last executing test programs: 11.214053061s ago: executing program 1 (id=507): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) r0 = getsid$auto(0xffffffffffffffff) prctl$auto(0x1003b, 0x8000000000000000, r0, 0x5, 0x7) r1 = open(&(0x7f0000000000)='&&\x00', 0x595002, 0x408) linkat$auto(r1, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)='&&\x00', 0x1400) 11.074256615s ago: executing program 1 (id=509): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop11\x00', 0x181601, 0x0) (async) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000a40)='/dev/bus/usb/035/001\x00', 0x48002, 0x0) ioctl$auto_BLKFRASET(r0, 0x1264, 0x0) (async) ioctl$auto_USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000c00)={0x9, 0xbb, 0x24000, 0x6d0, 0x0, 0x2, 0x100, 0x4, @stream_id=0x5, 0xc0, 0x3, 0x0}) (async) ioctl$auto_USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000001040)={0x80, 0x6, 0x2fd, 0x1, 0x101, 0x0, &(0x7f0000000040)}) 10.855192267s ago: executing program 1 (id=511): r0 = openat$auto_clk_dump_fops_(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/clk/clk_orphan_dump\x00', 0x20a042, 0x0) openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/bluetooth/hci1/force_devcoredump\x00', 0x400001, 0x0) copy_file_range$auto(r0, &(0x7f0000000080)=0x6, 0xffffffffffffffff, &(0x7f0000000200), 0xaf7, 0x10001) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000002080)='/dev/sequencer2\x00', 0x1, 0x0) ioctl$auto_SNDCTL_MIDI_INFO(r1, 0xc074510c, &(0x7f00000020c0)="639ba264a968f05a3ba9b5ef2aac5d6aa8bca3f891774c61ddbb35524f057da2d24989e7") r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0) write$auto(r2, &(0x7f0000000100)='/dev/audio1\x00\xf6\x89\t\xb6t\xae\x12Q\x15E O\xd8\x8d/\xd9\x13\v_\xbcTd\xe0DS\xef?f\xf1ou\xa4W&^\x80\xb2}\x96K\x16*\xa0\x10[8\xa3\x86\x9a3\xc1\xf7\x89x; 4\x8d,U\xa2\xd8\xd5\xfd\xf8\xd8\xb0\xe0W\xad\xe7\x05l*\xc5Z\x8d\xc88}n\x81\tK\x00\x12\xae\xff\xe5\xf1\xb5w\x81$\xd4\xca\xbe&\x195\xc1\xda>\x8c\x89P\xa1\xdb\xb4g9E\xc8\x92\xf6m\x1c\x9b\xebAzeI\xcb\x16f\xc0@\x978x\xbe\x15\'\xc6d}\xc2\xd3\x9f\xc5F8\x15f\x90\xa2\x84', 0x6051) 9.199337657s ago: executing program 0 (id=520): openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sysvipc/shm\x00', 0x0, 0x0) r0 = prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0) (async, rerun: 64) r1 = prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0) (rerun: 64) mprotect$auto(0x110c238000, 0x1, 0x3) (async) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) (async) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/vivid.0/video4linux/video62/name\x00', 0x100, 0x0) (async) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xb02, 0x0) sendfile$auto(r3, r3, &(0x7f0000000100)=0x9, 0xffff) (async) inotify_init1$auto(0x3000000000000) socket$nl_generic(0x10, 0x3, 0x10) (async) timerfd_settime$auto(r0, 0xd8bd, &(0x7f00000000c0)={{0x2, 0x6}, {0x0, 0x3ff}}, &(0x7f0000000140)={{0xffffffffffffffff}, {0x4, 0x7fff}}) (async, rerun: 32) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, 0x0, 0x86140, 0x0) (rerun: 32) close_range$auto(0x2, 0xffffffffffffffff, 0x0) (async) ioctl$auto_BLKRRPART(r1, 0x125f, 0x0) (async) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) (async, rerun: 64) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x8100, 0x0) (rerun: 64) ioctl$auto(0x3, 0x4020aeb2, r2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x40000) (async) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) write$auto(r5, &(0x7f0000000300)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdb\x89T\x1d\xaf\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4\x15\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb_\xea\a\x00\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd3P\xe8\xcb?(k8\x83\xcf\xc5D\xcc\xe2\xdb0P!\xa7fs\xdfK\xd2\as\x8d\x8d1\x94\xe3\xadw\xb3\xaa\x174~/\xd1\xbf\xbeo\xafw\x89\bH\xf3\xf4J\x9b\xb5e\x1f\x03\x06\x85\xda\xd7\x16Fe9n\x1ebn\xb6\xf1\xf3w\x8cz\xc1M\xd6\xb3\v\xe3\f\xc5\x91\xcfm8X[\x7f\x7f\"\xe6&}\xd9q\x1dH\xcb\xb9\xa7\xc2\xf8\xc4\x98\x170L-J\xf8\xae\x1fXM\xb6\x11\xd0\xc2l\x8e\xbb\x8b\xb3\xc9\x1d!\xa5z\x8c{\x18d\x90%2\x06;\x7f\xafs\x8a\xab\b\xe6\xf6\x16\x8b\x93\x87\"\xde,e\x96\t\xb0bs\x9e\xc9\xac\x00\x00\x00\xaa\xb7{=gjn7\x02\xcf\xcc\x19C\x8d\xbb\xd3\xfc\xd1\xb5\xa7\xe1\x92\xb0\xfbQ`\f\xbb3o\x1a~\xf0\'@\xdet\xe7\x10\xfa\xd1\x84\x90>\xba\r\xb4\xb0w\x93\x0f$\x85a$\xfb\xf2x\xa2\xed8\xb4-I5{\xed\xf3[\xc7\xef\f\xc3\x82h\x8b\x96\x8d\xc8\x1a\x91|n\xa8\xa0\x04\xd3`R\xccM0\xb3%$\x1e{\x05$T\x17x}\xfd\xfd\xc9\xd5\xa1\x89;\x9f\tY&\x93e\x05f\xe3\xc0\xab\xe8\x9a\xeb$\xcc\xc7\x1dn\xf7\xbdk\xae\xf4', 0x100000a3d9) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x7ffc) (async, rerun: 32) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32) madvise$auto(0x0, 0x2003f2, 0x15) (async) madvise$auto(0x0, 0x200007, 0x19) pread64$auto(0xffffffffffffffff, 0x0, 0x100000002, 0x100000001) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) 8.915183337s ago: executing program 0 (id=521): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001480), r0) sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000001cc0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)={0x24, r1, 0x200, 0x70bd27, 0x25dfdbfc, {}, [@ETHTOOL_A_CHANNELS_TX_COUNT={0x8, 0x7, 0x5d4}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0xf2b0dd16cfb63227}, 0x800) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon31\x00', 0x0, 0x0) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000040)="8c9700089d1b208365d5b5d112dbab029ed13881d2f2c7ba2eb01c3db79f77fdc2bb50c64a925009dff4cd1aca925c57100112d88f73348a54396800ed598a0e5500d7c0cbb6b1e91d", 0x40000000001243}, 0x4, 0x0) r3 = setfsuid$auto(0x0) sendmsg$auto_TIPC_NL_NET_GET(r0, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x284000}, 0xc, &(0x7f0000000300)={&(0x7f0000000080)={0x26c, 0x0, 0x218, 0x70bd26, 0x25dfdbfb, {}, [@TIPC_NLA_SOCK={0x258, 0x2, 0x0, 0x1, [@typed={0x8, 0xa0, 0x0, 0x0, @pid=r2}, @nested={0x225, 0xf4, 0x0, 0x1, [@generic="a1a4674e598b898c32c71ad0b313bcd30fba5c0fe35afd5b7532fe7b204880bf6e24d2b204284de33d1b8f3cc35b2a0e21ded5ef793db86fbcfe5d76bdd971522377aae3db387e9b89335f73756873d3acff9d06f62889e2bfae2b7b510c35e8836ff63c4746e16cb690a38fc5e4bd3c3886ee7ff51d2b6aba6f9423c009eeb08cc641b629aebf77e2846dab674d42413614265c0b2c45478ae49463ea1a2ce5ef46265d9523c9f629dc97f99e25f8494e580d7b11f0f893c0b6b46e404e5fce4455e569f10e7fe31b4ed89c071764eece927559236b5c1cd0adc58fbae6a20c99105b54295fe39946c20b13ad89668eae176522dcf9ecc6ebbe618bfc", @generic="277ac9d7b4f38614181db29b297d283c524820a34b0271ab7e", @nested={0x4, 0xa7}, @generic="2e43d881054ae409553b631ba50a3bb4caf8220bd270e7332a38b67c3a7eb0a5039cc1b72e89813334e4b21345a317c2d8a65e0b5bf3b45ab3a954c3fb849f33c1a75dc4781b8e154c25b098ee35147c5f166bed0e00d6388de8bf14b20af971083263f5ab430ec748395b59b63732f26ea24cafba062dbac54a48c56e8c9d313adbe79400311931391e3ade57dcdb6ab3d9bf3cc9a1b380bdc4ce050f48eb922bf125717a21668909618434f6a0486bd4884d16dffc9964857262dc0c8523e75daa95468aa04b62242bf88f2a1c", @generic="2072e990e7b8513efaad64014b3b4d07172827e938c5f5953b0f335ea2472f0e90e315ccde00ceb818de295dc69d6510b9940a6660", @nested={0x4, 0x5f}]}, @typed={0x6, 0x69, 0x0, 0x0, @str='&\x00'}, @typed={0x8, 0x11a, 0x0, 0x0, @uid=r3}, @typed={0x14, 0xc9, 0x0, 0x0, @ipv6=@mcast2}]}]}, 0x26c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000) 8.676371774s ago: executing program 0 (id=523): unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xed\xf8\xe1\xbc\x1d\x91D\xe7R\x12\xc4\xcd\xc6\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY2@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(', 0x100000a3dd) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x281, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/queues\x00', 0x20000, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/smbd_max_send_size\x00', 0xe040, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/asound/card0/id\x00', 0xa000, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f00000002c0)=""/208, 0xd0) write$auto(0xffffffffffffffff, 0x0, 0x8) write$auto(0xca, &(0x7f00000000c0)='\x04>\x01\x01\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x96\b\'\x02\xb0\x93l\xeb\x87\r\b\x87\x14\xf8e6\x9c\f\xb6,NS\xa2(Q\xcc', 0x7f) statmount$auto(0x0, 0x0, 0x9, 0xd) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) ioctl$auto_TIOCSTI2(r4, 0x5412, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) futex$auto(0x0, 0x85, 0xa, 0x0, 0x0, 0xa0800002) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) 8.527054435s ago: executing program 2 (id=524): close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/block/nbd7/power/autosuspend_delay_ms\x00', 0x2a0a02, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x189401, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x9, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) open(&(0x7f0000000140)='./file0\x00', 0x105b00, 0x4) socket(0xa, 0x801, 0x106) listen$auto(0x3, 0x83) setsockopt$auto(0x3, 0x0, 0x1, 0x0, 0x0) sysfs$auto(0x2, 0x5, 0x0) lseek$auto(0xffffffffffffffff, 0x8a05, 0x1) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) timerfd_create$auto(0x9, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) pwrite64$auto(0xc8, &(0x7f0000000480)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\x00^\x0fo\x97\xfc\x89\v\xea\xc2\x95\xafQ;C>\x15L\x90\xad\xa4\x1648W\t\x00\x00\x001\x00\x00\x04@X\xb9_\xdd\xee\xc4\xd06,|\xfe.\xa6\x00\x00\x00\x00\x00\x00\x00\x1ch*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe4\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0J}]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\b\x00\x00\x00wU&%`_[\xde\x7f\xde8\xf7\xc1\x94\xf2\xc1\"\xact\xee\xc9\x00\x00\x00\x00\x00\x00\x00\x00\xee\xa9\x0eX\x01\xa3g\xba\x9cc\x90\xe3\xae\xa9\xde\x84v\n\xcdN\xb6\xa4\xe0\xb7e\x97 ?\xb5\xa1E=t\x96\xbd\xfd\xc5\xebn\xb7\n\xc2\xbc\xa2\xa8\x04#\x84\xa7R}\xed\x8f\x03\x01\x10wLT\vay\x12\xb63\x9e\a\x8e\xbd\x18y<\xb3\v\x14\x82\x97&\xfcm\x86\x10o\xdc\xf3x\xfd\x06\x87t\xb9$\x94,f\x9b0\xcd\xd3\r\xb1e\'\x19\xc1\xe7>*\xad\xa5+\xa8\x1c\x88\xa1\x0e[\x99\xb6LKZ\x9e\r\xd0r\xe2Ct\xc1\x99\x1b/\xc5P.aUdq\x97\x94\xb9\xa8qU\xae*g\x86\xc9\xa4\xe7\n\vh-v\"o.\xbf6\x13\tFK\x8e\xc6&&\x13\x81\x00\x8c7PS\x9c\xa3\xfb\x1d\xa9\x98\xd47\n\xa7\xd1\x10\xb3i\xd2\xa8\x18f\xb3K\x9b\x9b\x8c\xe8\x84\xa3,5-\xd6\xae\xbd\x1d\xf2o\x99\x02\x1a:w9\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x04\bl\x042\x935\x9e\xeeH\x87\xda\x10\x8f^1\x89L`\xf4[\x06\xf6\xc7\xd0#\xdb\xb1\\\xc3\xb1\xb8\xe8\xde2\xbb\xf8I\x9c\x17KI\x8c\f\x1d\xaa\xa0\xdb\xc7\x9e\x81\x90CTe\xfa\x8dq&\x17\x908\xc9T\xffm\x890\x1d\x91\xf8|t\xfd\x18\xd5\xb0\xcbH\xa7\xb6T\n\x11%\xba\x16o\r\xf6\xd0\x00\xc1\x1a\x1f\xaa8\xfbo)rtYK\"c\xe2c\xbeM\x9bT\x05\xf3\xccC\x8c\x00\xdf\x8c\x1b+\xca\x80\x00\x00\x00\xc3aB\xa0\xd7\xf8C\xde\xcc\xeaoNs\f\x86\x06<\x17\xcd\xd7\xf7\xc3\xba\xd0\xb9\x0e\xd0v\xeb\xe5$_\xd7\x9f\x8e\xac \x9a\xa3\xfd\x83(\xcc\xcd!%Kv\x13\xe9rR\xbc\xc1\x89\xd3vpA\x8a\xa6\xdc<\xaa\xdcsdCA\x19\xe3\xdf&\xea\x00f /X\xc6\x9b\xaa\x86\xa6\x8a\x80\xc0w\xb2S\xba\x9f\xef\xa5\xea\xff\x86\xb6l_M\x8b\xffj\xbc\x19\xa0\x81aBq\x85\x9b\xc4\x92\xc3\x87', 0x84, 0xe83) ioctl$auto(0x3, 0x40085400, 0x5) sendmsg$auto_TIPC_NL_NET_SET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000240)={0x14, 0x0, 0x100, 0x70bd26, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4000001}, 0x20008800) r2 = socketcall$auto(0xa, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_GET_MSRS(r1, 0x4400ae8f, &(0x7f00000000c0)={0xdd}) 7.312844925s ago: executing program 1 (id=526): r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async) socket(0x22, 0x3, 0x0) (async) ioctl$auto(0xffffffffffffffff, 0x40104d01, r0) (async, rerun: 32) socket(0x2, 0x1, 0x0) (rerun: 32) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) (async) fcntl$auto(0x3, 0x4, 0xa553) (async) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x51) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async, rerun: 64) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000002dc0)='/dev/adsp1\x00', 0x2401, 0x0) (rerun: 64) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0) write$auto(r1, &(0x7f0000000100)='/dev/audio1\x00\xf6\x89\t\xb6t\xae\x12Q\x15E O\xd8\x8d/\xd9\x13\v_\xbcTd\xe0DS\xef?f\xf1ou\xa4W&^\x80\xb2}\x96K\x16*\xa0\x10[8\xa3\x86\x9a3\xc1\xf7\x89x; 4\x8d,U\xa2\xd8\xd5\xfd\xf8\xd8\xb0\xe0W\xad\xe7\x05l*\xc5Z\x8d\xc88}n\x81\tK\x00\x12\xae\xff\xe5\xf1\xb5w\x81$\xd4\xca\xbe&\x195\xc1\xda>\x8c\x89P\xa1\xdb\xb4g9E\xc8\x92\xf6m\x1c\x9b\xebAzeI\xcb\x16f\xc0@\x978x\xbe\x15\'\xc6d}\xc2\xd3\x9f\xc5F8\x15f\x90\xa2\x84', 0x6051) (async, rerun: 32) readv$auto(0x3, 0x0, 0x1) (async, rerun: 32) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) (async) memfd_create$auto(0x0, 0xe) (async) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r2, &(0x7f0000000000)='//\xf2\x00', 0x80000000) (async, rerun: 32) mmap$auto(0x0, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x0) (async, rerun: 32) msync$auto(0x0, 0xe0, 0x6) 6.625977894s ago: executing program 2 (id=527): r0 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000080)='/proc/softirqs\x00', 0x682, 0x0) preadv$auto(r0, &(0x7f0000009180)={&(0x7f0000008180), 0x7}, 0x26, 0x80, 0x5) pwrite64$auto(0xc8, 0x0, 0xfdef, 0x0) mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000) r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/pm_trace\x00', 0x80302, 0x0) r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x81, 0x0) ioctl$auto(r3, 0x5111, 0x3) sendfile$auto(r2, r2, 0x0, 0x3) shutdown$auto(0x200000003, 0x2) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_nl80211(0x0, r1) sendmsg$auto_NL80211_CMD_SET_CHANNEL(r4, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0xa4, r5, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@NL80211_ATTR_CONTROL_PORT={0x4}, @NL80211_ATTR_SUPPORTED_SELECTORS={0x74, 0x14e, "1003e1560c76ee0bf04a91a7570086476f1765bda2098b3aa93d7599b139c1ee989192c88e48334c2258e49a8e94ea986852adc5e1d7cb6adbac67a781f14366cfe3c4a6c9adc0e9ad0cdd8bebd485f74b3765cc83e4d973cb156d83213d48adb3ce09c5f8e7bced2b4800185c3abb74"}, @NL80211_ATTR_TDLS_DIALOG_TOKEN={0x5, 0x89, 0x6}, @NL80211_ATTR_ASSOC_MLD_EXT_CAPA_OPS={0x6, 0x151, 0x7}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x5}]}, 0xa4}, 0x1, 0x0, 0x0, 0x4044005}, 0x4800) r6 = pidfd_open$auto(0x1, 0x0) setns(r6, 0x60020000) msgctl$auto(0xffffffff, 0xffff0bc5, &(0x7f0000000100)={{0xfffffff9, 0xee00, 0x0, 0x7ff, 0x7, 0x2, 0x9}, 0x0, 0x0, 0x2, 0xfffffffffffffffe, 0x6, 0x2, 0xb, 0x2, 0x1, 0xd9, @raw=0x6}) open(&(0x7f0000000000)='./file0\x00', 0xa61c2, 0x94) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x3, 0xa) connect$auto(0x3, 0x0, 0x54) r7 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) unshare$auto(0x40000080) setsockopt$auto(0x3, 0x10000000084, 0x7c, 0x0, 0x8) getsockopt$auto(r7, 0x84, 0x7c, 0x0, &(0x7f0000000000)=0x7ffe) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) 5.695342458s ago: executing program 2 (id=529): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/oom_adj\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x1f40) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f00000000c0)={0x0, 0xffffffff}, 0x20008) r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r3 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) r4 = open(&(0x7f00000000c0)='./file0\x00', 0x62040, 0x11) close_range$auto(r3, r3, 0x5) r5 = getpgrp(r2) r6 = syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000240), r3) syz_clone3(&(0x7f0000000600)={0x21030000, &(0x7f0000000380), &(0x7f00000003c0), &(0x7f0000000400), {0x5}, &(0x7f0000000440)=""/134, 0x86, &(0x7f0000000500)=""/175, &(0x7f00000005c0)=[r5, r2], 0x2, {r3}}, 0x58) r7 = fcntl$getown(r4, 0x9) sendmsg$auto_THERMAL_GENL_CMD_THRESHOLD_ADD(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000300)={&(0x7f00000016c0)={0x124, r6, 0x200, 0x70bd2d, 0x1, {}, [@THERMAL_GENL_ATTR_TZ_TRIP_HYST={0x8, 0x8, 0x100}, @THERMAL_GENL_ATTR_CDEV_NAME={0x14, 0x12, 'veth1_to_hsr\x00'}, @THERMAL_GENL_ATTR_TZ_TRIP={0xeb, 0x4, 0x0, 0x1, [@generic="cdce5e5360a80a61590035a2ef23b668e1fd0ebfc174e6636f27a7ff88772e005389bf70cb3ca8d3e52b490b205fbccccbfa47a0d251f6a2afecabe6f83b4444e77fc255736e9f88a2484f9a07ae486571366934b05104f0c5f4359c4d4491d65015c24abcd42b687be46d8e6c8a3ff8097a7122c40c4a2bbe01fa2f607e62effd0ee099fb35d35d18efc454477a490e0547aa918d84c40488a20f63675e6b933284e38ce730814ccad1d794289992f780baae1b48f9bb709076ff5dde481686d2339af9a00aafe1259323cc60620662c1049cb4f7da0fafa1138bd1a15fa4", @typed={0x8, 0xe1, 0x0, 0x0, @pid=r7}]}, @THERMAL_GENL_ATTR_TZ_ID={0x8, 0x2, 0x6}]}, 0x124}, 0x1, 0x0, 0x0, 0x20000001}, 0x20000011) sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(0xffffffffffffffff, &(0x7f0000000a40)={&(0x7f0000000080), 0xc, &(0x7f0000000a00)={&(0x7f00000004c0)={0x50c, r6, 0x510, 0x70bd26, 0x25dfdbfd, {}, [@THERMAL_GENL_ATTR_CPU_CAPABILITY_EFFICIENCY={0x8, 0x17, 0x401}, @THERMAL_GENL_ATTR_THRESHOLD={0x89, 0x18, 0x0, 0x1, [@nested={0x24, 0xf8, 0x0, 0x1, [@typed={0x1f, 0x10f, 0x0, 0x0, @str='/proc/thread-self/fail-nth\x00'}]}, @generic="09981f2dfa0855a9c93fabcea7f510b82c58563d7fe558d8dd11b59c48da16f4854833158fd65727c0e72056e6d2a81ae86c5e07499615123c0d1e7390abb13a559c828ba55cbacbc2436004ff0efb1937d882af23b5a14e8753106091f9f89838"]}, @THERMAL_GENL_ATTR_TZ_MODE={0x8, 0x9, 0x6}, @THERMAL_GENL_ATTR_THRESHOLD_TEMP={0x8, 0x19, 0x401}, @THERMAL_GENL_ATTR_TZ={0x3c3, 0x1, 0x0, 0x1, [@nested={0x28, 0x5e, 0x0, 0x1, [@typed={0x1f, 0xc5, 0x0, 0x0, @str='/proc/thread-self/fail-nth\x00'}, @nested={0x4, 0x49}]}, @nested={0xbe, 0x93, 0x0, 0x1, [@generic, @generic="0d98f9a0d16e7af1bc716195ea82f8da58e5ad1f7ec9c0f8ef12da8bbe15adde1c3b0733d0730ca94e3489b7cd1a8a580244c43b5565d2bd70b61488a571ba36636d5c6f58372e35bc1fa2dfbaad601fbf9e2cea0eb2f3aed13ef447c74183af5f983355842470757f01c98d6ff142de20c6bd21fee90fbfa9a2cb197190fd294e100f24a63c6f389f73edc752ca9c16382ed53dcddc0bacfe7bde5d22b89a8a1781a53297d2905846b054404f7d", @nested={0x4, 0x88}, @typed={0x8, 0xd7, 0x0, 0x0, @fd=r0}]}, @generic="7e0c940b58a55400d246423b205d433f068203ae899eca977b56e5f0ec8b11f1e477d3afd5a205bb122ce0a47a12d8a27fa96d5917b5e84e8832c05c04e835290e136d5615ed07bc27832858c64347cd3d45e10a0359", @generic="f479e7bd3caaf5ed8793c86ea1dcd60349f0b4cd11676a69fdd37c65456c8098bd60ce7059f51db3fd61c8a18d6dc1bb3bb51e77794258c12486c6fce9be6f7483afb7bf326a9078b8681db3e57f83028ea9440ac00470acb36a6d3745d9124b18d65fb55b160b7df995a070a27f051e859abfd5f41a74dd03ff6d8d05b34b28b61f0db7b3e0733337ec2019c46091dae60210f0000ff6723b0a225ef41a5797b4", @generic="f7a5a6e36a410aa024a8b50bcc5119c3453a9e2927277c77b7ac9d96e7597f493fd1d4ebb7bd584a0c2a70f33521a8334c8f1100df900a8757512870b37b68f78b72699b7842a53de601de2020cd6a9b82348739d0f1970a78e11171ad49b2d5cecde1679c29fca0", @nested={0x177, 0x66, 0x0, 0x1, [@nested={0x4, 0x117}, @typed={0x8, 0x5a, 0x0, 0x0, @pid=0xffffffffffffffff}, @generic="f51eb2cbc0955b6973fbe7b378ad16b362fb3b321a0a33e57bb37e6763958a437d48186f95f36f5084588c2d51c233fcd7db8ec8aef82ea98caaabd0bcceeae85bccd141e167f110c8d9ad3bdba43c9f8fa17a939da22c579bb8a6faf9f413557ef4642292d01f769de8d10659e7cb9d5ff252d49202c8435dde291740577abfda88a3d0327b512e476117eeaa403fe1", @generic="b56155fcba4494b849946237dc6bf86b5e0239628be1dfbac83ae576e882c9ba64f5e52ee75f08adff390abc715694c6b620d03338631b760879fdf34f52d8b294cddb493c5e79b357b4e86a10190ed4646a4ab39b6bf782e51d4036b0d1da5a0d7158bd35a84d68cb37caf7e5477567b488762bbe1ff100b20152e09cc51f2dc63817ab487030226bdbd07359fb30398014250d8c23975472e04a53c6ed7236a0035d61112d5a5cd61d0690446442448c9c2b5d74160d4369318a3f44dd7880cea3a9097e7d8a95e9f0f91cb5e2e8639f1a639f16150b"]}]}, @THERMAL_GENL_ATTR_CDEV={0x8f, 0xe, 0x0, 0x1, [@generic="b08404f621eb5fb09ef28ca1d09e063e00390d1c6f2942eda00cd5d6e5059d65d3ebf3ae4c7f9c886a1533fb8beedbb5cee2026e90bd6e68a219ebbddf2ca24b235327eb72b9a1cb4ad576f8793cf56e17442301b69f62aee072b416fd7831f72b7058e01826435a92c0398af002d9bb495301e9fb109bb13332aae1edfa8c21c395bfc5dcebb707c57483"]}]}, 0x50c}, 0x1, 0x0, 0x0, 0x1}, 0x2004) r8 = semctl$auto_GETPID(0x0, 0x2e3, 0xb, 0x10) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x111a80, 0x0) getpgid(r8) syz_open_procfs$namespace(r8, &(0x7f0000000480)='ns/pid\x00') 5.490916785s ago: executing program 0 (id=530): unshare$auto(0x40000080) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) gettid() r0 = socket(0x11, 0x3, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_tk_debug_sleep_time_fops_(0xffffffffffffff9c, 0x0, 0x0, 0x0) rt_sigqueueinfo$auto(0x0, 0x20000009, &(0x7f00000000c0)={@_si_pad}) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x8, 0x8000) r2 = socket(0x10, 0x3, 0x0) setreuid$auto(0x9, 0x1) getpriority$auto(0x2, 0x9) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x4004) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) r3 = socket(0xa, 0x2, 0x3a) setsockopt$auto(r3, 0x29, 0x18, &(0x7f0000000040)='!