last executing test programs: 6.481488476s ago: executing program 1 (id=490): syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x20009, 0x8d, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/fuse/parameters/max_user_bgreq\x00', 0xc0481, 0x0) write$auto(0x3, 0x0, 0xffd6) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/i8042/serio1/rate\x00', 0x2, 0x0) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/conf/veth0_to_batadv/send_redirects\x00', 0x242400, 0x0) read$auto(r0, 0x0, 0x1ff) pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x2, 0x0, 0x8) socket(0x2, 0x3, 0x2) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS2\x00', 0x80502, 0x0) write$auto_tty_fops_tty_io(r1, &(0x7f0000000340)="2a3f9218659200008a677517d554c80b25c30000000000000071dde0152c549d44cf790bd304059e64ec34", 0x2b) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x18b800, 0x0) mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0x7) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mq_open$auto(0x0, 0x0, 0x7d, &(0x7f0000000040)={0xffffffffffffffff, 0x6, 0xffffffffffffffc0, 0x800000000000006}) socket(0x2, 0x80805, 0x0) r2 = eventfd$auto(0x7) writev$auto(r0, &(0x7f0000000200)={0x0, 0x73}, 0x7) execve$auto(0x0, 0x0, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x4000000001, 0x0, 0x1, 0x0) openat$auto_cpu_latency_qos_fops_qos(0xffffffffffffff9c, 0x0, 0x2, 0x0) waitid$auto_P_ALL(0x0, 0x1, 0x0, 0x5, 0x0) sendmsg$auto_NFC_CMD_FW_DOWNLOAD(r2, 0x0, 0x41001) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xa4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY\xad\xd6\xc5\xab`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4[\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) syz_genetlink_get_family_id$auto_ovs_flow(0x0, 0xffffffffffffffff) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/asound/seq/clients\x00', 0x0, 0x0) 6.111073968s ago: executing program 0 (id=492): mmap$auto(0x0, 0x20400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) open(0x0, 0x1652c2, 0xe1d2b27bdc14aa98) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3) r0 = socket(0x1e, 0x1, 0x0) connect$auto(r0, 0x0, 0x10) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) r3 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x80000001, 0xffffffffffffffff, 0x5}, 0x8, 0x0) bpf$auto(0x0, &(0x7f00000003c0)=@task_fd_query={0x5, r3, 0x454f, 0xfff, 0x0, 0x0, r2, 0x80000000}, 0x6d4) r4 = socketpair$auto(0x1c, 0xfffff800, 0x20584, 0x0) r5 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video67\x00', 0x169000, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x169780, 0x0) ioctl$auto(r5, 0xc0285629, r5) ioctl$auto_FITHAW(r4, 0xc0045878, 0x5) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0x141401, 0x0) fcntl$auto_F_GETLK(0xffffffffffffffff, 0x5, 0x1) sendmsg$auto_KSMBD_EVENT_TREE_CONNECT_REQUEST(r4, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x100}, 0x5, &(0x7f0000000340)={&(0x7f0000000300)={0x14, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000084}, 0x44000) r6 = prctl$auto_PR_SYS_DISPATCH_OFF(0x3, 0x0, 0x0, 0x35e3, 0x7) mmap$auto(0x400000003, 0x2000c, 0x8, 0x20ebd, r6, 0x8000) close_range$auto(0x0, 0x5, 0x0) prctl$auto_PR_SYS_DISPATCH_ON(0x1, 0x1, 0xffffffffffffffff, 0x7, 0x14000000000000) ioctl$auto_BLKTRACESETUP2(r6, 0xc0481273, &(0x7f0000000080)={"9214c138ea5b93c3cfc59b67189e58fbfd0c4fedb71a9e7965a87e43b386a771", 0x0, 0x4, 0x4, 0xfffffffffffffffe, 0x12, 0xffffffffffffffff}) 5.64278064s ago: executing program 2 (id=493): r0 = io_uring_setup$auto(0x6, 0x0) r1 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x12}}, 0x54) r2 = getsockopt$auto(r1, 0x84, 0x85, 0x0, &(0x7f0000000000)=0x7ffe) unshare$auto(0x40000080) getsockopt$auto_SO_BROADCAST(r0, 0x5, 0x6, &(0x7f00000000c0)='\x00', &(0x7f0000000100)=0xffff) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'pim6reg1\x00'}) mmap$auto(0x0, 0x2000d, 0x3, 0xeb1, 0x404, 0x100010008000) rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8) close_range$auto(0x2, 0x8, 0x0) pipe$auto(0x0) write$auto(0x3, 0x0, 0x200ffd8) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/dummy0/ifalias\x00', 0x8041, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/page_reporting/parameters/page_reporting_order\x00', 0x2202, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) fanotify_init$auto(0x0, 0x5) set_tid_address$auto(&(0x7f0000000180)=0x10) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/rose11/tx_queue_len\x00', 0x0, 0x0) read$auto(r4, 0x0, 0x20) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) write$auto(r3, &(0x7f0000000500)='%[.[`T\n&\xc1\x1e\xae\xb8\xd7\x95\x17\xa3\x7f\xa3\xa7\xf2M\xd1(h\xa51T\x9fQG0\xe8\xd1\xd7m\xafF\x04\"h\xe6\x10\f)\x7f\x83\xcc\xb4\xa4:R\f\xe7\xe6\xb1I\x03\x9a\xca\x8f\x8c\xbb\xe1*\x9d\x11\x9a\x04F9\"\xe3\xc2\x0f\xc5\xcf\x0f\xb1,w\xfe\x06h\xff\x03\x00\x00E\x8b}\xa2\xb9g\xa3\xbe|l3\xda\x9bzl\x8c\x8b\xce\x12*=`\x11\xef2\xf3 \xec\xbe:h\x9e\xc8\xf1\x15\xfa\x90\x9d\xeec\xbf\xf9\xf2\xcc\xf5\xa3F\xc2', 0x6) signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, 0x0, 0x2, 0x0) 5.634303187s ago: executing program 0 (id=494): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0) mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000) sendmsg$auto_NL80211_CMD_GET_STATION(0xffffffffffffffff, 0x0, 0x48004) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) prctl$auto(0x4, 0x81, 0x0, 0x1, 0x9) socket(0x2, 0x0, 0x0) r1 = openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0) read$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(r1, 0x0, 0x0) r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x80802, 0x0) ioctl$auto(r2, 0x800064be, 0x1e6) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) io_uring_setup$auto(0x6, 0x0) ioctl$auto_SNDRV_RAWMIDI_IOCTL_STATUS64(0xffffffffffffffff, 0xc0385720, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) open(0x0, 0xcd1e23e41b02d660, 0x154) write$auto_lockdown_ops_lockdown(0xffffffffffffffff, 0x0, 0x0) openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x484001, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x121000, 0x0) syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff) close_range$auto(r3, 0x8, 0x0) brk$auto(0xffffffffffffff66) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002) syz_open_procfs$namespace(0x0, &(0x7f0000000180)='ns/pid_for_children\x00') 5.196645848s ago: executing program 1 (id=495): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nlbl_mgmt(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NLBL_MGMT_C_PROTOCOLS(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x2c, r1, 0x200, 0x70bd27, 0x25dfdbfc, {}, [@NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x2}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0xc0}, 0x40040) r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/video26\x00', 0x80880, 0x0) r3 = bpf$auto(0xfff, &(0x7f0000000180)=@bpf_attr_1={r2, 0x7fff, @next_key=0x4, 0x3}, 0x7ff) r5 = openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/ubifs/tst_recovery\x00', 0x10000, 0x0) r6 = bpf$auto_BPF_BTF_LOAD(0x12, &(0x7f0000000280)=@bpf_attr_1={r5, 0x2, @next_key=0xb, 0x2}, 0x6) openat$auto_dfs_sched_itmt_fops_itmt(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/debug/netdevsim/netdevsim1/bpf_bind_accept\x00', 0x800, 0x0) shutdown$auto(r0, 0x1) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000003c0)={'gretap0\x00', 0x0}) sendmsg$auto_BATADV_CMD_SET_VLAN(r6, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x38, 0x0, 0x100, 0x70bd29, 0x25dfdbfe, {}, [@BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r8}, @BATADV_ATTR_BLA_CRC={0x6, 0x22, 0x7ff}, @BATADV_ATTR_ROUTER={0xa, 0x1d, @remote}]}, 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x4008001) r9 = socket(0x0, 0x6, 0xc5) r10 = bpf$auto_BPF_LINK_GET_FD_BY_ID(0x1e, &(0x7f00000004c0)=@bpf_attr_7={@start_id=0xfb4, 0x1, 0x3, r9}, 0x6) bpf$auto_BPF_MAP_CREATE(0x0, &(0x7f0000000580)=@bpf_attr_3={0x0, 0x6, 0x4, 0x3, 0x6, 0x200, 0x401, 0x6, 0x6, "567107610a4a85f5ef86ee8b93751ff7", r8, 0x3, r7, 0x2, 0x2, 0x4, 0x7e2, 0x6, 0x0, 0xffff, @attach_btf_obj_fd=r2, 0x99, 0x6, 0x9, 0x5, 0x4, r9, r2}, 0x8) io_uring_register$auto_IORING_REGISTER_ENABLE_RINGS(r12, 0xc, &(0x7f0000000640)="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", 0x2) openat$auto_tomoyo_self_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000001640), 0x200000, 0x0) r14 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000016c0), r10) ioctl$auto_XFS_IOC_ALLOCSP(r11, 0x4030580a, &(0x7f0000001700)={0x8, 0x1, 0xb3b, 0x6, 0x5, 0xffffffffffffffff}) sendmsg$auto_IPVS_CMD_NEW_DAEMON(r13, &(0x7f00000018c0)={&(0x7f0000001680)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001880)={&(0x7f0000001740)={0x118, r14, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_SERVICE={0x101, 0x1, 0x0, 0x1, [@typed={0x8, 0x3c, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}}, @typed={0x8, 0x8d, 0x0, 0x0, @pid=r15}, @nested={0x12, 0x9, 0x0, 0x1, [@generic="6beb935d55efb6af486af79d497e"]}, @typed={0x8, 0x12f, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x11}}, @generic="c40b198d7887535bec614d22c60ccae1c18d727315e19d31d91a83d05ec9f13c0889a567ed871214b12ff74b8f3ea9ec8e51e46fcd1aea65407eafd9123a149c725516fb79ae764ed98c8fb16bb185d4e5c872a2f26d901b4e7f9e85c33cdfa7da32d77cc5a52ca8c114320f335fcb0633bc241d476d9edd5464960588e23e224f84c0ef78d5b80ee2a1d1ff077aef74c2913d90ce1335567e08cc8d2e951fb72a35b67fe4d12c8632f18d1e77bfa3c586bbc1ccbee9eda5fc9a9c1d4eabd2ed10944264fed6b7db315973d2f811cc9218"]}]}, 0x118}, 0x1, 0x0, 0x0, 0x40}, 0x1) socket(0xb, 0x4, 0xffffffff) r16 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001940), r4) sendmsg$auto_NL80211_CMD_SET_CQM(r3, &(0x7f0000001bc0)={&(0x7f0000001900)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000001b80)={&(0x7f0000001980)={0x1c8, r16, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x8000}, @NL80211_ATTR_MAC_ADDRS={0x107, 0xa6, 0x0, 0x1, [@generic="a610b8109a84cb74a3ba53efaad2ae8ee1c0eb66", @generic="79ace7c730034e4c6a3981f3d09e1f0439fc216a46bfbf5022161d1f46029c107fb5538224472948d27d3e82721d7e67c64ae9cd8fef739456f9e8093c94fd9c43bdfb3a49a3a623ce55d0a2c20d90b2431615f15adda76d627835c833da50f91e6966d0e459f0b405fa09fa1e811d2b313047e5ef0ffcd7646cb4dfec33869bb1f15b55196a09c76dfb96c089976d57ea9d426a199f6d964618cefb9a7fa92897376b21aab7874e5bccf7fab4600c0b03458aab450b45261b1ce51848dd0b1472cb4343678f687f06273a1840d64e123caaabaa86247d26162730399d0174cf4d56c9f7a256dcddc19b9a07ef", @generic="b849"]}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa3, 0x1a, "ddfa20689db3316440d7838ca63d54847f52edd979dfe08349650d35eaf710182d2bc6f367e57fbd361216a53aa488b08c2b9fc2873489af2430e54aceb386d33460cf22f1403768cc06c899a7a1298830c94fff05b64273eb1d498becb5552cf8b31d4244b47a20cd9195b3761d1a87153daa0d44f97f7da2df7d99df18b8bbba38b72e1865eebc098694ddea78f23afab4f074ce64083faa94922d5520e4"}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x4000010}, 0x44095) rt_sigtimedwait$auto(&(0x7f0000001c00)={0x7}, &(0x7f0000001c40)={@_si_pad}, &(0x7f0000001cc0)={0x2, 0x5}, 0x8) ioctl$auto_CEC_TRANSMIT(r3, 0xc0386105, &(0x7f0000001d00)={0x6, 0xb2, 0x1000, 0x1, 0x5, 0x7, "201cb0bfb3c31f8ad5fc2cdafc7ed9f5", 0xc, 0x8, 0x10, 0x1, 0x7, 0xb6, 0x9}) write$auto(r10, &(0x7f0000001d40)='NLBL_MGMT\x00', 0x7) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000001d80)={'vlan0\x00', 0x0}) r18 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000001dc0)='/proc/thread-self/numa_maps\x00', 0x220080, 0x0) bpf$auto_BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000001e00)=@bpf_attr_0={0xfffff31c, 0x2, 0x7f, 0x40, 0x5, r11, 0x9, "09618a39f8ba2a4b96cdb407f25324cd", r17, r3, 0x8, 0x3ff, 0x3, 0x9, r18, r11}, 0x594) read$auto_proc_sessionid_operations_base(r19, &(0x7f0000001ec0)=""/88, 0x58) write$auto_proc_sys_file_operations_proc_sysctl(r12, &(0x7f0000001f40)="0cc8979bb802f26b315c6323d029beaf3837036f8a2c76af852fc5dbfe37cbab4b3e17a72a837cff45f4cc72e922db8ee3fc450041b96b3000a0370835529ef02942278fff7c3d4e831d6b959badb792eeda4d838f1300f699fecf0a56cb2e9539b8ec212d08cf729f532fea2c6c0fd46022efc73394377ffbe6fa673df5e42699902e2f1740305567dc96eb081bac6b83fe99bbcf8cfac6f6e63d1283e2c3e34b40ec694630ba9126283c676c4e16045b02d8814e77d01e0628cad4b0917f7adf491a4ebcaf79260aed90b5dd4cf50c28", 0xd1) 4.251590444s ago: executing program 3 (id=496): r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)) r1 = fcntl$auto(r0, 0x402, 0xffffffffffffffff) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0) mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/dummy0/carrier\x00', 0xc2061, 0x0) write$auto(r3, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xab\b\x00\x00\x00\x00\x00\x00\x00}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2oc!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x83) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x10) sysfs$auto(0x2, 0x23, 0x0) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) r5 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_HW_PARAMS_OLD2(r5, 0xc1004111, 0x0) r6 = openat$auto_evm_xattr_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000140), 0x189000, 0x0) readv$auto(r6, &(0x7f00000018c0)={0x0, 0x1}, 0x9) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000240)='/proc/thread-self/personality\x00', 0x8002, 0x0) r7 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r7, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000300)=""/251, 0xfb) r8 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/fb\x00', 0x40080, 0x0) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) ioctl$auto_BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={"75d5cf838dd9326a32cc7c2a5c2bd3a86297ef5ad2e65ea4de0edf2ce0c72084", 0x5, 0xe, 0x4, 0x6a7a, 0xbc19, r8}) getsid$auto(r9) fcntl$auto(r2, 0x402, 0x2) mmap$auto(0x0, 0x200009, 0x2, 0x48eb1, 0xffffffffffffffff, 0x300000000000) 4.244423312s ago: executing program 0 (id=497): rseq$auto(&(0x7f0000000200)={0xe, 0x402, 0xfb82, 0x3, 0xffffffff, 0xfffffffe}, 0x8000, 0x0, 0x6) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) set_mempolicy$auto(0x3, 0x0, 0x9) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x28, 0xf3, 0xb0, @raw=0xfffff03c}}) r1 = socket(0xa, 0x1, 0x84) accept4$auto(r1, 0x0, 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000400), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_GET_INTERFACE(r2, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010b27bd7000fda5c5a62073660008000300", @ANYRES32=r5], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x4040080) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r6 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) statx$auto(r6, 0x0, 0x401006, 0x4015, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) sendmsg$auto_NL80211_CMD_ADD_TX_TS(r1, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="e0000000", @ANYRES16=r3, @ANYBLOB="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"], 0xe0}, 0x1, 0x0, 0x0, 0x40055}, 0x4000900) sysfs$auto(0x2, 0x2000000000040, 0x0) r7 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$auto_PPPIOCSMRU(r7, 0xc004743e, 0x0) ioctl$auto_PPPIOCSMRRU(r7, 0x4004743b, 0x0) bpf$auto_BPF_OBJ_GET_INFO_BY_FD(0xf, &(0x7f0000000340)=@bpf_attr_7={@link_id=0x2, 0x5, 0xfffff872, r7}, 0xb1) r8 = fsopen$auto(0x0, 0x1) fsconfig$auto(r8, 0x8, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x4000) r9 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/pts/ptmx\x00', 0x801a9ac245a3e825, 0x0) ioctl$auto_TIOCSETD2(r9, 0x5423, 0x0) 4.000123423s ago: executing program 1 (id=498): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000340)=ANY=[@ANYRES32=r0, @ANYRES16=r0, @ANYRESHEX=r0], 0x44}, 0x1, 0x0, 0x0, 0x24008800}, 0x40800) sendmsg$auto_ETHTOOL_MSG_FEC_SET(0xffffffffffffffff, 0x0, 0x20004000) unshare$auto(0x40000080) syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000040), r0) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, 0x0) unshare$auto(0x40000080) unshare$auto(0x40) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0xfffffffffffffffd, 0x8, 0x6, 0x17, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f0, 0x15) mq_unlink$auto(0x0) mincore$auto(0x1000, 0x4000000, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) ioctl$auto_TIOCGSID2(r2, 0x5429, &(0x7f0000000180)="33fb44f79f8d651671d8297ac0e97c1612aabe1159aa403642fee493e0e53f1bbb7d4d802580a194cdfbc608b7cc9c2778e29115c86111abd0216f907433b30aec0251c954ce8365133abe690142acfbe2e1a35e4ffa3ee9089058851b55ef7f20dc0e2e90ece3fb0c05f7de9261c1b91f2224cc2b68cf31c6671d75dbbe0a3c339a262288c8dadc2ab569ed059c79e7e2f6e971e7297cc34cd01a7db4dfb0f6a0a4fd589a78b35126c6eb94ddc8fe9cfffab621a4d630f9059403de93dc28430c694e2544647e62b983663001906a1fe412740b1f87f5df0c54") r3 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x23, 0x3, 0x6) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_REMOVE_LINK(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000001}, 0x40804) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000000200)={{@inferred, 0x2, 0x3, 0x81, "3112d585005a614d19e22af9ffb683dbede3d0bf828bbfba40f035f4be6b7fe5e2f94bd90484b0755015e48d"}, 0x400005, 0x25, 0x4, @raw=0x6, @integer={0xe7, 0xfffffffffffffffc, 0x81}, "7a9fc199a16a8c11eacf2fc7ae5d908350fa55d4f0007884a16f7ce8c57c0eb327ac702b8d7c2d00"}) rt_sigqueueinfo$auto(0x0, 0x4004, &(0x7f0000000000)={@siginfo_0_0={0xf9, 0x14, 0x7e73, @_timer={0x0, 0x80000001, @sival_ptr=0x0, 0x5}}}) r4 = socket(0x11, 0x3, 0x209) sendmmsg$auto(r4, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5b0, &(0x7f0000000100)={&(0x7f0000000200), 0xf}, 0x7, 0x0, 0x3, 0x1000000e}, 0x45}, 0x1, 0xfd) listen$auto(0x3, 0x81) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x402300, 0x0) syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000c00), r3) 3.76082206s ago: executing program 2 (id=499): r0 = fcntl$auto(0xffffffffffffffff, 0xffff, 0x0) mmap$auto(0x0, 0x2020009, 0x2, 0xf8, r0, 0x8000) (async) r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x48180, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000180)={{0x2, 0x1000, 0x0, 0x1, 0x8}, "654c6dbc7a4d30983899a7e1325b6a29ba1e184410ba9f74e82a3fa6c3ccf1bf"}) (async) ioctl$auto_SNDRV_TIMER_IOCTL_STATUS32(r1, 0x80585414, &(0x7f0000000000)={0x675d529c, 0x8, 0xfffffff1, 0x101, 0x6, 0x4, "1ec4c2336d0d5d8a5db102d8cd84eca696782c75e0cb2d4b8c400f6fdc12a84264800d00000035a29c7c1ebbdcd2fe5c88e17422928a5110f6e9fef8cac28588"}) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) (async) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) preadv$auto(r2, &(0x7f0000000280)={&(0x7f0000000200)="bdb171dfeff5ae4649c6d87d27791c5e895b788cb882de0ce1574330ef33bceef3093ab8169a0a1d21ad43d69a5ee56ecc3039c07f940eaa267d22b16ce2c01a50b18b8756c6b2aefc1977d0711872c199396cd4b87d0a454460be678b02b45a4fc9d7212ec65c3a5c3966532d84c2", 0xc00}, 0x9, 0x8e7, 0x4778) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x1e, 0x1, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) openat2$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0)={0x0, 0x120, 0x1}, 0x18) (async) socket(0x200000000000011, 0x2, 0x0) openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f00000010c0), 0xa0042, 0x0) select$auto(0x5, 0x0, &(0x7f0000000100)={[0x9, 0x200, 0x0, 0x8000000000000201, 0x9, 0x3, 0x6, 0x101, 0xd886, 0x5e582970, 0x341, 0x41, 0x7, 0x200, 0x8, 0xc]}, 0x0, 0x0) (async) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe2180, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) (async) ioctl$auto(0x3, 0xae41, r3) (async) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) ioctl$auto(0x3, 0xae41, r4) (async) r5 = openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/kvm/halt_poll_fail_hist\x00', 0xa2500, 0x0) read$auto_stat_fops_per_vm_kvm_main(r5, 0x0, 0x0) (async) r6 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0) sendfile$auto(r6, r6, 0x0, 0x10000800000003) fcntl$auto(0x3, 0x4, 0xa553) (async) write$auto(r2, &(0x7f00000000c0)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) r7 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/kernel/threads-max\x00', 0x40001, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r7, 0x0, 0x0) 3.481055411s ago: executing program 0 (id=500): io_uring_setup$auto(0x6, 0x0) unshare$auto(0x40000080) ioctl$auto(0x4000000000000c8, 0x400454d9, 0x3) setresuid$auto(0x8, 0x0, 0x4) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/fail-nth\x00', 0x842, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/zram0/disksize\x00', 0x2202, 0x0) read$auto_cachefiles_daemon_fops_internal(r0, &(0x7f0000000080)=""/232, 0xe8) write$auto(r0, &(0x7f00000001c0)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x3dec) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) keyctl$auto(0xe, 0x1, 0x0, 0x5eaf, 0x8) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/vs/run_estimation\x00', 0x88042, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r1, 0x0, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f602, 0x0) timer_settime$auto(0x0, 0x519a, &(0x7f0000000100)={{0xa6, 0x7}, {0x0, 0x3}}, 0x0) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) chdir$auto(&(0x7f0000000000)='}[,&*}\x00') open(&(0x7f0000000100)='.