last executing test programs: 9.775972222s ago: executing program 3 (id=947): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/sit0/ifindex\x00', 0x80000, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x202, 0x0) r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x2102, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x0) socket(0x1d, 0x2, 0x6) r3 = socket(0x2, 0x2, 0x1) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'vxcan1\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r4, 0xfd}, 0x6a) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bond0/bonding/resend_igmp\x00', 0x1e2142, 0x0) sendfile$auto(r2, r5, 0x0, 0x9) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x2) timer_create$auto_CLOCK_MONOTONIC(0x1, &(0x7f0000000080)={@sival_int=0x10, @inferred, 0x5}, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000500)='/dev/sequencer\x00', 0x80102, 0x0) r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) writev$auto(r6, &(0x7f0000000240)={0x0, 0x7}, 0x2) open(0x0, 0x4242, 0xe1d2b27bdc14aabc) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x4200, 0x0) close_range$auto(0x2, 0x8, 0x0) 9.434819773s ago: executing program 3 (id=948): mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xffffffffffffffff, 0x8000) mremap$auto(0x7, 0xffffffffffffffff, 0x3fda, 0x3, 0x7fffffffb000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000002680), 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_DEL_DAEMON(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x24, r1, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DAEMON={0x10, 0x3, 0x0, 0x1, [@typed={0xc, 0x1, 0x0, 0x0, @u64=0x1}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x40014}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000) r2 = pipe2$auto(0x0, 0x0) statx$auto(0xffffff9c, 0x0, 0x1000, 0xbb, 0x0) vmsplice$auto(r2, 0x0, 0x2, 0x2) 8.807321231s ago: executing program 3 (id=952): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) socket(0x11, 0x2, 0x300) rt_sigqueueinfo$auto(0x0, 0x4, &(0x7f0000000000)={@siginfo_0_0={0xf5, 0x14, 0x7e73, @_timer={0x0, 0x80000001, @sival_int=0x81, 0x1}}}) r1 = socket(0x11, 0x3, 0x9) sendmmsg$auto(r1, &(0x7f00000001c0)={{&(0x7f00000002c0)="0c6991b349bc0fabb974aa4f0f9c536b7bc169330522e69e6060edb92324b63e0d41120b7e8111b6d3d01dfd591ea496ae223f02c04462e33bab7237aad16ab5e116c80f53ab3ec5db6b0b2965afc4e90624c12d7c28f1a1b2dcf6b6b89dceba16ba405ee5bf0ba217dedad9e77e996b5766fd6ce437ed71e8b4c7060e23353af42e6c0b3d", 0x5ac, &(0x7f0000000100)={&(0x7f00000004c0)="5959e7488ae60100000000000000ea8a549f1ce466a26be8b0b50eff40c66d6bf0c981a0db5edba528b493edda4a033655e89e1afc06676facc65afab54cda45f2ad3924d156aefe5c4440066fd4ff81c0775ed28c48a9c3320b51e47130f5ee7876acc93e3cbc4466a3c59d17c14b673b133ed7f9d375d958b67da4f8a518498bcf707df76d56b5ccdaa094c3928143aece640a3da7a02e370ba93d245db9", 0x6}, 0x4, 0x0, 0x5, 0x401}, 0x5}, 0x2, 0x103) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xfffffffffffffffb) ioctl$auto_SOUND_PCM_READ_CHANNELS(r0, 0x80045006, &(0x7f0000000240)) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) preadv$auto(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000580)="522e68880b66e7c5f24fc44d94e39f53679f36e04b92f674ada7760ea80e37bb469357500e017f29e7eb2c5ebfee7548efd523ae6199e3f6caa510b91366e1748c71e2d79dbbb4e58f96d122c3685ce6b3fda30b6a3d7de0adf1b3094034bd55236900b4729261d5600a6434b9ba8948be7ac19251ce944fc54c9f7ac11b4e82d8291daf1f9f58cd41df5c0530fbcfcb3b56df2bf719c93f18577a1173804afe51a9d1dcac", 0xff}, 0x5, 0x3, 0x1) r2 = socket(0x2, 0x1, 0x106) setsockopt$auto(r2, 0x6, 0x6, &(0x7f0000000700)='\b\x00\x00\x00\xe4\x15\rq\tW\x9d=\x1e\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xe7\x9b\xdd\x1cp\x19\xa0\x9dHN\xb4\x7f\x7f\xa0\xeaI\xa1\x0f/\xfc\x8e\xf9\xa6x\xa0\xdeo\t\x826Xe(\x0e\xffr\r\x8d\xefh\xdbG\x8b\xde\xfd$\'\a ]\x91YP\x94\xd0\xd0\x02\x10\xb1_z\xa2Ql\x8c\x91\xca4\x118\xcd\xc3\x97\x03J:\x1e\xe5f\xcaq\xdf`\x01;\xf9{D2\xc9WV)\xa3JH\xf5\xf9\x16\xac\xa4\x155\x80\x01I\xd9\xa5\xd0\xf1\xbd\xa0\xa4\xa5q\xc6F\x940\x00\xf8\xef\xa4\xfd\xd2z\xf5\x91z<\x9f\xf0\x8f.\x81\x84\xed J&\x8f\xd9\xab-\xf8\xd0\xd3\xcea\x91pM0\xcd\x18\xb4\xe0u\x99\b\x19I\x87\xbb/1\xf9\x84\xbf\xcc\x0e5\xba\x9a\xba\xfb\xde\x16kU\x97\xec\xc6\xe15u\xd5\x94D\xab\xec.K\xfbD\x0f\xc16g\xf3`\x03O\xae]B@\x0e!n\x8dy\x97\xaa\xa7\x12\xbbyD\xd3\x82\xb3\x9a\x88L\x1b\x8b\xfb\xe7\xc8\xa8\xf66\x16\xe1\x04T\'/8a\xeb\xe6\xe6+!\x97\b\xc8;P\f~\x88\x02\x91 \xd3\x93\xa7.xCNA\xcax)\xb4\xdf\xfe/\xe40\xc6y\x13\x8d\bfJ\x85\x05\xf5\x9f\xea\x15\xe9{3\xcc\xac\x94w.%\x11_\xd3\xe2\xe9\x8c\x9c\xb1\xfb\xf9o\xf4\xc9\x88\xbd\x90p\xae\x8ap\xb9\xa4\xb7\xadv&\x999\xdf\x83\xae\xff\xa5\xfc\xd3\xc0!\xdc\xc4\xa0\xce8:\xeb~\x9b_F\x8f\xcaY\xa9\x89@\x99)\x1c\x8b\xc5\xb7\x10\xd1\xc8`\xb6\x8f\x136\xc3\x1e\xbd\x8e$\"\xbfJ\n\xd6\x0f\x9d\xcbr\xb7\xa8\xed\r+$\x94\x9b\xfe8\x8ao\xf8\xba\'i\xf1\xd3\x9c7P\xe3\x14\xa2\x1b-\xbb\xae\xe3P#:$\xaf\aB\xd2\x95\x18\\r\xd1\x80\x9fD\xd5\xaba\xc8\xd4\xd1\xb6\xf5\xb9\x16\xbb\xbc\xd6\xb3+\xdf\xfc\x89\x1f\xe9M|\x0e?g\x18\v\"', 0x4000007) getsockopt$auto(r2, 0x6, 0x6, &(0x7f0000000000)='\b\x00\x00\x00\xe4\x15\rq\tW\x9d=\x1e\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xe7\x9b\xdd\x1cp\x19\xa0\x9dHN\xb4\x7f\x7f\xa0\xeaI\xa1\x0f/\xfc\x8e\xf9\xa6x\xa0\xdeo\t\x826Xe(\x0e\xffr\r\x8d\xefh\xdbG\x8b\xde\xfd$\'\a ]\x91YP\x94\xd0\xd0\x02\x10\xb1_z\xa2Ql\x8c\x91\xca4\x118\xcd\xc3\x97\xdaJ:\x1e\xe5f\xcaq\xdf`\x01;\xf9{D2\xc9WV)\xa3JH\xf5\xf9\x16\xac\xa4\x155\x80\x01I\xd9\xa5\xd0\xf1\xbd\xa0\xa4\xa5q\xc6F\x940\x00\xf8\xef\xa4\xfd\xd2z\xf5\x91z<\x9f\xf0\x8f/\x81\x84\xed J&\x8f\xd9\xab-\xf8\xd0\xd3\xcea\x91pM0\xcd\x18\xb4\xe0u\x99\b', &(0x7f00000000c0)=0x800) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) ioctl$auto(0xffffffffffffffff, 0x4008550d, 0xffffffffffffffff) unshare$auto(0x40000080) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x400000000001, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xed\xf8\xe1\xbc\x1d\x91D\xe7R\x12\xc4\xcd\xc6\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY2@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(', 0x100000a3dd) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x281, 0x0) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/queues\x00', 0x20000, 0x0) read$auto_proc_reg_file_ops_compat_inode(r4, &(0x7f00000001c0)=""/218, 0xda) write$auto(0xffffffffffffffff, 0x0, 0x8) write$auto(0xca, &(0x7f00000000c0)='\x04>\x01\x01\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x96\b\'\x02\xb0\x93l\xeb\x87\r\b\x87\x14\xf8e6\x9c\f\xb6,NS\xa2(Q\xcc', 0x7f) statmount$auto(0x0, 0x0, 0x9, 0xd) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/module/virtio_snd/parameters/pcm_periods_max\x00', 0x4000, 0x0) 6.732491507s ago: executing program 3 (id=955): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x8000000000000000, 0x8000) close_range$auto(0x0, 0x5, 0x3) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/vivid.0/video4linux/video62/name\x00', 0x100, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/sit0/statistics/tx_compressed\x00', 0x80000, 0x0) socketpair$auto(0x1, 0x6, 0x8000000000000000, 0x0) socket(0x10, 0x2, 0x4) socket(0x2a, 0x2, 0x7) socket(0x2, 0x1, 0x0) r0 = open(&(0x7f0000000240)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0xa6) open_by_handle_at$auto(r0, 0x0, 0x2) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x11, 0x80003, 0x300) socket(0xa, 0x3, 0x6) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r2, r1, 0x9b, 0x8, 0x1, @relative_fd=r3, 0xd}, 0x92) bpf$auto(0x5, &(0x7f00000001c0)=@bpf_attr_7={@start_id=0x7fd, 0x80, 0x8, r4}, 0x4) r5 = open(0x0, 0x261c2, 0x81) bpf$auto(0x4, &(0x7f00000001c0)=@raw_tracepoint={0x5, r5, 0x0, 0x3}, 0xc) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000380)='/dev/loop8\x00', 0x28e80, 0x0) r6 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0) ioctl$auto(r6, 0x92106405, r6) close_range$auto(0x2, 0xa, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) 6.541037646s ago: executing program 3 (id=957): socket(0xa, 0x801, 0x84) open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) r0 = fanotify_init$auto(0xc00, 0x0) fanotify_mark$auto(r0, 0x6, 0x10000008, 0x4, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/zram0/algorithm_params\x00', 0xa001, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/lru_gen/enabled\x00', 0xb02, 0x0) sendfile$auto(r2, r2, 0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x1, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710, @hyper}, 0x55) setsockopt$auto(0x400000000000003, 0x28, 0x0, 0x0, 0x56b) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x6b874610b3d0b20f, 0x0) adjtimex$auto(&(0x7f0000000000)={0x16, 0x0, 0x7, 0x4, 0x7fffffff, 0x4, 0x100, 0x0, 0x5, 0xffffffffffff8000, 0x4, {0x3, 0x8}, 0xe5, 0x9, 0x9, 0x4, 0x0, 0x6, 0x6, 0x81, 0x20, 0xffffffffffff8472, 0x1000}) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r3 = socket(0x29, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) socketcall$auto_SYS_SOCKET(0x1, &(0x7f0000000100)=0x8) socket(0x2, 0x80002, 0x73) ioctl$auto(r3, 0x8914, 0x24) write$auto(r1, &(0x7f0000000000)='\"\x81=\"\xad\xff\x8d\xf9;\x18\xa4\xb0\xb4\xd9\x82=\xe1PFv\xfb&L\xeb=j\a\xf1y\xb3\"\xc0\x88\xbf\xaa\xec\"\x1cN\n\xba\xfc\xf9eW$,\x8b\x8f\x1b>\x03yg\xc2\xd9$\xe1\x9eY\xcag\xfb\xda\xcc4\x9c\xd1\x92\xbdp\x99\xc2{w\x1bx\xbcv\xf5<\xf8\x98:\xa9=tz=,\xaf\xffOV|\xc1pRa|\xca\x00\x00k$nM\x0f\xdd\xfb\xa7~\xc4\xcb\xc7\x05\xf9\xdf\xf4\x1e\x1d\x97+\v\xab\x0e', 0x40000000010) 5.25829958s ago: executing program 1 (id=960): ioperm$auto(0x7, 0x6, 0x80) syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) 5.243445301s ago: executing program 3 (id=961): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram10\x00', 0x100, 0x0) ioctl$auto_BLKIOMIN(r0, 0x1278, 0x0) openat$auto_supply_map_fops_(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) preadv$auto(0x3, &(0x7f00000004c0)={0x0, 0x8000000}, 0x3, 0x10000, 0x10) r1 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0x4000000000db, 0x12, 0x400, 0x18002) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x10, 0x9, r1, 0x5, 0x42c) madvise$auto(0x0, 0xffffffffffff0005, 0x19) getpriority$auto_PRIO_USER(0x2, 0x0) mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x8000) r2 = pipe2$auto(0x0, 0x80) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x4, 0x0, 0x1, 0x0) write$auto(0xffffffffffffffff, 0x0, 0xfff) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r4 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYRES16=r2], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) ioctl$auto_BINDER_SET_CONTEXT_MGR(0xffffffffffffffff, 0x40046207, 0x0) r5 = openat$auto_state_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x1e9482, 0x0) read$auto_state_fops_(r5, &(0x7f0000000180)=""/61, 0xfffffeeb) r6 = socket$nl_generic(0x10, 0x3, 0x10) write$auto_fops_x16_ro_(0xffffffffffffffff, &(0x7f0000000280)="28840e96ef30b2e731e8cbf2300f4d1020b565b080f935ec5398e7f0942f7a60e9009d0caf5a7a7837e91acf6ef92a8a5b955b357a97f029443e90ad91f8086f1713871929dc232ff8860d9dc7fc13aa813fd4fc59e6562039027d5322f78bb5b4bfb38b628754", 0x67) syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000080), r6) mmap$auto(0x0, 0x2020009, 0x3, 0x4000000000000eb1, 0xffffffffffffffff, 0x8000) 4.792035355s ago: executing program 1 (id=964): mmap$auto(0x1, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r0 = landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x0, 0x10000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x5) r1 = socket(0x2, 0x1, 0x106) mmap$auto(0xfffffffffffffffc, 0x100000001, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = io_uring_setup$auto(0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x18, 0x1, 0x84) bind$auto(r3, &(0x7f0000000100)=@in={0x2, 0x3, @remote}, 0x69) mmap$auto(0x0, 0x98c, 0xdf, 0xeb1, 0x401, 0x8000) r4 = socket(0x1d, 0x800, 0x7) setsockopt$auto(r4, 0x65, 0x3, 0x0, 0x4) setsockopt$auto(r1, 0xfffffffc, 0x203e, 0x0, 0x9) connect$auto(r0, &(0x7f00000018c0)=@l2={0x1f, 0x2, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x4, 0x1}, 0xfffffffc) setsockopt$auto(r1, 0x1, 0x9, 0x0, 0xeb66) r5 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0xcc3fb2c8bc98ad6f, 0x0) close_range$auto(r2, r4, 0x5) r6 = openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/available_events\x00', 0x1, 0x0) getsockopt$auto_SO_MEMINFO(r6, 0x0, 0x37, &(0x7f0000000040)='-!\x00', &(0x7f0000000080)=0x191c) epoll_ctl$auto(r6, 0x2a0, r4, &(0x7f00000001c0)={0x4}) r7 = getsockopt$auto(r6, 0x7, 0xc7, &(0x7f0000000340)='-!\x00', &(0x7f0000000240)=0xe) ioctl$auto_XFS_IOC_ERROR_CLEARALL(r7, 0x40085875, &(0x7f00000006c0)={0xffffffffffffffff, 0x8}) r9 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000940), 0xffffffffffffffff) sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(r8, &(0x7f0000000a00)={&(0x7f0000000200), 0xc, &(0x7f00000009c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="00022cbd7000f7db60b1549c5802509f250900000008000be0d31ef9c1a078692ed737ec51f0000000000000e9dcb76853973fb462a0559ed023dd2f6ca4192483a600100000000000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4080}, 0x10) sendmsg$auto_BATADV_CMD_GET_BLA_BACKBONE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x24008041}, 0x8001) ioctl$auto_VHOST_NET_SET_BACKEND(r5, 0x4008af83, 0x0) 4.527426445s ago: executing program 2 (id=965): sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) r0 = socket(0x2, 0x80802, 0x0) mmap$auto(0x0, 0x20009, 0x3, 0x40000000000eb1, 0x401, 0x8000) socket(0xa, 0x3, 0x3b) connect$auto(r0, &(0x7f0000000040)=@nl=@unspec, 0x5c) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x1a, 0x940, 0x1ffe1, 0x7f, 0x6, 0x5, 0x7f, 0x5, 0xfff, 0x7, 0x100000b0, 0x9, 0x5, 0x3, 0x5, 0x7, 0x20, 0x0, 0x8000000, 0x202, 0x0, 0x0, 0xfffffffffffffffd, 0x9, 0x0, 0x0, 0x2, [0x3, 0x0, 0x0, 0x4, 0x0, 0x0, 0x1, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x88dd, 0x0, 0x7ffb, 0x0, 0x6, 0xffffffffffffffff, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x5a7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff]}, 0x1fe, 0x81) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) (fail_nth: 8) r2 = bpf$auto(0x1, &(0x7f0000000000)=@batch={0xfffffffffffffffd, 0x44, 0x2000000000000004, 0x9, 0x80100, 0xffffffffffffffff, 0x2, 0x9}, 0x4) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x2049c0, 0x0) openat$auto_fuse_dir_operations_dir(0xffffffffffffff9c, 0x0, 0x101000, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x64, 0x9) madvise$auto(0x0, 0x200007, 0x19) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x9, 0x6, 0x0) ioctl$auto_XFS_IOC_FREESP64(r2, 0x40305825, 0x0) r3 = getpid() process_vm_readv$auto(r3, 0x0, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_REMOVE(r2, 0xc0405519, &(0x7f00000001c0)={@inferred, 0x80000001, 0xa, 0x7fff, "49f901eee23f87b20e4399bd24b6b6897deca86b6753ecfda891e351ec1d7f21e49681ac43a77bd1cdf1ca65", @inferred=r3}) r4 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200"], 0x1ac}}, 0x40000) rseq$auto(0x0, 0x18000, 0x3, 0x6) 3.887396805s ago: executing program 1 (id=966): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x8000000000000000, 0x8000) close_range$auto(0x0, 0x5, 0x3) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/vivid.0/video4linux/video62/name\x00', 0x100, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/sit0/statistics/tx_compressed\x00', 0x80000, 0x0) socketpair$auto(0x1, 0x6, 0x8000000000000000, 0x0) socket(0x10, 0x2, 0x4) socket(0x2a, 0x2, 0x7) socket(0x2, 0x1, 0x0) r0 = open(&(0x7f0000000240)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0xa6) open_by_handle_at$auto(r0, 0x0, 0x2) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x11, 0x80003, 0x300) socket(0xa, 0x3, 0x6) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r2, r1, 0x9b, 0x8, 0x1, @relative_fd=r3, 0xd}, 0x92) bpf$auto(0x5, &(0x7f00000001c0)=@bpf_attr_7={@start_id=0x7fd, 0x80, 0x8, r4}, 0x4) r5 = open(0x0, 0x261c2, 0x81) bpf$auto(0x4, &(0x7f00000001c0)=@raw_tracepoint={0x5, r5, 0x0, 0x3}, 0xc) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000380)='/dev/loop8\x00', 0x28e80, 0x0) r6 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0) ioctl$auto(r6, 0x92106405, r6) close_range$auto(0x2, 0xa, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) 3.660108624s ago: executing program 1 (id=967): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) socket(0x10, 0x2, 0x0) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x22a01, 0x0) getpid() unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_IPVS_CMD_GET_SERVICE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)=ANY=[@ANYBLOB=',\a\x00\x00', @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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"], 0x72c}, 0x1, 0x0, 0x0, 0x90}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r1, 0x0, 0x10a, 0x8, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) madvise$auto(0x0, 0x200007, 0x19) getcpu$auto(0xfffffffffffffffc, 0xffffffffffffffff, 0xfffffffffffffffd) fanotify_init$auto(0x65, 0x2) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) unshare$auto(0x20000080) syz_clone3(&(0x7f0000000280)={0x40c0680, 0x0, 0x0, 0x0, {0x17}, 0x0, 0x0, 0x0, 0x0, 0x5b}, 0x58) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0) 3.411978069s ago: executing program 2 (id=968): shmctl$auto_SHM_LOCK(0x7ff, 0xb, &(0x7f0000000140)={{0x6, 0xffffffffffffffff, 0xee01, 0xaf1, 0xa, 0x6, 0x1}, 0xca, 0xe42, 0x1, 0x8000000000000001, @raw=0x5, @raw=0x10000, 0x6, 0x0, 0x0, &(0x7f00000000c0)}) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x400c000) bpf$auto(0x5, &(0x7f0000000100)=@task_fd_query={0x2, 0x2, 0x4, 0x0, 0x85, 0x7, 0x9, 0x6, 0x8001}, 0x101) shmctl$auto_SHM_INFO(0x9, 0xe, &(0x7f0000000180)={{0x5, 0x0, 0x0, 0x0, 0xe5eb, 0x4, 0x26}, 0xfffff801, 0x4, 0x3, 0x6, @raw=0x4f23b906, @inferred, 0x5, 