last executing test programs: 11.171458116s ago: executing program 0 (id=350): socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54) r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x8a002, 0x0) ioctl$auto(r0, 0x2202, r0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) setresuid$auto(0x0, 0x0, 0x0) setfsuid$auto(0x0) getsockopt$auto(0xffffffffffffffff, 0x107, 0x1, 0x0, 0x0) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, 0x0, 0x84000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x11, 0xa, 0x300) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r1 = socket(0x11, 0x80003, 0x300) name_to_handle_at$auto(0xffffffffffffffff, &(0x7f00000001c0)='/\x00', &(0x7f0000000200)={0x0, 0x200}, 0x0, 0x1001) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{0x0, 0x5ac, &(0x7f0000000100)={&(0x7f0000000200)="6c0c5833b1dcff", 0x49}, 0x5, 0x0, 0x5, 0xe}, 0x5}, 0x2, 0x100) setsockopt$auto(r1, 0x107, 0x12, 0x0, 0x4) r2 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) sendmmsg$auto(r2, &(0x7f00000006c0)={{&(0x7f0000000000), 0x5ae, &(0x7f0000000100)={&(0x7f0000000200)="4c0300", 0x49}, 0x5, 0x0, 0x5, 0x1}, 0x5}, 0x2, 0x100) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r5, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4040000}, 0x40010) sendmsg$auto_CTRL_CMD_GETPOLICY(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="01032cb57000fbe0df250a00000006000100170000e22bbf3fcf4040e070d0a6c62bafb8b3938f741015ce0156a21b6f4cb954cc6997af8bcebab6f9750e9de4e13ad295a4a40b1f972a575ed0c60d2ad237fefa6f70376eea9faf614cb39a850102438891c057f9f18c9354443f0a2193218d9aedd7c184f02435d6ba18f1a094965b6c8bbcefedd757427b0f12fa88b487dc3caa09810b3d9975fe78a4e6b21c8b1fe8c72d133fc060265d076309551060c8b03837140c0faf0f3677128a290423d1c01c5628538c8b96dbb99fa36cee4be947c9d7e920f9bc9a592f51a3ec86f2856daa583df930493ccce21cdd2ac50277c5e4d4"], 0x1c}, 0x1, 0x0, 0x0, 0x400c01d}, 0x0) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), r3) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/controlC2\x00', 0xb42, 0x0) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x40000, 0x0) 10.383679353s ago: executing program 2 (id=352): r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0xffffffffffffb8f1, 0x5, 0x3, 0x613, 0xfffffffffffffffa, 0x100000000000006) select$auto(0x5, 0x0, 0x0, 0x0, 0x0) sysfs$auto(0x2, 0x1a, 0x0) mmap$auto(0x3, 0x40009, 0x8838, 0x9b72, 0x7, 0x8e7) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2506, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x3a32182}, 0xed7138b}, 0x2, 0x9) recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0) close_range$auto(0x2, 0x8, 0x0) setresgid$auto(0xffffffffffffffff, 0x0, 0x7fffffffffffffff) recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000380)={{&(0x7f0000000100)="7faa331330012f3596a77287ca72693c3355ee49c1004b", 0x7, &(0x7f0000000280)={&(0x7f0000000240)="7e995939fe34cb2eeb6cf335e9ec0379214e56ab59b999a7bd5552215d7b916dae3e490a373e75e18ec3f64d21d18202", 0xb8}, 0x2, &(0x7f00000002c0)="fadf6490f9e33e53c4a127a7943078aec05540e189b1bcef8fde0600eb4625f891fde4a5c69c46cccb761212e0ada005da10a87b9187888b9b2dd43f45041f73a5013b68d9d22eb822027a3dafa7f32c94204a643c894e50eb8cdabc4c8608cb2073732f7ff29c38bc19001e0634b88eed097bc898de69f622a48c4481fc1b0324dc656254bda6de28343c2831ce7fa7758f9cbae6eb6e925f832c03f662c7", 0x8, 0x3}, 0x6}, 0x800, 0xe63, &(0x7f00000003c0)={0x9, 0xffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'geneve0\x00'}) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000c80), r1) io_uring_setup$auto(0x6, 0x0) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r2, &(0x7f0000000040)='//\xf2\x00', 0x80000000) 9.495643182s ago: executing program 0 (id=354): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) setitimer$auto_ITIMER_VIRTUAL(0x1, &(0x7f0000000080)={{0x7, 0x3076000000000000}, {0x10, 0x401}}, &(0x7f00000000c0)={{0xd1f3, 0x100000000}, {0xf33, 0x8}}) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) socket(0x29, 0x2, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x2, 0x7, 0xd, 0x2, 0x2, 0x3, 0x15f4da0a, 0x1, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9) r1 = getpid() mremap$auto(0x0, 0x4000007, 0x3fd7, 0x0, 0x20000020000000) process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) lseek$auto(0x3, 0x8, 0x1) ioctl$auto(0x3, 0x400454ca, 0x38) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r2, &(0x7f0000000000)='//\xf2\x00', 0x80000000) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) msync$auto(0x0, 0xe0, 0x6) r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r3, 0x0, 0x1f42) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f00000000c0)={0x0, 0x7}, 0x3) io_uring_setup$auto(0x3, &(0x7f0000000280)={0x6, 0x7d, 0x0, 0x3843, 0x1, 0x3, r3, [0x8000000, 0xcb7, 0x6], {0x4, 0x5, 0xfffff5d3, 0x2, 0x2, 0x1, 0x7ff, 0x8, 0x80000000}, {0x8, 0x9, 0x7, 0x7, 0xe4ae, 0x95, 0x7ff, 0x8, 0x3}}) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) 8.52881987s ago: executing program 3 (id=357): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xfffffffffffffffb, 0x9b72, 0xffffffffffffffff, 0x8000) read$auto(0xffffffffffffffff, 0x0, 0x7) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) read$auto(r5, 0x0, 0x20) r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r6, &(0x7f0000000200)={0x0, 0x7}, 0x3) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80, 0x0) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) sendmsg$auto_NL80211_CMD_SET_CQM(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x20, r2, 0x1, 0x70bd26, 0x25dfdbfd, {}, [@NL80211_ATTR_CQM={0x4}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x40800) sendmsg$auto_NL80211_CMD_SET_WOWLAN(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r2, 0x1, 0x70bd2a, 0x25dfdbff, {}, [@NL80211_ATTR_4ADDR={0x5, 0x53, 0x3}, @NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI={0x5, 0xf6, 0x9}]}, 0x24}}, 0x1) r7 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) r8 = open(&(0x7f0000000800)='./file0\x00', 0x62240, 0x154) ioctl$auto_BLKDISCARDZEROES(r8, 0x127c, 0x0) execveat$auto(r7, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x10000) 7.71507346s ago: executing program 2 (id=358): r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0) write$auto(r0, &(0x7f0000000700)=')dev_\x00\x00\x00\x00\x00', 0x1) openat$auto_userio_fops_userio(0xffffffffffffff9c, &(0x7f0000000000), 0xc000, 0x0) pwrite64$auto(0xc8, &(0x7f0000000180)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00/\x00\x00\x00\xfd\xfdX\xd3\x1d\xf8\xbebZ\xddL\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x88\v\xae\xa9i8W\xe5\x00!\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00v\xd9\xe5H.-\x14\xee\xbc\xae\xe1\x85\xb2b\xd42\x89\x05e\x03z\xe6q\xcd\x91\tM\xd2\x90\xc91\xd9\x86\xe4\x8e\x0fI\xf0b2\nfa\xb8\x1a\xdb\xaa0P\xca\xb2W\xe3\x14\xb9Cx\x0e4\xc9\xb4\xdc4\xe3\x8f\x1c\xa5\x89\x8d\x84V\x97dg \x9f\xcd\x8fA\x16\x01\xc5.\x7fG\x86L\xa4\xd6h\xea\x11x\xce\x96t\xc7~# )\x8c6\x06\xd7\xfcu\x8c{t\xa5\x92JW\x8b\xb3Oj%\xb5H\x91F\x1b\x01\xef\x0e\xc5\xac\xcfK\xd5\x98\xce\xd6?\t\xa8\xb7\xce\x87\xdb\xb0\xaa\x8al8qF\re\xa7\xda\x1f\x9ad\b!\xddBD\xd9', 0x3c, 0x200001000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x202, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = pipe$auto(0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xae00, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) socketpair$auto(0x1, 0x3, 0x5, 0x0) ioctl$auto(0x3, 0xc048aec8, r1) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) lsetxattr$auto(0x0, &(0x7f0000005500)='[!*)\x00', &(0x7f00000000c0)="fa926245e293f37256dfd4988a3db86665fb6d1011a962bde919ee4211d61661686c5a18f0b1072610af1c", 0x100, 0xfffffffc) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/block/nbd11/sched/async_depth\x00', 0x2000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count\x00', 0xc0082, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x100, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000080), 0xffffffffffffffff) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/pcmC1D1p\x00', 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0xdd01, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram2\x00', 0x14f602, 0x0) 6.334235683s ago: executing program 3 (id=360): unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0xc0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000) socketpair$auto(0xfffffffe, 0x1, 0x8000000000000000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x0, 0x3e, 0x0, 0x9) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xe, 0x2, 0x6, 0x5, 0x8, 0xffffffffffffffff, [], {0xd74c, 0x6, 0x2, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0xff, 0x1, 0x10001, 0x7, 0x1, 0x40, 0x76c5, 0x400005, 0x100000005}}) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/asound/card0/pcm0c/sub0/info\x00', 0x4a801, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) 6.274443623s ago: executing program 2 (id=361): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) setitimer$auto_ITIMER_VIRTUAL(0x1, &(0x7f0000000080)={{0x7, 0x3076000000000000}, {0x10, 0x401}}, &(0x7f00000000c0)={{0xd1f3, 0x100000000}, {0xf33, 0x8}}) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) socket(0x29, 0x2, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x2, 0x7, 0xd, 0x2, 0x2, 0x3, 0x15f4da0a, 0x1, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9) r1 = getpid() mremap$auto(0x0, 0x4000007, 0x3fd7, 0x0, 0x20000020000000) process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) lseek$auto(0x3, 0x8, 0x1) ioctl$auto(0x3, 0x400454ca, 0x38) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r2, &(0x7f0000000000)='//\xf2\x00', 0x80000000) msync$auto(0x0, 0xe0, 0x6) r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r3, 0x0, 0x1f42) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f00000000c0)={0x0, 0x7}, 0x3) io_uring_register$auto_IORING_UNREGISTER_NAPI(0xffffffffffffffff, 0x1c, 0x0, 0x8) io_uring_setup$auto(0x3, &(0x7f0000000280)={0x6, 0x7d, 0x0, 0x3843, 0x1, 0x3, r3, [0x8000000, 0xcb7, 0x6], {0x4, 0x5, 0xfffff5d3, 0x2, 0x2, 0x1, 0x7ff, 0x8, 0x80000000}, {0x8, 0x9, 0x7, 0x7, 0xe4ae, 0x95, 0x7ff, 0x8, 0x3}}) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) 6.267044028s ago: executing program 1 (id=362): r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='^\x00', @ANYRES32, @ANYRES32, @ANYRES64, @ANYRES32], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40) sendmsg$auto_SMC_NETLINK_REMOVE_UEID(0xffffffffffffffff, 0x0, 0x20000000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) 5.982598374s ago: executing program 0 (id=363): r0 = socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54) r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x8a002, 0x0) ioctl$auto(r1, 0x2202, r1) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) setresuid$auto(0x0, 0x8, 0x0) setfsuid$auto(0x0) getsockopt$auto(0xffffffffffffffff, 0x107, 0x1, 0x0, 0x0) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, 0x0, 0x84000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000380), r0) sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r5, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x40010) sendmsg$auto_CTRL_CMD_GETPOLICY(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="01032cb57000fbe0df250a00000006000100170000e22bbf3fcf4040e070d0a6c62bafb8b3938f741015ce0156a21b6f4cb954cc6997af8bcebab6f9750e9de4e13ad295a4a40b1f972a575ed0c60d2ad237fefa6f70376eea9faf614cb39a850102438891c057f9f18c9354443f0a2193218d9aedd7c184f02435d6ba18f1a094965b6c8bbcefedd757427b0f12fa88b487dc3caa09810b3d9975fe78a4e6b21c8b1fe8c72d133fc060265d076309551060c8b03837140c0faf0f3677128a290423d1c01c5628538c8b96dbb99fa36cee4be947c9d7e920f9bc9a592f51a3ec86f2856daa583df930493ccce21cdd2ac50277c5e4d4"], 0x1c}, 0x1, 0x0, 0x0, 0x400c01d}, 0x0) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), r3) ioctl$auto_TIOCSETD2(r2, 0x5423, &(0x7f00000001c0)="5aee5e35980d1fd320c7735ed0432691b829391c7caedba1d69aaf68f1c49e0d81582a7da536cbe2ed12e4fa5ffe08c02cb1f465a9c38fdbcddf7dad69574815fe49f89209") openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/controlC2\x00', 0xa02, 0x0) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x40000, 0x0) read$auto(0x3, 0x0, 0x8) close_range$auto(r2, 0xffffffffffffffff, 0x3) getsockopt$auto_SO_GET_FILTER(r2, 0xa3, 0x1a, &(0x7f0000000000)='/dev/snd/controlC1\x00', &(0x7f0000000180)=0x7) migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x80000000000000a, 0x2, 0x0) 5.97570683s ago: executing program 1 (id=364): mmap$auto(0x0, 0x0, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x40000008000) openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, 0x0, 0x582, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0) ioctl$auto(0x3, 0x4020565a, 0x38) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000100)='/dev/binderfs/binder0\x00', 0x800, 0x0) socket(0xa, 0x1, 0x100) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x1e, 0x1, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x101, 0x0) r1 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x10303f, 0x0) ioctl$auto_SNAPSHOT_ATOMIC_RESTORE(r1, 0x3304, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x1, 0x84) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 5.429951536s ago: executing program 3 (id=365): r0 = socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54) ioctl$auto(0xffffffffffffffff, 0x2202, 0xffffffffffffffff) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) setresuid$auto(0x0, 0x8, 0x0) setfsuid$auto(0x0) getsockopt$auto(0xffffffffffffffff, 0x107, 0x1, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000380), r0) sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r4, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x40010) sendmsg$auto_CTRL_CMD_GETPOLICY(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="01032cb57000fbe0df250a00000006000100170000e22bbf3fcf4040e070d0a6c62bafb8b3938f741015ce0156a21b6f4cb954cc6997af8bcebab6f9750e9de4e13ad295a4a40b1f972a575ed0c60d2ad237fefa6f70376eea9faf614cb39a850102438891c057f9f18c9354443f0a2193218d9aedd7c184f02435d6ba18f1a094965b6c8bbcefedd757427b0f12fa88b487dc3caa09810b3d9975fe78a4e6b21c8b1fe8c72d133fc060265d076309551060c8b03837140c0faf0f3677128a290423d1c01c5628538c8b96dbb99fa36cee4be947c9d7e920f9bc9a592f51a3ec86f2856daa583df930493ccce21cdd2ac50277c5e4d4"], 0x1c}, 0x1, 0x0, 0x0, 0x400c01d}, 0x0) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), r2) ioctl$auto_TIOCSETD2(r1, 0x5423, &(0x7f00000001c0)="5aee5e35980d1fd320c7735ed0432691b829391c7caedba1d69aaf68f1c49e0d81582a7da536cbe2ed12e4fa5ffe08c02cb1f465a9c38fdbcddf7dad69574815fe49f89209") openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/controlC2\x00', 0xa02, 0x0) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x40000, 0x0) read$auto(0x3, 0x0, 0x8) close_range$auto(r1, 0xffffffffffffffff, 0x3) migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x80000000000000a, 0x2, 0x0) 4.764801139s ago: executing program 0 (id=366): r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0) write$auto(r0, &(0x7f0000000700)=')dev_\x00\x00\x00\x00\x00', 0x1) openat$auto_userio_fops_userio(0xffffffffffffff9c, &(0x7f0000000000), 0xc000, 0x0) pwrite64$auto(0xc8, &(0x7f0000000180)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00/\x00\x00\x00\xfd\xfdX\xd3\x1d\xf8\xbebZ\xddL\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x88\v\xae\xa9i8W\xe5\x00!\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00v\xd9\xe5H.-\x14\xee\xbc\xae\xe1\x85\xb2b\xd42\x89\x05e\x03z\xe6q\xcd\x91\tM\xd2\x90\xc91\xd9\x86\xe4\x8e\x0fI\xf0b2\nfa\xb8\x1a\xdb\xaa0P\xca\xb2W\xe3\x14\xb9Cx\x0e4\xc9\xb4\xdc4\xe3\x8f\x1c\xa5\x89\x8d\x84V\x97dg \x9f\xcd\x8fA\x16\x01\xc5.\x7fG\x86L\xa4\xd6h\xea\x11x\xce\x96t\xc7~# )\x8c6\x06\xd7\xfcu\x8c{t\xa5\x92JW\x8b\xb3Oj%\xb5H\x91F\x1b\x01\xef\x0e\xc5\xac\xcfK\xd5\x98\xce\xd6?\t\xa8\xb7\xce\x87\xdb\xb0\xaa\x8al8qF\re\xa7\xda\x1f\x9ad\b!\xddBD\xd9', 0x3c, 0x200001000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x202, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = pipe$auto(0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xae00, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) socketpair$auto(0x1, 0x3, 0x5, 0x0) ioctl$auto(0x3, 0xc048aec8, r1) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) lsetxattr$auto(0x0, &(0x7f0000005500)='[!*)\x00', &(0x7f00000000c0)="fa926245e293f37256dfd4988a3db86665fb6d1011a962bde919ee4211d61661686c5a18f0b1072610af1c", 0x100, 0xfffffffc) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/block/nbd11/sched/async_depth\x00', 0x2000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count\x00', 0xc0082, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r3 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x100, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_CHANNEL_INFO2(r3, 0x80184132, 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/pcmC1D1p\x00', 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0xdd01, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram2\x00', 0x14f602, 0x0) 4.693738766s ago: executing program 1 (id=367): r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0) write$auto(r0, &(0x7f0000000700)=')dev_\x00\x00\x00\x00\x00', 0x1) openat$auto_userio_fops_userio(0xffffffffffffff9c, &(0x7f0000000000), 0xc000, 0x0) pwrite64$auto(0xc8, 0x0, 0x3c, 0x200001000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x202, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = pipe$auto(0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xae00, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) socketpair$auto(0x1, 0x3, 0x5, 0x0) ioctl$auto(0x3, 0xc048aec8, r1) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) lsetxattr$auto(0x0, &(0x7f0000005500)='[!