\x00', 0x591002, 0x408) syz_clone(0x8000, 0x0, 0x0, 0x0, 0x0, 0x0) connect$auto(0xffffffffffffffff, &(0x7f0000000140)=@tipc=@nameseq={0x1e, 0x1, 0x0, {0x43, 0x4, 0x3}}, 0x100) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x400000007f}, 0x8) write$auto(r0, &(0x7f0000000040)='#@\x00', 0x8) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd.', 0xd, 0x0) 2.967271841s ago: executing program 3 (id=501): openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async) mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, 0x602, 0x300000000000) (async) openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x8402, 0x0) (async) r0 = openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/trigger\x00', 0x40, 0x0) pread64$auto(r0, 0x0, 0x1ffffffffc, 0xe) (async) r1 = socket(0x10, 0x2, 0x0) (async) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_WOL_SET(r1, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000500)={0x14, r2, 0x1, 0x70bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x801}, 0x40) mmap$auto(0x0, 0x400008, 0x4000000000000df, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) r3 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/netdevsim/netdevsim3/hwstats/l3/disable_ifindex\x00', 0x1242, 0x0) (async) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/neigh/batadv0/mcast_solicit\x00', 0x2000, 0x0) read$auto(r4, 0x0, 0x1ff) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async) io_uring_setup$auto(0x6, 0x0) (async) close_range$auto(0x2, 0xffffffffffffffff, 0x0) (async) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (async) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x12de82, 0x0) ioctl$auto(0x3, 0x80246f4d, r5) (async) write$auto(r3, 0x0, 0x9) 2.367362462s ago: executing program 3 (id=502): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x0, 0x0) ioctl$auto_TCFLSH2(r0, 0x5453, 0x0) r1 = open(&(0x7f0000000800)='./file0\x00', 0x22241, 0x154) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = timerfd_create$auto(0x9, 0x0) execveat$auto(r1, &(0x7f0000000200)='\x00', 0x0, 0x0, 0x11000) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_MESH_CONFIG(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000440)={0x1104, r3, 0x8, 0x70bd2a, 0x25dfdbfc, {}, [@NL80211_ATTR_IE={0xd2, 0x2a, "a8076a0def51e78e33261bca16e1d9bd3f28f7d25b1c68155e919e927049e2ee0fd1c09f4a27cdffda7c973621bf1cd5828085321097eed840dea43ff7bf422947952dd920fed50f263d22a33dacf75dbcf9698e22a785f5e9e8a9c0c391a5f532752f5ca5b61ee8bdee59db17ecae9810de5ea8d325dc0f9960329f125911041e5297cc6b39ca1bd707bd70dfd7dde87b12eee6568dec3b32aee19953ae757534ba6a50ef139384c8fe428334776456df8e7bb48a4ece8e85252a14e10a0c8cfed66a2b6b9ba67eb6bc3ef34bbd"}, @NL80211_ATTR_KEY_SEQ={0x6, 0xa, "ba0f"}, @NL80211_ATTR_WIPHY_FREQ_HINT={0x8, 0xc9, 0x184}, @NL80211_ATTR_MLD_ADDR={0x1004, 0x13a, "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"}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0xd742}]}, 0x1104}, 0x1, 0x0, 0x0, 0x48014}, 0x4800) ioctl$auto_KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04, 0x0) getsockopt$auto_SO_NETNS_COOKIE(r2, 0x9, 0x47, &(0x7f00000000c0)='/dev/ttyS2\x00', &(0x7f0000000140)=0x6) 1.566681377s ago: executing program 2 (id=503): r0 = socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = open(&(0x7f0000000540)='./file0\x00', 0x641c0, 0xae) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async) fanotify_init$auto(0x5, 0x2000000000002) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) socket(0x23, 0x80805, 0x2) (async) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) (async) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r3, 0x7f, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92) (async) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc) (async) r4 = socket(0xa, 0x2, 0x88) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r1, 0x0, 0x3}, 0xc) (async) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r4, 0x0, 0x3}, 0xc) r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), r0) mkdir$auto(&(0x7f0000000140)='./file0\x00', 0xfffd) (async) mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x9) (async) open(&(0x7f0000000080)='./file0/file0\x00', 0x880, 0x81) (async) r6 = setfsuid$auto(0xee00) setreuid$auto(r6, 0x0) (async) rename$auto(&(0x7f0000000480)='./file1\x00', &(0x7f0000000040)='./file0/file0\x00') (async) sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)={0x3c, r5, 0x1, 0x70bd26, 0x25dfdbf7, {}, [@ETHTOOL_A_LINKINFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKINFO_PHYADDR={0x5}, @ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0xaa}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000890}, 0x2000c840) 1.443535508s ago: executing program 2 (id=504): mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0) madvise$auto(0x0, 0x100000, 0x17) 1.381439669s ago: executing program 3 (id=505): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/addr_gen_mode\x00', 0xa0202, 0x0) r1 = bpf$auto_BPF_LINK_CREATE(0x1c, &(0x7f0000000300)=@token_create={0xffffffff}, 0x19) r2 = setfsgid$auto(0xee01) setresgid$auto(r2, 0x0, 0x0) ioctl$auto_KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f0000000140)={0x6, r2, 0x3, 0x1}) fsconfig$auto(r0, 0xfffffffd, &(0x7f0000000480)='/]%)\x00', &(0x7f00000004c0)="519133ec0a805be920d35d1caac7ce017db3c78c6f76c2173a6c214651030d44a40614413e0204bf007ea9c0a8ebc83205560e38b489820c00dd929447f8563a5388fac21e13e4101de29638123d412e16bee9ab215568290f742e417040ae9fee41990fa082ed12c7658bfcc31ce1d3667e0e6ad1a1fa55861a53bd14f601dd11b7da878b97b17fba9facedc985d05a4b01c6cee5d4266358c4b2cc6117736ad010822daf2fb3f33addd1184b13052722b9238034", r2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = ioctl$auto_TUNGETFILTER(0xffffffffffffffff, 0x801054db, &(0x7f00000000c0)={0x1fe, &(0x7f0000000080)={0x2, 0x8, 0x10, @raw=0xffffb2ad}}) ioctl$auto_BLKTRACESETUP2(0xffffffffffffffff, 0xc0481273, &(0x7f0000000140)={"d64dee263a19b7af392794654839f4efe8663f270a5746efc465f5487f312755", 0x7, 0x7, 0x4, 0x3, 0x0, 0xffffffffffffffff}) sendmsg$auto_NL802154_CMD_SET_PAN_ID(r3, &(0x7f0000000440)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000400)={&(0x7f00000001c0)={0x21c, 0x0, 0x2, 0x70bd28, 0x25dfdbff, {}, [@NL802154_ATTR_PAGE={0x5, 0x7, 0x8}, @NL802154_ATTR_SEC_DEVICE={0x1fd, 0x2e, 0x0, 0x1, [@generic="56c96f81b8929df22f49a01266f039be423d70fb7e89e1366184aadbb0d009735f6f9c907b2984d0ed8b89b411f528612ea4c7a1286e39b4b04985311b820272e07787aff023c43ac9ad226a8a89214cb46779e899ce4c2dd1a2bc1316c0830f0af80bbaa05f8997e507998a74f3e356aa428f855293a96fc100a017ca933a2b789da81415072346ad6c68202271246b5e2dcd5ff3f6c3c2b584f2ed1f0e2a98805d150210200b283b6b120d0678746317a7863599958dbe8496a57dfe3cdb1216c63c0c05ad174926cfacff3a7693470dbdd6a74dc4986dd5db3d48c7996f47533727957b1a221491fd376e32cf6839fe7ff1da2dfdc3edc1b18fe203dfed", @generic="f670273a3bdca9a6cf842009388cbb2b1781c2f5b9e2cb95f361c06a197f162e75347668046d026cfde5e4d4e4", @nested={0x1c, 0x2a, 0x0, 0x1, [@nested={0x4, 0xb1}, @nested={0x4, 0x57}, @nested={0x4, 0xd6}, @typed={0x8, 0x96, 0x0, 0x0, @pid=r4}, @nested={0x4, 0x128}]}, @generic="22be97fb727e6c6cd439ffa84ab068721ce3bf16e16df6f9b94be7db903517e2638e64f045851d261fd3838e4a540f0793512bc4406519ef680606042ea09975cc35f7f9fcb77831d8cd772c7663d42aa2fb530a65ee4fd9030a96454a02a29b23927acdc10931f5073f17ed488792b2917f7badad90e83ea29d3a63e0043801a8492e303ed8c63d1ae4579a84222443cb82e5066135884159ac68e4792c76a6d7aab2fbdb8f80679abb912d607f745930"]}]}, 0x21c}, 0x1, 0x0, 0x0, 0x4040002}, 0x10) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) statx$auto(r3, &(0x7f0000000580)='./file0\x00', 0x0, 0x9, &(0x7f00000005c0)={0x2, 0x800, 0x7, 0x3, 0xee00, r2, 0x40, 0x4, 0x5, 0x0, 0xffffffffffff8000, 0x4, {0x0, 0x9}, {0x8}, {0x7, 0x400}, {0x10, 0x100}, 0x5, 0x1, 0x8000, 0xffffffff, 0x4, 0x0, 0xffff, 0xa, 0x8, 0x9, 0x5, 0x9, [0x3, 0x1, 0x1, 0x7fff, 0x9, 0xdfe9, 0x8872, 0x81, 0x1]}) shmctl$auto_SHM_UNLOCK(0xa6, 0xc, &(0x7f0000000740)={{0x1ff, r5, r2, 0xfff, 0x9, 0xffff, 0xffff}, 0x0, 0xff00000, 0x0, 0x9, @raw=0x5, @inferred=r4, 0xfffc, 0x0, &(0x7f00000006c0)="42ecc222220b9664e8f1751ac21a189e02caa22e86b806a92462a2ea48a1d87be76abd86d0c9ef0d6713b978108740603ff1f275f14ed55125a31fe672676d", &(0x7f0000000700)="e59ad3ebf2d514a5e38811a37ab43a8a04245bd4924940e6dd00be369a26beab53b3975d6b6d"}) r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r6, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) 1.266337619s ago: executing program 1 (id=506): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x301200, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0) r3 = ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_GET_MSRS(r1, 0x4068aea3, &(0x7f0000000040)={0x80}) close_range$auto(0x2, 0x8, 0x0) r4 = socket(0x2, 0x3, 0x6) r5 = socket(0x2, 0x1, 0x0) bind$auto(r5, &(0x7f0000000040)=@in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x6a) sendmmsg$auto(r5, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x23, 0xb}, 0x800005}, 0x5, 0x20000001) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x14}, 0x1, 0x68, 0x0, 0x24000000}, 0xd0) sendmsg$auto_NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140), 0xc, &(0x7f00000001c0)={0x0, 0x150}, 0x1, 0x0, 0x0, 0x40010}, 0x20048004) r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r4) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)=ANY=[@ANYBLOB="78010000", @ANYRES16=r7, @ANYBLOB="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"], 0x178}, 0x1, 0x0, 0x0, 0x4}, 0xc0) sendmsg$auto_NL80211_CMD_GET_PROTOCOL_FEATURES(r5, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x44004) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(r3, &(0x7f0000000480)={{0x0, 0x10, 0x0, 0x1, 0x0, 0x0, 0x109}, 0x5}, 0x5, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x508f, 0x0, 0x1, 0x0, 0x0, 0x3}, 0x7}, 0x4, 0xcad7) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0xa) write$auto(0x3, 0x0, 0x100085) 1.238729296s ago: executing program 3 (id=507): mmap$auto(0x0, 0x2020005, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x734f, 0x36, 0x67f, 0x1ffde, 0x7, 0x3, 0x20000002, 0xd, 0x3, 0x1, 0x2091, 0xb4, 0x9, 0x6, 0x6, 0x80, 0x4, 0x1cd7, 0x1000, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x1fe, 0xd) (async) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) (async) r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x101440, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000000c0)={{0x0, 0x2, 0x200800, 0xffffffff, 0xfffffffb}, "0dd7fd004929347eeeccdf0732f77b1f6de0d6d51768a257a97ca5e9ca6310ea"}) ioctl$auto_SNDRV_TIMER_IOCTL_STATUS64(r0, 0x80605414, &(0x7f0000000380)={0x8, 0x3, 0x800, 0xba43, 0xffffffff, 0x9, "e000265b7222b141ecb9fb5793abe8fdffdbcd2c02d3c293fa98882f5336d79fc5b8202cb37f6b6d22c42432352deb58e78afdbae76900"}) (async) r1 = socket(0xa, 0x2, 0x0) setsockopt$auto(r1, 0x29, 0x30, 0x0, 0x56b) (async) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x28b42, 0x0) sendfile$auto(r2, r2, 0x0, 0x1ff) (async) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) (async) sendmsg$auto_ETHTOOL_MSG_PAUSE_GET(r3, 0x0, 0x4000840) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) io_uring_setup$auto(0x6, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) open(0x0, 0x22240, 0x155) (async) setpriority$auto_PRIO_USER(0x2, 0x0, 0xfffff8b0) (async) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) connect$auto(0x4, 0x0, 0x10) (async) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x13, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8040) (async) r4 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000080)={0x0, 0xfc2}, 0x2, &(0x7f0000000140), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) (async) madvise$auto(0x110c230000, 0x8031ca, 0x9) r5 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0) semctl$auto_IPC_INFO(0xa7, 0xf, 0x3, 0x0) (async) ioctl$auto_SNAPSHOT_SET_SWAP_AREA(r5, 0x400c330d, 0x0) 1.041420705s ago: executing program 0 (id=508): mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/block/nullb0/queue/rq_affinity\x00', 0x4a001, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000180)='2', 0x1) socket(0x2, 0x3, 0xa) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x30b140, 0x0) r2 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0) ioctl$auto_PROCMAP_QUERY(r2, 0xc0686611, &(0x7f0000000080)={0x68, 0x34, 0x7fff, 0x5, 0x80000000009, 0x1, 0x9, 0x5, 0x5, 0x7f93, 0xfffffffe, 0x7ffffffd, 0x7ff, 0x7, 0x9}) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe2180, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto(0x3, 0xae41, r3) ioctl$auto_KVM_CREATE_VM(r1, 0xc080aebe, 0x0) mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/block/nullb0/queue/rq_affinity\x00', 0x4a001, 0x0) (async) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000180)='2', 0x1) (async) socket(0x2, 0x3, 0xa) (async) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x30b140, 0x0) (async) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0) (async) ioctl$auto_PROCMAP_QUERY(r2, 0xc0686611, &(0x7f0000000080)={0x68, 0x34, 0x7fff, 0x5, 0x80000000009, 0x1, 0x9, 0x5, 0x5, 0x7f93, 0xfffffffe, 0x7ffffffd, 0x7ff, 0x7, 0x9}) (async) close_range$auto(0x2, 0x8, 0x0) (async) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe2180, 0x0) (async) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) ioctl$auto(0x3, 0xae41, r3) (async) ioctl$auto_KVM_CREATE_VM(r1, 0xc080aebe, 0x0) (async) 1.039061573s ago: executing program 2 (id=509): openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1ac}}, 0x40000) r0 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000540), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="f7ef98db76a35e7674d5bd70", @ANYRES32=0x4, @ANYBLOB="0800010048665200"], 0x24}, 0x1, 0x0, 0x0, 0x801}, 0x80) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) sendmsg$auto_NET_SHAPER_CMD_DELETE(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="090027bd7000fbdbdf250200000008000800", @ANYRES32=r4, @ANYBLOB="140001800800020006000000080001"], 0x30}, 0x1, 0x0, 0x0, 0x44000}, 0xc050) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x3, 0x0, 0x7, 0xa505}, 0x8800}, 0x80000000, 0x4008) 666.781767ms ago: executing program 0 (id=510): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000280)='/dev/input/event0\x00', 0x0, 0x0) ioctl$auto_EVIOCGVERSION(r0, 0x80044501, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x40, 0x93f, 0x1fee0, 0x3, 0x6, 0xfffffffffffffffe, 0x1ff, 0x5, 0x8005, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x8, 0x4, 0x10, 0xb65, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0xfffffffd, 0x800, 0x0, 0x0, [0x2, 0x0, 0x0, 0xfffffffffffffffe, 0xfffffffffffffffc, 0x0, 0x2d24, 0x9, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x7fffffffffff, 0x9, 0x0, 0x0, 0x10, 0x4, 0x0, 0x0, 0x0, 0x2, 0x8]}, 0x1fe, 0x82) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0xa, 0x801, 0x84) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000400)='/dev/video36\x00', 0xc0000, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x75, 0x0, 0x8) socket(0x2, 0x1, 0x84) setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x54) listen$auto(0x3, 0x81) accept$auto(0x3, 0x0, 0x0) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) setsockopt$auto_SO_PASSPIDFD(r1, 0x5ad, 0x4c, &(0x7f0000000440)='/dev/video36\x00', 0x80000000) r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), r2) sendmsg$auto_NL802154_CMD_ABORT_SCAN(r2, &(0x7f00000003c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000100)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="00062bbd25000000000008001d0000000000", @ANYRES32, @ANYBLOB="08002c00ff00000008000e0004000000060009000500000006000a00090000000500130007000000"], 0x44}, 0x1, 0x0, 0x0, 0x4008000}, 0x0) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) r4 = socket(0x2, 0x2, 0x88) setsockopt$auto(r4, 0x0, 0x11, 0x0, 0x8) sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x2000000, &(0x7f0000000080)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 429.945215ms ago: executing program 2 (id=511): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) r1 = bpf$auto(0x8000000, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x5, 0x9, 0x3, 0x80, 0x8, 0x4, 0x1, 0x200, 0x8, 0x401, 0x2, 0xe2, 0x4, 0xc28}, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xffffffffffffffff, 0x0) socketpair$auto(0xffffff6c, 0x4, 0x8000000, 0x0) socket(0x11, 0x3, 0x2) socket(0x2, 0x5, 0x0) setsockopt$auto(r1, 0x10000000084, 0x14, 0x0, 0x8) write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r2, &(0x7f00000005c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) mmap$auto(0xffffffffffffffff, 0x2000d, 0x8, 0xeb1, 0x404, 0x80000000) write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f0000001bc0)="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", 0x850) mmap$auto(0x0, 0x9, 0x3, 0xf4, 0xfffffffffffffffa, 0x6) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) r3 = syz_clone(0xe101100, 0x0, 0x0, 0x0, 0x0, 0x0) socket(0xa, 0x3, 0x3b) socket(0xa, 0x3, 0x3b) socketpair$auto(0x1, 0x1, 0x2a340, 0x0) select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x200, 0x1ff, 0x2, 0x1, 0x7, 0xfffffffffffffffb, 0x15f4da05, 0x10, 0x1000, 0x3, 0x4000008000001f, 0x7, 0x1400000000, 0x8cfb7, 0x9, 0x6]}, 0x0) wait4$auto(r3, 0x0, 0x80000001, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x282403, 0x0) io_uring_register$auto(0x2, 0xe, 0x0, 0x20) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) clock_nanosleep$auto(0x2, 0x6, 0x0, 0x0) 295.154406ms ago: executing program 1 (id=512): statmount$auto(0x0, &(0x7f0000000180)={0x0, 0x1, 0x9, 0x0, 0x400026, 0x1, 0x1ffde, 0x3, 0x6, 0x7ff, 0xfffffff6, 0x400005, 0xfff, 0x0, 0x1ef, 0x8, 0x9, 0x3, 0x1, 0x9, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0xfffffffffffffff9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x4, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1000000]}, 0xfffff7fffffff7fa, 0x281) (async, rerun: 32) openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000440), 0x20201, 0x0) (async, rerun: 32) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x12b403, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) (async) socket(0xa, 0x1, 0x100) (async) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x672801, 0x0) ioctl$auto_SG_GET_VERSION_NUM2(r1, 0x2282, &(0x7f0000000480)="ee7994faf97746c715c5d0d6a476c5f9e785375595cc3f0809bc7cfa6a0c615a57fee00017693b6e5c4de6ba67bde94ddde0fcfa8abaf35fe5cc5a59b9a849ea098d623ec1238feb0d74dfaf60955717d13ad3ceaa402daf6380edcf1be10159c5dd65edadcf41a4b65868194c038a1c8e0bd8c88c6028445dfb5785cd4c835688ef3d606ba6676068ade8d2075edaf71ecd19fc3a8b4b0f7c518202543b873b4673ff35e991a8645c") writev$auto(r1, &(0x7f0000000180)={&(0x7f00000003c0)="3af6b96a4c1220ad", 0x10}, 0x7) (async, rerun: 64) modify_ldt$auto(0xc, 0x0, 0x100000000) (async, rerun: 64) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyd1\x00', 0x40, 0x0) (async) r2 = socket(0x2a, 0x2, 0x1) (async, rerun: 32) r3 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32) pidfd_open$auto(0x1, 0x0) (async) socket(0x2000000000000021, 0x2, 0x10000000000002) r4 = socket(0x2a, 0x2, 0x0) (async, rerun: 64) bind$auto(0x3, &(0x7f0000000080)=@qipcrtr={0x2a, 0x1, 0x1}, 0x6b) (rerun: 64) connect$auto(r2, &(0x7f0000000140)=@qipcrtr={0x2a, 0x0, 0x4000}, 0x59) (async) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) (async) sendmsg$auto_ETHTOOL_MSG_RSS_GET(r4, &(0x7f0000000700)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000740)=ANY=[@ANYBLOB="38010000", @ANYRES16=0x0, @ANYBLOB="00042bbd7000ffdbdf25260000000c00018008000300c10800001c000180080003007f00000008000100", @ANYRES32=0x0, @ANYBLOB="0800030001000000080007000800000008000200070000007000018008000100", @ANYRES32=0x0, @ANYBLOB="080003008100000014000200766972745f77696669300000000000001400020070696d36726567300000000000000000080003000400000008000100", @ANYRES32=0x0, @ANYBLOB="14000200776c616e3100000000000000000000000800030001000000080003000800000008000200840000000800020007000000380001800800030048920100010008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYRES16], 0x138}, 0x1, 0x0, 0x0, 0x2004c031}, 0x40040) (async) fallocate$auto(r3, 0x0, 0x9, 0x4cbd5d) (async, rerun: 32) r5 = socket(0xa, 0x2, 0x0) (rerun: 32) setsockopt$auto(r5, 0x0, 0x2, 0x0, 0x5) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) fcntl$auto(0x8000000000000001, 0x26, 0x8) write$auto(0x3, 0x0, 0x100082) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) (async, rerun: 32) socket(0x2, 0x80805, 0x0) (rerun: 32) 74.69132ms ago: executing program 1 (id=513): adjtimex$auto(&(0x7f00000004c0)={0xffff6888, 0x0, 0x4, 0xfffffffffffffffd, 0x4ea, 0x1, 0x6, 0x0, 0x1, 0x0, 0x960, {0x2000100000000, 0x10000}, 0x1, 0x1, 0x7, 0x6, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0x20000a747, 0xdeb1, 0x804}) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) socket(0x25, 0x1, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x38}, 0x1, 0x0, 0x0, 0x20040000}, 0x880) mmap$auto(0x0, 0x2000c, 0xde, 0x20eb1, 0x40000000000a5, 0x8000) ioprio_set$auto(0x6, 0x7fff, 0x2646) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) socket(0x29, 0x2, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x2, 0x7, 0xd, 0x2, 0x2, 0x3, 0x15f4da0a, 0x1, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) r1 = getpid() mremap$auto(0x0, 0x4000007, 0x3fd7, 0x0, 