last executing test programs: 9.235415304s ago: executing program 1 (id=730): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) ustat$auto(0x801, 0x0) socket(0xa, 0x3, 0x3a) setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x567) unshare$auto(0x40000080) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0xc0101, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x2, 0x5, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) sendmmsg$auto(r0, &(0x7f0000000100)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0xff80}, 0x7, 0x0, 0x4, 0xb}, 0x8}, 0x5, 0x7fffffff) mmap$auto(0x0, 0x20009, 0xe1, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002) fanotify_init$auto(0x3, 0x2010000000000) sysfs$auto(0x2, 0x1e, 0x0) fsopen$auto(0x0, 0x1) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) socket(0x840000000002, 0x3, 0xff) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/rpc/nfsd.export/content\x00', 0x2, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f00000000c0)=""/163, 0xa3) set_mempolicy$auto(0x6, &(0x7f0000000000)=0xcf, 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x59, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/cpu/cpuidle/current_governor\x00', 0xa42, 0x0) capset$auto(0x0, &(0x7f0000000000)={0x2, 0xd, 0x8}) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{0x0, 0x5aa, &(0x7f0000000100)={&(0x7f0000001300), 0x49}, 0x4, &(0x7f0000000180), 0x5, 0x1040}, 0x5}, 0x2, 0x100) ioctl$auto_TUNDETACHFILTER(0xffffffffffffffff, 0x401054d6, &(0x7f0000000200)={0x1, &(0x7f0000000180)={0xff, 0x80, 0x5, @inferred=r2}}) mmap$auto(0x0, 0x4020009, 0xdf, 0x8011, 0x401, 0x8000) write$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000080)="18ac039829723c979d82869543c5e11168cce4dd3bbc3d47ae58a251f5898ecf784c0da52f8fbfc8829338f5343e61c2f0094ef5af4d5e9d4c3beff77a385fb8945e63af6f53b04c316a7c20e90e1c9aa3bdfa49857fd413711754c230cb1b8e5c13c88c043990c947464a4bf791abc2dc0a863dc5919d", 0x77) 8.582649359s ago: executing program 2 (id=733): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) unshare$auto(0x40000080) syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff) mbind$auto(0x8000000000000002, 0x100000004, 0x100000000, 0x0, 0x9, 0x2) unshare$auto(0x4) r0 = gettid() kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@buf=0x0, 0x8ab0, 0x6c0000c000, 0xc000}, 0x4) kill$auto(r0, 0x11) r1 = io_uring_setup$auto(0x59, &(0x7f0000001100)={0x7, 0xe, 0x2, 0x6, 0x5, 0x8, 0xffffffffffffffff, [], {0xd74c, 0x6, 0x2, 0x2000029f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0xff, 0x1, 0x110001, 0x2, 0x1, 0x40, 0x76c5, 0x8, 0x100000005}}) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), r1) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000700), r4) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000740)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_CHANNEL(r4, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000780)={0x1c, r5, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4080}, 0x20000000) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'nicvf0\x00', 0x0}) r8 = socket(0x10, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'veth0_to_team\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="01"], 0x24}, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80) r10 = fanotify_init$auto(0x5ed6d, 0xf1) r11 = io_uring_setup$auto(0xf00, 0x0) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f00000002c0), r2) ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f00000003c0)={'\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000440)={'caif0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r10, &(0x7f0000000680)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200020}, 0xc, &(0x7f0000000640)={&(0x7f0000000480)=ANY=[@ANYBLOB="b8", @ANYRES16=0x0, @ANYRES32=0x0, @ANYBLOB="1400020073797a5f74756e00000000000000000008", @ANYRES32=0x0, @ANYBLOB="1400020076657468305f746f5f62617461647600140002006272696467655f736c6176655f3100000c000180080003007e030000440001801400020073797a6b616c6c657231000000000000080003000300000014000200766c616e31000000000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="9000018008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="080003000500000014000200776731000000000000000000000000001400020076657468315f766c616e000000000000140002007369743000000000000000000000000014000200766574683000000000000000000000001400020074756e6c3000000000000000000000001c00018008000100", @ANYRES32, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r12, @ANYRES32=r13, @ANYBLOB="1400020076657468315f746f5f626f6e64000000"], 0x1b8}, 0x1, 0x0, 0x0, 0x40}, 0x48000) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'macvlan0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_FEC_GET(r2, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f0000000140)={0xec, r3, 0x0, 0x70bd2c, 0x25dfdbfd, {}, [@ETHTOOL_A_FEC_HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x10000}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @ETHTOOL_A_FEC_HEADER={0x90, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}]}]}, 0xec}, 0x1, 0x0, 0x0, 0x84}, 0x4004040) madvise$auto(0x0, 0x20499d, 0x9) mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) futex$auto(0x0, 0x86, 0x8, 0x0, 0x0, 0x7) 7.94536422s ago: executing program 1 (id=735): mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NFC_CMD_DISABLE_SE(0xffffffffffffffff, &(0x7f0000003c40)={0x0, 0x0, &(0x7f0000003c00)={&(0x7f0000000380)=ANY=[@ANYBLOB="e00000", @ANYRES16, @ANYBLOB="000127bd7000fcdbdf251200000005000c00ff0000000800010000000000a00019007dba6907273140a43172cc0f5945474437143f69a5777674364501bd4661e84d7eeab5f94717d98d0624f33f803fbd6a756bebd8e1f84dc9170d"], 0xe0}, 0x1, 0x0, 0x0, 0x800}, 0x8) ioctl$auto_RTC_IRQP_SET(0xffffffffffffffff, 0x4008700c, &(0x7f0000000440)=0x77b) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/tty/ttyv7/power/control\x00', 0x60b03, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x189401, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = socketcall$auto(0xa, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000002c0)={{0x0, 0x9, &(0x7f0000000080)={&(0x7f0000000180)="cb7978ababe605edf078e6f2726ae03e663c080c0d6c169eec931ca2ea579299bf44495b1fe078f2e9c5586aa59caa813549", 0x1}, 0xfffffffffffffff7, 0x0, 0x6, 0x24f}, 0x800}, 0x8, 0xff) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_BLKTRACESETUP2(r1, 0xc0481273, &(0x7f0000000100)={"b1ec2b3d73eb3704600008fde7f9a86cba53ec92136c2cb4ea07c3ff554fd857", 0x5, 0xffffff65, 0x0, 0xa, 0x1040, 0xffffffffffffffff}) ioctl$auto_KVM_GET_MSRS(r0, 0x4400ae8f, &(0x7f00000000c0)={0xdd}) ioctl$auto_KVM_CREATE_VM(r0, 0xae80, 0x0) timer_create$auto(0x2, 0x0, 0x0) timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x26b, 0x4}, {0x0, 0x83}}, 0x0) 7.332052666s ago: executing program 1 (id=738): unshare$auto(0x40000080) socket(0x10, 0x80000, 0x5) mremap$auto(0x1ff000, 0x100005, 0x843, 0x3, 0x2) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x59, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}}, 0x4004) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/md_mod/parameters/new_array\x00', 0xa001, 0x0) open(&(0x7f00000000c0)='./file0\x00', 0x1882c2, 0x78e22799f4a46f1c) flock$auto(0xffffffffffffffff, 0x9) r1 = open(&(0x7f0000000000)='./file0\x00', 0x148640, 0x78e22799f4a46f8e) flock$auto(r1, 0x1) r2 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0x2a) flock$auto(r2, 0x1) close_range$auto(0x2, 0x8, 0x0) write$auto(r0, &(0x7f0000000340)='\x00e\xfeDz\x96\xf8\xdc3\xef~\xb8 \x18\xd5\xa0\xbf\x1f\xebR!e\x98\x13N`{\xb8\xa4\x9a\xdc:\xffmyu\x164\t-ea\x19FH\xe1\x1d\x9ai\x7fW\'w\xdf\xf2\xdf\xd3\x92\xe0\"\x13\xaa\xcb!\x1d=\x8d\xc0-\x03\x03u\x16\xc97\x13\xb2\xcdN\x98\xb4\xa0\xefsO\xd1ZdV\xba\xc13\xad`\x96\x02;K(\xda', 0x22) mmap$auto(0x0, 0x400008, 0xdf, 0x100000009b72, 0x2, 0x8000) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) write$auto(r3, 0x0, 0xfffffdef) r4 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x7, 0x4a}) sendmmsg$auto(r4, 0x0, 0x2, 0x100) r5 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D1c\x00', 0x98800, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_HW_REFINE2(r5, 0xc2604110, &(0x7f0000000040)={0x6, [{[0x2, 0xf5e, 0x1ff, 0xd, 0x207f, 0xb, 0x4, 0xc06]}, {[0x8001, 0x2ec, 0x5c915993, 0xfffffffd, 0x6, 0xe, 0x80020001, 0x3]}, {[0x2, 0xe, 0x2, 0x579c8feb, 0x9, 0x6, 0x7, 0xa53]}], [{[0x760, 0x209, 0x6, 0x17f29ee4, 0x400, 0x7, 0xc, 0x44]}, {[0x1, 0xeade, 0x1, 0x3, 0xf0, 0x5, 0x101, 0x1]}, {[0x7e61, 0x6, 0x7, 0x0, 0x5, 0x2, 0x100, 0x9]}, {[0x4, 0x5, 0x1, 0xfffffff7, 0x9, 0x0, 0xfffffffb, 0x5]}, {[0x3, 0x1000, 0x8, 0x8, 0x2, 0xe8c, 0xf, 0xd403]}], [{0xfffffffa, 0x4, 0x0, 0x0, 0x1, 0x1}, {0x7f, 0x6, 0x1, 0x0, 0x0, 0x1}, {0x3, 0x1, 0x1, 0x0, 0x0, 0x1}, {0x0, 0x8, 0x0, 0x0, 0x0, 0x1}, {0x5, 0x49c5fc8b, 0x0, 0x0, 0x0, 0x1}, {0x7ff, 0x4, 0x0, 0x1, 0x1, 0x1}, {0x6, 0x9, 0x0, 0x1, 0x1}, {0x9, 0x5, 0x0, 0x1}, {0x800, 0x7, 0x0, 0x1}, {0x7, 0xfffffffd, 0x1, 0x1, 0x1, 0x1}, {0x8, 0x4, 0x0, 0x0, 0x1, 0x1}, {0x3, 0x5, 0x1, 0x1, 0x0, 0x1}], [{0xbe, 0xd5, 0x0, 0x1, 0x0, 0x1}, {0x9, 0x7fffffff, 0x1, 0x1, 0x1}, {0xbc, 0xbb5e, 0x1, 0x0, 0x0, 0x1}, {0x8, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x100, 0x12e800, 0x1, 0x1, 0x1, 0x1}, {0x4002, 0xf, 0x0, 0x1, 0x1}, {0xffff, 0x6, 0x0, 0x0, 0x0, 0x1}, {0x9, 0x3, 0x1, 0x1, 0x0, 0x1}, {0x80000000, 0x4, 0x0, 0x1}], 0x100, 0x2, 0x4, 0x1, 0x5, 0x1, 0x8, "000000000020000000000000fd00", "16fef137d6f6aa1d93e7fd319170d04be4063eb16bddc7a41e5782dfff02104539c9b5e571a002e14933724526d0c013"}) init_module$auto(&(0x7f0000000000), 0xfffff, 0x0) read$auto(0xffffffffffffffff, 0x0, 0xfffffdef) r6 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) read$auto(r6, 0x0, 0x100000001) sendmsg$auto_TCP_METRICS_CMD_GET(0xffffffffffffffff, 0x0, 0x0) 5.879568073s ago: executing program 3 (id=741): close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x800) r1 = socket(0x10, 0x2, 0x0) syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), r1) sendmsg$auto_OVS_CT_LIMIT_CMD_SET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB=' .\x00\x00', @ANYRES32=0x0, @ANYBLOB="01002ebd5100fbcbdf2501000000040001"], 0x2e20}, 0x1, 0x0, 0x0, 0x2000c040}, 0x4) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0xb000000) mmap$auto(0x0, 0x20004, 0x1fd, 0xeb1, 0x8000000000000024, 0x8000) close_range$auto(r0, r0, 0x10001) r2 = io_uring_setup$auto(0x406, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r3 = socket(0x22, 0x3, 0x1) setsockopt$auto(r3, 0x29, 0x1b, 0x0, 0x201) socket$nl_generic(0x10, 0x3, 0x10) prctl$auto(0x6, 0x1, 0x0, 0x80000005, 0x100000001) io_uring_setup$auto(0x6, 0x0) clock_nanosleep$auto(0x7, 0x9, 0x0, 0x0) mmap$auto(0x0, 0xfffffffffffffffc, 0x80000000000000df, 0x10004000eb1, 0x5, 0x8000) close_range$auto(0x2, 0x8000, 0x0) madvise$auto(0xfc, 0xe56, 0xa) r4 = syz_clone(0x6001000, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r4, 0xd, 0x7ff) wait4$auto(r4, 0x0, 0x80000001, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000380)='/proc/sys/net/ipv4/conf/macvtap0/bc_forwarding\x00', 0x80202, 0x0) ioctl$auto_BTRFS_IOC_SEND_32(r2, 0x40449426, &(0x7f0000000180)={@inferred, 0x668d734d, 0x7, 0x8, 0x0, 0xdcc8, "e35dd1f60db40aa75172f256b43c9ea7fd982c3676fde69c1b91dd76"}) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/mtd/mtd0/mtdblock0/queue/iosched/front_merges\x00', 0x189142, 0x0) write$auto(r6, &(0x7f00000007c0)='f\x00\xb9:\xaa\xc1\r\x02T\xf5\b\x00\x00\x00\x00\x00\x00\x00\xa1\xd0\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\xcc!\"\xa6\"jH\xcd\x10&b/\x9a\xf1w\xddS\x87\xd1vi\xa9\xeaM\x1dY\xa6\x8d\xf2\\\xac\xe1\xcf\xf7\xff\xff\x148\t\xba\xa0Z\x00M\xbcHM{\xa9\xf1R3X\xdfMbe\t\t\x86\x11v\xa2W\x93m\xd9\x93\x98.7Z\xe7|\x9f\x88\x05\x9ej\xc5\xfaT\xa0\x9a\\i\xd1\xb3\x02\xfa\xfeaq\x8d\xf1\xba\xaf\xcc\xce\xb2\xd3~TR\xf1\xad\xd0\x90n\xb6\xd0\xfc(p\xa3\xabk\x19\xcb\xfda\xff&\xad1\x95\xc5\xa9Gb\xe3\xa4\xf1\xe2\x91\x0e\x91iy\xba%+=\xb7\xd3D,\x19\b\x00\x00\x00\x00\x00\x00\x00\xadG\x94\v\xff\xa4\xfc\x95\x00By\xe9\x80\xd3U\xcd9\xe0\xbc\x8cK\xf3\xfd\x89\xda\xaeH.\xe3\x95Xbw\x02\x99\x03\x00\x00\x00\x00\x00\x00\x00\xaf\xc3\x89\x91\x19\xfc+\xe9l\xd3\xf5\x00\x00\x00\x00\x00\x00\x00\x85%c\xa6\x0f\xcfI\xb4a\x1d\xc4\x8f\x12X\xdf\xc2\xd7\x8e\xf4\xb9_\xf6\x10\xfc\x9b\xce\xab\xcf\xa9_\x88\xf4\x1b\x12\x12N\f\x84\r\vsI\x86\xe9\xe6J\xb8\xe4\x8f\x02\x9e\xf45\xd9\xf1\xbd\xfd\x97\xd8OU\t\x9e2K\xe2*~\x9dIe\x00\x00\x00\x00\x00\x00\xce;E\x8c\x05~\x1f\xa5\xa4\x9d\xf6\'\xc4\xf7\xa3\xf2\xfb\x85z>\xd71\xb8\x83\x8e\xa9c6I\x8f\x00\xb2\x03\xfd3\xb8\xe9Xo\xaa\xaeg\xb3\x9e\x8fM:\xa5\x1c \xbe\xfe\"\xa1\x11\xf4~\xa1\x90D/e\xe1\xb1C:}\xd2\x9dT\xc1\xd6[Ld\x06\xee\xc6\xe4\x99uT\xfdl\x94\xe1:\'2aO\xf1\xfa8l\n\xe0l\x1c\x89\xd7U\x99\xe9d?\x04\xd8\xf3\x9c\xd8t\x88@\x89\x15p\x84\xad\xa3V=,U\xa4_\xb9\xa7\xd7O\x91\xb2\x03\xbe\xd5\xa8\x03o\x0e\xa7\x93\xabubg\x10\x19\x82D\xa7\xae9\xf1\xc0\n\xfe;n)OAV\xfe\x8fE-\xea\x7fzO0\xde\xc0WK\xe1\x9b\xfe\xbfR\x8c$p\xf0\xe4\xa5\xbe_\x8d:\xd6\xc5\xf5\x80+\xe6O', 0x181) sendfile$auto(r5, 0x3, 0x0, 0x400000000008) 5.521894419s ago: executing program 0 (id=744): mmap$auto(0x0, 0x477, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x402000a, 0x1006, 0xeb1, 0x401, 0x8000) openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000000), 0x40001, 0x0) poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108) socket(0xa, 0x2, 0x88) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/sched_rr_timeslice_ms\x00', 0x2, 0x0) pwrite64$auto(r1, &(0x7f0000000080)='+\\#', 0x3747, 0x100) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) connect$auto(0x3, 0x0, 0x58) quotactl$auto(0x9, 0x0, 0x62a0, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0xe31, 0x40000000000a5, 0x8000) syz_genetlink_get_family_id$auto_802_15_4_mac(0x0, 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000b80), r2) sendmsg$auto_IOAM6_CMD_DEL_SCHEMA(r2, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x40040) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000c00), r3) sendmsg$auto_TCP_METRICS_CMD_DEL(r3, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000280)={0x24, r4, 0x901, 0x70bd27, 0x25dfdbfb, {}, [@TCP_METRICS_ATTR_SADDR_IPV4={0x8, 0xb, @private=0xac14140a}, @TCP_METRICS_ATTR_ADDR_IPV4={0x8, 0x1, @remote}]}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x40) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bond0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r5, 0xffffffffffffffff, 0x8, 0x7f, 0xffffffffffffffff, @relative_fd=0xffffffffffffffff, 0x4}, 0xf) r7 = ioctl$auto_TIOCGPTPEER2(r6, 0x5441, 0x0) r8 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptycc\x00', 0xa0840, 0x0) ioctl$auto(r8, 0x540a, 0x2) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dsp1\x00', 0x404540, 0x0) sendfile$auto(r7, r8, &(0x7f0000000040)=0x4040000000000, 0xfffffffffffffff8) syz_genetlink_get_family_id$auto_netdev(&(0x7f0000002f80), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'veth1_vlan\x00', 0x0}) bpf$auto(0x3, &(0x7f00000001c0)=@link_create={@prog_fd=r1, @target_ifindex=r9, 0xfffffff3, 0x2, @perf_event={0x100000001}}, 0x4) mremap$auto(0x0, 0x7, 0x3fd6, 0x0, 0x1ffffffe) 5.147969623s ago: executing program 0 (id=745): openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = ioctl$auto_NS_GET_MNTNS_ID(0xffffffffffffffff, 0x8008b705, 0x0) close_range$auto(r0, 0x8, 0x9) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003180), r1) sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r1, &(0x7f0000003400)={0x0, 0x0, &(0x7f00000033c0)={&(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES16=r2, @ANYBLOB="01032abd700500ff00000000000004000280"], 0x18}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x2, 0x1, 0x106) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) rt_sigprocmask$auto(0x40, 0x0, 0x0, 0x8) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r4, 0x40045010, &(0x7f0000000040)) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r4, 0x40045010, &(0x7f0000000080)) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) clock_gettime$auto(0x10, 0x0) r6 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'veth1_to_batadv\x00', 0x0}) sendmsg$auto_NL80211_CMD_DEL_KEY(r3, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x4c, r7, 0x100, 0x70bd26, 0x25dfdbfd, {}, [@NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0x5}, @NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0xd}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r8}, @NL80211_ATTR_VENDOR_ID={0x8}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x9}, @NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x1}, @NL80211_ATTR_DISABLE_VHT={0x4}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000041}, 0x41) setuid$auto(0xe) prctl$auto(0x1000000001c, 0x0, 0x0, 0x9, 0x38000000) setsockopt$auto_SO_BROADCAST(0xffffffffffffffff, 0x5, 0x6, 0x0, 0x74) write$auto(r5, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) socket(0x28, 0x5, 0x0) setsockopt$auto(0xffffffffffffffff, 0xf7, 0x6, &(0x7f0000000000)='/dev/video3\x00', 0x1) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video3\x00', 0x2aa01, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x3, 0x1, 0x9488, 0x9, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0xd8]}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000000007, 0x4, 0x1000000000000bc3, 0x7ff, 0x3, 0xff, 0x10001, 0x400000000003, 0x3, 0x8001, 0xfffffffffffffffe, 0x80000000, 0x335b0eef, 0xffffdfffffffff81, 0x4]}, 0x0) 4.91195323s ago: executing program 3 (id=746): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) ustat$auto(0x801, 0x0) socket(0xa, 0x3, 0x3a) setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x567) unshare$auto(0x40000080) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0xc0101, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a) r0 = socket(0x2, 0x5, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) sendmmsg$auto(r0, &(0x7f0000000100)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0xff80}, 0x7, 0x0, 0x4, 0xb}, 0x8}, 0x5, 0x7fffffff) mmap$auto(0x0, 0x20009, 0xe1, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002) fanotify_init$auto(0x3, 0x2010000000000) sysfs$auto(0x2, 0x1e, 0x0) fsopen$auto(0x0, 0x1) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) socket(0x840000000002, 0x3, 0xff) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/rpc/nfsd.export/content\x00', 0x2, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f00000000c0)=""/163, 0xa3) set_mempolicy$auto(0x6, &(0x7f0000000000)=0xcf, 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x59, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/cpu/cpuidle/current_governor\x00', 0xa42, 0x0) capset$auto(0x0, &(0x7f0000000000)={0x2, 0xd, 0x8}) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{0x0, 0x5aa, &(0x7f0000000100)={&(0x7f0000001300), 0x49}, 0x4, &(0x7f0000000180), 0x5, 0x1040}, 0x5}, 0x2, 0x100) ioctl$auto_TUNDETACHFILTER(0xffffffffffffffff, 0x401054d6, &(0x7f0000000200)={0x1, &(0x7f0000000180)={0xff, 0x80, 0x5, @inferred=r2}}) mmap$auto(0x0, 0x4020009, 0xdf, 0x8011, 0x401, 0x8000) write$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000080)="18ac039829723c979d82869543c5e11168cce4dd3bbc3d47ae58a251f5898ecf784c0da52f8fbfc8829338f5343e61c2f0094ef5af4d5e9d4c3beff77a385fb8945e63af6f53b04c316a7c20e90e1c9aa3bdfa49857fd413711754c230cb1b8e5c13c88c043990c947464a4bf791abc2dc0a863dc5919d", 0x77) 4.896902866s ago: executing program 1 (id=747): sendmsg$auto_HWSIM_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000001200)={0x378, 0x0, 0x300, 0x70bd2c, 0x25dfdbfd, {}, [@HWSIM_ATTR_PMSR_RESULT={0x364, 0x1c, 0x0, 0x1, [@NL80211_PMSR_ATTR_PEERS={0x360, 0x5, 0x0, 0x1, [{0x35c, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_RESP={0x1d0, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0xe6d}, @NL80211_PMSR_RESP_ATTR_DATA={0x1c0, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x68, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_INDEX={0x6, 0x2, 0x1}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0x3}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x44, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x2}, @HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH={0x5, 0x9, 0x4}, @HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0x40}, @HWSIM_RATE_INFO_ATTR_FLAGS={0x5, 0x1, 0xa}, @HWSIM_RATE_INFO_ATTR_MCS={0x5, 0x2, 0x52}, @HWSIM_RATE_INFO_ATTR_LEGACY={0x6, 0x3, 0xd}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x7}, @HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC={0x5, 0x8, 0xd5}]}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0x5}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_SUCCESSES={0x8, 0x4, 0x5}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_SUCCESSES={0x8, 0x4, 0x1ff}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD={0x8, 0xa, 0x7fff}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0x3ff}, @NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME={0x5, 0x5, 0x6}]}, @NL80211_PMSR_TYPE_FTM={0x94, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8, 0x9, 0x9}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x3ff}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x54, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_FLAGS={0x5, 0x1, 0xa0}, @HWSIM_RATE_INFO_ATTR_LEGACY={0x6, 0x3, 0x8}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0xe}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x6}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x1}, @HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0x7d}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x40}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x8}, @HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0x9e}, @HWSIM_RATE_INFO_ATTR_EHT_GI={0x5, 0xa, 0x3}]}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0x1}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS={0x8}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8, 0x9, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP={0x5, 0x6, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0x58, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0xfffffffffffffff7}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0x3}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x34, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x9}, @HWSIM_RATE_INFO_ATTR_LEGACY={0x6, 0x3, 0x4}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x1}, @HWSIM_RATE_INFO_ATTR_EHT_GI={0x5, 0xa, 0x3}, @HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC={0x5, 0x8, 0x8}, @HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH={0x5}]}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS={0x8, 0x3, 0x7fffffff}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP={0x5, 0x6, 0x3}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0x3}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS={0x8, 0x3, 0x2}]}]}]}, @NL80211_PMSR_PEER_ATTR_RESP={0xd0, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x7fffffffffffffff}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x932a}, @NL80211_PMSR_RESP_ATTR_DATA={0xb4, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_DIST_AVG={0xc, 0x10, 0x101}, @NL80211_PMSR_FTM_RESP_ATTR_LCI={0xd, 0x13, '*^!