*)\x00', &(0x7f00000000c0)="fa926245e293f37256dfd4988a3db86665fb6d1011a962bde919ee4211d61661686c5a18f0b1072610af1c", 0x100, 0xfffffffc) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/block/nbd11/sched/async_depth\x00', 0x2000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count\x00', 0xc0082, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r3 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x100, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_CHANNEL_INFO2(r3, 0x80184132, 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000080), 0xffffffffffffffff) write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/pcmC1D1p\x00', 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0xdd01, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram2\x00', 0x14f602, 0x0) 4.108306043s ago: executing program 3 (id=368): socket(0x1d, 0x2, 0x6) r0 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r1, 0xfd}, 0x6a) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0xa, 0x3, 0xe, 0x940, 0xfffffff8, 0x3, 0x1004, 0x1, 0x9, 0x5, 0x6, 0x7, 0x1001000, 0x8, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}, 0x4, 0x40000081) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r2 = socket(0x10, 0x2, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/module/nfs/parameters/nfs_mountpoint_expiry_timeout\x00', 0xa001, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) write$auto(0x3, 0x0, 0x7fffffff) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x52, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x8044) mmap$auto(0x0, 0xe984, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket(0x2, 0x3, 0xa) execve$auto(0x0, 0x0, 0x0) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, 0x0, 0x24004000) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) connect$auto(0x3, &(0x7f0000000080)=@nl=@proc={0x10, 0x0, 0x25dfdbfe, 0x4}, 0x81) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r4 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/interrupts\x00', 0x18b202, 0x0) pread64$auto(r4, 0x0, 0x400100000001, 0x1ff) readv$auto(0x3, 0x0, 0x4) fallocate$auto(0x8000000000000003, 0x0, 0x2, 0x4cbd5d) ptrace$auto(0x3, 0x0, 0x40003, 0x8) mmap$auto(0x80000001, 0xa, 0x4, 0x7ab3, 0xffffffffffffffff, 0x8) 3.410996827s ago: executing program 1 (id=369): r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0xffffffffffffb8f1, 0x5, 0x3, 0x613, 0xfffffffffffffffa, 0x100000000000006) select$auto(0x5, 0x0, 0x0, 0x0, 0x0) sysfs$auto(0x2, 0x1a, 0x0) mmap$auto(0x3, 0x40009, 0x8838, 0x9b72, 0x7, 0x8e7) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2506, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x3a32182}, 0xed7138b}, 0x2, 0x9) recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0) close_range$auto(0x2, 0x8, 0x0) setresgid$auto(0xffffffffffffffff, 0x0, 0x7fffffffffffffff) r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0x200001, 0x0) recvmmsg$auto(r1, 0x0, 0x800, 0xe63, &(0x7f00000003c0)={0x9, 0xffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'geneve0\x00'}) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000c80), r2) io_uring_setup$auto(0x6, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r3, &(0x7f0000000040)='//\xf2\x00', 0x80000000) 3.205725167s ago: executing program 0 (id=370): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) setitimer$auto_ITIMER_VIRTUAL(0x1, &(0x7f0000000080)={{0x7, 0x3076000000000000}, {0x10, 0x401}}, &(0x7f00000000c0)={{0xd1f3, 0x100000000}, {0xf33, 0x8}}) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) socket(0x29, 0x2, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x2, 0x7, 0xd, 0x2, 0x2, 0x3, 0x15f4da0a, 0x1, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9) r1 = getpid() mremap$auto(0x0, 0x4000007, 0x3fd7, 0x0, 0x20000020000000) process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) lseek$auto(0x3, 0x8, 0x1) ioctl$auto(0x3, 0x400454ca, 0x38) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r2, &(0x7f0000000000)='//\xf2\x00', 0x80000000) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) msync$auto(0x0, 0xe0, 0x6) r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r3, 0x0, 0x1f42) writev$auto(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x7}, 0x3) io_uring_register$auto_IORING_UNREGISTER_NAPI(0xffffffffffffffff, 0x1c, 0x0, 0x8) io_uring_setup$auto(0x3, &(0x7f0000000280)={0x6, 0x7d, 0x0, 0x3843, 0x1, 0x3, r3, [0x8000000, 0xcb7, 0x6], {0x4, 0x5, 0xfffff5d3, 0x2, 0x2, 0x1, 0x7ff, 0x8, 0x80000000}, {0x8, 0x9, 0x7, 0x7, 0xe4ae, 0x95, 0x7ff, 0x8, 0x3}}) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) 2.686146403s ago: executing program 3 (id=371): mmap$auto(0x0, 0x0, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x40000008000) openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, 0x0, 0x582, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0) ioctl$auto(0x3, 0x4020565a, 0x38) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000100)='/dev/binderfs/binder0\x00', 0x800, 0x0) socket(0xa, 0x1, 0x100) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x1e, 0x1, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x101, 0x0) r0 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x10303f, 0x0) ioctl$auto_SNAPSHOT_ATOMIC_RESTORE(r0, 0x3304, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x0, 0x0) openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 2.480569102s ago: executing program 2 (id=372): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0xa, 0x1, 0x84) getsockopt$auto(r0, 0x0, 0x53, 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff) socket(0x18, 0x1, 0x106) userfaultfd$auto(0x5) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80001, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001080)='/proc/thread-self/net/rxrpc/locals\x00', 0x40080, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x0, 0x0, 0x0, &(0x7f00000002c0)={[0x6, 0x4, 0xf, 0x5, 0x958b, 0x2, 0x8, 0x5, 0x3, 0x62, 0x40008000001f, 0x4, 0x5, 0x9, 0x1, 0x200010000]}, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/bdi/1:15/power/runtime_suspended_time\x00', 0x129c40, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000001c00)=""/4111, 0x100f) sysfs$auto(0x2, 0x23, 0x0) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r3, &(0x7f0000000840)="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", 0xb7e) ioctl$auto_SNDCTL_TMR_SELECT(0xffffffffffffffff, 0x40045408, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x58842, 0x0) 2.185201139s ago: executing program 3 (id=373): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) setitimer$auto_ITIMER_VIRTUAL(0x1, &(0x7f0000000080)={{0x7, 0x3076000000000000}, {0x10, 0x401}}, &(0x7f00000000c0)={{0xd1f3, 0x100000000}, {0xf33, 0x8}}) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x2, 0x7, 0xd, 0x2, 0x2, 0x3, 0x15f4da0a, 0x1, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9) r1 = getpid() mremap$auto(0x0, 0x4000007, 0x3fd7, 0x0, 0x20000020000000) process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) lseek$auto(0x3, 0x8, 0x1) ioctl$auto(0x3, 0x400454ca, 0x38) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r2, &(0x7f0000000000)='//\xf2\x00', 0x80000000) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) msync$auto(0x0, 0xe0, 0x6) r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r3, 0x0, 0x1f42) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f00000000c0)={0x0, 0x7}, 0x3) io_uring_register$auto_IORING_UNREGISTER_NAPI(0xffffffffffffffff, 0x1c, 0x0, 0x8) io_uring_setup$auto(0x3, &(0x7f0000000280)={0x6, 0x7d, 0x0, 0x3843, 0x1, 0x3, r3, [0x8000000, 0xcb7, 0x6], {0x4, 0x5, 0xfffff5d3, 0x2, 0x2, 0x1, 0x7ff, 0x8, 0x80000000}, {0x8, 0x9, 0x7, 0x7, 0xe4ae, 0x95, 0x7ff, 0x8, 0x3}}) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) 1.260169647s ago: executing program 2 (id=374): r0 = socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54) r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x8a002, 0x0) ioctl$auto(r1, 0x2202, r1) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) setresuid$auto(0x0, 0x8, 0x0) setfsuid$auto(0x0) getsockopt$auto(0xffffffffffffffff, 0x107, 0x1, 0x0, 0x0) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, 0x0, 0x84000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000380), r0) sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r5, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x40010) sendmsg$auto_CTRL_CMD_GETPOLICY(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="01032cb57000fbe0df250a00000006000100170000e22bbf3fcf4040e070d0a6c62bafb8b3938f741015ce0156a21b6f4cb954cc6997af8bcebab6f9750e9de4e13ad295a4a40b1f972a575ed0c60d2ad237fefa6f70376eea9faf614cb39a850102438891c057f9f18c9354443f0a2193218d9aedd7c184f02435d6ba18f1a094965b6c8bbcefedd757427b0f12fa88b487dc3caa09810b3d9975fe78a4e6b21c8b1fe8c72d133fc060265d076309551060c8b03837140c0faf0f3677128a290423d1c01c5628538c8b96dbb99fa36cee4be947c9d7e920f9bc9a592f51a3ec86f2856daa583df930493ccce21cdd2ac50277c5e4d4"], 0x1c}, 0x1, 0x0, 0x0, 0x400c01d}, 0x0) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), r3) ioctl$auto_TIOCSETD2(r2, 0x5423, &(0x7f00000001c0)="5aee5e35980d1fd320c7735ed0432691b829391c7caedba1d69aaf68f1c49e0d81582a7da536cbe2ed12e4fa5ffe08c02cb1f465a9c38fdbcddf7dad69574815fe49f89209") openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/controlC2\x00', 0xa02, 0x0) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x40000, 0x0) close_range$auto(r2, 0xffffffffffffffff, 0x3) migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x80000000000000a, 0x2, 0x0) 959.630997ms ago: executing program 1 (id=375): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/tracing_cpumask\x00', 0x8301, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x80) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x7fff) setsockopt$auto(0x3, 0x6, 0x100000000, 0xfffffffffffffffc, 0xa) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x5bbd00, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x8000, 0x0) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/oss\x00', 0x88400, 0x0) read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000180)=""/210, 0xd2) close_range$auto(0x2, 0x8, 0x0) fanotify_init$auto(0x65, 0x2) socket(0x1d, 0x2, 0x2) connect$auto(0x3, 0x0, 0x55) socket(0x10, 0x3, 0x6) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x38}, 0x6, 0x0, 0x4, 0x9}, 0x9}, 0x3, 0x1f00) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec18\x00', 0x0, 0x0) ioctl$auto_CEC_S_MODE(r1, 0x40046109, &(0x7f0000002c40)=0xd0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) unshare$auto(0x40000080) socketpair$auto(0x1001e, 0x1, 0x8000000000000000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2f8040, 0x0) openat2$dir(0xffffff9c, 0x0, &(0x7f00000000c0)={0x400000, 0x71fae78b53f8a505, 0x2f}, 0x18) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x100) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xa00) 856.986554ms ago: executing program 0 (id=376): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) setitimer$auto_ITIMER_VIRTUAL(0x1, &(0x7f0000000080)={{0x7, 0x3076000000000000}, {0x10, 0x401}}, &(0x7f00000000c0)={{0xd1f3, 0x100000000}, {0xf33, 0x8}}) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) socket(0x29, 0x2, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x2, 0x7, 0xd, 0x2, 0x2, 0x3, 0x15f4da0a, 0x1, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9) r1 = getpid() mremap$auto(0x0, 0x4000007, 0x3fd7, 0x0, 0x20000020000000) process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) lseek$auto(0x3, 0x8, 0x1) ioctl$auto(0x3, 0x400454ca, 0x38) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r2, &(0x7f0000000000)='//\xf2\x00', 0x80000000) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) msync$auto(0x0, 0xe0, 0x6) r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r3, 0x0, 0x1f42) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) io_uring_register$auto_IORING_UNREGISTER_NAPI(0xffffffffffffffff, 0x1c, 0x0, 0x8) io_uring_setup$auto(0x3, &(0x7f0000000280)={0x6, 0x7d, 0x0, 0x3843, 0x1, 0x3, r3, [0x8000000, 0xcb7, 0x6], {0x4, 0x5, 0xfffff5d3, 0x2, 0x2, 0x1, 0x7ff, 0x8, 0x80000000}, {0x8, 0x9, 0x7, 0x7, 0xe4ae, 0x95, 0x7ff, 0x8, 0x3}}) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) 226.28343ms ago: executing program 2 (id=377): close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket(0xa, 0x2, 0x3a) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010028bd7000fddbdf2501000000100007800c00018008000180000000000c000200060000007c6500003cd750800000000000000000"], 0x3c}}, 0x8090) openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/framebuffer\x00', 0x0, 0x0) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/dummy_hcd.1/usb2/2-0:1.0/bAlternateSetting\x00', 0x20000, 0x0) read$auto(r2, 0x0, 0x20) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r3, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000300), r3) read$auto(r3, &(0x7f0000000040)='nl80211\x00', 0xbe62) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4810}, 0x800) r4 = openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000d00), 0x48900, 0x0) read$auto_cachefiles_daemon_fops_internal(r4, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060007000100000008000200", @ANYRES32=0x0, @ANYBLOB="0c001a"], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0x40090) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r5 = openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/set_event_notrace_pid\x00', 0x40402, 0x0) read$auto_ftrace_set_event_notrace_pid_fops_trace_events(r5, &(0x7f0000000080)=""/21, 0x15) 0s ago: executing program 1 (id=378): r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0xffffffffffffb8f1, 0x5, 0x3, 0x613, 0xfffffffffffffffa, 0x100000000000006) select$auto(0x5, 0x0, 0x0, 0x0, 0x0) sysfs$auto(0x2, 0x1a, 0x0) mmap$auto(0x3, 0x40009, 0x8838, 0x9b72, 0x7, 0x8e7) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2506, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x3a32182}, 0xed7138b}, 0x2, 0x9) recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0) setresgid$auto(0xffffffffffffffff, 0x0, 0x7fffffffffffffff) r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0x200001, 0x0) recvmmsg$auto(r1, &(0x7f0000000380)={{&(0x7f0000000100)="7faa331330012f3596a77287ca72693c3355ee49c1004b", 0x7, &(0x7f0000000280)={&(0x7f0000000240)="7e995939fe34cb2eeb6cf335e9ec0379214e56ab59b999a7bd5552215d7b916dae3e490a373e75e18ec3f64d21d18202", 0xb8}, 0x2, &(0x7f00000002c0)="fadf6490f9e33e53c4a127a7943078aec05540e189b1bcef8fde0600eb4625f891fde4a5c69c46cccb761212e0ada005da10a87b9187888b9b2dd43f45041f73a5013b68d9d22eb822027a3dafa7f32c94204a643c894e50eb8cdabc4c8608cb2073732f7ff29c38bc19001e0634b88eed097bc898de69f622a48c4481fc1b0324dc656254bda6de28343c2831ce7fa7758f9cbae6eb6e925f832c03f662c7", 0x8, 0x3}, 0x6}, 0x800, 0xe63, &(0x7f00000003c0)={0x9, 0xffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'geneve0\x00'}) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000c80), r2) io_uring_setup$auto(0x6, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r3, &(0x7f0000000040)='//\xf2\x00', 0x80000000) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.33' (ED25519) to the list of known hosts. [ 81.560168][ T5853] cgroup: Unknown subsys name 'net' [ 81.668517][ T5853] cgroup: Unknown subsys name 'cpuset' [ 81.677098][ T5853] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 83.091240][ T5853] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 85.058174][ T5864] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 85.071072][ T51] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 85.079405][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 85.089154][ T51] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 85.096942][ T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 85.112539][ T5875] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 85.121744][ T5875] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 85.135414][ T5875] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 85.149452][ T5872] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 85.156517][ T5875] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 85.157651][ T5875] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 85.165789][ T5872] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 85.179061][ T5872] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 85.187619][ T5875] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 85.204551][ T5872] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 85.207402][ T5878] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 85.276463][ T5879] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 85.294936][ T5879] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 85.307368][ T5879] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 85.331298][ T5879] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 85.710567][ T5863] chnl_net:caif_netlink_parms(): no params data found [ 85.826707][ T5862] chnl_net:caif_netlink_parms(): no params