0x20000020000000) process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_PHY_GET(r2, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000000000)={0x14, r3, 0x301, 0x70bd26, 0x25dfdbff}, 0x14}, 0x1, 0x1000000, 0x0, 0x2404c012}, 0x80) r4 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/meminfo\x00', 0x400, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bond0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r5, r4, 0x4, 0x1ff, r0, @relative_fd, 0xe600}, 0xf) r6 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x3, &(0x7f00000001c0)=@raw_tracepoint={0x5, r6, 0x0, 0x3}, 0xc) r7 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/timers\x00', 0x109500, 0x0) pread64$auto(r7, 0x0, 0x8, 0xffff) 0s ago: executing program 3 (id=514): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) keyctl$auto(0x4, 0xfffffffe, 0xffffffffffffffff, 0xffffffffffffffff, 0x8000000e) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) r1 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000f40), 0x2100, 0x0) ioctl$auto_BTRFS_IOC_GET_SUPPORTED_FEATURES(r1, 0x80489439, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x20800, 0x0) statmount$auto(0x0, 0x0, 0x1fe, 0x5) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS0\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, 0x0, 0x54) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, 0x0, 0x101500, 0x0) futex$auto(&(0x7f0000000080)=0x2948, 0x9, 0x2948, 0x0, 0x0, 0x5) futex$auto(&(0x7f0000000080)=0x2948, 0x0, 0x2948, 0x0, 0x0, 0x5) futex$auto(&(0x7f0000000080)=0x3, 0x3, 0x1f, 0x0, &(0x7f0000000100)=0x4, 0x440a48d3) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/midiC2D2\x00', 0x80980, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) kernel console output (not intermixed with test programs): d cc 0x1003 length: 249 > 9 [ 96.277342][ T5838] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 96.283942][ T5845] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 96.284545][ T5838] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 96.293146][ T5845] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 96.298903][ T5838] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 96.307993][ T5845] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 96.320574][ T5845] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 96.322244][ T5838] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 96.335890][ T5838] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 96.340137][ T5845] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 96.347384][ T5838] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 96.351225][ T5845] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 96.377823][ T5837] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 96.389116][ T5837] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 96.718436][ T5831] chnl_net:caif_netlink_parms(): no params data found [ 96.934659][ T5831] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.942153][ T5831] bridge0: port 1(bridge_slave_0) entered disabled state [ 96.949558][ T5831] bridge_slave_0: entered allmulticast mode [ 96.957253][ T5831] bridge_slave_0: entered promiscuous mode [ 96.972276][ T5831] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.979441][ T5831] bridge0: port 2(bridge_slave_1) entered disabled state [ 96.986880][ T5831] bridge_slave_1: entered allmulticast mode [ 96.994635][ T5831] bridge_slave_1: entered promiscuous mode [ 97.083520][ T5831] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 97.107479][ T5831] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 97.193786][ T5831] team0: Port device team_slave_0 added [ 97.224025][ T5831] team0: Port device team_slave_1 added [ 97.230857][ T5830] chnl_net:caif_netlink_parms(): no params data found [ 97.280139][ T5829] chnl_net:caif_netlink_parms(): no params data found [ 97.294374][ T10] cfg80211: failed to load regulatory.db [ 97.320987][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 97.328330][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 97.354384][ T5831] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 97.366665][ T5828] chnl_net:caif_netlink_parms(): no params data found [ 97.401509][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 97.408567][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 97.434876][ T5831] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 97.608366][ T5830] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.616221][ T5830] bridge0: port 1(bridge_slave_0) entered disabled state [ 97.624141][ T5830] bridge_slave_0: entered allmulticast mode [ 97.631348][ T5830] bridge_slave_0: entered promiscuous mode [ 97.673386][ T5830] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.680710][ T5830] bridge0: port 2(bridge_slave_1) entered disabled state [ 97.688158][ T5830] bridge_slave_1: entered allmulticast mode [ 97.695599][ T5830] bridge_slave_1: entered promiscuous mode [ 97.709880][ T5831] hsr_slave_0: entered promiscuous mode [ 97.716528][ T5831] hsr_slave_1: entered promiscuous mode [ 97.723485][ T5828] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.730654][ T5828] bridge0: port 1(bridge_slave_0) entered disabled state [ 97.738010][ T5828] bridge_slave_0: entered allmulticast mode [ 97.745201][ T5828] bridge_slave_0: entered promiscuous mode [ 97.776769][ T5828] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.784123][ T5828] bridge0: port 2(bridge_slave_1) entered disabled state [ 97.791289][ T5828] bridge_slave_1: entered allmulticast mode [ 97.798771][ T5828] bridge_slave_1: entered promiscuous mode [ 97.806227][ T5829] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.813756][ T5829] bridge0: port 1(bridge_slave_0) entered disabled state [ 97.820896][ T5829] bridge_slave_0: entered allmulticast mode [ 97.828271][ T5829] bridge_slave_0: entered promiscuous mode [ 97.861768][ T5829] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.869043][ T5829] bridge0: port 2(bridge_slave_1) entered disabled state [ 97.876503][ T5829] bridge_slave_1: entered allmulticast mode [ 97.884101][ T5829] bridge_slave_1: entered promiscuous mode [ 97.894662][ T5830] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 97.939447][ T5830] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 97.958666][ T5828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 98.000555][ T5828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 98.012944][ T5829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 98.054307][ T5829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 98.065190][ T5830] team0: Port device team_slave_0 added [ 98.101210][ T5830] team0: Port device team_slave_1 added [ 98.116351][ T5828] team0: Port device team_slave_0 added [ 98.152976][ T5828] team0: Port device team_slave_1 added [ 98.160374][ T5829] team0: Port device team_slave_0 added [ 98.197799][ T5829] team0: Port device team_slave_1 added [ 98.204409][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 98.211363][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 98.237654][ T5830] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 98.279144][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 98.286322][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 98.312516][ T5830] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 98.334863][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 98.341835][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 98.368284][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 98.399775][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 98.411718][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 98.439394][ T5835] Bluetooth: hci1: command tx timeout [ 98.439400][ T5843] Bluetooth: hci3: command tx timeout [ 98.442097][ T5843] Bluetooth: hci2: command tx timeout [ 98.446928][ T5837] Bluetooth: hci0: command tx timeout [ 98.451304][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 98.489191][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 98.496826][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 98.523592][ T5829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 98.552899][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 98.559903][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 98.586183][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 98.688550][ T5830] hsr_slave_0: entered promiscuous mode [ 98.695698][ T5830] hsr_slave_1: entered promiscuous mode [ 98.702567][ T5830] debugfs: 'hsr0' already exists in 'hsr' [ 98.708479][ T5830] Cannot create hsr debugfs directory [ 98.746145][ T5828] hsr_slave_0: entered promiscuous mode [ 98.753830][ T5828] hsr_slave_1: entered promiscuous mode [ 98.760002][ T5828] debugfs: 'hsr0' already exists in 'hsr' [ 98.765881][ T5828] Cannot create hsr debugfs directory [ 98.795676][ T5829] hsr_slave_0: entered promiscuous mode [ 98.802531][ T5829] hsr_slave_1: entered promiscuous mode [ 98.808603][ T5829] debugfs: 'hsr0' already exists in 'hsr' [ 98.814818][ T5829] Cannot create hsr debugfs directory [ 98.999362][ T5831] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 99.031623][ T5831] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 99.062564][ T5831] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 99.097477][ T5831] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 99.308759][ T5830] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 99.329949][ T5830] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 99.357197][ T5830] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 99.373960][ T5830] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 99.449183][ T5828] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 99.471643][ T5828] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 99.486376][ T5828] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 99.502660][ T5828] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 99.568521][ T5831] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.641046][ T5831] 8021q: adding VLAN 0 to HW filter on device team0 [ 99.648571][ T5829] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 99.669592][ T5829] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 99.693628][ T5829] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 99.715439][ T228] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.722846][ T228] bridge0: port 1(bridge_slave_0) entered forwarding state [ 99.738294][ T5829] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 99.769451][ T37] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.776630][ T37] bridge0: port 2(bridge_slave_1) entered forwarding state [ 99.900457][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.939883][ T5831] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 100.013692][ T5830] 8021q: adding VLAN 0 to HW filter on device team0 [ 100.030126][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0 [ 100.059968][ T228] bridge0: port 1(bridge_slave_0) entered blocking state [ 100.067435][ T228] bridge0: port 1(bridge_slave_0) entered forwarding state [ 100.111973][ T228] bridge0: port 2(bridge_slave_1) entered blocking state [ 100.119526][ T228] bridge0: port 2(bridge_slave_1) entered forwarding state [ 100.160730][ T5828] 8021q: adding VLAN 0 to HW filter on device team0 [ 100.207237][ T228] bridge0: port 1(bridge_slave_0) entered blocking state [ 100.214490][ T228] bridge0: port 1(bridge_slave_0) entered forwarding state [ 100.278599][ T1111] bridge0: port 2(bridge_slave_1) entered blocking state [ 100.285861][ T1111] bridge0: port 2(bridge_slave_1) entered forwarding state [ 100.307744][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0 [ 100.393644][ T5831] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 100.405177][ T5829] 8021q: adding VLAN 0 to HW filter on device team0 [ 100.472595][ T1111] bridge0: port 1(bridge_slave_0) entered blocking state [ 100.479845][ T1111] bridge0: port 1(bridge_slave_0) entered forwarding state [ 100.492517][ T5837] Bluetooth: hci0: command tx timeout [ 100.492540][ T5843] Bluetooth: hci1: command tx timeout [ 100.492864][ T5845] Bluetooth: hci3: command tx timeout [ 100.509506][ T5835] Bluetooth: hci2: command tx timeout [ 100.530411][ T1111] bridge0: port 2(bridge_slave_1) entered blocking state [ 100.537810][ T1111] bridge0: port 2(bridge_slave_1) entered forwarding state [ 100.727147][ T5831] veth0_vlan: entered promiscuous mode [ 100.770825][ T5831] veth1_vlan: entered promiscuous mode [ 100.869109][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 100.932963][ T5831] veth0_macvtap: entered promiscuous mode [ 100.950206][ T5831] veth1_macvtap: entered promiscuous mode [ 101.027731][ T5830] veth0_vlan: entered promiscuous mode [ 101.064438][ T5830] veth1_vlan: entered promiscuous mode [ 101.078279][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 101.121649][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 101.154300][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 101.169171][ T3514] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.188272][ T3514] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.197628][ T3514] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.210641][ T3514] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.258466][ T5830] veth0_macvtap: entered promiscuous mode [ 101.291596][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 101.325290][ T5830] veth1_macvtap: entered promiscuous mode [ 101.387418][ T3446] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.405650][ T3446] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.413624][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 101.431312][ T5828] veth0_vlan: entered promiscuous mode [ 101.465228][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 101.486958][ T228] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.497199][ T3446] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.497794][ T228] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.512576][ T3446] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.527896][ T228] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.538779][ T228] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.562214][ T5828] veth1_vlan: entered promiscuous mode [ 101.636778][ T5831] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 101.665314][ T5829] veth0_vlan: entered promiscuous mode [ 101.753279][ T5829] veth1_vlan: entered promiscuous mode [ 101.817079][ T3446] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.836126][ T3446] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.857985][ T5828] veth0_macvtap: entered promiscuous mode [ 101.899715][ T5828] veth1_macvtap: entered promiscuous mode [ 101.915952][ T3514] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.927760][ T3514] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.981085][ T5829] veth0_macvtap: entered promiscuous mode [ 101.995748][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 102.018192][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 102.064033][ T5829] veth1_macvtap: entered promiscuous mode [ 102.123949][ T3446] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.164046][ T3446] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.199556][ T3446] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.223849][ T3446] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.357945][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 102.436171][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 102.472533][ T3514] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.480408][ T3514] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.520627][ T5930] FAULT_INJECTION: forcing a failure. [ 102.520627][ T5930] name failslab, interval 1, probability 0, space 0, times 1 [ 102.538567][ T4504] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.549639][ T4504] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.558772][ T4504] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.568921][ T5930] CPU: 1 UID: 0 PID: 5930 Comm: syz.1.2 Not tainted syzkaller #0 PREEMPT(full) [ 102.568966][ T5930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 102.568985][ T5930] Call Trace: [ 102.568996][ T5930] [ 102.569009][ T5930] dump_stack_lvl+0x16c/0x1f0 [ 102.569052][ T5930] should_fail_ex+0x512/0x640 [ 102.569096][ T5930] ? __kmalloc_cache_noprof+0x5f/0x800 [ 102.569136][ T5930] should_failslab+0xc2/0x120 [ 102.569183][ T5930] __kmalloc_cache_noprof+0x80/0x800 [ 102.569216][ T5930] ? ptrace_may_access+0x35/0x50 [ 102.569262][ T5930] ? sched_core_share_pid+0x3c1/0x9d0 [ 102.569308][ T5930] ? do_raw_spin_unlock+0x172/0x230 [ 102.569350][ T5930] ? sched_core_share_pid+0x3c1/0x9d0 [ 102.569395][ T5930] sched_core_share_pid+0x3c1/0x9d0 [ 102.569441][ T5930] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 102.569493][ T5930] ? __pfx_sched_core_share_pid+0x10/0x10 [ 102.569539][ T5930] ? static_key_count+0x5a/0x70 [ 102.569581][ T5930] ? security_task_prctl+0x11c/0x160 [ 102.569622][ T5930] __do_sys_prctl+0x317/0x2220 [ 102.569669][ T5930] ? __pfx___do_sys_prctl+0x10/0x10 [ 102.569717][ T5930] do_syscall_64+0xcd/0xf80 [ 102.569757][ T5930] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 102.569790][ T5930] RIP: 0033:0x7f231458f7c9 [ 102.569817][ T5930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 102.569847][ T5930] RSP: 002b:00007f23153ef038 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 102.569876][ T5930] RAX: ffffffffffffffda RBX: 00007f23147e6090 RCX: 00007f231458f7c9 [ 102.569896][ T5930] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000003e [ 102.569912][ T5930] RBP: 00007f2314613f91 R08: 0000000000000000 R09: 0000000000000000 [ 102.569929][ T5930] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 102.569946][ T5930] R13: 00007f23147e6128 R14: 00007f23147e6090 R15: 00007ffcbf712c88 [ 102.569988][ T5930] [ 102.672392][ T5837] Bluetooth: hci1: command tx timeout [ 102.695575][ T5845] Bluetooth: hci0: command tx timeout [ 102.695630][ T5845] Bluetooth: hci2: command tx timeout [ 102.715976][ T5835] Bluetooth: hci3: command tx timeout [ 102.825153][ T4504] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.945720][ T1093] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.954582][ T1093] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.320958][ T228] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.345608][ T228] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.469791][ T228] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.496484][ T228] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.812875][ T5938] FAULT_INJECTION: forcing a failure. [ 103.812875][ T5938] name failslab, interval 1, probability 0, space 0, times 0 [ 103.893927][ T5938] CPU: 0 UID: 0 PID: 5938 Comm: syz.3.4 Not tainted syzkaller #0 PREEMPT(full) [ 103.893973][ T5938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 103.893992][ T5938] Call Trace: [ 103.894001][ T5938] [ 103.894013][ T5938] dump_stack_lvl+0x16c/0x1f0 [ 103.894053][ T5938] should_fail_ex+0x512/0x640 [ 103.894094][ T5938] ? __kmalloc_cache_noprof+0x5f/0x800 [ 103.894135][ T5938] should_failslab+0xc2/0x120 [ 103.894179][ T5938] __kmalloc_cache_noprof+0x80/0x800 [ 103.894211][ T5938] ? __pfx_ida_alloc_range+0x10/0x10 [ 103.894237][ T5938] ? alloc_fs_context+0x57/0xf50 [ 103.894267][ T5938] ? alloc_fs_context+0x57/0xf50 [ 103.894290][ T5938] alloc_fs_context+0x57/0xf50 [ 103.894319][ T5938] mq_init_ns+0x16e/0x810 [ 103.894354][ T5938] copy_ipcs+0x3db/0x7d0 [ 103.894388][ T5938] create_new_namespaces+0x20a/0xab0 [ 103.894421][ T5938] ? security_capable+0x7e/0x260 [ 103.894455][ T5938] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 103.894490][ T5938] ksys_unshare+0x45b/0xa40 [ 103.894527][ T5938] ? __pfx_ksys_unshare+0x10/0x10 [ 103.894574][ T5938] ? xfd_validate_state+0x61/0x180 [ 103.894605][ T5938] __x64_sys_unshare+0x31/0x40 [ 103.894642][ T5938] do_syscall_64+0xcd/0xf80 [ 103.894671][ T5938] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 103.894697][ T5938] RIP: 0033:0x7f781e38f7c9 [ 103.894717][ T5938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 103.894741][ T5938] RSP: 002b:00007f781f157038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 103.894765][ T5938] RAX: ffffffffffffffda RBX: 00007f781e5e5fa0 RCX: 00007f781e38f7c9 [ 103.894781][ T5938] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000000 [ 103.894796][ T5938] RBP: 00007f781e413f91 R08: 0000000000000000 R09: 0000000000000000 [ 103.894810][ T5938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 103.894824][ T5938] R13: 00007f781e5e6038 R14: 00007f781e5e5fa0 R15: 00007fff58ceb678 [ 103.894856][ T5938] [ 103.951661][ T5944] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 104.478880][ T5950] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 104.733258][ T5845] Bluetooth: hci3: command tx timeout [ 104.733268][ T5837] Bluetooth: hci0: command tx timeout [ 104.745258][ T5843] Bluetooth: hci1: command tx timeout [ 104.812095][ T5843] Bluetooth: hci2: command tx timeout [ 104.970019][ T5955] zswap: compressor not available [ 105.516688][ T5961] mmap: syz.2.7 (5961) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 105.582615][ T0] NOHZ tick-stop error: local softirq work is pending, handler #1c0!!! [ 105.592190][ T0] NOHZ tick-stop error: local softirq work is pending, handler #c2!!! [ 105.792259][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 106.193961][ T5966] netlink: 62 bytes leftover after parsing attributes in process `syz.3.10'. [ 106.209469][ T5976] FAULT_INJECTION: forcing a failure. [ 106.209469][ T5976] name failslab, interval 1, probability 0, space 0, times 0 [ 106.223166][ T5976] CPU: 1 UID: 0 PID: 5976 Comm: syz.1.11 Not tainted syzkaller #0 PREEMPT(full) [ 106.223210][ T5976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 106.223228][ T5976] Call Trace: [ 106.223238][ T5976] [ 106.223250][ T5976] dump_stack_lvl+0x16c/0x1f0 [ 106.223289][ T5976] should_fail_ex+0x512/0x640 [ 106.223334][ T5976] ? __kmalloc_cache_noprof+0x5f/0x800 [ 106.223374][ T5976] should_failslab+0xc2/0x120 [ 106.223421][ T5976] __kmalloc_cache_noprof+0x80/0x800 [ 106.223457][ T5976] ? allocate_file_region_entries+0x1a0/0x620 [ 106.223504][ T5976] ? allocate_file_region_entries+0x1a0/0x620 [ 106.223541][ T5976] ? _raw_spin_unlock+0x28/0x50 [ 106.223588][ T5976] allocate_file_region_entries+0x1a0/0x620 [ 106.223636][ T5976] ? __pfx_allocate_file_region_entries+0x10/0x10 [ 106.223687][ T5976] region_chg+0x85/0x140 [ 106.223727][ T5976] __vma_reservation_common+0x43b/0x740 [ 106.223770][ T5976] ? __pfx___vma_reservation_common+0x10/0x10 [ 106.223810][ T5976] ? filemap_get_entry+0x1a7/0x3b0 [ 106.223868][ T5976] alloc_hugetlb_folio+0x8ff/0x14c0 [ 106.223925][ T5976] ? __pfx_alloc_hugetlb_folio+0x10/0x10 [ 106.223981][ T5976] ? __filemap_get_folio_mpol+0x32f/0xc60 [ 106.224029][ T5976] hugetlb_no_page+0x10fa/0x2140 [ 106.224077][ T5976] hugetlb_fault+0x5ed/0x1730 [ 106.224116][ T5976] ? __pfx_hugetlb_fault+0x10/0x10 [ 106.224166][ T5976] ? find_vma+0xbf/0x140 [ 106.224206][ T5976] ? __pfx_find_vma+0x10/0x10 [ 106.224252][ T5976] handle_mm_fault+0x95d/0xad0 [ 106.224291][ T5976] do_user_addr_fault+0x7a6/0x1370 [ 106.224333][ T5976] ? rcu_is_watching+0x12/0xc0 [ 106.224382][ T5976] exc_page_fault+0x64/0xc0 [ 106.224415][ T5976] asm_exc_page_fault+0x26/0x30 [ 106.224446][ T5976] RIP: 0010:__put_user_4+0xd/0x20 [ 106.224478][ T5976] Code: 66 89 01 31 c9 0f 01 ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 80 00 00 00 00 90 90 90 [ 106.224507][ T5976] RSP: 0018:ffffc90004bafd78 EFLAGS: 00050246 [ 106.224534][ T5976] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 106.224552][ T5976] RDX: 0000000000080000 RSI: ffffffff89008ed2 RDI: ffffffff8bf24a80 [ 106.224572][ T5976] RBP: 1ffff92000975fb1 R08: 00000000ffffffff R09: 00000000ffffffff [ 106.224590][ T5976] R10: 0000000000000001 R11: ffff888029c98b30 R12: 0000000000000000 [ 106.224608][ T5976] R13: 00000000800455d1 R14: ffff88814c307210 R15: ffff88814c307200 [ 106.224642][ T5976] ? snd_ctl_ioctl+0x322/0x13e0 [ 106.224676][ T5976] snd_ctl_ioctl+0x32c/0x13e0 [ 106.224706][ T5976] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 106.224739][ T5976] ? find_held_lock+0x2b/0x80 [ 106.224777][ T5976] ? hook_file_ioctl_common+0x144/0x410 [ 106.224842][ T5976] ? __fget_files+0x20e/0x3c0 [ 106.224890][ T5976] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 106.224925][ T5976] __x64_sys_ioctl+0x18e/0x210 [ 106.224965][ T5976] do_syscall_64+0xcd/0xf80 [ 106.225001][ T5976] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 106.225032][ T5976] RIP: 0033:0x7f231458f7c9 [ 106.225057][ T5976] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 106.225085][ T5976] RSP: 002b:00007f23153ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 106.225113][ T5976] RAX: ffffffffffffffda RBX: 00007f23147e6090 RCX: 00007f231458f7c9 [ 106.225132][ T5976] RDX: 0000000000000000 RSI: 00000000800455d1 RDI: 0000000000000006 [ 106.225150][ T5976] RBP: 00007f2314613f91 R08: 0000000000000000 R09: 0000000000000000 [ 106.225168][ T5976] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 106.225186][ T5976] R13: 00007f23147e6128 R14: 00007f23147e6090 R15: 00007ffcbf712c88 [ 106.225230][ T5976] [ 106.596187][ T0] NOHZ tick-stop error: local softirq work is pending, handler #48!!! [ 106.973434][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 106.981812][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 108.662604][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 109.133152][ T0] NOHZ tick-stop error: local softirq work is pending, handler #48!!! [ 109.884612][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 110.002319][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 110.445480][ T6023] ubi0: attaching mtd0 [ 110.521444][ T6023] ubi0: scanning is finished [ 110.546166][ T6023] ubi0: empty MTD device detected [ 111.132551][ T6023] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 111.167617][ T6023] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 111.192367][ T6023] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 111.202120][ T6023] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 111.209823][ T6023] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 111.237696][ T6023] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 111.263083][ T6023] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 1827516932 [ 111.273563][ T6023] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 111.314391][ T6033] ubi0: background thread "ubi_bgt0d" started, PID 6033 [ 111.324372][ T6024] ubi0: detaching mtd0 [ 111.441004][ T6024] ubi0: mtd0 is detached [ 113.135887][ T6044] binder: 6043:6044 ioctl c018620c 0 returned -22 [ 113.144875][ T6044] netlink: 28 bytes leftover after parsing attributes in process `syz.3.25'. [ 113.173628][ T6050] netlink: 28 bytes leftover after parsing attributes in process `syz.1.26'. [ 113.232129][ T6044] Zero length message leads to an empty skb [ 115.345194][ T6071] input: jJǸ-¶š9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input5 [ 115.544433][ T6076] Process accounting resumed [ 115.926143][ T6082] syz.0.33 uses obsolete (PF_INET,SOCK_PACKET) [ 116.920606][ T6080] syz.2.31 (6080) used greatest stack depth: 19688 bytes left [ 117.738939][ T6110] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 117.754329][ T6110] random: crng reseeded on system resumption [ 117.850334][ T6110] can0: slcan on pty233. [ 117.943115][ T6109] can0 (unregistered): slcan off pty233. [ 118.199527][ T6121] netlink: 4 bytes leftover after parsing attributes in process `syz.1.42'. [ 118.277027][ T6123] netlink: 32 bytes leftover after parsing attributes in process `syz.1.42'. [ 118.370087][ T6121] HfR: entered promiscuous mode [ 120.281464][ T6144] FAULT_INJECTION: forcing a failure. [ 120.281464][ T6144] name fail_futex, interval 1, probability 0, space 0, times 1 [ 120.355860][ T6144] CPU: 1 UID: 0 PID: 6144 Comm: syz.2.47 Not tainted syzkaller #0 PREEMPT(full) [ 120.355901][ T6144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 120.355917][ T6144] Call Trace: [ 120.355927][ T6144] [ 120.355938][ T6144] dump_stack_lvl+0x16c/0x1f0 [ 120.355975][ T6144] should_fail_ex+0x512/0x640 [ 120.356020][ T6144] get_futex_key+0x1d0/0x15f0 [ 120.356055][ T6144] ? do_raw_spin_lock+0x12c/0x2b0 [ 120.356092][ T6144] ? __pfx_get_futex_key+0x10/0x10 [ 120.356128][ T6144] ? kvm_sched_clock_read+0x11/0x20 [ 120.356164][ T6144] futex_wake+0xea/0x530 [ 120.356199][ T6144] ? __pfx___schedule+0x10/0x10 [ 120.356226][ T6144] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 120.356254][ T6144] ? __pfx_futex_wake+0x10/0x10 [ 120.356299][ T6144] ? preempt_schedule_thunk+0x16/0x30 [ 120.356333][ T6144] do_futex+0x1e3/0x350 [ 120.356374][ T6144] ? __pfx_do_futex+0x10/0x10 [ 120.356409][ T6144] ? __pfx_sched_core_share_pid+0x10/0x10 [ 120.356454][ T6144] __x64_sys_futex+0x1e0/0x4c0 [ 120.356494][ T6144] ? __pfx___x64_sys_futex+0x10/0x10 [ 120.356531][ T6144] ? xfd_validate_state+0x61/0x180 [ 120.356558][ T6144] ? __pfx___do_sys_prctl+0x10/0x10 [ 120.356604][ T6144] do_syscall_64+0xcd/0xf80 [ 120.356639][ T6144] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.356667][ T6144] RIP: 0033:0x7fdb2a58f7c9 [ 120.356692][ T6144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 120.356719][ T6144] RSP: 002b:00007fdb2b3ae0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 120.356748][ T6144] RAX: ffffffffffffffda RBX: 00007fdb2a7e6098 RCX: 00007fdb2a58f7c9 [ 120.356768][ T6144] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fdb2a7e609c [ 120.356787][ T6144] RBP: 00007fdb2a7e6090 R08: 00007fdb2b3d0000 R09: 0000000000000000 [ 120.356805][ T6144] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 120.356822][ T6144] R13: 00007fdb2a7e6128 R14: 00007ffc62e00980 R15: 00007ffc62e00a68 [ 120.356863][ T6144] [ 123.111449][ T6193] netlink: 4 bytes leftover after parsing attributes in process `syz.0.55'. [ 123.254657][ T30] audit: type=1800 audit(1765293853.435:2): pid=6190 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.55" name="lu_gp_id" dev="configfs" ino=9620 res=0 errno=0 [ 123.993511][ T6206] FAULT_INJECTION: forcing a failure. [ 123.993511][ T6206] name fail_futex, interval 1, probability 0, space 0, times 0 [ 124.030564][ T6206] CPU: 0 UID: 0 PID: 6206 Comm: syz.3.58 Not tainted syzkaller #0 PREEMPT(full) [ 124.030606][ T6206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 124.030624][ T6206] Call Trace: [ 124.030634][ T6206] [ 124.030646][ T6206] dump_stack_lvl+0x16c/0x1f0 [ 124.030683][ T6206] should_fail_ex+0x512/0x640 [ 124.030732][ T6206] get_futex_key+0x1d0/0x15f0 [ 124.030770][ T6206] ? __pfx_get_futex_key+0x10/0x10 [ 124.030817][ T6206] futex_wake+0xea/0x530 [ 124.030856][ T6206] ? __pfx___schedule+0x10/0x10 [ 124.030886][ T6206] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 124.030917][ T6206] ? __pfx_futex_wake+0x10/0x10 [ 124.030967][ T6206] ? preempt_schedule_thunk+0x16/0x30 [ 124.031002][ T6206] do_futex+0x1e3/0x350 [ 124.031038][ T6206] ? __pfx_do_futex+0x10/0x10 [ 124.031072][ T6206] ? __pfx_sched_core_share_pid+0x10/0x10 [ 124.031119][ T6206] __x64_sys_futex+0x1e0/0x4c0 [ 124.031160][ T6206] ? __pfx___x64_sys_futex+0x10/0x10 [ 124.031198][ T6206] ? __pfx___do_sys_prctl+0x10/0x10 [ 124.031242][ T6206] do_syscall_64+0xcd/0xf80 [ 124.031278][ T6206] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 124.031307][ T6206] RIP: 0033:0x7f781e38f7c9 [ 124.031330][ T6206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 124.031369][ T6206] RSP: 002b:00007f781c5f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 124.031399][ T6206] RAX: ffffffffffffffda RBX: 00007f781e5e6098 RCX: 00007f781e38f7c9 [ 124.031419][ T6206] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f781e5e609c [ 124.031439][ T6206] RBP: 00007f781e5e6090 R08: 00007f781f158000 R09: 0000000000000000 [ 124.031458][ T6206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 124.031476][ T6206] R13: 00007f781e5e6128 R14: 00007fff58ceb590 R15: 00007fff58ceb678 [ 124.031518][ T6206] [ 125.112622][ T6216] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 127.622390][ T6260] futex_wake_op: syz.1.67 tries to shift op by -2048; fix this program [ 127.625363][ T6260] futex_wake_op: syz.1.67 tries to shift op by -2048; fix this program [ 127.744356][ T6260] 0x000000000001-0x000000020000 : "" [ 127.796519][ T6260] ftl_cs: FTL header corrupt! [ 128.286666][ T6270] FAULT_INJECTION: forcing a failure. [ 128.286666][ T6270] name failslab, interval 1, probability 0, space 0, times 0 [ 128.317315][ T6270] CPU: 0 UID: 0 PID: 6270 Comm: syz.0.70 Not tainted syzkaller #0 PREEMPT(full) [ 128.317358][ T6270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 128.317377][ T6270] Call Trace: [ 128.317387][ T6270] [ 128.317399][ T6270] dump_stack_lvl+0x16c/0x1f0 [ 128.317436][ T6270] should_fail_ex+0x512/0x640 [ 128.317478][ T6270] ? __kmalloc_cache_noprof+0x5f/0x800 [ 128.317527][ T6270] should_failslab+0xc2/0x120 [ 128.317573][ T6270] __kmalloc_cache_noprof+0x80/0x800 [ 128.317604][ T6270] ? ptrace_may_access+0x35/0x50 [ 128.317646][ T6270] ? sched_core_share_pid+0x3c1/0x9d0 [ 128.317688][ T6270] ? do_raw_spin_unlock+0x172/0x230 [ 128.317726][ T6270] ? sched_core_share_pid+0x3c1/0x9d0 [ 128.317768][ T6270] sched_core_share_pid+0x3c1/0x9d0 [ 128.317809][ T6270] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 128.317856][ T6270] ? __pfx_sched_core_share_pid+0x10/0x10 [ 128.317905][ T6270] ? static_key_count+0x5a/0x70 [ 128.317942][ T6270] ? security_task_prctl+0x11c/0x160 [ 128.317983][ T6270] __do_sys_prctl+0x317/0x2220 [ 128.318019][ T6270] ? __pfx___do_sys_prctl+0x10/0x10 [ 128.318065][ T6270] do_syscall_64+0xcd/0xf80 [ 128.318101][ T6270] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.318132][ T6270] RIP: 0033:0x7f257258f7c9 [ 128.318156][ T6270] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 128.318185][ T6270] RSP: 002b:00007f25734a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 128.318216][ T6270] RAX: ffffffffffffffda RBX: 00007f25727e6090 RCX: 00007f257258f7c9 [ 128.318235][ T6270] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000003e [ 128.318252][ T6270] RBP: 00007f2572613f91 R08: 0000000000000000 R09: 0000000000000000 [ 128.318270][ T6270] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 128.318287][ T6270] R13: 00007f25727e6128 R14: 00007f25727e6090 R15: 00007fff93a763a8 [ 128.318328][ T6270] [ 129.335456][ T6291] openvswitch: netlink: Flow key attribute not present in set flow. [ 131.583089][ T6329] random: crng reseeded on system resumption [ 133.575766][ T6357] netlink: 8 bytes leftover after parsing attributes in process `syz.3.85'. [ 134.530034][ T6372] Sensor B: ================= START STATUS ================= [ 134.599758][ T6371] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 134.636246][ T6372] Sensor B: Test Pattern: 75% Colorbar [ 134.711449][ T6372] Sensor B: Show Information: All [ 134.738404][ T6372] Sensor B: Vertical Flip: false [ 134.818802][ T6372] Sensor B: Horizontal Flip: false [ 134.844437][ T6372] Sensor B: Brightness: 128 [ 134.917517][ T6372] Sensor B: Contrast: 128 [ 134.951993][ T6372] Sensor B: Hue: 0 [ 134.955834][ T6372] Sensor B: Saturation: 128 [ 134.960407][ T6372] Sensor B: ================== END STATUS ================== [ 135.077872][ T6380] process 'syz.1.96' launched '/dev/fd/4' with NULL argv: empty string added [ 138.272827][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.279492][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 138.307622][ T6428] zswap: compressor not available [ 138.448537][ T6442] random: crng reseeded on system resumption [ 140.340431][ T6479] input: jJǸ-¶š9ã%vø“ûJ86Ö‘ as /devices/virtual/input/input6 [ 141.197452][ T6506] netlink: 28 bytes leftover after parsing attributes in process `syz.2.116'. [ 141.612267][ T6528] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7 [ 142.700939][ T6531] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8 [ 145.818427][ T6582] random: crng reseeded on system resumption [ 145.830034][ T6583] netlink: 8 bytes leftover after parsing attributes in process `syz.2.135'. [ 146.512768][ T6592] netlink: 8 bytes leftover after parsing attributes in process `syz.2.129'. [ 147.236858][ T6584] Process accounting paused [ 147.615339][ T6603] can: request_module (can-proto-0) failed. [ 147.734521][ T6603] FAULT_INJECTION: forcing a failure. [ 147.734521][ T6603] name failslab, interval 1, probability 0, space 0, times 0 [ 147.748029][ T6603] CPU: 1 UID: 0 PID: 6603 Comm: syz.1.132 Not tainted syzkaller #0 PREEMPT(full) [ 147.748071][ T6603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 147.748089][ T6603] Call Trace: [ 147.748098][ T6603] [ 147.748109][ T6603] dump_stack_lvl+0x16c/0x1f0 [ 147.748147][ T6603] should_fail_ex+0x512/0x640 [ 147.748187][ T6603] ? kmem_cache_alloc_noprof+0x62/0x770 [ 147.748226][ T6603] should_failslab+0xc2/0x120 [ 147.748283][ T6603] kmem_cache_alloc_noprof+0x83/0x770 [ 147.748320][ T6603] ? getname_flags.part.0+0x4c/0x550 [ 147.748371][ T6603] ? getname_flags.part.0+0x4c/0x550 [ 147.748431][ T6603] getname_flags.part.0+0x4c/0x550 [ 147.748472][ T6603] getname_flags+0x93/0xf0 [ 147.748510][ T6603] do_sys_openat2+0xb8/0x280 [ 147.748542][ T6603] ? __pfx_do_sys_openat2+0x10/0x10 [ 147.748573][ T6603] ? find_held_lock+0x2b/0x80 [ 147.748624][ T6603] __x64_sys_openat+0x174/0x210 [ 147.748659][ T6603] ? __pfx___x64_sys_openat+0x10/0x10 [ 147.748712][ T6603] do_syscall_64+0xcd/0xf80 [ 147.748748][ T6603] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 147.748780][ T6603] RIP: 0033:0x7f231458f7c9 [ 147.748806][ T6603] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 147.748836][ T6603] RSP: 002b:00007f23153ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 147.748868][ T6603] RAX: ffffffffffffffda RBX: 00007f23147e6090 RCX: 00007f231458f7c9 [ 147.748890][ T6603] RDX: 0000000000040000 RSI: 0000200000001cc0 RDI: ffffffffffffff9c [ 147.748909][ T6603] RBP: 00007f2314613f91 R08: 0000000000000000 R09: 0000000000000000 [ 147.748927][ T6603] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 147.748945][ T6603] R13: 00007f23147e6128 R14: 00007f23147e6090 R15: 00007ffcbf712c88 [ 147.748988][ T6603] [ 147.963437][ T6613] capability: warning: `syz.0.133' uses 32-bit capabilities (legacy support in use) [ 148.662715][ T6626] netlink: 326 bytes leftover after parsing attributes in process `syz.0.137'. [ 149.673691][ T6647] ubi0: attaching mtd0 [ 149.679129][ T6647] ubi0: scanning is finished [ 149.688940][ T6632] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0 [ 149.750335][ T6641] FAULT_INJECTION: forcing a failure. [ 149.750335][ T6641] name failslab, interval 1, probability 0, space 0, times 0 [ 149.785656][ T6641] CPU: 0 UID: 0 PID: 6641 Comm: syz.1.141 Not tainted syzkaller #0 PREEMPT(full) [ 149.785700][ T6641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 149.785718][ T6641] Call Trace: [ 149.785729][ T6641] [ 149.785741][ T6641] dump_stack_lvl+0x16c/0x1f0 [ 149.785783][ T6641] should_fail_ex+0x512/0x640 [ 149.785821][ T6641] ? __kmalloc_cache_noprof+0x5f/0x800 [ 149.785857][ T6641] should_failslab+0xc2/0x120 [ 149.785900][ T6641] __kmalloc_cache_noprof+0x80/0x800 [ 149.785933][ T6641] ? allocate_file_region_entries+0x1a0/0x620 [ 149.785984][ T6641] ? trace_mm_page_alloc+0x11b/0x180 [ 149.786032][ T6641] ? allocate_file_region_entries+0x1a0/0x620 [ 149.786068][ T6641] ? _raw_spin_unlock+0x28/0x50 [ 149.786116][ T6641] allocate_file_region_entries+0x1a0/0x620 [ 149.786163][ T6641] ? __pfx_allocate_file_region_entries+0x10/0x10 [ 149.786214][ T6641] region_chg+0x85/0x140 [ 149.786252][ T6641] __vma_reservation_common+0x43b/0x740 [ 149.786292][ T6641] ? __pfx___vma_reservation_common+0x10/0x10 [ 149.786326][ T6641] ? filemap_get_entry+0x1a7/0x3b0 [ 149.786367][ T6641] alloc_hugetlb_folio+0x8ff/0x14c0 [ 149.786422][ T6641] ? __pfx_alloc_hugetlb_folio+0x10/0x10 [ 149.786476][ T6641] ? __filemap_get_folio_mpol+0x32f/0xc60 [ 149.786525][ T6641] hugetlb_no_page+0x10fa/0x2140 [ 149.786594][ T6641] hugetlb_fault+0x5ed/0x1730 [ 149.786632][ T6641] ? __pfx_hugetlb_fault+0x10/0x10 [ 149.786678][ T6641] ? find_vma+0xbf/0x140 [ 149.786714][ T6641] ? __pfx_find_vma+0x10/0x10 [ 149.786754][ T6641] handle_mm_fault+0x95d/0xad0 [ 149.786790][ T6641] do_user_addr_fault+0x7a6/0x1370 [ 149.786831][ T6641] ? rcu_is_watching+0x12/0xc0 [ 149.786878][ T6641] exc_page_fault+0x64/0xc0 [ 149.786912][ T6641] asm_exc_page_fault+0x26/0x30 [ 149.786942][ T6641] RIP: 0010:__put_user_4+0xd/0x20 [ 149.786984][ T6641] Code: 66 89 01 31 c9 0f 01 ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 80 00 00 00 00 90 90 90 [ 149.787013][ T6641] RSP: 0018:ffffc900034c7d78 EFLAGS: 00050246 [ 149.787040][ T6641] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 149.787059][ T6641] RDX: 0000000000080000 RSI: ffffffff89008ed2 RDI: ffffffff8bf24a80 [ 149.787079][ T6641] RBP: 1ffff92000698fb1 R08: 00000000ffffffff R09: 00000000ffffffff [ 149.787099][ T6641] R10: 0000000000000001 R11: ffff888026a266b0 R12: 0000000000000000 [ 149.787118][ T6641] R13: 00000000800455d1 R14: ffff888032623e10 R15: ffff888032623e00 [ 149.787153][ T6641] ? snd_ctl_ioctl+0x322/0x13e0 [ 149.787193][ T6641] snd_ctl_ioctl+0x32c/0x13e0 [ 149.787225][ T6641] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 149.787263][ T6641] ? find_held_lock+0x2b/0x80 [ 149.787302][ T6641] ? hook_file_ioctl_common+0x144/0x410 [ 149.787356][ T6641] ? __fget_files+0x20e/0x3c0 [ 149.787405][ T6641] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 149.787439][ T6641] __x64_sys_ioctl+0x18e/0x210 [ 149.787481][ T6641] do_syscall_64+0xcd/0xf80 [ 149.787517][ T6641] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.787548][ T6641] RIP: 0033:0x7f231458f7c9 [ 149.787573][ T6641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 149.787600][ T6641] RSP: 002b:00007f23153ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 149.787628][ T6641] RAX: ffffffffffffffda RBX: 00007f23147e6090 RCX: 00007f231458f7c9 [ 149.787647][ T6641] RDX: 0000000000000000 RSI: 00000000800455d1 RDI: 0000000000000006 [ 149.787665][ T6641] RBP: 00007f2314613f91 R08: 0000000000000000 R09: 0000000000000000 [ 149.787683][ T6641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 149.787700][ T6641] R13: 