\xbe:/%&,'}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0xc}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD={0x8, 0xa, 0x33f}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS={0x8, 0x3, 0x2}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_INDEX={0x6, 0x2, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0x8}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_INDEX={0x6, 0x2, 0x1b}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0x96}, @NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME={0x5, 0x5, 0x8}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP={0x5, 0x6, 0x73}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x14, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_EHT_GI={0x5, 0xa, 0x2}, @HWSIM_RATE_INFO_ATTR_FLAGS={0x5, 0x1, 0x4}]}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0x5}]}]}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0x12, 0x1, "d857934e6d14f3f02fbe3dbf148a"}, @NL80211_PMSR_PEER_ATTR_ADDR={0x11, 0x1, "1a95e74cf2bb505886b5ea4804"}, @NL80211_PMSR_PEER_ATTR_RESP={0x80, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x1}, @NL80211_PMSR_RESP_ATTR_DATA={0x58, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x54, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD={0x8, 0xa, 0x5}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0xc3}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8, 0x1, 0x3}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP={0x5, 0x6, 0x4}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0xc, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC={0x5, 0x8, 0x9}]}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x78f0}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS={0x8, 0x3, 0x101}, @NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC={0x5, 0x14, '&'}]}]}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x2}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x2}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0x4}, @NL80211_PMSR_PEER_ATTR_RESP={0xc, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x80000000}]}]}]}]}]}, 0x378}, 0x1, 0x0, 0x0, 0x20000000}, 0x80) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae8a, &(0x7f00000000c0)={0xfc}) 4.620215065s ago: executing program 2 (id=748): mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NFC_CMD_DISABLE_SE(0xffffffffffffffff, &(0x7f0000003c40)={0x0, 0x0, &(0x7f0000003c00)={&(0x7f0000000380)=ANY=[@ANYBLOB="e00000", @ANYRES16, @ANYBLOB="000127bd7000fcdbdf251200000005000c00ff0000000800010000000000a00019007dba6907273140a43172cc0f5945474437143f69a5777674364501bd4661e84d7eeab5f94717d98d0624f33f803fbd6a756bebd8e1f84dc9170d"], 0xe0}, 0x1, 0x0, 0x0, 0x800}, 0x8) ioctl$auto_RTC_IRQP_SET(0xffffffffffffffff, 0x4008700c, &(0x7f0000000440)=0x77b) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/tty/ttyv7/power/control\x00', 0x60b03, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x189401, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = socketcall$auto(0xa, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000002c0)={{0x0, 0x9, &(0x7f0000000080)={&(0x7f0000000180)="cb7978ababe605edf078e6f2726ae03e663c080c0d6c169eec931ca2ea579299bf44495b1fe078f2e9c5586aa59caa813549", 0x1}, 0xfffffffffffffff7, 0x0, 0x6, 0x24f}, 0x800}, 0x8, 0xff) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_BLKTRACESETUP2(r1, 0xc0481273, &(0x7f0000000100)={"b1ec2b3d73eb3704600008fde7f9a86cba53ec92136c2cb4ea07c3ff554fd857", 0x5, 0xffffff65, 0x0, 0xa, 0x1040, 0xffffffffffffffff}) ioctl$auto_KVM_GET_MSRS(r0, 0x4400ae8f, &(0x7f00000000c0)={0xdd}) ioctl$auto_KVM_CREATE_VM(r0, 0xae80, 0x0) timer_create$auto(0x2, 0x0, 0x0) timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x26b, 0x4}, {0x0, 0x83}}, 0x0) 4.386553242s ago: executing program 1 (id=749): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) read$auto_mon_fops_binary_mon_bin(0xffffffffffffffff, 0x0, 0x0) connect$auto(0x3, 0x0, 0x58) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x1, 0x9) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/mm/transparent_hugepage/hugepages-2048kB/enabled\x00', 0x22b42, 0x0) sendfile$auto(r0, r0, 0x0, 0x6) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0x29, 0xa, 0x20080) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) pipe$auto(0x0) unshare$auto(0x40000080) semctl$auto(0x2, 0x5, 0x13, 0x9) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x4, &(0x7f00000002c0)={0x0, 0x7}, 0x1, 0x0, 0x5, 0x7}, 0x7}, 0xffffffff, 0xb00) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7ffffffc) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) open(&(0x7f0000000000)='./file1\x00', 0x1652c2, 0xe1d2b27bdc14aa98) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYBLOB="6076432e477f8dd62998de"], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c081) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000500)={&(0x7f00000003c0), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000180)=@in={0x2, 0x3, @multicast1}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @local}, 0x58) sendmsg$auto_ETHTOOL_MSG_EEE_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x44000}, 0x40804) 3.979845507s ago: executing program 2 (id=750): r0 = socket(0xa, 0x3, 0x5) fcntl$auto(0x3, 0x4, 0xa553) sendmmsg$auto(r0, &(0x7f0000000000)={{0x0, 0xc88, 0x0, 0x0, 0x0, 0x9, 0x200}, 0x5}, 0x3b8b, 0x800) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) open(&(0x7f0000000000)='./file0\x00', 0x109342, 0x1) r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x57e) fcntl$auto_F_ADD_SEALS(r1, 0x410, 0x0) link$auto(&(0x7f0000003240)='./file0\x00', &(0x7f0000003280)='./file2\x00') close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket(0xa, 0x1, 0x84) mq_timedreceive$auto(r2, 0x0, 0x2b2e, 0x0, 0x0) setresuid$auto(0x0, 0x0, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/radio16\x00', 0x402, 0x0) ppoll$auto(&(0x7f00000001c0)={0xffffffffffffffff, 0x8, 0x400}, 0xaf, &(0x7f0000000200)={0x6, 0x3}, 0x0, 0x8) fchownat$auto(0x2, 0x0, 0x0, 0x8001, 0x1000) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), 0xffffffffffffffff) socket(0x2, 0x3, 0xa) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r3 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000040)='/dev/usbmon0\x00', 0x0, 0x0) ioctl$auto_MON_IOCX_MFETCH(r3, 0xc0109207, &(0x7f0000000100)={0x0, 0x2000004, 0x7}) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup/io.pressure\x00', 0x80000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000240)=""/127, 0x7f) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/018/001\x00', 0x16d080, 0x0) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r5 = socket(0xa, 0x2, 0x73) sendto$auto(r5, 0x0, 0xfdf0, 0xfe80, 0x0, 0x1c) 3.749682147s ago: executing program 0 (id=751): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/neigh/vlan1/base_reachable_time\x00', 0x40400, 0x0) read$auto(r0, 0x0, 0x1ff) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon24\x00', 0x121200, 0x0) r2 = socket(0xa, 0x2, 0x0) r3 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/lru_gen\x00', 0x23100, 0x0) connect$auto(r3, &(0x7f00000000c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/thread-self/net/kcm\x00', 0x80, 0x0) r4 = socket(0x29, 0x2, 0x0) mmap$auto(0x0, 0x400005, 0xffffffffffeffffe, 0x9b72, 0xc76, 0x8000) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xf15a}, 0x6, 0x8, 0x5) ioctl$auto(0xc8, 0x400454ce, 0x5c8d) setsockopt$auto(0x3, 0x0, 0x28, 0xfffffffffffffffc, 0x70) r5 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r4) r6 = socket(0x2, 0x80002, 0x73) r7 = landlock_create_ruleset$auto(0x0, 0x9, 0x0) r8 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f00000001c0), r6) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000200)={'dvmrp0\x00', 0x0}) r10 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r11 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r11, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="c0090000", @ANYRES16=r10, @ANYBLOB="131f2cbd700023723ab36bf877ac08000300", @ANYRES32=r12], 0x9c0}, 0x1, 0x0, 0x0, 0x2400c884}, 0x20040894) r13 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r14 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r14, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r14, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)={0x2c, r13, 0x13, 0x70bd2c, 0x25dfdbdd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r15}, @NL80211_ATTR_WIPHY_TX_POWER_SETTING={0x8, 0x61, 0x1}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24004080}, 0x20040894) sendmsg$auto_NET_SHAPER_CMD_GET(r7, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000240)={0xcc, r8, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NET_SHAPER_A_IFINDEX={0x8, 0x8, r9}, @NET_SHAPER_A_HANDLE={0x1c, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x9d0f}, @NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x80000001}, @NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x4}]}, @NET_SHAPER_A_HANDLE={0xc, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x8937}]}, @NET_SHAPER_A_HANDLE={0xc, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0xfb}]}, @NET_SHAPER_A_HANDLE={0x2c, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0xff}, @NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x4}, @NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x40}, @NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x8}, @NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x4}]}, @NET_SHAPER_A_IFINDEX={0x8, 0x8, r15}, @NET_SHAPER_A_HANDLE={0x3c, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x8}, @NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x6}, @NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0xd}, @NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x4}, @NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x7}, @NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x4fa54be1}, @NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0xb1}]}, @NET_SHAPER_A_HANDLE={0xc, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x2}]}]}, 0xcc}, 0x1, 0x0, 0x0, 0x20000000}, 0x5090) sendmsg$auto_NL802154_CMD_SET_SHORT_ADDR(r2, &(0x7f0000000640)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000600)={&(0x7f0000000280)=ANY=[@ANYBLOB="5c030000", @ANYRES16=r5, @ANYBLOB="200029bd7000fddbdf250b000000050013000200000008001d00", @ANYRES32=r7, @ANYBLOB="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"], 0x35c}, 0x1, 0x0, 0x0, 0x8040}, 0x20048054) 2.627595875s ago: executing program 3 (id=752): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_OVS_FLOW_CMD_DEL(r0, &(0x7f0000000240)={0x0, 0xfffffffffffffd7c, &(0x7f0000000200)={&(0x7f0000000180)={0x24, r1, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@OVS_FLOW_ATTR_KEY={0x4}, @OVS_FLOW_ATTR_KEY={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x105, 0x0, 0x0, @fd=r0}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x800) r2 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) bind$auto(r2, &(0x7f0000000040)=@rc={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x3) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) close_range$auto(0x0, 0xfffffffffffff000, 0x2) mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000) socket(0x10, 0x2, 0x4) socket(0x1d, 0x2, 0x7) socket(0x2, 0x1, 0x0) r3 = open(&(0x7f0000000240)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0xa6) open_by_handle_at$auto(r3, &(0x7f0000000040)={0x8, 0x2, '\a\x00\x00\x00\x00\x00\x00\x00'}, 0x2) r4 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0) ioctl$auto(r4, 0x92106405, r4) close_range$auto(0x2, 0xa, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) r5 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video67\x00', 0x169000, 0x0) ioctl$auto(r5, 0xc0285628, r5) socket(0x10, 0x2, 0x0) socket(0x15, 0x5, 0x0) socketpair$auto(0xfffffffd, 0x5, 0xffffffff, 0x0) unshare$auto(0x40000080) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) setsockopt$auto(0x3, 0x10000000084, 0x7c, 0x0, 0x8) getsockopt$auto(r2, 0x84, 0x7c, 0x0, &(0x7f0000000000)=0x7ffe) 2.426336303s ago: executing program 3 (id=753): r0 = mq_open$auto(&(0x7f00000000c0)='\x12\xe6D\b\x9e\x00\x80\x8d\f\xb9w-\xbd!\x9eb\xed\xfb\x0f\xe5\x9dZ\xc2\xd1\x01wBV\x91\x8f_\xc0.\x84\xfe\x84\xd1se\x01\x06\x00\xb3\x13_Y&\xa9\x88\xe4\xa2\xb0V\x85\x92<\xb6\xdcT \\\xf2\v\xb1\xe2\xd8\xfa\xd8V\xe5\x00\xfa\xe9!\xc5<\xce\x18=\x06\xdagq\xb5\r\t\xb2\xde\x99\xd50\xbb\x192\x1c4\x86\xc0\xc1-\xd5\x10\xc3\xfc*[8\x89h\xc5\xba\xff\xc8u50x0}) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000004040)={&(0x7f0000002940)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000004000)={&(0x7f0000005080)=ANY=[@ANYBLOB="f4110000", @ANYRES16=r6, @ANYBLOB="010025bd7000ffdbdf250c000000611103801c006c800400cb800400f380040044800400268008009f00", @ANYRES32, @ANYBLOB="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", @ANYRES32=r7, @ANYBLOB="140002006272696467655f736c6176655f3100001400020073797a6b616c6c657231000000000000080003000400000008000300000000000800030000010000"], 0x11f4}, 0x1, 0x0, 0x0, 0x800}, 0x4000) ptrace$auto(0x5, 0x0, 0x8, 0x1) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_KSMBD_EVENT_RPC_RESPONSE(r8, &(0x7f00000003c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000380)={&(0x7f0000000240)={0x14, r5, 0x400, 0x70bd2c, 0x25dfdbfb, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20044080}, 0x80) semget$auto(0x7f, 0x101, 0x7b2) open_by_handle_at$auto(r3, &(0x7f0000000280)={0xce, 0xae2, "e613a2f8ec2fba08f7ca23b1eb3b840ddf624b9ee42bc126596e79a15296e9e63c8426fbe5d679fec5fb0a9d0fb5aaac3dcb67d9c4607856693cf8f049c7d909affb7fbe011b72acdc6edf6401c673539ee54469448f635d9979f036ef8f381506a9c8ab7dcaba8774231a1f302203c0c43a1e814ca987a2fd89e2870f62a2e6f02be6c6ca2bfc245f7e22b8906b306d19b353abd1b7875fa04df8f90c94dbf4b96adc3f80b4bf7ac71fdb214648f65770dd0df7e691e108af521a4f4d0833739c5f3c5fa132c974dd37aacbe0dd"}, 0x6) mq_timedreceive$auto(r0, 0x0, 0xa, 0x0, &(0x7f0000000080)={0x7ff, 0xe}) 2.336795091s ago: executing program 3 (id=754): mmap$auto(0x0, 0x477, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x402000a, 0x1006, 0xeb1, 0x401, 0x8000) openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000000), 0x40001, 0x0) poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108) socket(0xa, 0x2, 0x88) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/sched_rr_timeslice_ms\x00', 0x2, 0x0) pwrite64$auto(r1, &(0x7f0000000080)='+\\#', 0x3747, 0x100) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) connect$auto(0x3, 0x0, 0x58) quotactl$auto(0x9, 0x0, 0x62a0, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0xe31, 0x40000000000a5, 0x8000) syz_genetlink_get_family_id$auto_802_15_4_mac(0x0, 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000b80), r2) sendmsg$auto_IOAM6_CMD_DEL_SCHEMA(r2, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000bc0)={0x14, r3, 0x1, 0x70bd29, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x40040) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000c00), r4) sendmsg$auto_TCP_METRICS_CMD_DEL(r4, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000280)={0x24, r5, 0x901, 0x70bd27, 0x25dfdbfb, {}, [@TCP_METRICS_ATTR_SADDR_IPV4={0x8, 0xb, @private=0xac14140a}, @TCP_METRICS_ATTR_ADDR_IPV4={0x8, 0x1, @remote}]}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x40) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bond0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r6, 0xffffffffffffffff, 0x8, 0x7f, 0xffffffffffffffff, @relative_fd=0xffffffffffffffff, 0x4}, 0xf) r8 = ioctl$auto_TIOCGPTPEER2(r7, 0x5441, 0x0) r9 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptycc\x00', 0xa0840, 0x0) ioctl$auto(r9, 0x540a, 0x2) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dsp1\x00', 0x404540, 0x0) sendfile$auto(r8, r9, &(0x7f0000000040)=0x4040000000000, 0xfffffffffffffff8) syz_genetlink_get_family_id$auto_netdev(&(0x7f0000002f80), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'veth1_vlan\x00', 0x0}) bpf$auto(0x3, &(0x7f00000001c0)=@link_create={@prog_fd=r1, @target_ifindex=r10, 0xfffffff3, 0x2, @perf_event={0x100000001}}, 0x4) mremap$auto(0x0, 0x7, 0x3fd6, 0x0, 0x1ffffffe) 2.166709207s ago: executing program 2 (id=755): close_range$auto(0x2, 0x8, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000080)='\tt_n\x00\x00\x00', 0x8) socket(0x23, 0x80805, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) setitimer$auto(0x2, &(0x7f0000000000)={{0x8000, 0x6}, {0xa4b, 0x6}}, 0x0) socket(0x26, 0xa, 0x4) ioctl$auto(0xc8, 0x894c, 0x5c8d) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x11, 0x4, 0x303) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000000), 0x5a9, &(0x7f0000000100)={0x0, 0x400000000200007}, 0x1, 0x0, 0x2, 0x8}, 0x5}, 0x2000002, 0x104) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40080}, 0x40) socket(0xa, 0x5, 0x84) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socket(0x10, 0x2, 0x0) mmap$auto(0xfffffffffffffffc, 0x202000a, 0x3, 0x16, 0xffffffffffffffff, 0x8000) sysfs$auto(0xffffffff, 0x4000000001, 0x3) fsconfig$auto(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D0p\x00', 0x4000, 0x0) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x802, 0x0) r2 = socket(0xa, 0x1, 0x84) ppoll$auto(&(0x7f0000000040)={r1, 0x5, 0xf}, 0x4, 0x0, 0x0, 0x8) ioctl$auto(r1, 0x40045613, r2) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/smc/smcr_buf_type\x00', 0xa0382, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 1.841142598s ago: executing program 1 (id=756): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) unshare$auto(0x40000080) syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff) mbind$auto(0x8000000000000002, 0x100000004, 0x100000000, 0x0, 0x9, 0x2) unshare$auto(0x4) r0 = gettid() kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@buf=0x0, 0x8ab0, 0x6c0000c000, 0xc000}, 0x4) kill$auto(r0, 0x11) r1 = io_uring_setup$auto(0x59, &(0x7f0000001100)={0x7, 0xe, 0x2, 0x6, 0x5, 0x8, 0xffffffffffffffff, [], {0xd74c, 0x6, 0x2, 0x2000029f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0xff, 0x1, 0x110001, 0x2, 0x1, 0x40, 0x76c5, 0x8, 0x100000005}}) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), r1) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000700), r4) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000740)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_CHANNEL(r4, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000780)={0x1c, r5, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4080}, 0x20000000) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'nicvf0\x00', 0x0}) r8 = socket(0x10, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'veth0_to_team\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="01"], 0x24}, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80) r10 = fanotify_init$auto(0x5ed6d, 0xf1) r11 = io_uring_setup$auto(0xf00, 0x0) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f00000002c0), r2) ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f00000003c0)={'\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000440)={'caif0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r10, &(0x7f0000000680)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200020}, 0xc, &(0x7f0000000640)={&(0x7f0000000480)=ANY=[@ANYBLOB="b8", @ANYRES16=0x0, @ANYRES32=0x0, @ANYBLOB="1400020073797a5f74756e00000000000000000008", @ANYRES32=0x0, @ANYBLOB="1400020076657468305f746f5f62617461647600140002006272696467655f736c6176655f3100000c000180080003007e030000440001801400020073797a6b616c6c657231000000000000080003000300000014000200766c616e31000000000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="9000018008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="080003000500000014000200776731000000000000000000000000001400020076657468315f766c616e000000000000140002007369743000000000000000000000000014000200766574683000000000000000000000001400020074756e6c3000000000000000000000001c00018008000100", @ANYRES32, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r12, @ANYBLOB, @ANYRES32=r13, @ANYBLOB="1400020076657468315f746f5f626f6e64000000"], 0x1b8}, 0x1, 0x0, 0x0, 0x40}, 0x48000) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'macvlan0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_FEC_GET(r2, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f0000000140)={0xec, r3, 0x0, 0x70bd2c, 0x25dfdbfd, {}, [@ETHTOOL_A_FEC_HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x10000}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @ETHTOOL_A_FEC_HEADER={0x90, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}]}]}, 0xec}, 0x1, 0x0, 0x0, 0x84}, 0x4004040) madvise$auto(0x0, 0x20499d, 0x9) mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) futex$auto(0x0, 0x86, 0x8, 0x0, 0x0, 0x7) 1.679022061s ago: executing program 0 (id=757): sendmsg$auto_HWSIM_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000001200)={0x378, 0x0, 0x300, 0x70bd2c, 0x25dfdbfd, {}, [@HWSIM_ATTR_PMSR_RESULT={0x364, 0x1c, 0x0, 0x1, [@NL80211_PMSR_ATTR_PEERS={0x360, 0x5, 0x0, 0x1, [{0x35c, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_RESP={0x1d0, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0xe6d}, @NL80211_PMSR_RESP_ATTR_DATA={0x1c0, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x68, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_INDEX={0x6, 0x2, 0x1}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0x3}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x44, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x2}, @HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH={0x5, 0x9, 0x4}, @HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0x40}, @HWSIM_RATE_INFO_ATTR_FLAGS={0x5, 0x1, 0xa}, @HWSIM_RATE_INFO_ATTR_MCS={0x5, 0x2, 0x52}, @HWSIM_RATE_INFO_ATTR_LEGACY={0x6, 0x3, 0xd}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x7}, @HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC={0x5, 0x8, 0xd5}]}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0x5}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_SUCCESSES={0x8, 0x4, 0x5}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_SUCCESSES={0x8, 0x4, 0x1ff}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD={0x8, 0xa, 0x7fff}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0x3ff}, @NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME={0x5, 0x5, 0x6}]}, @NL80211_PMSR_TYPE_FTM={0x94, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8, 0x9, 0x9}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x3ff}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x54, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_FLAGS={0x5, 0x1, 0xa0}, @HWSIM_RATE_INFO_ATTR_LEGACY={0x6, 0x3, 0x8}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0xe}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x6}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x1}, @HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0x7d}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x40}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x8}, @HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0x9e}, @HWSIM_RATE_INFO_ATTR_EHT_GI={0x5, 0xa, 0x3}]}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0x1}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS={0x8}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8, 0x9, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP={0x5, 0x6, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0x58, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0xfffffffffffffff7}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0x3}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x34, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x9}, @HWSIM_RATE_INFO_ATTR_LEGACY={0x6, 0x3, 0x4}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x1}, @HWSIM_RATE_INFO_ATTR_EHT_GI={0x5, 0xa, 0x3}, @HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC={0x5, 0x8, 0x8}, @HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH={0x5}]}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS={0x8, 0x3, 0x7fffffff}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP={0x5, 0x6, 0x3}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0x3}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS={0x8, 0x3, 0x2}]}]}]}, @NL80211_PMSR_PEER_ATTR_RESP={0xd0, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x7fffffffffffffff}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x932a}, @NL80211_PMSR_RESP_ATTR_DATA={0xb4, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_DIST_AVG={0xc, 0x10, 0x101}, @NL80211_PMSR_FTM_RESP_ATTR_LCI={0xd, 0x13, '*^!