0x0, &(0x7f0000000000)="826737b620c8161235622c60efa41e9cf5a3b2076b4c8d9c478aa05edc0f93151503e3b52a017c07b18f470cf57f959469bafb7e65070400cdb9ed5e5a6642fd2092c445a89690c91f9863412c78d84561c0dd6ea1d64038cf9d384a9f1a5c5e568db5a38c7c19ec9c1e60e6d5f1ef6fd9cab79bdc162dbf98c903c7591402aa81f7451435f0309e6ce1783609107af4f0e8a9cff0c6af8c6ab640e28f5b4b95e0d3155d9952296bb16cc0d371fb368f43af44c7dc6afbca2d1f6a1d9337d89c0d6a43fd927181e9c5d0", &(0x7f0000000100)="0e3973c716ad247132d057820a73d027ffbca751cef916366b59c754103963bcd2ee45f03c7dba707020425eda92eed7a41912117eb86c7b7fa67feb7c8edbfaeea37daeeeb7afd796eef6f8ad18caa3cc59d3d24e8801"}) setresgid$auto(r0, 0xee01, r0) openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/mac80211_hwsim/hwsim15\x00', 0x180, 0x0) openat$auto_null_fops_mem(0xffffffffffffff9c, &(0x7f0000000240), 0x20a901, 0x0) socket(0x18, 0x5, 0x2) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/rxrpc/peers\x00', 0x1014a0, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) ioctl$auto(0x3, 0x4020aed2, r1) 3.369020629s ago: executing program 0 (id=969): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) (async) unshare$auto(0x40000080) (async) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mtdblock0\x00', 0x14fe02, 0x0) (async) r1 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card0\x00', 0x0, 0x0) ioctl$auto(r1, 0x64cd, r1) r2 = setfsuid$auto(0xee00) (async) r3 = setfsuid$auto(0xee01) setresuid$auto(r2, r3, r2) r4 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000040), 0x543081, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r4, 0x9, &(0x7f0000000180)="908ba07bb28b4960376326a7b96701e6781077c92376d8ce3b0c6845d0a83f493ad87392ab909764d3a661ce9d59ec3b82ddd1c6b2371b6473568b9bded85b7a46278cdc55463aaaf60dac2dc9bddca64f5ee1b1517633deb7ee1f6bc8e1caa932ba722e845679ea743234ddf8aaae29b1bfe1dac8a15bebc1cc19c43e5d5555411bb2aa4864f68a5b67570ca2f127e292121bfeea4fd897def83b44182cce1cfeb6cd45ebdbb1e71cb856d1c570c072e0270d783d66cfc87b62b7d2cfee8521f01c97491de144a3065ad4c17a9688aead47c56d7be099bab1eb7c") (async) r5 = setfsuid$auto(0xee01) setresuid$auto(0x0, r5, 0x0) (async) keyctl$auto(0x81e, r3, r5, 0xee00, 0xe) (async) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) (async) preadv2$auto(r0, 0x0, 0x6, 0xffffffffffffffff, 0x8000000000000, 0x2f) (async) close_range$auto(0x2, 0x8, 0x0) (async) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/vxlan/parameters/udp_port\x00', 0x2400, 0x0) read$auto(r6, 0x0, 0x20) socket$nl_generic(0x10, 0x3, 0x10) (async) r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (async) io_uring_setup$auto(0x4, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) r8 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r8, 0xae01, 0x0) (async) ioctl$auto(0x3, 0xae41, r8) ioctl$auto_KVM_CREATE_VM(r7, 0x4080aea2, 0x0) 3.193820215s ago: executing program 2 (id=970): socket(0x15, 0x5, 0x0) r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/security/tomoyo/query\x00', 0x400381, 0x0) mmap$auto(0x723, 0x5, 0xdf, 0x1f, 0xffffffffffffffff, 0x4000100007ffe) close_range$auto(0x0, 0xfffffffffffff000, 0x0) eventfd$auto(0x4) r1 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f00000000c0), 0x302, 0x0) ioctl$auto(r2, 0x4008af22, r1) mmap$auto(0x0, 0x2, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) openat$auto_lockdown_ops_lockdown(0xffffffffffffff9c, &(0x7f0000000000), 0x400280, 0x0) sysfs$auto(0x2, 0x3c, 0x0) mount$auto(0x0, &(0x7f0000000280)='.\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8fg\x1b\x04\xad>\x96\xe9IG\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\t\xf8p^\xcaL$\x00\xb9\xac\xde\x0e\x90\x18\xf1\x13I\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd\x14\x81\xbe\xab\xec\xd5MI\x830_\xc2\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xees\xf0\xc2\xad\xae\x99\xeb\xc5\xf0\"\x92\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14\x94o\x1b[\xa8]\x9b\x03\x95\xc3\xad\xad\x1d#oi|\x04\x93N\xfa\x17\xf3b\xf6\x00\x00\x00', 0x3, 0x0) symlink$auto(&(0x7f0000000080)='.\x00', &(0x7f0000000040)='./file0\x00') rt_tgsigqueueinfo$auto(0x0, 0x0, 0x16, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0/../file0\x00', &(0x7f00000002c0)={0x553c81, 0x10, 0x13}, 0x18) fsopen$auto(0x0, 0x200000) close_range$auto(0x2, 0x8, 0x0) write$auto_tomoyo_operations_securityfs_if(r0, &(0x7f0000000100)="0a1b9a3c3e3e006e163bb154d7886d8ea5c2574c58e9867ecec3371cadb848770dc8f745d1c76eedba12b9f694dabdbcf3401910bb713aca465c9bbc23b5d40a", 0x40) mmap$auto(0x5, 0x40009, 0xdf, 0x400010, r2, 0x28000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/net/afs/cells\x00', 0x88400, 0x0) io_uring_setup$auto(0xc, 0x0) pipe2$auto(0x0, 0x4) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000300), 0x200, 0x0) openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0) socketpair$auto(0x22, 0x8, 0x8000000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x6, 0x84) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram15\x00', 0x0, 0x0) open(0x0, 0x527d80, 0x518) 2.846969078s ago: executing program 2 (id=971): openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/conf/ip6gretap0/forwarding\x00', 0x202, 0x0) getsockopt$auto_SO_PROTOCOL(0xffffffffffffffff, 0xb29, 0x26, &(0x7f0000000080)='[(][MV\xfe2\xda\x92+/:$!.V', 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/sctp/udp_port\x00', 0x202, 0x0) sendfile$auto(r0, r0, 0x0, 0x7fffe000) writev$auto(0x8000, &(0x7f0000000040)={0x0, 0x1000000000004}, 0x2bc) r1 = io_uring_setup$auto(0x6, 0x0) poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108) mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) kexec_load$auto(0x100000000000000, 0x0, 0x0, 0xffffffff) close_range$auto(0x2, r1, 0x0) r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408) getdents$auto(r2, 0x0, 0x5f) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x2, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f00000003c0)=""/231, 0xe7) sendfile$auto(r3, r3, &(0x7f00000000c0)=0x1, 0xc9) fcntl$auto(0x8000000000000001, 0x25, 0x8) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0) r5 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/input/event1\x00', 0x2080, 0x0) ioctl$auto_EVIOCSCLOCKID(r5, 0x400445a0, &(0x7f0000000000)=0x1) mmap$auto(0x0, 0x810004, 0xffa, 0x8000000008011, r4, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@generic={0x5, "7dfffffff100"}, 0x6a) r6 = getpid() process_vm_readv$auto(r6, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000040), 0xffffffff}, 0x6, 0x0) r7 = socket(0x1e, 0x4, 0x0) setsockopt$auto(r7, 0x10f, 0x87, 0x0, 0x14) 2.672109734s ago: executing program 0 (id=972): mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) open$dir(&(0x7f00000001c0)='./file0\x00', 0x201, 0x0) open(&(0x7f00000002c0)='./file0\x00', 0x40a00, 0xfffe) 2.476341954s ago: executing program 0 (id=973): io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r0 = syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="530026bd703f029a5f326402360008000300", @ANYRES32], 0x28}, 0x1, 0x0, 0x0, 0x4004080}, 0x0) 2.210161935s ago: executing program 0 (id=974): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/net/bond0/bonding/arp_validate\x00', 0x2002, 0x0) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) fanotify_init$auto(0x3, 0x6) mmap$auto(0x0, 0x2000d, 0x7, 0xff, 0xffffffffffffffff, 0x10008000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) io_uring_setup$auto(0x5, 0x0) mknod$auto(&(0x7f0000000580)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_', 0x1081, 0x9) acct$auto(&(0x7f0000000480)='u[,&*}\x00\a\x00\'\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x0f\x18\xc5\x82-s\x83\xe6\xaeR\x81\r_\x0e\x19\x12\x85\bvf(e\xday)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbHL9aD\xb4\x80\xed\xba>\"\xb6\x7f\xa3f\x1d\a\xa1\x87\x84uA\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e') open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x880c2, 0xb3) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x5d7900, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, &(0x7f0000001480)={{@raw=0x9, 0x2, 0xf86b, 0x0, "e462f5a29a0b2f987b9ea452a1bc9eaafd83a8eb9eea79a10397a3126cb6c4380ae1dc84e847c5ccf57f14eb", @raw=0x8}, 0x1, @integer64=@value=[0xd, 0x7, 0x0, 0x3, 0x3, 0x1000, 0xd1f6, 0x6, 0x10, 0x6, 0x4, 0xbe1, 0x1, 0x0, 0x0, 0xffffffffffffff80, 0x40, 0x5, 0x4, 0x3, 0xfffffffffffff000, 0x5, 0x2, 0x6, 0x7, 0x8, 0x2, 0x1, 0x2, 0x5cb56b90, 0x0, 0x81, 0xfffffffffffffffb, 0x9, 0x0, 0x10, 0x2, 0x6, 0x0, 0x9, 0x5, 0x5, 0x8, 0x6, 0xe7d8, 0x7fff, 0xb, 0x2, 0x2, 0x0, 0x8000000000000001, 0x6, 0xc500000000000000, 0x2, 0x7, 0x0, 0x40, 0x4000000004, 0x1000005, 0x4, 0xe, 0xb, 0x800, 0x10000], "2ffa3e20e80e755123e1f42e350d190e3032fa30c3621af4571878aad95fb67f210e12883f526b4e566ef511611abf96d1d9b723613b1fce6def179ed465852003f47d532de2721cc6b407490cd09e96be8bf6d01dcaac750c48d1a4c1d889a0e6b6528742320c00"}) mmap$auto(0xfffffffffffffffc, 0x2020009, 0x3, 0xeb4, r0, 0x2) close_range$auto(0x2, 0xa, 0x0) r1 = io_uring_setup$auto(0x2000009, 0x0) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0) socket(0x28, 0x1, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/radio29\x00', 0x28002, 0x0) unshare$auto(0x40000080) unshare$auto(0xffff) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r2 = openat$auto_hsr_node_table_fops_(0xffffffffffffff9c, 0x0, 0x100, 0x0) preadv$auto(r2, &(0x7f0000000300)={0x0, 0x8}, 0x5, 0xf, 0x5) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/vm/overcommit_memory\x00', 0xf22437c730143eb6, 0x0) write$auto_console_fops_tty_io(r3, 0x0, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0) ioctl$auto(0x3, 0x80005520, 0x7f) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sys/user/max_cgroup_namespaces\x00', 0x42a81, 0x0) pwrite64$auto(r4, &(0x7f0000000000)='/proc/sys/net/ipv6/coX\t/all/for\xdf0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r4}, 0x6a) sendmsg$auto_MACSEC_CMD_UPD_RXSC(r0, &(0x7f0000000240)={0x0, 0x1c, &(0x7f0000000200)={&(0x7f00000004c0)={0x24, r1, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [@MACSEC_ATTR_IFINDEX={0x8, 0x1, r4}, @MACSEC_ATTR_SA_CONFIG={0x0, 0x3, 0x0, 0x1, [@typed={0x0, 0x110, 0x0, 0x0, @u64=0xe93}, @generic="d2b48ad24da236a5c64cdd9ea1502bac2984a76e415d6ef401ee0cb2503d6fc434d871952ff5ec0d7186dbcd29347fff42a309ae9376fcddf84daf4194ed471a4b026021b52376d12b67faca27e9a5882cdbb83732ed4e721ac05c7829c35ec049dec673ab759eb3e17d99681c4716d56efa832218075ccaf8e78551a1c0c1f60cb24b5b6d0adf328544d0c7afe559c0a8d760e165389bba7630551bcd25116898ee1ed76513ec02b192a433e4891de0798d6b36", @generic="e6d40890f315c2993b23f049706f067ed4f8089ed265085e78d7dac4a80a31b3305a4a0a7ac75db755fe0e5534bd", @generic="8e8bf72827865fe8f095559256127183043336287d8ffb4996311bf5dd62b77ee7da8f4e9ee481d90d7195d610fde7f7e2e0649852c951fa49fad5103165173b26b1417cd4443d498157c5b91eb3d36fab0f4cff0fe3efa078dcc6c8b47dc2f053a662015754c34818edf22651411f70c7ad160f7f0e9a7832c69189ae01124afd185432bff24107f4a487797a18f1bf45b10ade5414831dedb669421c09ac5eb39ae5fd3d865fc16492f1c24598c7cdff36f3"]}]}, 0x24}, 0x1, 0x0, 0x0, 0x200440d2}, 0x480b0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r7 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r8 = io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(r8, 0x1, 0x0, 0x5) r9 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_MM_SET(r7, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000380)={0x2c, r9, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [@ETHTOOL_A_MM_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40001}, 0x4040010) r10 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup.cpu/memory.kmem.tcp.limit_in_bytes\x00', 0xc2481, 0x0) sendmsg$auto_NFC_CMD_GET_SE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYRESHEX=r10, @ANYRESDEC], 0x3c}}, 0x0) writev$auto(r10, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3) sendmsg$auto_NL80211_CMD_GET_INTERFACE(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000700)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB], 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000084) 1.032675402s ago: executing program 1 (id=977): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram3\x00', 0x44000, 0x0) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0) write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) semctl$auto_SEM_INFO(0xfffffffd, 0x0, 0x13, 0x0) ioctl$auto_BLKBSZSET(r0, 0x40081271, &(0x7f00000000c0)=0x1000) waitid$auto(0x8001, 0xffffffffffffffff, &(0x7f0000000200)={@siginfo_0_0={0x1, 0x4, 0xe, @_rt={0xffffffffffffffff, 0xee01, @sival_ptr=&(0x7f0000000100)="a7bb7c9d25c7580f53ca048ec53b2ffaf623f0644c8a4b54b3d1220cd6d1c78b6bb1e776db8c7b0cd4a6c7faf63bb0175f8132b7896bdd2c718497943100fe36ad3e219964ce8b08c153c564a19fe2517ba48509c8b217727a680bd5e0a16f856d5fcd49243d9a3db434f2ea3a704847378e39714fbb0b0b96d0c261b2ead79b7428908400d85cdd15efa6ae2d099676eb8731969cde947efc2d01152cd6218a0dc08c8ae3441a0bb3b8641e85d33381a4d73c12c4d31f6c7f22b074e90749a605127e253a2603f027b1c84b408b753e340992d22425eb58898252f4d8b45da0d42794770cbee84bd12957a50a93de10c03d43"}}}, 0x2, &(0x7f0000000340)={{0x4, 0x4}, {0x5bda, 0x2ac5}, 0x2, 0xab, 0xe, 0x7, 0x8000000000000001, 0xffffffffffffffff, 0x77f, 0x15a, 0x1, 0x7, 0x7, 0x4, 0x1, 0x2}) r3 = getegid() setfsgid$auto(r3) r4 = socket(0x2d, 0x2, 0x0) socket(0x2, 0x2, 0x0) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) getsockopt$auto(r4, 0x11d, 0x1, 0x0, 0x0) msgctl$auto_MSG_STAT(0x3, 0xb, &(0x7f00000002c0)={{0x0, 0xee00, r3, 0xd, 0x3, 0x200}, 0x0, 0x0, 0xfffffffffffffff9, 0x7, 0x8, 0x5, 0xf, 0xbb84, 0xfffd, 0xfde, @inferred, @inferred=r2}) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_netdev(&(0x7f00000013c0), 0xffffffffffffffff) r7 = socket$nl_generic(0x10, 0x3, 0x10) bind$auto(r7, &(0x7f0000000040)=@generic={0x10, "26300628afe90504fc2bbe91f2eb"}, 0x6a) r8 = socket(0x2, 0x801, 0x106) listen$auto(r8, 0xf52b) r9 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) sendmsg$auto_NETDEV_CMD_BIND_RX(r5, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000001480)={&(0x7f0000000280)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01002abd7f00fddbdf250d00000008000300", @ANYRES32=r5, @ANYBLOB="08000100", @ANYRES32=r10, @ANYBLOB="340002800800010006000000080003000000000008000100ff07000008000300000000000800010007000000080001"], 0x58}, 0x1, 0x0, 0x0, 0x8000}, 0x10) 920.573798ms ago: executing program 0 (id=978): r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000200), 0x20200, 0x0) ioctl$auto_KVM_GET_MSR_FEATURE_INDEX_LIST(r0, 0xc004ae0a, &(0x7f00000003c0)={0x3f7ba2e5}) (fail_nth: 3) 836.013027ms ago: executing program 2 (id=979): socket(0x2, 0x3, 0x2) setsockopt$auto(0x3, 0x0, 0xc8, 0xfffffffffffffffc, 0x4) (async) mmap$auto(0x0, 0x8, 0x7, 0x4000000100000eb1, 0x40000000000a1, 0x0) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) pkey_free$auto(0xa4f4) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x40080, 0x0) read$auto(r1, 0x0, 0x20) ioprio_set$auto(0x3, 0x0, 0x4b34) (async) writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3) (async) acct$auto(&(0x7f0000000100)='/dev/v4l-subdev2\x00') (async) mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) (async) setresgid$auto(0x81, 0x800000a0, 0x8) (async, rerun: 32) setgroups$auto(0xc00000000, 0xfffffffffffffffc) (async, rerun: 32) setresuid$auto(0x8, 0x8, 0x0) (async) r2 = setfsuid$auto(0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/apparmor/parameters/lock_policy\x00', 0x82, 0x0) write$auto(r3, 0x0, 0x2) (async) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rpc/nfs4.idtoname/content\x00', 0x181b80, 0x0) (async, rerun: 32) msgctl$auto_IPC_SET(0xffffffff, 0x1, &(0x7f0000000100)={{0x3, r2, 0xee01, 0xd, 0x938, 0x200, 0x1f}, &(0x7f0000000080)=0xb, &(0x7f00000000c0)=0x6, 0x10, 0x6, 0x100000000, 0x0, 0x0, 0x0, 0x5, 0x5, @inferred, @raw=0x7}) (rerun: 32) shmctl$auto_SHM_STAT(0x2, 0xd, &(0x7f0000000940)={{0x9, r2, 0xee00, 0x8000, 0x5, 0x4, 0x3}, 0x3, 0x0, 0x0, 0x7fffffffffffffff, @inferred=0xffffffffffffffff, @raw=0x7, 0x7, 0x0, &(0x7f0000000340)="9a5d9e3183e74769c65da67b08f3e80c4cea162cfe2acc6b5759ecc98d400727765e293425d9849ce8f15ac28ac0d9345bb8a938de33244ca57da093bab769c52519d724be0a0acff088694a2f49dd957655572bd32cab0989c9b1231baa94e584b4f59634fed61b197f103e9f6a0b5774421a396d8161b2c463c8c218bf71a61d8fa9ede736618588242d2770215db9f70b6be7fc745442c5947938da1c6b490efa0110ed64296f3aa188ad67acf307c4e1fe1fbfbf84bf6379ecc14b15b5e7b4e3539ab298dbb4bdbdc7219b26826147b644ba19011d4e8d06f5144792694e000075db7cfc91bf83ec16f9b4", &(0x7f0000000440)="33ccca70f453851420bd461a09f416007146d5c11df229c4791514a858833b0af9f3addeb1d084e37db8a5a526e501d06d093f3cbd8b51427c70b9069495e717d16000cf961ee7d68028c5f439be065821bc8c4eca3295c662627f7cde09c4d3b23c36ef7f672c866a581edbcdd842cdd7ebd9e477e77ce57ef41c35654ab3e8116c7a78d6addac9e70300b85ee1137dddf0d2a9b50b5d4715b18f3ee6a83720490ade6624bd259641d43700f4500e87041e8b5297b4c3f749fab53914782f55c747b479d09459b0d2883657abda988b8d925fa2d8117b123c0a46ae143d98c59c0ae2c98dceb4ba9f1dc58533c72846bf225c7715989e1e"}) setregid$auto(r5, r6) (async, rerun: 64) read$auto(r4, &(0x7f00000006c0)='2\x06J Nwe0\xbd\"\x8f\xe5h_b\xde\x19\xa5\x0e\xfa\xe0\xcb\xb7\xaceW\x1a\x1f\xae\xd8\xfe\x01Y\xd6\xba\xde3\xc7\xf8\x91\xda\xf6_%\xf30\xdc\x97<\xf3A\xa7\xb4\x8dj\xbd\x02\xb1}{e\xf64\xecC\x83,\xecp7j\xf8<\xc8x\xd4\xb0\x1d\b\xb08\x01\x9e\x9et\x8aa\xe1\re\xcf\x8e\x02\xeeW\xf0z\vk\x02_\xdb\x15f8>;zM\xa95\x16\xe9l\xf5\xaa\xaa\x03\x18p\x0e\xde$\xc3\xa9\xac\xc7\x98\x05<\xef\xcd@z\fx}F\x93\xe1\xbd\xb3s\x80\xc1e\xe9T1\xbf\xc8_^\a\x03\xad\ni\n~-u)\x88\x97\xed\xa7\x9b\x0f\xef\x99\x13\xdc<\xd1{\br\xd6[\xd3\xa9-(KH\b\xdfJ\xdek\xef\xc9\xd7\n\x83m\x86\xf2\a\x8d\x19\xe0%\x02u\xfd\xda\xa3\xefA\xbd2?C\xa5\x8a\xe3\xc6\xd7\x00\x14n\xb8<\xab\x96\x8d\xa1\xf4\x87\xe5\a:z\xea\xcc\xa1\x8d\xae8\x12\xa6\xb9\xd99\xaa\xc5\x10\xad\xdd\x89\xddC\xf5\xd2Q\x92\xcd\xcc\x9f\x1a\xdbR\xeeL:\x87\xb3\xb0\x84\x1bR\xf2\xe2/\xa3\x0e\x90\x98\x8c\xc0\xa4\xda+U\b\x88\xa7\x88\x1fC\xbb\xa8\xce\x0f\xd5\xdew\x99\x18G.s\x16\xfa\xf2\x96|\x1e]\xe5\xf8\xb1\x8b.