00007f23147e6128 R14: 00007f23147e6090 R15: 00007ffcbf712c88 [ 149.787744][ T6641] [ 150.352882][ T6647] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 150.360636][ T6647] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 150.368165][ T6647] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 150.375192][ T6647] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 150.383370][ T6647] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 150.390138][ T6647] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 150.398238][ T6647] ubi0: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 1827516932 [ 150.408522][ T6647] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 150.419310][ T6649] ubi0: detaching mtd0 [ 150.542988][ T6649] ubi0: mtd0 is detached [ 150.772234][ T6656] vhci_hcd vhci_hcd.2: invalid port number 252 [ 150.784422][ T6656] vhci_hcd vhci_hcd.2: default hub control req: 040f v0772 i00fc l2 [ 151.770111][ T6673] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 152.163830][ T9] smpboot: CPU 1 is now offline [ 152.932136][ T6698] can: request_module (can-proto-0) failed. [ 156.651967][ T5843] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 156.874457][ T6774] FAULT_INJECTION: forcing a failure. [ 156.874457][ T6774] name failslab, interval 1, probability 0, space 0, times 0 [ 156.957186][ T6774] CPU: 0 UID: 0 PID: 6774 Comm: syz.1.158 Not tainted syzkaller #0 PREEMPT(full) [ 156.957213][ T6774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 156.957224][ T6774] Call Trace: [ 156.957230][ T6774] [ 156.957237][ T6774] dump_stack_lvl+0x16c/0x1f0 [ 156.957262][ T6774] should_fail_ex+0x512/0x640 [ 156.957287][ T6774] ? kmem_cache_alloc_lru_noprof+0x66/0x770 [ 156.957313][ T6774] should_failslab+0xc2/0x120 [ 156.957342][ T6774] kmem_cache_alloc_lru_noprof+0x87/0x770 [ 156.957365][ T6774] ? __d_alloc+0x35/0xa80 [ 156.957397][ T6774] ? __d_alloc+0x35/0xa80 [ 156.957424][ T6774] __d_alloc+0x35/0xa80 [ 156.957453][ T6774] d_alloc_pseudo+0x1c/0xc0 [ 156.957474][ T6774] alloc_file_pseudo+0xcf/0x230 [ 156.957495][ T6774] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 156.957514][ T6774] ? alloc_fd+0x471/0x7d0 [ 156.957543][ T6774] sock_alloc_file+0x50/0x210 [ 156.957562][ T6774] __sys_socket+0x1c0/0x260 [ 156.957583][ T6774] ? fput+0x70/0xf0 [ 156.957601][ T6774] ? __pfx___sys_socket+0x10/0x10 [ 156.957623][ T6774] ? xfd_validate_state+0x61/0x180 [ 156.957640][ T6774] ? __pfx_ksys_write+0x10/0x10 [ 156.957669][ T6774] __x64_sys_socket+0x72/0xb0 [ 156.957690][ T6774] ? lockdep_hardirqs_on+0x7c/0x110 [ 156.957709][ T6774] do_syscall_64+0xcd/0xf80 [ 156.957729][ T6774] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 156.957747][ T6774] RIP: 0033:0x7f231458f7c9 [ 156.957762][ T6774] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 156.957780][ T6774] RSP: 002b:00007f2315410038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 156.957797][ T6774] RAX: ffffffffffffffda RBX: 00007f23147e5fa0 RCX: 00007f231458f7c9 [ 156.957809][ T6774] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 156.957819][ T6774] RBP: 00007f2314613f91 R08: 0000000000000000 R09: 0000000000000000 [ 156.957830][ T6774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 156.957840][ T6774] R13: 00007f23147e6038 R14: 00007f23147e5fa0 R15: 00007ffcbf712c88 [ 156.957862][ T6774] [ 157.666581][ T6781] FAULT_INJECTION: forcing a failure. [ 157.666581][ T6781] name failslab, interval 1, probability 0, space 0, times 0 [ 157.738169][ T6781] CPU: 0 UID: 0 PID: 6781 Comm: syz.3.159 Not tainted syzkaller #0 PREEMPT(full) [ 157.738196][ T6781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 157.738207][ T6781] Call Trace: [ 157.738213][ T6781] [ 157.738221][ T6781] dump_stack_lvl+0x16c/0x1f0 [ 157.738245][ T6781] should_fail_ex+0x512/0x640 [ 157.738271][ T6781] ? __kmalloc_cache_noprof+0x5f/0x800 [ 157.738295][ T6781] should_failslab+0xc2/0x120 [ 157.738323][ T6781] __kmalloc_cache_noprof+0x80/0x800 [ 157.738344][ T6781] ? allocate_file_region_entries+0x1a0/0x620 [ 157.738368][ T6781] ? trace_mm_page_alloc+0x11b/0x180 [ 157.738398][ T6781] ? allocate_file_region_entries+0x1a0/0x620 [ 157.738420][ T6781] ? _raw_spin_unlock+0x28/0x50 [ 157.738449][ T6781] allocate_file_region_entries+0x1a0/0x620 [ 157.738476][ T6781] ? __pfx_allocate_file_region_entries+0x10/0x10 [ 157.738507][ T6781] region_chg+0x85/0x140 [ 157.738530][ T6781] __vma_reservation_common+0x43b/0x740 [ 157.738556][ T6781] ? __pfx___vma_reservation_common+0x10/0x10 [ 157.738579][ T6781] ? filemap_get_entry+0x1a7/0x3b0 [ 157.738606][ T6781] alloc_hugetlb_folio+0x8ff/0x14c0 [ 157.738638][ T6781] ? __pfx_alloc_hugetlb_folio+0x10/0x10 [ 157.738670][ T6781] ? __filemap_get_folio_mpol+0x32f/0xc60 [ 157.738697][ T6781] hugetlb_no_page+0x10fa/0x2140 [ 157.738724][ T6781] hugetlb_fault+0x5ed/0x1730 [ 157.738746][ T6781] ? __pfx_hugetlb_fault+0x10/0x10 [ 157.738772][ T6781] ? find_vma+0xbf/0x140 [ 157.738805][ T6781] ? __pfx_find_vma+0x10/0x10 [ 157.738833][ T6781] handle_mm_fault+0x95d/0xad0 [ 157.738856][ T6781] do_user_addr_fault+0x7a6/0x1370 [ 157.738881][ T6781] ? rcu_is_watching+0x12/0xc0 [ 157.738910][ T6781] exc_page_fault+0x64/0xc0 [ 157.738930][ T6781] asm_exc_page_fault+0x26/0x30 [ 157.738948][ T6781] RIP: 0010:__put_user_4+0xd/0x20 [ 157.738967][ T6781] Code: 66 89 01 31 c9 0f 01 ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 80 00 00 00 00 90 90 90 [ 157.738985][ T6781] RSP: 0018:ffffc90003417d78 EFLAGS: 00050246 [ 157.739000][ T6781] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 157.739011][ T6781] RDX: 0000000000080000 RSI: ffffffff89008ed2 RDI: ffffffff8bf24a80 [ 157.739022][ T6781] RBP: 1ffff92000682fb1 R08: 00000000ffffffff R09: 00000000ffffffff [ 157.739033][ T6781] R10: 0000000000000001 R11: ffff88802df48b30 R12: 0000000000000000 [ 157.739044][ T6781] R13: 00000000800455d1 R14: ffff8880342b0010 R15: ffff8880342b0000 [ 157.739062][ T6781] ? snd_ctl_ioctl+0x322/0x13e0 [ 157.739085][ T6781] snd_ctl_ioctl+0x32c/0x13e0 [ 157.739104][ T6781] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 157.739125][ T6781] ? find_held_lock+0x2b/0x80 [ 157.739149][ T6781] ? hook_file_ioctl_common+0x144/0x410 [ 157.739181][ T6781] ? __fget_files+0x20e/0x3c0 [ 157.739209][ T6781] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 157.739229][ T6781] __x64_sys_ioctl+0x18e/0x210 [ 157.739253][ T6781] do_syscall_64+0xcd/0xf80 [ 157.739274][ T6781] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 157.739292][ T6781] RIP: 0033:0x7f781e38f7c9 [ 157.739307][ T6781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 157.739323][ T6781] RSP: 002b:00007f781c5d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 157.739340][ T6781] RAX: ffffffffffffffda RBX: 00007f781e5e6180 RCX: 00007f781e38f7c9 [ 157.739351][ T6781] RDX: 0000000000000000 RSI: 00000000800455d1 RDI: 0000000000000006 [ 157.739361][ T6781] RBP: 00007f781e413f91 R08: 0000000000000000 R09: 0000000000000000 [ 157.739372][ T6781] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 157.739382][ T6781] R13: 00007f781e5e6218 R14: 00007f781e5e6180 R15: 00007fff58ceb678 [ 157.739405][ T6781] [ 158.238053][ T6790] WARNING! power/level is deprecated; use power/control instead [ 158.266965][ T6790] hub 1-0:1.0: USB hub found [ 158.275391][ T6790] hub 1-0:1.0: 1 port detected [ 159.730319][ T6816] usb usb4: usbfs: process 6816 (syz.2.164) did not claim interface 0 before use [ 161.485970][ T6849] openvswitch: netlink: ERSPAN option length err (len 256, max 255). [ 163.622267][ T6898] futex_wake_op: syz.0.179 tries to shift op by -2048; fix this program [ 163.797463][ T6896] ima: policy update failed [ 163.835362][ T30] audit: type=1802 audit(1765293894.015:3): pid=6896 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.178" res=0 errno=0 [ 165.356180][ T6929] binder: 6927:6929 ioctl c018620c 0 returned -22 [ 165.399535][ T6929] netlink: 28 bytes leftover after parsing attributes in process `syz.3.184'. [ 167.024614][ T6956] zswap: compressor $–û not available [ 169.186250][ T7012] Unable to find swap-space signature [ 169.554220][ T7009] binder: BINDER_SET_CONTEXT_MGR already set [ 169.610797][ T7009] binder: 7008:7009 ioctl 4018620d 9 returned -16 [ 170.363934][ T7028] zswap: compressor not available [ 171.709356][ T7071] FAULT_INJECTION: forcing a failure. [ 171.709356][ T7071] name failslab, interval 1, probability 0, space 0, times 0 [ 171.860048][ T7072] queue_state_write: unsupported operation '' [ 171.898161][ T7071] CPU: 0 UID: 0 PID: 7071 Comm: syz.2.206 Not tainted syzkaller #0 PREEMPT(full) [ 171.898191][ T7071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 171.898201][ T7071] Call Trace: [ 171.898207][ T7071] [ 171.898214][ T7071] dump_stack_lvl+0x16c/0x1f0 [ 171.898238][ T7071] should_fail_ex+0x512/0x640 [ 171.898266][ T7071] should_failslab+0xc2/0x120 [ 171.898294][ T7071] kmem_cache_alloc_node_noprof+0x86/0x800 [ 171.898316][ T7071] ? alloc_io_context+0x21/0x2f0 [ 171.898343][ T7071] ? alloc_io_context+0x21/0x2f0 [ 171.898365][ T7071] alloc_io_context+0x21/0x2f0 [ 171.898387][ T7071] set_task_ioprio+0x49e/0x670 [ 171.898412][ T7071] __do_sys_ioprio_set+0x55b/0xb50 [ 171.898432][ T7071] ? __do_sys_ioprio_set+0x3dd/0xb50 [ 171.898457][ T7071] do_syscall_64+0xcd/0xf80 [ 171.898478][ T7071] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 171.898496][ T7071] RIP: 0033:0x7fdb2a58f7c9 [ 171.898510][ T7071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 171.898528][ T7071] RSP: 002b:00007fdb2b36c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fb [ 171.898545][ T7071] RAX: ffffffffffffffda RBX: 00007fdb2a7e6270 RCX: 00007fdb2a58f7c9 [ 171.898557][ T7071] RDX: 0000000000004b34 RSI: 0000000000000000 RDI: 0000000000000003 [ 171.898567][ T7071] RBP: 00007fdb2a613f91 R08: 0000000000000000 R09: 0000000000000000 [ 171.898577][ T7071] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 171.898597][ T7071] R13: 00007fdb2a7e6308 R14: 00007fdb2a7e6270 R15: 00007ffc62e00a68 [ 171.898619][ T7071] [ 172.384260][ T7085] FAULT_INJECTION: forcing a failure. [ 172.384260][ T7085] name failslab, interval 1, probability 0, space 0, times 0 [ 172.490797][ T7093] FAULT_INJECTION: forcing a failure. [ 172.490797][ T7093] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 172.509425][ T7085] CPU: 0 UID: 0 PID: 7085 Comm: syz.1.208 Not tainted syzkaller #0 PREEMPT(full) [ 172.509453][ T7085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 172.509463][ T7085] Call Trace: [ 172.509469][ T7085] [ 172.509476][ T7085] dump_stack_lvl+0x16c/0x1f0 [ 172.509500][ T7085] should_fail_ex+0x512/0x640 [ 172.509526][ T7085] ? __kmalloc_cache_noprof+0x5f/0x800 [ 172.509550][ T7085] should_failslab+0xc2/0x120 [ 172.509577][ T7085] __kmalloc_cache_noprof+0x80/0x800 [ 172.509598][ T7085] ? allocate_file_region_entries+0x1a0/0x620 [ 172.509621][ T7085] ? trace_mm_page_alloc+0x11b/0x180 [ 172.509650][ T7085] ? allocate_file_region_entries+0x1a0/0x620 [ 172.509672][ T7085] ? _raw_spin_unlock+0x28/0x50 [ 172.509700][ T7085] allocate_file_region_entries+0x1a0/0x620 [ 172.509729][ T7085] ? __pfx_allocate_file_region_entries+0x10/0x10 [ 172.509760][ T7085] region_chg+0x85/0x140 [ 172.509783][ T7085] __vma_reservation_common+0x43b/0x740 [ 172.509810][ T7085] ? __pfx___vma_reservation_common+0x10/0x10 [ 172.509833][ T7085] ? filemap_get_entry+0x1a7/0x3b0 [ 172.509868][ T7085] alloc_hugetlb_folio+0x8ff/0x14c0 [ 172.509900][ T7085] ? __pfx_alloc_hugetlb_folio+0x10/0x10 [ 172.509932][ T7085] ? __filemap_get_folio_mpol+0x32f/0xc60 [ 172.509959][ T7085] hugetlb_no_page+0x10fa/0x2140 [ 172.509985][ T7085] hugetlb_fault+0x5ed/0x1730 [ 172.510007][ T7085] ? __pfx_hugetlb_fault+0x10/0x10 [ 172.510033][ T7085] ? find_vma+0xbf/0x140 [ 172.510057][ T7085] ? __pfx_find_vma+0x10/0x10 [ 172.510084][ T7085] handle_mm_fault+0x95d/0xad0 [ 172.510108][ T7085] do_user_addr_fault+0x7a6/0x1370 [ 172.510132][ T7085] ? rcu_is_watching+0x12/0xc0 [ 172.510160][ T7085] exc_page_fault+0x64/0xc0 [ 172.510180][ T7085] asm_exc_page_fault+0x26/0x30 [ 172.510197][ T7085] RIP: 0010:__put_user_4+0xd/0x20 [ 172.510217][ T7085] Code: 66 89 01 31 c9 0f 01 ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 80 00 00 00 00 90 90 90 [ 172.510235][ T7085] RSP: 0018:ffffc9000ba17d78 EFLAGS: 00050246 [ 172.510250][ T7085] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 172.510261][ T7085] RDX: 0000000000080000 RSI: ffffffff89008ed2 RDI: ffffffff8bf24a80 [ 172.510272][ T7085] RBP: 1ffff92001742fb1 R08: 00000000ffffffff R09: 00000000ffffffff [ 172.510283][ T7085] R10: 0000000000000001 R11: ffff88802f0f29b0 R12: 0000000000000000 [ 172.510293][ T7085] R13: 00000000800455d1 R14: ffff8880787ec410 R15: ffff8880787ec400 [ 172.510312][ T7085] ? snd_ctl_ioctl+0x322/0x13e0 [ 172.510335][ T7085] snd_ctl_ioctl+0x32c/0x13e0 [ 172.510354][ T7085] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 172.510375][ T7085] ? find_held_lock+0x2b/0x80 [ 172.510398][ T7085] ? hook_file_ioctl_common+0x144/0x410 [ 172.510430][ T7085] ? __fget_files+0x20e/0x3c0 [ 172.510459][ T7085] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 172.510478][ T7085] __x64_sys_ioctl+0x18e/0x210 [ 172.510502][ T7085] do_syscall_64+0xcd/0xf80 [ 172.510523][ T7085] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 172.510541][ T7085] RIP: 0033:0x7f231458f7c9 [ 172.510556][ T7085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 172.510573][ T7085] RSP: 002b:00007f23153ce038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 172.510589][ T7085] RAX: ffffffffffffffda RBX: 00007f23147e6180 RCX: 00007f231458f7c9 [ 172.510600][ T7085] RDX: 0000000000000000 RSI: 00000000800455d1 RDI: 0000000000000006 [ 172.510610][ T7085] RBP: 00007f2314613f91 R08: 0000000000000000 R09: 0000000000000000 [ 172.510621][ T7085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 172.510631][ T7085] R13: 00007f23147e6218 R14: 00007f23147e6180 R15: 00007ffcbf712c88 [ 172.510654][ T7085] [ 173.296304][ T7093] CPU: 0 UID: 0 PID: 7093 Comm: syz.3.210 Not tainted syzkaller #0 PREEMPT(full) [ 173.296333][ T7093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 173.296344][ T7093] Call Trace: [ 173.296350][ T7093] [ 173.296358][ T7093] dump_stack_lvl+0x16c/0x1f0 [ 173.296384][ T7093] should_fail_ex+0x512/0x640 [ 173.296413][ T7093] should_fail_alloc_page+0xe7/0x130 [ 173.296443][ T7093] prepare_alloc_pages+0x401/0x670 [ 173.296475][ T7093] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 173.296501][ T7093] ? folio_remove_rmap_ptes+0x391/0xfb0 [ 173.296525][ T7093] ? try_to_migrate_one+0x1405/0x3810 [ 173.296546][ T7093] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 173.296572][ T7093] ? __pfx_try_to_migrate_one+0x10/0x10 [ 173.296596][ T7093] ? __up_read+0x2d1/0x700 [ 173.296618][ T7093] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 173.296656][ T7093] ? policy_nodemask+0xea/0x4e0 [ 173.296685][ T7093] alloc_pages_mpol+0x1fb/0x550 [ 173.296713][ T7093] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 173.296747][ T7093] folio_alloc_mpol_noprof+0x36/0x2f0 [ 173.296767][ T7093] alloc_migration_target_by_mpol+0x246/0x500 [ 173.296788][ T7093] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 173.296806][ T7093] ? __pfx_folio_lock_anon_vma_read+0x10/0x10 [ 173.296827][ T7093] ? __pfx___might_resched+0x10/0x10 [ 173.296853][ T7093] ? __pfx_queue_folios_pte_range+0x10/0x10 [ 173.296886][ T7093] migrate_pages_batch+0x3bc/0x3bb0 [ 173.296907][ T7093] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 173.296934][ T7093] ? __pfx_migrate_pages_batch+0x10/0x10 [ 173.296955][ T7093] ? __pfx_walk_pgd_range+0x10/0x10 [ 173.296979][ T7093] migrate_pages_sync+0x12d/0x8a0 [ 173.296999][ T7093] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 173.297021][ T7093] ? queue_pages_test_walk+0x279/0x410 [ 173.297050][ T7093] ? __pfx_migrate_pages_sync+0x10/0x10 [ 173.297069][ T7093] ? walk_page_test+0x9b/0x180 [ 173.297098][ T7093] migrate_pages+0x1b0b/0x2350 [ 173.297118][ T7093] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 173.297143][ T7093] ? __pfx_migrate_pages+0x10/0x10 [ 173.297161][ T7093] ? mas_next_slot+0x12d3/0x1cb0 [ 173.297183][ T7093] ? find_held_lock+0x2b/0x80 [ 173.297212][ T7093] ? up_write+0x282/0x4e0 [ 173.297233][ T7093] do_mbind+0x6e2/0xf20 [ 173.297256][ T7093] ? __pfx_do_mbind+0x10/0x10 [ 173.297286][ T7093] ? __pfx_get_nodes+0x10/0x10 [ 173.297315][ T7093] kernel_mbind+0x1e3/0x1f0 [ 173.297339][ T7093] ? __pfx_kernel_mbind+0x10/0x10 [ 173.297364][ T7093] do_syscall_64+0xcd/0xf80 [ 173.297386][ T7093] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 173.297405][ T7093] RIP: 0033:0x7f781e38f7c9 [ 173.297420][ T7093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 173.297437][ T7093] RSP: 002b:00007f781f157038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 173.297455][ T7093] RAX: ffffffffffffffda RBX: 00007f781e5e5fa0 RCX: 00007f781e38f7c9 [ 173.297467][ T7093] RDX: 0000000100000000 RSI: 8000000000000001 RDI: 000000000000f000 [ 173.297478][ T7093] RBP: 00007f781e413f91 R08: 0000000000000006 R09: 0000000000000002 [ 173.297489][ T7093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 173.297500][ T7093] R13: 00007f781e5e6038 R14: 00007f781e5e5fa0 R15: 00007fff58ceb678 [ 173.297523][ T7093] [ 173.997575][ T7072] queue_state_write: use 'run', 'start' or 'kick' [ 174.004150][ T7077] queue_state_write: unsupported operation '' [ 174.011711][ T7077] queue_state_write: use 'run', 'start' or 'kick' [ 176.633459][ T7153] FAULT_INJECTION: forcing a failure. [ 176.633459][ T7153] name failslab, interval 1, probability 0, space 0, times 0 [ 176.687544][ T7153] CPU: 0 UID: 0 PID: 7153 Comm: syz.3.221 Not tainted syzkaller #0 PREEMPT(full) [ 176.687571][ T7153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 176.687581][ T7153] Call Trace: [ 176.687587][ T7153] [ 176.687594][ T7153] dump_stack_lvl+0x16c/0x1f0 [ 176.687630][ T7153] should_fail_ex+0x512/0x640 [ 176.687655][ T7153] ? kmem_cache_alloc_noprof+0x62/0x770 [ 176.687679][ T7153] should_failslab+0xc2/0x120 [ 176.687707][ T7153] kmem_cache_alloc_noprof+0x83/0x770 [ 176.687728][ T7153] ? vm_area_dup+0x27/0x8d0 [ 176.687750][ T7153] ? vm_area_dup+0x27/0x8d0 [ 176.687765][ T7153] vm_area_dup+0x27/0x8d0 [ 176.687785][ T7153] __split_vma+0x18e/0x1050 [ 176.687808][ T7153] ? __pfx___split_vma+0x10/0x10 [ 176.687839][ T7153] vma_modify+0x189d/0x2310 [ 176.687865][ T7153] ? __pfx_vma_modify+0x10/0x10 [ 176.687884][ T7153] ? ima_file_mprotect+0x1ba/0x690 [ 176.687910][ T7153] vma_modify_flags+0x235/0x3a0 [ 176.687931][ T7153] ? __pfx_vma_modify_flags+0x10/0x10 [ 176.687959][ T7153] ? cap_capable+0x91/0x3f0 [ 176.687986][ T7153] mprotect_fixup+0x3a1/0xb80 [ 176.688009][ T7153] ? __pfx_mprotect_fixup+0x10/0x10 [ 176.688036][ T7153] do_mprotect_pkey+0x9bc/0xd40 [ 176.688061][ T7153] ? __pfx_do_mprotect_pkey+0x10/0x10 [ 176.688081][ T7153] ? vm_mmap_pgoff+0x103/0x470 [ 176.688121][ T7153] ? xfd_validate_state+0x61/0x180 [ 176.688144][ T7153] __x64_sys_mprotect+0x78/0xc0 [ 176.688161][ T7153] ? lockdep_hardirqs_on+0x7c/0x110 [ 176.688181][ T7153] do_syscall_64+0xcd/0xf80 [ 176.688201][ T7153] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 176.688219][ T7153] RIP: 0033:0x7f781e38f887 [ 176.688234][ T7153] Code: 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 0a 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 176.688251][ T7153] RSP: 002b:00007fff58ceb618 EFLAGS: 00000206 ORIG_RAX: 000000000000000a [ 176.688268][ T7153] RAX: ffffffffffffffda RBX: 00007f781c5f66c0 RCX: 00007f781e38f887 [ 176.688280][ T7153] RDX: 0000000000000003 RSI: 0000000000020000 RDI: 00007f781c5d7000 [ 176.688290][ T7153] RBP: 0000000000000000 R08: 00000000ffffffff R09: 0000000000000000 [ 176.688300][ T7153] R10: 0000000000021000 R11: 0000000000000206 R12: 00007fff58ceb770 [ 176.688311][ T7153] R13: ffffffffffffffc0 R14: 0000000000001000 R15: 0000000000000000 [ 176.688334][ T7153] [ 176.961457][ T7144] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 177.504180][ T7170] FAULT_INJECTION: forcing a failure. [ 177.504180][ T7170] name failslab, interval 1, probability 0, space 0, times 0 [ 177.535569][ T7175] vhci_hcd vhci_hcd.2: invalid port number 16 [ 177.585518][ T7175] vhci_hcd vhci_hcd.2: invalid port number 16 [ 177.639066][ T7170] CPU: 0 UID: 0 PID: 7170 Comm: syz.1.224 Not tainted syzkaller #0 PREEMPT(full) [ 177.639093][ T7170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 177.639110][ T7170] Call Trace: [ 177.639116][ T7170] [ 177.639123][ T7170] dump_stack_lvl+0x16c/0x1f0 [ 177.639149][ T7170] should_fail_ex+0x512/0x640 [ 177.639179][ T7170] ? fs_reclaim_acquire+0xae/0x150 [ 177.639209][ T7170] should_failslab+0xc2/0x120 [ 177.639237][ T7170] __kmalloc_noprof+0xeb/0x910 [ 177.639256][ T7170] ? tomoyo_encode2+0x100/0x3e0 [ 177.639277][ T7170] ? tomoyo_encode2+0x100/0x3e0 [ 177.639293][ T7170] tomoyo_encode2+0x100/0x3e0 [ 177.639312][ T7170] tomoyo_encode+0x29/0x50 [ 177.639328][ T7170] tomoyo_realpath_from_path+0x18f/0x6e0 [ 177.639352][ T7170] tomoyo_path_number_perm+0x245/0x580 [ 177.639377][ T7170] ? tomoyo_path_number_perm+0x237/0x580 [ 177.639403][ T7170] ? kasan_quarantine_put+0x64/0x240 [ 177.639427][ T7170] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 177.639475][ T7170] ? find_held_lock+0x2b/0x80 [ 177.639498][ T7170] ? hook_file_ioctl_common+0x144/0x410 [ 177.639538][ T7170] ? __fget_files+0x20e/0x3c0 [ 177.639566][ T7170] security_file_ioctl+0x9b/0x240 [ 177.639595][ T7170] __x64_sys_ioctl+0xb7/0x210 [ 177.639618][ T7170] do_syscall_64+0xcd/0xf80 [ 177.639639][ T7170] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 177.639657][ T7170] RIP: 0033:0x7f231458f7c9 [ 177.639672][ T7170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 177.639689][ T7170] RSP: 002b:00007f2315410038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 177.639706][ T7170] RAX: ffffffffffffffda RBX: 00007f23147e5fa0 RCX: 00007f231458f7c9 [ 177.639718][ T7170] RDX: 0000000000008000 RSI: 00000000c0189436 RDI: 0000000000000045 [ 177.639729][ T7170] RBP: 00007f2314613f91 R08: 0000000000000000 R09: 0000000000000000 [ 177.639739][ T7170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 177.639749][ T7170] R13: 00007f23147e6038 R14: 00007f23147e5fa0 R15: 00007ffcbf712c88 [ 177.639772][ T7170] [ 177.639890][ T7170] ERROR: Out of memory at tomoyo_realpath_from_path. [ 178.427687][ T7165] Process accounting resumed [ 178.648872][ T7186] mtrr: base(0x20000) is not aligned on a size(0x0000) boundary [ 178.728454][ T7196] openvswitch: netlink: Key type 261 is out of range max 32 [ 178.863002][ T7197] netlink: 'syz.2.228': attribute type 1 has an invalid length. [ 180.178500][ T7228] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 180.304021][ T7230] netlink: 4 bytes leftover after parsing attributes in process `syz.0.236'. [ 180.754015][ T1331] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.384272][ T7277] FAULT_INJECTION: forcing a failure. [ 183.384272][ T7277] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 183.552067][ T7277] CPU: 0 UID: 0 PID: 7277 Comm: syz.0.246 Not tainted syzkaller #0 PREEMPT(full) [ 183.552094][ T7277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 183.552104][ T7277] Call Trace: [ 183.552111][ T7277] [ 183.552118][ T7277] dump_stack_lvl+0x16c/0x1f0 [ 183.552142][ T7277] should_fail_ex+0x512/0x640 [ 183.552170][ T7277] _copy_to_user+0x32/0xd0 [ 183.552197][ T7277] simple_read_from_buffer+0xcb/0x170 [ 183.552223][ T7277] proc_fail_nth_read+0x197/0x240 [ 183.552254][ T7277] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 183.552305][ T7277] ? rw_verify_area+0xcf/0x6c0 [ 183.552330][ T7277] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 183.552359][ T7277] vfs_read+0x1e4/0xcf0 [ 183.552385][ T7277] ? __pfx___mutex_lock+0x10/0x10 [ 183.552407][ T7277] ? __pfx_vfs_read+0x10/0x10 [ 183.552437][ T7277] ? __fget_files+0x20e/0x3c0 [ 183.552475][ T7277] ksys_read+0x12a/0x250 [ 183.552500][ T7277] ? __pfx_ksys_read+0x10/0x10 [ 183.552531][ T7277] do_syscall_64+0xcd/0xf80 [ 183.552552][ T7277] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.552570][ T7277] RIP: 0033:0x7f257258e1dc [ 183.552584][ T7277] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 183.552601][ T7277] RSP: 002b:00007f25734c8030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 183.552619][ T7277] RAX: ffffffffffffffda RBX: 00007f25727e5fa0 RCX: 00007f257258e1dc [ 183.552630][ T7277] RDX: 000000000000000f RSI: 00007f25734c80a0 RDI: 0000000000000004 [ 183.552641][ T7277] RBP: 00007f25734c8090 R08: 0000000000000000 R09: 0000000000000000 [ 183.552654][ T7277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 183.552667][ T7277] R13: 00007f25727e6038 R14: 00007f25727e5fa0 R15: 00007fff93a763a8 [ 183.552689][ T7277] [ 184.190029][ T7284] [U] 0="­/ [ 184.202252][ T7284] [U] [ 184.205112][ T7284] [U] EÇeÅQ‰Í@’ [ 184.295282][ T7283] [U]  [ 186.182051][ T7282] netlink: 206 bytes leftover after parsing attributes in process `syz.1.245'. [ 186.399071][ T7300] kafs: addr_prefs: Invalid Command [ 186.711017][ T7305] rnbd_client L213: map_device: Parameters missing [ 186.736975][ T7305] netlink: 4 bytes leftover after parsing attributes in process `syz.2.252'. [ 187.708529][ T7326] mkiss: ax0: crc mode is auto. [ 188.361037][ T7339] FAULT_INJECTION: forcing a failure. [ 188.361037][ T7339] name failslab, interval 1, probability 0, space 0, times 0 [ 188.445148][ T7339] CPU: 0 UID: 0 PID: 7339 Comm: syz.2.260 Not tainted syzkaller #0 PREEMPT(full) [ 188.445177][ T7339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 188.445187][ T7339] Call Trace: [ 188.445194][ T7339] [ 188.445201][ T7339] dump_stack_lvl+0x16c/0x1f0 [ 188.445225][ T7339] should_fail_ex+0x512/0x640 [ 188.445251][ T7339] ? __kmalloc_cache_noprof+0x5f/0x800 [ 188.445275][ T7339] should_failslab+0xc2/0x120 [ 188.445302][ T7339] __kmalloc_cache_noprof+0x80/0x800 [ 188.445323][ T7339] ? alloc_super+0x52/0xd00 [ 188.445349][ T7339] ? alloc_super+0x52/0xd00 [ 188.445371][ T7339] alloc_super+0x52/0xd00 [ 188.445393][ T7339] ? sget_fc+0xd3/0xc20 [ 188.445419][ T7339] sget_fc+0x116/0xc20 [ 188.445443][ T7339] ? __pfx_set_anon_super_fc+0x10/0x10 [ 188.445466][ T7339] ? __pfx_mqueue_fill_super+0x10/0x10 [ 188.445487][ T7339] get_tree_nodev+0x28/0x190 [ 188.445512][ T7339] mqueue_get_tree+0xf1/0x130 [ 188.445533][ T7339] vfs_get_tree+0x8e/0x330 [ 188.445553][ T7339] fc_mount_longterm+0x1a/0x270 [ 188.445577][ T7339] mq_init_ns+0x482/0x810 [ 188.445602][ T7339] copy_ipcs+0x3db/0x7d0 [ 188.445628][ T7339] create_new_namespaces+0x20a/0xab0 [ 188.445653][ T7339] ? security_capable+0x7e/0x260 [ 188.445679][ T7339] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 188.445712][ T7339] ksys_unshare+0x45b/0xa40 [ 188.445741][ T7339] ? __pfx_ksys_unshare+0x10/0x10 [ 188.445770][ T7339] ? xfd_validate_state+0x61/0x180 [ 188.445793][ T7339] __x64_sys_unshare+0x31/0x40 [ 188.445821][ T7339] do_syscall_64+0xcd/0xf80 [ 188.445842][ T7339] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 188.445861][ T7339] RIP: 0033:0x7fdb2a58f7c9 [ 188.445876][ T7339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 188.445894][ T7339] RSP: 002b:00007fdb2b3ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 188.445912][ T7339] RAX: ffffffffffffffda RBX: 00007fdb2a7e6090 RCX: 00007fdb2a58f7c9 [ 188.445924][ T7339] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000000 [ 188.445935][ T7339] RBP: 00007fdb2a613f91 R08: 0000000000000000 R09: 0000000000000000 [ 188.445945][ T7339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 188.445955][ T7339] R13: 00007fdb2a7e6128 R14: 00007fdb2a7e6090 R15: 00007ffc62e00a68 [ 188.445977][ T7339] [ 190.385192][ T7359] FAULT_INJECTION: forcing a failure. [ 190.385192][ T7359] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 190.452512][ T7359] CPU: 0 UID: 0 PID: 7359 Comm: syz.1.268 Not tainted syzkaller #0 PREEMPT(full) [ 190.452539][ T7359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 190.452549][ T7359] Call Trace: [ 190.452556][ T7359] [ 190.452562][ T7359] dump_stack_lvl+0x16c/0x1f0 [ 190.452586][ T7359] should_fail_ex+0x512/0x640 [ 190.452617][ T7359] _copy_from_user+0x2e/0xd0 [ 190.452642][ T7359] get_timespec64+0x8b/0x1b0 [ 190.452666][ T7359] ? __pfx_get_timespec64+0x10/0x10 [ 190.452683][ T7359] ? ktime_get+0x200/0x310 [ 190.452705][ T7359] __x64_sys_futex+0x288/0x4c0 [ 190.452729][ T7359] ? __pfx___x64_sys_futex+0x10/0x10 [ 190.452750][ T7359] ? xfd_validate_state+0x61/0x180 [ 190.452773][ T7359] do_syscall_64+0xcd/0xf80 [ 190.452794][ T7359] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 190.452812][ T7359] RIP: 0033:0x7f231458f7c9 [ 190.452827][ T7359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 190.452844][ T7359] RSP: 002b:00007ffcbf712de8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 190.452861][ T7359] RAX: ffffffffffffffda RBX: 000000000002e77d RCX: 00007f231458f7c9 [ 190.452873][ T7359] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f23147e5fac [ 190.452884][ T7359] RBP: 0000000000000032 R08: 00007f2315411000 R09: 0000000abf7130df [ 190.452894][ T7359] R10: 00007ffcbf712ee0 R11: 0000000000000246 R12: 00007f23147e5fac [ 190.452905][ T7359] R13: 00007ffcbf712ee0 R14: 000000000002e7af R15: 00007ffcbf712f00 [ 190.452927][ T7359] [ 190.460429][ T7361] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 190.662897][ T7358] hub 1-0:1.0: USB hub found [ 190.706113][ T7358] hub 1-0:1.0: 1 port detected [ 190.830098][ T7366] FAULT_INJECTION: forcing a failure. [ 190.830098][ T7366] name failslab, interval 1, probability 0, space 0, times 0 [ 190.843259][ T7366] CPU: 0 UID: 0 PID: 7366 Comm: syz.0.269 Not tainted syzkaller #0 PREEMPT(full) [ 190.843285][ T7366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 190.843296][ T7366] Call Trace: [ 190.843303][ T7366] [ 190.843311][ T7366] dump_stack_lvl+0x16c/0x1f0 [ 190.843335][ T7366] should_fail_ex+0x512/0x640 [ 190.843364][ T7366] should_failslab+0xc2/0x120 [ 190.843394][ T7366] __kmalloc_cache_noprof+0x80/0x800 [ 190.843415][ T7366] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 190.843442][ T7366] ? tipc_nametbl_insert_publ+0x700/0x1740 [ 190.843468][ T7366] ? tipc_nametbl_insert_publ+0x700/0x1740 [ 190.843489][ T7366] tipc_nametbl_insert_publ+0x700/0x1740 [ 190.843513][ T7366] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 190.843533][ T7366] ? net_generic+0xea/0x2a0 [ 190.843556][ T7366] tipc_nametbl_publish+0x137/0x280 [ 190.843581][ T7366] tipc_sk_publish+0x1d8/0x430 [ 190.843604][ T7366] ? __pfx_tipc_sk_publish+0x10/0x10 [ 190.843629][ T7366] ? __local_bh_enable_ip+0xa4/0x120 [ 190.843657][ T7366] tipc_sk_bind+0x16f/0x380 [ 190.843681][ T7366] tipc_bind+0x190/0x2a0 [ 190.843704][ T7366] __sys_bind+0x1a7/0x260 [ 190.843728][ T7366] ? __pfx___sys_bind+0x10/0x10 [ 190.843758][ T7366] ? xfd_validate_state+0x61/0x180 [ 190.843774][ T7366] ? __pfx_do_writev+0x10/0x10 [ 190.843802][ T7366] __x64_sys_bind+0x72/0xb0 [ 190.843823][ T7366] ? lockdep_hardirqs_on+0x7c/0x110 [ 190.843843][ T7366] do_syscall_64+0xcd/0xf80 [ 190.843863][ T7366] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 190.843882][ T7366] RIP: 0033:0x7f257258f7c9 [ 190.843898][ T7366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 190.843915][ T7366] RSP: 002b:00007f25734a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 190.843933][ T7366] RAX: ffffffffffffffda RBX: 00007f25727e6090 RCX: 00007f257258f7c9 [ 190.843944][ T7366] RDX: 0000000000000066 RSI: 0000200000000040 RDI: 0000000000000006 [ 190.843955][ T7366] RBP: 00007f2572613f91 R08: 0000000000000000 R09: 0000000000000000 [ 190.843966][ T7366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 190.843976][ T7366] R13: 00007f25727e6128 R14: 00007f25727e6090 R15: 00007fff93a763a8 [ 190.843998][ T7366] [ 190.844005][ T7366] tipc: Failed to bind to 65,0,0 [ 193.170609][ T7400] netlink: 'syz.3.274': attribute type 1 has an invalid length. [ 193.794664][ T7400] netlink: 13 bytes leftover after parsing attributes in process `syz.3.274'. [ 197.026472][ T7423] random: crng reseeded on system resumption [ 197.166533][ T5843] Bluetooth: hci2: unexpected event 0x1c length: 725 > 5 [ 197.798753][ T7448] dyndbg: bad flag-op ð, at start of ðgŽ4^ûÖIu]ãÛ¦3!üÕKÕ,ùù¤asOcס¸7 [ 197.867632][ T7448] dyndbg: flags parse failed [ 198.432554][ T7457] FAULT_INJECTION: forcing a failure. [ 198.432554][ T7457] name failslab, interval 1, probability 0, space 0, times 0 [ 198.497102][ T7457] CPU: 0 UID: 0 PID: 7457 Comm: syz.1.286 Not tainted syzkaller #0 PREEMPT(full) [ 198.497128][ T7457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 198.497139][ T7457] Call Trace: [ 198.497145][ T7457] [ 198.497152][ T7457] dump_stack_lvl+0x16c/0x1f0 [ 198.497177][ T7457] should_fail_ex+0x512/0x640 [ 198.497202][ T7457] ? __kmalloc_cache_node_noprof+0x62/0x830 [ 198.497241][ T7457] should_failslab+0xc2/0x120 [ 198.497269][ T7457] __kmalloc_cache_node_noprof+0x83/0x830 [ 198.497293][ T7457] ? irqentry_exit+0x1dd/0x8c0 [ 198.497313][ T7457] ? lockdep_hardirqs_on+0x7c/0x110 [ 198.497331][ T7457] ? __get_vm_area_node+0x101/0x330 [ 198.497360][ T7457] ? register_lock_class+0x41/0x4b0 [ 198.497381][ T7457] ? __get_vm_area_node+0x101/0x330 [ 198.497408][ T7457] __get_vm_area_node+0x101/0x330 [ 198.497440][ T7457] __vmalloc_node_range_noprof+0x247/0x16b0 [ 198.497470][ T7457] ? n_tty_open+0x1a/0x170 [ 198.497492][ T7457] ? do_raw_spin_lock+0x12c/0x2b0 [ 198.497518][ T7457] ? n_tty_open+0x1a/0x170 [ 198.497545][ T7457] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 198.497575][ T7457] ? __ldsem_down_write_nested+0xfd/0x850 [ 198.497597][ T7457] ? __ldsem_down_write_nested+0x10e/0x850 [ 198.497618][ T7457] ? lockdep_init_map_type+0x5c/0x270 [ 198.497640][ T7457] ? __pfx___ldsem_down_write_nested+0x10/0x10 [ 198.497666][ T7457] ? n_tty_open+0x1a/0x170 [ 198.497686][ T7457] __vmalloc_node_noprof+0xad/0xf0 [ 198.497716][ T7457] ? n_tty_open+0x1a/0x170 [ 198.497736][ T7457] ? __pfx_n_tty_open+0x10/0x10 [ 198.497759][ T7457] n_tty_open+0x1a/0x170 [ 198.497784][ T7457] ? __pfx_n_tty_open+0x10/0x10 [ 198.497805][ T7457] tty_ldisc_open+0x9f/0x120 [ 198.497833][ T7457] tty_ldisc_setup+0x40/0x100 [ 198.497862][ T7457] tty_init_dev.part.0+0x1ec/0x500 [ 198.497885][ T7457] tty_init_dev+0x60/0x80 [ 198.497905][ T7457] ptmx_open+0x15e/0x3c0 [ 198.497932][ T7457] ? __pfx_ptmx_open+0x10/0x10 [ 198.497957][ T7457] chrdev_open+0x234/0x6a0 [ 198.497984][ T7457] ? __pfx_apparmor_file_open+0x10/0x10 [ 198.498009][ T7457] ? __pfx_chrdev_open+0x10/0x10 [ 198.498037][ T7457] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 198.498070][ T7457] do_dentry_open+0x748/0x1590 [ 198.498095][ T7457] ? __pfx_chrdev_open+0x10/0x10 [ 198.498129][ T7457] vfs_open+0x82/0x3f0 [ 198.498150][ T7457] path_openat+0x2078/0x3140 [ 198.498184][ T7457] ? __pfx_path_openat+0x10/0x10 [ 198.498226][ T7457] do_filp_open+0x20b/0x470 [ 198.498254][ T7457] ? __pfx_do_filp_open+0x10/0x10 [ 198.498297][ T7457] ? alloc_fd+0x471/0x7d0 [ 198.498330][ T7457] do_sys_openat2+0x11f/0x280 [ 198.498349][ T7457] ? __pfx_do_sys_openat2+0x10/0x10 [ 198.498379][ T7457] __x64_sys_openat+0x174/0x210 [ 198.498399][ T7457] ? __pfx___x64_sys_openat+0x10/0x10 [ 198.498429][ T7457] do_syscall_64+0xcd/0xf80 [ 198.498451][ T7457] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 198.498470][ T7457] RIP: 0033:0x7f231458f7c9 [ 198.498485][ T7457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 198.498502][ T7457] RSP: 002b:00007f2315410038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 198.498521][ T7457] RAX: ffffffffffffffda RBX: 00007f23147e5fa0 RCX: 00007f231458f7c9 [ 198.498532][ T7457] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 198.498543][ T7457] RBP: 00007f2314613f91 R08: 0000000000000000 R09: 0000000000000000 [ 198.498553][ T7457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 198.498563][ T7457] R13: 00007f23147e6038 R14: 00007f23147e5fa0 R15: 00007ffcbf712c88 [ 198.498587][ T7457] [ 198.969826][ T7457] syz.1.286: vmalloc error: size 9128, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 198.985557][ T7457] CPU: 0 UID: 0 PID: 7457 Comm: syz.1.286 Not tainted syzkaller #0 PREEMPT(full) [ 198.985584][ T7457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 198.985597][ T7457] Call Trace: [ 198.985603][ T7457] [ 198.985611][ T7457] dump_stack_lvl+0x16c/0x1f0 [ 198.985637][ T7457] warn_alloc+0x248/0x3a0 [ 198.985663][ T7457] ? __pfx_warn_alloc+0x10/0x10 [ 198.985685][ T7457] ? trace_kmalloc+0x2b/0xb0 [ 198.985714][ T7457] ? irqentry_exit+0x1dd/0x8c0 [ 198.985737][ T7457] ? __get_vm_area_node+0x101/0x330 [ 198.985768][ T7457] ? __kasan_kmalloc+0x8a/0xb0 [ 198.985793][ T7457] ? __get_vm_area_node+0x208/0x330 [ 198.985828][ T7457] __vmalloc_node_range_noprof+0xbe0/0x16b0 [ 198.985866][ T7457] ? n_tty_open+0x1a/0x170 [ 198.985896][ T7457] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 198.985926][ T7457] ? __ldsem_down_write_nested+0xfd/0x850 [ 198.985948][ T7457] ? __ldsem_down_write_nested+0x10e/0x850 [ 198.985969][ T7457] ? lockdep_init_map_type+0x5c/0x270 [ 198.985991][ T7457] ? __pfx___ldsem_down_write_nested+0x10/0x10 [ 198.986018][ T7457] ? n_tty_open+0x1a/0x170 [ 198.986038][ T7457] __vmalloc_node_noprof+0xad/0xf0 [ 198.986067][ T7457] ? n_tty_open+0x1a/0x170 [ 198.986088][ T7457] ? __pfx_n_tty_open+0x10/0x10 [ 198.986110][ T7457] n_tty_open+0x1a/0x170 [ 198.986131][ T7457] ? __pfx_n_tty_open+0x10/0x10 [ 198.986152][ T7457] tty_ldisc_open+0x9f/0x120 [ 198.986179][ T7457] tty_ldisc_setup+0x40/0x100 [ 198.986209][ T7457] tty_init_dev.part.0+0x1ec/0x500 [ 198.986231][ T7457] tty_init_dev+0x60/0x80 [ 198.986251][ T7457] ptmx_open+0x15e/0x3c0 [ 198.986277][ T7457] ? __pfx_ptmx_open+0x10/0x10 [ 198.986309][ T7457] chrdev_open+0x234/0x6a0 [ 198.986335][ T7457] ? __pfx_apparmor_file_open+0x10/0x10 [ 198.986359][ T7457] ? __pfx_chrdev_open+0x10/0x10 [ 198.986387][ T7457] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 198.986420][ T7457] do_dentry_open+0x748/0x1590 [ 198.986446][ T7457] ? __pfx_chrdev_open+0x10/0x10 [ 198.986480][ T7457] vfs_open+0x82/0x3f0 [ 198.986502][ T7457] path_openat+0x2078/0x3140 [ 198.986536][ T7457] ? __pfx_path_openat+0x10/0x10 [ 198.986577][ T7457] do_filp_open+0x20b/0x470 [ 198.986604][ T7457] ? __pfx_do_filp_open+0x10/0x10 [ 198.986651][ T7457] ? alloc_fd+0x471/0x7d0 [ 198.986686][ T7457] do_sys_openat2+0x11f/0x280 [ 198.986706][ T7457] ? __pfx_do_sys_openat2+0x10/0x10 [ 198.986735][ T7457] __x64_sys_openat+0x174/0x210 [ 198.986755][ T7457] ? __pfx___x64_sys_openat+0x10/0x10 [ 198.986785][ T7457] do_syscall_64+0xcd/0xf80 [ 198.986806][ T7457] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 198.986827][ T7457] RIP: 0033:0x7f231458f7c9 [ 198.986843][ T7457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 198.986860][ T7457] RSP: 002b:00007f2315410038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 198.986878][ T7457] RAX: ffffffffffffffda RBX: 00007f23147e5fa0 RCX: 00007f231458f7c9 [ 198.986889][ T7457] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 198.986900][ T7457] RBP: 00007f2314613f91 R08: 0000000000000000 R09: 0000000000000000 [ 198.986910][ T7457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 198.986921][ T7457] R13: 00007f23147e6038 R14: 00007f23147e5fa0 R15: 00007ffcbf712c88 [ 198.986945][ T7457] [ 198.987382][ T7457] Mem-Info: [ 199.461154][ T7457] active_anon:20950 inactive_anon:0 isolated_anon:0 [ 199.461154][ T7457] active_file:17721 inactive_file:40385 isolated_file:0 [ 199.461154][ T7457] unevictable:768 dirty:687 writeback:0 [ 199.461154][ T7457] slab_reclaimable:11520 slab_unreclaimable:91862 [ 199.461154][ T7457] mapped:25006 shmem:10571 pagetables:1065 [ 199.461154][ T7457] sec_pagetables:0 bounce:0 [ 199.461154][ T7457] kernel_misc_reclaimable:0 [ 199.461154][ T7457] free:1286159 free_pcp:35382 free_cma:0 [ 199.588831][ T7457] Node 0 active_anon:80732kB inactive_anon:0kB active_file:64236kB inactive_file:161408kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:100024kB dirty:2744kB writeback:0kB shmem:35236kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11776kB pagetables:4112kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 199.660763][ T7457] Node 1 active_anon:0kB inactive_anon:0kB active_file:6648kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:64kB pagetables:148kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 199.724920][ T7457] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 199.764345][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.772923][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 199.803322][ T7457] lowmem_reserve[]: 0 2481 2483 2483 2483 [ 199.809123][ T7457] Node 0 DMA32 free:1301168kB boost:0kB min:34332kB low:42912kB high:51492kB reserved_highatomic:0KB free_highatomic:0KB active_anon:66576kB inactive_anon:0kB active_file:64236kB inactive_file:161408kB unevictable:1536kB writepending:2796kB zspages:0kB present:3129332kB managed:2541124kB mlocked:0kB bounce:0kB free_pcp:85864kB local_pcp:85864kB free_cma:0kB [ 199.892862][ T7457] lowmem_reserve[]: 0 0 1 1 1 [ 199.901949][ T7457] Node 0 Normal free:0kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:4kB free_cma:0kB [ 199.961982][ T7457] lowmem_reserve[]: 0 0 0 0 0 [ 199.970604][ T7457] Node 1 Normal free:3837364kB boost:0kB min:55544kB low:69428kB high:83312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:6648kB inactive_file:132kB unevictable:1536kB writepending:4kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:62608kB local_pcp:62608kB free_cma:0kB [ 200.102885][ T7477] netlink: 28 bytes leftover after parsing attributes in process `syz.2.289'. [ 200.115139][ T7457] lowmem_reserve[]: 0 0 0 0 0 [ 200.119908][ T7457] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 200.235321][ T7457] Node 0 DMA32: 3279*4kB (UM) 1993*8kB (UM) 1162*16kB (UME) 992*32kB (UM) 447*64kB (UME) 295*128kB (UME) 142*256kB (UME) 51*512kB (UM) 19*1024kB (UME) 5*2048kB (UME) 266*4096kB (UM) = 1327460kB [ 200.329474][ T7481] binder: 7480:7481 ioctl 400c620e 0 returned -14 [ 200.354588][ T7457] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 200.407826][ T7457] Node 1 Normal: 1581*4kB (UME) 278*8kB (UME) 227*16kB (UM) 433*32kB (UME) 282*64kB (UME) 153*128kB (UME) 121*256kB (UM) 64*512kB (UME) 15*1024kB (UM) 6*2048kB (ME) 899*4096kB (M) = 