last executing test programs: 5.465418741s ago: executing program 2 (id=699): socket(0x10, 0x2, 0x4) mmap$auto(0x7f, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000001c0)='./file0\x00', 0x60142, 0x130) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x101101, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/swradio0\x00', 0x1600, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/v4l-subdev0\x00', 0x0, 0x0) openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/netdevsim/netdevsim1/ports/3/pp_hold\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x0, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0x7fffffff) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) ioctl$auto(0x4000000000000c8, 0x400454d1, 0x6) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0) unshare$auto(0x40000080) write$auto(0x1, 0x0, 0x80000000) mmap$auto(0x100000, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.3/usb4/busnum\x00', 0x0, 0x0) madvise$auto(0x0, 0x2003f0, 0x15) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x535, 0x15f4da07, 0x3, 0x10, 0x64, 0x80000020, 0xffd, 0xb, 0x9, 0x2, 0x8]}, 0x0) madvise$auto(0x6, 0x2, 0xffff) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000000007, 0x1, 0xbc3, 0x4, 0x3, 0x5, 0x10001, 0x400000000003, 0x5, 0xffffffffffffffff, 0xfffffffffffffffe, 0x6, 0x9, 0xffffffffffffff81, 0x4]}, 0x0) 4.482508494s ago: executing program 1 (id=700): ioctl$auto_FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) write$auto(0xffffffffffffffff, 0x0, 0x5) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) select$auto(0xe, 0x0, 0x0, &(0x7f0000000000)={[0x1ff, 0x9, 0x8, 0x1, 0x2, 0x4, 0x15f4da0e, 0x100, 0xd08, 0xc, 0x200000000000c, 0x0, 0x6d2f, 0xffffffffffffff00, 0x2, 0x4000000000000d]}, 0x0) socket(0x2c, 0x1, 0x4004) getsockopt$auto(0xffffffffffffffff, 0x84, 0xc, 0x0, 0x0) setregid$auto(0xee01, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/net/bond0/bonding/arp_validate\x00', 0x2002, 0x0) prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r1 = fanotify_init$auto(0x5, 0x0) mmap$auto(0x0, 0x853, 0x2000000000000002, 0xeb1, 0xffffffffffffffff, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/advisor_target_scan_time\x00', 0x201, 0x0) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/conf/ip6gretap0/accept_source_route\x00', 0x20140, 0x0) read$auto(r2, 0x0, 0x1ff) write$auto(0x3, 0x0, 0xfdef) r3 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000180), r0) sendmsg$auto_IPVS_CMD_ZERO(r1, &(0x7f0000001600)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000015c0)={&(0x7f00000001c0)={0x13d8, r3, 0x0, 0x70bd2d, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x6}, @IPVS_CMD_ATTR_DEST={0x116d, 0x2, 0x0, 0x1, [@generic="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", @generic="a5c7ad21fa020e68dc8322aca48b55d78e6f1902ced8362170f8b612ed856269a5e9abfef3ab6452065705ada6d47f4bb2129a2fab5f45b027ba5a448d7c619fc1cf29c6ec94e84d2eef2aa864f09e119c449117516bf7702fafd12b2b72c38169e42be5c1985d85ed2c21000ec17218d38b6b4cc7cd3593bd0098240f231172a7", @generic="427acf3d291d7899a82fe0e11a5275149b2486b5c024a27e0261ef49e6595383ad1e2397e107817dc74c0fdb4f7f8388354cf209e96e6e8b8a73f8dcf93506b70925cd5bdb6b50e0798936fd863519e82a56f00b28b48cd314bad772ead2513655336c2f7129a123bc75020ea9876f91ec0caabf66fd543a799ffd6ae96b2b69c2aba45536a11b257a91957d099f28e866d30cf0e8bec24dcde5078bf2dad09bf74952b5af4283792a8b9b9eff9785108b9706bc3a53d57b5832dc190a58a0f5c5c1b025ded1d5fa13ad4027d1d68cad07df5d9af269b1844f33c790", @nested={0x4, 0x13f}, @generic="2a92c24d4e4f0074"]}, @IPVS_CMD_ATTR_DAEMON={0x60, 0x3, 0x0, 0x1, [@nested={0xc, 0x80, 0x0, 0x1, [@typed={0x8, 0xec, 0x0, 0x0, @uid=0xee01}]}, @typed={0x4, 0x129}, @nested={0x3f, 0x147, 0x0, 0x1, [@generic="78dff1645540ea910deb091dffe48b802b90", @generic="7335ce58ccd5e39cb6f63faa1629ac31ae0873c21ebc66fad683dcc59578797884e1ef8a0c", @nested={0x4, 0x11b}]}, @typed={0xc, 0x13, 0x0, 0x0, @u64=0x3}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xb62}, @IPVS_CMD_ATTR_DEST={0xf4, 0x2, 0x0, 0x1, [@typed={0xed, 0x130, 0x0, 0x0, @binary="a9b5eb8b10b1c7a133a7eb65fe866747bae033f097818d01bb021e3d91c8e90d9c58fac7af6d026136af34eb6379d7b0c9dad2c22fe6ef7ff786b015483a1d14165610a40a55fff17cdc9515077e5e67d5b4d59371cf7c6e4c42fb65c6d51baf3a853b064efdb25a949ce092154532cd512fabc664ed90a0775efbdbbb3ac9a841910c37fe8a3599254554e0d2a0300d8a807ed7816ae86d86a9aad664de907640f9538004dda86b30534d60242bdcbe9844f1693e7c2f079239b97a5353caaa47b0a3a200d6b86feb1e014b4b389d1a02e4517a5648d7aa69cc21e674935196f67023bbee1c435587"}]}, @IPVS_CMD_ATTR_DAEMON={0xe6, 0x3, 0x0, 0x1, [@typed={0x8, 0xc7, 0x0, 0x0, @u32=0x4}, @generic="0bdaed4d4215efd29121b7bcbd6fc3fefb8319d788db589570b0096a765536fe4008fc92a70ec8fcf8c53e4716f7f73299d92ecbf85bd840991af3d6436c683f398517675d5abc0530f8e062e33c1830fd2fcf8c7425e7cbb7c1e1e1ff4071317166017ed7d901210128f02a93b7171f595652505a5e91b7f31607c865ddecee36c31d4e7e3d5876ada47b2d91c4d3c8d6044356052c63468362f85cbb89a86a44b836bc871e79990e6b6fddc7fc9e20c4429aed7db86bd896387eedfd091d2ab62ea06e86a6c553d2edf7c6e19d919408e4ad59d37f71cc8697"]}]}, 0x13d8}, 0x1, 0x0, 0x0, 0x840}, 0x24004000) 3.793991214s ago: executing program 0 (id=702): sendmsg$auto_NLBL_MGMT_C_PROTOCOLS(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x38, 0x0, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x4}, @NLBL_MGMT_A_DOMAIN={0xc, 0x1, ':-#\x15,,%\x00'}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x9}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x1b4c}]}, 0x38}, 0x1, 0x0, 0x0, 0x40}, 0x4000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_CRIT_PROTOCOL_STOP(r0, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x20, r1, 0x200, 0x70bd25, 0x25dfdbfc, {}, [@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x2b48e27a}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x1) openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f0000000240), 0x141100, 0x0) r2 = socketpair$auto(0x766, 0x3, 0x3, &(0x7f0000000280)=0x497) syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000002c0), r2) keyctl$auto_KEYCTL_PKEY_ENCRYPT(0x19, 0x9, 0x0, 0x8, 0x6) r3 = socketcall$auto(0x1, &(0x7f0000000300)=0x1) getsockopt$auto_SO_KEEPALIVE(r3, 0x6, 0x9, &(0x7f0000000340)='nl80211\x00', &(0x7f0000000380)=0x6) chdir$auto(&(0x7f00000003c0)='./file0\x00') newfstatat$auto(r3, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440)={0x7fe4, 0x6, 0x1, 0x40, 0xee01, 0x0, 0x0, 0xc57, 0xa0e, 0x6, 0x4, 0x4, 0x62, 0x1ff, 0x7, 0x80000000, 0xfb1}, 0x8000) ioctl$auto_KVM_HAS_DEVICE_ATTR(r2, 0x4018aee3, &(0x7f0000000500)={0x8, 0xee00, 0x8, 0x934}) r6 = ioctl$auto_NS_GET_TGID_IN_PIDNS(r2, 0x8004b709, &(0x7f0000000540)=0xfff) shmctl$auto_SHM_STAT_ANY(0x1ff, 0xf, &(0x7f00000006c0)={{0x6, r4, r5, 0x8001, 0xfffffffa, 0x78fc91ad, 0x3}, 0x4, 0x4, 0xe, 0xd, @inferred=r6, @raw, 0x7f, 0x0, &(0x7f0000000580)="702355f3b2f61d6ad9f872940670a53d658ef186a6c3447dbf9a71faa5d0e4750006c1977e16aacadce72b933add380e20a3c80cedcf371522e82b7246ce25cdc6e14ccd0712e1f0e5e8e4ced56e09d3f8d8378f8d6b519ffdc6fd16a17f100e87c9265b519f518f913eec1b8d4fede82eacb8e14c2ddd2f7838ff53677a7cbfe7b283b778b104eae2f130d0608ad0a3bcdd0628205abc97614b7fef536224bf007685f61d0877e9f37b311e53c3c439a87b1832da79b18959072fcd3091fea0e26e55bd0a2b30de13b99c06d47566d66603c9a3f0c401f895e775305fd453c2ce71bfa276", &(0x7f0000000680)="7e15264adc6a08b44dbdd3a26240c1266b08"}) select$auto(0x8, &(0x7f0000000740)={[0x1, 0x18000000000000, 0x1, 0x6, 0x3, 0x5, 0x6, 0xd77c, 0x7fff, 0xf753, 0x3ff, 0x6, 0x4, 0x0, 0x8, 0x3bf4]}, &(0x7f00000007c0)={[0x8000000000000001, 0x0, 0x975, 0x5, 0x9, 0xb, 0x1, 0x8001, 0xffffffff, 0x1ff, 0x0, 0x80000000, 0x81, 0x1, 0x200, 0x8]}, &(0x7f0000000840)={[0x4, 0x100000000000, 0xffffffffffffffff, 0x2, 0xffffffffffff8001, 0xf2, 0x93de1bd, 0x2, 0x8, 0x8000, 0x7, 0x4, 0x7, 0xcf2, 0xffffffffffffffff, 0xd]}, &(0x7f00000008c0)={0x2, 0x7}) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000900), 0x40200, 0x0) sendmmsg$auto(r0, &(0x7f0000000c00)={{&(0x7f0000000940)="541eaf74701a31fe6b4bb21d85048f412c330191cb94a6e24772da8dbf4c808713ab7fcecc72c0aad5986b1e2a2a65622acb3ed500606c482a601303d1834c852e7e5f12190309c9b7c5e5ac9445cab96de42057444fe32d4349c9d2c444fe8179d42d558e984f46f8e0d34720d4a8f68236b56a8f48147a1f9601dfb9daf3fd0b5b18edfe413a3485fdd1af0c2c7495b3dad7626b493da0b7c18fd730abba5f239722a3add613360ba4", 0x8, &(0x7f0000000b00)={&(0x7f0000000a00)="b6eb9c7fb0876ce03b87f0ef686fabbd627857e9d52bf1cdb77c150106b4cbd1c456c8d99d045e4e4db7eebe51892ea0da92a6262b386034fd358b0a37a3786ba38cc1a994f8a3f0d9bc73267716219f024dee12137a79d97b947f912acb6c23906f17e7a2a610ea61d968626f97f579f1d5342dd46709b37a1c4ed37638dd0d1e357227f9e803c00c68241db31acbebb9a54b206950d7b441cd02f725a4d985b95c91d895ef2232ea91e2e93d4109b76ae5751ae2e2a38ac181efa7c789801a1b8efdcb5ad73022c5861e591a0310024263e0ba099a95b0d37fbb99cb0dce2cee7533837b407ec09672a9e1"}, 0x1, &(0x7f0000000b40)="5ef299f979166ee9b018cc22bbb9d1222652d095105b04d24daef7ec35ae61a067ca400ce427ccaf612d174639cfd536a3c442719aa659c208e1bcf41701cd5549636b2260f8bb00196c6378ff0156411c203c500e793ca7df50aa8b442b9342fb10689b122e789c93cecbc85e6b80e676fe2937109dfa193df44b03a45bfd7796ba", 0x2, 0x8}, 0x9}, 0x3, 0xc) statx$auto(r3, &(0x7f0000000c40)='./file0\x00', 0x3, 0x6, &(0x7f0000000c80)={0x75, 0x3, 0x0, 0xfffffffd, r4, r8, 0x5, 0x6, 0x2, 0xfffffffffffffffa, 0x7, 0x806, {0x9637, 0x7}, {0x7, 0x2}, {0x4, 0x2}, {0x0, 0x2}, 0x9, 0x4, 0x40000, 0x58, 0x1, 0x101, 0x0, 0x7, 0x7, 0x393, 0x6, 0x101, [0x67, 0x39, 0x8, 0xf61, 0x10001, 0x6, 0x15b2, 0x80000000, 0x200]}) ioctl$auto_SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000d80)="fc5ffa96236911a0d46734338fc7e2dfa085e1ec898d1b9d26ed073f1b87618984044d460d9c53f811111969e7ea9caeb8d2050921e366e07d634e8206ddcf9a665444a80c") keyctl$auto_KEY_SPEC_REQKEY_AUTH_KEY(0x0, r7, r9, r5, 0xfffffffffffffff9) socket(0x26, 0x2, 0x0) r10 = ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r3, 0xc0285700, &(0x7f0000000e00)={0xe28, "0daf5f163c83b0d4c2ec14697afcb2943cdfa4bc419b3bc7dd3b18817e1a0d2e", @inferred=r3}) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r10, 0xc0285700, &(0x7f0000000e40)={0x9, "be8fe47ed0313c6416525f8473bf0112e064aed1968771ac9989d5266eff03b0", @raw=0x6}) pselect6$auto(0x1, &(0x7f0000000e80)={[0x9, 0x9, 0x2, 0xffff, 0x5, 0x0, 0x80, 0xe19f, 0x2, 0x6, 0x2, 0x3e1, 0xe24, 0x1, 0x800, 0xbad5]}, &(0x7f0000000f00)={[0x9, 0x1d3ff0af, 0x80000000, 0xfffffffffffffffe, 0x8, 0x4, 0xdf6, 0x2, 0x80000000, 0x100000001, 0x9, 0x6, 0x7ff, 0x8, 0xf, 0x10000]}, &(0x7f0000000f80)={[0xb, 0xa, 0x3, 0x0, 0x6, 0x5275, 0x10001, 0x8001, 0xffff, 0x0, 0x2, 0x1, 0xf8, 0x3, 0x7, 0xc7]}, &(0x7f0000001000)={0xe5, 0x2000000000000}, &(0x7f0000001040)="65787a17825f9bcda7e568e52a3af40dd8a27f358e908727819b020db7d6c38599b5fd590a143dde4ec39c602763a6ca4ef4cf9dac76d29563061a2bcce3395a4a8357f022ad27c1cf7709ca8999927dbf5f4f27ffdfd2") openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC2\x00', 0x28000, 0x0) r11 = getgid() write$auto(r2, &(0x7f0000001100)='&\x00', 0x6) syz_clone(0x1010000, &(0x7f0000001140)="63e035d37b7592b010349959dc23dc83d366d465e90e4cb83760de676f00c4ed6b6bb844d0a92824f1711f665a6f12a4175f885569970193846aee66d585139b0a7987c92f8db7eb8efba153460be0541923603047e0bf9e75100e340f404395b8edaf415195e4", 0x67, &(0x7f00000011c0), &(0x7f0000001200), &(0x7f0000001240)="77346799c8f77f633e52779a736c31ca386462651fa4530ac4d5b564f67836f185c9bd06522979b39dbd204f66caf49e79e01f75cdb8e8a4e9488794e17bc0d76724e90b5f2a14d73a577843554aec0711f56a245f4de8cff0555d8e2e2567e3eee8") fsconfig$auto(r0, 0x1, &(0x7f00000012c0)='-!\x00', &(0x7f0000001300)="d796cf647742ed32de1c9f6d07535afec9f41432f648a77c93002f3d35688a254fbb651886874f711601ff0f42b6eb", r11) 3.758068194s ago: executing program 0 (id=703): syz_genetlink_get_family_id$auto_net_shaper(0x0, 0xffffffffffffffff) (async) mmap$auto(0x0, 0x20006, 0xdf, 0xeb1, 0x401, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket(0x15, 0x5, 0x7) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) (async) madvise$auto(0x110c230000, 0x1, 0x9) (async) getrandom$auto(0x0, 0x3, 0x80000001) statmount$auto(0x0, &(0x7f0000000180)={0x9, 0xfffffffe, 0x44f, 0xa, 0x10, 0x1007181, 0x0, 0x62, 0x7, 0x800, 0x0, 0x26, 0x4, 0x200003fffffe, 0xfffffffffffffff5, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x862, 0xf, 0x22002, 0x200, 0x0, 0x62f, 0x6, 0x0, 0x0, 0x0, 0xb626, [0xfffffffffffffffe, 0xffffffffffff04ef, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9e, 0x0, 0xa7, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd, 0x40, 0x81, 0x8a0, 0xb, 0x81, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100002, 0x0, 0x3ff, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4000000000000]}, 0x800000000000b, 0xbc) r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffff7effffd0c, &(0x7f00000001c0)) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) (async) msync$auto(0x200, 0xffff, 0x1) socket(0x2, 0x80002, 0x73) (async) socket(0xa, 0x1, 0x84) (async) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28) (async) getsockopt$auto_SO_PROTOCOL(r0, 0x9, 0x26, &(0x7f0000000000)='{,]-Y/\x00', &(0x7f00000000c0)=0xe) madvise$auto(0x0, 0xffffffffffff0001, 0x15) msync$auto(0x110c230000, 0x200001, 0x6) (async) r1 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtd0ro\x00', 0x2000, 0x0) ioctl$auto_FIONREAD(r1, 0x541b, 0x7fffffffffffffff) 3.635855155s ago: executing program 2 (id=704): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="a2000000", @ANYRES16=r1, @ANYBLOB="010025bd7000f7dbdf250100003f06000200010000000500070058000000080009000500000008000a000800000014001f00ff01000000000000000000000000000114002000fe8000000000000000000000000000aa"], 0x5c}, 0x1, 0x0, 0x0, 0x44000}, 0x0) lsetxattr$auto(&(0x7f0000000080)='./file0\x00', &(0x7f0000000180)='-*)-\x00', &(0x7f0000000100)="2927cb670ebd0c785c0dd714082202fc6f14a09b3d04d412f10b42defa8a926206af3410e25b1de42e58e9e43fe74a42744b2970b7fdc7a2bdc37b7920eed7a362fe75fe626cd8dc972ab5b118c98de06a42e37bd2b3f1a86d0d5d0b071e4bd67e29b8403a5c44db2eaec15b254406474e9880e45f7f4611a75e68a090d5", 0x2, 0x4) 3.507530824s ago: executing program 0 (id=705): socket(0x11, 0x2, 0x300) rt_sigqueueinfo$auto(0x0, 0x4, &(0x7f0000000000)={@siginfo_0_0={0xf5, 0x14, 0x7e73, @_timer={0x0, 0x80000001, @sival_int=0x81, 0x1}}}) r0 = socket(0x11, 0x3, 0x9) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x10000, 0x4, 0x5, 0x3) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x20342, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/teql0/queues/tx-0/byte_queue_limits/limit_min\x00', 0x88282, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) read$auto(0x3, 0x0, 0x8080) write$auto(0x3, 0x0, 0xffd8) setgroups$auto(0xe32, 0x0) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) open$dir(&(0x7f00000001c0)='./file0\x00', 0x201, 0x14) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x481, 0x0) open(&(0x7f00000002c0)='./file0\x00', 0x40a00, 0x1c7) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0) r2 = pidfd_open$auto(0x1, 0x0) r3 = socket(0xa, 0x1, 0x0) setsockopt$auto(r3, 0x29, 0x37, &(0x7f0000000140)='\xf1\x89\x81\x8f\x8fw\xbcGx4!\x00\xd3\x8f\x1e\xea\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x808000) listxattrat$auto(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x6, &(0x7f0000000440)='(\x00', 0xfffffffffffffff7) sendmsg$auto_NL80211_CMD_VENDOR(0xffffffffffffffff, 0x0, 0x80) getpid() sendmsg$auto_NL80211_CMD_EPCS_CFG(r2, 0x0, 0x4) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x1fe, 0x7, 0x9, 0x1, 0x948d, 0x1ff, 0x15f4da07, 0x3, 0x8003, 0x65, 0x8000001f, 0x1000, 0x100000000006d3e, 0x9, 0x1, 0x8]}, 0x0) select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x6, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x7, 0x4, 0x0, 0x4000000000003, 0x4306, 0x1, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, 0x0) sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f00000004c0)="5959e7488ae60100000000000000ea8a549f1ce466a26be8b0b50eff40c66d6bf0c981a0db5edba528b493edda4a033655e89e1afc06676facc65afab54cda45f2ad3924d156aefe5c4440066fd4ff81c0775ed28c48a9c3320b51e47130f5ee7876acc93e3cbc4466a3c59d17c14b673b133ed7f9d375d958b67da4f8a518498bcf707df76d56b5ccdaa094c3928143aece640a3da7a02e370ba93d245db9", 0xe7}, 0x8, &(0x7f0000000180), 0x5, 0x2}, 0x5}, 0x2, 0x100) ioctl$auto_SOUND_MIXER_INFO(0xffffffffffffffff, 0x805c4d65, &(0x7f0000000200)="c4298840fa2a2cda521c3f460e0bf4f9cb1d694ebf25fa2ca905b33545912950d5dd08e92599a4581fd95d9c2ee493d782661db86d1c15506e0b82ba30bfdd945013ae45544706f814b2677386be6e83a8a85b48e9f63876eb430df395e50d206e613ba7376c4c8092126333e864fad718d13c3fc48aea6eb17e5eec6b897a6a130183da3119cc87802fb0f8fe077606527c7d47de6700974ef4e277bad564ac441406e6e3cf08ef14a7a6d835e389c815167f9f5ba73d9446b76e97d2256d8332c278669ed195681b71475dae6131cf9273a02ecbb78b98ea476bc5de380454") 3.494628478s ago: executing program 2 (id=706): mmap$auto(0x0, 0x2020009, 0x3, 0x14, 0xfffffffffffffffa, 0x8000) (async) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$auto(0x3, 0xc018aec0, r0) (async) socket(0xa, 0x1, 0x84) r2 = pipe2$auto(0x0, 0x80) capset$auto(0x0, &(0x7f0000000000)={0x1, 0xa, 0x8}) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000040)=""/192, 0xc0) (async) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{&(0x7f0000001040)="702cecc56c1a6d3e3da429137e6c75818f62dd5542a2e05a78712eb6d8a1879bf8977931620642f1b170683362639fa350b9dde5ae1312160f0b03d4bd9c14a4c53c98b79383c51c73faa6ccae0bc57386e98d66ab090217e3e16b4397d6369cc91dd0fe742fd01cffb7a20de678cbf7798807696e5adb645cdc0b229751cef589ad2f7058d78c2ff275518d30c00b4292991f53d8d373e029619a38df22b11cc8a7036d1274340c773a54131a74407f8b312aa46eb02ac6ff87f1a6e4578fa9b678315398b7164b2025c373c2c2c2", 0x5, &(0x7f0000000100)={0x0, 0x48}, 0x4, &(0x7f00000000c0), 0x5, 0x1000}, 0x5}, 0x0, 0x5e) syz_genetlink_get_family_id$auto_net_shaper(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x20006, 0xdf, 0xeb1, 0x401, 0x8000) (async) r3 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card0\x00', 0x0, 0x0) ioctl$auto(r3, 0x64c7, 0xffffffffffffffff) io_uring_setup$auto(0x6, 0x0) (async, rerun: 64) close_range$auto(0x2, 0x8, 0x0) (async, rerun: 64) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x106) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) socket(0x0, 0x1, 0x0) (async, rerun: 64) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 64) close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x800, 0x0) (async, rerun: 32) close_range$auto(0x2, 0xa, 0xfffffffc) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x0, 0x0) openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) 2.917430566s ago: executing program 3 (id=708): open(&(0x7f0000000000)='./file0\x00', 0x20400, 0xe1d2b27bdc14aabc) r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x1c9b02, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xebe, 0xfffffffffffffffa, 0x8000008000) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/036/001\x00', 0xa901, 0x0) setresuid$auto(0x2, 0x7, 0x8080) bpf$auto(0x5, &(0x7f0000000100)=@iter_create={0xffffffffffffffff, 