data found [ 85.976538][ T5869] chnl_net:caif_netlink_parms(): no params data found [ 85.988745][ T5863] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.996728][ T5863] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.004155][ T5863] bridge_slave_0: entered allmulticast mode [ 86.012226][ T5863] bridge_slave_0: entered promiscuous mode [ 86.045485][ T5863] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.052600][ T5863] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.060204][ T5863] bridge_slave_1: entered allmulticast mode [ 86.068066][ T5863] bridge_slave_1: entered promiscuous mode [ 86.120739][ T5870] chnl_net:caif_netlink_parms(): no params data found [ 86.133479][ T5863] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 86.169565][ T5863] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 86.260463][ T5862] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.268165][ T5862] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.275909][ T5862] bridge_slave_0: entered allmulticast mode [ 86.282908][ T5862] bridge_slave_0: entered promiscuous mode [ 86.309132][ T5863] team0: Port device team_slave_0 added [ 86.315766][ T5862] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.323077][ T5862] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.330482][ T5862] bridge_slave_1: entered allmulticast mode [ 86.337743][ T5862] bridge_slave_1: entered promiscuous mode [ 86.379459][ T5863] team0: Port device team_slave_1 added [ 86.409510][ T5869] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.416807][ T5869] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.423977][ T5869] bridge_slave_0: entered allmulticast mode [ 86.432877][ T5869] bridge_slave_0: entered promiscuous mode [ 86.469637][ T5862] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 86.479298][ T5869] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.486786][ T5869] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.493959][ T5869] bridge_slave_1: entered allmulticast mode [ 86.501990][ T5869] bridge_slave_1: entered promiscuous mode [ 86.550424][ T5862] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 86.573613][ T5863] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 86.580708][ T5863] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.606964][ T5863] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 86.618537][ T5870] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.626967][ T5870] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.634163][ T5870] bridge_slave_0: entered allmulticast mode [ 86.641349][ T5870] bridge_slave_0: entered promiscuous mode [ 86.650553][ T5870] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.658739][ T5870] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.666949][ T5870] bridge_slave_1: entered allmulticast mode [ 86.678375][ T5870] bridge_slave_1: entered promiscuous mode [ 86.704613][ T5869] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 86.715572][ T5863] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 86.722533][ T5863] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.760747][ T5863] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 86.818271][ T5869] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 86.896967][ T5870] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 86.912945][ T5862] team0: Port device team_slave_0 added [ 86.963246][ T5870] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 86.975725][ T5862] team0: Port device team_slave_1 added [ 87.001028][ T5869] team0: Port device team_slave_0 added [ 87.012372][ T5869] team0: Port device team_slave_1 added [ 87.026826][ T5863] hsr_slave_0: entered promiscuous mode [ 87.033564][ T5863] hsr_slave_1: entered promiscuous mode [ 87.100628][ T5870] team0: Port device team_slave_0 added [ 87.138000][ T5862] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 87.145072][ T5862] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.171242][ T5862] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 87.184648][ T5870] team0: Port device team_slave_1 added [ 87.205403][ T5879] Bluetooth: hci1: command tx timeout [ 87.224094][ T5869] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 87.231339][ T5869] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.257742][ T5869] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 87.269450][ T5862] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 87.276821][ T5862] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.303374][ T51] Bluetooth: hci2: command tx timeout [ 87.306132][ T5862] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 87.309594][ T5879] Bluetooth: hci0: command tx timeout [ 87.343410][ T5870] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 87.350603][ T5870] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.367707][ T5879] Bluetooth: hci3: command tx timeout [ 87.377792][ T5870] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 87.393878][ T5869] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 87.401119][ T5869] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.427265][ T5869] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 87.469140][ T5870] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 87.476196][ T5870] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.502210][ T5870] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 87.593119][ T5862] hsr_slave_0: entered promiscuous mode [ 87.599366][ T5862] hsr_slave_1: entered promiscuous mode [ 87.607779][ T5862] debugfs: 'hsr0' already exists in 'hsr' [ 87.613567][ T5862] Cannot create hsr debugfs directory [ 87.648976][ T5869] hsr_slave_0: entered promiscuous mode [ 87.655448][ T5869] hsr_slave_1: entered promiscuous mode [ 87.661433][ T5869] debugfs: 'hsr0' already exists in 'hsr' [ 87.667350][ T5869] Cannot create hsr debugfs directory [ 87.700038][ T5870] hsr_slave_0: entered promiscuous mode [ 87.707799][ T5870] hsr_slave_1: entered promiscuous mode [ 87.713887][ T5870] debugfs: 'hsr0' already exists in 'hsr' [ 87.719666][ T5870] Cannot create hsr debugfs directory [ 88.139020][ T5863] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 88.160381][ T5863] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 88.181110][ T5863] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 88.196974][ T5863] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 88.238658][ T5870] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 88.262131][ T5870] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 88.272115][ T5870] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 88.293052][ T5870] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 88.360986][ T5862] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 88.374677][ T5862] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 88.388863][ T5862] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 88.414057][ T5862] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 88.502899][ T5869] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 88.514364][ T5869] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 88.532729][ T5869] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 88.543111][ T5869] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 88.658797][ T5870] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.675912][ T5863] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.731074][ T5870] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.755033][ T1088] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.762256][ T1088] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.779077][ T5863] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.793726][ T1088] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.800856][ T1088] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.813978][ T1088] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.821130][ T1088] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.846211][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.853379][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.922386][ T5862] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.946947][ T5869] 8021q: adding VLAN 0 to HW filter on device bond0 [ 89.027391][ T5869] 8021q: adding VLAN 0 to HW filter on device team0 [ 89.036781][ T5862] 8021q: adding VLAN 0 to HW filter on device team0 [ 89.060879][ T1173] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.068130][ T1173] bridge0: port 1(bridge_slave_0) entered forwarding state [ 89.131433][ T1173] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.138656][ T1173] bridge0: port 1(bridge_slave_0) entered forwarding state [ 89.168492][ T1173] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.175704][ T1173] bridge0: port 2(bridge_slave_1) entered forwarding state [ 89.202746][ T1173] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.209954][ T1173] bridge0: port 2(bridge_slave_1) entered forwarding state [ 89.286471][ T5879] Bluetooth: hci1: command tx timeout [ 89.365779][ T5879] Bluetooth: hci0: command tx timeout [ 89.366502][ T51] Bluetooth: hci2: command tx timeout [ 89.374412][ T5869] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 89.447599][ T51] Bluetooth: hci3: command tx timeout [ 89.510271][ T5863] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.561615][ T5870] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.647577][ T5863] veth0_vlan: entered promiscuous mode [ 89.681935][ T5863] veth1_vlan: entered promiscuous mode [ 89.761942][ T5870] veth0_vlan: entered promiscuous mode [ 89.793474][ T5863] veth0_macvtap: entered promiscuous mode [ 89.822000][ T5870] veth1_vlan: entered promiscuous mode [ 89.837199][ T5863] veth1_macvtap: entered promiscuous mode [ 89.902029][ T5862] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.930682][ T5863] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 89.949969][ T5870] veth0_macvtap: entered promiscuous mode [ 89.975597][ T5863] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 89.987334][ T5869] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 90.001482][ T5870] veth1_macvtap: entered promiscuous mode [ 90.038349][ T1088] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.060545][ T1088] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.070710][ T1088] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.097554][ T1173] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.112825][ T5870] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.125745][ T5862] veth0_vlan: entered promiscuous mode [ 90.137888][ T5870] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.183415][ T5862] veth1_vlan: entered promiscuous mode [ 90.213994][ T13] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.226592][ T13] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.261232][ T13] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.281891][ T13] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.315318][ T5869] veth0_vlan: entered promiscuous mode [ 90.332055][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.353525][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.359784][ T5869] veth1_vlan: entered promiscuous mode [ 90.412028][ T5862] veth0_macvtap: entered promiscuous mode [ 90.439869][ T5862] veth1_macvtap: entered promiscuous mode [ 90.457575][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.466203][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.496292][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.509636][ T5862] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.520196][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.541423][ T5869] veth0_macvtap: entered promiscuous mode [ 90.558217][ T5862] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.600438][ T5863] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 90.620512][ T3479] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.630199][ T3479] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.650944][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.661637][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.661662][ T5869] veth1_macvtap: entered promiscuous mode [ 90.679538][ T3479] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.688427][ T3479] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.754576][ T5869] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.816439][ T5869] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.904998][ T3479] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.926833][ T3479] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.973196][ T3479] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.984068][ T5963] random: crng reseeded on system resumption [ 91.009589][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.019939][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.026911][ T3479] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.288777][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.315196][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.365704][ T51] Bluetooth: hci1: command tx timeout [ 91.389011][ T3479] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.414939][ T3479] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.448661][ T51] Bluetooth: hci0: command tx timeout [ 91.448671][ T5879] Bluetooth: hci2: command tx timeout [ 91.525597][ T51] Bluetooth: hci3: command tx timeout [ 91.815090][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.822943][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.856150][ T1906] cfg80211: failed to load regulatory.db [ 91.897063][ T5971] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 92.025085][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 92.366095][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 92.479346][ T5984] random: crng reseeded on system resumption [ 92.654842][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 93.024966][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 93.064254][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 93.150527][ T5987] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 93.215733][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 93.224500][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 93.443891][ T5991] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 93.445198][ T51] Bluetooth: hci1: command tx timeout [ 93.525617][ T51] Bluetooth: hci0: command tx timeout [ 93.540020][ T51] Bluetooth: hci2: command tx timeout [ 93.555190][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 93.607559][ T51] Bluetooth: hci3: command tx timeout [ 94.194635][ T5998] netlink: 'syz.0.9': attribute type 1 has an invalid length. [ 94.235520][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 94.244421][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 97.094372][ T6037] Zero length message leads to an empty skb [ 98.600169][ T6057] ptp ptp0: only physical clock in use now [ 100.028193][ T6076] netlink: 876 bytes leftover after parsing attributes in process `syz.2.25'. [ 100.254317][ T6079] input: jJǸ-¶š9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input5 [ 100.514881][ T6079] syz.2.26 uses obsolete (PF_INET,SOCK_PACKET) [ 101.060958][ T6089] process 'syz.2.29' launched './file0' with NULL argv: empty string added [ 101.681452][ T6095] random: crng reseeded on system resumption [ 103.727191][ T6120] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 103.876882][ T6123] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 106.022291][ T6148] random: crng reseeded on system resumption [ 106.741551][ T6155] FAULT_INJECTION: forcing a failure. [ 106.741551][ T6155] name failslab, interval 1, probability 0, space 0, times 1 [ 106.893195][ T6155] CPU: 1 UID: 0 PID: 6155 Comm: syz.2.37 Not tainted syzkaller #0 PREEMPT(full) [ 106.893232][ T6155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 106.893251][ T6155] Call Trace: [ 106.893259][ T6155] [ 106.893269][ T6155] dump_stack_lvl+0x16c/0x1f0 [ 106.893317][ T6155] should_fail_ex+0x512/0x640 [ 106.893354][ T6155] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 106.893386][ T6155] should_failslab+0xc2/0x120 [ 106.893419][ T6155] __kmalloc_cache_noprof+0x6a/0x3e0 [ 106.893448][ T6155] ? snd_card_file_add+0x52/0x340 [ 106.893486][ T6155] ? __pfx_snd_ctl_open+0x10/0x10 [ 106.893524][ T6155] snd_card_file_add+0x52/0x340 [ 106.893552][ T6155] ? __pfx_snd_ctl_open+0x10/0x10 [ 106.893587][ T6155] ? __pfx_snd_ctl_open+0x10/0x10 [ 106.893622][ T6155] snd_ctl_open+0x9d/0x5f0 [ 106.893658][ T6155] ? __pfx_snd_ctl_open+0x10/0x10 [ 106.893693][ T6155] snd_open+0x22d/0x4c0 [ 106.893721][ T6155] ? __pfx_snd_open+0x10/0x10 [ 106.893744][ T6155] chrdev_open+0x231/0x6a0 [ 106.893776][ T6155] ? __pfx_apparmor_file_open+0x10/0x10 [ 106.893805][ T6155] ? __pfx_chrdev_open+0x10/0x10 [ 106.893839][ T6155] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 106.893874][ T6155] do_dentry_open+0x97f/0x1530 [ 106.893905][ T6155] ? __pfx_chrdev_open+0x10/0x10 [ 106.893944][ T6155] vfs_open+0x82/0x3f0 [ 106.893985][ T6155] path_openat+0x1de4/0x2cb0 [ 106.894027][ T6155] ? __pfx_path_openat+0x10/0x10 [ 106.894065][ T6155] do_filp_open+0x20b/0x470 [ 106.894096][ T6155] ? __pfx_do_filp_open+0x10/0x10 [ 106.894153][ T6155] ? alloc_fd+0x471/0x7d0 [ 106.894191][ T6155] do_sys_openat2+0x11b/0x1d0 [ 106.894228][ T6155] ? __pfx_do_sys_openat2+0x10/0x10 [ 106.894268][ T6155] ? __pfx___schedule+0x10/0x10 [ 106.894310][ T6155] __x64_sys_openat+0x174/0x210 [ 106.894333][ T6155] ? __pfx___x64_sys_openat+0x10/0x10 [ 106.894372][ T6155] do_syscall_64+0xcd/0x4c0 [ 106.894412][ T6155] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 106.894438][ T6155] RIP: 0033:0x7fe8a678eec9 [ 106.894473][ T6155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 106.894502][ T6155] RSP: 002b:00007fe8a3dcf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 106.894528][ T6155] RAX: ffffffffffffffda RBX: 00007fe8a69e6450 RCX: 00007fe8a678eec9 [ 106.894545][ T6155] RDX: 0000000000000802 RSI: 00002000000010c0 RDI: ffffffffffffff9c [ 106.894561][ T6155] RBP: 00007fe8a6811f91 R08: 0000000000000000 R09: 0000000000000000 [ 106.894577][ T6155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 106.894592][ T6155] R13: 00007fe8a69e64e8 R14: 00007fe8a69e6450 R15: 00007fff8a1c54a8 [ 106.894627][ T6155] [ 107.599448][ T6162] random: crng reseeded on system resumption [ 109.281295][ T6183] random: crng reseeded on system resumption [ 109.723930][ T6190] random: crng reseeded on system resumption [ 110.440458][ T6197] zero sized request [ 111.877247][ T6220] netlink: 16 bytes leftover after parsing attributes in process `syz.2.55'. [ 112.030483][ T6227] netlink: 93 bytes leftover after parsing attributes in process `syz.2.55'. [ 115.213839][ T6272] random: crng reseeded on system resumption [ 116.341727][ T6285] FAULT_INJECTION: forcing a failure. [ 116.341727][ T6285] name failslab, interval 1, probability 0, space 0, times 0 [ 116.354588][ T6285] CPU: 1 UID: 0 PID: 6285 Comm: syz.2.66 Not tainted syzkaller #0 PREEMPT(full) [ 116.354622][ T6285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 116.354637][ T6285] Call Trace: [ 116.354646][ T6285] [ 116.354655][ T6285] dump_stack_lvl+0x16c/0x1f0 [ 116.354699][ T6285] should_fail_ex+0x512/0x640 [ 116.354742][ T6285] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 116.354778][ T6285] should_failslab+0xc2/0x120 [ 116.354812][ T6285] __kmalloc_cache_noprof+0x6a/0x3e0 [ 116.354839][ T6285] ? _raw_spin_unlock+0x28/0x50 [ 116.354870][ T6285] ? snd_ctl_open+0x174/0x5f0 [ 116.354912][ T6285] snd_ctl_open+0x174/0x5f0 [ 116.354949][ T6285] ? __pfx_snd_ctl_open+0x10/0x10 [ 116.354985][ T6285] snd_open+0x22d/0x4c0 [ 116.355010][ T6285] ? __pfx_snd_open+0x10/0x10 [ 116.355033][ T6285] chrdev_open+0x231/0x6a0 [ 116.355065][ T6285] ? __pfx_apparmor_file_open+0x10/0x10 [ 116.355094][ T6285] ? __pfx_chrdev_open+0x10/0x10 [ 116.355128][ T6285] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 116.355164][ T6285] do_dentry_open+0x97f/0x1530 [ 116.355197][ T6285] ? __pfx_chrdev_open+0x10/0x10 [ 116.355236][ T6285] vfs_open+0x82/0x3f0 [ 116.355278][ T6285] path_openat+0x1de4/0x2cb0 [ 116.355320][ T6285] ? __pfx_path_openat+0x10/0x10 [ 116.355360][ T6285] do_filp_open+0x20b/0x470 [ 116.355391][ T6285] ? __pfx_do_filp_open+0x10/0x10 [ 116.355447][ T6285] ? alloc_fd+0x471/0x7d0 [ 116.355485][ T6285] do_sys_openat2+0x11b/0x1d0 [ 116.355521][ T6285] ? __pfx_do_sys_openat2+0x10/0x10 [ 116.355573][ T6285] __x64_sys_openat+0x174/0x210 [ 116.355596][ T6285] ? __pfx___x64_sys_openat+0x10/0x10 [ 116.355634][ T6285] do_syscall_64+0xcd/0x4c0 [ 116.355675][ T6285] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.355701][ T6285] RIP: 0033:0x7fe8a678eec9 [ 116.355722][ T6285] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 116.355746][ T6285] RSP: 002b:00007fe8a41f2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 116.355776][ T6285] RAX: ffffffffffffffda RBX: 00007fe8a69e6360 RCX: 00007fe8a678eec9 [ 116.355786][ T6285] RDX: 0000000000000802 RSI: 00002000000010c0 RDI: ffffffffffffff9c [ 116.355794][ T6285] RBP: 00007fe8a6811f91 R08: 0000000000000000 R09: 0000000000000000 [ 116.355803][ T6285] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 116.355811][ T6285] R13: 00007fe8a69e63f8 R14: 00007fe8a69e6360 R15: 00007fff8a1c54a8 [ 116.355831][ T6285] [ 116.899131][ T6289] random: crng reseeded on system resumption [ 117.572795][ T6288] FAULT_INJECTION: forcing a failure. [ 117.572795][ T6288] name failslab, interval 1, probability 0, space 0, times 0 [ 117.585901][ T6288] CPU: 0 UID: 0 PID: 6288 Comm: syz.0.68 Not tainted syzkaller #0 PREEMPT(full) [ 117.585934][ T6288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 117.585956][ T6288] Call Trace: [ 117.585965][ T6288] [ 117.585974][ T6288] dump_stack_lvl+0x16c/0x1f0 [ 117.586027][ T6288] should_fail_ex+0x512/0x640 [ 117.586063][ T6288] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 117.586094][ T6288] should_failslab+0xc2/0x120 [ 117.586128][ T6288] __kmalloc_cache_noprof+0x6a/0x3e0 [ 117.586156][ T6288] ? snd_card_file_add+0x52/0x340 [ 117.586187][ T6288] ? __pfx_snd_ctl_open+0x10/0x10 [ 117.586223][ T6288] snd_card_file_add+0x52/0x340 [ 117.586250][ T6288] ? __pfx_snd_ctl_open+0x10/0x10 [ 117.586286][ T6288] ? __pfx_snd_ctl_open+0x10/0x10 [ 117.586321][ T6288] snd_ctl_open+0x9d/0x5f0 [ 117.586358][ T6288] ? __pfx_snd_ctl_open+0x10/0x10 [ 117.586392][ T6288] snd_open+0x22d/0x4c0 [ 117.586418][ T6288] ? __pfx_snd_open+0x10/0x10 [ 117.586442][ T6288] chrdev_open+0x231/0x6a0 [ 117.586474][ T6288] ? __pfx_apparmor_file_open+0x10/0x10 [ 117.586502][ T6288] ? __pfx_chrdev_open+0x10/0x10 [ 117.586538][ T6288] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 117.586574][ T6288] do_dentry_open+0x97f/0x1530 [ 117.586606][ T6288] ? __pfx_chrdev_open+0x10/0x10 [ 117.586652][ T6288] vfs_open+0x82/0x3f0 [ 117.586696][ T6288] path_openat+0x1de4/0x2cb0 [ 117.586741][ T6288] ? __pfx_path_openat+0x10/0x10 [ 117.586782][ T6288] do_filp_open+0x20b/0x470 [ 117.586814][ T6288] ? __pfx_do_filp_open+0x10/0x10 [ 117.586872][ T6288] ? alloc_fd+0x471/0x7d0 [ 117.586910][ T6288] do_sys_openat2+0x11b/0x1d0 [ 117.586948][ T6288] ? __pfx_do_sys_openat2+0x10/0x10 [ 117.587000][ T6288] __x64_sys_openat+0x174/0x210 [ 117.587024][ T6288] ? __pfx___x64_sys_openat+0x10/0x10 [ 117.587062][ T6288] do_syscall_64+0xcd/0x4c0 [ 117.587105][ T6288] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.587131][ T6288] RIP: 0033:0x7f981f98eec9 [ 117.587158][ T6288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 117.587183][ T6288] RSP: 002b:00007f982076a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 117.587213][ T6288] RAX: ffffffffffffffda RBX: 00007f981fbe6180 RCX: 00007f981f98eec9 [ 117.587231][ T6288] RDX: 0000000000000802 RSI: 00002000000010c0 RDI: ffffffffffffff9c [ 117.587249][ T6288] RBP: 00007f981fa11f91 R08: 0000000000000000 R09: 0000000000000000 [ 117.587265][ T6288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 117.587279][ T6288] R13: 00007f981fbe6218 R14: 00007f981fbe6180 R15: 00007ffea67aaa98 [ 117.587314][ T6288] [ 119.682483][ T6331] FAULT_INJECTION: forcing a failure. [ 119.682483][ T6331] name failslab, interval 1, probability 0, space 0, times 0 [ 119.785689][ T6331] CPU: 0 UID: 0 PID: 6331 Comm: syz.2.75 Not tainted syzkaller #0 PREEMPT(full) [ 119.785724][ T6331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 119.785738][ T6331] Call Trace: [ 119.785747][ T6331] [ 119.785757][ T6331] dump_stack_lvl+0x16c/0x1f0 [ 119.785803][ T6331] should_fail_ex+0x512/0x640 [ 119.785840][ T6331] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 119.785877][ T6331] should_failslab+0xc2/0x120 [ 119.785912][ T6331] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 119.785945][ T6331] ? radix_tree_node_alloc.constprop.0+0x7c/0x350 [ 119.785981][ T6331] radix_tree_node_alloc.constprop.0+0x7c/0x350 [ 119.786016][ T6331] radix_tree_insert+0x247/0x630 [ 119.786055][ T6331] qrtr_node_enqueue+0x1077/0x12e0 [ 119.786086][ T6331] ? __asan_memcpy+0x3c/0x60 [ 119.786113][ T6331] ? __pfx_qrtr_node_enqueue+0x10/0x10 [ 119.786135][ T6331] ? skb_set_owner_w+0x31f/0x710 [ 119.786162][ T6331] ? skb_copy_header+0x20/0x2b0 [ 119.786194][ T6331] ? __pfx_skb_set_owner_w+0x10/0x10 [ 119.786222][ T6331] ? __pskb_copy_fclone+0x48e/0xb50 [ 119.786244][ T6331] ? __pfx__copy_from_iter+0x10/0x10 [ 119.786277][ T6331] qrtr_bcast_enqueue+0xc7/0x1b0 [ 119.786311][ T6331] qrtr_sendmsg+0x444/0x7b0 [ 119.786335][ T6331] ? __pfx_qrtr_bcast_enqueue+0x10/0x10 [ 119.786357][ T6331] ? __pfx_qrtr_sendmsg+0x10/0x10 [ 119.786387][ T6331] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 119.786429][ T6331] sock_write_iter+0x4fc/0x5b0 [ 119.786462][ T6331] ? __pfx_sock_write_iter+0x10/0x10 [ 119.786505][ T6331] ? __futex_wait+0x24c/0x2f0 [ 119.786538][ T6331] ? copy_iovec_from_user+0x131/0x170 [ 119.786566][ T6331] do_iter_readv_writev+0x662/0x9e0 [ 119.786594][ T6331] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 119.786625][ T6331] ? bpf_lsm_file_permission+0x9/0x10 [ 119.786659][ T6331] ? security_file_permission+0x71/0x210 [ 119.786693][ T6331] ? rw_verify_area+0xcf/0x6c0 [ 119.786722][ T6331] vfs_writev+0x35f/0xde0 [ 119.786750][ T6331] ? __lock_acquire+0x62e/0x1ce0 [ 119.786785][ T6331] ? __pfx_vfs_writev+0x10/0x10 [ 119.786833][ T6331] ? __fget_files+0x20e/0x3c0 [ 119.786869][ T6331] ? do_writev+0x28c/0x340 [ 119.786891][ T6331] do_writev+0x28c/0x340 [ 119.786916][ T6331] ? __pfx_do_writev+0x10/0x10 [ 119.786953][ T6331] do_syscall_64+0xcd/0x4c0 [ 119.786988][ T6331] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 119.787011][ T6331] RIP: 0033:0x7fe8a678eec9 [ 119.787030][ T6331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 119.787053][ T6331] RSP: 002b:00007fe8a75a9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 119.787077][ T6331] RAX: ffffffffffffffda RBX: 00007fe8a69e5fa0 RCX: 00007fe8a678eec9 [ 119.787094][ T6331] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003 [ 119.787109][ T6331] RBP: 00007fe8a6811f91 R08: 0000000000000000 R09: 0000000000000000 [ 119.787120][ T6331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 119.787134][ T6331] R13: 00007fe8a69e6038 R14: 00007fe8a69e5fa0 R15: 00007fff8a1c54a8 [ 119.787167][ T6331] [ 121.586323][ T6349] netlink: 146 bytes leftover after parsing attributes in process `syz.0.80'. [ 122.477945][ T6362] FAULT_INJECTION: forcing a failure. [ 122.477945][ T6362] name failslab, interval 1, probability 0, space 0, times 0 [ 122.525208][ T6362] CPU: 0 UID: 0 PID: 6362 Comm: syz.1.83 Not tainted syzkaller #0 PREEMPT(full) [ 122.525242][ T6362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 122.525256][ T6362] Call Trace: [ 122.525264][ T6362] [ 122.525274][ T6362] dump_stack_lvl+0x16c/0x1f0 [ 122.525311][ T6362] should_fail_ex+0x512/0x640 [ 122.525347][ T6362] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 122.525375][ T6362] should_failslab+0xc2/0x120 [ 122.525408][ T6362] __kmalloc_cache_noprof+0x6a/0x3e0 [ 122.525433][ T6362] ? rcu_is_watching+0x12/0xc0 [ 122.525456][ T6362] ? call_usermodehelper_setup+0xaf/0x360 [ 122.525483][ T6362] ? __pfx_free_modprobe_argv+0x10/0x10 [ 122.525517][ T6362] call_usermodehelper_setup+0xaf/0x360 [ 122.525545][ T6362] __request_module+0x3bd/0x690 [ 122.525580][ T6362] ? __pfx___request_module+0x10/0x10 [ 122.525633][ T6362] ? rcu_is_watching+0x12/0xc0 [ 122.525659][ T6362] ? lockdep_hardirqs_on+0x7c/0x110 [ 122.525697][ T6362] netlink_create+0x226/0x620 [ 122.525738][ T6362] __sock_create+0x338/0x8d0 [ 122.525774][ T6362] __sys_socket+0x14d/0x260 [ 122.525803][ T6362] ? __pfx___sys_socket+0x10/0x10 [ 122.525831][ T6362] ? xfd_validate_state+0x61/0x180 [ 122.525863][ T6362] ? __pfx_ksys_write+0x10/0x10 [ 122.525898][ T6362] __x64_sys_socket+0x72/0xb0 [ 122.525926][ T6362] ? lockdep_hardirqs_on+0x7c/0x110 [ 122.525954][ T6362] do_syscall_64+0xcd/0x4c0 [ 122.525994][ T6362] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.526018][ T6362] RIP: 0033:0x7f35f5b8eec9 [ 122.526039][ T6362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 122.526062][ T6362] RSP: 002b:00007f35f6ad5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 122.526093][ T6362] RAX: ffffffffffffffda RBX: 00007f35f5de5fa0 RCX: 00007f35f5b8eec9 [ 122.526108][ T6362] RDX: 000000000000001f RSI: 0000000000000003 RDI: 0000000000000010 [ 122.526123][ T6362] RBP: 00007f35f5c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 122.526139][ T6362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 122.526154][ T6362] R13: 00007f35f5de6038 R14: 00007f35f5de5fa0 R15: 00007ffe8c002b18 [ 122.526188][ T6362] [ 125.755852][ T6410] netlink: 4 bytes leftover after parsing attributes in process `syz.1.91'. [ 128.029428][ T6441] sd 0:0:1:0: PR command failed: 1026 [ 128.055131][ T6441] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 128.061894][ T6441] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 132.815238][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.830922][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.036278][ T6492] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 133.310335][ T6498] random: crng reseeded on system resumption [ 134.076638][ T6505] netlink: 12 bytes leftover after parsing attributes in process `syz.2.108'. [ 136.324907][ T51] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 137.228559][ T6538] netlink: 342 bytes leftover after parsing attributes in process `syz.0.114'. [ 137.393913][ T6545] netlink: 4 bytes leftover after parsing attributes in process `syz.2.116'. [ 137.508630][ T6549] random: crng reseeded on system resumption [ 138.991156][ T6569] random: crng reseeded on system resumption [ 141.862810][ T6607] random: crng reseeded on system resumption [ 143.682649][ T6612] FAULT_INJECTION: forcing a failure. [ 143.682649][ T6612] name fail_futex, interval 1, probability 0, space 0, times 1 [ 143.797420][ T6612] CPU: 1 UID: 0 PID: 6612 Comm: syz.0.128 Not tainted syzkaller #0 PREEMPT(full) [ 143.797455][ T6612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 143.797469][ T6612] Call Trace: [ 143.797479][ T6612] [ 143.797488][ T6612] dump_stack_lvl+0x16c/0x1f0 [ 143.797530][ T6612] should_fail_ex+0x512/0x640 [ 143.797571][ T6612] get_futex_key+0x1d0/0x1560 [ 143.797602][ T6612] ? __pfx_get_futex_key+0x10/0x10 [ 143.797641][ T6612] futex_wake+0xea/0x530 [ 143.797677][ T6612] ? rcu_is_watching+0x12/0xc0 [ 143.797704][ T6612] ? __pfx_futex_wake+0x10/0x10 [ 143.797744][ T6612] ? kmem_cache_free+0x2d1/0x4d0 [ 143.797772][ T6612] ? fd_install+0x225/0x750 [ 143.797797][ T6612] ? putname+0x154/0x1a0 [ 143.797832][ T6612] do_futex+0x1e3/0x350 [ 143.797859][ T6612] ? __pfx_do_futex+0x10/0x10 [ 143.797896][ T6612] __x64_sys_futex+0x1e0/0x4c0 [ 143.797923][ T6612] ? __x64_sys_openat+0x174/0x210 [ 143.797942][ T6612] ? __pfx___x64_sys_futex+0x10/0x10 [ 143.797985][ T6612] do_syscall_64+0xcd/0x4c0 [ 143.798030][ T6612] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 143.798057][ T6612] RIP: 0033:0x7f981f98eec9 [ 143.798077][ T6612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 143.798101][ T6612] RSP: 002b:00007f982076a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 143.798125][ T6612] RAX: ffffffffffffffda RBX: 00007f981fbe6188 RCX: 00007f981f98eec9 [ 143.798140][ T6612] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f981fbe618c [ 143.798154][ T6612] RBP: 00007f981fbe6180 R08: 00007f98207ad000 R09: 0000000000000000 [ 143.798167][ T6612] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000 [ 143.798180][ T6612] R13: 00007f981fbe6218 R14: 00007ffea67aa9b0 R15: 00007ffea67aaa98 [ 143.798209][ T6612] [ 145.460738][ T6658] random: crng reseeded on system resumption [ 151.902331][ T6738] random: crng reseeded on system resumption [ 152.526617][ T6748] FAULT_INJECTION: forcing a failure. [ 152.526617][ T6748] name fail_futex, interval 1, probability 0, space 0, times 0 [ 152.637066][ T6748] CPU: 1 UID: 0 PID: 6748 Comm: syz.3.152 Not tainted syzkaller #0 PREEMPT(full) [ 152.637100][ T6748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 152.637115][ T6748] Call Trace: [ 152.637123][ T6748] [ 152.637133][ T6748] dump_stack_lvl+0x16c/0x1f0 [ 152.637177][ T6748] should_fail_ex+0x512/0x640 [ 152.637219][ T6748] get_futex_key+0x1d0/0x1560 [ 152.637255][ T6748] ? __pfx_get_futex_key+0x10/0x10 [ 152.637296][ T6748] futex_wait_setup+0x9d/0x550 [ 152.637343][ T6748] __futex_wait+0x194/0x2f0 [ 152.637380][ T6748] ? __pfx___futex_wait+0x10/0x10 [ 152.637413][ T6748] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 152.637446][ T6748] ? lockdep_hardirqs_on+0x7c/0x110 [ 152.637485][ T6748] ? __pfx_futex_wake_mark+0x10/0x10 [ 152.637525][ T6748] ? futex_private_hash_put+0x176/0x300 [ 152.637560][ T6748] ? futex_private_hash_put+0x18a/0x300 [ 152.637592][ T6748] futex_wait+0xe8/0x380 [ 152.637628][ T6748] ? __pfx_futex_wait+0x10/0x10 [ 152.637671][ T6748] ? kmem_cache_free+0x2d1/0x4d0 [ 152.637697][ T6748] ? fd_install+0x225/0x750 [ 152.637721][ T6748] ? putname+0x154/0x1a0 [ 152.637759][ T6748] do_futex+0x229/0x350 [ 152.637789][ T6748] ? __pfx_do_futex+0x10/0x10 [ 152.637829][ T6748] __x64_sys_futex+0x1e0/0x4c0 [ 152.637874][ T6748] ? __x64_sys_openat+0x174/0x210 [ 152.637898][ T6748] ? __pfx___x64_sys_futex+0x10/0x10 [ 152.637944][ T6748] do_syscall_64+0xcd/0x4c0 [ 152.637983][ T6748] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 152.638009][ T6748] RIP: 0033:0x7fe467d8eec9 [ 152.638029][ T6748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 152.638052][ T6748] RSP: 002b:00007fe4653cf0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 152.638076][ T6748] RAX: ffffffffffffffda RBX: 00007fe467fe6458 RCX: 00007fe467d8eec9 [ 