3837364kB [ 200.483161][ T7457] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 200.543996][ T7457] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 200.586365][ T7457] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 200.621955][ T7457] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 200.661323][ T7457] 60419 total pagecache pages [ 200.687872][ T7457] 1 pages in swap cache [ 200.704599][ T7457] Free swap = 124956kB [ 200.727122][ T7457] Total swap = 124996kB [ 200.753091][ T7457] 2097051 pages RAM [ 200.764392][ T7457] 0 pages HighMem/MovableOnly [ 200.786015][ T7457] 429744 pages reserved [ 200.790201][ T7457] 0 pages cma reserved [ 200.823201][ T7457] ptm ptm0: ldisc open failed (-12), clearing slot 0 [ 201.747606][ T7512] FAULT_INJECTION: forcing a failure. [ 201.747606][ T7512] name fail_futex, interval 1, probability 0, space 0, times 0 [ 201.812009][ T7512] CPU: 0 UID: 0 PID: 7512 Comm: syz.1.298 Not tainted syzkaller #0 PREEMPT(full) [ 201.812067][ T7512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 201.812078][ T7512] Call Trace: [ 201.812084][ T7512] [ 201.812092][ T7512] dump_stack_lvl+0x16c/0x1f0 [ 201.812118][ T7512] should_fail_ex+0x512/0x640 [ 201.812153][ T7512] get_futex_key+0x1d0/0x15f0 [ 201.812177][ T7512] ? __pfx_get_futex_key+0x10/0x10 [ 201.812195][ T7512] ? find_held_lock+0x2b/0x80 [ 201.812226][ T7512] futex_wake+0xea/0x530 [ 201.812252][ T7512] ? __pfx_futex_wake+0x10/0x10 [ 201.812276][ T7512] ? __sys_sendmmsg+0x35f/0x420 [ 201.812307][ T7512] ? vfs_read+0x23b/0xcf0 [ 201.812337][ T7512] do_futex+0x1e3/0x350 [ 201.812358][ T7512] ? __pfx_do_futex+0x10/0x10 [ 201.812384][ T7512] __x64_sys_futex+0x1e0/0x4c0 [ 201.812406][ T7512] ? fput+0x70/0xf0 [ 201.812422][ T7512] ? __pfx___x64_sys_futex+0x10/0x10 [ 201.812442][ T7512] ? ksys_read+0x1ac/0x250 [ 201.812466][ T7512] ? __pfx_ksys_read+0x10/0x10 [ 201.812497][ T7512] do_syscall_64+0xcd/0xf80 [ 201.812518][ T7512] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 201.812536][ T7512] RIP: 0033:0x7f231458f7c9 [ 201.812552][ T7512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 201.812569][ T7512] RSP: 002b:00007f23154100e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 201.812587][ T7512] RAX: ffffffffffffffda RBX: 00007f23147e5fa8 RCX: 00007f231458f7c9 [ 201.812599][ T7512] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f23147e5fac [ 201.812609][ T7512] RBP: 00007f23147e5fa0 R08: 00007f2315411000 R09: 0000000000000000 [ 201.812620][ T7512] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 201.812631][ T7512] R13: 00007f23147e6038 R14: 00007ffcbf712ba0 R15: 00007ffcbf712c88 [ 201.812654][ T7512] [ 202.973467][ T7534] FAULT_INJECTION: forcing a failure. [ 202.973467][ T7534] name failslab, interval 1, probability 0, space 0, times 0 [ 203.153887][ T7534] CPU: 0 UID: 0 PID: 7534 Comm: syz.1.301 Not tainted syzkaller #0 PREEMPT(full) [ 203.153917][ T7534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 203.153927][ T7534] Call Trace: [ 203.153933][ T7534] [ 203.153941][ T7534] dump_stack_lvl+0x16c/0x1f0 [ 203.153966][ T7534] should_fail_ex+0x512/0x640 [ 203.153992][ T7534] ? fs_reclaim_acquire+0xae/0x150 [ 203.154024][ T7534] should_failslab+0xc2/0x120 [ 203.154052][ T7534] kmem_cache_alloc_noprof+0x83/0x770 [ 203.154073][ T7534] ? __pfx_map_id_range_down+0x10/0x10 [ 203.154101][ T7534] ? security_inode_alloc+0x3b/0x2b0 [ 203.154130][ T7534] ? security_inode_alloc+0x3b/0x2b0 [ 203.154153][ T7534] security_inode_alloc+0x3b/0x2b0 [ 203.154177][ T7534] inode_init_always_gfp+0xced/0x1040 [ 203.154207][ T7534] alloc_inode+0x86/0x240 [ 203.154227][ T7534] iget_locked+0x1d9/0x6d0 [ 203.154254][ T7534] ? __pfx_iget_locked+0x10/0x10 [ 203.154274][ T7534] ? kernfs_root+0xee/0x2a0 [ 203.154298][ T7534] kernfs_get_inode+0x46/0x470 [ 203.154319][ T7534] kernfs_iop_lookup+0x1a7/0x2d0 [ 203.154343][ T7534] __lookup_slow+0x251/0x460 [ 203.154364][ T7534] ? __pfx___lookup_slow+0x10/0x10 [ 203.154395][ T7534] ? __d_lookup+0x266/0x4a0 [ 203.154422][ T7534] lookup_slow+0x50/0x70 [ 203.154441][ T7534] path_lookupat+0x5e9/0xc40 [ 203.154468][ T7534] filename_lookup+0x224/0x5f0 [ 203.154494][ T7534] ? __pfx_filename_lookup+0x10/0x10 [ 203.154538][ T7534] ? getname_flags.part.0+0x1c5/0x550 [ 203.154561][ T7534] user_path_at+0x3a/0x60 [ 203.154586][ T7534] __x64_sys_name_to_handle_at+0x1e7/0x310 [ 203.154617][ T7534] ? __pfx___x64_sys_name_to_handle_at+0x10/0x10 [ 203.154652][ T7534] do_syscall_64+0xcd/0xf80 [ 203.154674][ T7534] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.154692][ T7534] RIP: 0033:0x7f231458f7c9 [ 203.154708][ T7534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 203.154725][ T7534] RSP: 002b:00007f23153ce038 EFLAGS: 00000246 ORIG_RAX: 000000000000012f [ 203.154743][ T7534] RAX: ffffffffffffffda RBX: 00007f23147e6180 RCX: 00007f231458f7c9 [ 203.154754][ T7534] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 203.154765][ T7534] RBP: 00007f2314613f91 R08: 0000000000000002 R09: 0000000000000000 [ 203.154776][ T7534] R10: 0000200000001180 R11: 0000000000000246 R12: 0000000000000000 [ 203.154786][ T7534] R13: 00007f23147e6218 R14: 00007f23147e6180 R15: 00007ffcbf712c88 [ 203.154810][ T7534] [ 203.474518][ T7540] random: crng reseeded on system resumption [ 203.489896][ T7540] Restarting kernel threads ... [ 203.496392][ T7540] Done restarting kernel threads. [ 203.958907][ T7549] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR [ 207.786300][ T7636] HfR: entered promiscuous mode [ 207.948275][ T7641] netlink: 25 bytes leftover after parsing attributes in process `syz.1.318'. [ 209.330939][ T7646] Process accounting paused [ 209.670072][ T7674] random: crng reseeded on system resumption [ 209.813504][ T7674] can0: slcan on pty233. [ 209.992829][ T7673] can0 (unregistered): slcan off pty233. [ 210.830132][ T7705] netlink: 9 bytes leftover after parsing attributes in process `syz.0.332'. [ 211.508177][ T7724] binder: 7722:7724 ioctl c018620c 0 returned -22 [ 211.547384][ T7726] binder: 7722:7726 ioctl c018620c 0 returned -22 [ 212.729891][ T7753] kAFS: No cell specified [ 213.769234][ T7778] FAULT_INJECTION: forcing a failure. [ 213.769234][ T7778] name failslab, interval 1, probability 0, space 0, times 0 [ 213.828874][ T7778] CPU: 0 UID: 0 PID: 7778 Comm: syz.2.342 Tainted: G L syzkaller #0 PREEMPT(full) [ 213.828907][ T7778] Tainted: [L]=SOFTLOCKUP [ 213.828914][ T7778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 213.828925][ T7778] Call Trace: [ 213.828931][ T7778] [ 213.828939][ T7778] dump_stack_lvl+0x16c/0x1f0 [ 213.828964][ T7778] should_fail_ex+0x512/0x640 [ 213.828989][ T7778] ? kmem_cache_alloc_lru_noprof+0x66/0x770 [ 213.829016][ T7778] should_failslab+0xc2/0x120 [ 213.829043][ T7778] kmem_cache_alloc_lru_noprof+0x87/0x770 [ 213.829074][ T7778] ? do_futex+0x122/0x350 [ 213.829095][ T7778] ? alloc_inode+0xc3/0x240 [ 213.829120][ T7778] ? alloc_inode+0xc3/0x240 [ 213.829138][ T7778] alloc_inode+0xc3/0x240 [ 213.829158][ T7778] create_pipe_files+0x4c/0x9a0 [ 213.829190][ T7778] do_pipe2+0xaf/0x1c0 [ 213.829217][ T7778] ? __pfx_do_pipe2+0x10/0x10 [ 213.829244][ T7778] ? xfd_validate_state+0x61/0x180 [ 213.829268][ T7778] __x64_sys_pipe+0x33/0x50 [ 213.829295][ T7778] do_syscall_64+0xcd/0xf80 [ 213.829316][ T7778] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 213.829334][ T7778] RIP: 0033:0x7fdb2a58f7c9 [ 213.829349][ T7778] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 213.829366][ T7778] RSP: 002b:00007fdb2b3ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 213.829384][ T7778] RAX: ffffffffffffffda RBX: 00007fdb2a7e6090 RCX: 00007fdb2a58f7c9 [ 213.829396][ T7778] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 213.829406][ T7778] RBP: 00007fdb2a613f91 R08: 0000000000000000 R09: 0000000000000000 [ 213.829417][ T7778] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 213.829427][ T7778] R13: 00007fdb2a7e6128 R14: 00007fdb2a7e6090 R15: 00007ffc62e00a68 [ 213.829449][ T7778] [ 214.907300][ T7811] FAULT_INJECTION: forcing a failure. [ 214.907300][ T7811] name failslab, interval 1, probability 0, space 0, times 0 [ 214.983247][ T7811] CPU: 0 UID: 0 PID: 7811 Comm: syz.1.347 Tainted: G L syzkaller #0 PREEMPT(full) [ 214.983280][ T7811] Tainted: [L]=SOFTLOCKUP [ 214.983286][ T7811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 214.983296][ T7811] Call Trace: [ 214.983303][ T7811] [ 214.983310][ T7811] dump_stack_lvl+0x16c/0x1f0 [ 214.983337][ T7811] should_fail_ex+0x512/0x640 [ 214.983362][ T7811] ? __kmalloc_cache_noprof+0x5f/0x800 [ 214.983385][ T7811] should_failslab+0xc2/0x120 [ 214.983413][ T7811] __kmalloc_cache_noprof+0x80/0x800 [ 214.983432][ T7811] ? __lock_acquire+0x436/0x2890 [ 214.983450][ T7811] ? tty_open+0x13e/0xf90 [ 214.983475][ T7811] ? tty_open+0x13e/0xf90 [ 214.983493][ T7811] ? __pfx_tty_open+0x10/0x10 [ 214.983510][ T7811] tty_open+0x13e/0xf90 [ 214.983533][ T7811] ? __pfx_tty_open+0x10/0x10 [ 214.983553][ T7811] ? chrdev_open+0x10b/0x6a0 [ 214.983583][ T7811] ? __pfx_tty_open+0x10/0x10 [ 214.983602][ T7811] chrdev_open+0x234/0x6a0 [ 214.983628][ T7811] ? __pfx_apparmor_file_open+0x10/0x10 [ 214.983652][ T7811] ? __pfx_chrdev_open+0x10/0x10 [ 214.983680][ T7811] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 214.983712][ T7811] do_dentry_open+0x748/0x1590 [ 214.983737][ T7811] ? __pfx_chrdev_open+0x10/0x10 [ 214.983769][ T7811] vfs_open+0x82/0x3f0 [ 214.983790][ T7811] path_openat+0x2078/0x3140 [ 214.983824][ T7811] ? __pfx_path_openat+0x10/0x10 [ 214.983858][ T7811] do_filp_open+0x20b/0x470 [ 214.983885][ T7811] ? __pfx_do_filp_open+0x10/0x10 [ 214.983926][ T7811] ? alloc_fd+0x471/0x7d0 [ 214.983957][ T7811] do_sys_openat2+0x11f/0x280 [ 214.983977][ T7811] ? __pfx_do_sys_openat2+0x10/0x10 [ 214.983997][ T7811] ? count_memcg_events+0x122/0x290 [ 214.984027][ T7811] __x64_sys_openat+0x174/0x210 [ 214.984048][ T7811] ? __pfx___x64_sys_openat+0x10/0x10 [ 214.984084][ T7811] do_syscall_64+0xcd/0xf80 [ 214.984105][ T7811] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 214.984123][ T7811] RIP: 0033:0x7f231458f7c9 [ 214.984139][ T7811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 214.984156][ T7811] RSP: 002b:00007f23153ce038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 214.984176][ T7811] RAX: ffffffffffffffda RBX: 00007f23147e6180 RCX: 00007f231458f7c9 [ 214.984188][ T7811] RDX: 0000000000109401 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 214.984199][ T7811] RBP: 00007f2314613f91 R08: 0000000000000000 R09: 0000000000000000 [ 214.984210][ T7811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 214.984220][ T7811] R13: 00007f23147e6218 R14: 00007f23147e6180 R15: 00007ffcbf712c88 [ 214.984243][ T7811] [ 217.474596][ T7854] tipc: Started in network mode [ 217.490492][ T7854] tipc: Node identity ee00, cluster identity 4711 [ 217.514984][ T7854] tipc: Node number set to 60928 [ 219.569613][ T7907] vivid-007: ================= START STATUS ================= [ 219.607622][ T7907] vivid-007: Generate PTS: true [ 219.636613][ T7907] vivid-007: Generate SCR: true [ 219.666775][ T7907] tpg source WxH: 320x240 (Y'CbCr) [ 219.686962][ T7907] tpg field: 1 [ 219.697066][ T7907] tpg crop: (0,0)/320x240 [ 219.701468][ T7907] tpg compose: (0,0)/320x240 [ 219.721306][ T7907] tpg colorspace: 8 [ 219.734684][ T7907] tpg transfer function: 0/0 [ 219.753869][ T7907] tpg Y'CbCr encoding: 0/0 [ 219.800611][ T7907] tpg quantization: 0/0 [ 219.838367][ T7907] tpg RGB range: 0/2 [ 219.879176][ T7907] vivid-007: ================== END STATUS ================== [ 219.960453][ T7918] QAT: Stopping all acceleration devices. [ 220.408826][ T7927] FAULT_INJECTION: forcing a failure. [ 220.408826][ T7927] name failslab, interval 1, probability 0, space 0, times 0 [ 220.467719][ T7927] CPU: 0 UID: 0 PID: 7927 Comm: syz.0.374 Tainted: G L syzkaller #0 PREEMPT(full) [ 220.467751][ T7927] Tainted: [L]=SOFTLOCKUP [ 220.467757][ T7927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 220.467767][ T7927] Call Trace: [ 220.467773][ T7927] [ 220.467781][ T7927] dump_stack_lvl+0x16c/0x1f0 [ 220.467806][ T7927] should_fail_ex+0x512/0x640 [ 220.467831][ T7927] ? __kmalloc_cache_noprof+0x5f/0x800 [ 220.467855][ T7927] should_failslab+0xc2/0x120 [ 220.467882][ T7927] __kmalloc_cache_noprof+0x80/0x800 [ 220.467903][ T7927] ? allocate_file_region_entries+0x1a0/0x620 [ 220.467926][ T7927] ? trace_mm_page_alloc+0x11b/0x180 [ 220.467956][ T7927] ? allocate_file_region_entries+0x1a0/0x620 [ 220.467989][ T7927] ? _raw_spin_unlock+0x28/0x50 [ 220.468019][ T7927] allocate_file_region_entries+0x1a0/0x620 [ 220.468047][ T7927] ? __pfx_allocate_file_region_entries+0x10/0x10 [ 220.468079][ T7927] region_chg+0x85/0x140 [ 220.468103][ T7927] __vma_reservation_common+0x43b/0x740 [ 220.468129][ T7927] ? __pfx___vma_reservation_common+0x10/0x10 [ 220.468153][ T7927] ? filemap_get_entry+0x1a7/0x3b0 [ 220.468182][ T7927] alloc_hugetlb_folio+0x8ff/0x14c0 [ 220.468216][ T7927] ? __pfx_alloc_hugetlb_folio+0x10/0x10 [ 220.468247][ T7927] ? __filemap_get_folio_mpol+0x32f/0xc60 [ 220.468275][ T7927] hugetlb_no_page+0x10fa/0x2140 [ 220.468301][ T7927] hugetlb_fault+0x5ed/0x1730 [ 220.468323][ T7927] ? __pfx_hugetlb_fault+0x10/0x10 [ 220.468349][ T7927] ? find_vma+0xbf/0x140 [ 220.468372][ T7927] ? __pfx_find_vma+0x10/0x10 [ 220.468399][ T7927] handle_mm_fault+0x95d/0xad0 [ 220.468427][ T7927] do_user_addr_fault+0x7a6/0x1370 [ 220.468452][ T7927] ? rcu_is_watching+0x12/0xc0 [ 220.468480][ T7927] exc_page_fault+0x64/0xc0 [ 220.468500][ T7927] asm_exc_page_fault+0x26/0x30 [ 220.468517][ T7927] RIP: 0010:__put_user_4+0xd/0x20 [ 220.468538][ T7927] Code: 66 89 01 31 c9 0f 01 ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 80 00 00 00 00 90 90 90 [ 220.468555][ T7927] RSP: 0018:ffffc90003357d78 EFLAGS: 00050246 [ 220.468570][ T7927] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 220.468581][ T7927] RDX: 0000000000080000 RSI: ffffffff89008ed2 RDI: ffffffff8bf24a80 [ 220.468592][ T7927] RBP: 1ffff9200066afb1 R08: 00000000ffffffff R09: 00000000ffffffff [ 220.468603][ T7927] R10: 0000000000000001 R11: ffff88802d718b30 R12: 0000000000000000 [ 220.468614][ T7927] R13: 00000000800455d1 R14: ffff888029528010 R15: ffff888029528000 [ 220.468632][ T7927] ? snd_ctl_ioctl+0x322/0x13e0 [ 220.468655][ T7927] snd_ctl_ioctl+0x32c/0x13e0 [ 220.468674][ T7927] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 220.468696][ T7927] ? find_held_lock+0x2b/0x80 [ 220.468719][ T7927] ? hook_file_ioctl_common+0x144/0x410 [ 220.468751][ T7927] ? __fget_files+0x20e/0x3c0 [ 220.468779][ T7927] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 220.468799][ T7927] __x64_sys_ioctl+0x18e/0x210 [ 220.468823][ T7927] do_syscall_64+0xcd/0xf80 [ 220.468844][ T7927] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.468861][ T7927] RIP: 0033:0x7f257258f7c9 [ 220.468876][ T7927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 220.468892][ T7927] RSP: 002b:00007f25734a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 220.468908][ T7927] RAX: ffffffffffffffda RBX: 00007f25727e6090 RCX: 00007f257258f7c9 [ 220.468920][ T7927] RDX: 0000000000000000 RSI: 00000000800455d1 RDI: 0000000000000006 [ 220.468930][ T7927] RBP: 00007f2572613f91 R08: 0000000000000000 R09: 0000000000000000 [ 220.468940][ T7927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 220.468951][ T7927] R13: 00007f25727e6128 R14: 00007f25727e6090 R15: 00007fff93a763a8 [ 220.468980][ T7927] [ 221.903577][ T7943] FAULT_INJECTION: forcing a failure. [ 221.903577][ T7943] name failslab, interval 1, probability 0, space 0, times 0 [ 221.988267][ T7943] CPU: 0 UID: 0 PID: 7943 Comm: syz.2.376 Tainted: G L syzkaller #0 PREEMPT(full) [ 221.988299][ T7943] Tainted: [L]=SOFTLOCKUP [ 221.988305][ T7943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 221.988316][ T7943] Call Trace: [ 221.988322][ T7943] [ 221.988329][ T7943] dump_stack_lvl+0x16c/0x1f0 [ 221.988354][ T7943] should_fail_ex+0x512/0x640 [ 221.988380][ T7943] ? __kmalloc_noprof+0xca/0x910 [ 221.988402][ T7943] should_failslab+0xc2/0x120 [ 221.988430][ T7943] __kmalloc_noprof+0xeb/0x910 [ 221.988451][ T7943] ? memcg_list_lru_alloc+0x4e9/0x740 [ 221.988477][ T7943] ? memcg_list_lru_alloc+0x4e9/0x740 [ 221.988497][ T7943] memcg_list_lru_alloc+0x4e9/0x740 [ 221.988524][ T7943] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 221.988552][ T7943] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 221.988578][ T7943] __memcg_slab_post_alloc_hook+0x133/0x880 [ 221.988612][ T7943] ? kasan_save_track+0x14/0x30 [ 221.988637][ T7943] kmem_cache_alloc_lru_noprof+0x58f/0x770 [ 221.988661][ T7943] ? bdev_alloc_inode+0x26/0x90 [ 221.988686][ T7943] ? __pfx_bdev_alloc_inode+0x10/0x10 [ 221.988707][ T7943] ? bdev_alloc_inode+0x26/0x90 [ 221.988728][ T7943] bdev_alloc_inode+0x26/0x90 [ 221.988749][ T7943] ? __pfx_bdev_alloc_inode+0x10/0x10 [ 221.988770][ T7943] alloc_inode+0x64/0x240 [ 221.988790][ T7943] new_inode+0x22/0x1c0 [ 221.988811][ T7943] bdev_alloc+0x2b/0x420 [ 221.988838][ T7943] __alloc_disk_node+0x116/0x6b0 [ 221.988861][ T7943] __blk_mq_alloc_disk+0x89/0x120 [ 221.988880][ T7943] loop_add+0x490/0xb70 [ 221.988902][ T7943] ? __pfx_loop_add+0x10/0x10 [ 221.988936][ T7943] ? find_held_lock+0x2b/0x80 [ 221.988963][ T7943] loop_control_ioctl+0x13e/0x630 [ 221.988993][ T7943] ? __pfx_loop_control_ioctl+0x10/0x10 [ 221.989018][ T7943] ? __pfx_loop_control_ioctl+0x10/0x10 [ 221.989040][ T7943] __x64_sys_ioctl+0x18e/0x210 [ 221.989064][ T7943] do_syscall_64+0xcd/0xf80 [ 221.989086][ T7943] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 221.989105][ T7943] RIP: 0033:0x7fdb2a58f7c9 [ 221.989120][ T7943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 221.989138][ T7943] RSP: 002b:00007fdb2b3cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 221.989156][ T7943] RAX: ffffffffffffffda RBX: 00007fdb2a7e5fa0 RCX: 00007fdb2a58f7c9 [ 221.989167][ T7943] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 221.989178][ T7943] RBP: 00007fdb2a613f91 R08: 0000000000000000 R09: 0000000000000000 [ 221.989189][ T7943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 221.989199][ T7943] R13: 00007fdb2a7e6038 R14: 00007fdb2a7e5fa0 R15: 00007ffc62e00a68 [ 221.989222][ T7943] [ 222.564638][ T7942] NFSD: Failed to start, no listeners configured. [ 222.578974][ T5843] Bluetooth: hci3: command 0x0406 tx timeout [ 222.586443][ T5843] Bluetooth: hci2: command 0x0406 tx timeout [ 222.593184][ T5150] Bluetooth: hci1: command 0x0406 tx timeout [ 222.599366][ T52] Bluetooth: hci0: command 0x0406 tx timeout [ 224.212902][ T7970] zswap: compressor not available [ 224.524684][ T7981] netlink: 28 bytes leftover after parsing attributes in process `syz.0.381'. [ 225.386544][ T8000] aoe: skb alloc failure [ 225.419972][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 225.427081][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 225.719232][ T8011] netlink: 334 bytes leftover after parsing attributes in process `syz.0.390'. [ 226.310280][ T8018] FAULT_INJECTION: forcing a failure. [ 226.310280][ T8018] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 226.371819][ T8018] CPU: 0 UID: 0 PID: 8018 Comm: syz.0.393 Tainted: G L syzkaller #0 PREEMPT(full) [ 226.371861][ T8018] Tainted: [L]=SOFTLOCKUP [ 226.371867][ T8018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 226.371879][ T8018] Call Trace: [ 226.371885][ T8018] [ 226.371892][ T8018] dump_stack_lvl+0x16c/0x1f0 [ 226.371916][ T8018] should_fail_ex+0x512/0x640 [ 226.371946][ T8018] _copy_from_iter+0x2a4/0x16c0 [ 226.371976][ T8018] ? _copy_from_iter+0x161/0x16c0 [ 226.372002][ T8018] ? __pfx__copy_from_iter+0x10/0x10 [ 226.372030][ T8018] ? __pfx__copy_from_iter+0x10/0x10 [ 226.372061][ T8018] copy_page_from_iter+0xde/0x180 [ 226.372089][ T8018] skb_copy_datagram_from_iter+0x2a0/0x740 [ 226.372124][ T8018] tun_get_user+0x1850/0x3cc0 [ 226.372159][ T8018] ? __pfx_tun_get_user+0x10/0x10 [ 226.372185][ T8018] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 226.372219][ T8018] ? find_held_lock+0x2b/0x80 [ 226.372244][ T8018] ? tun_get+0x191/0x370 [ 226.372270][ T8018] tun_chr_write_iter+0xdc/0x210 [ 226.372297][ T8018] vfs_write+0x7d3/0x11d0 [ 226.372323][ T8018] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 226.372350][ T8018] ? __pfx_vfs_write+0x10/0x10 [ 226.372373][ T8018] ? find_held_lock+0x2b/0x80 [ 226.372410][ T8018] __x64_sys_pwrite64+0x1eb/0x250 [ 226.372437][ T8018] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 226.372471][ T8018] do_syscall_64+0xcd/0xf80 [ 226.372492][ T8018] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 226.372511][ T8018] RIP: 0033:0x7f257258f7c9 [ 226.372526][ T8018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 226.372543][ T8018] RSP: 002b:00007f25734c8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 226.372561][ T8018] RAX: ffffffffffffffda RBX: 00007f25727e5fa0 RCX: 00007f257258f7c9 [ 226.372573][ T8018] RDX: 000000000000fdee RSI: 0000200000000280 RDI: 00000000000000c8 [ 226.372584][ T8018] RBP: 00007f2572613f91 R08: 0000000000000000 R09: 0000000000000000 [ 226.372594][ T8018] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 