0xfffff1cf}, 0x101) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) ioctl$auto(0x3, 0x8108551b, 0x1) ioctl$auto_USBDEVFS_SUBMITURB(r1, 0x8038550a, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x4241, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x182b02, 0x0) setsockopt$auto(0x400000000000003, 0x28, 0xa, 0x0, 0x56d) io_uring_setup$auto(0x6, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/025/001\x00', 0x8901, 0x0) ioctl$auto_RNDADDENTROPY(0xffffffffffffffff, 0x40085203, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) msgsnd$auto(0x0, 0x0, 0x8, 0x7) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x123002, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x8000ffff}, 0x3) pread64$auto(r0, &(0x7f00000005c0)='/pr\xa2Cv&P\x11\xf7\x01\xa4\xdcXd\x1dvices\x00F%\xf7\x175)x\xd6\fR\x117\t\x00F\xe6\x8bG$\xdaP\xf1\x1e\xe9Z\xc6K\xe44\xdc\x8f\x94\x86\n\x95\xb3I<\xd2~\xe5\xad\n\x0f\xbf\x97\xcf\xcd\x9b\x8f\x8dh\xb8\xffz_\x84Y\x1bt\xf3\xf19\xc0\x9d\xad\xb3\xd9\x89\x15|\x96\xb6\x7f^\x00\x00\x00\x00\xa5n\'(\xa2\x95*\xda\xfcVCf\xd7\x88h[\xd2\xd9\xba\xc5\xc53\x15\x11^Q\x80\xf8\xa77\xa0\xbd\n*\xe0\xcduw\x96f\x95\xcc\xcbP\xd1\xbe\xe21$=\xb6\xe3lP-\xcbs\xe0\f\xce=\xe9 \xe8\n)\xf2b*\xea\"\x94\x96\xcc\xc8S\xd3]Y\xca\xd3\x13\xe3\xd8\x82\x9c\xa5\x06\x01\xafR\x16r\xa3)9t\xae<(V2\xc7\x98A\xc7<&\x89\x98\x7f\x8a\xb1\x8a\xfc\x05T\x8d\xa3\xc2\xdf\xb0\x0f\xad\x85P\xed\x9ct\xf7M\f-\xd3\xe9\xfe\x15o\xab5\xb23\xd2\xef\x9c\xc2;\x91\x05\xd8^I\x8e\x18p\xfb\x8d\x06\xb8J1\xce\x00', 0x100000001, 0x100) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2c, 0x4, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder1\x00', 0x0, 0x0) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x8500, 0x0) 2.553032153s ago: executing program 1 (id=709): unshare$auto(0x40000080) (async) unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x2c, 0x1, 0x0) listen$auto(0x3, 0x81) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f00, 0x0) (async) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f00, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000) (async) mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000) fsopen$auto(0x0, 0x1) (async) r2 = fsopen$auto(0x0, 0x1) prctl$auto(0x1000000003b, 0x1, 0x4, 0xd73, 0x7) (async) prctl$auto(0x1000000003b, 0x1, 0x4, 0xd73, 0x7) close_range$auto(0x0, 0x5, 0x0) socket(0x23, 0x80805, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) socketpair$auto(0xc6, 0x3, 0xfff, &(0x7f0000000000)=0x1) socket(0x11, 0x3, 0x9) (async) r3 = socket(0x11, 0x3, 0x9) close_range$auto(0x2, r3, 0x0) (async) close_range$auto(0x2, r3, 0x0) socket(0x11, 0x80003, 0x300) (async) r4 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r4, 0x107, 0x14, 0x0, 0x4) sendmmsg$auto(r3, &(0x7f0000000400)={{&(0x7f0000000000), 0x205aa, &(0x7f0000000100)={0x0, 0x4b}, 0x1, 0x0, 0x5, 0x1060}, 0x5}, 0x2, 0x100) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) (async) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) shutdown$auto(0x200000003, 0x2) recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0) madvise$auto(0x0, 0x2003f2, 0x15) ioctl$auto_BTRFS_IOC_GET_SUPPORTED_FEATURES(r2, 0x80489439, &(0x7f0000000040)=[{0x5, 0xc, 0x800}, {0x6, 0x1, 0xf9fe}, {0x8, 0x8, 0xc39}]) socket$nl_generic(0x10, 0x3, 0x10) 2.394568898s ago: executing program 2 (id=710): prctl$auto(0x51, 0x80, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f00000002c0)={0x9, &(0x7f0000000000)={0x50, 0xf2, 0xb0}}) prctl$auto(0x41555856, 0x24, 0x2008, 0x0, 0x0) ioctl$auto(0x3, 0x890b, 0x38) write$auto(0x3, 0x0, 0xfdef) r1 = eventfd$auto(0x80) write$auto(r1, &(0x7f0000000400)='\'\x00', 0x8) prctl$auto(0x51, 0x80, 0x0, 0x0, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) (async) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) (async) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) (async) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f00000002c0)={0x9, &(0x7f0000000000)={0x50, 0xf2, 0xb0}}) (async) prctl$auto(0x41555856, 0x24, 0x2008, 0x0, 0x0) (async) ioctl$auto(0x3, 0x890b, 0x38) (async) write$auto(0x3, 0x0, 0xfdef) (async) eventfd$auto(0x80) (async) write$auto(r1, &(0x7f0000000400)='\'\x00', 0x8) (async) 2.33626671s ago: executing program 0 (id=711): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = bpf$auto(0x24, 0x0, 0x8) r1 = socket(0x2, 0x1, 0x106) bind$auto(r1, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) (async) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x22641, 0x0) (async) lseek$auto(r1, 0x2, 0x20000) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) (async) write$auto(0x3, 0x0, 0xfffffdef) (async) setsockopt$auto_SO_DEBUG(r1, 0x6, 0x1, &(0x7f0000000000)='$/&}-#)f-&D)[,\x00', 0xda3) (async) madvise$auto(0x0, 0x2003ec, 0x5) (async) getsockopt$auto_SO_DONTROUTE(r0, 0x1, 0x5, &(0x7f0000000140)='$/&}-#)f-&D)[,\x00', &(0x7f0000000180)=0x3) (async) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bus/usb/028/001\x00', 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/scsi\x00', 0x40d81, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket(0x2, 0x3, 0x100) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) (async) socket(0x10, 0x2, 0x4) bpf$auto(0x6, &(0x7f00000001c0)=@bpf_attr_7={@btf_id=0x9, 0x5, 0xb, r1}, 0x1) (async) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYRES16=r0, @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x10}, 0x20008004) (async) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) (async) mount$auto(0x0, &(0x7f00000001c0)='}[,&*}\x00', 0x0, 0x7fff, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc6}, 0x1, 0x0, 0x2, 0x9}, 0x7}, 0x3, 0xa6) (async) r2 = openat$auto_dfs_cpu_ops_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/x86/topo/cpus/0\x00', 0x200, 0x0) readahead$auto(r2, 0x7, 0xf) 2.258498561s ago: executing program 3 (id=712): mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x3c}}, 0xf7374674b920089e) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) (async) timer_create$auto(0x8, 0x0, 0x0) (async) prctl$auto(0x4d, 0x1, 0x0, 0x0, 0x0) (async) timer_create$auto(0x9, 0x0, 0x0) (async) r0 = openat$auto_ns_file_operations_nsfs(0xffffffffffffff9c, &(0x7f0000001500)='/proc/self/ns/cgroup\x00', 0x180, 0x0) ioctl$auto(r0, 0x8008b70c, 0xffffffffffffffff) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) (async) recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10000, 0x0) (async) r2 = socket(0x29, 0x2, 0x0) r3 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0) mq_notify$auto(r3, &(0x7f0000000180)={@sival_ptr=0x0, @raw=0x1, 0x1, @_sigev_thread={0x0, 0x0}}) (async) mq_timedsend$auto(r3, &(0x7f0000000000)='\\*)A\x00', 0x1, 0x2, 0x0) (async) fchdir$auto(r3) (async) ioctl$auto(r2, 0x89fd, 0x24) 1.998359353s ago: executing program 2 (id=713): r0 = socket(0x10, 0x2, 0x4) mmap$auto(0x7f, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000001c0)='./file0\x00', 0x60142, 0x130) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x101101, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/swradio0\x00', 0x1600, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/v4l-subdev0\x00', 0x0, 0x0) openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/netdevsim/netdevsim1/ports/3/pp_hold\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16, @ANYBLOB="530026bd703f029a5f326402360008000300", @ANYRES32], 0x28}, 0x1, 0x0, 0x0, 0x4004080}, 0x0) sendmsg$auto_NL80211_CMD_FLUSH_PMKSA(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000100)={&(0x7f0000000580)={0x120, 0x0, 0x8, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_TDLS_SUPPORT={0x4}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "138a5438868283e41a930b7ac6a794e9ef1a43007cc331d7"}, @NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0xde, 0xbe, "f054aafb5e853c226ca1e2e839c253fc1398204b437a33736bf94fd0e14b9384b989527c0fb49bacf8e62ec081f090fe7382df6062883d65eb51ec353ce058e52289f2913516755685b676d6c579c4f58a2fd3270fd22022118f59c0ac06ad498ccb4e7512abf34637c34b6475a1d3469fef03745cdf1b7277ae24112a638ce6f9aff87432a3649647dbcfcfeb948283059c3e75c6682c632069046c146c4d9703a13976c37b0c20c1f70417f7add114388daa3f487d9f87b0b02147b931fec67e80a98990c3897501431d7e4a1869964e513ee4c8b73f74529d"}, @NL80211_ATTR_REG_RULES={0xc, 0x22, 0x0, 0x1, [@typed={0x8, 0xda, 0x0, 0x0, @fd=r0}]}]}, 0x120}, 0x1, 0x0, 0x0, 0x801}, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x0, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto(0x3, 0x0, 0x7fffffff) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0) unshare$auto(0x40000080) write$auto(0x1, 0x0, 0x80000000) mmap$auto(0x100000, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.3/usb4/busnum\x00', 0x0, 0x0) pkey_mprotect$auto(0x80000000, 0x3000000, 0xa, 0x4) madvise$auto(0x0, 0x2003f0, 0x15) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x535, 0x15f4da07, 0x3, 0x10, 0x64, 0x80000020, 0xffd, 0xb, 0x9, 0x2, 0x8]}, 0x0) madvise$auto(0x6, 0x2, 0xffff) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000, 0x20000000007, 0x1, 0xbc3, 0x4, 0x3, 0x200, 0x10001, 0x400000000003, 0x5, 0xffffffffffffffff, 0xfffffffffffffffe, 0x6, 0x9, 0xffffffffffffff81, 0x4]}, 0x0) 1.984603659s ago: executing program 3 (id=714): r0 = socket(0xa, 0x3, 0x3a) bind$auto(r0, &(0x7f0000000040)=@ax25={0x3, @bcast, 0x1}, 0x66) 1.92810751s ago: executing program 0 (id=715): mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x4, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) unshare$auto(0x40000080) syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff) mbind$auto(0x8000000000000002, 0x100000004, 0x100000000, 0x0, 0x9, 0x2) madvise$auto(0x0, 0x20499d, 0x9) syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) socket(0x29, 0x2, 0x0) mmap$auto(0x0, 0x100, 0x4000000000df, 0x13, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000) mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) r0 = socket(0x2, 0x1, 0x106) connect$auto(r0, 0x0, 0x54) ioprio_set$auto(0x3, 0xffffffffffffffff, 0x4b34) socketpair$auto(0x2, 0x5, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) io_uring_register$auto(0xffffffffffffffff, 0x1f, &(0x7f0000000180), 0x1) syz_clone(0x4100000, 0x0, 0x0, 0x0, 0x0, 0x0) futex$auto(0x0, 0x86, 0x8, 0x0, 0x0, 0x7) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) madvise$auto(0x1000000, 0xffffffffffff0006, 0x17) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x1000, 0x2) munlock$auto(0xf800000000000000, 0x100) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) open(&(0x7f0000000040)='./file0\x00', 0x22240, 0x154) lsetxattr$auto(&(0x7f0000000140)='./file1\x00', &(0x7f0000000000)='\x80\x13H9\xb0\xed0Y\vOct\xf4\xd7\xfd\xbdLXh6`\xbcPe\xf4\x10\xb4E\x1e;\xba\xb4\xcbc-c\x0f\xc1_\xf9\x8d\x00\x00\x00\x1e\x03', &(0x7f0000000180)="456b624429bd5955ecff442577a42bff7fb353812d2588e0cc7babfc432a7c4f5e1845e2ad6f5962a6a3b88c9234eab2063f14b6c276eed8f0dd4e2c1c2137cefe788b9a5a18eff550a8b5514f7c497efb45394bd2a1d4f7dc5487d932d929427cdb3b9259a0e90500"/119, 0x9, 0x7) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nbd0\x00', 0x24000, 0x0) 1.832884809s ago: executing program 1 (id=716): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0xc0482, 0x0) readv$auto(r1, &(0x7f00000002c0)={0x0, 0x7fb}, 0x9) write$auto_sg_fops_sg(r1, &(0x7f0000001380)="4a0200000000040000899edb615550fd8c44924d87f0010047eb02eff5d2adc245a4e1eded0e91b86c61b6b42ed6", 0x2e) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0xe187) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/system/machinecheck/machinecheck0/cmci_disabled\x00', 0x2062, 0x0) write$auto(r2, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) r3 = socket(0x15, 0x5, 0x0) write$auto(r3, 0x0, 0x0) r4 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/vcsa\x00', 0x80800, 0x0) read$auto(r4, &(0x7f0000001ac0)='#\x00', 0x1) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1c1540, 0x0) mmap$auto(0x0, 0x5, 0x4000000000db, 0xeb1, 0x401, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, &(0x7f0000000000)={0x2, 0x10000002, 0x6}) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/netdevsim3/sriov_numvfs\x00', 0x10b142, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000005c0)='/sys/devices/virtual/mac80211_hwsim/hwsim1/ieee80211/phy1/rfkill3/state\x00', 0x102, 0x0) sendfile$auto(r6, r5, 0x0, 0x7) ioctl$auto(0x3, 0x40045613, r0) 1.805739368s ago: executing program 3 (id=717): r0 = pidfd_open$auto(0x1, 0x0) setns(r0, 0x60020000) (async) syz_clone(0x10008000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) mmap$auto(0x0, 0x402000a, 0xffffffffffffffff, 0x400eb1, 0x401, 0x8000) r1 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r1, 0xc0603d06, 0x0) ioprio_set$auto(0x2, 0x800000000, 0x8) (async) r2 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) fcntl$auto(r2, 0x400, 0x1) r3 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000180), 0x109802, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0) fstatfs$auto(r3, &(0x7f00000001c0)={0x7fffffff, 0x2, 0xffffffff, 0x5, 0x1b, 0x5, 0x6, {[0x4, 0x1]}, 0x0, 0x5, 0x7, [0x7, 0x6, 0x5, 0x7]}) (async) ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r5) (async) mmap$auto(0x0, 0x8000, 0xdf, 0xeb1, 0x401, 0x8000) select$auto(0x4, 0x0, &(0x7f0000000080)={[0x209c, 0x80000e9e, 0x9, 0x8001, 0xfffffffffffffffb, 0x100000000, 0x2c2, 0x800002017d, 0x4, 0xdfdfffff, 0xd, 0xd59, 0xfb, 0xff, 0x6, 0x100000004]}, 0x0, 0x0) (async) r6 = socket$nl_generic(0x10, 0x3, 0x10) (async) r7 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_SMC_NETLINK_DISABLE_SEID(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r7, @ANYBLOB="013b"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810) (async) sendmmsg$auto(r6, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) (async) ioctl$auto_KVM_GET_MSRS(r4, 0xc008ae88, &(0x7f0000000100)={0x7, 0x0, [{0x400000b2, 0x2, 0x1}]}) 1.519863869s ago: executing program 1 (id=718): mmap$auto(0x0, 0x4020009, 0xdc, 0xeb1, 0xffffffffffffffff, 0x8000) openat$auto_nsim_nexthop_bucket_activity_fops_fib(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/netdevsim/netdevsim3/fib/nexthop_bucket_activity\x00', 0x80, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) unshare$auto(0x40000080) prctl$auto_PR_SCHED_CORE_SHARE_TO(0x7, 0x2, 0xffffffffffffffff, 0x6, 0x3) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), r0) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'wlan1\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r0, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000001d40)={0x28, r1, 0x1, 0x8070bd27, 0x25dfdbff, {}, [@ETHTOOL_A_RINGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @ETHTOOL_A_RINGS_RX_BUF_LEN={0x8, 0xa, 0x9}]}, 0x28}, 0x1, 0x0, 0x0, 0x90}, 0x80000) r4 = socket(0x2, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3) bpf$auto(0x16, 0xffffffffffffffff, 0x0) r5 = socket(0x2, 0x1, 0x106) setsockopt$auto(r5, 0x6, 0xd, &(0x7f0000000280)='lp\x00h\x85M\xdf\xdc\x83\x8a\xa7\xe4]U(\x01\t=\x1e\x00\x00', 0x4) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) sendmsg$auto_TIPC_NL_NODE_GET(r4, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x0, 0xb10, 0x70bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0xc10}, 0x800) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, 0x0, 0x54) getsockopt$auto(0xffffffffffffffff, 0x84, 0x76, 0x0, &(0x7f00000002c0)=0x1000c0) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x800, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_SETHMAC(r6, &(0x7f0000000200)={0x0, 0x500, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010025bd7000fcdbdf250100000005000600020000000500050000000c000400ef20bbf0b6e731c5"], 0x38}, 0x1, 0x0, 0x0, 0x80040}, 0x44000) r8 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zram0\x00', 0x6e642, 0x0) write$auto(r8, &(0x7f0000000400)='odev/audio1\x00', 0x100000a3d9) 1.398707045s ago: executing program 3 (id=719): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = socket(0xa, 0x6, 0x3) (async) r1 = io_uring_setup$auto(0x6, 0x0) (async) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async) connect$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x0, @rand_addr=0xe0}, 0x55) (async) close_range$auto(0x2, 0x8, 0x0) (async) r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000280), r1) sendmsg$auto_NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x14, r2, 0x10, 0x70bd2c, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20000010}, 0x20004800) (async) getpid() r3 = socket$nl_generic(0x10, 0x3, 0x10) (async) socket(0x10, 0x3, 0x4) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4000894}, 0x4000000) (async) r4 = bpf$auto(0x0, &(0x7f00000001c0)=@test={0xffffffffffffffff, 0xffff, 0xfffff0b6, 0xffff, 0x84, 0xac1, 0x2, 0x36242398, 0xfffff5b2, 0x3bb, 0x8000007, 0xffff, 0x6, 0x81, 0x68198}, 0x6f3) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) (async) sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f00000003c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYBLOB="014027bd", @ANYRESOCT=r3, @ANYRES8=r4], 0x2c}, 0x1, 0x0, 0x0, 0x20004841}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000) (async) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.008713763s ago: executing program 3 (id=720): openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/uprobe_events\x00', 0x2102, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC2\x00', 0x2584, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x7aaa277cf0b2d566, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/midi2\x00', 0x103, 0x0) pipe2$auto(0x0, 0x0) unshare$auto(0x40000080) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x410101, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7ffffffc, 0x8, 0x3000, 0x6, 0x7, 0x400b, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29a, 0x9, 0x80, 0x104, 0x6, 0x4}, {0x100, 0x1, 0x101, 0x85, 0x2, 0x24, 0xfe000000, 0x8, 0x3}}) r0 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x0, 0x0) r1 = socket(0x1e, 0x1, 0x0) timerfd_settime$auto(r1, 0x2, &(0x7f0000000200)={{0x2, 0xffff}, {0x400, 0x7}}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) read$auto_vhci_fops_hci_vhci(r0, &(0x7f0000000d40)=""/16, 0x10) select$auto(0xe, 0x0, 0x0, &(0x7f0000000580)={[0x1ff, 0x8000, 0xc, 0x1, 0x200948d, 0x3, 0x10015f4da0a, 0xb, 0x7, 0x6, 0x8000001f, 0x8, 0x6d3e, 0x6, 0x2, 0x2]}, 0x0) mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) 853.819196ms ago: executing program 2 (id=721): select$auto(0xf620, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x7, 0x2, 0x1, 0x948b, 0x1000000000000006, 0x15f4da0a, 0x39, 0x3, 0x2fffffffffffffe, 0x80000002, 0x7a142c64, 0x6d3c, 0xb, 0x80, 0xfb]}, 0x0) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D1p\x00', 0x2480, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/fs/ocfs2/loaded_cluster_plugins\x00', 0x800, 0x0) syz_clone(0x4000, &(0x7f00000002c0)="f03f0b0be4f2597d8b11ed14dfa636bad65cae9c0d21", 0x16, 0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/i8042/serio1/rate\x00', 0x2, 0x0) r0 = openat$auto_full_fops_mem(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0) mq_timedsend$auto(r0, &(0x7f00000000c0)='\'\x00', 0x3a, 0x6, &(0x7f00000001c0)={0x2, 0x100000000}) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/lapb5/broadcast\x00', 0x800, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x400981, 0x0) sendfile$auto(r2, r2, &(0x7f0000000000)=0x3, 0xad6) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto_BLKFLSBUF(r4, 0x1261, 0x0) ioctl$auto_BLKFLSBUF(r4, 0x1261, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x20800, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) r6 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x3, 0x3}, 0x18, 0x0) bpf$auto_BPF_OBJ_PIN(0x6, &(0x7f0000000300)=@bpf_attr_4={0x6, r5, 0x10000, r1}, 0x9) bpf$auto(0x0, &(0x7f00000003c0)=@task_fd_query={0x5, 0x21ea, 0x7ff, 0x3, 0x0, 0x80000001, r6}, 0x6f4) read$auto(r5, 0x0, 0x20) r7 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/bus/input/devices\x00', 0x841, 0x0) sethostname$auto(0x0, 0x1) write$auto(r7, 0x0, 0x6) unshare$auto(0x40000080) write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000000)="b2", 0x1) r8 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0) sendfile$auto(r3, r8, 0x0, 0x1) 437.633682ms ago: executing program 1 (id=722): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop2/queue/nomerges\x00', 0xa001, 0x0) write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) close_range$auto(0x2, 0x8, 0x0) (async) socket(0x18, 0xa, 0x1) (async) socket(0xa, 0x2, 0x88) bind$auto(0x3, &(0x7f0000000000)=@generic={0xa, "dfffffffffffffff00"}, 0x6a) (async) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0x40047452, 0x0) 242.560118ms ago: executing program 1 (id=723): r0 = socket(0xa, 0x3, 0x3b) sendmsg$auto_NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)=ANY=[@ANYBLOB="5ce93bc8c6caa7df4dde6db19834db158731d534c7e19cf014c0b1fc127be9766a5336c6233e6598754cd707b443b651ac6ad3b9f312d627950d965b2633037cb68fc1cd39fde8320d4e4b33eba5f1a63714806c570f03bc1574f04a6a18dd282c0bb58f88b373544d8d389febd1dffff2722fb418c4eca760d32f6c670522caf00c5ab0649d502a86b02a4de6f0ee9954df16f483a483637dea0a0111b82ed21de3dd1b", @ANYBLOB="0002"], 0x18}, 0x1, 0x0, 0x0, 0x20008080}, 0x20008000) r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0x81004000000008dd, 0x1000000eb1, r1, 0x0) ioctl$auto_CEC_DQEVENT(r1, 0xc0506107, &(0x7f0000000240)={0x33cf37cf, 0x4, 0x2, @state_change={0x8886, 0x7, 0x1000}}) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f0000000280)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x2, 0x0) statfs$auto(&(0x7f0000000000)='}[,&*}\x00', &(0x7f0000000200)={0x3f9f42aa, 0x180000000000000, 0x10000, 0x7ff, 0x36d, 0x2009, 0x56be, {[0x2c81]}, 0xfffd, 0x8, 0x7, [0x9, 0xc9, 0x8, 0x9]}) socket(0x10, 0x2, 0x3) mmap$auto(0x4, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) read$auto(0x3, 0x0, 0x8080) unshare$auto(0x40000080) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/firmware/memmap/2/type\x00', 0x18b740, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000000)=""/112, 0x70) mmap$auto(0x0, 0x6, 0x4, 0x17, 0x7, 0x8000) mmap$auto(0x0, 0x2020006, 0xa, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) r4 = openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)={0x408000, 0x110, 0x8}, 0x18) statx$auto(r4, 0x0, 0x1000, 0x8, 0x0) pread64$auto(r3, 0x0, 0x7ff, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x3, 0x1ff, 0x1001, 0x3, 0x717e, 0x0, 0x7, 0xf6b, 0xd, 0x2, 0x4080001, 0x4, 0x1ffffffffffd, 0x224a, 0xfffffffffffffffe, 0x7, 0x6, 0x7f, 0x3ff, 0x1, 0xa, 0x4, 0x200, 0x6, 0x84, 0x3, 0x0, 0x0, 0x0, 0xfffffffc, [0x56, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0xffffffff80000000, 0x0, 0x42, 0xfffffffffffffffe, 0x4, 0x0, 0x0, 0x8, 0x4, 0x400, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5, 0x14, 0x0, 0x1000000, 0x0, 0x0, 0xfffffffffffffffc, 0x83, 0x1, 0x6, 0x0, 0x0, 0x7, 0x6, 0xffffffffffffffff, 0x3]}, 0x1fe, 0xd) r6 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000003c0), 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r6, 0xfffffffffffffd03, &(0x7f00000001c0)) connect$auto(0x3, &(0x7f00000018c0)=@ethernet={0x1, @remote}, 0x8) mmap$auto(0x10000000000000, 0x400007, 0x800000000000e2, 0x8010, r5, 0x1) syz_genetlink_get_family_id$auto_vdpa(&(0x7f0000000100), r5) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x800, 0x0) read$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f0000000440)=""/82, 0x52) 0s ago: executing program 0 (id=724): r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/scsi\x00', 0x80002, 0x0) write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f00000024c0)="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", 0xfff) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) r3 = openat$auto_clear_warn_once_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x28000, 0x0) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/sockstat6\x00', 0x141100, 0x0) read$auto_proc_reg_file_ops_compat_inode(r4, &(0x7f0000000200)=""/92, 0x5c) ioctl$auto_TUNATTACHFILTER(r1, 0x401054d5, &(0x7f0000000100)={0x10, &(0x7f00000000c0)={0x2, 0x4, 0x40, @inferred=r3}}) write$auto_proc_clear_refs_operations_internal(r0, &(0x7f0000000000)="73d6cc4fdf406742386dd72ff1428a506f5cd946a3", 0x15) ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffff7effffd01, &(0x7f00000001c0)) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.230' (ED25519) to the list of known hosts. [ 73.450348][ T5813] cgroup: Unknown subsys name 'net' [ 73.584565][ T5813] cgroup: Unknown subsys name 'cpuset' [ 73.594222][ T5813] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 75.054149][ T5813] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 76.754238][ T5825] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 76.762928][ T5825] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 76.770480][ T5825] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 76.782018][ T5825] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 76.789635][ T5825] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 76.861003][ T5825] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 76.870096][ T5825] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 76.890345][ T5831] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 76.898129][ T51] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 76.916429][ T51] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 76.925502][ T51] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 76.933229][ T5835] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 76.941634][ T51] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 76.943228][ T5832] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 76.956785][ T5835] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 76.964802][ T5832] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 76.965389][ T5147] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 76.983295][ T5832] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 76.993005][ T5825] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 77.011562][ T5832] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 77.318328][ T5824] chnl_net:caif_netlink_parms(): no params data found [ 77.529661][ T5827] chnl_net:caif_netlink_parms(): no params data found [ 77.544642][ T5824] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.561277][ T5824] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.568498][ T5824] bridge_slave_0: entered allmulticast mode [ 77.577866][ T5824] bridge_slave_0: entered promiscuous mode [ 77.613055][ T5824] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.620281][ T5824] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.627754][ T5824] bridge_slave_1: entered allmulticast mode [ 77.634856][ T5824] bridge_slave_1: entered promiscuous mode [ 77.692015][ T5829] chnl_net:caif_netlink_parms(): no params data found [ 77.707795][ T5824] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 77.719712][ T5824] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 77.817153][ T5824] team0: Port device team_slave_0 added [ 77.852913][ T5824] team0: Port device team_slave_1 added [ 77.858629][ T5827] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.865955][ T5827] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.873171][ T5827] bridge_slave_0: entered allmulticast mode [ 77.880123][ T5827] bridge_slave_0: entered promiscuous mode [ 77.915823][ T5827] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.922981][ T5827] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.930069][ T5827] bridge_slave_1: entered allmulticast mode [ 77.937287][ T5827] bridge_slave_1: entered promiscuous mode [ 77.944309][ T5833] chnl_net:caif_netlink_parms(): no params data found [ 77.961425][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 77.968378][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 77.994329][ T5824] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.033134][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.040079][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 78.066046][ T5824] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.128949][ T5827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.138354][ T5829] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.146219][ T5829] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.154297][ T5829] bridge_slave_0: entered allmulticast mode [ 78.161412][ T5829] bridge_slave_0: entered promiscuous mode [ 78.177785][ T5827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.187629][ T5829] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.194820][ T5829] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.202153][ T5829] bridge_slave_1: entered allmulticast mode [ 78.209040][ T5829] bridge_slave_1: entered promiscuous mode [ 78.303386][ T5824] hsr_slave_0: entered promiscuous mode [ 78.309588][ T5824] hsr_slave_1: entered promiscuous mode [ 78.317979][ T5827] team0: Port device team_slave_0 added [ 78.325819][ T5827] team0: Port device team_slave_1 added [ 78.334254][ T5829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.346608][ T5829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.366614][ T5833] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.374005][ T5833] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.381915][ T5833] bridge_slave_0: entered allmulticast mode [ 78.388881][ T5833] bridge_slave_0: entered promiscuous mode [ 78.416858][ T5833] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.424070][ T5833] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.431589][ T5833] bridge_slave_1: entered allmulticast mode [ 78.438549][ T5833] bridge_slave_1: entered promiscuous mode [ 78.496359][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.503411][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 78.529677][ T5827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.543149][ T5829] team0: Port device team_slave_0 added [ 78.549382][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.556352][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 78.582751][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.615725][ T5829] team0: Port device team_slave_1 added [ 78.632383][ T5833] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.666880][ T5833] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.721153][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.728099][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 78.754023][ T5829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.792002][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.798957][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 78.826197][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.839834][ T5833] team0: Port device team_slave_0 added [ 78.852139][ T5827] hsr_slave_0: entered promiscuous mode [ 78.858314][ T5827] hsr_slave_1: entered promiscuous mode [ 78.864530][ T5831] Bluetooth: hci0: command tx timeout [ 78.865399][ T5827] debugfs: 'hsr0' already exists in 'hsr' [ 78.875862][ T5827] Cannot create hsr debugfs directory [ 78.898211][ T5833] team0: Port device team_slave_1 added [ 78.944249][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.951252][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 78.977277][ T5833] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.989517][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.996566][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 79.021893][ T5831] Bluetooth: hci1: command tx timeout [ 79.022663][ T5833] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 79.028173][ T5832] Bluetooth: hci2: command tx timeout [ 79.102064][ T5832] Bluetooth: hci3: command tx timeout [ 79.112942][ T5829] hsr_slave_0: entered promiscuous mode [ 79.119416][ T5829] hsr_slave_1: entered promiscuous mode [ 79.125793][ T5829] debugfs: 'hsr0' already exists in 'hsr' [ 79.131567][ T5829] Cannot create hsr debugfs directory [ 79.218662][ T5833] hsr_slave_0: entered promiscuous mode [ 79.224895][ T5833] hsr_slave_1: entered promiscuous mode [ 79.230880][ T5833] debugfs: 'hsr0' already exists in 'hsr' [ 79.236687][ T5833] Cannot create hsr debugfs directory [ 79.469879][ T5824] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 79.500039][ T5824] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 79.526846][ T5824] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 79.550942][ T5824] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 79.615932][ T5827] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 79.626039][ T5827] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 79.636826][ T5827] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 79.647976][ T5827] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 79.731927][ T5829] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 79.743310][ T5829] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 79.765335][ T5829] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 79.794296][ T5829] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 79.881540][ T5824] 8021q: adding VLAN 0 to HW filter on device bond0 [ 79.888531][ T5833] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 79.899883][ T5833] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 79.917751][ T5833] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 79.930540][ T5833] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 79.970876][ T5824] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.008934][ T1157] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.016225][ T1157] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.026414][ T1157] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.033513][ T1157] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.054119][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.098936][ T5827] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.127790][ T60] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.134968][ T60] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.174731][ T60] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.181877][ T60] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.219121][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.267637][ T5829] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.329493][ T60] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.336688][ T60] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.385761][ T60] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.392953][ T60] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.443334][ T5833] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.520399][ T5833] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.569018][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.576243][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.588954][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.596140][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.726364][ T5824] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 80.801767][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 80.872985][ T5824] veth0_vlan: entered promiscuous mode [ 80.908963][ T5824] veth1_vlan: entered promiscuous mode [ 80.943038][ T5832] Bluetooth: hci0: command tx timeout [ 80.997893][ T5827] veth0_vlan: entered promiscuous mode [ 81.029824][ T5827] veth1_vlan: entered promiscuous mode [ 81.040755][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.054165][ T5824] veth0_macvtap: entered promiscuous mode [ 81.066617][ T5833] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.089872][ T5824] veth1_macvtap: entered promiscuous mode [ 81.101781][ T5832] Bluetooth: hci1: command tx timeout [ 81.112191][ T5832] Bluetooth: hci2: command tx timeout [ 81.158746][ T5827] veth0_macvtap: entered promiscuous mode [ 81.170780][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 81.181373][ T5832] Bluetooth: hci3: command tx timeout [ 81.194399][ T5827] veth1_macvtap: entered promiscuous mode [ 81.206469][ T5829] veth0_vlan: entered promiscuous mode [ 81.219597][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 81.237065][ T5833] veth0_vlan: entered promiscuous mode [ 81.257080][ T5829] veth1_vlan: entered promiscuous mode [ 81.271288][ T60] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.282516][ T35] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.291859][ T35] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.306237][ T5833] veth1_vlan: entered promiscuous mode [ 81.314783][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 81.326920][ T35] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.355858][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 81.395586][ T35] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.423120][ T35] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.436680][ T35] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.452668][ T5833] veth0_macvtap: entered promiscuous mode [ 81.461921][ T35] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.477012][ T5829] veth0_macvtap: entered promiscuous mode [ 81.505030][ T5829] veth1_macvtap: entered promiscuous mode [ 81.512740][ T5833] veth1_macvtap: entered promiscuous mode [ 81.555197][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.566755][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.610116][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 81.637794][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 81.666116][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 81.708863][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 81.738136][ T60] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.755958][ T60] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.810056][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.827317][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.831880][ T60] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.861716][ T60] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.889454][ T60] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.931204][ T60] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.940468][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.956196][ T60] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.968211][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.999488][ T60] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.029160][ T5824] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 82.100197][ T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.120755][ T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.183099][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.195630][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.304133][ T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.312366][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 82.331612][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 82.344111][ T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.460385][ T1157] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.500568][ T1157] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.569965][ T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.603509][ T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.876519][ T5922] Zero length message leads to an empty skb [ 82.988932][ T5915] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 83.000016][ T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!! [ 83.010834][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 83.022586][ T5832] Bluetooth: hci0: command tx timeout [ 83.143676][ T5926] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 83.182189][ T5832] Bluetooth: hci2: command tx timeout [ 83.187701][ T5831] Bluetooth: hci1: command tx timeout [ 83.218721][ T5921] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 83.261603][ T5832] Bluetooth: hci3: command tx timeout [ 83.295741][ T5926] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5'. [ 83.296984][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 83.604204][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 83.823886][ T5940] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6'. [ 83.894299][ T5930] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 83.900830][ T5930] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 83.915683][ T5930] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 83.923812][ T5930] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 83.929775][ T5930] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 83.942199][ T5930] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 83.950154][ T5930] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 83.958159][ T5930] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 83.966702][ T5930] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 83.976045][ T5930] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 83.985953][ T5930] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 83.994843][ T5930] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 84.354917][ T5957] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 84.401447][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 84.628325][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 84.732897][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 85.361412][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 85.581939][ T5832] Bluetooth: hci0: command 0x0c1a tx timeout [ 85.692601][ T5983] QAT: Device 0 not found [ 85.854922][ T5987] sg_write: data in/out 1431408873/39065 bytes for SCSI command 0xfb-- guessing data in; [ 85.854922][ T5987] program syz.0.14 not setting count and/or reply_len properly [ 85.981890][ T5832] Bluetooth: hci3: command 0x0c1a tx timeout [ 85.988014][ T5831] Bluetooth: hci2: command 0x0c1a tx timeout [ 85.988027][ T5835] Bluetooth: hci1: command 0x0c1a tx timeout [ 86.709414][ T1228] cfg80211: failed to load regulatory.db [ 87.662415][ T5831] Bluetooth: hci0: command 0x0c1a tx timeout [ 88.052343][ T6061] netlink: 'syz.3.33': attribute type 3 has an invalid length. [ 88.065086][ T5831] Bluetooth: hci2: command 0x0c1a tx timeout [ 88.071164][ T5832] Bluetooth: hci3: command 0x0c1a tx timeout [ 88.073234][ T5835] Bluetooth: hci1: command 0x0c1a tx timeout [ 89.061591][ T6095] netlink: 330 bytes leftover after parsing attributes in process `syz.3.36'. [ 89.152448][ T6087] NFSD: Failed to start, no listeners configured. [ 89.741166][ T5835] Bluetooth: hci0: command 0x0c1a tx timeout [ 90.144950][ T5831] Bluetooth: hci1: command 0x0c1a tx timeout [ 90.151016][ T5832] Bluetooth: hci3: command 0x0c1a tx timeout [ 90.157620][ T5835] Bluetooth: hci2: command 0x0c1a tx timeout [ 90.281759][ T6113] NFSD: Failed to start, no listeners configured. [ 90.292255][ T6122] netlink: 330 bytes leftover after parsing attributes in process `syz.1.40'. [ 91.410616][ T6133] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 91.527272][ T6133] NFSD: Failed to start, no listeners configured. [ 91.567145][ T6141] netlink: 330 bytes leftover after parsing attributes in process `syz.0.44'. [ 94.459472][ T5835] Bluetooth: hci1: Unable to find connection for big 0xd2 [ 95.196811][ T6204] NFSD: Failed to start, no listeners configured. [ 95.235646][ T6209] netlink: 330 bytes leftover after parsing attributes in process `syz.1.56'. [ 95.533904][ T6213] netlink: 330 bytes leftover after parsing attributes in process `syz.2.57'. [ 96.100485][ T6217] netlink: 330 bytes leftover after parsing attributes in process `syz.1.58'. [ 96.208553][ T6221] NFSD: Failed to start, no listeners configured. [ 96.647293][ T6239] NFSD: Failed to start, no listeners configured. [ 97.570878][ T6264] NFSD: Failed to start, no listeners configured. [ 99.173217][ T6291] FAULT_INJECTION: forcing a failure. [ 99.173217][ T6291] name failslab, interval 1, probability 0, space 0, times 1 [ 99.203228][ T6291] CPU: 1 UID: 0 PID: 6291 Comm: syz.1.74 Not tainted syzkaller #0 PREEMPT(full) [ 99.203261][ T6291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 99.203282][ T6291] Call Trace: [ 99.203290][ T6291] [ 99.203299][ T6291] dump_stack_lvl+0x100/0x190 [ 99.203345][ T6291] should_fail_ex.cold+0x5/0xa [ 99.203375][ T6291] ? lsm_blob_alloc+0x68/0x90 [ 99.203406][ T6291] should_failslab+0xc2/0x120 [ 99.203441][ T6291] __kmalloc_noprof+0xe0/0x850 [ 99.203476][ T6291] ? trace_kmalloc+0x101/0x130 [ 99.203507][ T6291] lsm_blob_alloc+0x68/0x90 [ 99.203541][ T6291] security_sk_alloc+0x2d/0x290 [ 99.203580][ T6291] sk_prot_alloc+0x12a/0x2a0 [ 99.203609][ T6291] sk_alloc+0x36/0xe80 [ 99.203642][ T6291] __netlink_create+0x5e/0x2c0 [ 99.203671][ T6291] ? __wake_up+0x3f/0x60 [ 99.203700][ T6291] netlink_create+0x293/0x610 [ 99.203732][ T6291] ? __pfx_genl_bind+0x10/0x10 [ 99.203753][ T6291] ? __pfx_genl_unbind+0x10/0x10 [ 99.203775][ T6291] ? __pfx_genl_release+0x10/0x10 [ 99.203803][ T6291] __sock_create+0x339/0x860 [ 99.203837][ T6291] __sys_socket+0x14d/0x260 [ 99.203862][ T6291] ? exc_page_fault+0x6f/0xd0 [ 99.203895][ T6291] ? __pfx___sys_socket+0x10/0x10 [ 99.203926][ T6291] ? do_user_addr_fault+0x8d6/0x12f0 [ 99.203967][ T6291] __x64_sys_socket+0x72/0xb0 [ 99.203992][ T6291] ? lockdep_hardirqs_on+0x78/0x100 [ 99.204025][ T6291] do_syscall_64+0x106/0xf80 [ 99.204056][ T6291] ? clear_bhb_loop+0x40/0x90 [ 99.204088][ T6291] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 99.204114][ T6291] RIP: 0033:0x7f7f5db9e007 [ 99.204135][ T6291] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 99.204163][ T6291] RSP: 002b:00007f7f5eac3f98 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 99.204187][ T6291] RAX: ffffffffffffffda RBX: 00007f7f5de15fa0 RCX: 00007f7f5db9e007 [ 99.204204][ T6291] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 99.204219][ T6291] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 99.204234][ T6291] R10: 0000200000002d80 R11: 0000000000000286 R12: 0000000000000000 [ 99.204249][ T6291] R13: 00007f7f5de16038 R14: 00007f7f5de15fa0 R15: 00007ffe992f0d28 [ 99.204285][ T6291] [ 99.626254][ T6302] random: crng reseeded on system resumption [ 99.785862][ T6317] netlink: 16 bytes leftover after parsing attributes in process `syz.0.78'. [ 99.904976][ T6324] netlink: 186 bytes leftover after parsing attributes in process `syz.1.79'. [ 99.976592][ T6325] NFSD: Failed to start, no listeners configured. [ 100.032036][ T6330] netlink: 330 bytes leftover after parsing attributes in process `syz.3.80'. [ 100.216949][ T6338] netlink: 330 bytes leftover after parsing attributes in process `syz.1.82'. [ 100.420575][ T6336] NFSD: Failed to start, no listeners configured. [ 101.076131][ T6351] process 'syz.1.85' launched '/dev/fd/6' with NULL argv: empty string added [ 102.559339][ T29] audit: type=1800 audit(1773495321.603:2): pid=6375 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.91" name="lu_gp_id" dev="configfs" ino=9672 res=0 errno=0 [ 102.778297][ T6379] NFSD: Failed to start, no listeners configured. [ 102.831753][ T6383] netlink: 330 bytes leftover after parsing attributes in process `syz.0.92'. [ 104.215773][ T6399] zswap: compressor not available [ 105.198253][ T6409] netlink: 338 bytes leftover after parsing attributes in process `syz.3.99'. [ 105.208913][ T6414] netlink: 338 bytes leftover after parsing attributes in process `syz.3.99'. [ 105.563458][ T6423] netlink: 186 bytes leftover after parsing attributes in process `syz.1.101'. [ 105.697660][ T6414] syz.3.99 (6414) used greatest stack depth: 19672 bytes left [ 106.096010][ T6440] netlink: 330 bytes leftover after parsing attributes in process `syz.3.105'. [ 106.186731][ T6436] NFSD: Failed to start, no listeners configured. [ 106.817604][ T6455] mmap: syz.3.109 (6455): VmData 37724160 exceed data ulimit 2. Update limits or use boot option ignore_rlimit_data. [ 107.105363][ T6468] netlink: 186 bytes leftover after parsing attributes in process `syz.3.111'. [ 107.444680][ T6477] zram: Added device: zram1 [ 107.487094][ T6477] mmap: syz.0.114 (6477) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 108.190308][ T6462] FAULT_INJECTION: forcing a failure. [ 108.190308][ T6462] name failslab, interval 1, probability 0, space 0, times 0 [ 108.348637][ T6462] CPU: 0 UID: 0 PID: 6462 Comm: syz.2.108 Tainted: G L syzkaller #0 PREEMPT(full) [ 108.348680][ T6462] Tainted: [L]=SOFTLOCKUP [ 108.348690][ T6462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 108.348706][ T6462] Call Trace: [ 108.348714][ T6462] [ 108.348725][ T6462] dump_stack_lvl+0x100/0x190 [ 108.348770][ T6462] should_fail_ex.cold+0x5/0xa [ 108.348804][ T6462] should_failslab+0xc2/0x120 [ 108.348834][ T6462] __kmalloc_cache_noprof+0x7a/0x6f0 [ 108.348869][ T6462] ? percpu_ref_init+0xec/0x3f0 [ 108.348914][ T6462] ? __pfx_free_ioctx_reqs+0x10/0x10 [ 108.348942][ T6462] percpu_ref_init+0xec/0x3f0 [ 108.348981][ T6462] ? __init_waitqueue_head+0xca/0x150 [ 108.349026][ T6462] ioctx_alloc+0x3ee/0x21d0 [ 108.349080][ T6462] ? find_held_lock+0x2b/0x80 [ 108.349108][ T6462] ? __pfx_ioctx_alloc+0x10/0x10 [ 108.349149][ T6462] __x64_sys_io_setup+0xc9/0x220 [ 108.349183][ T6462] do_syscall_64+0x106/0xf80 [ 108.349220][ T6462] ? clear_bhb_loop+0x40/0x90 [ 108.349255][ T6462] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 108.349284][ T6462] RIP: 0033:0x7ff5fcf9c799 [ 108.349307][ T6462] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 108.349333][ T6462] RSP: 002b:00007ff5fde28028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 108.349359][ T6462] RAX: ffffffffffffffda RBX: 00007ff5fd216180 RCX: 00007ff5fcf9c799 [ 108.349378][ T6462] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 000000000000000e [ 108.349394][ T6462] RBP: 00007ff5fd032c99 R08: 0000000000000000 R09: 0000000000000000 [ 108.349411][ T6462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 108.349428][ T6462] R13: 00007ff5fd216218 R14: 00007ff5fd216180 R15: 00007fffa6d4f098 [ 108.349465][ T6462] [ 109.100643][ T6514] FAULT_INJECTION: forcing a failure. [ 109.100643][ T6514] name fail_futex, interval 1, probability 0, space 0, times 1 [ 109.150313][ T6514] CPU: 1 UID: 0 PID: 6514 Comm: syz.0.118 Tainted: G L syzkaller #0 PREEMPT(full) [ 109.150351][ T6514] Tainted: [L]=SOFTLOCKUP [ 109.150360][ T6514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 109.150373][ T6514] Call Trace: [ 109.150380][ T6514] [ 109.150389][ T6514] dump_stack_lvl+0x100/0x190 [ 109.150428][ T6514] should_fail_ex.cold+0x5/0xa [ 109.150455][ T6514] get_futex_key+0x1d2/0x1620 [ 109.150487][ T6514] ? __pfx_get_futex_key+0x10/0x10 [ 109.150527][ T6514] ? __lock_acquire+0x4a5/0x2630 [ 109.150559][ T6514] futex_wake+0xea/0x530 [ 109.150593][ T6514] ? __pfx_futex_wake+0x10/0x10 [ 109.150621][ T6514] ? __lock_acquire+0x4a5/0x2630 [ 109.150658][ T6514] do_futex+0x32b/0x350 [ 109.150686][ T6514] ? __pfx_do_futex+0x10/0x10 [ 109.150721][ T6514] __x64_sys_futex+0x34f/0x4d0 [ 109.150759][ T6514] ? __pfx___x64_sys_futex+0x10/0x10 [ 109.150799][ T6514] do_syscall_64+0x106/0xf80 [ 109.150832][ T6514] ? clear_bhb_loop+0x40/0x90 [ 109.150860][ T6514] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.150885][ T6514] RIP: 0033:0x7fe56a19c799 [ 109.150906][ T6514] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 109.150930][ T6514] RSP: 002b:00007fe56b0160e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 109.150955][ T6514] RAX: ffffffffffffffda RBX: 00007fe56a415fa8 RCX: 00007fe56a19c799 [ 109.150974][ T6514] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe56a415fac [ 109.150992][ T6514] RBP: 00007fe56a415fa0 R08: 0000000000000000 R09: 0000000000000000 [ 109.151009][ T6514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 109.151023][ T6514] R13: 00007fe56a416038 R14: 00007ffcb0cedab0 R15: 00007ffcb0cedb98 [ 109.151062][ T6514] [ 109.732121][ T6526] netlink: 186 bytes leftover after parsing attributes in process `syz.3.121'. [ 110.069625][ T6541] random: crng reseeded on system resumption [ 110.099191][ T6539] netlink: 330 bytes leftover after parsing attributes in process `syz.0.124'. [ 110.144247][ T6532] NFSD: Failed to start, no listeners configured. [ 111.395624][ T6569] netlink: 186 bytes leftover after parsing attributes in process `syz.1.132'. [ 112.505617][ T6588] NFSD: Failed to start, no listeners configured. [ 112.543163][ T6589] netlink: 330 bytes leftover after parsing attributes in process `syz.0.136'. [ 114.999559][ T6641] NFSD: Failed to start, no listeners configured. [ 115.044358][ T6645] netlink: 330 bytes leftover after parsing attributes in process `syz.3.147'. [ 115.713602][ T6662] NFSD: Failed to start, no listeners configured. [ 115.763036][ T6666] netlink: 330 bytes leftover after parsing attributes in process `syz.3.152'. [ 119.102702][ T6706] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 119.710296][ T29] audit: type=1800 audit(2147483651.980:3): pid=6711 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.162" name="dbroot" dev="configfs" ino=11652 res=0 errno=0 [ 120.313426][ T6718] vhci_hcd vhci_hcd.2: SetHubDepth req not supported for USB 2.0 roothub [ 120.848921][ T6740] block2mtd: error: cannot open device inX±jFBB>U;߸Ilk [ 121.067547][ T6746] netlink: 330 bytes leftover after parsing attributes in process `syz.3.167'. [ 121.139046][ T6743] NFSD: Failed to start, no listeners configured. [ 122.977452][ T6774] zswap: compressor not available [ 123.460158][ T6794] netlink: 'syz.1.176': attribute type 8 has an invalid length. [ 124.615928][ T6808] netlink: 28 bytes leftover after parsing attributes in process `syz.0.180'. [ 124.657333][ T6808] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 124.698959][ T6808] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 124.774276][ T6808] bond0 (unregistering): Released all slaves [ 128.576214][ T6871] input: f as /devices/virtual/input/input5 [ 129.224524][ T6883] netlink: 330 bytes leftover after parsing attributes in process `syz.1.196'. [ 129.704943][ T6889] zswap: compressor not available [ 131.192836][ T6938] FAULT_INJECTION: forcing a failure. [ 131.192836][ T6938] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 131.206918][ T6938] CPU: 1 UID: 0 PID: 6938 Comm: syz.2.207 Tainted: G L syzkaller #0 PREEMPT(full) [ 131.206962][ T6938] Tainted: [L]=SOFTLOCKUP [ 131.206971][ T6938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 131.206987][ T6938] Call Trace: [ 131.206996][ T6938] [ 131.207006][ T6938] dump_stack_lvl+0x100/0x190 [ 131.207059][ T6938] should_fail_ex.cold+0x5/0xa [ 131.207085][ T6938] ? prepare_alloc_pages+0x16d/0x5f0 [ 131.207121][ T6938] should_fail_alloc_page+0xeb/0x140 [ 131.207153][ T6938] prepare_alloc_pages+0x1f0/0x5f0 [ 131.207192][ T6938] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 131.207235][ T6938] ? pick_next_task_fair+0x94/0x1ed0 [ 131.207266][ T6938] ? __pfx_css_rstat_updated+0x10/0x10 [ 131.207297][ T6938] ? __lock_acquire+0x4a5/0x2630 [ 131.207341][ T6938] ? rcu_is_watching+0x12/0xc0 [ 131.207382][ T6938] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 131.207432][ T6938] ? lru_gen_add_folio+0x20f/0x13e0 [ 131.207491][ T6938] ? lock_acquire+0x1cf/0x380 [ 131.207527][ T6938] ? find_held_lock+0x2b/0x80 [ 131.207552][ T6938] ? page_table_check_set+0x49a/0xa10 [ 131.207579][ T6938] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 131.207626][ T6938] ? policy_nodemask+0xed/0x4f0 [ 131.207658][ T6938] alloc_pages_mpol+0x1fb/0x550 [ 131.207689][ T6938] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 131.207729][ T6938] folio_alloc_mpol_noprof+0x36/0x340 [ 131.207765][ T6938] vma_alloc_folio_noprof+0xed/0x1d0 [ 131.207799][ T6938] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 131.207845][ T6938] do_anonymous_page+0xb3a/0x1fb0 [ 131.207895][ T6938] __handle_mm_fault+0x1d42/0x2b60 [ 131.207943][ T6938] ? __pfx___handle_mm_fault+0x10/0x10 [ 131.207981][ T6938] ? pte_offset_map_lock+0x174/0x320 [ 131.208010][ T6938] ? find_held_lock+0x2b/0x80 [ 131.208048][ T6938] ? follow_page_pte+0x5b3/0x1400 [ 131.208087][ T6938] handle_mm_fault+0x36d/0xa20 [ 131.208132][ T6938] __get_user_pages+0xf9c/0x34d0 [ 131.208177][ T6938] ? __pfx___get_user_pages+0x10/0x10 [ 131.208229][ T6938] populate_vma_page_range+0x267/0x3f0 [ 131.208262][ T6938] ? __pfx_populate_vma_page_range+0x10/0x10 [ 131.208292][ T6938] ? __pfx_find_vma_intersection+0x10/0x10 [ 131.208320][ T6938] ? do_mmap+0x93f/0x12f0 [ 131.208352][ T6938] __mm_populate+0x107/0x3a0 [ 131.208382][ T6938] ? __pfx___mm_populate+0x10/0x10 [ 131.208415][ T6938] ? up_write+0x290/0x4f0 [ 131.208456][ T6938] vm_mmap_pgoff+0x37f/0x470 [ 131.208499][ T6938] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 131.208534][ T6938] ? do_futex+0x192/0x350 [ 131.208570][ T6938] ? __pfx_do_futex+0x10/0x10 [ 131.208602][ T6938] ? __pfx_do_sys_openat2+0x10/0x10 [ 131.208645][ T6938] ksys_mmap_pgoff+0xe1/0x650 [ 131.208674][ T6938] ? __x64_sys_futex+0x34f/0x4d0 [ 131.208706][ T6938] ? __x64_sys_futex+0x358/0x4d0 [ 131.208742][ T6938] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 131.208772][ T6938] ? xfd_validate_state+0x129/0x190 [ 131.208819][ T6938] __x64_sys_mmap+0x125/0x190 [ 131.208863][ T6938] do_syscall_64+0x106/0xf80 [ 131.208899][ T6938] ? clear_bhb_loop+0x40/0x90 [ 131.208934][ T6938] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.208963][ T6938] RIP: 0033:0x7ff5fcf9c799 [ 131.208995][ T6938] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 131.209023][ T6938] RSP: 002b:00007ff5fde6a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 131.209050][ T6938] RAX: ffffffffffffffda RBX: 00007ff5fd215fa0 RCX: 00007ff5fcf9c799 [ 131.209069][ T6938] RDX: 00000000000000df RSI: 0000000000040009 RDI: 0000000000000000 [ 131.209087][ T6938] RBP: 00007ff5fd032c99 R08: 0000000000000007 R09: 0000000000028000 [ 131.209104][ T6938] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 131.209121][ T6938] R13: 00007ff5fd216038 R14: 00007ff5fd215fa0 R15: 00007fffa6d4f098 [ 131.209160][ T6938] [ 132.785611][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.794533][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.158937][ T6970] FAULT_INJECTION: forcing a failure. [ 133.158937][ T6970] name failslab, interval 1, probability 0, space 0, times 0 [ 133.181375][ T6970] CPU: 0 UID: 0 PID: 6970 Comm: syz.0.215 Tainted: G L syzkaller #0 PREEMPT(full) [ 133.181419][ T6970] Tainted: [L]=SOFTLOCKUP [ 133.181429][ T6970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 133.181445][ T6970] Call Trace: [ 133.181453][ T6970] [ 133.181464][ T6970] dump_stack_lvl+0x100/0x190 [ 133.181510][ T6970] should_fail_ex.cold+0x5/0xa [ 133.181544][ T6970] ? __register_sysctl_table+0xac/0x1650 [ 133.181587][ T6970] should_failslab+0xc2/0x120 [ 133.181616][ T6970] __kmalloc_noprof+0xe0/0x850 [ 133.181663][ T6970] __register_sysctl_table+0xac/0x1650 [ 133.181704][ T6970] ? is_module_address+0x5f/0xf0 [ 133.181745][ T6970] ? __pfx___register_sysctl_table+0x10/0x10 [ 133.181786][ T6970] ? is_module_address+0x69/0xf0 [ 133.181818][ T6970] ? register_net_sysctl_sz+0x222/0x430 [ 133.181861][ T6970] ? __asan_memcpy+0x3c/0x60 [ 133.181903][ T6970] devinet_init_net+0x369/0x8d0 [ 133.181947][ T6970] ? __pfx_devinet_init_net+0x10/0x10 [ 133.181984][ T6970] ops_init+0x1e2/0x5f0 [ 133.182025][ T6970] setup_net+0x118/0x3a0 [ 133.182068][ T6970] ? __pfx_setup_net+0x10/0x10 [ 133.182102][ T6970] ? lockdep_init_map_type+0x5c/0x250 [ 133.182136][ T6970] ? mutex_init_lockep+0x110/0x150 [ 133.182185][ T6970] copy_net_ns+0x46f/0x7c0 [ 133.182214][ T6970] create_new_namespaces+0x3ea/0xac0 [ 133.182246][ T6970] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 133.182280][ T6970] ksys_unshare+0x473/0xad0 [ 133.182315][ T6970] ? __pfx_ksys_unshare+0x10/0x10 [ 133.182363][ T6970] __x64_sys_unshare+0x31/0x40 [ 133.182396][ T6970] do_syscall_64+0x106/0xf80 [ 133.182433][ T6970] ? clear_bhb_loop+0x40/0x90 [ 133.182468][ T6970] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 133.182497][ T6970] RIP: 0033:0x7fe56a19c799 [ 133.182520][ T6970] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 133.182546][ T6970] RSP: 002b:00007fe56b016028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 133.182572][ T6970] RAX: ffffffffffffffda RBX: 00007fe56a415fa0 RCX: 00007fe56a19c799 [ 133.182591][ T6970] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 133.182607][ T6970] RBP: 00007fe56a232c99 R08: 0000000000000000 R09: 0000000000000000 [ 133.182624][ T6970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 133.182640][ T6970] R13: 00007fe56a416038 R14: 00007fe56a415fa0 R15: 00007ffcb0cedb98 [ 133.182677][ T6970] [ 134.408623][ T6998] binder: 6997:6998 unknown command 0 [ 134.441288][ T6998] binder: 6997:6998 ioctl c0306201 200000000000 returned -22 [ 134.726655][ T7013] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 134.765354][ T7016] __vm_enough_memory: pid: 7016, comm: syz.3.227, bytes: 4398046511104 not enough memory for the allocation [ 136.263158][ T7045] netlink: 'syz.1.233': attribute type 1 has an invalid length. [ 137.033057][ T7059] usb usb24: usbfs: process 7059 (syz.0.239) did not claim interface 0 before use [ 137.389790][ T7066] NFSD: Failed to start, no listeners configured. [ 137.715969][ T7074] netlink: 8 bytes leftover after parsing attributes in process `syz.0.243'. [ 137.726041][ T7074] netlink: 12 bytes leftover after parsing attributes in process `syz.0.243'. [ 138.250420][ T7082] vhci_hcd vhci_hcd.2: SetHubDepth req not supported for USB 2.0 roothub [ 138.953338][ T7094] netlink: 342 bytes leftover after parsing attributes in process `syz.3.247'. [ 139.024085][ T7097] FAULT_INJECTION: forcing a failure. [ 139.024085][ T7097] name failslab, interval 1, probability 0, space 0, times 0 [ 139.062804][ T7097] CPU: 1 UID: 0 PID: 7097 Comm: syz.2.248 Tainted: G L syzkaller #0 PREEMPT(full) [ 139.062842][ T7097] Tainted: [L]=SOFTLOCKUP [ 139.062850][ T7097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 139.062863][ T7097] Call Trace: [ 139.062871][ T7097] [ 139.062880][ T7097] dump_stack_lvl+0x100/0x190 [ 139.062919][ T7097] should_fail_ex.cold+0x5/0xa [ 139.062947][ T7097] ? lsm_blob_alloc+0x68/0x90 [ 139.062978][ T7097] should_failslab+0xc2/0x120 [ 139.063004][ T7097] __kmalloc_noprof+0xe0/0x850 [ 139.063037][ T7097] ? trace_kmalloc+0x101/0x130 [ 139.063068][ T7097] lsm_blob_alloc+0x68/0x90 [ 139.063099][ T7097] security_sk_alloc+0x2d/0x290 [ 139.063135][ T7097] sk_prot_alloc+0x12a/0x2a0 [ 139.063163][ T7097] sk_alloc+0x36/0xe80 [ 139.063195][ T7097] __netlink_create+0x5e/0x2c0 [ 139.063228][ T7097] __netlink_kernel_create+0xed/0x750 [ 139.063263][ T7097] ? __pfx___netlink_kernel_create+0x10/0x10 [ 139.063310][ T7097] uevent_net_init+0xf8/0x330 [ 139.063336][ T7097] ? __pfx_uevent_net_init+0x10/0x10 [ 139.063362][ T7097] ? __pfx_uevent_net_rcv+0x10/0x10 [ 139.063389][ T7097] ? __kmalloc_noprof+0x320/0x850 [ 139.063427][ T7097] ? __pfx_uevent_net_init+0x10/0x10 [ 139.063449][ T7097] ops_init+0x1e2/0x5f0 [ 139.063487][ T7097] setup_net+0x118/0x3a0 [ 139.063523][ T7097] ? __pfx_setup_net+0x10/0x10 [ 139.063554][ T7097] ? lockdep_init_map_type+0x5c/0x250 [ 139.063585][ T7097] ? mutex_init_lockep+0x110/0x150 [ 139.063622][ T7097] copy_net_ns+0x46f/0x7c0 [ 139.063657][ T7097] create_new_namespaces+0x3ea/0xac0 [ 139.063690][ T7097] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 139.063719][ T7097] ksys_unshare+0x473/0xad0 [ 139.063752][ T7097] ? __pfx_ksys_unshare+0x10/0x10 [ 139.063797][ T7097] __x64_sys_unshare+0x31/0x40 [ 139.063827][ T7097] do_syscall_64+0x106/0xf80 [ 139.063859][ T7097] ? clear_bhb_loop+0x40/0x90 [ 139.063890][ T7097] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 139.063916][ T7097] RIP: 0033:0x7ff5fcf9c799 [ 139.063937][ T7097] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 139.063961][ T7097] RSP: 002b:00007ff5fde49028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 139.063985][ T7097] RAX: ffffffffffffffda RBX: 00007ff5fd216090 RCX: 00007ff5fcf9c799 [ 139.064002][ T7097] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 139.064017][ T7097] RBP: 00007ff5fd032c99 R08: 0000000000000000 R09: 0000000000000000 [ 139.064032][ T7097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 139.064046][ T7097] R13: 00007ff5fd216128 R14: 00007ff5fd216090 R15: 00007fffa6d4f098 [ 139.064082][ T7097] [ 139.398737][ T7097] kobject_uevent: unable to create netlink socket! [ 139.697126][ T7110] netlink: 330 bytes leftover after parsing attributes in process `syz.1.249'. [ 139.798294][ T7094] zswap: compressor not available [ 140.090846][ T7103] zswap: compressor agQʆC co> [ 140.090846][ T7103] 3|֠ not available [ 140.366091][ T7127] NFSD: Failed to start, no listeners configured. [ 145.346424][ T7204] netlink: 330 bytes leftover after parsing attributes in process `syz.1.270'. [ 145.885666][ T7214] FAULT_INJECTION: forcing a failure. [ 145.885666][ T7214] name fail_futex, interval 1, probability 0, space 0, times 0 [ 145.909087][ T7221] random: crng reseeded on system resumption [ 145.957245][ T7214] CPU: 1 UID: 0 PID: 7214 Comm: syz.1.273 Tainted: G L syzkaller #0 PREEMPT(full) [ 145.957285][ T7214] Tainted: [L]=SOFTLOCKUP [ 145.957295][ T7214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 145.957310][ T7214] Call Trace: [ 145.957319][ T7214] [ 145.957328][ T7214] dump_stack_lvl+0x100/0x190 [ 145.957369][ T7214] should_fail_ex.cold+0x5/0xa [ 145.957403][ T7214] get_futex_key+0x1d2/0x1620 [ 145.957437][ T7214] ? __pfx_get_futex_key+0x10/0x10 [ 145.957471][ T7214] ? netdev_run_todo+0x84c/0x12c0 [ 145.957511][ T7214] ? __pfx___mutex_lock+0x10/0x10 [ 145.957557][ T7214] futex_wake+0xea/0x530 [ 145.957595][ T7214] ? find_held_lock+0x2b/0x80 [ 145.957620][ T7214] ? __pfx_futex_wake+0x10/0x10 [ 145.957655][ T7214] ? tun_get+0x191/0x370 [ 145.957710][ T7214] do_futex+0x32b/0x350 [ 145.957742][ T7214] ? __pfx_do_futex+0x10/0x10 [ 145.957772][ T7214] ? __pfx___tun_chr_ioctl+0x10/0x10 [ 145.957806][ T7214] __x64_sys_futex+0x34f/0x4d0 [ 145.957844][ T7214] ? __pfx___x64_sys_futex+0x10/0x10 [ 145.957892][ T7214] do_syscall_64+0x106/0xf80 [ 145.957924][ T7214] ? clear_bhb_loop+0x40/0x90 [ 145.957956][ T7214] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 145.957982][ T7214] RIP: 0033:0x7f7f5db9c799 [ 145.958002][ T7214] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 145.958028][ T7214] RSP: 002b:00007f7f5eac50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 145.958053][ T7214] RAX: ffffffffffffffda RBX: 00007f7f5de15fa8 RCX: 00007f7f5db9c799 [ 145.958081][ T7214] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7f5de15fac [ 145.958097][ T7214] RBP: 00007f7f5de15fa0 R08: 0000000000000000 R09: 0000000000000000 [ 145.958114][ T7214] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 145.958131][ T7214] R13: 00007f7f5de16038 R14: 00007ffe992f0c40 R15: 00007ffe992f0d28 [ 145.958167][ T7214] [ 147.063355][ T7248] vhci_hcd vhci_hcd.1: invalid port number 19 [ 147.077754][ T7248] vhci_hcd vhci_hcd.1: default hub control req: c902 v76bf i0013 l46 [ 147.871970][ T7258] netlink: 12 bytes leftover after parsing attributes in process `syz.2.280'. [ 148.078160][ T7264] netlink: 330 bytes leftover after parsing attributes in process `syz.0.282'. [ 148.492985][ T7279] syz.1.287 uses obsolete (PF_INET,SOCK_PACKET) [ 148.817663][ T7278] netlink: Conntrack attr has 4 unknown bytes [ 149.357593][ T7300] netlink: 12 bytes leftover after parsing attributes in process `syz.2.290'. [ 149.591904][ T7307] netlink: 330 bytes leftover after parsing attributes in process `syz.3.293'. [ 150.528366][ T7319] i8042 aux 00:02: in use; can't configure [ 150.570271][ T29] audit: type=1807 audit(2147483682.830:4): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 150.661412][ T29] audit: type=1802 audit(2147483682.830:5): pid=7319 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.0.296" res=0 errno=0 [ 150.740264][ T7322] netlink: 186 bytes leftover after parsing attributes in process `syz.2.297'. [ 150.753264][ T7322] netlink: 186 bytes leftover after parsing attributes in process `syz.2.297'. [ 151.292780][ T7318] ima: policy update failed [ 151.422373][ T29] audit: type=1802 audit(2147483683.570:6): pid=7318 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.296" res=0 errno=0 [ 151.590425][ T7336] NFSD: Failed to start, no listeners configured. [ 153.222066][ T7376] netlink: 330 bytes leftover after parsing attributes in process `syz.2.303'. [ 156.950909][ T7448] netlink: 330 bytes leftover after parsing attributes in process `syz.2.311'. [ 156.978903][ T7441] NFSD: Failed to start, no listeners configured. [ 158.140741][ T7472] netlink: 330 bytes leftover after parsing attributes in process `syz.3.316'. [ 158.245216][ T7463] NFSD: Failed to start, no listeners configured. [ 158.422194][ T7473] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 158.437437][ T7473] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 158.469775][ T7473] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 158.487864][ T7473] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 159.729506][ T7503] Console: switching to colour VGA+ 80x25 [ 160.431319][ T7513] netlink: 186 bytes leftover after parsing attributes in process `syz.1.327'. [ 160.471247][ T5831] Bluetooth: hci0: command 0x0c1a tx timeout [ 160.477302][ T5835] Bluetooth: hci1: command 0x0c1a tx timeout [ 160.541140][ T5835] Bluetooth: hci3: command 0x0c1a tx timeout [ 160.547673][ T5831] Bluetooth: hci2: command 0x0c1a tx timeout [ 160.814325][ T7523] FAULT_INJECTION: forcing a failure. [ 160.814325][ T7523] name failslab, interval 1, probability 0, space 0, times 0 [ 160.939015][ T7526] netlink: 330 bytes leftover after parsing attributes in process `syz.2.330'. [ 160.951573][ T7523] CPU: 1 UID: 0 PID: 7523 Comm: syz.1.329 Tainted: G L syzkaller #0 PREEMPT(full) [ 160.951615][ T7523] Tainted: [L]=SOFTLOCKUP [ 160.951626][ T7523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 160.951642][ T7523] Call Trace: [ 160.951651][ T7523] [ 160.951662][ T7523] dump_stack_lvl+0x100/0x190 [ 160.951708][ T7523] should_fail_ex.cold+0x5/0xa [ 160.951739][ T7523] should_failslab+0xc2/0x120 [ 160.951767][ T7523] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 160.951806][ T7523] ? __pmd_alloc+0xbf/0x950 [ 160.951840][ T7523] __pmd_alloc+0xbf/0x950 [ 160.951874][ T7523] walk_pgd_range+0x896/0x1eb0 [ 160.951917][ T7523] ? ima_match_policy+0x8c4/0x2350 [ 160.951952][ T7523] ? __pfx_guard_install_set_pte+0x10/0x10 [ 160.951985][ T7523] ? __pfx_guard_install_set_pte+0x10/0x10 [ 160.952016][ T7523] ? __pfx_guard_install_set_pte+0x10/0x10 [ 160.952052][ T7523] ? __pfx_walk_pgd_range+0x10/0x10 [ 160.952105][ T7523] __walk_page_range+0x163/0x820 [ 160.952157][ T7523] ? process_measurement+0x4c8/0x2350 [ 160.952208][ T7523] walk_page_range_vma_unsafe+0x209/0x8f0 [ 160.952253][ T7523] ? css_rstat_updated+0x1ce/0x5a0 [ 160.952283][ T7523] ? __pfx_walk_page_range_vma_unsafe+0x10/0x10 [ 160.952322][ T7523] ? __pfx_css_rstat_updated+0x10/0x10 [ 160.952368][ T7523] madvise_guard_install+0x43f/0x7c0 [ 160.952409][ T7523] ? __pfx_madvise_guard_install+0x10/0x10 [ 160.952445][ T7523] ? __pfx_guard_install_pud_entry+0x10/0x10 [ 160.952473][ T7523] ? __pfx_guard_install_pmd_entry+0x10/0x10 [ 160.952502][ T7523] ? __pfx_guard_install_pte_entry+0x10/0x10 [ 160.952535][ T7523] ? __pfx_guard_install_set_pte+0x10/0x10 [ 160.952567][ T7523] ? __lock_acquire+0x4a5/0x2630 [ 160.952604][ T7523] madvise_vma_behavior+0x11f1/0x3050 [ 160.952640][ T7523] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 160.952670][ T7523] ? reacquire_held_locks+0xce/0x1e0 [ 160.952698][ T7523] ? lock_vma_under_rcu+0x11d/0x590 [ 160.952739][ T7523] ? lock_vma_under_rcu+0x17c/0x590 [ 160.952776][ T7523] ? lock_vma_under_rcu+0x25/0x590 [ 160.952809][ T7523] ? lock_vma_under_rcu+0x1f9/0x590 [ 160.952843][ T7523] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 160.952882][ T7523] ? __futex_wait+0x256/0x300 [ 160.952927][ T7523] madvise_walk_vmas+0x71c/0xa90 [ 160.952964][ T7523] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 160.952998][ T7523] ? find_held_lock+0x2b/0x80 [ 160.953026][ T7523] madvise_do_behavior+0x1ea/0x510 [ 160.953060][ T7523] ? __pfx_madvise_do_behavior+0x10/0x10 [ 160.953090][ T7523] ? futex_wait+0x125/0x380 [ 160.953147][ T7523] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 160.953195][ T7523] do_madvise+0x195/0x240 [ 160.953228][ T7523] ? __pfx_do_madvise+0x10/0x10 [ 160.953260][ T7523] ? do_futex+0x192/0x350 [ 160.953302][ T7523] ? find_held_lock+0x2b/0x80 [ 160.953354][ T7523] __x64_sys_madvise+0xa9/0x110 [ 160.953387][ T7523] ? lockdep_hardirqs_on+0x78/0x100 [ 160.953425][ T7523] do_syscall_64+0x106/0xf80 [ 160.953461][ T7523] ? clear_bhb_loop+0x40/0x90 [ 160.953496][ T7523] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 160.953525][ T7523] RIP: 0033:0x7f7f5db9c799 [ 160.953549][ T7523] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 160.953576][ T7523] RSP: 002b:00007f7f5eaa4028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 160.953604][ T7523] RAX: ffffffffffffffda RBX: 00007f7f5de16090 RCX: 00007f7f5db9c799 [ 160.953622][ T7523] RDX: 0000000000000066 RSI: 0000000002021000 RDI: 0000000000000000 [ 160.953639][ T7523] RBP: 00007f7f5dc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 160.953655][ T7523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 160.953671][ T7523] R13: 00007f7f5de16128 R14: 00007f7f5de16090 R15: 00007ffe992f0d28 [ 160.953709][ T7523] [ 161.381282][ T7525] NFSD: Failed to start, no listeners configured. [ 162.258487][ T7535] capability: warning: `syz.3.333' uses 32-bit capabilities (legacy support in use) [ 163.099735][ T7554] futex_wake_op: syz.1.336 tries to shift op by -2048; fix this program [ 163.170704][ T7554] futex_wake_op: syz.1.336 tries to shift op by -2048; fix this program [ 163.246888][ T7554] 0x000000000001-0x000000020000 : "" [ 163.266540][ T7558] netlink: 186 bytes leftover after parsing attributes in process `syz.3.338'. [ 163.344081][ T7554] ftl_cs: FTL header corrupt! [ 164.315481][ T7585] netlink: 330 bytes leftover after parsing attributes in process `syz.1.343'. [ 164.359188][ T7582] NFSD: Failed to start, no listeners configured. [ 165.456509][ T7608] netlink: 8 bytes leftover after parsing attributes in process `syz.2.348'. [ 167.404464][ T7649] NFSD: Failed to start, no listeners configured. [ 167.432605][ T7650] netlink: 330 bytes leftover after parsing attributes in process `syz.1.354'. [ 168.025197][ T7655] FAULT_INJECTION: forcing a failure. [ 168.025197][ T7655] name failslab, interval 1, probability 0, space 0, times 0 [ 168.092668][ T7662] netlink: 186 bytes leftover after parsing attributes in process `syz.2.359'. [ 168.122043][ T7662] FAULT_INJECTION: forcing a failure. [ 168.122043][ T7662] name failslab, interval 1, probability 0, space 0, times 0 [ 168.134816][ T7655] CPU: 0 UID: 0 PID: 7655 Comm: syz.0.356 Tainted: G L syzkaller #0 PREEMPT(full) [ 168.134854][ T7655] Tainted: [L]=SOFTLOCKUP [ 168.134862][ T7655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 168.134876][ T7655] Call Trace: [ 168.134884][ T7655] [ 168.134893][ T7655] dump_stack_lvl+0x100/0x190 [ 168.134980][ T7655] should_fail_ex.cold+0x5/0xa [ 168.135013][ T7655] should_failslab+0xc2/0x120 [ 168.135043][ T7655] __kmalloc_cache_noprof+0x7a/0x6f0 [ 168.135078][ T7655] ? fscontext_alloc_log+0x4a/0x1b0 [ 168.135120][ T7655] fscontext_alloc_log+0x4a/0x1b0 [ 168.135157][ T7655] __x64_sys_fsopen+0x159/0x220 [ 168.135193][ T7655] do_syscall_64+0x106/0xf80 [ 168.135228][ T7655] ? clear_bhb_loop+0x40/0x90 [ 168.135261][ T7655] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 168.135290][ T7655] RIP: 0033:0x7fe56a19c799 [ 168.135312][ T7655] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 168.135337][ T7655] RSP: 002b:00007fe56b016028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae [ 168.135363][ T7655] RAX: ffffffffffffffda RBX: 00007fe56a415fa0 RCX: 00007fe56a19c799 [ 168.135381][ T7655] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 168.135396][ T7655] RBP: 00007fe56a232c99 