152.638096][ T6748] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fe467fe6458 [ 152.638112][ T6748] RBP: 00007fe467fe6450 R08: 0000000000000000 R09: 0000000000000000 [ 152.638127][ T6748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 152.638142][ T6748] R13: 00007fe467fe64e8 R14: 00007ffd7082efc0 R15: 00007ffd7082f0a8 [ 152.638176][ T6748] [ 156.555667][ T6790] FAULT_INJECTION: forcing a failure. [ 156.555667][ T6790] name failslab, interval 1, probability 0, space 0, times 0 [ 156.586075][ T6790] CPU: 0 UID: 0 PID: 6790 Comm: syz.1.161 Not tainted syzkaller #0 PREEMPT(full) [ 156.586110][ T6790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 156.586124][ T6790] Call Trace: [ 156.586133][ T6790] [ 156.586142][ T6790] dump_stack_lvl+0x16c/0x1f0 [ 156.586186][ T6790] should_fail_ex+0x512/0x640 [ 156.586224][ T6790] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 156.586255][ T6790] should_failslab+0xc2/0x120 [ 156.586289][ T6790] __kmalloc_cache_noprof+0x6a/0x3e0 [ 156.586317][ T6790] ? snd_card_file_add+0x52/0x340 [ 156.586347][ T6790] ? __pfx_snd_ctl_open+0x10/0x10 [ 156.586383][ T6790] snd_card_file_add+0x52/0x340 [ 156.586410][ T6790] ? __pfx_snd_ctl_open+0x10/0x10 [ 156.586447][ T6790] ? __pfx_snd_ctl_open+0x10/0x10 [ 156.586489][ T6790] snd_ctl_open+0x9d/0x5f0 [ 156.586527][ T6790] ? __pfx_snd_ctl_open+0x10/0x10 [ 156.586563][ T6790] snd_open+0x22d/0x4c0 [ 156.586589][ T6790] ? __pfx_snd_open+0x10/0x10 [ 156.586614][ T6790] chrdev_open+0x231/0x6a0 [ 156.586645][ T6790] ? __pfx_apparmor_file_open+0x10/0x10 [ 156.586673][ T6790] ? __pfx_chrdev_open+0x10/0x10 [ 156.586708][ T6790] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 156.586743][ T6790] do_dentry_open+0x97f/0x1530 [ 156.586774][ T6790] ? __pfx_chrdev_open+0x10/0x10 [ 156.586813][ T6790] vfs_open+0x82/0x3f0 [ 156.586854][ T6790] path_openat+0x1de4/0x2cb0 [ 156.586896][ T6790] ? __pfx_path_openat+0x10/0x10 [ 156.586936][ T6790] do_filp_open+0x20b/0x470 [ 156.586967][ T6790] ? __pfx_do_filp_open+0x10/0x10 [ 156.587024][ T6790] ? alloc_fd+0x471/0x7d0 [ 156.587056][ T6790] do_sys_openat2+0x11b/0x1d0 [ 156.587093][ T6790] ? __pfx_do_sys_openat2+0x10/0x10 [ 156.587145][ T6790] __x64_sys_openat+0x174/0x210 [ 156.587168][ T6790] ? __pfx___x64_sys_openat+0x10/0x10 [ 156.587206][ T6790] do_syscall_64+0xcd/0x4c0 [ 156.587247][ T6790] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 156.587273][ T6790] RIP: 0033:0x7f35f5b8eec9 [ 156.587293][ T6790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 156.587316][ T6790] RSP: 002b:00007f35f6a72038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 156.587340][ T6790] RAX: ffffffffffffffda RBX: 00007f35f5de6270 RCX: 00007f35f5b8eec9 [ 156.587358][ T6790] RDX: 0000000000000802 RSI: 00002000000010c0 RDI: ffffffffffffff9c [ 156.587374][ T6790] RBP: 00007f35f5c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 156.587390][ T6790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 156.587405][ T6790] R13: 00007f35f5de6308 R14: 00007f35f5de6270 R15: 00007ffe8c002b18 [ 156.587440][ T6790] [ 160.049381][ T6828] FAULT_INJECTION: forcing a failure. [ 160.049381][ T6828] name fail_futex, interval 1, probability 0, space 0, times 0 [ 160.063367][ T6828] CPU: 0 UID: 0 PID: 6828 Comm: syz.3.166 Not tainted syzkaller #0 PREEMPT(full) [ 160.063401][ T6828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 160.063416][ T6828] Call Trace: [ 160.063424][ T6828] [ 160.063432][ T6828] dump_stack_lvl+0x16c/0x1f0 [ 160.063475][ T6828] should_fail_ex+0x512/0x640 [ 160.063518][ T6828] get_futex_key+0x1d0/0x1560 [ 160.063553][ T6828] ? __pfx_get_futex_key+0x10/0x10 [ 160.063595][ T6828] ? lock_acquire+0x179/0x350 [ 160.063635][ T6828] futex_wake+0xea/0x530 [ 160.063671][ T6828] ? rcu_is_watching+0x12/0xc0 [ 160.063692][ T6828] ? __pfx_futex_wake+0x10/0x10 [ 160.063730][ T6828] ? trace_sched_exit_tp+0xd1/0x120 [ 160.063765][ T6828] ? __schedule+0x11a3/0x5de0 [ 160.063802][ T6828] do_futex+0x1e3/0x350 [ 160.063834][ T6828] ? __pfx_do_futex+0x10/0x10 [ 160.063877][ T6828] __x64_sys_futex+0x1e0/0x4c0 [ 160.063912][ T6828] ? __x64_sys_openat+0x174/0x210 [ 160.063936][ T6828] ? __pfx___x64_sys_futex+0x10/0x10 [ 160.063969][ T6828] ? preempt_schedule_notrace_thunk+0x16/0x30 [ 160.064016][ T6828] do_syscall_64+0xcd/0x4c0 [ 160.064056][ T6828] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 160.064081][ T6828] RIP: 0033:0x7fe467d8eec9 [ 160.064101][ T6828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 160.064124][ T6828] RSP: 002b:00007fe468b610e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 160.064149][ T6828] RAX: ffffffffffffffda RBX: 00007fe467fe6188 RCX: 00007fe467d8eec9 [ 160.064167][ T6828] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe467fe618c [ 160.064183][ T6828] RBP: 00007fe467fe6180 R08: 00007fe468ba4000 R09: 0000000000000000 [ 160.064199][ T6828] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000 [ 160.064214][ T6828] R13: 00007fe467fe6218 R14: 00007ffd7082efc0 R15: 00007ffd7082f0a8 [ 160.064249][ T6828] [ 161.489790][ T6855] FAULT_INJECTION: forcing a failure. [ 161.489790][ T6855] name failslab, interval 1, probability 0, space 0, times 0 [ 161.514941][ T6855] CPU: 1 UID: 0 PID: 6855 Comm: syz.2.173 Not tainted syzkaller #0 PREEMPT(full) [ 161.514973][ T6855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 161.514986][ T6855] Call Trace: [ 161.514994][ T6855] [ 161.515004][ T6855] dump_stack_lvl+0x16c/0x1f0 [ 161.515045][ T6855] should_fail_ex+0x512/0x640 [ 161.515081][ T6855] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 161.515113][ T6855] should_failslab+0xc2/0x120 [ 161.515146][ T6855] __kmalloc_cache_noprof+0x6a/0x3e0 [ 161.515180][ T6855] ? snd_card_file_add+0x52/0x340 [ 161.515213][ T6855] ? __pfx_snd_ctl_open+0x10/0x10 [ 161.515250][ T6855] snd_card_file_add+0x52/0x340 [ 161.515279][ T6855] ? __pfx_snd_ctl_open+0x10/0x10 [ 161.515316][ T6855] ? __pfx_snd_ctl_open+0x10/0x10 [ 161.515351][ T6855] snd_ctl_open+0x9d/0x5f0 [ 161.515389][ T6855] ? __pfx_snd_ctl_open+0x10/0x10 [ 161.515424][ T6855] snd_open+0x22d/0x4c0 [ 161.515449][ T6855] ? __pfx_snd_open+0x10/0x10 [ 161.515473][ T6855] chrdev_open+0x231/0x6a0 [ 161.515505][ T6855] ? __pfx_apparmor_file_open+0x10/0x10 [ 161.515534][ T6855] ? __pfx_chrdev_open+0x10/0x10 [ 161.515568][ T6855] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 161.515604][ T6855] do_dentry_open+0x97f/0x1530 [ 161.515636][ T6855] ? __pfx_chrdev_open+0x10/0x10 [ 161.515677][ T6855] vfs_open+0x82/0x3f0 [ 161.515718][ T6855] path_openat+0x1de4/0x2cb0 [ 161.515761][ T6855] ? __pfx_path_openat+0x10/0x10 [ 161.515802][ T6855] do_filp_open+0x20b/0x470 [ 161.515834][ T6855] ? __pfx_do_filp_open+0x10/0x10 [ 161.515891][ T6855] ? alloc_fd+0x471/0x7d0 [ 161.515925][ T6855] do_sys_openat2+0x11b/0x1d0 [ 161.515960][ T6855] ? __pfx_do_sys_openat2+0x10/0x10 [ 161.516011][ T6855] __x64_sys_openat+0x174/0x210 [ 161.516036][ T6855] ? __pfx___x64_sys_openat+0x10/0x10 [ 161.516073][ T6855] do_syscall_64+0xcd/0x4c0 [ 161.516115][ T6855] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 161.516141][ T6855] RIP: 0033:0x7fe8a678eec9 [ 161.516167][ T6855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 161.516193][ T6855] RSP: 002b:00007fe8a7567038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 161.516218][ T6855] RAX: ffffffffffffffda RBX: 00007fe8a69e6180 RCX: 00007fe8a678eec9 [ 161.516236][ T6855] RDX: 0000000000000802 RSI: 00002000000010c0 RDI: ffffffffffffff9c [ 161.516253][ T6855] RBP: 00007fe8a6811f91 R08: 0000000000000000 R09: 0000000000000000 [ 161.516269][ T6855] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 161.516284][ T6855] R13: 00007fe8a69e6218 R14: 00007fe8a69e6180 R15: 00007fff8a1c54a8 [ 161.516319][ T6855] [ 162.965081][ T6870] netlink: 342 bytes leftover after parsing attributes in process `syz.2.178'. [ 163.253481][ T6881] random: crng reseeded on system resumption [ 163.648887][ T6884] random: crng reseeded on system resumption [ 164.201951][ T6887] netlink: 342 bytes leftover after parsing attributes in process `syz.3.181'. [ 165.250521][ T6898] FAULT_INJECTION: forcing a failure. [ 165.250521][ T6898] name failslab, interval 1, probability 0, space 0, times 0 [ 165.276994][ T6898] CPU: 1 UID: 0 PID: 6898 Comm: syz.2.180 Not tainted syzkaller #0 PREEMPT(full) [ 165.277030][ T6898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 165.277045][ T6898] Call Trace: [ 165.277054][ T6898] [ 165.277064][ T6898] dump_stack_lvl+0x16c/0x1f0 [ 165.277110][ T6898] should_fail_ex+0x512/0x640 [ 165.277148][ T6898] ? fs_reclaim_acquire+0xae/0x150 [ 165.277188][ T6898] ? tomoyo_encode2+0x100/0x3e0 [ 165.277222][ T6898] should_failslab+0xc2/0x120 [ 165.277256][ T6898] __kmalloc_noprof+0xd2/0x510 [ 165.277285][ T6898] ? d_absolute_path+0x136/0x1a0 [ 165.277328][ T6898] tomoyo_encode2+0x100/0x3e0 [ 165.277369][ T6898] tomoyo_encode+0x29/0x50 [ 165.277403][ T6898] tomoyo_realpath_from_path+0x18f/0x6e0 [ 165.277450][ T6898] tomoyo_check_open_permission+0x2ab/0x3c0 [ 165.277485][ T6898] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 165.277552][ T6898] ? do_raw_spin_lock+0x12c/0x2b0 [ 165.277599][ T6898] tomoyo_file_open+0x6b/0x90 [ 165.277626][ T6898] security_file_open+0x84/0x1e0 [ 165.277661][ T6898] do_dentry_open+0x596/0x1530 [ 165.277705][ T6898] vfs_open+0x82/0x3f0 [ 165.277748][ T6898] path_openat+0x1de4/0x2cb0 [ 165.277799][ T6898] ? __pfx_path_openat+0x10/0x10 [ 165.277842][ T6898] do_filp_open+0x20b/0x470 [ 165.277876][ T6898] ? __pfx_do_filp_open+0x10/0x10 [ 165.277935][ T6898] ? alloc_fd+0x471/0x7d0 [ 165.277975][ T6898] do_sys_openat2+0x11b/0x1d0 [ 165.278015][ T6898] ? __pfx_do_sys_openat2+0x10/0x10 [ 165.278068][ T6898] __x64_sys_openat+0x174/0x210 [ 165.278094][ T6898] ? __pfx___x64_sys_openat+0x10/0x10 [ 165.278133][ T6898] do_syscall_64+0xcd/0x4c0 [ 165.278175][ T6898] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.278201][ T6898] RIP: 0033:0x7fe8a678eec9 [ 165.278222][ T6898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 165.278246][ T6898] RSP: 002b:00007fe8a7567038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 165.278270][ T6898] RAX: ffffffffffffffda RBX: 00007fe8a69e6180 RCX: 00007fe8a678eec9 [ 165.278288][ T6898] RDX: 0000000000000802 RSI: 00002000000010c0 RDI: ffffffffffffff9c [ 165.278304][ T6898] RBP: 00007fe8a6811f91 R08: 0000000000000000 R09: 0000000000000000 [ 165.278320][ T6898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 165.278335][ T6898] R13: 00007fe8a69e6218 R14: 00007fe8a69e6180 R15: 00007fff8a1c54a8 [ 165.278371][ T6898] [ 165.278760][ T6898] ERROR: Out of memory at tomoyo_realpath_from_path. [ 168.251671][ T6956] rnbd_client L213: map_device: Parameters missing [ 171.336820][ T7005] random: crng reseeded on system resumption [ 174.776574][ T7043] mmap: syz.0.214 (7043) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 178.053252][ T7093] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78438 [ 178.099581][ T7093] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 178.180497][ T7093] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 178.348987][ T7093] page_type: f5(slab) [ 178.409609][ T7093] raw: 00fff00000000040 ffff88801b842140 dead000000000122 0000000000000000 [ 178.544910][ T7093] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 178.553656][ T7093] head: 00fff00000000040 ffff88801b842140 dead000000000122 0000000000000000 [ 178.563230][ T7093] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 178.573388][ T7093] head: 00fff00000000003 ffffea0001e10e01 00000000ffffffff 00000000ffffffff [ 178.582159][ T7093] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 178.591041][ T7093] page dumped because: unmovable page [ 178.596497][ T7093] page_owner tracks the page as allocated [ 178.603036][ T7093] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5236, tgid 5236 (udevd), ts 175081922379, free_ts 175075288121 [ 178.624377][ T7093] post_alloc_hook+0x1c0/0x230 [ 178.635602][ T7093] get_page_from_freelist+0x132b/0x38e0 [ 178.641220][ T7093] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 178.647524][ T7093] alloc_pages_mpol+0x1fb/0x550 [ 178.655777][ T7093] new_slab+0x247/0x330 [ 178.660051][ T7093] ___slab_alloc+0xcf2/0x1750 [ 178.665457][ T7093] __slab_alloc.constprop.0+0x56/0xb0 [ 178.672112][ T7093] __kmalloc_noprof+0x2f2/0x510 [ 178.724797][ T7093] tomoyo_realpath_from_path+0xc2/0x6e0 [ 178.794145][ T7093] tomoyo_path_perm+0x274/0x460 [ 178.805413][ T7093] security_inode_getattr+0x116/0x290 [ 178.860202][ T7093] vfs_fstat+0x4b/0xe0 [ 178.900928][ T7093] __do_sys_newfstat+0x87/0x100 [ 178.916066][ T7093] do_syscall_64+0xcd/0x4c0 [ 178.973255][ T7093] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.005402][ T7093] page last free pid 5853 tgid 5853 stack trace: [ 179.052343][ T7103] zswap: compressor @ not available [ 179.110854][ T7093] __free_frozen_pages+0x7d5/0x10f0 [ 179.116378][ T7093] __folio_put+0x329/0x450 [ 179.130451][ T7093] put_netmem+0x28b/0x300 [ 179.140598][ T7093] __pskb_trim_head+0x5c7/0x7b0 [ 179.151007][ T7093] tcp_trim_head+0x85/0x5f0 [ 179.187535][ T7093] tcp_ack+0x1c37/0x5bf0 [ 179.191863][ T7093] tcp_rcv_established+0xda2/0x23f0 [ 179.209178][ T7093] tcp_v4_do_rcv+0x5ca/0xa90 [ 179.220223][ T7093] __release_sock+0x31b/0x400 [ 179.235640][ T7093] release_sock+0x5a/0x220 [ 179.243252][ T7093] tcp_sendmsg+0x38/0x50 [ 179.256536][ T7093] inet_sendmsg+0xb9/0x140 [ 179.260988][ T7093] sock_write_iter+0x4aa/0x5b0 [ 179.288333][ T7093] vfs_write+0x7d3/0x11d0 [ 179.334628][ T7093] ksys_write+0x1f8/0x250 [ 179.379555][ T7093] do_syscall_64+0xcd/0x4c0 [ 182.697713][ T7157] random: crng reseeded on system resumption [ 182.921059][ T7164] FAULT_INJECTION: forcing a failure. [ 182.921059][ T7164] name failslab, interval 1, probability 0, space 0, times 0 [ 183.101682][ T7164] CPU: 1 UID: 0 PID: 7164 Comm: syz.3.235 Not tainted syzkaller #0 PREEMPT(full) [ 183.101704][ T7164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 183.101713][ T7164] Call Trace: [ 183.101719][ T7164] [ 183.101725][ T7164] dump_stack_lvl+0x16c/0x1f0 [ 183.101752][ T7164] should_fail_ex+0x512/0x640 [ 183.101775][ T7164] ? __kvmalloc_node_noprof+0x124/0x620 [ 183.101793][ T7164] should_failslab+0xc2/0x120 [ 183.101812][ T7164] __kvmalloc_node_noprof+0x137/0x620 [ 183.101828][ T7164] ? seq_read_iter+0x826/0x12c0 [ 183.101845][ T7164] ? seq_read_iter+0x826/0x12c0 [ 183.101858][ T7164] seq_read_iter+0x826/0x12c0 [ 183.101879][ T7164] kernfs_fop_read_iter+0x46c/0x610 [ 183.101894][ T7164] ? rw_verify_area+0xcf/0x6c0 [ 183.101910][ T7164] vfs_read+0x8bf/0xcf0 [ 183.101928][ T7164] ? __pfx___mutex_lock+0x10/0x10 [ 183.101949][ T7164] ? __pfx_vfs_read+0x10/0x10 [ 183.101977][ T7164] ksys_read+0x12a/0x250 [ 183.101992][ T7164] ? __pfx_ksys_read+0x10/0x10 [ 183.102019][ T7164] do_syscall_64+0xcd/0x4c0 [ 183.102042][ T7164] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.102057][ T7164] RIP: 0033:0x7fe467d8eec9 [ 183.102070][ T7164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 183.102083][ T7164] RSP: 002b:00007fe468ba3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 183.102096][ T7164] RAX: ffffffffffffffda RBX: 00007fe467fe5fa0 RCX: 00007fe467d8eec9 [ 183.102106][ T7164] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000004 [ 183.102114][ T7164] RBP: 00007fe467e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 183.102122][ T7164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 183.102130][ T7164] R13: 00007fe467fe6038 R14: 00007fe467fe5fa0 R15: 00007ffd7082f0a8 [ 183.102149][ T7164] [ 184.983341][ T7196] FAULT_INJECTION: forcing a failure. [ 184.983341][ T7196] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 185.015132][ T7196] CPU: 0 UID: 0 PID: 7196 Comm: syz.1.241 Not tainted syzkaller #0 PREEMPT(full) [ 185.015153][ T7196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 185.015162][ T7196] Call Trace: [ 185.015167][ T7196] [ 185.015172][ T7196] dump_stack_lvl+0x16c/0x1f0 [ 185.015198][ T7196] should_fail_ex+0x512/0x640 [ 185.015223][ T7196] should_fail_alloc_page+0xe7/0x130 [ 185.015243][ T7196] prepare_alloc_pages+0x3c2/0x610 [ 185.015267][ T7196] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 185.015285][ T7196] ? find_held_lock+0x2b/0x80 [ 185.015300][ T7196] ? mm_drop_all_locks+0x395/0x4c0 [ 185.015318][ T7196] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 185.015340][ T7196] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 185.015357][ T7196] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 185.015387][ T7196] ? mm_drop_all_locks+0x395/0x4c0 [ 185.015404][ T7196] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 185.015426][ T7196] ? policy_nodemask+0xea/0x4e0 [ 185.015445][ T7196] alloc_pages_mpol+0x1fb/0x550 [ 185.015463][ T7196] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 185.015486][ T7196] alloc_pages_noprof+0x131/0x390 [ 185.015505][ T7196] kvm_coalesced_mmio_init+0x1a/0x170 [ 185.015524][ T7196] kvm_dev_ioctl+0xe82/0x1af0 [ 185.015540][ T7196] ? find_held_lock+0x2b/0x80 [ 185.015553][ T7196] ? hook_file_ioctl_common+0x145/0x410 [ 185.015582][ T7196] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 185.015598][ T7196] ? __fget_files+0x20e/0x3c0 [ 185.015618][ T7196] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 185.015633][ T7196] __x64_sys_ioctl+0x18b/0x210 [ 