\x00', 0x1ff) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r4 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) write$auto(r4, &(0x7f0000000040)='\x00', 0x7fffffff) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) pwrite64$auto(0xc8, 0x0, 0xfdef, 0x0) sendmsg$auto_ETHTOOL_MSG_PHY_GET(0xffffffffffffffff, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000003240)=ANY=[@ANYBLOB="20000000000000000397639e0400000022dfc3eb111116823d61f301429059fd76c6f9e9476668fec38b4a7e1df9ca81dfe82043f95cc5ecd74c44890cc32d43e2b006aed22db5cea0a1aa50b8ec2cb34e3c5f90c200410100bf48a21950561442c9b67909b59d654efa1a33c7e2bbac449f91a5785362c5441cc1cc419420", @ANYBLOB="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", @ANYBLOB="010326bd7000ffdbdf252d", @ANYRES64=r1, @ANYRES32=r0, @ANYRES32=r2, @ANYRES8=r1], 0x20}, 0x1, 0x0, 0x0, 0x2404c012}, 0x80) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=ANY=[@ANYRESHEX=r5, @ANYBLOB="1f3915c8ceafaf055c0f6fffdcd6d6076b251eb12a5f19bdeb9aabe05054df4074e986b2dcc24f2ae855ba93b12b93fef873ba1abebb0fdbc3629c6b4f73"], 0x1ac}, 0x1, 0x0, 0x0, 0x80}, 0x4014) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc1}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x100, 0x0) shmget$auto(0x8, 0x10565, 0x7ff) shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa) shmctl$auto(0x0, 0x0, 0xfffffffffffffffd) shmat$auto(0x0, &(0x7f0000000000)='(\x00', 0xfffffffb) ioctl$auto_BLKROSET(r4, 0x125d, 0x0) 5.024571846s ago: executing program 2 (id=531): close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0) landlock_restrict_self$auto(0xffffffffffffffff, 0x4) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0xb60) r1 = socket(0x6, 0x5, 0x84) r2 = gettid() prlimit64$auto(r2, 0x6, 0x0, 0x0) mbind$auto(0x2000, 0x100000008, 0x2100000000, 0x0, 0x6, 0x2) mprotect$auto(0x0, 0x806121, 0x8) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) move_pages$auto(0x0, 0x4, 0x0, 0x0, 0x0, 0x400000) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x9, 0x0, 0xffffffff, 0x2) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f0000000240)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1d\x02\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xc5\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc\xf3\xb8\xdd\x92\xd2\x1a\x02\xe4r\xe5\xce\xe6\x05\x81N\x86R\x16\x98\x880\x9eWS\xa3\xc2\xbd\f\xe2\xa8\xfb]\x1bfH\xca\x04\xd5\xa4\xc5]i\xc3TQ\x0fd\xec\xc0\x853D\xd3\xf0\xde', 0x100000a3d9) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0) writev$auto(r4, &(0x7f0000000080)={0x0, 0x1000}, 0x3) syz_genetlink_get_family_id$auto_smbd_genl(0x0, 0xffffffffffffffff) sendmsg$auto_KSMBD_EVENT_LOGIN_RESPONSE(0xffffffffffffffff, 0x0, 0x30004850) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) ioctl$auto(0xffffffffffffffff, 0x4b47, 0x1) newfstatat$auto(r0, &(0x7f00000000c0)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000340)={0xcf68, 0x7, 0x6, 0x0, 0xee00, 0xffffffffffffffff, 0x0, 0x1000, 0x4, 0x2000000001f, 0x7d, 0x0, 0x1, 0x1, 0xf7fffffffffffff9, 0x3, 0x1000}, 0x1ff) msgctl$auto(0x4, 0x10000, 0x0) landlock_restrict_self$auto(r1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x7) 3.830798273s ago: executing program 2 (id=534): r0 = socket(0xa, 0x3, 0xff) setsockopt$auto(r0, 0x3, 0x2000402, 0x0, 0x7) (async) setsockopt$auto(r0, 0x3, 0x2000402, 0x0, 0x7) setsockopt$auto(0x400000000000003, 0x29, 0x16, 0x0, 0x20056b) (async) setsockopt$auto(0x400000000000003, 0x29, 0x16, 0x0, 0x20056b) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) r1 = socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x3a) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) (async) r2 = open(0x0, 0x22240, 0x155) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) ioctl$auto_BLKRRPART(r3, 0xc0401289, 0x0) open(0x0, 0x22240, 0x155) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) (async) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x1a) rt_sigqueueinfo$auto_SIGCONT(0xffffffffffffffff, 0x12, 0x0) (async) rt_sigqueueinfo$auto_SIGCONT(0xffffffffffffffff, 0x12, 0x0) socket(0xa, 0x3, 0x3b) (async) socket(0xa, 0x3, 0x3b) setsockopt$auto(0xffffffffffffffff, 0x5, 0x4e, &(0x7f0000000180)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91_\vBj\x0eQ\xce\x16\'C\x8c\x01\x80\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\x00\x00\x00\x00\xe4\xa5\xfe\xb5', 0x10000110) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000280), r1) (async) r4 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000280), r1) sendmsg$auto_NL802154_CMD_DEL_SEC_KEY(r2, &(0x7f0000000600)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000005c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="40dc70e0b26a039ee51aba6462fa9c553aad41959bac710a0081fd1ce0a859e37a2a3fd4b064c2dbf80056ce6cfff6e0340dc5393c1d22a4b2c92233db8e92205e509433aeb7224420d3", @ANYRES16=r4, @ANYBLOB="010727bd7000fedbdf2518000000050026008100000005001200040000002cfd2d8005001a000700000008000d000000000005000f0006000000"], 0x40}, 0x1, 0x0, 0x0, 0x40404}, 0x4008000) bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@generic={0x10, "02d0ac0c00e435826339c7328903"}, 0x6a) (async) bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@generic={0x10, "02d0ac0c00e435826339c7328903"}, 0x6a) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_ILA_CMD_GET(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000003c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB="0f072dbd701f7831f2896d2d2939"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x4004000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) sendmsg$auto_ILA_CMD_GET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="00042ebd7000fddbdf2503000000"], 0x14}, 0x1, 0x0, 0x0, 0x40081}, 0x800) 2.618439661s ago: executing program 2 (id=536): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/xfrm_stat\x00', 0x40, 0x0) pread64$auto(r0, &(0x7f0000000000)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xba*G\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90~Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1\x00'/232, 0x3ef, 0x9) (async) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 64) close_range$auto(0x2, 0x8, 0x0) (async, rerun: 64) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) unshare$auto(0x40000080) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) listen$auto(0x3, 0x81) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) (async) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async, rerun: 64) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async, rerun: 64) madvise$auto(0x0, 0x2003f2, 0x15) (async) r2 = syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="010031bd7000fddbdf250c00000092fbf5bdb3aafcf85a23ee04188da8baa4008f42493e2015bf26c641065b700bc2021245fbbe3f93106ce5defa9fc834d6c6e5b3ceefc4151e4dca45980b747a354d97622c1c3ee0cf687bf7984131109641d547639a2822759b7c7bb4982f2092ef72e7ccab22a503f9fdbb1c52957bde65b4bcae756ea4e8ea304263bb0ddcc533adcb62e109b7391ff30e90d87fd2cc3e2ae74d15b41020dd38d3cbfdfcdffb3c7fcb96601fddac671895b882"], 0x14}}, 0x24048084) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) (async) unshare$auto(0x20000080) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) (async) sendmsg$auto_NL80211_CMD_DEL_TX_TS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000200)={&(0x7f0000000700)=ANY=[@ANYBLOB="64010000", @ANYRES16=0x0, @ANYBLOB="00012cbd7000ffdbdf256a00000015000700f6ff64389b62872b26f97bc80d052696ab000000220018003eed9b1465d94ee937d70efbcdd93f95cb35b0d61936ae811703d63b6d71000008012c80fc00028014000080080001000000000008000100010000000c000080080001000a000000240000800800020002000000080001000100000008000100480000000800020009000000040000803c00008001000000010400000800020000020000080001000700000008000200001000000800010008000000080001000700000008000200030000001c000080080002000000000008000100fdffffff080001006d1effff0c000080080002005204000024000180080001007f000000e20002000700000008000200040000000800020002000000040000802400008008000200010400000800ef000900000008000200190b0000080002002000000008000100070000000600fb000300000004008c00"], 0x164}, 0x1, 0x0, 0x0, 0x24040081}, 0x40094) (async, rerun: 32) r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, 0x0, 0x80200, 0x0) (rerun: 32) pread64$auto(r3, &(0x7f0000000240)='\x03W\x96l\x15\x00\x00\x00\x00\xf4\x00'/21, 0x100000002, 0x100000001) (async, rerun: 64) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 64) socket(0xa, 0x1, 0x84) (async, rerun: 64) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) (async, rerun: 64) setsockopt$auto(0x3, 0x10000000084, 0x77, 0x0, 0xc) (async) prctl$auto(0x42, 0x0, 0x0, 0x1, 0x0) 2.613547567s ago: executing program 3 (id=537): eventfd$auto(0xd94) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff) r2 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000100), r0) sendmsg$auto_SMC_NETLINK_DUMP_UEID(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x12200}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, r2, 0x400, 0x70bd29, 0x25dfdbfe}, 0x14}}, 0x8000) sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x30, r1, 0x4, 0x70bd2d, 0x25dfdbfb, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x80000001}, @NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x40080}, 0x20044801) r3 = inotify_init1$auto(0x3000000000000) inotify_add_watch$auto(r3, 0x0, 0x2) inotify_add_watch$auto(r3, 0x0, 0x80000000) ioctl$auto_TUNSETCARRIER(r3, 0x400454e2, &(0x7f0000000000)=0x4) 2.406566257s ago: executing program 3 (id=538): ioctl$auto_SNDRV_TIMER_IOCTL_GINFO(0xffffffffffffffff, 0xc0f85403, &(0x7f0000000300)={{0x0, 0x2, 0x4, 0x8, 0x7}, 0x2, 0x9, "69735c1f7eaae22aac67d3fd35ef81bda40bc3c44cce9c95deef49965bbd9b51aa025901301277e5b1af6d709cfcf571d753212d302d664772decb84ed925987", "6eb045e7940c3233d108a3acba766685d1cbe14b7b9ca74cb5f09d1a5afec7b56c8b7b5f2ae8c91fcb0c56b046df736f6414cd8da91180803437c7b17c1d0f3e72fa1e573e9dcb5b34341473bf5d4fea", 0x3, 0x80000000, 0xffffffffffffffc6, 0x298, 0xcb55, "3ad6aad55a7e9b1fd36d1d3c7f31c37626f26f7e309a68e36aec6aa627d6e73f"}) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x8002, 0x0) ioctl$auto_VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000040)=0x3) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/block/nbd7/power/autosuspend_delay_ms\x00', 0x22902, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x189401, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = socketcall$auto(0xa, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0xffffffffffffffff, 0x8, 0x10000000000402) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000005c0)='/sys/devices/virtual/nfc/nfc1/rfkill1/soft\x00', 0xa3182, 0x0) read$auto(r4, 0x0, 0x4040000004) madvise$auto(0x100000000, 0x7, 0xd) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000002c0)={{0x0, 0x9, &(0x7f00000000c0)={&(0x7f0000000180)="cb7978ababe605edf078e6f2726ae03e663c080c0d6c169eec931ca2ea579299bf44495b1fe078f2e9c5586ae69caa813549", 0x1}, 0xfffffffffffffff7, 0x0, 0x5, 0x24b}, 0x800}, 0x8, 0xff) ioctl$auto(0x3, 0xae41, r2) ioctl$auto(0xc8, 0x800454d5, 0x5c8d) unshare$auto(0x6) ioctl$auto_KVM_CREATE_VM(r1, 0xae80, 0x0) pwrite64$auto(0xc8, 0x0, 0xfdef, 0x0) 1.519188842s ago: executing program 3 (id=539): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(0xffffffffffffffff, 0x4b63, 0x4) r0 = socket(0x23, 0x1, 0x3b) sendmsg$auto_NL80211_CMD_JOIN_OCB(r0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x4044061) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0xfffffffffffffffd, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x79f03432, 0xfffffffffffffffa, 0x8000) syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) ioctl$auto(0x3, 0x80004509, 0x10000000000402) r1 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa1\x00', 0x101041, 0x0) write$auto(r1, 0x0, 0x5) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0x8, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x309000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.threads\x00', 0x80500, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r3) ioctl$auto_KVM_CREATE_VM(r2, 0xae80, 0x0) ioctl$auto_USBDEVFS_GETDRIVER(0xffffffffffffffff, 0x41045508, &(0x7f00000001c0)={0x0, "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"}) close_range$auto(0x2, 0x8, 0x0) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x6, 0x2) socket(0x2, 0x1, 0x0) r4 = openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/mac80211_hwsim/hwsim13\x00', 0x8000, 0x0) ioctl$auto_FS_IOC_MEASURE_VERITY(r4, 0xc0046686, &(0x7f0000000100)={0x4, 0x469, "18677c10e36e2b05eb3a476dea5bb02d3010f727896713ae58fe"}) 1.201430392s ago: executing program 0 (id=540): mmap$auto(0x2, 0x400008, 0x7, 0x96, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = fanotify_init$auto(0x65, 0x2) r1 = socket(0x1d, 0x2, 0x2) connect$auto(0x3, 0x0, 0x55) sendmsg$auto_NL80211_CMD_SET_MESH_CONFIG(r1, &(0x7f0000000b80)={&(0x7f0000000000)={0x1d, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000b40)={&(0x7f00000004c0)={0x38, 0x0, 0x800, 0x70bd25, 0x25dfdbfe, {}, [@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "c4880080c679dac02af846b809f56c291d78f5abe4a8e2df"}, @NL80211_ATTR_SCAN_SUPP_RATES={0x4}, @NL80211_ATTR_HE_BSS_COLOR={0x4}]}, 0x38}}, 0x4000) sendto$auto(r0, &(0x7f0000000040)="3bdb0fc217ee830a6999104495e3995ee68d65c81745054b7bf9f92dca9e5409ba8670e98e69844f94f3c0044c35126adf6f719a3d5d5fbb8f3ad1824dc5fdade7892c5eaa87fd1c1932f728457222388dcc4987b01da1d5ee715b472150d5f518c9e9d8875c0b6752d8dac1d3f8d8d3df222f74d18b2129e59082ab26087bb79f2835f1dca7624077463128f5043e1318925e65507ef8813bca2eb646fa0b7a75ebad2da19ee9b10256a10e7649086f1099a2f2da0f5d2810c649520bff75adc15860e2dfacab61d9053aad8cec972ef524e41aa3523521a15116353a582c56b199c029d779971b8fee9d6d241ec1b5a2c8a1", 0x9, 0x7fffffff, &(0x7f0000000140)=@ax25={0x3, @null, 0x1}, 0xd1) 884.058633ms ago: executing program 3 (id=541): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000) write$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_datapath(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, 0x0, 0x4000, 0x0) write$auto(0x1, 0x0, 0x80000000) write$auto(0x1, 0x0, 0x7ffbfffc) munmap$auto(0x8000, 0xffffffff) r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0) membarrier$auto_MEMBARRIER_CMD_GLOBAL_EXPEDITED(0x2, 0x0, 0x8a4) fgetxattr$auto(r0, 0x0, 0x0, 0x8000000000000001) bpf$auto_BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000200)=@query={@target_ifindex, 0xe, 0xa6ad, 0x6, 0xca4b, @prog_cnt=0x3, 0x0, 0x4, 0x1, 0x644f, 0x2}, 0x122) mmap$auto(0x0, 0x1, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_hwsim_simulate_radar_(0xffffffffffffff9c, &(0x7f0000000380)='/sys/kernel/debug/ieee80211/phy4/hwsim/dfs_simulate_radar\x00', 0x8346, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) read$auto(r2, 0x0, 0x20) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) 788.129497ms ago: executing program 0 (id=542): unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xed\xf8\xe1\xbc\x1d\x91D\xe7R\x12\xc4\xcd\xc6\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY2@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(', 0x100000a3dd) mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto_SNDRV_RAWMIDI_IOCTL_STATUS64(r0, 0xc0385720, &(0x7f0000000040)={0xdafe, "44c82e2f", 0x7, 0x402, 0x10, 0xc, "ead98030e3a4af367b7104954d18d7d7"}) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r1 = inotify_init1$auto(0x3000000000000) socket$nl_generic(0x11, 0x3, 0x10) socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0x2, 0x2, 0x1) bpf$auto(0x0, &(0x7f0000000000)=@bpf_attr_4={0x16, r2, 0xf23, r2}, 0x10) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x3}, 0x8) bpf$auto(0x1, &(0x7f0000000080)=@bpf_attr_3={0x5, 0x0, 0x2, 0x5c, 0x4, 0x9, 0x80, 0xe4, 0xfffff800, "0566c8ee7c78a925488276d7697a12bd", 0x0, 0x4, r1, 0x7, 0x9, 0x4, 0x7, 0x10001, 0x0, 0x8001, @attach_prog_fd, 0x7e, 0x4, 0x1, 0x5, 0x3}, 0x5) io_uring_setup$auto(0xf0, &(0x7f0000000180)={0x6, 0x18, 0xd64, 0xc852, 0x6, 0x7, 0xffffffffffffffff, [0x1, 0x401, 0x1000], {0x7, 0x5, 0x1, 0x4, 0x95, 0xf4c, 0x7fff, 0xfffffffb, 0x65f29f6d}, {0x3, 0xadc, 0x10000, 0x0, 0x5, 0xffffffff, 0x1000, 0x54f, 0x5}}) r4 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="f2000000", @ANYBLOB='p\x00', @ANYRES16], 0x1ac}, 0x1, 0x0, 0x0, 0x24040840}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xb, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='*'], 0x1ac}}, 0x40000) sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x1, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa509}, 0x800}, 0x7, 0x4008) recvfrom$auto(r3, &(0x7f00000002c0)="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", 0x8001, 0x40, &(0x7f00000012c0)=@hci={0x1f, 0xffffffffffffffff}, &(0x7f0000001300)=0x8) 579.13269ms ago: executing program 1 (id=543): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x2, 0x4, 0x5, 0x100000001) r0 = openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/saved_tgids\x00', 0x101002, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x201, 0x0) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x10000) open(0x0, 0x4142, 0x1) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x13, 0x940, 0x1ffe0, 0x3, 0x6, 0x2, 0x9, 0x5, 0x2, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x7}, 0x1fe, 0x81) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\b\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r1 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40741, 0x0) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0) close_range$auto(0x2, 0x8, 0x0) ioctl$auto(0x3, 0x402c542d, r2) socket(0x10, 0x3, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_ETHTOOL_MSG_STATS_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000844}, 0x4) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}}, 0x40000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) write$auto(0xffffffffffffffff, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00082dbd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r2, @ANYRESOCT=r0, @ANYRES32, @ANYRESHEX=r2], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x440c0) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NFSD_CMD_VERSION_SET(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16, @ANYBLOB="010025bd7000fbdbdf25040000000008000200070000000000000000000000000000fe2e14743dab0d1d8cdddedd300772f0deeac3baab75a772724641f46beb669d0b0425fea7f5b3a562f2242c7e01d1c68220298df187"], 0x28}, 0x1, 0x0, 0x0, 0x24000001}, 0x4010) mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) 274.657559ms ago: executing program 3 (id=544): openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x189002, 0x0) statmount$auto(&(0x7f0000000040)={0x1f, @raw=0x2, 0x80000020, 0xffffffffffffffff, 0x8}, 0x0, 0x7ff7fffff000, 0x0) r0 = getpgid(0x0) process_vm_writev$auto(r0, &(0x7f0000000180)={&(0x7f0000000000), 0x20000007}, 0x200000000017, &(0x7f0000000040)={&(0x7f0000000080), 0x1}, 0x7, 0x0) connect$auto(0xffffffffffffffff, 0x0, 0x58) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, r1, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x902, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_CREATE_VM(r1, 0xc040aed5, 0x0) 27.383339ms ago: executing program 3 (id=545): mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, 0x0, 0x400c880) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) msgrcv$auto(0x2, 0x0, 0xfffffffffffffffa, 0xf, 0xc) mmap$auto(0x0, 0x400008, 0x36, 0x1009b72, 0x2, 0x8000) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/013/001\x00', 0x24a901, 0x0) r1 = io_uring_setup$auto(0x4, 0x0) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nbd8\x00', 0x8200, 0x0) ioctl$auto(r2, 0xc0c0128e, r2) read$auto(r0, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) socket(0xa, 0x3, 0x3b) connect$auto(0x3, 0x0, 0x58) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0003, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r4 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) setsockopt$auto_SO_DETACH_FILTER(r1, 0x41, 0x1b, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x4007) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_suspend_stats_fops_(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000) r5 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/mem\x00', 0x401, 0x0) sendmsg$auto_OVS_DP_CMD_GET(r4, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010027bd7000fddbdf250300000002000000", @ANYRES32=0x0, @ANYBLOB="07000100217d000008000900", @ANYRES32=0x0, @ANYBLOB="0800050000000000090001003a402d270000000008000700ffffffff"], 0x48}}, 0xc0) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) ioctl$auto_TIOCGICOUNT2(r6, 0x545d, &(0x7f0000000680)) write$auto_proc_mem_operations_base(r5, &(0x7f0000001680)="a7", 0xfffffc96) 0s ago: executing program 1 (id=546): r0 = socket(0x2, 0x1, 0x106) (async) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) bind$auto(0x3, 0x0, 0x6a) (async) sendmsg$auto_NL802154_CMD_SEND_BEACONS(r0, 0x0, 0x4000) socket(0x25, 0x1, 0x0) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async) socket(0x2, 0x1, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rpc/nfs4.idtoname/content\x00', 0x181b80, 0x0) read$auto(r1, &(0x7f0000000440)='2\x06J Nwe0\xbd\"\x8f\xe5h_b\xde\x19\xa5\x0e\xfa\xe0\xcb\xb7\xaceW\x1a\x1f\xae\xd8\xfe\x01Y\xd6\xba\xde3\xc7\xf8\x91\xda\xf6_%\xf30\xdc\x97<\xf3A\xa7\xb4\x8dj\xbd\x02\xb1}{e\xf64\xecC\x83,\xecp7j\xf8<\xc8x\xd4\xb0\x1d\b\xb08\x01\x9e\x9et\x8aa\xe1\re\xcf\x8e\x02\xeeW\xf0z\vk\x02_\xdb\x15f8>;zM\xa95\x16\xe9l\xf5\xaa\xaa\x03\x18p\x0e\xde$\xc3\xa9\xac\xc7\x98\x05<\xef\xcd@z\fx}F\x93\xe1\xbd\xb3s\x80\xc1e\xe9T1\xbf\xc8_^\a\x03\xad\ni\n~-u)\x88\x97\xed\xa7\x9b\x0f\xef\x99\x13\xdc<\xd1{\br\xd6[\xd3\xa9-(KH\b\xdfJ\xdek\xef\xc9\xd7\n\x83m\x86\xf2\a\x8d\x19\xe0\\\xf0lg?