last executing test programs: 3m19.844299785s ago: executing program 2 (id=1436): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) madvise$auto(0x0, 0xfffffffffffeffff, 0x15) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) pselect6$auto(0x2000000, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd) mmap$auto(0x0, 0x2020009, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000) unshare$auto(0x40000080) r1 = openat2$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0) move_mount$auto(r1, 0x0, r0, 0x0, 0x9) 3m9.324883216s ago: executing program 2 (id=1469): socket(0xa, 0x6, 0x3b) (async) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) (async) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r0, 0x8000) (async, rerun: 64) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async, rerun: 64) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async, rerun: 64) r1 = socket(0x10, 0x2, 0x0) (async, rerun: 64) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_REPORT_PMSR(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB="6e485b665b07ea54b2ceec0576dbc599994aff96494d2a0d7699acf589a8ea9f94b3d1e8630bfd5335dc542913e46748d9252caba23ba894336bef609670bf", @ANYRESOCT=r0, @ANYBLOB="e73625bd7000fddbdf250b00000008001300070000000400110004000b00"], 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/ptp/ptp0/max_vclocks\x00', 0x103841, 0x0) (async) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) (async) write$auto(0x3, 0x0, 0x5c8) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) openat$auto_tk_debug_sleep_time_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async, rerun: 64) rt_sigqueueinfo$auto(0x0, 0x9, &(0x7f00000000c0)={@_si_pad}) (async, rerun: 64) r2 = socket(0xa, 0x2, 0x88) (async, rerun: 32) close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32) shmget$auto(0x8, 0x10565, 0x7ff) shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa) (async, rerun: 64) sync_file_range$auto(r2, 0xfffffffffffffe95, 0x9, 0x9) (rerun: 64) shmctl$auto(0x0, 0x0, 0xfffffffffffffffd) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xc0000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x80100, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0x0) (async) madvise$auto(0x0, 0x20499d, 0x9) (async) shmat$auto(0x0, &(0x7f0000000000)='(\x00', 0xfffffffb) 3m6.932047024s ago: executing program 2 (id=1478): socket(0xa, 0x801, 0x84) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) openat$auto_ext4_dir_operations_ext4(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/bluetooth/hci4/power\x00', 0x20100, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0xfffffffd, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008) r1 = socket(0x15, 0x3, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200"], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_CREATE_VM(r0, 0xc040aed5, 0x0) 3m0.688999894s ago: executing program 2 (id=1488): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r0, 0x4bfa, 0x1) r1 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fcntl$auto(r1, 0x400, 0x1) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_PROTOCOL_FEATURES(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r2, 0x20, 0x70bd26, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000850}, 0xc08c) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) r3 = socket(0x2, 0x1, 0x0) getsockopt$auto(r3, 0x0, 0x63, 0x0, &(0x7f00000000c0)=0x1e) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = socket(0x2, 0x1, 0x106) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) sysfs$auto(0x2, 0x23, 0x0) r6 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r6, 0x0, 0x4) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) shutdown$auto(0x200000003, 0x2) sendmsg$auto_NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="a001ee", @ANYRES16=r2, @ANYBLOB], 0x1a0}, 0x1, 0x0, 0x0, 0x4040004}, 0x24048000) r7 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000300), r4) sendmsg$auto_IPVS_CMD_DEL_DEST(r5, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000480)={&(0x7f0000000340)={0xc8, r7, 0xb09, 0x70bd26, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DEST={0xb2, 0x2, 0x0, 0x1, [@typed={0x6d, 0xdd, 0x0, 0x0, @binary="c7e037f9bdd1d3b7c41af88f2a838cec5ba30911b07c06ed837d13d1c165fbd9b06a51171b57bc357fafa4c373d127ff36780a438e3840e63b0674ac5770aabf3bbe5ac696511cb995415bbb2bddbf1c3df385810c218a3cd1ac0573a14fd8ca299abbc437cff9709f"}, @typed={0x8, 0x3, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @generic, @generic="f22ce64a324d7a1a1b7b8d17bd299a6cacf584ddf1b47506f2274b63d8e6ce7bfca88904097269", @generic="72bd3b32b88467843cb1b3ad4504b6"]}]}, 0xc8}, 0x1, 0x0, 0x0, 0xc000}, 0x20000000) 2m54.324610779s ago: executing program 2 (id=1495): socket$nl_generic(0x10, 0x3, 0x10) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01012bbd7000fddbdf250d000000050007"], 0x1c}, 0x1, 0x0, 0x0, 0x60040440}, 0x800) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0) r0 = epoll_create$auto(0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace_marker_raw\x00', 0x401, 0x0) write$auto(0x3, 0x0, 0x5c8) statmount$auto(0x0, &(0x7f0000000180)={0x770, 0xfffffffe, 0x8, 0x4, 0x4005, 0x0, 0x5, 0x400, 0x3, 0x9, 0x6, 0x6, 0x4, 0x11ffffffffffb, 0xb2, 0x2, 0x6, 0x10, 0x80, 0x7ff, 0x8000, 0x1, 0x1, 0x202, 0x9, 0xbca7, 0x4, 0x0, 0x0, 0x0, 0x694, [0x2, 0x6, 0x0, 0x5, 0x0, 0x0, 0x20000000000, 0x0, 0x4, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffc01, 0x7fffffff, 0xfffffffffffffffb, 0x0, 0x9, 0x2000000, 0xfffffffffffffffe, 0x0, 0x8, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x1, 0x0, 0x7fffffff, 0x0, 0x0, 0x20000000000000, 0x0, 0x1000000000000200, 0x0, 0x400, 0x96, 0x4000000000009, 0x4, 0xe17, 0x0, 0x6]}, 0x1fe, 0x1) r1 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) ioprio_get$auto_IOPRIO_WHO_PROCESS(0x1, 0x0) writev$auto(r0, &(0x7f0000000100)={&(0x7f00000000c0), 0x80000000}, 0x9) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x480001, 0x0) write$auto(r2, 0x0, 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x200007, 0x19) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) timerfd_gettime$auto(0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x40009, 0x3, 0x19, 0xffffffffffffffff, 0x28000) madvise$auto(0x0, 0x2003f0, 0x15) ioctl$auto__ctl_fops_dm_ioctl(r1, 0xfffffffffffffd03, &(0x7f00000001c0)) 2m48.909975949s ago: executing program 2 (id=1499): read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000180)=""/147, 0x93) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_SW_SYNC_GET_DEADLINE(0xffffffffffffffff, 0xc0105702, 0x0) socket(0x10, 0x2, 0xc) unshare$auto(0x40000080) bind$auto(0xffffffffffffffff, 0x0, 0x200) mmap$auto(0x0, 0x20008, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x1d, 0x2, 0x6) r1 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0) bind$auto(r0, &(0x7f0000000040)=@can={0x1d, 0x0, 0xfd}, 0x6a) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x21}}, 0x40) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) 2m33.675429218s ago: executing program 32 (id=1499): read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000180)=""/147, 0x93) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_SW_SYNC_GET_DEADLINE(0xffffffffffffffff, 0xc0105702, 0x0) socket(0x10, 0x2, 0xc) unshare$auto(0x40000080) bind$auto(0xffffffffffffffff, 0x0, 0x200) mmap$auto(0x0, 0x20008, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x1d, 0x2, 0x6) r1 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0) bind$auto(r0, &(0x7f0000000040)=@can={0x1d, 0x0, 0xfd}, 0x6a) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x21}}, 0x40) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) 10.075904151s ago: executing program 3 (id=1936): mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/cifs/cifsFYI\x00', 0x40c01, 0x0) r0 = socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) mmap$auto(0x9, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@l2={0x1f, 0x81, @any, 0xb44, 0x2}, 0x53) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000) r2 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_IEEE802154_SCAN_REQ(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000128bd7000ffdbdf250900000005002e000f000000050025004000953e6d150000a838f802b063dbe14abfe9b494e992b8b44d6e25940e4082cca1fd8fdd1c471265b171536fdc07aed5903951916a0bf05bba9ec58a00114aca559497b60eb95e567eeac57fbaf840e9fbcf6f03b7f32cf6c517804cd507e13683749fbd924adfe830e3a36e78b284f47ce7bee30ef62e"], 0x24}, 0x1, 0x0, 0x0, 0x2404c088}, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/asound/card1/pcm0p/sub3/info\x00', 0x0, 0x0) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x0, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, &(0x7f0000000000)) mmap$auto(0x0, 0x0, 0x400008000, 0x9b72, r1, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x2, 0x1, 0x84) setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28) sendto$auto(0x3, 0x0, 0x2000f, 0x101, &(0x7f0000000000)=@in={0x2, 0x4e22, @rand_addr=0x64010100}, 0x1c) listen$auto(0x3, 0x81) accept$auto(0x3, 0x0, 0x0) read$auto(r3, 0x0, 0x8) mmap$auto(0x0, 0x40000c, 0xdf, 0x18, 0xffffffffffffffff, 0x7ffc) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) 8.810947059s ago: executing program 3 (id=1940): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000500)='/proc/sys/fs/xfs/stats_clear\x00', 0xc80, 0x0) write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f0000000040), 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'}) madvise$auto(0x0, 0xffffffffffff0005, 0x19) munlock$auto(0xf, 0x6) 8.006040968s ago: executing program 0 (id=1943): r0 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)={0xfffffffffffffda7, 0x0, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x0, 0x3b, 0xeb57}, @BATADV_ATTR_TT_TTVN={0x5, 0x11, 0xee}]}, 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x4008800) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)={0x14, 0x0, 0x1, 0x70bd2c, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' '], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r1, 0x4b63, r1) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_CQM(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16, @ANYBLOB="010026b29d4669aa39733d00000004005e8008000300", @ANYRES32=r2], 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x40800) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000440)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1bf01e92497e7357}, 0xc, &(0x7f00000001c0)={&(0x7f0000000300)={0x118, 0x0, 0x200, 0x70bd28, 0x25dfdbff, {}, [@NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xcc3}, @NL80211_ATTR_MNTR_FLAGS={0xeb, 0x17, "030920d45b8c42662f0350e0d4296d461821b5aff74301c102c3345c28ee5877002afcf4c7ed3622a415af7085a13e1862a6bde80176b407c7a1f1c6f767ea158995cdd5ef3ed79de1ed5c5981b525957f4a0b70e836be4959b60e5f50579c4ced4757f9b1951d057128f1e6ec04a90eafd3daae41700344194a1e735ad70fdb59897a850204a6ab82421854aa647faf0acbf93707dc215d31c28f8cd84b792cf0a14e6581c38c050891969fcc00a7869946e51ac9cc544a5f72db86484c9b3f8ce5492df69f77216b9b4fb71f62ced833f040467be8819508c39d769d7f9bef72a4cc3fd406e2"}, @NL80211_ATTR_COLOR_CHANGE_COLOR={0x5, 0x130, 0xc}, @NL80211_ATTR_RADAR_BACKGROUND={0x4}]}, 0x118}, 0x1, 0x0, 0x0, 0x24000051}, 0x80) r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r3, 0x0, 0x8) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000240)={0x0, 0x7}, 0x3) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_PEER_REMOVE(r5, &(0x7f00000110c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003ac0)={0x70, r6, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@TIPC_NLA_NET={0x5c, 0x7, 0x0, 0x1, [@typed={0x55, 0x2, 0x0, 0x0, @str='\b\x8bJ\xe1\x14\xc2A\x81\x8b\xfd\rQ\xa8a\x02\x033\xb0\x11\xfa\xaf\xeb\xac\xd4\xeb\xe2\xb1)\\\xa8\xce\xe9QJD\x01J\x7f\xa4\xb6gv\xe8\xa96\x02<4\x88\xd7\xec\x1b\xbfR\x00\x80/\x8c\x88\\Z\xd7\xd1q\x17\xfd\xeb\xe7\xf1?\xc8\xcf\x8ak\xad\x18\xaeK\xfbf\t'}]}]}, 0x70}, 0x1, 0x0, 0x0, 0x20008105}, 0x40) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x1a, 0x2, 0x5) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/module/nvme_core/parameters/iopolicy\x00', 0x2062, 0x0) write$auto(r7, 0x0, 0x81) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) write$auto(0x3, 0x0, 0xffd8) shmctl$auto_SHM_UNLOCK(0x2, 0xc, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x3) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/system/node/node1/hugepages/hugepages-1048576kB/demote\x00', 0x183841, 0x0) 7.865421255s ago: executing program 4 (id=1944): mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = epoll_create$auto(0x4) ioctl$auto_XFS_IOC_ALLOCSP(r0, 0x4030580a, &(0x7f0000000000)={0x0, 0x3, 0x20000000000000, 0x8, 0x3, 0x0}) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/extra\x00', 0xa142, 0x0) r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r2, 0xaf01, 0x5) ioctl$auto_VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000000)={0x8}) r3 = open(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x101840, 0x33903f3ada88772b) r4 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0) mq_notify$auto(r4, &(0x7f0000000180)={@sival_ptr=0x0, @raw=0x1, 0x1, @_sigev_thread={0x0, 0x0}}) r5 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0) mq_notify$auto(r5, &(0x7f0000000180)={@sival_ptr=0x0, @inferred=r5, 0x0, @_sigev_thread={0x0, 0x0}}) futex$auto(0x0, 0x84, 0x2, 0x0, 0x0, 0x3) read$auto(r3, 0x0, 0x1) write$auto(0x3, 0x0, 0xffd8) r6 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f00000001c0), 0x40, 0x0) ioctl$auto_RTC_IRQP_READ(r6, 0x8008700b, &(0x7f0000000200)=0x9) close_range$auto(0x2, 0xa, 0x0) socket(0x2, 0x1, 0x106) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/bus/input/handlers\x00', 0x200, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) process_vm_readv$auto(r1, &(0x7f0000000100)={&(0x7f0000000040)="3cf6a8f4bbfd147b01cb08539a05c121e58ec6bd05c840d05fb2279d6adad25982a715146ec7acfe6f92881201b313cdd169d2389e13da08e84519c4d6c3e8dd1c60e851f44cf4a767f31a25347740cceb9c8c51ee9a9d389bba3c8c3bd219887d2e1499e7da1bdc066d123ba4cb2358ab0bc0ec5791a6a4554d73c36eea4bee887a87671f92915e02fbbbd3f830785ef2b331c5a9715bfe83b0", 0x200}, 0x6, &(0x7f00000001c0)={&(0x7f0000000140)="b4a064d0b013290e3a93fbf1c884ec9deaeeaafabca047dfd867c36d79df253de6ae213ba5a0438962b2382eaa004963bca02445423da074960ad681d4", 0x18000}, 0x7fff, 0x9) r7 = socket(0x2, 0x5, 0x0) epoll_ctl$auto(r0, 0x1, r7, 0x0) r8 = epoll_create$auto(0x3e) epoll_ctl$auto(r8, 0x1, r0, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) ioctl$auto(0x1, 0x5421, 0xa) 7.610975894s ago: executing program 1 (id=1945): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) msgctl$auto_MSG_STAT_ANY(0xab, 0xd, &(0x7f0000000280)={{0x6, 0x0, 0xee00, 0x7, 0x1, 0x4, 0x727}, &(0x7f0000000180)=0x1, &(0x7f0000000240)=0x4, 0x80, 0x6, 0x100000001, 0x4, 0x2, 0x5, 0x1ba, 0x0, @inferred=0xffffffffffffffff}) sendmsg$auto_TIPC_NL_BEARER_SET(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f0000000300)={0x1bc, 0x0, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [@TIPC_NLA_NODE={0x154, 0x6, 0x0, 0x1, [@nested={0x150, 0x79, 0x0, 0x1, [@typed={0x42, 0x2c, 0x0, 0x0, @str='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00'}, @typed={0x8, 0x25, 0x0, 0x0, @uid=r2}, @nested={0x4, 0x37}, @nested={0x4, 0xb7}, @typed={0xf8, 0xc2, 0x0, 0x0, @binary="75c2e12fd318ae1f3b77b09e0c7df413632e5545d9a8b4d5787ef6c1ab3aeb5395e13a1c492a501789919783d7c5b1193c5a1bfa262b81ba9d7a06652f6002638b8809a0cd914186f86899aa9d00ff6751c1053151dc3be3f101035b5d4271a6026d803b36763aab54947225d0edb512ac1945189e60a1821c2a752288731b817c05c609522083685cf49372c42dced947056a7056cfb293dc66147a5a53f0b734ee3c12a77e7ad4bd859c04084ebb9c35751d360b264d1c2549dca526ae9303a546ab6012fc105e9b3d2b5f3a340d0214e9557bb5782d83c14194e3018c5c5b3c5b1bfebb59b0b3253e7dbd05747369baa76f06"}]}]}, @TIPC_NLA_UNSPEC={0x51, 0x0, "d01fe2f8a7e023211d080a5816807a42d4578bd34f9589f1a9ea322c01a80a93846bd96700b80afc4afb805ef8c73b7a1865d014c681411d7fff8f8587ad6f0c61bac3f418392e4a9b4b0ef51e"}]}, 0x1bc}, 0x1, 0x0, 0x0, 0x20000000}, 0x1000) close_range$auto(r1, 0xffffffffffffffff, 0x2) mq_open$auto(0x0, 0x7e, 0x9, 0x0) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) mmap$auto(0xffffffffffffffff, 0x400003, 0x100000df, 0x75, r1, 0x4) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1a9402, 0x0) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x800) timer_create$auto(0x9, 0x0, 0x0) read$auto(0x3, 0x0, 0x8080) socket(0xa, 0x1, 0x100) unshare$auto(0x40000080) fsconfig$auto(r3, 0x800, &(0x7f0000000040)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/power/wakeup_abort_count\x00', 0x0, 0x0) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/hugetlb.1GB.limit_in_bytes\x00', 0x10b142, 0x0) sendfile$auto(r4, r5, 0x0, 0x1000200) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r6 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioctl$auto_BCH_IOCTL_DISK_GET_IDX(r6, 0x4008bc0d, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000000)=@task_fd_query={0x0, 0xffffffffffffffff, 0xb0, 0x8bd, 0x8, 0x2, 0xffffffffffffffff, 0x6, 0x6}, 0xa3) bpf$auto(0x0, &(0x7f0000000000)=@link_update={0xa, @new_map_fd=0x2, 0x7, @old_map_fd=r7}, 0xa3) mkdir$auto(&(0x7f00000000c0)='./file0\x00', 0x106) flistxattr$auto(r6, &(0x7f0000000100)='/dev/audio\x00', 0xfffffffffffffffb) mmap$auto(0xffffffffd, 0x100000400008, 0x1000000000000df, 0x4000009b73, r6, 0x8000) 6.975134333s ago: executing program 0 (id=1946): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="010027bd7000fddbdf250a"], 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010) r0 = socket(0x29, 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x6}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r0, 0x89f1, 0x24) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) prctl$auto(0x3e, 0x11, 0x0, 0x20000000000001, 0x0) getsockopt$auto_SO_SELECT_ERR_QUEUE(0xffffffffffffffff, 0x3, 0x2d, &(0x7f0000000040)='/dev/mISDNtimer\x00', &(0x7f00000000c0)=0x8) r2 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000080), 0x18b803, 0x0) ioctl$auto_IMADDTIMER(r2, 0x80044940, &(0x7f0000000000)=0x1) madvise$auto(0x101, 0x8, 0x9) ioctl$auto_IMADDTIMER(r2, 0x80044940, 0x0) close_range$auto(0x2, 0x8, 0x0) 6.779778874s ago: executing program 3 (id=1947): madvise$auto(0x0, 0x7fffffffffffffff, 0xa) modify_ldt$auto(0x1, &(0x7f00000001c0), 0x10) openat$auto_msft_opcode_fops_(0xffffffffffffff9c, 0x0, 0x420202, 0x0) io_uring_setup$auto(0x401, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000040), 0x180b03, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0) ioprio_set$auto(0x3, 0x400000000000, 0x72e2f0a) sendfile$auto(r0, r0, 0x0, 0x3) close_range$auto(0x2, 0x8, 0x0) 6.612256834s ago: executing program 4 (id=1948): openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x101401, 0x0) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x3) openat$auto_nsim_dev_take_snapshot_fops_dev(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim0/take_snapshot\x00', 0x82622, 0x0) write$auto(0x3, 0x0, 0xfffffdef) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x200, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto(0xc8, 0x400454cb, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x8000) fsconfig$auto_HIDEPID_NO_ACCESS(r1, 0xfffffffd, &(0x7f00000001c0)=':\x00', &(0x7f0000000400)="c074a6030c01b496319e7c3f6a2dad19f7a6a882ebd3e44a16c43c0ca6e660b86883247544a5b513e4d812af5cf22441774eaaad2dcbf2f8a6a71ff3af09595355652b512e0ec8c27fd6b47ff02c4058f0c0dda248d97ce735b22f56f7e8bea38fe470c87e3d4edc082a0404de7cf5cdbd639dd23df4c863f83ae8aefff87414ecba54c7f87e477f9f048b68881a4bf0a965402e0f80cedfef54ec0054e2bd4d08ae1601f0ffffa8861786ff63765c5c1720583a9858e07bdd5485fecb6738805aa2de0e6ccd15fa8a", 0x1) madvise$auto(0x0, 0xffffffffffff0005, 0x17) prctl$auto(0x39, 0x1, 0x4, 0xffffffffffff8000, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) open_by_handle_at$auto(0xffffffffffffffff, 0x0, 0x0) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/rpc/nfs\x00', 0x20000, 0x0) pread64$auto(r2, 0x0, 0x5, 0xe8f) read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000140)=""/41, 0x29) madvise$auto(0xffffffffffffffff, 0x6, 0x269) fsopen$auto(&(0x7f0000000080)='\\j:\x80#@}&#\x00', 0xffffffdd) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/devices/virtual/net/bpq1/tx_queue_len\x00', 0x101002, 0x0) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop11\x00', 0x0, 0x0) mmap$auto(0xce80, 0x1, 0x4000000000de, 0x40eb1, r4, 0x1) r5 = socket(0x29, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) r6 = openat$auto_trace_clock_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/trace_clock\x00', 0x0, 0x0) readv$auto(r6, &(0x7f0000000180)={&(0x7f00000002c0)="48ec3663f2f3fd0f23c6e832b87141b8712ecce5afb2039756ee058f71bef07b04fb854e7d0413aa22edbe2377d842401773ec95736c2cde15d52c3ce6353aa4150b86f2aa16a6fdca79386ea0da5f885771586aabfa0e5f5aa4efde23bd951f4577ba879fc5ca8abb2db742bf65b35405a0ee5d8b680bdae6f978aa2b971e1b1a694ba0c62c025361387e23900408e4e9377247af345ad6f358d93ecd983f4ce7f3e7edaf941215c8d454659a258cd836ffc7543fb98efc6e7786db20", 0x81}, 0x5) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, r3, 0x7) r7 = socket(0xa, 0x801, 0x106) setsockopt$auto(r7, 0x6, 0x21, 0x0, 0x10) close_range$auto(r4, r5, 0x4) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000380)='/dev/ram7\x00', 0x10f602, 0x0) 6.513393569s ago: executing program 3 (id=1949): r0 = openat$auto_drm_connector_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/dri/vkms/Virtual-1/force\x00', 0x40000, 0x0) r1 = socket(0xa, 0x1, 0x84) getsockopt$auto(r1, 0x84, 0x8, 0x0, &(0x7f0000000000)=0x9b) sendfile$auto(r0, r1, &(0x7f00000000c0)=0x8, 0x8) close_range$auto(0x0, 0xffffffffffffffff, 