0x7f00000000c0)='\\\x00', &(0x7f0000000200)='+{@,\x00', &(0x7f0000000240)="ce202a1c7e80a00df7893bd79ec858cbe69c35d9f72ae5db41072ea3e407cf4e1031c044580a9ccd815defc61a8af8f8048fffa7db1cda67497b0e60d0b0048861d3e1dd1772147b3d3611c24594a05d82b3e21d4a49df3504ec015692a20681f437850790e3e8a62543929cab1b4a8403bbe7530c5164314188728f", 0x9, 0xfffffffffffffffc) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000180)='/dev/admmidi2\x00', 0x88042, 0x0) open(&(0x7f0000000140)='./file0\x00', 0x161342, 0x100) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(0x3, 0x0, 0xfdef) read$auto(r1, 0x0, 0x20) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x8002, 0x0) close_range$auto(0x2, 0x8, 0x0) writev$auto(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000340), 0x1}, 0x8000000d) 4.587405777s ago: executing program 1 (id=2752): r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0xecff) mmap$auto(0x6, 0x2020009, 0x7, 0xeb2, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) futex$auto(&(0x7f0000000080)=0x1, 0xb, 0x1, 0x0, 0x0, 0xfffffffa) futex$auto(&(0x7f0000000080)=0x100002, 0x1, 0x8, 0x0, 0x0, 0x440a4cd3) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x1, 0x2, 0x0, 0x16, r0, 0x979a) unshare$auto(0x40000080) r1 = pidfd_open$auto(0x1, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0xffffffffffffffff, r1, 0x0) socket(0xa, 0x801, 0x84) io_uring_setup$auto(0x4, 0x0) write$auto(0x800000000000c8, 0x0, 0x1a) shutdown$auto(0x200000003, 0x2) set_mempolicy$auto(0x20000001, 0x0, 0xffffffffff7ffffd) mmap$auto(0x0, 0x8, 0xdd, 0x20000000009b7f, 0xffffffffffffffff, 0x80001c8f77e5) r2 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x7fff) r3 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r3, 0x107, 0x1, 0x0, 0x8004) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x38, 0x65f, 0x7d02, 0x7, 0x7f, 0x20000005, 0x9, 0x3, 0x6, 0x400000004, 0xb4, 0x4, 0x6, 0x2, 0x1, 0x4, 0xfffffffc, 0x7, 0x2000, 0x203, 0x838b, 0x84, 0x2, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x4, 0x40000000000, 0x0, 0x2, 0x0, 0x0, 0x400, 0x0, 0x0, 0x1, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffff7cc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, 0x1fe, 0xc) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r4 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0xfffffffb, &(0x7f0000000100)={0x0, 0xfc2}, 0x4, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) close_range$auto(0x2, 0x8, 0x0) 4.072122236s ago: executing program 2 (id=2754): add_key$auto_KEY_SPEC_USER_KEYRING(&(0x7f0000000000)=']\x0e\x00', &(0x7f0000001500)='/sys/bu{/usb/drivers/@\xb6\xc5\x9ep-host/mat\xd9\xd1w\x91\xac\x0e\x1e\x98\xf7\xb4}\n\x1c\xa2\xea\x90\xbf\xa4\xeb\x9c\xe9\xc3\xa0A\xb9$\xfa\xb4\xb0\xcbmG\x86I\x84\xf9\x87Vm8@\xd3\xaf\x89\xedL\xcb\xbe\xc2\xf6\xd5\xbay}\xce@\xc3c*\xe1\xc3\xdfR\x11\xe3\x85<\n\x95\xb8\xdd\x9aO\\\x9f\x0ft\xd9\x1d\'\x8fcL&\x01\xcd\xdd7T\x95]\x80\xa7)\x95\x91\xef\x95\xe5\xdb\x7f\xad:\xa3\xce[\x1f\"\xab\xa3B\x8f%/@l\xb4\xe8#\x9bv\xf9\x19N\xe4$Nr]\xc3M\x95y\x88E~\x19{\xcd\x9d\xf3\x9bD\xa9i\xe2E\xf9o\x10\x13\xf0o5V+\xd6\xf4\xcb\xfd\xee\xd8\x89\xdfB\xe8\xa6\xef@\x15\xfbp\x9e\x92\x03\xdd{\xff\xc5K\x1c\x1a\x97!\x1d1\xd4\xddP|V\xe9K\xc0\xc5\x05$F/\xeb', &(0x7f0000001600)="d8a82a8b4962efa8ec166c7101f14aa29c2e5d5264d9a35d68ca4ffade4912df6dbbc2395082adba076828ad92fc924b10cd85abeda28df21e3bef6c6497ffff00000000000068f63211deb1d4fbf9335a42efb5e6f3bc9cad59443b692d06a883ab9542a93960e692c15aa9e55f8256459d32603eb1ca6cf32932b000fe62d644ff4a0213b3e72c7cd05ce1b324d5f55775df", 0x7ffffffffffffffc, 0xfffffffffffffffc) r0 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/usbmon31\x00', 0x801, 0x0) ioctl$auto_MON_IOCX_GETX(r0, 0x4018920a, &(0x7f00000000c0)={0x0, 0x0, 0x4}) add_key$auto_KEY_SPEC_USER_KEYRING(&(0x7f00000000c0)='\\\x00', &(0x7f0000000200)='+{@,\x00', &(0x7f0000000240)="ce202a1c7e80a00df7893bd79ec858cbe69c35d9f72ae5db41072ea3e407cf4e1031c044580a9ccd815defc61a8af8f8048fffa7db1cda67497b0e60d0b0048861d3e1dd1772147b3d3611c24594a05d82b3e21d4a49df3504ec015692a20681f437850790e3e8a62543929cab1b4a8403bbe7530c5164314188728f", 0x9, 0xfffffffffffffffc) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/amidi2\x00', 0x2d0142, 0x0) r2 = open(&(0x7f0000000140)='./file0\x00', 0x161342, 0x100) mmap$auto(0xfffffffffffffffd, 0x40009, 0x9, 0x100000009b72, r2, 0x7fffffffffffffff) add_key$auto_KEY_SPEC_USER_KEYRING(&(0x7f00000002c0)='!&-!\x00', &(0x7f0000000300)='[#)^*):\x00', &(0x7f0000000340)="e42bdc14076d5ef1d36c62abd901b8c9366a4f6a4726490944252dbf8025f046329b1147bc20", 0x100000000, 0xfffffffffffffffc) write$auto(0x3, 0x0, 0xfdef) add_key$auto_KEY_SPEC_USER_KEYRING(&(0x7f0000000380)='/dev/sequencer2\x00', &(0x7f00000003c0)='[#)^*):\x00', &(0x7f0000000400)="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", 0x3, 0xfffffffffffffffc) read$auto(r1, 0x0, 0x20) openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000001740)='/sys/kernel/config/target/version\x00', 0x13bb41, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x8002, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2d, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto(0x3, 0x89e2, 0x91) add_key$auto_KEY_SPEC_USER_KEYRING(&(0x7f0000000100)='/sys/kernel/config/target/version\x00', &(0x7f0000000180)='-$\x8c\'\\{(\x00', &(0x7f00000016c0)="29005de70cdee8b4428597c594a8289cbf40f9378a1256b3d9604a817dc89e266825f6a21993f0ac7e3fe1c57dc581216c75c3860cac3ecd59180b6e6b2ebf3535bcb82bbe7c9ea19e8b994799c6605270a165d34823eb82c8fae83097821f7f28fcccb11991ae56c9a9b0bb", 0x7f, 0xfffffffffffffffc) close_range$auto(0x2, 0x8000, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x9, 0x7) openat$auto_set_tracer_fops_trace(0xffffffffffffff9c, &(0x7f0000001400)='/sys/kernel/tracing/current_tracer\x00', 0x2, 0x0) rt_sigprocmask$auto(0x26, 0x0, 0x0, 0x8) writev$auto(0xffffffffffffffff, &(0x7f00000014c0)={&(0x7f0000001440)="407688a5a6d735bb58d6d364ab869b12fd66d2ec39cd6811d5e988a751d222831a2c5387d87ec4ff2880ce0fa0f7de3e5b7e6e9ae0c48f04b44e022514dabaea7828bb57a91c4a", 0x1}, 0x8000000d) 3.797531477s ago: executing program 0 (id=2756): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r0, 0x4b68, r1) 3.759801129s ago: executing program 2 (id=2757): socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r2 = inotify_init1$auto(0x3000000000000) socket$nl_generic(0x11, 0x3, 0x10) socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x2, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) chdir$auto(&(0x7f0000000000)='}[,&*}\x00') r3 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) lseek$auto(r3, 0x9, 0x0) getdents$auto(r3, 0x0, 0x62d4) recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto_random_fops_random(r2, &(0x7f0000000000)="bd9405d2ced5e1f1e985e49c845025c70f484a9c7e49c4431eb1e9aa09678218b0c2224f92a16e2ea8fc0da3786dc2e7e6b7963d3308d0b9c66fb96ebc0fcd0e33205d9474c8bfe6fb304f0e5a39a4f1f26fdc5eebbc4c47f3abfed64f5c84acd26b1c65ffebe594d7b39b30c68f6f3d6631f88db2b8ad5ebc4c4dbb9a1a146b20d12dc078810977c5636072d8e8991452c10db9402092f87da22162236fbce26129cbb8257cc5e6996aa3078f1093271779666ebdbf40b7d0fc0caa46670bf2c73d3eaa5d1636afdee1bc9423d40d1ac1", 0xd1) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000001c0), r1) sendmsg$auto_NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000f40)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000f00)={&(0x7f0000000200)={0xce8, r4, 0x826, 0x70bd2d, 0x25dfdbfd, {}, [@NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0xb}, @NL80211_ATTR_UNSOL_BCAST_PROBE_RESP={0xcc8, 0x127, 0x0, 0x1, [@NL80211_UNSOL_BCAST_PROBE_RESP_ATTR_TMPL={0x725, 0x2, "f1f9544f08d311bd26fe664e6c3996f07099fcd44bfc06fbb1f8681efa1bc035ef10985112305dceb6a99820aee9148094be7108b4eaee510dc6affd3637b6df32e464711c5dfb11b016afbf307063c128134e7d682ef7862c3424a1aa58922759eea0e19cb4f174e9119a96f0fd7af2637e7f934a157cedd2c01e7be0c6feefac292153ad03300178613103cc843aad0938e63602569cdf79dc20446c0e0d9bcab9ea469081c1dbc6e389af46c3012b1e576e7a1af77b169638624caf71f20b3e9449a29acc08cf6a618f6c0f1f4086f71af8ece003dd51ea5ab484fcd4083431cf24014dd3e079288fe3b43c058383c955876b79e98c85aaac3ea48bccea1f1bedbab61d8763dee5ac03d07717bc057743add677570443b2f9a6f10d295a277d52b015f71bcdc390b7ca36f3db0daabbd4ad1ca237f86c170046176a732c32327e697b7036029e142f16419fa4665fdb3f87dddede45e1c94653e2c8002a2930e1820b8d353c2aa78ac89869693f8e57a9fcfa1b40a5e4e4c67086523d456e9e6154cef0cec14e58ee261d67c55bd5a24759e7e21c41973270eee3bb79e3f6fa57f3805116c1bdb0a69d99c57686d3ff2a2bc32f2a96149cd39cc9cfd8bb7ecd40b991e9d7dadc4061f188c875578c76e29cd9b32df32049d0cf4c2c4fd7108304c53e53ebf5a58f2904129a3383e716ee6348d55aeda13ed9cab966bd4271943e03aa138406094fb513c74a3fe2009829275fc0004492b4c50fcdb932055286ac14e50e107735d29c30d57a4f964885a1a2fc5275ebe25c5b2ea9d2d69f58670ee8370c64215e7e09953a387991099784c53ab93e39295ec0ef32426e5f5758308f8fb0f09b6ce02f95c01c5ef19ac22cb5cd079331ee230fa8c2b42a9f2e9eeffa0f2b780e5c8d7ce71f6f66beda2c0f6a08b9de20ce1508ec5c551da58dba07b87644dd2ef1ade2301e541e3b0c0a49d45baf489ceef1d44847f2589ddfc19f0bc878209e7f26376a8dc74acb1efd4cd404a665c4ac9d5eddd14fc76403b6973549dde32f6c817ad39bd166fde049693ac795f0cb6e81b06d7120a8cf4da00035f3ca9735b385c889107c67e861c903b81da18e9b9d41b201c3383d4a2194e2cbc22bc9d0aff343321fecf9b9fd6d7e99f5e8ec62628f86202daa8283c718aaa2f0d033ee147140106aae555968adef79622199eacc0abcae20072298acf7523be3c21d1c1ed662906749fe73d79a060606e7b5334e658621a2ea76866eed7342ade9d557c1a5ee469c9ec1d55a024c0b9d4624e5265dd49351929c98f058968bda3fbb7d34fe2b498b01bb7c81cd41e497558abff73800c5f91f7e486bed8d546291ec734478ba6db1b131e6f488bd9a26081e05824696bdbccb0db86980511bc4d268b31c9bc37c4497aa9d074b0f7e17661e7a61dd6f5e8f15b55df8373cea8cdd56ad7b141f4a33e7a67bce78ccc4641e60abd187229258e837e6b6a18294a2f47c6bdbfe333bca3990cac00330bb7ef01fe9197fc2905e6fc4093d0132bdece1de91f28b9499ba612e6a99b67bf3784abdd52dee3bf97727f1c7eea7b0998de627a239811e84f95fea2231d61fb1fce406afd0e3e62f499a4f51f984afeb15175eea06ea965c9bf180bf0c10906f9522d5b7b41dd39718723d1a3d68eb83180168836330f30ecbcb23a530751ed0441878e5dbf4ee5e8bf96113d5b15cd09587f1f69f27cdc1e15810190b98a35a5cf6c2da9653207c21dc506085e383ccc59e177b92ff2db52d2289e7e579ea59d4a2f237c8258820d1623c38570e0486c3f5941027440e8eb2ae50c168410c9899d47a449f505c663d8b85853c6d83943c85bde0d209f1af59a2b456e30275863b08b829083adc048a919e938058387a98621f8b6b94535e61c56ca452a63cf952ddac4d13a3f906b963307c0a9aeb6fbd0f80705af5774b75df105290f160ce3b1b81c4e4ec83e2bc37aa0bb613a2e1dcc5b4b5a31316051c42534cbf781da4d4017ac17a8d0bc4071e7548d7b6b3803fc811ea29f42d3e466ecba6c72ce24da4b1eb348e20df1316ee63d09d82b00193623597bc3d8455a78a6d38addbb763b84bbb3f5b25496fab58de7f067eda5044314d8480849abc1be3b1aa63d1ef2013ea843dd867937f48c9bb7a3f7b04c599901f2736f46e14228ddfbd0599f39bdb4db48b48280908ae30f7bcaff5956e2a8548bebc59be0e186f71790efa08aa9c5a8a3f2668c6ad7a675b1dd6351d3a59a4bbd5c5ccb6219c352fa5df90d64fe0b6dd8169daf2e274172364dc8f91c8d7a98a286133ed2cee60defef4d65e508d1dbb52f87c87d034adc5c6f4128602c2b7875dc318284d1b4c026a0ee7ce21d1fbafce3565a47474e04c904df1350a85b2936d4d0f26c62535880ffe53a92bcbfd9e3ed864eea5663735ba4d78c56f33cc5425b6ada4d872001095a6bc33ade59912057ba26dceeff6dc66bc5cc7cc7b1736c12af282e4612b18ea9096ee70731ae902a1541cb32f59fdef134f5407217c6de76dcb755f4a6b6febef5d4c49dd1175fb1b2452fa0d83a0b56e62"}, @NL80211_UNSOL_BCAST_PROBE_RESP_ATTR_INT={0x8, 0x1, 0x3}, @NL80211_UNSOL_BCAST_PROBE_RESP_ATTR_INT={0x8, 0x1, 0x7f}, @NL80211_UNSOL_BCAST_PROBE_RESP_ATTR_TMPL={0x589, 0x2, "f4d0044e4097c08ff2dc4cdc84fa4dec8884d96d87b3e3179a4575c705c67869a591c4d98ca6e8282a9d52ed2979be9a2bb873e61b6c786b9bd54afd8d5be92ce173e803a9c96999c10a7be18f97a01cb3dfbae083c347626683f1871a6388c4063ae1859f378aeb87e73200a7104715e02955b293aae9c2673b4b6ef83450b06384768ac5abad47018bb59139123a8f61101d0bc7a8489d0f729a4fb51991a8891043429bdfda019ccef6d8b04f35b68a03d673f0a143172e39840413f7cf926221fbffc51bf59cf9b80db1fb074cdf8b4dae3b0c6da05fdfac13a93139a07afa857bbc4e9126c622d4df0b9f79fc8594443f3e50812fa39424b271e064ac9af1c39d1234c84db1dbb8cdf2ae84d2d466bd8b7e8dbb9c852882fc73137969610e1663967320a67ff2e8f9010f2ecf8018d6888188813b5652b0e611aa8337cdb29a2aedf415742207f5608a24f62197a748ce06d9dfe7a3f366c651a65b4dc2b9e90f5fbf149997431d6173f1f5566b381d5e46612fc853c231725a61dafe7403410854a66a09395084f79d6675bb20e4114a3d7ed831b00ab9121255513a88abad12881aaf766a6f0b2268841bbd061c695dd3908d14e4864f626326c075fbdcc08ce671434b6fe22bd7c3dd78e574f89957b54d3ee165d0c60d3268a8ac25528c5e43e2c8a04d4578be1924d4a66e69f161e278ab58f341390aa13591fce1e7c05c29cfe670a017af0eb513348060c94ac18c25831d54d35726b4607afa321ed22d776deb07e6633af7f88f38cb646f91b61805d58a2fa3be2b4db42517bbe0d71f8bd6dbd22ebb3f10c523885917b91a6b214a86dd426bbccb7eca79151567ab970e9d9a6ed9803f434b4bf448d64692569613a32b34dcb8e46739695efbfcfdf6eaec4957f3f0141e9cd32074292c772723c11fd5a40f9b8285f84fa19d93cc15f406e872f3bb859aa2a9f66eed67658e964b6111ddee61933ccb0ddfc340fdeefc0b1b789cccb84f09746dd5552431721f905b05b2ab2d99d0f72d2849f96f231d60fb86e2f085574644a2380d366f9826eb2b66b0c0dfc87332b57c2f7fac34fdc152acf4c13712bbf06a4886e4be334ccb13fd9ed99cb321ace2c6e381c54a87a71b1f160de10821bcac598680cd0e3ae50e4be79276e3293130b2c5e9eb4e05a92c9bac0482cacbc6b0abacff1f16700d067e67526db1f12ad0224adb562c9fe99838b8fa38ae79039d4e7cd3f32924ca3a1f975b7db356c4b55656eca929cab6b9221d1cd5b9f49509e977d1857e7f6c28a0a9a3d725c91f0aee26c456641c393541dd9a7026a77b1ae649e662d2eed3ee8c665a82d741fef7b827d676c54eaae4f854fa4fd58431217918e19f434f2bd36e3acd3e13b1e472e1d9962c86198a99955637a2ca0046b34d0c5a43aca2f692ac909b0398ad977f2ae3ba49f7b2d56295d6bce2484d8ef0bb9999dc80c48ad5373343239b387b6666244670a4a5901782e0cab05f90999157bf7cd97a97c68980f0dd1a1370ca68d2ab12de11f103865b905f508f07fed79f1cb74bcdc7b0021fdde50f24ff5dc291926d5c49e5577da695166022c425ab30ec959de2522206ec0c1020ed0ef4fdcf6c4e016a9610d22083d15376438e9019c6e8a3c22ea040e9c5dc48226e19adc5ca4ef111555a3e565ce9b49d49517822a7403077afa31678ac9965eef02190304ef47d71708841c70da59dcd223646cdfeba2d0dd8f2d519d50ddfb70eee901d7516d889309983c65f4fecdbe6d1589c0d50be5047385f3da4f1ba28c34fe851e1d96f37b38a6986671636a642a3066d924949df4214e73f83384f1e145a6eb4fc9687d98ce0027203ec922d0fa651bc8b56b890340095c92e0d648157bdc1db502ea0f6db934c6b7176346158130375081bab05fc1c69371c6f28c4c2bd7a061ec9eb498e195cf7e115f7cb146aa5487550a0a915f8551b7f31c981cfa7ec8eb2b2df258a6d"}]}]}, 0xce8}, 0x1, 0x0, 0x0, 0x40805}, 0x40080) getsockopt$auto(0x6, 0x11b, 0x1, 0xfffffffffffffffe, 0x0) 3.570645739s ago: executing program 3 (id=2758): socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffff5fdffe00, &(0x7f0000000400)=';') openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/netfilter/nf_log/3\x00', 0xa2202, 0x0) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x840, 0x152) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_async\x00', 0x2100, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_setup$auto(0x7, 0x0) openat$auto_nsim_dev_take_snapshot_fops_dev(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim1/take_snapshot\x00', 0x2001, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82400, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0x8a100, 0x0) openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/events/vmalloc/free_vmap_area_noflush/enable\x00', 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x109500, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) io_uring_setup$auto(0x85, 0x0) socketpair$auto(0x4004, 0x7, 0x4, 0x0) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0) ioctl$auto_TCFLSH2(r1, 0xc0384707, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) msgsnd$auto(0x5, 0x0, 0x3, 0x8) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mlock$auto(0x3, 0x1) mlockall$auto(0x7) 3.521242793s ago: executing program 0 (id=2759): mmap$auto(0x0, 0x0, 0xc00000072, 0xfffffffffffffff7, 0x1000000002, 0x8000) r0 = io_uring_setup$auto(0x86, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x6) socket(0x28, 0x4, 0xffffffc0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ustat$auto(0x12, &(0x7f0000000340)={0x2, 0x80, "417acc606935", "db5f19b5a360"}) write$auto(r1, &(0x7f0000000840)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xf3\x8dz \xee\x04\x18U\xd9\xfeZ\x1a\xe2\x9cK\fE\a\xca\xd36\xe8k8\x83\xcf\xc5D\xcc>\xb2\x9a|y\xfa\xb6\xa6\xeb\xba\xac\xd561\v\x96\xe2 #5\xf6j<\x9a\xc7KG\xa0\xdf\x82\x068k\x05\x9d\xa6\x99\xa3\x91;\xeb\xf8\xff\xae\xe6\x82N\nF\x12\xc5\xc2>k\x9a{o\xaa\xe5n\x97\t\xbd\x06\xaep\b\xc7\xc9\xa4\r\x17s\x86\xf1\x97\x84\x84jL;q\xb5UNO\x0e5\xe1A\x17\x19B\x12t\xb5\xe9]\x94\x95\xe2R\x8d$\x1bm\x9e<\x8f\x11\xab1<\x8b\\\xc1\x94\xbd\x84t\xdbs\xcf\xeb\x84\x8b\x80\xc8u\x93Q\xe2K\xcf7\xd2Y\xc0\xc2\x06\xc3\xbb\x8d\x7faO\x15\xb6ACQ$\x1a\x85\xe6y\xc2\x06\xc9\xff\xdd\xb6\x80\xd9tc\xcb\x01\x1e\xe0\x9a\xc5\x81\xa8\xd2F\x82\xd2\xa3\xe5\xb4&\x84\xe8\x11X\x06:\xd4\xe3ou\xbd\xa3T\xb4@V\x1f\x8f\x19\xa9N\xaf0\xc7\xb7\xccQ;\xcc\x9f\x95\xcf\x92\xa6\xf1!\xf7\x02Dq6\x96\x80\xfaD\xccw*\xae\xdfl.F\x1c\x8c\xe89\x01\xf6\xe3f:\xccys\xda\xc1\xbc],\x10\x1f\xe1\xc6\x909\x88IHJ\xb0\x1a\x9f!\xa0\xcc\f+\x96\xd8\x06F\xd2\xd3\xf0\xf0\xcam\xa4:2\x81\xf8F\xce&3\x1f|\x17n<\xbdGv\xf1/\x1c\xf0f\xb8&\x959-\n\xccWw\xf3\x8dz \xee\x04\x18U\xd9\xfeZ\x1a\xe2\x9cK\fE\a\xca\xd36\xe8k8\x83\xcf\xc5D\xcc>\xb2\x9a|y\xfa\xb6\xa6\xeb\xba\xac\xd561\v\x96\xe2 #5\xf6j<\x9a\xc7KG\xa0\xdf\x82\x068k\x05\x9d\xa6\x99\xa3\x91;\xeb\xf8\xff\xae\xe6\x82N\nF\x12\xc5\xc2>k\x9a{o\xaa\xe5n\x97\t\xbd\x06\xaep\b\xc7\xc9\xa4\r\x17s\x86\xf1\x97\x84\x84jL;q\xb5UNO\x0e5\xe1A\x17\x19B\x12t\xb5\xe9]\x94\x95\xe2R\x8d$\x1bm\x9e<\x8f\x11\xab1<\x8b\\\xc1\x94\xbd\x84t\xdbs\xcf\xeb\x84\x8b\x80\xc8u\x93Q\xe2K\xcf7\xd2Y\xc0\xc2\x06\xc3\xbb\x8d\x7faO\x15\xb6ACQ$\x1a\x85\xe6y\xc2\x06\xc9\xff\xdd\xb6\x80\xd9tc\xcb\x01\x1e\xe0\x9a\xc5\x81\xa8\xd2F\x82\xd2\xa3\xe5\xb4&\x84\xe8\x11X\x06:\xd4\xe3ou\xbd\xa3T\xb4@V\x1f\x8f\x19\xa9N\xaf0\xc7\xb7\xccQ;\xcc\x9f\x95\xcf\x92\xa6\xf1!\xf7\x02Dq6\x96\x80\xfaD\xccw*\xae\xdfl.F\x1c\x8c\xe89\x01\xf6\xe3f:\xccys\xda\xc1\xbc],\x10\x1f\xe1\xc6\x909\x88IHJ\xb0\x1a\x9f!