last executing test programs: 8.038010787s ago: executing program 1 (id=1731): openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x2401, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) (async) sysfs$auto(0x2, 0x4d, 0x0) (async) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0) ioctl$auto(r0, 0x540a, 0x0) (async) ioctl$auto_UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000040)={{0x0, 0xf2cf, 0x1ff, 0x4}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0x8}) (async) r1 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) (async) sendmmsg$auto(r1, &(0x7f00000006c0)={{&(0x7f0000000000), 0x5ac, &(0x7f00000000c0)={&(0x7f0000000080)="4c0300006bba861b000004000000a32457895897441b", 0x49}, 0x2, &(0x7f0000000700), 0x5, 0x1}, 0x5}, 0x2, 0x100) (async) socket(0xa, 0x5, 0x0) (async) timer_create$auto(0x0, 0x0, 0x0) (async) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.net/blkio.bfq.time_recursive\x00', 0x182b02, 0x0) sendfile$auto(r2, r2, 0x0, 0x3) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x7, 0x1, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) io_uring_setup$auto(0x10, 0x0) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async) unshare$auto(0x40000080) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x0) (async) rseq$auto(0x0, 0x20, 0x0, 0x8000006) (async) mq_open$auto(0x0, 0x62, 0x7, 0x0) (async) r3 = mq_open$auto(0x0, 0x62, 0xfffc, 0x0) mq_timedsend$auto(r3, 0x0, 0x2000, 0x9, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x59, 0x0) (async) io_uring_register$auto(0x2, 0x11, &(0x7f0000000180), 0x83) madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async) mbind$auto(0x8000, 0xfa9d, 0x2, &(0x7f0000000280)=0x20000000000000fb, 0x3, 0x1) (async) set_mempolicy_home_node$auto(0x0, 0x2010001, 0x0, 0x0) 5.460325927s ago: executing program 1 (id=1744): socket(0x11, 0x80003, 0x300) mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r0, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/sysname\x00', 0xaa102, 0x0) close_range$auto(0x2, r0, 0x7f) socket(0xa, 0x4, 0x2) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop10\x00', 0x0, 0x0) shmat$auto(0x83af, 0x0, 0x51) openat$auto_ext4_dir_operations_ext4(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/bluetooth/hci4/power\x00', 0x2040c0, 0x0) msgctl$auto_MSG_INFO(0x7, 0xc, &(0x7f00000002c0)={{0x7, 0xee00, 0x0, 0x7, 0x80, 0x2, 0x100d}, &(0x7f0000000080)=0xf, &(0x7f00000001c0)=0x1, 0x4d5f, 0x2e5, 0x0, 0xc932, 0x1da, 0x400, 0x88, 0x3}) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC1\x00', 0x20400, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(r1, 0xc4c85512, 0x0) r2 = socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x420009, 0xe2, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x18, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x240202, 0x0) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0) 5.20386412s ago: executing program 3 (id=1745): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xe8202, 0x0) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, 0x0, 0x101901, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000001380)='/dev/sequencer2\x00', 0x0, 0x0) r0 = socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000380)="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", 0x2, &(0x7f00000000c0)={0x0, 0x10000}, 0x7, 0x0, 0x75, 0xb}, 0x1002}, 0x8, 0x10315) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x18dd01, 0x0) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x902, 0x0) ioctl$auto(r1, 0x80004508, 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0xffffffffffffffff, 0x200000008000) r2 = epoll_create$auto(0x1) epoll_ctl$auto(r2, 0x1, 0x8000000000000000, 0x0) write$auto(0x1, 0x0, 0x80000000) mprotect$auto(0x0, 0x8000000000000001, 0x8) bpf$auto_BPF_LINK_DETACH(0x22, &(0x7f0000000000)=@link_detach, 0x8) r3 = openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/buffer_percent\x00', 0x1, 0x0) write$auto(r3, 0x0, 0x7) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/vm/dirty_background_bytes\x00', 0x202, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/scsi/device_info\x00', 0x40100, 0x0) pread64$auto(r4, 0x0, 0x10001, 0x830) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) close_range$auto(0x2, 0x8, 0xa00) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) 4.47281751s ago: executing program 3 (id=1746): madvise$auto_MADV_NOHUGEPAGE(0x1444, 0x5, 0xf) r0 = ioctl$auto_TUNSETTXFILTER(0xffffffffffffffff, 0x400454d1, &(0x7f0000000040)=0x80000000) sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/sysname\x00', 0xaa102, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0x15, 0x4, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x81) select$auto(0x5, 0x0, 0x0, &(0x7f00000011c0)={[0x0, 0x401, 0xdd36, 0x8fd3, 0x948b, 0xd, 0xf, 0x3, 0x2, 0x5dc5, 0x878c, 0x3, 0x1, 0x9, 0x1]}, 0x0) r1 = openat$auto_usbfs_devices_fops_usb(0xffffffffffffff9c, &(0x7f0000000180), 0xfd1ab101a01c344a, 0x0) readv$auto(r1, &(0x7f0000001180)={&(0x7f0000000000), 0x2}, 0x6) syz_open_procfs$namespace(0x0, &(0x7f00000007c0)='ns/time\x00') r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000f40)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_SET_MESH(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002cbd7000"/18, @ANYRES32=r4, @ANYBLOB='\b\x002\x00x\v\x00\x00'], 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x140000e4) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mremap$auto(0x4000, 0x8000b8, 0x13fd4, 0x3, 0xfffff000) mprotect$auto(0xfffff000, 0xa588, 0x6) timerfd_settime$auto(0xffffffffffffffff, 0x10000, 0x0, 0x0) 4.380632723s ago: executing program 1 (id=1747): mmap$auto(0x0, 0x20009, 0x7ff, 0x40000000000eb1, 0x401, 0x8000) socket(0x2b, 0x1, 0x0) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0xa) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) getsockopt$auto(0x3, 0x200000000001, 0x23, 0xfffffffffffffffe, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x4) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) socket(0x11, 0x80003, 0x300) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff) r0 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x408) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x9, 0x1f, 0x940, 0x1ffde, 0x3, 0x6, 0x8000004, 0x9, 0x5, 0x0, 0x4, 0xb0, 0x7, 0x200, 0x3, 0x205, 0x7, 0x0, 0x3ffff, 0x0, 0x3, 0x7069, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, [0x0, 0x0, 0x0, 0x8, 0x5, 0x8000004, 0x0, 0x100000000000000, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x100000000, 0x0, 0x8000000000000001, 0x0, 0x1, 0x0, 0x0, 0xfff, 0x4, 0x0, 0x0, 0x2000000000000000]}, 0x4b9, 0x7d) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="0600", @ANYRES16=0x0, @ANYBLOB="010025bd"], 0x14}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040804) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='B'], 0x1ac}}, 0x40000) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x4000, &(0x7f0000000100)={&(0x7f0000000080), 0x96bc}, 0x2, &(0x7f0000000380), 0x7, 0x4}, 0x9}, 0x7, 0x4008) write$auto(r0, 0x0, 0xfffffdf1) unshare$auto(0x40000080) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) linkat$auto(r0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x7, 0x0) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000180)='nfsd\x00', 0x8, 0x0) mprotect$auto(0x0, 0x8000000000000001, 0x8) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000380)='/proc/self/net/rpc/auth.rpcsec.context/channel\x00', 0xc8841, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) 3.402366642s ago: executing program 3 (id=1750): sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x200084c, 0x0, 0x9, 0x0, 0x3, 0x10b}, 0x4}, 0xffffffff, 0xc5c) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0x7, 0x5) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x1, 0x84) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vbi28\x00', 0x0, 0x0) ioctl$auto(0x3, 0xc0145608, 0x38) r1 = socket(0x1, 0xf5a76812a59da019, 0xffff472c) shmctl$auto_IPC_SET(0x40, 0x1, &(0x7f0000000180)={{0x7, 0xee01, 0x0, 0x21, 0x3, 0x4, 0x4}, 0x8, 0xf, 0xffffffffffff1432, 0x1, @raw=0x4, @raw=0xd, 0x3, 0x0, &(0x7f0000000080)="7225a1a352110f7cb652dc06edac4efaa22d121aa1c73bf0848cb5975797dfa3075b6b95107ce00eba15e8219cb07dcc709955762abacddc8981edf513c96c4b1affb6c89ea973ee67fcbe0a79eeecf911fabbcfefd36884f575449b5c42dc216deab7cb08f47702", &(0x7f0000000100)="dbd70af74945335cceea883e961a04c3cd"}) ioctl$auto_EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000200)={0x0, 0x1000, 0x80000001, 0x8, 0x2, 0x8}) fstat$auto(r1, &(0x7f0000000240)={0xd, 0x8, 0x6bf, 0x6, r2, r3, 0x0, 0x401, 0x10001, 0x7, 0x8, 0x8b5, 0x4, 0x3, 0x9b, 0xe, 0x48c}) sendmsg$auto_HWSIM_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xfffffffffffffe6e, 0x0, 0x1, 0x0, 0x0, 0x8400}, 0x48011) write$auto(0xffffffffffffffff, &(0x7f0000000040)='S\x00\x00\x00\xfe\xff\xff\xff', 0x8587) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x400008, 0x1, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000100)={0x0, 0x1d, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x6}, {0xe63c, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c2, 0x8000c, 0x100000000}}) r4 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r4, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xfffbfffd}, 0xffff}, 0x4000, 0x20000043) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0x2, 0x2, 0x0) 2.715352617s ago: executing program 0 (id=1753): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_PHY_GET(r0, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="8c31943f053a3d02b5f12d9a08982b35ce8e4f6364efde9da83cd2ff30df00"/43, @ANYRES16=r1, @ANYBLOB="010326bd7000ffdbdf252d0000000c00018008000100", @ANYRES32=0x0, @ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x2404c012}, 0x4040000) bpf$auto_BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000000)=@bpf_attr_4={0x9b3, r0, 0x9, r0}, 0x8eff) 2.535527914s ago: executing program 0 (id=1755): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x408201, 0x0) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) msgctl$auto_IPC_INFO(0x235d, 0x3, 0x0) (async) msgctl$auto_IPC_INFO(0x235d, 0x3, 0x0) socket(0x1e, 0x805, 0x0) (async) socket(0x1e, 0x805, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) (async) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) r1 = socket(0x10, 0x2, 0x0) r2 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(r1, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000001700)={&(0x7f00000002c0)=ANY=[@ANYBLOB=' \x00\x00c', @ANYRES16=r2, @ANYBLOB="01022bbd7000ffdbdf25020000000c0001800500bd0019000000"], 0x20}, 0x1, 0x0, 0x0, 0x4}, 0x4000048) fstat$auto(r0, &(0x7f0000000080)={0x80, 0x8, 0x0, 0x0, 0x0, 0xee01, 0x0, 0x9, 0xac9, 0x2, 0x60, 0x9, 0x3, 0x4, 0x10, 0x8c, 0x3}) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) (async) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) read$auto(0x3, 0x0, 0x8080) ioctl$auto_RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) setsockopt$auto(0xffffffffffffffff, 0x29, 0x14, 0x0, 0x56b) (async) setsockopt$auto(0xffffffffffffffff, 0x29, 0x14, 0x0, 0x56b) setsockopt$auto(0xffffffffffffffff, 0x29, 0x14, 0x0, 0x10052b) mknod$auto(&(0x7f0000000180)=':,\x00', 0xc9, 0xfffffffa) execve$auto(&(0x7f0000000040)=':,\x00', 0x0, 0x0) r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/oom_adj\x00', 0x143d03, 0x0) read$auto(r3, 0x0, 0x80000000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) msync$auto(0x1ffff000, 0x17ffffffffffffc, 0x400000004) (async) msync$auto(0x1ffff000, 0x17ffffffffffffc, 0x400000004) r4 = socket(0x22, 0xa, 0x6) mmap$auto(0x0, 0x30009, 0x4000000000df, 0x4000eb2, 0x401, 0x8000) mkdir$auto(&(0x7f0000000040)='./cgroup/../file0\x00', 0x1) (async) mkdir$auto(&(0x7f0000000040)='./cgroup/../file0\x00', 0x1) unshare$auto(0x40000080) (async) unshare$auto(0x40000080) mmap$auto(0xfffffffffffffffe, 0x81c0000000, 0xa, 0x9b72, r3, 0x5) sendmsg$auto_OVS_FLOW_CMD_SET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x90}, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r4) 2.45778435s ago: executing program 1 (id=1756): mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x2) mmap$auto(0x0, 0x20009, 0x386, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x2, 0x801, 0x106) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x10, 0x80002, 0x0) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) timerfd_settime$auto(r0, 0x3, 0x0, 0x0) read$auto(0x3, 0x0, 0x80) settimeofday$auto(&(0x7f0000000180)={0x10000001f, 0x1}, 0x0) r1 = openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/Virtual-1/edid_override\x00', 0x2082, 0x0) write$auto_drm_edid_fops_drm_debugfs(r1, 0x0, 0x0) mount$auto(0x0, &(0x7f0000000540)='}[,&*}\x00', &(0x7f0000000040)='\xb7Qs\x03 ', 0x3, &(0x7f0000000000)="4c186c7a") 2.407887727s ago: executing program 3 (id=1757): r0 = openat$auto_nsim_udp_tunnels_info_reset_fops_udp_tunnels(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim3/ports/3/udp_ports_reset\x00', 0x4040, 0x0) fremovexattr$auto(r0, &(0x7f0000000080)='/proc/mtrr\x00') mmap$auto(0x0, 0x2020009, 0x3, 0x200000eb1, 0xfffffffffffffffa, 0x8000) socket(0x11, 0xa, 0x300) r1 = socketpair$auto(0x200001e, 0x2, 0x72, 0x0) setsockopt$auto(r1, 0x1, 0x2b, 0x0, 0x4) r2 = socket(0x2, 0x1, 0x106) connect$auto(r2, &(0x7f00000001c0)=@in={0x2, 0x3}, 0x55) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) recvmsg$auto(0x4, 0x0, 0x33c) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x141001, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x2, 0x0) r3 = socket(0xa, 0x3, 0xff) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "0000c11effffff00"}, 0x55) sendmmsg$auto(r3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0xfff4) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/mtrr\x00', 0xc0000, 0x0) mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000) unshare$auto(0x3d) unshare$auto(0x40000080) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x18b740, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000040), r4) sendmsg$auto_WG_CMD_SET_DEVICE(r4, &(0x7f00000028c0)={0x0, 0x0, &(0x7f0000002880)={&(0x7f0000002900)={0x30, r5, 0x1, 0x70bd28, 0x25dfdc03, {}, [@WGDEVICE_A_FLAGS={0x8, 0x5, 0x1}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0x30}}, 0xc0) ioctl$auto(0xffffffffffffffff, 0x400454ca, 0x38) ioctl$auto_TUNSETTXFILTER(0xffffffffffffffff, 0x400454d1, 0x0) 2.243909548s ago: executing program 2 (id=1758): mmap$auto(0x100000000, 0x2000d, 0x1, 0xeb1, 0xffffffffffffffff, 0x100000000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) semget$auto(0x0, 0x13c, 0x1ff) recvmmsg$auto(r0, &(0x7f00000001c0)={{0x0, 0x88000000, 0x0, 0x9, 0x0, 0x800000000005, 0x7ffffffc}, 0x8}, 0x3, 0x1, 0x0) semtimedop$auto(0x0, &(0x7f0000000140)={0x8, 0x81, 0x70}, 0x1f4, 0x0) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x0, 0x0) r2 = openat2$auto(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)={0x982, 0x6, 0x4}, 0x7f) r3 = syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000000180), r2) r4 = getpid() process_vm_readv$auto(r4, &(0x7f0000000380)={0x0, 0x10001}, 0x400040000000004, &(0x7f00000003c0)={&(0x7f0000000140), 0x40000000001243}, 0x400800808, 0x200000002) sendmsg$auto_NCSI_CMD_SEND_CMD(r2, &(0x7f0000001600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000015c0)={&(0x7f0000002240)=ANY=[@ANYBLOB="f00b0000", @ANYRES16=r3, @ANYBLOB="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", @ANYRES32=r0, @ANYBLOB="00000008000800d87ba63b080003004d0b0000040006007a070500f928e09d7bd7fa2202977becacbfba05779299539e9087c29bdcfb7e759354020deebb22ec4bd883dbb7deea7425a87316ae9678267fecc436029b01e0ddc119fc3e4773eb5acadcfedf56a5cc5227743accf629c50812ae37af5cde21bcc23362ab755f2630ac53e3dfcc67731cb38a4be45a151fc54e296eab4b67d8e1816732a34c3255ee7541ff4e75615890783b19a98f05211738c03f34fa2113b6d768ccabd78c5ec2c0da118f0d282c44f4fb6133389f4ab50bb5c224255a6c7e9e3ae7314ea96ace9e25f2b3be2182b1eb0deff67feb536c5fe5f005b6a7a0b3b5582a69abc83c37a4d8038e829d60a991d7ffd9851edb138fdce06abb8867a2be56a5dbebd5e7ef3d7362ea7e6723b8ad49689b4363c54afdea8d7e7448499f38e48320398a4234fa61a3d20c09ba7d4baa283e7122deea61454d68879cdb549df69234ea91c57e5472579702e21a80a1537ec61e189b1fc21d7ffbbf5cf6962454217baa5d903e28f3a697a883b279e211f7ed6716fe84d6ff67f82602ff77a0e798d6692440fdebe9a433ae69b89b55aeba6241f29aef20ad6fcfc85fcbd4e9e59f159ce4a4cc77ccae8332290b4cde9437607273c950478e91905f51b234f42a18f6cd00da83811e1c385767bb91b1b792b79c154f4fc49dcf5876ffcb4e701d522917a0d253e3469bdc1c4900000000b8338e16bd44bcb04a28b79a71f4924e8f52ef66838f35ab5d569765b5b13860986c53cfe5a07018594b69ca399427013a1871f599564b7269f44edecaeaa1b84ed56c249d5968235b9e23c37bf71f0ab9a741176fb33b8c83afcbfb6efae66c56310915cddbd681b9dc72b8ec14a881f1fa9e193b9db73e0a2cba79616d28bda7bf0b31202c1a24711c2bfc85bf689d34e439409ad93bb4eadb1ecf761626375fbe5656e9760086eb85116f83b5d99d22a6bc0cce98cf77533b22f0d305a1e00f651dae93dc7bd3aacf3ff45d6df754f35d901ec6ac3014f505ac13dbfe184f3f37bb1c29482fcc86f419d8cfed35fee9e8a612574f9e3afe27e9ee3ae5f8ff22fe92165a0ed97e1ece3f5751e4df65eff481c7f2391c8f45f7d082b104e353ec2092e616bd9d83c663cb176deb7b25a216f8b903c461f93b3b771f9cee918043cc21fa9ea85c42326cb2dd3c846d0dcf1fe33fc61d2bff8f1cf63e38329e2d508b484106f1050a4f396b38449571995d111c345e6363388844bc7e7403199a52acdee14a4e661a8dbef77e25e57ad16a90dba607182afb1f891c7178f923130db86b4a501cd43de8571eed672cf02408586440be582c91b64f7212971886f75ac25cb9c3adedbccf226b5252f26d3f7fef415b748fa39cac970d1b07ac8b7ce6b026a95cfc1a1532d300345dd274259cf0602ada400278fd0d09c687b4c324cb9714be58e51cd8dd36619ad89e4090eae95e0589245f210cb05e9fa90318d39007ea4fc8ccbd9dae613027ea6c95940a7ed72efc660c622095bb42173939eb42f4400f5ad6184540d718946926f5b987fbffaf115bed18f27c946a77ae78ff5b5e72d2a64aac60aaed728ea3ede4d78de9f7559b11ec917623a885d4027d2a999b98298e2af8b9aeabf1380b5c3feeba52a1814a05e7a8ce3ee85d1b42a1dd9adb23381dbd76cb6688a238e76ce6f4098063ea755f1ef7abbfa23490a6544099a6f9530259faf5e3d0c07b2c8bf986aeb5028268ebe4d908e0413e964fd8b2d5ddb3d47b9b0e68de5096732bea7dc3b1b3466f7dff45721a9b1d5811a4e1874ec2be961d37a9d9d2ef50492bb75ab96504dafd326decc198ac8805a18e350c38e4de47ef2350d18f3501b50bb285023023d03fa66cf215ec6a34564affb95aca93f3677d4154b6aa9c1fbda430511f31eb6468825fbbe8a124a886ab881b7da7b71a1159bdeada0ce632d3e54e561468f4dd26640cc2d9f1587b7023928741d0f71fd00e58ae6f58d9eec0f2c07da2ccb093512d538bf1f4ea2311d4faeec03187739b1ff36129da3bf1c5999fafaeacb9be63fe3ae8765b827fe1711a0b134494c8a5f067642946e42ada782618ed9daac32eb165bc327e278c3ff030a593d85b93e3ccb751fe67c6d8bf647bcaa91c66b859db93c60a88686d07eb250e91d16a1f90c099d4835b71ba0bc03d950690a626fe5575633b90216163e1443d5213286194c0df5aa891ba17db5893fc758c282639bc7ec6ed7d27421dbdb73d01e9e149799ca2860748c06a69b41c74def7bbf31e42be43ccb4b8a5e64459f476eac90023c0677c94c6d785435e4ac8ab6891161f9b7e1d0be6bd44d17de9672aa470df2dee31ca60875388a25a90271c4b4fcf4ecc75651090ee9530d72cf969e4c1f0a3ab036bd131cc02b87bfbefa7472d8623ac7be17a1c56cf5b3c4818af0a0a2b910948e7492048f50d855efee2a12d8c63b7ddf9da4cef69ffdcf551b18936d45158aa1e6ade7060979b2f1e60e679dcdee9b45f203d4f23f30205596485409ed517525f2c922ba15574d1191711355495f0de907f42fea54bb1157d2eac8afa28574f6b460b519d8eeedacaec0815abc980a4b96289d3f9ae2a3145d15240fca1d5cbe7a53e149a6e083b7befb52f51c679e115a0a366197c0e95a4c2a1b5511155ec9815bc0402d19d9f125a7bc5c63290ac2900000000"], 0xbf0}, 0x1, 0x0, 0x0, 0x4010}, 0x811) ioctl$auto_SNDCTL_SEQ_GETINCOUNT(r1, 0x80045105, 0x0) r5 = socket(0x1e, 0xa, 0x9) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptye9\x00', 0x101e81, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x0, 0x0) write$auto_dev_fops_plock(0xffffffffffffffff, &(0x7f0000000200)="ea579eafbaf6a78ace20c66c3ed28a307811ba5a77e0d6f20eee070874ce267321ef2da8ccef77a2a57912658cfac38b23199ba898ef2c29ea039494e108e23fc3d3de801c6cdb8c585be1ec026d327ad05a0c7812805bb6d051f9f2e7105018d493a4a1", 0x64) r6 = syz_genetlink_get_family_id$auto_gtp(&(0x7f00000004c0), r5) sendmsg$auto_GTP_CMD_GETPDP(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="00002dbd7000fcdbdf250200"/22], 0x1c}, 0x1, 0x0, 0x0, 0x40000d0}, 0x4001) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000980)='/dev/ttye9\x00', 0x102, 0x0) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0xf8f) prctl$auto(0x16, 0x21, 0x6, 0xfffffffffffffffe, 0x5) sendfile$auto(r1, r1, 0x0, 0x1fff5) close_range$auto(0x2, 0x8, 0x0) semctl$auto_GETNCNT(0x0, 0x4, 0xe, 0x4) r7 = io_uring_setup$auto(0x4bf15e08, 0x0) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000340), r7) recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0) unshare$auto(0x40000080) 1.951185211s ago: executing program 1 (id=1759): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) r1 = socket(0x2b, 0x1, 0x0) bind$auto(r1, &(0x7f0000000040)=@vsock={0x28, 0x0, 0x2711}, 0x6a) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000) syz_clone(0x40000, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x26, 0x80802, 0x0) r2 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x9, 0x0, 0x1f, 0x9}, 0x800009}, 0x7, 0x20000000) r3 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) socketpair$auto(0x2, 0xfffffffd, 0xfffffff9, &(0x7f0000000280)=0x14) statx$auto(r3, 0x0, 0x8e2b, 0x4015, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) syz_genetlink_get_family_id$auto_macsec(0x0, r1) write$auto(r0, 0x0, 0x6) syz_open_procfs$namespace(0x0, &(0x7f00000004c0)='ns/time_for_children\x00') read$auto(0x3, 0x0, 0x8080) r4 = socketpair$auto(0x1, 0x2, 0x1, 0x0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x2000000009b72, 0xffffffffffffffff, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) unshare$auto(0x20000080) syz_clone3(&(0x7f00000000c0)={0x2e0a2600, 0x0, 0x0, 