185.015655][ T7196] do_syscall_64+0xcd/0x4c0 [ 185.015677][ T7196] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.015691][ T7196] RIP: 0033:0x7f35f5b8eec9 [ 185.015703][ T7196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 185.015716][ T7196] RSP: 002b:00007f35f6ad5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 185.015730][ T7196] RAX: ffffffffffffffda RBX: 00007f35f5de5fa0 RCX: 00007f35f5b8eec9 [ 185.015739][ T7196] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000004 [ 185.015747][ T7196] RBP: 00007f35f5c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 185.015755][ T7196] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 185.015764][ T7196] R13: 00007f35f5de6038 R14: 00007f35f5de5fa0 R15: 00007ffe8c002b18 [ 185.015782][ T7196] [ 185.429679][ T7203] random: crng reseeded on system resumption [ 187.800084][ T7225] FAULT_INJECTION: forcing a failure. [ 187.800084][ T7225] name failslab, interval 1, probability 0, space 0, times 0 [ 187.838858][ T7225] CPU: 0 UID: 0 PID: 7225 Comm: syz.0.244 Not tainted syzkaller #0 PREEMPT(full) [ 187.838894][ T7225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 187.838908][ T7225] Call Trace: [ 187.838916][ T7225] [ 187.838925][ T7225] dump_stack_lvl+0x16c/0x1f0 [ 187.838969][ T7225] should_fail_ex+0x512/0x640 [ 187.839008][ T7225] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 187.839039][ T7225] should_failslab+0xc2/0x120 [ 187.839068][ T7225] __kmalloc_cache_noprof+0x6a/0x3e0 [ 187.839090][ T7225] ? snd_card_file_add+0x52/0x340 [ 187.839115][ T7225] ? __pfx_snd_ctl_open+0x10/0x10 [ 187.839145][ T7225] snd_card_file_add+0x52/0x340 [ 187.839168][ T7225] ? __pfx_snd_ctl_open+0x10/0x10 [ 187.839197][ T7225] ? __pfx_snd_ctl_open+0x10/0x10 [ 187.839226][ T7225] snd_ctl_open+0x9d/0x5f0 [ 187.839256][ T7225] ? __pfx_snd_ctl_open+0x10/0x10 [ 187.839285][ T7225] snd_open+0x22d/0x4c0 [ 187.839306][ T7225] ? __pfx_snd_open+0x10/0x10 [ 187.839325][ T7225] chrdev_open+0x231/0x6a0 [ 187.839352][ T7225] ? __pfx_apparmor_file_open+0x10/0x10 [ 187.839385][ T7225] ? __pfx_chrdev_open+0x10/0x10 [ 187.839415][ T7225] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 187.839445][ T7225] do_dentry_open+0x97f/0x1530 [ 187.839473][ T7225] ? __pfx_chrdev_open+0x10/0x10 [ 187.839506][ T7225] vfs_open+0x82/0x3f0 [ 187.839540][ T7225] path_openat+0x1de4/0x2cb0 [ 187.839575][ T7225] ? __pfx_path_openat+0x10/0x10 [ 187.839608][ T7225] do_filp_open+0x20b/0x470 [ 187.839634][ T7225] ? __pfx_do_filp_open+0x10/0x10 [ 187.839679][ T7225] ? alloc_fd+0x471/0x7d0 [ 187.839710][ T7225] do_sys_openat2+0x11b/0x1d0 [ 187.839741][ T7225] ? __pfx_do_sys_openat2+0x10/0x10 [ 187.839784][ T7225] __x64_sys_openat+0x174/0x210 [ 187.839803][ T7225] ? __pfx___x64_sys_openat+0x10/0x10 [ 187.839834][ T7225] do_syscall_64+0xcd/0x4c0 [ 187.839868][ T7225] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.839889][ T7225] RIP: 0033:0x7f981f98eec9 [ 187.839906][ T7225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 187.839925][ T7225] RSP: 002b:00007f981d3f2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 187.839945][ T7225] RAX: ffffffffffffffda RBX: 00007f981fbe6360 RCX: 00007f981f98eec9 [ 187.839959][ T7225] RDX: 0000000000000802 RSI: 00002000000010c0 RDI: ffffffffffffff9c [ 187.839972][ T7225] RBP: 00007f981fa11f91 R08: 0000000000000000 R09: 0000000000000000 [ 187.839986][ T7225] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 187.839998][ T7225] R13: 00007f981fbe63f8 R14: 00007f981fbe6360 R15: 00007ffea67aaa98 [ 187.840027][ T7225] [ 190.150571][ T7252] random: crng reseeded on system resumption [ 191.538329][ T7268] random: crng reseeded on system resumption [ 191.900086][ T30] audit: type=1800 audit(6053637841.449:2): pid=7278 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.255" name="features" dev="configfs" ino=13133 res=0 errno=0 [ 193.376139][ T7289] zswap: compressor not available [ 194.269434][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.276879][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.606506][ T7318] random: crng reseeded on system resumption [ 195.915759][ T7319] FAULT_INJECTION: forcing a failure. [ 195.915759][ T7319] name failslab, interval 1, probability 0, space 0, times 0 [ 195.942782][ T7319] CPU: 1 UID: 0 PID: 7319 Comm: syz.2.265 Not tainted syzkaller #0 PREEMPT(full) [ 195.942805][ T7319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 195.942814][ T7319] Call Trace: [ 195.942819][ T7319] [ 195.942825][ T7319] dump_stack_lvl+0x16c/0x1f0 [ 195.942851][ T7319] should_fail_ex+0x512/0x640 [ 195.942873][ T7319] ? __kmalloc_noprof+0xbf/0x510 [ 195.942892][ T7319] ? __register_sysctl_table+0xb3/0x1900 [ 195.942912][ T7319] should_failslab+0xc2/0x120 [ 195.942931][ T7319] __kmalloc_noprof+0xd2/0x510 [ 195.942951][ T7319] __register_sysctl_table+0xb3/0x1900 [ 195.942972][ T7319] ? is_module_address+0x5f/0xf0 [ 195.942993][ T7319] ? __pfx___register_sysctl_table+0x10/0x10 [ 195.943013][ T7319] ? is_module_address+0x69/0xf0 [ 195.943030][ T7319] ? register_net_sysctl_sz+0x228/0x3e0 [ 195.943045][ T7319] ? __asan_memcpy+0x3c/0x60 [ 195.943061][ T7319] sysctl_route_net_init+0x15e/0x2c0 [ 195.943078][ T7319] ? __pfx_sysctl_route_net_init+0x10/0x10 [ 195.943092][ T7319] ops_init+0x1df/0x5f0 [ 195.943115][ T7319] setup_net+0x10f/0x380 [ 195.943126][ T7319] ? lockdep_init_map_type+0x5c/0x280 [ 195.943145][ T7319] ? __pfx_setup_net+0x10/0x10 [ 195.943159][ T7319] ? debug_mutex_init+0x37/0x70 [ 195.943174][ T7319] copy_net_ns+0x2a6/0x5f0 [ 195.943190][ T7319] create_new_namespaces+0x3ea/0xa90 [ 195.943211][ T7319] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 195.943228][ T7319] ksys_unshare+0x45b/0xa40 [ 195.943247][ T7319] ? __pfx_ksys_unshare+0x10/0x10 [ 195.943266][ T7319] ? xfd_validate_state+0x61/0x180 [ 195.943291][ T7319] __x64_sys_unshare+0x31/0x40 [ 195.943309][ T7319] do_syscall_64+0xcd/0x4c0 [ 195.943331][ T7319] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 195.943345][ T7319] RIP: 0033:0x7fe8a678eec9 [ 195.943357][ T7319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 195.943371][ T7319] RSP: 002b:00007fe8a75a9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 195.943384][ T7319] RAX: ffffffffffffffda RBX: 00007fe8a69e5fa0 RCX: 00007fe8a678eec9 [ 195.943393][ T7319] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 195.943401][ T7319] RBP: 00007fe8a6811f91 R08: 0000000000000000 R09: 0000000000000000 [ 195.943409][ T7319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 195.943416][ T7319] R13: 00007fe8a69e6038 R14: 00007fe8a69e5fa0 R15: 00007fff8a1c54a8 [ 195.943434][ T7319] [ 196.964726][ T7313] FAULT_INJECTION: forcing a failure. [ 196.964726][ T7313] name fail_futex, interval 1, probability 0, space 0, times 0 [ 196.978015][ T7313] CPU: 0 UID: 0 PID: 7313 Comm: syz.3.264 Not tainted syzkaller #0 PREEMPT(full) [ 196.978050][ T7313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 196.978065][ T7313] Call Trace: [ 196.978074][ T7313] [ 196.978084][ T7313] dump_stack_lvl+0x16c/0x1f0 [ 196.978129][ T7313] should_fail_ex+0x512/0x640 [ 196.978174][ T7313] get_futex_key+0x1d0/0x1560 [ 196.978211][ T7313] ? __pfx_get_futex_key+0x10/0x10 [ 196.978254][ T7313] futex_wake+0xea/0x530 [ 196.978292][ T7313] ? rcu_is_watching+0x12/0xc0 [ 196.978319][ T7313] ? __pfx_futex_wake+0x10/0x10 [ 196.978359][ T7313] ? kmem_cache_free+0x2d1/0x4d0 [ 196.978387][ T7313] ? fd_install+0x225/0x750 [ 196.978412][ T7313] ? putname+0x154/0x1a0 [ 196.978452][ T7313] do_futex+0x1e3/0x350 [ 196.978485][ T7313] ? __pfx_do_futex+0x10/0x10 [ 196.978528][ T7313] __x64_sys_futex+0x1e0/0x4c0 [ 196.978564][ T7313] ? __x64_sys_openat+0x174/0x210 [ 196.978588][ T7313] ? __pfx___x64_sys_futex+0x10/0x10 [ 196.978643][ T7313] do_syscall_64+0xcd/0x4c0 [ 196.978688][ T7313] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.978714][ T7313] RIP: 0033:0x7fe467d8eec9 [ 196.978737][ T7313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 196.978761][ T7313] RSP: 002b:00007fe468b610e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 196.978785][ T7313] RAX: ffffffffffffffda RBX: 00007fe467fe6188 RCX: 00007fe467d8eec9 [ 196.978803][ T7313] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe467fe618c [ 196.978819][ T7313] RBP: 00007fe467fe6180 R08: 00007fe468ba4000 R09: 0000000000000000 [ 196.978835][ T7313] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000 [ 196.978851][ T7313] R13: 00007fe467fe6218 R14: 00007ffd7082efc0 R15: 00007ffd7082f0a8 [ 196.978886][ T7313] [ 197.165925][ C0] vkms_vblank_simulate: vblank timer overrun [ 197.195335][ T7338] random: crng reseeded on system resumption [ 198.428089][ T7350] vhci_hcd: invalid port number 21 [ 198.664643][ T7347] FAULT_INJECTION: forcing a failure. [ 198.664643][ T7347] name fail_futex, interval 1, probability 0, space 0, times 0 [ 198.678175][ T7347] CPU: 1 UID: 0 PID: 7347 Comm: syz.0.270 Not tainted syzkaller #0 PREEMPT(full) [ 198.678209][ T7347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 198.678223][ T7347] Call Trace: [ 198.678232][ T7347] [ 198.678242][ T7347] dump_stack_lvl+0x16c/0x1f0 [ 198.678293][ T7347] should_fail_ex+0x512/0x640 [ 198.678337][ T7347] get_futex_key+0x1d0/0x1560 [ 198.678373][ T7347] ? __pfx_get_futex_key+0x10/0x10 [ 198.678416][ T7347] futex_wake+0xea/0x530 [ 198.678453][ T7347] ? rcu_is_watching+0x12/0xc0 [ 198.678481][ T7347] ? __pfx_futex_wake+0x10/0x10 [ 198.678520][ T7347] ? kmem_cache_free+0x2d1/0x4d0 [ 198.678545][ T7347] ? fd_install+0x225/0x750 [ 198.678570][ T7347] ? putname+0x154/0x1a0 [ 198.678608][ T7347] do_futex+0x1e3/0x350 [ 198.678641][ T7347] ? __pfx_do_futex+0x10/0x10 [ 198.678684][ T7347] __x64_sys_futex+0x1e0/0x4c0 [ 198.678719][ T7347] ? __x64_sys_openat+0x174/0x210 [ 198.678743][ T7347] ? __pfx___x64_sys_futex+0x10/0x10 [ 198.678790][ T7347] do_syscall_64+0xcd/0x4c0 [ 198.678831][ T7347] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 198.678857][ T7347] RIP: 0033:0x7f981f98eec9 [ 198.678878][ T7347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 198.678902][ T7347] RSP: 002b:00007f981d3f20e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 198.678926][ T7347] RAX: ffffffffffffffda RBX: 00007f981fbe6368 RCX: 00007f981f98eec9 [ 198.678943][ T7347] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f981fbe636c [ 198.678959][ T7347] RBP: 00007f981fbe6360 R08: 00007f98207ad000 R09: 0000000000000000 [ 198.678976][ T7347] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000 [ 198.678991][ T7347] R13: 00007f981fbe63f8 R14: 00007ffea67aa9b0 R15: 00007ffea67aaa98 [ 198.679026][ T7347] [ 199.200603][ T7359] capability: warning: `syz.2.271' uses 32-bit capabilities (legacy support in use) [ 200.934217][ T7379] netlink: 342 bytes leftover after parsing attributes in process `syz.3.276'. [ 201.413515][ T7390] FAULT_INJECTION: forcing a failure. [ 201.413515][ T7390] name fail_futex, interval 1, probability 0, space 0, times 0 [ 201.445531][ T7390] CPU: 1 UID: 0 PID: 7390 Comm: syz.2.275 Not tainted syzkaller #0 PREEMPT(full) [ 201.445567][ T7390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 201.445582][ T7390] Call Trace: [ 201.445590][ T7390] [ 201.445600][ T7390] dump_stack_lvl+0x16c/0x1f0 [ 201.445645][ T7390] should_fail_ex+0x512/0x640 [ 201.445690][ T7390] get_futex_key+0x1d0/0x1560 [ 201.445726][ T7390] ? __pfx_get_futex_key+0x10/0x10 [ 201.445770][ T7390] futex_wake+0xea/0x530 [ 201.445807][ T7390] ? rcu_is_watching+0x12/0xc0 [ 201.445834][ T7390] ? __pfx_futex_wake+0x10/0x10 [ 201.445874][ T7390] ? kmem_cache_free+0x2d1/0x4d0 [ 201.445902][ T7390] ? fd_install+0x225/0x750 [ 201.445927][ T7390] ? putname+0x154/0x1a0 [ 201.445966][ T7390] do_futex+0x1e3/0x350 [ 201.445999][ T7390] ? __pfx_do_futex+0x10/0x10 [ 201.446041][ T7390] __x64_sys_futex+0x1e0/0x4c0 [ 201.446077][ T7390] ? __x64_sys_openat+0x174/0x210 [ 201.446100][ T7390] ? __pfx___x64_sys_futex+0x10/0x10 [ 201.446133][ T7390] ? xfd_validate_state+0x61/0x180 [ 201.446182][ T7390] do_syscall_64+0xcd/0x4c0 [ 201.446229][ T7390] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 201.446255][ T7390] RIP: 0033:0x7fe8a678eec9 [ 201.446275][ T7390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 201.446300][ T7390] RSP: 002b:00007fe8a3dcf0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 201.446324][ T7390] RAX: ffffffffffffffda RBX: 00007fe8a69e6458 RCX: 00007fe8a678eec9 [ 201.446342][ T7390] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe8a69e645c [ 201.446357][ T7390] RBP: 00007fe8a69e6450 R08: 00007fe8a75aa000 R09: 0000000000000000 [ 201.446373][ T7390] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000 [ 201.446388][ T7390] R13: 00007fe8a69e64e8 R14: 00007fff8a1c53c0 R15: 00007fff8a1c54a8 [ 201.446423][ T7390] [ 203.429129][ T7405] random: crng reseeded on system resumption [ 204.088980][ T7417] random: crng reseeded on system resumption [ 204.683924][ T7420] netlink: 342 bytes leftover after parsing attributes in process `syz.2.283'. [ 206.951719][ T7426] FAULT_INJECTION: forcing a failure. [ 206.951719][ T7426] name fail_futex, interval 1, probability 0, space 0, times 0 [ 207.013260][ T7426] CPU: 0 UID: 0 PID: 7426 Comm: syz.3.284 Not tainted syzkaller #0 PREEMPT(full) [ 207.013293][ T7426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 207.013306][ T7426] Call Trace: [ 207.013313][ T7426] [ 207.013321][ T7426] dump_stack_lvl+0x16c/0x1f0 [ 207.013368][ T7426] should_fail_ex+0x512/0x640 [ 207.013408][ T7426] get_futex_key+0x1d0/0x1560 [ 207.013443][ T7426] ? __pfx_get_futex_key+0x10/0x10 [ 207.013480][ T7426] futex_wake+0xea/0x530 [ 207.013511][ T7426] ? rcu_is_watching+0x12/0xc0 [ 207.013534][ T7426] ? __pfx_futex_wake+0x10/0x10 [ 207.013572][ T7426] ? kmem_cache_free+0x2d1/0x4d0 [ 207.013599][ T7426] ? fd_install+0x225/0x750 [ 207.013623][ T7426] ? putname+0x154/0x1a0 [ 207.013662][ T7426] do_futex+0x1e3/0x350 [ 207.013699][ T7426] ? __pfx_do_futex+0x10/0x10 [ 207.013742][ T7426] __x64_sys_futex+0x1e0/0x4c0 [ 207.013776][ T7426] ? __x64_sys_openat+0x174/0x210 [ 207.013800][ T7426] ? __pfx___x64_sys_futex+0x10/0x10 [ 207.013846][ T7426] do_syscall_64+0xcd/0x4c0 [ 207.013887][ T7426] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 207.013913][ T7426] RIP: 0033:0x7fe467d8eec9 [ 207.013936][ T7426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 207.013957][ T7426] RSP: 002b:00007fe468b820e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 207.013978][ T7426] RAX: ffffffffffffffda RBX: 00007fe467fe6098 RCX: 00007fe467d8eec9 [ 207.013993][ T7426] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe467fe609c [ 207.014008][ T7426] RBP: 00007fe467fe6090 R08: 00007fe468ba4000 R09: 0000000000000000 [ 207.014024][ T7426] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000 [ 207.014036][ T7426] R13: 00007fe467fe6128 R14: 00007ffd7082efc0 R15: 00007ffd7082f0a8 [ 207.014068][ T7426] [ 207.276822][ T7452] netlink: 342 bytes leftover after parsing attributes in process `syz.1.290'. [ 208.831946][ T7482] random: crng reseeded on system resumption [ 210.119506][ T7494] random: crng reseeded on system resumption [ 210.550514][ T7477] FAULT_INJECTION: forcing a failure. [ 210.550514][ T7477] name fail_futex, interval 1, probability 0, space 0, times 0 [ 210.635329][ T7477] CPU: 1 UID: 0 PID: 7477 Comm: syz.0.293 Not tainted syzkaller #0 PREEMPT(full) [ 210.635353][ T7477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 210.635362][ T7477] Call Trace: [ 210.635367][ T7477] [ 210.635373][ T7477] dump_stack_lvl+0x16c/0x1f0 [ 210.635400][ T7477] should_fail_ex+0x512/0x640 [ 210.635439][ T7477] get_futex_key+0x1d0/0x1560 [ 210.635472][ T7477] ? __pfx_get_futex_key+0x10/0x10 [ 210.635505][ T7477] ? rcu_is_watching+0x12/0xc0 [ 210.635540][ T7477] futex_wait_setup+0x9d/0x550 [ 210.635578][ T7477] __futex_wait+0x194/0x2f0 [ 210.635599][ T7477] ? __pfx___futex_wait+0x10/0x10 [ 210.635617][ T7477] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 210.635636][ T7477] ? lockdep_hardirqs_on+0x7c/0x110 [ 210.635658][ T7477] ? __pfx_futex_wake_mark+0x10/0x10 [ 210.635681][ T7477] ? futex_private_hash_put+0x176/0x300 [ 210.635699][ T7477] ? futex_private_hash_put+0x18a/0x300 [ 210.635717][ T7477] futex_wait+0xe8/0x380 [ 210.635736][ T7477] ? __pfx_futex_wait+0x10/0x10 [ 210.635766][ T7477] ? kmem_cache_free+0x2d1/0x4d0 [ 210.635782][ T7477] ? fd_install+0x225/0x750 [ 210.635797][ T7477] ? putname+0x154/0x1a0 [ 210.635820][ T7477] do_futex+0x229/0x350 [ 210.635837][ T7477] ? __pfx_do_futex+0x10/0x10 [ 210.635860][ T7477] __x64_sys_futex+0x1e0/0x4c0 [ 210.635878][ T7477] ? __x64_sys_openat+0x174/0x210 [ 210.635891][ T7477] ? __pfx___x64_sys_futex+0x10/0x10 [ 210.635915][ T7477] do_syscall_64+0xcd/0x4c0 [ 210.635937][ T7477] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 210.635951][ T7477] RIP: 0033:0x7f981f98eec9 [ 210.635963][ T7477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 210.635977][ T7477] RSP: 002b:00007f982076a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 210.635991][ T7477] RAX: ffffffffffffffda RBX: 00007f981fbe6188 RCX: 00007f981f98eec9 [ 210.636000][ T7477] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f981fbe6188 [ 210.636010][ T7477] RBP: 00007f981fbe6180 R08: 0000000000000000 R09: 0000000000000000 [ 210.636018][ T7477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 210.636026][ T7477] R13: 00007f981fbe6218 R14: 00007ffea67aa9b0 R15: 00007ffea67aaa98 [ 210.636044][ T7477] [ 211.033811][ T7497] netlink: 342 bytes leftover after parsing attributes in process `syz.2.297'. [ 211.686078][ T5880] Bluetooth: hci1: command 0x0406 tx timeout [ 211.692828][ T5878] Bluetooth: hci2: command 0x0406 tx timeout [ 211.701229][ T5878] Bluetooth: hci0: command 0x0406 tx timeout [ 211.707488][ T5880] Bluetooth: hci3: command 0x0406 tx timeout [ 212.485219][ T7519] netlink: 342 bytes leftover after parsing attributes in process `syz.3.300'. [ 213.177735][ T7536] random: crng reseeded on system resumption [ 213.983230][ T7541] netlink: 342 bytes leftover after parsing attributes in process `syz.0.305'. [ 214.112877][ T7545] random: crng reseeded on system resumption [ 216.161375][ T7573] binder: 7572:7573 ioctl c018620c 0 returned -1 [ 216.300744][ T7573] netlink: 28 bytes leftover after parsing attributes in process `syz.3.311'. [ 216.388897][ T7579] vivid-003: ================= START STATUS ================= [ 216.409346][ T7579] vivid-003: Radio HW Seek Mode: Bounded [ 216.465815][ T7579] vivid-003: Radio Programmable HW Seek: false [ 216.479735][ T7579] vivid-003: RDS Rx I/O Mode: Block I/O [ 216.487765][ T7579] vivid-003: Generate RBDS Instead of RDS: false [ 216.494250][ T7579] vivid-003: RDS Reception: true [ 216.502621][ T7579] vivid-003: RDS Program Type: 0 inactive [ 216.509645][ T7579] vivid-003: RDS PS Name: inactive [ 216.517877][ T7579] vivid-003: RDS Radio Text: inactive [ 216.524605][ T7579] vivid-003: RDS Traffic Announcement: false inactive [ 216.539092][ T7579] vivid-003: RDS Traffic Program: false inactive [ 216.548624][ T7579] vivid-003: RDS Music: false inactive [ 216.562489][ T7579] vivid-003: ================== END STATUS ================== [ 218.589926][ T7613] random: crng reseeded on system resumption [ 218.807456][ T7603] FAULT_INJECTION: forcing a failure. [ 218.807456][ T7603] name fail_futex, interval 1, probability 0, space 0, times 0 [ 218.821448][ T7603] CPU: 1 UID: 0 PID: 7603 Comm: syz.0.315 Not tainted syzkaller #0 PREEMPT(full) [ 218.821480][ T7603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 218.821495][ T7603] Call Trace: [ 218.821504][ T7603] [ 218.821515][ T7603] dump_stack_lvl+0x16c/0x1f0 [ 218.821559][ T7603] should_fail_ex+0x512/0x640 [ 218.821596][ T7603] ? unwind_get_return_address+0x59/0xa0 [ 218.821629][ T7603] get_futex_key+0x1d0/0x1560 [ 218.821664][ T7603] ? __pfx_get_futex_key+0x10/0x10 [ 218.821696][ T7603] ? stack_trace_save+0x8e/0xc0 [ 218.821722][ T7603] ? __pfx_stack_trace_save+0x10/0x10 [ 218.821751][ T7603] futex_wait_setup+0x9d/0x550 [ 218.821792][ T7603] __futex_wait+0x194/0x2f0 [ 218.821825][ T7603] ? __pfx___futex_wait+0x10/0x10 [ 218.821861][ T7603] ? __pfx_futex_wake_mark+0x10/0x10 [ 218.821898][ T7603] ? futex_private_hash_put+0x176/0x300 [ 218.821928][ T7603] ? futex_private_hash_put+0x18a/0x300 [ 218.821956][ T7603] futex_wait+0xe8/0x380 [ 218.821987][ T7603] ? __pfx_futex_wait+0x10/0x10 [ 218.822024][ T7603] ? kmem_cache_free+0x2d1/0x4d0 [ 218.822050][ T7603] ? fd_install+0x225/0x750 [ 218.822072][ T7603] ? putname+0x154/0x1a0 [ 218.822105][ T7603] do_futex+0x229/0x350 [ 218.822134][ T7603] ? __pfx_do_futex+0x10/0x10 [ 218.822169][ T7603] __x64_sys_futex+0x1e0/0x4c0 [ 218.822212][ T7603] ? __x64_sys_openat+0x174/0x210 [ 218.822237][ T7603] ? __pfx___x64_sys_futex+0x10/0x10 [ 218.822285][ T7603] do_syscall_64+0xcd/0x4c0 [ 218.822325][ T7603] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 218.822348][ T7603] RIP: 0033:0x7f981f98eec9 [ 218.822367][ T7603] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 218.822392][ T7603] RSP: 002b:00007f98207490e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 218.822416][ T7603] RAX: ffffffffffffffda RBX: 00007f981fbe6278 RCX: 00007f981f98eec9 [ 218.822434][ T7603] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f981fbe6278 [ 218.822449][ T7603] RBP: 00007f981fbe6270 R08: 0000000000000000 R09: 0000000000000000 [ 218.822465][ T7603] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 218.822480][ T7603] R13: 00007f981fbe6308 R14: 00007ffea67aa9b0 R15: 00007ffea67aaa98 [ 218.822515][ T7603] [ 219.989165][ T7625] netlink: 28 bytes leftover after parsing attributes in process `syz.3.322'. [ 220.208913][ T7625] veth1_macvtap: left promiscuous mode [ 222.570733][ T7639] FAULT_INJECTION: forcing a failure. [ 222.570733][ T7639] name failslab, interval 1, probability 0, space 0, times 0 [ 222.585974][ T7639] CPU: 0 UID: 0 PID: 7639 Comm: syz.2.325 Not tainted syzkaller #0 PREEMPT(full) [ 222.586010][ T7639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 222.586024][ T7639] Call Trace: [ 222.586033][ T7639] [ 222.586043][ T7639] dump_stack_lvl+0x16c/0x1f0 [ 222.586087][ T7639] should_fail_ex+0x512/0x640 [ 222.586125][ T7639] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 222.586159][ T7639] should_failslab+0xc2/0x120 [ 222.586193][ T7639] __kmalloc_cache_noprof+0x6a/0x3e0 [ 222.586221][ T7639] ? snd_card_file_add+0x52/0x340 [ 222.586252][ T7639] ? __pfx_snd_ctl_open+0x10/0x10 [ 222.586288][ T7639] snd_card_file_add+0x52/0x340 [ 222.586316][ T7639] ? __pfx_snd_ctl_open+0x10/0x10 [ 222.586351][ T7639] ? __pfx_snd_ctl_open+0x10/0x10 [ 222.586386][ T7639] snd_ctl_open+0x9d/0x5f0 [ 222.586423][ T7639] ? __pfx_snd_ctl_open+0x10/0x10 [ 222.586457][ T7639] snd_open+0x22d/0x4c0 [ 222.586482][ T7639] ? __pfx_snd_open+0x10/0x10 [ 222.586506][ T7639] chrdev_open+0x231/0x6a0 [ 222.586537][ T7639] ? __pfx_apparmor_file_open+0x10/0x10 [ 222.586563][ T7639] ? __pfx_chrdev_open+0x10/0x10 [ 222.586596][ T7639] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 222.586631][ T7639] do_dentry_open+0x97f/0x1530 [ 222.586663][ T7639] ? __pfx_chrdev_open+0x10/0x10 [ 222.586701][ T7639] vfs_open+0x82/0x3f0 [ 222.586740][ T7639] path_openat+0x1de4/0x2cb0 [ 222.586782][ T7639] ? __pfx_path_openat+0x10/0x10 [ 222.586822][ T7639] do_filp_open+0x20b/0x470 [ 222.586852][ T7639] ? __pfx_do_filp_open+0x10/0x10 [ 222.586919][ T7639] ? alloc_fd+0x471/0x7d0 [ 222.586957][ T7639] do_sys_openat2+0x11b/0x1d0 [ 222.586995][ T7639] ? __pfx_do_sys_openat2+0x10/0x10 [ 222.587037][ T7639] ? __pfx___schedule+0x10/0x10 [ 222.587078][ T7639] __x64_sys_openat+0x174/0x210 [ 222.587101][ T7639] ? __pfx___x64_sys_openat+0x10/0x10 [ 222.587136][ T7639] do_syscall_64+0xcd/0x4c0 [ 222.587176][ T7639] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 222.587201][ T7639] RIP: 0033:0x7fe8a678eec9 [ 222.587221][ T7639] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 222.587245][ T7639] RSP: 002b:00007fe8a7567038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 222.587269][ T7639] RAX: ffffffffffffffda RBX: 00007fe8a69e6180 RCX: 00007fe8a678eec9 [ 222.587286][ T7639] RDX: 0000000000000802 RSI: 00002000000010c0 RDI: ffffffffffffff9c [ 222.587302][ T7639] RBP: 00007fe8a6811f91 R08: 0000000000000000 R09: 0000000000000000 [ 222.587317][ T7639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 222.587332][ T7639] R13: 00007fe8a69e6218 R14: 00007fe8a69e6180 R15: 00007fff8a1c54a8 [ 222.587366][ T7639] [ 223.922983][ T7662] random: crng reseeded on system resumption [ 224.654177][ T7664] FAULT_INJECTION: forcing a failure. [ 224.654177][ T7664] name fail_futex, interval 1, probability 0, space 0, times 0 [ 224.668557][ T7664] CPU: 1 UID: 0 PID: 7664 Comm: syz.1.329 Not tainted syzkaller #0 PREEMPT(full) [ 224.668596][ T7664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 224.668613][ T7664] Call Trace: [ 224.668623][ T7664] [ 224.668633][ T7664] dump_stack_lvl+0x16c/0x1f0 [ 224.668678][ T7664] should_fail_ex+0x512/0x640 [ 224.668717][ T7664] ? unwind_get_return_address+0x59/0xa0 [ 224.668750][ T7664] get_futex_key+0x1d0/0x1560 [ 224.668787][ T7664] ? __pfx_get_futex_key+0x10/0x10 [ 224.668818][ T7664] ? stack_trace_save+0x8e/0xc0 [ 224.668846][ T7664] ? __pfx_stack_trace_save+0x10/0x10 [ 224.668882][ T7664] futex_wait_setup+0x9d/0x550 [ 224.668935][ T7664] __futex_wait+0x194/0x2f0 [ 224.668975][ T7664] ? __pfx___futex_wait+0x10/0x10 [ 224.669018][ T7664] ? __pfx_futex_wake_mark+0x10/0x10 [ 224.669062][ T7664] ? futex_private_hash_put+0x176/0x300 [ 224.669099][ T7664] ? futex_private_hash_put+0x18a/0x300 [ 224.669134][ T7664] futex_wait+0xe8/0x380 [ 224.669171][ T7664] ? __pfx_futex_wait+0x10/0x10 [ 224.669216][ T7664] ? kmem_cache_free+0x2d1/0x4d0 [ 224.669244][ T7664] ? fd_install+0x225/0x750 [ 224.669269][ T7664] ? putname+0x154/0x1a0 [ 224.669310][ T7664] do_futex+0x229/0x350 [ 224.669343][ T7664] ? __pfx_do_futex+0x10/0x10 [ 224.669385][ T7664] __x64_sys_futex+0x1e0/0x4c0 [ 224.669420][ T7664] ? __x64_sys_openat+0x174/0x210 [ 224.669444][ T7664] ? __pfx___x64_sys_futex+0x10/0x10 [ 224.669491][ T7664] do_syscall_64+0xcd/0x4c0 [ 224.669530][ T7664] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 224.669555][ T7664] RIP: 0033:0x7f35f5b8eec9 [ 224.669577][ T7664] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 224.669602][ T7664] RSP: 002b:00007f35f6a720e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 224.669626][ T7664] RAX: ffffffffffffffda RBX: 00007f35f5de6278 RCX: 00007f35f5b8eec9 [ 224.669642][ T7664] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f35f5de6278 [ 224.669657][ T7664] RBP: 00007f35f5de6270 R08: 0000000000000000 R09: 0000000000000000 [ 224.669671][ T7664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 224.669685][ T7664] R13: 00007f35f5de6308 R14: 00007ffe8c002a30 R15: 00007ffe8c002b18 [ 224.669719][ T7664] [ 226.778022][ T7687] random: crng reseeded on system resumption [ 228.480265][ T7710] random: crng reseeded on system resumption [ 230.497982][ T7727] FAULT_INJECTION: forcing a failure. [ 230.497982][ T7727] name failslab, interval 1, probability 0, space 0, times 0 [ 230.511136][ T7727] CPU: 0 UID: 0 PID: 7727 Comm: syz.1.342 Not tainted syzkaller #0 PREEMPT(full) [ 230.511171][ T7727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 230.511186][ T7727] Call Trace: [ 230.511195][ T7727] [ 230.511204][ T7727] dump_stack_lvl+0x16c/0x1f0 [ 230.511247][ T7727] should_fail_ex+0x512/0x640 [ 230.511284][ T7727] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 230.511321][ T7727] should_failslab+0xc2/0x120 [ 230.511358][ T7727] __kmalloc_cache_noprof+0x6a/0x3e0 [ 230.511385][ T7727] ? _raw_spin_unlock+0x28/0x50 [ 230.511419][ T7727] ? snd_ctl_open+0x174/0x5f0 [ 230.511460][ T7727] snd_ctl_open+0x174/0x5f0 [ 230.511498][ T7727] ? __pfx_snd_ctl_open+0x10/0x10 [ 230.511532][ T7727] snd_open+0x22d/0x4c0 [ 230.511558][ T7727] ? __pfx_snd_open+0x10/0x10 [ 230.511581][ T7727] chrdev_open+0x231/0x6a0 [ 230.511614][ T7727] ? __pfx_apparmor_file_open+0x10/0x10 [ 230.511643][ T7727] ? __pfx_chrdev_open+0x10/0x10 [ 230.511678][ T7727] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 230.511714][ T7727] do_dentry_open+0x97f/0x1530 [ 230.511746][ T7727] ? __pfx_chrdev_open+0x10/0x10 [ 230.511785][ T7727] vfs_open+0x82/0x3f0 [ 230.511826][ T7727] path_openat+0x1de4/0x2cb0 [ 230.511869][ T7727] ? __pfx_path_openat+0x10/0x10 [ 230.511909][ T7727] do_filp_open+0x20b/0x470 [ 230.511940][ T7727] ? __pfx_do_filp_open+0x10/0x10 [ 230.511996][ T7727] ? alloc_fd+0x471/0x7d0 [ 230.512035][ T7727] do_sys_openat2+0x11b/0x1d0 [ 230.512073][ T7727] ? __pfx_do_sys_openat2+0x10/0x10 [ 230.512124][ T7727] __x64_sys_openat+0x174/0x210 [ 230.512148][ T7727] ? __pfx___x64_sys_openat+0x10/0x10 [ 230.512186][ T7727] do_syscall_64+0xcd/0x4c0 [ 230.512228][ T7727] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 230.512254][ T7727] RIP: 0033:0x7f35f5b8eec9 [ 230.512274][ T7727] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 230.512298][ T7727] RSP: 002b:00007f35f6a93038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 230.512329][ T7727] RAX: ffffffffffffffda RBX: 00007f35f5de6180 RCX: 00007f35f5b8eec9 [ 230.512347][ T7727] RDX: 0000000000000802 RSI: 00002000000010c0 RDI: ffffffffffffff9c [ 230.512364][ T7727] RBP: 00007f35f5c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 230.512380][ T7727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 230.512395][ T7727] R13: 00007f35f5de6218 R14: 00007f35f5de6180 R15: 00007ffe8c002b18 [ 230.512430][ T7727] [ 230.771533][ T7742] aoe: could not set interface list: too many interfaces [ 230.824005][ T7738] netlink: 342 bytes leftover after parsing attributes in process `syz.3.345'. [ 230.967491][ T7748] random: crng reseeded on system resumption [ 231.773516][ T7752] random: crng reseeded on system resumption [ 232.008837][ T7755] random: crng reseeded on system resumption [ 232.935104][ T7763] random: crng reseeded on system resumption [ 233.241006][ T7772] random: crng reseeded on system resumption [ 234.565011][ T7784] random: crng reseeded on system resumption [ 234.932502][ T7787] FAULT_INJECTION: forcing a failure. [ 234.932502][ T7787] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 234.971540][ T7787] CPU: 0 UID: 0 PID: 7787 Comm: syz.3.357 Not tainted syzkaller #0 PREEMPT(full) [ 234.971578][ T7787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 234.971593][ T7787] Call Trace: [ 234.971602][ T7787] [ 234.971612][ T7787] dump_stack_lvl+0x16c/0x1f0 [ 234.971655][ T7787] should_fail_ex+0x512/0x640 [ 234.971698][ T7787] _copy_to_user+0x32/0xd0 [ 234.971725][ T7787] do_pages_stat+0x631/0x820 [ 234.971769][ T7787] ? __pfx_do_pages_stat+0x10/0x10 [ 234.971831][ T7787] ? do_raw_spin_unlock+0x172/0x230 [ 234.971874][ T7787] kernel_move_pages+0xfa8/0x1380 [ 234.971921][ T7787] ? do_futex+0x122/0x350 [ 234.971951][ T7787] ? __pfx_do_futex+0x10/0x10 [ 234.971982][ T7787] ? __pfx_kernel_move_pages+0x10/0x10 [ 234.972013][ T7787] ? rcu_is_watching+0x12/0xc0 [ 234.972036][ T7787] ? irqentry_exit+0x3b/0x90 [ 234.972070][ T7787] ? lockdep_hardirqs_on+0x7c/0x110 [ 234.972123][ T7787] __x64_sys_move_pages+0xe0/0x1c0 [ 234.972153][ T7787] ? do_syscall_64+0x91/0x4c0 [ 234.972184][ T7787] ? lockdep_hardirqs_on+0x7c/0x110 [ 234.972219][ T7787] do_syscall_64+0xcd/0x4c0 [ 234.972259][ T7787] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 234.972284][ T7787] RIP: 0033:0x7fe467d8eec9 [ 234.972304][ T7787] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 234.972328][ T7787] RSP: 002b:00007fe468ba3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117 [ 234.972353][ T7787] RAX: ffffffffffffffda RBX: 00007fe467fe5fa0 RCX: 00007fe467d8eec9 [ 234.972368][ T7787] RDX: 0000000000000000 RSI: 0002000000000003 RDI: 0000000000000001 [ 234.972382][ T7787] RBP: 00007fe467e11f91 R08: 0000000000000000 R09: 8000400000000000 [ 234.972396][ T7787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 234.972409][ T7787] R13: 00007fe467fe6038 R14: 00007fe467fe5fa0 R15: 00007ffd7082f0a8 [ 234.972441][ T7787] [ 235.385486][ T7780] FAULT_INJECTION: forcing a failure. [ 235.385486][ T7780] name fail_futex, interval 1, probability 0, space 0, times 0 [ 235.458588][ T7780] CPU: 1 UID: 0 PID: 7780 Comm: syz.0.354 Not tainted syzkaller #0 PREEMPT(full) [ 235.458618][ T7780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 235.458631][ T7780] Call Trace: [ 235.458639][ T7780] [ 235.458650][ T7780] dump_stack_lvl+0x16c/0x1f0 [ 235.458691][ T7780] should_fail_ex+0x512/0x640 [ 235.458729][ T7780] get_futex_key+0x1d0/0x1560 [ 235.458758][ T7780] ? __pfx_get_futex_key+0x10/0x10 [ 235.458799][ T7780] futex_wake+0xea/0x530 [ 235.458849][ T7780] ? __pfx_futex_wake+0x10/0x10 [ 235.458893][ T7780] ? rcu_is_watching+0x12/0xc0 [ 235.458919][ T7780] ? irqentry_exit+0x3b/0x90 [ 235.458957][ T7780] do_futex+0x1e3/0x350 [ 235.458988][ T7780] ? __pfx_do_futex+0x10/0x10 [ 235.459030][ T7780] __x64_sys_futex+0x1e0/0x4c0 [ 235.459065][ T7780] ? __x64_sys_openat+0x174/0x210 [ 235.459086][ T7780] ? __pfx___x64_sys_futex+0x10/0x10 [ 235.459117][ T7780] ? xfd_validate_state+0x61/0x180 [ 235.459164][ T7780] do_syscall_64+0xcd/0x4c0 [ 235.459205][ T7780] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 235.459230][ T7780] RIP: 0033:0x7f981f98eec9 [ 235.459251][ T7780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 235.459274][ T7780] RSP: 002b:00007f98207490e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 235.459298][ T7780] RAX: ffffffffffffffda RBX: 00007f981fbe6278 RCX: 00007f981f98eec9 [ 235.459314][ T7780] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f981fbe627c [ 235.459330][ T7780] RBP: 00007f981fbe6270 R08: 00007f98207ad000 R09: 0000000000000000 [ 235.459346][ T7780] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000 [ 235.459361][ T7780] R13: 00007f981fbe6308 R14: 00007ffea67aa9b0 R15: 00007ffea67aaa98 [ 235.459395][ T7780] [ 237.299801][ T7813] random: crng reseeded on system resumption [ 239.448927][ T7837] netlink: 28 bytes leftover after parsing attributes in process `syz.3.368'. [ 240.515935][ T7850] random: crng reseeded on system resumption [ 243.023094][ T7883] netlink: 12 bytes leftover after parsing attributes in process `syz.2.377'. [ 243.349414][ T7883] nbd0: detected capacity change from 0 to 217936035840 [ 243.370049][ T5881] [ 243.372398][ T5881] ====================================================== [ 243.379398][ T5881] WARNING: possible circular locking dependency detected [ 243.386404][ T5881] syzkaller #0 Not tainted [ 243.390814][ T5881] ------------------------------------------------------ [ 243.397811][ T5881] udevd/5881 is trying to acquire lock: [ 243.403339][ T5881] ffff88801f6c0258 (sk_lock-AF_INET6){+.