}\x841\xd8\x98\xd8f86h\xab\x94\x7f\xc4<\x03\xdd\x86=\xb6\x1e@\xab6\x81\xce\xaa\xcf\xfd\x947\xc3\x86\xfe\xb7O\xd9\xa9\xb6[\xcc\xd8\xe1\xa9\x84[\xe0\xd4\x03\x90@\x03\xbe\xba\xee\xed\xe9\xb1\xd2\xf1\x8cgn\xb7m/\xf1\"\xc2\xeb\x1d\x04\xf3\xf1\x96\xf2\x00C\xf0wg\xd6\x11\x18\xb5o\x9d\xd7`\xce\x81\x9b1b\x8ce\x99*\xa3\xd2\x8dAw\xd9\xa6l\\\x17\xbb\xf6\xe2\xa2<\n\xc0\f:\x97\xff\xc6y\x05<\xa6\x81\xd92\xc9\x9e\f[\xf9\xfc\xf1ih\"J\x92\xd2\xd4\xc2\xe8\x89 \x81\xbf8C\xa9\x1at\xa1\xdc\x94\xc5\xc8K\xbb\x14h\xa9)\xaa\xf2\xda\xaf\xb0\rs\xe6\x97\x1e\xcc6\x94\xff\x1b\x8e\x98\xf7\xa0\x8aqm\xea\xc2\xfd\xfc\x8b\xdc\x02\xde\xfb{\x98G\x871\x95 \xfa\xb7\x93=\x15\xd9\xff>v\t\x1cIv\x10\xd5\xa7Bm{`\x88-Sd\x8d\x12\x83\xfaUc\x8f \xbc\xa8\xb8\xd2\xea\x93l\xb4\'\x97=}\x87\xf6\xc4\xe1\x16\xa5\xca\x10\xe7\xe69M\xa2t\x12\xd2\x98^f\x9a\xd1\xf0', 0x67b) (async, rerun: 64) connect$auto(0x3, 0x0, 0x50) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000040)=0x5) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x123001, 0x0) 0s ago: executing program 0 (id=980): openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/conf/ip6gretap0/forwarding\x00', 0x202, 0x0) getsockopt$auto_SO_PROTOCOL(0xffffffffffffffff, 0xb29, 0x26, &(0x7f0000000080)='[(][MV\xfe2\xda\x92+/:$!.V', 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/sctp/udp_port\x00', 0x202, 0x0) sendfile$auto(r0, r0, 0x0, 0x7fffe000) writev$auto(0x8000, &(0x7f0000000040)={0x0, 0x1000000000004}, 0x2bc) r1 = io_uring_setup$auto(0x6, 0x0) poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108) mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) kexec_load$auto(0x100000000000000, 0x0, 0x0, 0xffffffff) close_range$auto(0x2, r1, 0x0) r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408) getdents$auto(r2, 0x0, 0x5f) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x2, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f00000003c0)=""/231, 0xe7) sendfile$auto(r3, r3, &(0x7f00000000c0)=0x1, 0xc9) setfsgid$auto(0xffffffffffffffff) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0) r5 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/input/event1\x00', 0x2080, 0x0) ioctl$auto_EVIOCSCLOCKID(r5, 0x400445a0, &(0x7f0000000000)=0x1) mmap$auto(0x0, 0x810004, 0xffa, 0x8000000008011, r4, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@generic={0x5, "7dfffffff100"}, 0x6a) r6 = getpid() process_vm_readv$auto(r6, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000040), 0xffffffff}, 0x6, 0x0) r7 = socket(0x1e, 0x4, 0x0) setsockopt$auto(r7, 0x10f, 0x87, 0x0, 0x14) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.109' (ED25519) to the list of known hosts. [ 77.142853][ T5607] cgroup: Unknown subsys name 'net' [ 77.258968][ T5607] cgroup: Unknown subsys name 'cpuset' [ 77.267344][ T5607] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 78.697471][ T5607] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 80.328989][ T5619] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 80.340609][ T5619] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 80.350342][ T5619] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 80.361375][ T5619] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 80.371875][ T5619] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 80.419607][ T4942] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 80.429584][ T4942] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 80.438385][ T4942] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 80.448771][ T4942] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 80.462130][ T5625] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 80.470477][ T5625] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 80.478356][ T5625] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 80.486629][ T5625] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 80.499685][ T5628] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 80.507895][ T5628] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 80.517650][ T5628] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 80.521645][ T5619] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 80.533740][ T5619] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 80.547951][ T5619] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 80.561540][ T4942] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 82.196218][ T5618] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.203685][ T5618] bridge0: port 1(bridge_slave_0) entered disabled state [ 82.211666][ T5618] bridge_slave_0: entered allmulticast mode [ 82.219259][ T5618] bridge_slave_0: entered promiscuous mode [ 82.261991][ T5618] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.270043][ T5618] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.277282][ T5618] bridge_slave_1: entered allmulticast mode [ 82.284691][ T5618] bridge_slave_1: entered promiscuous mode [ 82.305760][ T5623] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.314231][ T5623] bridge0: port 1(bridge_slave_0) entered disabled state [ 82.321558][ T5623] bridge_slave_0: entered allmulticast mode [ 82.328864][ T5623] bridge_slave_0: entered promiscuous mode [ 82.371582][ T5623] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.378945][ T5623] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.386324][ T5623] bridge_slave_1: entered allmulticast mode [ 82.394920][ T5623] bridge_slave_1: entered promiscuous mode [ 82.426249][ T5621] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.433564][ T5621] bridge0: port 1(bridge_slave_0) entered disabled state [ 82.440720][ T5621] bridge_slave_0: entered allmulticast mode [ 82.443565][ T5625] Bluetooth: hci0: command tx timeout [ 82.453932][ T5621] bridge_slave_0: entered promiscuous mode [ 82.483008][ T5618] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 82.492329][ T5621] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.500048][ T5621] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.507473][ T5621] bridge_slave_1: entered allmulticast mode [ 82.514623][ T5621] bridge_slave_1: entered promiscuous mode [ 82.522049][ T5624] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.530270][ T5625] Bluetooth: hci1: command tx timeout [ 82.536534][ T5624] bridge0: port 1(bridge_slave_0) entered disabled state [ 82.543790][ T5624] bridge_slave_0: entered allmulticast mode [ 82.551596][ T5624] bridge_slave_0: entered promiscuous mode [ 82.561384][ T5623] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 82.573930][ T5618] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 82.593513][ T5624] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.600743][ T5624] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.608918][ T5625] Bluetooth: hci2: command tx timeout [ 82.608990][ T5624] bridge_slave_1: entered allmulticast mode [ 82.614853][ T4942] Bluetooth: hci3: command tx timeout [ 82.622901][ T5624] bridge_slave_1: entered promiscuous mode [ 82.635282][ T5623] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 82.697868][ T5621] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 82.728110][ T5618] team0: Port device team_slave_0 added [ 82.736022][ T5621] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 82.747663][ T5624] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 82.758950][ T5623] team0: Port device team_slave_0 added [ 82.766772][ T5618] team0: Port device team_slave_1 added [ 82.797087][ T5624] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 82.821093][ T5623] team0: Port device team_slave_1 added [ 82.868502][ T5618] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 82.875788][ T5618] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 82.901892][ T5618] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 82.915316][ T5621] team0: Port device team_slave_0 added [ 82.923674][ T5624] team0: Port device team_slave_0 added [ 82.939027][ T5618] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 82.946139][ T5618] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 82.972877][ T5618] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 82.985714][ T5621] team0: Port device team_slave_1 added [ 82.993860][ T5624] team0: Port device team_slave_1 added [ 83.000108][ T5623] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 83.011167][ T5623] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 83.037520][ T5623] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 83.077177][ T5623] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 83.084263][ T5623] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 83.111122][ T5623] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 83.153556][ T5621] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 83.160624][ T5621] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 83.186940][ T5621] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 83.199771][ T5624] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 83.206897][ T5624] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 83.232965][ T5624] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 83.256042][ T5621] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 83.263116][ T5621] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 83.289115][ T5621] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 83.300915][ T5624] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 83.308022][ T5624] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 83.334516][ T5624] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 83.384339][ T5618] hsr_slave_0: entered promiscuous mode [ 83.390719][ T5618] hsr_slave_1: entered promiscuous mode [ 83.438407][ T5623] hsr_slave_0: entered promiscuous mode [ 83.444791][ T5623] hsr_slave_1: entered promiscuous mode [ 83.450831][ T5623] debugfs: 'hsr0' already exists in 'hsr' [ 83.456944][ T5623] Cannot create hsr debugfs directory [ 83.470527][ T5621] hsr_slave_0: entered promiscuous mode [ 83.477143][ T5621] hsr_slave_1: entered promiscuous mode [ 83.483564][ T5621] debugfs: 'hsr0' already exists in 'hsr' [ 83.489839][ T5621] Cannot create hsr debugfs directory [ 83.575581][ T5624] hsr_slave_0: entered promiscuous mode [ 83.581816][ T5624] hsr_slave_1: entered promiscuous mode [ 83.588161][ T5624] debugfs: 'hsr0' already exists in 'hsr' [ 83.594128][ T5624] Cannot create hsr debugfs directory [ 84.008267][ T5618] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 84.021009][ T5618] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 84.029727][ T5618] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 84.040641][ T5618] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 84.048905][ T5618] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 84.060876][ T5618] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 84.069038][ T5618] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 84.080725][ T5618] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 84.154095][ T5623] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 84.166575][ T5623] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 84.176275][ T5623] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 84.189284][ T5623] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 84.198747][ T5623] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 84.210014][ T5623] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 84.218478][ T5623] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 84.229347][ T5623] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 84.315610][ T5621] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 84.326517][ T5621] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 84.334979][ T5621] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 84.344436][ T5621] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 84.352340][ T5621] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 84.364854][ T5621] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 84.384333][ T5621] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 84.395184][ T5621] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 84.500034][ T5624] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 84.510208][ T5624] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 84.523744][ T4942] Bluetooth: hci0: command tx timeout [ 84.535661][ T5624] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 84.546660][ T5624] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 84.555370][ T5624] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 84.565521][ T5624] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 84.573543][ T5624] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 84.584497][ T5624] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 84.609059][ T5618] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.612903][ T4942] Bluetooth: hci1: command tx timeout [ 84.662348][ T5618] 8021q: adding VLAN 0 to HW filter on device team0 [ 84.692984][ T5625] Bluetooth: hci2: command tx timeout [ 84.698985][ T4942] Bluetooth: hci3: command tx timeout [ 84.708066][ T135] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.716057][ T135] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.757268][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.764415][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.786850][ T5623] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.849611][ T5623] 8021q: adding VLAN 0 to HW filter on device team0 [ 84.877189][ T1112] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.884328][ T1112] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.903958][ T5621] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.931522][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.938723][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.970752][ T5621] 8021q: adding VLAN 0 to HW filter on device team0 [ 85.005764][ T5624] 8021q: adding VLAN 0 to HW filter on device bond0 [ 85.017177][ T1112] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.024403][ T1112] bridge0: port 1(bridge_slave_0) entered forwarding state [ 85.051791][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.059050][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 85.121376][ T5624] 8021q: adding VLAN 0 to HW filter on device team0 [ 85.188206][ T1112] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.195463][ T1112] bridge0: port 1(bridge_slave_0) entered forwarding state [ 85.230474][ T1112] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.237637][ T1112] bridge0: port 2(bridge_slave_1) entered forwarding state [ 85.409033][ T5624] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 85.867153][ T5618] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 86.026818][ T5618] veth0_vlan: entered promiscuous mode [ 86.070346][ T5618] veth1_vlan: entered promiscuous mode [ 86.181370][ T5618] veth0_macvtap: entered promiscuous mode [ 86.208375][ T5623] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 86.225221][ T5618] veth1_macvtap: entered promiscuous mode [ 86.284090][ T5618] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 86.295744][ T5621] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 86.322210][ T5618] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 86.357893][ T36] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.371288][ T36] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.403013][ T36] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.435016][ T36] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.486325][ T5624] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 86.509133][ T5623] veth0_vlan: entered promiscuous mode [ 86.579104][ T5623] veth1_vlan: entered promiscuous mode [ 86.600554][ T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.609386][ T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.618975][ T4942] Bluetooth: hci0: command tx timeout [ 86.636905][ T5621] veth0_vlan: entered promiscuous mode [ 86.676696][ T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.685575][ T5621] veth1_vlan: entered promiscuous mode [ 86.689223][ T4942] Bluetooth: hci1: command tx timeout [ 86.701485][ T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.721035][ T5624] veth0_vlan: entered promiscuous mode [ 86.763266][ T4942] Bluetooth: hci3: command tx timeout [ 86.768943][ T5625] Bluetooth: hci2: command tx timeout [ 86.769544][ T5623] veth0_macvtap: entered promiscuous mode [ 86.784568][ T993] cfg80211: failed to load regulatory.db [ 86.792181][ T5618] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 86.818599][ T5624] veth1_vlan: entered promiscuous mode [ 86.835494][ T5623] veth1_macvtap: entered promiscuous mode [ 86.898449][ T5621] veth0_macvtap: entered promiscuous mode [ 86.931609][ T5623] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 86.946427][ T5621] veth1_macvtap: entered promiscuous mode [ 86.969181][ T5623] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 86.994398][ T49] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.008806][ T49] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.026878][ T5624] veth0_macvtap: entered promiscuous mode [ 87.034886][ T49] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.044225][ T49] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.060540][ T5621] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 87.085725][ T5624] veth1_macvtap: entered promiscuous mode [ 87.096234][ T5621] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 87.126127][ T1112] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.144486][ T1112] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.175242][ T1112] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.198629][ T1112] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.230528][ T5624] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 87.290407][ T5624] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 87.361263][ T49] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.391595][ T49] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.406924][ T49] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.434099][ T49] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.447148][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.464962][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.588817][ T1112] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.607002][ T1112] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.622044][ T1112] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.640023][ T1112] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.718652][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.756073][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.781886][ T1112] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.805716][ T1112] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.939787][ T1009] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.973167][ T1009] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 88.693032][ T5625] Bluetooth: hci0: command tx timeout [ 88.763579][ T5625] Bluetooth: hci1: command tx timeout [ 88.843183][ T4942] Bluetooth: hci3: command tx timeout [ 88.849051][ T5625] Bluetooth: hci2: command tx timeout [ 90.737663][ T5816] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 91.674655][ T5828] netlink: 16 bytes leftover after parsing attributes in process `syz.1.8'. [ 92.656449][ T5835] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 93.245945][ T5625] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 93.654364][ T5843] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 93.950957][ T5849] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 101.304551][ T5933] netlink: 16 bytes leftover after parsing attributes in process `syz.3.25'. [ 106.152078][ T5976] netlink: 16 bytes leftover after parsing attributes in process `syz.3.32'. [ 108.087772][ T6005] Zero length message leads to an empty skb [ 113.323381][ T5625] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 132.855577][ T1314] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.862776][ T1314] ieee802154 phy1 wpan1: encryption failed: -22 [ 142.763407][ T5625] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 155.006018][ T6511] ptrace attach of "./syz-executor exec"[5621] was attempted by "./syz-executor exec"[6511] [ 156.316118][ T6509] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 156.618250][ T6532] ptrace attach of "./syz-executor exec"[5624] was attempted by ""[6532] [ 162.814139][ T6581] can: request_module (can-proto-5) failed. [ 169.275651][ T6667] syz.3.145 (6667) used greatest stack depth: 19696 bytes left [ 171.955530][ T6698] FAULT_INJECTION: forcing a failure. [ 171.955530][ T6698] name failslab, interval 1, probability 0, space 0, times 0 [ 172.006274][ T6698] CPU: 1 UID: 0 PID: 6698 Comm: syz.1.150 Not tainted syzkaller #0 PREEMPT(full) [ 172.006297][ T6698] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 172.006311][ T6698] Call Trace: [ 172.006317][ T6698] [ 172.006323][ T6698] dump_stack_lvl+0x100/0x190 [ 172.006354][ T6698] should_fail_ex.cold+0x5/0xa [ 172.006374][ T6698] should_failslab+0xc2/0x120 [ 172.006409][ T6698] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 172.006432][ T6698] ? alloc_empty_file+0x5b/0x1c0 [ 172.006453][ T6698] ? __pfx_stack_trace_save+0x10/0x10 [ 172.006476][ T6698] alloc_empty_file+0x5b/0x1c0 [ 172.006497][ T6698] path_openat+0xe8/0x31a0 [ 172.006513][ T6698] ? kasan_save_stack+0x3f/0x50 [ 172.006526][ T6698] ? kasan_save_stack+0x30/0x50 [ 172.006539][ T6698] ? kasan_save_track+0x14/0x30 [ 172.006551][ T6698] ? __kasan_slab_alloc+0x89/0x90 [ 172.006565][ T6698] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 172.006586][ T6698] ? do_getname+0x35/0x390 [ 172.006605][ T6698] ? do_sys_openat2+0xc5/0x1e0 [ 172.006625][ T6698] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 172.006643][ T6698] ? __pfx_path_openat+0x10/0x10 [ 172.006666][ T6698] do_file_open+0x20e/0x430 [ 172.006685][ T6698] ? __pfx_do_file_open+0x10/0x10 [ 172.006715][ T6698] ? alloc_fd+0x476/0x790 [ 172.006733][ T6698] ? do_getname+0x191/0x390 [ 172.006755][ T6698] do_sys_openat2+0x10d/0x1e0 [ 172.006775][ T6698] ? __pfx_do_sys_openat2+0x10/0x10 [ 172.006797][ T6698] ? __sys_sendmsg+0x18f/0x220 [ 172.006816][ T6698] __x64_sys_openat+0x12d/0x210 [ 172.006838][ T6698] ? __pfx___x64_sys_openat+0x10/0x10 [ 172.006862][ T6698] ? rcu_is_watching+0x12/0xc0 [ 172.006882][ T6698] do_syscall_64+0x10b/0xf80 [ 172.006899][ T6698] ? clear_bhb_loop+0x40/0x90 [ 172.006917][ T6698] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 172.006937][ T6698] RIP: 0033:0x7f4bc3b9cdd9 [ 172.006954][ T6698] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 172.006972][ T6698] RSP: 002b:00007f4bc4a2a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 172.006991][ T6698] RAX: ffffffffffffffda RBX: 00007f4bc3e16090 RCX: 00007f4bc3b9cdd9 [ 172.007001][ T6698] RDX: 0000000000000001 RSI: 0000200000000240 RDI: ffffffffffffff9c [ 172.007010][ T6698] RBP: 00007f4bc3c32d69 R08: 0000000000000000 R09: 0000000000000000 [ 172.007019][ T6698] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 172.007028][ T6698] R13: 00007f4bc3e16128 R14: 00007f4bc3e16090 R15: 00007fffaa0c2708 [ 172.007059][ T6698] [ 173.326818][ T6694] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 180.152903][ T6805] openvswitch: netlink: IP tunnel dst address not specified [ 180.258704][ T5625] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 181.895028][ T6816] FAULT_INJECTION: forcing a failure. [ 181.895028][ T6816] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 182.062520][ T6816] CPU: 0 UID: 0 PID: 6816 Comm: syz.2.171 Not tainted syzkaller #0 PREEMPT(full) [ 182.062556][ T6816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 182.062572][ T6816] Call Trace: [ 182.062581][ T6816] [ 182.062590][ T6816] dump_stack_lvl+0x100/0x190 [ 182.062626][ T6816] should_fail_ex.cold+0x5/0xa [ 182.062656][ T6816] ? prepare_alloc_pages+0x16d/0x5f0 [ 182.062694][ T6816] should_fail_alloc_page+0xeb/0x140 [ 182.062732][ T6816] prepare_alloc_pages+0x1f0/0x5f0 [ 182.062772][ T6816] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 182.062825][ T6816] ? __lock_acquire+0x4a5/0x2630 [ 182.062863][ T6816] ? __lock_acquire+0x4a5/0x2630 [ 182.062888][ T6816] ? css_rstat_updated+0x1ce/0x5a0 [ 182.062931][ T6816] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 182.062979][ T6816] ? do_raw_spin_lock+0x128/0x260 [ 182.063010][ T6816] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 182.063041][ T6816] ? find_held_lock+0x2b/0x80 [ 182.063085][ T6816] ? __lock_acquire+0x4a5/0x2630 [ 182.063112][ T6816] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 182.063154][ T6816] ? policy_nodemask+0xed/0x4f0 [ 182.063188][ T6816] alloc_pages_mpol+0x1fb/0x540 [ 182.063221][ T6816] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 182.063253][ T6816] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 182.063288][ T6816] folio_alloc_mpol_noprof+0x36/0x260 [ 182.063327][ T6816] shmem_alloc_folio+0x135/0x160 [ 182.063366][ T6816] shmem_alloc_and_add_folio+0x371/0xd40 [ 182.063419][ T6816] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 182.063466][ T6816] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 182.063518][ T6816] shmem_get_folio_gfp+0x6ab/0x1900 [ 182.063569][ T6816] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 182.063613][ T6816] ? ktime_get_coarse_real_ts64_mg+0x235/0x300 [ 182.063642][ T6816] ? lockdep_hardirqs_on+0x78/0x100 [ 182.063681][ T6816] shmem_fault+0x1f9/0xa20 [ 182.063722][ T6816] ? __lock_acquire+0x4a5/0x2630 [ 182.063749][ T6816] ? __pfx_shmem_fault+0x10/0x10 [ 182.063792][ T6816] ? __up_read+0x2c1/0x6e0 [ 182.063842][ T6816] ? __pfx_filemap_map_pages+0x10/0x10 [ 182.063883][ T6816] __do_fault+0x10b/0x440 [ 182.063909][ T6816] ? find_held_lock+0x2b/0x80 [ 182.063946][ T6816] do_fault+0x2db/0x1750 [ 182.063985][ T6816] __handle_mm_fault+0x187d/0x2a00 [ 182.064030][ T6816] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 182.064065][ T6816] ? __pfx___handle_mm_fault+0x10/0x10 [ 182.064107][ T6816] ? pte_offset_map_lock+0x174/0x320 [ 182.064138][ T6816] ? find_held_lock+0x2b/0x80 [ 182.064184][ T6816] ? follow_page_pte+0x4d0/0x13f0 [ 182.064223][ T6816] handle_mm_fault+0x36d/0xa20 [ 182.064270][ T6816] __get_user_pages+0x1178/0x32a0 [ 182.064314][ T6816] ? down_read_killable+0x307/0x4b0 [ 182.064353][ T6816] ? __pfx___get_user_pages+0x10/0x10 [ 182.064388][ T6816] ? faultin_page_range+0x3de/0x9e0 [ 182.064422][ T6816] ? faultin_page_range+0x3ec/0x9e0 [ 182.064461][ T6816] faultin_page_range+0x1f1/0x9e0 [ 182.064504][ T6816] madvise_do_behavior+0x354/0x510 [ 182.064543][ T6816] ? __pfx_madvise_do_behavior+0x10/0x10 [ 182.064589][ T6816] ? __call_rcu_common.constprop.0+0x3f0/0x9b0 [ 182.064626][ T6816] do_madvise+0x195/0x240 [ 182.064660][ T6816] ? __pfx_do_madvise+0x10/0x10 [ 182.064695][ T6816] ? do_futex+0x192/0x350 [ 182.064730][ T6816] ? blkcg_maybe_throttle_current+0x5e7/0xeb0 [ 182.064784][ T6816] __x64_sys_madvise+0xa9/0x110 [ 182.064817][ T6816] ? lockdep_hardirqs_on+0x78/0x100 [ 182.064854][ T6816] do_syscall_64+0x10b/0xf80 [ 182.064885][ T6816] ? clear_bhb_loop+0x40/0x90 [ 182.064919][ T6816] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 182.064947][ T6816] RIP: 0033:0x7f4a2919cdd9 [ 182.064970][ T6816] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 182.064995][ T6816] RSP: 002b:00007f4a2a072028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 182.065020][ T6816] RAX: ffffffffffffffda RBX: 00007f4a29415fa0 RCX: 00007f4a2919cdd9 [ 182.065038][ T6816] RDX: 0000000000000017 RSI: ffffffffffff0005 RDI: 0000000000000000 [ 182.065055][ T6816] RBP: 00007f4a29232d69 R08: 0000000000000000 R09: 0000000000000000 [ 182.065071][ T6816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 182.065086][ T6816] R13: 00007f4a29416038 R14: 00007f4a29415fa0 R15: 00007ffd1e458498 [ 182.065123][ T6816] [ 185.167451][ T6848] netlink: 8 bytes leftover after parsing attributes in process `syz.3.177'. [ 186.372837][ T6860] random: crng reseeded on system resumption [ 186.638092][ T6860] synth uevent: /bus/i2c/drivers/tuner: unknown uevent action string [ 187.072709][ T6867] netlink: 16 bytes leftover after parsing attributes in process `syz.0.180'. [ 187.490408][ T6854] ptrace attach of "./syz-executor exec"[5623] was attempted by ""[6854] [ 187.535218][ T6854] syz.2.178 uses obsolete (PF_INET,SOCK_PACKET) [ 189.801173][ T6909] ptrace attach of "./syz-executor exec"[5623] was attempted by "./syz-executor exec"[6909] [ 190.812462][ T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!! [ 191.719104][ T6930] process 'syz.3.193' launched '/dev/fd/9' with NULL argv: empty string added [ 191.774175][ T6930] FAULT_INJECTION: forcing a failure. [ 191.774175][ T6930] name failslab, interval 1, probability 0, space 0, times 0 [ 191.824580][ T6930] CPU: 0 UID: 0 PID: 6930 Comm: syz.3.193 Not tainted syzkaller #0 PREEMPT(full) [ 191.824603][ T6930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 191.824613][ T6930] Call Trace: [ 191.824618][ T6930] [ 191.824624][ T6930] dump_stack_lvl+0x100/0x190 [ 191.824645][ T6930] should_fail_ex.cold+0x5/0xa [ 191.824669][ T6930] should_failslab+0xc2/0x120 [ 191.824687][ T6930] __kmalloc_cache_noprof+0x7a/0x6f0 [ 191.824708][ T6930] ? ima_add_digest_entry+0x52/0x520 [ 191.824732][ T6930] ima_add_digest_entry+0x52/0x520 [ 191.824754][ T6930] ima_add_template_entry+0x442/0x800 [ 191.824778][ T6930] ? __pfx_ima_add_template_entry+0x10/0x10 [ 191.824801][ T6930] ? ima_calc_field_array_hash+0x378/0x440 [ 191.824828][ T6930] ima_store_template+0xda/0x150 [ 191.824852][ T6930] ima_store_measurement+0x21c/0x5b0 [ 191.824876][ T6930] ? __pfx_ima_store_measurement+0x10/0x10 [ 191.824905][ T6930] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 191.824928][ T6930] process_measurement+0x19cc/0x2350 [ 191.824956][ T6930] ? __pfx_process_measurement+0x10/0x10 [ 191.825008][ T6930] ima_bprm_check+0x116/0x180 [ 191.825029][ T6930] ? tomoyo_bprm_check_security+0x167/0x1d0 [ 191.825053][ T6930] ? __pfx_ima_bprm_check+0x10/0x10 [ 191.825078][ T6930] security_bprm_check+0xd7/0x1e0 [ 191.825099][ T6930] bprm_execve+0x845/0x1650 [ 191.825120][ T6930] ? __pfx_bprm_execve+0x10/0x10 [ 191.825134][ T6930] ? copy_string_kernel+0x339/0x3f0 [ 191.825152][ T6930] do_execveat_common.isra.0+0x4a5/0x580 [ 191.825172][ T6930] __x64_sys_execveat+0xdf/0x130 [ 191.825190][ T6930] do_syscall_64+0x10b/0xf80 [ 191.825207][ T6930] ? clear_bhb_loop+0x40/0x90 [ 191.825225][ T6930] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 191.825240][ T6930] RIP: 0033:0x7fbfacb9cdd9 [ 191.825252][ T6930] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 191.825266][ T6930] RSP: 002b:00007fbfadaf0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 191.825281][ T6930] RAX: ffffffffffffffda RBX: 00007fbface15fa0 RCX: 00007fbfacb9cdd9 [ 191.825298][ T6930] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009 [ 191.825307][ T6930] RBP: 00007fbfacc32d69 R08: 0000000000001000 R09: 0000000000000000 [ 191.825316][ T6930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 191.825325][ T6930] R13: 00007fbface16038 R14: 00007fbface15fa0 R15: 00007fff205b5cc8 [ 191.825345][ T6930] [ 192.224600][ T6930] ima: OUT OF MEMORY ERROR creating queue entry [ 192.330084][ T30] audit: type=1804 audit(1777105101.982:2): pid=6930 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.3.193" name="/newroot/55/file0" dev="tmpfs" ino=304 res=0 errno=0 [ 194.296425][ T1314] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.302892][ T1314] ieee802154 phy1 wpan1: encryption failed: -22 [ 202.629591][ T7067] random: crng reseeded on system resumption [ 202.767255][ T7075] device-mapper: ioctl: Invalid ioctl structure: name þÿÿÿÿÿÿÿd, dev 3000000000 [ 206.603969][ T7092] Bluetooth: hci2: command 0x0406 tx timeout [ 206.612013][ T7092] Bluetooth: hci0: command 0x0406 tx timeout [ 206.618196][ T51] Bluetooth: hci1: command 0x0406 tx timeout [ 206.628426][ T7092] Bluetooth: hci3: command 0x0406 tx timeout [ 212.533121][ T7177] loop13: detected capacity change from 0 to 2097152 [ 213.707047][ T7188] ACPI: \_SB_.LNKS: No IRQ available. Try pci=noacpi or acpi=off [ 213.751758][ T7188] pci 0000:00:01.3: PCI INT A: no GSI [ 215.450187][ T7206] netlink: 16 bytes leftover after parsing attributes in process `syz.2.239'. [ 218.611885][ T7238] FAULT_INJECTION: forcing a failure. [ 218.611885][ T7238] name failslab, interval 1, probability 0, space 0, times 0 [ 218.657686][ T7238] CPU: 1 UID: 0 PID: 7238 Comm: syz.1.245 Not tainted syzkaller #0 PREEMPT(full) [ 218.657724][ T7238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 218.657740][ T7238] Call Trace: [ 218.657749][ T7238] [ 218.657759][ T7238] dump_stack_lvl+0x100/0x190 [ 218.657795][ T7238] should_fail_ex.cold+0x5/0xa [ 218.657936][ T7238] should_failslab+0xc2/0x120 [ 218.657970][ T7238] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 218.658012][ T7238] ? vm_area_alloc+0x1f/0x160 [ 218.658056][ T7238] vm_area_alloc+0x1f/0x160 [ 218.658094][ T7238] __mmap_region+0x104d/0x2da0 [ 218.658143][ T7238] ? __pfx___mmap_region+0x10/0x10 [ 218.658192][ T7238] ? __lock_acquire+0x4a5/0x2630 [ 218.658232][ T7238] ? lock_acquire+0x1b1/0x370 [ 218.658258][ T7238] ? find_held_lock+0x2b/0x80 [ 218.658294][ T7238] ? clockevents_program_event+0x23e/0x820 [ 218.658364][ T7238] ? rcu_is_watching+0x12/0xc0 [ 218.658400][ T7238] ? finish_task_switch.isra.0+0x2cb/0x1010 [ 218.658498][ T7238] mmap_region+0x35d/0x620 [ 218.658525][ T7238] ? rcu_is_watching+0x12/0xc0 [ 218.658555][ T7238] ? __pfx_mmap_region+0x10/0x10 [ 218.658584][ T7238] ? cap_mmap_addr+0x4b/0x120 [ 218.658620][ T7238] ? bpf_lsm_mmap_addr+0x9/0x30 [ 218.658644][ T7238] ? security_mmap_addr+0x71/0x1e0 [ 218.658670][ T7238] ? __get_unmapped_area+0x255/0x3e0 [ 218.658703][ T7238] do_mmap+0xc63/0x12f0 [ 218.658739][ T7238] ? __pfx_do_mmap+0x10/0x10 [ 218.658769][ T7238] ? __pfx_down_write_killable+0x10/0x10 [ 218.658815][ T7238] vm_mmap_pgoff+0x29e/0x470 [ 218.658866][ T7238] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 218.658905][ T7238] ? do_futex+0x192/0x350 [ 218.658938][ T7238] ? __pfx_do_futex+0x10/0x10 [ 218.658975][ T7238] ksys_mmap_pgoff+0xe4/0x610 [ 218.659008][ T7238] ? __x64_sys_futex+0x358/0x4d0 [ 218.659041][ T7238] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 218.659076][ T7238] ? xfd_validate_state+0x129/0x190 [ 218.659111][ T7238] __x64_sys_mmap+0x125/0x190 [ 218.659145][ T7238] do_syscall_64+0x10b/0xf80 [ 218.659173][ T7238] ? clear_bhb_loop+0x40/0x90 [ 218.659207][ T7238] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 218.659235][ T7238] RIP: 0033:0x7f4bc3b9cdd9 [ 218.659258][ T7238] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 218.659281][ T7238] RSP: 002b:00007f4bc4a4b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 218.659303][ T7238] RAX: ffffffffffffffda RBX: 00007f4bc3e15fa0 RCX: 00007f4bc3b9cdd9 [ 218.659319][ T7238] RDX: 0000000000000007 RSI: 0000000002020009 RDI: 0000000000000000 [ 218.659335][ T7238] RBP: 00007f4bc3c32d69 R08: fffffffffffffffa R09: 0000000000008000 [ 218.659350][ T7238] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 218.659366][ T7238] R13: 00007f4bc3e16038 R14: 00007f4bc3e15fa0 R15: 00007fffaa0c2708 [ 218.659399][ T7238] [ 236.579716][ T7438] random: crng reseeded on system resumption [ 241.999612][ T30] audit: type=1800 audit(1777105151.652:3): pid=7486 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.289" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 255.739011][ T1314] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.748721][ T1314] ieee802154 phy1 wpan1: encryption failed: -22 [ 262.641836][ T7725] misc userio: Invalid payload size [ 264.220098][ T7706] kexec: Could not allocate control_code_buffer [ 266.775786][ T7763] FAULT_INJECTION: forcing a failure. [ 266.775786][ T7763] name failslab, interval 1, probability 0, space 0, times 0 [ 266.837388][ T7763] CPU: 