0x0, {0x11}, 0x0, 0xfffffffffffffeed, 0x0, 0x0, 0x0, {r4}}, 0x58) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) fsconfig$auto(0xffffffffffffffff, 0x3, &(0x7f0000000080)='n\x7f\xfe\x01\xef\x00\xdd\xc0\x8bo\x89_\x00\x00ildren\x00', &(0x7f0000000180)="c5f2463d55f7ff568c1fe1a75cf00908418ff0e1d4696311737b5c0a7bc642b2869a1b30cf504375acbe33652ea613d1717343047685040d8ca3a112f0f6fce962bb71c7e8834da3a49bd35afd6736ab6d4f9e58886d1d261cd5d1daef3965169c22afe76299e213edfc4fa9e9544c1a5d47610ff075f6253fa6b31adbfc040aa81d49100334714e8140de63d42c8f8c17e4107ea391746128db9453ebbb8afe922a807df44dab7361d3addd762ee0aca2131efa563dd93b1be012444b930ef6f4ecea05d9ed188e2599a8d48a374f019a26d127466d1d", 0x0) 1.540680171s ago: executing program 2 (id=1760): ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) close_range$auto(0x0, 0xffffffffffffffff, 0x2) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x9, 0x1, 0xf4a) getsockopt$auto(r0, 0x1, 0x3, 0xfffffffffffffffe, 0x0) (async) getsockopt$auto(r0, 0x1, 0x3, 0xfffffffffffffffe, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r1) sendmsg$auto_NL80211_CMD_GET_PROTOCOL_FEATURES(r1, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000126bd7000fedbdf255f00000005001901000000000600f7000b0000000800090001000000050053001800000008005d0007000000080026005a0700000800400075010000"], 0x4c}, 0x1, 0x0, 0x0, 0x4}, 0x4000) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0x4040ae79, r3) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129800, 0x0) (async) r4 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129800, 0x0) ioctl$auto(r4, 0xb21064a7, 0x20000a) (async) ioctl$auto(r4, 0xb21064a7, 0x20000a) socket(0x18, 0x5, 0x1) (async) socket(0x18, 0x5, 0x1) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/net/bond0/bonding/arp_validate\x00', 0x2002, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/net/bond0/bonding/arp_validate\x00', 0x2002, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x3) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x3) openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/events/vmalloc/free_vmap_area_noflush/trigger\x00', 0x2301, 0x0) read$auto_proc_timers_operations_base(0xffffffffffffffff, 0x0, 0x0) (async) read$auto_proc_timers_operations_base(0xffffffffffffffff, 0x0, 0x0) fanotify_init$auto(0x5, 0x0) io_uring_setup$auto(0xf00, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r5, 0x0, 0x800) r6 = socket(0x15, 0x5, 0x0) setsockopt$auto(r6, 0x114, 0x8, 0x0, 0x4) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/tracing/trace_pipe\x00', 0x22c01, 0x0) (async) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/tracing/trace_pipe\x00', 0x22c01, 0x0) 1.45623803s ago: executing program 0 (id=1761): mmap$auto(0x100000000, 0x2000d, 0x1, 0xeb1, 0xffffffffffffffff, 0x100000000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) semget$auto(0x0, 0x13c, 0x1ff) recvmmsg$auto(r0, &(0x7f00000001c0)={{0x0, 0x88000000, 0x0, 0x9, 0x0, 0x800000000005, 0x7ffffffc}, 0x8}, 0x3, 0x1, 0x0) semtimedop$auto(0x0, &(0x7f0000000140)={0x8, 0x81, 0x70}, 0x1f4, 0x0) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x0, 0x0) sendmsg$auto_IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000640)={&(0x7f00000005c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRESOCT, @ANYBLOB="00012abd7000fece637c60a021360984cecd222f1aa9fcdbdf2521f3f4dafdaaa0bb4d0006000be909000000050028f2d3000000260010006aac000005001d0040a49c72", @ANYRES16, @ANYRES64=0x0], 0x34}, 0x1, 0x0, 0x0, 0x40000}, 0x525a05df5b8afe7a) r2 = syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000000180), 0xffffffffffffffff) r3 = getpid() process_vm_readv$auto(r3, &(0x7f0000000380)={0x0, 0x10001}, 0x400040000000004, &(0x7f00000003c0)={&(0x7f0000000140), 0x40000000001243}, 0x400800808, 0x200000002) sendmsg$auto_NCSI_CMD_SEND_CMD(0xffffffffffffffff, &(0x7f0000001600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000015c0)={&(0x7f0000002240)=ANY=[@ANYBLOB="f00b0000", @ANYRES16=r2, @ANYBLOB="00022dbd7000fddbdf250400000049040280ee01f9800400f40004005f809152ed0bc658e5e2dc26b63bd1c464ff9250f5d81f470df322e0638e0d900cdc45c55f08c76f1eb84115c5cf1ac97a0a4420bbbbc43e98cc933265c65808ab2ee89b1f9831061314973d7f40cd913fd588920afda75cf9b615a351fb2df47768cdafd0891823a59d02e7314c5cc2fe201a07f0e62ed03193bfec853bddbd94c7ecd3d37d70d2846494f7b4c6328e9eb9175f0e6aa56f139c7c72a77d01db8b56a04758f971d3d7c7fe3687bacf8c5cb87149c96a110f1717563493fbc676f87f6e06a0f7c78965e733ae2ba11c0800e800ff000000040056809bc7cc18633ebb7405a69a75335625522f5edd9c57d062214bd7047126f0a4c0c2d6af67d765e6d2f7538336d5b57068cba50785655be8f9d4d391381db251378be9869a4b5fa8ed345bfd967245e4c6380904d6270524293252ee3d7f4674d8394a14a0a2fe3ae7f4f30131b457c20910f952fcdb04006d00b03e7e90dece3f94572d88354e9e657e5dc68391f9bfbe7efbc7e501634b5f8fc8b6e49f553a63257c3222ad72304cad6ba0403f58f5e30eb57240302c504e8995aef06b10249f25d680c666c3e35f578b98fe5b63414c53aa8ca88cd05ea04d72520e0450ca36192adb8b2b855760826708b0634b71d433663fec6cb086a06fc7d821ec8bc532e08d048cee51d22c4a00008d839b04032c1f677776804c34d4a502a008a3e53fd471ef51900be2f2eb8e6d71d7d83903661a9b80a28e3b7eba2854ee8f3840d04a33b629e94276f04c91c1cf6488a10ff11e9a5e1a779ed86d42078f3f7e26042eed36130d8c3612c4005c0abd37e24902a45040bba6e7ed4fdbe8f502879b89e5336df086e6ebb2ad37c5c6d78e932729489d39824f369211de6a968a9c28b5ab2ae0e49e726b4591903b55fc01013dbf8757407eaa2d4054e61f9fa41a8fa36eb01a54848198882b7abbf63bc962f6b7aeae4c7807f0cdd7831c871400bc00fc020000000000000000000000000000b300fb00c27af9e84690d71aed7c17150f9cab7adeae205966073a5caecbf58597c38c93b68c79891016547576c78b89e515a2d085cdb77ed0448a07af361c949ac83a39cc13667632426024331858d06ac7a5e5f5fea965c340a9cbbe31453a2121e70077e7b6ec1793e26573515f08246bf508840b71242918d494e9bdb75215e065b3221c81752ca92c4a95a142c777e30fb881dbe6e87e4bd1716f54f0b0d5b2369001757e66cf6982a1017f69514cea1300b4001600026c47db5c9783a00552bf620e858dfb1bc04eb805514cd1f724865552bf3315404f8c406145bded10f139819dc0cebfda3b7c970e8e55a09652b0f4d8d1aae4a2f2ba8540f904d72b57b5600050716762397945e8d951fc65b52cf05de1096c1ee9f8ab1717842dd3a179513fbf27ee4dd0bab06bf942ce769bd2c6bcf3e03ef9cc4d197c5eb5970cd455bb7a08b392a321e821d3b38bfc4ff078c9ce2e4fa2e9991a5c3b2a5862fe93e6f6e6be9df208003a00", @ANYRES32=r0, @ANYBLOB="00000008000800d87ba63b080003004d0b0000040006007a070500f928e09d7bd7fa2202977becacbfba05779299539e9087c29bdcfb7e759354020deebb22ec4bd883dbb7deea7425a87316ae9678267fecc436029b01e0ddc119fc3e4773eb5acadcfedf56a5cc5227743accf629c50812ae37af5cde21bcc23362ab755f2630ac53e3dfcc67731cb38a4be45a151fc54e296eab4b67d8e1816732a34c3255ee7541ff4e75615890783b19a98f05211738c03f34fa2113b6d768ccabd78c5ec2c0da118f0d282c44f4fb6133389f4ab50bb5c224255a6c7e9e3ae7314ea96ace9e25f2b3be2182b1eb0deff67feb536c5fe5f005b6a7a0b3b5582a69abc83c37a4d8038e829d60a991d7ffd9851edb138fdce06abb8867a2be56a5dbebd5e7ef3d7362ea7e6723b8ad49689b4363c54afdea8d7e7448499f38e48320398a4234fa61a3d20c09ba7d4baa283e7122deea61454d68879cdb549df69234ea91c57e5472579702e21a80a1537ec61e189b1fc21d7ffbbf5cf6962454217baa5d903e28f3a697a883b279e211f7ed6716fe84d6ff67f82602ff77a0e798d6692440fdebe9a433ae69b89b55aeba6241f29aef20ad6fcfc85fcbd4e9e59f159ce4a4cc77ccae8332290b4cde9437607273c950478e91905f51b234f42a18f6cd00da83811e1c385767bb91b1b792b79c154f4fc49dcf5876ffcb4e701d522917a0d253e3469bdc1c4900000000b8338e16bd44bcb04a28b79a71f4924e8f52ef66838f35ab5d569765b5b13860986c53cfe5a07018594b69ca399427013a1871f599564b7269f44edecaeaa1b84ed56c249d5968235b9e23c37bf71f0ab9a741176fb33b8c83afcbfb6efae66c56310915cddbd681b9dc72b8ec14a881f1fa9e193b9db73e0a2cba79616d28bda7bf0b31202c1a24711c2bfc85bf689d34e439409ad93bb4eadb1ecf761626375fbe5656e9760086eb85116f83b5d99d22a6bc0cce98cf77533b22f0d305a1e00f651dae93dc7bd3aacf3ff45d6df754f35d901ec6ac3014f505ac13dbfe184f3f37bb1c29482fcc86f419d8cfed35fee9e8a612574f9e3afe27e9ee3ae5f8ff22fe92165a0ed97e1ece3f5751e4df65eff481c7f2391c8f45f7d082b104e353ec2092e616bd9d83c663cb176deb7b25a216f8b903c461f93b3b771f9cee918043cc21fa9ea85c42326cb2dd3c846d0dcf1fe33fc61d2bff8f1cf63e38329e2d508b484106f1050a4f396b38449571995d111c345e6363388844bc7e7403199a52acdee14a4e661a8dbef77e25e57ad16a90dba607182afb1f891c7178f923130db86b4a501cd43de8571eed672cf02408586440be582c91b64f7212971886f75ac25cb9c3adedbccf226b5252f26d3f7fef415b748fa39cac970d1b07ac8b7ce6b026a95cfc1a1532d300345dd274259cf0602ada400278fd0d09c687b4c324cb9714be58e51cd8dd36619ad89e4090eae95e0589245f210cb05e9fa90318d39007ea4fc8ccbd9dae613027ea6c95940a7ed72efc660c622095bb42173939eb42f4400f5ad6184540d718946926f5b987fbffaf115bed18f27c946a77ae78ff5b5e72d2a64aac60aaed728ea3ede4d78de9f7559b11ec917623a885d4027d2a999b98298e2af8b9aeabf1380b5c3feeba52a1814a05e7a8ce3ee85d1b42a1dd9adb23381dbd76cb6688a238e76ce6f4098063ea755f1ef7abbfa23490a6544099a6f9530259faf5e3d0c07b2c8bf986aeb5028268ebe4d908e0413e964fd8b2d5ddb3d47b9b0e68de5096732bea7dc3b1b3466f7dff45721a9b1d5811a4e1874ec2be961d37a9d9d2ef50492bb75ab96504dafd326decc198ac8805a18e350c38e4de47ef2350d18f3501b50bb285023023d03fa66cf215ec6a34564affb95aca93f3677d4154b6aa9c1fbda430511f31eb6468825fbbe8a124a886ab881b7da7b71a1159bdeada0ce632d3e54e561468f4dd26640cc2d9f1587b7023928741d0f71fd00e58ae6f58d9eec0f2c07da2ccb093512d538bf1f4ea2311d4faeec03187739b1ff36129da3bf1c5999fafaeacb9be63fe3ae8765b827fe1711a0b134494c8a5f067642946e42ada782618ed9daac32eb165bc327e278c3ff030a593d85b93e3ccb751fe67c6d8bf647bcaa91c66b859db93c60a88686d07eb250e91d16a1f90c099d4835b71ba0bc03d950690a626fe5575633b90216163e1443d5213286194c0df5aa891ba17db5893fc758c282639bc7ec6ed7d27421dbdb73d01e9e149799ca2860748c06a69b41c74def7bbf31e42be43ccb4b8a5e64459f476eac90023c0677c94c6d785435e4ac8ab6891161f9b7e1d0be6bd44d17de9672aa470df2dee31ca60875388a25a90271c4b4fcf4ecc75651090ee9530d72cf969e4c1f0a3ab036bd131cc02b87bfbefa7472d8623ac7be17a1c56cf5b3c4818af0a0a2b910948e7492048f50d855efee2a12d8c63b7ddf9da4cef69ffdcf551b18936d45158aa1e6ade7060979b2f1e60e679dcdee9b45f203d4f23f30205596485409ed517525f2c922ba15574d1191711355495f0de907f42fea54bb1157d2eac8afa28574f6b460b519d8eeedacaec0815abc980a4b96289d3f9ae2a3145d15240fca1d5cbe7a53e149a6e083b7befb52f51c679e115a0a366197c0e95a4c2a1b5511155ec9815bc0402d19d9f125a7bc5c63290ac2900000000"], 0xbf0}, 0x1, 0x0, 0x0, 0x4010}, 0x811) ioctl$auto_SNDCTL_SEQ_GETINCOUNT(r1, 0x80045105, 0x0) r4 = socket(0x1e, 0xa, 0x9) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptye9\x00', 0x101e81, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x0, 0x0) write$auto_dev_fops_plock(0xffffffffffffffff, &(0x7f0000000200)="ea579eafbaf6a78ace20c66c3ed28a307811ba5a77e0d6f20eee070874ce267321ef2da8ccef77a2a57912658cfac38b23199ba898ef2c29ea039494e108e23fc3d3de801c6cdb8c585be1ec026d327ad05a0c7812805bb6d051f9f2e7105018d493a4a1", 0x64) r5 = syz_genetlink_get_family_id$auto_gtp(&(0x7f00000004c0), r4) sendmsg$auto_GTP_CMD_GETPDP(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="00002dbd7000fcdbdf250200"/22], 0x1c}, 0x1, 0x0, 0x0, 0x40000d0}, 0x4001) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000980)='/dev/ttye9\x00', 0x102, 0x0) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0xf8f) prctl$auto(0x16, 0x21, 0x6, 0xfffffffffffffffe, 0x5) sendfile$auto(r1, r1, 0x0, 0x1fff5) close_range$auto(0x2, 0x8, 0x0) semctl$auto_GETNCNT(0x0, 0x4, 0xe, 0x4) r6 = io_uring_setup$auto(0x4bf15e08, 0x0) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000340), r6) recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0) unshare$auto(0x40000080) 1.339341337s ago: executing program 2 (id=1762): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb2, 0x403, 0x8000) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bond_slave_0\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="01c3be3c", @ANYRES8=r1, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000030000000000000008000200", @ANYRES32=r1, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32=r0, @ANYBLOB="060006ff05000000080003009b"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) (async) close_range$auto(0x2, 0x8, 0x0) syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f0000000040), r0) (async) socket(0x2, 0x3, 0x100) (async, rerun: 64) socket(0x10, 0x2, 0x0) (async, rerun: 64) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffff5c, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) (async, rerun: 64) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (rerun: 64) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv6/neigh/ip_vti0/base_reachable_time_ms\x00', 0x202, 0x0) read$auto_proc_sys_file_operations_proc_sysctl(r2, 0x0, 0x0) 984.169275ms ago: executing program 2 (id=1763): statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0x8b, 0x5, 0x800000001007181, 0x2, 0x7, 0x7, 0x7ff, 0xb9, 0x26, 0x4, 0x200000000001, 0x384, 0x5, 0x8, 0x0, 0x30, 0xfffffffffffffffe, 0x864, 0xe, 0x22000, 0x9, 0x0, 0x5, 0x0, 0x0, 0x2, 0x0, 0x0, [0x4000000, 0x5, 0x0, 0x0, 0x2fc4, 0x0, 0x8000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x2000000000000000, 0x0, 0x20000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x100000004, 0x0, 0x1, 0x0, 0x0, 0x0, 0xb5e3, 0x400000000000000, 0x0, 0x3]}, 0x9, 0xd) r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) r1 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, 0x0, 0x2000, 0x0) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r1, 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) setsockopt$auto(r2, 0x3, 0x5, 0x0, 0x6) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) keyctl$auto(0x2000000000000016, 0xffffffffffffffff, 0xfffffffe, 0x0, 0x8) sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000080)="434c5a938722d65f08688a6d4e9791b4d491daa843d44fb36f2913431506fd0e70ad", 0xe, 0x0, 0x9, 0x0, 0x172, 0xb}, 0x800009}, 0x5, 0x20000000) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0xffffffffffffffff, 0x1, 0x2a, 0x0, 0x6) mmap$auto(0x0, 0x4020008, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x80002, 0x73) setsockopt$auto(0x3, 0x0, 0x8001, 0x0, 0x28) sendto$auto(0x3, 0x0, 0x8, 0x101, &(0x7f0000000000)=@nl=@proc={0x10, 0x0, 0x25dfdbfb, 0x10000}, 0x1c) mmap$auto(0x0, 0x40009, 0xdf, 0x10, 0x7, 0x40) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) syz_genetlink_get_family_id$auto_ovs_vport(0x0, r3) r4 = setfsuid$auto(0xee00) setfsuid$auto(r4) setfsuid$auto(r4) sendmsg$auto_OVS_VPORT_CMD_GET(0xffffffffffffffff, 0x0, 0x4004000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffffffffffd02, &(0x7f00000001c0)) 814.410172ms ago: executing program 2 (id=1764): mmap$auto(0x0, 0x20009, 0x2000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/jfs/loglevel\x00', 0x1a9701, 0x0) write$auto(r0, 0x0, 0x9) (async) close_range$auto(0x2, 0x8, 0x0) (async) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) r1 = socket(0xa, 0x1, 0x84) (async) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x10}}, 0x8) (async) fanotify_init$auto(0x8, 0x6) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ram0\x00', 0x16f300, 0x0) (async) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x601, 0x0) write$auto(r3, &(0x7f0000000000)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x272) write$auto(r1, &(0x7f0000000200)='/dev/mtdblock0\x00', 0x1) (async) sendfile$auto(0x3, r2, 0x0, 0x400000000006) (async) recvmmsg$auto(0x3, 0x0, 0x80000401, 0x4000, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, 0x0, 0x181502, 0x0) shmctl$auto(0x8b89, 0x6, &(0x7f0000000280)={{0x1000, 0xee00, 0xee01, 0x80000000, 0x5, 0xffffffc0}, 0x2, 0x8, 0x0, 0x7, @raw=0xfb29, @inferred=0xffffffffffffffff, 0x7e, 0x0, &(0x7f00000000c0)="4834e5acb320f2c965cf88fbf37ad3d8bdc2", &(0x7f0000000100)="aa64120ff79fcc848b19d618ceb20ecf47812730518658dde8f41b1c288273aa90a0101e60f24c5d264bbc99c12d8189e2fddb179d142fc9432fa80fb731b17c7fce24e61dd7a0f7ff13df6c830b400d49d4c44da211d4c70f83345504a64b4afc22f869781990bac7a50f91f26a4de529c85966c5d88793a6975245bc5c22e174d36e62bf1f2b4eecbb06fe3a32b71507c7c2f195735c6c7b987db2ac777166e90141e5aaef9a50e78172a6d2d72def78b8bb07895f28fe67f31ff6fc654a35ea0600df1a656de0b3934a79d302"}) setfsuid$auto(r4) write$auto(0x6, 0x0, 0x100000001) (async) sysfs$auto(0x2, 0x2e, 0x0) 681.543617ms ago: executing program 1 (id=1765): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), r0) sendmsg$auto_NL802154_CMD_GET_SEC_DEV(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000027c0)={&(0x7f0000000c00)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x48800}, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x29b906c3, 0x2020009, 0x4, 0xeb3, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x8, 0x8000) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, 0x0, 0x0, 0x0) pread64$auto(r1, 0x0, 0x100, 0x103) unshare$auto(0x40000080) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x202000a, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000600)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="6c010000", @ANYRES16=0x0, @ANYBLOB="00022bbd7000fedbdf25110000003c00018008000100", @ANYRES32=0x0, @ANYBLOB="0800030072ffffff080003000800000008000100", @ANYRES32=0x0, @ANYBLOB="0800030000020000080003000900000008000100", @ANYRES32=0x0, @ANYBLOB="380001800800030000000080080003000500000008000100", @ANYRES32=0x0, @ANYBLOB="08000100f048f237b73170c0995e95fe96e2b808", @ANYRES32=0x0, @ANYBLOB="14000200626f6e643000000000000000000000005400018008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="1400020076657468315f746f5f6873720000000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="080003000600000014000200776732000000000000000000000000004400018008000100", @ANYRES32=0x0, @ANYBLOB="080003000b0000001400020076657468305f766972745f776966690008000100", @ANYRES32=0x0, @ANYBLOB="14000200726f736530000000000000000000000020000180140002006d61637365633000000000000000000008000300040000002c000180080003000000000008000100", @ANYRES32=0x0, @ANYBLOB="080003000200000008000100", @ANYRES32=0x0, @ANYBLOB="0800030008000000"], 0x16c}, 0x1, 0x0, 0x0, 0x800c001}, 0x400c000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x6a1, 0x2000000000002) r2 = socket(0x9, 0x6, 0x8000005) socket(0x28, 0x1, 0x0) socket(0x2a, 0x9, 0x3) open(&(0x7f0000000000)='./bus\x00', 0x22042, 0x45) fanotify_mark$auto(0x0, 0x1, 0x9, 0x4, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmmsg$auto(r2, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x6}, 0x7}, 0x3, 0x0) readv$auto(0x0, &(0x7f0000000080)={0x0, 0x60}, 0x3) clock_nanosleep$auto(0x2, 0x6, 0x0, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r3 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy4/reset\x00', 0x2, 0x0) r4 = mq_open$auto(&(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy0/reset\x00', 0x2, 0x3a, &(0x7f0000000080)={0x1a59, 0x3, 0x5}) write$auto_tty_fops_tty_io(r4, &(0x7f00000000c0)="cd4c7dda4ff8866721b4213c52e68b08a784fccc8ba2e40fda3c37e9c200dcd99e4596be1a1b2f44", 0x28) pwritev$auto(r3, &(0x7f0000000180)={0x0, 0x2}, 0x3, 0x5, 0x5) 559.911287ms ago: executing program 2 (id=1766): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x0) getsockopt$auto(0x100000006, 0x0, 0x16, 0xfffffffffffffffe, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = eventfd$auto(0x4) r1 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000000), r0) ioctl$auto_VHOST_SET_OWNER(0xffffffffffffffff, 0xaf01, 0x5) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x0, 0x2091d1, 0x1, 0x0, 0x6, 0x2) prctl$auto(0x5, 0x2, 0x7fffffffefff, 0x0, 0x0) ioctl$auto(0xffffffffffffffff, 0x4004af07, r1) r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000000c0), r0) r3 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000800)='/dev/snd/pcmC1D1p\x00', 0x200, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_STATUS_EXT32(r3, 0xc06c4124, 0x0) sendmsg$auto_TIPC_NL_MEDIA_GET(r0, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1109cfcde5bc6fb1285f021a806cd4e48b35", @ANYRES16=r2, @ANYBLOB="000125bd7000fedbdf250b000000d400000091401036f36babfc88de1de42f41820e754f8b87872ad9c4eaba75f0d8a727244e9d145804fb029a173193608f34e8810d1beb6125da489f6dad14b0af7e72a1a6cf09ff6accb30af6951fc43b06cbf4b467e0a4c48236b6b6b97bbfdba12135794077e22c7abbe60411c9ee42f7ed6dfd33cf5b69e3a2c0332c04aacf6397106b02134555c73bb1d6ae0f02e895a76f89343565b48fa641884859ce2798b0aa3737c12373f5cf9dbb605bd0b3f476ba9df763ed7deb5179aea36bd072b1102679fffb2a4fe9abcb51d56c7f57808436"], 0xe8}, 0x1, 0x0, 0x0, 0x40000}, 0x48040) openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x3818c1, 0x0) unshare$auto(0x40000080) r4 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video54\x00', 0x42942, 0x0) r5 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000001ac0), 0x40, 0x0) ioctl$auto_TUNGETVNETBE2(r5, 0x800454df, &(0x7f0000001b00)=0x1ff) read$auto_proc_loginuid_operations_base(r0, &(0x7f0000000140)=""/93, 0x5d) sendmsg$auto_TIPC_NL_NET_GET(0xffffffffffffffff, &(0x7f0000005100)={0x0, 0x0, &(0x7f00000050c0)={&(0x7f0000000c80)=ANY=[@ANYRES16=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x568}}, 0x4000001) r6 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r6, &(0x7f0000000000)="c80d1b5d399b39", 0xfdef) writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000040), 0x7111}, 0x8) write$auto_proc_page_owner_threshold_(r4, &(0x7f0000000140), 0x0) 546.390945ms ago: executing program 3 (id=1767): mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x2) mmap$auto(0x0, 0x20009, 0x386, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x2, 0x801, 0x106) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x10, 0x80002, 0x0) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) timerfd_settime$auto(r0, 0x3, 0x0, 0x0) read$auto(0x3, 0x0, 0x80) settimeofday$auto(&(0x7f0000000180)={0x10000001f, 0x1}, 0x0) r1 = openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/Virtual-1/edid_override\x00', 0x2082, 0x0) write$auto_drm_edid_fops_drm_debugfs(r1, 0x0, 0x0) mount$auto(0x0, &(0x7f0000000540)='}[,&*}\x00', &(0x7f0000000040)='\xb7Qs\x03 ', 0x3, &(0x7f0000000000)="4c186c7a") 524.864578ms ago: executing program 0 (id=1768): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), r0) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYRES64=r1, @ANYRES16=r2, @ANYRES8=r0], 0x40}, 0x1, 0x0, 0x0, 0x40480c0}, 0x4040814) r3 = syz_clone(0x4208000, 0x0, 0x0, 0x0, 0x0, 0x0) setpgid$auto(r3, r3) 228.941295ms ago: executing program 0 (id=1769): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001080)='/proc/asound/card0/dummy_pcm\x00', 0x1c1080, 0x0) read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f00000010c0)=""/4096, 0x1000) (async) bpf$auto(0x18, &(0x7f0000000040)=@batch={0x6, 0xe, 0xda9, 0x9, 0x8, 0xffffffffffffffff, 0x5, 0x6}, 0x92) (async) sendmsg$auto_NL80211_CMD_SET_PMKSA(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x440d1}, 0x4084) (async) syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), 0xffffffffffffffff) (async) socket(0x11, 0x3, 0x9) (async) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x4d}) (async) openat$auto_ftrace_formats_fops_trace_printk(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/printk_formats\x00', 0x100000, 0x0) close_range$auto(0x2, 0x8, 0x0) (async) mmap$auto(0x0, 0x80004, 0x400000000e2, 0xeb1, 0x405, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0x15, 0x5, 0x0) (async) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0xa00, 0x0) ioctl$auto_RTC_UIE_ON(r1, 0x7003, 0x4) close_range$auto(0x2, 0x8, 0x0) (async) fcntl$auto(0x3, 0x4, 0xa553) r2 = socket(0x15, 0x1, 0x0) sendmsg$auto_SMC_NETLINK_GET_LGR_SMCD(r2, &(0x7f0000000540)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x18023c}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)=ANY=[@ANYBLOB="78e60000", @ANYRES16=0x0, @ANYBLOB="00012abd7000fcdbdf25040000004d41c28f66b8e0a06fb9e2e0bb2386a8662ac759f456cce7cdcb96c4261b7317434e4fdb899687c1d7698766106bd36c2da4b3d752627c0a9e70a0278525e2ac63764f00"], 0x58}, 0x1, 0x0, 0x0, 0x8800}, 0x4000081) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x0, 0x0) ioctl$auto_IOC_PR_RELEASE(r3, 0x401070ca, 0x0) (async) ioctl$auto_BLKGETSIZE64(0xffffffffffffffff, 0x80081272, &(0x7f0000000340)=0x2) openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/mice\x00', 0x22002, 0x0) openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, 0x0, 0x181201, 0x0) (async) ioctl$auto(0x3, 0x80484d11, r2) (async) r4 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x60c) (async) r5 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000200), r2) sendmsg$auto_OVS_METER_CMD_DEL(r4, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x220c6002}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="00027be5f79efedbdf250300000008000100020000001400030006000000000000000600000000000000"], 0x30}, 0x1, 0x0, 0x0, 0x4004010}, 0x0) 208.235901ms ago: executing program 3 (id=1770): fsconfig$auto(0xffffffffffffffff, 0x80, 0x0, 0x0, 0x0) sendto$auto(0x3, 0x0, 0x13, 0x7, &(0x7f0000000440)=@tipc=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x3, 0x8}}, 0x20) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x10000100200000) setrlimit$auto(0xb, 0x0) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) mmap$auto(0x0, 0xa00006, 0x100, 0x80000000010, 0xffffffffffffffff, 0x300000000000) mmap$auto(0x2000000003, 0x400009, 0x8, 0x50, 0x2, 0x8000) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x18}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x0) r1 = io_uring_setup$auto(0xc, 0x0) mmap$auto(0x0, 0x400408, 0x10001, 0x411, r1, 0x8000) mprotect$auto(0x8000, 0x8, 0x8) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) prctl$auto(0x3, 0x1, 0xffffffffffffffff, 0xff, 0x8000) acct$auto(&(0x7f0000000000)='/dev/bus/usb/036/001\x00') socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) 0s ago: executing program 0 (id=1771): mmap$auto(0x10000000, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000008000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x1) recvfrom$auto(0xffffffffffffffff, 0x0, 0x810000000e, 0xa00, 0x0, 0xfffffffffffffffd) socket(0x2, 0x1, 0x106) fcntl$auto(0x3, 0x4, 0xa553) listen$auto(0x3, 0x81) shutdown$auto(0x200000003, 0x2) close_range$auto(0x2, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x4000000000018, 0x2, 0x8001) prctl$auto(0x4b, 0x8, 0x0, 0x0, 0x0) r0 = socket(0xf, 0xa, 0x0) socket(0x5, 0x3, 0x4) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, 0x0, 0x55) writev$auto(r0, &(0x7f0000001040)={&(0x7f0000000040)="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"}, 0xfffffffffffffffc) write$auto(0x3, 0x0, 0xfdef) mincore$auto(0x1000, 0x8003, 0x0) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) ioctl$auto(0x3, 0x40081271, 0x38) close_range$auto(0x0, 0xfffffffffffff000, 0x7) fanotify_init$auto(0x1, 0x2000000000002) socket(0x38, 0x5, 0x200003) socket(0x2, 0x801, 0x4) socket(0x26, 0x80805, 0x0) open(&(0x7f00000010c0)='./bus\x00', 0x4202, 0x47) fanotify_mark$auto(0x0, 0x1, 0x9, 0x4, 0x0) socket(0x2, 0x4, 0x106) kernel console output (not intermixed with test programs): 222.554204][ T8407] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 222.554220][ T8407] RIP: 0033:0x7fd170b9ce59 [ 222.554233][ T8407] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 222.554249][ T8407] RSP: 002b:00007fd171b3f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 222.554264][ T8407] RAX: ffffffffffffffda RBX: 00007fd170e15fa0 RCX: 00007fd170b9ce59 [ 222.554274][ T8407] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000010 [ 222.554283][ T8407] RBP: 00007fd170c32d6f R08: 0000000000000000 R09: 0000000000000000 [ 222.554296][ T8407] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 222.554305][ T8407] R13: 00007fd170e16038 R14: 00007fd170e15fa0 R15: 00007fff7e97afd8 [ 222.554325][ T8407] [ 222.841089][ T8374] Process accounting resumed [ 224.198652][ T8438] tc_dump_action: action bad kind [ 224.225094][ T8429] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 224.256235][ T8429] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 224.327012][ T8429] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 224.345211][ T8429] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 225.797300][ T5649] Bluetooth: hci0: command 0x2016 tx timeout [ 226.275951][ T5649] Bluetooth: hci1: command 0x0c1a tx timeout [ 226.357265][ T50] Bluetooth: hci2: command 0x0c1a tx timeout [ 226.369433][ T5649] Bluetooth: hci3: command 0x0c1a tx timeout [ 226.718977][ T5649] Bluetooth: hci1: unexpected event 0x10 length: 124 > 1 [ 226.721134][ T50] Bluetooth: hci1: hardware error 0x00 [ 226.852445][ T5649] Bluetooth: hci1: unexpected event 0x1c length: 725 > 5 [ 228.301057][ T8532] netlink: 334 bytes leftover after parsing attributes in process `syz.0.503'. [ 228.340979][ T8542] netlink: 334 bytes leftover after parsing attributes in process `syz.0.503'. [ 228.757262][ T50] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 231.176802][ T8564] Process accounting resumed [ 231.251221][ T808] ACPI Error: Could not disable RealTimeClock events (20251212/evxfevnt-243) [ 233.018221][ T8610] block loop4: the capability attribute has been deprecated. [ 235.866259][ T8675] netlink: 'syz.0.529': attribute type 1 has an invalid length. [ 238.497375][ T8723] netlink: 20 bytes leftover after parsing attributes in process `syz.0.539'. [ 238.516631][ T8731] block nbd2: not configured, cannot reconfigure [ 238.719601][ T8736] random: crng reseeded on system resumption [ 239.019834][ T8742] random: crng reseeded on system resumption [ 240.116451][ T8761] syz.0.546 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 240.241883][ T8761] capability: warning: `syz.0.546' uses deprecated v2 capabilities in a way that may be insecure [ 242.253876][ T5711] ACPI Error: Could not disable RealTimeClock events (20251212/evxfevnt-243) [ 242.327836][ T8799] hub 1-0:1.0: USB hub found [ 242.356220][ T8799] hub 1-0:1.0: 1 port detected [ 246.274999][ T30] audit: type=1326 audit(1780746908.509:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8885 comm="syz.0.570" exe="/root/ci-qemu-gce-upstream-auto/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd170b9ce59 code=0x0 [ 246.895339][ T8899] FAULT_INJECTION: forcing a failure. [ 246.895339][ T8899] name failslab, interval 1, probability 0, space 0, times 0 [ 246.946185][ T8899] CPU: 1 UID: 0 PID: 8899 Comm: syz.1.573 Tainted: G I L syzkaller #0 PREEMPT(full) [ 246.946244][ T8899] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 246.946257][ T8899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 246.946283][ T8899] Call Trace: [ 246.946292][ T8899] [ 246.946303][ T8899] dump_stack_lvl+0x100/0x190 [ 246.946358][ T8899] should_fail_ex.cold+0x5/0xa [ 246.946393][ T8899] ? lsm_blob_alloc+0x68/0x90 [ 246.946432][ T8899] should_failslab+0xc2/0x120 [ 246.946466][ T8899] __kmalloc_noprof+0xe0/0x850 [ 246.946508][ T8899] ? trace_kmem_cache_alloc+0xd5/0x100 [ 246.946548][ T8899] lsm_blob_alloc+0x68/0x90 [ 246.946589][ T8899] security_prepare_creds+0x2d/0x290 [ 246.946629][ T8899] prepare_creds+0x5d6/0x950 [ 246.946661][ T8899] lookup_user_key+0x8e9/0x1300 [ 246.946698][ T8899] ? __pfx_lookup_user_key+0x10/0x10 [ 246.946730][ T8899] ? do_futex+0x192/0x350 [ 246.946759][ T8899] ? __pfx_do_futex+0x10/0x10 [ 246.946790][ T8899] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 246.946827][ T8899] ? __x64_sys_futex+0x34f/0x4d0 [ 246.946853][ T8899] ? __x64_sys_futex+0x358/0x4d0 [ 246.946892][ T8899] keyctl_watch_key+0x52/0x500 [ 246.946926][ T8899] __do_sys_keyctl+0x29f/0x5a0 [ 246.946957][ T8899] do_syscall_64+0x115/0x840 [ 246.946995][ T8899] ? clear_bhb_loop+0x40/0x90 [ 246.947029][ T8899] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 246.947059][ T8899] RIP: 0033:0x7f2674f9ce59 [ 246.947083][ T8899] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 246.947109][ T8899] RSP: 002b:00007f2675eed028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 246.947143][ T8899] RAX: ffffffffffffffda RBX: 00007f2675215fa0 RCX: 00007f2674f9ce59 [ 246.947161][ T8899] RDX: 0000000000000005 RSI: ffffffffffffffff RDI: 0200000000000020 [ 246.947179][ T8899] RBP: 00007f2675032d6f R08: 0000000000000008 R09: 0000000000000000 [ 246.947196][ T8899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 246.947213][ T8899] R13: 00007f2675216038 R14: 00007f2675215fa0 R15: 00007fff61ca1a48 [ 246.947261][ T8899] [ 247.881511][ T8893] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 249.466533][ T8946] smpboot: CPU 1 is now offline [ 251.307731][ T8980] netlink: 28 bytes leftover after parsing attributes in process `syz.2.590'. [ 252.622417][ T9016] __vm_enough_memory: pid: 9016, comm: syz.3.591, bytes: 4398046457856 not enough memory for the allocation [ 254.114667][ T9036] netlink: 342 bytes leftover after parsing attributes in process `syz.2.603'. [ 254.182740][ T9040] netlink: 342 bytes leftover after parsing attributes in process `syz.2.603'. [ 254.375288][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 254.384136][ T1318] ieee802154 phy1 wpan1: encryption failed: -22 [ 254.874688][ T9008] Process accounting paused [ 255.998326][ T9062] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 256.026558][ T9062] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 256.063544][ T9062] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 257.319877][ T50] Bluetooth: hci0: command 0x2016 tx timeout [ 258.039881][ T50] Bluetooth: hci2: command 0x0c1a tx timeout [ 258.120019][ T50] Bluetooth: hci3: command 0x0c1a tx timeout [ 261.871585][ T9194] Process accounting paused [ 262.533315][ T9215] FAULT_INJECTION: forcing a failure. [ 262.533315][ T9215] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 262.624170][ T9215] CPU: 0 UID: 0 PID: 9215 Comm: syz.3.633 Tainted: G I L syzkaller #0 PREEMPT(full) [ 262.624200][ T9215] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 262.624206][ T9215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 262.624216][ T9215] Call Trace: [ 262.624221][ T9215] [ 262.624227][ T9215] dump_stack_lvl+0x100/0x190 [ 262.624258][ T9215] should_fail_ex.cold+0x5/0xa [ 262.624278][ T9215] _copy_from_iter+0x1f4/0x1690 [ 262.624302][ T9215] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 262.624326][ T9215] ? __pfx__copy_from_iter+0x10/0x10 [ 262.624349][ T9215] ? alloc_pages_mpol+0x25a/0x540 [ 262.624368][ T9215] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 262.624389][ T9215] copy_page_from_iter+0x238/0x300 [ 262.624414][ T9215] anon_pipe_write+0xaf0/0x18c0 [ 262.624440][ T9215] ? __pfx_anon_pipe_write+0x10/0x10 [ 262.624459][ T9215] ? apparmor_file_permission+0x13f/0x1c0 [ 262.624479][ T9215] ? bpf_lsm_file_permission+0x9/0x10 [ 262.624494][ T9215] ? security_file_permission+0x76/0x210 [ 262.624515][ T9215] ? rw_verify_area+0xce/0x6d0 [ 262.624532][ T9215] vfs_write+0x6ac/0x1070 [ 262.624549][ T9215] ? __pfx_anon_pipe_write+0x10/0x10 [ 262.624570][ T9215] ? __pfx_vfs_write+0x10/0x10 [ 262.624585][ T9215] ? find_held_lock+0x2b/0x80 [ 262.624625][ T9215] ksys_write+0x1f8/0x250 [ 262.624645][ T9215] ? __pfx_ksys_write+0x10/0x10 [ 262.624665][ T9215] ? rcu_is_watching+0x12/0xc0 [ 262.624686][ T9215] do_syscall_64+0x115/0x840 [ 262.624708][ T9215] ? clear_bhb_loop+0x40/0x90 [ 262.624727][ T9215] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 262.624744][ T9215] RIP: 0033:0x7fb88c39ce59 [ 262.624757][ T9215] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 262.624772][ T9215] RSP: 002b:00007fb88d19c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 262.624787][ T9215] RAX: ffffffffffffffda RBX: 00007fb88c616090 RCX: 00007fb88c39ce59 [ 262.624797][ T9215] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 262.624807][ T9215] RBP: 00007fb88c432d6f R08: 0000000000000000 R09: 0000000000000000 [ 262.624819][ T9215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 262.624827][ T9215] R13: 00007fb88c616128 R14: 00007fb88c616090 R15: 00007ffdd59cc908 [ 262.624847][ T9215] [ 264.448797][ T9249] netlink: 4 bytes leftover after parsing attributes in process `syz.3.639'. [ 264.472107][ T9255] netlink: 28 bytes leftover after parsing attributes in process `syz.0.641'. [ 264.936071][ T9265] FAULT_INJECTION: forcing a failure. [ 264.936071][ T9265] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 265.125534][ T9265] CPU: 0 UID: 0 PID: 9265 Comm: syz.2.642 Tainted: G I L syzkaller #0 PREEMPT(full) [ 265.125560][ T9265] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 265.125566][ T9265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 265.125575][ T9265] Call Trace: [ 265.125579][ T9265] [ 265.125585][ T9265] dump_stack_lvl+0x100/0x190 [ 265.125613][ T9265] should_fail_ex.cold+0x5/0xa [ 265.125631][ T9265] _copy_from_user+0x2e/0xd0 [ 265.125650][ T9265] do_sys_poll+0x345/0xe90 [ 265.125666][ T9265] ? is_bpf_text_address+0x94/0x1a0 [ 265.125685][ T9265] ? kernel_text_address+0x8d/0x100 [ 265.125699][ T9265] ? __kernel_text_address+0xd/0x30 [ 265.125713][ T9265] ? unwind_get_return_address+0x59/0xa0 [ 265.125733][ T9265] ? __pfx_do_sys_poll+0x10/0x10 [ 265.125748][ T9265] ? __lock_acquire+0x4a5/0x2630 [ 265.125784][ T9265] ? __lock_acquire+0x4a5/0x2630 [ 265.125835][ T9265] ? ktime_get_ts64+0x306/0x420 [ 265.125855][ T9265] ? ktime_get_ts64+0x318/0x420 [ 265.125873][ T9265] ? ktime_get_ts64+0x257/0x420 [ 265.125897][ T9265] ? poll_select_set_timeout+0xcc/0x160 [ 265.125915][ T9265] __x64_sys_poll+0x1b3/0x420 [ 265.125931][ T9265] ? __pfx___x64_sys_poll+0x10/0x10 [ 265.125946][ T9265] ? arch_syscall_is_vdso_sigreturn+0xb6/0x200 [ 265.125967][ T9265] ? syscall_user_dispatch+0x76/0x130 [ 265.125983][ T9265] do_syscall_64+0x115/0x840 [ 265.126002][ T9265] ? clear_bhb_loop+0x40/0x90 [ 265.126019][ T9265] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 265.126034][ T9265] RIP: 0033:0x7f558e79ce59 [ 265.126046][ T9265] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 265.126059][ T9265] RSP: 002b:00007f558c9b4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000007 [ 265.126074][ T9265] RAX: ffffffffffffffda RBX: 00007f558ea16270 RCX: 00007f558e79ce59 [ 265.126083][ T9265] RDX: 0000000000000108 RSI: 0000000000000005 RDI: 0000200000000040 [ 265.126092][ T9265] RBP: 00007f558c9b4090 R08: 0000000000000000 R09: 0000000000000000 [ 265.126100][ T9265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 265.126108][ T9265] R13: 00007f558ea16308 R14: 00007f558ea16270 R15: 00007ffc84d54418 [ 265.126126][ T9265] [ 265.644819][ T9271] netlink: 8 bytes leftover after parsing attributes in process `syz.1.643'. [ 268.117025][ T9319] FAULT_INJECTION: forcing a failure. [ 268.117025][ T9319] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 268.311405][ T9319] CPU: 0 UID: 0 PID: 9319 Comm: syz.2.653 Tainted: G I L syzkaller #0 PREEMPT(full) [ 268.311432][ T9319] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 268.311438][ T9319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 268.311447][ T9319] Call Trace: [ 268.311454][ T9319] [ 268.311460][ T9319] dump_stack_lvl+0x100/0x190 [ 268.311489][ T9319] should_fail_ex.cold+0x5/0xa [ 268.311504][ T9319] ? prepare_alloc_pages+0x16d/0x5f0 [ 268.311523][ T9319] should_fail_alloc_page+0xeb/0x140 [ 268.311542][ T9319] prepare_alloc_pages+0x1f0/0x5f0 [ 268.311562][ T9319] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 268.311586][ T9319] ? lock_acquire+0x1b1/0x370 [ 268.311607][ T9319] ? find_held_lock+0x2b/0x80 [ 268.311623][ T9319] ? clockevents_program_event+0x23e/0x820 [ 268.311638][ T9319] ? clockevents_program_event+0x23e/0x820 [ 268.311657][ T9319] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 268.311683][ T9319] ? __lock_acquire+0x4a5/0x2630 [ 268.311702][ T9319] ? __lock_acquire+0x4a5/0x2630 [ 268.311728][ T9319] ? lock_acquire+0x1b1/0x370 [ 268.311746][ T9319] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 268.311766][ T9319] ? policy_nodemask+0xed/0x4f0 [ 268.311784][ T9319] alloc_pages_mpol+0x1fb/0x540 [ 268.311801][ T9319] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 268.311817][ T9319] ? swap_entry_swapped+0x20c/0x2a0 [ 268.311833][ T9319] ? __pfx_swap_entry_swapped+0x10/0x10 [ 268.311851][ T9319] folio_alloc_mpol_noprof+0x36/0x260 [ 268.311871][ T9319] swap_cache_alloc_folio+0x1a8/0x300 [ 268.311893][ T9319] ? __pfx_swap_cache_alloc_folio+0x10/0x10 [ 268.311916][ T9319] ? __lock_acquire+0x4a5/0x2630 [ 268.311937][ T9319] swap_cluster_readahead+0x53b/0x770 [ 268.311958][ T9319] ? __lock_acquire+0x4a5/0x2630 [ 268.311981][ T9319] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 268.312002][ T9319] ? __rwlock_init+0x90/0x150 [ 268.312019][ T9319] ? find_held_lock+0x2b/0x80 [ 268.312041][ T9319] ? get_vma_policy+0x23d/0x3b0 [ 268.312059][ T9319] swapin_readahead+0x160/0x12c0 [ 268.312080][ T9319] ? do_sys_poll+0x3b0/0xe90 [ 268.312099][ T9319] ? __pfx_swapin_readahead+0x10/0x10 [ 268.312119][ T9319] ? find_held_lock+0x2b/0x80 [ 268.312135][ T9319] ? swap_table_get+0x103/0x2c0 [ 268.312157][ T9319] ? swap_table_get+0x10d/0x2c0 [ 268.312177][ T9319] ? swap_cache_get_folio+0x286/0x350 [ 268.312197][ T9319] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 268.312269][ T9319] ? __pfx_get_swap_device+0x10/0x10 [ 268.312288][ T9319] ? do_swap_page+0x931/0x6180 [ 268.312306][ T9319] do_swap_page+0x931/0x6180 [ 268.312334][ T9319] ? __pfx_do_swap_page+0x10/0x10 [ 268.312358][ T9319] ? rcu_is_watching+0x12/0xc0 [ 268.312374][ T9319] ? __pte_offset_map+0x179/0x310 [ 268.312391][ T9319] __handle_mm_fault+0x192f/0x2a00 [ 268.312415][ T9319] ? reacquire_held_locks+0xce/0x1e0 [ 268.312436][ T9319] ? __pfx___handle_mm_fault+0x10/0x10 [ 268.312458][ T9319] ? lock_vma_under_rcu+0x17c/0x590 [ 268.312483][ T9319] ? ktime_get_ts64+0x318/0x420 [ 268.312507][ T9319] handle_mm_fault+0x37b/0xa30 [ 268.312530][ T9319] do_user_addr_fault+0x5a3/0x12f0 [ 268.312551][ T9319] exc_page_fault+0x6f/0xd0 [ 268.312570][ T9319] asm_exc_page_fault+0x26/0x30 [ 268.312584][ T9319] RIP: 0033:0x7f558e79ce61 [ 268.312596][ T9319] Code: 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 268.312609][ T9319] RSP: 002b:00007f558c9f6028 EFLAGS: 00010217 [ 268.312621][ T9319] RAX: 0000000000000000 RBX: 00007f558ea16090 RCX: 00007f558e79ce59 [ 268.312630][ T9319] RDX: 0000000000000108 RSI: 0000000000000005 RDI: 0000200000000040 [ 268.312639][ T9319] RBP: 00007f558c9f6090 R08: 0000000000000000 R09: 0000000000000000 [ 268.312647][ T9319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 268.312655][ T9319] R13: 00007f558ea16128 R14: 00007f558ea16090 R15: 00007ffc84d54418 [ 268.312674][ T9319] [ 268.746715][ T9319] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 268.764682][ T9336] netlink: 8 bytes leftover after parsing attributes in process `syz.1.656'. [ 272.142548][ T9420] netlink: 8 bytes leftover after parsing attributes in process `syz.0.670'. [ 274.468143][ T9494] random: crng reseeded on system resumption [ 276.094838][ T9545] sd 0:0:1:0: PR command failed: 1026 [ 276.128888][ T9545] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 276.173640][ T9545] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 276.688590][ T9553] FAULT_INJECTION: forcing a failure. [ 276.688590][ T9553] name failslab, interval 1, probability 0, space 0, times 0 [ 276.753835][ T9553] CPU: 0 UID: 0 PID: 9553 Comm: syz.2.696 Tainted: G I L syzkaller #0 PREEMPT(full) [ 276.753865][ T9553] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 276.753871][ T9553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 276.753881][ T9553] Call Trace: [ 276.753887][ T9553] [ 276.753894][ T9553] dump_stack_lvl+0x100/0x190 [ 276.753923][ T9553] should_fail_ex.cold+0x5/0xa [ 276.753944][ T9553] should_failslab+0xc2/0x120 [ 276.753962][ T9553] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 276.753985][ T9553] ? __d_alloc+0x34/0xa40 [ 276.754008][ T9553] __d_alloc+0x34/0xa40 [ 276.754029][ T9553] d_alloc+0x4a/0x1e0 [ 276.754049][ T9553] lookup_one_qstr_excl+0x171/0x250 [ 276.754072][ T9553] start_dirop+0x59/0xb0 [ 276.754099][ T9553] simple_start_creating+0xf9/0x110 [ 276.754118][ T9553] ? __pfx_simple_start_creating+0x10/0x10 [ 276.754137][ T9553] ? mntput+0x70/0xa0 [ 276.754155][ T9553] ? simple_pin_fs+0xa3/0x190 [ 276.754172][ T9553] debugfs_start_creating.part.0+0x82/0x170 [ 276.754189][ T9553] debugfs_create_symlink+0x7f/0x220 [ 276.754206][ T9553] ref_tracker_dir_symlink+0x257/0x3b0 [ 276.754223][ T9553] ? __pfx_ref_tracker_dir_symlink+0x10/0x10 [ 276.754257][ T9553] ? find_held_lock+0x2b/0x80 [ 276.754282][ T9553] ? __pfx_net_ns_net_init+0x10/0x10 [ 276.754299][ T9553] net_ns_net_init+0x7e/0x120 [ 276.754314][ T9553] ops_init+0x1e2/0x5f0 [ 276.754332][ T9553] setup_net+0x118/0x3a0 [ 276.754347][ T9553] ? __pfx_setup_net+0x10/0x10 [ 276.754364][ T9553] ? mutex_init_lockdep+0xf1/0x120 [ 276.754382][ T9553] copy_net_ns+0x46f/0x7c0 [ 276.754402][ T9553] create_new_namespaces+0x3ea/0xac0 [ 276.754425][ T9553] unshare_nsproxy_namespaces+0xf2/0x220 [ 276.754467][ T9553] ksys_unshare+0x438/0xab0 [ 276.754490][ T9553] ? __pfx_ksys_unshare+0x10/0x10 [ 276.754510][ T9553] ? xfd_validate_state+0x129/0x190 [ 276.754524][ T9553] ? trace_kmalloc+0xe3/0x110 [ 276.754547][ T9553] __x64_sys_unshare+0x31/0x40 [ 276.754567][ T9553] do_syscall_64+0x115/0x840 [ 276.754587][ T9553] ? clear_bhb_loop+0x40/0x90 [ 276.754606][ T9553] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 276.754622][ T9553] RIP: 0033:0x7f558e79ce59 [ 276.754641][ T9553] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 276.754655][ T9553] RSP: 002b:00007f558f588028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 276.754671][ T9553] RAX: ffffffffffffffda RBX: 00007f558ea15fa0 RCX: 00007f558e79ce59 [ 276.754682][ T9553] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 276.754691][ T9553] RBP: 00007f558e832d6f R08: 0000000000000000 R09: 0000000000000000 [ 276.754700][ T9553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 276.754709][ T9553] R13: 00007f558ea16038 R14: 00007f558ea15fa0 R15: 00007ffc84d54418 [ 276.754729][ T9553] [ 277.136926][ T9560] netlink: 98 bytes leftover after parsing attributes in process `syz.0.698'. [ 277.532747][ T9571] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 277.574563][ T9571] tipc: Started in network mode [ 277.589602][ T9571] tipc: Node identity ee00, cluster identity 4711 [ 277.607136][ T9571] tipc: Node number set to 60928 [ 278.488521][ T9587] netlink: 28 bytes leftover after parsing attributes in process `syz.1.703'. [ 278.538475][ T9588] netlink: 28 bytes leftover after parsing attributes in process `syz.1.703'. [ 280.939762][ T9650] vhci_hcd vhci_hcd.0: invalid port number 38 [ 280.965532][ T9650] vhci_hcd vhci_hcd.0: default hub control req: a0c9 v75ec i0026 l0 [ 280.999023][ T30] audit: type=1800 audit(1780746943.229:9): pid=9652 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.716" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 282.032574][ T9670] zswap: compressor not available [ 282.217566][ T9664] block nbd2: not configured, cannot reconfigure [ 282.697730][ T9682] zswap: compressor not available [ 283.170248][ T9687] netlink: 12 bytes leftover after parsing attributes in process `syz.1.722'. [ 284.937853][ T9732] netlink: 330 bytes leftover after parsing attributes in process `syz.1.730'. [ 284.989723][ T9732] bridge0: port 2(bridge_slave_1) entered disabled state [ 284.998978][ T9732] bridge0: port 1(bridge_slave_0) entered disabled state [ 285.223994][ T9732] Process accounting resumed [ 285.362402][ T9745] openvswitch: netlink: Duplicate key (type 15). [ 286.235360][ T9768] usb usb16: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 286.319153][ T9769] usb usb16: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 287.237759][ T9778] netlink: 20 bytes leftover after parsing attributes in process `syz.3.739'. [ 287.319135][ T9778] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.739: iget: checksum invalid [ 287.456677][ T9778] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 287.525586][ T9778] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.739: iget: checksum invalid [ 287.590465][ T9778] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 287.679722][ T9778] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.739: iget: checksum invalid [ 287.732401][ T9778] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 287.789339][ T9778] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.739: iget: checksum invalid [ 287.849149][ T9778] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 287.907009][ T9778] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 287.947528][ T9778] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 291.605388][ T9850] netlink: 13 bytes leftover after parsing attributes in process `syz.3.750'. [ 291.660964][ T9850] netlink: 7 bytes leftover after parsing attributes in process `syz.3.750'. [ 291.717301][ T9855] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[5632] was attempted by "ci-qemu-gce-upstream-auto/syz-executor exec"[9855] [ 292.913941][ T9857] Process accounting resumed [ 292.925982][ T9875] netlink: 28 bytes leftover after parsing attributes in process `syz.0.756'. [ 293.234205][ T9882] netlink: 342 bytes leftover after parsing attributes in process `syz.2.757'. [ 293.681723][ T9893] FAULT_INJECTION: forcing a failure. [ 293.681723][ T9893] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 293.842074][ T9893] CPU: 0 UID: 0 PID: 9893 Comm: syz.3.759 Tainted: G I L syzkaller #0 PREEMPT(full) [ 293.842104][ T9893] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 293.842111][ T9893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 293.842121][ T9893] Call Trace: [ 293.842126][ T9893] [ 293.842132][ T9893] dump_stack_lvl+0x100/0x190 [ 293.842163][ T9893] should_fail_ex.cold+0x5/0xa [ 293.842179][ T9893] ? prepare_alloc_pages+0x16d/0x5f0 [ 293.842200][ T9893] should_fail_alloc_page+0xeb/0x140 [ 293.842219][ T9893] prepare_alloc_pages+0x1f0/0x5f0 [ 293.842240][ T9893] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 293.842264][ T9893] ? print_kernel_ident+0x11/0x40 [ 293.842285][ T9893] ? __hrtimer_rearm_deferred+0x24d/0x740 [ 293.842306][ T9893] ? __lock_acquire+0x4a5/0x2630 [ 293.842330][ T9893] ? __lock_acquire+0x4a5/0x2630 [ 293.842350][ T9893] ? __css_rstat_updated+0x1ce/0x5a0 [ 293.842372][ T9893] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 293.842405][ T9893] ? do_raw_spin_lock+0x128/0x260 [ 293.842422][ T9893] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 293.842437][ T9893] ? find_held_lock+0x2b/0x80 [ 293.842461][ T9893] ? __lock_acquire+0x4a5/0x2630 [ 293.842483][ T9893] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 293.842505][ T9893] ? policy_nodemask+0xed/0x4f0 [ 293.842524][ T9893] alloc_pages_mpol+0x1fb/0x540 [ 293.842542][ T9893] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 293.842564][ T9893] folio_alloc_mpol_noprof+0x36/0x260 [ 293.842585][ T9893] shmem_alloc_folio+0x135/0x160 [ 293.842606][ T9893] shmem_alloc_and_add_folio+0x371/0xd40 [ 293.842633][ T9893] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 293.842658][ T9893] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 293.842677][ T9893] shmem_get_folio_gfp+0x6ab/0x1900 [ 293.842695][ T9893] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 293.842710][ T9893] ? filemap_map_pages+0x9c1/0x2140 [ 293.842736][ T9893] shmem_fault+0x1f9/0xa20 [ 293.842752][ T9893] ? __pfx_shmem_fault+0x10/0x10 [ 293.842769][ T9893] ? __pfx_filemap_map_pages+0x10/0x10 [ 293.842793][ T9893] ? find_held_lock+0x2b/0x80 [ 293.842812][ T9893] __do_fault+0x10b/0x440 [ 293.842835][ T9893] do_fault+0xa99/0x1750 [ 293.842856][ T9893] __handle_mm_fault+0x187d/0x2a00 [ 293.842881][ T9893] ? mt_find+0x45e/0x8e0 [ 293.842909][ T9893] ? __pfx___handle_mm_fault+0x10/0x10 [ 293.842930][ T9893] ? __pfx_mt_find+0x10/0x10 [ 293.842961][ T9893] ? find_vma+0xbf/0x140 [ 293.842977][ T9893] ? __pfx_find_vma+0x10/0x10 [ 293.842995][ T9893] handle_mm_fault+0x37b/0xa30 [ 293.843020][ T9893] do_user_addr_fault+0x74c/0x12f0 [ 293.843040][ T9893] ? trace_page_fault_kernel+0x7a/0x200 [ 293.843058][ T9893] exc_page_fault+0x6f/0xd0 [ 293.843078][ T9893] asm_exc_page_fault+0x26/0x30 [ 293.843093][ T9893] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 293.843110][ T9893] Code: 9c 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 293.843125][ T9893] RSP: 0018:ffffc900046cfa38 EFLAGS: 00050206 [ 293.843137][ T9893] RAX: 0000000000000001 RBX: ffff888046619000 RCX: 0000000000001000 [ 293.843147][ T9893] RDX: 0000000000000001 RSI: 0000000000006000 RDI: ffff888046619000 [ 293.843155][ T9893] RBP: 0000000000006000 R08: 0000000000000001 R09: ffffed1008cc33ff [ 293.843164][ T9893] R10: ffff888046619fff R11: 0000000000000000 R12: ffffc900046cfd80 [ 293.843174][ T9893] R13: 0000000000006000 R14: 0000000000001000 R15: 0000000000000000 [ 293.843193][ T9893] _copy_from_iter+0x355/0x1690 [ 293.843215][ T9893] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 293.843237][ T9893] ? __pfx__copy_from_iter+0x10/0x10 [ 293.843259][ T9893] ? alloc_pages_mpol+0x25a/0x540 [ 293.843277][ T9893] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 293.843297][ T9893] copy_page_from_iter+0x238/0x300 [ 293.843321][ T9893] anon_pipe_write+0xaf0/0x18c0 [ 293.843346][ T9893] ? __pfx_anon_pipe_write+0x10/0x10 [ 293.843365][ T9893] ? apparmor_file_permission+0x13f/0x1c0 [ 293.843384][ T9893] ? bpf_lsm_file_permission+0x9/0x10 [ 293.843405][ T9893] ? security_file_permission+0x76/0x210 [ 293.843426][ T9893] ? rw_verify_area+0xce/0x6d0 [ 293.843443][ T9893] vfs_write+0x6ac/0x1070 [ 293.843460][ T9893] ? __pfx_anon_pipe_write+0x10/0x10 [ 293.843481][ T9893] ? __pfx_vfs_write+0x10/0x10 [ 293.843496][ T9893] ? find_held_lock+0x2b/0x80 [ 293.843525][ T9893] ksys_write+0x1f8/0x250 [ 293.843542][ T9893] ? __pfx_ksys_write+0x10/0x10 [ 293.843559][ T9893] ? rcu_is_watching+0x12/0xc0 [ 293.843578][ T9893] do_syscall_64+0x115/0x840 [ 293.843597][ T9893] ? clear_bhb_loop+0x40/0x90 [ 293.843615][ T9893] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 293.843629][ T9893] RIP: 0033:0x7fb88c39ce59 [ 293.843642][ T9893] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 293.843656][ T9893] RSP: 002b:00007fb88d19c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 293.843669][ T9893] RAX: ffffffffffffffda RBX: 00007fb88c616090 RCX: 00007fb88c39ce59 [ 293.843680][ T9893] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 293.843688][ T9893] RBP: 00007fb88c432d6f R08: 0000000000000000 R09: 0000000000000000 [ 293.843697][ T9893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 293.843706][ T9893] R13: 00007fb88c616128 R14: 00007fb88c616090 R15: 00007ffdd59cc908 [ 293.843727][ T9893] [ 296.335863][ T9921] FAULT_INJECTION: forcing a failure. [ 296.335863][ T9921] name failslab, interval 1, probability 0, space 0, times 0 [ 296.425117][ T9921] CPU: 0 UID: 0 PID: 9921 Comm: syz.1.765 Tainted: G I L syzkaller #0 PREEMPT(full) [ 296.425148][ T9921] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 296.425155][ T9921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 296.425164][ T9921] Call Trace: [ 296.425170][ T9921] [ 296.425175][ T9921] dump_stack_lvl+0x100/0x190 [ 296.425206][ T9921] should_fail_ex.cold+0x5/0xa [ 296.425226][ T9921] should_failslab+0xc2/0x120 [ 296.425245][ T9921] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 296.425262][ T9921] ? debugfs_create_symlink+0x29/0x220 [ 296.425283][ T9921] kstrdup+0x51/0xe0 [ 296.425300][ T9921] debugfs_create_symlink+0x29/0x220 [ 296.425318][ T9921] ref_tracker_dir_symlink+0x257/0x3b0 [ 296.425347][ T9921] ? __pfx_ref_tracker_dir_symlink+0x10/0x10 [ 296.425382][ T9921] ? find_held_lock+0x2b/0x80 [ 296.425408][ T9921] ? __pfx_net_ns_net_init+0x10/0x10 [ 296.425426][ T9921] net_ns_net_init+0x7e/0x120 [ 296.425442][ T9921] ops_init+0x1e2/0x5f0 [ 296.425461][ T9921] setup_net+0x118/0x3a0 [ 296.425478][ T9921] ? __pfx_setup_net+0x10/0x10 [ 296.425494][ T9921] ? mutex_init_lockdep+0xf1/0x120 [ 296.425513][ T9921] copy_net_ns+0x46f/0x7c0 [ 296.425532][ T9921] create_new_namespaces+0x3ea/0xac0 [ 296.425555][ T9921] unshare_nsproxy_namespaces+0xf2/0x220 [ 296.425576][ T9921] ksys_unshare+0x438/0xab0 [ 296.425599][ T9921] ? __pfx_ksys_unshare+0x10/0x10 [ 296.425619][ T9921] ? xfd_validate_state+0x129/0x190 [ 296.425633][ T9921] ? trace_kmalloc+0xe3/0x110 [ 296.425658][ T9921] __x64_sys_unshare+0x31/0x40 [ 296.425678][ T9921] do_syscall_64+0x115/0x840 [ 296.425699][ T9921] ? clear_bhb_loop+0x40/0x90 [ 296.425719][ T9921] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 296.425735][ T9921] RIP: 0033:0x7f2674f9ce59 [ 296.425749][ T9921] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 296.425765][ T9921] RSP: 002b:00007f2675eed028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 296.425781][ T9921] RAX: ffffffffffffffda RBX: 00007f2675215fa0 RCX: 00007f2674f9ce59 [ 296.425791][ T9921] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 296.425800][ T9921] RBP: 00007f2675032d6f R08: 0000000000000000 R09: 0000000000000000 [ 296.425809][ T9921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 296.425818][ T9921] R13: 00007f2675216038 R14: 00007f2675215fa0 R15: 00007fff61ca1a48 [ 296.425837][ T9921] [ 301.310768][ T9989] kernel profiling enabled (shift: 7) [ 301.668365][ T9996] FAULT_INJECTION: forcing a failure. [ 301.668365][ T9996] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 301.792287][ T9996] CPU: 0 UID: 0 PID: 9996 Comm: syz.2.777 Tainted: G I L syzkaller #0 PREEMPT(full) [ 301.792316][ T9996] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 301.792323][ T9996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 301.792332][ T9996] Call Trace: [ 301.792338][ T9996] [ 301.792344][ T9996] dump_stack_lvl+0x100/0x190 [ 301.792374][ T9996] should_fail_ex.cold+0x5/0xa [ 301.792390][ T9996] ? prepare_alloc_pages+0x16d/0x5f0 [ 301.792411][ T9996] should_fail_alloc_page+0xeb/0x140 [ 301.792429][ T9996] prepare_alloc_pages+0x1f0/0x5f0 [ 301.792451][ T9996] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 301.792475][ T9996] ? rcu_is_watching+0x12/0xc0 [ 301.792494][ T9996] ? __lock_acquire+0x4a5/0x2630 [ 301.792518][ T9996] ? __lock_acquire+0x4a5/0x2630 [ 301.792539][ T9996] ? __css_rstat_updated+0x1ce/0x5a0 [ 301.792561][ T9996] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 301.792586][ T9996] ? do_raw_spin_lock+0x128/0x260 [ 301.792601][ T9996] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 301.792617][ T9996] ? find_held_lock+0x2b/0x80 [ 301.792640][ T9996] ? __lock_acquire+0x4a5/0x2630 [ 301.792661][ T9996] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 301.792683][ T9996] ? policy_nodemask+0xed/0x4f0 [ 301.792701][ T9996] alloc_pages_mpol+0x1fb/0x540 [ 301.792719][ T9996] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 301.792741][ T9996] folio_alloc_mpol_noprof+0x36/0x260 [ 301.792762][ T9996] shmem_alloc_folio+0x135/0x160 [ 301.792783][ T9996] shmem_alloc_and_add_folio+0x371/0xd40 [ 301.792811][ T9996] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 301.792835][ T9996] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 301.792854][ T9996] shmem_get_folio_gfp+0x6ab/0x1900 [ 301.792873][ T9996] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 301.792888][ T9996] ? filemap_map_pages+0x9c1/0x2140 [ 301.792914][ T9996] shmem_fault+0x1f9/0xa20 [ 301.792937][ T9996] ? __pfx_shmem_fault+0x10/0x10 [ 301.792955][ T9996] ? __pfx_filemap_map_pages+0x10/0x10 [ 301.792980][ T9996] ? find_held_lock+0x2b/0x80 [ 301.793000][ T9996] __do_fault+0x10b/0x440 [ 301.793017][ T9996] do_fault+0xa99/0x1750 [ 301.793038][ T9996] __handle_mm_fault+0x187d/0x2a00 [ 301.793063][ T9996] ? mt_find+0x45e/0x8e0 [ 301.793085][ T9996] ? __pfx___handle_mm_fault+0x10/0x10 [ 301.793104][ T9996] ? __pfx_mt_find+0x10/0x10 [ 301.793135][ T9996] ? find_vma+0xbf/0x140 [ 301.793150][ T9996] ? __pfx_find_vma+0x10/0x10 [ 301.793168][ T9996] handle_mm_fault+0x37b/0xa30 [ 301.793194][ T9996] do_user_addr_fault+0x74c/0x12f0 [ 301.793213][ T9996] ? trace_page_fault_kernel+0x7a/0x200 [ 301.793231][ T9996] exc_page_fault+0x6f/0xd0 [ 301.793252][ T9996] asm_exc_page_fault+0x26/0x30 [ 301.793266][ T9996] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 301.793283][ T9996] Code: 9c 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 301.793298][ T9996] RSP: 0018:ffffc90003fc7a38 EFLAGS: 00050206 [ 301.793310][ T9996] RAX: 0000000000000001 RBX: ffff88808bc1b000 RCX: 0000000000001000 [ 301.793320][ T9996] RDX: 0000000000000001 RSI: 0000000000006000 RDI: ffff88808bc1b000 [ 301.793329][ T9996] RBP: 0000000000006000 R08: 0000000000000001 R09: ffffed10117837ff [ 301.793338][ T9996] R10: ffff88808bc1bfff R11: 0000000000000000 R12: ffffc90003fc7d80 [ 301.793348][ T9996] R13: 0000000000006000 R14: 0000000000001000 R15: 0000000000000000 [ 301.793367][ T9996] _copy_from_iter+0x355/0x1690 [ 301.793390][ T9996] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 301.793412][ T9996] ? __pfx__copy_from_iter+0x10/0x10 [ 301.793433][ T9996] ? alloc_pages_mpol+0x25a/0x540 [ 301.793451][ T9996] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 301.793471][ T9996] copy_page_from_iter+0x238/0x300 [ 301.793494][ T9996] anon_pipe_write+0xaf0/0x18c0 [ 301.793519][ T9996] ? __pfx_anon_pipe_write+0x10/0x10 [ 301.793538][ T9996] ? apparmor_file_permission+0x13f/0x1c0 [ 301.793557][ T9996] ? bpf_lsm_file_permission+0x9/0x10 [ 301.793570][ T9996] ? security_file_permission+0x76/0x210 [ 301.793590][ T9996] ? rw_verify_area+0xce/0x6d0 [ 301.793606][ T9996] vfs_write+0x6ac/0x1070 [ 301.793623][ T9996] ? __pfx_anon_pipe_write+0x10/0x10 [ 301.793642][ T9996] ? __pfx_vfs_write+0x10/0x10 [ 301.793656][ T9996] ? find_held_lock+0x2b/0x80 [ 301.793685][ T9996] ksys_write+0x1f8/0x250 [ 301.793701][ T9996] ? __pfx_ksys_write+0x10/0x10 [ 301.793720][ T9996] ? rcu_is_watching+0x12/0xc0 [ 301.793738][ T9996] do_syscall_64+0x115/0x840 [ 301.793757][ T9996] ? clear_bhb_loop+0x40/0x90 [ 301.793777][ T9996] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 301.793792][ T9996] RIP: 0033:0x7f558e79ce59 [ 301.793804][ T9996] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 301.793819][ T9996] RSP: 002b:00007f558c9f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 301.793833][ T9996] RAX: ffffffffffffffda RBX: 00007f558ea16090 RCX: 00007f558e79ce59 [ 301.793842][ T9996] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 301.793851][ T9996] RBP: 00007f558e832d6f R08: 0000000000000000 R09: 0000000000000000 [ 301.793859][ T9996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 301.793868][ T9996] R13: 00007f558ea16128 R14: 00007f558ea16090 R15: 00007ffc84d54418 [ 301.793892][ T9996] [ 303.408207][T10021] netlink: 350 bytes leftover after parsing attributes in process `syz.1.783'. [ 304.278829][T10040] netlink: 'syz.3.787': attribute type 8 has an invalid length. [ 304.523402][T10050] FAULT_INJECTION: forcing a failure. [ 304.523402][T10050] name failslab, interval 1, probability 0, space 0, times 0 [ 304.611486][T10050] CPU: 0 UID: 0 PID: 10050 Comm: syz.3.790 Tainted: G I L syzkaller #0 PREEMPT(full) [ 304.611516][T10050] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 304.611523][T10050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 304.611532][T10050] Call Trace: [ 304.611538][T10050] [ 304.611544][T10050] dump_stack_lvl+0x100/0x190 [ 304.611575][T10050] should_fail_ex.cold+0x5/0xa [ 304.611595][T10050] should_failslab+0xc2/0x120 [ 304.611613][T10050] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 304.611635][T10050] ? security_inode_alloc+0x3b/0x2c0 [ 304.611652][T10050] ? lockdep_init_map_type+0x5c/0x250 [ 304.611677][T10050] security_inode_alloc+0x3b/0x2c0 [ 304.611693][T10050] inode_init_always_gfp+0xc77/0xfb0 [ 304.611715][T10050] alloc_inode+0x8e/0x250 [ 304.611743][T10050] path_from_stashed+0x25b/0x750 [ 304.611768][T10050] pidfs_alloc_file+0xf8/0x290 [ 304.611786][T10050] ? __pfx_pidfs_alloc_file+0x10/0x10 [ 304.611809][T10050] pidfd_prepare+0x10c/0x1b0 [ 304.611830][T10050] __x64_sys_pidfd_open+0x105/0x1a0 [ 304.611852][T10050] ? __pfx___x64_sys_pidfd_open+0x10/0x10 [ 304.611875][T10050] ? rcu_is_watching+0x12/0xc0 [ 304.611894][T10050] do_syscall_64+0x115/0x840 [ 304.611914][T10050] ? clear_bhb_loop+0x40/0x90 [ 304.611933][T10050] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 304.611948][T10050] RIP: 0033:0x7fb88c39ce59 [ 304.611961][T10050] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 304.611976][T10050] RSP: 002b:00007fb88d1bd028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b2 [ 304.611991][T10050] RAX: ffffffffffffffda RBX: 00007fb88c615fa0 RCX: 00007fb88c39ce59 [ 304.612001][T10050] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 304.612010][T10050] RBP: 00007fb88c432d6f R08: 0000000000000000 R09: 0000000000000000 [ 304.612019][T10050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 304.612028][T10050] R13: 00007fb88c616038 R14: 00007fb88c615fa0 R15: 00007ffdd59cc908 [ 304.612047][T10050] [ 304.617830][T10050] netlink: 812 bytes leftover after parsing attributes in process `syz.3.790'. [ 307.635147][T10111] FAULT_INJECTION: forcing a failure. [ 307.635147][T10111] name failslab, interval 1, probability 0, space 0, times 0 [ 307.709584][T10111] CPU: 0 UID: 0 PID: 10111 Comm: syz.2.802 Tainted: G I L syzkaller #0 PREEMPT(full) [ 