\x98\xc8\x8e\xbd2?C\xa5\x8a\xe3\xc6\xd7\x00\x14n\xb8<\xab\x96\x8d\xa1\xf4\x87\xe5\a:z\xea\xcc\xa1\x8d\xae8\x12\xa6\xb9\xd99\xaa\xc5\x10\xad\xdd\x89\xddC\xf5\xd2Q\x92\xcd\xcc\x9f\x1a\xdbR\xeeL:\x87\xb3\xb0\x84\x1bR\xf2\xe2/\xa3\x0e\x90\x98\x8c\xc0\xa4\xda+U\b\x88\xa7\x88\x1fC\xbb\xa8\xce\x0f\xd5\xdew\x99\x18G.s\x16\xfa\xf2\x96|\x1e]\xe5\xf8\xb1\x8b.}\x841\xd8\x98\xd8f86h\xab\x94\x7f\xc4<\x03\xdd\x86=\xb6\x1e@\xab6\x81\xce\xaa\xcf\xfd\x947\xc3\x86\xfe\xb7O\xd9\xa9\xb6[\xcc\xd8\xe1\xa9\x84[\xe0\xd4\x03\x90@\x03\xbe\xba\xee\xed\xe9\xb1\xd2\xf1\x8cgn\xb7m/\xf1\"\xc2\xeb\x1d\x04\xf3\xf1\x96\xf2\x00C\xf0wg\xd6\x11\x18\xb5o\x9d\xd7`\xce\x81\x9b1b\x8ce\x99*\xa3\xd2\x8dAw\xd9\xa6l\\\x17\xbb\xf6\xe2\xa2<\n\xc0\f:\x97\xff\xc6y\x05<\xa6\x81\xd92\xc9\x9e\f[\xf9\xfc\xf1ih\"J\x92\xd2\xd4\xc2\xe8\x89 \x81\xbf8C\xa9\x1at\xa1\xdc\x94\xc5\xc8K\xbb\x14h\xa9)\xaa\xf2\xda\xaf\xb1\rs\xe6\x97\x1e\xcc6\x94\xff\x1b\x8e\x98\xf7\xa0', 0x67b) (async, rerun: 32) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (rerun: 32) sendmsg$auto_NL802154_CMD_SET_SEC_PARAMS(0xffffffffffffffff, 0x0, 0x48880) shutdown$auto(0x200000003, 0x2) (async, rerun: 32) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55) (async, rerun: 32) read$auto(0xffffffffffffffff, 0x0, 0x10001) writev$auto(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x7}, 0x2) (async, rerun: 64) prctl$auto(0x26, 0x17000000, 0x0, 0x0, 0x1) (async, rerun: 64) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) (async) r2 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000180), 0x40900, 0x0) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$auto_UBI_IOCATT(r2, 0x40186f40, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) r3 = io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) (async) connect$auto(r3, &(0x7f00000018c0)=@in={0x2, 0x300, @multicast1}, 0x55) (async) close_range$auto(0x2, 0xa, 0x0) (async) socket(0x18, 0xa, 0x1) (async) socket(0xa, 0x2, 0x0) kernel console output (not intermixed with test programs): no interfaces have a carrier [ 52.636274][ T5287] 8021q: adding VLAN 0 to HW filter on device bond0 [ 52.649614][ T5287] eql: remember to turn off Van-Jacobson compression on your slave devices Starting crond: OK Starting sshd: OK syzkaller Warning: Permanently added '10.128.1.8' (ED25519) to the list of known hosts. syzkaller login: [ 72.807859][ T5613] cgroup: Unknown subsys name 'net' [ 72.958941][ T5613] cgroup: Unknown subsys name 'cpuset' [ 72.967705][ T5613] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 74.435667][ T5613] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 76.292612][ T5627] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 76.313812][ T5631] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 76.333765][ T5635] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 76.341121][ T5635] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 76.350644][ T5635] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 76.359233][ T5640] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 76.359432][ T5639] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 76.374019][ T5640] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 76.378384][ T5635] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 76.382138][ T5639] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 76.396143][ T5635] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 76.397062][ T5639] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 76.403775][ T5640] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 76.411772][ T5639] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 76.418938][ T5640] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 76.429357][ T5639] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 76.431746][ T5640] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 76.440174][ T5639] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 76.446317][ T5640] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 76.452596][ T5639] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 77.842424][ T5628] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.850275][ T5628] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.857967][ T5628] bridge_slave_0: entered allmulticast mode [ 77.866287][ T5628] bridge_slave_0: entered promiscuous mode [ 77.892595][ T5628] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.899907][ T5628] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.907348][ T5628] bridge_slave_1: entered allmulticast mode [ 77.914322][ T5628] bridge_slave_1: entered promiscuous mode [ 78.005845][ T5628] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.042025][ T5628] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.093941][ T5629] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.101194][ T5629] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.108574][ T5629] bridge_slave_0: entered allmulticast mode [ 78.115793][ T5629] bridge_slave_0: entered promiscuous mode [ 78.147750][ T5629] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.155102][ T5629] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.162212][ T5629] bridge_slave_1: entered allmulticast mode [ 78.169619][ T5629] bridge_slave_1: entered promiscuous mode [ 78.178473][ T5628] team0: Port device team_slave_0 added [ 78.192869][ T5624] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.201082][ T5624] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.208588][ T5624] bridge_slave_0: entered allmulticast mode [ 78.215623][ T5624] bridge_slave_0: entered promiscuous mode [ 78.232914][ T5628] team0: Port device team_slave_1 added [ 78.248612][ T5624] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.255904][ T5624] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.262999][ T5624] bridge_slave_1: entered allmulticast mode [ 78.270237][ T5624] bridge_slave_1: entered promiscuous mode [ 78.288391][ T5629] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.307386][ T5625] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.314515][ T5625] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.322045][ T5625] bridge_slave_0: entered allmulticast mode [ 78.329235][ T5625] bridge_slave_0: entered promiscuous mode [ 78.346880][ T5629] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.366017][ T5625] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.373343][ T5625] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.380722][ T5625] bridge_slave_1: entered allmulticast mode [ 78.387749][ T5625] bridge_slave_1: entered promiscuous mode [ 78.412924][ T5628] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.419953][ T5628] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 78.445957][ T5628] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.470231][ T5624] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.479829][ T5640] Bluetooth: hci3: command tx timeout [ 78.495766][ T5628] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.502795][ T5628] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 78.528903][ T5628] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.550961][ T5624] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.561103][ T5640] Bluetooth: hci1: command tx timeout [ 78.561154][ T5631] Bluetooth: hci0: command tx timeout [ 78.567015][ T5639] Bluetooth: hci2: command tx timeout [ 78.585852][ T5629] team0: Port device team_slave_0 added [ 78.601742][ T5625] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.624297][ T5629] team0: Port device team_slave_1 added [ 78.643246][ T5625] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.663132][ T5624] team0: Port device team_slave_0 added [ 78.671784][ T5624] team0: Port device team_slave_1 added [ 78.715462][ T5629] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.722485][ T5629] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 78.748409][ T5629] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.761263][ T5625] team0: Port device team_slave_0 added [ 78.787223][ T5629] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.794196][ T5629] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 78.821038][ T5629] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.837144][ T5625] team0: Port device team_slave_1 added [ 78.848036][ T5628] hsr_slave_0: entered promiscuous mode [ 78.854497][ T5628] hsr_slave_1: entered promiscuous mode [ 78.861794][ T5624] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.869026][ T5624] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 78.895131][ T5624] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.916093][ T5624] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.923094][ T5624] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 78.949307][ T5624] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.985821][ T5625] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.992853][ T5625] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 79.018769][ T5625] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 79.041168][ T5625] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 79.048336][ T5625] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 79.074361][ T5625] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 79.177361][ T5629] hsr_slave_0: entered promiscuous mode [ 79.183532][ T5629] hsr_slave_1: entered promiscuous mode [ 79.189767][ T5629] debugfs: 'hsr0' already exists in 'hsr' [ 79.195767][ T5629] Cannot create hsr debugfs directory [ 79.206860][ T5624] hsr_slave_0: entered promiscuous mode [ 79.213274][ T5624] hsr_slave_1: entered promiscuous mode [ 79.219617][ T5624] debugfs: 'hsr0' already exists in 'hsr' [ 79.225427][ T5624] Cannot create hsr debugfs directory [ 79.293405][ T5625] hsr_slave_0: entered promiscuous mode [ 79.299788][ T5625] hsr_slave_1: entered promiscuous mode [ 79.305978][ T5625] debugfs: 'hsr0' already exists in 'hsr' [ 79.311727][ T5625] Cannot create hsr debugfs directory [ 79.686197][ T5628] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 79.698056][ T5628] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 79.705933][ T5628] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 79.715940][ T5628] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 79.729391][ T5628] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 79.739348][ T5628] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 79.747634][ T5628] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 79.758033][ T5628] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 79.829643][ T5624] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 79.840339][ T5624] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 79.848785][ T5624] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 79.858838][ T5624] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 79.871509][ T5624] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 79.881440][ T5624] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 79.899651][ T5624] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 79.909015][ T5624] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 79.991537][ T5629] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 80.004504][ T5629] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 80.018518][ T5629] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 80.028109][ T5629] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 80.036615][ T5629] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 80.047756][ T5629] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 80.068253][ T5629] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 80.078557][ T5629] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 80.161996][ T5625] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 80.173194][ T5625] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 80.181243][ T5625] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 80.191362][ T5625] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 80.199330][ T5625] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 80.208974][ T5625] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 80.217241][ T5625] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 80.226750][ T5625] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 80.264387][ T5628] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.329503][ T5628] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.357518][ T90] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.364961][ T90] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.394008][ T90] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.401119][ T90] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.422583][ T5624] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.483623][ T5624] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.503569][ T34] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.510682][ T34] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.523839][ T5629] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.553703][ T1157] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.555663][ T5639] Bluetooth: hci3: command tx timeout [ 80.561155][ T1157] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.586899][ T5625] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.603377][ T5629] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.633431][ T34] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.635921][ T5640] Bluetooth: hci1: command tx timeout [ 80.640594][ T34] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.642631][ T5631] Bluetooth: hci0: command tx timeout [ 80.646145][ T5639] Bluetooth: hci2: command tx timeout [ 80.681751][ T90] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.688933][ T90] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.709437][ T5625] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.756474][ T90] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.763574][ T90] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.801711][ T90] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.808901][ T90] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.557010][ T5628] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.711691][ T5628] veth0_vlan: entered promiscuous mode [ 81.747559][ T5624] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.770623][ T5628] veth1_vlan: entered promiscuous mode [ 81.859207][ T5624] veth0_vlan: entered promiscuous mode [ 81.879810][ T5628] veth0_macvtap: entered promiscuous mode [ 81.901882][ T5624] veth1_vlan: entered promiscuous mode [ 81.911487][ T5628] veth1_macvtap: entered promiscuous mode [ 81.966506][ T5629] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.984253][ T5628] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.012234][ T5625] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 82.020903][ T5628] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.052800][ T13] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.062217][ T13] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.085271][ T13] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.094331][ T13] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.108212][ T5624] veth0_macvtap: entered promiscuous mode [ 82.134711][ T5624] veth1_macvtap: entered promiscuous mode [ 82.202048][ T5629] veth0_vlan: entered promiscuous mode [ 82.240291][ T5624] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.248737][ T5629] veth1_vlan: entered promiscuous mode [ 82.270443][ T5624] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.279344][ T3297] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.289588][ T3297] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.317714][ T5625] veth0_vlan: entered promiscuous mode [ 82.326628][ T1157] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.336773][ T1157] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.346122][ T1157] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.370917][ T34] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.379158][ T34] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.386998][ T1157] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.420823][ T5625] veth1_vlan: entered promiscuous mode [ 82.499004][ T5628] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 82.517624][ T5629] veth0_macvtap: entered promiscuous mode [ 82.539088][ T5629] veth1_macvtap: entered promiscuous mode [ 82.568346][ T3297] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.590974][ T5629] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.602638][ T3297] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.637971][ T5639] Bluetooth: hci3: command tx timeout [ 82.651131][ T5629] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.709888][ T5625] veth0_macvtap: entered promiscuous mode [ 82.715769][ T5640] Bluetooth: hci1: command tx timeout [ 82.716150][ T5631] Bluetooth: hci0: command tx timeout [ 82.721245][ T5639] Bluetooth: hci2: command tx timeout [ 82.741427][ T5625] veth1_macvtap: entered promiscuous mode [ 82.751882][ T34] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.759982][ T3297] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.771187][ T34] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.779418][ T3297] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.801696][ T5625] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.825566][ T3297] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.834418][ T3297] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.867454][ T5625] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.913660][ T1157] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.944045][ T1157] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.971732][ T1157] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.007440][ T1157] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.164098][ T5782] netlink: 5524 bytes leftover after parsing attributes in process `syz.1.5'. [ 83.196422][ T34] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.206697][ T34] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.262245][ T90] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.290480][ T90] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.374616][ T3297] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.399585][ T3297] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.458029][ T34] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.465962][ T5779] Zero length message leads to an empty skb [ 83.490998][ T34] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.715721][ T5639] Bluetooth: hci3: command tx timeout [ 84.797120][ T5639] Bluetooth: hci0: command tx timeout [ 84.803087][ T5639] Bluetooth: hci2: command tx timeout [ 84.804877][ T5631] Bluetooth: hci1: command tx timeout [ 85.106919][ T5820] mmap: syz.3.9 (5820) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 86.313799][ T5819] TCP: TCP_TX_DELAY enabled [ 87.278101][ T5836] futex_wake_op: syz.2.13 tries to shift op by -2048; fix this program [ 87.305290][ T5836] futex_wake_op: syz.2.13 tries to shift op by -2048; fix this program [ 87.340023][ T5821] kexec: Could not allocate control_code_buffer [ 87.382587][ T5836] 0x000000000001-0x000000020000 : "" [ 87.452800][ T5836] ftl_cs: FTL header corrupt! [ 87.468648][ T5845] syz.3.14 uses obsolete (PF_INET,SOCK_PACKET) [ 88.995852][ T5858] could not allocate digest TFM handle [ 89.618199][ T5871] FAULT_INJECTION: forcing a failure. [ 89.618199][ T5871] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 89.654387][ T5871] CPU: 0 UID: 0 PID: 5871 Comm: syz.2.19 Not tainted syzkaller #0 PREEMPT(full) [ 89.654428][ T5871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 89.654449][ T5871] Call Trace: [ 89.654458][ T5871] [ 89.654469][ T5871] dump_stack_lvl+0x100/0x190 [ 89.654518][ T5871] should_fail_ex.cold+0x5/0xa [ 89.654557][ T5871] strncpy_from_user+0x3b/0x2d0 [ 89.654592][ T5871] do_getname+0x78/0x390 [ 89.654639][ T5871] do_sys_openat2+0xc5/0x1e0 [ 89.654683][ T5871] ? __pfx_do_sys_openat2+0x10/0x10 [ 89.654730][ T5871] ? ksys_semctl.constprop.0+0x14e/0x2e0 [ 89.654787][ T5871] __x64_sys_openat+0x12d/0x210 [ 89.654830][ T5871] ? __pfx___x64_sys_openat+0x10/0x10 [ 89.654881][ T5871] ? rcu_is_watching+0x12/0xc0 [ 89.654920][ T5871] do_syscall_64+0x10b/0xf80 [ 89.654956][ T5871] ? clear_bhb_loop+0x40/0x90 [ 89.654992][ T5871] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 89.655034][ T5871] RIP: 0033:0x7f115075d60e [ 89.655059][ T5871] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 89.655087][ T5871] RSP: 002b:00007f11516c9ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 89.655120][ T5871] RAX: ffffffffffffffda RBX: 00007f11516ca6c0 RCX: 00007f115075d60e [ 89.655140][ T5871] RDX: 0000000000000002 RSI: 00007f11516c9f90 RDI: ffffffffffffff9c [ 89.655158][ T5871] RBP: 00007f1150832d69 R08: 0000000000000000 R09: 0000000000000000 [ 89.655175][ T5871] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 89.655192][ T5871] R13: 00007f1150a16038 R14: 00007f1150a15fa0 R15: 00007ffc5bb3c4b8 [ 89.655230][ T5871] [ 90.152184][ T5883] Format for adding new device is "id port_count num_queues" (uint uint uint). [ 90.630361][ T5885] netlink: 8 bytes leftover after parsing attributes in process `syz.3.23'. [ 90.939511][ T5893] FAULT_INJECTION: forcing a failure. [ 90.939511][ T5893] name failslab, interval 1, probability 0, space 0, times 1 [ 90.992692][ T5893] CPU: 0 UID: 0 PID: 5893 Comm: syz.1.25 Not tainted syzkaller #0 PREEMPT(full) [ 90.992729][ T5893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 90.992748][ T5893] Call Trace: [ 90.992757][ T5893] [ 90.992767][ T5893] dump_stack_lvl+0x100/0x190 [ 90.992805][ T5893] should_fail_ex.cold+0x5/0xa [ 90.992844][ T5893] should_failslab+0xc2/0x120 [ 90.992875][ T5893] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 90.992906][ T5893] ? kstrdup_const+0x63/0x80 [ 90.992945][ T5893] kstrdup+0x51/0xe0 [ 90.992976][ T5893] kstrdup_const+0x63/0x80 [ 90.993006][ T5893] alloc_vfsmnt+0xe5/0x6a0 [ 90.993043][ T5893] ? __pfx___might_resched+0x10/0x10 [ 90.993078][ T5893] clone_mnt+0x4b/0x930 [ 90.993111][ T5893] copy_tree+0xfc/0xbf0 [ 90.993143][ T5893] ? __pfx_down_write+0x10/0x10 [ 90.993193][ T5893] copy_mnt_ns+0x3fa/0x1180 [ 90.993239][ T5893] ? __pfx_copy_mnt_ns+0x10/0x10 [ 90.993290][ T5893] ? kmem_cache_alloc_noprof+0x292/0x6e0 [ 90.993335][ T5893] ? create_new_namespaces+0x30/0xac0 [ 90.993373][ T5893] ? rcu_is_watching+0x12/0xc0 [ 90.993411][ T5893] create_new_namespaces+0xd3/0xac0 [ 90.993447][ T5893] ? bpf_lsm_capable+0x9/0x10 [ 90.993479][ T5893] ? security_capable+0x80/0x260 [ 90.993524][ T5893] unshare_nsproxy_namespaces+0xf2/0x220 [ 90.993564][ T5893] ksys_unshare+0x438/0xab0 [ 90.993606][ T5893] ? __pfx_ksys_unshare+0x10/0x10 [ 90.993646][ T5893] ? xfd_validate_state+0x129/0x190 [ 90.993674][ T5893] ? ksys_write+0x1ac/0x250 [ 90.993719][ T5893] __x64_sys_unshare+0x31/0x40 [ 90.993758][ T5893] do_syscall_64+0x10b/0xf80 [ 90.993790][ T5893] ? clear_bhb_loop+0x40/0x90 [ 90.993824][ T5893] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 90.993853][ T5893] RIP: 0033:0x7fc36e59cdd9 [ 90.993876][ T5893] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 90.993902][ T5893] RSP: 002b:00007fc36f400028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 90.993928][ T5893] RAX: ffffffffffffffda RBX: 00007fc36e815fa0 RCX: 00007fc36e59cdd9 [ 90.993947][ T5893] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000020000 [ 90.993964][ T5893] RBP: 00007fc36e632d69 R08: 0000000000000000 R09: 0000000000000000 [ 90.993980][ T5893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 90.993998][ T5893] R13: 00007fc36e816038 R14: 00007fc36e815fa0 R15: 00007fffb5675708 [ 90.994033][ T5893] [ 91.337887][ T5902] netlink: 28 bytes leftover after parsing attributes in process `syz.0.26'. [ 91.845411][ T48] cfg80211: failed to load regulatory.db [ 93.899058][ T5945] random: crng reseeded on system resumption [ 94.275700][ T5941] syz.3.31 (5941) used greatest stack depth: 19720 bytes left [ 95.126272][ T5964] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 95.545802][ T5977] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 96.069890][ T5987] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 96.288339][ T5989] ubi0: attaching mtd0 [ 96.304629][ T5989] ubi0: scanning is finished [ 96.330231][ T5989] ubi0: empty MTD device detected [ 96.534419][ T5991] FAULT_INJECTION: forcing a failure. [ 96.534419][ T5991] name failslab, interval 1, probability 0, space 0, times 0 [ 96.593946][ T5991] CPU: 0 UID: 0 PID: 5991 Comm: syz.2.37 Not tainted syzkaller #0 PREEMPT(full) [ 96.593980][ T5991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 96.593996][ T5991] Call Trace: [ 96.594005][ T5991] [ 96.594016][ T5991] dump_stack_lvl+0x100/0x190 [ 96.594052][ T5991] should_fail_ex.cold+0x5/0xa [ 96.594086][ T5991] should_failslab+0xc2/0x120 [ 96.594105][ T5991] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 96.594127][ T5991] ? alloc_vfsmnt+0x23/0x6a0 [ 96.594148][ T5991] ? __pfx_do_futex+0x10/0x10 [ 96.594167][ T5991] alloc_vfsmnt+0x23/0x6a0 [ 96.594189][ T5991] __do_sys_fsmount+0x5a0/0xda0 [ 96.594210][ T5991] ? __pfx___do_sys_fsmount+0x10/0x10 [ 96.594232][ T5991] ? rcu_is_watching+0x12/0xc0 [ 96.594252][ T5991] do_syscall_64+0x10b/0xf80 [ 96.594270][ T5991] ? clear_bhb_loop+0x40/0x90 [ 96.594288][ T5991] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 96.594304][ T5991] RIP: 0033:0x7f115079cdd9 [ 96.594317][ T5991] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 96.594349][ T5991] RSP: 002b:00007f11516a9028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b0 [ 96.594364][ T5991] RAX: ffffffffffffffda RBX: 00007f1150a16090 RCX: 00007f115079cdd9 [ 96.594374][ T5991] RDX: 0000000000200003 RSI: 0000000000000000 RDI: 0000000000000004 [ 96.594384][ T5991] RBP: 00007f1150832d69 R08: 0000000000000000 R09: 0000000000000000 [ 96.594393][ T5991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 96.594401][ T5991] R13: 00007f1150a16128 R14: 00007f1150a16090 R15: 00007ffc5bb3c4b8 [ 96.594421][ T5991] [ 97.059097][ T5989] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 97.082023][ T5989] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 97.098511][ T5989] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 97.156378][ T5989] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 97.165386][ T5989] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 97.208934][ T5989] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 97.249191][ T5989] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2137466908 [ 97.277503][ T5989] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 97.319499][ T6002] ubi0: background thread "ubi_bgt0d" started, PID 6002 [ 98.276268][ T6021] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 98.556234][ T6033] binder: 6031:6033 ioctl c0046209 0 returned -22 [ 99.934606][ T6072] usb usb15: usbfs: interface 0 claimed by hub while 'syz.1.51' sets config #0 [ 100.244645][ T6069] NFSD: Failed to start, no listeners configured. [ 102.845151][ T6140] scsi_mod.scan: string doesn't fit in 6 chars. [ 102.875544][ T5631] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 104.334516][ T6175] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 104.387087][ T6191] netlink: 'syz.0.80': attribute type 1 has an invalid length. [ 104.414169][ T6191] netlink: 'syz.0.80': attribute type 6 has an invalid length. [ 105.176706][ T6213] queue_state_write: operation too long [ 105.214180][ T6213] queue_state_write: use 'run', 'start' or 'kick' [ 105.713498][ T58] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 105.940630][ T58] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 106.165599][ T5639] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 106.177123][ T5639] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 106.186501][ T5639] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 106.194938][ T5639] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 106.203480][ T5639] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 106.233994][ T58] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 106.698435][ T58] bridge_slave_1: left allmulticast mode [ 106.712238][ T58] bridge_slave_1: left promiscuous mode [ 106.726656][ T58] bridge0: port 2(bridge_slave_1) entered disabled state [ 106.763413][ T58] bridge_slave_0: left allmulticast mode [ 106.779339][ T58] bridge_slave_0: left promiscuous mode [ 106.792459][ T58] bridge0: port 1(bridge_slave_0) entered disabled state [ 107.339854][ T6289] i2c i2c-0: new_device: Missing parameters [ 107.347901][ T58] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 107.355968][ T6289] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 107.380165][ T58] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 107.402907][ T58] bond0 (unregistering): Released all slaves [ 107.562728][ T5287] 8021q: adding VLAN 0 to HW filter on device eth1 [ 108.175223][ T58] hsr_slave_0: left promiscuous mode [ 108.189044][ T58] hsr_slave_1: left promiscuous mode [ 108.209006][ T58] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 108.219380][ T58] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 108.232938][ T58] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 108.235517][ T5639] Bluetooth: hci0: command tx timeout [ 108.256452][ T58] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 108.298751][ T58] veth1_macvtap: left promiscuous mode [ 108.309419][ T58] veth0_macvtap: left promiscuous mode [ 108.319669][ T58] veth1_vlan: left promiscuous mode [ 108.326348][ T58] veth0_vlan: left promiscuous mode [ 108.837345][ T58] team0 (unregistering): Port device team_slave_1 removed [ 108.886870][ T58] team0 (unregistering): Port device team_slave_0 removed [ 109.049910][ T5287] 8021q: adding VLAN 0 to HW filter on device eth2 [ 109.744243][ T6359] netlink: 4 bytes leftover after parsing attributes in process `syz.1.110'. [ 110.315527][ T5639] Bluetooth: hci0: command tx timeout [ 110.895423][ T5287] 8021q: adding VLAN 0 to HW filter on device eth3 [ 111.707421][ T6244] bridge0: port 1(bridge_slave_0) entered blocking state [ 111.733300][ T6244] bridge0: port 1(bridge_slave_0) entered disabled state [ 111.756769][ T6244] bridge_slave_0: entered allmulticast mode [ 111.806927][ T6244] bridge_slave_0: entered promiscuous mode [ 112.003112][ T6244] bridge0: port 2(bridge_slave_1) entered blocking state [ 112.016284][ T6244] bridge0: port 2(bridge_slave_1) entered disabled state [ 112.043230][ T6244] bridge_slave_1: entered allmulticast mode [ 112.067819][ T6244] bridge_slave_1: entered promiscuous mode [ 112.395972][ T5639] Bluetooth: hci0: command tx timeout [ 112.450772][ T6244] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 112.560123][ T6244] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 112.729812][ T6244] team0: Port device team_slave_0 added [ 112.740383][ T6432] random: crng reseeded on system resumption [ 112.833592][ T5287] 8021q: adding VLAN 0 to HW filter on device eth4 [ 112.847393][ T6244] team0: Port device team_slave_1 added [ 112.947593][ T6244] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 112.966217][ T6244] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 113.004284][ T6244] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 113.043704][ T6244] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 113.059190][ T6244] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 113.153429][ T6244] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 113.350858][ T6244] hsr_slave_0: entered promiscuous mode [ 113.362363][ T6244] hsr_slave_1: entered promiscuous mode [ 113.379056][ T6244] debugfs: 'hsr0' already exists in 'hsr' [ 113.404918][ T6244] Cannot create hsr debugfs directory [ 113.473249][ T5639] Bluetooth: hci1: unexpected subevent 0x03 length: 253 > 9 [ 113.721589][ T6426] kexec: Could not allocate control_code_buffer [ 113.741766][ T6441] cgroup: fork rejected by pids controller in /syz2 [ 114.254241][ T6538] FAULT_INJECTION: forcing a failure. [ 114.254241][ T6538] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 114.278653][ T6538] CPU: 1 UID: 0 PID: 6538 Comm: syz.3.124 Not tainted syzkaller #0 PREEMPT(full) [ 114.278699][ T6538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 114.278716][ T6538] Call Trace: [ 114.278726][ T6538] [ 114.278737][ T6538] dump_stack_lvl+0x100/0x190 [ 114.278790][ T6538] should_fail_ex.cold+0x5/0xa [ 114.278826][ T6538] strncpy_from_user+0x3b/0x2d0 [ 114.278860][ T6538] do_getname+0x78/0x390 [ 114.278910][ T6538] do_sys_openat2+0xc5/0x1e0 [ 114.278952][ T6538] ? __pfx_do_sys_openat2+0x10/0x10 [ 114.278997][ T6538] ? ksys_semctl.constprop.0+0x14e/0x2e0 [ 114.279050][ T6538] __x64_sys_openat+0x12d/0x210 [ 114.279094][ T6538] ? __pfx___x64_sys_openat+0x10/0x10 [ 114.279135][ T6538] ? do_getpgid+0x101/0x2e0 [ 114.279170][ T6538] ? rcu_is_watching+0x12/0xc0 [ 114.279208][ T6538] do_syscall_64+0x10b/0xf80 [ 114.279243][ T6538] ? clear_bhb_loop+0x40/0x90 [ 114.279278][ T6538] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 114.279306][ T6538] RIP: 0033:0x7f9fb675d60e [ 114.279335][ T6538] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 114.279368][ T6538] RSP: 002b:00007f9fb75a7ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 114.279395][ T6538] RAX: ffffffffffffffda RBX: 00007f9fb75a86c0 RCX: 00007f9fb675d60e [ 114.279413][ T6538] RDX: 0000000000000002 RSI: 00007f9fb75a7f90 RDI: ffffffffffffff9c [ 114.279431][ T6538] RBP: 00007f9fb6832d69 R08: 0000000000000000 R09: 0000000000000000 [ 114.279448][ T6538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 114.279464][ T6538] R13: 00007f9fb6a16038 R14: 00007f9fb6a15fa0 R15: 00007fff687ebf78 [ 114.279499][ T6538] [ 114.475034][ T5639] Bluetooth: hci0: command tx timeout [ 116.522504][ T6244] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 116.568925][ T6244] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 116.592384][ T6244] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 116.655557][ T6244] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 116.661269][ T6244] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 116.694641][ T6244] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 116.720272][ T6244] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 116.751651][ T6244] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 117.451032][ T6615] Device name cannot be null; rc = [-22] [ 117.715514][ T6628] FAULT_INJECTION: forcing a failure. [ 117.715514][ T6628] name failslab, interval 1, probability 0, space 0, times 0 [ 117.759284][ T6628] CPU: 1 UID: 0 PID: 6628 Comm: syz.2.133 Not tainted syzkaller #0 PREEMPT(full) [ 117.759321][ T6628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 117.759338][ T6628] Call Trace: [ 117.759347][ T6628] [ 117.759358][ T6628] dump_stack_lvl+0x100/0x190 [ 117.759399][ T6628] should_fail_ex.cold+0x5/0xa [ 117.759436][ T6628] should_failslab+0xc2/0x120 [ 117.759471][ T6628] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 117.759516][ T6628] ? do_getname+0x35/0x390 [ 117.759563][ T6628] do_getname+0x35/0x390 [ 117.759616][ T6628] do_sys_openat2+0xc5/0x1e0 [ 117.759661][ T6628] ? __pfx_do_sys_openat2+0x10/0x10 [ 117.759707][ T6628] ? ksys_semctl.constprop.0+0x14e/0x2e0 [ 117.759760][ T6628] __x64_sys_openat+0x12d/0x210 [ 117.759804][ T6628] ? __pfx___x64_sys_openat+0x10/0x10 [ 117.759846][ T6628] ? do_getpgid+0x101/0x2e0 [ 117.759881][ T6628] ? rcu_is_watching+0x12/0xc0 [ 117.759918][ T6628] do_syscall_64+0x10b/0xf80 [ 117.759955][ T6628] ? clear_bhb_loop+0x40/0x90 [ 117.759989][ T6628] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.760018][ T6628] RIP: 0033:0x7f115075d60e [ 117.760042][ T6628] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 117.760069][ T6628] RSP: 002b:00007f11516c9ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 117.760096][ T6628] RAX: ffffffffffffffda RBX: 00007f11516ca6c0 RCX: 00007f115075d60e [ 117.760114][ T6628] RDX: 0000000000000002 RSI: 00007f11516c9f90 RDI: ffffffffffffff9c [ 117.760131][ T6628] RBP: 00007f1150832d69 R08: 0000000000000000 R09: 0000000000000000 [ 117.760148][ T6628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 117.760164][ T6628] R13: 00007f1150a16038 R14: 00007f1150a15fa0 R15: 00007ffc5bb3c4b8 [ 117.760200][ T6628] [ 118.964021][ T6244] 8021q: adding VLAN 0 to HW filter on device bond0 [ 119.004034][ T6244] 8021q: adding VLAN 0 to HW filter on device team0 [ 119.030949][ T34] bridge0: port 1(bridge_slave_0) entered blocking state [ 119.038143][ T34] bridge0: port 1(bridge_slave_0) entered forwarding state [ 119.067012][ T6553] bridge0: port 2(bridge_slave_1) entered blocking state [ 119.074198][ T6553] bridge0: port 2(bridge_slave_1) entered forwarding state [ 119.385900][ T6647] random: crng reseeded on system resumption [ 120.414525][ T6244] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 120.890747][ T6701] netlink: 20 bytes leftover after parsing attributes in process `syz.2.140'. [ 120.939686][ T6701] openvswitch: netlink: Flow key attr not present in new flow. [ 121.418619][ T6244] veth0_vlan: entered promiscuous mode [ 121.441239][ T6244] veth1_vlan: entered promiscuous mode [ 121.568981][ T6244] veth0_macvtap: entered promiscuous mode [ 121.608957][ T6244] veth1_macvtap: entered promiscuous mode [ 121.647176][ T6244] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 121.665997][ T6696] bridge0: port 3(bond0) entered blocking state [ 121.678852][ T6696] bridge0: port 3(bond0) entered disabled state [ 121.689748][ T6696] bond0: entered allmulticast mode [ 121.707287][ T6696] bond_slave_0: entered allmulticast mode [ 121.723532][ T6696] bond_slave_1: entered allmulticast mode [ 121.754198][ T6696] bond0: entered promiscuous mode [ 121.774976][ T6696] bond_slave_0: entered promiscuous mode [ 121.781750][ T6696] bond_slave_1: entered promiscuous mode [ 121.789820][ T6696] bridge0: port 3(bond0) entered blocking state [ 121.796769][ T6696] bridge0: port 3(bond0) entered forwarding state [ 121.850874][ T6244] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 121.907549][ T6553] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 121.936404][ T6553] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 121.957236][ T6553] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 122.253427][ T556] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.284477][ T556] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.417455][ T6548] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.451621][ T6548] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.493608][ T6733] FAULT_INJECTION: forcing a failure. [ 122.493608][ T6733] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 122.532110][ T6733] CPU: 1 UID: 0 PID: 6733 Comm: syz.2.143 Not tainted syzkaller #0 PREEMPT(full) [ 122.532149][ T6733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 122.532166][ T6733] Call Trace: [ 122.532176][ T6733] [ 122.532186][ T6733] dump_stack_lvl+0x100/0x190 [ 122.532224][ T6733] should_fail_ex.cold+0x5/0xa [ 122.532263][ T6733] strncpy_from_user+0x3b/0x2d0 [ 122.532300][ T6733] do_getname+0x78/0x390 [ 122.532347][ T6733] do_sys_openat2+0xc5/0x1e0 [ 122.532392][ T6733] ? __pfx_do_sys_openat2+0x10/0x10 [ 122.532440][ T6733] ? ksys_semctl.constprop.0+0x14e/0x2e0 [ 122.532498][ T6733] __x64_sys_openat+0x12d/0x210 [ 122.532544][ T6733] ? __pfx___x64_sys_openat+0x10/0x10 [ 122.532585][ T6733] ? do_getpgid+0x101/0x2e0 [ 122.532624][ T6733] ? rcu_is_watching+0x12/0xc0 [ 122.532667][ T6733] do_syscall_64+0x10b/0xf80 [ 122.532707][ T6733] ? clear_bhb_loop+0x40/0x90 [ 122.532745][ T6733] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.532777][ T6733] RIP: 0033:0x7f115075d60e [ 122.532801][ T6733] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 122.532831][ T6733] RSP: 002b:00007f11516c9ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 122.532867][ T6733] RAX: ffffffffffffffda RBX: 00007f11516ca6c0 RCX: 00007f115075d60e [ 122.532887][ T6733] RDX: 0000000000000002 RSI: 00007f11516c9f90 RDI: ffffffffffffff9c [ 122.532906][ T6733] RBP: 00007f1150832d69 R08: 0000000000000000 R09: 0000000000000000 [ 122.532925][ T6733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 122.532943][ T6733] R13: 00007f1150a16038 R14: 00007f1150a15fa0 R15: 00007ffc5bb3c4b8 [ 122.532982][ T6733] [ 124.097635][ T6772] ubi: mtd0 is already attached to ubi0 [ 124.114283][ T6773] ubi0: detaching mtd0 [ 124.241508][ T6773] ubi0: mtd0 is detached [ 124.960010][ T6797] netlink: 28 bytes leftover after parsing attributes in process `syz.0.151'. [ 125.450043][ T29] audit: type=1800 audit(1777818297.089:2): pid=6811 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.153" name="lu_gp_id" dev="configfs" ino=13598 res=0 errno=0 [ 127.083993][ T6855] process 'syz.3.162' launched '/dev/fd/0' with NULL argv: empty string added [ 127.831499][ T6874] netlink: 4 bytes leftover after parsing attributes in process `syz.1.167'. [ 127.850866][ T6874] netlink: 13 bytes leftover after parsing attributes in process `syz.1.167'. [ 127.968641][ T6877] FAULT_INJECTION: forcing a failure. [ 127.968641][ T6877] name failslab, interval 1, probability 0, space 0, times 0 [ 127.981703][ T6877] CPU: 1 UID: 0 PID: 6877 Comm: syz.1.168 Not tainted syzkaller #0 PREEMPT(full) [ 127.981735][ T6877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 127.981750][ T6877] Call Trace: [ 127.981759][ T6877] [ 127.981768][ T6877] dump_stack_lvl+0x100/0x190 [ 127.981802][ T6877] should_fail_ex.cold+0x5/0xa [ 127.981836][ T6877] should_failslab+0xc2/0x120 [ 127.981868][ T6877] __kmalloc_cache_noprof+0x7a/0x6f0 [ 127.981905][ T6877] ? proc_thread_self_get_link+0x1a6/0x210 [ 127.981942][ T6877] proc_thread_self_get_link+0x1a6/0x210 [ 127.981974][ T6877] pick_link+0xac2/0x13c0 [ 127.982000][ T6877] ? __pfx_proc_thread_self_get_link+0x10/0x10 [ 127.982035][ T6877] step_into_slowpath+0x9ba/0xf90 [ 127.982073][ T6877] ? __pfx_step_into_slowpath+0x10/0x10 [ 127.982107][ T6877] ? lookup_fast+0x2da/0x600 [ 127.982131][ T6877] ? inode_permission+0x374/0x620 [ 127.982180][ T6877] link_path_walk+0xf28/0x1cc0 [ 127.982225][ T6877] path_openat+0x1be/0x31a0 [ 127.982257][ T6877] ? kasan_save_stack+0x3f/0x50 [ 127.982282][ T6877] ? kasan_save_stack+0x30/0x50 [ 127.982321][ T6877] ? kasan_save_track+0x14/0x30 [ 127.982346][ T6877] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 127.982401][ T6877] ? __pfx_path_openat+0x10/0x10 [ 127.982447][ T6877] do_file_open+0x20e/0x430 [ 127.982495][ T6877] ? __pfx_do_file_open+0x10/0x10 [ 127.982557][ T6877] ? alloc_fd+0x476/0x790 [ 127.982593][ T6877] ? do_getname+0x191/0x390 [ 127.982639][ T6877] do_sys_openat2+0x10d/0x1e0 [ 127.982683][ T6877] ? __pfx_do_sys_openat2+0x10/0x10 [ 127.982726][ T6877] ? ksys_semctl.constprop.0+0x14e/0x2e0 [ 127.982778][ T6877] __x64_sys_openat+0x12d/0x210 [ 127.982827][ T6877] ? __pfx___x64_sys_openat+0x10/0x10 [ 127.982865][ T6877] ? do_getpgid+0x101/0x2e0 [ 127.982898][ T6877] ? rcu_is_watching+0x12/0xc0 [ 127.982935][ T6877] do_syscall_64+0x10b/0xf80 [ 127.982971][ T6877] ? clear_bhb_loop+0x40/0x90 [ 127.983003][ T6877] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 127.983030][ T6877] RIP: 0033:0x7fc36e55d60e [ 127.983051][ T6877] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 127.983076][ T6877] RSP: 002b:00007fc36f3fff98 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 127.983100][ T6877] RAX: ffffffffffffffda RBX: 00007fc36f4006c0 RCX: 00007fc36e55d60e [ 127.983117][ T6877] RDX: 0000000000000002 RSI: 00007fc36e632670 RDI: ffffffffffffff9c [ 127.983133][ T6877] RBP: 00007fc36e632d69 R08: 0000000000000000 R09: 0000000000000000 [ 127.983148][ T6877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 127.983164][ T6877] R13: 00007fc36e816038 R14: 00007fc36e815fa0 R15: 00007fffb5675708 [ 127.983197][ T6877] [ 127.983632][ T6877] FAULT_INJECTION: forcing a failure. [ 127.983632][ T6877] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 128.310904][ T6877] CPU: 1 UID: 0 PID: 6877 Comm: syz.1.168 Not tainted syzkaller #0 PREEMPT(full) [ 128.310940][ T6877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 128.310955][ T6877] Call Trace: [ 128.310963][ T6877] [ 128.310973][ T6877] dump_stack_lvl+0x100/0x190 [ 128.311007][ T6877] should_fail_ex.cold+0x5/0xa [ 128.311041][ T6877] strncpy_from_user+0x3b/0x2d0 [ 128.311074][ T6877] do_getname+0x78/0x390 [ 128.311116][ T6877] do_sys_openat2+0xc5/0x1e0 [ 128.311170][ T6877] ? __pfx_do_sys_openat2+0x10/0x10 [ 128.311209][ T6877] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 128.311253][ T6877] ? __fget_files+0x21f/0x3d0 [ 128.311292][ T6877] __x64_sys_openat+0x12d/0x210 [ 128.311333][ T6877] ? __pfx___x64_sys_openat+0x10/0x10 [ 128.311374][ T6877] ? ksys_write+0x1ac/0x250 [ 128.311409][ T6877] ? rcu_is_watching+0x12/0xc0 [ 128.311446][ T6877] do_syscall_64+0x10b/0xf80 [ 128.311478][ T6877] ? clear_bhb_loop+0x40/0x90 [ 128.311509][ T6877] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.311543][ T6877] RIP: 0033:0x7fc36e55d60e [ 128.311565][ T6877] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 128.311589][ T6877] RSP: 002b:00007fc36f3ffec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 128.311614][ T6877] RAX: ffffffffffffffda RBX: 00007fc36f4006c0 RCX: 00007fc36e55d60e [ 128.311632][ T6877] RDX: 0000000000000002 RSI: 00007fc36f3fff90 RDI: ffffffffffffff9c [ 128.311649][ T6877] RBP: 00007fc36f400090 R08: 0000000000000000 R09: 0000000000000000 [ 128.311665][ T6877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 128.311680][ T6877] R13: 00007fc36e816038 R14: 00007fc36e815fa0 R15: 00007fffb5675708 [ 128.311713][ T6877] [ 128.807595][ T6884] netlink: 28 bytes leftover after parsing attributes in process `syz.0.171'. [ 129.215542][ T6892] can: request_module (can-proto-5) failed. [ 130.743989][ T6926] netlink: 28 bytes leftover after parsing attributes in process `syz.1.178'. [ 130.797892][ T6926] netlink: 29 bytes leftover after parsing attributes in process `syz.1.178'. [ 131.661109][ T6930] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 131.672324][ T6930] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 131.781071][ T6930] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 131.817246][ T6930] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 131.831782][ T6930] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 131.869692][ T6930] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 131.909059][ T6930] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 131.933378][ T6930] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 131.982477][ T6930] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 132.000925][ T6930] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 132.031567][ T6930] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 132.054354][ T6930] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 132.796739][ T1313] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.805005][ T1313] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.035371][ T5639] Bluetooth: hci1: command 0x0c1a tx timeout [ 133.808765][ T6998] random: crng reseeded on system resumption [ 133.835266][ T5639] Bluetooth: hci2: command 0x0c1a tx timeout [ 133.900596][ T7004] netlink: 4 bytes leftover after parsing attributes in process `syz.1.196'. [ 133.914945][ T5639] Bluetooth: hci3: command 0x0c1a tx timeout [ 134.028931][ T6999] hub 1-0:1.0: USB hub found [ 134.045606][ T6999] hub 1-0:1.0: 1 port detected [ 134.075746][ T5639] Bluetooth: hci0: command 0x0c1a tx timeout [ 134.261287][ T7012] FAULT_INJECTION: forcing a failure. [ 134.261287][ T7012] name failslab, interval 1, probability 0, space 0, times 0 [ 134.330632][ T7012] CPU: 1 UID: 0 PID: 7012 Comm: syz.3.198 Not tainted syzkaller #0 PREEMPT(full) [ 134.330668][ T7012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 134.330679][ T7012] Call Trace: [ 134.330692][ T7012] [ 134.330698][ T7012] dump_stack_lvl+0x100/0x190 [ 134.330720][ T7012] should_fail_ex.cold+0x5/0xa [ 134.330739][ T7012] should_failslab+0xc2/0x120 [ 134.330757][ T7012] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 134.330781][ T7012] ? do_getname+0x35/0x390 [ 134.330806][ T7012] do_getname+0x35/0x390 [ 134.330828][ T7012] do_sys_openat2+0xc5/0x1e0 [ 134.330851][ T7012] ? __pfx_do_sys_openat2+0x10/0x10 [ 134.330875][ T7012] ? ksys_semctl.constprop.0+0x14e/0x2e0 [ 134.330902][ T7012] __x64_sys_openat+0x12d/0x210 [ 134.330932][ T7012] ? __pfx___x64_sys_openat+0x10/0x10 [ 134.330956][ T7012] ? do_getpgid+0x101/0x2e0 [ 134.330976][ T7012] ? rcu_is_watching+0x12/0xc0 [ 134.330997][ T7012] do_syscall_64+0x10b/0xf80 [ 134.331015][ T7012] ? clear_bhb_loop+0x40/0x90 [ 134.331033][ T7012] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 134.331049][ T7012] RIP: 0033:0x7f9fb675d60e [ 134.331062][ T7012] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 134.331075][ T7012] RSP: 002b:00007f9fb75a7ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 134.331090][ T7012] RAX: ffffffffffffffda RBX: 00007f9fb75a86c0 RCX: 00007f9fb675d60e [ 134.331100][ T7012] RDX: 0000000000000002 RSI: 00007f9fb75a7f90 RDI: ffffffffffffff9c [ 134.331110][ T7012] RBP: 00007f9fb6832d69 R08: 0000000000000000 R09: 0000000000000000 [ 134.331119][ T7012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 134.331127][ T7012] R13: 00007f9fb6a16038 R14: 00007f9fb6a15fa0 R15: 00007fff687ebf78 [ 134.331145][ T7012] [ 135.115350][ T5639] Bluetooth: hci1: command 0x0c1a tx timeout [ 135.560436][ T7014] netlink: 12 bytes leftover after parsing attributes in process `syz.2.197'. [ 135.914958][ T5639] Bluetooth: hci2: command 0x0c1a tx timeout [ 135.957743][ T7042] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 135.995780][ T5639] Bluetooth: hci3: command 0x0c1a tx timeout [ 136.155263][ T5639] Bluetooth: hci0: command 0x0c1a tx timeout [ 137.197025][ T5639] Bluetooth: hci1: command 0x0c1a tx timeout [ 138.007090][ T5639] Bluetooth: hci2: command 0x0c1a tx timeout [ 138.084943][ T5639] Bluetooth: hci3: command 0x0c1a tx timeout [ 138.234905][ T5639] Bluetooth: hci0: command 0x0c1a tx timeout [ 138.267447][ T7093] FAULT_INJECTION: forcing a failure. [ 138.267447][ T7093] name failslab, interval 1, probability 0, space 0, times 0 [ 138.297789][ T7093] CPU: 1 UID: 0 PID: 7093 Comm: syz.3.213 Not tainted syzkaller #0 PREEMPT(full) [ 138.297832][ T7093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 138.297848][ T7093] Call Trace: [ 138.297858][ T7093] [ 138.297869][ T7093] dump_stack_lvl+0x100/0x190 [ 138.297909][ T7093] should_fail_ex.cold+0x5/0xa [ 138.297946][ T7093] should_failslab+0xc2/0x120 [ 138.297983][ T7093] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 138.298031][ T7093] ? security_inode_alloc+0x3b/0x2c0 [ 138.298075][ T7093] ? lockdep_init_map_type+0x5c/0x250 [ 138.298112][ T7093] security_inode_alloc+0x3b/0x2c0 [ 138.298159][ T7093] inode_init_always_gfp+0xcc0/0x1000 [ 138.298202][ T7093] alloc_inode+0x8e/0x250 [ 138.298245][ T7093] sock_alloc+0x44/0x280 [ 138.298274][ T7093] ? security_socket_create+0x7f/0x250 [ 138.298330][ T7093] __sock_create+0xc2/0x860 [ 138.298378][ T7093] __sys_socket+0x14d/0x260 [ 138.298422][ T7093] ? __pfx___sys_socket+0x10/0x10 [ 138.298471][ T7093] __x64_sys_socket+0x72/0xb0 [ 138.298507][ T7093] ? lockdep_hardirqs_on+0x78/0x100 [ 138.298541][ T7093] do_syscall_64+0x10b/0xf80 [ 138.298575][ T7093] ? clear_bhb_loop+0x40/0x90 [ 138.298613][ T7093] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 138.298642][ T7093] RIP: 0033:0x7f9fb679cdd9 [ 138.298666][ T7093] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 138.298696][ T7093] RSP: 002b:00007f9fb75a8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 138.298722][ T7093] RAX: ffffffffffffffda RBX: 00007f9fb6a15fa0 RCX: 00007f9fb679cdd9 [ 138.298742][ T7093] RDX: 0000000000000009 RSI: 0000000000000003 RDI: 0000000000000011 [ 138.298760][ T7093] RBP: 00007f9fb6832d69 R08: 0000000000000000 R09: 0000000000000000 [ 138.298776][ T7093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 138.298792][ T7093] R13: 00007f9fb6a16038 R14: 00007f9fb6a15fa0 R15: 00007fff687ebf78 [ 138.298832][ T7093] [ 138.298866][ T7093] socket: no more sockets [ 139.358144][ T7113] FAULT_INJECTION: forcing a failure. [ 139.358144][ T7113] name failslab, interval 1, probability 0, space 0, times 0 [ 139.397515][ T7113] CPU: 1 UID: 0 PID: 7113 Comm: syz.1.219 Not tainted syzkaller #0 PREEMPT(full) [ 139.397556][ T7113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 139.397574][ T7113] Call Trace: [ 139.397584][ T7113] [ 139.397596][ T7113] dump_stack_lvl+0x100/0x190 [ 139.397632][ T7113] should_fail_ex.cold+0x5/0xa [ 139.397670][ T7113] should_failslab+0xc2/0x120 [ 139.397704][ T7113] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 139.397750][ T7113] ? sock_alloc_inode+0x26/0x290 [ 139.397785][ T7113] ? __pfx_css_rstat_updated+0x10/0x10 [ 139.397833][ T7113] ? __pfx_sock_alloc_inode+0x10/0x10 [ 139.397871][ T7113] sock_alloc_inode+0x26/0x290 [ 139.397907][ T7113] ? __pfx_sock_alloc_inode+0x10/0x10 [ 139.397941][ T7113] alloc_inode+0x68/0x250 [ 139.397985][ T7113] sock_alloc+0x44/0x280 [ 139.398015][ T7113] ? security_socket_create+0x7f/0x250 [ 139.398060][ T7113] __sock_create+0xc2/0x860 [ 139.398105][ T7113] __sys_socket+0x14d/0x260 [ 139.398143][ T7113] ? exc_page_fault+0x6f/0xd0 [ 139.398179][ T7113] ? __pfx___sys_socket+0x10/0x10 [ 139.398237][ T7113] __x64_sys_socket+0x72/0xb0 [ 139.398275][ T7113] ? lockdep_hardirqs_on+0x78/0x100 [ 139.398310][ T7113] do_syscall_64+0x10b/0xf80 [ 139.398343][ T7113] ? clear_bhb_loop+0x40/0x90 [ 139.398378][ T7113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 139.398405][ T7113] RIP: 0033:0x7fc36e59e647 [ 139.398431][ T7113] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 139.398458][ T7113] RSP: 002b:00007fc36f3fef98 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 139.398486][ T7113] RAX: ffffffffffffffda RBX: 00007fc36e815fa0 RCX: 00007fc36e59e647 [ 139.398508][ T7113] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 139.398526][ T7113] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 139.398542][ T7113] R10: 00002000000001c0 R11: 0000000000000286 R12: 0000000000000000 [ 139.398559][ T7113] R13: 00007fc36e816038 R14: 00007fc36e815fa0 R15: 00007fffb5675708 [ 139.398599][ T7113] [ 139.406209][ T7113] socket: no more sockets [ 140.207959][ T5639] Bluetooth: hci0: unexpected subevent 0x0c length: 118 > 5 [ 140.659813][ T7145] netlink: 'syz.1.226': attribute type 64 has an invalid length. [ 140.726066][ T7145] netlink: 74 bytes leftover after parsing attributes in process `syz.1.226'. [ 141.011336][ T7151] netlink: 12 bytes leftover after parsing attributes in process `syz.0.228'. [ 142.037895][ T7183] synth uevent: /bus/mei: unknown uevent action string [ 142.502504][ T7160] kexec: Could not allocate control_code_buffer [ 144.751066][ T29] audit: type=1800 audit(1777818316.389:3): pid=7244 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.243" name="features" dev="configfs" ino=14586 res=0 errno=0 [ 144.807091][ T7244] kAFS: Invalid Command on /proc/fs/afs/cells file [ 145.632405][ T7271] futex_wake_op: syz.3.248 tries to shift op by -2048; fix this program [ 145.764995][ T7278] syz.0.250 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 148.615780][ T7356] FAULT_INJECTION: forcing a failure. [ 148.615780][ T7356] name failslab, interval 1, probability 0, space 0, times 0 [ 148.678729][ T7356] CPU: 1 UID: 0 PID: 7356 Comm: syz.3.263 Not tainted syzkaller #0 PREEMPT(full) [ 148.678769][ T7356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 148.678787][ T7356] Call Trace: [ 148.678797][ T7356] [ 148.678809][ T7356] dump_stack_lvl+0x100/0x190 [ 148.678848][ T7356] should_fail_ex.cold+0x5/0xa [ 148.678888][ T7356] ? tomoyo_realpath_from_path+0xb6/0x690 [ 148.678928][ T7356] should_failslab+0xc2/0x120 [ 148.678964][ T7356] __kmalloc_noprof+0xe0/0x850 [ 148.679012][ T7356] ? kfree+0x1dd/0x6c0 [ 148.679061][ T7356] tomoyo_realpath_from_path+0xb6/0x690 [ 148.679109][ T7356] tomoyo_check_open_permission+0x2af/0x3c0 [ 148.679144][ T7356] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 148.679191][ T7356] ? hook_file_open+0x24e/0x7a0 [ 148.679252][ T7356] ? path_get+0x61/0x80 [ 148.679296][ T7356] tomoyo_file_open+0x6b/0x90 [ 148.679342][ T7356] security_file_open+0xb5/0x1e0 [ 148.679381][ T7356] do_dentry_open+0x5aa/0x1660 [ 148.679420][ T7356] ? security_inode_permission+0xbf/0x250 [ 148.679459][ T7356] vfs_open+0x82/0x3f0 [ 148.679511][ T7356] path_openat+0x208c/0x31a0 [ 148.679578][ T7356] ? __pfx_path_openat+0x10/0x10 [ 148.679631][ T7356] do_file_open+0x20e/0x430 [ 148.679675][ T7356] ? __pfx_do_file_open+0x10/0x10 [ 148.679733][ T7356] ? alloc_fd+0x476/0x790 [ 148.679769][ T7356] ? do_getname+0x191/0x390 [ 148.679811][ T7356] do_sys_openat2+0x10d/0x1e0 [ 148.679853][ T7356] ? __pfx_do_sys_openat2+0x10/0x10 [ 148.679908][ T7356] __x64_sys_openat+0x12d/0x210 [ 148.679950][ T7356] ? __pfx___x64_sys_openat+0x10/0x10 [ 148.679993][ T7356] ? ksys_write+0x1ac/0x250 [ 148.680031][ T7356] ? rcu_is_watching+0x12/0xc0 [ 148.680070][ T7356] do_syscall_64+0x10b/0xf80 [ 148.680106][ T7356] ? clear_bhb_loop+0x40/0x90 [ 148.680142][ T7356] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 148.680171][ T7356] RIP: 0033:0x7f9fb679cdd9 [ 148.680195][ T7356] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 148.680223][ T7356] RSP: 002b:00007f9fb75a8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 148.680249][ T7356] RAX: ffffffffffffffda RBX: 00007f9fb6a15fa0 RCX: 00007f9fb679cdd9 [ 148.680269][ T7356] RDX: 0000000000000001 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 148.680286][ T7356] RBP: 00007f9fb6832d69 R08: 0000000000000000 R09: 0000000000000000 [ 148.680302][ T7356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 148.680318][ T7356] R13: 00007f9fb6a16038 R14: 00007f9fb6a15fa0 R15: 00007fff687ebf78 [ 148.680356][ T7356] [ 148.937629][ T7356] ERROR: Out of memory at tomoyo_realpath_from_path. [ 149.106547][ T7359] Invalid ELF header magic: != ELF [ 149.261962][ T7365] binder: 7354:7365 ioctl c00c620f 2000000001c0 returned -22 [ 150.537992][ T7379] FAULT_INJECTION: forcing a failure. [ 150.537992][ T7379] name failslab, interval 1, probability 0, space 0, times 0 [ 150.564967][ T7379] CPU: 1 UID: 0 PID: 7379 Comm: syz.2.268 Not tainted syzkaller #0 PREEMPT(full) [ 150.565003][ T7379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 150.565019][ T7379] Call Trace: [ 150.565028][ T7379] [ 150.565038][ T7379] dump_stack_lvl+0x100/0x190 [ 150.565087][ T7379] should_fail_ex.cold+0x5/0xa [ 150.565124][ T7379] should_failslab+0xc2/0x120 [ 150.565157][ T7379] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 150.565196][ T7379] ? ptlock_alloc+0x1f/0x70 [ 150.565231][ T7379] ? do_raw_spin_lock+0x128/0x260 [ 150.565266][ T7379] ptlock_alloc+0x1f/0x70 [ 150.565302][ T7379] pte_alloc_one+0x82/0x3d0 [ 150.565342][ T7379] do_fault+0x86c/0x1750 [ 150.565371][ T7379] ? __pmd_alloc+0x3fb/0x950 [ 150.565391][ T7379] __handle_mm_fault+0x187d/0x2a00 [ 150.565415][ T7379] ? mt_find+0x45e/0x8e0 [ 150.565438][ T7379] ? __pfx___handle_mm_fault+0x10/0x10 [ 150.565459][ T7379] ? __pfx_mt_find+0x10/0x10 [ 150.565489][ T7379] ? find_vma+0xbf/0x140 [ 150.565505][ T7379] ? __pfx_find_vma+0x10/0x10 [ 150.565523][ T7379] handle_mm_fault+0x36d/0xa20 [ 150.565549][ T7379] do_user_addr_fault+0x74c/0x12f0 [ 150.565569][ T7379] ? trace_page_fault_kernel+0x7a/0x200 [ 150.565588][ T7379] exc_page_fault+0x6f/0xd0 [ 150.565607][ T7379] asm_exc_page_fault+0x26/0x30 [ 150.565621][ T7379] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 150.565645][ T7379] Code: c4 10 e9 84 9b 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 4d 9b 04 00 66 66 [ 150.565659][ T7379] RSP: 0018:ffffc90004fc7bf8 EFLAGS: 00050202 [ 150.565672][ T7379] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000001 [ 150.565681][ T7379] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc90004fc7d90 [ 150.565690][ T7379] RBP: 0000000000000001 R08: 0000000000000001 R09: fffff520009f8fb2 [ 150.565698][ T7379] R10: ffffc90004fc7d90 R11: 0000000000000000 R12: 0000000000000000 [ 150.565707][ T7379] R13: ffffc90004fc7d90 R14: 0000000000000001 R15: ffffc90004fc7d90 [ 150.565726][ T7379] _copy_from_user+0x98/0xd0 [ 150.565750][ T7379] __sys_bpf+0x243/0x4b90 [ 150.565769][ T7379] ? __pfx___sys_bpf+0x10/0x10 [ 150.565784][ T7379] ? __pfx_futex_wait+0x10/0x10 [ 150.565807][ T7379] ? ksys_write+0x190/0x250 [ 150.565823][ T7379] ? ksys_write+0x190/0x250 [ 150.565843][ T7379] ? do_futex+0x192/0x350 [ 150.565869][ T7379] ? xfd_validate_state+0x129/0x190 [ 150.565883][ T7379] ? ksys_write+0x1ac/0x250 [ 150.565904][ T7379] __x64_sys_bpf+0x7b/0xc0 [ 150.565918][ T7379] ? lockdep_hardirqs_on+0x78/0x100 [ 150.565936][ T7379] do_syscall_64+0x10b/0xf80 [ 150.565954][ T7379] ? clear_bhb_loop+0x40/0x90 [ 150.565971][ T7379] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 150.565986][ T7379] RIP: 0033:0x7f115079cdd9 [ 150.565998][ T7379] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 150.566011][ T7379] RSP: 002b:00007f11516ca028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 150.566025][ T7379] RAX: ffffffffffffffda RBX: 00007f1150a15fa0 RCX: 00007f115079cdd9 [ 150.566034][ T7379] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 000000000000001b [ 150.566043][ T7379] RBP: 00007f1150832d69 R08: 0000000000000000 R09: 0000000000000000 [ 150.566059][ T7379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 150.566068][ T7379] R13: 00007f1150a16038 R14: 00007f1150a15fa0 R15: 00007ffc5bb3c4b8 [ 150.566088][ T7379] [ 151.770408][ T7404] netlink: 4 bytes leftover after parsing attributes in process `syz.3.272'. [ 152.374958][ T7421] FAULT_INJECTION: forcing a failure. [ 152.374958][ T7421] name failslab, interval 1, probability 0, space 0, times 0 [ 152.414859][ T7421] CPU: 0 UID: 0 PID: 7421 Comm: syz.3.276 Not tainted syzkaller #0 PREEMPT(full) [ 152.414907][ T7421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 152.414925][ T7421] Call Trace: [ 152.414935][ T7421] [ 152.414946][ T7421] dump_stack_lvl+0x100/0x190 [ 152.414984][ T7421] should_fail_ex.cold+0x5/0xa [ 152.415022][ T7421] should_failslab+0xc2/0x120 [ 152.415056][ T7421] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 152.415102][ T7421] ? alloc_empty_file+0x5b/0x1c0 [ 152.415142][ T7421] ? __pfx_stack_trace_save+0x10/0x10 [ 152.415182][ T7421] alloc_empty_file+0x5b/0x1c0 [ 152.415220][ T7421] path_openat+0xe8/0x31a0 [ 152.415252][ T7421] ? kasan_save_stack+0x3f/0x50 [ 152.415275][ T7421] ? kasan_save_stack+0x30/0x50 [ 152.415297][ T7421] ? kasan_save_track+0x14/0x30 [ 152.415322][ T7421] ? __kasan_slab_alloc+0x89/0x90 [ 152.415349][ T7421] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 152.415391][ T7421] ? do_getname+0x35/0x390 [ 152.415427][ T7421] ? do_sys_openat2+0xc5/0x1e0 [ 152.415466][ T7421] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 152.415498][ T7421] ? __pfx_path_openat+0x10/0x10 [ 152.415542][ T7421] do_file_open+0x20e/0x430 [ 152.415578][ T7421] ? __pfx_do_file_open+0x10/0x10 [ 152.415636][ T7421] ? alloc_fd+0x476/0x790 [ 152.415671][ T7421] ? do_getname+0x191/0x390 [ 152.415713][ T7421] do_sys_openat2+0x10d/0x1e0 [ 152.415756][ T7421] ? __pfx_do_sys_openat2+0x10/0x10 [ 152.415800][ T7421] ? ksys_semctl.constprop.0+0x14e/0x2e0 [ 152.415854][ T7421] __x64_sys_openat+0x12d/0x210 [ 152.415904][ T7421] ? __pfx___x64_sys_openat+0x10/0x10 [ 152.415945][ T7421] ? do_getpgid+0x101/0x2e0 [ 152.415982][ T7421] ? rcu_is_watching+0x12/0xc0 [ 152.416019][ T7421] do_syscall_64+0x10b/0xf80 [ 152.416054][ T7421] ? clear_bhb_loop+0x40/0x90 [ 152.416089][ T7421] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 152.416117][ T7421] RIP: 0033:0x7f9fb675d60e [ 152.416139][ T7421] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 152.416166][ T7421] RSP: 002b:00007f9fb75a7ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 152.416193][ T7421] RAX: ffffffffffffffda RBX: 00007f9fb75a86c0 RCX: 00007f9fb675d60e [ 152.416211][ T7421] RDX: 0000000000000002 RSI: 00007f9fb75a7f90 RDI: ffffffffffffff9c [ 152.416229][ T7421] RBP: 00007f9fb6832d69 R08: 0000000000000000 R09: 0000000000000000 [ 152.416246][ T7421] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 152.416262][ T7421] R13: 00007f9fb6a16038 R14: 00007f9fb6a15fa0 R15: 00007fff687ebf78 [ 152.416299][ T7421] [ 152.956005][ T5639] Bluetooth: hci0: unexpected event 0x03 length: 123 > 11 [ 153.801070][ T7419] kexec: Could not allocate control_code_buffer [ 154.270078][ T7453] capability: warning: `syz.2.285' uses 32-bit capabilities (legacy support in use) [ 154.306064][ T7454] netlink: 24 bytes leftover after parsing attributes in process `syz.2.285'. [ 154.481565][ T7437] Process accounting resumed [ 155.068060][ T7469] FAULT_INJECTION: forcing a failure. [ 155.068060][ T7469] name fail_futex, interval 1, probability 0, space 0, times 1 [ 155.107881][ T7469] CPU: 0 UID: 0 PID: 7469 Comm: syz.2.288 Not tainted syzkaller #0 PREEMPT(full) [ 155.107904][ T7469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 155.107913][ T7469] Call Trace: [ 155.107919][ T7469] [ 155.107925][ T7469] dump_stack_lvl+0x100/0x190 [ 155.107946][ T7469] should_fail_ex.cold+0x5/0xa [ 155.107966][ T7469] get_futex_key+0x1d2/0x1510 [ 155.107984][ T7469] ? __pfx_get_futex_key+0x10/0x10 [ 155.107999][ T7469] ? find_held_lock+0x2b/0x80 [ 155.108018][ T7469] ? futex_wake+0x456/0x530 [ 155.108041][ T7469] futex_wake+0xea/0x530 [ 155.108060][ T7469] ? __lock_acquire+0x4a5/0x2630 [ 155.108074][ T7469] ? __pfx_futex_wake+0x10/0x10 [ 155.108100][ T7469] do_futex+0x32b/0x350 [ 155.108116][ T7469] ? __pfx_do_futex+0x10/0x10 [ 155.108136][ T7469] __x64_sys_futex+0x34f/0x4d0 [ 155.108153][ T7469] ? fdget+0x18b/0x210 [ 155.108170][ T7469] ? __pfx___x64_sys_futex+0x10/0x10 [ 155.108186][ T7469] ? __pfx___x64_sys_pread64+0x10/0x10 [ 155.108205][ T7469] ? rcu_is_watching+0x12/0xc0 [ 155.108225][ T7469] do_syscall_64+0x10b/0xf80 [ 155.108244][ T7469] ? clear_bhb_loop+0x40/0x90 [ 155.108262][ T7469] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 155.108277][ T7469] RIP: 0033:0x7f115079cdd9 [ 155.108290][ T7469] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 155.108304][ T7469] RSP: 002b:00007f11516ca0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 155.108318][ T7469] RAX: ffffffffffffffda RBX: 00007f1150a15fa8 RCX: 00007f115079cdd9 [ 155.108328][ T7469] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1150a15fac [ 155.108337][ T7469] RBP: 00007f1150a15fa0 R08: 0000000000000001 R09: 0000000000000000 [ 155.108345][ T7469] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 155.108354][ T7469] R13: 00007f1150a16038 R14: 00007ffc5bb3c3d0 R15: 00007ffc5bb3c4b8 [ 155.108373][ T7469] [ 155.365301][ T7471] ubi0: attaching mtd0 [ 155.391629][ T7471] ubi0: scanning is finished [ 155.397146][ T7471] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 155.650895][ T7471] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 155.891729][ T7471] [U] 0="/ [ 155.897457][ T7471] [U] [ 155.916480][ T7471] [U] EeQ@ [ 156.029704][ T7471] [U]  [ 156.244521][ T7501] nfs4: Unknown parameter '' [ 156.607976][ T7505] NFSD: Failed to start, no listeners configured. [ 156.767003][ T5639] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 160.157627][ T7571] can0: slcan on pty27. [ 160.559767][ T7563] can0 (unregistered): slcan off pty27. [ 162.308100][ T7631] netlink: 'syz.1.319': attribute type 1 has an invalid length. [ 162.769488][ T7644] vivid-007: ================= START STATUS ================= [ 162.820512][ T7644] vivid-007: Generate PTS: true [ 162.882270][ T7638] FAULT_INJECTION: forcing a failure. [ 162.882270][ T7638] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 162.919453][ T7644] vivid-007: Generate SCR: true [ 162.963160][ T7638] CPU: 1 UID: 0 PID: 7638 Comm: syz.2.320 Not tainted syzkaller #0 PREEMPT(full) [ 162.963200][ T7638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 162.963218][ T7638] Call Trace: [ 162.963228][ T7638] [ 162.963239][ T7638] dump_stack_lvl+0x100/0x190 [ 162.963277][ T7638] should_fail_ex.cold+0x5/0xa [ 162.963308][ T7638] ? prepare_alloc_pages+0x16d/0x5f0 [ 162.963348][ T7638] should_fail_alloc_page+0xeb/0x140 [ 162.963384][ T7638] prepare_alloc_pages+0x1f0/0x5f0 [ 162.963426][ T7638] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 162.963481][ T7638] ? rcu_is_watching+0x12/0xc0 [ 162.963516][ T7638] ? trace_mm_page_alloc+0x163/0x1d0 [ 162.963550][ T7638] ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0 [ 162.963586][ T7638] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 162.963632][ T7638] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 162.963671][ T7638] ? lockdep_hardirqs_on+0x78/0x100 [ 162.963710][ T7638] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 162.963747][ T7638] ? stack_depot_save_flags+0x479/0x9d0 [ 162.963788][ T7638] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 162.963839][ T7638] ? kasan_save_stack+0x3f/0x50 [ 162.963868][ T7638] ? kasan_save_stack+0x30/0x50 [ 162.963896][ T7638] ? kasan_save_track+0x14/0x30 [ 162.963936][ T7638] ? kmem_cache_alloc_node_noprof+0x25a/0x6f0 [ 162.963981][ T7638] ? __get_vm_area_node+0x1ca/0x330 [ 162.964015][ T7638] ? get_vm_area_caller+0x71/0xa0 [ 162.964048][ T7638] ? vmap+0x131/0x2f0 [ 162.964079][ T7638] ? ringbuf_map_alloc+0x3a1/0x8b0 [ 162.964105][ T7638] ? map_create+0x84e/0x2bc0 [ 162.964142][ T7638] ? __sys_bpf+0x2091/0x4b90 [ 162.964165][ T7638] ? __x64_sys_bpf+0x7b/0xc0 [ 162.964189][ T7638] ? do_syscall_64+0x10b/0xf80 [ 162.964224][ T7638] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 162.964263][ T7638] alloc_pages_bulk_noprof+0x657/0x1390 [ 162.964317][ T7638] ? policy_nodemask+0xed/0x4f0 [ 162.964351][ T7638] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 162.964414][ T7638] __kasan_populate_vmalloc+0xf0/0x210 [ 162.964467][ T7638] alloc_vmap_area+0x95d/0x2b70 [ 162.964512][ T7638] ? __pfx_alloc_vmap_area+0x10/0x10 [ 162.964558][ T7638] __get_vm_area_node+0x1ca/0x330 [ 162.964597][ T7638] ? ringbuf_map_alloc+0x3a1/0x8b0 [ 162.964624][ T7638] get_vm_area_caller+0x71/0xa0 [ 162.964657][ T7638] ? ringbuf_map_alloc+0x3a1/0x8b0 [ 162.964686][ T7638] vmap+0x131/0x2f0 [ 162.964717][ T7638] ? __pfx_vmap+0x10/0x10 [ 162.964757][ T7638] ringbuf_map_alloc+0x3a1/0x8b0 [ 162.964790][ T7638] ? __pfx_ringbuf_map_mem_usage+0x10/0x10 [ 162.964835][ T7638] map_create+0x84e/0x2bc0 [ 162.964875][ T7638] ? futex_unqueue+0x13d/0x2c0 [ 162.964914][ T7638] ? __futex_wait+0x256/0x300 [ 162.964960][ T7638] ? __pfx_map_create+0x10/0x10 [ 162.965000][ T7638] ? __might_fault+0xc5/0x140 [ 162.965042][ T7638] ? __might_fault+0xc5/0x140 [ 162.965099][ T7638] __sys_bpf+0x2091/0x4b90 [ 162.965132][ T7638] ? __pfx___sys_bpf+0x10/0x10 [ 162.965159][ T7638] ? __pfx_futex_wait+0x10/0x10 [ 162.965205][ T7638] ? errseq_sample+0x51/0x70 [ 162.965231][ T7638] ? file_init_path+0x48e/0x670 [ 162.965276][ T7638] ? do_futex+0x192/0x350 [ 162.965327][ T7638] ? xfd_validate_state+0x129/0x190 [ 162.965367][ T7638] __x64_sys_bpf+0x7b/0xc0 [ 162.965395][ T7638] ? lockdep_hardirqs_on+0x78/0x100 [ 162.965436][ T7638] do_syscall_64+0x10b/0xf80 [ 162.965471][ T7638] ? clear_bhb_loop+0x40/0x90 [ 162.965505][ T7638] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 162.965534][ T7638] RIP: 0033:0x7f115079cdd9 [ 162.965558][ T7638] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 162.965584][ T7638] RSP: 002b:00007f11516a9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 162.965610][ T7638] RAX: ffffffffffffffda RBX: 00007f1150a16090 RCX: 00007f115079cdd9 [ 162.965629][ T7638] RDX: 0000000000000010 RSI: 00002000000000c0 RDI: 0000000000000000 [ 162.965646][ T7638] RBP: 00007f1150832d69 R08: 0000000000000000 R09: 0000000000000000 [ 162.965664][ T7638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 162.965680][ T7638] R13: 00007f1150a16128 R14: 00007f1150a16090 R15: 00007ffc5bb3c4b8 [ 162.965717][ T7638] [ 162.971849][ T7644] tpg source WxH: 320x240 (Y'CbCr) [ 163.627978][ T7644] tpg field: 1 [ 163.658215][ T7644] tpg crop: (0,0)/320x240 [ 163.705105][ T7644] tpg compose: (0,0)/320x240 [ 163.762484][ T7644] tpg colorspace: 8 [ 163.771390][ T7644] tpg transfer function: 0/0 [ 163.816036][ T7644] tpg Y'CbCr encoding: 0/0 [ 163.836439][ T7644] tpg quantization: 0/0 [ 163.850972][ T7644] tpg RGB range: 0/2 [ 163.871392][ T7644] vivid-007: ================== END STATUS ================== [ 164.171657][ T7664] netlink: NAT attribute has 5 unknown bytes [ 164.239225][ T7660] Unable to find swap-space signature [ 164.925695][ T7658] kexec: Could not allocate control_code_buffer [ 168.030643][ T7723] netlink: 16 bytes leftover after parsing attributes in process `syz.2.337'. [ 168.065294][ T7725] usb usb4: usbfs: process 7725 (syz.1.338) did not claim interface 0 before use [ 168.308162][ T7729] .^: entered promiscuous mode [ 169.693396][ T7752] random: crng reseeded on system resumption [ 171.771033][ T7789] netlink: 'syz.0.351': attribute type 1 has an invalid length. [ 172.065892][ T7793] bridge0: port 3(gretap0) entered blocking state [ 172.103986][ T7793] bridge0: port 3(gretap0) entered disabled state [ 172.120033][ T7793] gretap0: entered allmulticast mode [ 172.164344][ T7793] FAULT_INJECTION: forcing a failure. [ 172.164344][ T7793] name failslab, interval 1, probability 0, space 0, times 0 [ 172.208949][ T7793] CPU: 1 UID: 0 PID: 7793 Comm: syz.1.352 Not tainted syzkaller #0 PREEMPT(full) [ 172.208984][ T7793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 172.208999][ T7793] Call Trace: [ 172.209004][ T7793] [ 172.209011][ T7793] dump_stack_lvl+0x100/0x190 [ 172.209033][ T7793] should_fail_ex.cold+0x5/0xa [ 172.209052][ T7793] should_failslab+0xc2/0x120 [ 172.209070][ T7793] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 172.209092][ T7793] ? __kernfs_new_node+0xd2/0x9f0 [ 172.209113][ T7793] __kernfs_new_node+0xd2/0x9f0 [ 172.209127][ T7793] ? lockdep_hardirqs_on+0x78/0x100 [ 172.209148][ T7793] ? __pfx___kernfs_new_node+0x10/0x10 [ 172.209174][ T7793] ? find_held_lock+0x2b/0x80 [ 172.209193][ T7793] ? kernfs_root+0xee/0x2a0 [ 172.209208][ T7793] ? kernfs_root+0xee/0x2a0 [ 172.209243][ T7793] kernfs_new_node+0x11b/0x1a0 [ 172.209269][ T7793] __kernfs_create_file+0x53/0x350 [ 172.209292][ T7793] sysfs_add_file_mode_ns+0x207/0x3c0 [ 172.209311][ T7793] sysfs_create_file_ns+0x145/0x1e0 [ 172.209326][ T7793] ? __pfx_sysfs_create_file_ns+0x10/0x10 [ 172.209341][ T7793] ? kernfs_create_link+0x1bd/0x240 [ 172.209362][ T7793] ? kernfs_put+0x3f/0x60 [ 172.209378][ T7793] ? sysfs_do_create_link_sd+0xbb/0x140 [ 172.209396][ T7793] br_sysfs_addif+0xe4/0x210 [ 172.209414][ T7793] br_add_if+0x701/0x1b40 [ 172.209437][ T7793] ? security_capable+0x80/0x260 [ 172.209460][ T7793] add_del_if+0x114/0x160 [ 172.209475][ T7793] br_dev_siocdevprivate+0x8ac/0x1650 [ 172.209492][ T7793] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 172.209506][ T7793] ? __lock_acquire+0x4a5/0x2630 [ 172.209530][ T7793] ? lock_acquire+0x1b1/0x370 [ 172.209549][ T7793] ? netdev_name_node_lookup+0x107/0x150 [ 172.209574][ T7793] dev_ifsioc+0xc2f/0x1f10 [ 172.209590][ T7793] ? __pfx_dev_ifsioc+0x10/0x10 [ 172.209603][ T7793] ? __pfx___mutex_lock+0x10/0x10 [ 172.209628][ T7793] ? dev_load+0x8e/0x240 [ 172.209640][ T7793] ? dev_load+0x8e/0x240 [ 172.209657][ T7793] dev_ioctl+0x70e/0x1070 [ 172.209673][ T7793] sock_ioctl+0x494/0x6b0 [ 172.209693][ T7793] ? __pfx_sock_ioctl+0x10/0x10 [ 172.209712][ T7793] ? hook_file_ioctl_common+0x149/0x410 [ 172.209731][ T7793] ? __fget_files+0x21f/0x3d0 [ 172.209751][ T7793] ? __pfx_sock_ioctl+0x10/0x10 [ 172.209771][ T7793] __x64_sys_ioctl+0x18e/0x210 [ 172.209787][ T7793] do_syscall_64+0x10b/0xf80 [ 172.209805][ T7793] ? clear_bhb_loop+0x40/0x90 [ 172.209823][ T7793] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 172.209838][ T7793] RIP: 0033:0x7fc36e59cdd9 [ 172.209852][ T7793] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 172.209865][ T7793] RSP: 002b:00007fc36f3df028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 172.209880][ T7793] RAX: ffffffffffffffda RBX: 00007fc36e816090 RCX: 00007fc36e59cdd9 [ 172.209890][ T7793] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 000000000000000a [ 172.209899][ T7793] RBP: 00007fc36e632d69 R08: 0000000000000000 R09: 0000000000000000 [ 172.209910][ T7793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 172.209919][ T7793] R13: 00007fc36e816128 R14: 00007fc36e816090 R15: 00007fffb5675708 [ 172.209938][ T7793] [ 172.634699][ T7793] gretap0: left allmulticast mode [ 173.131975][ T7808] FAULT_INJECTION: forcing a failure. [ 173.131975][ T7808] name failslab, interval 1, probability 0, space 0, times 0 [ 173.176975][ T7808] CPU: 0 UID: 8 PID: 7808 Comm: syz.1.356 Not tainted syzkaller #0 PREEMPT(full) [ 173.177012][ T7808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 173.177034][ T7808] Call Trace: [ 173.177043][ T7808] [ 173.177053][ T7808] dump_stack_lvl+0x100/0x190 [ 173.177091][ T7808] should_fail_ex.cold+0x5/0xa [ 173.177128][ T7808] should_failslab+0xc2/0x120 [ 173.177163][ T7808] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 173.177206][ T7808] ? key_alloc+0x3c5/0x1310 [ 173.177236][ T7808] ? mark_held_locks+0x40/0x70 [ 173.177269][ T7808] key_alloc+0x3c5/0x1310 [ 173.177312][ T7808] ? __pfx_key_alloc+0x10/0x10 [ 173.177343][ T7808] ? __pfx_key_default_cmp+0x10/0x10 [ 173.177379][ T7808] ? __pfx_keyring_search_iterator+0x10/0x10 [ 173.177419][ T7808] keyring_alloc+0x44/0xc0 [ 173.177457][ T7808] look_up_user_keyrings+0x508/0x790 [ 173.177509][ T7808] ? __pfx_look_up_user_keyrings+0x10/0x10 [ 173.177569][ T7808] lookup_user_key+0xbb1/0x1300 [ 173.177601][ T7808] ? __pfx_lookup_user_key+0x10/0x10 [ 173.177630][ T7808] ? __pfx_do_futex+0x10/0x10 [ 173.177668][ T7808] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 173.177722][ T7808] ? xfd_validate_state+0x129/0x190 [ 173.177751][ T7808] ? ksys_write+0x1ac/0x250 [ 173.177788][ T7808] keyctl_keyring_unlink+0x1f/0x1b0 [ 173.177832][ T7808] __do_sys_keyctl+0x3dd/0x5a0 [ 173.177876][ T7808] do_syscall_64+0x10b/0xf80 [ 173.177913][ T7808] ? clear_bhb_loop+0x40/0x90 [ 173.177948][ T7808] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 173.177977][ T7808] RIP: 0033:0x7fc36e59cdd9 [ 173.178000][ T7808] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 173.178037][ T7808] RSP: 002b:00007fc36f3df028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 173.178064][ T7808] RAX: ffffffffffffffda RBX: 00007fc36e816090 RCX: 00007fc36e59cdd9 [ 173.178083][ T7808] RDX: fffffffffffffffd RSI: fffffffffffffffc RDI: 0000000000000009 [ 173.178100][ T7808] RBP: 00007fc36e632d69 R08: 0000000000000008 R09: 0000000000000000 [ 173.178118][ T7808] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000000 [ 173.178135][ T7808] R13: 00007fc36e816128 R14: 00007fc36e816090 R15: 00007fffb5675708 [ 173.178173][ T7808] [ 173.701575][ T7811] FAULT_INJECTION: forcing a failure. [ 173.701575][ T7811] name failslab, interval 1, probability 0, space 0, times 0 [ 173.762857][ T7811] CPU: 1 UID: 0 PID: 7811 Comm: syz.3.357 Not tainted syzkaller #0 PREEMPT(full) [ 173.762895][ T7811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 173.762911][ T7811] Call Trace: [ 173.762920][ T7811] [ 173.762931][ T7811] dump_stack_lvl+0x100/0x190 [ 173.762978][ T7811] should_fail_ex.cold+0x5/0xa [ 173.763015][ T7811] should_failslab+0xc2/0x120 [ 173.763050][ T7811] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 173.763094][ T7811] ? do_getname+0x35/0x390 [ 173.763141][ T7811] do_getname+0x35/0x390 [ 173.763186][ T7811] do_sys_openat2+0xc5/0x1e0 [ 173.763228][ T7811] ? __pfx_do_sys_openat2+0x10/0x10 [ 173.763271][ T7811] ? ksys_semctl.constprop.0+0x14e/0x2e0 [ 173.763324][ T7811] __x64_sys_openat+0x12d/0x210 [ 173.763369][ T7811] ? __pfx___x64_sys_openat+0x10/0x10 [ 173.763413][ T7811] ? do_getpgid+0x101/0x2e0 [ 173.763449][ T7811] ? rcu_is_watching+0x12/0xc0 [ 173.763491][ T7811] do_syscall_64+0x10b/0xf80 [ 173.763527][ T7811] ? clear_bhb_loop+0x40/0x90 [ 173.763562][ T7811] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 173.763590][ T7811] RIP: 0033:0x7f9fb675d60e [ 173.763613][ T7811] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 173.763639][ T7811] RSP: 002b:00007f9fb75a7ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 173.763665][ T7811] RAX: ffffffffffffffda RBX: 00007f9fb75a86c0 RCX: 00007f9fb675d60e [ 173.763684][ T7811] RDX: 0000000000000002 RSI: 00007f9fb75a7f90 RDI: ffffffffffffff9c [ 173.763701][ T7811] RBP: 00007f9fb6832d69 R08: 0000000000000000 R09: 0000000000000000 [ 173.763717][ T7811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 173.763734][ T7811] R13: 00007f9fb6a16038 R14: 00007f9fb6a15fa0 R15: 00007fff687ebf78 [ 173.763769][ T7811] [ 175.576429][ T7850] zram0: detected capacity change from 0 to 16 [ 175.606388][ T7847] FAULT_INJECTION: forcing a failure. [ 175.606388][ T7847] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 175.693032][ T7847] CPU: 1 UID: 0 PID: 7847 Comm: syz.3.363 Not tainted syzkaller #0 PREEMPT(full) [ 175.693053][ T7847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 175.693065][ T7847] Call Trace: [ 175.693070][ T7847] [ 175.693076][ T7847] dump_stack_lvl+0x100/0x190 [ 175.693097][ T7847] should_fail_ex.cold+0x5/0xa [ 175.693117][ T7847] _copy_from_user+0x2e/0xd0 [ 175.693141][ T7847] set_user_sigmask+0xb2/0x270 [ 175.693159][ T7847] ? __pfx_set_user_sigmask+0x10/0x10 [ 175.693180][ T7847] __x64_sys_epoll_pwait+0x1e2/0x320 [ 175.693201][ T7847] ? __x64_sys_futex+0x358/0x4d0 [ 175.693219][ T7847] ? __pfx___x64_sys_epoll_pwait+0x10/0x10 [ 175.693246][ T7847] ? rcu_is_watching+0x12/0xc0 [ 175.693266][ T7847] do_syscall_64+0x10b/0xf80 [ 175.693285][ T7847] ? clear_bhb_loop+0x40/0x90 [ 175.693302][ T7847] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 175.693317][ T7847] RIP: 0033:0x7f9fb679cdd9 [ 175.693330][ T7847] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 175.693343][ T7847] RSP: 002b:00007f9fb75a8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000119 [ 175.693357][ T7847] RAX: ffffffffffffffda RBX: 00007f9fb6a15fa0 RCX: 00007f9fb679cdd9 [ 175.693367][ T7847] RDX: 0000000000000003 RSI: 0000000000000000 RDI: 0000000000000006 [ 175.693375][ T7847] RBP: 00007f9fb6832d69 R08: 00002000000000c0 R09: 0000000000000008 [ 175.693384][ T7847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 175.693392][ T7847] R13: 00007f9fb6a16038 R14: 00007f9fb6a15fa0 R15: 00007fff687ebf78 [ 175.693411][ T7847] [ 176.250102][ T7864] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[5625] was attempted by "ci-qemu-gce-upstream-auto/syz-executor exec"[7864] [ 178.361851][ T7883] kexec: Could not allocate control_code_buffer [ 180.501455][ T7953] netlink: 326 bytes leftover after parsing attributes in process `syz.1.381'. [ 180.617739][ T7954] usb usb15: usbfs: interface 0 claimed by hub while 'syz.1.381' sets config #0 [ 180.640010][ T7956] netlink: 8 bytes leftover after parsing attributes in process `syz.3.383'. [ 180.948228][ T7961] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 200000 [ 181.913917][ T1313] ieee802154 phy0 wpan0: encryption failed: -22 [ 181.925474][ T1313] ieee802154 phy1 wpan1: encryption failed: -22 [ 182.351563][ T7980] sysfs_service_op_show: Client not running :-5: [ 182.989592][ T7982] netlink: 294 bytes leftover after parsing attributes in process `syz.2.388'. [ 183.274257][ T7988] FAULT_INJECTION: forcing a failure. [ 183.274257][ T7988] name failslab, interval 1, probability 0, space 0, times 0 [ 183.322163][ T7988] CPU: 1 UID: 0 PID: 7988 Comm: syz.1.392 Tainted: G L syzkaller #0 PREEMPT(full) [ 183.322209][ T7988] Tainted: [L]=SOFTLOCKUP [ 183.322218][ T7988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 183.322234][ T7988] Call Trace: [ 183.322242][ T7988] [ 183.322253][ T7988] dump_stack_lvl+0x100/0x190 [ 183.322289][ T7988] should_fail_ex.cold+0x5/0xa [ 183.322326][ T7988] ? tomoyo_realpath_from_path+0xb6/0x690 [ 183.322363][ T7988] should_failslab+0xc2/0x120 [ 183.322395][ T7988] __kmalloc_noprof+0xe0/0x850 [ 183.322438][ T7988] ? kfree+0x1dd/0x6c0 [ 183.322481][ T7988] tomoyo_realpath_from_path+0xb6/0x690 [ 183.322525][ T7988] tomoyo_check_open_permission+0x2af/0x3c0 [ 183.322556][ T7988] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 183.322599][ T7988] ? hook_file_open+0x24e/0x7a0 [ 183.322654][ T7988] ? path_get+0x61/0x80 [ 183.322696][ T7988] tomoyo_file_open+0x6b/0x90 [ 183.322737][ T7988] security_file_open+0xb5/0x1e0 [ 183.322781][ T7988] do_dentry_open+0x5aa/0x1660 [ 183.322819][ T7988] ? security_inode_permission+0xbf/0x250 [ 183.322855][ T7988] vfs_open+0x82/0x3f0 [ 183.322900][ T7988] path_openat+0x208c/0x31a0 [ 183.322947][ T7988] ? __pfx_path_openat+0x10/0x10 [ 183.322995][ T7988] do_file_open+0x20e/0x430 [ 183.323032][ T7988] ? __pfx_do_file_open+0x10/0x10 [ 183.323092][ T7988] ? alloc_fd+0x476/0x790 [ 183.323129][ T7988] ? do_getname+0x191/0x390 [ 183.323173][ T7988] do_sys_openat2+0x10d/0x1e0 [ 183.323216][ T7988] ? __pfx_do_sys_openat2+0x10/0x10 [ 183.323275][ T7988] __x64_sys_openat+0x12d/0x210 [ 183.323319][ T7988] ? __pfx___x64_sys_openat+0x10/0x10 [ 183.323360][ T7988] ? ksys_write+0x1ac/0x250 [ 183.323398][ T7988] ? rcu_is_watching+0x12/0xc0 [ 183.323436][ T7988] do_syscall_64+0x10b/0xf80 [ 183.323471][ T7988] ? clear_bhb_loop+0x40/0x90 [ 183.323506][ T7988] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.323535][ T7988] RIP: 0033:0x7fc36e59cdd9 [ 183.323558][ T7988] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 183.323584][ T7988] RSP: 002b:00007fc36f400028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 183.323611][ T7988] RAX: ffffffffffffffda RBX: 00007fc36e815fa0 RCX: 00007fc36e59cdd9 [ 183.323629][ T7988] RDX: 0000000000000001 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 183.323647][ T7988] RBP: 00007fc36e632d69 R08: 0000000000000000 R09: 0000000000000000 [ 183.323663][ T7988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 183.323678][ T7988] R13: 00007fc36e816038 R14: 00007fc36e815fa0 R15: 00007fffb5675708 [ 183.323715][ T7988] [ 183.715089][ T7988] ERROR: Out of memory at tomoyo_realpath_from_path. [ 184.304416][ T7979] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 184.494676][ T7997] Process accounting paused [ 184.790437][ T8013] blktrace: Concurrent blktraces are not allowed on sda1 [ 184.848399][ T8016] netlink: 8 bytes leftover after parsing attributes in process `syz.2.396'. [ 185.023735][ T7999] binder: 7987:7999 ioctl c00c620f 2000000001c0 returned -22 [ 185.479017][ T5639] Bluetooth: hci1: unexpected event 0x03 length: 123 > 11 [ 186.138286][ T8048] netlink: 28 bytes leftover after parsing attributes in process `syz.2.403'. [ 186.275676][ T8042] futex_wake_op: syz.3.402 tries to shift op by -2048; fix this program [ 186.281816][ T8048] veth1_macvtap: left promiscuous mode [ 186.301070][ T8048] macsec0: entered promiscuous mode [ 186.321201][ T8048] macsec0: entered allmulticast mode [ 186.335124][ T8042] futex_wake_op: syz.3.402 tries to shift op by -2048; fix this program [ 186.521804][ T8053] random: crng reseeded on system resumption [ 187.126355][ T8067] netlink: 8 bytes leftover after parsing attributes in process `syz.2.407'. [ 187.162636][ T8070] FAULT_INJECTION: forcing a failure. [ 187.162636][ T8070] name failslab, interval 1, probability 0, space 0, times 0 [ 187.194943][ T8070] CPU: 1 UID: 0 PID: 8070 Comm: syz.3.409 Tainted: G L syzkaller #0 PREEMPT(full) [ 187.194982][ T8070] Tainted: [L]=SOFTLOCKUP [ 187.194991][ T8070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 187.195007][ T8070] Call Trace: [ 187.195015][ T8070] [ 187.195025][ T8070] dump_stack_lvl+0x100/0x190 [ 187.195061][ T8070] should_fail_ex.cold+0x5/0xa [ 187.195095][ T8070] should_failslab+0xc2/0x120 [ 187.195125][ T8070] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 187.195166][ T8070] ? do_getname+0x35/0x390 [ 187.195208][ T8070] do_getname+0x35/0x390 [ 187.195250][ T8070] do_sys_openat2+0xc5/0x1e0 [ 187.195287][ T8070] ? __pfx_do_sys_openat2+0x10/0x10 [ 187.195326][ T8070] ? ksys_semctl.constprop.0+0x14e/0x2e0 [ 187.195374][ T8070] __x64_sys_openat+0x12d/0x210 [ 187.195416][ T8070] ? __pfx___x64_sys_openat+0x10/0x10 [ 187.195465][ T8070] ? do_getpgid+0x101/0x2e0 [ 187.195499][ T8070] ? rcu_is_watching+0x12/0xc0 [ 187.195531][ T8070] do_syscall_64+0x10b/0xf80 [ 187.195573][ T8070] ? clear_bhb_loop+0x40/0x90 [ 187.195610][ T8070] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.195641][ T8070] RIP: 0033:0x7f9fb675d60e [ 187.195664][ T8070] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 187.195694][ T8070] RSP: 002b:00007f9fb75a7ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 187.195724][ T8070] RAX: ffffffffffffffda RBX: 00007f9fb75a86c0 RCX: 00007f9fb675d60e [ 187.195745][ T8070] RDX: 0000000000000002 RSI: 00007f9fb75a7f90 RDI: ffffffffffffff9c [ 187.195765][ T8070] RBP: 00007f9fb6832d69 R08: 0000000000000000 R09: 0000000000000000 [ 187.195782][ T8070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 187.195801][ T8070] R13: 00007f9fb6a16038 R14: 00007f9fb6a15fa0 R15: 00007fff687ebf78 [ 187.195839][ T8070] [ 188.160593][ T8077] ACPI: \_SB_.LNKS: No IRQ available. Try pci=noacpi or acpi=off [ 188.238360][ T8077] pci 0000:00:01.3: PCI INT A: no GSI [ 189.074964][ T8116] FAULT_INJECTION: forcing a failure. [ 189.074964][ T8116] name failslab, interval 1, probability 0, space 0, times 0 [ 189.117489][ T8116] CPU: 0 UID: 0 PID: 8116 Comm: syz.0.419 Tainted: G L syzkaller #0 PREEMPT(full) [ 189.117540][ T8116] Tainted: [L]=SOFTLOCKUP [ 189.117550][ T8116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 189.117568][ T8116] Call Trace: [ 189.117578][ T8116] [ 189.117590][ T8116] dump_stack_lvl+0x100/0x190 [ 189.117626][ T8116] should_fail_ex.cold+0x5/0xa [ 189.117665][ T8116] should_failslab+0xc2/0x120 [ 189.117698][ T8116] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 189.117749][ T8116] ? __d_alloc+0x34/0xa40 [ 189.117800][ T8116] __d_alloc+0x34/0xa40 [ 189.117845][ T8116] d_alloc+0x4a/0x1e0 [ 189.117893][ T8116] lookup_one_qstr_excl+0x171/0x250 [ 189.117946][ T8116] start_dirop+0x59/0xb0 [ 189.117982][ T8116] simple_start_creating+0xf9/0x110 [ 189.118019][ T8116] ? __pfx_simple_start_creating+0x10/0x10 [ 189.118054][ T8116] ? mntput+0x70/0xa0 [ 189.118084][ T8116] ? simple_pin_fs+0xa3/0x190 [ 189.118116][ T8116] debugfs_start_creating.part.0+0x82/0x170 [ 189.118165][ T8116] __debugfs_create_file+0xb3/0x4f0 [ 189.118225][ T8116] debugfs_create_file_full+0x41/0x60 [ 189.118277][ T8116] ref_tracker_dir_debugfs+0x19e/0x2e0 [ 189.118315][ T8116] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 189.118351][ T8116] ? ida_alloc_range+0x70d/0x830 [ 189.118423][ T8116] ? lockdep_init_map_type+0x5c/0x250 [ 189.118459][ T8116] preinit_net.part.0+0x252/0x920 [ 189.118494][ T8116] copy_net_ns+0x339/0x7c0 [ 189.118537][ T8116] create_new_namespaces+0x3ea/0xac0 [ 189.118588][ T8116] unshare_nsproxy_namespaces+0xf2/0x220 [ 189.118633][ T8116] ksys_unshare+0x438/0xab0 [ 189.118680][ T8116] ? __pfx_ksys_unshare+0x10/0x10 [ 189.118722][ T8116] ? xfd_validate_state+0x129/0x190 [ 189.118750][ T8116] ? ksys_write+0x1ac/0x250 [ 189.118788][ T8116] __x64_sys_unshare+0x31/0x40 [ 189.118827][ T8116] do_syscall_64+0x10b/0xf80 [ 189.118860][ T8116] ? clear_bhb_loop+0x40/0x90 [ 189.118893][ T8116] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 189.118919][ T8116] RIP: 0033:0x7f6c62f9cdd9 [ 189.118941][ T8116] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 189.118965][ T8116] RSP: 002b:00007f6c63dc5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 189.118989][ T8116] RAX: ffffffffffffffda RBX: 00007f6c63216090 RCX: 00007f6c62f9cdd9 [ 189.119007][ T8116] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 189.119023][ T8116] RBP: 00007f6c63032d69 R08: 0000000000000000 R09: 0000000000000000 [ 189.119039][ T8116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 189.119055][ T8116] R13: 00007f6c63216128 R14: 00007f6c63216090 R15: 00007ffebfe7a5b8 [ 189.119087][ T8116] [ 190.039941][ T29] audit: type=1800 audit(1777818361.679:4): pid=8134 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.424" name="features" dev="configfs" ino=19558 res=0 errno=0 [ 190.444368][ T8140] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 190.473140][ T8136] smpboot: CPU 1 is now offline [ 190.528360][ T8140] FAULT_INJECTION: forcing a failure. [ 190.528360][ T8140] name failslab, interval 1, probability 0, space 0, times 0 [ 190.597210][ T8140] CPU: 0 UID: 0 PID: 8140 Comm: syz.1.425 Tainted: G L syzkaller #0 PREEMPT(full) [ 190.597236][ T8140] Tainted: [L]=SOFTLOCKUP [ 190.597241][ T8140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 190.597250][ T8140] Call Trace: [ 190.597256][ T8140] [ 190.597262][ T8140] dump_stack_lvl+0x100/0x190 [ 190.597283][ T8140] should_fail_ex.cold+0x5/0xa [ 190.597303][ T8140] ? __netlink_kernel_create+0x181/0x750 [ 190.597322][ T8140] should_failslab+0xc2/0x120 [ 190.597339][ T8140] __kmalloc_noprof+0xe0/0x850 [ 190.597370][ T8140] __netlink_kernel_create+0x181/0x750 [ 190.597391][ T8140] ? __pfx___netlink_kernel_create+0x10/0x10 [ 190.597415][ T8140] ? __pfx_genl_pernet_init+0x10/0x10 [ 190.597435][ T8140] genl_pernet_init+0xbd/0x160 [ 190.597457][ T8140] ? __pfx_genl_pernet_init+0x10/0x10 [ 190.597477][ T8140] ? lockdep_init_map_type+0x5c/0x250 [ 190.597492][ T8140] ? __pfx_genl_rcv+0x10/0x10 [ 190.597510][ T8140] ? __pfx_genl_bind+0x10/0x10 [ 190.597529][ T8140] ? __pfx_genl_unbind+0x10/0x10 [ 190.597547][ T8140] ? __pfx_genl_release+0x10/0x10 [ 190.597567][ T8140] ? mutex_init_lockdep+0xf1/0x120 [ 190.597585][ T8140] ops_init+0x1e2/0x5f0 [ 190.597603][ T8140] setup_net+0x118/0x3a0 [ 190.597620][ T8140] ? __pfx_setup_net+0x10/0x10 [ 190.597636][ T8140] ? mutex_init_lockdep+0xf1/0x120 [ 190.597654][ T8140] copy_net_ns+0x46f/0x7c0 [ 190.597674][ T8140] create_new_namespaces+0x3ea/0xac0 [ 190.597699][ T8140] unshare_nsproxy_namespaces+0xf2/0x220 [ 190.597719][ T8140] ksys_unshare+0x438/0xab0 [ 190.597742][ T8140] ? __pfx_ksys_unshare+0x10/0x10 [ 190.597762][ T8140] ? xfd_validate_state+0x129/0x190 [ 190.597784][ T8140] __x64_sys_unshare+0x31/0x40 [ 190.597805][ T8140] do_syscall_64+0x10b/0xf80 [ 190.597823][ T8140] ? clear_bhb_loop+0x40/0x90 [ 190.597841][ T8140] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 190.597856][ T8140] RIP: 0033:0x7fc36e59cdd9 [ 190.597869][ T8140] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 190.597883][ T8140] RSP: 002b:00007fc36f400028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 190.597898][ T8140] RAX: ffffffffffffffda RBX: 00007fc36e815fa0 RCX: 00007fc36e59cdd9 [ 190.597907][ T8140] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 190.597916][ T8140] RBP: 00007fc36e632d69 R08: 0000000000000000 R09: 0000000000000000 [ 190.597925][ T8140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 190.597934][ T8140] R13: 00007fc36e816038 R14: 00007fc36e815fa0 R15: 00007fffb5675708 [ 190.597953][ T8140] [ 191.835530][ T8138] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 191.843507][ T8138] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 191.889488][ T8138] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 191.936371][ T8138] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 191.969943][ T8138] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 192.451412][ T8174] raw_sendmsg: syz.0.434 forgot to set AF_INET. Fix it! [ 193.914996][ T5639] Bluetooth: hci3: command 0x0c1a tx timeout [ 193.921088][ T5631] Bluetooth: hci2: command 0x0c1a tx timeout [ 193.927118][ T5631] Bluetooth: hci1: command 0x0c1a tx timeout [ 193.995561][ T5639] Bluetooth: hci0: command 0x0c1a tx timeout [ 194.168934][ T8216] netlink: 4 bytes leftover after parsing attributes in process `syz.3.444'. [ 194.240152][ T1313] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.249944][ T1313] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.935831][ T8235] netlink: 4 bytes leftover after parsing attributes in process `syz.3.450'. [ 196.074915][ T5639] Bluetooth: hci0: command 0x0c1a tx timeout [ 196.310400][ T29] audit: type=1800 audit(1777818367.949:5): pid=8263 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.454" name="lu_gp_id" dev="configfs" ino=20117 res=0 errno=0 [ 196.345453][ T8263] ALUA LU Group already has a valid ID, ignoring request [ 196.816233][ T8293] FAULT_INJECTION: forcing a failure. [ 196.816233][ T8293] name failslab, interval 1, probability 0, space 0, times 0 [ 196.884179][ T8293] CPU: 0 UID: 0 PID: 8293 Comm: syz.1.460 Tainted: G L syzkaller #0 PREEMPT(full) [ 196.884206][ T8293] Tainted: [L]=SOFTLOCKUP [ 196.884211][ T8293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 196.884220][ T8293] Call Trace: [ 196.884225][ T8293] [ 196.884231][ T8293] dump_stack_lvl+0x100/0x190 [ 196.884252][ T8293] should_fail_ex.cold+0x5/0xa [ 196.884285][ T8293] should_failslab+0xc2/0x120 [ 196.884304][ T8293] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 196.884327][ T8293] ? vm_area_alloc+0x1f/0x160 [ 196.884352][ T8293] vm_area_alloc+0x1f/0x160 [ 196.884372][ T8293] __mmap_region+0x104d/0x2da0 [ 196.884404][ T8293] ? __pfx___mmap_region+0x10/0x10 [ 196.884433][ T8293] ? stack_depot_save_flags+0x27/0x9d0 [ 196.884463][ T8293] ? __lock_acquire+0x4a5/0x2630 [ 196.884478][ T8293] ? do_raw_spin_unlock+0x145/0x1e0 [ 196.884495][ T8293] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 196.884523][ T8293] ? rcu_is_watching+0x12/0xc0 [ 196.884548][ T8293] ? rcu_is_watching+0x12/0xc0 [ 196.884565][ T8293] ? finish_task_switch.isra.0+0x2cb/0x1010 [ 196.884585][ T8293] ? lockdep_hardirqs_on+0x78/0x100 [ 196.884631][ T8293] mmap_region+0x35d/0x620 [ 196.884646][ T8293] ? rcu_is_watching+0x12/0xc0 [ 196.884663][ T8293] ? __pfx_mmap_region+0x10/0x10 [ 196.884679][ T8293] ? cap_mmap_addr+0x4b/0x120 [ 196.884699][ T8293] ? bpf_lsm_mmap_addr+0x9/0x30 [ 196.884712][ T8293] ? security_mmap_addr+0x71/0x1e0 [ 196.884729][ T8293] ? __get_unmapped_area+0x255/0x3e0 [ 196.884749][ T8293] do_mmap+0xc63/0x12f0 [ 196.884769][ T8293] ? __pfx_do_mmap+0x10/0x10 [ 196.884787][ T8293] ? __pfx_down_write_killable+0x10/0x10 [ 196.884811][ T8293] vm_mmap_pgoff+0x29e/0x470 [ 196.884833][ T8293] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 196.884852][ T8293] ? do_futex+0x192/0x350 [ 196.884868][ T8293] ? __pfx_do_futex+0x10/0x10 [ 196.884882][ T8293] ? __pfx_do_sys_openat2+0x10/0x10 [ 196.884908][ T8293] ksys_mmap_pgoff+0xe4/0x610 [ 196.884925][ T8293] ? __x64_sys_futex+0x358/0x4d0 [ 196.884942][ T8293] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 196.884958][ T8293] ? xfd_validate_state+0x129/0x190 [ 196.884978][ T8293] __x64_sys_mmap+0x125/0x190 [ 196.884996][ T8293] do_syscall_64+0x10b/0xf80 [ 196.885014][ T8293] ? clear_bhb_loop+0x40/0x90 [ 196.885032][ T8293] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.885047][ T8293] RIP: 0033:0x7fc36e59cdd9 [ 196.885060][ T8293] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 196.885074][ T8293] RSP: 002b:00007fc36f400028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 196.885089][ T8293] RAX: ffffffffffffffda RBX: 00007fc36e815fa0 RCX: 00007fc36e59cdd9 [ 196.885099][ T8293] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000 [ 196.885108][ T8293] RBP: 00007fc36e632d69 R08: fffffffffffffffa R09: 0000000000008000 [ 196.885117][ T8293] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 196.885126][ T8293] R13: 00007fc36e816038 R14: 00007fc36e815fa0 R15: 00007fffb5675708 [ 196.885145][ T8293] [ 197.613046][ T8294] vmstat_refresh: nr_hugetlb -512 [ 197.843164][ T5639] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 198.658088][ T8326] FAULT_INJECTION: forcing a failure. [ 198.658088][ T8326] name failslab, interval 1, probability 0, space 0, times 0 [ 198.741915][ T8326] CPU: 0 UID: 0 PID: 8326 Comm: syz.0.466 Tainted: G L syzkaller #0 PREEMPT(full) [ 198.741942][ T8326] Tainted: [L]=SOFTLOCKUP [ 198.741948][ T8326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 198.741956][ T8326] Call Trace: [ 198.741962][ T8326] [ 198.741968][ T8326] dump_stack_lvl+0x100/0x190 [ 198.741991][ T8326] should_fail_ex.cold+0x5/0xa [ 198.742010][ T8326] should_failslab+0xc2/0x120 [ 198.742028][ T8326] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 198.742050][ T8326] ? __kernfs_new_node+0xd2/0x9f0 [ 198.742071][ T8326] __kernfs_new_node+0xd2/0x9f0 [ 198.742090][ T8326] ? __pfx___kernfs_new_node+0x10/0x10 [ 198.742110][ T8326] ? find_held_lock+0x2b/0x80 [ 198.742129][ T8326] ? kernfs_root+0xee/0x2a0 [ 198.742143][ T8326] ? kernfs_root+0xee/0x2a0 [ 198.742166][ T8326] kernfs_new_node+0x11b/0x1a0 [ 198.742187][ T8326] __kernfs_create_file+0x53/0x350 [ 198.742210][ T8326] sysfs_add_file_mode_ns+0x207/0x3c0 [ 198.742230][ T8326] internal_create_group+0x593/0xf40 [ 198.742259][ T8326] ? __pfx_internal_create_group+0x10/0x10 [ 198.742280][ T8326] ? kernfs_create_link+0x1bd/0x240 [ 198.742304][ T8326] internal_create_groups+0x9d/0x150 [ 198.742323][ T8326] device_add+0x71a/0x1950 [ 198.742343][ T8326] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 198.742364][ T8326] ? __pfx_device_add+0x10/0x10 [ 198.742381][ T8326] ? lockdep_init_map_type+0x5c/0x250 [ 198.742397][ T8326] ? __init_waitqueue_head+0xca/0x150 [ 198.742419][ T8326] netdev_register_kobject+0x1a9/0x3d0 [ 198.742441][ T8326] register_netdevice+0x151c/0x24b0 [ 198.742463][ T8326] ? __pfx_register_netdevice+0x10/0x10 [ 198.742478][ T8326] ? net_generic+0xea/0x2a0 [ 198.742503][ T8326] ppp_dev_configure+0x986/0xcb0 [ 198.742528][ T8326] ppp_ioctl+0x9d7/0x27c0 [ 198.742550][ T8326] ? find_held_lock+0x2b/0x80 [ 198.742569][ T8326] ? __pfx_ppp_ioctl+0x10/0x10 [ 198.742593][ T8326] ? __fget_files+0x21f/0x3d0 [ 198.742612][ T8326] ? __pfx_ppp_ioctl+0x10/0x10 [ 198.742634][ T8326] __x64_sys_ioctl+0x18e/0x210 [ 198.742650][ T8326] do_syscall_64+0x10b/0xf80 [ 198.742669][ T8326] ? clear_bhb_loop+0x40/0x90 [ 198.742688][ T8326] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 198.742703][ T8326] RIP: 0033:0x7f6c62f9cdd9 [ 198.742716][ T8326] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 198.742731][ T8326] RSP: 002b:00007f6c63de6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 198.742746][ T8326] RAX: ffffffffffffffda RBX: 00007f6c63215fa0 