0x2) r2 = socket(0xa, 0x2, 0x0) cachestat$auto(r2, &(0x7f0000000000)={0x0, 0x7fc}, &(0x7f0000000040)={0x2, 0x0, 0xd6, 0x1, 0x3}, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000100), 0xaaa02, 0x0) socket(0xa, 0x3, 0x3a) io_uring_setup$auto(0x6, 0x0) r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x432300, 0x0) ioctl$auto_USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f00000001c0)={0x0, 0x5516, 0x0}) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) r4 = open(0x0, 0x0, 0x408) socket(0x28, 0x1, 0xffffffff) mmap$auto(0x0, 0x61, 0x100001000000003, 0x9b72, 0x2, 0x8000) getsockopt$auto(0x3, 0x200000000001, 0x45, 0x0, 0x0) getdents$auto(r4, 0x0, 0x400018) mmap$auto(0x0, 0x4020009, 0xdf, 0x40000eb1, 0x401, 0x8000) clone$auto(0x100000008, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x4000006) clone$auto(0x1, 0x1, 0x0, 0x0, 0x2) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/igmp\x00', 0x100, 0x0) pread64$auto(r5, 0x0, 0x8002a, 0x6) r6 = socket(0x11, 0x3, 0x3a) ioctl$auto(r6, 0x8916, 0x1) madvise$auto(0x0, 0x200007, 0x19) mmap$auto(0x0, 0x5, 0xfff, 0x44eb2, 0x10006, 0x300000000000) 5.970132124s ago: executing program 0 (id=1950): openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x101401, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_LINK(0xffffffffffffffff, 0x40044160, 0x0) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x3) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x200, 0x0) socket$nl_generic(0x10, 0x3, 0x10) read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000140)=""/41, 0x29) ioctl$auto(0x3, 0xae41, 0xffffffffffffffff) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000001c0), 0xffffffffffffffff) socket(0x28, 0x1, 0x0) r2 = socket(0x10, 0x2, 0x6) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_fastopen_blackhole_timeout_sec\x00', 0x0, 0x0) sendfile$auto(r2, r3, 0x0, 0x3) r4 = bpf$auto(0x2, 0x0, 0x4) r5 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NFC_CMD_GET_SE(r4, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000080)={&(0x7f0000000280)={0x94, r5, 0x4, 0x70bd26, 0x25dfdbfd, {}, [@NFC_ATTR_COMM_MODE={0x5}, @NFC_ATTR_VENDOR_DATA={0x70, 0x1f, "4867d901dacc02eee1ab47506566b7c229d22cc8a7fbdfcfd9bd6028aa45e54fa80dca082e29c1e5b387677a7a5ae38f64b5edda851d2e0632b3268a8713d048450c51ae49a3cab3b0434f170ac98a1d4b2af52a1318bc7b75e97377c1719dc4396b8cd427aebea5bd8b9ef8"}, @NFC_ATTR_COMM_MODE={0x5, 0xa, 0x1}]}, 0x94}, 0x1, 0x0, 0x0, 0x44110}, 0x2400c000) sendmsg$auto_NFC_CMD_DEV_UP(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB="5c0000004c0a15770d3c8624268adb31474d65fd988d4ed5775c3cb2e680705a7f66bc6a9dbb2170a54e3795e4114c8b5ac23f458e70273f2135e1529c53db84b52da477735b42e03aa05b30e5d8d17a3aefa82db522bd87c545de0af4f8a753a6b6c28d8f77bfecd10719678e1453a56039ce6fbfce53eeb63f2ef49cc14fe9be963bde73ce595a15b14d11462800"/157, @ANYRES16=r5, @ANYBLOB="00042cbd7000fbdbdf250200000008000400080000000e001400255c2723292626252a28000005000f00030000000d0002002f6465762f66623000000000060002002b2f0000050010000100000005000f0009000000"], 0x5c}, 0x1, 0x0, 0x0, 0x41}, 0xc044) clone$auto(0x4, 0x4853, &(0x7f0000000040)=0x6, &(0x7f00000000c0)=0xffff, 0x6) shmctl$auto_SHM_INFO(0x4, 0xe, &(0x7f0000000340)={{0x3, 0x0, 0xee00, 0xfffffffd, 0xffff, 0x4, 0xda}, 0x1, 0x5, 0x10001, 0x4, @raw=0x7, @inferred, 0xfffb, 0x0, &(0x7f0000000100)="68ca99ca5ead3cd29ec1c625d90d479d6ef427384759afb046bf11f0ea433b2ecc755216930d22a75626fd510edc31c1f93880bbca80a0bdfeb12565f71cf082e146d75261598335c6ff11fc7b9d84dce3c4f488013f1e0686287886966be90fd7767e78f4340a022423820e239ca15190de37aedfa83e3bbe03fb9077aa157111ee3fd687418a3755ef545b9d68298c3f99f675c157345c1c76a124d035b985f67c93f5c5f61937e923697cce126954252df3c62a6594ce1c90b3bec70b653a84f4cffaf03b5b3fd8c88d2215d3ad00cf67573e0be5d4211e57fc6da02099dd9bf4", &(0x7f0000000240)="49acaca7a8ea67f9f77e32fa5e71df14c8de384b85d0285d96dfc99b0f280992cbf2309839f0f67084dc5e4bb7138c6177955e678300cffa74424bb7693d0cacb810cf4801e664851dd389cf815420c20ec8ac6f2be9a374f512b78c158b9e6f91231c2d542a98b2ef41d0f6e9b8b9f0f9744537e0ee191bbdf2a24cc27e2ebecdee8acb7a78c12795b768b6286fe5e1ab05f98157c7cf251df9f65602057fa9ceea92eb6e044d55a29cd8cefddc31202d7b471864d961187fd441e46e47af154be95096619058c961a54f71151b4c42f65165ddfa11a2"}) sendmsg$auto_NFC_CMD_DEP_LINK_UP(r2, &(0x7f00000016c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001680)={&(0x7f00000003c0)={0x38, r5, 0x300, 0x70bd2a, 0x25dfdbfd, {}, [@NFC_ATTR_TARGET_INDEX={0x0, 0x4, 0x6}, @NFC_ATTR_SE_INDEX={0x8, 0x15, 0xab93}, @NFC_ATTR_LLC_SDP, @NFC_ATTR_DEVICE_NAME={0x5, 0x2, '\x00'}, @NFC_ATTR_RF_MODE={0x0, 0xb, 0x7}]}, 0x38}, 0x1, 0x0, 0x0, 0x20084801}, 0x40010) sendmsg$auto_NFC_CMD_DEV_DOWN(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x20, r5, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@NFC_ATTR_DEVICE_NAME={0xb, 0x2, 'macsec\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x44810}, 0xd0) sendmsg$auto_MACSEC_CMD_DEL_RXSA(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={0x24, r1, 0x501, 0x703d2b, 0x25dfdbff, {}, [@MACSEC_ATTR_SA_CONFIG={0x4}, @MACSEC_ATTR_IFINDEX={0x8}, @MACSEC_ATTR_RXSC_CONFIG={0x4}]}, 0x24}}, 0x80) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) 5.140644145s ago: executing program 0 (id=1951): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) capset$auto(0x0, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x205ac, &(0x7f0000000100)={0x0, 0x7}, 0x5, 0x0, 0x5, 0x4}, 0x20000005}, 0x5, 0xcae) getrandom$auto(0x0, 0x6000000, 0x3) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008) r0 = socket(0x29, 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) mmap$auto(0x0, 0x10008, 0x4000000000df, 0xeb1, 0x401, 0x8000) pidfd_send_signal$auto(r0, 0x7, &(0x7f00000001c0)={@siginfo_0_0={0x5, 0xc, 0xffffff01, @_sigchld={0x0, 0xee00, 0xe, 0x6, 0x8001}}}, 0x7ff) recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x6}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r0, 0x89f0, 0x24) r2 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x408) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) write$auto(r2, 0x0, 0xfffffdf1) fsetxattr$auto(r2, &(0x7f0000000000)=':\xbf+,\x8a}\x00', 0x0, 0x7bf, 0x1) close_range$auto(0x2, 0x8, 0x0) mprotect$auto(0x0, 0x8000000000000001, 0x8) sched_setscheduler$auto(0x0, 0x1, &(0x7f00000019c0)={0xb}) 4.744395258s ago: executing program 4 (id=1952): unshare$auto(0x40000080) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000540), 0xffffffffffffffff) (rerun: 64) sendmsg$auto_HWSIM_CMD_GET_RADIO(r0, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000000280)={0x14, r1, 0xf3e97f51700e57cf, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x884}, 0x8020) (async) read$auto(0xffffffffffffffff, 0x0, 0x7f) (async) mprotect$auto(0x8000, 0x8, 0x8) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, 0x0, 0x121000, 0x0) mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0) (async) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) write$auto_ocfs2_control_fops_stack_user(r2, &(0x7f0000003900)='\t', 0x1) (async) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/memory_hotplug/parameters/online_policy\x00', 0x2, 0x0) read$auto(r3, 0x0, 0x800) (async, rerun: 64) r4 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64) r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01002bbd7000fcdbdf2504"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800) mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async, rerun: 32) mmap$auto(0x0, 0x400008, 0x9beb, 0x9b72, 0x2, 0x8000) (async, rerun: 32) socket(0x2, 0x1, 0x84) (async) bind$auto(0x3, &(0x7f0000000000)=@generic={0x2, "f7fde23096b8e8f2294f9c78baaf"}, 0x68) socket$nl_generic(0x10, 0x3, 0x10) (async) syz_clone(0x4001000, 0x0, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64) process_vm_readv$auto(0x0, 0x0, 0x800000001, 0x0, 0x6, 0x0) (rerun: 64) openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) (async) r6 = syz_clone(0x200000, &(0x7f0000000080), 0x0, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f00000003c0)) wait4$auto(r6, 0x0, 0xeae66e9c, 0x0) (async) msgctl$auto_IPC_STAT(0x1ff, 0x2, &(0x7f0000000340)={{0xd, 0xee01, 0xffffffffffffffff, 0xf, 0x1ff, 0x3, 0x2}, 0x0, 0x0, 0x4, 0x5, 0x7, 0x5, 0x91d, 0x3, 0x1000, 0x39a, @raw=0xfff, @raw=0x2}) 4.411378615s ago: executing program 3 (id=1953): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) r2 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0) r3 = io_uring_setup$auto(0x86, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r3) sendmsg$auto_NL80211_CMD_SET_POWER_SAVE(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000841}, 0x4004004) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000200), r3) sendmsg$auto_IEEE802154_LLSEC_GETPARAMS(r4, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x24, r5, 0x20, 0x70bd2b, 0x25dfdbfe, {}, [@IEEE802154_ATTR_BCN_ORD={0x5, 0x17, 0x7}, @IEEE802154_ATTR_FRAME_RETRIES={0x5, 0x28, 0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0xaaaba978e63e307e}, 0x40000) sendmsg$auto_IEEE802154_DISASSOCIATE_REQ(r2, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x5c, r5, 0x800, 0x70bd27, 0x25dfdbfd, {}, [@IEEE802154_ATTR_SRC_PAN_ID={0x6, 0xd, 0x8}, @IEEE802154_ATTR_LLSEC_KEY_USAGE_FRAME_TYPES={0x5}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x6}, @IEEE802154_ATTR_LLSEC_KEY_USAGE_FRAME_TYPES={0x5, 0x31, 0x2b}, @IEEE802154_ATTR_DURATION={0x5, 0x15, 0x4}, @IEEE802154_ATTR_CHANNEL={0x5, 0x7, 0x2}, @IEEE802154_ATTR_SF_ORD={0x5, 0x18, 0x7}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x4}, @IEEE802154_ATTR_STATUS={0x5, 0x3, 0xc}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000001}, 0x1) sendmsg$auto_IEEE802154_LLSEC_ADD_KEY(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, r5, 0x400, 0x70bd2c, 0x25dfdbfb, {}, [@IEEE802154_ATTR_HW_ADDR={0xc, 0x5, 0x3ff}, @IEEE802154_ATTR_CCA_ED_LEVEL={0x8, 0x24, 0x1}]}, 0x28}, 0x1, 0x0, 0x0, 0x2400c000}, 0x20004000) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0xa8, r1, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_SCOPE={0x81, 0x4, 'nfsf\x00\xd8\xef\xe4-\x13+r\xf3\fT1Z\xa7J[\x81\a\xcf-\xdf\x90\x1f\x8f\xc8\x13e\xe2R7D\x832j\xce}\xa3V\xb7\xa1o\\\xe6\x13\xbc\f\xe3\xae\xb8~\xd3\xd2+J\'\xc3\xec\xc9\fp\xc8a\xbe\xfe`\xa7\xa9AKDd\'\xa0\x01\xf6\x13y\xe8\xca\xf4Q\x9e\x03*]\xda\x1e\x11t\xe2\xd5uw+\x93\xfc\x04l\xd3\xa6t\x86k\x80\xd9\x14s\xec\xe2H\xc0=(\xf99\x8ac\xa7\x85\x99\x87'}, @NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x85}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2}]}, 0xa8}}, 0x4000) 3.876016111s ago: executing program 0 (id=1954): ioctl$auto_TIOCEXCL2(0xffffffffffffffff, 0x540c, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14fe02, 0x0) openat$auto_hwsim_fops_rx_rssi_(0xffffffffffffff9c, 0x0, 0x200000, 0x0) ioctl$auto_FS_IOC_FIEMAP(r0, 0xc020660b, 0x8) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) unshare$auto(0x40000080) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x170) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x10, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x0) socket(0x2, 0x80802, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) write$auto(0x3, 0x0, 0xffd8) recvmmsg$auto(r1, 0x0, 0x10a, 0x8, 0x0) 3.060176233s ago: executing program 1 (id=1955): r0 = socket(0x10, 0x5, 0xb) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/platform/dummy_hcd.7/usb8/power/level\x00', 0x2881, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000002c0)="dd", 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003180), r2) sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000003400)={0x0, 0x0, &(0x7f00000033c0)={&(0x7f00000002c0)=ANY=[@ANYRESHEX=r2, @ANYBLOB="7000fcdbdf250100000000000000f6344cce71f79e7835bdf9b8f91e7030280a584e024e24ead285c16719784d3cd3b06467129868c4677cf0fbe6edb6c822cf1c574daa552fe8ddbba9d67a6ee1b9077e4a412fe4f780a7b4a38cd4"], 0x14}, 0x1, 0x0, 0x0, 0x4040014}, 0x20000000) read$auto(r2, &(0x7f0000000080)='\x00', 0xff09) sysfs$auto(0x2, 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NFC_CMD_SE_IO(r3, &(0x7f0000000380)={&(0x7f0000000180), 0xc, &(0x7f0000000340)={&(0x7f0000000280)=ANY=[], 0x13c}, 0x1, 0x0, 0x0, 0x804}, 0xc0) sendmsg$auto_NFC_CMD_DEACTIVATE_TARGET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x4000010) r4 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/pagemap\x00', 0x0, 0x0) readv$auto(r4, &(0x7f0000000100)={0x0, 0x40}, 0x8) 2.280411294s ago: executing program 3 (id=1956): mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = epoll_create$auto(0x4) ioctl$auto_XFS_IOC_ALLOCSP(r0, 0x4030580a, &(0x7f0000000000)={0x0, 0x3, 0x20000000000000, 0x8, 0x3, 0x0}) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/extra\x00', 0xa142, 0x0) r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r2, 0xaf01, 0x5) ioctl$auto_VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000000)={0x8}) r3 = open(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x101840, 0x33903f3ada88772b) r4 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0) mq_notify$auto(r4, &(0x7f0000000180)={@sival_ptr=0x0, @raw=0x1, 0x1, @_sigev_thread={0x0, 0x0}}) r5 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0) mq_notify$auto(r5, &(0x7f0000000180)={@sival_ptr=0x0, @inferred=r5, 0x0, @_sigev_thread={0x0, 0x0}}) futex$auto(0x0, 0x84, 0x2, 0x0, 0x0, 0x3) read$auto(r3, 0x0, 0x1) write$auto(0x3, 0x0, 0xffd8) r6 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f00000001c0), 0x40, 0x0) ioctl$auto_RTC_IRQP_READ(r6, 0x8008700b, &(0x7f0000000200)=0x9) close_range$auto(0x2, 0xa, 0x0) socket(0x2, 0x1, 0x106) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/bus/input/handlers\x00', 0x200, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) process_vm_readv$auto(r1, &(0x7f0000000100)={&(0x7f0000000040)="3cf6a8f4bbfd147b01cb08539a05c121e58ec6bd05c840d05fb2279d6adad25982a715146ec7acfe6f92881201b313cdd169d2389e13da08e84519c4d6c3e8dd1c60e851f44cf4a767f31a25347740cceb9c8c51ee9a9d389bba3c8c3bd219887d2e1499e7da1bdc066d123ba4cb2358ab0bc0ec5791a6a4554d73c36eea4bee887a87671f92915e02fbbbd3f830785ef2b331c5a9715bfe83b0", 0x200}, 0x6, &(0x7f00000001c0)={&(0x7f0000000140)="b4a064d0b013290e3a93fbf1c884ec9deaeeaafabca047dfd867c36d79df253de6ae213ba5a0438962b2382eaa004963bca02445423da074960ad681d4", 0x18000}, 0x7fff, 0x9) r7 = socket(0x2, 0x5, 0x0) epoll_ctl$auto(r0, 0x1, r7, 0x0) r8 = epoll_create$auto(0x3e) epoll_ctl$auto(r8, 0x1, r0, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) ioctl$auto(0x1, 0x5421, 0xa) 2.00201481s ago: executing program 1 (id=1957): madvise$auto(0x0, 0x7fffffffffffffff, 0xa) modify_ldt$auto(0x1, &(0x7f00000001c0), 0x10) openat$auto_msft_opcode_fops_(0xffffffffffffff9c, 0x0, 0x420202, 0x0) io_uring_setup$auto(0x401, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000040), 0x180b03, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0) ioprio_set$auto(0x3, 0x400000000000, 0x72e2f0a) sendfile$auto(r0, r0, 0x0, 0x3) close_range$auto(0x2, 0x8, 0x0) 1.619992203s ago: executing program 4 (id=1958): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="010027bd7000fddbdf250a"], 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010) r0 = socket(0x29, 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x6}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r0, 0x89f1, 0x24) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) prctl$auto(0x3e, 0x11, 0x0, 0x20000000000001, 0x0) getsockopt$auto_SO_SELECT_ERR_QUEUE(0xffffffffffffffff, 0x3, 0x2d, &(0x7f0000000040)='/dev/mISDNtimer\x00', &(0x7f00000000c0)=0x8) r2 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000080), 0x18b803, 0x0) ioctl$auto_IMADDTIMER(r2, 0x80044940, &(0x7f0000000000)=0x1) madvise$auto(0x101, 0x8, 0x9) ioctl$auto_IMADDTIMER(r2, 0x80044940, 0x0) close_range$auto(0x2, 0x8, 0x0) 1.264588384s ago: executing program 1 (id=1959): migrate_pages$auto(0x0, 0x2, &(0x7f0000000080)=0x18ca4fdb, &(0x7f00000000c0)=0x3) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000002080)='/dev/sequencer2\x00', 0x1, 0x0) ioctl$auto_SNDCTL_MIDI_INFO(r0, 0xc074510c, &(0x7f00000020c0)="639ba264a968f05a3ba9b5ef2aac5d6aa8bca3f891774c61ddbb35524f057da2d24989e7") r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0) ioctl$auto_TCSBRK2(r1, 0x5409, 0x0) r2 = socket(0x15, 0x5, 0x0) r3 = syz_genetlink_get_family_id$auto_nlbl_cipsov4(&(0x7f0000000100), r2) lstat$auto(&(0x7f0000000140)='./file0\x00', &(0x7f0000000200)={0x4c9, 0x7, 0x3, 0x2, 0xee01, 0xee01, 0x0, 0x6, 0x362, 0x7fff, 0xff, 0x1, 0xf, 0x1, 0x2c, 0x10001, 0x2}) sendmsg$auto_NLBL_CIPSOV4_C_LISTALL(r2, &(0x7f0000001500)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000014c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="c4110000", @ANYRES16=r3, @ANYBLOB="020025bd7000ffdbdf25040000009e110c8024101e8004002d8008005200", @ANYRES32=r4, @ANYBLOB="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"], 0x11c4}, 0x1, 0x0, 0x0, 0x20000080}, 0x88c1) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/mtd/mtd0/mtdblock0/queue/write_cache\x00', 0x182b02, 0x0) sendfile$auto(r5, r5, 0x0, 0xea) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/dummy_hcd.0/usb1/power/autosuspend_delay_ms\x00', 0x20461, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000000)='-7', 0xfffffc49) close_range$auto(0x2, 0x8, 0x0) socket(0x80000000000000a, 0x2, 0x0) socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54) sysfs$auto(0x2, 0x2, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x6c, 0x697c}, 0xed71390}, 0x9a6, 0x0) shutdown$auto(0x200000003, 0x2) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) eventfd$auto(0x3) close_range$auto(0x2, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/net/lapb4/ifalias\x00', 0x1a1842, 0x0) r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty51\x00', 0x40001, 0x0) ioctl$auto(0x3, 0x5602, r7) 603.337441ms ago: executing program 0 (id=1960): unshare$auto(0x40000080) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000) (async) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000) socket(0x2, 0x1, 0x106) (async) socket(0x2, 0x1, 0x106) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/bus/usb/drivers/es2_ap_driver/uevent\x00', 0x80302, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/bus/usb/drivers/es2_ap_driver/uevent\x00', 0x80302, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0) (async) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0) read$auto(r1, 0x0, 0x9) write$auto(0x3, 0x0, 0xfdef) write$auto(r0, &(0x7f00000002c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xd8\x9c\xf7?:\x1a\xc62\x911e\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xff\x7f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\x87N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00\x00\x00\x00\x00\x00\x00', 0xb) (async) write$auto(r0, &(0x7f00000002c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xd8\x9c\xf7?:\x1a\xc62\x911e\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xff\x7f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\x87N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00\x00\x00\x00\x00\x00\x00', 0xb) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) (async) r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) (async) ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) mmap$auto(0x0, 0x4, 0x5, 0x8010, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0xfffffffd, &(0x7f0000000080)={0x0, 0x1}, 0xa, 0x0, 0x4, 0x5}, 0xed7138c}, 0xfffffffd, 0x0) socketpair$auto(0x1, 0x0, 0x8000000000000000, 0x0) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f0000002580)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000025c0)={0x14, 0x0, 0xd0d58b333228212f, 0x70bd2c, 0x25dfdbfd}, 0x14}}, 0x8040) close_range$auto(0x2, 0x8, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x0, 0x1) socket(0x2, 0x80802, 0x0) (async) socket(0x2, 0x80802, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, 0x0, 0x55) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x5ac, 0x0, 0x106, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x9a6, 0xe000) ioctl$auto_PPPIOCSPASS(r2, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) ioctl$auto_PPPIOCSPASS(r2, 0x40107447, &(0x7f00000000c0)={0x9, 0x0}) write$auto(r2, 0x0, 0x6) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000080), r3) 556.481949ms ago: executing program 1 (id=1961): r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/fail-nth\x00', 0x288400, 0x0) ioctl$auto_SCSI_IOCTL_SEND_COMMAND2(0xffffffffffffffff, 0x1, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/dev_mcast\x00', 0x40280, 0x0) pread64$auto(r1, &(0x7f00000000c0)='veth1\xe7#\x16T+\xee\x03\xc4\x1c\a\xdfa\x8b[,>\xa9\xd2\xef\xb0\xfb{b^\xef\x9b\x97\x06H\xcb\xe7g\xea\x9dE\xc0\xdc\x1e\x02`\x00Z\x9d|\x8f\x92\xe09\xe1hBJL\x1e\"b\x9d\x97.]\x95H\f&_\x8d1\x83\x90,\x01\x8ab\xc4\xc3&\xe3\x05\x7fl\x18\xf40\x18x\x88\x86\xe6{\xdb\x1c\xfef\xf1x\xc9vKq\xd4/N&\x1f\xae\xa8\x9b\xb2\xdbZ\xed\x16a}\xa9gj\xc2mt\x87&\xf7Z\xf1u\xf0\x14\x00\x00\x00\x00\x00\x00\x00i\xb9\xc8\xc6V5]\x06/\xb1`\xd9X\xe5\xfc$\a\xf3S\xbb\xe99\xf1PZ\x81\x8f\xfc\xa4w\\\x84B\x03+\xa2\xe1\xb4\x9dv\xe1\xd7\b9\xc3.\x96I\x98\x00\x00\x00\x00\x00', 0x7, 0xfa) write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r2 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) write$auto(r2, &(0x7f0000000680)='d\n\x1e\x9f\xd0\x92l\x98\x92!Fc\x9c?\xado^\x9b\xf4\x9c\xa8\xd2gn\x1a\xd7\x1c\xe8)\xefA\x7f\xc2x\xd0\x18gS\x1c\xca\xb9\x84\x1ec\xd4>\xc2\xfej\t\x89u\xcb(\x95_3\xdfo\xdc\xa5;t\x05q$zmM\xae\xdb\x1f\xeb\xffe\x91\xd5\xd2[\xa5_F\xc4X\xec\xdb\xdc\x01\xc2d\xa1\x8b\xed=\xb0\x88\xa8tl2\x0e\x13mjH,\xcda\xcab.\x03\xe7\xa4z\xcaA\xe2\x99\xd5n\xa0\x8a\x91K_\xf0~\b\v\xd1W\x97\xd9\x8c}\xff4\xff\tAK\xc4\x16\x13,9}-_\x00\x80\xd2\xfc\x98?