226.372605][ T8018] R13: 00007f25727e6038 R14: 00007f25727e5fa0 R15: 00007fff93a763a8 [ 226.372627][ T8018] [ 226.895851][ T8038] netlink: 21 bytes leftover after parsing attributes in process `syz.3.395'. [ 226.952216][ T8034] nbd: socks must be embedded in a SOCK_ITEM attr [ 227.457739][ T8046] netlink: 302 bytes leftover after parsing attributes in process `syz.0.398'. [ 227.493011][ T8049] mmap: syz.1.399 (8049): VmData 45883392 exceed data ulimit 3. Update limits or use boot option ignore_rlimit_data. [ 229.093240][ T8100] FAULT_INJECTION: forcing a failure. [ 229.093240][ T8100] name failslab, interval 1, probability 0, space 0, times 0 [ 229.132017][ T8100] CPU: 0 UID: 0 PID: 8100 Comm: syz.3.409 Tainted: G L syzkaller #0 PREEMPT(full) [ 229.132049][ T8100] Tainted: [L]=SOFTLOCKUP [ 229.132056][ T8100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 229.132066][ T8100] Call Trace: [ 229.132072][ T8100] [ 229.132080][ T8100] dump_stack_lvl+0x16c/0x1f0 [ 229.132105][ T8100] should_fail_ex+0x512/0x640 [ 229.132139][ T8100] ? kmem_cache_alloc_noprof+0x62/0x770 [ 229.132164][ T8100] should_failslab+0xc2/0x120 [ 229.132193][ T8100] kmem_cache_alloc_noprof+0x83/0x770 [ 229.132214][ T8100] ? stack_depot_save_flags+0x29/0x9b0 [ 229.132238][ T8100] ? alloc_empty_file+0x55/0x1e0 [ 229.132261][ T8100] ? alloc_empty_file+0x55/0x1e0 [ 229.132277][ T8100] ? kasan_save_track+0x14/0x30 [ 229.132300][ T8100] alloc_empty_file+0x55/0x1e0 [ 229.132319][ T8100] path_openat+0xde/0x3140 [ 229.132345][ T8100] ? do_syscall_64+0xcd/0xf80 [ 229.132367][ T8100] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 229.132392][ T8100] ? __pfx_path_openat+0x10/0x10 [ 229.132427][ T8100] do_filp_open+0x20b/0x470 [ 229.132454][ T8100] ? __pfx_do_filp_open+0x10/0x10 [ 229.132497][ T8100] ? alloc_fd+0x471/0x7d0 [ 229.132529][ T8100] do_sys_openat2+0x11f/0x280 [ 229.132549][ T8100] ? __pfx_do_sys_openat2+0x10/0x10 [ 229.132569][ T8100] ? rcu_is_watching+0x12/0xc0 [ 229.132600][ T8100] __x64_sys_openat+0x174/0x210 [ 229.132621][ T8100] ? __pfx___x64_sys_openat+0x10/0x10 [ 229.132650][ T8100] do_syscall_64+0xcd/0xf80 [ 229.132671][ T8100] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 229.132694][ T8100] RIP: 0033:0x7f781e38f7c9 [ 229.132709][ T8100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 229.132726][ T8100] RSP: 002b:00007f781f157038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 229.132744][ T8100] RAX: ffffffffffffffda RBX: 00007f781e5e5fa0 RCX: 00007f781e38f7c9 [ 229.132756][ T8100] RDX: 0000000000068440 RSI: 00002000000001c0 RDI: ffffffffffffff9c [ 229.132767][ T8100] RBP: 00007f781e413f91 R08: 0000000000000000 R09: 0000000000000000 [ 229.132778][ T8100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 229.132788][ T8100] R13: 00007f781e5e6038 R14: 00007f781e5e5fa0 R15: 00007fff58ceb678 [ 229.132811][ T8100] [ 230.034953][ T8120] FAULT_INJECTION: forcing a failure. [ 230.034953][ T8120] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 230.117598][ T8120] CPU: 0 UID: 0 PID: 8120 Comm: syz.1.415 Tainted: G L syzkaller #0 PREEMPT(full) [ 230.117629][ T8120] Tainted: [L]=SOFTLOCKUP [ 230.117635][ T8120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 230.117645][ T8120] Call Trace: [ 230.117651][ T8120] [ 230.117658][ T8120] dump_stack_lvl+0x16c/0x1f0 [ 230.117682][ T8120] should_fail_ex+0x512/0x640 [ 230.117710][ T8120] _copy_from_user+0x2e/0xd0 [ 230.117735][ T8120] get_timespec64+0x8b/0x1b0 [ 230.117753][ T8120] ? __pfx_get_timespec64+0x10/0x10 [ 230.117783][ T8120] __x64_sys_futex+0x288/0x4c0 [ 230.117808][ T8120] ? __pfx___x64_sys_futex+0x10/0x10 [ 230.117829][ T8120] ? xfd_validate_state+0x61/0x180 [ 230.117853][ T8120] do_syscall_64+0xcd/0xf80 [ 230.117873][ T8120] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 230.117892][ T8120] RIP: 0033:0x7f231458f7c9 [ 230.117906][ T8120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 230.117923][ T8120] RSP: 002b:00007ffcbf712de8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 230.117940][ T8120] RAX: ffffffffffffffda RBX: 000000000003825f RCX: 00007f231458f7c9 [ 230.117952][ T8120] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f23147e5fac [ 230.117962][ T8120] RBP: 0000000000000032 R08: 00007f2315411000 R09: 0000000fbf7130df [ 230.117973][ T8120] R10: 00007ffcbf712ee0 R11: 0000000000000246 R12: 00007f23147e5fac [ 230.117984][ T8120] R13: 00007ffcbf712ee0 R14: 0000000000038291 R15: 00007ffcbf712f00 [ 230.118005][ T8120] [ 231.079883][ T8132] FAULT_INJECTION: forcing a failure. [ 231.079883][ T8132] name failslab, interval 1, probability 0, space 0, times 0 [ 231.144060][ T8132] CPU: 0 UID: 0 PID: 8132 Comm: syz.2.419 Tainted: G L syzkaller #0 PREEMPT(full) [ 231.144093][ T8132] Tainted: [L]=SOFTLOCKUP [ 231.144099][ T8132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 231.144109][ T8132] Call Trace: [ 231.144116][ T8132] [ 231.144123][ T8132] dump_stack_lvl+0x16c/0x1f0 [ 231.144149][ T8132] should_fail_ex+0x512/0x640 [ 231.144175][ T8132] ? fs_reclaim_acquire+0xae/0x150 [ 231.144205][ T8132] should_failslab+0xc2/0x120 [ 231.144234][ T8132] __kmalloc_noprof+0xeb/0x910 [ 231.144252][ T8132] ? find_held_lock+0x2b/0x80 [ 231.144276][ T8132] ? usb_alloc_urb+0x66/0xa0 [ 231.144299][ T8132] ? usb_alloc_urb+0x66/0xa0 [ 231.144316][ T8132] usb_alloc_urb+0x66/0xa0 [ 231.144335][ T8132] do_proc_control+0x2ef/0x10a0 [ 231.144358][ T8132] ? __pfx_do_proc_control+0x10/0x10 [ 231.144380][ T8132] ? rep_movs_alternative+0x30/0x90 [ 231.144409][ T8132] usbdev_ioctl+0x22ff/0x4070 [ 231.144432][ T8132] ? __pfx_usbdev_ioctl+0x10/0x10 [ 231.144457][ T8132] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 231.144486][ T8132] ? do_vfs_ioctl+0x128/0x14f0 [ 231.144517][ T8132] ? find_held_lock+0x2b/0x80 [ 231.144540][ T8132] ? hook_file_ioctl_common+0x144/0x410 [ 231.144572][ T8132] ? __fget_files+0x20e/0x3c0 [ 231.144600][ T8132] ? __pfx_usbdev_ioctl+0x10/0x10 [ 231.144620][ T8132] __x64_sys_ioctl+0x18e/0x210 [ 231.144643][ T8132] do_syscall_64+0xcd/0xf80 [ 231.144664][ T8132] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 231.144682][ T8132] RIP: 0033:0x7fdb2a58f7c9 [ 231.144697][ T8132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 231.144715][ T8132] RSP: 002b:00007fdb2b3cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 231.144733][ T8132] RAX: ffffffffffffffda RBX: 00007fdb2a7e5fa0 RCX: 00007fdb2a58f7c9 [ 231.144745][ T8132] RDX: 0000000000000000 RSI: 00000000c0185500 RDI: 0000000000000006 [ 231.144755][ T8132] RBP: 00007fdb2a613f91 R08: 0000000000000000 R09: 0000000000000000 [ 231.144766][ T8132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 231.144776][ T8132] R13: 00007fdb2a7e6038 R14: 00007fdb2a7e5fa0 R15: 00007ffc62e00a68 [ 231.144804][ T8132] [ 232.903840][ T8215] netlink: 330 bytes leftover after parsing attributes in process `syz.3.435'. [ 232.932423][ T8215] : renamed from veth1_vlan (while UP) [ 232.963602][ T8215] : entered allmulticast mode [ 233.013098][ T8215] netlink: 330 bytes leftover after parsing attributes in process `syz.3.435'. [ 234.830975][ T8239] kexec: Could not allocate control_code_buffer [ 237.129162][ T8322] Invalid ELF header magic: != ELF [ 237.472059][ T8328] netlink: 28 bytes leftover after parsing attributes in process `syz.3.460'. [ 237.521950][ T8328] nbd: must specify at least one socket [ 238.103768][ T8340] netlink: 342 bytes leftover after parsing attributes in process `syz.2.465'. [ 239.502390][ T8379] netlink: Unknown NAT attribute (type=262, max=9) [ 239.576675][ T8381] netlink: 4 bytes leftover after parsing attributes in process `syz.1.473'. [ 239.900184][ T8381] Process accounting resumed [ 242.804647][ T8454] vhci_hcd vhci_hcd.0: invalid port number 16 [ 246.295807][ T8519] batman_adv: batadv0: adding TT local entry 00:00:03:00:00:00 to non-existent VLAN 16 [ 246.458192][ T8523] zram0: detected capacity change from 0 to 8 [ 246.920070][ T8516] FAULT_INJECTION: forcing a failure. [ 246.920070][ T8516] name failslab, interval 1, probability 0, space 0, times 0 [ 247.046715][ T8516] CPU: 0 UID: 0 PID: 8516 Comm: syz.2.499 Tainted: G L syzkaller #0 PREEMPT(full) [ 247.046747][ T8516] Tainted: [L]=SOFTLOCKUP [ 247.046753][ T8516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 247.046763][ T8516] Call Trace: [ 247.046769][ T8516] [ 247.046776][ T8516] dump_stack_lvl+0x16c/0x1f0 [ 247.046800][ T8516] should_fail_ex+0x512/0x640 [ 247.046826][ T8516] ? __kmalloc_cache_noprof+0x5f/0x800 [ 247.046848][ T8516] should_failslab+0xc2/0x120 [ 247.046875][ T8516] __kmalloc_cache_noprof+0x80/0x800 [ 247.046895][ T8516] ? kobject_uevent_env+0x265/0x1920 [ 247.046923][ T8516] ? kobject_uevent_env+0x265/0x1920 [ 247.046946][ T8516] kobject_uevent_env+0x265/0x1920 [ 247.046970][ T8516] ? __pfx_dev_uevent_name+0x10/0x10 [ 247.046993][ T8516] ? __pfx_dentry_path_raw+0x10/0x10 [ 247.047014][ T8516] ? kvm_uevent_notify_change.part.0+0x32d/0x450 [ 247.047042][ T8516] ? kvm_uevent_notify_change.part.0+0x300/0x450 [ 247.047072][ T8516] kvm_uevent_notify_change.part.0+0x3ae/0x450 [ 247.047100][ T8516] ? __pfx_kvm_vm_release+0x10/0x10 [ 247.047122][ T8516] kvm_put_kvm+0xe3/0xb00 [ 247.047144][ T8516] ? lockdep_hardirqs_on+0x7c/0x110 [ 247.047163][ T8516] ? _raw_spin_unlock_irq+0x2e/0x50 [ 247.047181][ T8516] ? __pfx_kvm_vm_release+0x10/0x10 [ 247.047203][ T8516] kvm_vm_release+0x3c/0x50 [ 247.047225][ T8516] __fput+0x402/0xb70 [ 247.047243][ T8516] ? _raw_spin_unlock_irq+0x23/0x50 [ 247.047261][ T8516] task_work_run+0x150/0x240 [ 247.047282][ T8516] ? __pfx_task_work_run+0x10/0x10 [ 247.047302][ T8516] ? do_raw_spin_unlock+0x172/0x230 [ 247.047328][ T8516] do_exit+0x87f/0x2bd0 [ 247.047349][ T8516] ? __pfx_do_exit+0x10/0x10 [ 247.047366][ T8516] ? do_raw_spin_lock+0x12c/0x2b0 [ 247.047385][ T8516] ? find_held_lock+0x2b/0x80 [ 247.047412][ T8516] do_group_exit+0xd3/0x2a0 [ 247.047430][ T8516] get_signal+0x2671/0x26d0 [ 247.047460][ T8516] ? fd_install+0x223/0x570 [ 247.047486][ T8516] ? __pfx_get_signal+0x10/0x10 [ 247.047513][ T8516] ? do_futex+0x122/0x350 [ 247.047539][ T8516] arch_do_signal_or_restart+0x8f/0x7a0 [ 247.047567][ T8516] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 247.047605][ T8516] ? __pfx___x64_sys_futex+0x10/0x10 [ 247.047630][ T8516] exit_to_user_mode_loop+0x8c/0x540 [ 247.047655][ T8516] do_syscall_64+0x4ee/0xf80 [ 247.047676][ T8516] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 247.047695][ T8516] RIP: 0033:0x7fdb2a58f7c9 [ 247.047709][ T8516] Code: Unable to access opcode bytes at 0x7fdb2a58f79f. [ 247.047718][ T8516] RSP: 002b:00007fdb2b36c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 247.047735][ T8516] RAX: fffffffffffffe00 RBX: 00007fdb2a7e6278 RCX: 00007fdb2a58f7c9 [ 247.047747][ T8516] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fdb2a7e6278 [ 247.047757][ T8516] RBP: 00007fdb2a7e6270 R08: 0000000000000000 R09: 0000000000000000 [ 247.047768][ T8516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 247.047779][ T8516] R13: 00007fdb2a7e6308 R14: 00007ffc62e00980 R15: 00007ffc62e00a68 [ 247.047801][ T8516] [ 248.652315][ T8551] netlink: 28 bytes leftover after parsing attributes in process `syz.3.507'. [ 248.701996][ T8547] random: crng reseeded on system resumption [ 249.307604][ T8564] netlink: 4 bytes leftover after parsing attributes in process `syz.0.510'. [ 249.573739][ T8565] netlink: 28 bytes leftover after parsing attributes in process `syz.0.510'. [ 249.613707][ T8565] veth1_macvtap: left promiscuous mode [ 249.843552][ C0] ================================================================== [ 249.851672][ C0] BUG: KASAN: double-free in inet_sock_destruct+0x597/0x830 [ 249.858973][ C0] Free of addr ffff8880784e9480 by task ksoftirqd/0/15 [ 249.865815][ C0] [ 249.868139][ C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Tainted: G L syzkaller #0 PREEMPT(full) [ 249.868164][ C0] Tainted: [L]=SOFTLOCKUP [ 249.868171][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 249.868182][ C0] Call Trace: [ 249.868189][ C0] [ 249.868196][ C0] dump_stack_lvl+0x116/0x1f0 [ 249.868217][ C0] print_report+0xcd/0x630 [ 249.868242][ C0] ? __virt_addr_valid+0x81/0x610 [ 249.868268][ C0] ? __phys_addr+0xe8/0x180 [ 249.868292][ C0] ? inet_sock_destruct+0x597/0x830 [ 249.868315][ C0] kasan_report_invalid_free+0xb8/0xe0 [ 249.868341][ C0] ? inet_sock_destruct+0x597/0x830 [ 249.868365][ C0] ? inet_sock_destruct+0x597/0x830 [ 249.868387][ C0] check_slab_allocation+0xc3/0xf0 [ 249.868410][ C0] kfree+0x21d/0x6e0 [ 249.868426][ C0] ? inet_sock_destruct+0x597/0x830 [ 249.868451][ C0] ? inet_sock_destruct+0x597/0x830 [ 249.868474][ C0] inet_sock_destruct+0x597/0x830 [ 249.868496][ C0] ? inet6_cleanup_sock+0x10b/0x200 [ 249.868515][ C0] ? __pfx_sctp_v6_destruct_sock+0x10/0x10 [ 249.868534][ C0] __sk_destruct+0x85/0xbc0 [ 249.868559][ C0] sk_destruct+0xc2/0xf0 [ 249.868588][ C0] __sk_free+0xf4/0x3e0 [ 249.868611][ C0] sk_free+0x6a/0x90 [ 249.868633][ C0] sctp_endpoint_destroy_rcu+0xd3/0x100 [ 249.868654][ C0] ? rcu_core+0x797/0x15f0 [ 249.868674][ C0] rcu_core+0x79c/0x15f0 [ 249.868694][ C0] ? trace_sched_exit_tp+0xd1/0x110 [ 249.868719][ C0] ? __schedule+0x10b9/0x6150 [ 249.868735][ C0] ? __pfx_rcu_core+0x10/0x10 [ 249.868759][ C0] handle_softirqs+0x219/0x950 [ 249.868784][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 249.868808][ C0] ? __pfx_run_ksoftirqd+0x10/0x10 [ 249.868830][ C0] ? smpboot_thread_fn+0x326/0xae0 [ 249.868855][ C0] run_ksoftirqd+0x3a/0x60 [ 249.868877][ C0] smpboot_thread_fn+0x3f7/0xae0 [ 249.868903][ C0] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 249.868928][ C0] kthread+0x3c5/0x780 [ 249.868945][ C0] ? __pfx_kthread+0x10/0x10 [ 249.868961][ C0] ? rcu_is_watching+0x12/0xc0 [ 249.868984][ C0] ? __pfx_kthread+0x10/0x10 [ 249.869000][ C0] ret_from_fork+0x983/0xb10 [ 249.869017][ C0] ? __pfx_ret_from_fork+0x10/0x10 [ 249.869034][ C0] ? __switch_to+0x7af/0x10d0 [ 249.869056][ C0] ? __pfx_kthread+0x10/0x10 [ 249.869072][ C0] ret_from_fork_asm+0x1a/0x30 [ 249.869101][ C0] [ 249.869107][ C0] [ 250.105713][ C0] Allocated by task 8564: [ 250.110035][ C0] kasan_save_stack+0x33/0x60 [ 250.114716][ C0] kasan_save_track+0x14/0x30 [ 250.119406][ C0] __kasan_kmalloc+0xaa/0xb0 [ 250.124001][ C0] __kmalloc_noprof+0x33d/0x910 [ 250.129195][ C0] ip_options_get+0xad/0x4a0 [ 250.133781][ C0] do_ip_setsockopt+0x27bd/0x3790 [ 250.138826][ C0] ip_setsockopt+0x59/0xf0 [ 250.143353][ C0] ipv6_setsockopt+0x155/0x170 [ 250.148221][ C0] sctp_setsockopt+0x16c/0xb8c0 [ 250.153093][ C0] do_sock_setsockopt+0xf3/0x1d0 [ 250.158028][ C0] __sys_setsockopt+0x120/0x1a0 [ 250.162881][ C0] __x64_sys_setsockopt+0xbd/0x160 [ 250.168007][ C0] do_syscall_64+0xcd/0xf80 [ 250.172608][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 250.178530][ C0] [ 250.180860][ C0] Freed by task 5830: [ 250.184831][ C0] kasan_save_stack+0x33/0x60 [ 250.189515][ C0] kasan_save_track+0x14/0x30 [ 250.194193][ C0] kasan_save_free_info+0x3b/0x60 [ 250.199212][ C0] __kasan_slab_free+0x5f/0x80 [ 250.203999][ C0] kfree+0x2f8/0x6e0 [ 250.207890][ C0] inet_sock_destruct+0x597/0x830 [ 250.212915][ C0] __sk_destruct+0x85/0xbc0 [ 250.217417][ C0] sk_destruct+0xc2/0xf0 [ 250.221659][ C0] __sk_free+0xf4/0x3e0 [ 250.225815][ C0] sk_free+0x6a/0x90 [ 250.229814][ C0] sctp_endpoint_destroy_rcu+0xd3/0x100 [ 250.235357][ C0] rcu_core+0x79c/0x15f0 [ 250.239599][ C0] handle_softirqs+0x219/0x950 [ 250.244452][ C0] __irq_exit_rcu+0x109/0x170 [ 250.249127][ C0] irq_exit_rcu+0x9/0x30 [ 250.253367][ C0] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 250.258994][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 250.264974][ C0] [ 250.267289][ C0] The buggy address belongs to the object at ffff8880784e9480 [ 250.267289][ C0] which belongs to the cache kmalloc-96 of size 96 [ 250.281264][ C0] The buggy address is located 0 bytes inside of [ 250.281264][ C0] 96-byte region [ffff8880784e9480, ffff8880784e94e0) [ 250.294445][ C0] [ 250.296852][ C0] The buggy address belongs to the physical page: [ 250.303250][ C0] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff8880784e9c00 pfn:0x784e9 [ 250.313330][ C0] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 250.320533][ C0] page_type: f5(slab) [ 250.324541][ C0] raw: 00fff00000000000 ffff88813ff26280 ffffea00009f9480 dead000000000002 [ 250.333133][ C0] raw: ffff8880784e9c00 000000000020001e 00000000f5000000 0000000000000000 [ 250.341888][ C0] page dumped because: kasan: bad access detected [ 250.348287][ C0] page_owner tracks the page as allocated [ 250.353988][ C0] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 1111, tgid 1111 (kworker/u8:8), ts 104861339268, free_ts 104803179039 [ 250.373533][ C0] post_alloc_hook+0x1af/0x220 [ 250.378310][ C0] get_page_from_freelist+0xd0b/0x31a0 [ 250.383765][ C0] __alloc_frozen_pages_noprof+0x25f/0x2430 [ 250.389663][ C0] alloc_pages_mpol+0x1fb/0x550 [ 250.394539][ C0] new_slab+0x2c3/0x430 [ 250.398706][ C0] ___slab_alloc+0xe18/0x1c90 [ 250.403376][ C0] __slab_alloc.constprop.0+0x63/0x110 [ 250.408828][ C0] __kmalloc_cache_noprof+0x485/0x800 [ 250.414196][ C0] nsim_fib_event_nb+0x1b6/0xec0 [ 250.419222][ C0] notifier_call_chain+0xbc/0x3e0 [ 250.424248][ C0] atomic_notifier_call_chain+0x71/0x1c0 [ 250.429873][ C0] call_fib_notifiers+0x33/0x70 [ 250.434725][ C0] fib6_add_rt2node+0x1cf2/0x3720 [ 250.439745][ C0] fib6_add+0x628/0x1d90 [ 250.443981][ C0] ip6_ins_rt+0xb5/0x110 [ 250.448220][ C0] __ipv6_ifa_notify+0xc9f/0xfd0 [ 250.453150][ C0] page last free pid 23 tgid 23 stack trace: [ 250.459170][ C0] __free_frozen_pages+0x7df/0x1170 [ 250.464564][ C0] rcu_core+0x79c/0x15f0 [ 250.468829][ C0] handle_softirqs+0x219/0x950 [ 250.473607][ C0] run_ksoftirqd+0x3a/0x60 [ 250.478108][ C0] smpboot_thread_fn+0x3f7/0xae0 [ 250.483109][ C0] kthread+0x3c5/0x780 [ 250.487167][ C0] ret_from_fork+0x983/0xb10 [ 250.491939][ C0] ret_from_fork_asm+0x1a/0x30 [ 250.496706][ C0] [ 250.499017][ C0] Memory state around the buggy address: [ 250.504660][ C0] ffff8880784e9380: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 250.512719][ C0] ffff8880784e9400: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 250.520790][ C0] >ffff8880784e9480: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 250.528839][ C0] ^ [ 250.532912][ C0] ffff8880784e9500: 00 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc [ 250.540977][ C0] ffff8880784e9580: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 250.549025][ C0] ================================================================== [ 250.557276][ C0] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 250.564487][ C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Tainted: G L syzkaller #0 PREEMPT(full) [ 250.575261][ C0] Tainted: [L]=SOFTLOCKUP [ 250.579572][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 250.589804][ C0] Call Trace: [ 250.593079][ C0] [ 250.596003][ C0] dump_stack_lvl+0x3d/0x1f0 [ 250.600595][ C0] vpanic+0x640/0x6f0 [ 250.604573][ C0] ? inet_sock_destruct+0x597/0x830 [ 250.609795][ C0] panic+0xca/0xd0 [ 250.613599][ C0] ? __pfx_panic+0x10/0x10 [ 250.618010][ C0] ? inet_sock_destruct+0x597/0x830 [ 250.623210][ C0] ? trace_irq_enable.constprop.0+0x2f/0x110 [ 250.629193][ C0] ? check_panic_on_warn+0x1f/0xb0 [ 250.634299][ C0] check_panic_on_warn+0xab/0xb0 [ 250.639252][ C0] end_report+0x107/0x160 [ 250.643606][ C0] kasan_report_invalid_free+0xc8/0xe0 [ 250.649069][ C0] ? inet_sock_destruct+0x597/0x830 [ 250.654281][ C0] ? inet_sock_destruct+0x597/0x830 [ 250.659480][ C0] check_slab_allocation+0xc3/0xf0 [ 250.664599][ C0] kfree+0x21d/0x6e0 [ 250.668585][ C0] ? inet_sock_destruct+0x597/0x830 [ 250.673786][ C0] ? inet_sock_destruct+0x597/0x830 [ 250.678984][ C0] inet_sock_destruct+0x597/0x830 [ 250.684012][ C0] ? inet6_cleanup_sock+0x10b/0x200 [ 250.689226][ C0] ? __pfx_sctp_v6_destruct_sock+0x10/0x10 [ 250.695032][ C0] __sk_destruct+0x85/0xbc0 [ 250.699536][ C0] sk_destruct+0xc2/0xf0 [ 250.703781][ C0] __sk_free+0xf4/0x3e0 [ 250.707938][ C0] sk_free+0x6a/0x90 [ 250.712007][ C0] sctp_endpoint_destroy_rcu+0xd3/0x100 [ 250.717566][ C0] ? rcu_core+0x797/0x15f0 [ 250.721998][ C0] rcu_core+0x79c/0x15f0 [ 250.726251][ C0] ? trace_sched_exit_tp+0xd1/0x110 [ 250.731490][ C0] ? __schedule+0x10b9/0x6150 [ 250.736188][ C0] ? __pfx_rcu_core+0x10/0x10 [ 250.740876][ C0] handle_softirqs+0x219/0x950 [ 250.745648][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 250.750935][ C0] ? __pfx_run_ksoftirqd+0x10/0x10 [ 250.756148][ C0] ? smpboot_thread_fn+0x326/0xae0 [ 250.761288][ C0] run_ksoftirqd+0x3a/0x60 [ 250.765712][ C0] smpboot_thread_fn+0x3f7/0xae0 [ 250.770670][ C0] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 250.776176][ C0] kthread+0x3c5/0x780 [ 250.780267][ C0] ? __pfx_kthread+0x10/0x10 [ 250.784886][ C0] ? rcu_is_watching+0x12/0xc0 [ 250.789705][ C0] ? __pfx_kthread+0x10/0x10 [ 250.794332][ C0] ret_from_fork+0x983/0xb10 [ 250.798931][ C0] ? __pfx_ret_from_fork+0x10/0x10 [ 250.804044][ C0] ? __switch_to+0x7af/0x10d0 [ 250.808857][ C0] ? __pfx_kthread+0x10/0x10 [ 250.813470][ C0] ret_from_fork_asm+0x1a/0x30 [ 250.818295][ C0] [ 250.821379][ C0] Kernel Offset: disabled [ 250.825917][ C0] Rebooting in 86400 seconds..