0 UID: 0 PID: 7763 Comm: syz.0.336 Not tainted syzkaller #0 PREEMPT(full) [ 266.837414][ T7763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 266.837429][ T7763] Call Trace: [ 266.837435][ T7763] [ 266.837441][ T7763] dump_stack_lvl+0x100/0x190 [ 266.837464][ T7763] should_fail_ex.cold+0x5/0xa [ 266.837484][ T7763] should_failslab+0xc2/0x120 [ 266.837501][ T7763] __kvmalloc_node_noprof+0xfa/0xa00 [ 266.837516][ T7763] ? alloc_netdev_mqs+0xb4a/0x1560 [ 266.837531][ T7763] ? lockdep_init_map_type+0x5c/0x250 [ 266.837549][ T7763] ? __pfx_ppp_setup+0x10/0x10 [ 266.837568][ T7763] alloc_netdev_mqs+0xb4a/0x1560 [ 266.837588][ T7763] ppp_ioctl+0x954/0x27c0 [ 266.837609][ T7763] ? find_held_lock+0x2b/0x80 [ 266.837628][ T7763] ? __pfx_ppp_ioctl+0x10/0x10 [ 266.837651][ T7763] ? __fget_files+0x21f/0x3d0 [ 266.837670][ T7763] ? __pfx_ppp_ioctl+0x10/0x10 [ 266.837702][ T7763] __x64_sys_ioctl+0x18e/0x210 [ 266.837729][ T7763] do_syscall_64+0x10b/0xf80 [ 266.837747][ T7763] ? clear_bhb_loop+0x40/0x90 [ 266.837765][ T7763] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 266.837781][ T7763] RIP: 0033:0x7fc58f59cdd9 [ 266.837795][ T7763] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 266.837809][ T7763] RSP: 002b:00007fc590481028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 266.837828][ T7763] RAX: ffffffffffffffda RBX: 00007fc58f815fa0 RCX: 00007fc58f59cdd9 [ 266.837837][ T7763] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 000000000000000a [ 266.837846][ T7763] RBP: 00007fc58f632d69 R08: 0000000000000000 R09: 0000000000000000 [ 266.837854][ T7763] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 266.837862][ T7763] R13: 00007fc58f816038 R14: 00007fc58f815fa0 R15: 00007fff105414e8 [ 266.837882][ T7763] [ 269.046296][ T7788] mmap: syz.1.341 (7788) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 270.399841][ T5628] Bluetooth: Frame is too long (len 122, expected len 4) [ 277.032952][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 283.642298][ T7946] netlink: 322 bytes leftover after parsing attributes in process `syz.3.369'. [ 284.053499][ T5628] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 284.862776][ T7962] netlink: 16 bytes leftover after parsing attributes in process `syz.0.372'. [ 285.581008][ T7964] netlink: 16 bytes leftover after parsing attributes in process `syz.3.371'. [ 287.779799][ T7979] netlink: 334 bytes leftover after parsing attributes in process `syz.0.376'. [ 292.385025][ T8033] netlink: 16 bytes leftover after parsing attributes in process `syz.0.385'. [ 292.413577][ T8034] ubi31: attaching mtd0 [ 292.440887][ T8034] ubi31: scanning is finished [ 292.467357][ T8034] ubi31: empty MTD device detected [ 292.841811][ T8034] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB) [ 292.862746][ T8034] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3518 bytes [ 292.902953][ T8034] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 292.934723][ T8034] ubi31: VID header offset: 514 (aligned 514), data offset: 578 [ 292.968364][ T8034] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 293.006056][ T8034] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 20 [ 293.047028][ T8034] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2116268153 [ 293.098128][ T8034] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 293.115316][ T8035] ubi31: background thread "ubi_bgt31d" started, PID 8035 [ 294.968368][ T8063] netlink: 16 bytes leftover after parsing attributes in process `syz.3.391'. [ 295.627387][ T8070] smc: net device dummy0 applied user defined pnetid DUMMY0 [ 298.460456][ T8106] ubi: mtd0 is already attached to ubi31 [ 300.999603][ T8116] kexec: Could not allocate control_code_buffer [ 301.315177][ T8134] vivid-007: ================= START STATUS ================= [ 301.340019][ T8134] vivid-007: Generate PTS: true [ 301.363569][ T8134] vivid-007: Generate SCR: true [ 301.384034][ T8134] tpg source WxH: 320x240 (Y'CbCr) [ 301.412724][ T8134] tpg field: 1 [ 301.423772][ T8134] tpg crop: (0,0)/320x240 [ 301.444564][ T8134] tpg compose: (0,0)/320x240 [ 301.465875][ T8134] tpg colorspace: 8 [ 301.485127][ T8134] tpg transfer function: 0/0 [ 301.505568][ T8134] tpg Y'CbCr encoding: 0/0 [ 301.567459][ T8134] tpg quantization: 0/0 [ 301.597407][ T8134] tpg RGB range: 0/2 [ 301.622548][ T8134] vivid-007: ================== END STATUS ================== [ 303.692650][ T8166] netlink: 12 bytes leftover after parsing attributes in process `syz.1.408'. [ 303.813936][ T8166] input: jJǸ-¶š9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input5 [ 304.399302][ T8177] netlink: 16 bytes leftover after parsing attributes in process `syz.3.410'. [ 308.935633][ T8253] netlink: 8 bytes leftover after parsing attributes in process `syz.2.425'. [ 311.117094][ T8286] qrtr: Invalid version 0 [ 313.448878][ T8312] ubi: mtd0 is already attached to ubi31 [ 313.702378][ T8320] random: crng reseeded on system resumption [ 313.994228][ T8321] FAULT_INJECTION: forcing a failure. [ 313.994228][ T8321] name failslab, interval 1, probability 0, space 0, times 0 [ 314.028221][ T8321] CPU: 0 UID: 0 PID: 8321 Comm: syz.0.437 Not tainted syzkaller #0 PREEMPT(full) [ 314.028259][ T8321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 314.028275][ T8321] Call Trace: [ 314.028284][ T8321] [ 314.028295][ T8321] dump_stack_lvl+0x100/0x190 [ 314.028331][ T8321] should_fail_ex.cold+0x5/0xa [ 314.028367][ T8321] ? genl_family_rcv_msg_attrs_parse.isra.0+0x100/0x2f0 [ 314.028409][ T8321] should_failslab+0xc2/0x120 [ 314.028441][ T8321] __kmalloc_noprof+0xe0/0x850 [ 314.028496][ T8321] genl_family_rcv_msg_attrs_parse.isra.0+0x100/0x2f0 [ 314.028547][ T8321] genl_family_rcv_msg_doit+0xc7/0x300 [ 314.028590][ T8321] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 314.028629][ T8321] ? genl_get_cmd+0x3e7/0x760 [ 314.028670][ T8321] ? __dev_queue_xmit+0xa10/0x4950 [ 314.028702][ T8321] ? __radix_tree_lookup+0x217/0x2b0 [ 314.028735][ T8321] genl_rcv_msg+0x560/0x800 [ 314.028778][ T8321] ? __pfx_genl_rcv_msg+0x10/0x10 [ 314.028820][ T8321] ? __pfx_ctrl_getfamily+0x10/0x10 [ 314.028875][ T8321] netlink_rcv_skb+0x159/0x420 [ 314.028911][ T8321] ? __pfx_genl_rcv_msg+0x10/0x10 [ 314.028951][ T8321] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 314.029003][ T8321] ? netlink_deliver_tap+0x1ae/0xcc0 [ 314.029042][ T8321] genl_rcv+0x28/0x40 [ 314.029083][ T8321] netlink_unicast+0x585/0x850 [ 314.029124][ T8321] ? __pfx_netlink_unicast+0x10/0x10 [ 314.029171][ T8321] netlink_sendmsg+0x8b0/0xda0 [ 314.029213][ T8321] ? __pfx_netlink_sendmsg+0x10/0x10 [ 314.029253][ T8321] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 314.029300][ T8321] __sys_sendto+0x468/0x4b0 [ 314.029340][ T8321] ? __pfx_netlink_sendmsg+0x10/0x10 [ 314.029375][ T8321] ? __pfx___sys_sendto+0x10/0x10 [ 314.029427][ T8321] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 314.029459][ T8321] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 314.029517][ T8321] __x64_sys_sendto+0xe0/0x1c0 [ 314.029558][ T8321] ? do_syscall_64+0x90/0xf80 [ 314.029591][ T8321] ? lockdep_hardirqs_on+0x78/0x100 [ 314.029624][ T8321] do_syscall_64+0x10b/0xf80 [ 314.029654][ T8321] ? clear_bhb_loop+0x40/0x90 [ 314.029690][ T8321] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 314.029718][ T8321] RIP: 0033:0x7fc58f55d60e [ 314.029742][ T8321] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 314.029771][ T8321] RSP: 002b:00007fc59045ee88 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 314.029799][ T8321] RAX: ffffffffffffffda RBX: 00007fc5904606c0 RCX: 00007fc58f55d60e [ 314.029818][ T8321] RDX: 0000000000000028 RSI: 00007fc59045f000 RDI: 000000000000000b [ 314.029836][ T8321] RBP: 0000000000000000 R08: 00007fc59045ef04 R09: 000000000000000c [ 314.029853][ T8321] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000000b [ 314.029869][ T8321] R13: 00007fc59045ef58 R14: 00007fc59045f000 R15: 0000000000000000 [ 314.029903][ T8321] [ 315.957088][ T8354] netlink: 16 bytes leftover after parsing attributes in process `syz.3.444'. [ 316.594127][ T8359] ubi: mtd0 is already attached to ubi31 [ 317.164979][ T1314] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.173836][ T1314] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.138408][ T8380] netlink: 28 bytes leftover after parsing attributes in process `syz.1.452'. [ 318.253526][ T8380] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 318.378256][ T8380] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 319.226400][ T8405] netlink: 16 bytes leftover after parsing attributes in process `syz.2.457'. [ 321.090122][ T8429] random: crng reseeded on system resumption [ 321.195335][ T8429] synth uevent: /bus/i2c/drivers/tuner: unknown uevent action string [ 321.531302][ T8437] FAULT_INJECTION: forcing a failure. [ 321.531302][ T8437] name failslab, interval 1, probability 0, space 0, times 0 [ 321.531329][ T8437] CPU: 1 UID: 0 PID: 8437 Comm: syz.1.463 Not tainted syzkaller #0 PREEMPT(full) [ 321.531346][ T8437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 321.531354][ T8437] Call Trace: [ 321.531359][ T8437] [ 321.531364][ T8437] dump_stack_lvl+0x100/0x190 [ 321.531383][ T8437] should_fail_ex.cold+0x5/0xa [ 321.531401][ T8437] ? vc_do_resize+0x1dd/0xeb0 [ 321.531418][ T8437] should_failslab+0xc2/0x120 [ 321.531441][ T8437] __kmalloc_noprof+0xe0/0x850 [ 321.531466][ T8437] vc_do_resize+0x1dd/0xeb0 [ 321.531491][ T8437] ? __pfx_vc_do_resize+0x10/0x10 [ 321.531509][ T8437] ? rcu_is_watching+0x12/0xc0 [ 321.531531][ T8437] vt_ioctl+0x277a/0x31a0 [ 321.531549][ T8437] ? __pfx_vt_ioctl+0x10/0x10 [ 321.531562][ T8437] ? find_held_lock+0x2b/0x80 [ 321.531579][ T8437] ? tomoyo_path_number_perm+0x28f/0x580 [ 321.531592][ T8437] ? tomoyo_path_number_perm+0x28f/0x580 [ 321.531609][ T8437] ? tomoyo_path_number_perm+0x188/0x580 [ 321.531624][ T8437] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 321.531640][ T8437] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 321.531663][ T8437] ? __pfx_vt_ioctl+0x10/0x10 [ 321.531677][ T8437] tty_ioctl+0x26a/0x1640 [ 321.531705][ T8437] ? __pfx_tty_ioctl+0x10/0x10 [ 321.531729][ T8437] ? find_held_lock+0x2b/0x80 [ 321.531746][ T8437] ? __fget_files+0x215/0x3d0 [ 321.531761][ T8437] ? hook_file_ioctl_common+0x149/0x410 [ 321.531779][ T8437] ? __fget_files+0x21f/0x3d0 [ 321.531797][ T8437] ? __pfx_tty_ioctl+0x10/0x10 [ 321.531817][ T8437] __x64_sys_ioctl+0x18e/0x210 [ 321.531832][ T8437] do_syscall_64+0x10b/0xf80 [ 321.531849][ T8437] ? clear_bhb_loop+0x40/0x90 [ 321.531866][ T8437] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 321.531880][ T8437] RIP: 0033:0x7f4bc3b9cdd9 [ 321.531892][ T8437] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 321.531905][ T8437] RSP: 002b:00007f4bc4a4b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 321.531919][ T8437] RAX: ffffffffffffffda RBX: 00007f4bc3e15fa0 RCX: 00007f4bc3b9cdd9 [ 321.531927][ T8437] RDX: 0000000000000000 RSI: 000000000000560a RDI: 0000000000000003 [ 321.531935][ T8437] RBP: 00007f4bc4a4b090 R08: 0000000000000000 R09: 0000000000000000 [ 321.531944][ T8437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 321.531952][ T8437] R13: 00007f4bc3e16038 R14: 00007f4bc3e15fa0 R15: 00007fffaa0c2708 [ 321.531970][ T8437] [ 323.033735][ T8466] netlink: 16 bytes leftover after parsing attributes in process `syz.3.468'. [ 324.992198][ T8491] netlink: 16 bytes leftover after parsing attributes in process `syz.0.471'. [ 332.502129][ T8586] vivid-007: ================= START STATUS ================= [ 332.513686][ T8586] vivid-007: Generate PTS: true [ 332.519049][ T8586] vivid-007: Generate SCR: true [ 332.533691][ T8586] tpg source WxH: 320x240 (Y'CbCr) [ 332.538950][ T8586] tpg field: 1 [ 332.542989][ T8586] tpg crop: (0,0)/320x240 [ 332.547464][ T8586] tpg compose: (0,0)/320x240 [ 332.558106][ T8586] tpg colorspace: 8 [ 332.562000][ T8586] tpg transfer function: 0/0 [ 332.567710][ T8586] tpg Y'CbCr encoding: 0/0 [ 332.572259][ T8586] tpg quantization: 0/0 [ 332.578480][ T8586] tpg RGB range: 0/2 [ 332.582794][ T8586] vivid-007: ================== END STATUS ================== [ 334.435367][ T8620] random: crng reseeded on system resumption [ 335.054497][ T8637] vivid-007: ================= START STATUS ================= [ 335.106747][ T8637] vivid-007: Generate PTS: true [ 335.144066][ T8637] vivid-007: Generate SCR: true [ 335.161059][ T8637] tpg source WxH: 320x240 (Y'CbCr) [ 335.185963][ T8637] tpg field: 1 [ 335.209981][ T8637] tpg crop: (0,0)/320x240 [ 335.227182][ T8637] tpg compose: (0,0)/320x240 [ 335.254013][ T8637] tpg colorspace: 8 [ 335.271581][ T8637] tpg transfer function: 0/0 [ 335.296966][ T8637] tpg Y'CbCr encoding: 0/0 [ 335.343130][ T8637] tpg quantization: 0/0 [ 335.388210][ T8637] tpg RGB range: 0/2 [ 335.427693][ T8637] vivid-007: ================== END STATUS ================== [ 338.195973][ T8676] netlink: 16 bytes leftover after parsing attributes in process `syz.1.508'. [ 348.061843][ T8785] netlink: 16 bytes leftover after parsing attributes in process `syz.0.534'. [ 353.967232][ T8857] netlink: 16 bytes leftover after parsing attributes in process `syz.1.545'. [ 355.753300][ T8875] ubi: mtd0 is already attached to ubi31 [ 356.545380][ T8887] netlink: 16 bytes leftover after parsing attributes in process `syz.1.552'. [ 360.239944][ T8925] netlink: 16 bytes leftover after parsing attributes in process `syz.3.557'. [ 360.922787][ T5628] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 363.229180][ T8967] netlink: 16 bytes leftover after parsing attributes in process `syz.2.566'. [ 370.695018][ T30] audit: type=1800 audit(1843104627.190:4): pid=9075 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.587" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 378.604745][ T1314] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.619456][ T1314] ieee802154 phy1 wpan1: encryption failed: -22 [ 382.859711][ T9231] vivid-007: ================= START STATUS ================= [ 382.869062][ T9231] vivid-007: Generate PTS: true [ 382.874431][ T9231] vivid-007: Generate SCR: true [ 382.879740][ T9231] tpg source WxH: 320x240 (Y'CbCr) [ 382.937317][ T9231] tpg field: 1 [ 382.976000][ T9231] tpg crop: (0,0)/320x240 [ 382.992089][ T9231] tpg compose: (0,0)/320x240 [ 383.024380][ T9231] tpg colorspace: 8 [ 383.038717][ T9231] tpg transfer function: 0/0 [ 383.084244][ T9231] tpg Y'CbCr encoding: 0/0 [ 383.148125][ T9231] tpg quantization: 0/0 [ 383.156958][ T9234] netlink: 16 bytes leftover after parsing attributes in process `syz.2.618'. [ 383.237622][ T9231] tpg RGB range: 0/2 [ 383.303282][ T9231] vivid-007: ================== END STATUS ================== [ 388.070960][ T9274] vivid-007: ================= START STATUS ================= [ 388.088334][ T9274] vivid-007: Generate PTS: true [ 388.112545][ T9274] vivid-007: Generate SCR: true [ 388.134307][ T9274] tpg source WxH: 320x240 (Y'CbCr) [ 388.162695][ T9274] tpg field: 1 [ 388.177418][ T9274] tpg crop: (0,0)/320x240 [ 388.209283][ T9274] tpg compose: (0,0)/320x240 [ 388.250843][ T9274] tpg colorspace: 8 [ 388.262625][ T9274] tpg transfer function: 0/0 [ 388.295290][ T9274] tpg Y'CbCr encoding: 0/0 [ 388.318996][ T9274] tpg quantization: 0/0 [ 388.339254][ T9274] tpg RGB range: 0/2 [ 388.348988][ T9274] vivid-007: ================== END STATUS ================== [ 389.985906][ T9292] netlink: 12 bytes leftover after parsing attributes in process `syz.1.639'. [ 392.567182][ T9331] vivid-007: ================= START STATUS ================= [ 392.642749][ T9331] vivid-007: Generate PTS: true [ 392.670419][ T9331] vivid-007: Generate SCR: true [ 392.785277][ T9331] tpg source WxH: 320x240 (Y'CbCr) [ 392.802679][ T9331] tpg field: 1 [ 392.976565][ T9331] tpg crop: (0,0)/320x240 [ 392.983660][ T9331] tpg compose: (0,0)/320x240 [ 393.076107][ T9331] tpg colorspace: 8 [ 393.163280][ T9331] tpg transfer function: 0/0 [ 393.415043][ T9331] tpg Y'CbCr encoding: 0/0 [ 393.462798][ T9331] tpg quantization: 0/0 [ 393.564029][ T9331] tpg RGB range: 0/2 [ 393.612691][ T9331] vivid-007: ================== END STATUS ================== [ 396.755537][ T9367] netlink: 12 bytes leftover after parsing attributes in process `syz.2.648'. [ 397.862652][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 409.579896][ T30] audit: type=1800 audit(1843104666.080:5): pid=9483 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.666" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 437.171204][ T9803] netlink: 12 bytes leftover after parsing attributes in process `syz.2.724'. [ 439.722003][ T9842] FAULT_INJECTION: forcing a failure. [ 439.722003][ T9842] name failslab, interval 1, probability 0, space 0, times 0 [ 439.907249][ T9842] CPU: 0 UID: 0 PID: 9842 Comm: syz.0.733 Not tainted syzkaller #0 PREEMPT(full) [ 439.907284][ T9842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 439.907298][ T9842] Call Trace: [ 439.907307][ T9842] [ 439.907316][ T9842] dump_stack_lvl+0x100/0x190 [ 439.907351][ T9842] should_fail_ex.cold+0x5/0xa [ 439.907383][ T9842] ? tomoyo_encode2+0xfb/0x3c0 [ 439.907411][ T9842] should_failslab+0xc2/0x120 [ 439.907440][ T9842] __kmalloc_noprof+0xe0/0x850 [ 439.907478][ T9842] ? d_absolute_path+0x136/0x1b0 [ 439.907527][ T9842] tomoyo_encode2+0xfb/0x3c0 [ 439.907562][ T9842] tomoyo_encode+0x29/0x50 [ 439.907590][ T9842] tomoyo_realpath_from_path+0x18c/0x690 [ 439.907630][ T9842] tomoyo_path_number_perm+0x23c/0x580 [ 439.907654][ T9842] ? tomoyo_path_number_perm+0x22e/0x580 [ 439.907682][ T9842] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 439.907744][ T9842] ? find_held_lock+0x2b/0x80 [ 439.907783][ T9842] ? __fget_files+0x215/0x3d0 [ 439.907809][ T9842] ? hook_file_ioctl_common+0x149/0x410 [ 439.907834][ T9842] ? __fget_files+0x215/0x3d0 [ 439.907869][ T9842] ? __fget_files+0x21f/0x3d0 [ 439.907904][ T9842] security_file_ioctl+0xd3/0x230 [ 