\'\xaf\xccyRou\xa1\x12\x9fwZ\x1c\f\xcck\xdb-\xd7;\xbf\xbf\xbe\x04*L\x1e\x9c\x8fVb\xb8\xb4\xa2|\x88\x1e\bX\xba_O\x87f.\xc2\xfa\x01R\xefB\xe9\xf4Xc\x98\xe7', 0x98) r3 = socket(0xa, 0x2, 0x0) socket(0xa, 0x801, 0x84) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x18, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r3) ioctl$auto_KVM_CREATE_VM(r4, 0x4048aecb, 0x0) lsm_set_self_attr$auto(0x1, 0x0, 0x4000080, 0x0) r6 = gettid() mmap$auto(0x0, 0x8, 0x1000000004, 0x8b72, 0x2, 0x8000) setrlimit$auto(0x1000000007, 0x0) socket(0x28, 0x1, 0x0) lsm_get_self_attr$auto(0xb, &(0x7f00000001c0)={0x10001, 0x8001, 0x2, 0x39, "ca3732f38bc86ed7c499aa977b1529afa4f757a30dab1fe3e9d6c9e38326ccdf5a7b147e2f30fcb03528e2517689330658de289c09fccf1c60"}, &(0x7f0000000240), 0xffffffff) kill$auto(r6, 0x11) 552.086794ms ago: executing program 4 (id=1962): openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x208840, 0x0) close_range$auto(r0, 0x8, 0x0) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = socketcall$auto(0x8000, 0x0) select$auto(0x9, &(0x7f0000000040)={[0x9, 0x600000000000000, 0x8, 0x5, 0x2, 0x2dea, 0x0, 0x3, 0x1000, 0x7fffffffffffffff, 0x10000, 0x2, 0x80000001, 0x8, 0x6, 0x10001]}, &(0x7f00000000c0)={[0x8, 0x7ff, 0x101, 0x9, 0x7, 0x0, 0x3, 0x7fffffff, 0x7, 0x7ff, 0x95, 0x2, 0x10001, 0x9, 0x100000001, 0x8]}, &(0x7f0000000140)={[0x7, 0x5, 0x7fff, 0x4, 0xd, 0xfe54, 0xde3, 0x48e8, 0x3, 0x9, 0x1, 0x86c7, 0x4, 0x3, 0x8, 0x6]}, &(0x7f00000001c0)={0xc0, 0xa46d}) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x60980, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) pwrite64$auto(0xc8, &(0x7f0000000340)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88d\x11\x00\x00\x00\x00\x00\x02\x83\x02\xba\xae\xb8-\x14\xe4\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\x00\x9f\x1e\xf6\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9\xc5\x93\x1dD\x811\xb9_\xdd*j\xfd\xeb\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;\x9e\x83\x120\x81\x11\x9a?g`sFh\x00\x00\xda,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xdex\xd8\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/228, 0xfdef, 0x2) ioctl$auto(0x3, 0xae41, r1) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) fadvise64$auto_POSIX_FADV_WILLNEED(r0, 0x200, 0xfffffffffffffffc, 0x3) r4 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000002500)='/dev/input/event1\x00', 0x2080, 0x0) ioctl$auto_EVIOCGKEYCODE_V2(r4, 0x80284504, 0x0) ioctl$auto(0x3, 0xae41, r3) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="05000000", @ANYBLOB="010025bd7000f7dbdf250100003f06000200010000000500070058000000080009000800000008000a000800000014001f00000000000000000000000000000000011400200000000000000000000000ff"], 0x5c}, 0x1, 0x0, 0x0, 0x44000}, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r5 = socket(0x2d, 0x2, 0x0) sendmsg$auto_SMC_NETLINK_ENABLE_SEID(r5, &(0x7f0000000180)={&(0x7f0000000000)={0x2d, 0x0, 0x1f, 0x800000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x42804) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x10540, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) ioctl$auto(0xc8, 0x400454cb, 0xffffffffffffffff) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) 98.8817ms ago: executing program 1 (id=1963): r0 = syz_clone(0x60000000, &(0x7f0000000000)="30f5b54d63ee7f4ffb2ef4683a54ef491a1dbd06710b03b6a19859ef756a40daebc874bfe9f063eb359d968845b961cc81de3945e65f14754605502e978ac98e488dc886b75acaa5ff0bd56e092499fae7c70b276693c369d6c6ad2699678d346ab351fc5a9af0ecc64e62e294ef5341c5b15a2fbe6e9fea6cb9e84eeffc60d82a5eaf42355073aa0fce3829666e2fefcab96395235b4970151f2154362defba1c65829ca6a0b8de3f7bf83d5fd6a99fb0f4dedf5d19a39094363ac3e2cbc313574e4e0d376c8fb632ef9153a8360f53ef2331463faade07f7515610eacdc3e29dea31fca3ba293eeeda851c33d4e2cfa6d86b6d", 0xf4, &(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000180)="7810e2d227d70e8ee1b3f393f00983906199") sched_setscheduler$auto(r0, 0x80001, &(0x7f00000019c0)={0xb}) 0s ago: executing program 4 (id=1964): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000500)='/proc/sys/fs/xfs/stats_clear\x00', 0xc80, 0x0) write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f0000000040), 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) munlock$auto(0xf, 0x6) kernel console output (not intermixed with test programs): 94] __x64_sys_futex+0x34f/0x4d0 [ 364.540386][T10094] ? __pfx___x64_sys_futex+0x10/0x10 [ 364.540418][T10094] do_syscall_64+0x106/0xf80 [ 364.540440][T10094] ? clear_bhb_loop+0x40/0x90 [ 364.540462][T10094] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 364.540480][T10094] RIP: 0033:0x7f1cead9c799 [ 364.540497][T10094] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 364.540514][T10094] RSP: 002b:00007f1cebbfd0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 364.540532][T10094] RAX: ffffffffffffffda RBX: 00007f1ceb015fa8 RCX: 00007f1cead9c799 [ 364.540544][T10094] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1ceb015fac [ 364.540555][T10094] RBP: 00007f1ceb015fa0 R08: 0000000000000000 R09: 0000000000000000 [ 364.540566][T10094] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 364.540578][T10094] R13: 00007f1ceb016038 R14: 00007ffc067a7480 R15: 00007ffc067a7568 [ 364.540601][T10094] [ 365.844718][T10116] netlink: 334 bytes leftover after parsing attributes in process `syz.0.957'. [ 368.055163][T10163] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.1.968: bg 5: bad block bitmap checksum [ 368.253161][T10163] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 74 [ 368.485791][T10163] EXT4-fs (sda1): This should not happen!! Data will be lost [ 368.485791][T10163] [ 368.710381][ T9925] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1647 with max blocks 1 with error 117 [ 368.793975][ T9925] EXT4-fs (sda1): This should not happen!! Data will be lost [ 368.793975][ T9925] [ 369.047992][ T5839] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 369.055613][ T5839] Bluetooth: hci3: Invalid handle: 0x3a4a > 0x0eff [ 370.639436][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 371.576876][ T5839] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 371.609291][ T5839] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection [ 371.771414][T10202] FAULT_INJECTION: forcing a failure. [ 371.771414][T10202] name failslab, interval 1, probability 0, space 0, times 0 [ 371.961650][T10194] netlink: 12 bytes leftover after parsing attributes in process `syz.0.971'. [ 372.150990][T10202] CPU: 0 UID: 0 PID: 10202 Comm: syz.2.976 Not tainted syzkaller #0 PREEMPT(full) [ 372.151023][T10202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 372.151035][T10202] Call Trace: [ 372.151044][T10202] [ 372.151052][T10202] dump_stack_lvl+0x100/0x190 [ 372.151093][T10202] should_fail_ex.cold+0x5/0xa [ 372.151118][T10202] should_failslab+0xc2/0x120 [ 372.151148][T10202] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 372.151180][T10202] ? vfs_coredump+0x9ee/0x5570 [ 372.151201][T10202] ? __pfx_wait_task_inactive+0x10/0x10 [ 372.151230][T10202] krealloc_node_align_noprof+0x30a/0x3e0 [ 372.151265][T10202] vfs_coredump+0x9ee/0x5570 [ 372.151295][T10202] ? __lock_acquire+0x4a5/0x2630 [ 372.151318][T10202] ? __pfx_vfs_coredump+0x10/0x10 [ 372.151339][T10202] ? __lock_acquire+0x4a5/0x2630 [ 372.151362][T10202] ? lock_acquire+0x1cf/0x380 [ 372.151394][T10202] ? lock_acquire+0x1cf/0x380 [ 372.151421][T10202] ? lock_acquire+0x1cf/0x380 [ 372.151444][T10202] ? find_held_lock+0x2b/0x80 [ 372.151461][T10202] ? is_bpf_text_address+0x8a/0x1a0 [ 372.151488][T10202] ? is_bpf_text_address+0x8a/0x1a0 [ 372.151515][T10202] ? bpf_ksym_find+0x124/0x1c0 [ 372.151542][T10202] ? __kernel_text_address+0xd/0x30 [ 372.151568][T10202] ? unwind_get_return_address+0x59/0xa0 [ 372.151589][T10202] ? arch_stack_walk+0xa6/0xf0 [ 372.151613][T10202] ? __sigqueue_free+0xbe/0x2a0 [ 372.151636][T10202] ? stack_trace_save+0x8e/0xc0 [ 372.151653][T10202] ? __pfx_stack_trace_save+0x10/0x10 [ 372.151672][T10202] ? stack_depot_save_flags+0x27/0x9d0 [ 372.151693][T10202] ? __lock_acquire+0x4a5/0x2630 [ 372.151724][T10202] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 372.151771][T10202] ? proc_coredump_connector+0x2d3/0x4f0 [ 372.151794][T10202] ? __pfx_proc_coredump_connector+0x10/0x10 [ 372.151820][T10202] ? rcu_is_watching+0x12/0xc0 [ 372.151851][T10202] get_signal+0x1f2a/0x21e0 [ 372.151879][T10202] ? __pfx_get_signal+0x10/0x10 [ 372.151899][T10202] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 372.151921][T10202] ? force_sig_info_to_task+0x4d2/0x660 [ 372.151944][T10202] arch_do_signal_or_restart+0x91/0x770 [ 372.151969][T10202] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 372.151997][T10202] ? xfd_validate_state+0x129/0x190 [ 372.152027][T10202] exit_to_user_mode_loop+0x86/0x4a0 [ 372.152054][T10202] do_syscall_64+0x668/0xf80 [ 372.152078][T10202] ? clear_bhb_loop+0x40/0x90 [ 372.152100][T10202] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 372.152118][T10202] RIP: 0033:0x7f1cead9c799 [ 372.152137][T10202] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 372.152164][T10202] RSP: 002b:00007f1cebbdc0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 372.152184][T10202] RAX: ffffffffffffffda RBX: 00007f1ceb016098 RCX: 00007f1cead9c799 [ 372.152197][T10202] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1ceb01609c [ 372.152209][T10202] RBP: 00007f1ceb016090 R08: 0000000000000000 R09: 0000000000000000 [ 372.152220][T10202] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 372.152232][T10202] R13: 00007f1ceb016128 R14: 00007ffc067a7480 R15: 00007ffc067a7568 [ 372.152258][T10202] [ 372.158555][T10202] coredump: 924(syz.2.976): format_corename failed, aborting core [ 373.502785][T10209] netlink: 8 bytes leftover after parsing attributes in process `syz.1.978'. [ 373.868373][T10215] netlink: 338 bytes leftover after parsing attributes in process `syz.2.979'. [ 373.916318][T10219] netlink: 338 bytes leftover after parsing attributes in process `syz.2.979'. [ 374.014847][T10215] netlink: 290 bytes leftover after parsing attributes in process `syz.2.979'. [ 377.012790][T10264] FAULT_INJECTION: forcing a failure. [ 377.012790][T10264] name fail_futex, interval 1, probability 0, space 0, times 0 [ 377.115834][T10264] CPU: 0 UID: 0 PID: 10264 Comm: syz.1.990 Not tainted syzkaller #0 PREEMPT(full) [ 377.115861][T10264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 377.115872][T10264] Call Trace: [ 377.115878][T10264] [ 377.115885][T10264] dump_stack_lvl+0x100/0x190 [ 377.115918][T10264] should_fail_ex.cold+0x5/0xa [ 377.115939][T10264] get_futex_key+0x1d2/0x1620 [ 377.115964][T10264] ? __pfx_get_futex_key+0x10/0x10 [ 377.115984][T10264] ? rcu_is_watching+0x12/0xc0 [ 377.116009][T10264] ? vfs_writev+0x1d5/0xe10 [ 377.116035][T10264] ? kfree+0x2ec/0x6b0 [ 377.116073][T10264] futex_wake+0xea/0x530 [ 377.116102][T10264] ? __pfx_futex_wake+0x10/0x10 [ 377.116131][T10264] ? do_writev+0x214/0x340 [ 377.116162][T10264] do_futex+0x32b/0x350 [ 377.116185][T10264] ? __pfx_do_futex+0x10/0x10 [ 377.116209][T10264] ? __fget_files+0x21f/0x3d0 [ 377.116228][T10264] __x64_sys_futex+0x34f/0x4d0 [ 377.116255][T10264] ? __pfx___x64_sys_futex+0x10/0x10 [ 377.116279][T10264] ? __pfx_do_writev+0x10/0x10 [ 377.116315][T10264] do_syscall_64+0x106/0xf80 [ 377.116336][T10264] ? clear_bhb_loop+0x40/0x90 [ 377.116361][T10264] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 377.116381][T10264] RIP: 0033:0x7fd95ff9c799 [ 377.116397][T10264] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 377.116414][T10264] RSP: 002b:00007fd960ed50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 377.116432][T10264] RAX: ffffffffffffffda RBX: 00007fd960215fa8 RCX: 00007fd95ff9c799 [ 377.116443][T10264] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fd960215fac [ 377.116454][T10264] RBP: 00007fd960215fa0 R08: 0000000000000000 R09: 0000000000000000 [ 377.116464][T10264] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 377.116474][T10264] R13: 00007fd960216038 R14: 00007ffe08f691e0 R15: 00007ffe08f692c8 [ 377.116496][T10264] [ 377.392753][T10271] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 378.511689][T10284] vivid-007: ================= START STATUS ================= [ 378.572419][T10284] vivid-007: Generate PTS: true [ 378.597836][T10284] vivid-007: Generate SCR: true [ 378.613872][T10284] tpg source WxH: 320x240 (Y'CbCr) [ 378.651577][T10284] tpg field: 1 [ 378.662447][T10284] tpg crop: (0,0)/320x240 [ 378.680902][T10284] tpg compose: (0,0)/320x240 [ 378.699902][T10284] tpg colorspace: 8 [ 378.732411][T10284] tpg transfer function: 0/0 [ 378.737098][T10284] tpg Y'CbCr encoding: 0/0 [ 378.821337][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.827684][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.906168][T10284] tpg quantization: 0/0 [ 378.910633][T10284] tpg RGB range: 0/2 [ 378.952025][T10284] vivid-007: ================== END STATUS ================== [ 379.326530][T10285] EXT4-fs error (device sda1): ext4_discard_preallocations:5702: comm syz.1.995: Error -117 reading block bitmap for 5 [ 379.873513][T10298] netlink: 20 bytes leftover after parsing attributes in process `syz.3.997'. [ 381.085876][T10324] bridge0: port 3(team0) entered blocking state [ 381.132958][T10324] bridge0: port 3(team0) entered disabled state [ 381.185780][T10324] team0: entered allmulticast mode [ 381.244576][T10324] team_slave_0: entered allmulticast mode [ 381.300092][T10324] team_slave_1: entered allmulticast mode [ 381.409996][T10324] team0: entered promiscuous mode [ 381.498123][T10324] team_slave_0: entered promiscuous mode [ 381.581308][T10324] team_slave_1: entered promiscuous mode [ 381.701583][T10324] bridge0: port 3(team0) entered blocking state [ 381.708597][T10324] bridge0: port 3(team0) entered forwarding state [ 384.577709][T10387] FAULT_INJECTION: forcing a failure. [ 384.577709][T10387] name failslab, interval 1, probability 0, space 0, times 0 [ 384.622873][T10387] CPU: 0 UID: 0 PID: 10387 Comm: syz.0.1019 Not tainted syzkaller #0 PREEMPT(full) [ 384.622904][T10387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 384.622916][T10387] Call Trace: [ 384.622923][T10387] [ 384.622932][T10387] dump_stack_lvl+0x100/0x190 [ 384.622967][T10387] should_fail_ex.cold+0x5/0xa [ 384.622989][T10387] should_failslab+0xc2/0x120 [ 384.623011][T10387] __kmalloc_cache_noprof+0x7a/0x6f0 [ 384.623036][T10387] ? madvise_collapse+0x1b5/0xbe0 [ 384.623063][T10387] madvise_collapse+0x1b5/0xbe0 [ 384.623090][T10387] ? find_held_lock+0x2b/0x80 [ 384.623107][T10387] ? finish_task_switch.isra.0+0x200/0xb80 [ 384.623134][T10387] ? __pfx_madvise_collapse+0x10/0x10 [ 384.623156][T10387] ? rcu_is_cpu_rrupt_from_idle+0x231/0x270 [ 384.623191][T10387] madvise_vma_behavior+0x1987/0x3050 [ 384.623216][T10387] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 384.623238][T10387] ? mas_prev_setup.constprop.0+0xb6/0x9c0 [ 384.623265][T10387] ? mas_prev+0x9b/0xf0 [ 384.623292][T10387] ? __pfx_mas_prev+0x10/0x10 [ 384.623320][T10387] ? find_vma_prev+0xd8/0x150 [ 384.623339][T10387] ? futex_unqueue+0x133/0x2c0 [ 384.623360][T10387] ? __pfx_find_vma_prev+0x10/0x10 [ 384.623386][T10387] ? __futex_wait+0x256/0x300 [ 384.623417][T10387] madvise_walk_vmas+0x2fe/0xa90 [ 384.623441][T10387] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 384.623469][T10387] madvise_do_behavior+0x1ea/0x510 [ 384.623493][T10387] ? __pfx_madvise_do_behavior+0x10/0x10 [ 384.623514][T10387] ? down_read+0x13b/0x460 [ 384.623549][T10387] do_madvise+0x195/0x240 [ 384.623570][T10387] ? __pfx_do_madvise+0x10/0x10 [ 384.623590][T10387] ? do_futex+0x192/0x350 [ 384.623634][T10387] __x64_sys_madvise+0xa9/0x110 [ 384.623654][T10387] ? lockdep_hardirqs_on+0x78/0x100 [ 384.623676][T10387] do_syscall_64+0x106/0xf80 [ 384.623697][T10387] ? clear_bhb_loop+0x40/0x90 [ 384.623720][T10387] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 384.623739][T10387] RIP: 0033:0x7f0d3d59c799 [ 384.623755][T10387] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 384.623773][T10387] RSP: 002b:00007f0d3e522028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 384.623793][T10387] RAX: ffffffffffffffda RBX: 00007f0d3d815fa0 RCX: 00007f0d3d59c799 [ 384.623804][T10387] RDX: 0000000000000019 RSI: 0000000000200007 RDI: 0000000000000000 [ 384.623815][T10387] RBP: 00007f0d3d632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 384.623825][T10387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 384.623836][T10387] R13: 00007f0d3d816038 R14: 00007f0d3d815fa0 R15: 00007ffd5aeaf7e8 [ 384.623859][T10387] [ 384.988391][T10390] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 386.095418][ T5914] Process accounting resumed [ 386.119014][T10414] syz.1.1025 uses obsolete (PF_INET,SOCK_PACKET) [ 387.042923][T10436] Invalid ELF header len 4 [ 387.799488][ T5833] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 387.807327][ T5833] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection [ 388.169940][T10450] mkiss: ax0: crc mode is auto. [ 389.057872][ T5839] Bluetooth: hci3: Received unexpected HCI Event 0x00 [ 391.167276][T10508] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(511.0.0), cmd(5) [ 392.759054][ T5839] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 392.759082][ T5839] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 392.775236][ T5839] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 392.775257][ T5839] Bluetooth: hci1: Unknown advertising packet type: 0x57 [ 392.783225][ T5839] Bluetooth: hci1: adv larger than maximum supported [ 392.792938][ T5839] Bluetooth: hci1: adv larger than maximum supported [ 392.800129][ T5839] Bluetooth: hci1: Malformed LE Event: 0x0d [ 395.494130][T10594] futex_wake_op: syz.3.1066 tries to shift op by -2048; fix this program [ 395.611305][T10594] futex_wake_op: syz.3.1066 tries to shift op by -2048; fix this program [ 399.123308][ T2985] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1375 with max blocks 23 with error 117 [ 399.199323][ T2985] EXT4-fs (sda1): This should not happen!! Data will be lost [ 399.199323][ T2985] [ 399.357398][T10681] device-mapper: ioctl: Invalid ioctl structure: name , dev 3ff [ 400.242187][T10704] capability: warning: `syz.1.1089' uses 32-bit capabilities (legacy support in use) [ 400.667390][T10709] MTRR 0 not used [ 401.421650][T10732] device-mapper: ioctl: Invalid ioctl structure: name , dev 3ff [ 402.651743][T10753] MTRR 0 not used [ 403.692682][T10767] [U]  [ 404.569164][T10774] sysfs_service_op_show: Client not running :-5: [ 409.198661][T10866] can: request_module (can-proto-0) failed. [ 409.382853][T10882] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 409.431099][T10860] Invalid ELF header magic: != ELF [ 409.655913][T10886] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 412.364100][T10921] FAULT_INJECTION: forcing a failure. [ 412.364100][T10921] name failslab, interval 1, probability 0, space 0, times 0 [ 412.543298][T10921] CPU: 0 UID: 0 PID: 10921 Comm: syz.0.1139 Not tainted syzkaller #0 PREEMPT(full) [ 412.543330][T10921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 412.543343][T10921] Call Trace: [ 412.543351][T10921] [ 412.543359][T10921] dump_stack_lvl+0x100/0x190 [ 412.543395][T10921] should_fail_ex.cold+0x5/0xa [ 412.543418][T10921] should_failslab+0xc2/0x120 [ 412.543441][T10921] __kmalloc_cache_noprof+0x7a/0x6f0 [ 412.543468][T10921] ? madvise_collapse+0x1b5/0xbe0 [ 412.543495][T10921] madvise_collapse+0x1b5/0xbe0 [ 412.543523][T10921] ? find_held_lock+0x2b/0x80 [ 412.543541][T10921] ? finish_task_switch.isra.0+0x200/0xb80 [ 412.543563][T10921] ? __pfx_madvise_collapse+0x10/0x10 [ 412.543586][T10921] ? rcu_is_cpu_rrupt_from_idle+0x231/0x270 [ 412.543624][T10921] madvise_vma_behavior+0x1987/0x3050 [ 412.543651][T10921] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 412.543674][T10921] ? mas_prev_setup.constprop.0+0xb6/0x9c0 [ 412.543702][T10921] ? mas_prev+0x9b/0xf0 [ 412.543726][T10921] ? __pfx_mas_prev+0x10/0x10 [ 412.543766][T10921] ? find_vma_prev+0xd8/0x150 [ 412.543789][T10921] ? futex_unqueue+0x133/0x2c0 [ 412.543814][T10921] ? __pfx_find_vma_prev+0x10/0x10 [ 412.543844][T10921] ? __futex_wait+0x256/0x300 [ 412.543881][T10921] madvise_walk_vmas+0x2fe/0xa90 [ 412.543907][T10921] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 412.543937][T10921] madvise_do_behavior+0x1ea/0x510 [ 412.543963][T10921] ? __pfx_madvise_do_behavior+0x10/0x10 [ 412.543986][T10921] ? down_read+0x13b/0x460 [ 412.544029][T10921] do_madvise+0x195/0x240 [ 412.544051][T10921] ? __pfx_do_madvise+0x10/0x10 [ 412.544076][T10921] ? do_futex+0x192/0x350 [ 412.544124][T10921] __x64_sys_madvise+0xa9/0x110 [ 412.544149][T10921] ? lockdep_hardirqs_on+0x78/0x100 [ 412.544173][T10921] do_syscall_64+0x106/0xf80 [ 412.544196][T10921] ? clear_bhb_loop+0x40/0x90 [ 412.544219][T10921] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 412.544240][T10921] RIP: 0033:0x7f0d3d59c799 [ 412.544259][T10921] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 412.544279][T10921] RSP: 002b:00007f0d3e522028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 412.544300][T10921] RAX: ffffffffffffffda RBX: 00007f0d3d815fa0 RCX: 00007f0d3d59c799 [ 412.544312][T10921] RDX: 0000000000000019 RSI: 0000000000200007 RDI: 0000000000000000 [ 412.544328][T10921] RBP: 00007f0d3d632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 412.544340][T10921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 412.544350][T10921] R13: 00007f0d3d816038 R14: 00007f0d3d815fa0 R15: 00007ffd5aeaf7e8 [ 412.544375][T10921] [ 413.712259][T10939] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1144'. [ 414.423738][T10952] MTRR 0 not used [ 