\xa0\xcc\f+\x96\xd8\x06F\xd2\xd3\xf0\xf0\xcam\xa4:2\x81\xf8F\xce&3\x1f|\x17n<\xbdGv\xf1/\x1c\xf0f\xb8&\x959-\n\xccWw\xf3\x8dz \xee\x04\x18U\xd9\xfeZ\x1a\xe2\x9cK\fE\a\xca\xd36\xe8k8\x83\xcf\xc5D\xcc>\xb2\x9a|y\xfa\xb6\xa6\xeb\xba\xac\xd561\v\x96\xe2 #5\xf6j<\x9a\xc7KG\xa0\xdf\x82\x068k\x05\x9d\xa6\x99\xa3\x91;\xeb\xf8\xff\xae\xe6\x82N\nF\x12\xc5\xc2>k\x9a{o\xaa\xe5n\x97\t\xbd\x06\xaep\b\xc7\xc9\xa4\r\x17s\x86\xf1\x97\x84\x84jL;q\xb5UNO\x0e5\xe1A\x17\x19B\x12t\xb5\xe9]\x94\x95\xe2R\x8d$\x1bm\x9e<\x8f\x11\xab1<\x8b\\\xc1\x94\xbd\x84t\xdbs\xcf\xeb\x84\x8b\x80\xc8u\x93Q\xe2K\xcf7\xd2Y\xc0\xc2\x06\xc3\xbb\x8d\x7faO\x15\xb6ACQ$\x1a\x85\xe6y\xc2\x06\xc9\xff\xdd\xb6\x80\xd9tc\xcb\x01\x1e\xe0\x9a\xc5\x81\xa8\xd2F\x82\xd2\xa3\xe5\xb4&\x84\xe8\x11X\x06:\xd4\xe3ou\xbd\xa3T\xb4@V\x1f\x8f\x19\xa9N\xaf0\xc7\xb7\xccQ;\xcc\x9f\x95\xcf\x92\xa6\xf1!\xf7\x02Dq6\x96\x80\xfaD\xccw*\xae\xdfl.F\x1c\x8c\xe89\x01\xf6\xe3f:\xccys\xda\xc1\xbc],\x10\x1f\xe1\xc6\x909\x88IHJ\xb0\x1a\x9f!\xa0\xcc\f+\x96\xd8\x06F\xd2\xd3\xf0\xf0\xcam\xa4:2\x81\xf8F\xce&3\x1f|\x17n<\xbdGv\xf1/\x1c\xf0f\xb8&\x959-\n\xccWw\xf3\x8dz \xee\x04\x18U\xd9\xfeZ\x1a\xe2\x9cK\fE\a\xca\xd36\xe8k8\x83\xcf\xc5D\xcc>\xb2\x9a|y\xfa\xb6\xa6\xeb\xba\xac\xd561\v\x96\xe2 #5\xf6j<\x9a\xc7KG\xa0\xdf\x82\x068k\x05\x9d\xa6\x99\xa3\x91;\xeb\xf8\xff\xae\xe6\x82N\nF\x12\xc5\xc2>k\x9a{o\xaa\xe5n\x97\t\xbd\x06\xaep\b\xc7\xc9\xa4\r\x17s\x86\xf1\x97\x84\x84jL;q\xb5UNO\x0e5\xe1A\x17\x19B\x12t\xb5\xe9]\x94\x95\xe2R\x8d$\x1bm\x9e<\x8f\x11\xab1<\x8b\\\xc1\x94\xbd\x84t\xdbs\xcf\xeb\x84\x8b\x80\xc8u\x93Q\xe2K\xcf7\xd2Y\xc0\xc2\x06\xc3\xbb\x8d\x7faO\x15\xb6ACQ$\x1a\x85\xe6y\xc2\x06\xc9\xff\xdd\xb6\x80\xd9tc\xcb\x01\x1e\xe0\x9a\xc5\x81\xa8\xd2F\x82\xd2\xa3\xe5\xb4&\x84\xe8\x11X\x06:\xd4\xe3ou\xbd\xa3T\xb4@V\x1f\x8f\x19\xa9N\xaf0\xc7\xb7\xccQ;\xcc\x9f\x95\xcf\x92\xa6\xf1!\xf7\x02Dq6\x96\x80\xfaD\xccw*\xae\xdfl.F\x1c\x8c\xe89\x01\xf6\xe3f:\xccys\xda\xc1\xbc],\x10\x1f\xe1\xc6\x909\x88IHJ\xb0\x1a\x9f!\xa0\xcc\f+\x96\xd8\x06F\xd2\xd3\xf0\xf0\xcam\xa4:2\x81\xf8F\xce&3\x1f|\x17n<\xbdGv\xf1/\x1c\xf0f\xb8&\x959-\n\xccWw\xf3\x8dz \xee\x04\x18U\xd9\xfeZ\x1a\xe2\x9cK\fE\a\xca\xd36\xe8k8\x83\xcf\xc5D\xcc>\xb2\x9a|y\xfa\xb6\xa6\xeb\xba\xac\xd561\v\x96\xe2 #5\xf6j<\x9a\xc7KG\xa0\xdf\x82\x068k\x05\x9d\xa6\x99\xa3\x91;\xeb\xf8\xff\xae\xe6\x82N\nF\x12\xc5\xc2>k\x9a{o\xaa\xe5n\x97\t\xbd\x06\xaep\b\xc7\xc9\xa4\r\x17s\x86\xf1\x97\x84\x84jL;q\xb5UNO\x0e5\xe1A\x17\x19B\x12t\xb5\xe9]\x94\x95\xe2R\x8d$\x1bm\x9e<\x8f\x11\xab1<\x8b\\\xc1\x94\xbd\x84t\xdbs\xcf\xeb\x84\x8b\x80\xc8u\x93Q\xe2K\xcf7\xd2Y\xc0\xc2\x06\xc3\xbb\x8d\x7faO\x15\xb6ACQ$\x1a\x85\xe6y\xc2\x06\xc9\xff\xdd\xb6\x80\xd9tc\xcb\x01\x1e\xe0\x9a\xc5\x81\xa8\xd2F\x82\xd2\xa3\xe5\xb4&\x84\xe8\x11X\x06:\xd4\xe3ou\xbd\xa3T\xb4@V\x1f\x8f\x19\xa9N\xaf0\xc7\xb7\xccQ;\xcc\x9f\x95\xcf\x92\xa6\xf1!\xf7\x02Dq6\x96\x80\xfaD\xccw*\xae\xdfl.F\x1c\x8c\xe89\x01\xf6\xe3f:\xccys\xda\xc1\xbc],\x10\x1f\xe1\xc6\x909\x88IHJ\xb0\x1a\x9f!\xa0\xcc\f+\x96\xd8\x06F\xd2\xd3\xf0\xf0\xcam\xa4:2\x81\xf8F\xce&3\x1f|\x17n<\xbdGv\xf1/\x1c\xf0 [ 1156.020141][T16490] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1156.099957][T16490] 8021q: adding VLAN 0 to HW filter on device team0 [ 1156.336110][ T5956] bridge0: port 1(bridge_slave_0) entered blocking state [ 1156.343374][ T5956] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1156.437094][ T5954] bridge0: port 2(bridge_slave_1) entered blocking state [ 1156.444283][ T5954] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1157.501958][T16682] FAULT_INJECTION: forcing a failure. [ 1157.501958][T16682] name failslab, interval 1, probability 0, space 0, times 0 [ 1157.527783][T16682] CPU: 0 UID: 0 PID: 16682 Comm: syz.1.2314 Not tainted syzkaller #0 PREEMPT(full) [ 1157.527835][T16682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1157.527857][T16682] Call Trace: [ 1157.527868][T16682] [ 1157.527881][T16682] dump_stack_lvl+0x16c/0x1f0 [ 1157.527926][T16682] should_fail_ex+0x512/0x640 [ 1157.527965][T16682] ? __kmalloc_noprof+0xca/0x880 [ 1157.528022][T16682] should_failslab+0xc2/0x120 [ 1157.528066][T16682] __kmalloc_noprof+0xdd/0x880 [ 1157.528119][T16682] ? sk_prot_alloc+0x1a8/0x2a0 [ 1157.528179][T16682] ? sk_prot_alloc+0x1a8/0x2a0 [ 1157.528222][T16682] sk_prot_alloc+0x1a8/0x2a0 [ 1157.528270][T16682] sk_alloc+0x36/0xc20 [ 1157.528306][T16682] __netlink_create+0x5e/0x2c0 [ 1157.528337][T16682] ? __wake_up+0x3f/0x60 [ 1157.528377][T16682] netlink_create+0x39e/0x620 [ 1157.528412][T16682] ? __pfx_genl_bind+0x10/0x10 [ 1157.528454][T16682] ? __pfx_genl_unbind+0x10/0x10 [ 1157.528496][T16682] ? __pfx_genl_release+0x10/0x10 [ 1157.528546][T16682] __sock_create+0x335/0x8d0 [ 1157.528602][T16682] __sys_socket+0x14d/0x260 [ 1157.528652][T16682] ? __pfx___sys_socket+0x10/0x10 [ 1157.528700][T16682] ? xfd_validate_state+0x61/0x180 [ 1157.528744][T16682] ? __sys_setsockopt+0x140/0x1a0 [ 1157.528787][T16682] __x64_sys_socket+0x72/0xb0 [ 1157.528836][T16682] ? lockdep_hardirqs_on+0x7c/0x110 [ 1157.528875][T16682] do_syscall_64+0xcd/0xfa0 [ 1157.528916][T16682] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1157.528950][T16682] RIP: 0033:0x7f928e38eec9 [ 1157.528977][T16682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1157.529010][T16682] RSP: 002b:00007f928f28b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 1157.529044][T16682] RAX: ffffffffffffffda RBX: 00007f928e5e5fa0 RCX: 00007f928e38eec9 [ 1157.529066][T16682] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 1157.529086][T16682] RBP: 00007f928e411f91 R08: 0000000000000000 R09: 0000000000000000 [ 1157.529106][T16682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1157.529127][T16682] R13: 00007f928e5e6038 R14: 00007f928e5e5fa0 R15: 00007fff1eb0c118 [ 1157.529224][T16682] [ 1157.839222][T16490] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1157.912873][T16490] veth0_vlan: entered promiscuous mode [ 1157.944516][T16490] veth1_vlan: entered promiscuous mode [ 1157.978977][T16490] veth0_macvtap: entered promiscuous mode [ 1157.989748][T16490] veth1_macvtap: entered promiscuous mode [ 1158.015646][T16490] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1158.070087][T16490] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1158.157233][ T5954] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1158.189965][ T5954] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1158.245296][ T5954] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1158.259293][ T5954] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1158.292176][T16692] zswap: compressor not available [ 1158.548035][T16695] random: crng reseeded on system resumption [ 1159.071709][ T5956] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1159.105737][ T5956] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1159.301654][ T6700] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1159.347951][ T6700] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1159.981176][T16730] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2319'. [ 1161.274423][T16762] random: crng reseeded on system resumption [ 1161.582149][T16766] Unrecognized hibernate image header format! [ 1161.652297][T16766] PM: hibernation: Image mismatch: architecture specific data [ 1162.200932][T16779] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 1162.324322][T16784] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2329'. [ 1162.477442][T16784] ipvlan1: entered allmulticast mode [ 1162.525962][T16784] veth0_vlan: entered allmulticast mode [ 1164.028738][T16813] random: crng reseeded on system resumption [ 1164.057116][T16809] __vm_enough_memory: pid: 16809, comm: syz.1.2332, bytes: 4398046511104 not enough memory for the allocation [ 1166.384594][ T30] audit: type=1804 audit(4294973060.413:111): pid=16843 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2339" name="/newroot/587/file0" dev="tmpfs" ino=3154 res=1 errno=0 [ 1166.915147][T16853] __vm_enough_memory: pid: 16853, comm: syz.1.2340, bytes: 4398046511104 not enough memory for the allocation [ 1167.521120][T16869] __vm_enough_memory: pid: 16869, comm: syz.2.2344, bytes: 4398046511104 not enough memory for the allocation [ 1170.998625][T16918] ubi5: attaching mtd0 [ 1171.017309][T16206] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 1171.027723][T16918] ubi5 error: validate_ec_hdr: bad VID header offset 64, expected 514 [ 1171.027944][T16206] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 1171.045295][T16206] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 1171.053894][T16206] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 1171.062070][T16206] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 1171.088290][T16918] ubi5 error: validate_ec_hdr: bad EC header [ 1171.094665][T16918] Erase counter header dump: [ 1171.100016][T16918] magic 0x55424923 [ 1171.104822][T16918] version 1 [ 1171.108691][T16918] ec 1 [ 1171.112673][T16918] vid_hdr_offset 64 [ 1171.131559][T16918] data_offset 128 [ 1171.135645][T16918] image_seq -2054972787 [ 1171.140352][T16918] hdr_crc 0x1b99a5b8 [ 1171.157219][T16918] erase counter header hexdump: [ 1171.230785][T16918] CPU: 1 UID: 0 PID: 16918 Comm: syz.0.2354 Not tainted syzkaller #0 PREEMPT(full) [ 1171.230825][T16918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1171.230846][T16918] Call Trace: [ 1171.230858][T16918] [ 1171.230871][T16918] dump_stack_lvl+0x16c/0x1f0 [ 1171.230918][T16918] validate_ec_hdr+0x28c/0x330 [ 1171.230958][T16918] ubi_io_read_ec_hdr+0x63b/0x6c0 [ 1171.231001][T16918] ubi_attach+0x601/0x4be0 [ 1171.231070][T16918] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 1171.231122][T16918] ? __pfx_ubi_msg+0x10/0x10 [ 1171.231169][T16918] ? __pfx_ubi_attach+0x10/0x10 [ 1171.231220][T16918] ? ubi_attach_mtd_dev+0x155b/0x35d0 [ 1171.231268][T16918] ? __vmalloc_node_noprof+0xad/0xf0 [ 1171.231316][T16918] ? ubi_attach_mtd_dev+0x155b/0x35d0 [ 1171.231370][T16918] ubi_attach_mtd_dev+0x15a7/0x35d0 [ 1171.231460][T16918] ? __pfx_ubi_attach_mtd_dev+0x10/0x10 [ 1171.231519][T16918] ? __pfx_get_mtd_device+0x10/0x10 [ 1171.231566][T16918] ctrl_cdev_ioctl+0x337/0x3d0 [ 1171.231614][T16918] ? __pfx_ctrl_cdev_ioctl+0x10/0x10 [ 1171.231673][T16918] ? __pfx_ctrl_cdev_ioctl+0x10/0x10 [ 1171.231721][T16918] __x64_sys_ioctl+0x18b/0x210 [ 1171.231774][T16918] do_syscall_64+0xcd/0xfa0 [ 1171.231817][T16918] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1171.231851][T16918] RIP: 0033:0x7f245d38eec9 [ 1171.231876][T16918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1171.231907][T16918] RSP: 002b:00007f245e1fa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1171.231939][T16918] RAX: ffffffffffffffda RBX: 00007f245d5e5fa0 RCX: 00007f245d38eec9 [ 1171.231958][T16918] RDX: 0000200000000080 RSI: 0000000040186f40 RDI: 0000000000000006 [ 1171.231979][T16918] RBP: 00007f245d411f91 R08: 0000000000000000 R09: 0000000000000000 [ 1171.231999][T16918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1171.232018][T16918] R13: 00007f245d5e6038 R14: 00007f245d5e5fa0 R15: 00007fffdf3ff958 [ 1171.232063][T16918] [ 1171.524101][T16918] ubi5 error: ubi_io_read_ec_hdr: validation failed for PEB 0 [ 1171.654426][T16918] ubi5 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1172.099749][ T5956] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1172.174306][T16920] chnl_net:caif_netlink_parms(): no params data found [ 1172.275982][ T5956] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1172.459320][ T5956] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1172.619537][T16946] __vm_enough_memory: pid: 16946, comm: syz.2.2361, bytes: 4398046511104 not enough memory for the allocation [ 1172.787691][ T5956] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1172.838223][T16920] bridge0: port 1(bridge_slave_0) entered blocking state [ 1172.853925][T16920] bridge0: port 1(bridge_slave_0) entered disabled state [ 1172.879795][T16920] bridge_slave_0: entered allmulticast mode [ 1172.897685][T16954] __vm_enough_memory: pid: 16954, comm: syz.3.2363, bytes: 4398046511104 not enough memory for the allocation [ 1172.898753][T16920] bridge_slave_0: entered promiscuous mode [ 1173.030759][T16920] bridge0: port 2(bridge_slave_1) entered blocking state [ 1173.052646][T16920] bridge0: port 2(bridge_slave_1) entered disabled state [ 1173.070801][T16920] bridge_slave_1: entered allmulticast mode [ 1173.110440][T16920] bridge_slave_1: entered promiscuous mode [ 1173.142213][T16206] Bluetooth: hci4: command tx timeout [ 1173.205464][T16920] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1173.220685][T16920] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1173.338380][T16920] team0: Port device team_slave_0 added [ 1173.442931][T16920] team0: Port device team_slave_1 added [ 1173.836349][T16920] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1173.851379][T16920] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1173.968631][T16920] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1173.992486][T16920] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1174.000107][T16920] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1174.120369][T16920] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1174.212785][ T5956] bridge_slave_1: left allmulticast mode [ 1174.236432][ T5956] bridge_slave_1: left promiscuous mode [ 1174.263448][ T5956] bridge0: port 2(bridge_slave_1) entered disabled state [ 1174.570435][ T5956] bridge_slave_0: left allmulticast mode [ 1174.583457][ T5956] bridge_slave_0: left promiscuous mode [ 1174.629352][ T5956] bridge0: port 1(bridge_slave_0) entered disabled state [ 1175.018073][T16981] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2367'. [ 1175.228094][T16206] Bluetooth: hci4: command tx timeout [ 1175.500417][ T5956] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1175.512148][ T5956] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1175.522543][ T5956] bond0 (unregistering): Released all slaves [ 1175.698392][ T5956] HfR: left promiscuous mode [ 1175.766736][T16920] hsr_slave_0: entered promiscuous mode [ 1175.778783][T16920] hsr_slave_1: entered promiscuous mode [ 1175.785417][T16920] debugfs: 'hsr0' already exists in 'hsr' [ 1175.795929][T16920] Cannot create hsr debugfs directory [ 1176.911179][T17011] __vm_enough_memory: pid: 17011, comm: syz.2.2371, bytes: 4398046511104 not enough memory for the allocation [ 1177.292652][T16206] Bluetooth: hci4: command tx timeout [ 1178.894516][T16920] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 1179.280661][ T5956] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1179.318607][ T5956] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1179.358087][T16206] Bluetooth: hci4: command tx timeout [ 1179.369543][ T5956] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1179.405020][ T5956] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1179.804007][ T5956] veth1_macvtap: left promiscuous mode [ 1179.839820][ T5956] veth0_macvtap: left promiscuous mode [ 1179.860130][ T5956] veth1_vlan: left promiscuous mode [ 1179.899938][ T5956] veth0_vlan: left promiscuous mode [ 1182.124474][T16920] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 1182.167974][T16920] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 1182.211415][T16920] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 1182.447267][T16920] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1182.504576][T16920] 8021q: adding VLAN 0 to HW filter on device team0 [ 1182.566364][T14602] bridge0: port 1(bridge_slave_0) entered blocking state [ 1182.573636][T14602] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1182.622799][T14602] bridge0: port 2(bridge_slave_1) entered blocking state [ 1182.630060][T14602] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1182.750718][T17098] FAULT_INJECTION: forcing a failure. [ 1182.750718][T17098] name failslab, interval 1, probability 0, space 0, times 0 [ 1182.812554][T17098] CPU: 0 UID: 0 PID: 17098 Comm: syz.0.2381 Not tainted syzkaller #0 PREEMPT(full) [ 1182.812599][T17098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1182.812621][T17098] Call Trace: [ 1182.812632][T17098] [ 1182.812645][T17098] dump_stack_lvl+0x16c/0x1f0 [ 1182.812690][T17098] should_fail_ex+0x512/0x640 [ 1182.812731][T17098] ? __kmalloc_cache_noprof+0x5f/0x780 [ 1182.812789][T17098] should_failslab+0xc2/0x120 [ 1182.812837][T17098] __kmalloc_cache_noprof+0x72/0x780 [ 1182.812895][T17098] ? apply_wqattrs_prepare+0x130/0xbd0 [ 1182.812952][T17098] ? apply_wqattrs_prepare+0x130/0xbd0 [ 1182.812989][T17098] apply_wqattrs_prepare+0x130/0xbd0 [ 1182.813043][T17098] apply_workqueue_attrs_locked+0x64/0xe0 [ 1182.813085][T17098] __alloc_workqueue+0xf3f/0x1810 [ 1182.813145][T17098] alloc_workqueue_noprof+0xd2/0x200 [ 1182.813192][T17098] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 1182.813244][T17098] ? rcu_is_watching+0x12/0xc0 [ 1182.813288][T17098] ? trace_kmalloc+0x2b/0xd0 [ 1182.813330][T17098] ? __kmalloc_noprof+0x34f/0x880 [ 1182.813383][T17098] ? ieee80211_register_hw+0x15c9/0x4120 [ 1182.813440][T17098] ieee80211_register_hw+0x1f1a/0x4120 [ 1182.813503][T17098] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 1182.813547][T17098] ? __pfx___debug_object_init+0x10/0x10 [ 1182.813589][T17098] ? find_held_lock+0x2b/0x80 [ 1182.813624][T17098] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1182.813682][T17098] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 1182.813717][T17098] ? __hrtimer_setup+0x176/0x280 [ 1182.813774][T17098] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 1182.813849][T17098] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 1182.813922][T17098] hwsim_new_radio_nl+0xba2/0x1330 [ 1182.813978][T17098] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1182.814042][T17098] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 1182.814096][T17098] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 1182.814157][T17098] genl_family_rcv_msg_doit+0x209/0x2f0 [ 1182.814212][T17098] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 1182.814276][T17098] ? bpf_lsm_capable+0x9/0x10 [ 1182.814320][T17098] ? security_capable+0x7e/0x260 [ 1182.814367][T17098] ? ns_capable+0xd7/0x110 [ 1182.814407][T17098] genl_rcv_msg+0x55c/0x800 [ 1182.814462][T17098] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1182.814513][T17098] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1182.814567][T17098] ? __lock_acquire+0x62e/0x1ce0 [ 1182.814622][T17098] netlink_rcv_skb+0x155/0x420 [ 1182.814665][T17098] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1182.814718][T17098] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1182.814777][T17098] ? netlink_deliver_tap+0x1ae/0xd30 [ 1182.814822][T17098] genl_rcv+0x28/0x40 [ 1182.814865][T17098] netlink_unicast+0x5aa/0x870 [ 1182.814924][T17098] ? __pfx_netlink_unicast+0x10/0x10 [ 1182.814985][T17098] netlink_sendmsg+0x8c8/0xdd0 [ 1182.815036][T17098] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1182.815086][T17098] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 1182.815141][T17098] ____sys_sendmsg+0xa98/0xc70 [ 1182.815192][T17098] ? copy_msghdr_from_user+0x10a/0x160 [ 1182.815233][T17098] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1182.815296][T17098] ? __pfx_futex_wake_mark+0x10/0x10 [ 1182.815359][T17098] ___sys_sendmsg+0x134/0x1d0 [ 1182.815403][T17098] ? __pfx____sys_sendmsg+0x10/0x10 [ 1182.815504][T17098] __sys_sendmsg+0x16d/0x220 [ 1182.815547][T17098] ? __pfx___sys_sendmsg+0x10/0x10 [ 1182.815587][T17098] ? __x64_sys_futex+0x1e0/0x4c0 [ 1182.815663][T17098] do_syscall_64+0xcd/0xfa0 [ 1182.815707][T17098] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1182.815743][T17098] RIP: 0033:0x7f245d38eec9 [ 1182.815770][T17098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1182.815806][T17098] RSP: 002b:00007f245e1d9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1182.815840][T17098] RAX: ffffffffffffffda RBX: 00007f245d5e6090 RCX: 00007f245d38eec9 [ 1182.815863][T17098] RDX: 0000000004040040 RSI: 0000200000000300 RDI: 0000000000000006 [ 1182.815885][T17098] RBP: 00007f245d411f91 R08: 0000000000000000 R09: 0000000000000000 [ 1182.815906][T17098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1182.815935][T17098] R13: 00007f245d5e6128 R14: 00007f245d5e6090 R15: 00007fffdf3ff958 [ 1182.815984][T17098] [ 1183.430751][T17108] FAULT_INJECTION: forcing a failure. [ 1183.430751][T17108] name failslab, interval 1, probability 0, space 0, times 0 [ 1183.444309][T17108] CPU: 0 UID: 0 PID: 17108 Comm: syz.2.2385 Not tainted syzkaller #0 PREEMPT(full) [ 1183.444353][T17108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1183.444372][T17108] Call Trace: [ 1183.444384][T17108] [ 1183.444396][T17108] dump_stack_lvl+0x16c/0x1f0 [ 1183.444440][T17108] should_fail_ex+0x512/0x640 [ 1183.444482][T17108] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 1183.444520][T17108] should_failslab+0xc2/0x120 [ 1183.444563][T17108] kmem_cache_alloc_noprof+0x75/0x6e0 [ 1183.444595][T17108] ? ioctx_alloc+0x1a4/0x2120 [ 1183.444640][T17108] ? ioctx_alloc+0x1a4/0x2120 [ 1183.444672][T17108] ioctx_alloc+0x1a4/0x2120 [ 1183.444722][T17108] ? find_held_lock+0x2b/0x80 [ 1183.444758][T17108] ? __pfx_ioctx_alloc+0x10/0x10 [ 1183.444793][T17108] ? __might_fault+0x13b/0x190 [ 1183.444838][T17108] __x64_sys_io_setup+0xc9/0x210 [ 1183.444878][T17108] do_syscall_64+0xcd/0xfa0 [ 1183.444929][T17108] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1183.444964][T17108] RIP: 0033:0x7fc451d8eec9 [ 1183.444990][T17108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1183.445023][T17108] RSP: 002b:00007fc452c89038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 1183.445054][T17108] RAX: ffffffffffffffda RBX: 00007fc451fe5fa0 RCX: 00007fc451d8eec9 [ 1183.445078][T17108] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000fff4 [ 1183.445100][T17108] RBP: 00007fc451e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1183.445121][T17108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1183.445153][T17108] R13: 00007fc451fe6038 R14: 00007fc451fe5fa0 R15: 00007ffdf16db288 [ 1183.445197][T17108] [ 1183.779912][T16920] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1183.825818][T16920] veth0_vlan: entered promiscuous mode [ 1183.838407][T16920] veth1_vlan: entered promiscuous mode [ 1183.953362][T16920] veth0_macvtap: entered promiscuous mode [ 1183.966287][T16920] veth1_macvtap: entered promiscuous mode [ 1184.018847][T16920] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1184.066383][T16920] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1184.117696][T17117] FAULT_INJECTION: forcing a failure. [ 1184.117696][T17117] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1184.142301][T17117] CPU: 0 UID: 0 PID: 17117 Comm: syz.2.2386 Not tainted syzkaller #0 PREEMPT(full) [ 1184.142355][T17117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1184.142376][T17117] Call Trace: [ 1184.142386][T17117] [ 1184.142399][T17117] dump_stack_lvl+0x16c/0x1f0 [ 1184.142443][T17117] should_fail_ex+0x512/0x640 [ 1184.142490][T17117] strncpy_from_user+0x3b/0x2e0 [ 1184.142532][T17117] getname_flags.part.0+0x8f/0x550 [ 1184.142588][T17117] getname_flags+0x93/0xf0 [ 1184.142625][T17117] do_sys_openat2+0xb8/0x1d0 [ 1184.142674][T17117] ? __pfx_do_sys_openat2+0x10/0x10 [ 1184.142726][T17117] ? __sys_connect+0xe0/0x160 [ 1184.142771][T17117] __x64_sys_openat+0x174/0x210 [ 1184.142825][T17117] ? __pfx___x64_sys_openat+0x10/0x10 [ 1184.142901][T17117] do_syscall_64+0xcd/0xfa0 [ 1184.142946][T17117] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1184.142981][T17117] RIP: 0033:0x7fc451d8eec9 [ 1184.143007][T17117] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1184.143041][T17117] RSP: 002b:00007fc452c89038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1184.143073][T17117] RAX: ffffffffffffffda RBX: 00007fc451fe5fa0 RCX: 00007fc451d8eec9 [ 1184.143102][T17117] RDX: 0000000000008000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1184.143125][T17117] RBP: 00007fc451e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1184.143145][T17117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1184.143167][T17117] R13: 00007fc451fe6038 R14: 00007fc451fe5fa0 R15: 00007ffdf16db288 [ 1184.143213][T17117] [ 1184.545046][T17118] __vm_enough_memory: pid: 17118, comm: syz.2.2386, bytes: 4398046511104 not enough memory for the allocation [ 1184.565942][ T3467] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1184.696860][ T3467] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1184.707269][ T3467] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1184.718375][ T3467] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1185.074356][ T5956] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1185.129319][ T5956] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1185.322115][ T5888] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1185.322176][ T5888] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1187.222807][ T5151] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 1187.233907][ T5151] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 1187.245185][ T5151] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 1187.261959][ T5151] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 1187.270208][ T5151] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 1187.481865][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 1187.488365][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 1187.857116][T17161] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 1189.068508][T17153] chnl_net:caif_netlink_parms(): no params data found [ 1189.356733][ T5151] Bluetooth: hci1: command tx timeout [ 1189.754612][T17153] bridge0: port 1(bridge_slave_0) entered blocking state [ 1189.785534][T17153] bridge0: port 1(bridge_slave_0) entered disabled state [ 1189.807458][T17153] bridge_slave_0: entered allmulticast mode [ 1189.820419][T17153] bridge_slave_0: entered promiscuous mode [ 1189.837559][T17153] bridge0: port 2(bridge_slave_1) entered blocking state [ 1189.851167][T17153] bridge0: port 2(bridge_slave_1) entered disabled state [ 1189.909841][T17153] bridge_slave_1: entered allmulticast mode [ 1190.034838][T17153] bridge_slave_1: entered promiscuous mode [ 1190.467937][T17153] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1190.639202][T17153] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1190.831032][T17153] team0: Port device team_slave_0 added [ 1190.974601][T17153] team0: Port device team_slave_1 added [ 1191.065499][T17153] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1191.113119][T17153] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1191.197381][T17153] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1191.229110][T17153] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1191.236408][T17153] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1191.263141][T17153] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1191.376486][ T5151] Bluetooth: hci1: command tx timeout [ 1191.583121][T17153] hsr_slave_0: entered promiscuous mode [ 1191.687096][T17153] hsr_slave_1: entered promiscuous mode [ 1191.701123][T17153] debugfs: 'hsr0' already exists in 'hsr' [ 1191.714810][T17153] Cannot create hsr debugfs directory [ 1191.931699][T17217] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2403'. [ 1192.211015][T17217] team0: Port device team_slave_1 removed [ 1192.834746][T17153] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1193.188353][T17153] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1193.205271][T17237] __vm_enough_memory: pid: 17237, comm: syz.3.2411, bytes: 4398046511104 not enough memory for the allocation [ 1193.409087][T17153] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1193.446737][ T5151] Bluetooth: hci1: command tx timeout [ 1193.596612][T17153] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1194.062936][T17153] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1194.113586][T17153] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1194.137089][T17153] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1194.165158][T17153] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1194.264605][T17256] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2415'. [ 1194.548266][T17256] team0: Port device team_slave_1 removed [ 1194.822060][T17265] __vm_enough_memory: pid: 17265, comm: syz.2.2416, bytes: 4398046511104 not enough memory for the allocation [ 1194.864853][T17153] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1194.915503][T17153] 8021q: adding VLAN 0 to HW filter on device team0 [ 1195.004331][T16411] bridge0: port 1(bridge_slave_0) entered blocking state [ 1195.011590][T16411] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1195.065115][ T5956] bridge0: port 2(bridge_slave_1) entered blocking state [ 1195.072345][ T5956] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1195.517042][ T5151] Bluetooth: hci1: command tx timeout [ 1196.198268][T17153] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1196.249278][T17153] veth0_vlan: entered promiscuous mode [ 1196.262263][T17153] veth1_vlan: entered promiscuous mode [ 1196.327140][T17292] __vm_enough_memory: pid: 17292, comm: syz.1.2421, bytes: 4398046511104 not enough memory for the allocation [ 1196.556679][T17153] veth0_macvtap: entered promiscuous mode [ 1196.613791][T17153] veth1_macvtap: entered promiscuous mode [ 1196.758856][T17153] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1196.788366][T17153] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1196.915754][ T5956] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1196.950709][ T5956] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1197.056819][ T5956] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1197.086572][ T5956] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1197.295454][ T5888] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1197.305321][ T5888] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1197.402881][ T5888] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1197.422448][T17302] __vm_enough_memory: pid: 17302, comm: syz.1.2424, bytes: 4398046511104 not enough memory for the allocation [ 1197.441646][ T5888] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1198.995956][T17330] FAULT_INJECTION: forcing a failure. [ 1198.995956][T17330] name failslab, interval 1, probability 0, space 0, times 0 [ 1199.009030][T17330] CPU: 1 UID: 0 PID: 17330 Comm: syz.1.2428 Not tainted syzkaller #0 PREEMPT(full) [ 1199.009062][T17330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1199.009076][T17330] Call Trace: [ 1199.009084][T17330] [ 1199.009093][T17330] dump_stack_lvl+0x16c/0x1f0 [ 1199.009124][T17330] should_fail_ex+0x512/0x640 [ 1199.009153][T17330] ? __kmalloc_cache_noprof+0x5f/0x780 [ 1199.009195][T17330] should_failslab+0xc2/0x120 [ 1199.009246][T17330] __kmalloc_cache_noprof+0x72/0x780 [ 1199.009286][T17330] ? percpu_ref_init+0xec/0x410 [ 1199.009315][T17330] ? percpu_ref_init+0xec/0x410 [ 1199.009336][T17330] ? __pfx_free_ioctx_users+0x10/0x10 [ 1199.009361][T17330] percpu_ref_init+0xec/0x410 [ 1199.009382][T17330] ? __init_waitqueue_head+0xca/0x150 [ 1199.009425][T17330] ioctx_alloc+0x2db/0x2120 [ 1199.009463][T17330] ? find_held_lock+0x2b/0x80 [ 1199.009488][T17330] ? __pfx_ioctx_alloc+0x10/0x10 [ 1199.009512][T17330] ? __might_fault+0x13b/0x190 [ 1199.009545][T17330] __x64_sys_io_setup+0xc9/0x210 [ 1199.009575][T17330] do_syscall_64+0xcd/0xfa0 [ 1199.009605][T17330] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1199.009629][T17330] RIP: 0033:0x7f5c3c18eec9 [ 1199.009648][T17330] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1199.009672][T17330] RSP: 002b:00007f5c3d052038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 1199.009695][T17330] RAX: ffffffffffffffda RBX: 00007f5c3c3e5fa0 RCX: 00007f5c3c18eec9 [ 1199.009714][T17330] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000fff4 [ 1199.009729][T17330] RBP: 00007f5c3c211f91 R08: 0000000000000000 R09: 0000000000000000 [ 1199.009744][T17330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1199.009758][T17330] R13: 00007f5c3c3e6038 R14: 00007f5c3c3e5fa0 R15: 00007ffe726c7c38 [ 1199.009791][T17330] [ 1199.907368][T17343] FAULT_INJECTION: forcing a failure. [ 1199.907368][T17343] name failslab, interval 1, probability 0, space 0, times 0 [ 1200.026076][T17343] CPU: 0 UID: 0 PID: 17343 Comm: syz.1.2432 Not tainted syzkaller #0 PREEMPT(full) [ 1200.026118][T17343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1200.026138][T17343] Call Trace: [ 1200.026149][T17343] [ 1200.026178][T17343] dump_stack_lvl+0x16c/0x1f0 [ 1200.026223][T17343] should_fail_ex+0x512/0x640 [ 1200.026263][T17343] ? __kmalloc_cache_noprof+0x5f/0x780 [ 1200.026321][T17343] should_failslab+0xc2/0x120 [ 1200.026365][T17343] __kmalloc_cache_noprof+0x72/0x780 [ 1200.026419][T17343] ? genl_start+0x1e8/0x980 [ 1200.026472][T17343] ? genl_start+0x1e8/0x980 [ 1200.026515][T17343] genl_start+0x1e8/0x980 [ 1200.026568][T17343] __netlink_dump_start+0x60b/0x990 [ 1200.026617][T17343] genl_family_rcv_msg_dumpit+0x1e2/0x2e0 [ 1200.026671][T17343] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 1200.026731][T17343] ? __pfx_genl_get_cmd+0x10/0x10 [ 1200.026774][T17343] ? __pfx_genl_start+0x10/0x10 [ 1200.026816][T17343] ? __pfx_genl_dumpit+0x10/0x10 [ 1200.026858][T17343] ? __pfx_genl_done+0x10/0x10 [ 1200.026909][T17343] ? __radix_tree_lookup+0x21f/0x2c0 [ 1200.026949][T17343] genl_rcv_msg+0x46e/0x800 [ 1200.027010][T17343] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1200.027058][T17343] ? __pfx_nl802154_list_associations+0x10/0x10 [ 1200.027128][T17343] netlink_rcv_skb+0x155/0x420 [ 1200.027171][T17343] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1200.027236][T17343] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1200.027296][T17343] ? netlink_deliver_tap+0x1ae/0xd30 [ 1200.027342][T17343] genl_rcv+0x28/0x40 [ 1200.027383][T17343] netlink_unicast+0x5aa/0x870 [ 1200.027431][T17343] ? __pfx_netlink_unicast+0x10/0x10 [ 1200.027491][T17343] netlink_sendmsg+0x8c8/0xdd0 [ 1200.027542][T17343] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1200.027590][T17343] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 1200.027645][T17343] ____sys_sendmsg+0xa98/0xc70 [ 1200.027696][T17343] ? copy_msghdr_from_user+0x10a/0x160 [ 1200.027735][T17343] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1200.027806][T17343] ___sys_sendmsg+0x134/0x1d0 [ 1200.027849][T17343] ? __pfx____sys_sendmsg+0x10/0x10 [ 1200.027944][T17343] __sys_sendmsg+0x16d/0x220 [ 1200.027984][T17343] ? __pfx___sys_sendmsg+0x10/0x10 [ 1200.028061][T17343] do_syscall_64+0xcd/0xfa0 [ 1200.028103][T17343] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1200.028129][T17343] RIP: 0033:0x7f5c3c18eec9 [ 1200.028147][T17343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1200.028170][T17343] RSP: 002b:00007f5c3d052038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1200.028193][T17343] RAX: ffffffffffffffda RBX: 00007f5c3c3e5fa0 RCX: 00007f5c3c18eec9 [ 1200.028208][T17343] RDX: 0000000000000084 RSI: 0000200000000180 RDI: 0000000000000003 [ 1200.028223][T17343] RBP: 00007f5c3d052090 R08: 0000000000000000 R09: 0000000000000000 [ 1200.028260][T17343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1200.028273][T17343] R13: 00007f5c3c3e6038 R14: 00007f5c3c3e5fa0 R15: 00007ffe726c7c38 [ 1200.028311][T17343] [ 1201.238337][ T30] audit: type=1400 audit(4294973095.436:112): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=17356 comm="syz.1.2435" [ 1201.519955][T17355] sd 0:0:1:0: PR command failed: 1026 [ 1201.528207][T17355] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 1201.535392][T17355] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 1203.006997][ T30] audit: type=1400 audit(4294973097.215:113): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=17375 comm="syz.2.2440" [ 1203.629553][T17387] FAULT_INJECTION: forcing a failure. [ 1203.629553][T17387] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1203.852603][T17387] CPU: 1 UID: 0 PID: 17387 Comm: syz.0.2442 Not tainted syzkaller #0 PREEMPT(full) [ 1203.852635][T17387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1203.852650][T17387] Call