+.}-{0:0}, at: inet_autobind+0x1a/0x1a0 [ 243.412382][ T5881] [ 243.412382][ T5881] but task is already holding lock: [ 243.419732][ T5881] ffff888079273470 (&nsock->tx_lock){+.+.}-{4:4}, at: nbd_queue_rq+0x423/0x12d0 [ 243.428769][ T5881] [ 243.428769][ T5881] which lock already depends on the new lock. [ 243.428769][ T5881] [ 243.439255][ T5881] [ 243.439255][ T5881] the existing dependency chain (in reverse order) is: [ 243.448261][ T5881] [ 243.448261][ T5881] -> #5 (&nsock->tx_lock){+.+.}-{4:4}: [ 243.455919][ T5881] __mutex_lock+0x193/0x1060 [ 243.461032][ T5881] nbd_queue_rq+0x423/0x12d0 [ 243.466132][ T5881] blk_mq_dispatch_rq_list+0x416/0x1e20 [ 243.472190][ T5881] __blk_mq_sched_dispatch_requests+0xcb7/0x15f0 [ 243.479027][ T5881] blk_mq_sched_dispatch_requests+0xd8/0x1b0 [ 243.485516][ T5881] blk_mq_run_hw_queue+0x239/0x670 [ 243.491144][ T5881] blk_mq_dispatch_list+0x514/0x1310 [ 243.496938][ T5881] blk_mq_flush_plug_list+0x130/0x600 [ 243.502822][ T5881] __blk_flush_plug+0x2c4/0x4b0 [ 243.508179][ T5881] __submit_bio+0x545/0x690 [ 243.513188][ T5881] submit_bio_noacct_nocheck+0x660/0xd30 [ 243.519324][ T5881] submit_bio_noacct+0xc20/0x1ed0 [ 243.524856][ T5881] block_read_full_folio+0x4db/0x850 [ 243.530656][ T5881] filemap_read_folio+0xc5/0x2a0 [ 243.536098][ T5881] do_read_cache_folio+0x263/0x5c0 [ 243.541714][ T5881] read_part_sector+0xd4/0x370 [ 243.546985][ T5881] adfspart_check_ICS+0x93/0x940 [ 243.552430][ T5881] bdev_disk_changed+0x720/0x1520 [ 243.558395][ T5881] blkdev_get_whole+0x187/0x290 [ 243.563752][ T5881] bdev_open+0x2c7/0xe40 [ 243.568499][ T5881] blkdev_open+0x34e/0x4f0 [ 243.573423][ T5881] do_dentry_open+0x97f/0x1530 [ 243.578692][ T5881] vfs_open+0x82/0x3f0 [ 243.583275][ T5881] path_openat+0x1de4/0x2cb0 [ 243.588368][ T5881] do_filp_open+0x20b/0x470 [ 243.593377][ T5881] do_sys_openat2+0x11b/0x1d0 [ 243.598566][ T5881] __x64_sys_openat+0x174/0x210 [ 243.603920][ T5881] do_syscall_64+0xcd/0x4c0 [ 243.608936][ T5881] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 243.615334][ T5881] [ 243.615334][ T5881] -> #4 (&cmd->lock){+.+.}-{4:4}: [ 243.622522][ T5881] __mutex_lock+0x193/0x1060 [ 243.627625][ T5881] nbd_queue_rq+0xbd/0x12d0 [ 243.632635][ T5881] blk_mq_dispatch_rq_list+0x416/0x1e20 [ 243.638700][ T5881] __blk_mq_sched_dispatch_requests+0xcb7/0x15f0 [ 243.645534][ T5881] blk_mq_sched_dispatch_requests+0xd8/0x1b0 [ 243.652021][ T5881] blk_mq_run_hw_queue+0x239/0x670 [ 243.657647][ T5881] blk_mq_dispatch_list+0x514/0x1310 [ 243.663478][ T5881] blk_mq_flush_plug_list+0x130/0x600 [ 243.669375][ T5881] __blk_flush_plug+0x2c4/0x4b0 [ 243.674744][ T5881] __submit_bio+0x545/0x690 [ 243.679796][ T5881] submit_bio_noacct_nocheck+0x660/0xd30 [ 243.685940][ T5881] submit_bio_noacct+0xc20/0x1ed0 [ 243.691470][ T5881] block_read_full_folio+0x4db/0x850 [ 243.697265][ T5881] filemap_read_folio+0xc5/0x2a0 [ 243.702712][ T5881] do_read_cache_folio+0x263/0x5c0 [ 243.708336][ T5881] read_part_sector+0xd4/0x370 [ 243.713603][ T5881] adfspart_check_ICS+0x93/0x940 [ 243.719042][ T5881] bdev_disk_changed+0x720/0x1520 [ 243.724566][ T5881] blkdev_get_whole+0x187/0x290 [ 243.729922][ T5881] bdev_open+0x2c7/0xe40 [ 243.734676][ T5881] blkdev_open+0x34e/0x4f0 [ 243.739602][ T5881] do_dentry_open+0x97f/0x1530 [ 243.744874][ T5881] vfs_open+0x82/0x3f0 [ 243.749449][ T5881] path_openat+0x1de4/0x2cb0 [ 243.754549][ T5881] do_filp_open+0x20b/0x470 [ 243.759554][ T5881] do_sys_openat2+0x11b/0x1d0 [ 243.764758][ T5881] __x64_sys_openat+0x174/0x210 [ 243.770136][ T5881] do_syscall_64+0xcd/0x4c0 [ 243.775156][ T5881] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 243.781558][ T5881] [ 243.781558][ T5881] -> #3 (set->srcu){.+.+}-{0:0}: [ 243.788664][ T5881] __synchronize_srcu+0xa1/0x290 [ 243.794109][ T5881] blk_mq_quiesce_queue+0x149/0x1b0 [ 243.799810][ T5881] queue_wb_lat_store+0x269/0x3d0 [ 243.805693][ T5881] queue_attr_store+0x26b/0x310 [ 243.811048][ T5881] sysfs_kf_write+0xef/0x150 [ 243.816138][ T5881] kernfs_fop_write_iter+0x3ac/0x570 [ 243.821929][ T5881] vfs_write+0x7d3/0x11d0 [ 243.826759][ T5881] ksys_write+0x12a/0x250 [ 243.831592][ T5881] do_syscall_64+0xcd/0x4c0 [ 243.836599][ T5881] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 243.842990][ T5881] [ 243.842990][ T5881] -> #2 (&q->q_usage_counter(io)#68){++++}-{0:0}: [ 243.851581][ T5881] blk_alloc_queue+0x619/0x760 [ 243.856847][ T5881] blk_mq_alloc_queue+0x172/0x280 [ 243.862375][ T5881] __blk_mq_alloc_disk+0x29/0x120 [ 243.867903][ T5881] add_mtd_blktrans_dev+0x7ad/0x15a0 [ 243.873693][ T5881] mtdblock_add_mtd+0x1cc/0x270 [ 243.879050][ T5881] blktrans_notify_add+0x9f/0xf0 [ 243.884492][ T5881] add_mtd_device+0xb04/0x1720 [ 243.889753][ T5881] mtd_device_parse_register+0x7c2/0xb10 [ 243.895882][ T5881] mtdram_init_device+0x298/0x350 [ 243.901414][ T5881] init_mtdram+0xba/0x1b0 [ 243.906248][ T5881] do_one_initcall+0x120/0x6e0 [ 243.911511][ T5881] kernel_init_freeable+0x5c2/0x910 [ 243.917212][ T5881] kernel_init+0x1c/0x2b0 [ 243.922041][ T5881] ret_from_fork+0x56d/0x730 [ 243.927142][ T5881] ret_from_fork_asm+0x1a/0x30 [ 243.932410][ T5881] [ 243.932410][ T5881] -> #1 (fs_reclaim){+.+.}-{0:0}: [ 243.939597][ T5881] fs_reclaim_acquire+0x102/0x150 [ 243.945134][ T5881] kmem_cache_alloc_node_noprof+0x57/0x3b0 [ 243.951440][ T5881] __alloc_skb+0x2b2/0x380 [ 243.956381][ T5881] __ip6_append_data+0x2b74/0x4750 [ 243.961998][ T5881] ip6_append_data+0x1bd/0x4c0 [ 243.967265][ T5881] rawv6_sendmsg+0x163d/0x4820 [ 243.972530][ T5881] inet_sendmsg+0x11c/0x140 [ 243.977533][ T5881] ____sys_sendmsg+0x973/0xc70 [ 243.982798][ T5881] ___sys_sendmsg+0x134/0x1d0 [ 243.987979][ T5881] __sys_sendmsg+0x16d/0x220 [ 243.993077][ T5881] do_syscall_64+0xcd/0x4c0 [ 243.998086][ T5881] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.004492][ T5881] [ 244.004492][ T5881] -> #0 (sk_lock-AF_INET6){+.+.}-{0:0}: [ 244.012201][ T5881] __lock_acquire+0x12a6/0x1ce0 [ 244.017559][ T5881] lock_acquire+0x179/0x350 [ 244.022566][ T5881] lock_sock_nested+0x41/0xf0 [ 244.027752][ T5881] inet_autobind+0x1a/0x1a0 [ 244.032758][ T5881] inet_send_prepare+0x31b/0x530 [ 244.038194][ T5881] inet_sendmsg+0x43/0x140 [ 244.043110][ T5881] sock_sendmsg+0x37f/0x470 [ 244.048114][ T5881] __sock_xmit+0x1e7/0x4f0 [ 244.053037][ T5881] nbd_send_cmd+0x8e4/0x1c90 [ 244.058124][ T5881] nbd_queue_rq+0x940/0x12d0 [ 244.063208][ T5881] blk_mq_dispatch_rq_list+0x416/0x1e20 [ 244.069257][ T5881] __blk_mq_sched_dispatch_requests+0xcb7/0x15f0 [ 244.076087][ T5881] blk_mq_sched_dispatch_requests+0xd8/0x1b0 [ 244.082571][ T5881] blk_mq_run_hw_queue+0x239/0x670 [ 244.088181][ T5881] blk_mq_dispatch_list+0x514/0x1310 [ 244.093967][ T5881] blk_mq_flush_plug_list+0x130/0x600 [ 244.099842][ T5881] __blk_flush_plug+0x2c4/0x4b0 [ 244.105196][ T5881] __submit_bio+0x545/0x690 [ 244.110203][ T5881] submit_bio_noacct_nocheck+0x660/0xd30 [ 244.116337][ T5881] submit_bio_noacct+0xc20/0x1ed0 [ 244.121862][ T5881] block_read_full_folio+0x4db/0x850 [ 244.127650][ T5881] filemap_read_folio+0xc5/0x2a0 [ 244.133088][ T5881] do_read_cache_folio+0x263/0x5c0 [ 244.138702][ T5881] read_part_sector+0xd4/0x370 [ 244.143965][ T5881] adfspart_check_ICS+0x93/0x940 [ 244.149423][ T5881] bdev_disk_changed+0x720/0x1520 [ 244.154948][ T5881] blkdev_get_whole+0x187/0x290 [ 244.160405][ T5881] bdev_open+0x2c7/0xe40 [ 244.165147][ T5881] blkdev_open+0x34e/0x4f0 [ 244.170068][ T5881] do_dentry_open+0x97f/0x1530 [ 244.175335][ T5881] vfs_open+0x82/0x3f0 [ 244.179911][ T5881] path_openat+0x1de4/0x2cb0 [ 244.185004][ T5881] do_filp_open+0x20b/0x470 [ 244.190013][ T5881] do_sys_openat2+0x11b/0x1d0 [ 244.195193][ T5881] __x64_sys_openat+0x174/0x210 [ 244.200542][ T5881] do_syscall_64+0xcd/0x4c0 [ 244.205816][ T5881] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.212225][ T5881] [ 244.212225][ T5881] other info that might help us debug this: [ 244.212225][ T5881] [ 244.222429][ T5881] Chain exists of: [ 244.222429][ T5881] sk_lock-AF_INET6 --> &cmd->lock --> &nsock->tx_lock [ 244.222429][ T5881] [ 244.235095][ T5881] Possible unsafe locking scenario: [ 244.235095][ T5881] [ 244.242524][ T5881] CPU0 CPU1 [ 244.247868][ T5881] ---- ---- [ 244.253207][ T5881] lock(&nsock->tx_lock); [ 244.257603][ T5881] lock(&cmd->lock); [ 244.264080][ T5881] lock(&nsock->tx_lock); [ 244.270995][ T5881] lock(sk_lock-AF_INET6); [ 244.275485][ T5881] [ 244.275485][ T5881] *** DEADLOCK *** [ 244.275485][ T5881] [ 244.283601][ T5881] 4 locks held by udevd/5881: [ 244.288260][ T5881] #0: ffff888142b07358 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_open+0x41a/0xe40 [ 244.297576][ T5881] #1: ffff8880264fc790 (set->srcu){.+.+}-{0:0}, at: blk_mq_run_hw_queue+0x22b/0x670 [ 244.307045][ T5881] #2: ffff8880266b0178 (&cmd->lock){+.+.}-{4:4}, at: nbd_queue_rq+0xbd/0x12d0 [ 244.316003][ T5881] #3: ffff888079273470 (&nsock->tx_lock){+.+.}-{4:4}, at: nbd_queue_rq+0x423/0x12d0 [ 244.325467][ T5881] [ 244.325467][ T5881] stack backtrace: [ 244.331352][ T5881] CPU: 1 UID: 0 PID: 5881 Comm: udevd Not tainted syzkaller #0 PREEMPT(full) [ 244.331369][ T5881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 244.331377][ T5881] Call Trace: [ 244.331383][ T5881] [ 244.331389][ T5881] dump_stack_lvl+0x116/0x1f0 [ 244.331412][ T5881] print_circular_bug+0x275/0x350 [ 244.331430][ T5881] check_noncircular+0x14c/0x170 [ 244.331449][ T5881] __lock_acquire+0x12a6/0x1ce0 [ 244.331469][ T5881] lock_acquire+0x179/0x350 [ 244.331485][ T5881] ? inet_autobind+0x1a/0x1a0 [ 244.331502][ T5881] lock_sock_nested+0x41/0xf0 [ 244.331521][ T5881] ? inet_autobind+0x1a/0x1a0 [ 244.331534][ T5881] inet_autobind+0x1a/0x1a0 [ 244.331547][ T5881] inet_send_prepare+0x31b/0x530 [ 244.331563][ T5881] inet_sendmsg+0x43/0x140 [ 244.331578][ T5881] sock_sendmsg+0x37f/0x470 [ 244.331593][ T5881] ? __pfx_sock_sendmsg+0x10/0x10 [ 244.331611][ T5881] ? add_lock_to_list+0x9d/0x130 [ 244.331626][ T5881] __sock_xmit+0x1e7/0x4f0 [ 244.331645][ T5881] ? __pfx___sock_xmit+0x10/0x10 [ 244.331662][ T5881] ? debug_object_activate+0x2ec/0x4c0 [ 244.331684][ T5881] nbd_send_cmd+0x8e4/0x1c90 [ 244.331696][ T5881] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 244.331714][ T5881] ? lockdep_hardirqs_on+0x7c/0x110 [ 244.331733][ T5881] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 244.331752][ T5881] ? __pfx_nbd_send_cmd+0x10/0x10 [ 244.331764][ T5881] ? __pfx___mod_timer+0x10/0x10 [ 244.331782][ T5881] ? __pfx___mutex_lock+0x10/0x10 [ 244.331804][ T5881] ? blk_mq_start_request+0x311/0x970 [ 244.331820][ T5881] nbd_queue_rq+0x940/0x12d0 [ 244.331835][ T5881] ? __pfx_nbd_queue_rq+0x10/0x10 [ 244.331849][ T5881] ? lockdep_unlock+0x64/0xe0 [ 244.331861][ T5881] ? __lock_acquire+0x107f/0x1ce0 [ 244.331878][ T5881] blk_mq_dispatch_rq_list+0x416/0x1e20 [ 244.331896][ T5881] ? sbitmap_find_bit+0x4c0/0x6f0 [ 244.331914][ T5881] ? sbitmap_get+0x1e5/0x360 [ 244.331928][ T5881] ? __pfx_blk_mq_dispatch_rq_list+0x10/0x10 [ 244.331947][ T5881] ? __blk_mq_alloc_driver_tag+0x4f7/0x7a0 [ 244.331964][ T5881] __blk_mq_sched_dispatch_requests+0xcb7/0x15f0 [ 244.331989][ T5881] ? __pfx___blk_mq_sched_dispatch_requests+0x10/0x10 [ 244.332009][ T5881] blk_mq_sched_dispatch_requests+0xd8/0x1b0 [ 244.332026][ T5881] blk_mq_run_hw_queue+0x239/0x670 [ 244.332040][ T5881] ? blk_mq_run_hw_queue+0x22b/0x670 [ 244.332055][ T5881] blk_mq_dispatch_list+0x514/0x1310 [ 244.332074][ T5881] ? __pfx_blk_mq_dispatch_list+0x10/0x10 [ 244.332092][ T5881] ? __pfx_update_io_ticks+0x10/0x10 [ 244.332109][ T5881] blk_mq_flush_plug_list+0x130/0x600 [ 244.332127][ T5881] ? trace_block_plug+0x17f/0x200 [ 244.332140][ T5881] ? blk_add_rq_to_plug+0x30a/0x540 [ 244.332157][ T5881] ? __pfx_blk_mq_flush_plug_list+0x10/0x10 [ 244.332175][ T5881] ? blk_mq_submit_bio+0x7b2/0x2a10 [ 244.332193][ T5881] __blk_flush_plug+0x2c4/0x4b0 [ 244.332209][ T5881] ? __pfx___blk_flush_plug+0x10/0x10 [ 244.332225][ T5881] ? __lock_acquire+0xb97/0x1ce0 [ 244.332243][ T5881] __submit_bio+0x545/0x690 [ 244.332258][ T5881] ? __pfx___submit_bio+0x10/0x10 [ 244.332276][ T5881] ? ktime_get+0x200/0x310 [ 244.332291][ T5881] ? lockdep_hardirqs_on+0x7c/0x110 [ 244.332310][ T5881] ? submit_bio_noacct_nocheck+0x660/0xd30 [ 244.332326][ T5881] submit_bio_noacct_nocheck+0x660/0xd30 [ 244.332343][ T5881] ? __pfx_submit_bio_noacct_nocheck+0x10/0x10 [ 244.332361][ T5881] ? __pfx___might_resched+0x10/0x10 [ 244.332376][ T5881] submit_bio_noacct+0xc20/0x1ed0 [ 244.332394][ T5881] block_read_full_folio+0x4db/0x850 [ 244.332413][ T5881] ? __pfx_blkdev_get_block+0x10/0x10 [ 244.332431][ T5881] ? __pfx_blkdev_read_folio+0x10/0x10 [ 244.332447][ T5881] filemap_read_folio+0xc5/0x2a0 [ 244.332464][ T5881] ? __pfx_filemap_read_folio+0x10/0x10 [ 244.332479][ T5881] ? __filemap_get_folio+0x32b/0xc30 [ 244.332497][ T5881] do_read_cache_folio+0x263/0x5c0 [ 244.332514][ T5881] ? __pfx_blkdev_read_folio+0x10/0x10 [ 244.332532][ T5881] read_part_sector+0xd4/0x370 [ 244.332547][ T5881] adfspart_check_ICS+0x93/0x940 [ 244.332561][ T5881] ? snprintf+0xc7/0x100 [ 244.332579][ T5881] ? __pfx_snprintf+0x10/0x10 [ 244.332597][ T5881] ? __pfx_adfspart_check_ICS+0x10/0x10 [ 244.332613][ T5881] ? __pfx_adfspart_check_ICS+0x10/0x10 [ 244.332628][ T5881] bdev_disk_changed+0x720/0x1520 [ 244.332645][ T5881] ? __pfx_bdev_disk_changed+0x10/0x10 [ 244.332658][ T5881] ? __pfx_ilookup+0x10/0x10 [ 244.332678][ T5881] blkdev_get_whole+0x187/0x290 [ 244.332693][ T5881] bdev_open+0x2c7/0xe40 [ 244.332709][ T5881] blkdev_open+0x34e/0x4f0 [ 244.332727][ T5881] do_dentry_open+0x97f/0x1530 [ 244.332744][ T5881] ? __pfx_blkdev_open+0x10/0x10 [ 244.332762][ T5881] vfs_open+0x82/0x3f0 [ 244.332781][ T5881] path_openat+0x1de4/0x2cb0 [ 244.332799][ T5881] ? __pfx_path_openat+0x10/0x10 [ 244.332816][ T5881] do_filp_open+0x20b/0x470 [ 244.332831][ T5881] ? __pfx_do_filp_open+0x10/0x10 [ 244.332851][ T5881] ? alloc_fd+0x471/0x7d0 [ 244.332867][ T5881] do_sys_openat2+0x11b/0x1d0 [ 244.332886][ T5881] ? __pfx_do_sys_openat2+0x10/0x10 [ 244.332906][ T5881] ? __sys_recvmsg+0x189/0x220 [ 244.332925][ T5881] ? __pfx___sys_recvmsg+0x10/0x10 [ 244.332945][ T5881] __x64_sys_openat+0x174/0x210 [ 244.332956][ T5881] ? __pfx___x64_sys_openat+0x10/0x10 [ 244.332971][ T5881] do_syscall_64+0xcd/0x4c0 [ 244.332995][ T5881] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.333009][ T5881] RIP: 0033:0x7f727f0a7407 [ 244.333020][ T5881] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff [ 244.333032][ T5881] RSP: 002b:00007ffe376b9570 EFLAGS: 00000202 ORIG_RAX: 0000000000000101 [ 244.333044][ T5881] RAX: ffffffffffffffda RBX: 00007f727f7d2880 RCX: 00007f727f0a7407 [ 244.333053][ T5881] RDX: 00000000000a0800 RSI: 000055e8080e10f0 RDI: ffffffffffffff9c [ 244.333061][ T5881] RBP: 000055e8080c9910 R08: 0000000000000000 R09: 0000000000000000 [ 244.333069][ T5881] R10: 0000000000000000 R11: 0000000000000202 R12: 000055e8080ec4d0 [ 244.333077][ T5881] R13: 000055e8080d7190 R14: 0000000000000000 R15: 000055e8080ec4d0 [ 244.333089][ T5881] [ 245.004028][ T5881] block nbd0: Send control failed (result -22) [ 245.037577][ T5881] block nbd0: Request send failed, requeueing [ 245.044231][ T5871] block nbd0: Receive control failed (result -32) [ 245.044268][ T6347] block nbd0: Dead connection, failed to find a fallback [ 245.057916][ T6347] block nbd0: shutting down sockets [ 245.063161][ T6347] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 245.072417][ T6347] Buffer I/O error on dev nbd0, logical block 0, async page read [ 245.080465][ T5881] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 245.089709][ T5881] Buffer I/O error on dev nbd0, logical block 0, async page read [ 245.097879][ T5881] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 245.110821][ T5881] Buffer I/O error on dev nbd0, logical block 0, async page read [ 245.118801][ T5881] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 245.128774][ T5881] Buffer I/O error on dev nbd0, logical block 0, async page read [ 245.136895][ T5881] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 245.149070][ T5881] Buffer I/O error on dev nbd0, logical block 0, async page read [ 245.157701][ T5881] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 245.166763][ T5881] Buffer I/O error on dev nbd0, logical block 0, async page read [ 245.174583][ T5881] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 245.183630][ T5881] Buffer I/O error on dev nbd0, logical block 0, async page read [ 245.191485][ T5881] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 245.200555][ T5881] Buffer I/O error on dev nbd0, logical block 0, async page read [ 245.208350][ T5881] ldm_validate_partition_table(): Disk read failed. [ 245.215011][ T5881] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 245.224022][ T5881] Buffer I/O error on dev nbd0, logical block 0, async page read [ 245.232458][ T5881] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 245.241508][ T5881] Buffer I/O error on dev nbd0, logical block 0, async page read [ 245.249463][ T5881] Dev nbd0: unable to read RDB block 0 [ 245.255282][ T5881] nbd0: unable to read partition table [ 245.265874][ T5881] ldm_validate_partition_table(): Disk read failed. [ 245.272737][ T5881] Dev nbd0: unable to read RDB block 0 [ 245.278691][ T5881] nbd0: unable to read partition table