414.850646][T10961] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1150'. [ 414.943610][ T5839] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 414.951783][ T5839] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection [ 416.253210][T10988] netlink: 25 bytes leftover after parsing attributes in process `syz.1.1157'. [ 418.113046][T11019] MTRR 0 not used [ 420.609986][T11058] Invalid ELF header magic: != ELF [ 423.695922][T11108] netlink: 'syz.1.1192': attribute type 4 has an invalid length. [ 423.756651][T11108] netlink: 314 bytes leftover after parsing attributes in process `syz.1.1192'. [ 424.393082][T11121] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1193: iget: checksum invalid [ 424.522179][T11121] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 424.594163][T11121] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1193: iget: checksum invalid [ 424.638424][T11121] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 424.695466][T11121] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1193: iget: checksum invalid [ 424.753811][T11121] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 424.794799][T11121] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1193: iget: checksum invalid [ 424.899090][T11121] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 424.948645][T11121] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 424.989616][T11121] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 425.881703][ T30] audit: type=1800 audit(4294967362.352:10): pid=11146 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1199" name="lu_gp_id" dev="configfs" ino=38337 res=0 errno=0 [ 427.255539][T11172] netlink: 'syz.1.1205': attribute type 1 has an invalid length. [ 428.069793][T11186] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1210'. [ 428.620935][T11197] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1212'. [ 428.977409][T11206] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1214'. [ 429.283080][T11208] netlink: 25 bytes leftover after parsing attributes in process `syz.1.1215'. [ 431.035661][T11249] random: crng reseeded on system resumption [ 431.205033][T11256] device-mapper: ioctl: Invalid ioctl structure: name , dev 3ff [ 431.215925][ T5833] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 431.258088][T11249] hub 1-0:1.0: USB hub found [ 431.317899][T11249] hub 1-0:1.0: 1 port detected [ 433.657204][T11297] FAULT_INJECTION: forcing a failure. [ 433.657204][T11297] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 433.714729][T11297] CPU: 0 UID: 0 PID: 11297 Comm: syz.2.1235 Not tainted syzkaller #0 PREEMPT(full) [ 433.714756][T11297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 433.714766][T11297] Call Trace: [ 433.714772][T11297] [ 433.714779][T11297] dump_stack_lvl+0x100/0x190 [ 433.714810][T11297] should_fail_ex.cold+0x5/0xa [ 433.714830][T11297] _copy_from_user+0x2e/0xd0 [ 433.714849][T11297] core_sys_select+0x319/0xbb0 [ 433.714881][T11297] ? __pfx_core_sys_select+0x10/0x10 [ 433.714908][T11297] ? get_pid_task+0xfc/0x250 [ 433.714934][T11297] ? get_pid_task+0x106/0x250 [ 433.714968][T11297] ? __pfx_vfs_write+0x10/0x10 [ 433.714996][T11297] ? do_sys_openat2+0x157/0x1e0 [ 433.715018][T11297] ? __pfx_do_sys_openat2+0x10/0x10 [ 433.715043][T11297] kern_select+0x20c/0x270 [ 433.715072][T11297] ? __pfx_kern_select+0x10/0x10 [ 433.715103][T11297] ? __pfx_ksys_write+0x10/0x10 [ 433.715122][T11297] __x64_sys_select+0xbd/0x160 [ 433.715148][T11297] ? do_syscall_64+0x95/0xf80 [ 433.715169][T11297] ? lockdep_hardirqs_on+0x78/0x100 [ 433.715190][T11297] do_syscall_64+0x106/0xf80 [ 433.715210][T11297] ? clear_bhb_loop+0x40/0x90 [ 433.715231][T11297] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 433.715249][T11297] RIP: 0033:0x7f1cead9c799 [ 433.715264][T11297] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 433.715280][T11297] RSP: 002b:00007f1cebbfd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 433.715297][T11297] RAX: ffffffffffffffda RBX: 00007f1ceb015fa0 RCX: 00007f1cead9c799 [ 433.715309][T11297] RDX: 0000200000000180 RSI: 0000000000000000 RDI: 0000000000000009 [ 433.715319][T11297] RBP: 00007f1cebbfd090 R08: 0000000000000000 R09: 0000000000000000 [ 433.715329][T11297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 433.715339][T11297] R13: 00007f1ceb016038 R14: 00007f1ceb015fa0 R15: 00007ffc067a7568 [ 433.715371][T11297] [ 435.910110][T11342] FAULT_INJECTION: forcing a failure. [ 435.910110][T11342] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 435.947189][T11343] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1248'. [ 435.966922][T11342] CPU: 0 UID: 0 PID: 11342 Comm: syz.0.1246 Not tainted syzkaller #0 PREEMPT(full) [ 435.966950][T11342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 435.966961][T11342] Call Trace: [ 435.966968][T11342] [ 435.966975][T11342] dump_stack_lvl+0x100/0x190 [ 435.967008][T11342] should_fail_ex.cold+0x5/0xa [ 435.967030][T11342] core_sys_select+0x9b9/0xbb0 [ 435.967063][T11342] ? __pfx_core_sys_select+0x10/0x10 [ 435.967090][T11342] ? get_pid_task+0xfc/0x250 [ 435.967116][T11342] ? get_pid_task+0x106/0x250 [ 435.967151][T11342] ? __pfx_vfs_write+0x10/0x10 [ 435.967178][T11342] ? do_sys_openat2+0x157/0x1e0 [ 435.967201][T11342] ? __pfx_do_sys_openat2+0x10/0x10 [ 435.967227][T11342] kern_select+0x20c/0x270 [ 435.967256][T11342] ? __pfx_kern_select+0x10/0x10 [ 435.967286][T11342] ? __pfx_ksys_write+0x10/0x10 [ 435.967305][T11342] __x64_sys_select+0xbd/0x160 [ 435.967331][T11342] ? do_syscall_64+0x95/0xf80 [ 435.967353][T11342] ? lockdep_hardirqs_on+0x78/0x100 [ 435.967374][T11342] do_syscall_64+0x106/0xf80 [ 435.967393][T11342] ? clear_bhb_loop+0x40/0x90 [ 435.967415][T11342] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 435.967433][T11342] RIP: 0033:0x7f0d3d59c799 [ 435.967449][T11342] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 435.967526][T11342] RSP: 002b:00007f0d3e522028 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 435.967546][T11342] RAX: ffffffffffffffda RBX: 00007f0d3d815fa0 RCX: 00007f0d3d59c799 [ 435.967557][T11342] RDX: 0000200000000180 RSI: 0000000000000000 RDI: 0000000000000009 [ 435.967567][T11342] RBP: 00007f0d3e522090 R08: 0000000000000000 R09: 0000000000000000 [ 435.967577][T11342] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 435.967587][T11342] R13: 00007f0d3d816038 R14: 00007f0d3d815fa0 R15: 00007ffd5aeaf7e8 [ 435.967609][T11342] [ 436.921041][ T5839] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 436.930146][ T5839] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection [ 437.303993][T11344] MTRR 0 not used [ 439.374068][T11389] bond0: no command found in slaves file - use +ifname or -ifname [ 439.771320][ T5833] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 439.779161][ T5833] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection [ 440.245096][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.251743][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 441.572444][T11436] FAULT_INJECTION: forcing a failure. [ 441.572444][T11436] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 441.572481][T11436] CPU: 0 UID: 0 PID: 11436 Comm: syz.2.1267 Not tainted syzkaller #0 PREEMPT(full) [ 441.572502][T11436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 441.572513][T11436] Call Trace: [ 441.572519][T11436] [ 441.572526][T11436] dump_stack_lvl+0x100/0x190 [ 441.572558][T11436] should_fail_ex.cold+0x5/0xa [ 441.572576][T11436] ? prepare_alloc_pages+0x16d/0x5f0 [ 441.572598][T11436] should_fail_alloc_page+0xeb/0x140 [ 441.572618][T11436] prepare_alloc_pages+0x1f0/0x5f0 [ 441.572642][T11436] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 441.572670][T11436] ? try_to_migrate_one+0x142e/0x37f0 [ 441.572706][T11436] ? __pfx_try_to_migrate_one+0x10/0x10 [ 441.572730][T11436] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 441.572770][T11436] ? __up_read+0x2c5/0x700 [ 441.572796][T11436] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 441.572826][T11436] ? policy_nodemask+0xed/0x4f0 [ 441.572846][T11436] alloc_pages_mpol+0x1fb/0x550 [ 441.572865][T11436] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 441.572889][T11436] folio_alloc_mpol_noprof+0x36/0x340 [ 441.572912][T11436] alloc_migration_target_by_mpol+0x2c1/0x650 [ 441.572936][T11436] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 441.572960][T11436] ? __pfx___might_resched+0x10/0x10 [ 441.572990][T11436] migrate_pages_batch+0x4f2/0x4530 [ 441.573013][T11436] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 441.573043][T11436] ? walk_pgd_range+0x1115/0x1eb0 [ 441.573069][T11436] ? __pfx_migrate_pages_batch+0x10/0x10 [ 441.573106][T11436] migrate_pages_sync+0x12c/0x880 [ 441.573127][T11436] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 441.573155][T11436] ? __pfx_migrate_pages_sync+0x10/0x10 [ 441.573174][T11436] ? __pfx_queue_pages_test_walk+0x10/0x10 [ 441.573204][T11436] migrate_pages+0x1aae/0x28a0 [ 441.573228][T11436] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 441.573256][T11436] ? __pfx_migrate_pages+0x10/0x10 [ 441.573276][T11436] ? mas_next_slot+0x1003/0x18b0 [ 441.573300][T11436] ? find_held_lock+0x2b/0x80 [ 441.573317][T11436] ? do_mbind+0x557/0xfd0 [ 441.573341][T11436] ? up_write+0x290/0x4f0 [ 441.573367][T11436] do_mbind+0x5a6/0xfd0 [ 441.573394][T11436] ? __pfx_do_mbind+0x10/0x10 [ 441.573414][T11436] ? putname+0xb1/0x110 [ 441.573439][T11436] ? kmem_cache_free+0x124/0x6a0 [ 441.573472][T11436] ? __pfx_get_nodes+0x10/0x10 [ 441.573497][T11436] ? rcu_is_watching+0x12/0xc0 [ 441.573530][T11436] kernel_mbind+0x1b7/0x200 [ 441.573553][T11436] ? __pfx_kernel_mbind+0x10/0x10 [ 441.573580][T11436] do_syscall_64+0x106/0xf80 [ 441.573601][T11436] ? clear_bhb_loop+0x40/0x90 [ 441.573623][T11436] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 441.573641][T11436] RIP: 0033:0x7f1cead9c799 [ 441.573656][T11436] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 441.573673][T11436] RSP: 002b:00007f1ce8ff6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 441.573692][T11436] RAX: ffffffffffffffda RBX: 00007f1ceb016450 RCX: 00007f1cead9c799 [ 441.573702][T11436] RDX: 0000002100000000 RSI: 0000000100000008 RDI: 0000000000002000 [ 441.573713][T11436] RBP: 00007f1ceae32bd9 R08: 0000000000000006 R09: 0000000000000002 [ 441.573723][T11436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 441.573733][T11436] R13: 00007f1ceb0164e8 R14: 00007f1ceb016450 R15: 00007ffc067a7568 [ 441.573755][T11436] [ 442.377740][T11450] FAULT_INJECTION: forcing a failure. [ 442.377740][T11450] name failslab, interval 1, probability 0, space 0, times 0 [ 442.377778][T11450] CPU: 0 UID: 0 PID: 11450 Comm: syz.1.1271 Not tainted syzkaller #0 PREEMPT(full) [ 442.377799][T11450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 442.377810][T11450] Call Trace: [ 442.377817][T11450] [ 442.377824][T11450] dump_stack_lvl+0x100/0x190 [ 442.377859][T11450] should_fail_ex.cold+0x5/0xa [ 442.377881][T11450] should_failslab+0xc2/0x120 [ 442.377901][T11450] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 442.377927][T11450] ? security_file_alloc+0x34/0x2c0 [ 442.377947][T11450] ? trace_kmem_cache_alloc+0xf3/0x120 [ 442.377969][T11450] security_file_alloc+0x34/0x2c0 [ 442.377993][T11450] init_file+0x95/0x480 [ 442.378017][T11450] alloc_empty_file+0x73/0x1c0 [ 442.378040][T11450] alloc_file_pseudo+0x13a/0x230 [ 442.378064][T11450] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 442.378088][T11450] ? alloc_fd+0x476/0x790 [ 442.378112][T11450] sock_alloc_file+0x50/0x210 [ 442.378138][T11450] __sys_socket+0x1c0/0x260 [ 442.378154][T11450] ? __pfx___sys_socket+0x10/0x10 [ 442.378188][T11450] __x64_sys_socket+0x72/0xb0 [ 442.378204][T11450] ? lockdep_hardirqs_on+0x78/0x100 [ 442.378226][T11450] do_syscall_64+0x106/0xf80 [ 442.378246][T11450] ? clear_bhb_loop+0x40/0x90 [ 442.378269][T11450] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 442.378289][T11450] RIP: 0033:0x7fd95ff9c799 [ 442.378305][T11450] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 442.378323][T11450] RSP: 002b:00007fd960ed5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 442.378342][T11450] RAX: ffffffffffffffda RBX: 00007fd960215fa0 RCX: 00007fd95ff9c799 [ 442.378354][T11450] RDX: 0000000000000000 RSI: 0000000000080003 RDI: 000000000000002c [ 442.378365][T11450] RBP: 00007fd960032bd9 R08: 0000000000000000 R09: 0000000000000000 [ 442.378375][T11450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 442.378386][T11450] R13: 00007fd960216038 R14: 00007fd960215fa0 R15: 00007ffe08f692c8 [ 442.378408][T11450] [ 442.713936][T11455] Ignoring unsupported numa_zonelist_order value: [ 442.988590][T11457] netlink: 'syz.1.1274': attribute type 10 has an invalid length. [ 442.988616][T11457] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1274'. [ 445.578953][T11483] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1279'. [ 445.720804][T11486] [U]  [ 445.723797][T11486] [U] [ 445.726664][T11486] [U] [ 445.729389][T11486] [U] [ 445.811487][T11486] [U] [ 445.814311][T11486] [U] [ 445.817001][T11486] [U] [ 445.819691][T11486] [U] [ 445.882158][T11486] [U] [ 445.884884][T11486] [U] [ 445.887571][T11486] [U] [ 445.890255][T11486] [U] [ 445.981005][T11486] [U] [ 445.983863][T11486] [U] [ 445.986572][T11486] [U] [ 445.989457][T11486] [U] [ 446.051081][T11486] [U] [ 446.053821][T11486] [U] [ 446.056523][T11486] [U] [ 446.059315][T11486] [U] [ 446.146853][T11488] zswap: compressor not available [ 446.154136][T11486] [U] [ 446.156870][T11486] [U] [ 446.159594][T11486] [U] [ 446.162279][T11486] [U] [ 446.193857][T11486] [U] [ 446.196657][T11486] [U] [ 446.199371][T11486] [U] [ 446.202073][T11486] [U] [ 446.225527][T11486] [U] [ 446.228255][T11486] [U] [ 446.230952][T11486] [U] [ 446.233635][T11486] [U] [ 446.261072][T11486] [U] [ 446.263808][T11486] [U] [ 446.266501][T11486] [U] [ 446.269186][T11486] [U] [ 446.304036][T11486] [U] [ 446.306772][T11486] [U] [ 446.309496][T11486] [U] [ 446.312184][T11486] [U] [ 446.338677][T11486] [U] [ 446.341417][T11486] [U] [ 446.344114][T11486] [U] [ 446.346802][T11486] [U] [ 446.371228][T11486] [U] [ 446.373961][T11486] [U] [ 446.376652][T11486] [U] [ 446.379354][T11486] [U] [ 446.447347][T11486] [U] [ 446.450082][T11486] [U] [ 446.452860][T11486] [U] [ 446.455566][T11486] [U] [ 446.517696][T11486] [U] [ 447.819403][T11520] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1288'. [ 448.282982][T11524] MTRR 0 not used [ 449.552498][T11551] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.1296: iget: checksum invalid [ 449.601114][T11551] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 449.706839][T11546] zswap: compressor  not available [ 449.742322][T11551] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.1296: iget: checksum invalid [ 449.872684][T11551] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 450.010484][T11551] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.1296: iget: checksum invalid [ 450.119918][T11551] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 450.231555][T11551] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.1296: iget: checksum invalid [ 450.364534][T11551] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 450.398561][ T5839] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 450.408119][ T5839] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection [ 450.428093][T11551] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 450.500714][T11551] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 451.039325][ T5833] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 451.050867][ T5833] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection [ 451.704727][T11583] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 453.383868][ T30] audit: type=1800 audit(4294967389.852:11): pid=11614 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1305" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 453.493807][ T30] audit: type=1804 audit(4294967389.912:12): pid=11611 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1314" name="/newroot/336/file0" dev="tmpfs" ino=1756 res=1 errno=0 [ 454.079871][T11621] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 455.769626][T11640] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1358 with max blocks 40 with error 117 [ 455.884328][T11640] EXT4-fs (sda1): This should not happen!! Data will be lost [ 455.884328][T11640] [ 456.954391][T11670] netlink: 'syz.1.1329': attribute type 7 has an invalid length. [ 457.057829][T11671] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1328'. [ 457.114377][T11675] nfs: Unknown parameter 'nl802154' [ 458.896576][T11709] netlink: 314 bytes leftover after parsing attributes in process `syz.2.1339'. [ 460.742203][T11754] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 461.357546][T11766] random: crng reseeded on system resumption [ 461.586149][T11766] FAULT_INJECTION: forcing a failure. [ 461.586149][T11766] name failslab, interval 1, probability 0, space 0, times 0 [ 461.654075][T11766] CPU: 0 UID: 0 PID: 11766 Comm: syz.0.1352 Not tainted syzkaller #0 PREEMPT(full) [ 461.654104][T11766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 461.654116][T11766] Call Trace: [ 461.654123][T11766] [ 461.654132][T11766] dump_stack_lvl+0x100/0x190 [ 461.654165][T11766] should_fail_ex.cold+0x5/0xa [ 461.654187][T11766] ? ops_init+0x77/0x5f0 [ 461.654210][T11766] should_failslab+0xc2/0x120 [ 461.654239][T11766] __kmalloc_noprof+0xe0/0x850 [ 461.654273][T11766] ops_init+0x77/0x5f0 [ 461.654297][T11766] setup_net+0x118/0x3a0 [ 461.654320][T11766] ? __pfx_setup_net+0x10/0x10 [ 461.654341][T11766] ? lockdep_init_map_type+0x5c/0x250 [ 461.654367][T11766] ? mutex_init_lockep+0x110/0x150 [ 461.654396][T11766] copy_net_ns+0x46f/0x7c0 [ 461.654425][T11766] create_new_namespaces+0x3ea/0xac0 [ 461.654451][T11766] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 461.654472][T11766] ksys_unshare+0x473/0xad0 [ 461.654496][T11766] ? __pfx_ksys_unshare+0x10/0x10 [ 461.654526][T11766] __x64_sys_unshare+0x31/0x40 [ 461.654548][T11766] do_syscall_64+0x106/0xf80 [ 461.654569][T11766] ? clear_bhb_loop+0x40/0x90 [ 461.654591][T11766] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 461.654610][T11766] RIP: 0033:0x7f0d3d59c799 [ 461.654625][T11766] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 461.654643][T11766] RSP: 002b:00007f0d3e522028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 461.654661][T11766] RAX: ffffffffffffffda RBX: 00007f0d3d815fa0 RCX: 00007f0d3d59c799 [ 461.654673][T11766] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 461.654684][T11766] RBP: 00007f0d3d632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 461.654696][T11766] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 461.654707][T11766] R13: 00007f0d3d816038 R14: 00007f0d3d815fa0 R15: 00007ffd5aeaf7e8 [ 461.654732][T11766] [ 462.203330][ T5839] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 462.211419][ T5839] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection [ 462.908518][T11788] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1357'. [ 464.411849][T11808] netlink: 25 bytes leftover after parsing attributes in process `syz.1.1361'. [ 465.283353][T11821] bond0: invalid ARP target specified [ 467.732011][T11858] random: crng reseeded on system resumption [ 470.195521][T11892] misc userio: Invalid payload size [ 471.610272][ T5833] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 471.617927][ T5833] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection [ 473.237840][T11957] FAULT_INJECTION: forcing a failure. [ 473.237840][T11957] name fail_futex, interval 1, probability 0, space 0, times 0 [ 473.353823][T11957] CPU: 0 UID: 0 PID: 11957 Comm: syz.1.1395 Not tainted syzkaller #0 PREEMPT(full) [ 473.353850][T11957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 473.353861][T11957] Call Trace: [ 473.353868][T11957] [ 473.353876][T11957] dump_stack_lvl+0x100/0x190 [ 473.353908][T11957] should_fail_ex.cold+0x5/0xa [ 473.353930][T11957] get_futex_key+0x1d2/0x1620 [ 473.353954][T11957] ? __pfx_get_futex_key+0x10/0x10 [ 473.353983][T11957] futex_wake+0xea/0x530 [ 473.354020][T11957] ? __pfx_futex_wake+0x10/0x10 [ 473.354046][T11957] ? __call_rcu_common.constprop.0+0x3f0/0x9b0 [ 473.354080][T11957] do_futex+0x32b/0x350 [ 473.354103][T11957] ? __pfx_do_futex+0x10/0x10 [ 473.354126][T11957] ? __pfx___might_resched+0x10/0x10 [ 473.354153][T11957] ? blkcg_maybe_throttle_current+0x5df/0xeb0 [ 473.354180][T11957] __x64_sys_futex+0x34f/0x4d0 [ 473.354206][T11957] ? __pfx___x64_sys_futex+0x10/0x10 [ 473.354230][T11957] ? arch_syscall_is_vdso_sigreturn+0xb6/0x200 [ 473.354253][T11957] ? syscall_user_dispatch+0x76/0x130 [ 473.354280][T11957] do_syscall_64+0x106/0xf80 [ 473.354302][T11957] ? clear_bhb_loop+0x40/0x90 [ 473.354324][T11957] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 473.354342][T11957] RIP: 0033:0x7fd95ff9c799 [ 473.354358][T11957] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 473.354375][T11957] RSP: 002b:00007fd960eb40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 473.354393][T11957] RAX: ffffffffffffffda RBX: 00007fd960216098 RCX: 00007fd95ff9c799 [ 473.354405][T11957] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fd96021609c [ 473.354416][T11957] RBP: 00007fd960216090 R08: 0000000000000000 R09: 0000000000000000 [ 473.354427][T11957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 473.354437][T11957] R13: 00007fd960216128 R14: 00007ffe08f691e0 R15: 00007ffe08f692c8 [ 473.354460][T11957] [ 474.159280][T11974] FAULT_INJECTION: forcing a failure. [ 474.159280][T11974] name failslab, interval 1, probability 0, space 0, times 0 [ 474.223239][T11974] CPU: 0 UID: 0 PID: 11974 Comm: syz.0.1401 Not tainted syzkaller #0 PREEMPT(full) [ 474.223268][T11974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 474.223279][T11974] Call Trace: [ 474.223285][T11974] [ 474.223293][T11974] dump_stack_lvl+0x100/0x190 [ 474.223324][T11974] should_fail_ex.cold+0x5/0xa [ 474.223346][T11974] should_failslab+0xc2/0x120 [ 474.223367][T11974] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 474.223394][T11974] ? alloc_empty_file_noaccount+0x23/0xd0 [ 474.223422][T11974] alloc_empty_file_noaccount+0x23/0xd0 [ 474.223445][T11974] alloc_file_pseudo_noaccount+0x13a/0x230 [ 474.223470][T11974] ? __pfx_alloc_file_pseudo_noaccount+0x10/0x10 [ 474.223496][T11974] ? iput+0x3a/0x40 [ 474.223519][T11974] bdev_file_open_by_dev+0x13a/0x210 [ 474.223543][T11974] blkdev_bszset+0x170/0x240 [ 474.223564][T11974] ? __pfx_blkdev_bszset+0x10/0x10 [ 474.223586][T11974] ? find_held_lock+0x2b/0x80 [ 474.223602][T11974] ? __fget_files+0x215/0x3d0 [ 474.223617][T11974] ? hook_file_ioctl_common+0x146/0x410 [ 474.223648][T11974] blkdev_ioctl+0x513/0x6f0 [ 474.223669][T11974] ? __pfx_blkdev_ioctl+0x10/0x10 [ 474.223694][T11974] ? __pfx_blkdev_ioctl+0x10/0x10 [ 474.223716][T11974] __x64_sys_ioctl+0x18e/0x210 [ 474.223743][T11974] do_syscall_64+0x106/0xf80 [ 474.223764][T11974] ? clear_bhb_loop+0x40/0x90 [ 474.223786][T11974] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 474.223804][T11974] RIP: 0033:0x7f0d3d59c799 [ 474.223819][T11974] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 474.223837][T11974] RSP: 002b:00007f0d3e522028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 474.223855][T11974] RAX: ffffffffffffffda RBX: 00007f0d3d815fa0 RCX: 00007f0d3d59c799 [ 474.223867][T11974] RDX: 00002000000000c0 RSI: 0000000040081271 RDI: 0000000000000006 [ 474.223879][T11974] RBP: 00007f0d3d632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 474.223889][T11974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 474.223900][T11974] R13: 00007f0d3d816038 R14: 00007f0d3d815fa0 R15: 00007ffd5aeaf7e8 [ 474.223923][T11974] [ 474.606509][T11978] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1403'. [ 474.644091][T11980] device-mapper: ioctl: Invalid ioctl structure: name , dev 3ff [ 475.183481][T11974] Line length is too long: Should be less than 4094 [ 476.594858][T12015] device-mapper: ioctl: Invalid ioctl structure: name , dev 3ff [ 477.214840][T12030] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1418'. [ 478.728155][ T5839] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 478.735993][ T5839] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection [ 479.393931][T12075] device-mapper: ioctl: Invalid ioctl structure: name , dev 3ff [ 479.490904][T12077] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.3.1424: bg 7: bad block bitmap checksum [ 479.647720][T12077] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 74 [ 479.772577][T12077] EXT4-fs (sda1): This should not happen!! Data will be lost [ 479.772577][T12077] [ 480.060165][T12087] futex_wake_op: syz.3.1429 tries to shift op by -2048; fix this program [ 480.107618][T12087] futex_wake_op: syz.3.1429 tries to shift op by -2048; fix this program [ 481.372743][T12135] futex_wake_op: syz.3.1435 tries to shift op by -2048; fix this program [ 482.197039][T12155] sctp: [Deprecated]: syz.1.1441 (pid 12155) Use of int in maxseg socket option. [ 482.197039][T12155] Use struct sctp_assoc_value instead [ 483.591780][T12173] zswap: compressor not available [ 483.801698][T12166] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1443'. [ 484.118810][T12196] netlink: 'syz.1.1448': attribute type 1 has an invalid length. [ 484.461080][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 484.468586][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 489.537067][T12272] Invalid ELF header magic: != ELF [ 490.641986][ T9932] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1338 with max blocks 60 with error 117 [ 490.705068][ T9932] EXT4-fs (sda1): This should not happen!! Data will be lost [ 490.705068][ T9932] [ 492.930584][T12299] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1473'. [ 492.991778][T12299] netlink: 13 bytes leftover after parsing attributes in process `syz.0.1473'. [ 494.424512][ T30] audit: type=1107 audit(4294967430.892:13): pid=12319 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 494.476576][T12323] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input17 [ 494.524070][ T30] audit: type=1107 audit(4294967430.892:14): pid=12319 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 494.624140][ T30] audit: type=1107 audit(4294967430.892:15): pid=12319 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 495.956259][ T3015] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117 [ 496.060851][ T3015] EXT4-fs (sda1): This should not happen!! Data will be lost [ 496.060851][ T3015] [ 498.550212][T12357] Invalid ELF header magic: != ELF [ 499.702364][T12364] NFSD: Failed to start, no listeners configured. [ 499.951209][T12369] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1487'. [ 501.685810][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.692334][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 512.262179][T12427] EXT4-fs error (device sda1): ext4_discard_preallocations:5702: comm syz.0.1498: Error -117 reading block bitmap for 7 [ 514.872970][T12453] NFSD: Failed to start, no listeners configured. [ 518.824184][ T5839] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 518.832004][ T5839] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 520.485389][ T5833] Bluetooth: Frame is too long (len 122, expected len 4) [ 521.809573][ T9931] netdevsim netdevsim1335 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 527.597093][T12494] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137 [ 527.753688][T12494] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 1, inode_bitmap = 138 [ 527.872520][T12494] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum [ 528.709771][ T5839] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 528.723918][ T5839] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 528.743151][ T5839] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 528.756916][ T5839] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 528.764666][ T5839] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 529.770171][ T2985] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 530.245954][ T2985] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 530.629279][ T2985] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 530.801028][ T5839] Bluetooth: hci4: command tx timeout [ 531.683231][ T2985] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 531.802478][T12508] chnl_net:caif_netlink_parms(): no params data found [ 532.431652][T12508] bridge0: port 1(bridge_slave_0) entered blocking state [ 532.438968][T12508] bridge0: port 1(bridge_slave_0) entered disabled state [ 532.526998][T12508] bridge_slave_0: entered allmulticast mode [ 532.572801][T12508] bridge_slave_0: entered promiscuous mode [ 532.632987][T12508] bridge0: port 2(bridge_slave_1) entered blocking state [ 532.640108][T12508] bridge0: port 2(bridge_slave_1) entered disabled state [ 532.721135][T12508] bridge_slave_1: entered allmulticast mode [ 532.775549][T12508] bridge_slave_1: entered promiscuous mode [ 532.880967][ T5839] Bluetooth: hci4: command tx timeout [ 532.945715][T12555] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1525'. [ 533.056710][T12508] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 533.162544][T12508] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 533.236779][ T2985] bridge_slave_1: left allmulticast mode [ 533.264825][ T2985] bridge_slave_1: left promiscuous mode [ 533.326759][ T30] audit: type=1800 audit(4294967469.782:16): pid=12559 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1526" name="file0" dev="tmpfs" ino=2030 res=0 errno=0 [ 533.350283][ T2985] bridge0: port 2(bridge_slave_1) entered disabled state [ 533.499899][ T2985] bridge_slave_0: left allmulticast mode [ 533.513610][ T2985] bridge_slave_0: left promiscuous mode [ 533.568986][ T2985] bridge0: port 1(bridge_slave_0) entered disabled state [ 534.961071][ T5839] Bluetooth: hci4: command tx timeout [ 535.175352][ T2985] ovs_: left promiscuous mode [ 535.416480][T12508] team0: Port device team_slave_0 added [ 535.762692][T12508] team0: Port device team_slave_1 added [ 535.965128][T12508] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 536.012820][T12508] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 536.152828][T12508] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 536.363624][T12508] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 536.413288][T12508] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 536.613695][T12508] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 537.040929][ T5839] Bluetooth: hci4: command tx timeout [ 537.127011][ T2985] hsr_slave_0: left promiscuous mode [ 537.156248][ T2985] hsr_slave_1: left promiscuous mode [ 537.196258][ T2985] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 537.252087][ T2985] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 537.313853][ T2985] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 537.371304][ T2985] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 537.592582][ T2985] veth1_macvtap: left promiscuous mode [ 537.598441][ T2985] veth0_macvtap: left promiscuous mode [ 537.661845][ T2985] veth1_vlan: left promiscuous mode [ 537.667197][ T2985] veth0_vlan: left promiscuous mode [ 540.319037][ T2985] team0 (unregistering): Port device team_slave_1 removed [ 540.479886][ T2985] team0 (unregistering): Port device team_slave_0 removed [ 541.527985][T12508] hsr_slave_0: entered promiscuous mode [ 541.556635][T12508] hsr_slave_1: entered promiscuous mode [ 541.589493][T12508] debugfs: 'hsr0' already exists in 'hsr' [ 541.630847][T12508] Cannot create hsr debugfs directory [ 543.554499][T12508] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 543.765514][T12508] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 543.852772][T12508] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 543.956095][T12508] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 544.664569][T12508] 8021q: adding VLAN 0 to HW filter on device bond0 [ 544.929819][T12508] 8021q: adding VLAN 0 to HW filter on device team0 [ 545.043296][ T9936] bridge0: port 1(bridge_slave_0) entered blocking state [ 545.050493][ T9936] bridge0: port 1(bridge_slave_0) entered forwarding state [ 545.691258][ T9936] bridge0: port 2(bridge_slave_1) entered blocking state [ 545.698625][ T9936] bridge0: port 2(bridge_slave_1) entered forwarding state [ 546.088199][T12508] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 547.912893][T12508] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 548.473639][ T5839] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 548.518800][ T5839] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:0' [ 548.528746][ T5839] CPU: 0 UID: 0 PID: 5839 Comm: kworker/u9:8 Not tainted syzkaller #0 PREEMPT(full) [ 548.528772][ T5839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 548.528784][ T5839] Workqueue: hci1 hci_rx_work [ 548.528807][ T5839] Call Trace: [ 548.528814][ T5839] [ 548.528821][ T5839] dump_stack_lvl+0x100/0x190 [ 548.528850][ T5839] sysfs_warn_dup.cold+0x1c/0x28 [ 548.528876][ T5839] sysfs_create_dir_ns+0x24b/0x2b0 [ 548.528902][ T5839] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 548.528926][ T5839] ? find_held_lock+0x2b/0x80 [ 548.528942][ T5839] ? kobject_add_internal+0x25f/0x930 [ 548.528968][ T5839] ? kobject_add_internal+0x25f/0x930 [ 548.528996][ T5839] ? do_raw_spin_unlock+0x145/0x1e0 [ 548.529024][ T5839] kobject_add_internal+0x2c8/0x930 [ 548.529053][ T5839] kobject_add+0x16a/0x1e0 [ 548.529078][ T5839] ? __pfx_kobject_add+0x10/0x10 [ 548.529101][ T5839] ? class_to_subsys+0x10f/0x150 [ 548.529124][ T5839] ? kobject_put+0xb9/0x640 [ 548.529145][ T5839] ? _raw_spin_unlock+0x28/0x50 [ 548.529169][ T5839] device_add+0x294/0x1950 [ 548.529195][ T5839] ? __pfx_dev_set_name+0x10/0x10 [ 548.529216][ T5839] ? __pfx_device_add+0x10/0x10 [ 548.529233][ T5839] ? mgmt_send_event_skb+0x2fb/0x460 [ 548.529258][ T5839] hci_conn_add_sysfs+0x1a3/0x260 [ 548.529280][ T5839] le_conn_complete_evt+0x11cb/0x1f40 [ 548.529305][ T5839] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 548.529322][ T5839] ? __pfx_bt_warn+0x10/0x10 [ 548.529348][ T5839] hci_le_conn_complete_evt+0x23c/0x3a0 [ 548.529368][ T5839] ? skb_pull_data+0x15f/0x1e0 [ 548.529398][ T5839] hci_le_meta_evt+0x34a/0x5f0 [ 548.529418][ T5839] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 548.529440][ T5839] hci_event_packet+0x682/0x11c0 [ 548.529458][ T5839] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 548.529479][ T5839] ? __pfx_hci_event_packet+0x10/0x10 [ 548.529500][ T5839] ? kcov_remote_start+0x374/0x660 [ 548.529517][ T5839] ? lockdep_hardirqs_on+0x78/0x100 [ 548.529543][ T5839] hci_rx_work+0x451/0xfc0 [ 548.529565][ T5839] process_one_work+0x9d7/0x1920 [ 548.529600][ T5839] ? __pfx_process_one_work+0x10/0x10 [ 548.529632][ T5839] ? __pfx_hci_rx_work+0x10/0x10 [ 548.529652][ T5839] worker_thread+0x5da/0xe40 [ 548.529689][ T5839] ? __pfx_worker_thread+0x10/0x10 [ 548.529715][ T5839] ? kthread+0x13a/0x450 [ 548.529736][ T5839] ? __pfx_worker_thread+0x10/0x10 [ 548.529760][ T5839] kthread+0x370/0x450 [ 548.529782][ T5839] ? __pfx_kthread+0x10/0x10 [ 548.529805][ T5839] ret_from_fork+0x754/0xd80 [ 548.529833][ T5839] ? __pfx_ret_from_fork+0x10/0x10 [ 548.529860][ T5839] ? __switch_to+0x7b4/0x1120 [ 548.529880][ T5839] ? __pfx_kthread+0x10/0x10 [ 548.529904][ T5839] ret_from_fork_asm+0x1a/0x30 [ 548.529936][ T5839] [ 548.530046][ T5839] kobject: kobject_add_internal failed for hci1:0 with -EEXIST, don't try to register things with the same name in the same directory. [ 548.841196][ T5839] Bluetooth: hci1: failed to register connection device [ 550.334059][T12508] veth0_vlan: entered promiscuous mode [ 550.663466][T12508] veth1_vlan: entered promiscuous mode [ 550.670466][T12774] GUP no longer grows the stack in syz.1.1552 (12774): 14000-18000 (4000) [ 550.714566][T12774] CPU: 0 UID: 0 PID: 12774 Comm: syz.1.1552 Not tainted syzkaller #0 PREEMPT(full) [ 550.714593][T12774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 550.714604][T12774] Call Trace: [ 550.714610][T12774] [ 550.714618][T12774] dump_stack_lvl+0x100/0x190 [ 550.714650][T12774] gup_vma_lookup.cold+0x83/0x96 [ 550.714677][T12774] __get_user_pages+0x241/0x34d0 [ 550.714705][T12774] ? find_held_lock+0x2b/0x80 [ 550.714722][T12774] ? mtree_load+0x311/0xa40 [ 550.714745][T12774] ? __pfx___get_user_pages+0x10/0x10 [ 550.714773][T12774] get_user_pages_remote+0x3d2/0xb10 [ 550.714798][T12774] ? __pfx_get_user_pages_remote+0x10/0x10 [ 550.714820][T12774] ? noop_dirty_folio+0x98/0x160 [ 550.714844][T12774] __access_remote_vm+0x3ba/0xa70 [ 550.714878][T12774] ? __pfx___access_remote_vm+0x10/0x10 [ 550.714913][T12774] mem_rw+0x20a/0x640 [ 550.714936][T12774] vfs_write+0x2aa/0x1070 [ 550.714972][T12774] ? __pfx_mem_write+0x10/0x10 [ 550.714992][T12774] ? __pfx_vfs_write+0x10/0x10 [ 550.715020][T12774] ? __fget_files+0x215/0x3d0 [ 550.715042][T12774] ? __fget_files+0x21f/0x3d0 [ 550.715065][T12774] ksys_write+0x12a/0x250 [ 550.715081][T12774] ? __pfx_ksys_write+0x10/0x10 [ 550.715104][T12774] do_syscall_64+0x106/0xf80 [ 550.715125][T12774] ? clear_bhb_loop+0x40/0x90 [ 550.715148][T12774] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 550.715167][T12774] RIP: 0033:0x7fd95ff9c799 [ 550.715184][T12774] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 550.715201][T12774] RSP: 002b:00007fd960ed5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 550.715227][T12774] RAX: ffffffffffffffda RBX: 00007fd960215fa0 RCX: 00007fd95ff9c799 [ 550.715239][T12774] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003 [ 550.715249][T12774] RBP: 00007fd960032bd9 R08: 0000000000000000 R09: 0000000000000000 [ 550.715260][T12774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 550.715270][T12774] R13: 00007fd960216038 R14: 00007fd960215fa0 R15: 00007ffe08f692c8 [ 550.715293][T12774] [ 551.800893][T12508] veth0_macvtap: entered promiscuous mode [ 551.933441][T12508] veth1_macvtap: entered promiscuous mode [ 552.011876][T12508] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 552.087747][T12508] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 552.195864][ T9925] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 552.221495][ T9925] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 552.333317][ T9925] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 552.391629][ T9925] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 552.674535][ T9925] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 552.714878][ T9925] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 552.872250][ T9932] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 552.913731][ T9932] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 554.219553][T12817] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1559'. [ 555.122618][ T5839] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18 [ 557.348797][T12881] QAT: Invalid ioctl 1074310793 [ 557.938849][ T5833] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 557.947262][ T5833] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection [ 562.021934][ T9931] EXT4-fs (sda1): Delayed block allocation failed for inode 2033 at logical offset 1314 with max blocks 44 with error 117 [ 562.155153][ T9931] EXT4-fs (sda1): This should not happen!! Data will be lost [ 562.155153][ T9931] [ 563.125928][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.132400][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 564.524495][T13009] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1591'. [ 565.580818][ T30] audit: type=1804 audit(4294967502.042:17): pid=13024 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1592" name="/newroot/382/file0" dev="tmpfs" ino=2019 res=1 errno=0 [ 565.756968][ T30] audit: type=1804 audit(4294967502.092:18): pid=13026 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.1592" name="/newroot/382/file0" dev="tmpfs" ino=2019 res=1 errno=0 [ 567.732822][T13049] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1597'. [ 568.072365][T13049] team0 (unregistering): Port device team_slave_0 removed [ 568.174190][T13060] Line length is too long: Should be less than 4094 [ 568.275471][T13049] team0 (unregistering): Port device team_slave_1 removed [ 570.608640][T13111] usb usb37: usbfs: process 13111 (syz.1.1606) did not claim interface 0 before use [ 571.239203][ T30] audit: type=1800 audit(4294967297.190:19): pid=13118 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1607" name="SYSVffffffff" dev="tmpfs" ino=0 res=0 errno=0 [ 571.764162][T13132] NFSD: Failed to start, no listeners configured. [ 573.898034][T13161] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1614'. [ 575.337757][T13179] vivid-007: ================= START STATUS ================= [ 575.408629][T13179] vivid-007: Generate PTS: true [ 575.431765][T13179] vivid-007: Generate SCR: true [ 575.436684][T13179] tpg source WxH: 320x240 (Y'CbCr) [ 575.496598][T13180] random: crng reseeded on system resumption [ 575.506266][T13179] tpg field: 1 [ 575.526389][T13179] tpg crop: (0,0)/320x240 [ 575.566730][T13179] tpg compose: (0,0)/320x240 [ 575.619999][T13179] tpg colorspace: 8 [ 575.623847][T13179] tpg transfer function: 0/0 [ 575.728904][T13179] tpg Y'CbCr encoding: 0/0 [ 575.764704][T13179] tpg quantization: 0/0 [ 575.794201][T13179] tpg RGB range: 0/2 [ 575.838883][T13179] vivid-007: ================== END STATUS ================== [ 575.888511][T13190] vivid-007: ================= START STATUS ================= [ 575.951754][T13190] vivid-007: Generate PTS: true [ 575.981936][T13190] vivid-007: Generate SCR: true [ 576.025222][T13190] tpg source WxH: 320x240 (Y'CbCr) [ 576.050814][T13190] tpg field: 1 [ 576.080331][T13190] tpg crop: (0,0)/320x240 [ 576.123702][T13190] tpg compose: (0,0)/320x240 [ 576.174586][T13190] tpg colorspace: 8 [ 576.191601][T13190] tpg transfer function: 0/0 [ 576.237133][T13190] tpg Y'CbCr encoding: 0/0 [ 576.258214][T13190] tpg quantization: 0/0 [ 576.262403][T13190] tpg RGB range: 0/2 [ 576.266431][T13190] vivid-007: ================== END STATUS ================== [ 577.208102][T13205] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1623'. [ 577.488929][T13205] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 577.583972][T13205] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 577.652440][T13205] bond0 (unregistering): Released all slaves [ 578.969755][T13218] FAULT_INJECTION: forcing a failure. [ 578.969755][T13218] name failslab, interval 1, probability 0, space 0, times 0 [ 579.087409][T13218] CPU: 0 UID: 0 PID: 13218 Comm: syz.0.1628 Not tainted syzkaller #0 PREEMPT(full) [ 579.087436][T13218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 579.087447][T13218] Call Trace: [ 579.087453][T13218] [ 579.087460][T13218] dump_stack_lvl+0x100/0x190 [ 579.087492][T13218] should_fail_ex.cold+0x5/0xa [ 579.087514][T13218] should_failslab+0xc2/0x120 [ 579.087534][T13218] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 579.087561][T13218] ? security_inode_alloc+0x3b/0x2c0 [ 579.087588][T13218] ? lockdep_init_map_type+0x5c/0x250 [ 579.087615][T13218] security_inode_alloc+0x3b/0x2c0 [ 579.087643][T13218] inode_init_always_gfp+0xced/0x1040 [ 579.087665][T13218] alloc_inode+0x8e/0x250 [ 579.087688][T13218] new_inode+0x22/0x1c0 [ 