R08: 0000000000000000 R09: 0000000000000000 [ 168.135412][ T7655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 168.135426][ T7655] R13: 00007fe56a416038 R14: 00007fe56a415fa0 R15: 00007ffcb0cedb98 [ 168.135460][ T7655] [ 168.319454][ T7662] CPU: 0 UID: 0 PID: 7662 Comm: syz.2.359 Tainted: G L syzkaller #0 PREEMPT(full) [ 168.319480][ T7662] Tainted: [L]=SOFTLOCKUP [ 168.319485][ T7662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 168.319493][ T7662] Call Trace: [ 168.319498][ T7662] [ 168.319503][ T7662] dump_stack_lvl+0x100/0x190 [ 168.319528][ T7662] should_fail_ex.cold+0x5/0xa [ 168.319544][ T7662] should_failslab+0xc2/0x120 [ 168.319559][ T7662] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 168.319580][ T7662] ? __alloc_skb+0x140/0x710 [ 168.319601][ T7662] __alloc_skb+0x140/0x710 [ 168.319617][ T7662] ? __alloc_skb+0x5b7/0x710 [ 168.319633][ T7662] ? __pfx___alloc_skb+0x10/0x10 [ 168.319650][ T7662] ? __pfx___might_resched+0x10/0x10 [ 168.319669][ T7662] ? __lock_acquire+0x4a5/0x2630 [ 168.319690][ T7662] netlink_alloc_large_skb+0x69/0x150 [ 168.319712][ T7662] netlink_sendmsg+0x680/0xda0 [ 168.319734][ T7662] ? __pfx_netlink_sendmsg+0x10/0x10 [ 168.319753][ T7662] ? __import_iovec+0x1d2/0x640 [ 168.319771][ T7662] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 168.319795][ T7662] ____sys_sendmsg+0x9e1/0xb70 [ 168.319808][ T7662] ? __pfx_netlink_sendmsg+0x10/0x10 [ 168.319829][ T7662] ? __pfx_____sys_sendmsg+0x10/0x10 [ 168.319845][ T7662] ? rcu_is_watching+0x12/0xc0 [ 168.319865][ T7662] ? ___sys_sendmsg+0x19d/0x1e0 [ 168.319877][ T7662] ? kfree+0x2ec/0x6b0 [ 168.319897][ T7662] ___sys_sendmsg+0x190/0x1e0 [ 168.319913][ T7662] ? __pfx____sys_sendmsg+0x10/0x10 [ 168.319944][ T7662] ? __pfx___might_resched+0x10/0x10 [ 168.319966][ T7662] __sys_sendmmsg+0x205/0x430 [ 168.319987][ T7662] ? __pfx___sys_sendmmsg+0x10/0x10 [ 168.320011][ T7662] ? __pfx_do_sys_openat2+0x10/0x10 [ 168.320037][ T7662] ? ksys_write+0x1ac/0x250 [ 168.320049][ T7662] ? __pfx_ksys_write+0x10/0x10 [ 168.320065][ T7662] __x64_sys_sendmmsg+0x9c/0x100 [ 168.320083][ T7662] ? lockdep_hardirqs_on+0x78/0x100 [ 168.320102][ T7662] do_syscall_64+0x106/0xf80 [ 168.320119][ T7662] ? clear_bhb_loop+0x40/0x90 [ 168.320136][ T7662] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 168.320150][ T7662] RIP: 0033:0x7ff5fcf9c799 [ 168.320163][ T7662] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 168.320176][ T7662] RSP: 002b:00007ff5fde6a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 168.320189][ T7662] RAX: ffffffffffffffda RBX: 00007ff5fd215fa0 RCX: 00007ff5fcf9c799 [ 168.320198][ T7662] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 168.320206][ T7662] RBP: 00007ff5fde6a090 R08: 0000000000000000 R09: 0000000000000000 [ 168.320214][ T7662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 168.320222][ T7662] R13: 00007ff5fd216038 R14: 00007ff5fd215fa0 R15: 00007fffa6d4f098 [ 168.320240][ T7662] [ 169.439968][ T7679] netlink: 12 bytes leftover after parsing attributes in process `syz.2.363'. [ 169.684378][ T7694] netlink: 330 bytes leftover after parsing attributes in process `syz.2.367'. [ 169.687413][ T7692] NFSD: Failed to start, no listeners configured. [ 170.237248][ T7711] FAULT_INJECTION: forcing a failure. [ 170.237248][ T7711] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 170.252557][ T7711] CPU: 1 UID: 0 PID: 7711 Comm: syz.2.371 Tainted: G L syzkaller #0 PREEMPT(full) [ 170.252600][ T7711] Tainted: [L]=SOFTLOCKUP [ 170.252610][ T7711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 170.252626][ T7711] Call Trace: [ 170.252634][ T7711] [ 170.252644][ T7711] dump_stack_lvl+0x100/0x190 [ 170.252692][ T7711] should_fail_ex.cold+0x5/0xa [ 170.252724][ T7711] _copy_to_user+0x32/0xd0 [ 170.252758][ T7711] do_pages_stat+0x559/0x7f0 [ 170.252802][ T7711] ? __pfx_do_pages_stat+0x10/0x10 [ 170.252838][ T7711] ? get_task_cred+0x17f/0x360 [ 170.252905][ T7711] ? do_raw_spin_unlock+0x145/0x1e0 [ 170.252951][ T7711] kernel_move_pages+0xecf/0x13f0 [ 170.252988][ T7711] ? do_futex+0x192/0x350 [ 170.253021][ T7711] ? __pfx_do_futex+0x10/0x10 [ 170.253058][ T7711] ? __pfx_kernel_move_pages+0x10/0x10 [ 170.253088][ T7711] ? blkcg_maybe_throttle_current+0x5df/0xeb0 [ 170.253132][ T7711] ? __x64_sys_futex+0x34f/0x4d0 [ 170.253173][ T7711] ? __x64_sys_futex+0x358/0x4d0 [ 170.253213][ T7711] ? xfd_validate_state+0x129/0x190 [ 170.253259][ T7711] __x64_sys_move_pages+0xe0/0x1c0 [ 170.253291][ T7711] ? do_syscall_64+0x95/0xf80 [ 170.253327][ T7711] ? lockdep_hardirqs_on+0x78/0x100 [ 170.253362][ T7711] do_syscall_64+0x106/0xf80 [ 170.253397][ T7711] ? clear_bhb_loop+0x40/0x90 [ 170.253430][ T7711] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.253456][ T7711] RIP: 0033:0x7ff5fcf9c799 [ 170.253478][ T7711] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 170.253504][ T7711] RSP: 002b:00007ff5fde6a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000117 [ 170.253529][ T7711] RAX: ffffffffffffffda RBX: 00007ff5fd215fa0 RCX: 00007ff5fcf9c799 [ 170.253547][ T7711] RDX: 0000000000000000 RSI: 0000000000020007 RDI: 0000000000000001 [ 170.253563][ T7711] RBP: 00007ff5fd032c99 R08: 0000000000000000 R09: 8000000000000000 [ 170.253580][ T7711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 170.253596][ T7711] R13: 00007ff5fd216038 R14: 00007ff5fd215fa0 R15: 00007fffa6d4f098 [ 170.253634][ T7711] [ 171.003493][ T7697] Process accounting resumed [ 171.334611][ T7728] random: crng reseeded on system resumption [ 172.201791][ T7748] netlink: 342 bytes leftover after parsing attributes in process `syz.3.378'. [ 172.249660][ T7748] vhci_hcd vhci_hcd.1: invalid port number 19 [ 172.341230][ T7748] vhci_hcd vhci_hcd.1: default hub control req: c902 v76bf i0013 l46 [ 172.749548][ T7764] NFSD: Failed to start, no listeners configured. [ 173.913660][ T7761] usb usb36: usbfs: process 7761 (syz.3.381) did not claim interface 0 before use [ 175.991989][ T7843] netlink: 186 bytes leftover after parsing attributes in process `syz.3.392'. [ 176.032803][ T7843] netlink: 338 bytes leftover after parsing attributes in process `syz.3.392'. [ 177.835424][ T7862] block nbd8: shutting down sockets [ 178.073789][ T7866] sp0: Synchronizing with TNC [ 179.682079][ T7911] FAULT_INJECTION: forcing a failure. [ 179.682079][ T7911] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 179.719839][ T7911] CPU: 0 UID: 0 PID: 7911 Comm: syz.1.406 Tainted: G L syzkaller #0 PREEMPT(full) [ 179.719885][ T7911] Tainted: [L]=SOFTLOCKUP [ 179.719895][ T7911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 179.719912][ T7911] Call Trace: [ 179.719921][ T7911] [ 179.719931][ T7911] dump_stack_lvl+0x100/0x190 [ 179.719979][ T7911] should_fail_ex.cold+0x5/0xa [ 179.720006][ T7911] ? prepare_alloc_pages+0x16d/0x5f0 [ 179.720041][ T7911] should_fail_alloc_page+0xeb/0x140 [ 179.720073][ T7911] prepare_alloc_pages+0x1f0/0x5f0 [ 179.720112][ T7911] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 179.720149][ T7911] ? buffer_subbuf_size_write+0x182/0x280 [ 179.720189][ T7911] ? do_writev+0x13e/0x340 [ 179.720225][ T7911] ? do_syscall_64+0x106/0xf80 [ 179.720261][ T7911] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.720308][ T7911] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 179.720374][ T7911] ? rcu_is_watching+0x12/0xc0 [ 179.720412][ T7911] ? trace_kmalloc+0x101/0x130 [ 179.720436][ T7911] ? __kasan_kmalloc+0xaa/0xb0 [ 179.720480][ T7911] __alloc_pages_noprof+0xb/0x1b0 [ 179.720519][ T7911] alloc_cpu_data+0x60/0x130 [ 179.720550][ T7911] __rb_allocate_pages+0x6a5/0xf50 [ 179.720594][ T7911] ring_buffer_subbuf_order_set+0x3ef/0x18c0 [ 179.720642][ T7911] ? tracing_stop_tr+0xf6/0x210 [ 179.720685][ T7911] ? __pfx_ring_buffer_subbuf_order_set+0x10/0x10 [ 179.720720][ T7911] ? __pfx___might_resched+0x10/0x10 [ 179.720770][ T7911] ? iovec_from_user+0xda/0x140 [ 179.720811][ T7911] buffer_subbuf_size_write+0x182/0x280 [ 179.720860][ T7911] ? __pfx_buffer_subbuf_size_write+0x10/0x10 [ 179.720912][ T7911] ? __pfx_buffer_subbuf_size_write+0x10/0x10 [ 179.720952][ T7911] vfs_writev+0x5ea/0xe10 [ 179.720987][ T7911] ? rcu_is_watching+0x12/0xc0 [ 179.721032][ T7911] ? __pfx_vfs_writev+0x10/0x10 [ 179.721066][ T7911] ? fdget_pos+0x2aa/0x380 [ 179.721116][ T7911] ? __fget_files+0x21f/0x3d0 [ 179.721148][ T7911] ? do_writev+0x13e/0x340 [ 179.721180][ T7911] do_writev+0x13e/0x340 [ 179.721215][ T7911] ? __pfx_do_writev+0x10/0x10 [ 179.721261][ T7911] do_syscall_64+0x106/0xf80 [ 179.721294][ T7911] ? clear_bhb_loop+0x40/0x90 [ 179.721327][ T7911] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.721355][ T7911] RIP: 0033:0x7f7f5db9c799 [ 179.721378][ T7911] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 179.721405][ T7911] RSP: 002b:00007f7f5eac5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 179.721431][ T7911] RAX: ffffffffffffffda RBX: 00007f7f5de15fa0 RCX: 00007f7f5db9c799 [ 179.721450][ T7911] RDX: 000000000000000a RSI: 0000200000000200 RDI: 0000000000000009 [ 179.721467][ T7911] RBP: 00007f7f5dc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 179.721483][ T7911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 179.721499][ T7911] R13: 00007f7f5de16038 R14: 00007f7f5de15fa0 R15: 00007ffe992f0d28 [ 179.721539][ T7911] [ 181.859476][ T7926] can: request_module (can-proto-3) failed. [ 184.302112][ T7962] nfs4: Unknown parameter '' [ 185.199435][ T7967] netlink: 8 bytes leftover after parsing attributes in process `syz.1.416'. [ 186.069412][ T7990] netlink: 'syz.3.420': attribute type 11 has an invalid length. [ 186.079216][ T7990] netlink: 'syz.3.420': attribute type 11 has an invalid length. [ 186.087289][ T7990] netlink: 'syz.3.420': attribute type 11 has an invalid length. [ 186.097186][ T7990] netlink: 'syz.3.420': attribute type 11 has an invalid length. [ 186.848226][ T8005] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(1) [ 190.254161][ T8054] Invalid ELF header magic: != ELF [ 190.267757][ T8055] Invalid ELF header magic: != ELF [ 193.251652][ T8093] raw_sendmsg: syz.3.446 forgot to set AF_INET. Fix it! [ 193.353945][ T8105] can: request_module (can-proto-0) failed. [ 194.226425][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.232846][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.956374][ T8122] nfs: Unknown parameter 'm?LH>「^eko}* ' [ 196.865882][ T8147] netlink: 354 bytes leftover after parsing attributes in process `syz.3.456'. [ 198.339475][ T8164] warning: `syz.1.459' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 198.491155][ T8172] netlink: 24 bytes leftover after parsing attributes in process `syz.3.461'. [ 201.442767][ T8207] Process accounting paused [ 203.365634][ T8241] [U] [ 203.368560][ T8241] [U] [ 203.371280][ T8241] [U] [ 203.374006][ T8241] [U] [ 203.416842][ T8241] [U] [ 203.419587][ T8241] [U] [ 203.422311][ T8241] [U] [ 203.425034][ T8241] [U] [ 203.463654][ T8241] [U] [ 203.466391][ T8241] [U] [ 203.469100][ T8241] [U] [ 203.471794][ T8241] [U] [ 203.551190][ T8241] [U] [ 203.553933][ T8241] [U] [ 203.556647][ T8241] [U] [ 203.559350][ T8241] [U] [ 203.595005][ T8241] [U] [ 203.597750][ T8241] [U] [ 203.600467][ T8241] [U] [ 203.603173][ T8241] [U] [ 203.674632][ T8241] [U] [ 203.677385][ T8241] [U] [ 203.680096][ T8241] [U] [ 203.682814][ T8241] [U] [ 203.686433][ T8241] [U] [ 203.689160][ T8241] [U] [ 203.691876][ T8241] [U] [ 203.694597][ T8241] [U] [ 203.712102][ T8248] HfR: entered promiscuous mode [ 203.747952][ T8241] [U] [ 203.750688][ T8241] [U] [ 203.753398][ T8241] [U] [ 203.756117][ T8241] [U] [ 203.797616][ T8241] [U] [ 203.800317][ T8241] [U] [ 203.802994][ T8241] [U] [ 203.805673][ T8241] [U] [ 203.850743][ T8241] [U] [ 203.853490][ T8241] [U] [ 203.856217][ T8241] [U] [ 203.858932][ T8241] [U] [ 203.881809][ T8241] [U] [ 203.884543][ T8241] [U] [ 203.887245][ T8241] [U] [ 203.889942][ T8241] [U] [ 203.912655][ T8241] [U] [ 203.915403][ T8241] [U] [ 203.918133][ T8241] [U] [ 203.920847][ T8241] [U] [ 203.941775][ T8241] [U] [ 203.944518][ T8241] [U] [ 203.947231][ T8241] [U] [ 203.949945][ T8241] [U] [ 203.950739][ T8223] Process accounting resumed [ 203.979751][ T8241] [U] [ 203.982492][ T8241] [U] [ 203.985205][ T8241] [U] [ 203.987923][ T8241] [U] [ 204.027774][ T8241] [U] [ 204.030476][ T8241] [U] [ 204.033151][ T8241] [U] [ 204.035817][ T8241] [U] [ 204.081636][ T8241] [U] [ 204.084387][ T8241] [U] [ 204.087104][ T8241] [U] [ 204.089832][ T8241] [U] [ 204.149914][ T8241] [U] [ 204.152619][ T8241] [U] [ 204.155290][ T8241] [U] [ 204.157969][ T8241] [U] [ 204.304040][ T8241] [U] [ 205.695043][ C0] unchecked MSR access error: WRMSR to 0x418 (tried to write 0x0000000000000322) at rIP: 0xffffffff81b108da (__mcheck_cpu_init_prepare_banks+0x18a/0x380) [ 205.710578][ C0] Call Trace: [ 205.713871][ C0] [ 205.716716][ C0] ? __pfx___mcheck_cpu_init_prepare_banks+0x10/0x10 [ 205.723409][ C0] ? sched_clock_cpu+0x6c/0x570 [ 205.728268][ C0] ? tick_irq_enter+0x175/0x240 [ 205.733121][ C0] ? tick_irq_enter+0x175/0x240 [ 205.737981][ C0] ? __pfx_mce_cpu_restart+0x10/0x10 [ 205.743273][ C0] mce_cpu_restart+0xd5/0x1f0 [ 205.747958][ C0] __flush_smp_call_function_queue+0x281/0x960 [ 205.754120][ C0] __sysvec_call_function_single+0x81/0x470 [ 205.760018][ C0] sysvec_call_function_single+0x9e/0xc0 [ 205.765661][ C0] [ 205.768592][ C0] [ 205.771522][ C0] asm_sysvec_call_function_single+0x1a/0x20 [ 205.777510][ C0] RIP: 0010:pv_native_safe_halt+0xf/0x20 [ 205.783149][ C0] Code: 88 85 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d a3 1f 1e 00 fb f4 fc 35 03 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 [ 205.802760][ C0] RSP: 0000:ffffffff8e407e00 EFLAGS: 00000246 [ 205.808828][ C0] RAX: 0000000000176d99 RBX: ffffffff8e4975c0 RCX: ffffffff8b8d6c75 [ 205.816798][ C0] RDX: 0000000000000000 RSI: ffffffff8de7f2a3 RDI: ffffffff8c1b0520 [ 205.824765][ C0] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed1017086795 [ 205.832738][ C0] R10: ffff8880b8433cab R11: 0000000000000000 R12: fffffbfff1c92eb8 [ 205.840718][ C0] R13: 0000000000000000 R14: ffffffff90d9be10 R15: 0000000000000000 [ 205.848702][ C0] ? ct_kernel_exit+0x125/0x180 [ 205.853595][ C0] default_idle+0x9/0x10 [ 205.857855][ C0] default_idle_call+0x6c/0xb0 [ 205.862618][ C0] do_idle+0x43a/0x550 [ 205.866690][ C0] ? __pfx_do_idle+0x10/0x10 [ 205.871295][ C0] cpu_startup_entry+0x4f/0x60 [ 205.876073][ C0] rest_init+0x251/0x260 [ 205.880315][ C0] ? __pfx_x86_late_time_init+0x10/0x10 [ 205.885872][ C0] start_kernel+0x47f/0x480 [ 205.890379][ C0] x86_64_start_reservations+0x24/0x30 [ 205.895872][ C0] x86_64_start_kernel+0x12b/0x130 [ 205.900985][ C0] common_startup_64+0x13e/0x148 [ 205.905940][ C0] [ 205.973562][ T8286] netlink: 28 bytes leftover after parsing attributes in process `syz.1.483'. [ 207.004086][ T8302] NFSD: Failed to start, no listeners configured. [ 207.262293][ T8310] netlink: 4 bytes leftover after parsing attributes in process `syz.3.488'. [ 207.304935][ T8310] netlink: 354 bytes leftover after parsing attributes in process `syz.3.488'. [ 207.724183][ T8318] FAULT_INJECTION: forcing a failure. [ 207.724183][ T8318] name failslab, interval 1, probability 0, space 0, times 0 [ 207.859605][ T8318] CPU: 1 UID: 0 PID: 8318 Comm: syz.2.489 Tainted: G L syzkaller #0 PREEMPT(full) [ 207.859632][ T8318] Tainted: [L]=SOFTLOCKUP [ 207.859637][ T8318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 207.859646][ T8318] Call Trace: [ 207.859651][ T8318] [ 207.859657][ T8318] dump_stack_lvl+0x100/0x190 [ 207.859683][ T8318] should_fail_ex.cold+0x5/0xa [ 207.859701][ T8318] should_failslab+0xc2/0x120 [ 207.859716][ T8318] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 207.859737][ T8318] ? sk_prot_alloc+0x60/0x2a0 [ 207.859754][ T8318] sk_prot_alloc+0x60/0x2a0 [ 207.859770][ T8318] sk_alloc+0x36/0xe80 [ 207.859789][ T8318] rds_create+0x9e/0x5f0 [ 207.859806][ T8318] __sock_create+0x339/0x860 [ 207.859824][ T8318] __sys_socket+0x14d/0x260 [ 207.859840][ T8318] ? __pfx___sys_socket+0x10/0x10 [ 207.859861][ T8318] __x64_sys_socket+0x72/0xb0 [ 207.859876][ T8318] ? lockdep_hardirqs_on+0x78/0x100 [ 207.859896][ T8318] do_syscall_64+0x106/0xf80 [ 207.859914][ T8318] ? clear_bhb_loop+0x40/0x90 [ 207.859931][ T8318] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 207.859946][ T8318] RIP: 0033:0x7ff5fcf9c799 [ 207.859959][ T8318] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 207.859973][ T8318] RSP: 002b:00007ff5fde6a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 207.859987][ T8318] RAX: ffffffffffffffda RBX: 00007ff5fd215fa0 RCX: 00007ff5fcf9c799 [ 207.859996][ T8318] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000015 [ 207.860005][ T8318] RBP: 00007ff5fd032c99 R08: 0000000000000000 R09: 0000000000000000 [ 207.860014][ T8318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 207.860022][ T8318] R13: 00007ff5fd216038 R14: 00007ff5fd215fa0 R15: 00007fffa6d4f098 [ 207.860048][ T8318] [ 208.496137][ T29] audit: type=1800 audit(2147502084.771:7): pid=8331 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.491" name="dbroot" dev="configfs" ino=20901 res=0 errno=0 [ 208.542727][ T8333] usb usb37: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 208.550391][ T29] audit: type=1800 audit(2147502084.801:8): pid=8333 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.493" name="lu_gp_id" dev="configfs" ino=21519 res=0 errno=0 [ 208.581178][ T8333] vhci_hcd vhci_hcd.2: invalid port number 0 [ 208.612754][ T8334] can: request_module (can-proto-0) failed. [ 208.828956][ T8340] FAULT_INJECTION: forcing a failure. [ 208.828956][ T8340] name failslab, interval 1, probability 0, space 0, times 0 [ 208.852536][ T8340] CPU: 0 UID: 0 PID: 8340 Comm: syz.1.494 Tainted: G L syzkaller #0 PREEMPT(full) [ 208.852582][ T8340] Tainted: [L]=SOFTLOCKUP [ 208.852593][ T8340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 208.852609][ T8340] Call Trace: [ 208.852618][ T8340] [ 208.852629][ T8340] dump_stack_lvl+0x100/0x190 [ 208.852676][ T8340] should_fail_ex.cold+0x5/0xa [ 208.852709][ T8340] should_failslab+0xc2/0x120 [ 208.852739][ T8340] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 208.852780][ T8340] ? __mpol_dup+0x74/0x370 [ 208.852820][ T8340] __mpol_dup+0x74/0x370 [ 208.852852][ T8340] ? __pfx___mpol_dup+0x10/0x10 [ 208.852894][ T8340] mbind_range+0x2ad/0x550 [ 208.852932][ T8340] do_mbind+0x7de/0xfd0 [ 208.852981][ T8340] ? __might_fault+0xc5/0x140 [ 208.853020][ T8340] ? __pfx_do_mbind+0x10/0x10 [ 208.853060][ T8340] ? _copy_from_user+0x59/0xd0 [ 208.853099][ T8340] ? __pfx_get_nodes+0x10/0x10 [ 208.853147][ T8340] kernel_mbind+0x1b7/0x200 [ 208.853185][ T8340] ? __pfx_kernel_mbind+0x10/0x10 [ 208.853229][ T8340] do_syscall_64+0x106/0xf80 [ 208.853266][ T8340] ? clear_bhb_loop+0x40/0x90 [ 208.853300][ T8340] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 208.853329][ T8340] RIP: 0033:0x7f7f5db9c799 [ 208.853352][ T8340] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 