439.907931][ T9842] __x64_sys_ioctl+0xb7/0x210 [ 439.907959][ T9842] do_syscall_64+0x10b/0xf80 [ 439.907989][ T9842] ? clear_bhb_loop+0x40/0x90 [ 439.908020][ T9842] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 439.908046][ T9842] RIP: 0033:0x7fc58f59cdd9 [ 439.908067][ T9842] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 439.908091][ T9842] RSP: 002b:00007fc590481028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 439.908115][ T9842] RAX: ffffffffffffffda RBX: 00007fc58f815fa0 RCX: 00007fc58f59cdd9 [ 439.908132][ T9842] RDX: 0000000000000000 RSI: 00000000000007a8 RDI: 0000000000000003 [ 439.908147][ T9842] RBP: 00007fc590481090 R08: 0000000000000000 R09: 0000000000000000 [ 439.908162][ T9842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 439.908176][ T9842] R13: 00007fc58f816038 R14: 00007fc58f815fa0 R15: 00007fff105414e8 [ 439.908212][ T9842] [ 439.908259][ T9842] ERROR: Out of memory at tomoyo_realpath_from_path. [ 440.054744][ T1314] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.142506][ T1314] ieee802154 phy1 wpan1: encryption failed: -22 [ 441.355676][ T9858] netlink: 12 bytes leftover after parsing attributes in process `syz.0.736'. [ 444.062770][ T9913] netlink: 12 bytes leftover after parsing attributes in process `syz.3.748'. [ 444.393881][ T9918] netlink: 338 bytes leftover after parsing attributes in process `syz.1.749'. [ 452.849581][T10027] netlink: 12 bytes leftover after parsing attributes in process `syz.3.768'. [ 456.571364][T10077] netlink: 8 bytes leftover after parsing attributes in process `syz.0.777'. [ 457.563173][T10086] netlink: 12 bytes leftover after parsing attributes in process `syz.0.779'. [ 458.788708][T10100] FAULT_INJECTION: forcing a failure. [ 458.788708][T10100] name failslab, interval 1, probability 0, space 0, times 0 [ 458.907668][T10100] CPU: 1 UID: 0 PID: 10100 Comm: syz.3.783 Not tainted syzkaller #0 PREEMPT(full) [ 458.907707][T10100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 458.907721][T10100] Call Trace: [ 458.907730][T10100] [ 458.907739][T10100] dump_stack_lvl+0x100/0x190 [ 458.907777][T10100] should_fail_ex.cold+0x5/0xa [ 458.907810][T10100] ? tomoyo_encode2+0xfb/0x3c0 [ 458.907842][T10100] should_failslab+0xc2/0x120 [ 458.907871][T10100] __kmalloc_noprof+0xe0/0x850 [ 458.907912][T10100] ? d_absolute_path+0x136/0x1b0 [ 458.907963][T10100] tomoyo_encode2+0xfb/0x3c0 [ 458.907998][T10100] tomoyo_encode+0x29/0x50 [ 458.908026][T10100] tomoyo_realpath_from_path+0x18c/0x690 [ 458.908067][T10100] tomoyo_path_number_perm+0x23c/0x580 [ 458.908091][T10100] ? tomoyo_path_number_perm+0x22e/0x580 [ 458.908118][T10100] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 458.908183][T10100] ? find_held_lock+0x2b/0x80 [ 458.908215][T10100] ? __fget_files+0x215/0x3d0 [ 458.908245][T10100] ? hook_file_ioctl_common+0x149/0x410 [ 458.908270][T10100] ? __fget_files+0x215/0x3d0 [ 458.908302][T10100] ? __fget_files+0x21f/0x3d0 [ 458.908340][T10100] security_file_ioctl+0xd3/0x230 [ 458.908367][T10100] __x64_sys_ioctl+0xb7/0x210 [ 458.908395][T10100] do_syscall_64+0x10b/0xf80 [ 458.908434][T10100] ? clear_bhb_loop+0x40/0x90 [ 458.908465][T10100] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 458.908496][T10100] RIP: 0033:0x7fbfacb9cdd9 [ 458.908517][T10100] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 458.908544][T10100] RSP: 002b:00007fbfadaf0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 458.908569][T10100] RAX: ffffffffffffffda RBX: 00007fbface15fa0 RCX: 00007fbfacb9cdd9 [ 458.908586][T10100] RDX: 00002000000001c0 RSI: 00000000c0105512 RDI: 0000000000000003 [ 458.908601][T10100] RBP: 00007fbfadaf0090 R08: 0000000000000000 R09: 0000000000000000 [ 458.908620][T10100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 458.908635][T10100] R13: 00007fbface16038 R14: 00007fbface15fa0 R15: 00007fff205b5cc8 [ 458.908674][T10100] [ 459.152642][T10100] ERROR: Out of memory at tomoyo_realpath_from_path. [ 467.461140][T10182] netlink: 12 bytes leftover after parsing attributes in process `syz.3.798'. [ 469.910758][T10221] FAULT_INJECTION: forcing a failure. [ 469.910758][T10221] name failslab, interval 1, probability 0, space 0, times 0 [ 470.001486][T10221] CPU: 1 UID: 0 PID: 10221 Comm: syz.3.805 Not tainted syzkaller #0 PREEMPT(full) [ 470.001518][T10221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 470.001527][T10221] Call Trace: [ 470.001533][T10221] [ 470.001539][T10221] dump_stack_lvl+0x100/0x190 [ 470.001559][T10221] should_fail_ex.cold+0x5/0xa [ 470.001578][T10221] should_failslab+0xc2/0x120 [ 470.001600][T10221] __kvmalloc_node_noprof+0xfa/0xa00 [ 470.001614][T10221] ? proc_sys_call_handler+0x2c7/0x5a0 [ 470.001636][T10221] proc_sys_call_handler+0x2c7/0x5a0 [ 470.001654][T10221] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 470.001676][T10221] vfs_write+0x6ac/0x1070 [ 470.001693][T10221] ? __pfx_proc_sys_write+0x10/0x10 [ 470.001711][T10221] ? __pfx_vfs_write+0x10/0x10 [ 470.001725][T10221] ? find_held_lock+0x2b/0x80 [ 470.001754][T10221] __x64_sys_pwrite64+0x1eb/0x250 [ 470.001771][T10221] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 470.001790][T10221] ? rcu_is_watching+0x12/0xc0 [ 470.001809][T10221] do_syscall_64+0x10b/0xf80 [ 470.001825][T10221] ? clear_bhb_loop+0x40/0x90 [ 470.001842][T10221] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 470.001856][T10221] RIP: 0033:0x7fbfacb9cdd9 [ 470.001868][T10221] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 470.001881][T10221] RSP: 002b:00007fbfadaf0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 470.001898][T10221] RAX: ffffffffffffffda RBX: 00007fbface15fa0 RCX: 00007fbfacb9cdd9 [ 470.001914][T10221] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006 [ 470.001929][T10221] RBP: 00007fbfadaf0090 R08: 0000000000000000 R09: 0000000000000000 [ 470.001937][T10221] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001 [ 470.001945][T10221] R13: 00007fbface16038 R14: 00007fbface15fa0 R15: 00007fff205b5cc8 [ 470.001963][T10221] [ 470.571962][T10226] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78408 [ 470.592765][T10226] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 470.604535][T10226] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 470.613230][T10226] page_type: f5(slab) [ 470.618847][T10226] raw: 00fff00000000040 ffff88813fe2e140 dead000000000100 dead000000000122 [ 470.629398][T10226] raw: 0000000000000000 0000000800040004 00000000f5000000 0000000000000000 [ 470.638233][T10226] head: 00fff00000000040 ffff88813fe2e140 dead000000000100 dead000000000122 [ 470.649307][T10226] head: 0000000000000000 0000000800040004 00000000f5000000 0000000000000000 [ 470.659009][T10226] head: 00fff00000000003 fffffffffffffe01 00000000ffffffff 00000000ffffffff [ 470.679309][T10226] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 470.697216][T10226] page dumped because: unmovable page [ 470.709015][T10226] page_owner tracks the page as allocated [ 470.725946][T10226] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 8615, tgid 8615 (kworker/u8:1), ts 452365693892, free_ts 451764514474 [ 470.768898][T10226] post_alloc_hook+0x153/0x170 [ 470.780443][T10226] get_page_from_freelist+0x11a6/0x33b0 [ 470.793721][T10226] __alloc_frozen_pages_noprof+0x27c/0x2bc0 [ 470.815762][T10226] new_slab+0xa6/0x6c0 [ 470.824881][T10226] refill_objects+0x277/0x420 [ 470.841173][T10226] __pcs_replace_empty_main+0x375/0x650 [ 470.851297][T10226] __kmalloc_node_track_caller_noprof+0x694/0x850 [ 470.862552][T10226] kmalloc_reserve+0xe8/0x350 [ 470.874732][T10226] __alloc_skb+0x185/0x710 [ 470.891654][T10226] nsim_dev_trap_report_work+0x2af/0xd10 [ 470.901131][T10226] process_one_work+0xa0e/0x1980 [ 470.914177][T10226] worker_thread+0x5ef/0xe50 [ 470.922521][T10226] kthread+0x370/0x450 [ 470.930631][T10226] ret_from_fork+0x72b/0xd50 [ 470.935506][T10226] ret_from_fork_asm+0x1a/0x30 [ 470.940364][T10226] page last free pid 10000 tgid 9999 stack trace: [ 470.946954][T10226] __free_frozen_pages+0x747/0x1040 [ 470.952220][T10226] qlist_free_all+0x47/0xf0 [ 470.957192][T10226] kasan_quarantine_reduce+0x1a0/0x1f0 [ 470.962846][T10226] __kasan_slab_alloc+0x69/0x90 [ 470.967827][T10226] kmem_cache_alloc_node_noprof+0x25a/0x6f0 [ 470.973846][T10226] __alloc_skb+0x140/0x710 [ 470.979036][T10226] mpls_netconf_notify_devconf+0x4a/0x100 [ 470.984987][T10226] mpls_dev_sysctl_register+0x1c9/0x2a0 [ 470.990662][T10226] mpls_dev_notify+0x365/0x920 [ 470.995544][T10226] notifier_call_chain+0x99/0x400 [ 471.001145][T10226] call_netdevice_notifiers_info+0xbe/0x110 [ 471.007455][T10226] register_netdevice+0x18fe/0x24b0 [ 471.012812][T10226] register_netdev+0x34/0x50 [ 471.017483][T10226] sit_init_net+0x2c0/0x5e0 [ 471.022026][T10226] ops_init+0x1e2/0x5f0 [ 471.032463][T10226] setup_net+0x118/0x3a0 [ 477.788458][T10318] FAULT_INJECTION: forcing a failure. [ 477.788458][T10318] name failslab, interval 1, probability 0, space 0, times 0 [ 477.839102][T10318] CPU: 1 UID: 0 PID: 10318 Comm: syz.2.827 Not tainted syzkaller #0 PREEMPT(full) [ 477.839137][T10318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 477.839153][T10318] Call Trace: [ 477.839162][T10318] [ 477.839173][T10318] dump_stack_lvl+0x100/0x190 [ 477.839205][T10318] should_fail_ex.cold+0x5/0xa [ 477.839238][T10318] should_failslab+0xc2/0x120 [ 477.839267][T10318] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 477.839308][T10318] ? __d_alloc+0x34/0xa40 [ 477.839348][T10318] __d_alloc+0x34/0xa40 [ 477.839388][T10318] d_alloc_pseudo+0x1c/0xc0 [ 477.839414][T10318] alloc_file_pseudo+0xcf/0x230 [ 477.839455][T10318] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 477.839495][T10318] ? alloc_fd+0x476/0x790 [ 477.839533][T10318] sock_alloc_file+0x50/0x210 [ 477.839564][T10318] __sys_socket+0x1c0/0x260 [ 477.839612][T10318] ? __pfx___sys_socket+0x10/0x10 [ 477.839648][T10318] ? ksys_write+0x1ac/0x250 [ 477.839688][T10318] __x64_sys_socket+0x72/0xb0 [ 477.839724][T10318] ? lockdep_hardirqs_on+0x78/0x100 [ 477.839757][T10318] do_syscall_64+0x10b/0xf80 [ 477.839787][T10318] ? clear_bhb_loop+0x40/0x90 [ 477.839821][T10318] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 477.839849][T10318] RIP: 0033:0x7f4a2919cdd9 [ 477.839871][T10318] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 477.839897][T10318] RSP: 002b:00007f4a2a051028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 477.839925][T10318] RAX: ffffffffffffffda RBX: 00007f4a29416090 RCX: 00007f4a2919cdd9 [ 477.839944][T10318] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002 [ 477.839960][T10318] RBP: 00007f4a29232d69 R08: 0000000000000000 R09: 0000000000000000 [ 477.839977][T10318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 477.839993][T10318] R13: 00007f4a29416128 R14: 00007f4a29416090 R15: 00007ffd1e458498 [ 477.840030][T10318] [ 477.878926][T10323] netlink: 12 bytes leftover after parsing attributes in process `syz.0.828'. [ 478.525517][T10326] hub 1-0:1.0: USB hub found [ 478.582137][T10326] hub 1-0:1.0: 1 port detected [ 478.840178][T10338] FAULT_INJECTION: forcing a failure. [ 478.840178][T10338] name fail_futex, interval 1, probability 0, space 0, times 1 [ 478.901357][T10338] CPU: 1 UID: 0 PID: 10338 Comm: syz.1.832 Not tainted syzkaller #0 PREEMPT(full) [ 478.901390][T10338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 478.901404][T10338] Call Trace: [ 478.901413][T10338] [ 478.901423][T10338] dump_stack_lvl+0x100/0x190 [ 478.901454][T10338] should_fail_ex.cold+0x5/0xa [ 478.901484][T10338] get_futex_key+0x295/0x1510 [ 478.901512][T10338] ? __pfx_get_futex_key+0x10/0x10 [ 478.901535][T10338] ? lock_acquire+0x1b1/0x370 [ 478.901578][T10338] futex_wake+0xea/0x530 [ 478.901614][T10338] ? __pfx_futex_wake+0x10/0x10 [ 478.901643][T10338] ? exit_mm_release+0x19/0x30 [ 478.901688][T10338] do_futex+0x32b/0x350 [ 478.901715][T10338] ? __pfx_do_futex+0x10/0x10 [ 478.901739][T10338] ? __might_fault+0xc5/0x140 [ 478.901788][T10338] mm_release+0x24a/0x2f0 [ 478.901819][T10338] do_exit+0x707/0x2a60 [ 478.901862][T10338] ? __pfx_do_exit+0x10/0x10 [ 478.901899][T10338] ? do_raw_spin_lock+0x128/0x260 [ 478.901927][T10338] ? find_held_lock+0x2b/0x80 [ 478.901958][T10338] ? get_signal+0x7e0/0x21e0 [ 478.901993][T10338] do_group_exit+0xd5/0x2a0 [ 478.902034][T10338] get_signal+0x1ec7/0x21e0 [ 478.902071][T10338] ? ksys_write+0x190/0x250 [ 478.902103][T10338] ? __pfx_get_signal+0x10/0x10 [ 478.902136][T10338] ? do_futex+0x192/0x350 [ 478.902167][T10338] arch_do_signal_or_restart+0x91/0x770 [ 478.902207][T10338] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 478.902254][T10338] ? __pfx___x64_sys_futex+0x10/0x10 [ 478.902282][T10338] ? rcu_is_watching+0x12/0xc0 [ 478.902316][T10338] exit_to_user_mode_loop+0x86/0x4a0 [ 478.902340][T10338] ? do_syscall_64+0x519/0xf80 [ 478.902372][T10338] do_syscall_64+0x6f2/0xf80 [ 478.902400][T10338] ? clear_bhb_loop+0x40/0x90 [ 478.902427][T10338] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 478.902450][T10338] RIP: 0033:0x7f4bc3b9cdd9 [ 478.902470][T10338] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 478.902492][T10338] RSP: 002b:00007f4bc4a4b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 478.902514][T10338] RAX: fffffffffffffe00 RBX: 00007f4bc3e15fa8 RCX: 00007f4bc3b9cdd9 [ 478.902531][T10338] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f4bc3e15fa8 [ 478.902546][T10338] RBP: 00007f4bc3e15fa0 R08: 0000000000000000 R09: 0000000000000000 [ 478.902569][T10338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 478.902583][T10338] R13: 00007f4bc3e16038 R14: 00007fffaa0c2620 R15: 00007fffaa0c2708 [ 478.902617][T10338] [ 479.951052][T10352] FAULT_INJECTION: forcing a failure. [ 479.951052][T10352] name failslab, interval 1, probability 0, space 0, times 0 [ 480.010142][T10352] CPU: 0 UID: 0 PID: 10352 Comm: syz.2.835 Not tainted syzkaller #0 PREEMPT(full) [ 480.010200][T10352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 480.010217][T10352] Call Trace: [ 480.010226][T10352] [ 480.010237][T10352] dump_stack_lvl+0x100/0x190 [ 480.010275][T10352] should_fail_ex.cold+0x5/0xa [ 480.010314][T10352] should_failslab+0xc2/0x120 [ 480.010347][T10352] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 480.010390][T10352] ? acpi_ut_create_generic_state+0x61/0xc0 [ 480.010431][T10352] acpi_ut_create_generic_state+0x61/0xc0 [ 480.010472][T10352] acpi_ds_scope_stack_push+0x70/0x790 [ 480.010513][T10352] acpi_ds_init_aml_walk+0x2d8/0x680 [ 480.010551][T10352] acpi_ds_call_control_method+0x3a2/0xab0 [ 480.010602][T10352] acpi_ps_parse_aml+0xacd/0x1120 [ 480.010643][T10352] acpi_ps_execute_method+0x5c4/0xe90 [ 480.010686][T10352] acpi_ns_evaluate+0x640/0x1670 [ 480.010731][T10352] acpi_evaluate_object+0x420/0xe00 [ 480.010763][T10352] ? kasan_save_stack+0x30/0x50 [ 480.010792][T10352] ? kasan_save_track+0x14/0x30 [ 480.010817][T10352] ? __kasan_kmalloc+0xaa/0xb0 [ 480.010839][T10352] ? __kvmalloc_node_noprof+0x360/0xa00 [ 480.010870][T10352] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 480.010895][T10352] ? lock_acquire+0x1b1/0x370 [ 480.010931][T10352] acpi_evaluate_integer+0xdf/0x220 [ 480.010978][T10352] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 480.011035][T10352] ? __pfx_status_show+0x10/0x10 [ 480.011061][T10352] status_show+0xa0/0x120 [ 480.011086][T10352] ? __pfx_status_show+0x10/0x10 [ 480.011120][T10352] dev_attr_show+0x52/0xa0 [ 480.011154][T10352] ? __pfx_dev_attr_show+0x10/0x10 [ 480.011188][T10352] sysfs_kf_seq_show+0x217/0x3a0 [ 480.011239][T10352] seq_read_iter+0x32f/0x1270 [ 480.011269][T10352] ? lock_acquire+0x1b1/0x370 [ 480.011312][T10352] kernfs_fop_read_iter+0x46c/0x610 [ 480.011354][T10352] ? rw_verify_area+0xce/0x6d0 [ 480.011381][T10352] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 480.011424][T10352] vfs_read+0x825/0xb30 [ 480.011470][T10352] ? __pfx_vfs_read+0x10/0x10 [ 480.011530][T10352] ksys_read+0x12a/0x250 [ 480.011563][T10352] ? __pfx_ksys_read+0x10/0x10 [ 480.011602][T10352] ? rcu_is_watching+0x12/0xc0 [ 480.011641][T10352] do_syscall_64+0x10b/0xf80 [ 480.011675][T10352] ? clear_bhb_loop+0x40/0x90 [ 480.011710][T10352] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 480.011739][T10352] RIP: 0033:0x7f4a2919cdd9 [ 480.011764][T10352] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 480.011791][T10352] RSP: 002b:00007f4a2a072028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 480.011820][T10352] RAX: ffffffffffffffda RBX: 00007f4a29415fa0 RCX: 00007f4a2919cdd9 [ 480.011840][T10352] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000005 [ 480.011858][T10352] RBP: 00007f4a29232d69 R08: 0000000000000000 R09: 0000000000000000 [ 480.011875][T10352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 480.011891][T10352] R13: 00007f4a29416038 R14: 00007f4a29415fa0 R15: 00007ffd1e458498 [ 480.011929][T10352] [ 480.317353][T10352] ACPI Error: ffff888070a85000 walk still has a scope list (20251212/dswstate-694) [ 480.329052][T10352] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 480.968574][T10364] netlink: 12 bytes leftover after parsing attributes in process `syz.0.838'. [ 481.544677][T10370] FAULT_INJECTION: forcing a failure. [ 481.544677][T10370] name failslab, interval 1, probability 0, space 0, times 0 [ 481.604620][T10370] CPU: 1 UID: 0 PID: 10370 Comm: syz.0.840 Not tainted syzkaller #0 PREEMPT(full) [ 481.604655][T10370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 481.604670][T10370] Call Trace: [ 481.604678][T10370] [ 481.604688][T10370] dump_stack_lvl+0x100/0x190 [ 481.604722][T10370] should_fail_ex.cold+0x5/0xa [ 481.604754][T10370] should_failslab+0xc2/0x120 [ 481.604782][T10370] __kmalloc_cache_noprof+0x7a/0x6f0 [ 481.604817][T10370] ? acpi_evaluate_object+0xf5/0xe00 [ 481.604852][T10370] acpi_evaluate_object+0xf5/0xe00 [ 481.604877][T10370] ? kasan_save_stack+0x30/0x50 [ 481.604901][T10370] ? kasan_save_track+0x14/0x30 [ 481.604924][T10370] ? __kasan_kmalloc+0xaa/0xb0 [ 481.604948][T10370] ? __kvmalloc_node_noprof+0x360/0xa00 [ 481.604979][T10370] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 481.605003][T10370] ? lock_acquire+0x1b1/0x370 [ 481.605039][T10370] acpi_evaluate_integer+0xdf/0x220 [ 481.605076][T10370] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 481.605129][T10370] ? __pfx_status_show+0x10/0x10 [ 481.605153][T10370] status_show+0xa0/0x120 [ 481.605178][T10370] ? __pfx_status_show+0x10/0x10 [ 481.605213][T10370] dev_attr_show+0x52/0xa0 [ 481.605245][T10370] ? __pfx_dev_attr_show+0x10/0x10 [ 481.605274][T10370] sysfs_kf_seq_show+0x217/0x3a0 [ 481.605322][T10370] seq_read_iter+0x32f/0x1270 [ 481.605348][T10370] ? lock_acquire+0x1b1/0x370 [ 481.605388][T10370] kernfs_fop_read_iter+0x46c/0x610 [ 481.605425][T10370] ? rw_verify_area+0xce/0x6d0 [ 481.605449][T10370] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 481.605494][T10370] vfs_read+0x825/0xb30 [ 481.605527][T10370] ? __pfx_vfs_read+0x10/0x10 [ 481.605586][T10370] ksys_read+0x12a/0x250 [ 481.605613][T10370] ? __pfx_ksys_read+0x10/0x10 [ 481.605644][T10370] ? rcu_is_watching+0x12/0xc0 [ 481.605679][T10370] do_syscall_64+0x10b/0xf80 [ 481.605710][T10370] ? clear_bhb_loop+0x40/0x90 [ 481.605741][T10370] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 481.605767][T10370] RIP: 0033:0x7fc58f59cdd9 [ 481.605788][T10370] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 481.605811][T10370] RSP: 002b:00007fc590481028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 481.605834][T10370] RAX: ffffffffffffffda RBX: 00007fc58f815fa0 RCX: 00007fc58f59cdd9 [ 481.605851][T10370] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000005 [ 481.605865][T10370] RBP: 00007fc590481090 R08: 0000000000000000 R09: 0000000000000000 [ 481.605880][T10370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 481.605894][T10370] R13: 00007fc58f816038 R14: 00007fc58f815fa0 R15: 00007fff105414e8 [ 481.605931][T10370] [ 483.898094][T10398] netlink: 8 bytes leftover after parsing attributes in process `syz.1.845'. [ 483.958516][T10400] FAULT_INJECTION: forcing a failure. [ 483.958516][T10400] name failslab, interval 1, probability 0, space 0, times 0 [ 483.979048][T10400] CPU: 0 UID: 0 PID: 10400 Comm: syz.1.845 Not tainted syzkaller #0 PREEMPT(full) [ 483.979086][T10400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 483.979102][T10400] Call Trace: [ 483.979111][T10400] [ 483.979122][T10400] dump_stack_lvl+0x100/0x190 [ 483.979166][T10400] should_fail_ex.cold+0x5/0xa [ 483.979204][T10400] should_failslab+0xc2/0x120 [ 483.979241][T10400] __kmalloc_cache_noprof+0x7a/0x6f0 [ 483.979280][T10400] ? acpi_ds_call_control_method+0x300/0xab0 [ 483.979333][T10400] acpi_ds_call_control_method+0x300/0xab0 [ 483.979390][T10400] acpi_ps_parse_aml+0xacd/0x1120 [ 483.979431][T10400] acpi_ps_execute_method+0x5c4/0xe90 [ 483.979472][T10400] acpi_ns_evaluate+0x640/0x1670 [ 483.979515][T10400] acpi_evaluate_object+0x420/0xe00 [ 483.979538][T10400] ? kasan_save_stack+0x30/0x50 [ 483.979563][T10400] ? kasan_save_track+0x14/0x30 [ 483.979587][T10400] ? __kasan_kmalloc+0xaa/0xb0 [ 483.979609][T10400] ? __kvmalloc_node_noprof+0x360/0xa00 [ 483.979641][T10400] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 483.979666][T10400] ? lock_acquire+0x1b1/0x370 [ 483.979703][T10400] acpi_evaluate_integer+0xdf/0x220 [ 483.979743][T10400] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 483.979799][T10400] ? __pfx_status_show+0x10/0x10 [ 483.979823][T10400] status_show+0xa0/0x120 [ 483.979847][T10400] ? __pfx_status_show+0x10/0x10 [ 483.979882][T10400] dev_attr_show+0x52/0xa0 [ 483.979915][T10400] ? __pfx_dev_attr_show+0x10/0x10 [ 483.979944][T10400] sysfs_kf_seq_show+0x217/0x3a0 [ 483.979989][T10400] seq_read_iter+0x32f/0x1270 [ 483.980018][T10400] ? lock_acquire+0x1b1/0x370 [ 483.980060][T10400] kernfs_fop_read_iter+0x46c/0x610 [ 483.980098][T10400] ? rw_verify_area+0xce/0x6d0 [ 483.980123][T10400] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 483.980162][T10400] vfs_read+0x825/0xb30 [ 483.980198][T10400] ? __pfx_vfs_read+0x10/0x10 [ 483.980265][T10400] ksys_read+0x12a/0x250 [ 483.980296][T10400] ? __pfx_ksys_read+0x10/0x10 [ 483.980330][T10400] ? rcu_is_watching+0x12/0xc0 [ 483.980368][T10400] do_syscall_64+0x10b/0xf80 [ 483.980407][T10400] ? clear_bhb_loop+0x40/0x90 [ 483.980443][T10400] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 483.980470][T10400] RIP: 0033:0x7f4bc3b9cdd9 [ 483.980494][T10400] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 483.980521][T10400] RSP: 002b:00007f4bc4a2a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 483.980546][T10400] RAX: ffffffffffffffda RBX: 00007f4bc3e16090 RCX: 00007f4bc3b9cdd9 [ 483.980565][T10400] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000006 [ 483.980582][T10400] RBP: 00007f4bc3c32d69 R08: 0000000000000000 R09: 0000000000000000 [ 483.980598][T10400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 483.980614][T10400] R13: 00007f4bc3e16128 R14: 00007f4bc3e16090 R15: 00007fffaa0c2708 [ 483.980651][T10400] [ 484.270830][T10400] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 485.587883][T10410] netlink: 12 bytes leftover after parsing attributes in process `syz.2.848'. [ 494.949563][T10542] netlink: 28 bytes leftover after parsing attributes in process `syz.1.878'. [ 499.652796][T10618] netlink: 12 bytes leftover after parsing attributes in process `syz.1.890'. [ 501.484615][ T1314] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.493219][ T1314] ieee802154 phy1 wpan1: encryption failed: -22 [ 501.570860][T10650] FAULT_INJECTION: forcing a failure. [ 501.570860][T10650] name fail_futex, interval 1, probability 0, space 0, times 0 [ 501.594276][T10650] CPU: 0 UID: 0 PID: 10650 Comm: syz.1.900 Not tainted syzkaller #0 PREEMPT(full) [ 501.594314][T10650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 501.594330][T10650] Call Trace: [ 501.594339][T10650] [ 501.594350][T10650] dump_stack_lvl+0x100/0x190 [ 501.594386][T10650] should_fail_ex.cold+0x5/0xa [ 501.594420][T10650] get_futex_key+0xf78/0x1510 [ 501.594449][T10650] ? __pfx_get_futex_key+0x10/0x10 [ 501.594474][T10650] ? get_futex_key+0x4e8/0x1510 [ 501.594506][T10650] futex_wait_setup+0x83/0x510 [ 501.594545][T10650] futex_wait_requeue_pi+0x240/0x870 [ 501.594582][T10650] ? __pfx_futex_wait_requeue_pi+0x10/0x10 [ 501.594615][T10650] ? preempt_schedule_thunk+0x16/0x30 [ 501.594687][T10650] ? preempt_schedule_thunk+0x16/0x30 [ 501.594742][T10650] ? __pfx_try_to_wake_up+0x10/0x10 [ 501.594788][T10650] ? futex_private_hash_put+0x107/0x1c0 [ 501.594838][T10650] ? __pfx_futex_wake_mark+0x10/0x10 [ 501.594882][T10650] ? __fget_files+0x21f/0x3d0 [ 501.594920][T10650] do_futex+0x24f/0x350 [ 501.594951][T10650] ? __pfx_do_futex+0x10/0x10 [ 501.594990][T10650] __x64_sys_futex+0x34f/0x4d0 [ 501.595025][T10650] ? __pfx___x64_sys_futex+0x10/0x10 [ 501.595054][T10650] ? ksys_write+0x1ac/0x250 [ 501.595089][T10650] ? rcu_is_watching+0x12/0xc0 [ 501.595125][T10650] do_syscall_64+0x10b/0xf80 [ 501.595156][T10650] ? clear_bhb_loop+0x40/0x90 [ 501.595191][T10650] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 501.595218][T10650] RIP: 0033:0x7f4bc3b9cdd9 [ 501.595241][T10650] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 501.595267][T10650] RSP: 002b:00007f4bc4a4b028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 501.595293][T10650] RAX: ffffffffffffffda RBX: 00007f4bc3e15fa0 RCX: 00007f4bc3b9cdd9 [ 501.595311][T10650] RDX: 0000000000000001 RSI: 000000000000000b RDI: 0000200000000080 [ 501.595328][T10650] RBP: 00007f4bc3c32d69 R08: 0000000000000000 R09: 00000000fffffffa [ 501.595344][T10650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 501.595360][T10650] R13: 00007f4bc3e16038 R14: 00007f4bc3e15fa0 R15: 00007fffaa0c2708 [ 501.595397][T10650] [ 503.168408][T10671] FAULT_INJECTION: forcing a failure. [ 503.168408][T10671] name failslab, interval 1, probability 0, space 0, times 0 [ 503.234918][T10671] CPU: 1 UID: 0 PID: 10671 Comm: syz.1.905 Not tainted syzkaller #0 PREEMPT(full) [ 503.234956][T10671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 503.234970][T10671] Call Trace: [ 503.234979][T10671] [ 503.234989][T10671] dump_stack_lvl+0x100/0x190 [ 503.235026][T10671] should_fail_ex.cold+0x5/0xa [ 503.235061][T10671] ? snd_seq_oss_readq_new+0x9b/0x290 [ 503.235106][T10671] should_failslab+0xc2/0x120 [ 503.235139][T10671] __kmalloc_noprof+0xe0/0x850 [ 503.235191][T10671] snd_seq_oss_readq_new+0x9b/0x290 [ 503.235238][T10671] snd_seq_oss_open+0x476/0xa10 [ 503.235281][T10671] odev_open+0x6f/0x90 [ 503.235313][T10671] ? __pfx_odev_open+0x10/0x10 [ 503.235344][T10671] soundcore_open+0x2e3/0x5a0 [ 503.235382][T10671] ? __pfx_soundcore_open+0x10/0x10 [ 503.235415][T10671] chrdev_open+0x234/0x6a0 [ 503.235447][T10671] ? __pfx_apparmor_file_open+0x10/0x10 [ 503.235489][T10671] ? __pfx_chrdev_open+0x10/0x10 [ 503.235532][T10671] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 503.235576][T10671] do_dentry_open+0x6d8/0x1660 [ 503.235610][T10671] ? __pfx_chrdev_open+0x10/0x10 [ 503.235653][T10671] vfs_open+0x82/0x3f0 [ 503.235696][T10671] path_openat+0x208c/0x31a0 [ 503.235743][T10671] ? __pfx_path_openat+0x10/0x10 [ 503.235791][T10671] do_file_open+0x20e/0x430 [ 503.235827][T10671] ? __pfx_do_file_open+0x10/0x10 [ 503.235888][T10671] ? alloc_fd+0x476/0x790 [ 503.235924][T10671] ? do_getname+0x191/0x390 [ 503.235968][T10671] do_sys_openat2+0x10d/0x1e0 [ 503.236011][T10671] ? __pfx_do_sys_openat2+0x10/0x10 [ 503.236055][T10671] ? __fget_files+0x21f/0x3d0 [ 503.236095][T10671] __x64_sys_openat+0x12d/0x210 [ 503.236139][T10671] ? __pfx___x64_sys_openat+0x10/0x10 [ 503.236188][T10671] ? rcu_is_watching+0x12/0xc0 [ 503.236226][T10671] do_syscall_64+0x10b/0xf80 [ 503.236259][T10671] ? clear_bhb_loop+0x40/0x90 [ 503.236295][T10671] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 503.236323][T10671] RIP: 0033:0x7f4bc3b9cdd9 [ 503.236346][T10671] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 503.236373][T10671] RSP: 002b:00007f4bc4a4b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 503.236400][T10671] RAX: ffffffffffffffda RBX: 00007f4bc3e15fa0 RCX: 00007f4bc3b9cdd9 [ 503.236418][T10671] RDX: 0000000000080102 RSI: 0000200000000500 RDI: ffffffffffffff9c [ 503.236435][T10671] RBP: 00007f4bc3c32d69 R08: 0000000000000000 R09: 0000000000000000 [ 503.236452][T10671] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 503.236467][T10671] R13: 00007f4bc3e16038 R14: 00007f4bc3e15fa0 R15: 00007fffaa0c2708 [ 503.236504][T10671] [ 503.883089][ T5628] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 505.396894][T10695] ubi: mtd0 is already attached to ubi31 [ 505.944244][T10710] FAULT_INJECTION: forcing a failure. [ 505.944244][T10710] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 505.957904][T10710] CPU: 0 UID: 0 PID: 10710 Comm: syz.2.916 Not tainted syzkaller #0 PREEMPT(full) [ 505.957937][T10710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 505.957952][T10710] Call Trace: [ 505.957960][T10710] [ 505.957969][T10710] dump_stack_lvl+0x100/0x190 [ 505.958003][T10710] should_fail_ex.cold+0x5/0xa [ 505.958036][T10710] _copy_to_user+0x32/0xd0 [ 505.958078][T10710] simple_read_from_buffer+0xcb/0x170 [ 505.958110][T10710] tracing_stats_read+0x4b5/0x720 [ 505.958145][T10710] ? __pfx_tracing_stats_read+0x10/0x10 [ 505.958172][T10710] vfs_readv+0x5d8/0x8d0 [ 505.958207][T10710] ? __pfx_vfs_readv+0x10/0x10 [ 505.958234][T10710] ? find_held_lock+0x2b/0x80 [ 505.958265][T10710] ? ksys_write+0x190/0x250 [ 505.958314][T10710] ? __fget_files+0x21f/0x3d0 [ 505.958352][T10710] ? do_readv+0x13e/0x340 [ 505.958376][T10710] do_readv+0x13e/0x340 [ 505.958403][T10710] ? __pfx_do_readv+0x10/0x10 [ 505.958432][T10710] ? rcu_is_watching+0x12/0xc0 [ 505.958468][T10710] do_syscall_64+0x10b/0xf80 [ 505.958498][T10710] ? clear_bhb_loop+0x40/0x90 [ 505.958530][T10710] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 505.958556][T10710] RIP: 0033:0x7f4a2919cdd9 [ 505.958584][T10710] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 505.958608][T10710] RSP: 002b:00007f4a2a072028 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 505.958632][T10710] RAX: ffffffffffffffda RBX: 00007f4a29415fa0 RCX: 00007f4a2919cdd9 [ 505.958649][T10710] RDX: 0000000000000005 RSI: 0000200000000040 RDI: 0000000000000004 [ 505.958664][T10710] RBP: 00007f4a2a072090 R08: 0000000000000000 R09: 0000000000000000 [ 505.958679][T10710] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 505.958695][T10710] R13: 00007f4a29416038 R14: 00007f4a29415fa0 R15: 00007ffd1e458498 [ 505.958732][T10710] [ 511.113992][T10767] smpboot: CPU 1 is now offline [ 512.661886][T10769] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 512.732107][T10769] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 512.843095][T10782] netlink: 12 bytes leftover after parsing attributes in process `syz.3.929'. [ 512.998315][T10769] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 513.080910][T10769] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 513.251483][T10769] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 513.341561][T10769] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 513.389088][T10769] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 513.458130][T10769] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 513.479763][T10769] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 514.685151][ T5628] Bluetooth: hci0: command 0x0406 tx timeout [ 515.002572][ T5628] Bluetooth: hci1: command 0x0406 tx timeout [ 515.402746][ T5628] Bluetooth: hci2: command 0x0406 tx timeout [ 515.482501][ T5628] Bluetooth: hci3: command 0x0406 tx timeout [ 515.962024][T10829] netlink: 12 bytes leftover after parsing attributes in process `syz.2.940'. [ 516.045640][T10834] vivid-008: ================= START STATUS ================= [ 516.077653][T10834] vivid-008: ================== END STATUS ================== [ 516.763141][ T5628] Bluetooth: hci0: command 0x0406 tx timeout [ 516.988058][T10834] random: crng reseeded on system resumption [ 517.083680][ T5628] Bluetooth: hci1: command 0x0406 tx timeout [ 517.482568][ T5628] Bluetooth: hci2: command 0x0406 tx timeout [ 517.562759][ T5628] Bluetooth: hci3: command 0x0406 tx timeout [ 518.500079][T10872] netlink: 'syz.3.948': attribute type 1 has an invalid length. [ 518.542358][T10877] netlink: 342 bytes leftover after parsing attributes in process `syz.1.950'. [ 518.776497][T10877] FAULT_INJECTION: forcing a failure. [ 518.776497][T10877] name failslab, interval 1, probability 0, space 0, times 0 [ 518.850092][T10877] CPU: 0 UID: 0 PID: 10877 Comm: syz.1.950 Not tainted syzkaller #0 PREEMPT(full) [ 518.850115][T10877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 518.850125][T10877] Call Trace: [ 518.850130][T10877] [ 518.850136][T10877] dump_stack_lvl+0x100/0x190 [ 518.850159][T10877] should_fail_ex.cold+0x5/0xa [ 518.850182][T10877] should_failslab+0xc2/0x120 [ 518.850199][T10877] __kmalloc_cache_noprof+0x7a/0x6f0 [ 518.850221][T10877] ? snd_seq_timer_new+0x42/0x190 [ 518.850241][T10877] snd_seq_timer_new+0x42/0x190 [ 518.850259][T10877] snd_seq_queue_alloc+0x177/0x540 [ 518.850283][T10877] snd_seq_ioctl_create_queue+0xa9/0x370 [ 518.850307][T10877] call_seq_client_ctl+0xa3/0x130 [ 518.850324][T10877] snd_seq_kernel_client_ctl+0x77/0xd0 [ 518.850342][T10877] alloc_seq_queue+0xdb/0x180 [ 518.850360][T10877] ? __pfx_alloc_seq_queue+0x10/0x10 [ 518.850389][T10877] ? mark_held_locks+0x40/0x70 [ 518.850415][T10877] snd_seq_oss_open+0x2b2/0xa10 [ 518.850439][T10877] odev_open+0x6f/0x90 [ 518.850457][T10877] ? __pfx_odev_open+0x10/0x10 [ 518.850474][T10877] soundcore_open+0x2e3/0x5a0 [ 518.850492][T10877] ? __pfx_soundcore_open+0x10/0x10 [ 518.850509][T10877] chrdev_open+0x234/0x6a0 [ 518.850526][T10877] ? __pfx_apparmor_file_open+0x10/0x10 [ 518.850549][T10877] ? __pfx_chrdev_open+0x10/0x10 [ 518.850567][T10877] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 518.850589][T10877] do_dentry_open+0x6d8/0x1660 [ 518.850606][T10877] ? __pfx_chrdev_open+0x10/0x10 [ 518.850628][T10877] vfs_open+0x82/0x3f0 [ 518.850651][T10877] path_openat+0x208c/0x31a0 [ 518.850675][T10877] ? __pfx_path_openat+0x10/0x10 [ 518.850699][T10877] do_file_open+0x20e/0x430 [ 518.850718][T10877] ? __pfx_do_file_open+0x10/0x10 [ 518.850749][T10877] ? alloc_fd+0x476/0x790 [ 518.850767][T10877] ? do_getname+0x191/0x390 [ 518.850789][T10877] do_sys_openat2+0x10d/0x1e0 [ 518.850810][T10877] ? __pfx_do_sys_openat2+0x10/0x10 [ 518.850838][T10877] __x64_sys_openat+0x12d/0x210 [ 518.850860][T10877] ? __pfx___x64_sys_openat+0x10/0x10 [ 518.850884][T10877] ? rcu_is_watching+0x12/0xc0 [ 518.850903][T10877] do_syscall_64+0x10b/0xf80 [ 518.850920][T10877] ? clear_bhb_loop+0x40/0x90 [ 518.850942][T10877] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 518.850958][T10877] RIP: 0033:0x7f4bc3b9cdd9 [ 518.850972][T10877] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 518.850986][T10877] RSP: 002b:00007f4bc4a4b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 518.851001][T10877] RAX: ffffffffffffffda RBX: 00007f4bc3e15fa0 RCX: 00007f4bc3b9cdd9 [ 518.851011][T10877] RDX: 0000000000080102 RSI: 0000200000000500 RDI: ffffffffffffff9c [ 518.851020][T10877] RBP: 00007f4bc3c32d69 R08: 0000000000000000 R09: 0000000000000000 [ 518.851030][T10877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 518.851038][T10877] R13: 00007f4bc3e16038 R14: 00007f4bc3e15fa0 R15: 00007fffaa0c2708 [ 518.851058][T10877] [ 519.556117][ T5628] Bluetooth: hci1: command 0x0406 tx timeout [ 519.966322][ T5628] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 520.981915][T10903] random: crng reseeded on system resumption [ 521.078010][T10903] Restarting kernel threads ... [ 521.126858][T10903] Done restarting kernel threads. [ 521.454856][T10906] zswap: compressor not available [ 