579.087713][T13218] debugfs_create_symlink+0xd1/0x220 [ 579.087743][T13218] ref_tracker_dir_symlink+0x257/0x3b0 [ 579.087766][T13218] ? __pfx_ref_tracker_dir_symlink+0x10/0x10 [ 579.087788][T13218] ? __lock_acquire+0x4a5/0x2630 [ 579.087827][T13218] ? lockdep_hardirqs_on+0x78/0x100 [ 579.087857][T13218] ? crng_make_state+0x2b0/0x6c0 [ 579.087890][T13218] ? __pfx_net_ns_net_init+0x10/0x10 [ 579.087914][T13218] net_ns_net_init+0xd2/0x120 [ 579.087938][T13218] ops_init+0x1e2/0x5f0 [ 579.087964][T13218] setup_net+0x118/0x3a0 [ 579.087987][T13218] ? __pfx_setup_net+0x10/0x10 [ 579.088009][T13218] ? lockdep_init_map_type+0x5c/0x250 [ 579.088032][T13218] ? mutex_init_lockep+0x110/0x150 [ 579.088060][T13218] copy_net_ns+0x46f/0x7c0 [ 579.088087][T13218] create_new_namespaces+0x3ea/0xac0 [ 579.088111][T13218] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 579.088133][T13218] ksys_unshare+0x473/0xad0 [ 579.088156][T13218] ? __pfx_ksys_unshare+0x10/0x10 [ 579.088186][T13218] __x64_sys_unshare+0x31/0x40 [ 579.088208][T13218] do_syscall_64+0x106/0xf80 [ 579.088228][T13218] ? clear_bhb_loop+0x40/0x90 [ 579.088250][T13218] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 579.088268][T13218] RIP: 0033:0x7f0d3d59c799 [ 579.088284][T13218] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 579.088301][T13218] RSP: 002b:00007f0d3e522028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 579.088318][T13218] RAX: ffffffffffffffda RBX: 00007f0d3d815fa0 RCX: 00007f0d3d59c799 [ 579.088330][T13218] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 579.088340][T13218] RBP: 00007f0d3d632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 579.088351][T13218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 579.088361][T13218] R13: 00007f0d3d816038 R14: 00007f0d3d815fa0 R15: 00007ffd5aeaf7e8 [ 579.088383][T13218] [ 579.088450][T13218] debugfs: out of free dentries, can not create symlink 'netns-3c0-4026532915-notrefcnt' [ 579.676834][ T5839] Bluetooth: hci4: unexpected event 0x1c length: 725 > 5 [ 579.682346][T13224] openvswitch: netlink: Multiple metadata blocks provided [ 582.432371][ T9936] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1362 with max blocks 18 with error 117 [ 582.565282][ T9936] EXT4-fs (sda1): This should not happen!! Data will be lost [ 582.565282][ T9936] [ 583.885480][T13283] __vm_enough_memory: pid: 13283, comm: syz.0.1643, bytes: 4398046511104 not enough memory for the allocation [ 585.582854][T13318] device-mapper: ioctl: Invalid ioctl structure: name , dev 3ff [ 588.568513][ T5839] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 588.576302][ T5839] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection [ 592.480396][ T5833] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18 [ 592.488344][ T5833] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:0' [ 592.498366][ T5833] CPU: 0 UID: 0 PID: 5833 Comm: kworker/u9:4 Not tainted syzkaller #0 PREEMPT(full) [ 592.498393][ T5833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 592.498406][ T5833] Workqueue: hci4 hci_rx_work [ 592.498432][ T5833] Call Trace: [ 592.498439][ T5833] [ 592.498447][ T5833] dump_stack_lvl+0x100/0x190 [ 592.498479][ T5833] sysfs_warn_dup.cold+0x1c/0x28 [ 592.498508][ T5833] sysfs_create_dir_ns+0x24b/0x2b0 [ 592.498534][ T5833] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 592.498557][ T5833] ? find_held_lock+0x2b/0x80 [ 592.498574][ T5833] ? kobject_add_internal+0x25f/0x930 [ 592.498601][ T5833] ? kobject_add_internal+0x25f/0x930 [ 592.498629][ T5833] ? do_raw_spin_unlock+0x145/0x1e0 [ 592.498659][ T5833] kobject_add_internal+0x2c8/0x930 [ 592.498688][ T5833] kobject_add+0x16a/0x1e0 [ 592.498713][ T5833] ? __pfx_kobject_add+0x10/0x10 [ 592.498737][ T5833] ? class_to_subsys+0x10f/0x150 [ 592.498762][ T5833] ? kobject_put+0xb9/0x640 [ 592.498785][ T5833] ? _raw_spin_unlock+0x28/0x50 [ 592.498809][ T5833] device_add+0x294/0x1950 [ 592.498828][ T5833] ? __pfx_dev_set_name+0x10/0x10 [ 592.498849][ T5833] ? __pfx_device_add+0x10/0x10 [ 592.498875][ T5833] ? mgmt_send_event_skb+0x2fb/0x460 [ 592.498902][ T5833] hci_conn_add_sysfs+0x1a3/0x260 [ 592.498926][ T5833] le_conn_complete_evt+0x11cb/0x1f40 [ 592.498953][ T5833] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 592.498971][ T5833] ? __pfx_bt_warn+0x10/0x10 [ 592.498998][ T5833] hci_le_conn_complete_evt+0x23c/0x3a0 [ 592.499019][ T5833] ? skb_pull_data+0x15f/0x1e0 [ 592.499052][ T5833] hci_le_meta_evt+0x34a/0x5f0 [ 592.499073][ T5833] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 592.499095][ T5833] hci_event_packet+0x682/0x11c0 [ 592.499114][ T5833] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 592.499135][ T5833] ? __pfx_hci_event_packet+0x10/0x10 [ 592.499156][ T5833] ? kcov_remote_start+0x374/0x660 [ 592.499174][ T5833] ? lockdep_hardirqs_on+0x78/0x100 [ 592.499201][ T5833] hci_rx_work+0x451/0xfc0 [ 592.499226][ T5833] process_one_work+0x9d7/0x1920 [ 592.499262][ T5833] ? __pfx_process_one_work+0x10/0x10 [ 592.499294][ T5833] ? __pfx_hci_rx_work+0x10/0x10 [ 592.499314][ T5833] worker_thread+0x5da/0xe40 [ 592.499348][ T5833] ? kthread+0x13a/0x450 [ 592.499369][ T5833] ? __pfx_worker_thread+0x10/0x10 [ 592.499393][ T5833] kthread+0x370/0x450 [ 592.499414][ T5833] ? __pfx_kthread+0x10/0x10 [ 592.499439][ T5833] ret_from_fork+0x754/0xd80 [ 592.499467][ T5833] ? __pfx_ret_from_fork+0x10/0x10 [ 592.499495][ T5833] ? __switch_to+0x7b4/0x1120 [ 592.499515][ T5833] ? __pfx_kthread+0x10/0x10 [ 592.499540][ T5833] ret_from_fork_asm+0x1a/0x30 [ 592.499577][ T5833] [ 592.499600][ T5833] kobject: kobject_add_internal failed for hci4:0 with -EEXIST, don't try to register things with the same name in the same directory. [ 592.801867][ T5833] Bluetooth: hci4: failed to register connection device [ 592.867857][ T9931] EXT4-fs (sda1): Delayed block allocation failed for inode 2033 at logical offset 923 with max blocks 1 with error 117 [ 592.946282][ T9931] EXT4-fs (sda1): This should not happen!! Data will be lost [ 592.946282][ T9931] [ 594.597668][T13446] FAULT_INJECTION: forcing a failure. [ 594.597668][T13446] name failslab, interval 1, probability 0, space 0, times 0 [ 594.695942][T13446] CPU: 0 UID: 0 PID: 13446 Comm: syz.4.1682 Not tainted syzkaller #0 PREEMPT(full) [ 594.695971][T13446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 594.695982][T13446] Call Trace: [ 594.695988][T13446] [ 594.695996][T13446] dump_stack_lvl+0x100/0x190 [ 594.696029][T13446] should_fail_ex.cold+0x5/0xa [ 594.696054][T13446] ? tomoyo_realpath_from_path+0xb6/0x690 [ 594.696085][T13446] should_failslab+0xc2/0x120 [ 594.696105][T13446] __kmalloc_noprof+0xe0/0x850 [ 594.696136][T13446] tomoyo_realpath_from_path+0xb6/0x690 [ 594.696162][T13446] tomoyo_check_open_permission+0x2af/0x3c0 [ 594.696192][T13446] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 594.696242][T13446] ? do_raw_spin_lock+0x128/0x260 [ 594.696269][T13446] ? path_get+0x61/0x80 [ 594.696291][T13446] tomoyo_file_open+0x6b/0x90 [ 594.696316][T13446] security_file_open+0xb5/0x1e0 [ 594.696335][T13446] do_dentry_open+0x5aa/0x1660 [ 594.696355][T13446] ? security_inode_permission+0xbf/0x250 [ 594.696387][T13446] vfs_open+0x82/0x3f0 [ 594.696410][T13446] path_openat+0x208c/0x31a0 [ 594.696436][T13446] ? __pfx_path_openat+0x10/0x10 [ 594.696465][T13446] do_file_open+0x20e/0x430 [ 594.696485][T13446] ? __pfx_do_file_open+0x10/0x10 [ 594.696519][T13446] ? alloc_fd+0x476/0x790 [ 594.696538][T13446] ? do_getname+0x191/0x390 [ 594.696562][T13446] do_sys_openat2+0x10d/0x1e0 [ 594.696585][T13446] ? __pfx_do_sys_openat2+0x10/0x10 [ 594.696615][T13446] __x64_sys_openat+0x12d/0x210 [ 594.696639][T13446] ? __pfx___x64_sys_openat+0x10/0x10 [ 594.696670][T13446] do_syscall_64+0x106/0xf80 [ 594.696691][T13446] ? clear_bhb_loop+0x40/0x90 [ 594.696713][T13446] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 594.696732][T13446] RIP: 0033:0x7ff67b79c799 [ 594.696747][T13446] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 594.696764][T13446] RSP: 002b:00007ff67c571028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 594.696782][T13446] RAX: ffffffffffffffda RBX: 00007ff67ba15fa0 RCX: 00007ff67b79c799 [ 594.696793][T13446] RDX: 0000000000020081 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 594.696804][T13446] RBP: 00007ff67b832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 594.696814][T13446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 594.696824][T13446] R13: 00007ff67ba16038 R14: 00007ff67ba15fa0 R15: 00007ffe2209d9c8 [ 594.696846][T13446] [ 594.696854][T13446] ERROR: Out of memory at tomoyo_realpath_from_path. [ 595.408928][T13474] MTRR 0 not used [ 595.412870][T13474] MTRR 0 not used [ 595.416590][T13474] MTRR 0 not used [ 598.273848][T13515] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1698'. [ 598.398368][T13517] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1698'. [ 602.783149][T13574] device-mapper: ioctl: Invalid ioctl structure: name , dev 3ff [ 607.376340][T13638] random: crng reseeded on system resumption [ 608.753573][T13659] block2mtd: error: cannot open device /sys/module/block2mtd/parameters/block2mtd [ 608.862231][T13661] FAULT_INJECTION: forcing a failure. [ 608.862231][T13661] name fail_futex, interval 1, probability 0, space 0, times 0 [ 608.954015][T13661] CPU: 0 UID: 0 PID: 13661 Comm: syz.0.1734 Not tainted syzkaller #0 PREEMPT(full) [ 608.954042][T13661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 608.954053][T13661] Call Trace: [ 608.954059][T13661] [ 608.954065][T13661] dump_stack_lvl+0x100/0x190 [ 608.954098][T13661] should_fail_ex.cold+0x5/0xa [ 608.954115][T13661] ? is_bpf_text_address+0x8a/0x1a0 [ 608.954144][T13661] get_futex_key+0x1d2/0x1620 [ 608.954167][T13661] ? __pfx_get_futex_key+0x10/0x10 [ 608.954187][T13661] ? __kernel_text_address+0xd/0x30 [ 608.954217][T13661] ? do_raw_spin_lock+0x128/0x260 [ 608.954245][T13661] futex_wait_setup+0x83/0x510 [ 608.954276][T13661] __futex_wait+0x19f/0x300 [ 608.954305][T13661] ? __pfx___futex_wait+0x10/0x10 [ 608.954331][T13661] ? kasan_save_stack+0x3f/0x50 [ 608.954359][T13661] ? __pfx_futex_wake_mark+0x10/0x10 [ 608.954388][T13661] ? futex_hash+0x2c5/0x380 [ 608.954414][T13661] futex_wait+0xed/0x380 [ 608.954440][T13661] ? __pfx_futex_wait+0x10/0x10 [ 608.954478][T13661] do_futex+0x1ef/0x350 [ 608.954500][T13661] ? __pfx_do_futex+0x10/0x10 [ 608.954522][T13661] ? do_fcntl+0x811/0x1670 [ 608.954555][T13661] __x64_sys_futex+0x34f/0x4d0 [ 608.954581][T13661] ? __pfx___x64_sys_futex+0x10/0x10 [ 608.954604][T13661] ? tomoyo_file_fcntl+0x6c/0xc0 [ 608.954634][T13661] do_syscall_64+0x106/0xf80 [ 608.954655][T13661] ? clear_bhb_loop+0x40/0x90 [ 608.954676][T13661] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 608.954694][T13661] RIP: 0033:0x7f0d3d59c799 [ 608.954709][T13661] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 608.954726][T13661] RSP: 002b:00007f0d3e5220e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 608.954743][T13661] RAX: ffffffffffffffda RBX: 00007f0d3d815fa8 RCX: 00007f0d3d59c799 [ 608.954755][T13661] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f0d3d815fa8 [ 608.954765][T13661] RBP: 00007f0d3d815fa0 R08: 0000000000000000 R09: 0000000000000000 [ 608.954775][T13661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 608.954785][T13661] R13: 00007f0d3d816038 R14: 00007ffd5aeaf700 R15: 00007ffd5aeaf7e8 [ 608.954806][T13661] [ 610.607059][ T5839] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 610.614647][ T5839] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 611.084755][T13682] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1740'. [ 611.206434][T13693] netlink: 25 bytes leftover after parsing attributes in process `syz.4.1742'. [ 612.965890][ T5833] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 612.973525][ T5833] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection [ 613.035551][T13735] FAULT_INJECTION: forcing a failure. [ 613.035551][T13735] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 613.194180][T13726] zswap: compressor  not available [ 613.298546][T13735] CPU: 0 UID: 0 PID: 13735 Comm: syz.0.1754 Not tainted syzkaller #0 PREEMPT(full) [ 613.298583][T13735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 613.298594][T13735] Call Trace: [ 613.298601][T13735] [ 613.298608][T13735] dump_stack_lvl+0x100/0x190 [ 613.298642][T13735] should_fail_ex.cold+0x5/0xa [ 613.298660][T13735] ? prepare_alloc_pages+0x16d/0x5f0 [ 613.298683][T13735] should_fail_alloc_page+0xeb/0x140 [ 613.298703][T13735] prepare_alloc_pages+0x1f0/0x5f0 [ 613.298727][T13735] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 613.298759][T13735] ? __lock_acquire+0x4a5/0x2630 [ 613.298788][T13735] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 613.298816][T13735] ? do_raw_spin_lock+0x128/0x260 [ 613.298842][T13735] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 613.298868][T13735] ? find_held_lock+0x2b/0x80 [ 613.298890][T13735] ? __lock_acquire+0x4a5/0x2630 [ 613.298912][T13735] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 613.298943][T13735] ? policy_nodemask+0xed/0x4f0 [ 613.298963][T13735] alloc_pages_mpol+0x1fb/0x550 [ 613.298982][T13735] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 613.299000][T13735] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 613.299028][T13735] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 613.299059][T13735] folio_alloc_mpol_noprof+0x36/0x340 [ 613.299082][T13735] shmem_alloc_folio+0x135/0x160 [ 613.299106][T13735] shmem_alloc_and_add_folio+0x371/0xd40 [ 613.299137][T13735] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 613.299165][T13735] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 613.299197][T13735] shmem_get_folio_gfp+0x6ab/0x1900 [ 613.299227][T13735] ? find_held_lock+0x2b/0x80 [ 613.299243][T13735] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 613.299270][T13735] ? ktime_get_coarse_real_ts64_mg+0x235/0x300 [ 613.299293][T13735] ? lockdep_hardirqs_on+0x78/0x100 [ 613.299317][T13735] shmem_fault+0x1f9/0xa20 [ 613.299343][T13735] ? __lock_acquire+0x4a5/0x2630 [ 613.299365][T13735] ? __pfx_shmem_fault+0x10/0x10 [ 613.299392][T13735] ? __up_read+0x2c5/0x700 [ 613.299424][T13735] ? __pfx_filemap_map_pages+0x10/0x10 [ 613.299469][T13735] __do_fault+0x10d/0x550 [ 613.299488][T13735] ? __pfx_filemap_map_pages+0x10/0x10 [ 613.299512][T13735] do_fault+0x2db/0x1950 [ 613.299535][T13735] __handle_mm_fault+0x180f/0x2b60 [ 613.299578][T13735] ? __pfx___handle_mm_fault+0x10/0x10 [ 613.299603][T13735] ? pte_offset_map_lock+0x174/0x320 [ 613.299621][T13735] ? find_held_lock+0x2b/0x80 [ 613.299644][T13735] ? follow_page_pte+0x5b3/0x1400 [ 613.299668][T13735] handle_mm_fault+0x36d/0xa20 [ 613.299696][T13735] __get_user_pages+0xf9c/0x34d0 [ 613.299721][T13735] ? down_read_killable+0x30e/0x4c0 [ 613.299747][T13735] ? __pfx___get_user_pages+0x10/0x10 [ 613.299773][T13735] faultin_page_range+0x1f1/0x9e0 [ 613.299799][T13735] madvise_do_behavior+0x354/0x510 [ 613.299822][T13735] ? __pfx_madvise_do_behavior+0x10/0x10 [ 613.299856][T13735] do_madvise+0x195/0x240 [ 613.299876][T13735] ? __pfx_do_madvise+0x10/0x10 [ 613.299896][T13735] ? do_futex+0x192/0x350 [ 613.299939][T13735] __x64_sys_madvise+0xa9/0x110 [ 613.299959][T13735] ? lockdep_hardirqs_on+0x78/0x100 [ 613.299980][T13735] do_syscall_64+0x106/0xf80 [ 613.300000][T13735] ? clear_bhb_loop+0x40/0x90 [ 613.300021][T13735] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 613.300040][T13735] RIP: 0033:0x7f0d3d59c799 [ 613.300057][T13735] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 613.300074][T13735] RSP: 002b:00007f0d3e4e0028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 613.300092][T13735] RAX: ffffffffffffffda RBX: 00007f0d3d816180 RCX: 00007f0d3d59c799 [ 613.300104][T13735] RDX: 0000000000000017 RSI: ffffffffffff0005 RDI: 0000000000000000 [ 613.300114][T13735] RBP: 00007f0d3d632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 613.300124][T13735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 613.300134][T13735] R13: 00007f0d3d816218 R14: 00007f0d3d816180 R15: 00007ffd5aeaf7e8 [ 613.300157][T13735] [ 613.717383][T13743] Invalid ELF header magic: != ELF [ 613.729960][T13743] Invalid ELF header magic: != ELF [ 613.739186][T13743] Invalid ELF header magic: != ELF [ 613.749512][T13743] Invalid ELF header magic: != ELF [ 613.758277][T13743] Invalid ELF header magic: != ELF [ 613.767391][T13743] Invalid ELF header magic: != ELF [ 613.776359][T13743] Invalid ELF header magic: != ELF [ 613.785293][T13743] Invalid ELF header magic: != ELF [ 613.794307][T13743] Invalid ELF header magic: != ELF [ 613.803568][T13743] Invalid ELF header magic: != ELF [ 613.812353][T13743] Invalid ELF header magic: != ELF [ 613.821258][T13743] Invalid ELF header magic: != ELF [ 613.830299][T13743] Invalid ELF header magic: != ELF [ 613.838945][T13743] Invalid ELF header magic: != ELF [ 613.848116][T13743] Invalid ELF header magic: != ELF [ 613.857530][T13743] Invalid ELF header magic: != ELF [ 613.866661][T13743] Invalid ELF header magic: != ELF [ 613.875606][T13743] Invalid ELF header magic: != ELF [ 613.884430][T13743] Invalid ELF header magic: != ELF [ 613.893175][T13743] Invalid ELF header magic: != ELF [ 613.901971][T13743] Invalid ELF header magic: != ELF [ 613.910788][T13743] Invalid ELF header magic: != ELF [ 613.919229][T13743] Invalid ELF header magic: != ELF [ 615.248191][T13728] openvswitch: netlink: Key type 261 is out of range max 32 [ 616.314140][T13766] zswap: compressor not available [ 621.124308][T13839] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 623.088339][T13867] netlink: 'syz.3.1788': attribute type 1 has an invalid length. [ 623.146068][T13867] netlink: 'syz.3.1788': attribute type 1 has an invalid length. [ 623.153873][T13867] netlink: 124 bytes leftover after parsing attributes in process `syz.3.1788'. [ 623.314665][T13867] netlink: 100 bytes leftover after parsing attributes in process `syz.3.1788'. [ 623.550375][T13873] block2mtd: error: cannot open device /sys/module/block2mtd/parameters/block2mtd [ 624.559276][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.578457][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 624.730508][T13883] : entered promiscuous mode [ 624.902038][T13887] FAULT_INJECTION: forcing a failure. [ 624.902038][T13887] name failslab, interval 1, probability 0, space 0, times 0 [ 624.993632][T13887] CPU: 0 UID: 0 PID: 13887 Comm: syz.1.1793 Not tainted syzkaller #0 PREEMPT(full) [ 624.993662][T13887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 624.993674][T13887] Call Trace: [ 624.993681][T13887] [ 624.993690][T13887] dump_stack_lvl+0x100/0x190 [ 624.993731][T13887] should_fail_ex.cold+0x5/0xa [ 624.993754][T13887] should_failslab+0xc2/0x120 [ 624.993776][T13887] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 624.993805][T13887] ? shmem_alloc_inode+0x25/0x50 [ 624.993827][T13887] ? __pfx_shmem_alloc_inode+0x10/0x10 [ 624.993848][T13887] shmem_alloc_inode+0x25/0x50 [ 624.993867][T13887] alloc_inode+0x68/0x250 [ 624.993894][T13887] new_inode+0x22/0x1c0 [ 624.993918][T13887] shmem_get_inode+0x212/0x1040 [ 624.993945][T13887] ? __pfx_shmem_get_inode+0x10/0x10 [ 624.993967][T13887] ? d_add+0x443/0x850 [ 624.993991][T13887] ? do_raw_spin_unlock+0x145/0x1e0 [ 624.994022][T13887] shmem_mknod+0x20c/0x470 [ 624.994047][T13887] ? __pfx_shmem_mknod+0x10/0x10 [ 624.994068][T13887] ? bpf_lsm_inode_create+0x9/0x10 [ 624.994097][T13887] ? __pfx_shmem_create+0x10/0x10 [ 624.994121][T13887] lookup_open.isra.0+0xc47/0x11b0 [ 624.994153][T13887] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 624.994184][T13887] ? __pfx___might_resched+0x10/0x10 [ 624.994209][T13887] ? mnt_get_write_access+0x52/0x2f0 [ 624.994238][T13887] ? __pfx_down_write+0x10/0x10 [ 624.994262][T13887] ? mnt_get_write_access+0x1e9/0x2f0 [ 624.994290][T13887] path_openat+0x2291/0x31a0 [ 624.994316][T13887] ? __pfx_path_openat+0x10/0x10 [ 624.994343][T13887] do_file_open+0x20e/0x430 [ 624.994363][T13887] ? __pfx_do_file_open+0x10/0x10 [ 624.994398][T13887] ? alloc_fd+0x476/0x790 [ 624.994417][T13887] ? do_getname+0x191/0x390 [ 624.994442][T13887] do_sys_openat2+0x10d/0x1e0 [ 624.994466][T13887] ? __pfx_do_sys_openat2+0x10/0x10 [ 624.994491][T13887] ? __fget_files+0x21f/0x3d0 [ 624.994514][T13887] __x64_sys_openat+0x12d/0x210 [ 624.994547][T13887] ? __pfx___x64_sys_openat+0x10/0x10 [ 624.994579][T13887] do_syscall_64+0x106/0xf80 [ 624.994600][T13887] ? clear_bhb_loop+0x40/0x90 [ 624.994623][T13887] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 624.994643][T13887] RIP: 0033:0x7fd95ff9c799 [ 624.994661][T13887] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 624.994678][T13887] RSP: 002b:00007fd960ed5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 624.994697][T13887] RAX: ffffffffffffffda RBX: 00007fd960215fa0 RCX: 00007fd95ff9c799 [ 624.994709][T13887] RDX: 00000000000861c2 RSI: 0000000000000000 RDI: ffffffffffffff9c [ 624.994720][T13887] RBP: 00007fd960032bd9 R08: 0000000000000000 R09: 0000000000000000 [ 624.994730][T13887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 624.994740][T13887] R13: 00007fd960216038 R14: 00007fd960215fa0 R15: 00007ffe08f692c8 [ 624.994764][T13887] [ 626.833753][T13890] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 628.415954][T13914] futex_wake_op: syz.0.1801 tries to shift op by -2048; fix this program [ 629.699472][T13941] zero sized request [ 629.749987][T13941] MTRR 0 not used [ 630.505199][T13947] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1808'. [ 632.113753][T13967] FAULT_INJECTION: forcing a failure. [ 632.113753][T13967] name fail_futex, interval 1, probability 0, space 0, times 