208.853378][ T8340] RSP: 002b:00007f7f5eac5028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 208.853405][ T8340] RAX: ffffffffffffffda RBX: 00007f7f5de15fa0 RCX: 00007f7f5db9c799 [ 208.853424][ T8340] RDX: 0000000000008003 RSI: 0000000000800605 RDI: 0000000000000000 [ 208.853439][ T8340] RBP: 00007f7f5dc32c99 R08: 0000000000000003 R09: 0000000000000003 [ 208.853455][ T8340] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000000 [ 208.853470][ T8340] R13: 00007f7f5de16038 R14: 00007f7f5de15fa0 R15: 00007ffe992f0d28 [ 208.853504][ T8340] [ 209.354608][ T8353] NFSD: Failed to start, no listeners configured. [ 209.510400][ T8356] zswap: compressor not available [ 210.546194][ T8395] FAULT_INJECTION: forcing a failure. [ 210.546194][ T8395] name failslab, interval 1, probability 0, space 0, times 0 [ 210.652258][ T8395] CPU: 1 UID: 0 PID: 8395 Comm: syz.3.506 Tainted: G L syzkaller #0 PREEMPT(full) [ 210.652312][ T8395] Tainted: [L]=SOFTLOCKUP [ 210.652321][ T8395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 210.652337][ T8395] Call Trace: [ 210.652346][ T8395] [ 210.652356][ T8395] dump_stack_lvl+0x100/0x190 [ 210.652403][ T8395] should_fail_ex.cold+0x5/0xa [ 210.652434][ T8395] should_failslab+0xc2/0x120 [ 210.652464][ T8395] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 210.652504][ T8395] ? alloc_empty_file+0x55/0x1c0 [ 210.652547][ T8395] alloc_empty_file+0x55/0x1c0 [ 210.652582][ T8395] alloc_file_pseudo+0x13a/0x230 [ 210.652629][ T8395] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 210.652664][ T8395] ? alloc_fd+0x476/0x790 [ 210.652698][ T8395] sock_alloc_file+0x50/0x210 [ 210.652740][ T8395] __sys_socket+0x1c0/0x260 [ 210.652770][ T8395] ? __pfx___sys_socket+0x10/0x10 [ 210.652811][ T8395] __x64_sys_socket+0x72/0xb0 [ 210.652840][ T8395] ? lockdep_hardirqs_on+0x78/0x100 [ 210.652878][ T8395] do_syscall_64+0x106/0xf80 [ 210.652913][ T8395] ? clear_bhb_loop+0x40/0x90 [ 210.652947][ T8395] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 210.652975][ T8395] RIP: 0033:0x7f67bc19c799 [ 210.652998][ T8395] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 210.653024][ T8395] RSP: 002b:00007f67bd095028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 210.653050][ T8395] RAX: ffffffffffffffda RBX: 00007f67bc415fa0 RCX: 00007f67bc19c799 [ 210.653067][ T8395] RDX: 0000000000000001 RSI: 000000000000000a RDI: 0000000000000002 [ 210.653084][ T8395] RBP: 00007f67bc232c99 R08: 0000000000000000 R09: 0000000000000000 [ 210.653100][ T8395] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 210.653117][ T8395] R13: 00007f67bc416038 R14: 00007f67bc415fa0 R15: 00007ffde0c4bda8 [ 210.653153][ T8395] [ 210.913299][ T8406] ubi0: attaching mtd0 [ 210.921913][ T8406] ubi0: scanning is finished [ 211.021151][ T8406] ubi0: empty MTD device detected [ 211.547959][ T8406] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 211.609389][ T8406] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 211.649669][ T8406] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 211.701087][ T8406] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 211.731102][ T8406] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 211.737967][ T8406] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 211.779434][ T8419] netlink: 4 bytes leftover after parsing attributes in process `syz.1.510'. [ 211.811304][ T8406] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 1814251578 [ 211.831094][ T8406] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 211.886733][ T8413] ubi0: background thread "ubi_bgt0d" started, PID 8413 [ 211.961756][ T8421] bridge0: port 3(gretap0) entered blocking state [ 211.992944][ T8421] bridge0: port 3(gretap0) entered disabled state [ 212.010134][ T8421] gretap0: entered allmulticast mode [ 212.043293][ T8421] gretap0: entered promiscuous mode [ 212.057815][ T8421] FAULT_INJECTION: forcing a failure. [ 212.057815][ T8421] name failslab, interval 1, probability 0, space 0, times 0 [ 212.070724][ T8421] CPU: 0 UID: 0 PID: 8421 Comm: syz.1.510 Tainted: G L syzkaller #0 PREEMPT(full) [ 212.070748][ T8421] Tainted: [L]=SOFTLOCKUP [ 212.070754][ T8421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 212.070763][ T8421] Call Trace: [ 212.070769][ T8421] [ 212.070779][ T8421] dump_stack_lvl+0x100/0x190 [ 212.070824][ T8421] should_fail_ex.cold+0x5/0xa [ 212.070851][ T8421] ? __lock_acquire+0x4a5/0x2630 [ 212.070874][ T8421] should_failslab+0xc2/0x120 [ 212.070891][ T8421] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 212.070912][ T8421] ? fdb_create+0x22f/0x1960 [ 212.070935][ T8421] fdb_create+0x22f/0x1960 [ 212.070951][ T8421] ? lock_acquire+0x1cf/0x380 [ 212.070971][ T8421] ? __pfx_fdb_create+0x10/0x10 [ 212.070991][ T8421] fdb_add_local+0x155/0x1c0 [ 212.071015][ T8421] br_fdb_add_local+0x39/0x60 [ 212.071046][ T8421] br_add_if+0xe89/0x1b40 [ 212.071077][ T8421] ? __pfx_veth_set_rx_headroom+0x10/0x10 [ 212.071102][ T8421] add_del_if+0x114/0x160 [ 212.071121][ T8421] br_dev_siocdevprivate+0x8ac/0x1650 [ 212.071141][ T8421] ? __lock_acquire+0x4a5/0x2630 [ 212.071159][ T8421] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 212.071188][ T8421] ? do_raw_spin_lock+0x128/0x260 [ 212.071211][ T8421] ? mark_held_locks+0x40/0x70 [ 212.071231][ T8421] ? netdev_name_node_lookup+0x107/0x150 [ 212.071248][ T8421] ? __mutex_lock+0x26a/0x1b90 [ 212.071270][ T8421] dev_ifsioc+0xc1e/0x1e90 [ 212.071290][ T8421] ? __pfx_dev_ifsioc+0x10/0x10 [ 212.071307][ T8421] ? __pfx___mutex_lock+0x10/0x10 [ 212.071333][ T8421] ? dev_load+0x8e/0x240 [ 212.071349][ T8421] ? dev_load+0x8e/0x240 [ 212.071370][ T8421] dev_ioctl+0x70e/0x1070 [ 212.071389][ T8421] sock_ioctl+0x494/0x6b0 [ 212.071405][ T8421] ? __pfx_sock_ioctl+0x10/0x10 [ 212.071419][ T8421] ? hook_file_ioctl_common+0x146/0x410 [ 212.071439][ T8421] ? __fget_files+0x21f/0x3d0 [ 212.071455][ T8421] ? __pfx_sock_ioctl+0x10/0x10 [ 212.071472][ T8421] __x64_sys_ioctl+0x18e/0x210 [ 212.071494][ T8421] do_syscall_64+0x106/0xf80 [ 212.071513][ T8421] ? clear_bhb_loop+0x40/0x90 [ 212.071530][ T8421] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 212.071545][ T8421] RIP: 0033:0x7f7f5db9c799 [ 212.071559][ T8421] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 212.071572][ T8421] RSP: 002b:00007f7f5eaa4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 212.071587][ T8421] RAX: ffffffffffffffda RBX: 00007f7f5de16090 RCX: 00007f7f5db9c799 [ 212.071597][ T8421] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000008 [ 212.071606][ T8421] RBP: 00007f7f5dc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 212.071615][ T8421] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 212.071624][ T8421] R13: 00007f7f5de16128 R14: 00007f7f5de16090 R15: 00007ffe992f0d28 [ 212.071643][ T8421] [ 212.546614][ T8421] gretap0: failed insert local address bridge forwarding table [ 212.583607][ T8421] bridge0: port 3(gretap0) entered blocking state [ 212.590425][ T8421] bridge0: port 3(gretap0) entered forwarding state [ 212.869688][ T8433] input input9: cannot allocate more than FF_MAX_EFFECTS effects [ 213.522597][ T8452] program syz.0.520 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 213.923169][ T8457] netlink: 28 bytes leftover after parsing attributes in process `syz.0.521'. [ 214.855493][ T8473] FAULT_INJECTION: forcing a failure. [ 214.855493][ T8473] name failslab, interval 1, probability 0, space 0, times 0 [ 214.868783][ T8473] CPU: 1 UID: 0 PID: 8473 Comm: syz.0.524 Tainted: G L syzkaller #0 PREEMPT(full) [ 214.868822][ T8473] Tainted: [L]=SOFTLOCKUP [ 214.868830][ T8473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 214.868844][ T8473] Call Trace: [ 214.868852][ T8473] [ 214.868861][ T8473] dump_stack_lvl+0x100/0x190 [ 214.868900][ T8473] should_fail_ex.cold+0x5/0xa [ 214.868938][ T8473] should_failslab+0xc2/0x120 [ 214.868962][ T8473] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 214.868992][ T8473] ? __d_alloc+0x34/0xa80 [ 214.869019][ T8473] ? lockdep_init_map_type+0x5c/0x250 [ 214.869057][ T8473] __d_alloc+0x34/0xa80 [ 214.869088][ T8473] d_alloc_pseudo+0x1c/0xc0 [ 214.869119][ T8473] alloc_file_pseudo+0xcf/0x230 [ 214.869150][ T8473] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 214.869180][ T8473] ? alloc_fd+0x476/0x790 [ 214.869208][ T8473] sock_alloc_file+0x50/0x210 [ 214.869247][ T8473] __sys_socket+0x1c0/0x260 [ 214.869275][ T8473] ? __pfx___sys_socket+0x10/0x10 [ 214.869312][ T8473] __x64_sys_socket+0x72/0xb0 [ 214.869338][ T8473] ? lockdep_hardirqs_on+0x78/0x100 [ 214.869372][ T8473] do_syscall_64+0x106/0xf80 [ 214.869404][ T8473] ? clear_bhb_loop+0x40/0x90 [ 214.869434][ T8473] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 214.869460][ T8473] RIP: 0033:0x7fe56a19c799 [ 214.869481][ T8473] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 214.869504][ T8473] RSP: 002b:00007fe56b016028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 214.869528][ T8473] RAX: ffffffffffffffda RBX: 00007fe56a415fa0 RCX: 00007fe56a19c799 [ 214.869545][ T8473] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 214.869560][ T8473] RBP: 00007fe56a232c99 R08: 0000000000000000 R09: 0000000000000000 [ 214.869575][ T8473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 214.869589][ T8473] R13: 00007fe56a416038 R14: 00007fe56a415fa0 R15: 00007ffcb0cedb98 [ 214.869624][ T8473] [ 215.259446][ T8479] netlink: 4 bytes leftover after parsing attributes in process `syz.1.523'. [ 215.489034][ T8484] binder: 8481:8484 ioctl c018620c 0 returned -1 [ 215.991816][ T8489] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11 [ 216.597549][ T8501] netlink: 21 bytes leftover after parsing attributes in process `syz.2.530'. [ 216.615949][ T8497] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12 [ 216.656382][ T8501] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 216.819168][ T8502] netlink: 4 bytes leftover after parsing attributes in process `syz.3.531'. [ 216.876877][ T8504] netlink: 4 bytes leftover after parsing attributes in process `syz.3.531'. [ 218.185130][ T8518] futex_wake_op: syz.3.535 tries to shift op by -2048; fix this program [ 218.500131][ T8526] netlink: 12 bytes leftover after parsing attributes in process `syz.0.538'. [ 219.750083][ T8558] FAULT_INJECTION: forcing a failure. [ 219.750083][ T8558] name fail_futex, interval 1, probability 0, space 0, times 0 [ 219.801811][ T8558] CPU: 0 UID: 0 PID: 8558 Comm: syz.3.545 Tainted: G L syzkaller #0 PREEMPT(full) [ 219.801856][ T8558] Tainted: [L]=SOFTLOCKUP [ 219.801866][ T8558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 219.801892][ T8558] Call Trace: [ 219.801902][ T8558] [ 219.801912][ T8558] dump_stack_lvl+0x100/0x190 [ 219.801958][ T8558] should_fail_ex.cold+0x5/0xa [ 219.801993][ T8558] get_futex_key+0x1d2/0x1620 [ 219.802031][ T8558] ? __pfx_get_futex_key+0x10/0x10 [ 219.802063][ T8558] ? find_held_lock+0x2b/0x80 [ 219.802088][ T8558] ? futex_wake+0x456/0x530 [ 219.802136][ T8558] futex_wake+0xea/0x530 [ 219.802177][ T8558] ? __pfx_futex_wake+0x10/0x10 [ 219.802220][ T8558] ? putname+0xb1/0x110 [ 219.802245][ T8558] ? kmem_cache_free+0x124/0x6a0 [ 219.802278][ T8558] ? do_sys_openat2+0x1b4/0x1e0 [ 219.802318][ T8558] do_futex+0x32b/0x350 [ 219.802352][ T8558] ? __pfx_do_futex+0x10/0x10 [ 219.802384][ T8558] ? __pfx_do_sys_openat2+0x10/0x10 [ 219.802420][ T8558] ? __fget_files+0x21f/0x3d0 [ 219.802449][ T8558] __x64_sys_futex+0x34f/0x4d0 [ 219.802484][ T8558] ? __x64_sys_openat+0x12d/0x210 [ 219.802518][ T8558] ? __pfx___x64_sys_futex+0x10/0x10 [ 219.802565][ T8558] do_syscall_64+0x106/0xf80 [ 219.802601][ T8558] ? clear_bhb_loop+0x40/0x90 [ 219.802633][ T8558] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 219.802660][ T8558] RIP: 0033:0x7f67bc19c799 [ 219.802681][ T8558] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 219.802707][ T8558] RSP: 002b:00007f67bd0950e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 219.802732][ T8558] RAX: ffffffffffffffda RBX: 00007f67bc415fa8 RCX: 00007f67bc19c799 [ 219.802750][ T8558] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f67bc415fac [ 219.802766][ T8558] RBP: 00007f67bc415fa0 R08: 0000000000000000 R09: 0000000000000000 [ 219.802781][ T8558] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 219.802798][ T8558] R13: 00007f67bc416038 R14: 00007ffde0c4bcc0 R15: 00007ffde0c4bda8 [ 219.802835][ T8558] [ 220.868546][ T8571] usbcore.quirks: string doesn't fit in 127 chars. [ 220.877727][ T8571] usbcore.quirks: string doesn't fit in 127 chars. [ 222.310984][ T8601] netlink: 'syz.2.552': attribute type 33 has an invalid length. [ 222.359372][ T8603] netlink: 'syz.2.552': attribute type 33 has an invalid length. [ 223.914165][ T8612] zswap: compressor not available [ 224.221616][ T8622] bond0: no command found in slaves file - use +ifname or -ifname [ 225.657972][ T8655] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(3) [ 225.680137][ T8651] Invalid ELF header magic: != ELF [ 225.688917][ T8655] FAULT_INJECTION: forcing a failure. [ 225.688917][ T8655] name failslab, interval 1, probability 0, space 0, times 0 [ 225.701915][ T8655] CPU: 0 UID: 0 PID: 8655 Comm: syz.2.562 Tainted: G L syzkaller #0 PREEMPT(full) [ 225.701956][ T8655] Tainted: [L]=SOFTLOCKUP [ 225.701966][ T8655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 225.701978][ T8655] Call Trace: [ 225.701984][ T8655] [ 225.701989][ T8655] dump_stack_lvl+0x100/0x190 [ 225.702016][ T8655] should_fail_ex.cold+0x5/0xa [ 225.702034][ T8655] should_failslab+0xc2/0x120 [ 225.702049][ T8655] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 225.702070][ T8655] ? __mt_dup+0x5a8/0xc20 [ 225.702094][ T8655] __mt_dup+0x5a8/0xc20 [ 225.702117][ T8655] ? __lock_acquire+0x4a5/0x2630 [ 225.702135][ T8655] ? __pfx___mt_dup+0x10/0x10 [ 225.702175][ T8655] dup_mmap+0x3d0/0x2180 [ 225.702199][ T8655] ? __pfx_dup_mmap+0x10/0x10 [ 225.702214][ T8655] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 225.702238][ T8655] ? __lock_acquire+0x4a5/0x2630 [ 225.702256][ T8655] ? find_held_lock+0x2b/0x80 [ 225.702268][ T8655] ? __percpu_counter_init_many+0x2bc/0x3b0 [ 225.702300][ T8655] copy_process+0x73d7/0x7a10 [ 225.702326][ T8655] ? __pfx_copy_process+0x10/0x10 [ 225.702343][ T8655] ? find_held_lock+0x2b/0x80 [ 225.702368][ T8655] ? futex_private_hash_put+0x107/0x1c0 [ 225.702390][ T8655] kernel_clone+0xfc/0x9a0 [ 225.702408][ T8655] ? __pfx_kernel_clone+0x10/0x10 [ 225.702436][ T8655] __do_sys_clone+0xd9/0x120 [ 225.702453][ T8655] ? __pfx___do_sys_clone+0x10/0x10 [ 225.702469][ T8655] ? __fget_files+0x21f/0x3d0 [ 225.702497][ T8655] do_syscall_64+0x106/0xf80 [ 225.702517][ T8655] ? clear_bhb_loop+0x40/0x90 [ 225.702535][ T8655] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 225.702550][ T8655] RIP: 0033:0x7ff5fcf9c799 [ 225.702563][ T8655] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 225.702577][ T8655] RSP: 002b:00007ff5fde69fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 225.702591][ T8655] RAX: ffffffffffffffda RBX: 00007ff5fd215fa0 RCX: 00007ff5fcf9c799 [ 225.702600][ T8655] RDX: 0000000000000000 RSI: 0000000000000300 RDI: 0000000000000011 [ 225.702608][ T8655] RBP: 00007ff5fd032c99 R08: 0000000000000000 R09: 0000000000000000 [ 225.702617][ T8655] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 225.702625][ T8655] R13: 00007ff5fd216038 R14: 00007ff5fd215fa0 R15: 00007fffa6d4f098 [ 225.702645][ T8655] [ 226.036405][ T8660] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input14 [ 227.606952][ T8687] FAULT_INJECTION: forcing a failure. [ 227.606952][ T8687] name failslab, interval 1, probability 0, space 0, times 0 [ 227.654284][ T8687] CPU: 1 UID: 0 PID: 8687 Comm: syz.1.569 Tainted: G L syzkaller #0 PREEMPT(full) [ 227.654331][ T8687] Tainted: [L]=SOFTLOCKUP [ 227.654341][ T8687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 227.654354][ T8687] Call Trace: [ 227.654363][ T8687] [ 227.654373][ T8687] dump_stack_lvl+0x100/0x190 [ 227.654420][ T8687] should_fail_ex.cold+0x5/0xa [ 227.654453][ T8687] should_failslab+0xc2/0x120 [ 227.654483][ T8687] __kmalloc_cache_noprof+0x7a/0x6f0 [ 227.654518][ T8687] ? landlock_init_hierarchy_log+0xa9/0x820 [ 227.654562][ T8687] landlock_init_hierarchy_log+0xa9/0x820 [ 227.654594][ T8687] ? inherit_tree+0x197/0x2d0 [ 227.654622][ T8687] landlock_merge_ruleset+0x67b/0x830 [ 227.654666][ T8687] __do_sys_landlock_restrict_self+0x2a6/0x9e0 [ 227.654718][ T8687] do_syscall_64+0x106/0xf80 [ 227.654759][ T8687] ? clear_bhb_loop+0x40/0x90 [ 227.654795][ T8687] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 227.654824][ T8687] RIP: 0033:0x7f7f5db9c799 [ 227.654847][ T8687] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 227.654874][ T8687] RSP: 002b:00007f7f5eaa4028 EFLAGS: 00000246 ORIG_RAX: 00000000000001be [ 227.654901][ T8687] RAX: ffffffffffffffda RBX: 00007f7f5de16090 RCX: 00007f7f5db9c799 [ 227.654919][ T8687] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000005 [ 227.654936][ T8687] RBP: 00007f7f5dc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 227.654952][ T8687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 227.654969][ T8687] R13: 00007f7f5de16128 R14: 00007f7f5de16090 R15: 00007ffe992f0d28 [ 227.655004][ T8687] [ 228.745004][ T8706] can: request_module (can-proto-0) failed. [ 230.208008][ T8722] Process accounting resumed [ 231.332874][ T8737] netlink: 8 bytes leftover after parsing attributes in process `syz.2.578'. [ 232.767079][ T8739] Process accounting resumed [ 232.903262][ T8752] ubi0: detaching mtd0 [ 232.916344][ T8752] ubi0: mtd0 is detached [ 232.971101][ T8751] ubi0: attaching mtd0 [ 233.008343][ T8751] ubi0: scanning is finished [ 233.052725][ T8751] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 233.334446][ T8751] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 236.381110][ T8373] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 236.674120][ T8786] netlink: 20 bytes leftover after parsing attributes in process `syz.1.587'. [ 246.377362][ T8925] FAULT_INJECTION: forcing a failure. [ 246.377362][ T8925] name failslab, interval 1, probability 0, space 0, times 0 [ 246.434291][ T8925] CPU: 1 UID: 0 PID: 8925 Comm: syz.3.613 Tainted: G L syzkaller #0 PREEMPT(full) [ 246.434317][ T8925] Tainted: [L]=SOFTLOCKUP [ 246.434322][ T8925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 246.434333][ T8925] Call Trace: [ 246.434339][ T8925] [ 246.434345][ T8925] dump_stack_lvl+0x100/0x190 [ 246.434374][ T8925] should_fail_ex.cold+0x5/0xa [ 246.434392][ T8925] should_failslab+0xc2/0x120 [ 246.434408][ T8925] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 246.434430][ T8925] ? copy_net_ns+0xe8/0x7c0 [ 246.434447][ T8925] copy_net_ns+0xe8/0x7c0 [ 246.434459][ T8925] ? copy_cgroup_ns+0x71/0x970 [ 246.434478][ T8925] create_new_namespaces+0x3ea/0xac0 [ 246.434498][ T8925] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 246.434515][ T8925] ksys_unshare+0x473/0xad0 [ 246.434535][ T8925] ? __pfx_ksys_unshare+0x10/0x10 [ 246.434559][ T8925] __x64_sys_unshare+0x31/0x40 [ 246.434576][ T8925] do_syscall_64+0x106/0xf80 [ 246.434600][ T8925] ? clear_bhb_loop+0x40/0x90 [ 246.434618][ T8925] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 246.434634][ T8925] RIP: 0033:0x7f67bc19c799 [ 246.434647][ T8925] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 246.434661][ T8925] RSP: 002b:00007f67bd095028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 246.434678][ T8925] RAX: ffffffffffffffda RBX: 00007f67bc415fa0 RCX: 00007f67bc19c799 [ 246.434688][ T8925] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 246.434696][ T8925] RBP: 00007f67bc232c99 R08: 0000000000000000 R09: 0000000000000000 [ 246.434705][ T8925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 246.434714][ T8925] R13: 00007f67bc416038 R14: 00007f67bc415fa0 R15: 00007ffde0c4bda8 [ 246.434733][ T8925] [ 247.294172][ T8936] random: crng reseeded on system resumption [ 247.464724][ T8936] netlink: 4 bytes leftover after parsing attributes in process `syz.2.615'. [ 250.835520][ T8373] Bluetooth: hci3: unexpected subevent 0x18 length: 123 > 19 [ 250.843029][ T8373] Bluetooth: hci3: Unable to find connection for dst f9:56:cc:cc:70:a9 sid 0x00 [ 250.860230][ T9010] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.16777216.0), cmd(12) [ 252.035889][ T9021] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 252.056523][ T9021] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 252.089387][ T9021] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 252.115398][ T9021] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 252.909677][ T9043] misc userio: Invalid payload size [ 253.592197][ T8373] Bluetooth: hci0: command 0x0c1a tx timeout [ 253.689425][ T9053] zswap: compressor not available [ 253.826842][ T9063] netlink: 4 bytes leftover after parsing attributes in process `syz.0.639'. [ 253.836315][ T9063] netlink: 354 bytes leftover after parsing attributes in process `syz.0.639'. [ 254.062602][ T8373] Bluetooth: hci1: command 0x0c1a tx timeout [ 254.067774][ T9065] netlink: 8 bytes leftover after parsing attributes in process `syz.1.640'. [ 254.145634][ T8373] Bluetooth: hci3: command 0x0c1a tx timeout [ 254.151683][ T8373] Bluetooth: hci2: command 0x0c1a tx timeout [ 254.743113][ T9079] netlink: 8 bytes leftover after parsing attributes in process `syz.2.643'. [ 255.108364][ T9085] zswap: compressor not available [ 255.668403][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.674942][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 260.243581][ T9170] [U] [ 260.246304][ T9170] [U] [ 260.248981][ T9170] [U] [ 260.251653][ T9170] [U] [ 260.362464][ T9170] [U] [ 260.365188][ T9170] [U] [ 260.367868][ T9170] [U] [ 260.370543][ T9170] [U] [ 260.374971][ T9170] [U] [ 260.377677][ T9170] [U] [ 260.380356][ T9170] [U] [ 260.383041][ T9170] [U] [ 260.392955][ T9170] [U] [ 260.395661][ T9170] [U] [ 260.398359][ T9170] [U] [ 260.401032][ T9170] [U] [ 260.406829][ T9170] [U] [ 260.409559][ T9170] [U] [ 260.412282][ T9170] [U] [ 260.414994][ T9170] [U] [ 260.418416][ T9170] [U] [ 260.421139][ T9170] [U] [ 260.423854][ T9170] [U] [ 260.426560][ T9170] [U] [ 260.443525][ T9170] [U] [ 260.446258][ T9170] [U] [ 260.448970][ T9170] [U] [ 260.451770][ T9170] [U] [ 260.455890][ T9170] [U] [ 260.458615][ T9170] [U] [ 260.461332][ T9170] [U] [ 260.464048][ T9170] [U] [ 260.467751][ T9170] [U] [ 260.470476][ T9170] [U] [ 260.473191][ T9170] [U] [ 260.475880][ T9170] [U] [ 260.601946][ T9170] [U] [ 260.604647][ T9170] [U] [ 260.607348][ T9170] [U] [ 260.610043][ T9170] [U] [ 260.647712][ T9170] [U] [ 260.650466][ T9170] [U] [ 260.653292][ T9170] [U] [ 260.656005][ T9170] [U] [ 260.737042][ T9170] [U] [ 260.739804][ T9170] [U] [ 260.742529][ T9170] [U] [ 260.745251][ T9170] [U] [ 260.768604][ T9170] [U] [ 260.771340][ T9170] [U] [ 260.774057][ T9170] [U] [ 260.776746][ T9170] [U] [ 260.849669][ T9170] [U] [ 260.852389][ T9170] [U] [ 260.855097][ T9170] [U] [ 260.857790][ T9170] [U] [ 260.947127][ T9170] [U] [ 260.949858][ T9170] [U] [ 260.952534][ T9170] [U] [ 260.955233][ T9170] [U] [ 261.054376][ T9170] [U] [ 261.057106][ T9170] [U] [ 261.059783][ T9170] [U] [ 261.062460][ T9170] [U] [ 261.157363][ T9170] [U] [ 261.160096][ T9170] [U] [ 261.162813][ T9170] [U] [ 261.165525][ T9170] [U] [ 261.205378][ T9170] [U] [ 261.208106][ T9170] [U] [ 261.210799][ T9170] [U] [ 261.213473][ T9170] [U] [ 261.217256][ T9170] [U] [ 261.219962][ T9170] [U] [ 261.222635][ T9170] [U] [ 261.225307][ T9170] [U] [ 261.230207][ T9170] [U] [ 261.419417][ T9170] Process accounting paused [ 261.767537][ T9213] Kernel: The 'panic_print' parameter is now deprecated. Please use 'panic_sys_info' and 'panic_console_replay' instead. [ 262.175571][ T9223] FAULT_INJECTION: forcing a failure. [ 262.175571][ T9223] name failslab, interval 1, probability 0, space 0, times 0 [ 262.224891][ T9223] CPU: 1 UID: 0 PID: 9223 Comm: syz.3.676 Tainted: G L syzkaller #0 PREEMPT(full) [ 262.224934][ T9223] Tainted: [L]=SOFTLOCKUP [ 262.224944][ T9223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 262.224959][ T9223] Call Trace: [ 262.224967][ T9223] [ 262.224976][ T9223] dump_stack_lvl+0x100/0x190 [ 262.225023][ T9223] should_fail_ex.cold+0x5/0xa [ 262.225059][ T9223] should_failslab+0xc2/0x120 [ 262.225088][ T9223] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 262.225127][ T9223] ? __request_module+0x2d5/0x6c0 [ 262.225167][ T9223] kstrdup+0x51/0xe0 [ 262.225208][ T9223] __request_module+0x2d5/0x6c0 [ 262.225242][ T9223] ? __pfx___request_module+0x10/0x10 [ 262.225288][ T9223] ? __get_fs_type+0x12c/0x170 [ 262.225316][ T9223] ? __get_fs_type+0x12c/0x170 [ 262.225357][ T9223] get_fs_type+0xd7/0x190 [ 262.225389][ T9223] __x64_sys_fsopen+0xca/0x220 [ 262.225435][ T9223] do_syscall_64+0x106/0xf80 [ 262.225473][ T9223] ? clear_bhb_loop+0x40/0x90 [ 262.225507][ T9223] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 262.225536][ T9223] RIP: 0033:0x7f67bc19c799 [ 262.225559][ T9223] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 262.225587][ T9223] RSP: 002b:00007f67bd074028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae [ 262.225614][ T9223] RAX: ffffffffffffffda RBX: 00007f67bc416090 RCX: 00007f67bc19c799 [ 262.225630][ T9223] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 262.225643][ T9223] RBP: 00007f67bc232c99 R08: 0000000000000000 R09: 0000000000000000 [ 262.225658][ T9223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 262.225673][ T9223] R13: 00007f67bc416128 R14: 00007f67bc416090 R15: 00007ffde0c4bda8 [ 262.225716][ T9223] [ 263.737315][ T9241] Process accounting paused [ 267.186451][ T9292] zswap: compressor  not available [ 267.240931][ T9307] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(1) [ 267.536453][ T9315] netlink: 4 bytes leftover after parsing attributes in process `syz.1.695'. [ 267.897091][ T9332] netlink: 350 bytes leftover after parsing attributes in process `syz.1.697'. [ 270.198064][ T9364] bond0: option arp_validate: invalid value () [ 271.873900][ T9458] netlink: 16 bytes leftover after parsing attributes in process `syz.1.718'. [ 273.334730][ T9478] ================================================================== [ 273.334755][ T9478] BUG: KASAN: slab-out-of-bounds in fbcon_prepare_logo+0x94e/0xc60 [ 273.334793][ T9478] Read of size 256 at addr ffff8880779e7fa0 by task syz.2.721/9478 [ 273.334821][ T9478] [ 273.334836][ T9478] CPU: 1 UID: 0 PID: 9478 Comm: syz.2.721 Tainted: G L syzkaller #0 PREEMPT(full) [ 273.334873][ T9478] Tainted: [L]=SOFTLOCKUP [ 273.334881][ T9478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 273.334895][ T9478] Call Trace: [ 273.334904][ T9478] [ 273.334913][ T9478] dump_stack_lvl+0x100/0x190 [ 273.334955][ T9478] print_report+0x156/0x4c9 [ 273.334992][ T9478] ? __virt_addr_valid+0x81/0x620 [ 273.335024][ T9478] ? __phys_addr+0xe8/0x180 [ 273.335059][ T9478] ? fbcon_prepare_logo+0x94e/0xc60 [ 273.335087][ T9478] kasan_report+0xdf/0x1e0 [ 273.335116][ T9478] ? fbcon_prepare_logo+0x94e/0xc60 [ 273.335148][ T9478] kasan_check_range+0x10f/0x1e0 [ 273.335181][ T9478] __asan_memcpy+0x23/0x60 [ 273.335216][ T9478] fbcon_prepare_logo+0x94e/0xc60 [ 273.335260][ T9478] fbcon_init+0x10a0/0x1820 [ 273.335293][ T9478] visual_init+0x320/0x620 [ 273.335326][ T9478] do_bind_con_driver.isra.0+0x636/0x9c0 [ 273.335368][ T9478] store_bind+0x609/0x730 [ 273.335407][ T9478] ? __pfx_store_bind+0x10/0x10 [ 273.335439][ T9478] dev_attr_store+0x58/0x80 [ 273.335469][ T9478] ? __pfx_dev_attr_store+0x10/0x10 [ 273.335498][ T9478] sysfs_kf_write+0xf2/0x150 [ 273.335533][ T9478] kernfs_fop_write_iter+0x3e0/0x5f0 [ 273.335560][ T9478] ? __pfx_sysfs_kf_write+0x10/0x10 [ 273.335594][ T9478] iter_file_splice_write+0x830/0x10a0 [ 273.335631][ T9478] ? __pfx_iter_file_splice_write+0x10/0x10 [ 273.335662][ T9478] ? __pfx_copy_splice_read+0x10/0x10 [ 273.335715][ T9478] ? __pfx_iter_file_splice_write+0x10/0x10 [ 273.335744][ T9478] direct_splice_actor+0x192/0x6c0 [ 273.335787][ T9478] splice_direct_to_actor+0x345/0xa30 [ 273.335815][ T9478] ? __pfx_direct_splice_actor+0x10/0x10 [ 273.335859][ T9478] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 273.335891][ T9478] do_splice_direct+0x174/0x240 [ 273.335916][ T9478] ? __pfx_do_splice_direct+0x10/0x10 [ 273.335943][ T9478] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 273.335987][ T9478] ? rw_verify_area+0xce/0x6d0 [ 273.336026][ T9478] do_sendfile+0xadc/0xe20 [ 273.336069][ T9478] ? __pfx_do_sendfile+0x10/0x10 [ 273.336112][ T9478] ? __x64_sys_futex+0x34f/0x4d0 [ 273.336146][ T9478] ? __x64_sys_futex+0x358/0x4d0 [ 273.336182][ T9478] __x64_sys_sendfile64+0x1d8/0x220 [ 273.336213][ T9478] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 273.336258][ T9478] do_syscall_64+0x106/0xf80 [ 273.336296][ T9478] ? clear_bhb_loop+0x40/0x90 [ 273.336329][ T9478] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 273.336359][ T9478] RIP: 0033:0x7ff5fcf9c799 [ 273.336382][ T9478] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 273.336410][ T9478] RSP: 002b:00007ff5fde49028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 273.336437][ T9478] RAX: ffffffffffffffda RBX: 00007ff5fd216090 RCX: 00007ff5fcf9c799 [ 273.336456][ T9478] RDX: 0000000000000000 RSI: 000000000000000c RDI: 0000000000000007 [ 273.336473][ T9478] RBP: 00007ff5fd032c99 R08: 0000000000000000 R09: 0000000000000000 [ 273.336492][ T9478] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 273.336509][ T9478] R13: 00007ff5fd216128 R14: 00007ff5fd216090 R15: 00007fffa6d4f098 [ 273.336538][ T9478] [ 273.336547][ T9478] [ 273.336555][ T9478] Allocated by task 9478: [ 273.336574][ T9478] kasan_save_stack+0x30/0x50 [ 273.336616][ T9478] kasan_save_track+0x14/0x30 [ 273.336655][ T9478] __kasan_kmalloc+0xaa/0xb0 [ 273.336693][ T9478] __kmalloc_noprof+0x301/0x850 [ 273.336730][ T9478] vc_do_resize+0x1da/0x10f0 [ 273.336757][ T9478] fbcon_init+0x10ba/0x1820 [ 273.336782][ T9478] visual_init+0x320/0x620 [ 273.336808][ T9478] do_bind_con_driver.isra.0+0x636/0x9c0 [ 273.336844][ T9478] store_bind+0x609/0x730 [ 273.336875][ T9478] dev_attr_store+0x58/0x80 [ 273.336903][ T9478] sysfs_kf_write+0xf2/0x150 [ 273.336932][ T9478] kernfs_fop_write_iter+0x3e0/0x5f0 [ 273.336959][ T9478] iter_file_splice_write+0x830/0x10a0 [ 273.336984][ T9478] direct_splice_actor+0x192/0x6c0 [ 273.337024][ T9478] splice_direct_to_actor+0x345/0xa30 [ 273.337049][ T9478] do_splice_direct+0x174/0x240 [ 273.337072][ T9478] do_sendfile+0xadc/0xe20 [ 273.337108][ T9478] __x64_sys_sendfile64+0x1d8/0x220 [ 273.337136][ T9478] do_syscall_64+0x106/0xf80 [ 273.337171][ T9478] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 273.337197][ T9478] [ 273.337204][ T9478] The buggy address belongs to the object at ffff8880779e7000 [ 273.337204][ T9478] which belongs to the cache kmalloc-2k of size 2048 [ 273.337226][ T9478] The buggy address is located 2464 bytes to the right of [ 273.337226][ T9478] allocated 1536-byte region [ffff8880779e7000, ffff8880779e7600) [ 273.337261][ T9478] [ 273.337268][ T9478] The buggy address belongs to the physical page: [ 273.337287][ T9478] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x779e0 [ 273.337317][ T9478] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 273.337340][ T9478] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 273.337373][ T9478] page_type: f5(slab) [ 273.337399][ T9478] raw: 00fff00000000040 ffff88813fe3d000 dead000000000100 dead000000000122 [ 273.337429][ T9478] raw: 0000000000000000 0000000800080008 00000000f5000000 0000000000000000 [ 273.337456][ T9478] head: 00fff00000000040 ffff88813fe3d000 dead000000000100 dead000000000122 [ 273.337481][ T9478] head: 0000000000000000 0000000800080008 00000000f5000000 0000000000000000 [ 273.337507][ T9478] head: 00fff00000000003 ffffea0001de7801 00000000ffffffff 00000000ffffffff [ 273.337532][ T9478] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 273.337548][ T9478] page dumped because: kasan: bad access detected [ 273.337571][ T9478] page_owner tracks the page as allocated [ 273.337580][ T9478] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5829, tgid 5829 (syz-executor), ts 79979386778, free_ts 79967833041 [ 273.337627][ T9478] post_alloc_hook+0x153/0x170 [ 273.337660][ T9478] get_page_from_freelist+0x111d/0x3140 [ 273.337697][ T9478] __alloc_frozen_pages_noprof+0x27c/0x2ba0 [ 273.337734][ T9478] new_slab+0xa6/0x6b0 [ 273.337763][ T9478] refill_objects+0x26b/0x400 [ 273.337797][ T9478] __pcs_replace_empty_main+0x1ab/0x660 [ 273.337834][ T9478] __kmalloc_cache_noprof+0x493/0x6f0 [ 273.337867][ T9478] rtnl_newlink+0x126/0x2380 [ 273.337902][ T9478] rtnetlink_rcv_msg+0x95e/0xe90 [ 273.337937][ T9478] netlink_rcv_skb+0x159/0x420 [ 273.337974][ T9478] netlink_unicast+0x5aa/0x870 [ 273.338011][ T9478] netlink_sendmsg+0x8b0/0xda0 [ 273.338048][ T9478] __sys_sendto+0x468/0x4b0 [ 273.338079][ T9478] __x64_sys_sendto+0xe0/0x1c0 [ 273.338110][ T9478] do_syscall_64+0x106/0xf80 [ 273.338144][ T9478] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 273.338171][ T9478] page last free pid 5827 tgid 5827 stack trace: [ 273.338185][ T9478] __free_frozen_pages+0x7e1/0x10d0 [ 273.338217][ T9478] qlist_free_all+0x47/0xe0 [ 273.338258][ T9478] kasan_quarantine_reduce+0x1a0/0x1f0 [ 273.338298][ T9478] __kasan_slab_alloc+0x69/0x90 [ 273.338322][ T9478] kmem_cache_alloc_node_noprof+0x25a/0x6f0 [ 273.338362][ T9478] __alloc_skb+0x140/0x710 [ 273.338395][ T9478] netlink_alloc_large_skb+0x69/0x150 [ 273.338434][ T9478] netlink_sendmsg+0x680/0xda0 [ 273.338472][ T9478] __sys_sendto+0x468/0x4b0 [ 273.338503][ T9478] __x64_sys_sendto+0xe0/0x1c0 [ 273.338534][ T9478] do_syscall_64+0x106/0xf80 [ 273.338568][ T9478] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 273.338595][ T9478] [ 273.338601][ T9478] Memory state around the buggy address: [ 273.338615][ T9478] ffff8880779e7e80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 273.338634][ T9478] ffff8880779e7f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 273.338654][ T9478] >ffff8880779e7f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 273.338669][ T9478] ^ [ 273.338683][ T9478] ffff8880779e8000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 273.338703][ T9478] ffff8880779e8080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 273.338718][ T9478] ================================================================== [ 273.373138][ T9478] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 273.373166][ T9478] CPU: 1 UID: 0 PID: 9478 Comm: syz.2.721 Tainted: G L syzkaller #0 PREEMPT(full) [ 273.373208][ T9478] Tainted: [L]=SOFTLOCKUP [ 273.373219][ T9478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 273.373236][ T9478] Call Trace: [ 273.373254][ T9478] [ 273.373265][ T9478] dump_stack_lvl+0x100/0x190 [ 273.373311][ T9478] vpanic+0x552/0x970 [ 273.373337][ T9478] ? __pfx_vpanic+0x10/0x10 [ 273.373369][ T9478] ? fbcon_prepare_logo+0x94e/0xc60 [ 273.373397][ T9478] panic+0xd1/0xe0 [ 273.373421][ T9478] ? __pfx_panic+0x10/0x10 [ 273.373449][ T9478] ? fbcon_prepare_logo+0x94e/0xc60 [ 273.373476][ T9478] ? preempt_schedule_common+0x42/0xc0 [ 273.373518][ T9478] check_panic_on_warn.cold+0x19/0x34 [ 273.373548][ T9478] end_report.part.0+0x3a/0x90 [ 273.373585][ T9478] kasan_report.cold+0xe/0x18 [ 273.373624][ T9478] ? fbcon_prepare_logo+0x94e/0xc60 [ 273.373656][ T9478] kasan_check_range+0x10f/0x1e0 [ 273.373689][ T9478] __asan_memcpy+0x23/0x60 [ 273.373725][ T9478] fbcon_prepare_logo+0x94e/0xc60 [ 273.373759][ T9478] fbcon_init+0x10a0/0x1820 [ 273.373791][ T9478] visual_init+0x320/0x620 [ 273.373824][ T9478] do_bind_con_driver.isra.0+0x636/0x9c0 [ 273.373866][ T9478] store_bind+0x609/0x730 [ 273.373904][ T9478] ? __pfx_store_bind+0x10/0x10 [ 273.373937][ T9478] dev_attr_store+0x58/0x80 [ 273.373967][ T9478] ? __pfx_dev_attr_store+0x10/0x10 [ 273.373996][ T9478] sysfs_kf_write+0xf2/0x150 [ 273.374033][ T9478] kernfs_fop_write_iter+0x3e0/0x5f0 [ 273.374061][ T9478] ? __pfx_sysfs_kf_write+0x10/0x10 [ 273.374096][ T9478] iter_file_splice_write+0x830/0x10a0 [ 273.374134][ T9478] ? __pfx_iter_file_splice_write+0x10/0x10 [ 273.374166][ T9478] ? __pfx_copy_splice_read+0x10/0x10 [ 273.374217][ T9478] ? __pfx_iter_file_splice_write+0x10/0x10 [ 273.374254][ T9478] direct_splice_actor+0x192/0x6c0 [ 273.374301][ T9478] splice_direct_to_actor+0x345/0xa30 [ 273.374330][ T9478] ? __pfx_direct_splice_actor+0x10/0x10 [ 273.374377][ T9478] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 273.374410][ T9478] do_splice_direct+0x174/0x240 [ 273.374438][ T9478] ? __pfx_do_splice_direct+0x10/0x10 [ 273.374465][ T9478] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 273.374509][ T9478] ? rw_verify_area+0xce/0x6d0 [ 273.374548][ T9478] do_sendfile+0xadc/0xe20 [ 273.374591][ T9478] ? __pfx_do_sendfile+0x10/0x10 [ 273.374633][ T9478] ? __x64_sys_futex+0x34f/0x4d0 [ 273.374665][ T9478] ? __x64_sys_futex+0x358/0x4d0 [ 273.374700][ T9478] __x64_sys_sendfile64+0x1d8/0x220 [ 273.374731][ T9478] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 273.374767][ T9478] do_syscall_64+0x106/0xf80 [ 273.374804][ T9478] ? clear_bhb_loop+0x40/0x90 [ 273.374835][ T9478] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 273.374863][ T9478] RIP: 0033:0x7ff5fcf9c799 [ 273.374884][ T9478] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 273.374911][ T9478] RSP: 002b:00007ff5fde49028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 273.374935][ T9478] RAX: ffffffffffffffda RBX: 00007ff5fd216090 RCX: 00007ff5fcf9c799 [ 273.374956][ T9478] RDX: 0000000000000000 RSI: 000000000000000c RDI: 0000000000000007 [ 273.374975][ T9478] RBP: 00007ff5fd032c99 R08: 0000000000000000 R09: 0000000000000000 [ 273.374992][ T9478] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 273.375010][ T9478] R13: 00007ff5fd216128 R14: 00007ff5fd216090 R15: 00007fffa6d4f098 [ 273.375039][ T9478] [ 273.375300][ T9478] Kernel Offset: disabled