523.157773][T10950] FAULT_INJECTION: forcing a failure. [ 523.157773][T10950] name failslab, interval 1, probability 0, space 0, times 0 [ 523.235101][T10950] CPU: 0 UID: 0 PID: 10950 Comm: syz.2.965 Tainted: G L syzkaller #0 PREEMPT(full) [ 523.235125][T10950] Tainted: [L]=SOFTLOCKUP [ 523.235130][T10950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 523.235139][T10950] Call Trace: [ 523.235144][T10950] [ 523.235149][T10950] dump_stack_lvl+0x100/0x190 [ 523.235169][T10950] should_fail_ex.cold+0x5/0xa [ 523.235193][T10950] should_failslab+0xc2/0x120 [ 523.235209][T10950] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 523.235235][T10950] ? __alloc_skb+0x140/0x710 [ 523.235255][T10950] ? __alloc_skb+0x5b7/0x710 [ 523.235278][T10950] __alloc_skb+0x140/0x710 [ 523.235297][T10950] ? __alloc_skb+0x5b7/0x710 [ 523.235316][T10950] ? __pfx___alloc_skb+0x10/0x10 [ 523.235336][T10950] ? __pfx___might_resched+0x10/0x10 [ 523.235352][T10950] ? __lock_acquire+0x4a5/0x2630 [ 523.235368][T10950] netlink_alloc_large_skb+0x69/0x150 [ 523.235388][T10950] netlink_sendmsg+0x680/0xda0 [ 523.235408][T10950] ? __pfx_netlink_sendmsg+0x10/0x10 [ 523.235424][T10950] ? __import_iovec+0x1d2/0x640 [ 523.235439][T10950] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 523.235462][T10950] ____sys_sendmsg+0x9e1/0xb70 [ 523.235479][T10950] ? __pfx_netlink_sendmsg+0x10/0x10 [ 523.235497][T10950] ? __pfx_____sys_sendmsg+0x10/0x10 [ 523.235517][T10950] ? rcu_is_watching+0x12/0xc0 [ 523.235533][T10950] ? ___sys_sendmsg+0x19d/0x1e0 [ 523.235549][T10950] ? kfree+0x1dd/0x6c0 [ 523.235570][T10950] ___sys_sendmsg+0x190/0x1e0 [ 523.235589][T10950] ? __pfx____sys_sendmsg+0x10/0x10 [ 523.235623][T10950] ? __pfx___might_resched+0x10/0x10 [ 523.235641][T10950] __sys_sendmmsg+0x205/0x430 [ 523.235657][T10950] ? __pfx___sys_sendmmsg+0x10/0x10 [ 523.235676][T10950] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 523.235705][T10950] ? fput+0x79/0x100 [ 523.235723][T10950] ? ksys_write+0x1ac/0x250 [ 523.235738][T10950] ? __pfx_ksys_write+0x10/0x10 [ 523.235756][T10950] __x64_sys_sendmmsg+0x9c/0x100 [ 523.235769][T10950] ? lockdep_hardirqs_on+0x78/0x100 [ 523.235786][T10950] do_syscall_64+0x10b/0xf80 [ 523.235801][T10950] ? clear_bhb_loop+0x40/0x90 [ 523.235818][T10950] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 523.235832][T10950] RIP: 0033:0x7f4a2919cdd9 [ 523.235844][T10950] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 523.235857][T10950] RSP: 002b:00007f4a2a051028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 523.235871][T10950] RAX: ffffffffffffffda RBX: 00007f4a29416090 RCX: 00007f4a2919cdd9 [ 523.235880][T10950] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000006 [ 523.235888][T10950] RBP: 00007f4a2a051090 R08: 0000000000000000 R09: 0000000000000000 [ 523.235897][T10950] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 523.235905][T10950] R13: 00007f4a29416128 R14: 00007f4a29416090 R15: 00007ffd1e458498 [ 523.235923][T10950] [ 524.490347][T10970] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 524.519823][T10970] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 524.543077][T10970] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 524.577323][T10970] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 524.593518][T10970] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 526.400104][T10998] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 526.523274][ T5619] Bluetooth: hci1: command 0x0406 tx timeout [ 526.529499][ T5619] Bluetooth: hci0: command 0x0406 tx timeout [ 526.543148][T10991] Process accounting resumed [ 526.602620][T11003] Bluetooth: hci3: command 0x0406 tx timeout [ 526.608678][T11003] Bluetooth: hci2: command 0x0406 tx timeout [ 526.736120][T11006] FAULT_INJECTION: forcing a failure. [ 526.736120][T11006] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 526.814075][T11009] FAULT_INJECTION: forcing a failure. [ 526.814075][T11009] name failslab, interval 1, probability 0, space 0, times 0 [ 526.833499][T11006] CPU: 0 UID: 0 PID: 11006 Comm: syz.0.978 Tainted: G L syzkaller #0 PREEMPT(full) [ 526.833524][T11006] Tainted: [L]=SOFTLOCKUP [ 526.833529][T11006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 526.833537][T11006] Call Trace: [ 526.833542][T11006] [ 526.833548][T11006] dump_stack_lvl+0x100/0x190 [ 526.833568][T11006] should_fail_ex.cold+0x5/0xa [ 526.833587][T11006] _copy_from_user+0x2e/0xd0 [ 526.833612][T11006] kvm_arch_dev_ioctl+0x40e/0x770 [ 526.833632][T11006] ? __pfx_kvm_arch_dev_ioctl+0x10/0x10 [ 526.833655][T11006] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 526.833676][T11006] ? do_vfs_ioctl+0x226/0x13e0 [ 526.833692][T11006] kvm_dev_ioctl+0x73a/0x1a50 [ 526.833718][T11006] ? find_held_lock+0x2b/0x80 [ 526.833736][T11006] ? __fget_files+0x215/0x3d0 [ 526.833750][T11006] ? hook_file_ioctl_common+0x149/0x410 [ 526.833766][T11006] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 526.833788][T11006] ? __fget_files+0x21f/0x3d0 [ 526.833806][T11006] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 526.833826][T11006] __x64_sys_ioctl+0x18e/0x210 [ 526.833841][T11006] do_syscall_64+0x10b/0xf80 [ 526.833857][T11006] ? clear_bhb_loop+0x40/0x90 [ 526.833874][T11006] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 526.833889][T11006] RIP: 0033:0x7fc58f59cdd9 [ 526.833907][T11006] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 526.833920][T11006] RSP: 002b:00007fc590481028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 526.833933][T11006] RAX: ffffffffffffffda RBX: 00007fc58f815fa0 RCX: 00007fc58f59cdd9 [ 526.833942][T11006] RDX: 00002000000003c0 RSI: 00000000c004ae0a RDI: 0000000000000003 [ 526.833951][T11006] RBP: 00007fc590481090 R08: 0000000000000000 R09: 0000000000000000 [ 526.833959][T11006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 526.833966][T11006] R13: 00007fc58f816038 R14: 00007fc58f815fa0 R15: 00007fff105414e8 [ 526.833984][T11006] [ 527.269093][T11009] CPU: 0 UID: 0 PID: 11009 Comm: syz.1.977 Tainted: G L syzkaller #0 PREEMPT(full) [ 527.269120][T11009] Tainted: [L]=SOFTLOCKUP [ 527.269125][T11009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 527.269134][T11009] Call Trace: [ 527.269140][T11009] [ 527.269146][T11009] dump_stack_lvl+0x100/0x190 [ 527.269172][T11009] should_fail_ex.cold+0x5/0xa [ 527.269192][T11009] should_failslab+0xc2/0x120 [ 527.269210][T11009] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 527.269233][T11009] ? __d_alloc+0x34/0xa40 [ 527.269257][T11009] __d_alloc+0x34/0xa40 [ 527.269280][T11009] d_alloc_pseudo+0x1c/0xc0 [ 527.269294][T11009] alloc_file_pseudo_noaccount+0xcf/0x230 [ 527.269318][T11009] ? __pfx_alloc_file_pseudo_noaccount+0x10/0x10 [ 527.269341][T11009] ? iput+0x3a/0x40 [ 527.269362][T11009] bdev_file_open_by_dev+0x13a/0x210 [ 527.269380][T11009] blkdev_bszset+0x170/0x240 [ 527.269396][T11009] ? __pfx_blkdev_bszset+0x10/0x10 [ 527.269411][T11009] ? find_held_lock+0x2b/0x80 [ 527.269430][T11009] ? __fget_files+0x215/0x3d0 [ 527.269445][T11009] ? hook_file_ioctl_common+0x149/0x410 [ 527.269463][T11009] blkdev_ioctl+0x513/0x6f0 [ 527.269478][T11009] ? __pfx_blkdev_ioctl+0x10/0x10 [ 527.269496][T11009] ? __pfx_blkdev_ioctl+0x10/0x10 [ 527.269512][T11009] __x64_sys_ioctl+0x18e/0x210 [ 527.269528][T11009] do_syscall_64+0x10b/0xf80 [ 527.269544][T11009] ? clear_bhb_loop+0x40/0x90 [ 527.269562][T11009] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 527.269577][T11009] RIP: 0033:0x7f4bc3b9cdd9 [ 527.269590][T11009] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 527.269605][T11009] RSP: 002b:00007f4bc4a4b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 527.269627][T11009] RAX: ffffffffffffffda RBX: 00007f4bc3e15fa0 RCX: 00007f4bc3b9cdd9 [ 527.269637][T11009] RDX: 00002000000000c0 RSI: 0000000040081271 RDI: 0000000000000003 [ 527.269647][T11009] RBP: 00007f4bc3c32d69 R08: 0000000000000000 R09: 0000000000000000 [ 527.269656][T11009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 527.269665][T11009] R13: 00007f4bc3e16038 R14: 00007f4bc3e15fa0 R15: 00007fffaa0c2708 [ 527.269684][T11009] [ 527.646478][T11014] ================================================================== [ 527.654583][T11014] BUG: KASAN: slab-out-of-bounds in cache_seq_start_rcu+0x3fe/0x420 [ 527.663658][T11014] Read of size 8 at addr ffff888038267800 by task syz.2.979/11014 [ 527.671562][T11014] [ 527.673895][T11014] CPU: 0 UID: 0 PID: 11014 Comm: syz.2.979 Tainted: G L syzkaller #0 PREEMPT(full) [ 527.673917][T11014] Tainted: [L]=SOFTLOCKUP [ 527.673922][T11014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 527.673930][T11014] Call Trace: [ 527.673938][T11014] [ 527.673944][T11014] dump_stack_lvl+0x100/0x190 [ 527.673963][T11014] print_report+0x13d/0x4b0 [ 527.673983][T11014] ? __virt_addr_valid+0x239/0x430 [ 527.674005][T11014] ? cache_seq_start_rcu+0x3fe/0x420 [ 527.674023][T11014] kasan_report+0xdf/0x1d0 [ 527.674039][T11014] ? cache_seq_start_rcu+0x3fe/0x420 [ 527.674059][T11014] cache_seq_start_rcu+0x3fe/0x420 [ 527.674078][T11014] seq_read_iter+0x2c1/0x1270 [ 527.674096][T11014] seq_read+0x33b/0x4c0 [ 527.674110][T11014] ? __pfx_seq_read+0x10/0x10 [ 527.674125][T11014] ? lock_acquire+0x1b1/0x370 [ 527.674140][T11014] ? __pfx_seq_read+0x10/0x10 [ 527.674153][T11014] proc_reg_read+0x240/0x330 [ 527.674169][T11014] ? __pfx_proc_reg_read+0x10/0x10 [ 527.674184][T11014] vfs_read+0x1e4/0xb30 [ 527.674199][T11014] ? __pfx_vfs_read+0x10/0x10 [ 527.674213][T11014] ? __fget_files+0x215/0x3d0 [ 527.674230][T11014] ? __fget_files+0x21f/0x3d0 [ 527.674246][T11014] ksys_read+0x12a/0x250 [ 527.674260][T11014] ? __pfx_ksys_read+0x10/0x10 [ 527.674275][T11014] ? rcu_is_watching+0x12/0xc0 [ 527.674292][T11014] do_syscall_64+0x10b/0xf80 [ 527.674308][T11014] ? clear_bhb_loop+0x40/0x90 [ 527.674323][T11014] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 527.674337][T11014] RIP: 0033:0x7f4a2919cdd9 [ 527.674349][T11014] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 527.674362][T11014] RSP: 002b:00007f4a29fee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 527.674376][T11014] RAX: ffffffffffffffda RBX: 00007f4a29416360 RCX: 00007f4a2919cdd9 [ 527.674385][T11014] RDX: 000000000000067b RSI: 00002000000006c0 RDI: 0000000000000007 [ 527.674394][T11014] RBP: 00007f4a29232d69 R08: 0000000000000000 R09: 0000000000000000 [ 527.674402][T11014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 527.674410][T11014] R13: 00007f4a294163f8 R14: 00007f4a29416360 R15: 00007ffd1e458498 [ 527.674423][T11014] [ 527.674428][T11014] [ 527.897507][T11014] Allocated by task 5623: [ 527.901836][T11014] kasan_save_stack+0x30/0x50 [ 527.906507][T11014] kasan_save_track+0x14/0x30 [ 527.911178][T11014] __kasan_kmalloc+0xaa/0xb0 [ 527.915753][T11014] __kmalloc_noprof+0x301/0x850 [ 527.920597][T11014] cache_create_net+0xa2/0x1f0 [ 527.925367][T11014] nfsd_idmap_init+0x62/0x250 [ 527.930041][T11014] nfsd_net_init+0x85/0x3e0 [ 527.934541][T11014] ops_init+0x1e2/0x5f0 [ 527.938681][T11014] setup_net+0x118/0x3a0 [ 527.942908][T11014] copy_net_ns+0x46f/0x7c0 [ 527.947315][T11014] create_new_namespaces+0x3ea/0xac0 [ 527.952603][T11014] unshare_nsproxy_namespaces+0xf2/0x220 [ 527.958230][T11014] ksys_unshare+0x438/0xab0 [ 527.962755][T11014] __x64_sys_unshare+0x31/0x40 [ 527.967522][T11014] do_syscall_64+0x10b/0xf80 [ 527.972573][T11014] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 527.978599][T11014] [ 527.980908][T11014] The buggy address belongs to the object at ffff888038267000 [ 527.980908][T11014] which belongs to the cache kmalloc-2k of size 2048 [ 527.994951][T11014] The buggy address is located 0 bytes to the right of [ 527.994951][T11014] allocated 2048-byte region [ffff888038267000, ffff888038267800) [ 528.009546][T11014] [ 528.011871][T11014] The buggy address belongs to the physical page: [ 528.018278][T11014] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x38260 [ 528.027038][T11014] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 528.035569][T11014] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 528.043113][T11014] page_type: f5(slab) [ 528.047098][T11014] raw: 00fff00000000040 ffff88813fe2e000 dead000000000100 dead000000000122 [ 528.055677][T11014] raw: 0000000000000000 0000000800080008 00000000f5000000 0000000000000000 [ 528.064253][T11014] head: 00fff00000000040 ffff88813fe2e000 dead000000000100 dead000000000122 [ 528.072911][T11014] head: 0000000000000000 0000000800080008 00000000f5000000 0000000000000000 [ 528.081752][T11014] head: 00fff00000000003 fffffffffffffe01 00000000ffffffff 00000000ffffffff [ 528.090509][T11014] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 528.099163][T11014] page dumped because: kasan: bad access detected [ 528.105567][T11014] page_owner tracks the page as allocated [ 528.111260][T11014] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5621, tgid 5621 (syz-executor), ts 81325435841, free_ts 81063757891 [ 528.132602][T11014] post_alloc_hook+0x153/0x170 [ 528.137363][T11014] get_page_from_freelist+0x11a6/0x33b0 [ 528.142904][T11014] __alloc_frozen_pages_noprof+0x27c/0x2bc0 [ 528.148786][T11014] new_slab+0xa6/0x6c0 [ 528.152840][T11014] refill_objects+0x277/0x420 [ 528.157506][T11014] __pcs_replace_empty_main+0x375/0x650 [ 528.163048][T11014] __kmalloc_noprof+0x688/0x850 [ 528.167903][T11014] ops_init+0x77/0x5f0 [ 528.171956][T11014] setup_net+0x118/0x3a0 [ 528.176197][T11014] copy_net_ns+0x46f/0x7c0 [ 528.180597][T11014] create_new_namespaces+0x3ea/0xac0 [ 528.186580][T11014] unshare_nsproxy_namespaces+0xf2/0x220 [ 528.192197][T11014] ksys_unshare+0x438/0xab0 [ 528.196687][T11014] __x64_sys_unshare+0x31/0x40 [ 528.201436][T11014] do_syscall_64+0x10b/0xf80 [ 528.206010][T11014] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 528.211885][T11014] page last free pid 5287 tgid 5287 stack trace: [ 528.218190][T11014] __free_frozen_pages+0x747/0x1040 [ 528.223385][T11014] qlist_free_all+0x47/0xf0 [ 528.227875][T11014] kasan_quarantine_reduce+0x1a0/0x1f0 [ 528.233321][T11014] __kasan_slab_alloc+0x69/0x90 [ 528.238165][T11014] kmem_cache_alloc_node_noprof+0x25a/0x6f0 [ 528.244062][T11014] __alloc_skb+0x140/0x710 [ 528.248469][T11014] alloc_skb_with_frags+0xdd/0x760 [ 528.253586][T11014] sock_alloc_send_pskb+0x801/0x980 [ 528.258777][T11014] unix_dgram_sendmsg+0x3c7/0x1810 [ 528.263878][T11014] __sys_sendto+0x468/0x4b0 [ 528.268369][T11014] __x64_sys_sendto+0xe0/0x1c0 [ 528.273122][T11014] do_syscall_64+0x10b/0xf80 [ 528.277699][T11014] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 528.283577][T11014] [ 528.286000][T11014] Memory state around the buggy address: [ 528.291607][T11014] ffff888038267700: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 528.299654][T11014] ffff888038267780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 528.307696][T11014] >ffff888038267800: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 528.315763][T11014] ^ [ 528.319808][T11014] ffff888038267880: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 528.327973][T11014] ffff888038267900: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 528.336037][T11014] ================================================================== [ 528.690570][T11003] Bluetooth: hci1: command 0x0406 tx timeout [ 529.308144][T11014] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 529.315369][T11014] CPU: 0 UID: 0 PID: 11014 Comm: syz.2.979 Tainted: G L syzkaller #0 PREEMPT(full) [ 529.326740][T11014] Tainted: [L]=SOFTLOCKUP [ 529.331060][T11014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 529.341102][T11014] Call Trace: [ 529.344371][T11014] [ 529.347285][T11014] dump_stack_lvl+0x100/0x190 [ 529.351952][T11014] vpanic+0x552/0x970 [ 529.355936][T11014] ? __pfx_vpanic+0x10/0x10 [ 529.360426][T11014] ? cache_seq_start_rcu+0x3fe/0x420 [ 529.365702][T11014] panic+0xd1/0xe0 [ 529.369406][T11014] ? __pfx_panic+0x10/0x10 [ 529.373808][T11014] ? cache_seq_start_rcu+0x3fe/0x420 [ 529.379082][T11014] ? preempt_schedule_common+0x42/0xc0 [ 529.384531][T11014] ? check_panic_on_warn+0x1f/0x90 [ 529.389722][T11014] check_panic_on_warn.cold+0x19/0x34 [ 529.395082][T11014] end_report.part.0+0x3a/0x90 [ 529.399917][T11014] kasan_report.cold+0xe/0x18 [ 529.404630][T11014] ? cache_seq_start_rcu+0x3fe/0x420 [ 529.409905][T11014] cache_seq_start_rcu+0x3fe/0x420 [ 529.415004][T11014] seq_read_iter+0x2c1/0x1270 [ 529.419667][T11014] seq_read+0x33b/0x4c0 [ 529.423805][T11014] ? __pfx_seq_read+0x10/0x10 [ 529.428591][T11014] ? lock_acquire+0x1b1/0x370 [ 529.433458][T11014] ? __pfx_seq_read+0x10/0x10 [ 529.438162][T11014] proc_reg_read+0x240/0x330 [ 529.442754][T11014] ? __pfx_proc_reg_read+0x10/0x10 [ 529.447950][T11014] vfs_read+0x1e4/0xb30 [ 529.452099][T11014] ? __pfx_vfs_read+0x10/0x10 [ 529.456766][T11014] ? __fget_files+0x215/0x3d0 [ 529.461442][T11014] ? __fget_files+0x21f/0x3d0 [ 529.466115][T11014] ksys_read+0x12a/0x250 [ 529.470342][T11014] ? __pfx_ksys_read+0x10/0x10 [ 529.475090][T11014] ? rcu_is_watching+0x12/0xc0 [ 529.479844][T11014] do_syscall_64+0x10b/0xf80 [ 529.484429][T11014] ? clear_bhb_loop+0x40/0x90 [ 529.489110][T11014] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 529.495037][T11014] RIP: 0033:0x7f4a2919cdd9 [ 529.499454][T11014] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 529.519077][T11014] RSP: 002b:00007f4a29fee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 529.527514][T11014] RAX: ffffffffffffffda RBX: 00007f4a29416360 RCX: 00007f4a2919cdd9 [ 529.535595][T11014] RDX: 000000000000067b RSI: 00002000000006c0 RDI: 0000000000000007 [ 529.543558][T11014] RBP: 00007f4a29232d69 R08: 0000000000000000 R09: 0000000000000000 [ 529.551528][T11014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 529.559487][T11014] R13: 00007f4a294163f8 R14: 00007f4a29416360 R15: 00007ffd1e458498 [ 529.567454][T11014] [ 529.570531][T11014] Kernel Offset: disabled [ 529.574846][T11014] Rebooting in 86400 seconds..