0 [ 632.200573][T13967] CPU: 0 UID: 0 PID: 13967 Comm: syz.0.1812 Not tainted syzkaller #0 PREEMPT(full) [ 632.200600][T13967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 632.200616][T13967] Call Trace: [ 632.200622][T13967] [ 632.200628][T13967] dump_stack_lvl+0x100/0x190 [ 632.200660][T13967] should_fail_ex.cold+0x5/0xa [ 632.200681][T13967] get_futex_key+0x107c/0x1620 [ 632.200705][T13967] ? __pfx_get_futex_key+0x10/0x10 [ 632.200724][T13967] ? lock_acquire+0x1cf/0x380 [ 632.200753][T13967] futex_wake+0xea/0x530 [ 632.200781][T13967] ? __pfx_futex_wake+0x10/0x10 [ 632.200807][T13967] ? exit_mm_release+0x19/0x30 [ 632.200834][T13967] do_futex+0x32b/0x350 [ 632.200856][T13967] ? __pfx_do_futex+0x10/0x10 [ 632.200876][T13967] ? __might_fault+0xc5/0x140 [ 632.200906][T13967] mm_release+0x24a/0x2f0 [ 632.200924][T13967] do_exit+0x704/0x2b60 [ 632.200949][T13967] ? __pfx_do_exit+0x10/0x10 [ 632.200971][T13967] ? do_raw_spin_lock+0x128/0x260 [ 632.200996][T13967] ? find_held_lock+0x2b/0x80 [ 632.201011][T13967] ? get_signal+0x7e0/0x21e0 [ 632.201031][T13967] do_group_exit+0xd5/0x2a0 [ 632.201056][T13967] get_signal+0x1ec7/0x21e0 [ 632.201081][T13967] ? __pfx_get_signal+0x10/0x10 [ 632.201100][T13967] ? do_futex+0x192/0x350 [ 632.201124][T13967] arch_do_signal_or_restart+0x91/0x770 [ 632.201146][T13967] ? find_held_lock+0x2b/0x80 [ 632.201162][T13967] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 632.201189][T13967] ? __pfx___x64_sys_futex+0x10/0x10 [ 632.201217][T13967] exit_to_user_mode_loop+0x86/0x4a0 [ 632.201242][T13967] do_syscall_64+0x668/0xf80 [ 632.201262][T13967] ? clear_bhb_loop+0x40/0x90 [ 632.201284][T13967] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 632.201302][T13967] RIP: 0033:0x7f0d3d59c799 [ 632.201378][T13967] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 632.201395][T13967] RSP: 002b:00007f0d3e5220e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 632.201413][T13967] RAX: fffffffffffffe00 RBX: 00007f0d3d815fa8 RCX: 00007f0d3d59c799 [ 632.201423][T13967] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f0d3d815fa8 [ 632.201434][T13967] RBP: 00007f0d3d815fa0 R08: 0000000000000000 R09: 0000000000000000 [ 632.201444][T13967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 632.201453][T13967] R13: 00007f0d3d816038 R14: 00007ffd5aeaf700 R15: 00007ffd5aeaf7e8 [ 632.201479][T13967] [ 633.206605][T13959] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 633.239112][T13959] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 633.569630][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout [ 634.882530][T13959] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 634.932715][T13959] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 634.988005][T13959] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 635.093868][T13959] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 635.124941][T13959] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 635.213242][T13959] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 635.244731][T13959] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 635.297288][T13959] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 635.373834][T13959] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 635.488326][T13959] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 635.649266][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout [ 637.007798][ T5839] Bluetooth: hci0: command 0x0c1a tx timeout [ 637.170639][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout [ 637.257721][ T5839] Bluetooth: hci4: command 0x0c1a tx timeout [ 637.729433][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout [ 638.124860][T14039] FAULT_INJECTION: forcing a failure. [ 638.124860][T14039] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 638.210157][T14039] CPU: 0 UID: 0 PID: 14039 Comm: syz.0.1829 Not tainted syzkaller #0 PREEMPT(full) [ 638.210186][T14039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 638.210196][T14039] Call Trace: [ 638.210203][T14039] [ 638.210210][T14039] dump_stack_lvl+0x100/0x190 [ 638.210243][T14039] should_fail_ex.cold+0x5/0xa [ 638.210264][T14039] _copy_from_user+0x2e/0xd0 [ 638.210283][T14039] copy_msghdr_from_user+0x9f/0x4f0 [ 638.210312][T14039] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 638.210360][T14039] ___sys_sendmsg+0x106/0x1e0 [ 638.210389][T14039] ? __pfx____sys_sendmsg+0x10/0x10 [ 638.210440][T14039] __sys_sendmsg+0x170/0x220 [ 638.210463][T14039] ? __pfx___sys_sendmsg+0x10/0x10 [ 638.210497][T14039] do_syscall_64+0x106/0xf80 [ 638.210518][T14039] ? clear_bhb_loop+0x40/0x90 [ 638.210540][T14039] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 638.210562][T14039] RIP: 0033:0x7f0d3d59c799 [ 638.210584][T14039] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 638.210606][T14039] RSP: 002b:00007f0d3e522028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 638.210684][T14039] RAX: ffffffffffffffda RBX: 00007f0d3d815fa0 RCX: 00007f0d3d59c799 [ 638.210697][T14039] RDX: 0000000000000040 RSI: 0000200000000100 RDI: 0000000000000003 [ 638.210708][T14039] RBP: 00007f0d3e522090 R08: 0000000000000000 R09: 0000000000000000 [ 638.210719][T14039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 638.210729][T14039] R13: 00007f0d3d816038 R14: 00007f0d3d815fa0 R15: 00007ffd5aeaf7e8 [ 638.210753][T14039] [ 638.720886][T14043] bridge0: port 4(batadv0) entered blocking state [ 638.741233][T14043] bridge0: port 4(batadv0) entered disabled state [ 638.767252][T14043] batadv0: entered allmulticast mode [ 638.788782][T14043] batadv0: entered promiscuous mode [ 638.807650][T14043] bridge0: port 4(batadv0) entered blocking state [ 638.814186][T14043] bridge0: port 4(batadv0) entered forwarding state [ 639.094845][ T5839] Bluetooth: hci0: command 0x0c1a tx timeout [ 639.187391][ T9921] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 639.197131][ T9921] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 639.250616][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout [ 639.327106][ T5839] Bluetooth: hci4: command 0x0c1a tx timeout [ 641.408999][ T5839] Bluetooth: hci4: command 0x0c1a tx timeout [ 641.728679][T14094] netlink: zone id is out of range [ 641.733827][T14094] netlink: zone id is out of range [ 641.824846][T14095] netlink: zone id is out of range [ 641.881947][T14101] netlink: zone id is out of range [ 641.977472][T14095] netlink: zone id is out of range [ 642.017053][T14094] netlink: zone id is out of range [ 642.067162][T14101] netlink: zone id is out of range [ 642.110620][T14095] netlink: zone id is out of range [ 642.145287][T14094] netlink: zone id is out of range [ 642.222325][T14101] netlink: zone id is out of range [ 643.492332][ T5839] Bluetooth: hci4: command 0x0c1a tx timeout [ 644.238759][T14128] netlink: 25 bytes leftover after parsing attributes in process `syz.0.1848'. [ 644.539980][T14133] FAULT_INJECTION: forcing a failure. [ 644.539980][T14133] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 644.646944][T14133] CPU: 0 UID: 0 PID: 14133 Comm: syz.1.1849 Not tainted syzkaller #0 PREEMPT(full) [ 644.646972][T14133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 644.646983][T14133] Call Trace: [ 644.646989][T14133] [ 644.646996][T14133] dump_stack_lvl+0x100/0x190 [ 644.647031][T14133] should_fail_ex.cold+0x5/0xa [ 644.647052][T14133] _copy_from_user+0x2e/0xd0 [ 644.647071][T14133] copy_msghdr_from_user+0x9f/0x4f0 [ 644.647100][T14133] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 644.647138][T14133] ___sys_sendmsg+0x106/0x1e0 [ 644.647167][T14133] ? __pfx____sys_sendmsg+0x10/0x10 [ 644.647218][T14133] __sys_sendmsg+0x170/0x220 [ 644.647250][T14133] ? __pfx___sys_sendmsg+0x10/0x10 [ 644.647284][T14133] do_syscall_64+0x106/0xf80 [ 644.647305][T14133] ? clear_bhb_loop+0x40/0x90 [ 644.647326][T14133] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 644.647344][T14133] RIP: 0033:0x7fd95ff9c799 [ 644.647360][T14133] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 644.647377][T14133] RSP: 002b:00007fd960ed5028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 644.647395][T14133] RAX: ffffffffffffffda RBX: 00007fd960215fa0 RCX: 00007fd95ff9c799 [ 644.647407][T14133] RDX: 0000000000000080 RSI: 0000200000000040 RDI: 0000000000000004 [ 644.647417][T14133] RBP: 00007fd960ed5090 R08: 0000000000000000 R09: 0000000000000000 [ 644.647427][T14133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 644.647437][T14133] R13: 00007fd960216038 R14: 00007fd960215fa0 R15: 00007ffe08f692c8 [ 644.647458][T14133] [ 644.984394][T14142] Invalid ELF header magic: != ELF [ 645.565741][ T5839] Bluetooth: hci4: command 0x0c1a tx timeout [ 645.644178][T14153] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1853'. [ 646.038741][T14164] syz.3.1855(14164): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 646.805455][T14171] zswap: compressor not available [ 647.096116][T14185] FAULT_INJECTION: forcing a failure. [ 647.096116][T14185] name failslab, interval 1, probability 0, space 0, times 0 [ 647.172327][T14185] CPU: 0 UID: 0 PID: 14185 Comm: syz.0.1860 Not tainted syzkaller #0 PREEMPT(full) [ 647.172355][T14185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 647.172366][T14185] Call Trace: [ 647.172372][T14185] [ 647.172379][T14185] dump_stack_lvl+0x100/0x190 [ 647.172412][T14185] should_fail_ex.cold+0x5/0xa [ 647.172434][T14185] should_failslab+0xc2/0x120 [ 647.172453][T14185] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 647.172481][T14185] ? __alloc_skb+0x140/0x710 [ 647.172504][T14185] __alloc_skb+0x140/0x710 [ 647.172522][T14185] ? __alloc_skb+0x5b7/0x710 [ 647.172541][T14185] ? __pfx___alloc_skb+0x10/0x10 [ 647.172566][T14185] netlink_alloc_large_skb+0x69/0x150 [ 647.172593][T14185] netlink_sendmsg+0x680/0xda0 [ 647.172625][T14185] ? __pfx_netlink_sendmsg+0x10/0x10 [ 647.172648][T14185] ? __import_iovec+0x1d2/0x640 [ 647.172668][T14185] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 647.172697][T14185] ____sys_sendmsg+0x9e1/0xb70 [ 647.172722][T14185] ? __pfx_netlink_sendmsg+0x10/0x10 [ 647.172747][T14185] ? __pfx_____sys_sendmsg+0x10/0x10 [ 647.172783][T14185] ___sys_sendmsg+0x190/0x1e0 [ 647.172812][T14185] ? __pfx____sys_sendmsg+0x10/0x10 [ 647.172865][T14185] __sys_sendmsg+0x170/0x220 [ 647.172888][T14185] ? __pfx___sys_sendmsg+0x10/0x10 [ 647.172922][T14185] do_syscall_64+0x106/0xf80 [ 647.172944][T14185] ? clear_bhb_loop+0x40/0x90 [ 647.172965][T14185] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 647.172983][T14185] RIP: 0033:0x7f0d3d59c799 [ 647.172999][T14185] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 647.173016][T14185] RSP: 002b:00007f0d3e522028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 647.173035][T14185] RAX: ffffffffffffffda RBX: 00007f0d3d815fa0 RCX: 00007f0d3d59c799 [ 647.173046][T14185] RDX: 0000000000000080 RSI: 0000200000000040 RDI: 0000000000000004 [ 647.173057][T14185] RBP: 00007f0d3e522090 R08: 0000000000000000 R09: 0000000000000000 [ 647.173067][T14185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 647.173077][T14185] R13: 00007f0d3d816038 R14: 00007f0d3d815fa0 R15: 00007ffd5aeaf7e8 [ 647.173099][T14185] [ 647.971604][T14204] __vm_enough_memory: pid: 14204, comm: syz.4.1865, bytes: 4398046511104 not enough memory for the allocation [ 648.454564][T14212] FAULT_INJECTION: forcing a failure. [ 648.454564][T14212] name failslab, interval 1, probability 0, space 0, times 0 [ 648.531098][T14212] CPU: 0 UID: 0 PID: 14212 Comm: syz.4.1867 Not tainted syzkaller #0 PREEMPT(full) [ 648.531129][T14212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 648.531140][T14212] Call Trace: [ 648.531149][T14212] [ 648.531157][T14212] dump_stack_lvl+0x100/0x190 [ 648.531199][T14212] should_fail_ex.cold+0x5/0xa [ 648.531225][T14212] should_failslab+0xc2/0x120 [ 648.531245][T14212] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 648.531273][T14212] ? __d_alloc+0x34/0xa80 [ 648.531300][T14212] __d_alloc+0x34/0xa80 [ 648.531323][T14212] d_alloc_pseudo+0x1c/0xc0 [ 648.531350][T14212] alloc_file_pseudo+0xcf/0x230 [ 648.531374][T14212] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 648.531403][T14212] __shmem_file_setup+0x221/0x490 [ 648.531429][T14212] ? __pfx___shmem_file_setup+0x10/0x10 [ 648.531457][T14212] ? vm_area_alloc+0x1f/0x160 [ 648.531484][T14212] shmem_zero_setup+0x96/0x1b0 [ 648.531513][T14212] __mmap_region+0x2198/0x29e0 [ 648.531543][T14212] ? __pfx___mmap_region+0x10/0x10 [ 648.531573][T14212] ? set_next_entity+0x11e/0x9c0 [ 648.531603][T14212] ? __lock_acquire+0x4a5/0x2630 [ 648.531625][T14212] ? update_cfs_rq_load_avg+0x51/0x550 [ 648.531654][T14212] ? find_held_lock+0x2b/0x80 [ 648.531669][T14212] ? finish_task_switch.isra.0+0x200/0xb80 [ 648.531688][T14212] ? finish_task_switch.isra.0+0x200/0xb80 [ 648.531716][T14212] ? trace_sched_exit_tp+0x13a/0x180 [ 648.531738][T14212] ? __schedule+0x1000/0x6120 [ 648.531785][T14212] ? rcu_is_watching+0x12/0xc0 [ 648.531811][T14212] ? cap_capable+0x107/0x460 [ 648.531839][T14212] mmap_region+0x180/0x3e0 [ 648.531870][T14212] do_mmap+0xc63/0x12f0 [ 648.531895][T14212] ? __pfx_do_mmap+0x10/0x10 [ 648.531914][T14212] ? __pfx_down_write_killable+0x10/0x10 [ 648.531950][T14212] vm_mmap_pgoff+0x29e/0x470 [ 648.531975][T14212] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 648.531996][T14212] ? do_futex+0x192/0x350 [ 648.532019][T14212] ? __pfx_do_futex+0x10/0x10 [ 648.532046][T14212] ksys_mmap_pgoff+0xe1/0x650 [ 648.532065][T14212] ? __x64_sys_futex+0x34f/0x4d0 [ 648.532087][T14212] ? __x64_sys_futex+0x358/0x4d0 [ 648.532110][T14212] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 648.532129][T14212] ? xfd_validate_state+0x129/0x190 [ 648.532159][T14212] __x64_sys_mmap+0x125/0x190 [ 648.532187][T14212] do_syscall_64+0x106/0xf80 [ 648.532214][T14212] ? clear_bhb_loop+0x40/0x90 [ 648.532237][T14212] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 648.532255][T14212] RIP: 0033:0x7ff67b79c799 [ 648.532272][T14212] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 648.532290][T14212] RSP: 002b:00007ff67c571028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 648.532316][T14212] RAX: ffffffffffffffda RBX: 00007ff67ba15fa0 RCX: 00007ff67b79c799 [ 648.532329][T14212] RDX: 00004000000000df RSI: 0000000000020009 RDI: 0000000000000000 [ 648.532340][T14212] RBP: 00007ff67b832bd9 R08: 0000000000000401 R09: 0000000000008000 [ 648.532351][T14212] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 648.532362][T14212] R13: 00007ff67ba16038 R14: 00007ff67ba15fa0 R15: 00007ffe2209d9c8 [ 648.532388][T14212] [ 649.399369][ T30] audit: type=1326 audit(4294967377.962:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14214 comm="syz.3.1868" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f360df9c799 code=0x0 [ 649.523489][T14218] ptrace attach of "./syz-executor exec"[5823] was attempted by ""[14218] [ 649.768831][T14223] : entered promiscuous mode [ 650.777484][T14238] net_ratelimit: 24 callbacks suppressed [ 650.777501][T14238] openvswitch: netlink: VXLAN extension message has 4 unknown bytes. [ 651.034348][T14212] netlink: 146 bytes leftover after parsing attributes in process `syz.4.1867'. [ 651.972315][T14258] HfR: entered promiscuous mode [ 653.907164][T14284] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1883'. [ 654.198926][T14287] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1884'. [ 654.388893][T14290] FAULT_INJECTION: forcing a failure. [ 654.388893][T14290] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 654.469516][T14290] CPU: 0 UID: 0 PID: 14290 Comm: syz.0.1885 Not tainted syzkaller #0 PREEMPT(full) [ 654.469543][T14290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 654.469553][T14290] Call Trace: [ 654.469560][T14290] [ 654.469567][T14290] dump_stack_lvl+0x100/0x190 [ 654.469599][T14290] should_fail_ex.cold+0x5/0xa [ 654.469620][T14290] _copy_from_user+0x2e/0xd0 [ 654.469638][T14290] do_sched_setscheduler+0x9e/0x290 [ 654.469667][T14290] ? __pfx_do_sched_setscheduler+0x10/0x10 [ 654.469706][T14290] ? fput+0x79/0x100 [ 654.469726][T14290] ? ksys_write+0x1ac/0x250 [ 654.469742][T14290] ? __pfx_ksys_write+0x10/0x10 [ 654.469761][T14290] __x64_sys_sched_setscheduler+0x75/0xa0 [ 654.469780][T14290] do_syscall_64+0x106/0xf80 [ 654.469801][T14290] ? clear_bhb_loop+0x40/0x90 [ 654.469822][T14290] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 654.469841][T14290] RIP: 0033:0x7f0d3d59c799 [ 654.469855][T14290] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 654.469872][T14290] RSP: 002b:00007f0d3e522028 EFLAGS: 00000246 ORIG_RAX: 0000000000000090 [ 654.469890][T14290] RAX: ffffffffffffffda RBX: 00007f0d3d815fa0 RCX: 00007f0d3d59c799 [ 654.469901][T14290] RDX: 00002000000019c0 RSI: 0000000000000001 RDI: 0000000000000000 [ 654.469911][T14290] RBP: 00007f0d3e522090 R08: 0000000000000000 R09: 0000000000000000 [ 654.469922][T14290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 654.469932][T14290] R13: 00007f0d3d816038 R14: 00007f0d3d815fa0 R15: 00007ffd5aeaf7e8 [ 654.469954][T14290] [ 655.319801][T14305] random: crng reseeded on system resumption [ 656.059897][T14321] FAULT_INJECTION: forcing a failure. [ 656.059897][T14321] name failslab, interval 1, probability 0, space 0, times 0 [ 656.132432][T14321] CPU: 0 UID: 0 PID: 14321 Comm: syz.0.1895 Not tainted syzkaller #0 PREEMPT(full) [ 656.132467][T14321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 656.132479][T14321] Call Trace: [ 656.132487][T14321] [ 656.132495][T14321] dump_stack_lvl+0x100/0x190 [ 656.132529][T14321] should_fail_ex.cold+0x5/0xa [ 656.132551][T14321] ? lsm_blob_alloc+0x68/0x90 [ 656.132574][T14321] should_failslab+0xc2/0x120 [ 656.132595][T14321] __kmalloc_noprof+0xe0/0x850 [ 656.132622][T14321] ? trace_kmalloc+0x101/0x130 [ 656.132643][T14321] lsm_blob_alloc+0x68/0x90 [ 656.132666][T14321] security_sk_alloc+0x2d/0x290 [ 656.132697][T14321] sk_prot_alloc+0x12a/0x2a0 [ 656.132726][T14321] sk_alloc+0x36/0xe80 [ 656.132747][T14321] __netlink_create+0x5e/0x2c0 [ 656.132767][T14321] ? __wake_up+0x3f/0x60 [ 656.132790][T14321] netlink_create+0x293/0x610 [ 656.132813][T14321] ? __pfx_genl_bind+0x10/0x10 [ 656.132839][T14321] ? __pfx_genl_unbind+0x10/0x10 [ 656.132864][T14321] ? __pfx_genl_release+0x10/0x10 [ 656.132892][T14321] __sock_create+0x339/0x860 [ 656.132924][T14321] __sys_socket+0x14d/0x260 [ 656.132939][T14321] ? exc_page_fault+0x6f/0xd0 [ 656.132967][T14321] ? __pfx___sys_socket+0x10/0x10 [ 656.132997][T14321] ? do_user_addr_fault+0x8d6/0x12f0 [ 656.133032][T14321] __x64_sys_socket+0x72/0xb0 [ 656.133048][T14321] ? lockdep_hardirqs_on+0x78/0x100 [ 656.133069][T14321] do_syscall_64+0x106/0xf80 [ 656.133090][T14321] ? clear_bhb_loop+0x40/0x90 [ 656.133112][T14321] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 656.133131][T14321] RIP: 0033:0x7f0d3d59e007 [ 656.133148][T14321] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 656.133166][T14321] RSP: 002b:00007f0d3e520f98 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 656.133185][T14321] RAX: ffffffffffffffda RBX: 00007f0d3d815fa0 RCX: 00007f0d3d59e007 [ 656.133197][T14321] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 656.133207][T14321] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 656.133218][T14321] R10: 0000200000000100 R11: 0000000000000286 R12: 0000000000000000 [ 656.133228][T14321] R13: 00007f0d3d816038 R14: 00007f0d3d815fa0 R15: 00007ffd5aeaf7e8 [ 656.133252][T14321] [ 658.041393][T14334] can: request_module (can-proto-4) failed. [ 660.308031][T14365] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1903'. [ 661.247977][T14373] FAULT_INJECTION: forcing a failure. [ 661.247977][T14373] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 661.385230][T14373] CPU: 0 UID: 0 PID: 14373 Comm: syz.4.1904 Not tainted syzkaller #0 PREEMPT(full) [ 661.385260][T14373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 661.385271][T14373] Call Trace: [ 661.385278][T14373] [ 661.385285][T14373] dump_stack_lvl+0x100/0x190 [ 661.385322][T14373] should_fail_ex.cold+0x5/0xa [ 661.385347][T14373] _copy_to_user+0x32/0xd0 [ 661.385366][T14373] simple_read_from_buffer+0xcb/0x170 [ 661.385396][T14373] proc_fail_nth_read+0x1af/0x230 [ 661.385419][T14373] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 661.385442][T14373] ? rw_verify_area+0xce/0x6d0 [ 661.385468][T14373] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 661.385493][T14373] vfs_read+0x1e4/0xb30 [ 661.385524][T14373] ? __pfx_vfs_read+0x10/0x10 [ 661.385550][T14373] ? __fget_files+0x215/0x3d0 [ 661.385571][T14373] ? __fget_files+0x21f/0x3d0 [ 661.385593][T14373] ksys_read+0x12a/0x250 [ 661.385620][T14373] ? __pfx_ksys_read+0x10/0x10 [ 661.385654][T14373] do_syscall_64+0x106/0xf80 [ 661.385675][T14373] ? clear_bhb_loop+0x40/0x90 [ 661.385697][T14373] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 661.385716][T14373] RIP: 0033:0x7ff67b75cfce [ 661.385732][T14373] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 661.385750][T14373] RSP: 002b:00007ff67c570fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 661.385768][T14373] RAX: ffffffffffffffda RBX: 00007ff67c5716c0 RCX: 00007ff67b75cfce [ 661.385779][T14373] RDX: 000000000000000f RSI: 00007ff67c5710a0 RDI: 0000000000000003 [ 661.385790][T14373] RBP: 00007ff67c571090 R08: 0000000000000000 R09: 0000000000000000 [ 661.385800][T14373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 661.385810][T14373] R13: 00007ff67ba16038 R14: 00007ff67ba15fa0 R15: 00007ffe2209d9c8 [ 661.385833][T14373] [ 661.927660][T14356] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 661.957705][T14356] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 