\xbe:/%&,'}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0xc}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD={0x8, 0xa, 0x33f}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS={0x8, 0x3, 0x2}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_INDEX={0x6, 0x2, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0x8}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_INDEX={0x6, 0x2, 0x1b}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0x96}, @NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME={0x5, 0x5, 0x8}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP={0x5, 0x6, 0x73}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x14, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_EHT_GI={0x5, 0xa, 0x2}, @HWSIM_RATE_INFO_ATTR_FLAGS={0x5, 0x1, 0x4}]}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0x5}]}]}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0x12, 0x1, "d857934e6d14f3f02fbe3dbf148a"}, @NL80211_PMSR_PEER_ATTR_ADDR={0x11, 0x1, "1a95e74cf2bb505886b5ea4804"}, @NL80211_PMSR_PEER_ATTR_RESP={0x80, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x1}, @NL80211_PMSR_RESP_ATTR_DATA={0x58, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x54, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD={0x8, 0xa, 0x5}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0xc3}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8, 0x1, 0x3}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP={0x5, 0x6, 0x4}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0xc, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC={0x5, 0x8, 0x9}]}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x78f0}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS={0x8, 0x3, 0x101}, @NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC={0x5, 0x14, '&'}]}]}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x2}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x2}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0x4}, @NL80211_PMSR_PEER_ATTR_RESP={0xc, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x80000000}]}]}]}]}]}, 0x378}, 0x1, 0x0, 0x0, 0x20000000}, 0x80) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae8a, &(0x7f00000000c0)={0xfc}) 1.578577009s ago: executing program 3 (id=758): unshare$auto(0x40000080) socket(0x10, 0x80000, 0x5) mremap$auto(0x1ff000, 0x100005, 0x843, 0x3, 0x2) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x59, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}}, 0x4004) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/md_mod/parameters/new_array\x00', 0xa001, 0x0) open(&(0x7f00000000c0)='./file0\x00', 0x1882c2, 0x78e22799f4a46f1c) flock$auto(0xffffffffffffffff, 0x9) r1 = open(&(0x7f0000000000)='./file0\x00', 0x148640, 0x78e22799f4a46f8e) flock$auto(r1, 0x1) r2 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0x2a) flock$auto(r2, 0x1) close_range$auto(0x2, 0x8, 0x0) write$auto(r0, &(0x7f0000000340)='\x00e\xfeDz\x96\xf8\xdc3\xef~\xb8 \x18\xd5\xa0\xbf\x1f\xebR!e\x98\x13N`{\xb8\xa4\x9a\xdc:\xffmyu\x164\t-ea\x19FH\xe1\x1d\x9ai\x7fW\'w\xdf\xf2\xdf\xd3\x92\xe0\"\x13\xaa\xcb!\x1d=\x8d\xc0-\x03\x03u\x16\xc97\x13\xb2\xcdN\x98\xb4\xa0\xefsO\xd1ZdV\xba\xc13\xad`\x96\x02;K(\xda', 0x22) mmap$auto(0x0, 0x400008, 0xdf, 0x100000009b72, 0x2, 0x8000) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) write$auto(r3, 0x0, 0xfffffdef) r4 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x7, 0x4a}) sendmmsg$auto(r4, 0x0, 0x2, 0x100) r5 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D1c\x00', 0x98800, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_HW_REFINE2(r5, 0xc2604110, &(0x7f0000000040)={0x6, [{[0x2, 0xf5e, 0x1ff, 0xd, 0x207f, 0xb, 0x4, 0xc06]}, {[0x8001, 0x2ec, 0x5c915993, 0xfffffffd, 0x6, 0xe, 0x80020001, 0x3]}, {[0x2, 0xe, 0x2, 0x579c8feb, 0x9, 0x6, 0x7, 0xa53]}], [{[0x760, 0x209, 0x6, 0x17f29ee4, 0x400, 0x7, 0xc, 0x44]}, {[0x1, 0xeade, 0x1, 0x3, 0xf0, 0x5, 0x101, 0x1]}, {[0x7e61, 0x6, 0x7, 0x0, 0x5, 0x2, 0x100, 0x9]}, {[0x4, 0x5, 0x1, 0xfffffff7, 0x9, 0x0, 0xfffffffb, 0x5]}, {[0x3, 0x1000, 0x8, 0x8, 0x2, 0xe8c, 0xf, 0xd403]}], [{0xfffffffa, 0x4, 0x0, 0x0, 0x1, 0x1}, {0x7f, 0x6, 0x1, 0x0, 0x0, 0x1}, {0x3, 0x1, 0x1, 0x0, 0x0, 0x1}, {0x0, 0x8, 0x0, 0x0, 0x0, 0x1}, {0x5, 0x49c5fc8b, 0x0, 0x0, 0x0, 0x1}, {0x7ff, 0x4, 0x0, 0x1, 0x1, 0x1}, {0x6, 0x9, 0x0, 0x1, 0x1}, {0x9, 0x5, 0x0, 0x1}, {0x800, 0x7, 0x0, 0x1}, {0x7, 0xfffffffd, 0x1, 0x1, 0x1, 0x1}, {0x8, 0x4, 0x0, 0x0, 0x1, 0x1}, {0x3, 0x5, 0x1, 0x1, 0x0, 0x1}], [{0xbe, 0xd5, 0x0, 0x1, 0x0, 0x1}, {0x9, 0x7fffffff, 0x1, 0x1, 0x1}, {0xbc, 0xbb5e, 0x1, 0x0, 0x0, 0x1}, {0x8, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x100, 0x12e800, 0x1, 0x1, 0x1, 0x1}, {0x4002, 0xf, 0x0, 0x1, 0x1}, {0xffff, 0x6, 0x0, 0x0, 0x0, 0x1}, {0x9, 0x3, 0x1, 0x1, 0x0, 0x1}, {0x80000000, 0x4, 0x0, 0x1}], 0x100, 0x2, 0x4, 0x1, 0x5, 0x1, 0x8, "000000000020000000000000fd00", "16fef137d6f6aa1d93e7fd319170d04be4063eb16bddc7a41e5782dfff02104539c9b5e571a002e14933724526d0c013"}) init_module$auto(&(0x7f0000000000), 0xfffff, 0x0) read$auto(0x3, 0x0, 0x5) r6 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) read$auto(r6, 0x0, 0x100000001) sendmsg$auto_TCP_METRICS_CMD_GET(0xffffffffffffffff, 0x0, 0x0) 1.433769304s ago: executing program 2 (id=759): mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NFC_CMD_DISABLE_SE(0xffffffffffffffff, &(0x7f0000003c40)={0x0, 0x0, &(0x7f0000003c00)={&(0x7f0000000380)=ANY=[@ANYBLOB="e0000000", @ANYRES16, @ANYBLOB="000127bd7000fcdbdf251200000005000c00ff0000000800010000000000a00019007dba6907273140a43172cc0f5945474437143f69a5777674364501bd4661e84d7eeab5f94717d98d0624f33f803fbd6a756bebd8e1f84dc9170d"], 0xe0}, 0x1, 0x0, 0x0, 0x800}, 0x8) ioctl$auto_RTC_IRQP_SET(0xffffffffffffffff, 0x4008700c, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/tty/ttyv7/power/control\x00', 0x60b03, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x189401, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = socketcall$auto(0xa, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000002c0)={{0x0, 0x9, &(0x7f0000000080)={&(0x7f0000000180)="cb7978ababe605edf078e6f2726ae03e663c080c0d6c169eec931ca2ea579299bf44495b1fe078f2e9c5586aa59caa813549", 0x1}, 0xfffffffffffffff7, 0x0, 0x6, 0x24f}, 0x800}, 0x8, 0xff) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_BLKTRACESETUP2(r1, 0xc0481273, &(0x7f0000000100)={"b1ec2b3d73eb3704600008fde7f9a86cba53ec92136c2cb4ea07c3ff554fd857", 0x5, 0xffffff65, 0x0, 0xa, 0x1040, 0xffffffffffffffff}) ioctl$auto_KVM_GET_MSRS(r0, 0x4400ae8f, &(0x7f00000000c0)={0xdd}) ioctl$auto_KVM_CREATE_VM(r0, 0xae80, 0x0) timer_create$auto(0x2, 0x0, 0x0) timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x26b, 0x4}, {0x0, 0x83}}, 0x0) 1.166637732s ago: executing program 0 (id=760): openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = ioctl$auto_NS_GET_MNTNS_ID(0xffffffffffffffff, 0x8008b705, 0x0) close_range$auto(r0, 0x8, 0x9) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003180), r1) sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r1, &(0x7f0000003400)={0x0, 0x0, &(0x7f00000033c0)={&(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES16=r2, @ANYBLOB="01032abd700500ff00000000000004000280"], 0x18}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x2, 0x1, 0x106) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) rt_sigprocmask$auto(0x40, 0x0, &(0x7f0000000040)={0x6}, 0x8) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r4, 0x40045010, 0x0) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r4, 0x40045010, &(0x7f0000000080)) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) clock_gettime$auto(0x10, 0x0) r6 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'veth1_to_batadv\x00', 0x0}) sendmsg$auto_NL80211_CMD_DEL_KEY(r3, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x4c, r7, 0x100, 0x70bd26, 0x25dfdbfd, {}, [@NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0x5}, @NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0xd}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r8}, @NL80211_ATTR_VENDOR_ID={0x8}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x9}, @NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x1}, @NL80211_ATTR_DISABLE_VHT={0x4}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000041}, 0x41) setuid$auto(0xe) prctl$auto(0x1000000001c, 0x0, 0x0, 0x9, 0x38000000) setsockopt$auto_SO_BROADCAST(0xffffffffffffffff, 0x5, 0x6, 0x0, 0x74) write$auto(r5, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) socket(0x28, 0x5, 0x0) setsockopt$auto(0xffffffffffffffff, 0xf7, 0x6, &(0x7f0000000000)='/dev/video3\x00', 0x1) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video3\x00', 0x2aa01, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x3, 0x1, 0x9488, 0x9, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0xd8]}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000000007, 0x4, 0x1000000000000bc3, 0x7ff, 0x3, 0xff, 0x10001, 0x400000000003, 0x3, 0x8001, 0xfffffffffffffffe, 0x80000000, 0x335b0eef, 0xffffdfffffffff81, 0x4]}, 0x0) 899.442005ms ago: executing program 2 (id=761): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) ustat$auto(0x801, 0x0) socket(0xa, 0x3, 0x3a) setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x567) unshare$auto(0x40000080) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0xc0101, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a) r0 = socket(0x2, 0x5, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) sendmmsg$auto(r0, &(0x7f0000000100)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0xff80}, 0x7, 0x0, 0x4, 0xb}, 0x8}, 0x5, 0x7fffffff) mmap$auto(0x0, 0x20009, 0xe1, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002) fanotify_init$auto(0x3, 0x2010000000000) sysfs$auto(0x2, 0x1e, 0x0) fsopen$auto(0x0, 0x1) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) socket(0x840000000002, 0x3, 0xff) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/rpc/nfsd.export/content\x00', 0x2, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f00000000c0)=""/163, 0xa3) set_mempolicy$auto(0x6, &(0x7f0000000000)=0xcf, 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x59, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/cpu/cpuidle/current_governor\x00', 0xa42, 0x0) capset$auto(0x0, &(0x7f0000000000)={0x2, 0xd, 0x8}) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{0x0, 0x5aa, &(0x7f0000000100)={&(0x7f0000001300), 0x49}, 0x4, &(0x7f0000000180), 0x5, 0x1040}, 0x5}, 0x2, 0x100) ioctl$auto_TUNDETACHFILTER(0xffffffffffffffff, 0x401054d6, &(0x7f0000000200)={0x1, &(0x7f0000000180)={0xff, 0x80, 0x5, @inferred=r2}}) mmap$auto(0x0, 0x4020009, 0xdf, 0x8011, 0x401, 0x8000) write$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000080)="18ac039829723c979d82869543c5e11168cce4dd3bbc3d47ae58a251f5898ecf784c0da52f8fbfc8829338f5343e61c2f0094ef5af4d5e9d4c3beff77a385fb8945e63af6f53b04c316a7c20e90e1c9aa3bdfa49857fd413711754c230cb1b8e5c13c88c043990c947464a4bf791abc2dc0a863dc5919d", 0x77) 0s ago: executing program 0 (id=762): socket$nl_generic(0x10, 0x3, 0x10) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000040), r0) mmap$auto(0x0, 0xf6, 0xdf, 0xeb1, 0x401, 0x0) capset$auto(&(0x7f0000000180)={0x19980330}, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/dummy0/carrier\x00', 0xc2061, 0x0) (async) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/dummy0/carrier\x00', 0xc2061, 0x0) write$auto(r2, 0x0, 0x83) socket$nl_generic(0x10, 0x3, 0x10) (async) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000440), 0xffffffffffffffff) (async) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_SET_SAR_SPECS(r3, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000480)={0x1c, r4, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@NL80211_ATTR_BEACON_HEAD={0x6, 0xe, "1c36"}]}, 0x1c}, 0x1, 0x0, 0x0, 0x6040000}, 0x20008810) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x3c, r1, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0xc, 0x3, 0x0, 0x1, [@nested={0x8, 0x17, 0x0, 0x1, [@nested={0x2}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f1779048590828847"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) r5 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0) write$auto_console_fops_tty_io(r5, &(0x7f0000000100)="c80d1b5d399b3b394d1c", 0xa) kernel console output (not intermixed with test programs): 112.714852][ T5998] mon_bin_open+0x207/0x470 [ 112.714874][ T5998] ? __pfx_mon_bin_open+0x10/0x10 [ 112.714895][ T5998] chrdev_open+0x234/0x6a0 [ 112.714917][ T5998] ? __pfx_apparmor_file_open+0x10/0x10 [ 112.714945][ T5998] ? __pfx_chrdev_open+0x10/0x10 [ 112.714968][ T5998] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 112.714997][ T5998] do_dentry_open+0x6d8/0x1660 [ 112.715018][ T5998] ? __pfx_chrdev_open+0x10/0x10 [ 112.715046][ T5998] vfs_open+0x82/0x3f0 [ 112.715074][ T5998] path_openat+0x208c/0x31a0 [ 112.715113][ T5998] ? __pfx_path_openat+0x10/0x10 [ 112.715144][ T5998] do_file_open+0x20e/0x430 [ 112.715169][ T5998] ? __pfx_do_file_open+0x10/0x10 [ 112.715208][ T5998] ? alloc_fd+0x476/0x790 [ 112.715232][ T5998] ? do_getname+0x191/0x390 [ 112.715260][ T5998] do_sys_openat2+0x10d/0x1e0 [ 112.715288][ T5998] ? __pfx_do_sys_openat2+0x10/0x10 [ 112.715317][ T5998] ? __fget_files+0x21f/0x3d0 [ 112.715343][ T5998] __x64_sys_openat+0x12d/0x210 [ 112.715378][ T5998] ? __pfx___x64_sys_openat+0x10/0x10 [ 112.715428][ T5998] ? rcu_is_watching+0x12/0xc0 [ 112.715468][ T5998] do_syscall_64+0x10b/0xf80 [ 112.715502][ T5998] ? clear_bhb_loop+0x40/0x90 [ 112.715542][ T5998] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.715570][ T5998] RIP: 0033:0x7f86e459cdd9 [ 112.715594][ T5998] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 112.715620][ T5998] RSP: 002b:00007f86e5462028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 112.715648][ T5998] RAX: ffffffffffffffda RBX: 00007f86e4815fa0 RCX: 00007f86e459cdd9 [ 112.715667][ T5998] RDX: 0000000000121200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 112.715686][ T5998] RBP: 00007f86e4632d69 R08: 0000000000000000 R09: 0000000000000000 [ 112.715704][ T5998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 112.715721][ T5998] R13: 00007f86e4816038 R14: 00007f86e4815fa0 R15: 00007ffe2bd90c38 [ 112.715762][ T5998] [ 113.322277][ T6001] netlink: 252 bytes leftover after parsing attributes in process `syz.3.47'. [ 113.367765][ T6001] netlink: 252 bytes leftover after parsing attributes in process `syz.3.47'. [ 113.394754][ T6004] netlink: 2468 bytes leftover after parsing attributes in process `syz.1.46'. [ 114.094179][ T6003] FAULT_INJECTION: forcing a failure. [ 114.094179][ T6003] name failslab, interval 1, probability 0, space 0, times 0 [ 114.146715][ T6003] CPU: 1 UID: 0 PID: 6003 Comm: syz.2.48 Not tainted syzkaller #0 PREEMPT(full) [ 114.146757][ T6003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 114.146774][ T6003] Call Trace: [ 114.146791][ T6003] [ 114.146803][ T6003] dump_stack_lvl+0x100/0x190 [ 114.146845][ T6003] should_fail_ex.cold+0x5/0xa [ 114.146886][ T6003] should_failslab+0xc2/0x120 [ 114.146925][ T6003] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 114.146976][ T6003] ? __proc_create+0x2cb/0x8c0 [ 114.147027][ T6003] __proc_create+0x2cb/0x8c0 [ 114.147079][ T6003] ? __pfx___proc_create+0x10/0x10 [ 114.147127][ T6003] ? _raw_write_unlock+0x28/0x50 [ 114.147165][ T6003] ? proc_register+0x559/0x8a0 [ 114.147210][ T6003] proc_create_reg+0x75/0x170 [ 114.147252][ T6003] ? __pfx_can_rcvlist_proc_show+0x10/0x10 [ 114.147294][ T6003] proc_create_net_single+0x86/0x180 [ 114.147335][ T6003] ? __pfx_proc_create_net_single+0x10/0x10 [ 114.147380][ T6003] ? round_jiffies+0x10a/0x160 [ 114.147436][ T6003] can_init_proc+0x178/0x4b0 [ 114.147479][ T6003] can_pernet_init+0x1e4/0x370 [ 114.147520][ T6003] ? __pfx_can_pernet_init+0x10/0x10 [ 114.147557][ T6003] ops_init+0x1e2/0x5f0 [ 114.147598][ T6003] setup_net+0x118/0x3a0 [ 114.147635][ T6003] ? __pfx_setup_net+0x10/0x10 [ 114.147669][ T6003] ? mutex_init_lockdep+0xf1/0x120 [ 114.147711][ T6003] copy_net_ns+0x46f/0x7c0 [ 114.147752][ T6003] create_new_namespaces+0x3ea/0xac0 [ 114.147803][ T6003] unshare_nsproxy_namespaces+0xf2/0x220 [ 114.147848][ T6003] ksys_unshare+0x438/0xab0 [ 114.147896][ T6003] ? __pfx_ksys_unshare+0x10/0x10 [ 114.147939][ T6003] ? xfd_validate_state+0x129/0x190 [ 114.147987][ T6003] __x64_sys_unshare+0x31/0x40 [ 114.148031][ T6003] do_syscall_64+0x10b/0xf80 [ 114.148079][ T6003] ? clear_bhb_loop+0x40/0x90 [ 114.148118][ T6003] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 114.148150][ T6003] RIP: 0033:0x7fe56bd9cdd9 [ 114.148177][ T6003] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 114.148207][ T6003] RSP: 002b:00007fe569ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 114.148237][ T6003] RAX: ffffffffffffffda RBX: 00007fe56c015fa0 RCX: 00007fe56bd9cdd9 [ 114.148257][ T6003] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 114.148274][ T6003] RBP: 00007fe56be32d69 R08: 0000000000000000 R09: 0000000000000000 [ 114.148291][ T6003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 114.148308][ T6003] R13: 00007fe56c016038 R14: 00007fe56c015fa0 R15: 00007ffecc88b868 [ 114.148349][ T6003] [ 115.416976][ T4944] Bluetooth: hci0: unexpected event 0x10 length: 124 > 1 [ 115.418301][ T4944] Bluetooth: hci0: hardware error 0x00 [ 115.751525][ T50] Bluetooth: hci0: unexpected event 0x1c length: 725 > 5 [ 116.615808][ T6064] syz.2.57 uses obsolete (PF_INET,SOCK_PACKET) [ 116.683430][ T6060] smpboot: CPU 1 is now offline [ 117.312191][ T1317] ieee802154 phy0 wpan0: encryption failed: -22 [ 117.323294][ T1317] ieee802154 phy1 wpan1: encryption failed: -22 [ 117.487025][ T4944] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 117.499673][ T6081] [U] ^Z [ 119.399267][ T807] Process accounting resumed [ 119.508783][ T6136] binder: 6131:6136 ioctl 40086602 e20 returned -22 [ 119.923405][ T6141] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 120.368677][ T6149] random: crng reseeded on system resumption [ 122.299917][ T6192] zram0: detected capacity change from 0 to 16 [ 123.539470][ T6212] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 123.706024][ T6212] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 124.111851][ T6225] ubi0: attaching mtd0 [ 124.194306][ T6225] ubi0: scanning is finished [ 124.230647][ T6225] ubi0: empty MTD device detected [ 124.565045][ T6225] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 124.599801][ T6225] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 124.638941][ T6225] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 124.677211][ T6225] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 124.742149][ T6225] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 124.791563][ T6225] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 124.858904][ T6225] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2402767066 [ 124.922509][ T6225] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 125.042332][ T6229] ubi0: background thread "ubi_bgt0d" started, PID 6229 [ 125.049890][ T6227] ubi0: detaching mtd0 [ 125.120340][ T6227] ubi0: mtd0 is detached [ 125.747891][ T6193] kexec: Could not allocate control_code_buffer [ 126.152297][ T6248] sg_write: data in/out 262108/258 bytes for SCSI command 0x61-- guessing data in; [ 126.152297][ T6248] program syz.3.94 not setting count and/or reply_len properly [ 129.774141][ T6315] block2mtd: illegal erase size [ 129.842641][ T6323] netlink: 4 bytes leftover after parsing attributes in process `syz.0.103'. [ 130.475942][ T6324] Invalid ELF header magic: != ELF [ 130.840844][ T6338] FAULT_INJECTION: forcing a failure. [ 130.840844][ T6338] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 131.027955][ T6338] CPU: 0 UID: 0 PID: 6338 Comm: syz.0.106 Not tainted syzkaller #0 PREEMPT(full) [ 131.027981][ T6338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 131.027991][ T6338] Call Trace: [ 131.027998][ T6338] [ 131.028005][ T6338] dump_stack_lvl+0x100/0x190 [ 131.028031][ T6338] should_fail_ex.cold+0x5/0xa [ 131.028050][ T6338] ? prepare_alloc_pages+0x16d/0x5f0 [ 131.028075][ T6338] should_fail_alloc_page+0xeb/0x140 [ 131.028098][ T6338] prepare_alloc_pages+0x1f0/0x5f0 [ 131.028125][ T6338] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 131.028164][ T6338] ? stack_trace_save+0x8e/0xc0 [ 131.028188][ T6338] ? __pfx_stack_trace_save+0x10/0x10 [ 131.028214][ T6338] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 131.028252][ T6338] ? kasan_save_stack+0x3f/0x50 [ 131.028268][ T6338] ? kasan_save_stack+0x30/0x50 [ 131.028284][ T6338] ? kasan_save_track+0x14/0x30 [ 131.028300][ T6338] ? __kasan_kmalloc+0xaa/0xb0 [ 131.028315][ T6338] ? mon_bin_open+0x1a8/0x470 [ 131.028335][ T6338] ? chrdev_open+0x234/0x6a0 [ 131.028359][ T6338] ? __x64_sys_openat+0x12d/0x210 [ 131.028385][ T6338] ? do_syscall_64+0x10b/0xf80 [ 131.028407][ T6338] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.028431][ T6338] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 131.028459][ T6338] ? policy_nodemask+0xed/0x4f0 [ 131.028481][ T6338] alloc_pages_mpol+0x1fb/0x540 [ 131.028503][ T6338] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 131.028530][ T6338] alloc_pages_noprof+0x1a/0x160 [ 131.028554][ T6338] get_zeroed_page_noprof+0x18/0xb0 [ 131.028576][ T6338] mon_alloc_buff+0xce/0x1b0 [ 131.028597][ T6338] ? kasan_save_track+0x14/0x30 [ 131.028616][ T6338] mon_bin_open+0x207/0x470 [ 131.028638][ T6338] ? __pfx_mon_bin_open+0x10/0x10 [ 131.028660][ T6338] chrdev_open+0x234/0x6a0 [ 131.028681][ T6338] ? __pfx_apparmor_file_open+0x10/0x10 [ 131.028710][ T6338] ? __pfx_chrdev_open+0x10/0x10 [ 131.028733][ T6338] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 131.028762][ T6338] do_dentry_open+0x6d8/0x1660 [ 131.028783][ T6338] ? __pfx_chrdev_open+0x10/0x10 [ 131.028811][ T6338] vfs_open+0x82/0x3f0 [ 131.028839][ T6338] path_openat+0x208c/0x31a0 [ 131.028870][ T6338] ? __pfx_path_openat+0x10/0x10 [ 131.028909][ T6338] do_file_open+0x20e/0x430 [ 131.028933][ T6338] ? __pfx_do_file_open+0x10/0x10 [ 131.028972][ T6338] ? alloc_fd+0x476/0x790 [ 131.028996][ T6338] ? do_getname+0x191/0x390 [ 131.029024][ T6338] do_sys_openat2+0x10d/0x1e0 [ 131.029052][ T6338] ? __pfx_do_sys_openat2+0x10/0x10 [ 131.029081][ T6338] ? __fget_files+0x21f/0x3d0 [ 131.029107][ T6338] __x64_sys_openat+0x12d/0x210 [ 131.029135][ T6338] ? __pfx___x64_sys_openat+0x10/0x10 [ 131.029167][ T6338] ? rcu_is_watching+0x12/0xc0 [ 131.029192][ T6338] do_syscall_64+0x10b/0xf80 [ 131.029215][ T6338] ? clear_bhb_loop+0x40/0x90 [ 131.029236][ T6338] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.029254][ T6338] RIP: 0033:0x7f09b439cdd9 [ 131.029271][ T6338] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 131.029287][ T6338] RSP: 002b:00007f09b5265028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 131.029305][ T6338] RAX: ffffffffffffffda RBX: 00007f09b4615fa0 RCX: 00007f09b439cdd9 [ 131.029317][ T6338] RDX: 0000000000121200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 131.029327][ T6338] RBP: 00007f09b4432d69 R08: 0000000000000000 R09: 0000000000000000 [ 131.029338][ T6338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 131.029348][ T6338] R13: 00007f09b4616038 R14: 00007f09b4615fa0 R15: 00007ffedbf568e8 [ 131.029370][ T6338] [ 131.798464][ T1317] ieee802154 phy0 wpan0: encryption failed: -22 [ 131.804816][ T1317] ieee802154 phy1 wpan1: encryption failed: -22 [ 131.823503][ T6338] netlink: 2468 bytes leftover after parsing attributes in process `syz.0.106'. [ 131.914842][ T6350] netlink: 186 bytes leftover after parsing attributes in process `syz.1.109'. [ 132.994530][ T6378] tipc: Started in network mode [ 133.069152][ T6378] tipc: Node identity ee00, cluster identity 4711 [ 133.144514][ T6378] tipc: Node number set to 60928 [ 134.603831][ T6406] netlink: 4 bytes leftover after parsing attributes in process `syz.0.117'. [ 134.652649][ T29] audit: type=1800 audit(1778178545.594:2): pid=6409 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.118" name="lu_gp_id" dev="configfs" ino=12178 res=0 errno=0 [ 134.695817][ T6406] libceph: secret too big 38 [ 135.781454][ T6422] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 137.036468][ T6418] kexec: Could not allocate control_code_buffer [ 137.509653][ T6456] random: crng reseeded on system resumption [ 139.184702][ T6486] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 139.669056][ T6493] vcan0: tx drop: invalid da for name 0x000000000000003f [ 140.460073][ T6520] random: crng reseeded on system resumption [ 140.534151][ T6523] FAULT_INJECTION: forcing a failure. [ 140.534151][ T6523] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 140.582442][ T6523] CPU: 0 UID: 0 PID: 6523 Comm: syz.2.141 Not tainted syzkaller #0 PREEMPT(full) [ 140.582472][ T6523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 140.582482][ T6523] Call Trace: [ 140.582490][ T6523] [ 140.582497][ T6523] dump_stack_lvl+0x100/0x190 [ 140.582522][ T6523] should_fail_ex.cold+0x5/0xa [ 140.582542][ T6523] ? prepare_alloc_pages+0x16d/0x5f0 [ 140.582568][ T6523] should_fail_alloc_page+0xeb/0x140 [ 140.582592][ T6523] prepare_alloc_pages+0x1f0/0x5f0 [ 140.582619][ T6523] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 140.582659][ T6523] ? stack_trace_save+0x8e/0xc0 [ 140.582684][ T6523] ? __pfx_stack_trace_save+0x10/0x10 [ 140.582709][ T6523] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 140.582742][ T6523] ? kasan_save_stack+0x3f/0x50 [ 140.582759][ T6523] ? kasan_save_stack+0x30/0x50 [ 140.582775][ T6523] ? kasan_save_track+0x14/0x30 [ 140.582790][ T6523] ? __kasan_kmalloc+0xaa/0xb0 [ 140.582806][ T6523] ? mon_bin_open+0x1a8/0x470 [ 140.582836][ T6523] ? chrdev_open+0x234/0x6a0 [ 140.582860][ T6523] ? __x64_sys_openat+0x12d/0x210 [ 140.582886][ T6523] ? do_syscall_64+0x10b/0xf80 [ 140.582915][ T6523] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 140.582940][ T6523] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 140.582968][ T6523] ? policy_nodemask+0xed/0x4f0 [ 140.582991][ T6523] alloc_pages_mpol+0x1fb/0x540 [ 140.583014][ T6523] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 140.583041][ T6523] alloc_pages_noprof+0x1a/0x160 [ 140.583066][ T6523] get_zeroed_page_noprof+0x18/0xb0 [ 140.583089][ T6523] mon_alloc_buff+0xce/0x1b0 [ 140.583109][ T6523] ? kasan_save_track+0x14/0x30 [ 140.583129][ T6523] mon_bin_open+0x207/0x470 [ 140.583150][ T6523] ? __pfx_mon_bin_open+0x10/0x10 [ 140.583172][ T6523] chrdev_open+0x234/0x6a0 [ 140.583193][ T6523] ? __pfx_apparmor_file_open+0x10/0x10 [ 140.583222][ T6523] ? __pfx_chrdev_open+0x10/0x10 [ 140.583251][ T6523] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 140.583280][ T6523] do_dentry_open+0x6d8/0x1660 [ 140.583301][ T6523] ? __pfx_chrdev_open+0x10/0x10 [ 140.583331][ T6523] vfs_open+0x82/0x3f0 [ 140.583360][ T6523] path_openat+0x208c/0x31a0 [ 140.583390][ T6523] ? __pfx_path_openat+0x10/0x10 [ 140.583421][ T6523] do_file_open+0x20e/0x430 [ 140.583446][ T6523] ? __pfx_do_file_open+0x10/0x10 [ 140.583484][ T6523] ? alloc_fd+0x476/0x790 [ 140.583509][ T6523] ? do_getname+0x191/0x390 [ 140.583537][ T6523] do_sys_openat2+0x10d/0x1e0 [ 140.583565][ T6523] ? __pfx_do_sys_openat2+0x10/0x10 [ 140.583594][ T6523] ? __fget_files+0x21f/0x3d0 [ 140.583619][ T6523] __x64_sys_openat+0x12d/0x210 [ 140.583648][ T6523] ? __pfx___x64_sys_openat+0x10/0x10 [ 140.583680][ T6523] ? rcu_is_watching+0x12/0xc0 [ 140.583705][ T6523] do_syscall_64+0x10b/0xf80 [ 140.583727][ T6523] ? clear_bhb_loop+0x40/0x90 [ 140.583749][ T6523] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 140.583767][ T6523] RIP: 0033:0x7fe56bd9cdd9 [ 140.583783][ T6523] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 140.583799][ T6523] RSP: 002b:00007fe569ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 140.583825][ T6523] RAX: ffffffffffffffda RBX: 00007fe56c015fa0 RCX: 00007fe56bd9cdd9 [ 140.583837][ T6523] RDX: 0000000000121200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 140.583848][ T6523] RBP: 00007fe56be32d69 R08: 0000000000000000 R09: 0000000000000000 [ 140.583858][ T6523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 140.583868][ T6523] R13: 00007fe56c016038 R14: 00007fe56c015fa0 R15: 00007ffecc88b868 [ 140.583891][ T6523] [ 141.122063][ T6527] netlink: 2468 bytes leftover after parsing attributes in process `syz.2.141'. [ 141.564237][ T6502] kexec: Could not allocate control_code_buffer [ 142.363548][ T6535] futex_wake_op: syz.2.143 tries to shift op by -2048; fix this program [ 142.412847][ T6535] futex_wake_op: syz.2.143 tries to shift op by -2048; fix this program [ 142.478373][ T6547] 0x000000000001-0x000000020000 : "" [ 142.802064][ T6547] ftl_cs: FTL header corrupt! [ 144.103545][ T6559] KVM: debugfs: duplicate directory 6559-3 [ 144.182819][ T6559] KVM: debugfs: duplicate directory 6559-4 [ 144.218720][ T6559] KVM: debugfs: duplicate directory 6559-5 [ 144.604727][ T6579] FAULT_INJECTION: forcing a failure. [ 144.604727][ T6579] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 144.715019][ T6579] CPU: 0 UID: 0 PID: 6579 Comm: syz.3.151 Not tainted syzkaller #0 PREEMPT(full) [ 144.715045][ T6579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 144.715055][ T6579] Call Trace: [ 144.715062][ T6579] [ 144.715069][ T6579] dump_stack_lvl+0x100/0x190 [ 144.715094][ T6579] should_fail_ex.cold+0x5/0xa [ 144.715114][ T6579] ? prepare_alloc_pages+0x16d/0x5f0 [ 144.715138][ T6579] should_fail_alloc_page+0xeb/0x140 [ 144.715161][ T6579] prepare_alloc_pages+0x1f0/0x5f0 [ 144.715188][ T6579] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 144.715228][ T6579] ? stack_trace_save+0x8e/0xc0 [ 144.715252][ T6579] ? __pfx_stack_trace_save+0x10/0x10 [ 144.715277][ T6579] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 144.715310][ T6579] ? kasan_save_stack+0x3f/0x50 [ 144.715326][ T6579] ? kasan_save_stack+0x30/0x50 [ 144.715342][ T6579] ? kasan_save_track+0x14/0x30 [ 144.715358][ T6579] ? __kasan_kmalloc+0xaa/0xb0 [ 144.715373][ T6579] ? mon_bin_open+0x1a8/0x470 [ 144.715393][ T6579] ? chrdev_open+0x234/0x6a0 [ 144.715416][ T6579] ? __x64_sys_openat+0x12d/0x210 [ 144.715443][ T6579] ? do_syscall_64+0x10b/0xf80 [ 144.715465][ T6579] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 144.715488][ T6579] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 144.715516][ T6579] ? policy_nodemask+0xed/0x4f0 [ 144.715538][ T6579] alloc_pages_mpol+0x1fb/0x540 [ 144.715560][ T6579] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 144.715587][ T6579] alloc_pages_noprof+0x1a/0x160 [ 144.715611][ T6579] get_zeroed_page_noprof+0x18/0xb0 [ 144.715633][ T6579] mon_alloc_buff+0xce/0x1b0 [ 144.715653][ T6579] ? kasan_save_track+0x14/0x30 [ 144.715673][ T6579] mon_bin_open+0x207/0x470 [ 144.715694][ T6579] ? __pfx_mon_bin_open+0x10/0x10 [ 144.715716][ T6579] chrdev_open+0x234/0x6a0 [ 144.715737][ T6579] ? __pfx_apparmor_file_open+0x10/0x10 [ 144.715766][ T6579] ? __pfx_chrdev_open+0x10/0x10 [ 144.715789][ T6579] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 144.715818][ T6579] do_dentry_open+0x6d8/0x1660 [ 144.715847][ T6579] ? __pfx_chrdev_open+0x10/0x10 [ 144.715874][ T6579] vfs_open+0x82/0x3f0 [ 144.715903][ T6579] path_openat+0x208c/0x31a0 [ 144.715933][ T6579] ? __pfx_path_openat+0x10/0x10 [ 144.715964][ T6579] do_file_open+0x20e/0x430 [ 144.715988][ T6579] ? __pfx_do_file_open+0x10/0x10 [ 144.716026][ T6579] ? alloc_fd+0x476/0x790 [ 144.716050][ T6579] ? do_getname+0x191/0x390 [ 144.716078][ T6579] do_sys_openat2+0x10d/0x1e0 [ 144.716105][ T6579] ? __pfx_do_sys_openat2+0x10/0x10 [ 144.716134][ T6579] ? __fget_files+0x21f/0x3d0 [ 144.716159][ T6579] __x64_sys_openat+0x12d/0x210 [ 144.716187][ T6579] ? __pfx___x64_sys_openat+0x10/0x10 [ 144.716218][ T6579] ? rcu_is_watching+0x12/0xc0 [ 144.716242][ T6579] do_syscall_64+0x10b/0xf80 [ 144.716269][ T6579] ? clear_bhb_loop+0x40/0x90 [ 144.716290][ T6579] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 144.716308][ T6579] RIP: 0033:0x7f4b1819cdd9 [ 144.716324][ T6579] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 144.716341][ T6579] RSP: 002b:00007f4b190f4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 144.716359][ T6579] RAX: ffffffffffffffda RBX: 00007f4b18415fa0 RCX: 00007f4b1819cdd9 [ 144.716370][ T6579] RDX: 0000000000121200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 144.716380][ T6579] RBP: 00007f4b18232d69 R08: 0000000000000000 R09: 0000000000000000 [ 144.716390][ T6579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 144.716400][ T6579] R13: 00007f4b18416038 R14: 00007f4b18415fa0 R15: 00007ffd5c158eb8 [ 144.716423][ T6579] [ 145.543967][ T6579] netlink: 2468 bytes leftover after parsing attributes in process `syz.3.151'. [ 145.840759][ T6597] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 145.847995][ T6597] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 145.915832][ T6585] zswap: compressor not available [ 147.022619][ T6606] mmap: syz.2.156 (6606) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 147.575976][ T6608] NFSD: Failed to start, no listeners configured. [ 147.815185][ T6598] kexec: Could not allocate control_code_buffer [ 148.697399][ T6642] FAULT_INJECTION: forcing a failure. [ 148.697399][ T6642] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 148.775822][ T6642] CPU: 0 UID: 0 PID: 6642 Comm: syz.1.163 Not tainted syzkaller #0 PREEMPT(full) [ 148.775853][ T6642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 148.775864][ T6642] Call Trace: [ 148.775870][ T6642] [ 148.775877][ T6642] dump_stack_lvl+0x100/0x190 [ 148.775902][ T6642] should_fail_ex.cold+0x5/0xa [ 148.775922][ T6642] ? prepare_alloc_pages+0x16d/0x5f0 [ 148.775947][ T6642] should_fail_alloc_page+0xeb/0x140 [ 148.775970][ T6642] prepare_alloc_pages+0x1f0/0x5f0 [ 148.775997][ T6642] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 148.776036][ T6642] ? stack_trace_save+0x8e/0xc0 [ 148.776060][ T6642] ? __pfx_stack_trace_save+0x10/0x10 [ 148.776086][ T6642] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 148.776121][ T6642] ? kasan_save_stack+0x3f/0x50 [ 148.776137][ T6642] ? kasan_save_stack+0x30/0x50 [ 148.776153][ T6642] ? kasan_save_track+0x14/0x30 [ 148.776169][ T6642] ? __kasan_kmalloc+0xaa/0xb0 [ 148.776185][ T6642] ? mon_bin_open+0x1a8/0x470 [ 148.776205][ T6642] ? chrdev_open+0x234/0x6a0 [ 148.776228][ T6642] ? __x64_sys_openat+0x12d/0x210 [ 148.776253][ T6642] ? do_syscall_64+0x10b/0xf80 [ 148.776276][ T6642] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 148.776299][ T6642] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 148.776327][ T6642] ? policy_nodemask+0xed/0x4f0 [ 148.776349][ T6642] alloc_pages_mpol+0x1fb/0x540 [ 148.776373][ T6642] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 148.776400][ T6642] alloc_pages_noprof+0x1a/0x160 [ 148.776424][ T6642] get_zeroed_page_noprof+0x18/0xb0 [ 148.776446][ T6642] mon_alloc_buff+0xce/0x1b0 [ 148.776466][ T6642] ? kasan_save_track+0x14/0x30 [ 148.776485][ T6642] mon_bin_open+0x207/0x470 [ 148.776507][ T6642] ? __pfx_mon_bin_open+0x10/0x10 [ 148.776528][ T6642] chrdev_open+0x234/0x6a0 [ 148.776550][ T6642] ? __pfx_apparmor_file_open+0x10/0x10 [ 148.776582][ T6642] ? __pfx_chrdev_open+0x10/0x10 [ 148.776606][ T6642] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 148.776636][ T6642] do_dentry_open+0x6d8/0x1660 [ 148.776657][ T6642] ? __pfx_chrdev_open+0x10/0x10 [ 148.776687][ T6642] vfs_open+0x82/0x3f0 [ 148.776716][ T6642] path_openat+0x208c/0x31a0 [ 148.776746][ T6642] ? __pfx_path_openat+0x10/0x10 [ 148.776786][ T6642] do_file_open+0x20e/0x430 [ 148.776810][ T6642] ? __pfx_do_file_open+0x10/0x10 [ 148.776849][ T6642] ? alloc_fd+0x476/0x790 [ 148.776872][ T6642] ? do_getname+0x191/0x390 [ 148.776901][ T6642] do_sys_openat2+0x10d/0x1e0 [ 148.776929][ T6642] ? __pfx_do_sys_openat2+0x10/0x10 [ 148.776958][ T6642] ? __fget_files+0x21f/0x3d0 [ 148.776984][ T6642] __x64_sys_openat+0x12d/0x210 [ 148.777015][ T6642] ? __pfx___x64_sys_openat+0x10/0x10 [ 148.777050][ T6642] ? rcu_is_watching+0x12/0xc0 [ 148.777075][ T6642] do_syscall_64+0x10b/0xf80 [ 148.777098][ T6642] ? clear_bhb_loop+0x40/0x90 [ 148.777119][ T6642] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 148.777137][ T6642] RIP: 0033:0x7f86e459cdd9 [ 148.777153][ T6642] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 148.777170][ T6642] RSP: 002b:00007f86e5462028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 148.777189][ T6642] RAX: ffffffffffffffda RBX: 00007f86e4815fa0 RCX: 00007f86e459cdd9 [ 148.777200][ T6642] RDX: 0000000000121200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 148.777211][ T6642] RBP: 00007f86e4632d69 R08: 0000000000000000 R09: 0000000000000000 [ 148.777221][ T6642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 148.777231][ T6642] R13: 00007f86e4816038 R14: 00007f86e4815fa0 R15: 00007ffe2bd90c38 [ 148.777254][ T6642] [ 153.272429][ T6659] kexec: Could not allocate control_code_buffer [ 153.618622][ T6708] random: crng reseeded on system resumption [ 154.149111][ T6721] futex_wake_op: syz.2.176 tries to shift op by -2048; fix this program [ 154.177409][ T6721] futex_wake_op: syz.2.176 tries to shift op by -2048; fix this program [ 154.214765][ T6721] 0x000000000001-0x000000020000 : "" [ 154.254681][ T6721] ftl_cs: FTL header corrupt! [ 154.737518][ T6710] kexec: Could not allocate control_code_buffer [ 156.554521][ T6750] netlink: 146 bytes leftover after parsing attributes in process `syz.0.182'. [ 161.821580][ T6821] zswap: compressor not available [ 164.823305][ T6848] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev ffffffff [ 165.000159][ T6884] FAULT_INJECTION: forcing a failure. [ 165.000159][ T6884] name failslab, interval 1, probability 0, space 0, times 0 [ 165.200412][ T6884] CPU: 0 UID: 0 PID: 6884 Comm: syz.1.212 Not tainted syzkaller #0 PREEMPT(full) [ 165.200439][ T6884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 165.200450][ T6884] Call Trace: [ 165.200456][ T6884] [ 165.200463][ T6884] dump_stack_lvl+0x100/0x190 [ 165.200488][ T6884] should_fail_ex.cold+0x5/0xa [ 165.200511][ T6884] should_failslab+0xc2/0x120 [ 165.200533][ T6884] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 165.200561][ T6884] ? __proc_create+0x2cb/0x8c0 [ 165.200596][ T6884] __proc_create+0x2cb/0x8c0 [ 165.200620][ T6884] ? __pfx___proc_create+0x10/0x10 [ 165.200642][ T6884] ? __register_sysctl_table+0x889/0x1650 [ 165.200667][ T6884] ? do_raw_spin_unlock+0x145/0x1e0 [ 165.200693][ T6884] ? _raw_spin_unlock+0x28/0x50 [ 165.200718][ T6884] proc_create_reg+0x75/0x170 [ 165.200745][ T6884] proc_create_net_data+0x8e/0x1c0 [ 165.200770][ T6884] ? __pfx_proc_create_net_data+0x10/0x10 [ 165.200793][ T6884] ? lockdep_init_map_type+0x5c/0x250 [ 165.200812][ T6884] ? lockdep_init_map_type+0x5c/0x250 [ 165.200831][ T6884] ? __pfx_packet_net_init+0x10/0x10 [ 165.200852][ T6884] packet_net_init+0x93/0xc0 [ 165.200870][ T6884] ops_init+0x1e2/0x5f0 [ 165.200893][ T6884] setup_net+0x118/0x3a0 [ 165.200915][ T6884] ? __pfx_setup_net+0x10/0x10 [ 165.200935][ T6884] ? mutex_init_lockdep+0xf1/0x120 [ 165.200959][ T6884] copy_net_ns+0x46f/0x7c0 [ 165.200984][ T6884] create_new_namespaces+0x3ea/0xac0 [ 165.201019][ T6884] unshare_nsproxy_namespaces+0xf2/0x220 [ 165.201045][ T6884] ksys_unshare+0x438/0xab0 [ 165.201073][ T6884] ? __pfx_ksys_unshare+0x10/0x10 [ 165.201098][ T6884] ? xfd_validate_state+0x129/0x190 [ 165.201125][ T6884] __x64_sys_unshare+0x31/0x40 [ 165.201151][ T6884] do_syscall_64+0x10b/0xf80 [ 165.201174][ T6884] ? clear_bhb_loop+0x40/0x90 [ 165.201197][ T6884] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.201216][ T6884] RIP: 0033:0x7f86e459cdd9 [ 165.201232][ T6884] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 165.201248][ T6884] RSP: 002b:00007f86e5462028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 165.201266][ T6884] RAX: ffffffffffffffda RBX: 00007f86e4815fa0 RCX: 00007f86e459cdd9 [ 165.201277][ T6884] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 165.201288][ T6884] RBP: 00007f86e4632d69 R08: 0000000000000000 R09: 0000000000000000 [ 165.201298][ T6884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 165.201307][ T6884] R13: 00007f86e4816038 R14: 00007f86e4815fa0 R15: 00007ffe2bd90c38 [ 165.201330][ T6884] [ 166.809117][ T6898] kexec: Could not allocate control_code_buffer [ 167.065579][ T6910] FAULT_INJECTION: forcing a failure. [ 167.065579][ T6910] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 167.139806][ T6910] CPU: 0 UID: 0 PID: 6910 Comm: syz.1.216 Not tainted syzkaller #0 PREEMPT(full) [ 167.139833][ T6910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 167.139843][ T6910] Call Trace: [ 167.139849][ T6910] [ 167.139857][ T6910] dump_stack_lvl+0x100/0x190 [ 167.139882][ T6910] should_fail_ex.cold+0x5/0xa [ 167.139902][ T6910] ? prepare_alloc_pages+0x16d/0x5f0 [ 167.139927][ T6910] should_fail_alloc_page+0xeb/0x140 [ 167.139950][ T6910] prepare_alloc_pages+0x1f0/0x5f0 [ 167.139976][ T6910] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 167.140015][ T6910] ? stack_trace_save+0x8e/0xc0 [ 167.140039][ T6910] ? __pfx_stack_trace_save+0x10/0x10 [ 167.140065][ T6910] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 167.140098][ T6910] ? kasan_save_stack+0x3f/0x50 [ 167.140115][ T6910] ? kasan_save_stack+0x30/0x50 [ 167.140131][ T6910] ? kasan_save_track+0x14/0x30 [ 167.140147][ T6910] ? __kasan_kmalloc+0xaa/0xb0 [ 167.140163][ T6910] ? mon_bin_open+0x1a8/0x470 [ 167.140183][ T6910] ? chrdev_open+0x234/0x6a0 [ 167.140206][ T6910] ? __x64_sys_openat+0x12d/0x210 [ 167.140231][ T6910] ? do_syscall_64+0x10b/0xf80 [ 167.140254][ T6910] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 167.140276][ T6910] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 167.140304][ T6910] ? policy_nodemask+0xed/0x4f0 [ 167.140326][ T6910] alloc_pages_mpol+0x1fb/0x540 [ 167.140348][ T6910] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 167.140375][ T6910] alloc_pages_noprof+0x1a/0x160 [ 167.140399][ T6910] get_zeroed_page_noprof+0x18/0xb0 [ 167.140421][ T6910] mon_alloc_buff+0xce/0x1b0 [ 167.140442][ T6910] ? kasan_save_track+0x14/0x30 [ 167.140462][ T6910] mon_bin_open+0x207/0x470 [ 167.140484][ T6910] ? __pfx_mon_bin_open+0x10/0x10 [ 167.140506][ T6910] chrdev_open+0x234/0x6a0 [ 167.140528][ T6910] ? __pfx_apparmor_file_open+0x10/0x10 [ 167.140556][ T6910] ? __pfx_chrdev_open+0x10/0x10 [ 167.140580][ T6910] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 167.140616][ T6910] do_dentry_open+0x6d8/0x1660 [ 167.140637][ T6910] ? __pfx_chrdev_open+0x10/0x10 [ 167.140664][ T6910] vfs_open+0x82/0x3f0 [ 167.140693][ T6910] path_openat+0x208c/0x31a0 [ 167.140723][ T6910] ? __pfx_path_openat+0x10/0x10 [ 167.140755][ T6910] do_file_open+0x20e/0x430 [ 167.140779][ T6910] ? __pfx_do_file_open+0x10/0x10 [ 167.140817][ T6910] ? alloc_fd+0x476/0x790 [ 167.140842][ T6910] ? do_getname+0x191/0x390 [ 167.140870][ T6910] do_sys_openat2+0x10d/0x1e0 [ 167.140898][ T6910] ? __pfx_do_sys_openat2+0x10/0x10 [ 167.140927][ T6910] ? __fget_files+0x21f/0x3d0 [ 167.140952][ T6910] __x64_sys_openat+0x12d/0x210 [ 167.140980][ T6910] ? __pfx___x64_sys_openat+0x10/0x10 [ 167.141012][ T6910] ? rcu_is_watching+0x12/0xc0 [ 167.141037][ T6910] do_syscall_64+0x10b/0xf80 [ 167.141059][ T6910] ? clear_bhb_loop+0x40/0x90 [ 167.141081][ T6910] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 167.141099][ T6910] RIP: 0033:0x7f86e459cdd9 [ 167.141115][ T6910] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 167.141132][ T6910] RSP: 002b:00007f86e5462028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 167.141149][ T6910] RAX: ffffffffffffffda RBX: 00007f86e4815fa0 RCX: 00007f86e459cdd9 [ 167.141161][ T6910] RDX: 0000000000121200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 167.141171][ T6910] RBP: 00007f86e4632d69 R08: 0000000000000000 R09: 0000000000000000 [ 167.141182][ T6910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 167.141196][ T6910] R13: 00007f86e4816038 R14: 00007f86e4815fa0 R15: 00007ffe2bd90c38 [ 167.141219][ T6910] [ 167.972992][ T6910] netlink: 2468 bytes leftover after parsing attributes in process `syz.1.216'. [ 168.810612][ T6928] Process accounting resumed [ 169.457050][ T6931] sd 0:0:1:0: PR command failed: 1026 [ 169.515595][ T6931] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 169.582518][ T6931] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 170.881791][ T6964] zram: Cannot change disksize for initialized device [ 172.320760][ T6982] netlink: 342 bytes leftover after parsing attributes in process `syz.3.232'. [ 172.379651][ T6982] IPv6: NLM_F_CREATE should be specified when creating new route [ 172.416831][ T6982] IPv6: Can't replace route, no match found [ 172.741247][ T6983] netlink: 146 bytes leftover after parsing attributes in process `syz.1.230'. [ 174.597961][ T7015] openvswitch: netlink: Message has 8 unknown bytes. [ 175.091503][ T7018] random: crng reseeded on system resumption [ 176.891635][ T7049] FAULT_INJECTION: forcing a failure. [ 176.891635][ T7049] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 176.950092][ T7049] CPU: 0 UID: 0 PID: 7049 Comm: syz.1.250 Not tainted syzkaller #0 PREEMPT(full) [ 176.950119][ T7049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 176.950130][ T7049] Call Trace: [ 176.950140][ T7049] [ 176.950147][ T7049] dump_stack_lvl+0x100/0x190 [ 176.950171][ T7049] should_fail_ex.cold+0x5/0xa [ 176.950191][ T7049] ? prepare_alloc_pages+0x16d/0x5f0 [ 176.950217][ T7049] should_fail_alloc_page+0xeb/0x140 [ 176.950241][ T7049] prepare_alloc_pages+0x1f0/0x5f0 [ 176.950268][ T7049] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 176.950306][ T7049] ? stack_trace_save+0x8e/0xc0 [ 176.950330][ T7049] ? __pfx_stack_trace_save+0x10/0x10 [ 176.950357][ T7049] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 176.950390][ T7049] ? kasan_save_stack+0x3f/0x50 [ 176.950407][ T7049] ? kasan_save_stack+0x30/0x50 [ 176.950423][ T7049] ? kasan_save_track+0x14/0x30 [ 176.950438][ T7049] ? __kasan_kmalloc+0xaa/0xb0 [ 176.950454][ T7049] ? mon_bin_open+0x1a8/0x470 [ 176.950474][ T7049] ? chrdev_open+0x234/0x6a0 [ 176.950497][ T7049] ? __x64_sys_openat+0x12d/0x210 [ 176.950530][ T7049] ? do_syscall_64+0x10b/0xf80 [ 176.950553][ T7049] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 176.950576][ T7049] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 176.950603][ T7049] ? policy_nodemask+0xed/0x4f0 [ 176.950626][ T7049] alloc_pages_mpol+0x1fb/0x540 [ 176.950649][ T7049] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 176.950677][ T7049] alloc_pages_noprof+0x1a/0x160 [ 176.950702][ T7049] get_zeroed_page_noprof+0x18/0xb0 [ 176.950723][ T7049] mon_alloc_buff+0xce/0x1b0 [ 176.950744][ T7049] ? kasan_save_track+0x14/0x30 [ 176.950764][ T7049] mon_bin_open+0x207/0x470 [ 176.950786][ T7049] ? __pfx_mon_bin_open+0x10/0x10 [ 176.950807][ T7049] chrdev_open+0x234/0x6a0 [ 176.950828][ T7049] ? __pfx_apparmor_file_open+0x10/0x10 [ 176.950856][ T7049] ? __pfx_chrdev_open+0x10/0x10 [ 176.950879][ T7049] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 176.950908][ T7049] do_dentry_open+0x6d8/0x1660 [ 176.950929][ T7049] ? __pfx_chrdev_open+0x10/0x10 [ 176.950957][ T7049] vfs_open+0x82/0x3f0 [ 176.950986][ T7049] path_openat+0x208c/0x31a0 [ 176.951017][ T7049] ? __pfx_path_openat+0x10/0x10 [ 176.951047][ T7049] do_file_open+0x20e/0x430 [ 176.951072][ T7049] ? __pfx_do_file_open+0x10/0x10 [ 176.951111][ T7049] ? alloc_fd+0x476/0x790 [ 176.951135][ T7049] ? do_getname+0x191/0x390 [ 176.951162][ T7049] do_sys_openat2+0x10d/0x1e0 [ 176.951189][ T7049] ? __pfx_do_sys_openat2+0x10/0x10 [ 176.951217][ T7049] ? __fget_files+0x21f/0x3d0 [ 176.951243][ T7049] __x64_sys_openat+0x12d/0x210 [ 176.951271][ T7049] ? __pfx___x64_sys_openat+0x10/0x10 [ 176.951303][ T7049] ? rcu_is_watching+0x12/0xc0 [ 176.951327][ T7049] do_syscall_64+0x10b/0xf80 [ 176.951349][ T7049] ? clear_bhb_loop+0x40/0x90 [ 176.951371][ T7049] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 176.951389][ T7049] RIP: 0033:0x7f86e459cdd9 [ 176.951405][ T7049] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 176.951423][ T7049] RSP: 002b:00007f86e5462028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 176.951441][ T7049] RAX: ffffffffffffffda RBX: 00007f86e4815fa0 RCX: 00007f86e459cdd9 [ 176.951452][ T7049] RDX: 0000000000121200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 176.951463][ T7049] RBP: 00007f86e4632d69 R08: 0000000000000000 R09: 0000000000000000 [ 176.951473][ T7049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 176.951483][ T7049] R13: 00007f86e4816038 R14: 00007f86e4815fa0 R15: 00007ffe2bd90c38 [ 176.951511][ T7049] [ 177.496043][ T7055] netlink: 2468 bytes leftover after parsing attributes in process `syz.1.250'. [ 177.566034][ T4944] Bluetooth: hci1: unexpected subevent 0x03 length: 253 > 9 [ 177.887317][ T7062] FAULT_INJECTION: forcing a failure. [ 177.887317][ T7062] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 177.951239][ T7062] CPU: 0 UID: 0 PID: 7062 Comm: syz.1.253 Not tainted syzkaller #0 PREEMPT(full) [ 177.951265][ T7062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 177.951274][ T7062] Call Trace: [ 177.951281][ T7062] [ 177.951288][ T7062] dump_stack_lvl+0x100/0x190 [ 177.951312][ T7062] should_fail_ex.cold+0x5/0xa [ 177.951332][ T7062] ? prepare_alloc_pages+0x16d/0x5f0 [ 177.951357][ T7062] should_fail_alloc_page+0xeb/0x140 [ 177.951380][ T7062] prepare_alloc_pages+0x1f0/0x5f0 [ 177.951407][ T7062] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 177.951445][ T7062] ? stack_trace_save+0x8e/0xc0 [ 177.951469][ T7062] ? __pfx_stack_trace_save+0x10/0x10 [ 177.951495][ T7062] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 177.951528][ T7062] ? kasan_save_stack+0x3f/0x50 [ 177.951544][ T7062] ? kasan_save_stack+0x30/0x50 [ 177.951560][ T7062] ? kasan_save_track+0x14/0x30 [ 177.951577][ T7062] ? __kasan_kmalloc+0xaa/0xb0 [ 177.951592][ T7062] ? mon_bin_open+0x1a8/0x470 [ 177.951612][ T7062] ? chrdev_open+0x234/0x6a0 [ 177.951636][ T7062] ? __x64_sys_openat+0x12d/0x210 [ 177.951662][ T7062] ? do_syscall_64+0x10b/0xf80 [ 177.951684][ T7062] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 177.951707][ T7062] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 177.951735][ T7062] ? policy_nodemask+0xed/0x4f0 [ 177.951758][ T7062] alloc_pages_mpol+0x1fb/0x540 [ 177.951780][ T7062] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 177.951814][ T7062] alloc_pages_noprof+0x1a/0x160 [ 177.951838][ T7062] get_zeroed_page_noprof+0x18/0xb0 [ 177.951860][ T7062] mon_alloc_buff+0xce/0x1b0 [ 177.951881][ T7062] ? kasan_save_track+0x14/0x30 [ 177.951900][ T7062] mon_bin_open+0x207/0x470 [ 177.951922][ T7062] ? __pfx_mon_bin_open+0x10/0x10 [ 177.951945][ T7062] chrdev_open+0x234/0x6a0 [ 177.951967][ T7062] ? __pfx_apparmor_file_open+0x10/0x10 [ 177.952001][ T7062] ? __pfx_chrdev_open+0x10/0x10 [ 177.952024][ T7062] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 177.952053][ T7062] do_dentry_open+0x6d8/0x1660 [ 177.952074][ T7062] ? __pfx_chrdev_open+0x10/0x10 [ 177.952102][ T7062] vfs_open+0x82/0x3f0 [ 177.952130][ T7062] path_openat+0x208c/0x31a0 [ 177.952161][ T7062] ? __pfx_path_openat+0x10/0x10 [ 177.952193][ T7062] do_file_open+0x20e/0x430 [ 177.952217][ T7062] ? __pfx_do_file_open+0x10/0x10 [ 177.952256][ T7062] ? alloc_fd+0x476/0x790 [ 177.952279][ T7062] ? do_getname+0x191/0x390 [ 177.952307][ T7062] do_sys_openat2+0x10d/0x1e0 [ 177.952335][ T7062] ? __pfx_do_sys_openat2+0x10/0x10 [ 177.952363][ T7062] ? __fget_files+0x21f/0x3d0 [ 177.952389][ T7062] __x64_sys_openat+0x12d/0x210 [ 177.952417][ T7062] ? __pfx___x64_sys_openat+0x10/0x10 [ 177.952463][ T7062] ? rcu_is_watching+0x12/0xc0 [ 177.952488][ T7062] do_syscall_64+0x10b/0xf80 [ 177.952511][ T7062] ? clear_bhb_loop+0x40/0x90 [ 177.952532][ T7062] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 177.952550][ T7062] RIP: 0033:0x7f86e459cdd9 [ 177.952566][ T7062] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 177.952583][ T7062] RSP: 002b:00007f86e5462028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 177.952601][ T7062] RAX: ffffffffffffffda RBX: 00007f86e4815fa0 RCX: 00007f86e459cdd9 [ 177.952612][ T7062] RDX: 0000000000121200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 177.952623][ T7062] RBP: 00007f86e4632d69 R08: 0000000000000000 R09: 0000000000000000 [ 177.952633][ T7062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 177.952643][ T7062] R13: 00007f86e4816038 R14: 00007f86e4815fa0 R15: 00007ffe2bd90c38 [ 177.952666][ T7062] [ 178.857572][ T7062] netlink: 2468 bytes leftover after parsing attributes in process `syz.1.253'. [ 180.095316][ T7103] FAULT_INJECTION: forcing a failure. [ 180.095316][ T7103] name failslab, interval 1, probability 0, space 0, times 0 [ 180.193992][ T7103] CPU: 0 UID: 0 PID: 7103 Comm: syz.0.260 Not tainted syzkaller #0 PREEMPT(full) [ 180.194019][ T7103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 180.194029][ T7103] Call Trace: [ 180.194035][ T7103] [ 180.194042][ T7103] dump_stack_lvl+0x100/0x190 [ 180.194067][ T7103] should_fail_ex.cold+0x5/0xa [ 180.194090][ T7103] should_failslab+0xc2/0x120 [ 180.194112][ T7103] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 180.194140][ T7103] ? alloc_empty_file+0x5b/0x1c0 [ 180.194171][ T7103] alloc_empty_file+0x5b/0x1c0 [ 180.194197][ T7103] alloc_file_pseudo+0x13a/0x230 [ 180.194225][ T7103] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 180.194259][ T7103] __shmem_file_setup+0x205/0x460 [ 180.194285][ T7103] ? __pfx___shmem_file_setup+0x10/0x10 [ 180.194312][ T7103] ? vm_area_alloc+0x1f/0x160 [ 180.194340][ T7103] shmem_zero_setup+0x96/0x1b0 [ 180.194360][ T7103] __mmap_region+0x24e9/0x2da0 [ 180.194392][ T7103] ? __pfx___mmap_region+0x10/0x10 [ 180.194419][ T7103] ? __lock_acquire+0x4a5/0x2630 [ 180.194439][ T7103] ? lock_acquire+0x1b1/0x370 [ 180.194468][ T7103] ? clockevents_program_event+0x23e/0x820 [ 180.194489][ T7103] ? clockevents_program_event+0x23e/0x820 [ 180.194514][ T7103] ? ktime_get+0x1a4/0x320 [ 180.194542][ T7103] ? lapic_next_event+0x10/0x20 [ 180.194570][ T7103] ? __pfx_debug_object_activate+0x10/0x10 [ 180.194598][ T7103] ? do_raw_spin_lock+0x128/0x260 [ 180.194628][ T7103] ? hrtimer_start_range_ns+0x860/0x1a50 [ 180.194651][ T7103] ? find_held_lock+0x2b/0x80 [ 180.194673][ T7103] ? finish_task_switch.isra.0+0x2c6/0x1010 [ 180.194725][ T7103] ? find_held_lock+0x2b/0x80 [ 180.194752][ T7103] mmap_region+0x35d/0x620 [ 180.194769][ T7103] ? rcu_is_watching+0x12/0xc0 [ 180.194791][ T7103] ? __pfx_mmap_region+0x10/0x10 [ 180.194810][ T7103] ? cap_mmap_addr+0x4b/0x120 [ 180.194836][ T7103] ? bpf_lsm_mmap_addr+0x9/0x30 [ 180.194853][ T7103] ? security_mmap_addr+0x71/0x1e0 [ 180.194873][ T7103] ? __get_unmapped_area+0x255/0x3e0 [ 180.194898][ T7103] do_mmap+0xc63/0x12f0 [ 180.194924][ T7103] ? __pfx_do_mmap+0x10/0x10 [ 180.194946][ T7103] ? __pfx_down_write_killable+0x10/0x10 [ 180.194977][ T7103] vm_mmap_pgoff+0x29e/0x470 [ 180.195003][ T7103] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 180.195028][ T7103] ? __pfx___schedule+0x10/0x10 [ 180.195050][ T7103] ? preempt_schedule_irq+0x7b/0x90 [ 180.195075][ T7103] ksys_mmap_pgoff+0xe4/0x610 [ 180.195099][ T7103] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 180.195127][ T7103] __x64_sys_mmap+0x125/0x190 [ 180.195150][ T7103] do_syscall_64+0x10b/0xf80 [ 180.195173][ T7103] ? clear_bhb_loop+0x40/0x90 [ 180.195194][ T7103] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.195216][ T7103] RIP: 0033:0x7f09b439cdd9 [ 180.195233][ T7103] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 180.195250][ T7103] RSP: 002b:00007f09b5265028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 180.195267][ T7103] RAX: ffffffffffffffda RBX: 00007f09b4615fa0 RCX: 00007f09b439cdd9 [ 180.195279][ T7103] RDX: 00004000000000df RSI: 0000000000020009 RDI: 0000000000000000 [ 180.195289][ T7103] RBP: 00007f09b4432d69 R08: 0000000000000401 R09: 0000000000008000 [ 180.195299][ T7103] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 180.195309][ T7103] R13: 00007f09b4616038 R14: 00007f09b4615fa0 R15: 00007ffedbf568e8 [ 180.195332][ T7103] [ 181.680833][ T7122] ptp ptp0: new virtual clock ptp1 [ 181.701911][ T7122] ptp ptp0: guarantee physical clock free running [ 181.744515][ T7124] ptp ptp0: delete virtual clock ptp1 [ 181.801501][ T7124] ptp ptp0: only physical clock in use now [ 183.136779][ T7142] ICMPv6: process `syz.1.267' is using deprecated sysctl (syscall) net.ipv6.neigh.veth0_to_bridge.base_reachable_time - use net.ipv6.neigh.veth0_to_bridge.base_reachable_time_ms instead [ 183.859051][ T7157] random: crng reseeded on system resumption [ 184.652186][ T7112] kexec: Could not allocate control_code_buffer [ 185.240771][ T7188] netlink: 28 bytes leftover after parsing attributes in process `syz.2.275'. [ 187.396892][ T7232] openvswitch: netlink: IP tunnel dst address not specified [ 188.717144][ T7260] futex_wake_op: syz.2.291 tries to shift op by -2048; fix this program [ 188.766026][ T7260] futex_wake_op: syz.2.291 tries to shift op by -2048; fix this program [ 189.179263][ T7261] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 189.213760][ T7261] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 189.310314][ T7261] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 189.377720][ T7261] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 189.406353][ T7261] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 189.453942][ T7261] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 189.538517][ T7261] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 189.585250][ T7261] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 189.656241][ T7261] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 190.004195][ T7273] netlink: 16 bytes leftover after parsing attributes in process `syz.3.293'. [ 190.197894][ T4944] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 190.766506][ T7288] netlink: 28 bytes leftover after parsing attributes in process `syz.3.296'. [ 190.817269][ T7286] netlink: 28 bytes leftover after parsing attributes in process `syz.3.296'. [ 190.842998][ T7289] random: crng reseeded on system resumption [ 191.006851][ T50] Bluetooth: hci1: command 0x0c1a tx timeout [ 191.406895][ T50] Bluetooth: hci2: command 0x0c1a tx timeout [ 191.533017][ T29] audit: type=1800 audit(1843104528.150:3): pid=7308 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.300" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0 [ 191.569713][ T50] Bluetooth: hci3: command 0x0c1a tx timeout [ 191.879209][ T7244] kexec: Could not allocate control_code_buffer [ 192.621348][ T7325] FAULT_INJECTION: forcing a failure. [ 192.621348][ T7325] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 192.676514][ T7325] CPU: 0 UID: 0 PID: 7325 Comm: syz.3.304 Not tainted syzkaller #0 PREEMPT(full) [ 192.676540][ T7325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 192.676550][ T7325] Call Trace: [ 192.676556][ T7325] [ 192.676564][ T7325] dump_stack_lvl+0x100/0x190 [ 192.676589][ T7325] should_fail_ex.cold+0x5/0xa [ 192.676608][ T7325] ? prepare_alloc_pages+0x16d/0x5f0 [ 192.676635][ T7325] should_fail_alloc_page+0xeb/0x140 [ 192.676659][ T7325] prepare_alloc_pages+0x1f0/0x5f0 [ 192.676686][ T7325] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 192.676725][ T7325] ? stack_trace_save+0x8e/0xc0 [ 192.676749][ T7325] ? __pfx_stack_trace_save+0x10/0x10 [ 192.676775][ T7325] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 192.676808][ T7325] ? kasan_save_stack+0x3f/0x50 [ 192.676824][ T7325] ? kasan_save_stack+0x30/0x50 [ 192.676840][ T7325] ? kasan_save_track+0x14/0x30 [ 192.676856][ T7325] ? __kasan_kmalloc+0xaa/0xb0 [ 192.676871][ T7325] ? mon_bin_open+0x1a8/0x470 [ 192.676891][ T7325] ? chrdev_open+0x234/0x6a0 [ 192.676915][ T7325] ? __x64_sys_openat+0x12d/0x210 [ 192.676941][ T7325] ? do_syscall_64+0x10b/0xf80 [ 192.676963][ T7325] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 192.676986][ T7325] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 192.677013][ T7325] ? policy_nodemask+0xed/0x4f0 [ 192.677035][ T7325] alloc_pages_mpol+0x1fb/0x540 [ 192.677057][ T7325] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 192.677084][ T7325] alloc_pages_noprof+0x1a/0x160 [ 192.677108][ T7325] get_zeroed_page_noprof+0x18/0xb0 [ 192.677130][ T7325] mon_alloc_buff+0xce/0x1b0 [ 192.677150][ T7325] ? kasan_save_track+0x14/0x30 [ 192.677170][ T7325] mon_bin_open+0x207/0x470 [ 192.677191][ T7325] ? __pfx_mon_bin_open+0x10/0x10 [ 192.677213][ T7325] chrdev_open+0x234/0x6a0 [ 192.677234][ T7325] ? __pfx_apparmor_file_open+0x10/0x10 [ 192.677262][ T7325] ? __pfx_chrdev_open+0x10/0x10 [ 192.677286][ T7325] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 192.677315][ T7325] do_dentry_open+0x6d8/0x1660 [ 192.677343][ T7325] ? __pfx_chrdev_open+0x10/0x10 [ 192.677371][ T7325] vfs_open+0x82/0x3f0 [ 192.677400][ T7325] path_openat+0x208c/0x31a0 [ 192.677430][ T7325] ? __pfx_path_openat+0x10/0x10 [ 192.677460][ T7325] do_file_open+0x20e/0x430 [ 192.677486][ T7325] ? __pfx_do_file_open+0x10/0x10 [ 192.677525][ T7325] ? alloc_fd+0x476/0x790 [ 192.677549][ T7325] ? do_getname+0x191/0x390 [ 192.677578][ T7325] do_sys_openat2+0x10d/0x1e0 [ 192.677606][ T7325] ? __pfx_do_sys_openat2+0x10/0x10 [ 192.677634][ T7325] ? __fget_files+0x21f/0x3d0 [ 192.677660][ T7325] __x64_sys_openat+0x12d/0x210 [ 192.677688][ T7325] ? __pfx___x64_sys_openat+0x10/0x10 [ 192.677719][ T7325] ? rcu_is_watching+0x12/0xc0 [ 192.677744][ T7325] do_syscall_64+0x10b/0xf80 [ 192.677766][ T7325] ? clear_bhb_loop+0x40/0x90 [ 192.677788][ T7325] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 192.677806][ T7325] RIP: 0033:0x7f4b1819cdd9 [ 192.677822][ T7325] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 192.677839][ T7325] RSP: 002b:00007f4b190f4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 192.677857][ T7325] RAX: ffffffffffffffda RBX: 00007f4b18415fa0 RCX: 00007f4b1819cdd9 [ 192.677868][ T7325] RDX: 0000000000121200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 192.677879][ T7325] RBP: 00007f4b18232d69 R08: 0000000000000000 R09: 0000000000000000 [ 192.677889][ T7325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 192.677899][ T7325] R13: 00007f4b18416038 R14: 00007f4b18415fa0 R15: 00007ffd5c158eb8 [ 192.677922][ T7325] [ 193.587152][ T50] Bluetooth: hci1: command 0x0c1a tx timeout [ 193.594273][ T50] Bluetooth: hci2: command 0x0c1a tx timeout [ 193.769988][ T5635] Bluetooth: hci3: command 0x0c1a tx timeout [ 193.854619][ T7337] kAFS: Invalid Command on /proc/fs/afs/cells file [ 194.033324][ T7318] kexec: Could not allocate control_code_buffer [ 194.460473][ T1317] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.466935][ T1317] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.630307][ T7349] netlink: 2468 bytes leftover after parsing attributes in process `syz.3.304'. [ 195.647285][ T4944] Bluetooth: hci2: command 0x0c1a tx timeout [ 195.654575][ T5635] Bluetooth: hci1: command 0x0c1a tx timeout [ 195.806875][ T4944] Bluetooth: hci3: command 0x0c1a tx timeout [ 196.951108][ T7379] zswap: compressor not available [ 197.886799][ T4944] Bluetooth: hci3: command 0x0c1a tx timeout [ 198.972298][ T7414] Process accounting paused [ 199.966861][ T4944] Bluetooth: hci3: command 0x0c1a tx timeout [ 201.704233][ T29] audit: type=1800 audit(1843104521.880:4): pid=7471 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.340" name="file0" dev="tmpfs" ino=463 res=0 errno=0 [ 205.030065][ T7516] netlink: 29 bytes leftover after parsing attributes in process `syz.2.339'. [ 205.788714][ T7478] kexec: Could not allocate control_code_buffer [ 206.057389][ T7554] Process accounting resumed [ 206.485857][ T7563] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[5626] was attempted by ""[7563] [ 207.987904][ T7572] ACPI: \_SB_.LNKS: No IRQ available. Try pci=noacpi or acpi=off [ 208.133919][ T7572] pci 0000:00:01.3: PCI INT A: no GSI [ 209.280049][ T7602] busy [ 209.485672][ T7605] FAULT_INJECTION: forcing a failure. [ 209.485672][ T7605] name failslab, interval 1, probability 0, space 0, times 0 [ 209.550311][ T7605] CPU: 0 UID: 0 PID: 7605 Comm: syz.0.359 Not tainted syzkaller #0 PREEMPT(full) [ 209.550338][ T7605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 209.550348][ T7605] Call Trace: [ 209.550355][ T7605] [ 209.550362][ T7605] dump_stack_lvl+0x100/0x190 [ 209.550386][ T7605] should_fail_ex.cold+0x5/0xa [ 209.550410][ T7605] should_failslab+0xc2/0x120 [ 209.550432][ T7605] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 209.550461][ T7605] ? __d_alloc+0x34/0xa40 [ 209.550490][ T7605] __d_alloc+0x34/0xa40 [ 209.550516][ T7605] d_alloc+0x4a/0x1e0 [ 209.550541][ T7605] lookup_one_qstr_excl+0x171/0x250 [ 209.550570][ T7605] start_dirop+0x59/0xb0 [ 209.550592][ T7605] simple_start_creating+0xf9/0x110 [ 209.550614][ T7605] ? __pfx_simple_start_creating+0x10/0x10 [ 209.550636][ T7605] ? mntput+0x70/0xa0 [ 209.550654][ T7605] ? simple_pin_fs+0xa3/0x190 [ 209.550674][ T7605] debugfs_start_creating.part.0+0x82/0x170 [ 209.550703][ T7605] __debugfs_create_file+0xb3/0x4f0 [ 209.550733][ T7605] debugfs_create_file_full+0x41/0x60 [ 209.550762][ T7605] ref_tracker_dir_debugfs+0x19e/0x2e0 [ 209.550785][ T7605] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 209.550806][ T7605] ? ida_alloc_range+0x70d/0x830 [ 209.550849][ T7605] ? lockdep_init_map_type+0x5c/0x250 [ 209.550871][ T7605] preinit_net.part.0+0x252/0x920 [ 209.550899][ T7605] copy_net_ns+0x339/0x7c0 [ 209.550924][ T7605] create_new_namespaces+0x3ea/0xac0 [ 209.550953][ T7605] unshare_nsproxy_namespaces+0xf2/0x220 [ 209.550979][ T7605] ksys_unshare+0x438/0xab0 [ 209.551007][ T7605] ? __pfx_ksys_unshare+0x10/0x10 [ 209.551032][ T7605] ? xfd_validate_state+0x129/0x190 [ 209.551050][ T7605] ? ksys_write+0x1ac/0x250 [ 209.551077][ T7605] __x64_sys_unshare+0x31/0x40 [ 209.551103][ T7605] do_syscall_64+0x10b/0xf80 [ 209.551125][ T7605] ? clear_bhb_loop+0x40/0x90 [ 209.551147][ T7605] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 209.551165][ T7605] RIP: 0033:0x7f09b439cdd9 [ 209.551181][ T7605] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 209.551197][ T7605] RSP: 002b:00007f09b5265028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 209.551222][ T7605] RAX: ffffffffffffffda RBX: 00007f09b4615fa0 RCX: 00007f09b439cdd9 [ 209.551234][ T7605] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 209.551244][ T7605] RBP: 00007f09b4432d69 R08: 0000000000000000 R09: 0000000000000000 [ 209.551254][ T7605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 209.551264][ T7605] R13: 00007f09b4616038 R14: 00007f09b4615fa0 R15: 00007ffedbf568e8 [ 209.551287][ T7605] [ 211.649289][ T7621] netlink: 'syz.2.363': attribute type 24 has an invalid length. [ 212.342728][ T7623] random: crng reseeded on system resumption [ 212.942592][ T7646] netlink: 8 bytes leftover after parsing attributes in process `syz.0.366'. [ 215.860978][ T7638] kexec: Could not allocate control_code_buffer [ 215.908585][ T7676] netlink: 3 bytes leftover after parsing attributes in process `syz.0.374'. [ 221.158544][ T7758] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 221.409409][ T7762] FAULT_INJECTION: forcing a failure. [ 221.409409][ T7762] name failslab, interval 1, probability 0, space 0, times 0 [ 221.470165][ T7762] CPU: 0 UID: 0 PID: 7762 Comm: syz.0.391 Not tainted syzkaller #0 PREEMPT(full) [ 221.470192][ T7762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 221.470203][ T7762] Call Trace: [ 221.470210][ T7762] [ 221.470217][ T7762] dump_stack_lvl+0x100/0x190 [ 221.470243][ T7762] should_fail_ex.cold+0x5/0xa [ 221.470266][ T7762] should_failslab+0xc2/0x120 [ 221.470288][ T7762] __kmalloc_cache_noprof+0x7a/0x6f0 [ 221.470315][ T7762] ? pkcs7_parse_message+0x15f/0x870 [ 221.470341][ T7762] pkcs7_parse_message+0x15f/0x870 [ 221.470367][ T7762] verify_pkcs7_signature+0x30/0xa0 [ 221.470389][ T7762] valid_regdb+0x211/0x590 [ 221.470412][ T7762] ? __pfx_valid_regdb+0x10/0x10 [ 221.470436][ T7762] reg_reload_regdb+0x11a/0x460 [ 221.470458][ T7762] ? __pfx_reg_reload_regdb+0x10/0x10 [ 221.470481][ T7762] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 221.470507][ T7762] ? nl80211_pre_doit+0x19a/0xae0 [ 221.470536][ T7762] genl_family_rcv_msg_doit+0x214/0x300 [ 221.470567][ T7762] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 221.470594][ T7762] ? genl_get_cmd+0x3e7/0x760 [ 221.470625][ T7762] ? bpf_lsm_capable+0x9/0x10 [ 221.470646][ T7762] ? security_capable+0x80/0x260 [ 221.470677][ T7762] genl_rcv_msg+0x560/0x800 [ 221.470707][ T7762] ? __pfx_genl_rcv_msg+0x10/0x10 [ 221.470735][ T7762] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 221.470760][ T7762] ? __pfx_nl80211_reload_regdb+0x10/0x10 [ 221.470780][ T7762] ? __pfx_nl80211_post_doit+0x10/0x10 [ 221.470814][ T7762] netlink_rcv_skb+0x159/0x420 [ 221.470838][ T7762] ? __pfx_genl_rcv_msg+0x10/0x10 [ 221.470866][ T7762] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 221.470899][ T7762] ? netlink_deliver_tap+0x1ae/0xcc0 [ 221.470926][ T7762] genl_rcv+0x28/0x40 [ 221.470952][ T7762] netlink_unicast+0x585/0x850 [ 221.470980][ T7762] ? __pfx_netlink_unicast+0x10/0x10 [ 221.471011][ T7762] netlink_sendmsg+0x8b0/0xda0 [ 221.471039][ T7762] ? __pfx_netlink_sendmsg+0x10/0x10 [ 221.471062][ T7762] ? __import_iovec+0x1d2/0x640 [ 221.471083][ T7762] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 221.471120][ T7762] ____sys_sendmsg+0x9e1/0xb70 [ 221.471143][ T7762] ? __pfx_netlink_sendmsg+0x10/0x10 [ 221.471170][ T7762] ? __pfx_____sys_sendmsg+0x10/0x10 [ 221.471198][ T7762] ? preempt_schedule_thunk+0x16/0x30 [ 221.471230][ T7762] ? try_to_wake_up+0x5f6/0x1900 [ 221.471258][ T7762] ___sys_sendmsg+0x190/0x1e0 [ 221.471286][ T7762] ? __pfx____sys_sendmsg+0x10/0x10 [ 221.471312][ T7762] ? futex_private_hash_put+0x107/0x1c0 [ 221.471356][ T7762] __sys_sendmsg+0x170/0x220 [ 221.471376][ T7762] ? __pfx___sys_sendmsg+0x10/0x10 [ 221.471395][ T7762] ? __x64_sys_futex+0x34f/0x4d0 [ 221.471423][ T7762] ? rcu_is_watching+0x12/0xc0 [ 221.471447][ T7762] do_syscall_64+0x10b/0xf80 [ 221.471470][ T7762] ? clear_bhb_loop+0x40/0x90 [ 221.471492][ T7762] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 221.471510][ T7762] RIP: 0033:0x7f09b439cdd9 [ 221.471526][ T7762] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 221.471543][ T7762] RSP: 002b:00007f09b5265028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 221.471561][ T7762] RAX: ffffffffffffffda RBX: 00007f09b4615fa0 RCX: 00007f09b439cdd9 [ 221.471572][ T7762] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007 [ 221.471583][ T7762] RBP: 00007f09b4432d69 R08: 0000000000000000 R09: 0000000000000000 [ 221.471593][ T7762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 221.471603][ T7762] R13: 00007f09b4616038 R14: 00007f09b4615fa0 R15: 00007ffedbf568e8 [ 221.471625][ T7762] [ 224.156004][ T7800] netlink: 4 bytes leftover after parsing attributes in process `syz.2.401'. [ 224.197572][ T7800] netlink: 4 bytes leftover after parsing attributes in process `syz.2.401'. [ 224.754825][ T7781] kexec: Could not allocate control_code_buffer [ 228.631510][ T7878] FAULT_INJECTION: forcing a failure. [ 228.631510][ T7878] name failslab, interval 1, probability 0, space 0, times 0 [ 228.703462][ T7878] CPU: 0 UID: 0 PID: 7878 Comm: syz.0.420 Not tainted syzkaller #0 PREEMPT(full) [ 228.703488][ T7878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 228.703499][ T7878] Call Trace: [ 228.703505][ T7878] [ 228.703511][ T7878] dump_stack_lvl+0x100/0x190 [ 228.703537][ T7878] should_fail_ex.cold+0x5/0xa [ 228.703561][ T7878] should_failslab+0xc2/0x120 [ 228.703583][ T7878] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 228.703611][ T7878] ? ptlock_alloc+0x1f/0x70 [ 228.703636][ T7878] ? __lock_acquire+0x4a5/0x2630 [ 228.703656][ T7878] ptlock_alloc+0x1f/0x70 [ 228.703681][ T7878] pte_alloc_one+0x82/0x3d0 [ 228.703707][ T7878] __pte_alloc+0x6d/0x3e0 [ 228.703726][ T7878] ? __pfx___pte_alloc+0x10/0x10 [ 228.703747][ T7878] ? do_raw_spin_lock+0x128/0x260 [ 228.703770][ T7878] do_anonymous_page+0x13c6/0x2050 [ 228.703800][ T7878] ? __pmd_alloc+0x3fb/0x950 [ 228.703825][ T7878] __handle_mm_fault+0x1d2c/0x2a00 [ 228.703855][ T7878] ? mt_find+0x45e/0x8e0 [ 228.703881][ T7878] ? __pfx___handle_mm_fault+0x10/0x10 [ 228.703906][ T7878] ? __pfx_mt_find+0x10/0x10 [ 228.703948][ T7878] handle_mm_fault+0x36d/0xa20 [ 228.703978][ T7878] __get_user_pages+0x1178/0x32a0 [ 228.704009][ T7878] ? __pfx___get_user_pages+0x10/0x10 [ 228.704046][ T7878] populate_vma_page_range+0x267/0x3f0 [ 228.704072][ T7878] ? __pfx_populate_vma_page_range+0x10/0x10 [ 228.704095][ T7878] ? __pfx_find_vma_intersection+0x10/0x10 [ 228.704118][ T7878] ? do_mmap+0x93f/0x12f0 [ 228.704142][ T7878] __mm_populate+0x107/0x3a0 [ 228.704166][ T7878] ? __pfx___mm_populate+0x10/0x10 [ 228.704191][ T7878] ? up_write+0x28c/0x4f0 [ 228.704218][ T7878] vm_mmap_pgoff+0x37f/0x470 [ 228.704244][ T7878] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 228.704268][ T7878] ? do_futex+0x192/0x350 [ 228.704288][ T7878] ? __pfx_do_futex+0x10/0x10 [ 228.704311][ T7878] ksys_mmap_pgoff+0xe4/0x610 [ 228.704333][ T7878] ? __x64_sys_futex+0x358/0x4d0 [ 228.704353][ T7878] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 228.704374][ T7878] ? xfd_validate_state+0x129/0x190 [ 228.704391][ T7878] ? ksys_write+0x1ac/0x250 [ 228.704416][ T7878] __x64_sys_mmap+0x125/0x190 [ 228.704438][ T7878] do_syscall_64+0x10b/0xf80 [ 228.704461][ T7878] ? clear_bhb_loop+0x40/0x90 [ 228.704482][ T7878] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 228.704500][ T7878] RIP: 0033:0x7f09b439cdd9 [ 228.704516][ T7878] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 228.704532][ T7878] RSP: 002b:00007f09b5265028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 228.704550][ T7878] RAX: ffffffffffffffda RBX: 00007f09b4615fa0 RCX: 00007f09b439cdd9 [ 228.704561][ T7878] RDX: 00000000000000df RSI: 0000000000040009 RDI: 0000000000000000 [ 228.704572][ T7878] RBP: 00007f09b4432d69 R08: 0000000000000007 R09: 0000000000028000 [ 228.704582][ T7878] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 228.704592][ T7878] R13: 00007f09b4616038 R14: 00007f09b4615fa0 R15: 00007ffedbf568e8 [ 228.704614][ T7878] [ 231.162317][ T7863] kexec: Could not allocate control_code_buffer [ 231.961484][ T7856] Process accounting resumed [ 234.713215][ T8004] capability: warning: `syz.1.447' uses 32-bit capabilities (legacy support in use) [ 234.809505][ T8004] netlink: 146 bytes leftover after parsing attributes in process `syz.1.447'. [ 235.679793][ T8020] Invalid ELF header magic: != ELF [ 236.250460][ T8026] Process accounting paused [ 236.483270][ T8011] kexec: Could not allocate control_code_buffer [ 237.503569][ T8054] netlink: 20 bytes leftover after parsing attributes in process `syz.0.452'. [ 237.767359][ T8059] random: crng reseeded on system resumption [ 237.818975][ T8059] Restarting kernel threads ... [ 237.850191][ T8059] Done restarting kernel threads. [ 237.951117][ T8059] FAULT_INJECTION: forcing a failure. [ 237.951117][ T8059] name failslab, interval 1, probability 0, space 0, times 0 [ 238.009407][ T8059] CPU: 0 UID: 0 PID: 8059 Comm: syz.0.454 Not tainted syzkaller #0 PREEMPT(full) [ 238.009433][ T8059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 238.009444][ T8059] Call Trace: [ 238.009450][ T8059] [ 238.009457][ T8059] dump_stack_lvl+0x100/0x190 [ 238.009482][ T8059] should_fail_ex.cold+0x5/0xa [ 238.009505][ T8059] should_failslab+0xc2/0x120 [ 238.009528][ T8059] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 238.009547][ T8059] ? kvasprintf_const+0x66/0x1a0 [ 238.009566][ T8059] ? do_raw_spin_lock+0x128/0x260 [ 238.009591][ T8059] kvasprintf+0xbc/0x150 [ 238.009609][ T8059] ? __pfx_kvasprintf+0x10/0x10 [ 238.009629][ T8059] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 238.009653][ T8059] ? __debug_object_init+0x2de/0x3d0 [ 238.009688][ T8059] kvasprintf_const+0x66/0x1a0 [ 238.009708][ T8059] kobject_set_name_vargs+0x5a/0x140 [ 238.009738][ T8059] dev_set_name+0xc7/0x100 [ 238.009764][ T8059] ? __pfx_dev_set_name+0x10/0x10 [ 238.009789][ T8059] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 238.009816][ T8059] ? lockdep_init_map_type+0x5c/0x250 [ 238.009835][ T8059] ? __init_waitqueue_head+0xca/0x150 [ 238.009861][ T8059] wakeup_source_device_create+0x204/0x2e0 [ 238.009888][ T8059] wakeup_source_sysfs_add+0x1c/0x90 [ 238.009912][ T8059] wakeup_source_register+0x154/0x3e0 [ 238.009942][ T8059] ep_create_wakeup_source+0x1df/0x2e0 [ 238.009966][ T8059] ? __pfx_ep_create_wakeup_source+0x10/0x10 [ 238.009993][ T8059] ? do_epoll_ctl+0x1012/0x36a0 [ 238.010016][ T8059] ? do_epoll_ctl+0x1012/0x36a0 [ 238.010044][ T8059] do_epoll_ctl+0x1eee/0x36a0 [ 238.010078][ T8059] ? __pfx_do_epoll_ctl+0x10/0x10 [ 238.010101][ T8059] ? find_held_lock+0x2b/0x80 [ 238.010123][ T8059] ? __might_fault+0xc5/0x140 [ 238.010150][ T8059] ? __might_fault+0xc5/0x140 [ 238.010185][ T8059] ? __x64_sys_epoll_ctl+0x15c/0x1e0 [ 238.010208][ T8059] __x64_sys_epoll_ctl+0x15c/0x1e0 [ 238.010233][ T8059] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 238.010259][ T8059] ? rcu_is_watching+0x12/0xc0 [ 238.010284][ T8059] do_syscall_64+0x10b/0xf80 [ 238.010306][ T8059] ? clear_bhb_loop+0x40/0x90 [ 238.010328][ T8059] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.010346][ T8059] RIP: 0033:0x7f09b439cdd9 [ 238.010362][ T8059] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 238.010378][ T8059] RSP: 002b:00007f09b5265028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 238.010396][ T8059] RAX: ffffffffffffffda RBX: 00007f09b4615fa0 RCX: 00007f09b439cdd9 [ 238.010407][ T8059] RDX: 0000000000000006 RSI: 0000000000000001 RDI: 0000000000000007 [ 238.010417][ T8059] RBP: 00007f09b4432d69 R08: 0000000000000000 R09: 0000000000000000 [ 238.010427][ T8059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 238.010437][ T8059] R13: 00007f09b4616038 R14: 00007f09b4615fa0 R15: 00007ffedbf568e8 [ 238.010460][ T8059] [ 240.974659][ T8134] zram: Cannot change disksize for initialized device [ 244.817600][ T8241] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 244.844548][ T8241] random: crng reseeded on system resumption [ 246.334452][ T8263] netlink: 'syz.0.492': attribute type 2 has an invalid length. [ 247.390890][ T8287] device-mapper: ioctl: Unable to rename non-existent device, to uuid [ 250.144135][ T8351] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 250.150620][ T8351] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 253.523764][ T8428] netlink: 342 bytes leftover after parsing attributes in process `syz.2.529'. [ 253.569712][ T8426] cougar: G6 mapped to space [ 254.793330][ T8454] Format for adding new device is "id port_count num_queues" (uint uint uint). [ 255.063541][ T8458] netlink: 28 bytes leftover after parsing attributes in process `syz.2.535'. [ 255.889261][ T1317] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.895819][ T1317] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.443924][ T8473] Invalid ELF header magic: != ELF [ 256.781957][ T8418] kexec: Could not allocate control_code_buffer [ 259.448283][ T8543] cgroup: fork rejected by pids controller in /syz2 [ 259.647985][ T8541] Invalid ELF header magic: != ELF [ 261.613350][ T8617] cgroup: fork rejected by pids controller in /syz1 [ 262.371794][ T8603] Process accounting paused [ 263.237371][ T8677] Invalid ELF header magic: != ELF [ 265.648744][ T8719] Invalid ELF header magic: != ELF [ 266.163603][ T8729] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 266.255768][ T8729] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 266.319865][ T8729] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 266.857099][ T8747] netlink: 330 bytes leftover after parsing attributes in process `syz.1.587'. [ 267.847831][ T8738] Process accounting resumed [ 268.047288][ T5635] Bluetooth: hci1: command 0x0c1a tx timeout [ 268.286772][ T4944] Bluetooth: hci2: command 0x0c1a tx timeout [ 268.366594][ T4944] Bluetooth: hci3: command 0x0c1a tx timeout [ 268.796056][ T8753] kexec: Could not allocate control_code_buffer [ 268.973915][ T29] audit: type=1800 audit(1843104589.150:5): pid=8765 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.589" name="file0" dev="tmpfs" ino=791 res=0 errno=0 [ 269.259270][ T8773] random: crng reseeded on system resumption [ 271.055373][ T8807] FAULT_INJECTION: forcing a failure. [ 271.055373][ T8807] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 271.086010][ T8807] CPU: 0 UID: 0 PID: 8807 Comm: syz.1.599 Not tainted syzkaller #0 PREEMPT(full) [ 271.086039][ T8807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 271.086049][ T8807] Call Trace: [ 271.086056][ T8807] [ 271.086063][ T8807] dump_stack_lvl+0x100/0x190 [ 271.086088][ T8807] should_fail_ex.cold+0x5/0xa [ 271.086108][ T8807] ? prepare_alloc_pages+0x16d/0x5f0 [ 271.086133][ T8807] should_fail_alloc_page+0xeb/0x140 [ 271.086158][ T8807] prepare_alloc_pages+0x1f0/0x5f0 [ 271.086186][ T8807] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 271.086225][ T8807] ? stack_trace_save+0x8e/0xc0 [ 271.086250][ T8807] ? __pfx_stack_trace_save+0x10/0x10 [ 271.086275][ T8807] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 271.086308][ T8807] ? kasan_save_stack+0x3f/0x50 [ 271.086329][ T8807] ? kasan_save_stack+0x30/0x50 [ 271.086345][ T8807] ? kasan_save_track+0x14/0x30 [ 271.086361][ T8807] ? __kasan_kmalloc+0xaa/0xb0 [ 271.086376][ T8807] ? mon_bin_open+0x1a8/0x470 [ 271.086396][ T8807] ? chrdev_open+0x234/0x6a0 [ 271.086420][ T8807] ? __x64_sys_openat+0x12d/0x210 [ 271.086446][ T8807] ? do_syscall_64+0x10b/0xf80 [ 271.086469][ T8807] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 271.086492][ T8807] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 271.086520][ T8807] ? policy_nodemask+0xed/0x4f0 [ 271.086542][ T8807] alloc_pages_mpol+0x1fb/0x540 [ 271.086564][ T8807] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 271.086591][ T8807] alloc_pages_noprof+0x1a/0x160 [ 271.086616][ T8807] get_zeroed_page_noprof+0x18/0xb0 [ 271.086646][ T8807] mon_alloc_buff+0xce/0x1b0 [ 271.086666][ T8807] ? kasan_save_track+0x14/0x30 [ 271.086686][ T8807] mon_bin_open+0x207/0x470 [ 271.086708][ T8807] ? __pfx_mon_bin_open+0x10/0x10 [ 271.086729][ T8807] chrdev_open+0x234/0x6a0 [ 271.086751][ T8807] ? __pfx_apparmor_file_open+0x10/0x10 [ 271.086780][ T8807] ? __pfx_chrdev_open+0x10/0x10 [ 271.086803][ T8807] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 271.086832][ T8807] do_dentry_open+0x6d8/0x1660 [ 271.086853][ T8807] ? __pfx_chrdev_open+0x10/0x10 [ 271.086881][ T8807] vfs_open+0x82/0x3f0 [ 271.086910][ T8807] path_openat+0x208c/0x31a0 [ 271.086941][ T8807] ? __pfx_path_openat+0x10/0x10 [ 271.086973][ T8807] do_file_open+0x20e/0x430 [ 271.086997][ T8807] ? __pfx_do_file_open+0x10/0x10 [ 271.087037][ T8807] ? alloc_fd+0x476/0x790 [ 271.087060][ T8807] ? do_getname+0x191/0x390 [ 271.087095][ T8807] do_sys_openat2+0x10d/0x1e0 [ 271.087123][ T8807] ? __pfx_do_sys_openat2+0x10/0x10 [ 271.087151][ T8807] ? __fget_files+0x21f/0x3d0 [ 271.087177][ T8807] __x64_sys_openat+0x12d/0x210 [ 271.087205][ T8807] ? __pfx___x64_sys_openat+0x10/0x10 [ 271.087236][ T8807] ? rcu_is_watching+0x12/0xc0 [ 271.087261][ T8807] do_syscall_64+0x10b/0xf80 [ 271.087284][ T8807] ? clear_bhb_loop+0x40/0x90 [ 271.087305][ T8807] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 271.087324][ T8807] RIP: 0033:0x7f86e459cdd9 [ 271.087340][ T8807] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 271.087363][ T8807] RSP: 002b:00007f86e5462028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 271.087381][ T8807] RAX: ffffffffffffffda RBX: 00007f86e4815fa0 RCX: 00007f86e459cdd9 [ 271.087392][ T8807] RDX: 0000000000121200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 271.087403][ T8807] RBP: 00007f86e4632d69 R08: 0000000000000000 R09: 0000000000000000 [ 271.087413][ T8807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 271.087423][ T8807] R13: 00007f86e4816038 R14: 00007f86e4815fa0 R15: 00007ffe2bd90c38 [ 271.087446][ T8807] [ 272.226285][ T8810] netlink: 2468 bytes leftover after parsing attributes in process `syz.1.599'. [ 272.731638][ T8824] netlink: 146 bytes leftover after parsing attributes in process `syz.3.604'. [ 273.446958][ T8835] NFSD: Failed to start, no listeners configured. [ 275.145855][ T8860] ima: policy update failed [ 275.163655][ T29] audit: type=1802 audit(1843104595.340:6): pid=8860 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.608" res=0 errno=0 [ 275.424031][ T8890] FAULT_INJECTION: forcing a failure. [ 275.424031][ T8890] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 275.520867][ T8890] CPU: 0 UID: 0 PID: 8890 Comm: syz.3.612 Not tainted syzkaller #0 PREEMPT(full) [ 275.520893][ T8890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 275.520903][ T8890] Call Trace: [ 275.520910][ T8890] [ 275.520917][ T8890] dump_stack_lvl+0x100/0x190 [ 275.520943][ T8890] should_fail_ex.cold+0x5/0xa [ 275.520962][ T8890] ? prepare_alloc_pages+0x16d/0x5f0 [ 275.520988][ T8890] should_fail_alloc_page+0xeb/0x140 [ 275.521010][ T8890] prepare_alloc_pages+0x1f0/0x5f0 [ 275.521037][ T8890] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 275.521076][ T8890] ? stack_trace_save+0x8e/0xc0 [ 275.521100][ T8890] ? __pfx_stack_trace_save+0x10/0x10 [ 275.521126][ T8890] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 275.521160][ T8890] ? kasan_save_stack+0x3f/0x50 [ 275.521177][ T8890] ? kasan_save_stack+0x30/0x50 [ 275.521193][ T8890] ? kasan_save_track+0x14/0x30 [ 275.521209][ T8890] ? __kasan_kmalloc+0xaa/0xb0 [ 275.521230][ T8890] ? mon_bin_open+0x1a8/0x470 [ 275.521251][ T8890] ? chrdev_open+0x234/0x6a0 [ 275.521274][ T8890] ? __x64_sys_openat+0x12d/0x210 [ 275.521299][ T8890] ? do_syscall_64+0x10b/0xf80 [ 275.521322][ T8890] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.521345][ T8890] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 275.521374][ T8890] ? policy_nodemask+0xed/0x4f0 [ 275.521397][ T8890] alloc_pages_mpol+0x1fb/0x540 [ 275.521419][ T8890] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 275.521446][ T8890] alloc_pages_noprof+0x1a/0x160 [ 275.521470][ T8890] get_zeroed_page_noprof+0x18/0xb0 [ 275.521493][ T8890] mon_alloc_buff+0xce/0x1b0 [ 275.521514][ T8890] ? kasan_save_track+0x14/0x30 [ 275.521533][ T8890] mon_bin_open+0x207/0x470 [ 275.521556][ T8890] ? __pfx_mon_bin_open+0x10/0x10 [ 275.521587][ T8890] chrdev_open+0x234/0x6a0 [ 275.521610][ T8890] ? __pfx_apparmor_file_open+0x10/0x10 [ 275.521639][ T8890] ? __pfx_chrdev_open+0x10/0x10 [ 275.521663][ T8890] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 275.521693][ T8890] do_dentry_open+0x6d8/0x1660 [ 275.521714][ T8890] ? __pfx_chrdev_open+0x10/0x10 [ 275.521743][ T8890] vfs_open+0x82/0x3f0 [ 275.521771][ T8890] path_openat+0x208c/0x31a0 [ 275.521802][ T8890] ? __pfx_path_openat+0x10/0x10 [ 275.521836][ T8890] do_file_open+0x20e/0x430 [ 275.521871][ T8890] ? __pfx_do_file_open+0x10/0x10 [ 275.521910][ T8890] ? alloc_fd+0x476/0x790 [ 275.521935][ T8890] ? do_getname+0x191/0x390 [ 275.521964][ T8890] do_sys_openat2+0x10d/0x1e0 [ 275.521992][ T8890] ? __pfx_do_sys_openat2+0x10/0x10 [ 275.522022][ T8890] ? __fget_files+0x21f/0x3d0 [ 275.522049][ T8890] __x64_sys_openat+0x12d/0x210 [ 275.522077][ T8890] ? __pfx___x64_sys_openat+0x10/0x10 [ 275.522110][ T8890] ? rcu_is_watching+0x12/0xc0 [ 275.522134][ T8890] do_syscall_64+0x10b/0xf80 [ 275.522157][ T8890] ? clear_bhb_loop+0x40/0x90 [ 275.522179][ T8890] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.522197][ T8890] RIP: 0033:0x7f4b1819cdd9 [ 275.522213][ T8890] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 275.522230][ T8890] RSP: 002b:00007f4b190f4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 275.522248][ T8890] RAX: ffffffffffffffda RBX: 00007f4b18415fa0 RCX: 00007f4b1819cdd9 [ 275.522259][ T8890] RDX: 0000000000121200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 275.522270][ T8890] RBP: 00007f4b18232d69 R08: 0000000000000000 R09: 0000000000000000 [ 275.522280][ T8890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 275.522290][ T8890] R13: 00007f4b18416038 R14: 00007f4b18415fa0 R15: 00007ffd5c158eb8 [ 275.522313][ T8890] [ 276.501563][ T8898] netlink: 2468 bytes leftover after parsing attributes in process `syz.3.612'. [ 277.324470][ T8885] kexec: Could not allocate control_code_buffer [ 277.585997][ T29] audit: type=1400 audit(1843104597.760:7): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=8914 comm="syz.0.619" [ 277.799669][ T8923] Invalid ELF header magic: != ELF [ 279.561477][ T8953] FAULT_INJECTION: forcing a failure. [ 279.561477][ T8953] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 279.638006][ T8953] CPU: 0 UID: 0 PID: 8953 Comm: syz.2.625 Not tainted syzkaller #0 PREEMPT(full) [ 279.638034][ T8953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 279.638045][ T8953] Call Trace: [ 279.638051][ T8953] [ 279.638059][ T8953] dump_stack_lvl+0x100/0x190 [ 279.638085][ T8953] should_fail_ex.cold+0x5/0xa [ 279.638104][ T8953] ? prepare_alloc_pages+0x16d/0x5f0 [ 279.638129][ T8953] should_fail_alloc_page+0xeb/0x140 [ 279.638152][ T8953] prepare_alloc_pages+0x1f0/0x5f0 [ 279.638179][ T8953] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 279.638217][ T8953] ? stack_trace_save+0x8e/0xc0 [ 279.638242][ T8953] ? __pfx_stack_trace_save+0x10/0x10 [ 279.638267][ T8953] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 279.638300][ T8953] ? kasan_save_stack+0x3f/0x50 [ 279.638316][ T8953] ? kasan_save_stack+0x30/0x50 [ 279.638332][ T8953] ? kasan_save_track+0x14/0x30 [ 279.638348][ T8953] ? __kasan_kmalloc+0xaa/0xb0 [ 279.638364][ T8953] ? mon_bin_open+0x1a8/0x470 [ 279.638384][ T8953] ? chrdev_open+0x234/0x6a0 [ 279.638407][ T8953] ? __x64_sys_openat+0x12d/0x210 [ 279.638433][ T8953] ? do_syscall_64+0x10b/0xf80 [ 279.638456][ T8953] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 279.638479][ T8953] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 279.638507][ T8953] ? policy_nodemask+0xed/0x4f0 [ 279.638530][ T8953] alloc_pages_mpol+0x1fb/0x540 [ 279.638553][ T8953] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 279.638579][ T8953] alloc_pages_noprof+0x1a/0x160 [ 279.638604][ T8953] get_zeroed_page_noprof+0x18/0xb0 [ 279.638626][ T8953] mon_alloc_buff+0xce/0x1b0 [ 279.638647][ T8953] ? kasan_save_track+0x14/0x30 [ 279.638668][ T8953] mon_bin_open+0x207/0x470 [ 279.638690][ T8953] ? __pfx_mon_bin_open+0x10/0x10 [ 279.638711][ T8953] chrdev_open+0x234/0x6a0 [ 279.638733][ T8953] ? __pfx_apparmor_file_open+0x10/0x10 [ 279.638761][ T8953] ? __pfx_chrdev_open+0x10/0x10 [ 279.638784][ T8953] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 279.638822][ T8953] do_dentry_open+0x6d8/0x1660 [ 279.638843][ T8953] ? __pfx_chrdev_open+0x10/0x10 [ 279.638871][ T8953] vfs_open+0x82/0x3f0 [ 279.638899][ T8953] path_openat+0x208c/0x31a0 [ 279.638935][ T8953] ? __pfx_path_openat+0x10/0x10 [ 279.638967][ T8953] do_file_open+0x20e/0x430 [ 279.638991][ T8953] ? __pfx_do_file_open+0x10/0x10 [ 279.639049][ T8953] ? alloc_fd+0x476/0x790 [ 279.639073][ T8953] ? do_getname+0x191/0x390 [ 279.639102][ T8953] do_sys_openat2+0x10d/0x1e0 [ 279.639130][ T8953] ? __pfx_do_sys_openat2+0x10/0x10 [ 279.639159][ T8953] ? __fget_files+0x21f/0x3d0 [ 279.639185][ T8953] __x64_sys_openat+0x12d/0x210 [ 279.639214][ T8953] ? __pfx___x64_sys_openat+0x10/0x10 [ 279.639247][ T8953] ? rcu_is_watching+0x12/0xc0 [ 279.639272][ T8953] do_syscall_64+0x10b/0xf80 [ 279.639295][ T8953] ? clear_bhb_loop+0x40/0x90 [ 279.639316][ T8953] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 279.639334][ T8953] RIP: 0033:0x7fe56bd9cdd9 [ 279.639350][ T8953] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 279.639367][ T8953] RSP: 002b:00007fe569ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 279.639385][ T8953] RAX: ffffffffffffffda RBX: 00007fe56c015fa0 RCX: 00007fe56bd9cdd9 [ 279.639396][ T8953] RDX: 0000000000121200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 279.639407][ T8953] RBP: 00007fe56be32d69 R08: 0000000000000000 R09: 0000000000000000 [ 279.639417][ T8953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 279.639427][ T8953] R13: 00007fe56c016038 R14: 00007fe56c015fa0 R15: 00007ffecc88b868 [ 279.639450][ T8953] [ 280.410495][ T8964] futex_wake_op: syz.3.629 tries to shift op by -2048; fix this program [ 280.420017][ T8964] futex_wake_op: syz.3.629 tries to shift op by -2048; fix this program [ 280.433730][ T8964] 0x000000000001-0x000000020000 : "" [ 280.501253][ T8964] ftl_cs: FTL header corrupt! [ 281.392362][ T8986] netlink: 2468 bytes leftover after parsing attributes in process `syz.2.625'. [ 282.602449][ T9009] Invalid ELF header magic: != ELF [ 282.655163][ T8979] kexec: Could not allocate control_code_buffer [ 283.112826][ T9014] ovs_: entered promiscuous mode [ 284.041584][ T9041] FAULT_INJECTION: forcing a failure. [ 284.041584][ T9041] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 284.209957][ T9041] CPU: 0 UID: 0 PID: 9041 Comm: syz.3.641 Not tainted syzkaller #0 PREEMPT(full) [ 284.209984][ T9041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 284.209994][ T9041] Call Trace: [ 284.210000][ T9041] [ 284.210008][ T9041] dump_stack_lvl+0x100/0x190 [ 284.210033][ T9041] should_fail_ex.cold+0x5/0xa [ 284.210053][ T9041] ? prepare_alloc_pages+0x16d/0x5f0 [ 284.210078][ T9041] should_fail_alloc_page+0xeb/0x140 [ 284.210101][ T9041] prepare_alloc_pages+0x1f0/0x5f0 [ 284.210128][ T9041] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 284.210168][ T9041] ? stack_trace_save+0x8e/0xc0 [ 284.210192][ T9041] ? __pfx_stack_trace_save+0x10/0x10 [ 284.210218][ T9041] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 284.210251][ T9041] ? kasan_save_stack+0x3f/0x50 [ 284.210268][ T9041] ? kasan_save_stack+0x30/0x50 [ 284.210284][ T9041] ? kasan_save_track+0x14/0x30 [ 284.210300][ T9041] ? __kasan_kmalloc+0xaa/0xb0 [ 284.210315][ T9041] ? mon_bin_open+0x1a8/0x470 [ 284.210335][ T9041] ? chrdev_open+0x234/0x6a0 [ 284.210359][ T9041] ? __x64_sys_openat+0x12d/0x210 [ 284.210385][ T9041] ? do_syscall_64+0x10b/0xf80 [ 284.210407][ T9041] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 284.210431][ T9041] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 284.210458][ T9041] ? policy_nodemask+0xed/0x4f0 [ 284.210481][ T9041] alloc_pages_mpol+0x1fb/0x540 [ 284.210503][ T9041] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 284.210538][ T9041] alloc_pages_noprof+0x1a/0x160 [ 284.210562][ T9041] get_zeroed_page_noprof+0x18/0xb0 [ 284.210584][ T9041] mon_alloc_buff+0xce/0x1b0 [ 284.210604][ T9041] ? kasan_save_track+0x14/0x30 [ 284.210624][ T9041] mon_bin_open+0x207/0x470 [ 284.210648][ T9041] ? __pfx_mon_bin_open+0x10/0x10 [ 284.210669][ T9041] chrdev_open+0x234/0x6a0 [ 284.210691][ T9041] ? __pfx_apparmor_file_open+0x10/0x10 [ 284.210720][ T9041] ? __pfx_chrdev_open+0x10/0x10 [ 284.210744][ T9041] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 284.210772][ T9041] do_dentry_open+0x6d8/0x1660 [ 284.210793][ T9041] ? __pfx_chrdev_open+0x10/0x10 [ 284.210821][ T9041] vfs_open+0x82/0x3f0 [ 284.210855][ T9041] path_openat+0x208c/0x31a0 [ 284.210886][ T9041] ? __pfx_path_openat+0x10/0x10 [ 284.210917][ T9041] do_file_open+0x20e/0x430 [ 284.210941][ T9041] ? __pfx_do_file_open+0x10/0x10 [ 284.210980][ T9041] ? alloc_fd+0x476/0x790 [ 284.211004][ T9041] ? do_getname+0x191/0x390 [ 284.211032][ T9041] do_sys_openat2+0x10d/0x1e0 [ 284.211059][ T9041] ? __pfx_do_sys_openat2+0x10/0x10 [ 284.211088][ T9041] ? __fget_files+0x21f/0x3d0 [ 284.211113][ T9041] __x64_sys_openat+0x12d/0x210 [ 284.211141][ T9041] ? __pfx___x64_sys_openat+0x10/0x10 [ 284.211173][ T9041] ? rcu_is_watching+0x12/0xc0 [ 284.211198][ T9041] do_syscall_64+0x10b/0xf80 [ 284.211220][ T9041] ? clear_bhb_loop+0x40/0x90 [ 284.211241][ T9041] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 284.211259][ T9041] RIP: 0033:0x7f4b1819cdd9 [ 284.211275][ T9041] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 284.211292][ T9041] RSP: 002b:00007f4b190f4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 284.211310][ T9041] RAX: ffffffffffffffda RBX: 00007f4b18415fa0 RCX: 00007f4b1819cdd9 [ 284.211321][ T9041] RDX: 0000000000121200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 284.211332][ T9041] RBP: 00007f4b18232d69 R08: 0000000000000000 R09: 0000000000000000 [ 284.211342][ T9041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 284.211352][ T9041] R13: 00007f4b18416038 R14: 00007f4b18415fa0 R15: 00007ffd5c158eb8 [ 284.211375][ T9041] [ 285.284181][ T9048] netlink: 2468 bytes leftover after parsing attributes in process `syz.3.641'. [ 286.264109][ T9075] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input8 [ 287.134323][ T9068] kexec: Could not allocate control_code_buffer [ 287.335014][ T9102] Invalid ELF header magic: != ELF [ 288.110312][ T9113] FAULT_INJECTION: forcing a failure. [ 288.110312][ T9113] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 288.148921][ T9113] CPU: 0 UID: 0 PID: 9113 Comm: syz.1.657 Not tainted syzkaller #0 PREEMPT(full) [ 288.148949][ T9113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 288.148959][ T9113] Call Trace: [ 288.148967][ T9113] [ 288.148974][ T9113] dump_stack_lvl+0x100/0x190 [ 288.149000][ T9113] should_fail_ex.cold+0x5/0xa [ 288.149019][ T9113] ? prepare_alloc_pages+0x16d/0x5f0 [ 288.149045][ T9113] should_fail_alloc_page+0xeb/0x140 [ 288.149068][ T9113] prepare_alloc_pages+0x1f0/0x5f0 [ 288.149094][ T9113] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 288.149133][ T9113] ? stack_trace_save+0x8e/0xc0 [ 288.149157][ T9113] ? __pfx_stack_trace_save+0x10/0x10 [ 288.149183][ T9113] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 288.149216][ T9113] ? kasan_save_stack+0x3f/0x50 [ 288.149233][ T9113] ? kasan_save_stack+0x30/0x50 [ 288.149248][ T9113] ? kasan_save_track+0x14/0x30 [ 288.149264][ T9113] ? __kasan_kmalloc+0xaa/0xb0 [ 288.149280][ T9113] ? mon_bin_open+0x1a8/0x470 [ 288.149300][ T9113] ? chrdev_open+0x234/0x6a0 [ 288.149324][ T9113] ? __x64_sys_openat+0x12d/0x210 [ 288.149350][ T9113] ? do_syscall_64+0x10b/0xf80 [ 288.149373][ T9113] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 288.149396][ T9113] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 288.149424][ T9113] ? policy_nodemask+0xed/0x4f0 [ 288.149447][ T9113] alloc_pages_mpol+0x1fb/0x540 [ 288.149468][ T9113] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 288.149495][ T9113] alloc_pages_noprof+0x1a/0x160 [ 288.149520][ T9113] get_zeroed_page_noprof+0x18/0xb0 [ 288.149542][ T9113] mon_alloc_buff+0xce/0x1b0 [ 288.149563][ T9113] ? kasan_save_track+0x14/0x30 [ 288.149583][ T9113] mon_bin_open+0x207/0x470 [ 288.149605][ T9113] ? __pfx_mon_bin_open+0x10/0x10 [ 288.149626][ T9113] chrdev_open+0x234/0x6a0 [ 288.149648][ T9113] ? __pfx_apparmor_file_open+0x10/0x10 [ 288.149677][ T9113] ? __pfx_chrdev_open+0x10/0x10 [ 288.149700][ T9113] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 288.149735][ T9113] do_dentry_open+0x6d8/0x1660 [ 288.149757][ T9113] ? __pfx_chrdev_open+0x10/0x10 [ 288.149784][ T9113] vfs_open+0x82/0x3f0 [ 288.149818][ T9113] path_openat+0x208c/0x31a0 [ 288.149849][ T9113] ? __pfx_path_openat+0x10/0x10 [ 288.149881][ T9113] do_file_open+0x20e/0x430 [ 288.149906][ T9113] ? __pfx_do_file_open+0x10/0x10 [ 288.149946][ T9113] ? alloc_fd+0x476/0x790 [ 288.149970][ T9113] ? do_getname+0x191/0x390 [ 288.149999][ T9113] do_sys_openat2+0x10d/0x1e0 [ 288.150026][ T9113] ? __pfx_do_sys_openat2+0x10/0x10 [ 288.150062][ T9113] ? __fget_files+0x21f/0x3d0 [ 288.150088][ T9113] __x64_sys_openat+0x12d/0x210 [ 288.150116][ T9113] ? __pfx___x64_sys_openat+0x10/0x10 [ 288.150148][ T9113] ? rcu_is_watching+0x12/0xc0 [ 288.150173][ T9113] do_syscall_64+0x10b/0xf80 [ 288.150195][ T9113] ? clear_bhb_loop+0x40/0x90 [ 288.150217][ T9113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 288.150249][ T9113] RIP: 0033:0x7f86e459cdd9 [ 288.150266][ T9113] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 288.150284][ T9113] RSP: 002b:00007f86e5462028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 288.150303][ T9113] RAX: ffffffffffffffda RBX: 00007f86e4815fa0 RCX: 00007f86e459cdd9 [ 288.150315][ T9113] RDX: 0000000000121200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 288.150327][ T9113] RBP: 00007f86e4632d69 R08: 0000000000000000 R09: 0000000000000000 [ 288.150338][ T9113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 288.150350][ T9113] R13: 00007f86e4816038 R14: 00007f86e4815fa0 R15: 00007ffe2bd90c38 [ 288.150373][ T9113] [ 288.771810][ T9113] netlink: 2468 bytes leftover after parsing attributes in process `syz.1.657'. [ 289.023082][ T9121] random: crng reseeded on system resumption [ 290.713803][ T9154] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 291.422990][ T9150] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 292.179026][ T9176] FAULT_INJECTION: forcing a failure. [ 292.179026][ T9176] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 292.303899][ T9176] CPU: 0 UID: 0 PID: 9176 Comm: syz.3.669 Not tainted syzkaller #0 PREEMPT(full) [ 292.303928][ T9176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 292.303939][ T9176] Call Trace: [ 292.303946][ T9176] [ 292.303953][ T9176] dump_stack_lvl+0x100/0x190 [ 292.303979][ T9176] should_fail_ex.cold+0x5/0xa [ 292.304000][ T9176] ? prepare_alloc_pages+0x16d/0x5f0 [ 292.304028][ T9176] should_fail_alloc_page+0xeb/0x140 [ 292.304052][ T9176] prepare_alloc_pages+0x1f0/0x5f0 [ 292.304082][ T9176] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 292.304122][ T9176] ? stack_trace_save+0x8e/0xc0 [ 292.304147][ T9176] ? __pfx_stack_trace_save+0x10/0x10 [ 292.304252][ T9176] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 292.304292][ T9176] ? kasan_save_stack+0x3f/0x50 [ 292.304311][ T9176] ? kasan_save_stack+0x30/0x50 [ 292.304329][ T9176] ? kasan_save_track+0x14/0x30 [ 292.304351][ T9176] ? __kasan_kmalloc+0xaa/0xb0 [ 292.304368][ T9176] ? mon_bin_open+0x1a8/0x470 [ 292.304390][ T9176] ? chrdev_open+0x234/0x6a0 [ 292.304415][ T9176] ? __x64_sys_openat+0x12d/0x210 [ 292.304449][ T9176] ? do_syscall_64+0x10b/0xf80 [ 292.304474][ T9176] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 292.304499][ T9176] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 292.304528][ T9176] ? policy_nodemask+0xed/0x4f0 [ 292.304554][ T9176] alloc_pages_mpol+0x1fb/0x540 [ 292.304580][ T9176] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 292.304609][ T9176] alloc_pages_noprof+0x1a/0x160 [ 292.304635][ T9176] get_zeroed_page_noprof+0x18/0xb0 [ 292.304659][ T9176] mon_alloc_buff+0xce/0x1b0 [ 292.304682][ T9176] ? kasan_save_track+0x14/0x30 [ 292.304703][ T9176] mon_bin_open+0x207/0x470 [ 292.304726][ T9176] ? __pfx_mon_bin_open+0x10/0x10 [ 292.304749][ T9176] chrdev_open+0x234/0x6a0 [ 292.304772][ T9176] ? __pfx_apparmor_file_open+0x10/0x10 [ 292.304802][ T9176] ? __pfx_chrdev_open+0x10/0x10 [ 292.304827][ T9176] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 292.304858][ T9176] do_dentry_open+0x6d8/0x1660 [ 292.304881][ T9176] ? __pfx_chrdev_open+0x10/0x10 [ 292.304910][ T9176] vfs_open+0x82/0x3f0 [ 292.304940][ T9176] path_openat+0x208c/0x31a0 [ 292.304974][ T9176] ? __pfx_path_openat+0x10/0x10 [ 292.305006][ T9176] do_file_open+0x20e/0x430 [ 292.305033][ T9176] ? __pfx_do_file_open+0x10/0x10 [ 292.305074][ T9176] ? alloc_fd+0x476/0x790 [ 292.305100][ T9176] ? do_getname+0x191/0x390 [ 292.305129][ T9176] do_sys_openat2+0x10d/0x1e0 [ 292.305157][ T9176] ? __pfx_do_sys_openat2+0x10/0x10 [ 292.305187][ T9176] ? __fget_files+0x21f/0x3d0 [ 292.305215][ T9176] __x64_sys_openat+0x12d/0x210 [ 292.305243][ T9176] ? __pfx___x64_sys_openat+0x10/0x10 [ 292.305276][ T9176] ? rcu_is_watching+0x12/0xc0 [ 292.305302][ T9176] do_syscall_64+0x10b/0xf80 [ 292.305325][ T9176] ? clear_bhb_loop+0x40/0x90 [ 292.305348][ T9176] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 292.305367][ T9176] RIP: 0033:0x7f4b1819cdd9 [ 292.305386][ T9176] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 292.305403][ T9176] RSP: 002b:00007f4b190f4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 292.305423][ T9176] RAX: ffffffffffffffda RBX: 00007f4b18415fa0 RCX: 00007f4b1819cdd9 [ 292.305435][ T9176] RDX: 0000000000121200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 292.305457][ T9176] RBP: 00007f4b18232d69 R08: 0000000000000000 R09: 0000000000000000 [ 292.305467][ T9176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 292.305478][ T9176] R13: 00007f4b18416038 R14: 00007f4b18415fa0 R15: 00007ffd5c158eb8 [ 292.305502][ T9176] [ 293.093910][ T9179] netlink: 2468 bytes leftover after parsing attributes in process `syz.3.669'. [ 293.477091][ T9174] Process accounting resumed [ 294.345729][ T9167] kexec: Could not allocate control_code_buffer [ 295.614939][ T9221] Invalid ELF header magic: != ELF [ 296.163949][ T9238] FAULT_INJECTION: forcing a failure. [ 296.163949][ T9238] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 296.256095][ T9238] CPU: 0 UID: 0 PID: 9238 Comm: syz.2.681 Not tainted syzkaller #0 PREEMPT(full) [ 296.256124][ T9238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 296.256141][ T9238] Call Trace: [ 296.256147][ T9238] [ 296.256154][ T9238] dump_stack_lvl+0x100/0x190 [ 296.256180][ T9238] should_fail_ex.cold+0x5/0xa [ 296.256201][ T9238] ? prepare_alloc_pages+0x16d/0x5f0 [ 296.256227][ T9238] should_fail_alloc_page+0xeb/0x140 [ 296.256252][ T9238] prepare_alloc_pages+0x1f0/0x5f0 [ 296.256293][ T9238] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 296.256406][ T9238] ? stack_trace_save+0x8e/0xc0 [ 296.256449][ T9238] ? __pfx_stack_trace_save+0x10/0x10 [ 296.256476][ T9238] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 296.256511][ T9238] ? kasan_save_stack+0x3f/0x50 [ 296.256528][ T9238] ? kasan_save_stack+0x30/0x50 [ 296.256545][ T9238] ? kasan_save_track+0x14/0x30 [ 296.256562][ T9238] ? __kasan_kmalloc+0xaa/0xb0 [ 296.256579][ T9238] ? mon_bin_open+0x1a8/0x470 [ 296.256599][ T9238] ? chrdev_open+0x234/0x6a0 [ 296.256623][ T9238] ? __x64_sys_openat+0x12d/0x210 [ 296.256655][ T9238] ? do_syscall_64+0x10b/0xf80 [ 296.256690][ T9238] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 296.256719][ T9238] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 296.256752][ T9238] ? policy_nodemask+0xed/0x4f0 [ 296.256776][ T9238] alloc_pages_mpol+0x1fb/0x540 [ 296.256802][ T9238] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 296.256841][ T9238] alloc_pages_noprof+0x1a/0x160 [ 296.256867][ T9238] get_zeroed_page_noprof+0x18/0xb0 [ 296.256892][ T9238] mon_alloc_buff+0xce/0x1b0 [ 296.256914][ T9238] ? kasan_save_track+0x14/0x30 [ 296.256933][ T9238] mon_bin_open+0x207/0x470 [ 296.256956][ T9238] ? __pfx_mon_bin_open+0x10/0x10 [ 296.256978][ T9238] chrdev_open+0x234/0x6a0 [ 296.257001][ T9238] ? __pfx_apparmor_file_open+0x10/0x10 [ 296.257031][ T9238] ? __pfx_chrdev_open+0x10/0x10 [ 296.257055][ T9238] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 296.257094][ T9238] do_dentry_open+0x6d8/0x1660 [ 296.257120][ T9238] ? __pfx_chrdev_open+0x10/0x10 [ 296.257152][ T9238] vfs_open+0x82/0x3f0 [ 296.257183][ T9238] path_openat+0x208c/0x31a0 [ 296.257217][ T9238] ? __pfx_path_openat+0x10/0x10 [ 296.257248][ T9238] do_file_open+0x20e/0x430 [ 296.257274][ T9238] ? __pfx_do_file_open+0x10/0x10 [ 296.257318][ T9238] ? alloc_fd+0x476/0x790 [ 296.257344][ T9238] ? do_getname+0x191/0x390 [ 296.257374][ T9238] do_sys_openat2+0x10d/0x1e0 [ 296.257403][ T9238] ? __pfx_do_sys_openat2+0x10/0x10 [ 296.257441][ T9238] ? __fget_files+0x21f/0x3d0 [ 296.257467][ T9238] __x64_sys_openat+0x12d/0x210 [ 296.257496][ T9238] ? __pfx___x64_sys_openat+0x10/0x10 [ 296.257529][ T9238] ? rcu_is_watching+0x12/0xc0 [ 296.257554][ T9238] do_syscall_64+0x10b/0xf80 [ 296.257579][ T9238] ? clear_bhb_loop+0x40/0x90 [ 296.257602][ T9238] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 296.257621][ T9238] RIP: 0033:0x7fe56bd9cdd9 [ 296.257639][ T9238] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 296.257658][ T9238] RSP: 002b:00007fe569ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 296.257680][ T9238] RAX: ffffffffffffffda RBX: 00007fe56c015fa0 RCX: 00007fe56bd9cdd9 [ 296.257693][ T9238] RDX: 0000000000121200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 296.257705][ T9238] RBP: 00007fe56be32d69 R08: 0000000000000000 R09: 0000000000000000 [ 296.257716][ T9238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 296.257727][ T9238] R13: 00007fe56c016038 R14: 00007fe56c015fa0 R15: 00007ffecc88b868 [ 296.257751][ T9238] [ 297.827384][ T9238] netlink: 2468 bytes leftover after parsing attributes in process `syz.2.681'. [ 298.204464][ T9237] Process accounting paused [ 299.759301][ T9269] kexec: Could not allocate control_code_buffer [ 299.816132][ T9292] Invalid ELF header magic: != ELF [ 300.835455][ T9310] FAULT_INJECTION: forcing a failure. [ 300.835455][ T9310] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 300.990488][ T9310] CPU: 0 UID: 0 PID: 9310 Comm: syz.3.697 Not tainted syzkaller #0 PREEMPT(full) [ 300.990515][ T9310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 300.990526][ T9310] Call Trace: [ 300.990535][ T9310] [ 300.990543][ T9310] dump_stack_lvl+0x100/0x190 [ 300.990568][ T9310] should_fail_ex.cold+0x5/0xa [ 300.990589][ T9310] ? prepare_alloc_pages+0x16d/0x5f0 [ 300.990646][ T9310] should_fail_alloc_page+0xeb/0x140 [ 300.990671][ T9310] prepare_alloc_pages+0x1f0/0x5f0 [ 300.990705][ T9310] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 300.990745][ T9310] ? stack_trace_save+0x8e/0xc0 [ 300.990770][ T9310] ? __pfx_stack_trace_save+0x10/0x10 [ 300.990796][ T9310] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 300.990834][ T9310] ? kasan_save_stack+0x3f/0x50 [ 300.990918][ T9310] ? kasan_save_stack+0x30/0x50 [ 300.990935][ T9310] ? kasan_save_track+0x14/0x30 [ 300.990953][ T9310] ? __kasan_kmalloc+0xaa/0xb0 [ 300.990969][ T9310] ? mon_bin_open+0x1a8/0x470 [ 300.990991][ T9310] ? chrdev_open+0x234/0x6a0 [ 300.991016][ T9310] ? __x64_sys_openat+0x12d/0x210 [ 300.991043][ T9310] ? do_syscall_64+0x10b/0xf80 [ 300.991067][ T9310] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 300.991091][ T9310] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 300.991119][ T9310] ? policy_nodemask+0xed/0x4f0 [ 300.991141][ T9310] alloc_pages_mpol+0x1fb/0x540 [ 300.991164][ T9310] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 300.991191][ T9310] alloc_pages_noprof+0x1a/0x160 [ 300.991216][ T9310] get_zeroed_page_noprof+0x18/0xb0 [ 300.991238][ T9310] mon_alloc_buff+0xce/0x1b0 [ 300.991258][ T9310] ? kasan_save_track+0x14/0x30 [ 300.991278][ T9310] mon_bin_open+0x207/0x470 [ 300.991299][ T9310] ? __pfx_mon_bin_open+0x10/0x10 [ 300.991335][ T9310] chrdev_open+0x234/0x6a0 [ 300.991363][ T9310] ? __pfx_apparmor_file_open+0x10/0x10 [ 300.991393][ T9310] ? __pfx_chrdev_open+0x10/0x10 [ 300.991418][ T9310] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 300.991447][ T9310] do_dentry_open+0x6d8/0x1660 [ 300.991470][ T9310] ? __pfx_chrdev_open+0x10/0x10 [ 300.991499][ T9310] vfs_open+0x82/0x3f0 [ 300.991528][ T9310] path_openat+0x208c/0x31a0 [ 300.991560][ T9310] ? __pfx_path_openat+0x10/0x10 [ 300.991591][ T9310] do_file_open+0x20e/0x430 [ 300.991622][ T9310] ? __pfx_do_file_open+0x10/0x10 [ 300.991666][ T9310] ? alloc_fd+0x476/0x790 [ 300.991691][ T9310] ? do_getname+0x191/0x390 [ 300.991719][ T9310] do_sys_openat2+0x10d/0x1e0 [ 300.991747][ T9310] ? __pfx_do_sys_openat2+0x10/0x10 [ 300.991776][ T9310] ? __fget_files+0x21f/0x3d0 [ 300.991802][ T9310] __x64_sys_openat+0x12d/0x210 [ 300.991830][ T9310] ? __pfx___x64_sys_openat+0x10/0x10 [ 300.991862][ T9310] ? rcu_is_watching+0x12/0xc0 [ 300.991887][ T9310] do_syscall_64+0x10b/0xf80 [ 300.991910][ T9310] ? clear_bhb_loop+0x40/0x90 [ 300.991932][ T9310] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 300.991950][ T9310] RIP: 0033:0x7f4b1819cdd9 [ 300.991968][ T9310] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 300.991985][ T9310] RSP: 002b:00007f4b190f4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 300.992003][ T9310] RAX: ffffffffffffffda RBX: 00007f4b18415fa0 RCX: 00007f4b1819cdd9 [ 300.992015][ T9310] RDX: 0000000000121200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 300.992026][ T9310] RBP: 00007f4b18232d69 R08: 0000000000000000 R09: 0000000000000000 [ 300.992037][ T9310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 300.992048][ T9310] R13: 00007f4b18416038 R14: 00007f4b18415fa0 R15: 00007ffd5c158eb8 [ 300.992071][ T9310] [ 302.309956][ T9315] netlink: 2468 bytes leftover after parsing attributes in process `syz.3.697'. [ 304.177255][ T9354] netlink: 28 bytes leftover after parsing attributes in process `syz.2.706'. [ 304.212719][ T9350] Invalid ELF header magic: != ELF [ 304.330372][ T9357] netlink: 16 bytes leftover after parsing attributes in process `syz.2.706'. [ 304.376304][ T9355] netlink: 16 bytes leftover after parsing attributes in process `syz.2.706'. [ 304.418932][ T9354] FAULT_INJECTION: forcing a failure. [ 304.418932][ T9354] name fail_futex, interval 1, probability 0, space 0, times 1 [ 304.479907][ T9354] CPU: 0 UID: 0 PID: 9354 Comm: syz.2.706 Not tainted syzkaller #0 PREEMPT(full) [ 304.479933][ T9354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 304.479943][ T9354] Call Trace: [ 304.479949][ T9354] [ 304.479956][ T9354] dump_stack_lvl+0x100/0x190 [ 304.479980][ T9354] should_fail_ex.cold+0x5/0xa [ 304.480003][ T9354] get_futex_key+0xf78/0x1510 [ 304.480024][ T9354] ? __pfx_get_futex_key+0x10/0x10 [ 304.480041][ T9354] ? lock_acquire+0x1b1/0x370 [ 304.480063][ T9354] futex_wake+0xea/0x530 [ 304.480088][ T9354] ? __pfx_futex_wake+0x10/0x10 [ 304.480110][ T9354] ? exit_mm_release+0x19/0x30 [ 304.480142][ T9354] do_futex+0x32b/0x350 [ 304.480162][ T9354] ? __pfx_do_futex+0x10/0x10 [ 304.480180][ T9354] ? __might_fault+0xc5/0x140 [ 304.480211][ T9354] mm_release+0x24a/0x2f0 [ 304.480234][ T9354] do_exit+0x707/0x2a60 [ 304.480264][ T9354] ? __pfx_do_exit+0x10/0x10 [ 304.480291][ T9354] ? do_raw_spin_lock+0x128/0x260 [ 304.480310][ T9354] ? find_held_lock+0x2b/0x80 [ 304.480332][ T9354] ? get_signal+0x7e0/0x21e0 [ 304.480359][ T9354] do_group_exit+0xd5/0x2a0 [ 304.480388][ T9354] get_signal+0x1ec7/0x21e0 [ 304.480418][ T9354] ? __pfx_get_signal+0x10/0x10 [ 304.480446][ T9354] arch_do_signal_or_restart+0x91/0x770 [ 304.480475][ T9354] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 304.480507][ T9354] ? xfd_validate_state+0x129/0x190 [ 304.480526][ T9354] ? rcu_is_watching+0x12/0xc0 [ 304.480550][ T9354] exit_to_user_mode_loop+0x86/0x4a0 [ 304.480567][ T9354] ? do_syscall_64+0x519/0xf80 [ 304.480599][ T9354] do_syscall_64+0x6f2/0xf80 [ 304.480622][ T9354] ? clear_bhb_loop+0x40/0x90 [ 304.480643][ T9354] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 304.480662][ T9354] RIP: 0033:0x7fe56bd9cdd9 [ 304.480677][ T9354] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 304.480694][ T9354] RSP: 002b:00007fe569ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 304.480712][ T9354] RAX: 0000000000000002 RBX: 00007fe56c015fa0 RCX: 00007fe56bd9cdd9 [ 304.480723][ T9354] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000007 [ 304.480733][ T9354] RBP: 00007fe56be32d69 R08: 0000000000000000 R09: 0000000000000000 [ 304.480744][ T9354] R10: 0000000000200008 R11: 0000000000000246 R12: 0000000000000000 [ 304.480754][ T9354] R13: 00007fe56c016038 R14: 00007fe56c015fa0 R15: 00007ffecc88b868 [ 304.480775][ T9354] [ 305.327579][ T9363] FAULT_INJECTION: forcing a failure. [ 305.327579][ T9363] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 305.363771][ T9363] CPU: 0 UID: 0 PID: 9363 Comm: syz.2.707 Not tainted syzkaller #0 PREEMPT(full) [ 305.363797][ T9363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 305.363808][ T9363] Call Trace: [ 305.363814][ T9363] [ 305.363821][ T9363] dump_stack_lvl+0x100/0x190 [ 305.363846][ T9363] should_fail_ex.cold+0x5/0xa [ 305.363870][ T9363] _copy_to_user+0x32/0xd0 [ 305.363889][ T9363] simple_read_from_buffer+0xcb/0x170 [ 305.363913][ T9363] proc_fail_nth_read+0x1af/0x230 [ 305.364257][ T9363] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 305.364298][ T9363] ? rw_verify_area+0xce/0x6d0 [ 305.364317][ T9363] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 305.364348][ T9363] vfs_read+0x1e4/0xb30 [ 305.364372][ T9363] ? __pfx_vfs_read+0x10/0x10 [ 305.364391][ T9363] ? __fget_files+0x215/0x3d0 [ 305.364418][ T9363] ? __fget_files+0x21f/0x3d0 [ 305.364444][ T9363] ksys_read+0x12a/0x250 [ 305.364464][ T9363] ? __pfx_ksys_read+0x10/0x10 [ 305.364486][ T9363] ? rcu_is_watching+0x12/0xc0 [ 305.364511][ T9363] do_syscall_64+0x10b/0xf80 [ 305.364537][ T9363] ? clear_bhb_loop+0x40/0x90 [ 305.364560][ T9363] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 305.364608][ T9363] RIP: 0033:0x7fe56bd5d60e [ 305.364626][ T9363] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 305.364723][ T9363] RSP: 002b:00007fe569ff5fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 305.364741][ T9363] RAX: ffffffffffffffda RBX: 00007fe569ff66c0 RCX: 00007fe56bd5d60e [ 305.364753][ T9363] RDX: 000000000000000f RSI: 00007fe569ff60a0 RDI: 0000000000000005 [ 305.364763][ T9363] RBP: 00007fe569ff6090 R08: 0000000000000000 R09: 0000000000000000 [ 305.364774][ T9363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 305.364783][ T9363] R13: 00007fe56c016038 R14: 00007fe56c015fa0 R15: 00007ffecc88b868 [ 305.364813][ T9363] [ 307.164698][ T9371] FAULT_INJECTION: forcing a failure. [ 307.164698][ T9371] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 307.265037][ T9371] CPU: 0 UID: 0 PID: 9371 Comm: syz.2.710 Not tainted syzkaller #0 PREEMPT(full) [ 307.265065][ T9371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 307.265077][ T9371] Call Trace: [ 307.265083][ T9371] [ 307.265091][ T9371] dump_stack_lvl+0x100/0x190 [ 