Trace: [ 1203.852658][T17387] [ 1203.852666][T17387] dump_stack_lvl+0x16c/0x1f0 [ 1203.852702][T17387] should_fail_ex+0x512/0x640 [ 1203.852735][T17387] get_futex_key+0x1d0/0x1560 [ 1203.852771][T17387] ? __pfx_get_futex_key+0x10/0x10 [ 1203.852812][T17387] futex_wake+0xea/0x530 [ 1203.852852][T17387] ? __pfx_futex_wake+0x10/0x10 [ 1203.852890][T17387] ? rcu_is_watching+0x12/0xc0 [ 1203.852915][T17387] ? lockdep_hardirqs_on+0x7c/0x110 [ 1203.852941][T17387] ? l2tp_ip_connect+0x127/0x3c0 [ 1203.852962][T17387] ? __local_bh_enable_ip+0xa4/0x120 [ 1203.852989][T17387] ? l2tp_ip_connect+0x12c/0x3c0 [ 1203.853015][T17387] do_futex+0x1e3/0x350 [ 1203.853048][T17387] ? __pfx_do_futex+0x10/0x10 [ 1203.853082][T17387] ? __sys_connect+0xe0/0x160 [ 1203.853108][T17387] __x64_sys_futex+0x1e0/0x4c0 [ 1203.853145][T17387] ? __pfx___x64_sys_futex+0x10/0x10 [ 1203.853178][T17387] ? xfd_validate_state+0x61/0x180 [ 1203.853210][T17387] ? __pfx_ksys_write+0x10/0x10 [ 1203.853245][T17387] do_syscall_64+0xcd/0xfa0 [ 1203.853274][T17387] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1203.853299][T17387] RIP: 0033:0x7fc36db8eec9 [ 1203.853318][T17387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1203.853360][T17387] RSP: 002b:00007fc36eaf90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1203.853382][T17387] RAX: ffffffffffffffda RBX: 00007fc36dde5fa8 RCX: 00007fc36db8eec9 [ 1203.853398][T17387] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc36dde5fac [ 1203.853413][T17387] RBP: 00007fc36dde5fa0 R08: 00007fc36eafa000 R09: 0000000000000000 [ 1203.853428][T17387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1203.853444][T17387] R13: 00007fc36dde6038 R14: 00007ffed7d9b530 R15: 00007ffed7d9b618 [ 1203.853477][T17387] [ 1204.578017][T17395] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2443'. [ 1204.612990][T16206] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 1204.664323][T16206] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 1204.679779][T16206] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 1204.705864][ T5874] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 1204.714895][ T5874] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 1204.790066][T17402] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 1204.890980][T17404] __vm_enough_memory: pid: 17404, comm: syz.2.2445, bytes: 4398046511104 not enough memory for the allocation [ 1205.178977][T17400] FAULT_INJECTION: forcing a failure. [ 1205.178977][T17400] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1205.194462][T17400] CPU: 1 UID: 0 PID: 17400 Comm: syz.1.2443 Not tainted syzkaller #0 PREEMPT(full) [ 1205.194493][T17400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1205.194507][T17400] Call Trace: [ 1205.194516][T17400] [ 1205.194525][T17400] dump_stack_lvl+0x16c/0x1f0 [ 1205.194556][T17400] should_fail_ex+0x512/0x640 [ 1205.194592][T17400] get_futex_key+0x1d0/0x1560 [ 1205.194628][T17400] ? __pfx_get_futex_key+0x10/0x10 [ 1205.194662][T17400] ? __mutex_trylock_common+0xe9/0x250 [ 1205.194707][T17400] futex_wake+0xea/0x530 [ 1205.194747][T17400] ? __pfx_futex_wake+0x10/0x10 [ 1205.194797][T17400] do_futex+0x1e3/0x350 [ 1205.194830][T17400] ? __pfx_do_futex+0x10/0x10 [ 1205.194860][T17400] ? __might_fault+0xe3/0x190 [ 1205.194891][T17400] mm_release+0x24e/0x300 [ 1205.194918][T17400] do_exit+0x68e/0x2bf0 [ 1205.194957][T17400] ? __pfx_do_exit+0x10/0x10 [ 1205.194990][T17400] ? do_raw_spin_lock+0x12c/0x2b0 [ 1205.195026][T17400] ? find_held_lock+0x2b/0x80 [ 1205.195055][T17400] do_group_exit+0xd3/0x2a0 [ 1205.195091][T17400] get_signal+0x2671/0x26d0 [ 1205.195129][T17400] ? __pfx_get_signal+0x10/0x10 [ 1205.195156][T17400] ? do_futex+0x122/0x350 [ 1205.195189][T17400] ? __pfx_do_futex+0x10/0x10 [ 1205.195223][T17400] arch_do_signal_or_restart+0x8f/0x790 [ 1205.195256][T17400] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1205.195295][T17400] ? __task_pid_nr_ns+0x1f5/0x500 [ 1205.195359][T17400] exit_to_user_mode_loop+0x85/0x130 [ 1205.195397][T17400] do_syscall_64+0x426/0xfa0 [ 1205.195427][T17400] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1205.195452][T17400] RIP: 0033:0x7f5c3c18eec9 [ 1205.195470][T17400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1205.195494][T17400] RSP: 002b:00007f5c3d0100e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1205.195516][T17400] RAX: fffffffffffffe00 RBX: 00007f5c3c3e6188 RCX: 00007f5c3c18eec9 [ 1205.195532][T17400] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5c3c3e6188 [ 1205.195547][T17400] RBP: 00007f5c3c3e6180 R08: 0000000000000000 R09: 0000000000000000 [ 1205.195562][T17400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1205.195576][T17400] R13: 00007f5c3c3e6218 R14: 00007ffe726c7b50 R15: 00007ffe726c7c38 [ 1205.195609][T17400] [ 1205.879124][T17419] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2448'. [ 1205.951175][ T5954] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1206.104705][ T5954] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1206.171386][T17397] chnl_net:caif_netlink_parms(): no params data found [ 1206.345842][ T5954] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1206.678722][ T5954] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1206.754188][ T5151] Bluetooth: hci0: command tx timeout [ 1206.837625][T17397] bridge0: port 1(bridge_slave_0) entered blocking state [ 1206.846663][T17397] bridge0: port 1(bridge_slave_0) entered disabled state [ 1206.865973][T17397] bridge_slave_0: entered allmulticast mode [ 1206.896397][T17397] bridge_slave_0: entered promiscuous mode [ 1206.944595][T17429] random: crng reseeded on system resumption [ 1206.964350][T17397] bridge0: port 2(bridge_slave_1) entered blocking state [ 1206.971676][T17397] bridge0: port 2(bridge_slave_1) entered disabled state [ 1207.002675][T17397] bridge_slave_1: entered allmulticast mode [ 1207.026192][T17397] bridge_slave_1: entered promiscuous mode [ 1207.163276][T17397] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1207.293765][T17397] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1207.392984][T17437] binder: 17436:17437 unknown command 8 [ 1207.420035][T17437] binder: 17436:17437 ioctl c0306201 2000000000c0 returned -22 [ 1207.501647][T17397] team0: Port device team_slave_0 added [ 1207.513988][T17397] team0: Port device team_slave_1 added [ 1207.868949][ T5954] bridge_slave_1: left allmulticast mode [ 1207.876492][ T5954] bridge_slave_1: left promiscuous mode [ 1207.885245][ T5954] bridge0: port 2(bridge_slave_1) entered disabled state [ 1208.121363][ T5954] bridge_slave_0: left allmulticast mode [ 1208.127073][ T5954] bridge_slave_0: left promiscuous mode [ 1208.153278][ T5954] bridge0: port 1(bridge_slave_0) entered disabled state [ 1208.389290][T17448] __vm_enough_memory: pid: 17448, comm: syz.1.2454, bytes: 4398046511104 not enough memory for the allocation [ 1208.814550][ T5151] Bluetooth: hci0: command tx timeout [ 1210.384623][ T5954] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1210.399250][ T5954] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1210.413819][ T5954] bond0 (unregistering): Released all slaves [ 1210.525927][T17397] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1210.533346][T17397] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1210.563157][T17397] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1210.712808][T17397] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1210.721119][T17397] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1210.748603][T17397] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1210.774929][ T5954] HfR: left promiscuous mode [ 1210.894927][ T5151] Bluetooth: hci0: command tx timeout [ 1211.090063][T17397] hsr_slave_0: entered promiscuous mode [ 1211.099669][T17397] hsr_slave_1: entered promiscuous mode [ 1211.107002][T17397] debugfs: 'hsr0' already exists in 'hsr' [ 1211.112959][T17397] Cannot create hsr debugfs directory [ 1211.842012][T17493] random: crng reseeded on system resumption [ 1213.024603][ T5151] Bluetooth: hci0: command tx timeout [ 1213.727930][T17397] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 1213.815586][T17397] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 1213.927780][T17397] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 1214.069588][T17397] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 1214.124546][T17534] __vm_enough_memory: pid: 17534, comm: syz.2.2469, bytes: 4398046511104 not enough memory for the allocation [ 1214.537863][ T5954] hsr_slave_0: left promiscuous mode [ 1214.557782][ T5954] hsr_slave_1: left promiscuous mode [ 1214.565386][ T5954] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1214.594626][ T5954] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1214.617893][ T5954] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1214.632846][T17556] ubi5: attaching mtd0 [ 1214.645196][ T5954] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1214.677636][T17556] ubi5 error: validate_ec_hdr: bad VID header offset 64, expected 514 [ 1214.695446][T17556] ubi5 error: validate_ec_hdr: bad EC header [ 1214.712808][T17556] Erase counter header dump: [ 1214.750697][ T5954] veth1_macvtap: left promiscuous mode [ 1214.756347][ T5954] veth0_macvtap: left promiscuous mode [ 1214.776735][ T5954] veth1_vlan: left promiscuous mode [ 1214.800531][T17556] magic 0x55424923 [ 1214.816536][ T5954] veth0_vlan: left promiscuous mode [ 1214.822627][T17556] version 1 [ 1214.835246][T17556] ec 1 [ 1214.858362][T17556] vid_hdr_offset 64 [ 1214.878436][T17556] data_offset 128 [ 1214.890300][T17556] image_seq -2054972787 [ 1214.901422][T17556] hdr_crc 0x1b99a5b8 [ 1214.915095][T17556] erase counter header hexdump: [ 1214.929514][T17556] CPU: 0 UID: 0 PID: 17556 Comm: syz.0.2471 Not tainted syzkaller #0 PREEMPT(full) [ 1214.929554][T17556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1214.929574][T17556] Call Trace: [ 1214.929585][T17556] [ 1214.929598][T17556] dump_stack_lvl+0x16c/0x1f0 [ 1214.929643][T17556] validate_ec_hdr+0x28c/0x330 [ 1214.929683][T17556] ubi_io_read_ec_hdr+0x63b/0x6c0 [ 1214.929725][T17556] ubi_attach+0x601/0x4be0 [ 1214.929787][T17556] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 1214.929838][T17556] ? irqentry_exit+0x3b/0x90 [ 1214.929878][T17556] ? __pfx_ubi_attach+0x10/0x10 [ 1214.929930][T17556] ? ubi_attach_mtd_dev+0x155b/0x35d0 [ 1214.929976][T17556] ? __vmalloc_node_noprof+0xad/0xf0 [ 1214.930034][T17556] ? ubi_attach_mtd_dev+0x155b/0x35d0 [ 1214.930087][T17556] ubi_attach_mtd_dev+0x15a7/0x35d0 [ 1214.930155][T17556] ? __pfx_ubi_attach_mtd_dev+0x10/0x10 [ 1214.930203][T17556] ? __pfx_get_mtd_device+0x10/0x10 [ 1214.930250][T17556] ctrl_cdev_ioctl+0x337/0x3d0 [ 1214.930299][T17556] ? __pfx_ctrl_cdev_ioctl+0x10/0x10 [ 1214.930360][T17556] ? __pfx_ctrl_cdev_ioctl+0x10/0x10 [ 1214.930411][T17556] __x64_sys_ioctl+0x18b/0x210 [ 1214.930489][T17556] do_syscall_64+0xcd/0xfa0 [ 1214.930534][T17556] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1214.930569][T17556] RIP: 0033:0x7fc36db8eec9 [ 1214.930598][T17556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1214.930634][T17556] RSP: 002b:00007fc36eaf9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1214.930667][T17556] RAX: ffffffffffffffda RBX: 00007fc36dde5fa0 RCX: 00007fc36db8eec9 [ 1214.930690][T17556] RDX: 0000200000000080 RSI: 0000000040186f40 RDI: 0000000000000003 [ 1214.930712][T17556] RBP: 00007fc36dc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1214.930733][T17556] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1214.930754][T17556] R13: 00007fc36dde6038 R14: 00007fc36dde5fa0 R15: 00007ffed7d9b618 [ 1214.930803][T17556] [ 1214.932140][T17556] ubi5 error: ubi_io_read_ec_hdr: validation failed for PEB 0 [ 1215.241382][T17556] ubi5 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1215.496207][T17572] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2473'. [ 1216.056387][ T5954] team0 (unregistering): Port device team_slave_0 removed [ 1216.184832][T17581] random: crng reseeded on system resumption [ 1217.519782][T17397] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1217.596490][T17397] 8021q: adding VLAN 0 to HW filter on device team0 [ 1217.686182][ T3467] bridge0: port 1(bridge_slave_0) entered blocking state [ 1217.693397][ T3467] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1217.846829][ T5910] bridge0: port 2(bridge_slave_1) entered blocking state [ 1217.854066][ T5910] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1218.057096][T17608] random: crng reseeded on system resumption [ 1218.958514][T17397] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1219.546524][T17397] veth0_vlan: entered promiscuous mode [ 1219.639933][T17397] veth1_vlan: entered promiscuous mode [ 1219.910275][T17639] FAULT_INJECTION: forcing a failure. [ 1219.910275][T17639] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1219.927885][T17639] CPU: 1 UID: 0 PID: 17639 Comm: syz.2.2483 Not tainted syzkaller #0 PREEMPT(full) [ 1219.927926][T17639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1219.927947][T17639] Call Trace: [ 1219.927958][T17639] [ 1219.927971][T17639] dump_stack_lvl+0x16c/0x1f0 [ 1219.928016][T17639] should_fail_ex+0x512/0x640 [ 1219.928062][T17639] _copy_from_user+0x2e/0xd0 [ 1219.928107][T17639] do_fb_ioctl+0x290/0x7e0 [ 1219.928157][T17639] ? __pfx_do_fb_ioctl+0x10/0x10 [ 1219.928208][T17639] ? find_held_lock+0x2b/0x80 [ 1219.928252][T17639] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1219.928347][T17639] ? __fget_files+0x20e/0x3c0 [ 1219.928388][T17639] fb_ioctl+0xe5/0x150 [ 1219.928430][T17639] ? __pfx_fb_ioctl+0x10/0x10 [ 1219.928477][T17639] __x64_sys_ioctl+0x18b/0x210 [ 1219.928536][T17639] do_syscall_64+0xcd/0xfa0 [ 1219.928576][T17639] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1219.928610][T17639] RIP: 0033:0x7fc451d8eec9 [ 1219.928635][T17639] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1219.928667][T17639] RSP: 002b:00007fc452c89038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1219.928698][T17639] RAX: ffffffffffffffda RBX: 00007fc451fe5fa0 RCX: 00007fc451d8eec9 [ 1219.928719][T17639] RDX: 0000200000000140 RSI: 0000000000004601 RDI: 0000000000000004 [ 1219.928739][T17639] RBP: 00007fc452c89090 R08: 0000000000000000 R09: 0000000000000000 [ 1219.928759][T17639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1219.928780][T17639] R13: 00007fc451fe6038 R14: 00007fc451fe5fa0 R15: 00007ffdf16db288 [ 1219.928825][T17639] [ 1220.134892][T17628] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1220.152052][T17628] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 1220.164642][T17628] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 1220.194147][T17628] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1220.216750][T17628] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 1220.232088][T17628] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 1220.276546][T17628] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1220.303976][T17397] veth0_macvtap: entered promiscuous mode [ 1220.322785][T17628] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 1220.384511][T17397] veth1_macvtap: entered promiscuous mode [ 1220.390799][T17628] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 1220.415022][T17628] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1220.432777][T17628] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 1220.457797][T17397] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1220.463009][T17628] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 1220.503611][T17397] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1220.539533][ T6700] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1220.548403][ T6700] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1220.597946][ T6700] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1220.649204][ T6700] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1220.714123][T17650] __vm_enough_memory: pid: 17650, comm: syz.0.2487, bytes: 4398046511104 not enough memory for the allocation [ 1220.898496][T17654] __vm_enough_memory: pid: 17654, comm: syz.2.2488, bytes: 4398046511104 not enough memory for the allocation [ 1220.982434][ T5910] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1221.037743][ T5910] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1221.183871][T16411] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1221.233796][T16411] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1221.714349][ T5151] Bluetooth: hci3: command 0x0c1a tx timeout [ 1222.198058][ T5151] Bluetooth: hci4: command 0x0c1a tx timeout [ 1222.271719][ T5151] Bluetooth: hci1: command 0x0c1a tx timeout [ 1222.440686][ T5151] Bluetooth: hci0: command 0x0c1a tx timeout [ 1223.564939][T17706] __vm_enough_memory: pid: 17706, comm: syz.1.2499, bytes: 4398046511104 not enough memory for the allocation [ 1223.795392][ T5151] Bluetooth: hci3: command 0x0c1a tx timeout [ 1223.921907][T17715] FAULT_INJECTION: forcing a failure. [ 1223.921907][T17715] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1223.935594][T17715] CPU: 1 UID: 0 PID: 17715 Comm: syz.2.2500 Not tainted syzkaller #0 PREEMPT(full) [ 1223.935636][T17715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1223.935654][T17715] Call Trace: [ 1223.935665][T17715] [ 1223.935676][T17715] dump_stack_lvl+0x16c/0x1f0 [ 1223.935718][T17715] should_fail_ex+0x512/0x640 [ 1223.935764][T17715] _copy_to_user+0x32/0xd0 [ 1223.935810][T17715] mon_text_copy_to_user+0xce/0x1a0 [ 1223.935863][T17715] mon_text_read_t+0x48a/0x600 [ 1223.935914][T17715] ? __debugfs_file_get+0x1fe/0x840 [ 1223.935956][T17715] ? __pfx_mon_text_read_t+0x10/0x10 [ 1223.936016][T17715] full_proxy_read+0x12e/0x1a0 [ 1223.936056][T17715] ? __pfx_full_proxy_read+0x10/0x10 [ 1223.936099][T17715] vfs_read+0x1e1/0xcf0 [ 1223.936140][T17715] ? __pfx___mutex_lock+0x10/0x10 [ 1223.936179][T17715] ? __pfx_vfs_read+0x10/0x10 [ 1223.936225][T17715] ? __fget_files+0x20e/0x3c0 [ 1223.936279][T17715] ksys_read+0x12a/0x250 [ 1223.936314][T17715] ? __pfx_ksys_read+0x10/0x10 [ 1223.936362][T17715] do_syscall_64+0xcd/0xfa0 [ 1223.936401][T17715] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1223.936434][T17715] RIP: 0033:0x7fc451d8eec9 [ 1223.936460][T17715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1223.936491][T17715] RSP: 002b:00007fc452c26038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1223.936521][T17715] RAX: ffffffffffffffda RBX: 00007fc451fe6270 RCX: 00007fc451d8eec9 [ 1223.936544][T17715] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002 [ 1223.936563][T17715] RBP: 00007fc452c26090 R08: 0000000000000000 R09: 0000000000000000 [ 1223.936583][T17715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1223.936604][T17715] R13: 00007fc451fe6308 R14: 00007fc451fe6270 R15: 00007ffdf16db288 [ 1223.936650][T17715] [ 1224.126415][ C1] vkms_vblank_simulate: vblank timer overrun [ 1224.291737][ T5151] Bluetooth: hci4: command 0x0c1a tx timeout [ 1224.342576][ T5151] Bluetooth: hci1: command 0x0c1a tx timeout [ 1224.510972][ T5874] Bluetooth: hci0: command 0x0c1a tx timeout [ 1225.854596][ T5874] Bluetooth: hci3: command 0x0c1a tx timeout [ 1226.333413][ T5874] Bluetooth: hci4: command 0x0c1a tx timeout [ 1226.410602][ T5874] Bluetooth: hci1: command 0x0c1a tx timeout [ 1226.570809][ T5874] Bluetooth: hci0: command 0x0c1a tx timeout [ 1227.804974][T17786] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2515'. [ 1229.739956][T17823] FAULT_INJECTION: forcing a failure. [ 1229.739956][T17823] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1229.758450][T17823] CPU: 1 UID: 0 PID: 17823 Comm: syz.3.2524 Not tainted syzkaller #0 PREEMPT(full) [ 1229.758492][T17823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1229.758510][T17823] Call Trace: [ 1229.758521][T17823] [ 1229.758533][T17823] dump_stack_lvl+0x16c/0x1f0 [ 1229.758576][T17823] should_fail_ex+0x512/0x640 [ 1229.758621][T17823] should_fail_alloc_page+0xe7/0x130 [ 1229.758666][T17823] prepare_alloc_pages+0x3c2/0x610 [ 1229.758707][T17823] ? kmem_cache_alloc_lru_noprof+0x2a5/0x6e0 [ 1229.758737][T17823] ? rcu_is_watching+0x12/0xc0 [ 1229.758773][T17823] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 1229.758812][T17823] ? __lock_acquire+0x62e/0x1ce0 [ 1229.758857][T17823] ? css_rstat_updated+0x1c2/0x510 [ 1229.758893][T17823] ? __pfx_css_rstat_updated+0x10/0x10 [ 1229.758931][T17823] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1229.758970][T17823] ? rcu_is_watching+0x12/0xc0 [ 1229.759008][T17823] ? __lock_acquire+0xb97/0x1ce0 [ 1229.759052][T17823] ? __lock_acquire+0x62e/0x1ce0 [ 1229.759093][T17823] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1229.759146][T17823] ? policy_nodemask+0xea/0x4e0 [ 1229.759203][T17823] alloc_pages_mpol+0x1fb/0x550 [ 1229.759247][T17823] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1229.759290][T17823] ? filemap_get_entry+0x1a7/0x3b0 [ 1229.759328][T17823] folio_alloc_noprof+0x20/0x2d0 [ 1229.759375][T17823] filemap_alloc_folio_noprof+0x3a1/0x470 [ 1229.759415][T17823] ? filemap_add_folio+0x110/0x610 [ 1229.759448][T17823] ? __pfx_filemap_alloc_folio_noprof+0x10/0x10 [ 1229.759502][T17823] __filemap_get_folio+0x5e1/0xc30 [ 1229.759557][T17823] ioctx_alloc+0x761/0x2120 [ 1229.759607][T17823] ? __pfx_ioctx_alloc+0x10/0x10 [ 1229.759638][T17823] ? __might_fault+0x13b/0x190 [ 1229.759677][T17823] __x64_sys_io_setup+0xc9/0x210 [ 1229.759713][T17823] do_syscall_64+0xcd/0xfa0 [ 1229.759752][T17823] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1229.759784][T17823] RIP: 0033:0x7fae3fd8eec9 [ 1229.759809][T17823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1229.759841][T17823] RSP: 002b:00007fae40ca4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 1229.759870][T17823] RAX: ffffffffffffffda RBX: 00007fae3ffe5fa0 RCX: 00007fae3fd8eec9 [ 1229.759890][T17823] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000fff4 [ 1229.759909][T17823] RBP: 00007fae3fe11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1229.759928][T17823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1229.759947][T17823] R13: 00007fae3ffe6038 R14: 00007fae3ffe5fa0 R15: 00007fff5f561318 [ 1229.759987][T17823] [ 1230.340904][T17828] FAULT_INJECTION: forcing a failure. [ 1230.340904][T17828] name failslab, interval 1, probability 0, space 0, times 0 [ 1230.374231][T17828] CPU: 1 UID: 0 PID: 17828 Comm: syz.0.2528 Not tainted syzkaller #0 PREEMPT(full) [ 1230.374281][T17828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1230.374303][T17828] Call Trace: [ 1230.374316][T17828] [ 1230.374329][T17828] dump_stack_lvl+0x16c/0x1f0 [ 1230.374375][T17828] should_fail_ex+0x512/0x640 [ 1230.374411][T17828] ? __kmalloc_cache_node_noprof+0x62/0x7a0 [ 1230.374450][T17828] should_failslab+0xc2/0x120 [ 1230.374488][T17828] __kmalloc_cache_node_noprof+0x75/0x7a0 [ 1230.374522][T17828] ? __get_vm_area_node+0x101/0x330 [ 1230.374567][T17828] ? __get_vm_area_node+0x101/0x330 [ 1230.374603][T17828] __get_vm_area_node+0x101/0x330 [ 1230.374646][T17828] __vmalloc_node_range_noprof+0x271/0x1480 [ 1230.374688][T17828] ? kernel_clone+0xfc/0x930 [ 1230.374733][T17828] ? kernel_clone+0xfc/0x930 [ 1230.374777][T17828] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 1230.374827][T17828] ? rcu_is_watching+0x12/0xc0 [ 1230.374860][T17828] ? kernel_clone+0xfc/0x930 [ 1230.374893][T17828] __vmalloc_node_noprof+0xad/0xf0 [ 1230.374933][T17828] ? kernel_clone+0xfc/0x930 [ 1230.374971][T17828] copy_process+0x2c77/0x76a0 [ 1230.375014][T17828] ? __pfx___futex_wait+0x10/0x10 [ 1230.375075][T17828] ? __pfx_copy_process+0x10/0x10 [ 1230.375111][T17828] ? futex_private_hash_put+0x176/0x300 [ 1230.375153][T17828] ? futex_private_hash_put+0x18a/0x300 [ 1230.375195][T17828] kernel_clone+0xfc/0x930 [ 1230.375234][T17828] ? __pfx_kernel_clone+0x10/0x10 [ 1230.375289][T17828] __do_sys_clone+0xce/0x120 [ 1230.375323][T17828] ? __pfx___do_sys_clone+0x10/0x10 [ 1230.375375][T17828] ? xfd_validate_state+0x61/0x180 [ 1230.375414][T17828] ? __pfx_ksys_write+0x10/0x10 [ 1230.375454][T17828] do_syscall_64+0xcd/0xfa0 [ 1230.375490][T17828] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1230.375518][T17828] RIP: 0033:0x7fc36db8eec9 [ 1230.375541][T17828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1230.375570][T17828] RSP: 002b:00007fc36eaf8fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1230.375609][T17828] RAX: ffffffffffffffda RBX: 00007fc36dde5fa0 RCX: 00007fc36db8eec9 [ 1230.375627][T17828] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020300000 [ 1230.375644][T17828] RBP: 00007fc36dc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1230.375661][T17828] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 1230.375678][T17828] R13: 00007fc36dde6038 R14: 00007fc36dde5fa0 R15: 00007ffed7d9b618 [ 1230.375714][T17828] [ 1230.375732][T17828] syz.0.2528: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 1230.687999][T17828] CPU: 1 UID: 0 PID: 17828 Comm: syz.0.2528 Not tainted syzkaller #0 PREEMPT(full) [ 1230.688045][T17828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1230.688068][T17828] Call Trace: [ 1230.688080][T17828] [ 1230.688092][T17828] dump_stack_lvl+0x16c/0x1f0 [ 1230.688141][T17828] warn_alloc+0x248/0x3a0 [ 1230.688178][T17828] ? __pfx_warn_alloc+0x10/0x10 [ 1230.688210][T17828] ? rcu_is_watching+0x12/0xc0 [ 1230.688251][T17828] ? trace_kmalloc+0x2b/0xd0 [ 1230.688304][T17828] ? __get_vm_area_node+0x101/0x330 [ 1230.688352][T17828] ? __kasan_kmalloc+0x8a/0xb0 [ 1230.688389][T17828] ? __get_vm_area_node+0x208/0x330 [ 1230.688441][T17828] __vmalloc_node_range_noprof+0xaf5/0x1480 [ 1230.688520][T17828] ? kernel_clone+0xfc/0x930 [ 1230.688573][T17828] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 1230.688634][T17828] ? rcu_is_watching+0x12/0xc0 [ 1230.688674][T17828] ? kernel_clone+0xfc/0x930 [ 1230.688715][T17828] __vmalloc_node_noprof+0xad/0xf0 [ 1230.688775][T17828] ? kernel_clone+0xfc/0x930 [ 1230.688820][T17828] copy_process+0x2c77/0x76a0 [ 1230.688861][T17828] ? __pfx___futex_wait+0x10/0x10 [ 1230.688949][T17828] ? __pfx_copy_process+0x10/0x10 [ 1230.689000][T17828] ? futex_private_hash_put+0x176/0x300 [ 1230.689051][T17828] ? futex_private_hash_put+0x18a/0x300 [ 1230.689104][T17828] kernel_clone+0xfc/0x930 [ 1230.689151][T17828] ? __pfx_kernel_clone+0x10/0x10 [ 1230.689221][T17828] __do_sys_clone+0xce/0x120 [ 1230.689265][T17828] ? __pfx___do_sys_clone+0x10/0x10 [ 1230.689328][T17828] ? xfd_validate_state+0x61/0x180 [ 1230.689374][T17828] ? __pfx_ksys_write+0x10/0x10 [ 1230.689426][T17828] do_syscall_64+0xcd/0xfa0 [ 1230.689469][T17828] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1230.689504][T17828] RIP: 0033:0x7fc36db8eec9 [ 1230.689531][T17828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1230.689566][T17828] RSP: 002b:00007fc36eaf8fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1230.689599][T17828] RAX: ffffffffffffffda RBX: 00007fc36dde5fa0 RCX: 00007fc36db8eec9 [ 1230.689621][T17828] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020300000 [ 1230.689642][T17828] RBP: 00007fc36dc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1230.689662][T17828] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 1230.689684][T17828] R13: 00007fc36dde6038 R14: 00007fc36dde5fa0 R15: 00007ffed7d9b618 [ 1230.689731][T17828] [ 1231.001752][T17828] Mem-Info: [ 1231.005054][T17828] active_anon:17600 inactive_anon:0 isolated_anon:0 [ 1231.005054][T17828] active_file:5561 inactive_file:55419 isolated_file:0 [ 1231.005054][T17828] unevictable:780 dirty:919 writeback:0 [ 1231.005054][T17828] slab_reclaimable:11884 slab_unreclaimable:96943 [ 1231.005054][T17828] mapped:27795 shmem:1357 pagetables:1086 [ 1231.005054][T17828] sec_pagetables:0 bounce:0 [ 1231.005054][T17828] kernel_misc_reclaimable:0 [ 1231.005054][T17828] free:1311186 free_pcp:10111 free_cma:0 [ 1231.099442][T17828] Node 0 active_anon:76552kB inactive_anon:0kB active_file:22244kB inactive_file:223340kB unevictable:1584kB isolated(anon):0kB isolated(file):0kB mapped:111280kB dirty:3676kB writeback:0kB shmem:3892kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:53248kB kernel_stack:11568kB pagetables:4216kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 1231.178413][T17828] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:128kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 1231.244319][T17828] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1231.305163][T17828] lowmem_reserve[]: 0 2484 2485 2485 2485 [ 1231.325612][T17828] Node 0 DMA32 free:1312512kB boost:0kB min:34352kB low:42940kB high:51528kB reserved_highatomic:0KB free_highatomic:0KB active_anon:78852kB inactive_anon:0kB active_file:22244kB inactive_file:225540kB unevictable:1584kB writepending:3676kB zspages:0kB present:3129332kB managed:2543668kB mlocked:48kB bounce:0kB free_pcp:31288kB local_pcp:20576kB free_cma:0kB [ 1231.455566][T17828] lowmem_reserve[]: 0 0 1 1 1 [ 1231.490120][T17828] Node 0 Normal free:4kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1231.520875][T17828] lowmem_reserve[]: 0 0 0 0 0 [ 1231.525908][T17828] Node 1 Normal free:3915068kB boost:0kB min:55524kB low:69404kB high:83284kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:500kB local_pcp:0kB free_cma:0kB [ 1231.565364][T17828] lowmem_reserve[]: 0 0 0 0 0 [ 1231.590610][T17828] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 1231.611447][T17828] Node 0 DMA32: 1826*4kB (UME) 1566*8kB (UME) 1172*16kB (UME) 576*32kB (UM) 530*64kB (UME) 431*128kB (UME) 271*256kB (UME) 130*512kB (UME) 63*1024kB (UME) 6*2048kB (UM) 234*4096kB (UM) = 1317304kB [ 1231.632414][T17828] Node 0 Normal: 1*4kB (U) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB [ 1231.632577][T17828] Node 1 Normal: 106*4kB (UME) 40*8kB (UME) 41*16kB (UME) 224*32kB (UME) 99*64kB (UME) 34*128kB (UME) 17*256kB (UM) 5*512kB (UME) 4*1024kB (UME) 1*2048kB (E) 948*4096kB (ME) = 3915320kB [ 1231.632812][T17828] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1231.632837][T17828] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 1231.632860][T17828] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1231.632884][T17828] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 1231.632906][T17828] 63369 total pagecache pages [ 1231.632918][T17828] 0 pages in swap cache [ 1231.632928][T17828] Free swap = 124996kB [ 1231.632938][T17828] Total swap = 124996kB [ 1231.632950][T17828] 2097051 pages RAM [ 1231.632960][T17828] 0 pages HighMem/MovableOnly [ 1231.632970][T17828] 429044 pages reserved [ 1231.632980][T17828] 0 pages cma reserved [ 1231.843616][T17854] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2533'. [ 1231.905379][T17854] hub 8-0:1.0: USB hub found [ 1231.911575][T17854] hub 8-0:1.0: 1 port detected [ 1232.337412][ T30] audit: type=1400 audit(4294973126.687:114): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=17861 comm="syz.0.2534" [ 1233.174561][T17873] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 1233.627726][T17887] FAULT_INJECTION: forcing a failure. [ 1233.627726][T17887] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1233.627763][T17887] CPU: 0 UID: 0 PID: 17887 Comm: syz.0.2540 Not tainted syzkaller #0 PREEMPT(full) [ 1233.627793][T17887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1233.627809][T17887] Call Trace: [ 1233.627817][T17887] [ 1233.627826][T17887] dump_stack_lvl+0x16c/0x1f0 [ 1233.627858][T17887] should_fail_ex+0x512/0x640 [ 1233.627894][T17887] should_fail_alloc_page+0xe7/0x130 [ 1233.627930][T17887] prepare_alloc_pages+0x3c2/0x610 [ 1233.627967][T17887] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 1233.628001][T17887] ? find_held_lock+0x2b/0x80 [ 1233.628028][T17887] ? is_bpf_text_address+0x8a/0x1a0 [ 1233.628070][T17887] ? bpf_ksym_find+0x124/0x1c0 [ 1233.628098][T17887] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1233.628124][T17887] ? is_bpf_text_address+0x94/0x1a0 [ 1233.628159][T17887] ? kernel_text_address+0x8d/0x100 [ 1233.628198][T17887] ? __lock_acquire+0x62e/0x1ce0 [ 1233.628229][T17887] ? __kernel_text_address+0xd/0x40 [ 1233.628251][T17887] ? unwind_get_return_address+0x59/0xa0 [ 1233.628289][T17887] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1233.628332][T17887] ? policy_nodemask+0xea/0x4e0 [ 1233.628371][T17887] alloc_pages_mpol+0x1fb/0x550 [ 1233.628405][T17887] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1233.628437][T17887] ? kasan_save_stack+0x33/0x60 [ 1233.628464][T17887] ? kasan_save_track+0x14/0x30 [ 1233.628498][T17887] ? __kasan_kmalloc+0xaa/0xb0 [ 1233.628523][T17887] ? __get_vm_area_node+0x101/0x330 [ 1233.628561][T17887] alloc_pages_noprof+0x131/0x390 [ 1233.628595][T17887] get_free_pages_noprof+0x10/0xb0 [ 1233.628624][T17887] kasan_populate_vmalloc+0x9f/0x2d0 [ 1233.628650][T17887] ? alloc_vmap_area+0x8b5/0x29e0 [ 1233.628686][T17887] alloc_vmap_area+0x960/0x29e0 [ 1233.628730][T17887] ? __pfx_alloc_vmap_area+0x10/0x10 [ 1233.628769][T17887] __get_vm_area_node+0x1ca/0x330 [ 1233.628808][T17887] __vmalloc_node_range_noprof+0x271/0x1480 [ 1233.628844][T17887] ? kernel_clone+0xfc/0x930 [ 1233.628883][T17887] ? kernel_clone+0xfc/0x930 [ 1233.628920][T17887] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 1233.628963][T17887] ? rcu_is_watching+0x12/0xc0 [ 1233.628991][T17887] ? kernel_clone+0xfc/0x930 [ 1233.629020][T17887] __vmalloc_node_noprof+0xad/0xf0 [ 1233.629060][T17887] ? kernel_clone+0xfc/0x930 [ 1233.629094][T17887] copy_process+0x2c77/0x76a0 [ 1233.629124][T17887] ? __pfx___futex_wait+0x10/0x10 [ 1233.629163][T17887] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 1233.629189][T17887] ? lockdep_hardirqs_on+0x7c/0x110 [ 1233.629225][T17887] ? __pfx_copy_process+0x10/0x10 [ 1233.629255][T17887] ? futex_private_hash_put+0x176/0x300 [ 1233.629291][T17887] ? futex_private_hash_put+0x18a/0x300 [ 1233.629327][T17887] kernel_clone+0xfc/0x930 [ 1233.629360][T17887] ? __pfx_kernel_clone+0x10/0x10 [ 1233.629408][T17887] __do_sys_clone+0xce/0x120 [ 1233.629438][T17887] ? __pfx___do_sys_clone+0x10/0x10 [ 1233.629483][T17887] ? xfd_validate_state+0x61/0x180 [ 1233.629517][T17887] ? __pfx_ksys_write+0x10/0x10 [ 1233.629553][T17887] do_syscall_64+0xcd/0xfa0 [ 1233.629583][T17887] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1233.629607][T17887] RIP: 0033:0x7fc36db8eec9 [ 1233.629626][T17887] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1233.629651][T17887] RSP: 002b:00007fc36eaf8fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1233.629673][T17887] RAX: ffffffffffffffda RBX: 00007fc36dde5fa0 RCX: 00007fc36db8eec9 [ 1233.629689][T17887] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020300000 [ 1233.629704][T17887] RBP: 00007fc36dc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1233.629718][T17887] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 1233.629733][T17887] R13: 00007fc36dde6038 R14: 00007fc36dde5fa0 R15: 00007ffed7d9b618 [ 1233.629765][T17887] [ 1236.362843][T17927] random: crng reseeded on system resumption [ 1236.472624][T17927] Unrecognized hibernate image header format! [ 1236.505021][T17927] PM: hibernation: Image mismatch: architecture specific data [ 1236.717227][T17930] Unrecognized hibernate image header format! [ 1236.723678][T17930] PM: hibernation: Image mismatch: architecture specific data [ 1236.734145][T17934] FAULT_INJECTION: forcing a failure. [ 1236.734145][T17934] name failslab, interval 1, probability 0, space 0, times 0 [ 1236.748989][T17934] CPU: 0 UID: 0 PID: 17934 Comm: syz.3.2549 Not tainted syzkaller #0 PREEMPT(full) [ 1236.749030][T17934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1236.749049][T17934] Call Trace: [ 1236.749061][T17934] [ 1236.749074][T17934] dump_stack_lvl+0x16c/0x1f0 [ 1236.749118][T17934] should_fail_ex+0x512/0x640 [ 1236.749160][T17934] ? __kmalloc_cache_noprof+0x5f/0x780 [ 1236.749220][T17934] should_failslab+0xc2/0x120 [ 1236.749265][T17934] __kmalloc_cache_noprof+0x72/0x780 [ 