661.985538][T14356] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 662.005474][T14356] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 662.058595][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout [ 662.400025][T14382] FAULT_INJECTION: forcing a failure. [ 662.400025][T14382] name failslab, interval 1, probability 0, space 0, times 0 [ 662.477938][T14382] CPU: 0 UID: 0 PID: 14382 Comm: syz.0.1907 Not tainted syzkaller #0 PREEMPT(full) [ 662.477967][T14382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 662.477978][T14382] Call Trace: [ 662.477985][T14382] [ 662.477992][T14382] dump_stack_lvl+0x100/0x190 [ 662.478025][T14382] should_fail_ex.cold+0x5/0xa [ 662.478048][T14382] should_failslab+0xc2/0x120 [ 662.478068][T14382] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 662.478094][T14382] ? skb_clone+0x190/0x400 [ 662.478120][T14382] skb_clone+0x190/0x400 [ 662.478142][T14382] netlink_deliver_tap+0xaed/0xcc0 [ 662.478170][T14382] netlink_unicast+0x650/0x870 [ 662.478197][T14382] ? __pfx_netlink_unicast+0x10/0x10 [ 662.478229][T14382] netlink_sendmsg+0x8b0/0xda0 [ 662.478256][T14382] ? __pfx_netlink_sendmsg+0x10/0x10 [ 662.478278][T14382] ? __import_iovec+0x1d2/0x640 [ 662.478299][T14382] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 662.478337][T14382] ____sys_sendmsg+0x9e1/0xb70 [ 662.478362][T14382] ? __pfx_netlink_sendmsg+0x10/0x10 [ 662.478387][T14382] ? __pfx_____sys_sendmsg+0x10/0x10 [ 662.478423][T14382] ___sys_sendmsg+0x190/0x1e0 [ 662.478452][T14382] ? __pfx____sys_sendmsg+0x10/0x10 [ 662.478505][T14382] __sys_sendmsg+0x170/0x220 [ 662.478528][T14382] ? __pfx___sys_sendmsg+0x10/0x10 [ 662.478563][T14382] do_syscall_64+0x106/0xf80 [ 662.478584][T14382] ? clear_bhb_loop+0x40/0x90 [ 662.478606][T14382] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 662.478625][T14382] RIP: 0033:0x7f0d3d59c799 [ 662.478640][T14382] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 662.478658][T14382] RSP: 002b:00007f0d3e522028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 662.478675][T14382] RAX: ffffffffffffffda RBX: 00007f0d3d815fa0 RCX: 00007f0d3d59c799 [ 662.478687][T14382] RDX: 0000000000000080 RSI: 0000200000000040 RDI: 0000000000000004 [ 662.478697][T14382] RBP: 00007f0d3e522090 R08: 0000000000000000 R09: 0000000000000000 [ 662.478708][T14382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 662.478718][T14382] R13: 00007f0d3d816038 R14: 00007f0d3d815fa0 R15: 00007ffd5aeaf7e8 [ 662.478740][T14382] [ 663.174897][T14385] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input18 [ 664.035448][ T5833] Bluetooth: hci0: command 0x0c1a tx timeout [ 664.114786][ T5833] Bluetooth: hci4: command 0x0c1a tx timeout [ 664.121615][ T5833] Bluetooth: hci2: command 0x0c1a tx timeout [ 664.393021][T14408] FAULT_INJECTION: forcing a failure. [ 664.393021][T14408] name failslab, interval 1, probability 0, space 0, times 0 [ 664.467805][T14408] CPU: 0 UID: 0 PID: 14408 Comm: syz.1.1915 Not tainted syzkaller #0 PREEMPT(full) [ 664.467832][T14408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 664.467843][T14408] Call Trace: [ 664.467849][T14408] [ 664.467855][T14408] dump_stack_lvl+0x100/0x190 [ 664.467887][T14408] should_fail_ex.cold+0x5/0xa [ 664.467917][T14408] should_failslab+0xc2/0x120 [ 664.467941][T14408] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 664.467967][T14408] ? skb_clone+0x190/0x400 [ 664.467997][T14408] skb_clone+0x190/0x400 [ 664.468019][T14408] netlink_deliver_tap+0xaed/0xcc0 [ 664.468047][T14408] netlink_unicast+0x650/0x870 [ 664.468074][T14408] ? __pfx_netlink_unicast+0x10/0x10 [ 664.468106][T14408] netlink_sendmsg+0x8b0/0xda0 [ 664.468134][T14408] ? __pfx_netlink_sendmsg+0x10/0x10 [ 664.468156][T14408] ? __import_iovec+0x1d2/0x640 [ 664.468176][T14408] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 664.468205][T14408] ____sys_sendmsg+0x9e1/0xb70 [ 664.468230][T14408] ? __pfx_netlink_sendmsg+0x10/0x10 [ 664.468255][T14408] ? __pfx_____sys_sendmsg+0x10/0x10 [ 664.468292][T14408] ___sys_sendmsg+0x190/0x1e0 [ 664.468321][T14408] ? __pfx____sys_sendmsg+0x10/0x10 [ 664.468375][T14408] __sys_sendmsg+0x170/0x220 [ 664.468397][T14408] ? __pfx___sys_sendmsg+0x10/0x10 [ 664.468432][T14408] do_syscall_64+0x106/0xf80 [ 664.468453][T14408] ? clear_bhb_loop+0x40/0x90 [ 664.468474][T14408] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 664.468493][T14408] RIP: 0033:0x7fd95ff9c799 [ 664.468508][T14408] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 664.468525][T14408] RSP: 002b:00007fd960ed5028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 664.468543][T14408] RAX: ffffffffffffffda RBX: 00007fd960215fa0 RCX: 00007fd95ff9c799 [ 664.468554][T14408] RDX: 0000000000000040 RSI: 0000200000000100 RDI: 0000000000000003 [ 664.468564][T14408] RBP: 00007fd960ed5090 R08: 0000000000000000 R09: 0000000000000000 [ 664.468575][T14408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 664.468585][T14408] R13: 00007fd960216038 R14: 00007fd960215fa0 R15: 00007ffe08f692c8 [ 664.468607][T14408] [ 665.842447][T14427] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1919'. [ 666.536697][T14405] Bluetooth: hci1: unexpected event 0x01 length: 124 > 1 [ 669.140919][T14469] usb usb2: usbfs: process 14469 (syz.0.1929) did not claim interface 4 before use [ 669.619137][T14475] FAULT_INJECTION: forcing a failure. [ 669.619137][T14475] name failslab, interval 1, probability 0, space 0, times 0 [ 669.804237][T14476] netlink: 'syz.4.1931': attribute type 1 has an invalid length. [ 669.857337][T14475] CPU: 0 UID: 0 PID: 14475 Comm: syz.4.1931 Not tainted syzkaller #0 PREEMPT(full) [ 669.857369][T14475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 669.857381][T14475] Call Trace: [ 669.857389][T14475] [ 669.857398][T14475] dump_stack_lvl+0x100/0x190 [ 669.857435][T14475] should_fail_ex.cold+0x5/0xa [ 669.857458][T14475] ? iter_file_splice_write+0x1d8/0x10a0 [ 669.857477][T14475] should_failslab+0xc2/0x120 [ 669.857499][T14475] __kmalloc_noprof+0xe0/0x850 [ 669.857531][T14475] iter_file_splice_write+0x1d8/0x10a0 [ 669.857549][T14475] ? lockdep_hardirqs_on+0x78/0x100 [ 669.857575][T14475] ? copy_splice_read+0x734/0xb90 [ 669.857603][T14475] ? kfree+0x1f6/0x6b0 [ 669.857630][T14475] ? __pfx_iter_file_splice_write+0x10/0x10 [ 669.857649][T14475] ? __lock_acquire+0x4a5/0x2630 [ 669.857675][T14475] ? __pfx_copy_splice_read+0x10/0x10 [ 669.857715][T14475] ? __pfx_iter_file_splice_write+0x10/0x10 [ 669.857736][T14475] direct_splice_actor+0x192/0x6c0 [ 669.857769][T14475] splice_direct_to_actor+0x345/0xa30 [ 669.857790][T14475] ? __pfx_direct_splice_actor+0x10/0x10 [ 669.857823][T14475] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 669.857848][T14475] do_splice_direct+0x174/0x240 [ 669.857867][T14475] ? __pfx_do_splice_direct+0x10/0x10 [ 669.857885][T14475] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 669.857917][T14475] ? rw_verify_area+0xce/0x6d0 [ 669.857947][T14475] do_sendfile+0xadc/0xe20 [ 669.857979][T14475] ? __pfx_do_sendfile+0x10/0x10 [ 669.858009][T14475] ? __x64_sys_futex+0x34f/0x4d0 [ 669.858031][T14475] ? __x64_sys_futex+0x358/0x4d0 [ 669.858056][T14475] __x64_sys_sendfile64+0x1d8/0x220 [ 669.858078][T14475] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 669.858105][T14475] do_syscall_64+0x106/0xf80 [ 669.858143][T14475] ? clear_bhb_loop+0x40/0x90 [ 669.858168][T14475] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 669.858189][T14475] RIP: 0033:0x7ff67b79c799 [ 669.858210][T14475] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 669.858229][T14475] RSP: 002b:00007ff67c571028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 669.858250][T14475] RAX: ffffffffffffffda RBX: 00007ff67ba15fa0 RCX: 00007ff67b79c799 [ 669.858263][T14475] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000005 [ 669.858274][T14475] RBP: 00007ff67b832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 669.858285][T14475] R10: 0000000000004a00 R11: 0000000000000246 R12: 0000000000000000 [ 669.858309][T14475] R13: 00007ff67ba16038 R14: 00007ff67ba15fa0 R15: 00007ffe2209d9c8 [ 669.858335][T14475] [ 670.444593][T14476] netlink: 33 bytes leftover after parsing attributes in process `syz.4.1931'. [ 672.116127][ T9928] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 919 with max blocks 2 with error 117 [ 672.269507][ T9928] EXT4-fs (sda1): This should not happen!! Data will be lost [ 672.269507][ T9928] [ 673.294469][T14526] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1943'. [ 673.431565][T14526] FAULT_INJECTION: forcing a failure. [ 673.431565][T14526] name failslab, interval 1, probability 0, space 0, times 0 [ 673.566817][T14526] CPU: 0 UID: 0 PID: 14526 Comm: syz.0.1943 Not tainted syzkaller #0 PREEMPT(full) [ 673.566850][T14526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 673.566862][T14526] Call Trace: [ 673.566869][T14526] [ 673.566877][T14526] dump_stack_lvl+0x100/0x190 [ 673.566911][T14526] should_fail_ex.cold+0x5/0xa [ 673.566934][T14526] ? lsm_blob_alloc+0x68/0x90 [ 673.566957][T14526] should_failslab+0xc2/0x120 [ 673.566978][T14526] __kmalloc_noprof+0xe0/0x850 [ 673.567005][T14526] ? trace_kmalloc+0x101/0x130 [ 673.567027][T14526] lsm_blob_alloc+0x68/0x90 [ 673.567049][T14526] security_sk_alloc+0x2d/0x290 [ 673.567078][T14526] sk_prot_alloc+0x12a/0x2a0 [ 673.567106][T14526] sk_alloc+0x36/0xe80 [ 673.567127][T14526] __netlink_create+0x5e/0x2c0 [ 673.567147][T14526] ? __wake_up+0x3f/0x60 [ 673.567177][T14526] netlink_create+0x293/0x610 [ 673.567198][T14526] ? __pfx_genl_bind+0x10/0x10 [ 673.567223][T14526] ? __pfx_genl_unbind+0x10/0x10 [ 673.567248][T14526] ? __pfx_genl_release+0x10/0x10 [ 673.567277][T14526] __sock_create+0x339/0x860 [ 673.567312][T14526] __sys_socket+0x14d/0x260 [ 673.567328][T14526] ? exc_page_fault+0x6f/0xd0 [ 673.567349][T14526] ? __pfx___sys_socket+0x10/0x10 [ 673.567379][T14526] ? do_user_addr_fault+0x8d6/0x12f0 [ 673.567410][T14526] __x64_sys_socket+0x72/0xb0 [ 673.567426][T14526] ? lockdep_hardirqs_on+0x78/0x100 [ 673.567447][T14526] do_syscall_64+0x106/0xf80 [ 673.567469][T14526] ? clear_bhb_loop+0x40/0x90 [ 673.567491][T14526] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 673.567510][T14526] RIP: 0033:0x7f0d3d59e007 [ 673.567527][T14526] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 673.567544][T14526] RSP: 002b:00007f0d3e520f98 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 673.567563][T14526] RAX: ffffffffffffffda RBX: 00007f0d3d815fa0 RCX: 00007f0d3d59e007 [ 673.567575][T14526] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 673.567585][T14526] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 673.567595][T14526] R10: 0000200000000040 R11: 0000000000000286 R12: 0000000000000000 [ 673.567606][T14526] R13: 00007f0d3d816038 R14: 00007f0d3d815fa0 R15: 00007ffd5aeaf7e8 [ 673.567628][T14526] [ 675.173672][T14553] FAULT_INJECTION: forcing a failure. [ 675.173672][T14553] name failslab, interval 1, probability 0, space 0, times 0 [ 675.281212][T14553] CPU: 0 UID: 0 PID: 14553 Comm: syz.1.1945 Not tainted syzkaller #0 PREEMPT(full) [ 675.281242][T14553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 675.281254][T14553] Call Trace: [ 675.281261][T14553] [ 675.281268][T14553] dump_stack_lvl+0x100/0x190 [ 675.281303][T14553] should_fail_ex.cold+0x5/0xa [ 675.281327][T14553] should_failslab+0xc2/0x120 [ 675.281348][T14553] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 675.281376][T14553] ? security_inode_alloc+0x3b/0x2c0 [ 675.281403][T14553] ? lockdep_init_map_type+0x5c/0x250 [ 675.281431][T14553] security_inode_alloc+0x3b/0x2c0 [ 675.281464][T14553] inode_init_always_gfp+0xced/0x1040 [ 675.281488][T14553] alloc_inode+0x8e/0x250 [ 675.281511][T14553] new_inode+0x22/0x1c0 [ 675.281536][T14553] debugfs_create_symlink+0xd1/0x220 [ 675.281567][T14553] ref_tracker_dir_symlink+0x257/0x3b0 [ 675.281590][T14553] ? __pfx_ref_tracker_dir_symlink+0x10/0x10 [ 675.281612][T14553] ? __lock_acquire+0x4a5/0x2630 [ 675.281653][T14553] ? lockdep_hardirqs_on+0x78/0x100 [ 675.281675][T14553] ? crng_make_state+0x2b0/0x6c0 [ 675.281710][T14553] ? __pfx_net_ns_net_init+0x10/0x10 [ 675.281733][T14553] net_ns_net_init+0xd2/0x120 [ 675.281757][T14553] ops_init+0x1e2/0x5f0 [ 675.281781][T14553] setup_net+0x118/0x3a0 [ 675.281805][T14553] ? __pfx_setup_net+0x10/0x10 [ 675.281826][T14553] ? lockdep_init_map_type+0x5c/0x250 [ 675.281849][T14553] ? mutex_init_lockep+0x110/0x150 [ 675.281879][T14553] copy_net_ns+0x46f/0x7c0 [ 675.281906][T14553] create_new_namespaces+0x3ea/0xac0 [ 675.281931][T14553] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 675.281959][T14553] ksys_unshare+0x473/0xad0 [ 675.281984][T14553] ? __pfx_ksys_unshare+0x10/0x10 [ 675.282015][T14553] __x64_sys_unshare+0x31/0x40 [ 675.282037][T14553] do_syscall_64+0x106/0xf80 [ 675.282058][T14553] ? clear_bhb_loop+0x40/0x90 [ 675.282082][T14553] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 675.282102][T14553] RIP: 0033:0x7fd95ff9c799 [ 675.282119][T14553] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 675.282136][T14553] RSP: 002b:00007fd960ed5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 675.282155][T14553] RAX: ffffffffffffffda RBX: 00007fd960215fa0 RCX: 00007fd95ff9c799 [ 675.282167][T14553] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 675.282177][T14553] RBP: 00007fd960032bd9 R08: 0000000000000000 R09: 0000000000000000 [ 675.282187][T14553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 675.282197][T14553] R13: 00007fd960216038 R14: 00007fd960215fa0 R15: 00007ffe08f692c8 [ 675.282220][T14553] [ 677.480514][T14553] debugfs: out of free dentries, can not create symlink 'netns-428-4026532915-notrefcnt' [ 677.526544][T14575] NFSD: Failed to start, no listeners configured. [ 678.248351][T14584] WARNING! power/level is deprecated; use power/control instead [ 679.269882][T14588] random: crng reseeded on system resumption [ 681.692163][T14613] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 681.934295][T14614] smpboot: CPU 1 is now offline [ 682.076419][T14614] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 682.156030][T14614] ------------[ cut here ]------------ [ 682.161653][T14614] DEAD callback error for CPU1 [ 682.161677][T14614] WARNING: kernel/cpu.c:1463 at _cpu_down+0x759/0x1020, CPU#0: syz.0.1960/14614 [ 682.176107][T14614] Modules linked in: [ 682.180679][T14614] CPU: 0 UID: 0 PID: 14614 Comm: syz.0.1960 Not tainted syzkaller #0 PREEMPT(full) [ 682.190411][T14614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 682.200666][T14614] RIP: 0010:_cpu_down+0x75c/0x1020 [ 682.205969][T14614] Code: c5 7a f6 89 ee bf 91 00 00 00 e8 1f c0 7a f6 81 fd 91 00 00 00 0f 84 6b 02 00 00 e8 5e c5 7a f6 48 8d 3d 67 73 4f 05 44 89 ee <67> 48 0f b9 3a e9 3a fa ff ff 45 31 ff e9 32 fa ff ff e8 3d c5 7a [ 682.226237][T14614] RSP: 0018:ffffc900048f7aa8 EFLAGS: 00010293 [ 682.234729][T14614] RAX: 0000000000000000 RBX: ffff8880b85242e0 RCX: ffffffff8b8d4a31 [ 682.244228][T14614] RDX: ffff88802e158000 RSI: 0000000000000001 RDI: ffffffff90dcbdb0 [ 682.252900][T14614] RBP: 0000000000000092 R08: 0000000000000005 R09: 0000000000000091 [ 682.261042][T14614] R10: 0000000000000092 R11: 0000000000000001 R12: 00000000000000ed [ 682.269559][T14614] R13: 0000000000000001 R14: 0000000000000001 R15: 00000000fffffff5 [ 682.278001][T14614] FS: 00007f0d3e4e06c0(0000) GS:ffff88812434b000(0000) knlGS:0000000000000000 [ 682.287707][T14614] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 682.294442][T14614] CR2: 0000000001b19000 CR3: 0000000059358000 CR4: 00000000003526f0 [ 682.302675][T14614] Call Trace: [ 682.306108][T14614] [ 682.309275][T14614] ? __pfx_cpu_subsys_offline+0x10/0x10 [ 682.315102][T14614] cpu_device_down+0x82/0xc0 [ 682.319766][T14614] device_offline+0x2a7/0x3c0 [ 682.324520][T14614] ? __pfx_device_offline+0x10/0x10 [ 682.331117][T14614] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 682.337889][T14614] ? __pfx_online_store+0x10/0x10 [ 682.343622][T14614] online_store+0xd1/0x180 [ 682.348602][T14614] ? __pfx_online_store+0x10/0x10 [ 682.353875][T14614] ? __print_lock_name+0x20/0x80 [ 682.359164][T14614] ? sysfs_file_kobj+0xe4/0x290 [ 682.364404][T14614] ? sysfs_file_kobj+0xe4/0x290 [ 682.369805][T14614] dev_attr_store+0x58/0x80 [ 682.374393][T14614] ? __pfx_dev_attr_store+0x10/0x10 [ 682.379811][T14614] sysfs_kf_write+0xf2/0x150 [ 682.384488][T14614] kernfs_fop_write_iter+0x3e0/0x5f0 [ 682.389959][T14614] ? __pfx_sysfs_kf_write+0x10/0x10 [ 682.395356][T14614] vfs_write+0x6ac/0x1070 [ 682.399821][T14614] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 682.405810][T14614] ? __pfx_vfs_write+0x10/0x10 [ 682.410688][T14614] ksys_write+0x12a/0x250 [ 682.415371][T14614] ? __pfx_ksys_write+0x10/0x10 [ 682.420551][T14614] do_syscall_64+0x106/0xf80 [ 682.425316][T14614] ? clear_bhb_loop+0x40/0x90 [ 682.430114][T14614] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 682.437582][T14614] RIP: 0033:0x7f0d3d59c799 [ 682.442063][T14614] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 682.463547][T14614] RSP: 002b:00007f0d3e4e0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 682.472529][T14614] RAX: ffffffffffffffda RBX: 00007f0d3d816180 RCX: 00007f0d3d59c799 [ 682.481095][T14614] RDX: 000000000000000b RSI: 00002000000002c0 RDI: 0000000000000003 [ 682.489535][T14614] RBP: 00007f0d3d632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 682.497790][T14614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 682.505927][T14614] R13: 00007f0d3d816218 R14: 00007f0d3d816180 R15: 00007ffd5aeaf7e8 [ 682.514468][T14614] [ 682.518067][T14614] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 682.525410][T14614] CPU: 0 UID: 0 PID: 14614 Comm: syz.0.1960 Not tainted syzkaller #0 PREEMPT(full) [ 682.535246][T14614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 682.545528][T14614] Call Trace: [ 682.548946][T14614] [ 682.552008][T14614] dump_stack_lvl+0x100/0x190 [ 682.556765][T14614] vpanic+0x552/0x970 [ 682.560895][T14614] ? __pfx_vpanic+0x10/0x10 [ 682.565468][T14614] panic+0xd1/0xe0 [ 682.569330][T14614] ? __pfx_panic+0x10/0x10 [ 682.573815][T14614] ? check_panic_on_warn+0x1f/0x90 [ 682.578997][T14614] check_panic_on_warn.cold+0x19/0x34 [ 682.584518][T14614] ? _cpu_down+0x759/0x1020 [ 682.589096][T14614] __warn.cold+0x191/0x348 [ 682.593582][T14614] __report_bug+0x296/0x3d0 [ 682.598162][T14614] ? _cpu_down+0x759/0x1020 [ 682.602734][T14614] ? __pfx___report_bug+0x10/0x10 [ 682.607811][T14614] ? __pfx_try_to_wake_up+0x10/0x10 [ 682.613089][T14614] ? _cpu_down+0x741/0x1020 [ 682.617690][T14614] report_bug_entry+0xe1/0x290 [ 682.622526][T14614] ? _cpu_down+0x75c/0x1020 [ 682.627116][T14614] handle_bug+0x1cd/0x2a0 [ 682.631523][T14614] exc_invalid_op+0x17/0x50 [ 682.636195][T14614] asm_exc_invalid_op+0x1a/0x20 [ 682.641115][T14614] RIP: 0010:_cpu_down+0x75c/0x1020 [ 682.646306][T14614] Code: c5 7a f6 89 ee bf 91 00 00 00 e8 1f c0 7a f6 81 fd 91 00 00 00 0f 84 6b 02 00 00 e8 5e c5 7a f6 48 8d 3d 67 73 4f 05 44 89 ee <67> 48 0f b9 3a e9 3a fa ff ff 45 31 ff e9 32 fa ff ff e8 3d c5 7a [ 682.666233][T14614] RSP: 0018:ffffc900048f7aa8 EFLAGS: 00010293 [ 682.672447][T14614] RAX: 0000000000000000 RBX: ffff8880b85242e0 RCX: ffffffff8b8d4a31 [ 682.680482][T14614] RDX: ffff88802e158000 RSI: 0000000000000001 RDI: ffffffff90dcbdb0 [ 682.688606][T14614] RBP: 0000000000000092 R08: 0000000000000005 R09: 0000000000000091 [ 682.696634][T14614] R10: 0000000000000092 R11: 0000000000000001 R12: 00000000000000ed [ 682.704862][T14614] R13: 0000000000000001 R14: 0000000000000001 R15: 00000000fffffff5 [ 682.712902][T14614] ? _cpu_down+0x741/0x1020 [ 682.717496][T14614] ? _cpu_down+0x752/0x1020 [ 682.722102][T14614] ? __pfx_cpu_subsys_offline+0x10/0x10 [ 682.727730][T14614] cpu_device_down+0x82/0xc0 [ 682.732381][T14614] device_offline+0x2a7/0x3c0 [ 682.737126][T14614] ? __pfx_device_offline+0x10/0x10 [ 682.742406][T14614] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 682.748489][T14614] ? __pfx_online_store+0x10/0x10 [ 682.753585][T14614] online_store+0xd1/0x180 [ 682.758164][T14614] ? __pfx_online_store+0x10/0x10 [ 682.763249][T14614] ? __print_lock_name+0x20/0x80 [ 682.768426][T14614] ? sysfs_file_kobj+0xe4/0x290 [ 682.773347][T14614] ? sysfs_file_kobj+0xe4/0x290 [ 682.778267][T14614] dev_attr_store+0x58/0x80 [ 682.782844][T14614] ? __pfx_dev_attr_store+0x10/0x10 [ 682.788132][T14614] sysfs_kf_write+0xf2/0x150 [ 682.792976][T14614] kernfs_fop_write_iter+0x3e0/0x5f0 [ 682.798407][T14614] ? __pfx_sysfs_kf_write+0x10/0x10 [ 682.803849][T14614] vfs_write+0x6ac/0x1070 [ 682.808433][T14614] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 682.814482][T14614] ? __pfx_vfs_write+0x10/0x10 [ 682.819355][T14614] ksys_write+0x12a/0x250 [ 682.823741][T14614] ? __pfx_ksys_write+0x10/0x10 [ 682.828666][T14614] do_syscall_64+0x106/0xf80 [ 682.833320][T14614] ? clear_bhb_loop+0x40/0x90 [ 682.838065][T14614] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 682.844209][T14614] RIP: 0033:0x7f0d3d59c799 [ 682.848846][T14614] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 682.868680][T14614] RSP: 002b:00007f0d3e4e0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 682.877270][T14614] RAX: ffffffffffffffda RBX: 00007f0d3d816180 RCX: 00007f0d3d59c799 [ 682.885492][T14614] RDX: 000000000000000b RSI: 00002000000002c0 RDI: 0000000000000003 [ 682.893604][T14614] RBP: 00007f0d3d632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 682.901805][T14614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 682.909911][T14614] R13: 00007f0d3d816218 R14: 00007f0d3d816180 R15: 00007ffd5aeaf7e8 [ 682.917960][T14614] [ 682.921633][T14614] Kernel Offset: disabled [ 682.925967][T14614] Rebooting in 86400 seconds..