307.709614][T10111] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 307.709621][T10111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 307.709631][T10111] Call Trace: [ 307.709636][T10111] [ 307.709642][T10111] dump_stack_lvl+0x100/0x190 [ 307.709672][T10111] should_fail_ex.cold+0x5/0xa [ 307.709692][T10111] should_failslab+0xc2/0x120 [ 307.709710][T10111] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 307.709731][T10111] ? __proc_create+0x2cb/0x8c0 [ 307.709754][T10111] __proc_create+0x2cb/0x8c0 [ 307.709774][T10111] ? __pfx___proc_create+0x10/0x10 [ 307.709802][T10111] _proc_mkdir+0xb9/0x210 [ 307.709820][T10111] ? __pfx__proc_mkdir+0x10/0x10 [ 307.709838][T10111] ? kmem_cache_alloc_noprof+0x292/0x6e0 [ 307.709860][T10111] ? proc_net_ns_init+0x42/0x420 [ 307.709882][T10111] proc_net_ns_init+0x273/0x420 [ 307.709901][T10111] ? __pfx_proc_net_ns_init+0x10/0x10 [ 307.709922][T10111] ops_init+0x1e2/0x5f0 [ 307.709940][T10111] setup_net+0x118/0x3a0 [ 307.709956][T10111] ? __pfx_setup_net+0x10/0x10 [ 307.709972][T10111] ? mutex_init_lockdep+0xf1/0x120 [ 307.709991][T10111] copy_net_ns+0x46f/0x7c0 [ 307.710010][T10111] create_new_namespaces+0x3ea/0xac0 [ 307.710033][T10111] unshare_nsproxy_namespaces+0xf2/0x220 [ 307.710053][T10111] ksys_unshare+0x438/0xab0 [ 307.710074][T10111] ? __pfx_ksys_unshare+0x10/0x10 [ 307.710093][T10111] ? xfd_validate_state+0x129/0x190 [ 307.710106][T10111] ? trace_kmalloc+0xe3/0x110 [ 307.710128][T10111] __x64_sys_unshare+0x31/0x40 [ 307.710148][T10111] do_syscall_64+0x115/0x840 [ 307.710168][T10111] ? clear_bhb_loop+0x40/0x90 [ 307.710185][T10111] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 307.710201][T10111] RIP: 0033:0x7f558e79ce59 [ 307.710215][T10111] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 307.710229][T10111] RSP: 002b:00007f558f588028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 307.710244][T10111] RAX: ffffffffffffffda RBX: 00007f558ea15fa0 RCX: 00007f558e79ce59 [ 307.710254][T10111] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 307.710263][T10111] RBP: 00007f558e832d6f R08: 0000000000000000 R09: 0000000000000000 [ 307.710271][T10111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 307.710280][T10111] R13: 00007f558ea16038 R14: 00007f558ea15fa0 R15: 00007ffc84d54418 [ 307.710299][T10111] [ 308.216365][T10117] random: crng reseeded on system resumption [ 308.287935][T10117] hub 1-0:1.0: USB hub found [ 308.337055][T10117] hub 1-0:1.0: 1 port detected [ 308.498940][T10126] netlink: 12 bytes leftover after parsing attributes in process `syz.2.806'. [ 308.543439][T10120] program syz.3.805 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 309.306065][T10139] netlink: 25 bytes leftover after parsing attributes in process `syz.0.808'. [ 309.666476][T10147] FAULT_INJECTION: forcing a failure. [ 309.666476][T10147] name fail_futex, interval 1, probability 0, space 0, times 0 [ 309.703021][T10147] CPU: 0 UID: 0 PID: 10147 Comm: syz.2.809 Tainted: G I L syzkaller #0 PREEMPT(full) [ 309.703050][T10147] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 309.703057][T10147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 309.703066][T10147] Call Trace: [ 309.703072][T10147] [ 309.703078][T10147] dump_stack_lvl+0x100/0x190 [ 309.703109][T10147] should_fail_ex.cold+0x5/0xa [ 309.703129][T10147] get_futex_key+0x1d2/0x1510 [ 309.703154][T10147] ? __pfx_get_futex_key+0x10/0x10 [ 309.703183][T10147] futex_wait_setup+0x83/0x510 [ 309.703205][T10147] __futex_wait+0x19f/0x300 [ 309.703226][T10147] ? __pfx___futex_wait+0x10/0x10 [ 309.703243][T10147] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 309.703265][T10147] ? __pfx_futex_wake_mark+0x10/0x10 [ 309.703286][T10147] ? futex_hash+0x2ad/0x370 [ 309.703308][T10147] ? futex_hash+0x141/0x370 [ 309.703332][T10147] futex_wait+0xe6/0x370 [ 309.703350][T10147] ? __pfx_futex_wait+0x10/0x10 [ 309.703372][T10147] ? ksys_write+0x190/0x250 [ 309.703394][T10147] do_futex+0x1ef/0x350 [ 309.703409][T10147] ? __pfx_do_futex+0x10/0x10 [ 309.703424][T10147] ? __pfx_do_mq_notify+0x10/0x10 [ 309.703442][T10147] __x64_sys_futex+0x34f/0x4d0 [ 309.703460][T10147] ? __pfx___x64_sys_futex+0x10/0x10 [ 309.703487][T10147] ? rcu_is_watching+0x12/0xc0 [ 309.703507][T10147] do_syscall_64+0x115/0x840 [ 309.703527][T10147] ? clear_bhb_loop+0x40/0x90 [ 309.703544][T10147] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 309.703559][T10147] RIP: 0033:0x7f558e79ce59 [ 309.703572][T10147] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 309.703587][T10147] RSP: 002b:00007f558c9d50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 309.703601][T10147] RAX: ffffffffffffffda RBX: 00007f558ea16188 RCX: 00007f558e79ce59 [ 309.703612][T10147] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f558ea16188 [ 309.703621][T10147] RBP: 00007f558ea16180 R08: 0000000000000000 R09: 0000000000000000 [ 309.703631][T10147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 309.703640][T10147] R13: 00007f558ea16218 R14: 00007ffc84d54330 R15: 00007ffc84d54418 [ 309.703659][T10147] [ 310.109691][T10151] futex_wake_op: syz.2.809 tries to shift op by -2048; fix this program [ 310.120931][T10151] 0x000000000001-0x000000020000 : "" [ 310.284437][T10151] ftl_cs: FTL header corrupt! [ 310.415509][T10155] ======================================================= [ 310.415509][T10155] WARNING: The mand mount option has been deprecated and [ 310.415509][T10155] and is ignored by this kernel. Remove the mand [ 310.415509][T10155] option from the mount to silence this warning. [ 310.415509][T10155] ======================================================= [ 310.908070][T10170] netlink: 330 bytes leftover after parsing attributes in process `syz.3.814'. [ 311.234905][T10175] i2c i2c-0: new_device: Invalid device name [ 311.277816][T10175] FAULT_INJECTION: forcing a failure. [ 311.277816][T10175] name failslab, interval 1, probability 0, space 0, times 0 [ 311.305823][T10175] CPU: 0 UID: 0 PID: 10175 Comm: syz.2.816 Tainted: G I L syzkaller #0 PREEMPT(full) [ 311.305853][T10175] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 311.305859][T10175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 311.305868][T10175] Call Trace: [ 311.305874][T10175] [ 311.305880][T10175] dump_stack_lvl+0x100/0x190 [ 311.305910][T10175] should_fail_ex.cold+0x5/0xa [ 311.305930][T10175] should_failslab+0xc2/0x120 [ 311.305947][T10175] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 311.305970][T10175] ? security_file_alloc+0x34/0x2c0 [ 311.305989][T10175] ? trace_kmem_cache_alloc+0xd5/0x100 [ 311.306012][T10175] security_file_alloc+0x34/0x2c0 [ 311.306032][T10175] init_file+0x95/0x480 [ 311.306052][T10175] alloc_empty_file+0x79/0x1c0 [ 311.306073][T10175] dentry_open+0x46/0xd0 [ 311.306094][T10175] pidfs_alloc_file+0x18f/0x290 [ 311.306111][T10175] ? __pfx_pidfs_alloc_file+0x10/0x10 [ 311.306133][T10175] pidfd_prepare+0x10c/0x1b0 [ 311.306154][T10175] __x64_sys_pidfd_open+0x105/0x1a0 [ 311.306177][T10175] ? __pfx___x64_sys_pidfd_open+0x10/0x10 [ 311.306200][T10175] ? rcu_is_watching+0x12/0xc0 [ 311.306219][T10175] do_syscall_64+0x115/0x840 [ 311.306238][T10175] ? clear_bhb_loop+0x40/0x90 [ 311.306256][T10175] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 311.306272][T10175] RIP: 0033:0x7f558e79ce59 [ 311.306293][T10175] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 311.306308][T10175] RSP: 002b:00007f558f588028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b2 [ 311.306323][T10175] RAX: ffffffffffffffda RBX: 00007f558ea15fa0 RCX: 00007f558e79ce59 [ 311.306333][T10175] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 311.306342][T10175] RBP: 00007f558e832d6f R08: 0000000000000000 R09: 0000000000000000 [ 311.306351][T10175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 311.306359][T10175] R13: 00007f558ea16038 R14: 00007f558ea15fa0 R15: 00007ffc84d54418 [ 311.306380][T10175] [ 311.621225][T10186] netlink: 'syz.1.819': attribute type 4 has an invalid length. [ 311.628915][T10186] netlink: 314 bytes leftover after parsing attributes in process `syz.1.819'. [ 311.748837][T10190] random: crng reseeded on system resumption [ 314.080342][T10232] Process accounting resumed [ 316.403332][T10277] Process accounting paused [ 317.165897][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.174568][ T1318] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.339313][T10318] netlink: 8 bytes leftover after parsing attributes in process `syz.2.841'. [ 320.307366][T10354] netlink: 8 bytes leftover after parsing attributes in process `syz.3.849'. [ 321.126256][T10385] netlink: Conntrack attr has 4 unknown bytes [ 321.246359][ T5783] ACPI Error: Could not disable RealTimeClock events (20251212/evxfevnt-243) [ 321.574942][T10398] random: crng reseeded on system resumption [ 323.219735][T10417] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 323.255760][T10417] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 323.291334][T10417] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 324.655570][ T50] Bluetooth: hci0: command 0x2016 tx timeout [ 325.291319][ T50] Bluetooth: hci3: command 0x0c1a tx timeout [ 325.297368][ T5649] Bluetooth: hci2: command 0x0c1a tx timeout [ 325.491547][T10456] ERROR: Out of memory at tomoyo_memory_ok. [ 325.522729][T10456] ERROR: Domain ' /sbin/init /etc/init.d/rcS /etc/init.d/S50sshd /sbin/start-stop-daemon /usr/sbin/sshd /usr/libexec/sshd-session /bin/sh /root/ci-qemu-gce-upstream-auto/syz-executor /root/ci-qemu-gce-upstream-auto/syz-executor /newroot/215/file0' not defined. [ 327.798328][T10505] FAULT_INJECTION: forcing a failure. [ 327.798328][T10505] name failslab, interval 1, probability 0, space 0, times 0 [ 327.812280][T10505] CPU: 0 UID: 0 PID: 10505 Comm: syz.1.879 Tainted: G I L syzkaller #0 PREEMPT(full) [ 327.812309][T10505] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 327.812316][T10505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 327.812325][T10505] Call Trace: [ 327.812332][T10505] [ 327.812339][T10505] dump_stack_lvl+0x100/0x190 [ 327.812369][T10505] should_fail_ex.cold+0x5/0xa [ 327.812385][T10505] ? pcpu_alloc_noprof+0x960/0x1cc0 [ 327.812401][T10505] should_failslab+0xc2/0x120 [ 327.812419][T10505] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 327.812442][T10505] ? radix_tree_node_alloc.constprop.0+0x66/0x340 [ 327.812460][T10505] ? __mutex_unlock_slowpath+0x15d/0x8a0 [ 327.812484][T10505] radix_tree_node_alloc.constprop.0+0x66/0x340 [ 327.812504][T10505] idr_get_free+0x52e/0xa00 [ 327.812529][T10505] idr_alloc_u32+0x1ac/0x320 [ 327.812551][T10505] ? __pfx_idr_alloc_u32+0x10/0x10 [ 327.812572][T10505] ? lock_acquire+0x1b1/0x370 [ 327.812598][T10505] idr_alloc_cyclic+0x10b/0x230 [ 327.812618][T10505] ? __pfx_idr_alloc_cyclic+0x10/0x10 [ 327.812637][T10505] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 327.812657][T10505] map_create+0x14d8/0x2bc0 [ 327.812681][T10505] ? preempt_schedule_thunk+0x16/0x30 [ 327.812707][T10505] ? __pfx_map_create+0x10/0x10 [ 327.812725][T10505] ? __might_fault+0xc5/0x140 [ 327.812746][T10505] ? __might_fault+0xc5/0x140 [ 327.812775][T10505] __sys_bpf+0x2091/0x4b90 [ 327.812788][T10505] ? futex_private_hash_put+0x107/0x1c0 [ 327.812813][T10505] ? __pfx___sys_bpf+0x10/0x10 [ 327.812828][T10505] ? __pfx_futex_wake+0x10/0x10 [ 327.812847][T10505] ? ksys_write+0x190/0x250 [ 327.812864][T10505] ? ksys_write+0x190/0x250 [ 327.812891][T10505] ? do_futex+0x192/0x350 [ 327.812917][T10505] ? xfd_validate_state+0x129/0x190 [ 327.812931][T10505] ? ksys_write+0x1ac/0x250 [ 327.812951][T10505] __x64_sys_bpf+0x7b/0xc0 [ 327.812966][T10505] ? lockdep_hardirqs_on+0x78/0x100 [ 327.812986][T10505] do_syscall_64+0x115/0x840 [ 327.813005][T10505] ? clear_bhb_loop+0x40/0x90 [ 327.813023][T10505] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 327.813038][T10505] RIP: 0033:0x7f2674f9ce59 [ 327.813052][T10505] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 327.813066][T10505] RSP: 002b:00007f2675eed028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 327.813082][T10505] RAX: ffffffffffffffda RBX: 00007f2675215fa0 RCX: 00007f2674f9ce59 [ 327.813091][T10505] RDX: 000000000000000f RSI: 00002000000001c0 RDI: 0000000000000000 [ 327.813100][T10505] RBP: 00007f2675032d6f R08: 0000000000000000 R09: 0000000000000000 [ 327.813109][T10505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 327.813118][T10505] R13: 00007f2675216038 R14: 00007f2675215fa0 R15: 00007fff61ca1a48 [ 327.813138][T10505] [ 328.411539][T10511] netlink: 11788 bytes leftover after parsing attributes in process `syz.3.881'. [ 328.472757][T10512] netlink: 28 bytes leftover after parsing attributes in process `syz.0.880'. [ 328.717341][T10512] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 328.741443][T10512] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 328.907194][T10512] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 329.013764][T10512] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 329.418150][T10517] random: crng reseeded on system resumption [ 332.170615][T10580] tunl0: entered allmulticast mode [ 332.450753][T10587] netlink: 8 bytes leftover after parsing attributes in process `syz.1.897'. [ 332.721029][T10594] random: crng reseeded on system resumption [ 332.779521][T10592] FAULT_INJECTION: forcing a failure. [ 332.779521][T10592] name failslab, interval 1, probability 0, space 0, times 0 [ 332.818614][T10597] futex_wake_op: syz.0.898 tries to shift op by -2048; fix this program [ 332.857067][T10592] CPU: 0 UID: 0 PID: 10592 Comm: syz.1.897 Tainted: G I L syzkaller #0 PREEMPT(full) [ 332.857096][T10592] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 332.857103][T10592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 332.857113][T10592] Call Trace: [ 332.857119][T10592] [ 332.857125][T10592] dump_stack_lvl+0x100/0x190 [ 332.857155][T10592] should_fail_ex.cold+0x5/0xa [ 332.857175][T10592] should_failslab+0xc2/0x120 [ 332.857193][T10592] __kmalloc_cache_noprof+0x7a/0x6f0 [ 332.857213][T10592] ? crtc_crc_open+0x3ba/0x7e0 [ 332.857235][T10592] crtc_crc_open+0x3ba/0x7e0 [ 332.857252][T10592] ? __debugfs_file_get+0x1fc/0x860 [ 332.857273][T10592] ? __pfx_crtc_crc_open+0x10/0x10 [ 332.857291][T10592] ? __pfx_apparmor_file_open+0x10/0x10 [ 332.857307][T10592] ? path_get+0x61/0x80 [ 332.857329][T10592] ? __pfx_crtc_crc_open+0x10/0x10 [ 332.857345][T10592] full_proxy_open_regular+0x1b6/0x370 [ 332.857368][T10592] do_dentry_open+0x6ab/0x14d0 [ 332.857386][T10592] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 332.857411][T10592] vfs_open+0x82/0x3f0 [ 332.857434][T10592] path_openat+0x208c/0x31a0 [ 332.857459][T10592] ? __pfx_path_openat+0x10/0x10 [ 332.857483][T10592] do_file_open+0x20e/0x430 [ 332.857502][T10592] ? __pfx_do_file_open+0x10/0x10 [ 332.857533][T10592] ? alloc_fd+0x476/0x790 [ 332.857552][T10592] ? do_getname+0x191/0x390 [ 332.857574][T10592] do_sys_openat2+0x10d/0x1e0 [ 332.857596][T10592] ? __pfx_do_sys_openat2+0x10/0x10 [ 332.857618][T10592] ? do_raw_spin_lock+0x128/0x260 [ 332.857638][T10592] __x64_sys_openat+0x12d/0x210 [ 332.857661][T10592] ? __pfx___x64_sys_openat+0x10/0x10 [ 332.857685][T10592] ? rcu_is_watching+0x12/0xc0 [ 332.857704][T10592] do_syscall_64+0x115/0x840 [ 332.857732][T10592] ? clear_bhb_loop+0x40/0x90 [ 332.857751][T10592] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 332.857766][T10592] RIP: 0033:0x7f2674f9ce59 [ 332.857780][T10592] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 332.857795][T10592] RSP: 002b:00007f2675eab028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 332.857811][T10592] RAX: ffffffffffffffda RBX: 00007f2675216180 RCX: 00007f2674f9ce59 [ 332.857821][T10592] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 332.857831][T10592] RBP: 00007f2675032d6f R08: 0000000000000000 R09: 0000000000000000 [ 332.857839][T10592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 332.857848][T10592] R13: 00007f2675216218 R14: 00007f2675216180 R15: 00007fff61ca1a48 [ 332.857867][T10592] [ 333.566337][T10603] netlink: 330 bytes leftover after parsing attributes in process `syz.0.900'. [ 333.631773][T10607] netlink: 330 bytes leftover after parsing attributes in process `syz.0.900'. [ 334.371355][T10628] ubi0: attaching mtd0 [ 334.577906][T10628] ubi0: scanning is finished [ 334.625932][T10628] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 335.584825][T10596] ACPI Error: Could not disable RealTimeClock events (20251212/evxfevnt-243) [ 335.689621][T10628] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 335.775050][ T808] ACPI Error: Could not disable RealTimeClock events (20251212/evxfevnt-243) [ 336.223626][T10654] [U] 0="­/ [ 336.243287][T10654] [U] [ 336.256446][T10654] [U] EÇeÅQ‰Í@’ [ 337.027649][T10653] [U]  [ 337.430617][T10698] random: crng reseeded on system resumption [ 340.289750][T10749] random: crng reseeded on system resumption [ 342.113301][T10776] program syz.1.932 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 342.511115][T10791] : Can't lookup blockdev [ 342.779737][T10799] netlink: 28 bytes leftover after parsing attributes in process `syz.0.937'. [ 343.720166][T10824] FAULT_INJECTION: forcing a failure. [ 343.720166][T10824] name failslab, interval 1, probability 0, space 0, times 0 [ 343.762639][T10824] CPU: 0 UID: 0 PID: 10824 Comm: syz.1.941 Tainted: G I L syzkaller #0 PREEMPT(full) [ 343.762666][T10824] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 343.762672][T10824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 343.762682][T10824] Call Trace: [ 343.762687][T10824] [ 343.762694][T10824] dump_stack_lvl+0x100/0x190 [ 343.762723][T10824] should_fail_ex.cold+0x5/0xa [ 343.762743][T10824] should_failslab+0xc2/0x120 [ 343.762761][T10824] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 343.762783][T10824] ? alloc_inode+0x183/0x250 [ 343.762804][T10824] ? do_futex+0x192/0x350 [ 343.762822][T10824] alloc_inode+0x183/0x250 [ 343.762844][T10824] create_pipe_files+0x4c/0x970 [ 343.762864][T10824] do_pipe2+0xbd/0x1e0 [ 343.762882][T10824] ? __pfx_do_pipe2+0x10/0x10 [ 343.762898][T10824] ? xfd_validate_state+0x129/0x190 [ 343.762919][T10824] __x64_sys_pipe+0x33/0x50 [ 343.762937][T10824] do_syscall_64+0x115/0x840 [ 343.762956][T10824] ? clear_bhb_loop+0x40/0x90 [ 343.762974][T10824] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 343.762989][T10824] RIP: 0033:0x7f2674f9ce59 [ 343.763003][T10824] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 343.763018][T10824] RSP: 002b:00007f2675ecc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 343.763032][T10824] RAX: ffffffffffffffda RBX: 00007f2675216090 RCX: 00007f2674f9ce59 [ 343.763042][T10824] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 343.763051][T10824] RBP: 00007f2675032d6f R08: 0000000000000000 R09: 0000000000000000 [ 343.763059][T10824] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 343.763068][T10824] R13: 00007f2675216128 R14: 00007f2675216090 R15: 00007fff61ca1a48 [ 343.763087][T10824] [ 344.891271][T10848] FAULT_INJECTION: forcing a failure. [ 344.891271][T10848] name failslab, interval 1, probability 0, space 0, times 0 [ 344.952331][T10848] CPU: 0 UID: 0 PID: 10848 Comm: syz.1.947 Tainted: G I L syzkaller #0 PREEMPT(full) [ 344.952362][T10848] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 344.952368][T10848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 344.952379][T10848] Call Trace: [ 344.952385][T10848] [ 344.952391][T10848] dump_stack_lvl+0x100/0x190 [ 344.952423][T10848] should_fail_ex.cold+0x5/0xa [ 344.952443][T10848] should_failslab+0xc2/0x120 [ 344.952461][T10848] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 344.952483][T10848] ? anon_vma_clone+0x2ba/0xcd0 [ 344.952507][T10848] anon_vma_clone+0x2ba/0xcd0 [ 344.952532][T10848] __split_vma+0x51f/0xda0 [ 344.952555][T10848] ? __pfx___split_vma+0x10/0x10 [ 344.952580][T10848] ? __pfx_mas_prev+0x10/0x10 [ 344.952606][T10848] vms_gather_munmap_vmas+0x3a5/0x1720 [ 344.952632][T10848] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 344.952661][T10848] ? mas_walk+0x6ef/0x9b0 [ 344.952685][T10848] __mmap_region+0x4aa/0x2dd0 [ 344.952711][T10848] ? __pfx___mmap_region+0x10/0x10 [ 344.952734][T10848] ? __lock_acquire+0x4a5/0x2630 [ 344.952768][T10848] ? do_raw_spin_lock+0x128/0x260 [ 344.952795][T10848] ? do_raw_spin_lock+0x128/0x260 [ 344.952811][T10848] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 344.952827][T10848] ? find_held_lock+0x2b/0x80 [ 344.952845][T10848] ? hrtimer_reprogram+0x165/0x6c0 [ 344.952861][T10848] ? trace_hrtimer_start+0x79/0x230 [ 344.952878][T10848] ? hrtimer_start_range_ns+0x860/0x1a50 [ 344.952905][T10848] ? find_held_lock+0x2b/0x80 [ 344.952922][T10848] ? finish_task_switch.isra.0+0x2c6/0x1010 [ 344.952972][T10848] mmap_region+0x35d/0x620 [ 344.952987][T10848] ? rcu_is_watching+0x12/0xc0 [ 344.953005][T10848] ? __pfx_mmap_region+0x10/0x10 [ 344.953021][T10848] ? cap_mmap_addr+0x4b/0x120 [ 344.953035][T10848] ? bpf_lsm_mmap_addr+0x9/0x30 [ 344.953049][T10848] ? security_mmap_addr+0x71/0x1e0 [ 344.953068][T10848] ? __get_unmapped_area+0x255/0x3e0 [ 344.953088][T10848] do_mmap+0xc63/0x12f0 [ 344.953110][T10848] ? __pfx_do_mmap+0x10/0x10 [ 344.953128][T10848] ? __pfx_down_write_killable+0x10/0x10 [ 344.953154][T10848] vm_mmap_pgoff+0x29e/0x470 [ 344.953178][T10848] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 344.953198][T10848] ? do_futex+0x192/0x350 [ 344.953213][T10848] ? __pfx_do_futex+0x10/0x10 [ 344.953231][T10848] ksys_mmap_pgoff+0xe4/0x610 [ 344.953250][T10848] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 344.953267][T10848] ? xfd_validate_state+0x129/0x190 [ 344.953286][T10848] __x64_sys_mmap+0x125/0x190 [ 344.953303][T10848] do_syscall_64+0x115/0x840 [ 344.953322][T10848] ? clear_bhb_loop+0x40/0x90 [ 344.953341][T10848] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 344.953356][T10848] RIP: 0033:0x7f2674f9ce59 [ 344.953370][T10848] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 344.953385][T10848] RSP: 002b:00007f2675eed028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 344.953400][T10848] RAX: ffffffffffffffda RBX: 00007f2675215fa0 RCX: 00007f2674f9ce59 [ 344.953410][T10848] RDX: 00000000000000df RSI: 000000000000e983 RDI: 0000000000000000 [ 344.953419][T10848] RBP: 00007f2675032d6f R08: 0000000000000401 R09: 0000000000008000 [ 344.953428][T10848] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 344.953437][T10848] R13: 00007f2675216038 R14: 00007f2675215fa0 R15: 00007fff61ca1a48 [ 344.953457][T10848] [ 346.371825][T10861] netlink: 342 bytes leftover after parsing attributes in process `syz.3.949'. [ 346.425662][T10861] netlink: 342 bytes leftover after parsing attributes in process `syz.3.949'. [ 346.686773][T10886] futex_wake_op: syz.1.951 tries to shift op by -2048; fix this program [ 346.705294][T10888] FAULT_INJECTION: forcing a failure. [ 346.705294][T10888] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 346.755629][T10888] CPU: 0 UID: 0 PID: 10888 Comm: syz.3.954 Tainted: G I L syzkaller #0 PREEMPT(full) [ 346.755657][T10888] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 346.755664][T10888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 346.755673][T10888] Call Trace: [ 346.755678][T10888] [ 346.755685][T10888] dump_stack_lvl+0x100/0x190 [ 346.755714][T10888] should_fail_ex.cold+0x5/0xa [ 346.755730][T10888] ? prepare_alloc_pages+0x16d/0x5f0 [ 346.755750][T10888] should_fail_alloc_page+0xeb/0x140 [ 346.755769][T10888] prepare_alloc_pages+0x1f0/0x5f0 [ 346.755791][T10888] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 346.755814][T10888] ? clockevents_program_event+0x141/0x820 [ 346.755830][T10888] ? clockevents_program_event+0x23e/0x820 [ 346.755848][T10888] ? __lock_acquire+0x4a5/0x2630 [ 346.755873][T10888] ? __lock_acquire+0x4a5/0x2630 [ 346.755903][T10888] ? __css_rstat_updated+0x1ce/0x5a0 [ 346.755926][T10888] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 346.755952][T10888] ? do_raw_spin_lock+0x128/0x260 [ 346.755968][T10888] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 346.755985][T10888] ? find_held_lock+0x2b/0x80 [ 346.756008][T10888] ? __lock_acquire+0x4a5/0x2630 [ 346.756029][T10888] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 346.756051][T10888] ? policy_nodemask+0xed/0x4f0 [ 346.756069][T10888] alloc_pages_mpol+0x1fb/0x540 [ 346.756087][T10888] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 346.756110][T10888] folio_alloc_mpol_noprof+0x36/0x260 [ 346.756130][T10888] shmem_alloc_folio+0x135/0x160 [ 346.756151][T10888] shmem_alloc_and_add_folio+0x371/0xd40 [ 346.756179][T10888] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 346.756203][T10888] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 346.756223][T10888] shmem_get_folio_gfp+0x6ab/0x1900 [ 346.756241][T10888] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 346.756256][T10888] ? filemap_map_pages+0x9c1/0x2140 [ 346.756283][T10888] shmem_fault+0x1f9/0xa20 [ 346.756298][T10888] ? __pfx_shmem_fault+0x10/0x10 [ 346.756317][T10888] ? __pfx_filemap_map_pages+0x10/0x10 [ 346.756342][T10888] ? find_held_lock+0x2b/0x80 [ 346.756361][T10888] __do_fault+0x10b/0x440 [ 346.756379][T10888] do_fault+0xa99/0x1750 [ 346.756400][T10888] __handle_mm_fault+0x187d/0x2a00 [ 346.756424][T10888] ? mt_find+0x45e/0x8e0 [ 346.756446][T10888] ? __pfx___handle_mm_fault+0x10/0x10 [ 346.756466][T10888] ? __pfx_mt_find+0x10/0x10 [ 346.756497][T10888] ? find_vma+0xbf/0x140 [ 346.756512][T10888] ? __pfx_find_vma+0x10/0x10 [ 346.756529][T10888] handle_mm_fault+0x37b/0xa30 [ 346.756555][T10888] do_user_addr_fault+0x74c/0x12f0 [ 346.756575][T10888] ? trace_page_fault_kernel+0x7a/0x200 [ 346.756593][T10888] exc_page_fault+0x6f/0xd0 [ 346.756613][T10888] asm_exc_page_fault+0x26/0x30 [ 346.756627][T10888] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 346.756644][T10888] Code: 9c 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 346.756659][T10888] RSP: 0018:ffffc90003a9fa38 EFLAGS: 00050206 [ 346.756672][T10888] RAX: 0000000000000001 RBX: ffff88807c4bc000 RCX: 0000000000001000 [ 346.756681][T10888] RDX: 0000000000000001 RSI: 0000000000008000 RDI: ffff88807c4bc000 [ 346.756690][T10888] RBP: 0000000000008000 R08: 0000000000000001 R09: ffffed100f8979ff [ 346.756699][T10888] R10: ffff88807c4bcfff R11: 0000000000000000 R12: ffffc90003a9fd80 [ 346.756708][T10888] R13: 0000000000008000 R14: 0000000000001000 R15: 0000000000000000 [ 346.756727][T10888] _copy_from_iter+0x355/0x1690 [ 346.756750][T10888] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 346.756772][T10888] ? __pfx__copy_from_iter+0x10/0x10 [ 346.756794][T10888] ? alloc_pages_mpol+0x25a/0x540 [ 346.756813][T10888] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 346.756833][T10888] copy_page_from_iter+0x238/0x300 [ 346.756855][T10888] anon_pipe_write+0xaf0/0x18c0 [ 346.756887][T10888] ? __pfx_anon_pipe_write+0x10/0x10 [ 346.756907][T10888] ? apparmor_file_permission+0x13f/0x1c0 [ 346.756927][T10888] ? bpf_lsm_file_permission+0x9/0x10 [ 346.756941][T10888] ? security_file_permission+0x76/0x210 [ 346.756962][T10888] ? rw_verify_area+0xce/0x6d0 [ 346.756979][T10888] vfs_write+0x6ac/0x1070 [ 346.756996][T10888] ? __pfx_anon_pipe_write+0x10/0x10 [ 346.757015][T10888] ? __pfx_vfs_write+0x10/0x10 [ 346.757030][T10888] ? find_held_lock+0x2b/0x80 [ 346.757059][T10888] ksys_write+0x1f8/0x250 [ 346.757075][T10888] ? __pfx_ksys_write+0x10/0x10 [ 346.757093][T10888] ? rcu_is_watching+0x12/0xc0 [ 346.757112][T10888] do_syscall_64+0x115/0x840 [ 346.757131][T10888] ? clear_bhb_loop+0x40/0x90 [ 346.757148][T10888] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 346.757163][T10888] RIP: 0033:0x7fb88c39ce59 [ 346.757176][T10888] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 346.757190][T10888] RSP: 002b:00007fb88d19c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 346.757203][T10888] RAX: ffffffffffffffda RBX: 00007fb88c616090 RCX: 00007fb88c39ce59 [ 346.757213][T10888] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 346.757222][T10888] RBP: 00007fb88c432d6f R08: 0000000000000000 R09: 0000000000000000 [ 346.757230][T10888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 346.757239][T10888] R13: 00007fb88c616128 R14: 00007fb88c616090 R15: 00007ffdd59cc908 [ 346.757259][T10888] [ 346.758111][T10865] 0x001c00000000-0x100002c00000200 : "" [ 347.726621][T10893] tipc: Started in network mode [ 347.731606][T10893] tipc: Node identity ee00, cluster identity 4711 [ 347.766370][T10893] tipc: Node number set to 60928 [ 348.069931][T10865] mtd: partition "" is out of reach -- disabled [ 348.110484][T10865] ftl_cs: FTL header not found. [ 348.479128][T10865] Process accounting resumed [ 348.634365][T10926] netlink: 28 bytes leftover after parsing attributes in process `syz.3.959'. [ 349.885356][T10948] netlink: 8 bytes leftover after parsing attributes in process `syz.3.963'. [ 351.173052][T10975] qrtr: Invalid version 0 [ 352.036360][T11001] netlink: 'syz.3.975': attribute type 16 has an invalid length. [ 352.078050][T11001] netlink: 306 bytes leftover after parsing attributes in process `syz.3.975'. [ 352.184285][T11009] netlink: 'syz.3.975': attribute type 16 has an invalid length. [ 352.312245][T11009] netlink: 306 bytes leftover after parsing attributes in process `syz.3.975'. [ 352.503638][T11016] nbd: socks must be embedded in a SOCK_ITEM attr [ 352.526553][T11016] block nbd1: shutting down sockets [ 352.587900][T11016] netlink: 28 bytes leftover after parsing attributes in process `syz.2.976'. [ 353.808907][ T50] Bluetooth: hci2: Malformed HCI Event: 0x22 [ 353.886348][T11055] netlink: 8 bytes leftover after parsing attributes in process `syz.3.984'. [ 355.125412][T11093] NFSD: Failed to start, no listeners configured. [ 356.032934][T11111] warning: `syz.1.993' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 357.489420][T11139] netlink: 12 bytes leftover after parsing attributes in process `syz.0.997'. [ 357.927368][T11139] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.997: iget: checksum invalid [ 358.004197][T11139] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 358.072845][T11139] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.997: iget: checksum invalid [ 358.127706][ T6665] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u8:12: bg 2: bad block bitmap checksum [ 358.153588][T11139] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 358.211860][T11139] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.997: iget: checksum invalid [ 358.230238][ T6665] EXT4-fs (sda1): Delayed block allocation failed for inode 2028 at logical offset 1394 with max blocks 3 with error 74 [ 358.300158][ T6665] EXT4-fs (sda1): This should not happen!! Data will be lost [ 358.300158][ T6665] [ 358.395035][T11139] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 358.587857][T11139] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.997: iget: checksum invalid [ 358.723413][T11139] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 358.786144][T11139] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 358.852560][T11139] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 364.058335][T11252] netlink: zone id is out of range [ 364.076628][T11252] netlink: zone id is out of range [ 364.109635][T11252] netlink: zone id is out of range [ 364.182513][T11252] netlink: zone id is out of range [ 364.221467][T11252] netlink: zone id is out of range [ 364.259443][T11252] netlink: zone id is out of range [ 364.291421][T11252] netlink: zone id is out of range [ 364.324974][T11252] netlink: zone id is out of range [ 364.347805][T11252] netlink: zone id is out of range [ 364.372926][T11252] netlink: zone id is out of range [ 365.627453][T11295] netlink: 'syz.0.1030': attribute type 4 has an invalid length. [ 365.679609][T11295] netlink: 'syz.0.1030': attribute type 1 has an invalid length. [ 365.993487][ T50] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 366.001172][ T50] Bluetooth: hci0: Invalid handle: 0x3a4a > 0x0eff [ 369.893899][T11358] netlink: 'syz.1.1041': attribute type 4 has an invalid length. [ 370.005825][T11358] netlink: 314 bytes leftover after parsing attributes in process `syz.1.1041'. [ 370.920527][T11365] netlink: 'syz.0.1044': attribute type 4 has an invalid length. [ 370.962570][T11365] netlink: 'syz.0.1044': attribute type 5 has an invalid length. [ 370.994274][T11365] netlink: 10 bytes leftover after parsing attributes in process `syz.0.1044'. [ 372.862776][T11418] FAULT_INJECTION: forcing a failure. [ 372.862776][T11418] name fail_futex, interval 1, probability 0, space 0, times 0 [ 372.862806][T11418] CPU: 0 UID: 0 PID: 11418 Comm: syz.3.1053 Tainted: G I L syzkaller #0 PREEMPT(full) [ 372.862830][T11418] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 372.862841][T11418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 372.862850][T11418] Call Trace: [ 372.862855][T11418] [ 372.862862][T11418] dump_stack_lvl+0x100/0x190 [ 372.862891][T11418] should_fail_ex.cold+0x5/0xa [ 372.862911][T11418] get_futex_key+0x1d2/0x1510 [ 372.862936][T11418] ? __pfx_get_futex_key+0x10/0x10 [ 372.862959][T11418] ? find_held_lock+0x2b/0x80 [ 372.862976][T11418] ? futex_wake+0x456/0x530 [ 372.862998][T11418] futex_wake+0xea/0x530 [ 372.863024][T11418] ? __pfx_futex_wake+0x10/0x10 [ 372.863043][T11418] ? find_held_lock+0x2b/0x80 [ 372.863060][T11418] ? do_sys_openat2+0x1b4/0x1e0 [ 372.863085][T11418] do_futex+0x32b/0x350 [ 372.863100][T11418] ? __pfx_do_futex+0x10/0x10 [ 372.863119][T11418] __x64_sys_futex+0x34f/0x4d0 [ 372.863135][T11418] ? fdget_pos+0x2c0/0x380 [ 372.863161][T11418] ? __pfx___x64_sys_futex+0x10/0x10 [ 372.863175][T11418] ? ksys_write+0x1ac/0x250 [ 372.863191][T11418] ? __pfx_ksys_write+0x10/0x10 [ 372.863210][T11418] ? rcu_is_watching+0x12/0xc0 [ 372.863230][T11418] do_syscall_64+0x115/0x840 [ 372.863250][T11418] ? clear_bhb_loop+0x40/0x90 [ 372.863268][T11418] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 372.863282][T11418] RIP: 0033:0x7fb88c39ce59 [ 372.863295][T11418] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 372.863310][T11418] RSP: 002b:00007fb88d17b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 372.863324][T11418] RAX: ffffffffffffffda RBX: 00007fb88c616188 RCX: 00007fb88c39ce59 [ 372.863334][T11418] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb88c61618c [ 372.863343][T11418] RBP: 00007fb88c616180 R08: 0000000000000001 R09: 0000000000000000 [ 372.863352][T11418] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 372.863360][T11418] R13: 00007fb88c616218 R14: 00007ffdd59cc820 R15: 00007ffdd59cc908 [ 372.863379][T11418] [ 374.295218][T11438] netlink: 'syz.1.1058': attribute type 29 has an invalid length. [ 374.408281][T11438] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1058'. [ 374.968731][ T5778] ACPI Error: Could not disable RealTimeClock events (20251212/evxfevnt-243) [ 377.537560][T11529] netlink: 6 bytes leftover after parsing attributes in process `syz.1.1074'. [ 378.297877][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.308540][ T1318] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.786212][T11549] kafs: addr_prefs: Too many elements in string [ 379.192180][T11553] [U] 0 [ 379.204246][T11552] [U] ‘QUIÚ [ 379.592877][T11544] Process accounting paused [ 379.756973][T11555] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 379.988877][T11555] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 380.088409][T11555] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 380.198956][T11555] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 380.616578][T11567] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1085'. [ 381.794308][T11595] netlink: 'syz.1.1090': attribute type 10 has an invalid length. [ 381.894086][T11595] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1090'. [ 383.853986][ T30] audit: type=1800 audit(1780765495.419:10): pid=11617 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1093" name="nullb0" dev="tmpfs" ino=1327 res=0 errno=0 [ 385.194554][T11637] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.1094: iget: checksum invalid [ 385.337916][T11637] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 385.485057][T11637] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.1094: iget: checksum invalid [ 385.607356][T11637] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 385.773068][T11637] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.1094: iget: checksum invalid [ 385.941632][T11637] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 386.117353][T11637] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.1094: iget: checksum invalid [ 386.241521][T11637] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 386.337862][T11637] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 386.360373][T11654] random: crng reseeded on system resumption [ 386.416584][T11637] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 387.197443][T11663] FAULT_INJECTION: forcing a failure. [ 387.197443][T11663] name failslab, interval 1, probability 0, space 0, times 0 [ 387.349542][T11663] CPU: 0 UID: 0 PID: 11663 Comm: syz.1.1103 Tainted: G I L syzkaller #0 PREEMPT(full) [ 387.349571][T11663] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 387.349578][T11663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 387.349588][T11663] Call Trace: [ 387.349593][T11663] [ 387.349600][T11663] dump_stack_lvl+0x100/0x190 [ 387.349630][T11663] should_fail_ex.cold+0x5/0xa [ 387.349650][T11663] should_failslab+0xc2/0x120 [ 387.349667][T11663] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 387.349683][T11663] ? kvasprintf_const+0x66/0x1a0 [ 387.349708][T11663] kvasprintf+0xbc/0x150 [ 387.349728][T11663] ? __pfx_kvasprintf+0x10/0x10 [ 387.349751][T11663] ? mark_held_locks+0x40/0x70 [ 387.349775][T11663] kvasprintf_const+0x66/0x1a0 [ 387.349796][T11663] kobject_set_name_vargs+0x5a/0x140 [ 387.349812][T11663] kobject_init_and_add+0xe7/0x180 [ 387.349828][T11663] ? __pfx_kobject_init_and_add+0x10/0x10 [ 387.349842][T11663] ? __x64_sys_ioctl+0x18e/0x210 [ 387.349867][T11663] netdev_queue_update_kobjects+0x32d/0x6f0 [ 387.349892][T11663] netdev_register_kobject+0x2b3/0x3d0 [ 387.349913][T11663] register_netdevice+0x151c/0x24b0 [ 387.349935][T11663] ? __pfx_register_netdevice+0x10/0x10 [ 387.349950][T11663] ? net_generic+0xea/0x2a0 [ 387.349969][T11663] ppp_dev_configure+0x986/0xcb0 [ 387.349989][T11663] ppp_ioctl+0x9d7/0x27c0 [ 387.350005][T11663] ? find_held_lock+0x2b/0x80 [ 387.350022][T11663] ? __pfx_ppp_ioctl+0x10/0x10 [ 387.350041][T11663] ? __fget_files+0x21f/0x3d0 [ 387.350061][T11663] ? __pfx_ppp_ioctl+0x10/0x10 [ 387.350076][T11663] __x64_sys_ioctl+0x18e/0x210 [ 387.350092][T11663] do_syscall_64+0x115/0x840 [ 387.350111][T11663] ? clear_bhb_loop+0x40/0x90 [ 387.350129][T11663] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 387.350152][T11663] RIP: 0033:0x7f2674f9ce59 [ 387.350166][T11663] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 387.350181][T11663] RSP: 002b:00007f2675eed028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 387.350196][T11663] RAX: ffffffffffffffda RBX: 00007f2675215fa0 RCX: 00007f2674f9ce59 [ 387.350206][T11663] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000006 [ 387.350216][T11663] RBP: 00007f2675032d6f R08: 0000000000000000 R09: 0000000000000000 [ 387.350225][T11663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 387.350234][T11663] R13: 00007f2675216038 R14: 00007f2675215fa0 R15: 00007fff61ca1a48 [ 387.350254][T11663] [ 387.350260][T11663] kobject: can not set name properly! [ 389.772959][T11712] device-mapper: ioctl: Invalid data size in the ioctl structure: 0 [ 391.055407][T11749] netlink: 146 bytes leftover after parsing attributes in process `syz.3.1120'. [ 391.253818][T11754] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1121'. [ 391.359127][T11754] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 391.422561][T11754] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 391.482600][T11754] bond0 (unregistering): Released all slaves [ 393.472197][T11829] random: crng reseeded on system resumption [ 394.721498][T11860] netlink: 10 bytes leftover after parsing attributes in process `syz.0.1138'. [ 394.815913][T11860] netlink: 94 bytes leftover after parsing attributes in process `syz.0.1138'. [ 395.025518][ T50] Bluetooth: hci0: unexpected event 0x3e length: 508 > 260 [ 395.025542][ T50] Bluetooth: hci0: unexpected subevent 0x02 length: 507 > 260 [ 395.041309][ T50] Bluetooth: hci0: Dropping invalid advertising data [ 395.049201][ T50] Bluetooth: hci0: unknown advertising packet type: 0xe9 [ 395.049232][ T50] Bluetooth: hci0: Dropping invalid advertising data [ 395.062969][ T50] Bluetooth: hci0: Malformed LE Event: 0x02 [ 396.087258][T11889] net_ratelimit: 25 callbacks suppressed [ 396.087274][T11889] openvswitch: netlink: Multiple metadata blocks provided [ 397.047765][T11908] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 397.164232][T11908] CIFS mount error: No usable UNC path provided in device string! [ 397.164232][T11908] [ 397.210979][T11908] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 398.077737][T11929] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1153'. [ 398.226497][T11937] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1154'. [ 398.273279][T11937] bridge0: port 2(bridge_slave_1) entered disabled state [ 398.280536][T11937] bridge0: port 1(bridge_slave_0) entered disabled state [ 405.108693][T12045] random: crng reseeded on system resumption [ 408.997415][T12129] FAULT_INJECTION: forcing a failure. [ 408.997415][T12129] name failslab, interval 1, probability 0, space 0, times 0 [ 409.074099][T12129] CPU: 0 UID: 0 PID: 12129 Comm: syz.1.1192 Tainted: G I L syzkaller #0 PREEMPT(full) [ 409.074128][T12129] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 409.074135][T12129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 409.074144][T12129] Call Trace: [ 409.074150][T12129] [ 409.074156][T12129] dump_stack_lvl+0x100/0x190 [ 409.074188][T12129] should_fail_ex.cold+0x5/0xa [ 409.074207][T12129] ? security_inode_init_security+0x113/0x370 [ 409.074230][T12129] should_failslab+0xc2/0x120 [ 409.074248][T12129] __kmalloc_noprof+0xe0/0x850 [ 409.074275][T12129] security_inode_init_security+0x113/0x370 [ 409.074298][T12129] ? __pfx_shmem_initxattrs+0x10/0x10 [ 409.074317][T12129] ? __pfx_security_inode_init_security+0x10/0x10 [ 409.074352][T12129] ? make_vfsgid+0xf1/0x140 [ 409.074369][T12129] shmem_mknod+0x2ce/0x480 [ 409.074390][T12129] ? __pfx_shmem_mknod+0x10/0x10 [ 409.074414][T12129] vfs_mknod+0x3a5/0x7f0 [ 409.074432][T12129] filename_mknodat+0x5aa/0x7f0 [ 409.074454][T12129] ? __pfx_filename_mknodat+0x10/0x10 [ 409.074472][T12129] ? strncpy_from_user+0x19d/0x2d0 [ 409.074496][T12129] ? do_getname+0x191/0x390 [ 409.074523][T12129] __x64_sys_mknod+0x8f/0xc0 [ 409.074542][T12129] do_syscall_64+0x115/0x840 [ 409.074561][T12129] ? clear_bhb_loop+0x40/0x90 [ 409.074587][T12129] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 409.074604][T12129] RIP: 0033:0x7f2674f9ce59 [ 409.074618][T12129] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 409.074633][T12129] RSP: 002b:00007f2675ecc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 409.074647][T12129] RAX: ffffffffffffffda RBX: 00007f2675216090 RCX: 00007f2674f9ce59 [ 409.074658][T12129] RDX: 0000000000000004 RSI: 0000000000001001 RDI: 0000000000000000 [ 409.074667][T12129] RBP: 00007f2675032d6f R08: 0000000000000000 R09: 0000000000000000 [ 409.074676][T12129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 409.074686][T12129] R13: 00007f2675216128 R14: 00007f2675216090 R15: 00007fff61ca1a48 [ 409.074706][T12129] [ 409.748379][T12135] Process accounting resumed [ 411.012423][T12161] i2c i2c-0: delete_device: Can't parse I2C address [ 411.049705][T12161] FAULT_INJECTION: forcing a failure. [ 411.049705][T12161] name failslab, interval 1, probability 0, space 0, times 0 [ 411.095419][T12161] CPU: 0 UID: 0 PID: 12161 Comm: syz.1.1199 Tainted: G I L syzkaller #0 PREEMPT(full) [ 411.095448][T12161] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 411.095455][T12161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 411.095464][T12161] Call Trace: [ 411.095469][T12161] [ 411.095475][T12161] dump_stack_lvl+0x100/0x190 [ 411.095505][T12161] should_fail_ex.cold+0x5/0xa [ 411.095525][T12161] should_failslab+0xc2/0x120 [ 411.095542][T12161] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 411.095566][T12161] ? __d_alloc+0x34/0xa40 [ 411.095590][T12161] __d_alloc+0x34/0xa40 [ 411.095610][T12161] d_alloc_pseudo+0x1c/0xc0 [ 411.095624][T12161] alloc_file_pseudo+0xcf/0x230 [ 411.095647][T12161] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 411.095673][T12161] __shmem_file_setup+0x205/0x460 [ 411.095694][T12161] ? __pfx___shmem_file_setup+0x10/0x10 [ 411.095715][T12161] ? vm_area_alloc+0x1f/0x160 [ 411.095737][T12161] shmem_zero_setup+0x96/0x1b0 [ 411.095753][T12161] __mmap_region+0x2509/0x2dd0 [ 411.095778][T12161] ? __pfx___mmap_region+0x10/0x10 [ 411.095815][T12161] ? do_raw_spin_lock+0x128/0x260 [ 411.095842][T12161] ? do_raw_spin_lock+0x128/0x260 [ 411.095858][T12161] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 411.095880][T12161] ? hrtimer_start_range_ns+0x860/0x1a50 [ 411.095898][T12161] ? find_held_lock+0x2b/0x80 [ 411.095915][T12161] ? finish_task_switch.isra.0+0x2c6/0x1010 [ 411.095963][T12161] mmap_region+0x35d/0x620 [ 411.095977][T12161] ? rcu_is_watching+0x12/0xc0 [ 411.095993][T12161] ? __pfx_mmap_region+0x10/0x10 [ 411.096009][T12161] ? cap_mmap_addr+0x4b/0x120 [ 411.096025][T12161] ? bpf_lsm_mmap_addr+0x9/0x30 [ 411.096039][T12161] ? security_mmap_addr+0x71/0x1e0 [ 411.096059][T12161] ? __get_unmapped_area+0x255/0x3e0 [ 411.096079][T12161] do_mmap+0xc63/0x12f0 [ 411.096100][T12161] ? __pfx_do_mmap+0x10/0x10 [ 411.096117][T12161] ? __pfx_down_write_killable+0x10/0x10 [ 411.096143][T12161] vm_mmap_pgoff+0x29e/0x470 [ 411.096165][T12161] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 411.096184][T12161] ? do_futex+0x192/0x350 [ 411.096200][T12161] ? __pfx_do_futex+0x10/0x10 [ 411.096214][T12161] ? __pfx_do_sys_openat2+0x10/0x10 [ 411.096239][T12161] ksys_mmap_pgoff+0xe4/0x610 [ 411.096256][T12161] ? __x64_sys_futex+0x358/0x4d0 [ 411.096271][T12161] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 411.096288][T12161] ? xfd_validate_state+0x129/0x190 [ 411.096302][T12161] ? ksys_write+0x1ac/0x250 [ 411.096321][T12161] __x64_sys_mmap+0x125/0x190 [ 411.096338][T12161] do_syscall_64+0x115/0x840 [ 411.096358][T12161] ? clear_bhb_loop+0x40/0x90 [ 411.096375][T12161] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 411.096398][T12161] RIP: 0033:0x7f2674f9ce59 [ 411.096411][T12161] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 411.096426][T12161] RSP: 002b:00007f2675eed028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 411.096441][T12161] RAX: ffffffffffffffda RBX: 00007f2675215fa0 RCX: 00007f2674f9ce59 [ 411.096451][T12161] RDX: 0000000000000003 RSI: 0000000002020006 RDI: 0000000000000000 [ 411.096461][T12161] RBP: 00007f2675032d6f R08: ffffffffffffffff R09: 0000000000008000 [ 411.096471][T12161] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 411.096480][T12161] R13: 00007f2675216038 R14: 00007f2675215fa0 R15: 00007fff61ca1a48 [ 411.096499][T12161] [ 412.207639][T12180] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1203'. [ 412.247441][T12181] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1203'. [ 414.191460][T12216] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1209: iget: checksum invalid [ 414.292981][T12216] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 414.414087][T12216] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1209: iget: checksum invalid [ 414.516414][T12216] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 414.663951][T12216] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1209: iget: checksum invalid [ 414.799436][T12216] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 414.870285][T12216] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1209: iget: checksum invalid [ 414.982760][T12216] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 415.039537][T12216] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 415.091814][T12216] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 416.530460][T12276] netlink: 'syz.1.1221': attribute type 1 has an invalid length. [ 416.617091][T12276] netlink: 9 bytes leftover after parsing attributes in process `syz.1.1221'. [ 416.713855][T12281] FAULT_INJECTION: forcing a failure. [ 416.713855][T12281] name failslab, interval 1, probability 0, space 0, times 0 [ 416.845574][T12281] CPU: 0 UID: 0 PID: 12281 Comm: syz.1.1221 Tainted: G I L syzkaller #0 PREEMPT(full) [ 416.845604][T12281] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 416.845612][T12281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 416.845621][T12281] Call Trace: [ 416.845626][T12281] [ 416.845632][T12281] dump_stack_lvl+0x100/0x190 [ 416.845662][T12281] should_fail_ex.cold+0x5/0xa [ 416.845682][T12281] should_failslab+0xc2/0x120 [ 416.845700][T12281] __kmalloc_cache_noprof+0x7a/0x6f0 [ 416.845720][T12281] ? assoc_array_delete+0x101/0xd10 [ 416.845737][T12281] ? __lock_acquire+0x4a5/0x2630 [ 416.845762][T12281] assoc_array_delete+0x101/0xd10 [ 416.845783][T12281] ? __pfx_assoc_array_delete+0x10/0x10 [ 416.845807][T12281] ? __pfx_down_write+0x10/0x10 [ 416.845833][T12281] key_unlink+0xbc/0x310 [ 416.845856][T12281] ? __pfx_key_unlink+0x10/0x10 [ 416.845876][T12281] ? xfd_validate_state+0x129/0x190 [ 416.845890][T12281] ? ksys_write+0x1ac/0x250 [ 416.845908][T12281] keyctl_keyring_unlink+0xdc/0x1b0 [ 416.845924][T12281] __do_sys_keyctl+0x3dd/0x5a0 [ 416.845941][T12281] do_syscall_64+0x115/0x840 [ 416.845960][T12281] ? clear_bhb_loop+0x40/0x90 [ 416.845978][T12281] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 416.845993][T12281] RIP: 0033:0x7f2674f9ce59 [ 416.846006][T12281] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 416.846021][T12281] RSP: 002b:00007f2675eab028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 416.846043][T12281] RAX: ffffffffffffffda RBX: 00007f2675216180 RCX: 00007f2674f9ce59 [ 416.846054][T12281] RDX: fffffffffffffffd RSI: fffffffffffffffc RDI: 0000000000000009 [ 416.846064][T12281] RBP: 00007f2675032d6f R08: 0000000000000008 R09: 0000000000000000 [ 416.846073][T12281] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000000 [ 416.846083][T12281] R13: 00007f2675216218 R14: 00007f2675216180 R15: 00007fff61ca1a48 [ 416.846103][T12281] [ 418.449247][T12315] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 418.977954][T12326] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1231'. [ 419.045928][T12335] vhci_hcd vhci_hcd.2: vhci_device speed not set [ 420.019130][T12355] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1237'. [ 420.061518][T12355] hsr_slave_0: left promiscuous mode [ 420.084160][T12355] hsr_slave_1: left promiscuous mode [ 420.259359][ T50] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 420.400605][T12371] random: crng reseeded on system resumption [ 420.908546][T12368] random: crng reseeded on system resumption [ 422.308033][ T50] Bluetooth: hci3: command 0x0c1a tx timeout [ 423.086797][T12429] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1249: iget: checksum invalid [ 423.159728][T12429] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 423.264656][T12429] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1249: iget: checksum invalid [ 423.388864][T12429] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 423.502139][T12429] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1249: iget: checksum invalid [ 423.618431][T12429] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 423.679178][T12429] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1249: iget: checksum invalid [ 423.814082][T12429] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 423.955172][T12429] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 424.027123][T12429] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 424.376864][T12369] Bluetooth: hci3: command 0x0c1a tx timeout [ 425.668222][T12489] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1262'. [ 426.451291][ T30] audit: type=1800 audit(1780765538.240:11): pid=12510 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1265" name="#1593" dev="tmpfs" ino=1593 res=0 errno=0 [ 426.656904][T12525] netlink: 306 bytes leftover after parsing attributes in process `syz.2.1267'. [ 426.971195][T12532] NFSD: Failed to start, no listeners configured. [ 427.569393][T12548] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1273'. [ 427.615740][T12548] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1273'. [ 427.670343][T12548] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1273'. [ 427.742240][T12548] IPv6: NLM_F_CREATE should be specified when creating new route [ 427.795023][T12548] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 427.803796][T12548] IPv6: NLM_F_CREATE should be set when creating new route [ 427.811079][T12548] IPv6: NLM_F_CREATE should be set when creating new route [ 428.371026][T12557] FAULT_INJECTION: forcing a failure. [ 428.371026][T12557] name failslab, interval 1, probability 0, space 0, times 0 [ 428.431061][T12557] CPU: 0 UID: 0 PID: 12557 Comm: syz.1.1276 Tainted: G I L syzkaller #0 PREEMPT(full) [ 428.431090][T12557] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 428.431097][T12557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 428.431107][T12557] Call Trace: [ 428.431113][T12557] [ 428.431119][T12557] dump_stack_lvl+0x100/0x190 [ 428.431151][T12557] should_fail_ex.cold+0x5/0xa [ 428.431179][T12557] should_failslab+0xc2/0x120 [ 428.431197][T12557] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 428.431221][T12557] ? security_file_alloc+0x34/0x2c0 [ 428.431240][T12557] ? trace_kmem_cache_alloc+0xd5/0x100 [ 428.431260][T12557] security_file_alloc+0x34/0x2c0 [ 428.431280][T12557] init_file+0x95/0x480 [ 428.431311][T12557] alloc_empty_file+0x79/0x1c0 [ 428.431333][T12557] dentry_open+0x46/0xd0 [ 428.431356][T12557] pidfs_alloc_file+0x18f/0x290 [ 428.431376][T12557] ? __pfx_pidfs_alloc_file+0x10/0x10 [ 428.431398][T12557] pidfd_prepare+0x10c/0x1b0 [ 428.431418][T12557] __x64_sys_pidfd_open+0x105/0x1a0 [ 428.431441][T12557] ? __pfx___x64_sys_pidfd_open+0x10/0x10 [ 428.431465][T12557] ? rcu_is_watching+0x12/0xc0 [ 428.431484][T12557] do_syscall_64+0x115/0x840 [ 428.431503][T12557] ? clear_bhb_loop+0x40/0x90 [ 428.431521][T12557] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 428.431536][T12557] RIP: 0033:0x7f2674f9ce59 [ 428.431549][T12557] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 428.431564][T12557] RSP: 002b:00007f2675eed028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b2 [ 428.431579][T12557] RAX: ffffffffffffffda RBX: 00007f2675215fa0 RCX: 00007f2674f9ce59 [ 428.431589][T12557] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 428.431597][T12557] RBP: 00007f2675032d6f R08: 0000000000000000 R09: 0000000000000000 [ 428.431605][T12557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 428.431614][T12557] R13: 00007f2675216038 R14: 00007f2675215fa0 R15: 00007fff61ca1a48 [ 428.431633][T12557] [ 434.442220][ T30] audit: type=1804 audit(1780765546.272:12): pid=12674 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1299" name="/newroot/310/file0" dev="tmpfs" ino=1634 res=1 errno=0 [ 434.541853][ T30] audit: type=1804 audit(1780765546.312:13): pid=12677 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1299" name="/newroot/310/file0" dev="tmpfs" ino=1634 res=1 errno=0 [ 434.639504][ T30] audit: type=1800 audit(1780765546.312:14): pid=12674 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1299" name="file0" dev="tmpfs" ino=1634 res=0 errno=0 [ 434.879881][T12686] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1302'. [ 437.275331][T12728] Invalid input. Must be >= 4608 [ 438.045296][T12743] FAULT_INJECTION: forcing a failure. [ 438.045296][T12743] name failslab, interval 1, probability 0, space 0, times 0 [ 438.120573][T12743] CPU: 0 UID: 0 PID: 12743 Comm: syz.1.1314 Tainted: G I L syzkaller #0 PREEMPT(full) [ 438.120603][T12743] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 438.120610][T12743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 438.120619][T12743] Call Trace: [ 438.120625][T12743] [ 438.120632][T12743] dump_stack_lvl+0x100/0x190 [ 438.120662][T12743] should_fail_ex.cold+0x5/0xa [ 438.120681][T12743] should_failslab+0xc2/0x120 [ 438.120699][T12743] __kmalloc_cache_noprof+0x7a/0x6f0 [ 438.120720][T12743] ? pty_common_install+0x10e/0xb30 [ 438.120740][T12743] pty_common_install+0x10e/0xb30 [ 438.120758][T12743] ? __pfx_pty_install+0x10/0x10 [ 438.120774][T12743] tty_init_dev.part.0+0x9e/0x470 [ 438.120796][T12743] tty_open+0xa63/0xfa0 [ 438.120818][T12743] ? __pfx_tty_open+0x10/0x10 [ 438.120835][T12743] ? chrdev_open+0x10b/0x6a0 [ 438.120852][T12743] ? chrdev_open+0x10b/0x6a0 [ 438.120872][T12743] ? __pfx_tty_open+0x10/0x10 [ 438.120891][T12743] chrdev_open+0x234/0x6a0 [ 438.120908][T12743] ? __pfx_apparmor_file_open+0x10/0x10 [ 438.120924][T12743] ? __pfx_chrdev_open+0x10/0x10 [ 438.120943][T12743] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 438.120966][T12743] do_dentry_open+0x6ab/0x14d0 [ 438.120983][T12743] ? __pfx_chrdev_open+0x10/0x10 [ 438.121007][T12743] vfs_open+0x82/0x3f0 [ 438.121029][T12743] path_openat+0x208c/0x31a0 [ 438.121054][T12743] ? __pfx_path_openat+0x10/0x10 [ 438.121079][T12743] do_file_open+0x20e/0x430 [ 438.121098][T12743] ? __pfx_do_file_open+0x10/0x10 [ 438.121130][T12743] ? alloc_fd+0x476/0x790 [ 438.121149][T12743] ? do_getname+0x191/0x390 [ 438.121171][T12743] do_sys_openat2+0x10d/0x1e0 [ 438.121193][T12743] ? __pfx_do_sys_openat2+0x10/0x10 [ 438.121221][T12743] __x64_sys_openat+0x12d/0x210 [ 438.121243][T12743] ? __pfx___x64_sys_openat+0x10/0x10 [ 438.121263][T12743] ? exit_to_user_mode_loop+0xf3/0x670 [ 438.121289][T12743] ? rcu_is_watching+0x12/0xc0 [ 438.121308][T12743] do_syscall_64+0x115/0x840 [ 438.121327][T12743] ? clear_bhb_loop+0x40/0x90 [ 438.121345][T12743] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 438.121360][T12743] RIP: 0033:0x7f2674f9ce59 [ 438.121373][T12743] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 438.121388][T12743] RSP: 002b:00007f2675ecc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 438.121403][T12743] RAX: ffffffffffffffda RBX: 00007f2675216090 RCX: 00007f2674f9ce59 [ 438.121413][T12743] RDX: 0000000000000002 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 438.121423][T12743] RBP: 00007f2675032d6f R08: 0000000000000000 R09: 0000000000000000 [ 438.121432][T12743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 438.121441][T12743] R13: 00007f2675216128 R14: 00007f2675216090 R15: 00007fff61ca1a48 [ 438.121461][T12743] [ 438.408148][T12755] FAULT_INJECTION: forcing a failure. [ 438.408148][T12755] name failslab, interval 1, probability 0, space 0, times 0 [ 438.421435][T12755] CPU: 0 UID: 0 PID: 12755 Comm: syz.3.1315 Tainted: G I L syzkaller #0 PREEMPT(full) [ 438.421464][T12755] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 438.421470][T12755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 438.421480][T12755] Call Trace: [ 438.421485][T12755] [ 438.421490][T12755] dump_stack_lvl+0x100/0x190 [ 438.421526][T12755] should_fail_ex.cold+0x5/0xa [ 438.421547][T12755] should_failslab+0xc2/0x120 [ 438.421566][T12755] __kmalloc_cache_noprof+0x7a/0x6f0 [ 438.421587][T12755] ? tty_open+0x139/0xfa0 [ 438.421609][T12755] ? __pfx_tty_open+0x10/0x10 [ 438.421628][T12755] tty_open+0x139/0xfa0 [ 438.421650][T12755] ? __pfx_tty_open+0x10/0x10 [ 438.421669][T12755] ? chrdev_open+0x10b/0x6a0 [ 438.421688][T12755] ? chrdev_open+0x10b/0x6a0 [ 438.421708][T12755] ? __pfx_tty_open+0x10/0x10 [ 438.421727][T12755] chrdev_open+0x234/0x6a0 [ 438.421743][T12755] ? __pfx_apparmor_file_open+0x10/0x10 [ 438.421760][T12755] ? __pfx_chrdev_open+0x10/0x10 [ 438.421779][T12755] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 438.421802][T12755] do_dentry_open+0x6ab/0x14d0 [ 438.421819][T12755] ? __pfx_chrdev_open+0x10/0x10 [ 438.421841][T12755] vfs_open+0x82/0x3f0 [ 438.421864][T12755] path_openat+0x208c/0x31a0 [ 438.421888][T12755] ? __pfx_path_openat+0x10/0x10 [ 438.421913][T12755] do_file_open+0x20e/0x430 [ 438.421932][T12755] ? __pfx_do_file_open+0x10/0x10 [ 438.421963][T12755] ? alloc_fd+0x476/0x790 [ 438.421982][T12755] ? do_getname+0x191/0x390 [ 438.422003][T12755] do_sys_openat2+0x10d/0x1e0 [ 438.422025][T12755] ? __pfx_do_sys_openat2+0x10/0x10 [ 438.422053][T12755] __x64_sys_openat+0x12d/0x210 [ 438.422074][T12755] ? __pfx___x64_sys_openat+0x10/0x10 [ 438.422095][T12755] ? exit_to_user_mode_loop+0xf3/0x670 [ 438.422121][T12755] ? rcu_is_watching+0x12/0xc0 [ 438.422140][T12755] do_syscall_64+0x115/0x840 [ 438.422159][T12755] ? clear_bhb_loop+0x40/0x90 [ 438.422177][T12755] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 438.422192][T12755] RIP: 0033:0x7fb88c39ce59 [ 438.422206][T12755] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 438.422221][T12755] RSP: 002b:00007fb88a1f4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 438.422235][T12755] RAX: ffffffffffffffda RBX: 00007fb88c616270 RCX: 00007fb88c39ce59 [ 438.422245][T12755] RDX: 0000000000000002 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 438.422254][T12755] RBP: 00007fb88c432d6f R08: 0000000000000000 R09: 0000000000000000 [ 438.422264][T12755] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 438.422273][T12755] R13: 00007fb88c616308 R14: 00007fb88c616270 R15: 00007ffdd59cc908 [ 438.422293][T12755] [ 439.419882][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 439.432601][ T1318] ieee802154 phy1 wpan1: encryption failed: -22 [ 439.753219][T12785] FAULT_INJECTION: forcing a failure. [ 439.753219][T12785] name failslab, interval 1, probability 0, space 0, times 0 [ 439.828677][T12785] CPU: 0 UID: 0 PID: 12785 Comm: syz.3.1326 Tainted: G I L syzkaller #0 PREEMPT(full) [ 439.828705][T12785] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 439.828711][T12785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 439.828720][T12785] Call Trace: [ 439.828726][T12785] [ 439.828732][T12785] dump_stack_lvl+0x100/0x190 [ 439.828762][T12785] should_fail_ex.cold+0x5/0xa [ 439.828781][T12785] should_failslab+0xc2/0x120 [ 439.828799][T12785] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 439.828823][T12785] ? alloc_inode+0x183/0x250 [ 439.828849][T12785] alloc_inode+0x183/0x250 [ 439.828870][T12785] new_inode+0x22/0x1c0 [ 439.828894][T12785] ? dput.part.0+0xdd/0x570 [ 439.828917][T12785] simple_fill_super+0x2d9/0x680 [ 439.828938][T12785] ? __pfx_nfsd_fill_super+0x10/0x10 [ 439.828961][T12785] nfsd_fill_super+0x98/0x560 [ 439.828982][T12785] ? __pfx_set_anon_super_fc+0x10/0x10 [ 439.828997][T12785] ? __pfx_nfsd_fill_super+0x10/0x10 [ 439.829019][T12785] get_tree_keyed+0x10e/0x1d0 [ 439.829036][T12785] vfs_get_tree+0x92/0x320 [ 439.829050][T12785] path_mount+0x7d0/0x23d0 [ 439.829073][T12785] ? __pfx_path_mount+0x10/0x10 [ 439.829091][T12785] ? lockdep_hardirqs_on+0x78/0x100 [ 439.829114][T12785] ? putname+0xb1/0x110 [ 439.829131][T12785] ? kmem_cache_free+0x127/0x6c0 [ 439.829158][T12785] ? __x64_sys_mount+0x293/0x310 [ 439.829177][T12785] __x64_sys_mount+0x293/0x310 [ 439.829198][T12785] ? __pfx___x64_sys_mount+0x10/0x10 [ 439.829220][T12785] ? rcu_is_watching+0x12/0xc0 [ 439.829245][T12785] do_syscall_64+0x115/0x840 [ 439.829264][T12785] ? clear_bhb_loop+0x40/0x90 [ 439.829283][T12785] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 439.829299][T12785] RIP: 0033:0x7fb88c39ce59 [ 439.829312][T12785] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 439.829326][T12785] RSP: 002b:00007fb88d1bd028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 439.829341][T12785] RAX: ffffffffffffffda RBX: 00007fb88c615fa0 RCX: 00007fb88c39ce59 [ 439.829351][T12785] RDX: 0000200000000200 RSI: 00002000000000c0 RDI: 0000000000000000 [ 439.829361][T12785] RBP: 00007fb88c432d6f R08: 0000000000000000 R09: 0000000000000000 [ 439.829371][T12785] R10: 000000000000000f R11: 0000000000000246 R12: 0000000000000000 [ 439.829388][T12785] R13: 00007fb88c616038 R14: 00007fb88c615fa0 R15: 00007ffdd59cc908 [ 439.829408][T12785] [ 440.294261][T12781] Process accounting paused [ 440.683829][ T6672] EXT4-fs (sda1): Delayed block allocation failed for inode 2028 at logical offset 1298 with max blocks 99 with error 117 [ 440.789012][ T6672] EXT4-fs (sda1): This should not happen!! Data will be lost [ 440.789012][ T6672] [ 442.873315][T12846] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1338'. [ 444.682340][T12891] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1349'. [ 445.204979][T12897] ubi0: attaching mtd0 [ 445.376115][T12897] ubi0: scanning is finished [ 445.441152][T12897] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 445.986104][T12897] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 447.976126][T12935] ubi0: attaching mtd0 [ 447.999071][T12935] ubi0: scanning is finished [ 448.030349][T12935] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 448.247627][T12941] ksmbd: Unknown IPC event: 11, ignore. [ 448.455324][T12935] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 448.996962][T12956] random: crng reseeded on system resumption [ 452.459427][ T50] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 452.459451][ T50] Bluetooth: hci2: unexpected subevent 0x06 length: 725 > 10 [ 453.021057][T12982] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1367'. [ 454.512741][T13018] netlink: 'syz.1.1376': attribute type 1 has an invalid length. [ 454.541090][ T50] Bluetooth: hci2: command 0x0c1a tx timeout [ 456.673555][ T50] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 456.850353][T13050] can: request_module (can-proto-3) failed. [ 457.001395][T13041] kexec: Could not allocate control_code_buffer [ 458.677846][T12369] Bluetooth: hci2: command 0x0c1a tx timeout [ 460.058500][T13109] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1392'. [ 460.748637][ T50] Bluetooth: hci2: command 0x0c1a tx timeout [ 462.620658][T13148] futex_wake_op: syz.2.1400 tries to shift op by -1; fix this program [ 464.745581][T13200] futex_wake_op: syz.3.1411 tries to shift op by -2048; fix this program [ 464.774574][T13200] futex_wake_op: syz.3.1411 tries to shift op by -2048; fix this program [ 469.674616][T13295] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1430'. [ 470.506098][T13314] capability: warning: `syz.1.1433' uses 32-bit capabilities (legacy support in use) [ 470.822953][T13308] Process accounting resumed [ 471.172827][ T6677] EXT4-fs (sda1): Delayed block allocation failed for inode 2028 at logical offset 1378 with max blocks 19 with error 117 [ 471.228570][ T6677] EXT4-fs (sda1): This should not happen!! Data will be lost [ 471.228570][ T6677] [ 471.665614][T13345] openvswitch: netlink: Unknown VXLAN extension attribute 0 [ 471.706257][T13346] openvswitch: netlink: Unknown VXLAN extension attribute 0 [ 471.806686][T13348] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1442'. [ 471.854034][T13348] netlink: 306 bytes leftover after parsing attributes in process `syz.3.1442'. [ 473.151467][T13393] random: crng reseeded on system resumption [ 474.012978][T12369] Bluetooth: hci0: unexpected event 0x3e length: 508 > 260 [ 474.013003][T12369] Bluetooth: hci0: unexpected subevent 0x02 length: 507 > 260 [ 474.027910][T12369] Bluetooth: hci0: Dropping invalid advertising data [ 474.038097][T12369] Bluetooth: hci0: unknown advertising packet type: 0xe9 [ 474.038123][T12369] Bluetooth: hci0: Dropping invalid advertising data [ 474.052316][T12369] Bluetooth: hci0: Malformed LE Event: 0x02 [ 474.548696][ T30] audit: type=1804 audit(4294967329.462:15): pid=13427 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1458" name="file0" dev="tmpfs" ino=1929 res=1 errno=0 [ 475.409468][T13442] random: crng reseeded on system resumption [ 476.151846][T13450] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1465'. [ 476.361682][T13454] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1466'. [ 476.403251][T13454] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1466'. [ 477.413231][T13479] random: crng reseeded on system resumption [ 477.705235][T13483] NFSD: Failed to start, no listeners configured. [ 477.930806][T13489] hub 1-0:1.0: USB hub found [ 478.078030][T13489] hub 1-0:1.0: 1 port detected [ 480.817063][T13552] batadv_slave_1: entered promiscuous mode [ 480.858868][T13552] batadv_slave_1: left promiscuous mode [ 481.016336][T13549] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1487'. [ 481.574766][T13569] random: crng reseeded on system resumption [ 482.739589][T13617] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1502'. [ 483.295377][T13636] ksmbd: Unknown IPC event: 14, ignore. [ 486.306375][T12369] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 488.107351][T12369] Bluetooth: hci0: unexpected event 0x10 length: 124 > 1 [ 488.109407][T12369] Bluetooth: hci0: hardware error 0x00 [ 488.363738][ T50] Bluetooth: hci2: command 0x0c1a tx timeout [ 489.411980][T13789] ubi0: attaching mtd0 [ 489.468641][T13789] ubi0: scanning is finished [ 489.490442][T13789] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 489.687777][T13789] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 489.712274][T13788] ubi0: attaching mtd0 [ 489.728769][T13788] ubi0: scanning is finished [ 489.751007][T13788] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 489.890658][T13788] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 489.930594][T13795] ubi0: attaching mtd0 [ 489.989511][T13795] ubi0: scanning is finished [ 490.096327][T13795] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 490.194743][T12369] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 490.432866][T12369] Bluetooth: hci2: command 0x0c1a tx timeout [ 490.578322][T13795] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 490.685393][T13796] ubi0: attaching mtd0 [ 490.725762][T13796] ubi0: scanning is finished [ 490.742148][T13796] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 490.861816][T13796] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 492.214284][T13850] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1554'. [ 493.442848][T13879] openvswitch: netlink: IP tunnel dst address not specified [ 495.358990][T13922] EXT4-fs (sda1): Delayed block allocation failed for inode 2028 at logical offset 887 with max blocks 31 with error 117 [ 495.427896][T13922] EXT4-fs (sda1): This should not happen!! Data will be lost [ 495.427896][T13922] [ 497.319322][T13961] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1576'. [ 498.193186][T13981] : Can't lookup blockdev [ 499.245531][T14007] QAT: failed to copy from user. [ 499.723621][T14025] EXT4-fs (sda1): Delayed block allocation failed for inode 2028 at logical offset 1390 with max blocks 7 with error 117 [ 499.790066][T14025] EXT4-fs (sda1): This should not happen!! Data will be lost [ 499.790066][T14025] [ 500.541516][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 500.548164][ T1318] ieee802154 phy1 wpan1: encryption failed: -22 [ 501.114218][T14029] Process accounting paused [ 501.271712][T14066] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1601'. [ 501.322551][T14064] hub 1-0:1.0: USB hub found [ 501.386302][T14064] hub 1-0:1.0: 1 port detected [ 503.877757][T14130] netlink: 5 bytes leftover after parsing attributes in process `syz.1.1612'. [ 506.196134][T14182] FAULT_INJECTION: forcing a failure. [ 506.196134][T14182] name failslab, interval 1, probability 0, space 0, times 0 [ 506.196163][T14182] CPU: 0 UID: 0 PID: 14182 Comm: syz.3.1624 Tainted: G I L syzkaller #0 PREEMPT(full) [ 506.196186][T14182] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 506.196193][T14182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 506.196202][T14182] Call Trace: [ 506.196207][T14182] [ 506.196212][T14182] dump_stack_lvl+0x100/0x190 [ 506.196241][T14182] should_fail_ex.cold+0x5/0xa [ 506.196260][T14182] should_failslab+0xc2/0x120 [ 506.196278][T14182] __kmalloc_cache_noprof+0x7a/0x6f0 [ 506.196298][T14182] ? tty_open+0x139/0xfa0 [ 506.196320][T14182] ? __pfx_tty_open+0x10/0x10 [ 506.196338][T14182] tty_open+0x139/0xfa0 [ 506.196360][T14182] ? __pfx_tty_open+0x10/0x10 [ 506.196378][T14182] ? chrdev_open+0x10b/0x6a0 [ 506.196395][T14182] ? chrdev_open+0x10b/0x6a0 [ 506.196415][T14182] ? __pfx_tty_open+0x10/0x10 [ 506.196433][T14182] chrdev_open+0x234/0x6a0 [ 506.196450][T14182] ? __pfx_apparmor_file_open+0x10/0x10 [ 506.196466][T14182] ? __pfx_chrdev_open+0x10/0x10 [ 506.196485][T14182] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 506.196507][T14182] do_dentry_open+0x6ab/0x14d0 [ 506.196524][T14182] ? __pfx_chrdev_open+0x10/0x10 [ 506.196547][T14182] vfs_open+0x82/0x3f0 [ 506.196571][T14182] path_openat+0x208c/0x31a0 [ 506.196595][T14182] ? __pfx_path_openat+0x10/0x10 [ 506.196619][T14182] do_file_open+0x20e/0x430 [ 506.196638][T14182] ? __pfx_do_file_open+0x10/0x10 [ 506.196668][T14182] ? alloc_fd+0x476/0x790 [ 506.196687][T14182] ? do_getname+0x191/0x390 [ 506.196709][T14182] do_sys_openat2+0x10d/0x1e0 [ 506.196733][T14182] ? __pfx_do_sys_openat2+0x10/0x10 [ 506.196761][T14182] __x64_sys_openat+0x12d/0x210 [ 506.196782][T14182] ? __pfx___x64_sys_openat+0x10/0x10 [ 506.196804][T14182] ? exit_to_user_mode_loop+0xf3/0x670 [ 506.196830][T14182] ? rcu_is_watching+0x12/0xc0 [ 506.196848][T14182] do_syscall_64+0x115/0x840 [ 506.196876][T14182] ? clear_bhb_loop+0x40/0x90 [ 506.196894][T14182] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 506.196909][T14182] RIP: 0033:0x7fb88c39ce59 [ 506.196923][T14182] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 506.196938][T14182] RSP: 002b:00007fb88a1f4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 506.196952][T14182] RAX: ffffffffffffffda RBX: 00007fb88c616270 RCX: 00007fb88c39ce59 [ 506.196963][T14182] RDX: 0000000000000002 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 506.196972][T14182] RBP: 00007fb88c432d6f R08: 0000000000000000 R09: 0000000000000000 [ 506.196981][T14182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 506.196990][T14182] R13: 00007fb88c616308 R14: 00007fb88c616270 R15: 00007ffdd59cc908 [ 506.197009][T14182] [ 511.341347][T14299] tc_dump_action: action bad kind [ 512.590830][T14313] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1649'. [ 516.784967][T14384] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1657'. [ 518.438385][T14430] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 519.587519][ T30] audit: type=1804 audit(4294967341.766:16): pid=14455 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1676" name="file0" dev="tmpfs" ino=2206 res=1 errno=0 [ 519.744287][T14461] FAULT_INJECTION: forcing a failure. [ 519.744287][T14461] name failslab, interval 1, probability 0, space 0, times 0 [ 519.804305][T14461] CPU: 0 UID: 0 PID: 14461 Comm: syz.1.1678 Tainted: G I L syzkaller #0 PREEMPT(full) [ 519.804333][T14461] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 519.804339][T14461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 519.804348][T14461] Call Trace: [ 519.804354][T14461] [ 519.804360][T14461] dump_stack_lvl+0x100/0x190 [ 519.804389][T14461] should_fail_ex.cold+0x5/0xa [ 519.804409][T14461] should_failslab+0xc2/0x120 [ 519.804426][T14461] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 519.804449][T14461] ? sock_alloc_inode+0x26/0x290 [ 519.804469][T14461] ? __pfx_sock_alloc_inode+0x10/0x10 [ 519.804487][T14461] sock_alloc_inode+0x26/0x290 [ 519.804503][T14461] ? __pfx_sock_alloc_inode+0x10/0x10 [ 519.804519][T14461] alloc_inode+0x68/0x250 [ 519.804541][T14461] sock_alloc+0x44/0x280 [ 519.804555][T14461] ? security_socket_create+0x7f/0x250 [ 519.804571][T14461] __sock_create+0xc2/0x860 [ 519.804593][T14461] __sys_socket+0x14d/0x260 [ 519.804613][T14461] ? __pfx___sys_socket+0x10/0x10 [ 519.804631][T14461] ? exit_to_user_mode_loop+0xf3/0x670 [ 519.804658][T14461] __x64_sys_socket+0x72/0xb0 [ 519.804676][T14461] ? lockdep_hardirqs_on+0x78/0x100 [ 519.804696][T14461] do_syscall_64+0x115/0x840 [ 519.804715][T14461] ? clear_bhb_loop+0x40/0x90 [ 519.804732][T14461] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 519.804747][T14461] RIP: 0033:0x7f2674f9ce59 [ 519.804761][T14461] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 519.804776][T14461] RSP: 002b:00007f2675eed028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 519.804791][T14461] RAX: ffffffffffffffda RBX: 00007f2675215fa0 RCX: 00007f2674f9ce59 [ 519.804801][T14461] RDX: 0000000000000006 RSI: 0000000000000003 RDI: 0000000000000010 [ 519.804810][T14461] RBP: 00007f2675032d6f R08: 0000000000000000 R09: 0000000000000000 [ 519.804819][T14461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 519.804828][T14461] R13: 00007f2675216038 R14: 00007f2675215fa0 R15: 00007fff61ca1a48 [ 519.804848][T14461] [ 520.017578][T14461] socket: no more sockets [ 523.425763][ T30] audit: type=1804 audit(4294967329.734:17): pid=14543 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1694" name="file0" dev="tmpfs" ino=2239 res=1 errno=0 [ 525.429674][T14614] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1712'. [ 527.168282][T14659] FAULT_INJECTION: forcing a failure. [ 527.168282][T14659] name failslab, interval 1, probability 0, space 0, times 0 [ 527.273759][T14659] CPU: 0 UID: 0 PID: 14659 Comm: syz.1.1721 Tainted: G I L syzkaller #0 PREEMPT(full) [ 527.273789][T14659] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 527.273795][T14659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 527.273805][T14659] Call Trace: [ 527.273811][T14659] [ 527.273817][T14659] dump_stack_lvl+0x100/0x190 [ 527.273848][T14659] should_fail_ex.cold+0x5/0xa [ 527.273867][T14659] should_failslab+0xc2/0x120 [ 527.273885][T14659] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 527.273908][T14659] ? sk_prot_alloc+0x60/0x2a0 [ 527.273930][T14659] sk_prot_alloc+0x60/0x2a0 [ 527.273949][T14659] sk_alloc+0x36/0xe80 [ 527.273972][T14659] smc_create+0x11a/0x290 [ 527.273991][T14659] __sock_create+0x339/0x860 [ 527.274014][T14659] __sys_socket+0x14d/0x260 [ 527.274035][T14659] ? __pfx___sys_socket+0x10/0x10 [ 527.274060][T14659] __x64_sys_socket+0x72/0xb0 [ 527.274079][T14659] ? lockdep_hardirqs_on+0x78/0x100 [ 527.274099][T14659] do_syscall_64+0x115/0x840 [ 527.274117][T14659] ? clear_bhb_loop+0x40/0x90 [ 527.274135][T14659] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 527.274150][T14659] RIP: 0033:0x7f2674f9ce59 [ 527.274164][T14659] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 527.274178][T14659] RSP: 002b:00007f2675ecc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 527.274193][T14659] RAX: ffffffffffffffda RBX: 00007f2675216090 RCX: 00007f2674f9ce59 [ 527.274203][T14659] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000002b [ 527.274211][T14659] RBP: 00007f2675032d6f R08: 0000000000000000 R09: 0000000000000000 [ 527.274220][T14659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 527.274229][T14659] R13: 00007f2675216128 R14: 00007f2675216090 R15: 00007fff61ca1a48 [ 527.274248][T14659] [ 527.703828][T14668] netlink: 'syz.0.1724': attribute type 1 has an invalid length. [ 529.250756][T14703] random: crng reseeded on system resumption [ 529.675146][T13762] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 530.297419][T14727] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1737'. [ 531.130175][T14705] Process accounting resumed [ 534.748347][T14816] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 17 with max blocks 21 with error 117 [ 534.877920][T14816] EXT4-fs (sda1): This should not happen!! Data will be lost [ 534.877920][T14816] [ 535.640757][T14849] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1762'. [ 536.910583][T14872] ------------[ cut here ]------------ [ 536.918013][T14872] !list_empty(&local->chanctx_list) [ 536.918037][T14872] WARNING: net/mac80211/pm.c:171 at __ieee80211_suspend+0x1070/0x12d0, CPU#0: syz.1.1765/14872 [ 536.933988][T14872] Modules linked in: [ 536.938092][T14872] CPU: 0 UID: 0 PID: 14872 Comm: syz.1.1765 Tainted: G I L syzkaller #0 PREEMPT(full) [ 536.949095][T14872] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 536.955876][T14872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 536.966180][T14872] RIP: 0010:__ieee80211_suspend+0x1070/0x12d0 [ 536.972329][T14872] Code: 0f 0b 90 e9 46 f6 ff ff e8 8d b6 e7 f6 90 0f 0b 90 e9 53 f7 ff ff e8 7f b6 e7 f6 90 0f 0b 90 e9 72 f8 ff ff e8 71 b6 e7 f6 90 <0f> 0b 90 e9 5e fc ff ff e8 63 b6 e7 f6 90 0f 0b 90 e9 91 f6 ff ff [ 536.992129][T14872] RSP: 0018:ffffc9000324fb78 EFLAGS: 00010283 [ 536.998193][T14872] RAX: 0000000000005e49 RBX: ffff88806b192bd8 RCX: ffffc9000ee2c000 [ 537.006240][T14872] RDX: 0000000000080000 RSI: ffffffff8b20452f RDI: ffff888038dcbe00 [ 537.014386][T14872] RBP: ffff88806b190f20 R08: 0000000000000001 R09: 0000000000000000 [ 537.022917][T14872] R10: 0000000000000001 R11: 0000000000000000 R12: dffffc0000000000 [ 537.031136][T14872] R13: ffffed100d6321ed R14: ffff88806b1929e0 R15: 0000000000000001 [ 537.039099][T14872] FS: 00007f2675eab6c0(0000) GS:ffff88812438e000(0000) knlGS:0000000000000000 [ 537.048070][T14872] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 537.054684][T14872] CR2: 00007fff7e97ace0 CR3: 000000003548e000 CR4: 00000000003526f0 [ 537.062701][T14872] Call Trace: [ 537.065966][T14872] [ 537.068887][T14872] reset_write+0x7a/0x290 [ 537.073716][T14872] short_proxy_write+0x133/0x1a0 [ 537.078678][T14872] ? __pfx_short_proxy_write+0x10/0x10 [ 537.084272][T14872] vfs_writev+0x5ea/0xe10 [ 537.088608][T14872] ? __pfx_vfs_writev+0x10/0x10 [ 537.093502][T14872] ? do_pwritev+0x1ac/0x270 [ 537.098017][T14872] do_pwritev+0x1ac/0x270 [ 537.102377][T14872] ? __pfx_do_pwritev+0x10/0x10 [ 537.107214][T14872] ? rcu_is_watching+0x12/0xc0 [ 537.112001][T14872] do_syscall_64+0x115/0x840 [ 537.116581][T14872] ? clear_bhb_loop+0x40/0x90 [ 537.121752][T14872] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 537.127640][T14872] RIP: 0033:0x7f2674f9ce59 [ 537.132296][T14872] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 537.151982][T14872] RSP: 002b:00007f2675eab028 EFLAGS: 00000246 ORIG_RAX: 0000000000000128 [ 537.160468][T14872] RAX: ffffffffffffffda RBX: 00007f2675216180 RCX: 00007f2674f9ce59 [ 537.168424][T14872] RDX: 0000000000000003 RSI: 0000200000000180 RDI: 0000000000000000 [ 537.176412][T14872] RBP: 00007f2675032d6f R08: 0000000000000005 R09: 0000000000000000 [ 537.184387][T14872] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 537.192366][T14872] R13: 00007f2675216218 R14: 00007f2675216180 R15: 00007fff61ca1a48 [ 537.200349][T14872] [ 537.203371][T14872] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 537.210637][T14872] CPU: 0 UID: 0 PID: 14872 Comm: syz.1.1765 Tainted: G I L syzkaller #0 PREEMPT(full) [ 537.221560][T14872] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 537.228032][T14872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 537.238066][T14872] Call Trace: [ 537.241334][T14872] [ 537.244270][T14872] dump_stack_lvl+0x100/0x190 [ 537.248946][T14872] vpanic+0x552/0x970 [ 537.252910][T14872] ? __pfx_vpanic+0x10/0x10 [ 537.257402][T14872] panic+0xd1/0xe0 [ 537.261108][T14872] ? __pfx_panic+0x10/0x10 [ 537.265514][T14872] check_panic_on_warn.cold+0x19/0x34 [ 537.270869][T14872] ? __ieee80211_suspend+0x1070/0x12d0 [ 537.276315][T14872] __warn.cold+0x191/0x328 [ 537.280712][T14872] __report_bug+0x296/0x3d0 [ 537.285202][T14872] ? __ieee80211_suspend+0x1070/0x12d0 [ 537.290648][T14872] ? __pfx___report_bug+0x10/0x10 [ 537.295661][T14872] ? dput+0x24/0x30 [ 537.299454][T14872] ? end_dirop+0x82/0xa0 [ 537.303683][T14872] ? __debugfs_create_file+0x400/0x4f0 [ 537.309146][T14872] ? debugfs_create_file_short+0x41/0x60 [ 537.314764][T14872] ? __ieee80211_suspend+0x1070/0x12d0 [ 537.320214][T14872] report_bug+0xb2/0x220 [ 537.324447][T14872] ? __ieee80211_suspend+0x1070/0x12d0 [ 537.329894][T14872] handle_bug+0x16a/0x2a0 [ 537.334214][T14872] exc_invalid_op+0x17/0x50 [ 537.338698][T14872] asm_exc_invalid_op+0x1a/0x20 [ 537.343531][T14872] RIP: 0010:__ieee80211_suspend+0x1070/0x12d0 [ 537.349586][T14872] Code: 0f 0b 90 e9 46 f6 ff ff e8 8d b6 e7 f6 90 0f 0b 90 e9 53 f7 ff ff e8 7f b6 e7 f6 90 0f 0b 90 e9 72 f8 ff ff e8 71 b6 e7 f6 90 <0f> 0b 90 e9 5e fc ff ff e8 63 b6 e7 f6 90 0f 0b 90 e9 91 f6 ff ff [ 537.369177][T14872] RSP: 0018:ffffc9000324fb78 EFLAGS: 00010283 [ 537.375226][T14872] RAX: 0000000000005e49 RBX: ffff88806b192bd8 RCX: ffffc9000ee2c000 [ 537.383182][T14872] RDX: 0000000000080000 RSI: ffffffff8b20452f RDI: ffff888038dcbe00 [ 537.391137][T14872] RBP: ffff88806b190f20 R08: 0000000000000001 R09: 0000000000000000 [ 537.399106][T14872] R10: 0000000000000001 R11: 0000000000000000 R12: dffffc0000000000 [ 537.407067][T14872] R13: ffffed100d6321ed R14: ffff88806b1929e0 R15: 0000000000000001 [ 537.415026][T14872] ? __ieee80211_suspend+0x106f/0x12d0 [ 537.420483][T14872] ? __ieee80211_suspend+0x106f/0x12d0 [ 537.425935][T14872] reset_write+0x7a/0x290 [ 537.430273][T14872] short_proxy_write+0x133/0x1a0 [ 537.435202][T14872] ? __pfx_short_proxy_write+0x10/0x10 [ 537.440654][T14872] vfs_writev+0x5ea/0xe10 [ 537.444975][T14872] ? __pfx_vfs_writev+0x10/0x10 [ 537.449830][T14872] ? do_pwritev+0x1ac/0x270 [ 537.454314][T14872] do_pwritev+0x1ac/0x270 [ 537.458628][T14872] ? __pfx_do_pwritev+0x10/0x10 [ 537.463480][T14872] ? rcu_is_watching+0x12/0xc0 [ 537.468254][T14872] do_syscall_64+0x115/0x840 [ 537.472834][T14872] ? clear_bhb_loop+0x40/0x90 [ 537.477500][T14872] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 537.483381][T14872] RIP: 0033:0x7f2674f9ce59 [ 537.487781][T14872] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 537.507397][T14872] RSP: 002b:00007f2675eab028 EFLAGS: 00000246 ORIG_RAX: 0000000000000128 [ 537.515793][T14872] RAX: ffffffffffffffda RBX: 00007f2675216180 RCX: 00007f2674f9ce59 [ 537.523748][T14872] RDX: 0000000000000003 RSI: 0000200000000180 RDI: 0000000000000000 [ 537.531721][T14872] RBP: 00007f2675032d6f R08: 0000000000000005 R09: 0000000000000000 [ 537.539679][T14872] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 537.547630][T14872] R13: 00007f2675216218 R14: 00007f2675216180 R15: 00007fff61ca1a48 [ 537.555592][T14872] [ 537.558710][T14872] Kernel Offset: disabled [ 537.563026][T14872] Rebooting in 86400 seconds..