307.265118][ T9371] should_fail_ex.cold+0x5/0xa [ 307.265138][ T9371] ? prepare_alloc_pages+0x16d/0x5f0 [ 307.265163][ T9371] should_fail_alloc_page+0xeb/0x140 [ 307.265186][ T9371] prepare_alloc_pages+0x1f0/0x5f0 [ 307.265213][ T9371] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 307.265260][ T9371] ? stack_trace_save+0x8e/0xc0 [ 307.265285][ T9371] ? __pfx_stack_trace_save+0x10/0x10 [ 307.265319][ T9371] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 307.265353][ T9371] ? kasan_save_stack+0x3f/0x50 [ 307.265370][ T9371] ? kasan_save_stack+0x30/0x50 [ 307.265387][ T9371] ? kasan_save_track+0x14/0x30 [ 307.265404][ T9371] ? __kasan_kmalloc+0xaa/0xb0 [ 307.265420][ T9371] ? mon_bin_open+0x1a8/0x470 [ 307.265443][ T9371] ? chrdev_open+0x234/0x6a0 [ 307.265468][ T9371] ? __x64_sys_openat+0x12d/0x210 [ 307.265495][ T9371] ? do_syscall_64+0x10b/0xf80 [ 307.265517][ T9371] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 307.265541][ T9371] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 307.265569][ T9371] ? policy_nodemask+0xed/0x4f0 [ 307.265591][ T9371] alloc_pages_mpol+0x1fb/0x540 [ 307.265614][ T9371] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 307.265641][ T9371] alloc_pages_noprof+0x1a/0x160 [ 307.265665][ T9371] get_zeroed_page_noprof+0x18/0xb0 [ 307.265687][ T9371] mon_alloc_buff+0xce/0x1b0 [ 307.265708][ T9371] ? kasan_save_track+0x14/0x30 [ 307.265728][ T9371] mon_bin_open+0x207/0x470 [ 307.265750][ T9371] ? __pfx_mon_bin_open+0x10/0x10 [ 307.265771][ T9371] chrdev_open+0x234/0x6a0 [ 307.265793][ T9371] ? __pfx_apparmor_file_open+0x10/0x10 [ 307.265822][ T9371] ? __pfx_chrdev_open+0x10/0x10 [ 307.265846][ T9371] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 307.265875][ T9371] do_dentry_open+0x6d8/0x1660 [ 307.265897][ T9371] ? __pfx_chrdev_open+0x10/0x10 [ 307.265925][ T9371] vfs_open+0x82/0x3f0 [ 307.265954][ T9371] path_openat+0x208c/0x31a0 [ 307.265985][ T9371] ? __pfx_path_openat+0x10/0x10 [ 307.266017][ T9371] do_file_open+0x20e/0x430 [ 307.266041][ T9371] ? __pfx_do_file_open+0x10/0x10 [ 307.266081][ T9371] ? alloc_fd+0x476/0x790 [ 307.266105][ T9371] ? do_getname+0x191/0x390 [ 307.266133][ T9371] do_sys_openat2+0x10d/0x1e0 [ 307.266160][ T9371] ? __pfx_do_sys_openat2+0x10/0x10 [ 307.266189][ T9371] ? __fget_files+0x21f/0x3d0 [ 307.266214][ T9371] __x64_sys_openat+0x12d/0x210 [ 307.266242][ T9371] ? __pfx___x64_sys_openat+0x10/0x10 [ 307.266274][ T9371] ? rcu_is_watching+0x12/0xc0 [ 307.266306][ T9371] do_syscall_64+0x10b/0xf80 [ 307.266329][ T9371] ? clear_bhb_loop+0x40/0x90 [ 307.266352][ T9371] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 307.266377][ T9371] RIP: 0033:0x7fe56bd9cdd9 [ 307.266393][ T9371] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 307.266413][ T9371] RSP: 002b:00007fe569ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 307.266432][ T9371] RAX: ffffffffffffffda RBX: 00007fe56c015fa0 RCX: 00007fe56bd9cdd9 [ 307.266443][ T9371] RDX: 0000000000121200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 307.266454][ T9371] RBP: 00007fe56be32d69 R08: 0000000000000000 R09: 0000000000000000 [ 307.266465][ T9371] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 307.266475][ T9371] R13: 00007fe56c016038 R14: 00007fe56c015fa0 R15: 00007ffecc88b868 [ 307.266498][ T9371] [ 308.446622][ T9348] kexec: Could not allocate control_code_buffer [ 309.401570][ T9393] netlink: 4 bytes leftover after parsing attributes in process `syz.3.716'. [ 309.667341][ T9371] netlink: 2468 bytes leftover after parsing attributes in process `syz.2.710'. [ 310.704805][ T9417] Invalid ELF header magic: != ELF [ 312.294900][ T9424] kexec: Could not allocate control_code_buffer [ 313.610606][ T9446] FAULT_INJECTION: forcing a failure. [ 313.610606][ T9446] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 313.722279][ T9446] CPU: 0 UID: 0 PID: 9446 Comm: syz.1.728 Not tainted syzkaller #0 PREEMPT(full) [ 313.722310][ T9446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 313.722321][ T9446] Call Trace: [ 313.722327][ T9446] [ 313.722336][ T9446] dump_stack_lvl+0x100/0x190 [ 313.722361][ T9446] should_fail_ex.cold+0x5/0xa [ 313.722382][ T9446] ? prepare_alloc_pages+0x16d/0x5f0 [ 313.722410][ T9446] should_fail_alloc_page+0xeb/0x140 [ 313.722433][ T9446] prepare_alloc_pages+0x1f0/0x5f0 [ 313.722460][ T9446] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 313.722499][ T9446] ? stack_trace_save+0x8e/0xc0 [ 313.722524][ T9446] ? __pfx_stack_trace_save+0x10/0x10 [ 313.722559][ T9446] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 313.722593][ T9446] ? kasan_save_stack+0x3f/0x50 [ 313.722610][ T9446] ? kasan_save_stack+0x30/0x50 [ 313.722626][ T9446] ? kasan_save_track+0x14/0x30 [ 313.722643][ T9446] ? __kasan_kmalloc+0xaa/0xb0 [ 313.722660][ T9446] ? mon_bin_open+0x1a8/0x470 [ 313.722681][ T9446] ? chrdev_open+0x234/0x6a0 [ 313.722706][ T9446] ? __x64_sys_openat+0x12d/0x210 [ 313.722732][ T9446] ? do_syscall_64+0x10b/0xf80 [ 313.722756][ T9446] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 313.722780][ T9446] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 313.722807][ T9446] ? policy_nodemask+0xed/0x4f0 [ 313.722830][ T9446] alloc_pages_mpol+0x1fb/0x540 [ 313.722852][ T9446] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 313.722880][ T9446] alloc_pages_noprof+0x1a/0x160 [ 313.722904][ T9446] get_zeroed_page_noprof+0x18/0xb0 [ 313.722926][ T9446] mon_alloc_buff+0xce/0x1b0 [ 313.722947][ T9446] ? kasan_save_track+0x14/0x30 [ 313.722966][ T9446] mon_bin_open+0x207/0x470 [ 313.722989][ T9446] ? __pfx_mon_bin_open+0x10/0x10 [ 313.723195][ T9446] chrdev_open+0x234/0x6a0 [ 313.723221][ T9446] ? __pfx_apparmor_file_open+0x10/0x10 [ 313.723250][ T9446] ? __pfx_chrdev_open+0x10/0x10 [ 313.723275][ T9446] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 313.723308][ T9446] do_dentry_open+0x6d8/0x1660 [ 313.723383][ T9446] ? __pfx_chrdev_open+0x10/0x10 [ 313.723433][ T9446] vfs_open+0x82/0x3f0 [ 313.723464][ T9446] path_openat+0x208c/0x31a0 [ 313.723496][ T9446] ? __pfx_path_openat+0x10/0x10 [ 313.723529][ T9446] do_file_open+0x20e/0x430 [ 313.723557][ T9446] ? __pfx_do_file_open+0x10/0x10 [ 313.723597][ T9446] ? alloc_fd+0x476/0x790 [ 313.723621][ T9446] ? do_getname+0x191/0x390 [ 313.723650][ T9446] do_sys_openat2+0x10d/0x1e0 [ 313.723681][ T9446] ? __pfx_do_sys_openat2+0x10/0x10 [ 313.723713][ T9446] ? __fget_files+0x21f/0x3d0 [ 313.723741][ T9446] __x64_sys_openat+0x12d/0x210 [ 313.723772][ T9446] ? __pfx___x64_sys_openat+0x10/0x10 [ 313.723806][ T9446] ? rcu_is_watching+0x12/0xc0 [ 313.723832][ T9446] do_syscall_64+0x10b/0xf80 [ 313.723857][ T9446] ? clear_bhb_loop+0x40/0x90 [ 313.723879][ T9446] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 313.723900][ T9446] RIP: 0033:0x7f86e459cdd9 [ 313.723918][ T9446] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 313.723936][ T9446] RSP: 002b:00007f86e5462028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 313.723956][ T9446] RAX: ffffffffffffffda RBX: 00007f86e4815fa0 RCX: 00007f86e459cdd9 [ 313.723969][ T9446] RDX: 0000000000121200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 313.723981][ T9446] RBP: 00007f86e4632d69 R08: 0000000000000000 R09: 0000000000000000 [ 313.723992][ T9446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 313.724004][ T9446] R13: 00007f86e4816038 R14: 00007f86e4815fa0 R15: 00007ffe2bd90c38 [ 313.724028][ T9446] [ 314.693421][ T9446] netlink: 2468 bytes leftover after parsing attributes in process `syz.1.728'. [ 314.729309][ T9454] futex_wake_op: syz.2.729 tries to shift op by -2048; fix this program [ 317.331212][ T1317] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.341873][ T1317] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.366289][ T9504] FAULT_INJECTION: forcing a failure. [ 317.366289][ T9504] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 317.412971][ T9502] Invalid ELF header magic: != ELF [ 317.463404][ T9504] CPU: 0 UID: 0 PID: 9504 Comm: syz.0.739 Not tainted syzkaller #0 PREEMPT(full) [ 317.463431][ T9504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 317.463442][ T9504] Call Trace: [ 317.463449][ T9504] [ 317.463456][ T9504] dump_stack_lvl+0x100/0x190 [ 317.463481][ T9504] should_fail_ex.cold+0x5/0xa [ 317.463501][ T9504] ? prepare_alloc_pages+0x16d/0x5f0 [ 317.463526][ T9504] should_fail_alloc_page+0xeb/0x140 [ 317.463550][ T9504] prepare_alloc_pages+0x1f0/0x5f0 [ 317.463577][ T9504] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 317.463617][ T9504] ? stack_trace_save+0x8e/0xc0 [ 317.463642][ T9504] ? __pfx_stack_trace_save+0x10/0x10 [ 317.463669][ T9504] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 317.463703][ T9504] ? kasan_save_stack+0x3f/0x50 [ 317.463720][ T9504] ? kasan_save_stack+0x30/0x50 [ 317.463736][ T9504] ? kasan_save_track+0x14/0x30 [ 317.463752][ T9504] ? __kasan_kmalloc+0xaa/0xb0 [ 317.463768][ T9504] ? mon_bin_open+0x1a8/0x470 [ 317.463788][ T9504] ? chrdev_open+0x234/0x6a0 [ 317.463812][ T9504] ? __x64_sys_openat+0x12d/0x210 [ 317.463838][ T9504] ? do_syscall_64+0x10b/0xf80 [ 317.463861][ T9504] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 317.463891][ T9504] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 317.463923][ T9504] ? policy_nodemask+0xed/0x4f0 [ 317.463945][ T9504] alloc_pages_mpol+0x1fb/0x540 [ 317.463968][ T9504] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 317.463995][ T9504] alloc_pages_noprof+0x1a/0x160 [ 317.464020][ T9504] get_zeroed_page_noprof+0x18/0xb0 [ 317.464042][ T9504] mon_alloc_buff+0xce/0x1b0 [ 317.464062][ T9504] ? kasan_save_track+0x14/0x30 [ 317.464082][ T9504] mon_bin_open+0x207/0x470 [ 317.464104][ T9504] ? __pfx_mon_bin_open+0x10/0x10 [ 317.464126][ T9504] chrdev_open+0x234/0x6a0 [ 317.464147][ T9504] ? __pfx_apparmor_file_open+0x10/0x10 [ 317.464176][ T9504] ? __pfx_chrdev_open+0x10/0x10 [ 317.464204][ T9504] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 317.464234][ T9504] do_dentry_open+0x6d8/0x1660 [ 317.464264][ T9504] ? __pfx_chrdev_open+0x10/0x10 [ 317.464292][ T9504] vfs_open+0x82/0x3f0 [ 317.464321][ T9504] path_openat+0x208c/0x31a0 [ 317.464352][ T9504] ? __pfx_path_openat+0x10/0x10 [ 317.464383][ T9504] do_file_open+0x20e/0x430 [ 317.464408][ T9504] ? __pfx_do_file_open+0x10/0x10 [ 317.464450][ T9504] ? alloc_fd+0x476/0x790 [ 317.464475][ T9504] ? do_getname+0x191/0x390 [ 317.464504][ T9504] do_sys_openat2+0x10d/0x1e0 [ 317.464531][ T9504] ? __pfx_do_sys_openat2+0x10/0x10 [ 317.464565][ T9504] ? __fget_files+0x21f/0x3d0 [ 317.464591][ T9504] __x64_sys_openat+0x12d/0x210 [ 317.464619][ T9504] ? __pfx___x64_sys_openat+0x10/0x10 [ 317.464651][ T9504] ? rcu_is_watching+0x12/0xc0 [ 317.464675][ T9504] do_syscall_64+0x10b/0xf80 [ 317.464698][ T9504] ? clear_bhb_loop+0x40/0x90 [ 317.464720][ T9504] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 317.464738][ T9504] RIP: 0033:0x7f09b439cdd9 [ 317.464754][ T9504] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 317.464772][ T9504] RSP: 002b:00007f09b5265028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 317.464790][ T9504] RAX: ffffffffffffffda RBX: 00007f09b4615fa0 RCX: 00007f09b439cdd9 [ 317.464802][ T9504] RDX: 0000000000121200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 317.464813][ T9504] RBP: 00007f09b4432d69 R08: 0000000000000000 R09: 0000000000000000 [ 317.464824][ T9504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 317.464834][ T9504] R13: 00007f09b4616038 R14: 00007f09b4615fa0 R15: 00007ffedbf568e8 [ 317.464857][ T9504] [ 318.298360][ T9504] netlink: 2468 bytes leftover after parsing attributes in process `syz.0.739'. [ 318.354570][ T9516] netlink: 8 bytes leftover after parsing attributes in process `syz.3.741'. [ 318.918642][ T9481] kexec: Could not allocate control_code_buffer [ 320.645823][ T9557] FAULT_INJECTION: forcing a failure. [ 320.645823][ T9557] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 320.740051][ T9557] CPU: 0 UID: 0 PID: 9557 Comm: syz.0.751 Not tainted syzkaller #0 PREEMPT(full) [ 320.740078][ T9557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 320.740089][ T9557] Call Trace: [ 320.740095][ T9557] [ 320.740102][ T9557] dump_stack_lvl+0x100/0x190 [ 320.740126][ T9557] should_fail_ex.cold+0x5/0xa [ 320.740146][ T9557] ? prepare_alloc_pages+0x16d/0x5f0 [ 320.740172][ T9557] should_fail_alloc_page+0xeb/0x140 [ 320.740206][ T9557] prepare_alloc_pages+0x1f0/0x5f0 [ 320.740234][ T9557] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 320.740274][ T9557] ? stack_trace_save+0x8e/0xc0 [ 320.740300][ T9557] ? __pfx_stack_trace_save+0x10/0x10 [ 320.740326][ T9557] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 320.740360][ T9557] ? kasan_save_stack+0x3f/0x50 [ 320.740377][ T9557] ? kasan_save_stack+0x30/0x50 [ 320.740393][ T9557] ? kasan_save_track+0x14/0x30 [ 320.740411][ T9557] ? __kasan_kmalloc+0xaa/0xb0 [ 320.740432][ T9557] ? mon_bin_open+0x1a8/0x470 [ 320.740462][ T9557] ? chrdev_open+0x234/0x6a0 [ 320.740491][ T9557] ? __x64_sys_openat+0x12d/0x210 [ 320.740518][ T9557] ? do_syscall_64+0x10b/0xf80 [ 320.740542][ T9557] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 320.740565][ T9557] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 320.740594][ T9557] ? policy_nodemask+0xed/0x4f0 [ 320.740617][ T9557] alloc_pages_mpol+0x1fb/0x540 [ 320.740640][ T9557] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 320.740672][ T9557] alloc_pages_noprof+0x1a/0x160 [ 320.740696][ T9557] get_zeroed_page_noprof+0x18/0xb0 [ 320.740719][ T9557] mon_alloc_buff+0xce/0x1b0 [ 320.740739][ T9557] ? kasan_save_track+0x14/0x30 [ 320.740759][ T9557] mon_bin_open+0x207/0x470 [ 320.740781][ T9557] ? __pfx_mon_bin_open+0x10/0x10 [ 320.740803][ T9557] chrdev_open+0x234/0x6a0 [ 320.740825][ T9557] ? __pfx_apparmor_file_open+0x10/0x10 [ 320.740854][ T9557] ? __pfx_chrdev_open+0x10/0x10 [ 320.740878][ T9557] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 320.740907][ T9557] do_dentry_open+0x6d8/0x1660 [ 320.740929][ T9557] ? __pfx_chrdev_open+0x10/0x10 [ 320.740957][ T9557] vfs_open+0x82/0x3f0 [ 320.740986][ T9557] path_openat+0x208c/0x31a0 [ 320.741017][ T9557] ? __pfx_path_openat+0x10/0x10 [ 320.741048][ T9557] do_file_open+0x20e/0x430 [ 320.741074][ T9557] ? __pfx_do_file_open+0x10/0x10 [ 320.741116][ T9557] ? alloc_fd+0x476/0x790 [ 320.741142][ T9557] ? do_getname+0x191/0x390 [ 320.741170][ T9557] do_sys_openat2+0x10d/0x1e0 [ 320.741205][ T9557] ? __pfx_do_sys_openat2+0x10/0x10 [ 320.741234][ T9557] ? __fget_files+0x21f/0x3d0 [ 320.741260][ T9557] __x64_sys_openat+0x12d/0x210 [ 320.741288][ T9557] ? __pfx___x64_sys_openat+0x10/0x10 [ 320.741321][ T9557] ? rcu_is_watching+0x12/0xc0 [ 320.741345][ T9557] do_syscall_64+0x10b/0xf80 [ 320.741370][ T9557] ? clear_bhb_loop+0x40/0x90 [ 320.741391][ T9557] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 320.741411][ T9557] RIP: 0033:0x7f09b439cdd9 [ 320.741428][ T9557] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 320.741448][ T9557] RSP: 002b:00007f09b5265028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 320.741466][ T9557] RAX: ffffffffffffffda RBX: 00007f09b4615fa0 RCX: 00007f09b439cdd9 [ 320.741478][ T9557] RDX: 0000000000121200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 320.741489][ T9557] RBP: 00007f09b4432d69 R08: 0000000000000000 R09: 0000000000000000 [ 320.741500][ T9557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 320.741510][ T9557] R13: 00007f09b4616038 R14: 00007f09b4615fa0 R15: 00007ffedbf568e8 [ 320.741534][ T9557] [ 321.605338][ T9563] openvswitch: netlink: Key type 261 is out of range max 32 [ 321.813026][ T9567] futex_wake_op: syz.3.753 tries to shift op by -2048; fix this program [ 322.051711][ T9557] netlink: 2468 bytes leftover after parsing attributes in process `syz.0.751'. [ 322.472673][ T9577] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 323.190180][ T9592] Invalid ELF header magic: != ELF [ 323.511848][ T9593] Process accounting paused [ 324.388426][ T9611] ================================================================== [ 324.388445][ T9611] BUG: KASAN: vmalloc-out-of-bounds in sys_fillrect+0x174a/0x1910 [ 324.388482][ T9611] Write of size 8 at addr ffffc90004aa1000 by task syz.0.762/9611 [ 324.388496][ T9611] [ 324.388505][ T9611] CPU: 0 UID: 0 PID: 9611 Comm: syz.0.762 Not tainted syzkaller #0 PREEMPT(full) [ 324.388525][ T9611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 324.388536][ T9611] Call Trace: [ 324.388542][ T9611] [ 324.388548][ T9611] dump_stack_lvl+0x100/0x190 [ 324.388569][ T9611] print_report+0x13d/0x4b0 [ 324.388593][ T9611] ? _raw_spin_lock_irqsave+0x52/0x60 [ 324.388616][ T9611] ? sys_fillrect+0x174a/0x1910 [ 324.388641][ T9611] kasan_report+0xdf/0x1d0 [ 324.388661][ T9611] ? sys_fillrect+0x174a/0x1910 [ 324.388688][ T9611] sys_fillrect+0x174a/0x1910 [ 324.388722][ T9611] drm_fbdev_shmem_defio_fillrect+0x22/0x140 [ 324.388745][ T9611] bit_clear+0x17d/0x220 [ 324.388766][ T9611] ? __pfx_bit_clear+0x10/0x10 [ 324.388787][ T9611] ? fb_get_color_depth+0x120/0x250 [ 324.388805][ T9611] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 324.388833][ T9611] __fbcon_clear+0x633/0x760 [ 324.388852][ T9611] ? __pfx_bit_clear+0x10/0x10 [ 324.388874][ T9611] fbcon_scroll+0x48b/0x650 [ 324.388894][ T9611] con_scroll+0x464/0x690 [ 324.388920][ T9611] csi_ECMA.constprop.0+0x1238/0x3b60 [ 324.388948][ T9611] ? find_held_lock+0x2b/0x80 [ 324.388971][ T9611] ? __pfx_csi_ECMA.constprop.0+0x10/0x10 [ 324.389001][ T9611] do_con_write+0x3946/0x4a10 [ 324.389027][ T9611] ? trace_contention_end+0x122/0x170 [ 324.389050][ T9611] ? __pfx_do_con_write+0x10/0x10 [ 324.389081][ T9611] con_write+0x23/0xb0 [ 324.389107][ T9611] n_tty_write+0x431/0x11c0 [ 324.389130][ T9611] ? __pfx_n_tty_write+0x10/0x10 [ 324.389207][ T9611] ? trace_kmalloc+0xe3/0x110 [ 324.389228][ T9611] ? __pfx_woken_wake_function+0x10/0x10 [ 324.389251][ T9611] ? rcu_is_watching+0x12/0xc0 [ 324.389271][ T9611] ? file_tty_write.isra.0+0x694/0x890 [ 324.389296][ T9611] ? kfree+0x1dd/0x6c0 [ 324.389320][ T9611] ? __pfx_n_tty_write+0x10/0x10 [ 324.389338][ T9611] file_tty_write.isra.0+0x4d2/0x890 [ 324.389367][ T9611] redirected_tty_write+0xd4/0x120 [ 324.389401][ T9611] vfs_write+0x6ac/0x1070 [ 324.389421][ T9611] ? __pfx_redirected_tty_write+0x10/0x10 [ 324.389448][ T9611] ? __pfx_vfs_write+0x10/0x10 [ 324.389466][ T9611] ? find_held_lock+0x2b/0x80 [ 324.389494][ T9611] ksys_write+0x12a/0x250 [ 324.389513][ T9611] ? __pfx_ksys_write+0x10/0x10 [ 324.389533][ T9611] ? rcu_is_watching+0x12/0xc0 [ 324.389555][ T9611] do_syscall_64+0x10b/0xf80 [ 324.389576][ T9611] ? clear_bhb_loop+0x40/0x90 [ 324.389596][ T9611] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 324.389614][ T9611] RIP: 0033:0x7f09b439cdd9 [ 324.389629][ T9611] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 324.389647][ T9611] RSP: 002b:00007f09b5265028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 324.389665][ T9611] RAX: ffffffffffffffda RBX: 00007f09b4615fa0 RCX: 00007f09b439cdd9 [ 324.389677][ T9611] RDX: 000000000000000a RSI: 0000200000000100 RDI: 0000000000000009 [ 324.389687][ T9611] RBP: 00007f09b4432d69 R08: 0000000000000000 R09: 0000000000000000 [ 324.389698][ T9611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 324.389708][ T9611] R13: 00007f09b4616038 R14: 00007f09b4615fa0 R15: 00007ffedbf568e8 [ 324.389723][ T9611] [ 324.389730][ T9611] [ 324.389735][ T9611] The buggy address belongs to a vmalloc virtual mapping [ 324.389748][ T9611] Memory state around the buggy address: [ 324.389757][ T9611] ffffc90004aa0f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 324.389769][ T9611] ffffc90004aa0f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 324.389781][ T9611] >ffffc90004aa1000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 324.389790][ T9611] ^ [ 324.389800][ T9611] ffffc90004aa1080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 324.389812][ T9611] ffffc90004aa1100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 324.389821][ T9611] ================================================================== [ 324.390532][ T9611] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 324.390545][ T9611] CPU: 0 UID: 0 PID: 9611 Comm: syz.0.762 Not tainted syzkaller #0 PREEMPT(full) [ 324.390566][ T9611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 324.390576][ T9611] Call Trace: [ 324.390582][ T9611] [ 324.390589][ T9611] dump_stack_lvl+0x100/0x190 [ 324.390608][ T9611] vpanic+0x552/0x970 [ 324.390625][ T9611] ? __pfx_vpanic+0x10/0x10 [ 324.390644][ T9611] ? sys_fillrect+0x174a/0x1910 [ 324.390668][ T9611] panic+0xd1/0xe0 [ 324.390684][ T9611] ? __pfx_panic+0x10/0x10 [ 324.390701][ T9611] ? sys_fillrect+0x174a/0x1910 [ 324.390726][ T9611] ? preempt_schedule_common+0x42/0xc0 [ 324.390749][ T9611] ? check_panic_on_warn+0x1f/0x90 [ 324.390767][ T9611] check_panic_on_warn.cold+0x19/0x34 [ 324.390786][ T9611] end_report.part.0+0x3a/0x90 [ 324.390812][ T9611] kasan_report.cold+0xe/0x18 [ 324.390842][ T9611] ? sys_fillrect+0x174a/0x1910 [ 324.390869][ T9611] sys_fillrect+0x174a/0x1910 [ 324.390898][ T9611] drm_fbdev_shmem_defio_fillrect+0x22/0x140 [ 324.390920][ T9611] bit_clear+0x17d/0x220 [ 324.390940][ T9611] ? __pfx_bit_clear+0x10/0x10 [ 324.390961][ T9611] ? fb_get_color_depth+0x120/0x250 [ 324.390980][ T9611] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 324.391008][ T9611] __fbcon_clear+0x633/0x760 [ 324.391027][ T9611] ? __pfx_bit_clear+0x10/0x10 [ 324.391049][ T9611] fbcon_scroll+0x48b/0x650 [ 324.391069][ T9611] con_scroll+0x464/0x690 [ 324.391095][ T9611] csi_ECMA.constprop.0+0x1238/0x3b60 [ 324.391142][ T9611] ? find_held_lock+0x2b/0x80 [ 324.391165][ T9611] ? __pfx_csi_ECMA.constprop.0+0x10/0x10 [ 324.391195][ T9611] do_con_write+0x3946/0x4a10 [ 324.391221][ T9611] ? trace_contention_end+0x122/0x170 [ 324.391244][ T9611] ? __pfx_do_con_write+0x10/0x10 [ 324.391275][ T9611] con_write+0x23/0xb0 [ 324.391301][ T9611] n_tty_write+0x431/0x11c0 [ 324.391323][ T9611] ? __pfx_n_tty_write+0x10/0x10 [ 324.391341][ T9611] ? trace_kmalloc+0xe3/0x110 [ 324.391362][ T9611] ? __pfx_woken_wake_function+0x10/0x10 [ 324.391389][ T9611] ? rcu_is_watching+0x12/0xc0 [ 324.391409][ T9611] ? file_tty_write.isra.0+0x694/0x890 [ 324.391435][ T9611] ? kfree+0x1dd/0x6c0 [ 324.391458][ T9611] ? __pfx_n_tty_write+0x10/0x10 [ 324.391477][ T9611] file_tty_write.isra.0+0x4d2/0x890 [ 324.391505][ T9611] redirected_tty_write+0xd4/0x120 [ 324.391532][ T9611] vfs_write+0x6ac/0x1070 [ 324.391552][ T9611] ? __pfx_redirected_tty_write+0x10/0x10 [ 324.391579][ T9611] ? __pfx_vfs_write+0x10/0x10 [ 324.391597][ T9611] ? find_held_lock+0x2b/0x80 [ 324.391625][ T9611] ksys_write+0x12a/0x250 [ 324.391644][ T9611] ? __pfx_ksys_write+0x10/0x10 [ 324.391665][ T9611] ? rcu_is_watching+0x12/0xc0 [ 324.391686][ T9611] do_syscall_64+0x10b/0xf80 [ 324.391708][ T9611] ? clear_bhb_loop+0x40/0x90 [ 324.391728][ T9611] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 324.391746][ T9611] RIP: 0033:0x7f09b439cdd9 [ 324.391760][ T9611] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 324.391777][ T9611] RSP: 002b:00007f09b5265028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 324.391795][ T9611] RAX: ffffffffffffffda RBX: 00007f09b4615fa0 RCX: 00007f09b439cdd9 [ 324.391807][ T9611] RDX: 000000000000000a RSI: 0000200000000100 RDI: 0000000000000009 [ 324.391817][ T9611] RBP: 00007f09b4432d69 R08: 0000000000000000 R09: 0000000000000000 [ 324.391829][ T9611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 324.391839][ T9611] R13: 00007f09b4616038 R14: 00007f09b4615fa0 R15: 00007ffedbf568e8 [ 324.391855][ T9611] [ 324.391917][ T9611] Kernel Offset: disabled