1236.749324][T17934] ? net_alloc_generic+0x1e/0x70 [ 1236.749365][T17934] ? copy_net_ns+0xe9/0x690 [ 1236.749406][T17934] ? copy_net_ns+0x136/0x690 [ 1236.749457][T17934] ? copy_net_ns+0x136/0x690 [ 1236.749500][T17934] copy_net_ns+0x136/0x690 [ 1236.749542][T17934] ? copy_cgroup_ns+0x71/0x6b0 [ 1236.749586][T17934] create_new_namespaces+0x3ea/0xa90 [ 1236.749636][T17934] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1236.749680][T17934] ksys_unshare+0x45b/0xa40 [ 1236.749727][T17934] ? __pfx_ksys_unshare+0x10/0x10 [ 1236.749773][T17934] ? xfd_validate_state+0x61/0x180 [ 1236.749843][T17934] __x64_sys_unshare+0x31/0x40 [ 1236.749889][T17934] do_syscall_64+0xcd/0xfa0 [ 1236.749936][T17934] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1236.749971][T17934] RIP: 0033:0x7fae3fd8eec9 [ 1236.749999][T17934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1236.750033][T17934] RSP: 002b:00007fae40c62038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1236.750065][T17934] RAX: ffffffffffffffda RBX: 00007fae3ffe6180 RCX: 00007fae3fd8eec9 [ 1236.750087][T17934] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1236.750107][T17934] RBP: 00007fae3fe11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1236.750130][T17934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1236.750151][T17934] R13: 00007fae3ffe6218 R14: 00007fae3ffe6180 R15: 00007fff5f561318 [ 1236.750198][T17934] [ 1238.523914][T17959] blktrace: Concurrent blktraces are not allowed on nbd3 [ 1239.150233][T17963] netlink: zone id is out of range [ 1239.232691][T17963] netlink: del zone limit has 4 unknown bytes [ 1239.345861][T17964] HfR: entered promiscuous mode [ 1239.376166][T17962] netlink: set zone limit has 8 unknown bytes [ 1239.485783][T17967] netlink: zone id is out of range [ 1239.519212][T17967] netlink: del zone limit has 4 unknown bytes [ 1239.534883][T17966] netlink: set zone limit has 8 unknown bytes [ 1239.559007][T17967] HfR: entered promiscuous mode [ 1239.613785][T17969] __vm_enough_memory: pid: 17969, comm: syz.0.2558, bytes: 4398046511104 not enough memory for the allocation [ 1239.769720][T17972] FAULT_INJECTION: forcing a failure. [ 1239.769720][T17972] name failslab, interval 1, probability 0, space 0, times 0 [ 1239.786092][T17972] CPU: 0 UID: 0 PID: 17972 Comm: syz.2.2559 Not tainted syzkaller #0 PREEMPT(full) [ 1239.786141][T17972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1239.786162][T17972] Call Trace: [ 1239.786174][T17972] [ 1239.786187][T17972] dump_stack_lvl+0x16c/0x1f0 [ 1239.786231][T17972] should_fail_ex+0x512/0x640 [ 1239.786272][T17972] ? __kmalloc_noprof+0xca/0x880 [ 1239.786329][T17972] should_failslab+0xc2/0x120 [ 1239.786376][T17972] __kmalloc_noprof+0xdd/0x880 [ 1239.786432][T17972] ? ioctx_alloc+0x1679/0x2120 [ 1239.786477][T17972] ? ioctx_alloc+0x1679/0x2120 [ 1239.786512][T17972] ioctx_alloc+0x1679/0x2120 [ 1239.786566][T17972] ? find_held_lock+0x2b/0x80 [ 1239.786602][T17972] ? __pfx_ioctx_alloc+0x10/0x10 [ 1239.786637][T17972] ? __might_fault+0x13b/0x190 [ 1239.786689][T17972] __x64_sys_io_setup+0xc9/0x210 [ 1239.786733][T17972] do_syscall_64+0xcd/0xfa0 [ 1239.786776][T17972] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1239.786813][T17972] RIP: 0033:0x7fc451d8eec9 [ 1239.786850][T17972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1239.786882][T17972] RSP: 002b:00007fc452c89038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 1239.786913][T17972] RAX: ffffffffffffffda RBX: 00007fc451fe5fa0 RCX: 00007fc451d8eec9 [ 1239.786934][T17972] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000fff4 [ 1239.786955][T17972] RBP: 00007fc451e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1239.786974][T17972] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1239.786993][T17972] R13: 00007fc451fe6038 R14: 00007fc451fe5fa0 R15: 00007ffdf16db288 [ 1239.787038][T17972] [ 1241.744065][T18009] zswap: compressor not available [ 1246.348474][T18091] __vm_enough_memory: pid: 18091, comm: syz.3.2579, bytes: 4398046511104 not enough memory for the allocation [ 1248.166254][T18105] __vm_enough_memory: pid: 18105, comm: syz.0.2580, bytes: 4398046511104 not enough memory for the allocation [ 1248.636257][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 1248.642659][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 1249.426277][T18125] FAULT_INJECTION: forcing a failure. [ 1249.426277][T18125] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1249.440281][T18125] CPU: 1 UID: 0 PID: 18125 Comm: syz.0.2588 Not tainted syzkaller #0 PREEMPT(full) [ 1249.440326][T18125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1249.440348][T18125] Call Trace: [ 1249.440360][T18125] [ 1249.440373][T18125] dump_stack_lvl+0x16c/0x1f0 [ 1249.440417][T18125] should_fail_ex+0x512/0x640 [ 1249.440463][T18125] should_fail_alloc_page+0xe7/0x130 [ 1249.440512][T18125] prepare_alloc_pages+0x3c2/0x610 [ 1249.440563][T18125] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 1249.440606][T18125] ? rcu_is_watching+0x12/0xc0 [ 1249.440643][T18125] ? trace_mm_page_alloc+0x11f/0x1a0 [ 1249.440688][T18125] ? __alloc_frozen_pages_noprof+0x292/0x2470 [ 1249.440731][T18125] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1249.440765][T18125] ? kasan_save_stack+0x33/0x60 [ 1249.440803][T18125] ? __kasan_save_free_info+0x3b/0x60 [ 1249.440857][T18125] ? kfree+0x2b8/0x6d0 [ 1249.440904][T18125] ? tomoyo_path_number_perm+0x470/0x580 [ 1249.440952][T18125] ? security_file_ioctl+0x9b/0x240 [ 1249.441001][T18125] ? __x64_sys_ioctl+0xb7/0x210 [ 1249.441047][T18125] ? do_syscall_64+0xcd/0xfa0 [ 1249.441090][T18125] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1249.441130][T18125] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1249.441177][T18125] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1249.441233][T18125] ? policy_nodemask+0xea/0x4e0 [ 1249.441281][T18125] alloc_pages_mpol+0x1fb/0x550 [ 1249.441327][T18125] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1249.441384][T18125] ___kmalloc_large_node+0xed/0x160 [ 1249.441428][T18125] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1249.441475][T18125] __kmalloc_large_node_noprof+0x1c/0x70 [ 1249.441527][T18125] __kmalloc_noprof.cold+0xc/0x62 [ 1249.441578][T18125] ? vhost_dev_set_owner+0x191/0xa50 [ 1249.441629][T18125] ? vhost_dev_set_owner+0x191/0xa50 [ 1249.441672][T18125] vhost_dev_set_owner+0x191/0xa50 [ 1249.441729][T18125] vhost_dev_ioctl+0x2eb/0xe20 [ 1249.441772][T18125] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1249.441832][T18125] ? __pfx_vhost_dev_ioctl+0x10/0x10 [ 1249.441892][T18125] vhost_vsock_dev_ioctl+0x3a5/0xb30 [ 1249.441931][T18125] ? hook_file_ioctl_common+0x145/0x410 [ 1249.441985][T18125] ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10 [ 1249.442032][T18125] ? __fget_files+0x20e/0x3c0 [ 1249.442079][T18125] ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10 [ 1249.442144][T18125] __x64_sys_ioctl+0x18b/0x210 [ 1249.442198][T18125] do_syscall_64+0xcd/0xfa0 [ 1249.442240][T18125] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1249.442274][T18125] RIP: 0033:0x7fc36db8eec9 [ 1249.442311][T18125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1249.442345][T18125] RSP: 002b:00007fc36eaf9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1249.442380][T18125] RAX: ffffffffffffffda RBX: 00007fc36dde5fa0 RCX: 00007fc36db8eec9 [ 1249.442404][T18125] RDX: 0000000000000000 RSI: 000000000000af01 RDI: 0000000000000003 [ 1249.442426][T18125] RBP: 00007fc36dc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1249.442447][T18125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1249.442468][T18125] R13: 00007fc36dde6038 R14: 00007fc36dde5fa0 R15: 00007ffed7d9b618 [ 1249.442515][T18125] [ 1250.934800][T18151] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2595'. [ 1251.786121][T18160] FAULT_INJECTION: forcing a failure. [ 1251.786121][T18160] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1251.848409][T18160] CPU: 0 UID: 0 PID: 18160 Comm: syz.1.2597 Not tainted syzkaller #0 PREEMPT(full) [ 1251.848447][T18160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1251.848461][T18160] Call Trace: [ 1251.848470][T18160] [ 1251.848480][T18160] dump_stack_lvl+0x16c/0x1f0 [ 1251.848515][T18160] should_fail_ex+0x512/0x640 [ 1251.848548][T18160] _copy_to_iter+0x29f/0x1710 [ 1251.848580][T18160] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 1251.848614][T18160] ? __pfx__copy_to_iter+0x10/0x10 [ 1251.848645][T18160] ? kernfs_seq_stop+0xcd/0x120 [ 1251.848706][T18160] ? kernfs_put_active+0x86/0xe0 [ 1251.848743][T18160] seq_read_iter+0xd02/0x12d0 [ 1251.848794][T18160] kernfs_fop_read_iter+0x46c/0x610 [ 1251.848819][T18160] ? rw_verify_area+0xcf/0x6c0 [ 1251.848844][T18160] vfs_read+0x8bc/0xcf0 [ 1251.848873][T18160] ? __pfx___mutex_lock+0x10/0x10 [ 1251.848909][T18160] ? __pfx_vfs_read+0x10/0x10 [ 1251.848955][T18160] ksys_read+0x12a/0x250 [ 1251.848979][T18160] ? __pfx_ksys_read+0x10/0x10 [ 1251.849014][T18160] do_syscall_64+0xcd/0xfa0 [ 1251.849044][T18160] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1251.849068][T18160] RIP: 0033:0x7f5c3c18eec9 [ 1251.849087][T18160] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1251.849110][T18160] RSP: 002b:00007f5c3d052038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1251.849132][T18160] RAX: ffffffffffffffda RBX: 00007f5c3c3e5fa0 RCX: 00007f5c3c18eec9 [ 1251.849147][T18160] RDX: 000000000000008d RSI: 0000200000000340 RDI: 0000000000000003 [ 1251.849162][T18160] RBP: 00007f5c3d052090 R08: 0000000000000000 R09: 0000000000000000 [ 1251.849176][T18160] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1251.849190][T18160] R13: 00007f5c3c3e6038 R14: 00007f5c3c3e5fa0 R15: 00007ffe726c7c38 [ 1251.849223][T18160] [ 1252.754049][T18172] FAULT_INJECTION: forcing a failure. [ 1252.754049][T18172] name failslab, interval 1, probability 0, space 0, times 0 [ 1252.813467][T18172] CPU: 1 UID: 0 PID: 18172 Comm: syz.3.2601 Not tainted syzkaller #0 PREEMPT(full) [ 1252.813514][T18172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1252.813535][T18172] Call Trace: [ 1252.813547][T18172] [ 1252.813561][T18172] dump_stack_lvl+0x16c/0x1f0 [ 1252.813607][T18172] should_fail_ex+0x512/0x640 [ 1252.813649][T18172] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 1252.813690][T18172] should_failslab+0xc2/0x120 [ 1252.813737][T18172] kmem_cache_alloc_noprof+0x75/0x6e0 [ 1252.813773][T18172] ? ioctx_alloc+0x1a4/0x2120 [ 1252.813817][T18172] ? ioctx_alloc+0x1a4/0x2120 [ 1252.813850][T18172] ioctx_alloc+0x1a4/0x2120 [ 1252.813888][T18172] ? find_held_lock+0x2b/0x80 [ 1252.813915][T18172] ? __pfx_ioctx_alloc+0x10/0x10 [ 1252.813940][T18172] ? __might_fault+0x13b/0x190 [ 1252.813972][T18172] __x64_sys_io_setup+0xc9/0x210 [ 1252.814002][T18172] do_syscall_64+0xcd/0xfa0 [ 1252.814032][T18172] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1252.814056][T18172] RIP: 0033:0x7fae3fd8eec9 [ 1252.814075][T18172] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1252.814099][T18172] RSP: 002b:00007fae40ca4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 1252.814123][T18172] RAX: ffffffffffffffda RBX: 00007fae3ffe5fa0 RCX: 00007fae3fd8eec9 [ 1252.814139][T18172] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000fff4 [ 1252.814154][T18172] RBP: 00007fae3fe11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1252.814168][T18172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1252.814182][T18172] R13: 00007fae3ffe6038 R14: 00007fae3ffe5fa0 R15: 00007fff5f561318 [ 1252.814215][T18172] [ 1254.163021][ T5874] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 1254.163064][ T5874] Bluetooth: hci1: unexpected subevent 0x22 length: 725 > 260 [ 1255.317205][T18186] kexec: Could not allocate control_code_buffer [ 1255.500227][T18211] __vm_enough_memory: pid: 18211, comm: syz.3.2609, bytes: 4398046511104 not enough memory for the allocation [ 1257.112613][T18243] __vm_enough_memory: pid: 18243, comm: syz.0.2617, bytes: 4398046511104 not enough memory for the allocation [ 1257.164365][T18244] __vm_enough_memory: pid: 18244, comm: syz.1.2618, bytes: 4398046511104 not enough memory for the allocation [ 1258.162608][T18264] svc: failed to register nfsdv3 RPC service (errno 111). [ 1258.181646][T18264] svc: failed to register nfsaclv3 RPC service (errno 111). [ 1258.668690][T18279] __vm_enough_memory: pid: 18279, comm: syz.2.2628, bytes: 4398046511104 not enough memory for the allocation [ 1258.747443][T18285] FAULT_INJECTION: forcing a failure. [ 1258.747443][T18285] name failslab, interval 1, probability 0, space 0, times 0 [ 1258.773985][T18285] CPU: 1 UID: 0 PID: 18285 Comm: syz.1.2627 Not tainted syzkaller #0 PREEMPT(full) [ 1258.774033][T18285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1258.774054][T18285] Call Trace: [ 1258.774065][T18285] [ 1258.774079][T18285] dump_stack_lvl+0x16c/0x1f0 [ 1258.774124][T18285] should_fail_ex+0x512/0x640 [ 1258.774166][T18285] ? __kmalloc_cache_noprof+0x5f/0x780 [ 1258.774237][T18285] should_failslab+0xc2/0x120 [ 1258.774285][T18285] __kmalloc_cache_noprof+0x72/0x780 [ 1258.774342][T18285] ? snd_seq_timer_new+0x44/0x1b0 [ 1258.774390][T18285] ? snd_seq_timer_new+0x44/0x1b0 [ 1258.774429][T18285] snd_seq_timer_new+0x44/0x1b0 [ 1258.774472][T18285] snd_seq_queue_alloc+0x177/0x5a0 [ 1258.774514][T18285] snd_seq_ioctl_create_queue+0xa9/0x390 [ 1258.774580][T18285] call_seq_client_ctl+0x9c/0x110 [ 1258.774626][T18285] snd_seq_kernel_client_ctl+0x77/0xd0 [ 1258.774671][T18285] alloc_seq_queue+0xda/0x180 [ 1258.774719][T18285] ? __pfx_alloc_seq_queue+0x10/0x10 [ 1258.774790][T18285] ? mark_held_locks+0x49/0x80 [ 1258.774835][T18285] ? _raw_spin_unlock_irq+0x23/0x50 [ 1258.774868][T18285] ? lockdep_hardirqs_on+0x7c/0x110 [ 1258.774912][T18285] snd_seq_oss_open+0x38c/0xa20 [ 1258.774968][T18285] odev_open+0x79/0xc0 [ 1258.775011][T18285] ? __pfx_odev_open+0x10/0x10 [ 1258.775054][T18285] soundcore_open+0x409/0x580 [ 1258.775100][T18285] ? __pfx_soundcore_open+0x10/0x10 [ 1258.775132][T18285] chrdev_open+0x234/0x6a0 [ 1258.775160][T18285] ? __pfx_apparmor_file_open+0x10/0x10 [ 1258.775194][T18285] ? __pfx_chrdev_open+0x10/0x10 [ 1258.775231][T18285] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1258.775264][T18285] do_dentry_open+0x982/0x1530 [ 1258.775292][T18285] ? __pfx_chrdev_open+0x10/0x10 [ 1258.775327][T18285] vfs_open+0x82/0x3f0 [ 1258.775364][T18285] path_openat+0x1de4/0x2cb0 [ 1258.775400][T18285] ? __pfx_path_openat+0x10/0x10 [ 1258.775434][T18285] do_filp_open+0x20b/0x470 [ 1258.775462][T18285] ? __pfx_do_filp_open+0x10/0x10 [ 1258.775510][T18285] ? alloc_fd+0x471/0x7d0 [ 1258.775540][T18285] do_sys_openat2+0x11b/0x1d0 [ 1258.775574][T18285] ? __pfx_do_sys_openat2+0x10/0x10 [ 1258.775620][T18285] __x64_sys_openat+0x174/0x210 [ 1258.775656][T18285] ? __pfx___x64_sys_openat+0x10/0x10 [ 1258.775703][T18285] do_syscall_64+0xcd/0xfa0 [ 1258.775733][T18285] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1258.775756][T18285] RIP: 0033:0x7f5c3c18eec9 [ 1258.775775][T18285] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1258.775798][T18285] RSP: 002b:00007f5c3d031038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1258.775821][T18285] RAX: ffffffffffffffda RBX: 00007f5c3c3e6090 RCX: 00007f5c3c18eec9 [ 1258.775836][T18285] RDX: 00000000001c8740 RSI: 0000200000000540 RDI: ffffffffffffff9c [ 1258.775852][T18285] RBP: 00007f5c3c211f91 R08: 0000000000000000 R09: 0000000000000000 [ 1258.775866][T18285] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1258.775880][T18285] R13: 00007f5c3c3e6128 R14: 00007f5c3c3e6090 R15: 00007ffe726c7c38 [ 1258.775912][T18285] [ 1259.156606][ T30] audit: type=1800 audit(4294973153.646:115): pid=18285 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2627" name="dbroot" dev="configfs" ino=82465 res=0 errno=0 [ 1260.629894][T18314] : Can't lookup blockdev [ 1260.812271][ T30] audit: type=1800 audit(4294973155.305:116): pid=18315 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2635" name="features" dev="configfs" ino=82510 res=0 errno=0 [ 1262.169867][T18330] __vm_enough_memory: pid: 18330, comm: syz.2.2640, bytes: 4398046511104 not enough memory for the allocation [ 1262.439075][T18313] HfR: entered promiscuous mode [ 1263.653880][T18353] __vm_enough_memory: pid: 18353, comm: syz.1.2644, bytes: 4398046511104 not enough memory for the allocation [ 1263.985748][T18361] XFS: Clearing xfsstats [ 1264.111509][T18361] Format for linking two devices is "netnsfd_a:ifidx_a netnsfd_b:ifidx_b" (int uint int uint). [ 1265.939102][T18385] __vm_enough_memory: pid: 18385, comm: syz.2.2651, bytes: 4398046511104 not enough memory for the allocation [ 1266.348604][T18391] FAULT_INJECTION: forcing a failure. [ 1266.348604][T18391] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1266.412752][T18391] CPU: 1 UID: 0 PID: 18391 Comm: syz.3.2652 Not tainted syzkaller #0 PREEMPT(full) [ 1266.412794][T18391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1266.412814][T18391] Call Trace: [ 1266.412825][T18391] [ 1266.412839][T18391] dump_stack_lvl+0x16c/0x1f0 [ 1266.412882][T18391] should_fail_ex+0x512/0x640 [ 1266.412929][T18391] should_fail_alloc_page+0xe7/0x130 [ 1266.412976][T18391] prepare_alloc_pages+0x3c2/0x610 [ 1266.413021][T18391] ? __lock_acquire+0x62e/0x1ce0 [ 1266.413078][T18391] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 1266.413114][T18391] ? __pfx_stack_trace_save+0x10/0x10 [ 1266.413153][T18391] ? stack_depot_save_flags+0x29/0x9c0 [ 1266.413199][T18391] ? look_up_lock_class+0x6b/0x150 [ 1266.413240][T18391] ? register_lock_class+0x41/0x4c0 [ 1266.413284][T18391] ? find_held_lock+0x2b/0x80 [ 1266.413322][T18391] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1266.413359][T18391] ? __lock_acquire+0xb97/0x1ce0 [ 1266.413426][T18391] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1266.413485][T18391] ? policy_nodemask+0xea/0x4e0 [ 1266.413532][T18391] alloc_pages_mpol+0x1fb/0x550 [ 