RCX: 00007f6c62f9cdd9 [ 198.742756][ T8326] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000007 [ 198.742764][ T8326] RBP: 00007f6c63032d69 R08: 0000000000000000 R09: 0000000000000000 [ 198.742773][ T8326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 198.742782][ T8326] R13: 00007f6c63216038 R14: 00007f6c63215fa0 R15: 00007ffebfe7a5b8 [ 198.742802][ T8326] [ 199.870827][ T8347] netlink: 8 bytes leftover after parsing attributes in process `syz.0.469'. [ 199.917466][ T5639] Bluetooth: hci0: command 0x0c1a tx timeout [ 200.572670][ T8375] netlink: 28 bytes leftover after parsing attributes in process `syz.3.476'. [ 200.641769][ T8375] netlink: 29 bytes leftover after parsing attributes in process `syz.3.476'. [ 200.692025][ T8378] FAULT_INJECTION: forcing a failure. [ 200.692025][ T8378] name failslab, interval 1, probability 0, space 0, times 0 [ 200.831780][ T8378] CPU: 0 UID: 0 PID: 8378 Comm: syz.0.477 Tainted: G L syzkaller #0 PREEMPT(full) [ 200.831806][ T8378] Tainted: [L]=SOFTLOCKUP [ 200.831811][ T8378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 200.831820][ T8378] Call Trace: [ 200.831825][ T8378] [ 200.831831][ T8378] dump_stack_lvl+0x100/0x190 [ 200.831853][ T8378] should_fail_ex.cold+0x5/0xa [ 200.831873][ T8378] should_failslab+0xc2/0x120 [ 200.831896][ T8378] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 200.831913][ T8378] ? kstrdup_const+0x63/0x80 [ 200.831933][ T8378] kstrdup+0x51/0xe0 [ 200.831949][ T8378] kstrdup_const+0x63/0x80 [ 200.831965][ T8378] alloc_vfsmnt+0xe5/0x6a0 [ 200.831985][ T8378] ? __pfx___might_resched+0x10/0x10 [ 200.832003][ T8378] clone_mnt+0x4b/0x930 [ 200.832027][ T8378] copy_tree+0xfc/0xbf0 [ 200.832045][ T8378] ? __pfx_down_write+0x10/0x10 [ 200.832070][ T8378] copy_mnt_ns+0x3fa/0x1180 [ 200.832097][ T8378] ? __pfx_copy_mnt_ns+0x10/0x10 [ 200.832119][ T8378] ? kmem_cache_alloc_noprof+0x292/0x6e0 [ 200.832140][ T8378] ? create_new_namespaces+0x30/0xac0 [ 200.832159][ T8378] ? rcu_is_watching+0x12/0xc0 [ 200.832179][ T8378] create_new_namespaces+0xd3/0xac0 [ 200.832196][ T8378] ? bpf_lsm_capable+0x9/0x10 [ 200.832212][ T8378] ? security_capable+0x80/0x260 [ 200.832236][ T8378] unshare_nsproxy_namespaces+0xf2/0x220 [ 200.832257][ T8378] ksys_unshare+0x438/0xab0 [ 200.832279][ T8378] ? __pfx_ksys_unshare+0x10/0x10 [ 200.832300][ T8378] ? xfd_validate_state+0x129/0x190 [ 200.832314][ T8378] ? ksys_write+0x1ac/0x250 [ 200.832336][ T8378] __x64_sys_unshare+0x31/0x40 [ 200.832357][ T8378] do_syscall_64+0x10b/0xf80 [ 200.832375][ T8378] ? clear_bhb_loop+0x40/0x90 [ 200.832393][ T8378] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 200.832408][ T8378] RIP: 0033:0x7f6c62f9cdd9 [ 200.832421][ T8378] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 200.832434][ T8378] RSP: 002b:00007f6c63de6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 200.832449][ T8378] RAX: ffffffffffffffda RBX: 00007f6c63215fa0 RCX: 00007f6c62f9cdd9 [ 200.832459][ T8378] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000020000 [ 200.832467][ T8378] RBP: 00007f6c63032d69 R08: 0000000000000000 R09: 0000000000000000 [ 200.832476][ T8378] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 200.832484][ T8378] R13: 00007f6c63216038 R14: 00007f6c63215fa0 R15: 00007ffebfe7a5b8 [ 200.832504][ T8378] [ 201.616104][ T8380] ubi0: attaching mtd0 [ 201.637595][ T8380] ubi0: scanning is finished [ 201.650472][ T8380] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 201.995801][ T5631] Bluetooth: hci0: command 0x0c1a tx timeout [ 202.431847][ T8380] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 203.913277][ T8410] random: crng reseeded on system resumption [ 207.391559][ T8490] netlink: 361 bytes leftover after parsing attributes in process `syz.0.497'. [ 213.480490][ T5639] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 213.538980][ T8612] FAULT_INJECTION: forcing a failure. [ 213.538980][ T8612] name failslab, interval 1, probability 0, space 0, times 0 [ 213.709235][ T8617] futex_wake_op: syz.0.523 tries to shift op by -2048; fix this program [ 213.806474][ T8612] CPU: 0 UID: 0 PID: 8612 Comm: syz.0.523 Tainted: G L syzkaller #0 PREEMPT(full) [ 213.806501][ T8612] Tainted: [L]=SOFTLOCKUP [ 213.806507][ T8612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 213.806516][ T8612] Call Trace: [ 213.806522][ T8612] [ 213.806528][ T8612] dump_stack_lvl+0x100/0x190 [ 213.806549][ T8612] should_fail_ex.cold+0x5/0xa [ 213.806569][ T8612] should_failslab+0xc2/0x120 [ 213.806588][ T8612] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 213.806610][ T8612] ? __kernfs_new_node+0xd2/0x9f0 [ 213.806630][ T8612] __kernfs_new_node+0xd2/0x9f0 [ 213.806649][ T8612] ? __pfx___kernfs_new_node+0x10/0x10 [ 213.806669][ T8612] ? find_held_lock+0x2b/0x80 [ 213.806688][ T8612] ? kernfs_root+0xee/0x2a0 [ 213.806710][ T8612] ? kernfs_root+0xee/0x2a0 [ 213.806730][ T8612] kernfs_new_node+0x11b/0x1a0 [ 213.806751][ T8612] __kernfs_create_file+0x53/0x350 [ 213.806776][ T8612] sysfs_add_file_mode_ns+0x207/0x3c0 [ 213.806796][ T8612] sysfs_merge_group+0x194/0x340 [ 213.806815][ T8612] ? __pfx_sysfs_merge_group+0x10/0x10 [ 213.806831][ T8612] ? bus_add_device+0x368/0x6b0 [ 213.806855][ T8612] ? __pfx_bus_add_device+0x10/0x10 [ 213.806876][ T8612] ? __pfx_dev_add_physical_location+0x10/0x10 [ 213.806899][ T8612] dpm_sysfs_add+0x237/0x280 [ 213.806918][ T8612] device_add+0x9ef/0x1950 [ 213.806937][ T8612] ? __pfx_device_add+0x10/0x10 [ 213.806955][ T8612] ? lockdep_init_map_type+0x5c/0x250 [ 213.806970][ T8612] ? __init_waitqueue_head+0xca/0x150 [ 213.806992][ T8612] rfkill_register+0x1ad/0xb30 [ 213.807011][ T8612] nfc_register_device+0x11f/0x3e0 [ 213.807031][ T8612] nci_register_device+0x7f1/0xb80 [ 213.807047][ T8612] ? __pfx_nci_register_device+0x10/0x10 [ 213.807065][ T8612] ? lockdep_init_map_type+0x5c/0x250 [ 213.807083][ T8612] virtual_ncidev_open+0x141/0x220 [ 213.807105][ T8612] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 213.807125][ T8612] misc_open+0x26d/0x450 [ 213.807143][ T8612] ? __pfx_misc_open+0x10/0x10 [ 213.807160][ T8612] chrdev_open+0x234/0x6a0 [ 213.807178][ T8612] ? __pfx_apparmor_file_open+0x10/0x10 [ 213.807200][ T8612] ? __pfx_chrdev_open+0x10/0x10 [ 213.807219][ T8612] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 213.807242][ T8612] do_dentry_open+0x6d8/0x1660 [ 213.807260][ T8612] ? __pfx_chrdev_open+0x10/0x10 [ 213.807283][ T8612] vfs_open+0x82/0x3f0 [ 213.807306][ T8612] path_openat+0x208c/0x31a0 [ 213.807331][ T8612] ? __pfx_path_openat+0x10/0x10 [ 213.807356][ T8612] do_file_open+0x20e/0x430 [ 213.807375][ T8612] ? __pfx_do_file_open+0x10/0x10 [ 213.807406][ T8612] ? alloc_fd+0x476/0x790 [ 213.807426][ T8612] ? do_getname+0x191/0x390 [ 213.807448][ T8612] do_sys_openat2+0x10d/0x1e0 [ 213.807470][ T8612] ? __pfx_do_sys_openat2+0x10/0x10 [ 213.807493][ T8612] ? __fget_files+0x21f/0x3d0 [ 213.807513][ T8612] __x64_sys_openat+0x12d/0x210 [ 213.807536][ T8612] ? __pfx___x64_sys_openat+0x10/0x10 [ 213.807561][ T8612] ? rcu_is_watching+0x12/0xc0 [ 213.807581][ T8612] do_syscall_64+0x10b/0xf80 [ 213.807600][ T8612] ? clear_bhb_loop+0x40/0x90 [ 213.807618][ T8612] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 213.807633][ T8612] RIP: 0033:0x7f6c62f9cdd9 [ 213.807647][ T8612] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 213.807660][ T8612] RSP: 002b:00007f6c63da4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 213.807675][ T8612] RAX: ffffffffffffffda RBX: 00007f6c63216180 RCX: 00007f6c62f9cdd9 [ 213.807685][ T8612] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 213.807701][ T8612] RBP: 00007f6c63032d69 R08: 0000000000000000 R09: 0000000000000000 [ 213.807710][ T8612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 213.807719][ T8612] R13: 00007f6c63216218 R14: 00007f6c63216180 R15: 00007ffebfe7a5b8 [ 213.807740][ T8612] [ 214.983811][ T8617] futex_wake_op: syz.0.523 tries to shift op by -2048; fix this program [ 216.292625][ T8607] Process accounting resumed [ 218.492391][ T29] audit: type=1800 audit(1777818390.129:6): pid=8661 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.530" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0 [ 218.588248][ T8669] FAULT_INJECTION: forcing a failure. [ 218.588248][ T8669] name failslab, interval 1, probability 0, space 0, times 0 [ 218.679110][ T8669] CPU: 0 UID: 0 PID: 8669 Comm: syz.3.535 Tainted: G L syzkaller #0 PREEMPT(full) [ 218.679136][ T8669] Tainted: [L]=SOFTLOCKUP [ 218.679142][ T8669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 218.679151][ T8669] Call Trace: [ 218.679157][ T8669] [ 218.679163][ T8669] dump_stack_lvl+0x100/0x190 [ 218.679185][ T8669] should_fail_ex.cold+0x5/0xa [ 218.679205][ T8669] should_failslab+0xc2/0x120 [ 218.679223][ T8669] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 218.679245][ T8669] ? __kernfs_new_node+0xd2/0x9f0 [ 218.679266][ T8669] __kernfs_new_node+0xd2/0x9f0 [ 218.679291][ T8669] ? kernfs_add_one+0x214/0x850 [ 218.679309][ T8669] ? __pfx___kernfs_new_node+0x10/0x10 [ 218.679331][ T8669] ? find_held_lock+0x2b/0x80 [ 218.679350][ T8669] ? kernfs_root+0xee/0x2a0 [ 218.679365][ T8669] ? kernfs_root+0xee/0x2a0 [ 218.679384][ T8669] kernfs_new_node+0x11b/0x1a0 [ 218.679405][ T8669] kernfs_create_link+0xcc/0x240 [ 218.679429][ T8669] sysfs_do_create_link_sd+0x90/0x140 [ 218.679446][ T8669] sysfs_create_link+0x61/0xc0 [ 218.679461][ T8669] device_add+0x553/0x1950 [ 218.679481][ T8669] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 218.679502][ T8669] ? __pfx_device_add+0x10/0x10 [ 218.679519][ T8669] ? lockdep_init_map_type+0x5c/0x250 [ 218.679534][ T8669] ? __init_waitqueue_head+0xca/0x150 [ 218.679556][ T8669] netdev_register_kobject+0x1a9/0x3d0 [ 218.679579][ T8669] register_netdevice+0x151c/0x24b0 [ 218.679601][ T8669] ? __pfx_register_netdevice+0x10/0x10 [ 218.679617][ T8669] ? net_generic+0xea/0x2a0 [ 218.679641][ T8669] ppp_dev_configure+0x986/0xcb0 [ 218.679667][ T8669] ppp_ioctl+0x9d7/0x27c0 [ 218.679689][ T8669] ? find_held_lock+0x2b/0x80 [ 218.679708][ T8669] ? __pfx_ppp_ioctl+0x10/0x10 [ 218.679731][ T8669] ? __fget_files+0x21f/0x3d0 [ 218.679751][ T8669] ? __pfx_ppp_ioctl+0x10/0x10 [ 218.679772][ T8669] __x64_sys_ioctl+0x18e/0x210 [ 218.679789][ T8669] do_syscall_64+0x10b/0xf80 [ 218.679807][ T8669] ? clear_bhb_loop+0x40/0x90 [ 218.679826][ T8669] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 218.679841][ T8669] RIP: 0033:0x7f9fb679cdd9 [ 218.679854][ T8669] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 218.679869][ T8669] RSP: 002b:00007f9fb75a8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 218.679883][ T8669] RAX: ffffffffffffffda RBX: 00007f9fb6a15fa0 RCX: 00007f9fb679cdd9 [ 218.679893][ T8669] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 000000000000000b [ 218.679902][ T8669] RBP: 00007f9fb6832d69 R08: 0000000000000000 R09: 0000000000000000 [ 218.679911][ T8669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 218.679920][ T8669] R13: 00007f9fb6a16038 R14: 00007f9fb6a15fa0 R15: 00007fff687ebf78 [ 218.679939][ T8669] [ 221.371556][ T8707] netlink: 28 bytes leftover after parsing attributes in process `syz.1.543'. [ 221.480859][ T8707] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 221.521818][ T8707] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 221.573077][ T8707] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 221.628413][ T8707] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 221.980861][ T8720] ================================================================== [ 221.988942][ T8720] BUG: KASAN: slab-out-of-bounds in cache_seq_start_rcu+0x3fe/0x420 [ 221.996952][ T8720] Read of size 8 at addr ffff8880236e3800 by task syz.1.546/8720 [ 222.005003][ T8720] [ 222.007316][ T8720] CPU: 0 UID: 0 PID: 8720 Comm: syz.1.546 Tainted: G L syzkaller #0 PREEMPT(full) [ 222.007338][ T8720] Tainted: [L]=SOFTLOCKUP [ 222.007343][ T8720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 222.007351][ T8720] Call Trace: [ 222.007358][ T8720] [ 222.007364][ T8720] dump_stack_lvl+0x100/0x190 [ 222.007382][ T8720] print_report+0x13d/0x4b0 [ 222.007403][ T8720] ? __virt_addr_valid+0x239/0x430 [ 222.007427][ T8720] ? cache_seq_start_rcu+0x3fe/0x420 [ 222.007447][ T8720] kasan_report+0xdf/0x1d0 [ 222.007464][ T8720] ? cache_seq_start_rcu+0x3fe/0x420 [ 222.007486][ T8720] cache_seq_start_rcu+0x3fe/0x420 [ 222.007508][ T8720] seq_read_iter+0x2c1/0x1270 [ 222.007527][ T8720] seq_read+0x33b/0x4c0 [ 222.007542][ T8720] ? __pfx_seq_read+0x10/0x10 [ 222.007558][ T8720] ? lock_acquire+0x1b1/0x370 [ 222.007574][ T8720] ? __pfx_seq_read+0x10/0x10 [ 222.007588][ T8720] proc_reg_read+0x240/0x330 [ 222.007605][ T8720] ? __pfx_proc_reg_read+0x10/0x10 [ 222.007622][ T8720] vfs_read+0x1e4/0xb30 [ 222.007638][ T8720] ? __pfx_vfs_read+0x10/0x10 [ 222.007653][ T8720] ? __fget_files+0x215/0x3d0 [ 222.007670][ T8720] ? __fget_files+0x21f/0x3d0 [ 222.007689][ T8720] ksys_read+0x12a/0x250 [ 222.007703][ T8720] ? __pfx_ksys_read+0x10/0x10 [ 222.007719][ T8720] ? rcu_is_watching+0x12/0xc0 [ 222.007738][ T8720] do_syscall_64+0x10b/0xf80 [ 222.007756][ T8720] ? clear_bhb_loop+0x40/0x90 [ 222.007772][ T8720] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 222.007787][ T8720] RIP: 0033:0x7fc36e59cdd9 [ 222.007800][ T8720] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 222.007813][ T8720] RSP: 002b:00007fc36f3df028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 222.007828][ T8720] RAX: ffffffffffffffda RBX: 00007fc36e816090 RCX: 00007fc36e59cdd9 [ 222.007837][ T8720] RDX: 000000000000067b RSI: 0000200000000440 RDI: 0000000000000005 [ 222.007846][ T8720] RBP: 00007fc36e632d69 R08: 0000000000000000 R09: 0000000000000000 [ 222.007855][ T8720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 222.007864][ T8720] R13: 00007fc36e816128 R14: 00007fc36e816090 R15: 00007fffb5675708 [ 222.007878][ T8720] [ 222.007887][ T8720] [ 222.229679][ T8720] Allocated by task 5628: [ 222.233994][ T8720] kasan_save_stack+0x30/0x50 [ 222.238656][ T8720] kasan_save_track+0x14/0x30 [ 222.243317][ T8720] __kasan_kmalloc+0xaa/0xb0 [ 222.247883][ T8720] __kmalloc_noprof+0x301/0x850 [ 222.252722][ T8720] cache_create_net+0xa2/0x1f0 [ 222.257469][ T8720] nfsd_idmap_init+0x62/0x250 [ 222.262128][ T8720] nfsd_net_init+0x85/0x3e0 [ 222.266615][ T8720] ops_init+0x1e2/0x5f0 [ 222.270753][ T8720] setup_net+0x118/0x3a0 [ 222.274974][ T8720] copy_net_ns+0x46f/0x7c0 [ 222.279370][ T8720] create_new_namespaces+0x3ea/0xac0 [ 222.284641][ T8720] unshare_nsproxy_namespaces+0xf2/0x220 [ 222.290255][ T8720] ksys_unshare+0x438/0xab0 [ 222.294744][ T8720] __x64_sys_unshare+0x31/0x40 [ 222.299491][ T8720] do_syscall_64+0x10b/0xf80 [ 222.304061][ T8720] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 222.309934][ T8720] [ 222.312238][ T8720] The buggy address belongs to the object at ffff8880236e3000 [ 222.312238][ T8720] which belongs to the cache kmalloc-2k of size 2048 [ 222.326265][ T8720] The buggy address is located 0 bytes to the right of [ 222.326265][ T8720] allocated 2048-byte region [ffff8880236e3000, ffff8880236e3800) [ 222.340903][ T8720] [ 222.343210][ T8720] The buggy address belongs to the physical page: [ 222.349605][ T8720] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff8880236e1000 pfn:0x236e0 [ 222.359659][ T8720] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 222.368143][ T8720] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff) [ 222.376632][ T8720] page_type: f5(slab) [ 222.380783][ T8720] raw: 00fff00000000240 ffff88813fe2f000 ffffea0000b4e010 ffffea0000a99010 [ 222.389364][ T8720] raw: ffff8880236e1000 0000000800080007 00000000f5000000 0000000000000000 [ 222.397945][ T8720] head: 00fff00000000240 ffff88813fe2f000 ffffea0000b4e010 ffffea0000a99010 [ 222.406600][ T8720] head: ffff8880236e1000 0000000800080007 00000000f5000000 0000000000000000 [ 222.415259][ T8720] head: 00fff00000000003 fffffffffffffe01 00000000ffffffff 00000000ffffffff [ 222.423914][ T8720] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 222.432563][ T8720] page dumped because: kasan: bad access detected [ 222.438965][ T8720] page_owner tracks the page as allocated [ 222.444656][ T8720] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 3396787490, free_ts 0 [ 222.464261][ T8720] post_alloc_hook+0x153/0x170 [ 222.469022][ T8720] get_page_from_freelist+0x11a6/0x33b0 [ 222.474559][ T8720] __alloc_frozen_pages_noprof+0x27c/0x2bc0 [ 222.480446][ T8720] new_slab+0xa6/0x6c0 [ 222.484500][ T8720] refill_objects+0x277/0x420 [ 222.489164][ T8720] __pcs_replace_empty_main+0x375/0x650 [ 222.494698][ T8720] __kmalloc_cache_noprof+0x493/0x6f0 [ 222.500057][ T8720] acpi_ds_create_walk_state+0x95/0x300 [ 222.505590][ T8720] acpi_ds_call_control_method+0x226/0xab0 [ 222.511388][ T8720] acpi_ps_parse_aml+0xacd/0x1120 [ 222.516401][ T8720] acpi_ps_execute_method+0x5c4/0xe90 [ 222.521755][ T8720] acpi_ns_evaluate+0x640/0x1670 [ 222.526677][ T8720] acpi_evaluate_object+0x420/0xe00 [ 222.531869][ T8720] acpi_evaluate_integer+0xdf/0x220 [ 222.537064][ T8720] acpi_bus_get_status+0x1a1/0x430 [ 222.542183][ T8720] acpi_bus_attach+0xe5/0xbc0 [ 222.546868][ T8720] page_owner free stack trace missing [ 222.552218][ T8720] [ 222.554521][ T8720] Memory state around the buggy address: [ 222.560127][ T8720] ffff8880236e3700: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 222.568192][ T8720] ffff8880236e3780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 222.576238][ T8720] >ffff8880236e3800: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 222.584277][ T8720] ^ [ 222.588330][ T8720] ffff8880236e3880: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 222.596378][ T8720] ffff8880236e3900: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 222.604636][ T8720] ================================================================== [ 224.052959][ T8719] ubi0: attaching mtd0 [ 224.063736][ T8719] ubi0: scanning is finished [ 224.073934][ T8719] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 224.093882][ T8720] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 224.101073][ T8720] CPU: 0 UID: 0 PID: 8720 Comm: syz.1.546 Tainted: G L syzkaller #0 PREEMPT(full) [ 224.111813][ T8720] Tainted: [L]=SOFTLOCKUP [ 224.116110][ T8720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 224.126143][ T8720] Call Trace: [ 224.129401][ T8720] [ 224.132313][ T8720] dump_stack_lvl+0x100/0x190 [ 224.136973][ T8720] vpanic+0x552/0x970 [ 224.140939][ T8720] ? __pfx_vpanic+0x10/0x10 [ 224.145420][ T8720] ? cache_seq_start_rcu+0x3fe/0x420 [ 224.150701][ T8720] panic+0xd1/0xe0 [ 224.154402][ T8720] ? __pfx_panic+0x10/0x10 [ 224.158799][ T8720] ? cache_seq_start_rcu+0x3fe/0x420 [ 224.164069][ T8720] ? preempt_schedule_common+0x42/0xc0 [ 224.169514][ T8720] ? check_panic_on_warn+0x1f/0x90 [ 224.174605][ T8720] check_panic_on_warn.cold+0x19/0x34 [ 224.179957][ T8720] end_report.part.0+0x3a/0x90 [ 224.184719][ T8720] kasan_report.cold+0xe/0x18 [ 224.189383][ T8720] ? cache_seq_start_rcu+0x3fe/0x420 [ 224.194656][ T8720] cache_seq_start_rcu+0x3fe/0x420 [ 224.199760][ T8720] seq_read_iter+0x2c1/0x1270 [ 224.204426][ T8720] seq_read+0x33b/0x4c0 [ 224.208561][ T8720] ? __pfx_seq_read+0x10/0x10 [ 224.213218][ T8720] ? lock_acquire+0x1b1/0x370 [ 224.217876][ T8720] ? __pfx_seq_read+0x10/0x10 [ 224.222552][ T8720] proc_reg_read+0x240/0x330 [ 224.227123][ T8720] ? __pfx_proc_reg_read+0x10/0x10 [ 224.232218][ T8720] vfs_read+0x1e4/0xb30 [ 224.236357][ T8720] ? __pfx_vfs_read+0x10/0x10 [ 224.241015][ T8720] ? __fget_files+0x215/0x3d0 [ 224.245675][ T8720] ? __fget_files+0x21f/0x3d0 [ 224.250341][ T8720] ksys_read+0x12a/0x250 [ 224.254566][ T8720] ? __pfx_ksys_read+0x10/0x10 [ 224.259313][ T8720] ? rcu_is_watching+0x12/0xc0 [ 224.264060][ T8720] do_syscall_64+0x10b/0xf80 [ 224.268634][ T8720] ? clear_bhb_loop+0x40/0x90 [ 224.273293][ T8720] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 224.279169][ T8720] RIP: 0033:0x7fc36e59cdd9 [ 224.283564][ T8720] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 224.303498][ T8720] RSP: 002b:00007fc36f3df028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 224.311893][ T8720] RAX: ffffffffffffffda RBX: 00007fc36e816090 RCX: 00007fc36e59cdd9 [ 224.319847][ T8720] RDX: 000000000000067b RSI: 0000200000000440 RDI: 0000000000000005 [ 224.327799][ T8720] RBP: 00007fc36e632d69 R08: 0000000000000000 R09: 0000000000000000 [ 224.335749][ T8720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 224.343698][ T8720] R13: 00007fc36e816128 R14: 00007fc36e816090 R15: 00007fffb5675708 [ 224.351653][ T8720] [ 224.354712][ T8720] Kernel Offset: disabled [ 224.359020][ T8720] Rebooting in 86400 seconds..