1266.413577][T18391] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1266.413636][T18391] alloc_pages_noprof+0x131/0x390 [ 1266.413681][T18391] __pmd_alloc+0x3b/0x8b0 [ 1266.413736][T18391] __handle_mm_fault+0xada/0x2aa0 [ 1266.413795][T18391] ? mt_find+0x3e2/0xa20 [ 1266.413838][T18391] ? __pfx___handle_mm_fault+0x10/0x10 [ 1266.413887][T18391] ? __pfx_mt_find+0x10/0x10 [ 1266.413954][T18391] ? find_vma+0xbf/0x140 [ 1266.413992][T18391] ? __pfx_find_vma+0x10/0x10 [ 1266.414036][T18391] handle_mm_fault+0x589/0xd10 [ 1266.414095][T18391] ? __pkru_allows_pkey+0x11/0xb0 [ 1266.414151][T18391] do_user_addr_fault+0x7a6/0x1370 [ 1266.414187][T18391] ? rcu_is_watching+0x12/0xc0 [ 1266.414229][T18391] exc_page_fault+0x64/0xc0 [ 1266.414267][T18391] asm_exc_page_fault+0x26/0x30 [ 1266.414299][T18391] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 1266.414349][T18391] Code: c4 10 c3 cc cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 [ 1266.414382][T18391] RSP: 0018:ffffc9000bbffb28 EFLAGS: 00050202 [ 1266.414409][T18391] RAX: 0000000000000001 RBX: 0000000000000001 RCX: 0000000000000001 [ 1266.414429][T18391] RDX: ffffed100dc45fc0 RSI: 0000000000000000 RDI: ffff88806e22fe00 [ 1266.414451][T18391] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100dc45fc0 [ 1266.414471][T18391] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc9000bbffd88 [ 1266.414492][T18391] R13: 0000000000000001 R14: ffff88806e22fe00 R15: 00007ffffffff000 [ 1266.414537][T18391] _copy_from_iter+0x383/0x1720 [ 1266.414592][T18391] ? __pfx__copy_from_iter+0x10/0x10 [ 1266.414634][T18391] ? trace_kmalloc+0x2b/0xd0 [ 1266.414674][T18391] ? __kvmalloc_node_noprof+0x3c0/0x9c0 [ 1266.414712][T18391] ? bpf_lsm_capable+0x9/0x10 [ 1266.414753][T18391] ? security_capable+0x7e/0x260 [ 1266.414794][T18391] ? proc_sys_call_handler+0x286/0x570 [ 1266.414840][T18391] ? ns_capable_noaudit+0xda/0x110 [ 1266.414883][T18391] proc_sys_call_handler+0x3b2/0x570 [ 1266.414932][T18391] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 1266.414994][T18391] vfs_write+0x7d3/0x11d0 [ 1266.415032][T18391] ? __pfx_proc_sys_write+0x10/0x10 [ 1266.415091][T18391] ? __pfx_vfs_write+0x10/0x10 [ 1266.415124][T18391] ? find_held_lock+0x2b/0x80 [ 1266.415186][T18391] __x64_sys_pwrite64+0x1eb/0x250 [ 1266.415226][T18391] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 1266.415279][T18391] do_syscall_64+0xcd/0xfa0 [ 1266.415321][T18391] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1266.415354][T18391] RIP: 0033:0x7fae3fd8eec9 [ 1266.415379][T18391] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1266.415411][T18391] RSP: 002b:00007fae40ca4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 1266.415441][T18391] RAX: ffffffffffffffda RBX: 00007fae3ffe5fa0 RCX: 00007fae3fd8eec9 [ 1266.415463][T18391] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000003 [ 1266.415483][T18391] RBP: 00007fae40ca4090 R08: 0000000000000000 R09: 0000000000000000 [ 1266.415503][T18391] R10: 0000000000000027 R11: 0000000000000246 R12: 0000000000000001 [ 1266.415524][T18391] R13: 00007fae3ffe6038 R14: 00007fae3ffe5fa0 R15: 00007fff5f561318 [ 1266.415571][T18391] [ 1269.902276][T18452] FAULT_INJECTION: forcing a failure. [ 1269.902276][T18452] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1269.949390][T18452] CPU: 1 UID: 0 PID: 18452 Comm: syz.0.2665 Not tainted syzkaller #0 PREEMPT(full) [ 1269.949422][T18452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1269.949437][T18452] Call Trace: [ 1269.949444][T18452] [ 1269.949454][T18452] dump_stack_lvl+0x16c/0x1f0 [ 1269.949485][T18452] should_fail_ex+0x512/0x640 [ 1269.949520][T18452] should_fail_alloc_page+0xe7/0x130 [ 1269.949555][T18452] prepare_alloc_pages+0x3c2/0x610 [ 1269.949600][T18452] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 1269.949639][T18452] ? mas_wr_store_entry+0x102d/0x2550 [ 1269.949672][T18452] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1269.949701][T18452] ? perf_event_mmap+0xbb/0xd40 [ 1269.949734][T18452] ? __pfx_perf_event_mmap+0x10/0x10 [ 1269.949765][T18452] ? vma_wants_writenotify+0x10b/0x390 [ 1269.949790][T18452] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1269.949835][T18452] ? policy_nodemask+0xea/0x4e0 [ 1269.949869][T18452] alloc_pages_mpol+0x1fb/0x550 [ 1269.949902][T18452] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1269.949962][T18452] alloc_pages_noprof+0x131/0x390 [ 1269.949995][T18452] __pmd_alloc+0x3b/0x8b0 [ 1269.950026][T18452] ? find_held_lock+0x2b/0x80 [ 1269.950059][T18452] __handle_mm_fault+0xada/0x2aa0 [ 1269.950106][T18452] ? __pfx___handle_mm_fault+0x10/0x10 [ 1269.950171][T18452] handle_mm_fault+0x589/0xd10 [ 1269.950215][T18452] __get_user_pages+0x54e/0x3530 [ 1269.950263][T18452] ? __pfx___get_user_pages+0x10/0x10 [ 1269.950305][T18452] populate_vma_page_range+0x267/0x3f0 [ 1269.950343][T18452] ? __pfx_populate_vma_page_range+0x10/0x10 [ 1269.950377][T18452] ? __pfx_find_vma_intersection+0x10/0x10 [ 1269.950410][T18452] ? do_mmap+0x69c/0x1210 [ 1269.950444][T18452] __mm_populate+0x1d8/0x380 [ 1269.950479][T18452] ? __pfx___mm_populate+0x10/0x10 [ 1269.950517][T18452] ? up_write+0x1b2/0x520 [ 1269.950556][T18452] vm_mmap_pgoff+0x37f/0x470 [ 1269.950598][T18452] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1269.950630][T18452] ? __sys_connect+0xe0/0x160 [ 1269.950659][T18452] ? __x64_sys_futex+0x1e0/0x4c0 [ 1269.950691][T18452] ? __x64_sys_futex+0x1e9/0x4c0 [ 1269.950728][T18452] ksys_mmap_pgoff+0x7d/0x5c0 [ 1269.950757][T18452] ? xfd_validate_state+0x61/0x180 [ 1269.950791][T18452] ? __pfx_ksys_write+0x10/0x10 [ 1269.950822][T18452] __x64_sys_mmap+0x125/0x190 [ 1269.950864][T18452] do_syscall_64+0xcd/0xfa0 [ 1269.950895][T18452] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1269.950920][T18452] RIP: 0033:0x7fc36db8eec9 [ 1269.950939][T18452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1269.950963][T18452] RSP: 002b:00007fc36ead8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1269.950986][T18452] RAX: ffffffffffffffda RBX: 00007fc36dde6090 RCX: 00007fc36db8eec9 [ 1269.951001][T18452] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 1269.951017][T18452] RBP: 00007fc36dc11f91 R08: 0000000000000002 R09: 0000000000008000 [ 1269.951032][T18452] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 1269.951046][T18452] R13: 00007fc36dde6128 R14: 00007fc36dde6090 R15: 00007ffed7d9b618 [ 1269.951080][T18452] [ 1270.984069][T18470] FAULT_INJECTION: forcing a failure. [ 1270.984069][T18470] name failslab, interval 1, probability 0, space 0, times 0 [ 1271.059650][T18470] CPU: 1 UID: 0 PID: 18470 Comm: syz.2.2669 Not tainted syzkaller #0 PREEMPT(full) [ 1271.059699][T18470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1271.059721][T18470] Call Trace: [ 1271.059733][T18470] [ 1271.059747][T18470] dump_stack_lvl+0x16c/0x1f0 [ 1271.059809][T18470] should_fail_ex+0x512/0x640 [ 1271.059852][T18470] ? __kmalloc_noprof+0xca/0x880 [ 1271.059909][T18470] should_failslab+0xc2/0x120 [ 1271.059956][T18470] __kmalloc_noprof+0xdd/0x880 [ 1271.060009][T18470] ? __pfx_inc_ucount+0x10/0x10 [ 1271.060052][T18470] ? net_alloc_generic+0x1e/0x70 [ 1271.060101][T18470] ? net_alloc_generic+0x1e/0x70 [ 1271.060140][T18470] net_alloc_generic+0x1e/0x70 [ 1271.060182][T18470] copy_net_ns+0xc7/0x690 [ 1271.060225][T18470] ? copy_cgroup_ns+0x71/0x6b0 [ 1271.060269][T18470] create_new_namespaces+0x3ea/0xa90 [ 1271.060318][T18470] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1271.060362][T18470] ksys_unshare+0x45b/0xa40 [ 1271.060409][T18470] ? __pfx_ksys_unshare+0x10/0x10 [ 1271.060467][T18470] ? xfd_validate_state+0x61/0x180 [ 1271.060530][T18470] __x64_sys_unshare+0x31/0x40 [ 1271.060580][T18470] do_syscall_64+0xcd/0xfa0 [ 1271.060621][T18470] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1271.060656][T18470] RIP: 0033:0x7fc451d8eec9 [ 1271.060683][T18470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1271.060718][T18470] RSP: 002b:00007fc452c68038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1271.060750][T18470] RAX: ffffffffffffffda RBX: 00007fc451fe6090 RCX: 00007fc451d8eec9 [ 1271.060774][T18470] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1271.060801][T18470] RBP: 00007fc451e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1271.060823][T18470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1271.060844][T18470] R13: 00007fc451fe6128 R14: 00007fc451fe6090 R15: 00007ffdf16db288 [ 1271.060892][T18470] [ 1274.679635][T18519] random: crng reseeded on system resumption [ 1276.497559][T18543] __vm_enough_memory: pid: 18543, comm: syz.2.2687, bytes: 4398046511104 not enough memory for the allocation [ 1276.938423][T18553] FAULT_INJECTION: forcing a failure. [ 1276.938423][T18553] name failslab, interval 1, probability 0, space 0, times 0 [ 1276.974958][T18553] CPU: 1 UID: 0 PID: 18553 Comm: syz.0.2690 Not tainted syzkaller #0 PREEMPT(full) [ 1276.975005][T18553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1276.975026][T18553] Call Trace: [ 1276.975038][T18553] [ 1276.975053][T18553] dump_stack_lvl+0x16c/0x1f0 [ 1276.975115][T18553] should_fail_ex+0x512/0x640 [ 1276.975158][T18553] ? __kmalloc_noprof+0xca/0x880 [ 1276.975218][T18553] should_failslab+0xc2/0x120 [ 1276.975265][T18553] __kmalloc_noprof+0xdd/0x880 [ 1276.975320][T18553] ? vhost_dev_set_owner+0x20c/0xa50 [ 1276.975374][T18553] ? vhost_dev_set_owner+0x20c/0xa50 [ 1276.975419][T18553] vhost_dev_set_owner+0x20c/0xa50 [ 1276.975495][T18553] vhost_dev_ioctl+0x2eb/0xe20 [ 1276.975541][T18553] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1276.975606][T18553] ? __pfx_vhost_dev_ioctl+0x10/0x10 [ 1276.975671][T18553] vhost_vsock_dev_ioctl+0x3a5/0xb30 [ 1276.975713][T18553] ? hook_file_ioctl_common+0x145/0x410 [ 1276.975772][T18553] ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10 [ 1276.975821][T18553] ? __fget_files+0x20e/0x3c0 [ 1276.975863][T18553] ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10 [ 1276.975909][T18553] __x64_sys_ioctl+0x18b/0x210 [ 1276.975965][T18553] do_syscall_64+0xcd/0xfa0 [ 1276.976008][T18553] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1276.976042][T18553] RIP: 0033:0x7fc36db8eec9 [ 1276.976070][T18553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1276.976111][T18553] RSP: 002b:00007fc36eaf9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1276.976145][T18553] RAX: ffffffffffffffda RBX: 00007fc36dde5fa0 RCX: 00007fc36db8eec9 [ 1276.976167][T18553] RDX: 0000000000000000 RSI: 000000000000af01 RDI: 0000000000000003 [ 1276.976187][T18553] RBP: 00007fc36dc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1276.976218][T18553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1276.976239][T18553] R13: 00007fc36dde6038 R14: 00007fc36dde5fa0 R15: 00007ffed7d9b618 [ 1276.976285][T18553] [ 1277.712855][T18563] FAULT_INJECTION: forcing a failure. [ 1277.712855][T18563] name failslab, interval 1, probability 0, space 0, times 0 [ 1277.740872][T18563] CPU: 1 UID: 0 PID: 18563 Comm: syz.2.2692 Not tainted syzkaller #0 PREEMPT(full) [ 1277.740918][T18563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1277.740939][T18563] Call Trace: [ 1277.740951][T18563] [ 1277.740965][T18563] dump_stack_lvl+0x16c/0x1f0 [ 1277.741011][T18563] should_fail_ex+0x512/0x640 [ 1277.741054][T18563] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 1277.741097][T18563] should_failslab+0xc2/0x120 [ 1277.741144][T18563] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 1277.741186][T18563] ? __dquot_initialize+0x299/0xd50 [ 1277.741231][T18563] ? __d_alloc+0x32/0xae0 [ 1277.741278][T18563] ? __d_alloc+0x32/0xae0 [ 1277.741314][T18563] __d_alloc+0x32/0xae0 [ 1277.741360][T18563] d_alloc_pseudo+0x1c/0xc0 [ 1277.741410][T18563] alloc_file_pseudo+0xcf/0x230 [ 1277.741462][T18563] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 1277.741526][T18563] __shmem_file_setup+0x1a3/0x330 [ 1277.741586][T18563] shmem_zero_setup+0x93/0x1a0 [ 1277.741626][T18563] __mmap_region+0x2076/0x27a0 [ 1277.741666][T18563] ? __pfx___mmap_region+0x10/0x10 [ 1277.741697][T18563] ? finish_task_switch.isra.0+0x21c/0xc10 [ 1277.741736][T18563] ? rcu_is_watching+0x12/0xc0 [ 1277.741773][T18563] ? finish_task_switch.isra.0+0x221/0xc10 [ 1277.741812][T18563] ? finish_task_switch.isra.0+0x2fa/0xc10 [ 1277.741888][T18563] ? __pfx___schedule+0x10/0x10 [ 1277.741975][T18563] ? trace_cap_capable+0x18d/0x200 [ 1277.742039][T18563] mmap_region+0x1ab/0x3f0 [ 1277.742071][T18563] ? __get_unmapped_area+0x267/0x440 [ 1277.742117][T18563] do_mmap+0xa3e/0x1210 [ 1277.742177][T18563] ? __pfx_do_mmap+0x10/0x10 [ 1277.742224][T18563] ? __pfx_down_write_killable+0x10/0x10 [ 1277.742280][T18563] vm_mmap_pgoff+0x29e/0x470 [ 1277.742334][T18563] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1277.742378][T18563] ? __pfx___do_sys_clone+0x10/0x10 [ 1277.742436][T18563] ? __x64_sys_futex+0x1e0/0x4c0 [ 1277.742482][T18563] ? __x64_sys_futex+0x1e9/0x4c0 [ 1277.742535][T18563] ksys_mmap_pgoff+0x7d/0x5c0 [ 1277.742577][T18563] ? xfd_validate_state+0x61/0x180 [ 1277.742635][T18563] __x64_sys_mmap+0x125/0x190 [ 1277.742691][T18563] do_syscall_64+0xcd/0xfa0 [ 1277.742734][T18563] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1277.742768][T18563] RIP: 0033:0x7fc451d8eec9 [ 1277.742796][T18563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1277.742829][T18563] RSP: 002b:00007fc452c89038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1277.742862][T18563] RAX: ffffffffffffffda RBX: 00007fc451fe5fa0 RCX: 00007fc451d8eec9 [ 1277.742884][T18563] RDX: 0000000000000006 RSI: 0000000002020009 RDI: 0000000000000000 [ 1277.742905][T18563] RBP: 00007fc451e11f91 R08: fffffffffffffffa R09: 0000000000008000 [ 1277.742927][T18563] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 1277.742948][T18563] R13: 00007fc451fe6038 R14: 00007fc451fe5fa0 R15: 00007ffdf16db288 [ 1277.742995][T18563] [ 1278.422019][T18575] FAULT_INJECTION: forcing a failure. [ 1278.422019][T18575] name failslab, interval 1, probability 0, space 0, times 0 [ 1278.476337][T18575] CPU: 1 UID: 0 PID: 18575 Comm: syz.3.2693 Not tainted syzkaller #0 PREEMPT(full) [ 1278.476388][T18575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1278.476408][T18575] Call Trace: [ 1278.476420][T18575] [ 1278.476434][T18575] dump_stack_lvl+0x16c/0x1f0 [ 1278.476481][T18575] should_fail_ex+0x512/0x640 [ 1278.476521][T18575] ? __kmalloc_noprof+0xca/0x880 [ 1278.476578][T18575] should_failslab+0xc2/0x120 [ 1278.476623][T18575] __kmalloc_noprof+0xdd/0x880 [ 1278.476677][T18575] ? apply_wqattrs_prepare+0xf8/0xbd0 [ 1278.476723][T18575] ? apply_wqattrs_prepare+0xf8/0xbd0 [ 1278.476758][T18575] apply_wqattrs_prepare+0xf8/0xbd0 [ 1278.476829][T18575] apply_workqueue_attrs_locked+0x64/0xe0 [ 1278.476871][T18575] __alloc_workqueue+0xf3f/0x1810 [ 1278.476932][T18575] alloc_workqueue_noprof+0xd2/0x200 [ 1278.476978][T18575] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 1278.477034][T18575] ? rcu_is_watching+0x12/0xc0 [ 1278.477071][T18575] ? trace_kmalloc+0x2b/0xd0 [ 1278.477117][T18575] ? __kmalloc_noprof+0x34f/0x880 [ 1278.477170][T18575] ? ieee80211_register_hw+0x15c9/0x4120 [ 1278.477227][T18575] ieee80211_register_hw+0x1f1a/0x4120 [ 1278.477289][T18575] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 1278.477335][T18575] ? __pfx___debug_object_init+0x10/0x10 [ 1278.477376][T18575] ? find_held_lock+0x2b/0x80 [ 1278.477413][T18575] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1278.477473][T18575] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 1278.477510][T18575] ? __hrtimer_setup+0x176/0x280 [ 1278.477568][T18575] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 1278.477645][T18575] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 1278.477711][T18575] hwsim_new_radio_nl+0xba2/0x1330 [ 1278.477766][T18575] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1278.477831][T18575] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 1278.477885][T18575] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 1278.477944][T18575] genl_family_rcv_msg_doit+0x209/0x2f0 [ 1278.477997][T18575] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 1278.478063][T18575] ? bpf_lsm_capable+0x9/0x10 [ 1278.478115][T18575] ? security_capable+0x7e/0x260 [ 1278.478162][T18575] ? ns_capable+0xd7/0x110 [ 1278.478203][T18575] genl_rcv_msg+0x55c/0x800 [ 1278.478256][T18575] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1278.478305][T18575] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1278.478371][T18575] netlink_rcv_skb+0x155/0x420 [ 1278.478414][T18575] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1278.478465][T18575] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1278.478526][T18575] ? netlink_deliver_tap+0x1ae/0xd30 [ 1278.478573][T18575] genl_rcv+0x28/0x40 [ 1278.478614][T18575] netlink_unicast+0x5aa/0x870 [ 1278.478663][T18575] ? __pfx_netlink_unicast+0x10/0x10 [ 1278.478722][T18575] netlink_sendmsg+0x8c8/0xdd0 [ 1278.478772][T18575] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1278.478822][T18575] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 1278.478877][T18575] ____sys_sendmsg+0xa98/0xc70 [ 1278.478930][T18575] ? copy_msghdr_from_user+0x10a/0x160 [ 1278.478969][T18575] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1278.479042][T18575] ___sys_sendmsg+0x134/0x1d0 [ 1278.479091][T18575] ? __pfx____sys_sendmsg+0x10/0x10 [ 1278.479189][T18575] __sys_sendmsg+0x16d/0x220 [ 1278.479230][T18575] ? __pfx___sys_sendmsg+0x10/0x10 [ 1278.479270][T18575] ? __x64_sys_futex+0x1e0/0x4c0 [ 1278.479346][T18575] do_syscall_64+0xcd/0xfa0 [ 1278.479390][T18575] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1278.479425][T18575] RIP: 0033:0x7fae3fd8eec9 [ 1278.479453][T18575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1278.479486][T18575] RSP: 002b:00007fae40c83038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1278.479519][T18575] RAX: ffffffffffffffda RBX: 00007fae3ffe6090 RCX: 00007fae3fd8eec9 [ 1278.479554][T18575] RDX: 0000000004040040 RSI: 0000200000000300 RDI: 0000000000000006 [ 1278.479575][T18575] RBP: 00007fae3fe11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1278.479596][T18575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1278.479616][T18575] R13: 00007fae3ffe6128 R14: 00007fae3ffe6090 R15: 00007fff5f561318 [ 1278.479662][T18575] [ 1281.341822][T18604] __vm_enough_memory: pid: 18604, comm: syz.0.2700, bytes: 4398046511104 not enough memory for the allocation [ 1284.311447][T18651] debugfs: '!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' already exists in 'ieee80211' [ 1284.646331][T18659] FAULT_INJECTION: forcing a failure. [ 1284.646331][T18659] name failslab, interval 1, probability 0, space 0, times 0 [ 1284.695727][T18659] CPU: 0 UID: 0 PID: 18659 Comm: syz.2.2712 Not tainted syzkaller #0 PREEMPT(full) [ 1284.695786][T18659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1284.695805][T18659] Call Trace: [ 1284.695816][T18659] [ 1284.695828][T18659] dump_stack_lvl+0x16c/0x1f0 [ 1284.695867][T18659] should_fail_ex+0x512/0x640 [ 1284.695902][T18659] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 1284.695938][T18659] should_failslab+0xc2/0x120 [ 1284.695981][T18659] kmem_cache_alloc_noprof+0x75/0x6e0 [ 1284.696014][T18659] ? security_file_alloc+0x34/0x2b0 [ 1284.696055][T18659] ? security_file_alloc+0x34/0x2b0 [ 1284.696084][T18659] security_file_alloc+0x34/0x2b0 [ 1284.696118][T18659] init_file+0x93/0x4c0 [ 1284.696161][T18659] alloc_empty_file+0x73/0x1e0 [ 1284.696208][T18659] path_openat+0xda/0x2cb0 [ 1284.696250][T18659] ? stack_trace_save+0x8e/0xc0 [ 1284.696290][T18659] ? __pfx_path_openat+0x10/0x10 [ 1284.696324][T18659] ? stack_depot_save_flags+0x29/0x9c0 [ 1284.696377][T18659] do_filp_open+0x20b/0x470 [ 1284.696410][T18659] ? kmem_cache_alloc_noprof+0x250/0x6e0 [ 1284.696443][T18659] ? __pfx_do_filp_open+0x10/0x10 [ 1284.696476][T18659] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1284.696559][T18659] do_open_execat+0xf9/0x3a0 [ 1284.696591][T18659] ? __pfx_do_open_execat+0x10/0x10 [ 1284.696640][T18659] alloc_bprm+0x2d/0x710 [ 1284.696676][T18659] do_execveat_common.isra.0+0x1ce/0x610 [ 1284.696721][T18659] __x64_sys_execve+0x8e/0xb0 [ 1284.696766][T18659] do_syscall_64+0xcd/0xfa0 [ 1284.696806][T18659] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1284.696840][T18659] RIP: 0033:0x7fc451d8eec9 [ 1284.696865][T18659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1284.696898][T18659] RSP: 002b:00007fc452c89038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 1284.696930][T18659] RAX: ffffffffffffffda RBX: 00007fc451fe5fa0 RCX: 00007fc451d8eec9 [ 1284.696952][T18659] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000 [ 1284.696972][T18659] RBP: 00007fc452c89090 R08: 0000000000000000 R09: 0000000000000000 [ 1284.696994][T18659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1284.697013][T18659] R13: 00007fc451fe6038 R14: 00007fc451fe5fa0 R15: 00007ffdf16db288 [ 1284.697058][T18659] [ 1287.845044][T18707] sp0: Synchronizing with TNC [ 1287.896499][T18714] ubi5: attaching mtd0 [ 1287.939502][T18714] ubi5: scanning is finished [ 1287.988063][T18714] ubi5 error: ubi_read_volume_table: the layout volume was not found [ 1288.246018][T18714] ubi5 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1289.252284][T18734] FAULT_INJECTION: forcing a failure. [ 1289.252284][T18734] name failslab, interval 1, probability 0, space 0, times 0 [ 1289.265386][T18734] CPU: 0 UID: 0 PID: 18734 Comm: syz.0.2731 Not tainted syzkaller #0 PREEMPT(full) [ 1289.265428][T18734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1289.265455][T18734] Call Trace: [ 1289.265467][T18734] [ 1289.265479][T18734] dump_stack_lvl+0x16c/0x1f0 [ 1289.265522][T18734] should_fail_ex+0x512/0x640 [ 1289.265579][T18734] ? __kmalloc_noprof+0xca/0x880 [ 1289.265629][T18734] should_failslab+0xc2/0x120 [ 1289.265670][T18734] __kmalloc_noprof+0xdd/0x880 [ 1289.265717][T18734] ? __register_sysctl_table+0xea2/0x1900 [ 1289.265768][T18734] ? __register_sysctl_table+0xea2/0x1900 [ 1289.265811][T18734] __register_sysctl_table+0xea2/0x1900 [ 1289.265883][T18734] ? __pfx___register_sysctl_table+0x10/0x10 [ 1289.265927][T18734] ? is_module_address+0x69/0xf0 [ 1289.265982][T18734] ? register_net_sysctl_sz+0x228/0x3e0 [ 1289.266038][T18734] __devinet_sysctl_register+0x1b9/0x360 [ 1289.266091][T18734] ? rcu_is_watching+0x12/0xc0 [ 1289.266126][T18734] ? __pfx___devinet_sysctl_register+0x10/0x10 [ 1289.266174][T18734] ? __kmalloc_node_track_caller_noprof+0x362/0x8a0 [ 1289.266224][T18734] ? __asan_memcpy+0x3c/0x60 [ 1289.266261][T18734] devinet_init_net+0x347/0x910 [ 1289.266311][T18734] ? __pfx_devinet_init_net+0x10/0x10 [ 1289.266359][T18734] ops_init+0x1df/0x5f0 [ 1289.266404][T18734] setup_net+0x100/0x390 [ 1289.266454][T18734] ? __pfx_setup_net+0x10/0x10 [ 1289.266495][T18734] ? debug_mutex_init+0x37/0x70 [ 1289.266535][T18734] copy_net_ns+0x2f8/0x690 [ 1289.266581][T18734] create_new_namespaces+0x3ea/0xa90 [ 1289.266630][T18734] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1289.266673][T18734] ksys_unshare+0x45b/0xa40 [ 1289.266719][T18734] ? __pfx_ksys_unshare+0x10/0x10 [ 1289.266765][T18734] ? xfd_validate_state+0x61/0x180 [ 1289.266827][T18734] __x64_sys_unshare+0x31/0x40 [ 1289.266872][T18734] do_syscall_64+0xcd/0xfa0 [ 1289.266914][T18734] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1289.266948][T18734] RIP: 0033:0x7fc36db8eec9 [ 1289.266975][T18734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1289.267009][T18734] RSP: 002b:00007fc36eaf9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1289.267041][T18734] RAX: ffffffffffffffda RBX: 00007fc36dde5fa0 RCX: 00007fc36db8eec9 [ 1289.267064][T18734] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1289.267085][T18734] RBP: 00007fc36dc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1289.267106][T18734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1289.267126][T18734] R13: 00007fc36dde6038 R14: 00007fc36dde5fa0 R15: 00007ffed7d9b618 [ 1289.267173][T18734] [ 1289.540063][T18734] sysctl could not get directory: /net/ipv4/conf/default -12 [ 1289.557336][T18738] hub 1-0:1.0: USB hub found [ 1289.562918][T18738] hub 1-0:1.0: 1 port detected [ 1290.234050][T18754] FAULT_INJECTION: forcing a failure. [ 1290.234050][T18754] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1290.297084][T18754] CPU: 0 UID: 0 PID: 18754 Comm: syz.0.2736 Not tainted syzkaller #0 PREEMPT(full) [ 1290.297119][T18754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1290.297133][T18754] Call Trace: [ 1290.297141][T18754] [ 1290.297151][T18754] dump_stack_lvl+0x16c/0x1f0 [ 1290.297184][T18754] should_fail_ex+0x512/0x640 [ 1290.297219][T18754] get_futex_key+0x1d0/0x1560 [ 1290.297255][T18754] ? __pfx_get_futex_key+0x10/0x10 [ 1290.297297][T18754] futex_wake+0xea/0x530 [ 1290.297339][T18754] ? __pfx_futex_wake+0x10/0x10 [ 1290.297379][T18754] ? rcu_is_watching+0x12/0xc0 [ 1290.297406][T18754] ? lockdep_hardirqs_on+0x7c/0x110 [ 1290.297433][T18754] ? l2tp_ip_connect+0x127/0x3c0 [ 1290.297454][T18754] ? __local_bh_enable_ip+0xa4/0x120 [ 1290.297483][T18754] ? l2tp_ip_connect+0x12c/0x3c0 [ 1290.297510][T18754] do_futex+0x1e3/0x350 [ 1290.297543][T18754] ? __pfx_do_futex+0x10/0x10 [ 1290.297578][T18754] ? __sys_connect+0xe0/0x160 [ 1290.297606][T18754] __x64_sys_futex+0x1e0/0x4c0 [ 1290.297650][T18754] ? __pfx___x64_sys_futex+0x10/0x10 [ 1290.297684][T18754] ? xfd_validate_state+0x61/0x180 [ 1290.297718][T18754] ? __pfx_ksys_write+0x10/0x10 [ 1290.297755][T18754] do_syscall_64+0xcd/0xfa0 [ 1290.297785][T18754] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1290.297809][T18754] RIP: 0033:0x7fc36db8eec9 [ 1290.297828][T18754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1290.297853][T18754] RSP: 002b:00007fc36eaf90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1290.297876][T18754] RAX: ffffffffffffffda RBX: 00007fc36dde5fa8 RCX: 00007fc36db8eec9 [ 1290.297892][T18754] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc36dde5fac [ 1290.297907][T18754] RBP: 00007fc36dde5fa0 R08: 00007fc36eafa000 R09: 0000000000000000 [ 1290.297923][T18754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1290.297937][T18754] R13: 00007fc36dde6038 R14: 00007ffed7d9b530 R15: 00007ffed7d9b618 [ 1290.297969][T18754] [ 1290.496724][ C0] vkms_vblank_simulate: vblank timer overrun [ 1292.083072][T18789] FAULT_INJECTION: forcing a failure. [ 1292.083072][T18789] name failslab, interval 1, probability 0, space 0, times 0 [ 1292.101352][T18789] CPU: 0 UID: 0 PID: 18789 Comm: syz.1.2744 Not tainted syzkaller #0 PREEMPT(full) [ 1292.101384][T18789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1292.101399][T18789] Call Trace: [ 1292.101406][T18789] [ 1292.101416][T18789] dump_stack_lvl+0x16c/0x1f0 [ 1292.101447][T18789] should_fail_ex+0x512/0x640 [ 1292.101476][T18789] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 1292.101508][T18789] should_failslab+0xc2/0x120 [ 1292.101539][T18789] __kvmalloc_node_noprof+0x141/0x9c0 [ 1292.101570][T18789] ? seq_read_iter+0x830/0x12d0 [ 1292.101613][T18789] ? seq_read_iter+0x830/0x12d0 [ 1292.101647][T18789] seq_read_iter+0x830/0x12d0 [ 1292.101697][T18789] seq_read+0x3a3/0x570 [ 1292.101733][T18789] ? __pfx_seq_read+0x10/0x10 [ 1292.101790][T18789] ? __pfx_seq_read+0x10/0x10 [ 1292.101826][T18789] proc_reg_read+0x23d/0x330 [ 1292.101858][T18789] ? __pfx_proc_reg_read+0x10/0x10 [ 1292.101892][T18789] vfs_read+0x1e1/0xcf0 [ 1292.101921][T18789] ? __pfx___mutex_lock+0x10/0x10 [ 1292.101951][T18789] ? __pfx_vfs_read+0x10/0x10 [ 1292.101985][T18789] ? __fget_files+0x20e/0x3c0 [ 1292.102017][T18789] ksys_read+0x12a/0x250 [ 1292.102041][T18789] ? __pfx_ksys_read+0x10/0x10 [ 1292.102076][T18789] do_syscall_64+0xcd/0xfa0 [ 1292.102105][T18789] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1292.102130][T18789] RIP: 0033:0x7f5c3c18eec9 [ 1292.102148][T18789] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1292.102172][T18789] RSP: 002b:00007f5c3d052038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1292.102194][T18789] RAX: ffffffffffffffda RBX: 00007f5c3c3e5fa0 RCX: 00007f5c3c18eec9 [ 1292.102210][T18789] RDX: 000000000000003e RSI: 0000200000000300 RDI: 0000000000000007 [ 1292.102225][T18789] RBP: 00007f5c3d052090 R08: 0000000000000000 R09: 0000000000000000 [ 1292.102240][T18789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1292.102263][T18789] R13: 00007f5c3c3e6038 R14: 00007f5c3c3e5fa0 R15: 00007ffe726c7c38 [ 1292.102296][T18789] [ 1292.310588][ C0] vkms_vblank_simulate: vblank timer overrun [ 1292.798647][T18787] netlink: 444 bytes leftover after parsing attributes in process `syz.2.2743'. [ 1292.820107][T18787] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 1294.678312][T18839] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2752'. [ 1295.507176][T18860] FAULT_INJECTION: forcing a failure. [ 1295.507176][T18860] name failslab, interval 1, probability 0, space 0, times 0 [ 1295.519952][T18860] CPU: 0 UID: 0 PID: 18860 Comm: syz.1.2761 Not tainted syzkaller #0 PREEMPT(full) [ 1295.519982][T18860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1295.519997][T18860] Call Trace: [ 1295.520006][T18860] [ 1295.520015][T18860] dump_stack_lvl+0x16c/0x1f0 [ 1295.520046][T18860] should_fail_ex+0x512/0x640 [ 1295.520075][T18860] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 1295.520109][T18860] should_failslab+0xc2/0x120 [ 1295.520140][T18860] kmem_cache_alloc_node_noprof+0x78/0x770 [ 1295.520164][T18860] ? alloc_io_context+0x21/0x2f0 [ 1295.520206][T18860] ? alloc_io_context+0x21/0x2f0 [ 1295.520238][T18860] alloc_io_context+0x21/0x2f0 [ 1295.520272][T18860] __copy_io+0xdc/0x210 [ 1295.520307][T18860] copy_process+0x2885/0x76a0 [ 1295.520350][T18860] ? __pfx_copy_process+0x10/0x10 [ 1295.520381][T18860] ? futex_private_hash_put+0x176/0x300 [ 1295.520415][T18860] ? futex_private_hash_put+0x18a/0x300 [ 1295.520451][T18860] kernel_clone+0xfc/0x930 [ 1295.520480][T18860] ? __pfx_futex_wake+0x10/0x10 [ 1295.520516][T18860] ? __pfx_kernel_clone+0x10/0x10 [ 1295.520562][T18860] __do_sys_clone+0xce/0x120 [ 1295.520591][T18860] ? __pfx___do_sys_clone+0x10/0x10 [ 1295.520620][T18860] ? __sys_sendmsg+0x18c/0x220 [ 1295.520660][T18860] ? xfd_validate_state+0x61/0x180 [ 1295.520704][T18860] do_syscall_64+0xcd/0xfa0 [ 1295.520733][T18860] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1295.520758][T18860] RIP: 0033:0x7f5c3c18eec9 [ 1295.520797][T18860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1295.520821][T18860] RSP: 002b:00007f5c3d051fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1295.520843][T18860] RAX: ffffffffffffffda RBX: 00007f5c3c3e5fa0 RCX: 00007f5c3c18eec9 [ 1295.520860][T18860] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411 [ 1295.520876][T18860] RBP: 00007f5c3c211f91 R08: 0000000000000000 R09: 0000000000000000 [ 1295.520891][T18860] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 1295.520906][T18860] R13: 00007f5c3c3e6038 R14: 00007f5c3c3e5fa0 R15: 00007ffe726c7c38 [ 1295.520938][T18860] [ 1297.003292][T18882] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2764'. [ 1297.767290][T18895] openvswitch: netlink: ct_state flags aa1414ac unsupported [ 1298.379165][T18907] Oops: general protection fault, probably for non-canonical address 0xdffffc00000009c0: 0000 [#1] SMP KASAN PTI [ 1298.391175][T18907] KASAN: probably user-memory-access in range [0x0000000000004e00-0x0000000000004e07] [ 1298.400774][T18907] CPU: 1 UID: 0 PID: 18907 Comm: syz.3.2769 Not tainted syzkaller #0 PREEMPT(full) [ 1298.410202][T18907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1298.420313][T18907] RIP: 0010:lru_gen_test_recent+0xee/0x320 [ 1298.426196][T18907] Code: 68 34 b7 ff 48 85 db 0f 84 79 01 00 00 e8 5a 34 b7 ff 49 8d bd 00 4e 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e a3 01 00 00 4d 63 b5 00 4e 00 [ 1298.445886][T18907] RSP: 0018:ffffc9000ab1f840 EFLAGS: 00010206 [ 1298.451996][T18907] RAX: dffffc0000000000 RBX: ffff88801c2d8000 RCX: ffffc9000d550000 [ 1298.459998][T18907] RDX: 00000000000009c0 RSI: ffffffff8204a006 RDI: 0000000000004e00 [ 1298.467993][T18907] RBP: ffffc9000ab1f8d8 R08: 0000000000000001 R09: 0000000000000000 [ 1298.475990][T18907] R10: 0000000000000001 R11: 0000000000000000 R12: ffffc9000ab1f8f8 [ 1298.483980][T18907] R13: 0000000000000000 R14: ffffc9000ab1f8c8 R15: 0000000000000000 [ 1298.491972][T18907] FS: 00007fae40c206c0(0000) GS:ffff888124ae4000(0000) knlGS:0000000000000000 [ 1298.500954][T18907] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1298.507596][T18907] CR2: 0000001b32313ff8 CR3: 000000005fa16000 CR4: 00000000003526f0 [ 1298.515597][T18907] Call Trace: [ 1298.519077][T18907] [ 1298.522028][T18907] workingset_refault+0x24c/0x1060 [ 1298.527200][T18907] ? __pfx_workingset_refault+0x10/0x10 [ 1298.532775][T18907] ? filemap_write_and_wait_range+0xb0/0x130 [ 1298.538791][T18907] filemap_add_folio+0x23d/0x610 [ 1298.543773][T18907] ? __pfx_filemap_add_folio+0x10/0x10 [ 1298.549265][T18907] ? __filemap_get_folio+0x32b/0xc30 [ 1298.554579][T18907] ? down_read+0x13d/0x480 [ 1298.559030][T18907] do_read_cache_folio+0x239/0x5c0 [ 1298.564171][T18907] freader_get_folio+0x337/0x930 [ 1298.569135][T18907] freader_fetch+0xc2/0x5e0 [ 1298.573662][T18907] ? query_matching_vma+0x345/0x7d0 [ 1298.578892][T18907] __build_id_parse.isra.0+0xec/0x7a0 [ 1298.584293][T18907] ? query_matching_vma+0x48e/0x7d0 [ 1298.589526][T18907] ? __pfx___build_id_parse.isra.0+0x10/0x10 [ 1298.595546][T18907] do_procmap_query+0xb0e/0x1080 [ 1298.600521][T18907] ? __pfx_do_procmap_query+0x10/0x10 [ 1298.605931][T18907] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1298.611872][T18907] ? do_vfs_ioctl+0x128/0x14f0 [ 1298.616711][T18907] ? __fget_files+0x20e/0x3c0 [ 1298.621421][T18907] procfs_procmap_ioctl+0x9d/0xe0 [ 1298.626479][T18907] ? __pfx_procfs_procmap_ioctl+0x10/0x10 [ 1298.632233][T18907] __x64_sys_ioctl+0x18b/0x210 [ 1298.637036][T18907] do_syscall_64+0xcd/0xfa0 [ 1298.641576][T18907] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1298.647521][T18907] RIP: 0033:0x7fae3fd8eec9 [ 1298.651981][T18907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1298.671704][T18907] RSP: 002b:00007fae40c20038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1298.680189][T18907] RAX: ffffffffffffffda RBX: 00007fae3ffe6360 RCX: 00007fae3fd8eec9 [ 1298.688185][T18907] RDX: 0000200000000080 RSI: 00000000c0686611 RDI: 0000000000000003 [ 1298.696182][T18907] RBP: 00007fae3fe11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1298.704180][T18907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1298.712178][T18907] R13: 00007fae3ffe63f8 R14: 00007fae3ffe6360 R15: 00007fff5f561318 [ 1298.720191][T18907] [ 1298.723228][T18907] Modules linked in: [ 1298.728226][T18907] ---[ end trace 0000000000000000 ]--- [ 1298.769665][T18907] RIP: 0010:lru_gen_test_recent+0xee/0x320 [ 1298.795687][T18907] Code: 68 34 b7 ff 48 85 db 0f 84 79 01 00 00 e8 5a 34 b7 ff 49 8d bd 00 4e 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e a3 01 00 00 4d 63 b5 00 4e 00 [ 1298.853811][T18907] RSP: 0018:ffffc9000ab1f840 EFLAGS: 00010206 [ 1298.860595][T18907] RAX: dffffc0000000000 RBX: ffff88801c2d8000 RCX: ffffc9000d550000 [ 1298.869410][T18907] RDX: 00000000000009c0 RSI: ffffffff8204a006 RDI: 0000000000004e00 [ 1298.878188][T18907] RBP: ffffc9000ab1f8d8 R08: 0000000000000001 R09: 0000000000000000 [ 1298.886608][T18907] R10: 0000000000000001 R11: 0000000000000000 R12: ffffc9000ab1f8f8 [ 1298.895628][T18907] R13: 0000000000000000 R14: ffffc9000ab1f8c8 R15: 0000000000000000 [ 1298.904145][T18907] FS: 00007fae40c206c0(0000) GS:ffff8881249e4000(0000) knlGS:0000000000000000 [ 1298.914026][T18907] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1298.922507][T18907] CR2: 00007fc452c47d58 CR3: 000000005fa16000 CR4: 00000000003526f0 [ 1298.931525][T18907] Kernel panic - not syncing: Fatal exception [ 1298.937969][T18907] Kernel Offset: disabled [ 1298.942342][T18907] Rebooting in 86400 seconds..